[PATCH] ssh-copy-id should do chmod go-w
Peter W
peterw at usa.net
Thu Oct 4 04:28:19 EST 2001
On Wed, Oct 03, 2001 at 01:19:46PM -0500, mouring at etoh.eviladmin.org wrote:
>
> You know.. thinking about this.. I really hate the idea of
> any script mucking around with my ~/ permissions. That is seriously
> asking for trouble.
Agreed.
> chmod 700 .ssh; chmod 600 .ssh/authorized_keys
>
> makes more sense. Changing ~/ permissions is a local policy issue, and I
> know I get peaved when something changes my policy without asking.
What about simply setting the umask to 077 before doing anything? If the
user has existing files/dirs, they won't be changed, but any new stuff would
be safely created.
-Peter
More information about the openssh-unix-dev
mailing list