ownership of authorized_keys

frank mohr f_mohr at yahoo.de
Fri Jan 20 04:16:03 EST 2006


--- Han Boetes <han at mijncomputer.nl> wrote:
> But even in that case that file has to be owned by the user,
> unless I set ``StrictModes no'' which would allow other
> nastyness. I would like to request that that file could also be
> owned by root, so I can make that file immutable for the user,
> even on filesystems which don't support the immutable flag, for
> example jfs on GNU/Linux.

just checked the 4.1p1 source .. thats already there:

auth.c(line 460): (st.st_uid != 0 && st.st_uid != uid)

checks for root or user


Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 

More information about the openssh-unix-dev mailing list