[Info-vax] stumped by SSH
Paul Sture
nospam at sture.ch
Wed Feb 10 15:49:13 EST 2016
On 2016-02-07, Simon Clubley
<clubley at remove_me.eisner.decus.org-Earth.UFP> wrote:
>
> Paul's comment about permissions being _too_ permissive also raised
> some memories. Have you checked the file permissions in the parent
> directory of the login directory itself to make sure they are identical
> to the login directory for an account you can log into over SSH ?
>
Found some more info on that in the documentation for ssh-copy-id for OS X
(hosted on github):
----
** ssh-copy-id ** is a script that uses ssh to log into a remote
machine ... <stuff snipped>
It also changes the permissions of the remote user's home, ~/.ssh, and
~/.ssh/authorized_keys to remove group writability (which would
otherwise prevent you from logging in, if the remote sshd has
StrictModes set in its configuration)."
----
URL: <https://github.com/beautifulcode/ssh-copy-id-for-OSX>
P.S. I am not at all keen on the installation method outlined there
which uses curl piped straight into sh, particularly when sudo is
invoked by the script. I used 'git clone' instead so that I can verify
what is in both the installation script and the ssh-copy-id code before
proceeding.
P.P.S. the curl command given uses -L. This tells curl to honour
redirects which result in an error 3XX. Call me paranoid, but I'm not
keen on that.
--
There are two hard things in computer science, and they are cache invalidation,
naming, and off-by-one errors.
More information about the Info-vax
mailing list