Date: Tue, 23 Jun 2009 10:12:03 -0400 From: Jerry McAllister <jerrymc@msu.edu> To: Daniel Underwood <djuatdelta@gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: ~/.ssh directory permissions Message-ID: <20090623141202.GB44661@gizmo.acns.msu.edu> In-Reply-To: <b6c05a470906230706w5154c697uedb41f2164681a0a@mail.gmail.com> References: <b6c05a470906230706w5154c697uedb41f2164681a0a@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Jun 23, 2009 at 10:06:03AM -0400, Daniel Underwood wrote: > Looking at my ~/.ssh directory, I see the following permissions: > > -rw-r--r-- > > Which I understand to be equivalent to 644. > > I read here <http://sial.org/howto/openssh/publickey-auth/>; that > ~/.ssh ought to have permissions 700. > > Which is preferable, and why? Well, generically, 700 allows you to do anything you want with the file as owner, but no other id (except root) can touch it in any way - not even look at it. I don't really know if it would hurt to allow others to read it or not, but in the philosophy of if access is not needed, then don't provide it, I would make it limited to 700. I just looked at mine and it is set to 700. ////jerry > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20090623141202.GB44661>