Quote:
Originally Posted by acid_kewpie
(Post 4411335)
it's possible because that's the way it works. that data is PRIVATE and you're making ANYONE able to read it. So another user could trivially add a key to YOUR config and login as you. Why would you want to change it in the first place??
|
You say that sshd checks the permissions for the home directory where ~/.ssh/authorized_keys is stored? The permissions for ~/.ssh are still 700, and for authorized_keys are 644 (read for everbody, write for owner).
I did this stupid thing while trying to make local mail work, but now it works with the right permissions. Anyway, are you sure that sshd is checking the permissions of the ~ directory? I did not expect this behaviour.
Thank you for your answer.
|