X-Recipient: archive-cygwin AT delorie DOT com DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:mime-version:in-reply-to:references:date :message-id:subject:from:to:content-type; q=dns; s=default; b=Z5 kxjEyWaUk8aNRWXJ5fAEg1apRpVjc2H8MYUlCg0+54AvKuOomw0y3AQLlVn7Zipv dDVk//G7lisr3myierWy9gV1/mMOVHe/L5yNuYB0Gs1yCzUG7qbvTSDvhCDMf9/A 7i7w7n7FhIwHFpl5IS6bjSuJ1hCCj6Ku+AFNGwjoQ= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:mime-version:in-reply-to:references:date :message-id:subject:from:to:content-type; s=default; bh=e+1usB9P eoZyKkdhV2sDajeeywk=; b=VcCt2GTHzh2jeOGF4hcLo7TwNGFiCRFbQD/9feVZ FUxIFvL4qYttrmOz85cW56IC7AGyD4JnrcVw6vb091NIhYA+dbI9VYAvBRpOJDGL jfCvctlsovPGAs12pXubC24wEpTHhi8gCqzITVHXWmNGLvXHF3fSniT/jIYcJc8/ ptA= Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=-0.2 required=5.0 tests=AWL,BAYES_20,FREEMAIL_ENVFROM_END_DIGIT,FREEMAIL_FROM,RCVD_IN_DNSWL_LOW,SPF_PASS autolearn=ham version=3.3.2 X-HELO: mail-wg0-f45.google.com MIME-Version: 1.0 X-Received: by 10.194.6.199 with SMTP id d7mr27448350wja.124.1418392182247; Fri, 12 Dec 2014 05:49:42 -0800 (PST) In-Reply-To: <20141206194943.GD3810@calimero.vinschen.de> References: <20141206194943 DOT GD3810 AT calimero DOT vinschen DOT de> Date: Fri, 12 Dec 2014 08:49:42 -0500 Message-ID: Subject: Re: TEST RELEASE: Cygwin 1.7.34-002 From: Michael DePaulo To: The Cygwin Mailing List Content-Type: text/plain; charset=UTF-8 X-IsSubscribed: yes On Sat, Dec 6, 2014 at 2:49 PM, Corinna Vinschen wrote: > I finally released another TEST version of the next upcoming Cygwin > release. The version number is 1.7.34-002. I *think* I am experiencing a very bad regression. These are the Windows permissions on my ~/.ssh/id_rsa file: C:\cygwin\home\mike\.ssh>icacls id_rsa id_rsa NT AUTHORITY\SYSTEM:(F) DEPAULO\mike:(R,W,D,WDAC,WO) Under cygwin 1.7.33-2, I am able to use the file fine: mike AT executor ~ $ uname -a CYGWIN_NT-6.3-WOW64 executor 1.7.33-2(0.280/5/3) 2014-11-13 15:45 i686 Cygwin mike AT executor ~ $ ssh galactica Enter passphrase for key '/home/mike/.ssh/id_rsa': Last login: Fri Dec 12 08:36:39 2014 from executor.depaulo.org mike AT galactica:~ :) [1] $ exit logout Connection to galactica closed. mike AT executor ~ $ cd .ssh mike AT executor ~/.ssh $ ls -latr id_rsa -rw------- 1 mike mkpasswd 1743 Dec 7 2013 id_rsa But under 1.7.34-002, I get a permissions error: mike AT executor ~ $ uname -a CYGWIN_NT-6.3-WOW64 executor 1.7.34(0.282/5/3) 2014-12-06 18:03 i686 Cygwin mike AT executor ~ $ ssh galactica @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: UNPROTECTED PRIVATE KEY FILE! @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ Permissions 0670 for '/home/mike/.ssh/id_rsa' are too open. It is recommended that your private key files are NOT accessible by others. This private key will be ignored. key_load_private_type: bad permissions mike AT galactica's password: mike AT executor ~ $ cd .ssh mike AT executor ~/.ssh $ ls -latr id_rsa -rw-rwx---+ 1 mike Domain Users 1743 Dec 7 2013 id_rsa -Mike -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple