Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Date: Thu, 18 Aug 2005 11:12:02 -0400 (EDT)
From: Igor Pechtchanski <pechtcha AT cs DOT nyu DOT edu>
Reply-To: cygwin AT cygwin DOT com
To: Andrew DeFaria <Andrew AT DeFaria DOT com>
cc: cygwin AT cygwin DOT com
Subject: Re: Permissions on .ssh/id_rsa
In-Reply-To: <de27im$sqh$1@sea.gmane.org>
Message-ID: <Pine.GSO.4.61.0508181110320.9560@slinky.cs.nyu.edu>
References: <20050817201613 DOT GA13524 AT SDF DOT LONESTAR DOT ORG> <4303DDEB DOT F45A3616 AT dessent DOT net>  <20050818134424 DOT GA4219 AT SDF DOT LONESTAR DOT ORG> <de27im$sqh$1 AT sea DOT gmane DOT org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII

On Thu, 18 Aug 2005, Andrew DeFaria wrote:

> Christopher Benson-Manica wrote:
>
> > > > How does one set permissions on id_rsa in such a way as to make ssh
> > > > happy? Nothing I have done has made chmod 700 id_rsa actually work.
> > >
> > > chmod 600 has always worked fine for me.
> >
> > [09:39:44][cbenson AT Prog09:~/.ssh]> ls -l id_rsa
> > -rw-r--r-- 1 cbenson mkpasswd 887 Aug 17 15:54 id_rsa
> > [09:40:11][cbenson AT Prog09:~/.ssh]> chmod 600 id_rsa
> > [09:40:20][cbenson AT Prog09:~/.ssh]> ls -l id_rsa
> > -rw-r--r-- 1 cbenson mkpasswd 887 Aug 17 15:54 id_rsa
> >
> > Pretty annoying stuff...
> >
> > > We will probably need more information: Output of "cygcheck -svr" and
> >
> > See cygcheck.log, attached.
> >
> > > "ls -ld / /home ~ ~/.ssh ~/.ssh/id_rsa" would be a good start.
> >
> > [09:41:44][cbenson AT Prog09:~/.ssh]> ls -ld / /home ~ ~/.ssh
> > ~/.ssh/id_rsa
> > ls: /home: No such file or directory
> > drwxrwxrwx+ 15 cbenson mkpasswd 0 Aug 17 16:05 /
> > drwxr-xr-x 1 cbenson mkpasswd 65536 Aug 17 17:12 /cygdrive/h
> > drwxr-xr-x 1 cbenson mkpasswd 4096 Aug 17 16:04 /cygdrive/h/.ssh
> > -rw-r--r-- 1 cbenson mkpasswd 887 Aug 17 15:54 /cygdrive/h/.ssh/id_rsa
>
> It appears as if your home directory is on the H drive and this is
> mounted from another system. Thus CYGWIN=ntsec does not apply because
> this is a share mounted using SMB. Thus, as I said before, you need to
> set CYGWIN=smbntsec and try again.

This would also produce a chicken-and-egg problem for the OP: if the share
requires authentication, id_rsa won't be accessible until the user types
in a password, thus preventing any hope of public key authentication.
	Igor
-- 
				http://cs.nyu.edu/~pechtcha/
      |\      _,,,---,,_		pechtcha AT cs DOT nyu DOT edu
ZZZzz /,`.-'`'    -.  ;-;;,_		igor AT watson DOT ibm DOT com
     |,4-  ) )-,_. ,\ (  `'-'		Igor Pechtchanski, Ph.D.
    '---''(_/--'  `-'\_) fL	a.k.a JaguaR-R-R-r-r-r-.-.-.  Meow!

If there's any real truth it's that the entire multidimensional infinity
of the Universe is almost certainly being run by a bunch of maniacs. /DA

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/