[Bug 2078] New: Documentation claims ~.ssh/config must not be accessible by others when actually it must not be readable

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Tue Mar 12 23:35:32 EST 2013


https://bugzilla.mindrot.org/show_bug.cgi?id=2078

            Bug ID: 2078
           Summary: Documentation claims ~.ssh/config must not be
                    accessible by others when actually it must not be
                    readable
    Classification: Unclassified
           Product: Portable OpenSSH
           Version: 5.9p1
          Hardware: Other
                OS: Linux
            Status: NEW
          Severity: minor
          Priority: P5
         Component: Documentation
          Assignee: unassigned-bugs at mindrot.org
          Reporter: paulg at chiark.greenend.org.uk

The ssh man page claims

~/.ssh/config
This is the per-user configuration file.  The file format and
configuration options are described in ssh_config(5).  Because of
the potential for abuse, this file must have strict permissions:
read/write for the user, and not accessible by others.

However in fact this file must only not be writeable by others and this
is what ssh checks for.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list