On 08/16/2011 04:20 PM, jsa wrote:
It seems I'm often bit by the tendency of ssh-keygen to write the private key with permissions that make it unusable. It often did this in the past and you had to change permissions to 600. Perhaps this has been fixed in later releases.
Hmm... I've been using this same method on suse and arch since at least 2001 and I don't ever recall touching permissions on the private key. Just doing a quick compare between arch and suse, looks like arch writes both 0600 while suse writes the private with 0600 and the public with 0644. Guess I've just been lucky! I will have to look, but I also think there may be an option in /etc/ssh/sshd_config that controls whether the system will puke on permission problems. Something similar to the strict checking option or the like? -- David C. Rankin, J.D.,P.E. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org