[ale] ssh authorized_keys2, what am I missing?
Michael B. Trausch
fd0man at gmail.com
Wed Jun 8 15:30:38 EDT 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Joe Sechman wrote:
>
> This actually reminds me of a personal BOFH story when one of our
> users thought it would be *convenient* to 'chmod 777' his home
> directory to *share* files....it worked for that session, but then he
> couldn't re-auth b/c his ssh home-dir permissions were too liberal.
> It sure was fun to *re-educate*... meet chattr!
>
hahaha... Riight... Share a folder in the home-dir by making it 777 but
keep the home-dir at 0711. If were talking about user 'jack', then this
prevents someone from seeing their directory, but permitted to visit the
share directory (if they know it's name):
mtrausch at ibm-mtrausch:~$ cd /home/jack
mtrausch at ibm-mtrausch:/home/jack$ ls -l
/usr/bin/ls: .: Permission denied
mtrausch at ibm-mtrausch:/home/jack$ cd dir
mtrausch at ibm-mtrausch:/home/jack/dir$ ls -l
total 0
mtrausch at ibm-mtrausch:/home/jack/dir$
- Mike
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFCp0TEPXInbkqM7nwRA0lMAJ9NMWFZn8GW1MBT7D8wu4ZoQ5hrjQCgnUi6
JiJka4B3gHRY04zM/nknUc0=
=42Md
-----END PGP SIGNATURE-----
More information about the Ale
mailing list