This is the mail archive of the
cygwin@cygwin.com
mailing list for the Cygwin project.
Re: Is RSA authentication on SSH still broken?
- From: "Max Bowsher" <maxb at ukf dot net>
- To: "Harig, Mark A." <maharig at idirect dot net>,<cygwin at cygwin dot com>
- Date: Mon, 11 Nov 2002 15:40:44 -0000
- Subject: Re: Is RSA authentication on SSH still broken?
- References: <BADF3C947A1BD54FBA75C70C241B0B9E763046@ex02.idirect.net>
Harig, Mark A. <maharig@idirect.net> wrote:
> OK. So, it appears that Cygwin users
> of openssh have one of two options:
>
> 1. chmod 700 ~
> chgrp 18 ~/.ssh
> chmod 750 ~/.ssh
>
> or
>
> 2. chmod 755 ~
> chmod 700 ~/.ssh
>
> Do you have a recommendation on which of
> these two options is more secure?
I'm assuming you meant:
$ chmod 750 ~
$ chgrp 18 ~
$ chmod 700 ~/.ssh
Since obviously world-readable ~ is less secure than user-only-readable ~.
In which case, 1. seems better to me, because it actually grants SYSTEM
permissions where it needs them, rather than granting them somewhere else
and Windows weirdness making things work.
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Bug reporting: http://cygwin.com/bugs.html
Documentation: http://cygwin.com/docs.html
FAQ: http://cygwin.com/faq/