Comments on: Easy password-less SSH login http://techblog.zabuchy.net/2010/simple-password-less-ssh-login/?utm_source=rss&utm_medium=rss&utm_campaign=simple-password-less-ssh-login GNU/Linux, Open Source and 42 Tue, 15 May 2012 08:03:53 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: jimcooncat http://techblog.zabuchy.net/2010/simple-password-less-ssh-login/comment-page-1/#comment-52 jimcooncat Sun, 06 Jun 2010 13:34:59 +0000 http://techblog.zabuchy.net/?p=120#comment-52 If you have multiple users, or if there's ever the possibility of multiple users on your computer in the future, you need to ensure that this file is not readable by them. It appears that ssh-keygen does the right thing, allowing only the owner of the file access to it. ls -al .ssh/ will let you verify it. You should see something like: -rwx------ 1 you you 736 2007-05-15 11:26 id_dsa or -rwx------ 1 you you 736 2007-05-15 11:26 id_rsa Where some people get in trouble with sensitive files is with backup schemes. That is, the backups don't enforce the permissions and others can get access to the file. If you have multiple users, or if there’s ever the possibility of multiple users on your computer in the future, you need to ensure that this file is not readable by them.

It appears that ssh-keygen does the right thing, allowing only the owner of the file access to it.

ls -al .ssh/
will let you verify it. You should see something like:
-rwx—— 1 you you 736 2007-05-15 11:26 id_dsa
or
-rwx—— 1 you you 736 2007-05-15 11:26 id_rsa

Where some people get in trouble with sensitive files is with backup schemes. That is, the backups don’t enforce the permissions and others can get access to the file.

]]> By: Dmitrijs Ledkovs http://techblog.zabuchy.net/2010/simple-password-less-ssh-login/comment-page-1/#comment-49 Dmitrijs Ledkovs Sat, 05 Jun 2010 02:00:22 +0000 http://techblog.zabuchy.net/?p=120#comment-49 Or install seahorse-plugins, when it asks for the password for the first time click details and tick to unlock when you login. Or install seahorse-plugins, when it asks for the password for the first time click details and tick to unlock when you login.

]]>