Public key authentication impossible w/SSH client on Vista

From: Siva <solletica@xxxxxxxxxxxxxxx>
Date: Wed, 20 Jun 2007 23:55:31 -0500

On Microsoft, w/both the OpenSSH client for Windows (v 3.81) and PuTTY, I'm unable to change the file permission on the id_rsa file--used in public key authentication--to something that is acceptable to the client, i. e. user-read only permissions. Instead, the SSH client keeps complaining that the file permissions for id_rsa, "0644 are too open."

I've tried using CYGWIN's chmod.exe utility for Windows to alter the file permissions to "0600", but that doesn't work on Vista However, it DOES work on XP and 2000.

I've also tried using Microsoft's built-in setacls command to alter the file permissions on id_rsa. Again, it works on XP and 2000, but NOT on Vista.

I did not copy the id_rsa file to a different location from its default, i. e. I just ran ssh-keygen, let it generate the id_rsa file in %USERPROFILE%/.ssh, and left it there. When I tried to run the SSH client, it complained that the perms on that id_rsa file were too open. And then, when I tried to alter it to "0600" w/chmod.exe and/or make it accessible only the current user w/SETACLS, SSH still claimed the file perms were still "0644" and failed to honor it.

I'm curious if anyone else has encountered this problem, and if so, if there is a workaround.

Please let me know. THANKS!

--
Posted via a free Usenet account from http://www.teranews.com

.

Follow-Ups:
- Re: Public key authentication impossible w/SSH client on Vista
  - From: Simon Tatham
- Re: Public key authentication impossible w/SSH client on Vista
  - From: Siva

Prev by Date: Re: prompt or not prompt for the password depending on the user
Next by Date: Re: Public key authentication impossible w/SSH client on Vista
Previous by thread: prompt or not prompt for the password depending on the user
Next by thread: Re: Public key authentication impossible w/SSH client on Vista
Index(es):
- Date
- Thread

Relevant Pages

Re: why would i want to put my mysql password in the yml fil
... so if that is the case, why does basically every other password mechanism i can think of not just use plain text, and just rely on having "correct file permissions". ... send the clear password to the database. ... So, the best rails (as a client of the database) could do, is attempt ... to obscure the password ...
(comp.lang.ruby)
"My favorites"
... I client was recently migrated to Windows XP Pro SP1. ... are running Office XP w/SP3. ... backup data and settings. ... Check file permissions for the document or drive ...
(microsoft.public.office.misc)
Re: [take 3] Use pid in inotify events.
... file permissions on the directory containing your files. ... Don't try to make a foolproof system because: ... and b) "make a system that even a fool can use and only a fool ... that's the client in a client/server architecture. ...
(Linux-Kernel)
Re: Public key authentication impossible w/SSH client on Vista
... I'm unable to change the file permission on the id_rsa file--used in public key authentication--to something that is acceptable to the client, ... I've tried using CYGWIN's chmod.exe utility for Windows to alter the file permissions to "0600", but that doesn't work on Vista However, it DOES work on XP and 2000. ... When I tried to run the SSH client, it complained that the perms on that id_rsa file were too open. ...
(comp.security.ssh)
Windows XP home file permissions
... This is an article about file permissions in Windows XP home edition. ... account to be used only for installing software, ... full control: ...
(comp.security.misc)