Bad ownership of /?
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Sat Jan 17 08:20:08 EST 2009
Hi Kārlis --
On 01/16/2009 03:58 PM, Kārlis Repsons wrote:
> this is one more unfortunate case, when I run into problems with some
> non-standard configuration: if authorized keys file for user %u is /keys/%u
> or /keys/%u/.ssh/authorized_keys, I receive an error:
> sshd: Authentication refused: bad ownership or modes for directory /
> !
>
> Whats the cure? I can't keep those files into /home easily...
>
> /Please let me know by cc to this mail address, because I am not subscribed/
This sounds like a serious problem, but likely not ssh related. It's
possible that the way your filesystem is set up makes it vulnerable to
some pretty serious attacks by local users. Can you show the output of:
ls -ld /
That should show the ownership and permissions on the root of the
filesystem, which is what sshd is complaining about.
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 890 bytes
Desc: OpenPGP digital signature
Url : http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20090116/544849a2/attachment.bin
More information about the openssh-unix-dev
mailing list