Re: Public key authentication troubles

From: Mike Delaney (mdelan_at_computer.org)
Date: 05/26/04

Next message: Steven V.: "Re: tunneling windows terminal services via ssh - licensing error message"

Previous message: Eric Caron: "sshd pam_setcred problem"
In reply to: Nicolas Bertolotti: "Re: Public key authentication troubles"
Next in thread: Nicolas Bertolotti: "Re: Public key authentication troubles"
Reply: Nicolas Bertolotti: "Re: Public key authentication troubles"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 26 May 2004 15:25:55 -0500

On Wed, 26 May 2004 21:10:55 +0200 in <c92pom$knn$1@news-reader1.wanadoo.fr>,
Nicolas Bertolotti said something similar to:
:
: Anyway, I still don't understand the reason why such a restriction exists
: (even in strict mode). As long as the .ssh directory contents is protected,
: it should not be possible for a group member to do something bad on it. Am I
: wrong ?

Without the restriction prohibiting group-writable home directories, an
attack like the following would be possible:

    % mv ~victim/.ssh ~victim/.ssh_orig
    % mkdir ~victim/.ssh
    % cp ~/.ssh/id_rsa ~victim/.ssh/authorized_keys
    % ssh victim@localhost

Next message: Steven V.: "Re: tunneling windows terminal services via ssh - licensing error message"

Previous message: Eric Caron: "sshd pam_setcred problem"
In reply to: Nicolas Bertolotti: "Re: Public key authentication troubles"
Next in thread: Nicolas Bertolotti: "Re: Public key authentication troubles"
Reply: Nicolas Bertolotti: "Re: Public key authentication troubles"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]