Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Date: Fri, 8 Nov 2002 18:58:44 +0100
From: Corinna Vinschen <corinna-cygwin AT cygwin DOT com>
To: cygwin AT cygwin DOT com
Subject: Re: Is RSA authentication on SSH still broken?
Message-ID: <20021108185844.Q21920@cygbert.vinschen.de>
Reply-To: cygwin AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
References: <BADF3C947A1BD54FBA75C70C241B0B9E90B9CE AT ex02 DOT idirect DOT net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <BADF3C947A1BD54FBA75C70C241B0B9E90B9CE@ex02.idirect.net>
User-Agent: Mutt/1.3.22.1i

On Fri, Nov 08, 2002 at 11:37:11AM -0500, Harig, Mark A. wrote:
>        chmod 700 ~ && \
         ^^^^^^^^^^^
This is your problem.  By setting home and .ssh to 700 you disallow sshd to
stat() ~/.ssh.  Cygwin has two chances to retrieve information about a file
or directory, by either calling FindFileFirst() or by trying to open the
file and calling various Win32 access functions.

FindFileFirst() requires to have read permissions on the parent directory,
opening the file/dir requires read permissions on it.  If home as well
as .ssh are 700, sshd has neither of these rights ==> The check for .ssh
fails.

Qed,
Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Developer                                mailto:cygwin AT cygwin DOT com
Red Hat, Inc.

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/