Re: Public key authentication troubles

From: Darren Dunham (ddunham_at_redwood.taos.com)
Date: 05/27/04

Next message: Mike Delaney: "Re: Public key authentication troubles"

Previous message: YAPoster: "iis user account and ssh"
In reply to: Nicolas Bertolotti: "Re: Public key authentication troubles"
Next in thread: Mike Delaney: "Re: Public key authentication troubles"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 26 May 2004 23:11:00 GMT

Nicolas Bertolotti <nbertolo@chez.com> wrote:
> Yes, but then, the owner of the .ssh folder and the .ssh/authorized_keys
> file would not be "victim" anymore and, as far as I remember, sshd wouldn't
> accept the key in this case.

Many systems allow 'chown' to succeed for non-root users where write
access is possible.

It was originally disallowed on most platforms not as a security
problem, but because it allows easy circumvention of quotas.

-- 
Darren Dunham                                           ddunham@taos.com
Senior Technical Consultant         TAOS            http://www.taos.com/
Got some Dr Pepper?                           San Francisco, CA bay area
         < This line left intentionally blank to confuse you. >

Next message: Mike Delaney: "Re: Public key authentication troubles"

Previous message: YAPoster: "iis user account and ssh"
In reply to: Nicolas Bertolotti: "Re: Public key authentication troubles"
Next in thread: Mike Delaney: "Re: Public key authentication troubles"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]