Benjamin Juang (ibneko) wrote,
Benjamin Juang
ibneko

sshd key troubles...

So I ran into a bit of an odd problem. The symptoms were:
I made a set of ssh keys to log into our set of webservers. The keys worked for a while then suddenly stopped working yesterday for all of the webservers. They would just be rejected by the server completely. However, if I moved the keys to another account's home directory, it worked perfectly when I tried to log in as the user.

So:
1) Keys were fine.
2) Key permissions were fine.
3) SSH was fine - I could log in as that user using the password.

I ended up checking /var/log/secure and discovered the following error:
"Authentication refused: bad ownership or modes for directory /home/userdude" (userdude is not the actual user name :D )

Turns out I had accidentally changed /home/userdude over to 777 (rwxrwxrwx). A quick google search revealed This page which suggested the home directory had to be tightened down to remove global and other write permissions: chmod go-w ~/

I ended up dropping the home directory down to 700 to simplify things.
Subscribe

  • NaNoWriMo 2012 Status

    NaNoWriMo status: Words written today: 3,345. Total: 7,745. I'm 3,921 short of where I should have been by the most recent midnight. 5588 words short…

  • Move, part 2

    Did another 4 trips over 5 hours with a local zipcar. Now my new apartment is a maze of boxes, trash bags, and paper bags with handles (trash bags…

  • Bah, stupid rain...

    So I went to UIUC this weekend to watch the J-net fashion show and hang out with friends there. Friends == quite good fun, although people are…

  • Post a new comment

    Error

    Anonymous comments are disabled in this journal

    default userpic

    Your reply will be screened

    Your IP address will be recorded 

  • 0 comments