openssh bugs - Mar 2015 - [Bug 2372] New: Print warning when file permissions too loose for ssh key authentication

https://bugzilla.mindrot.org/show_bug.cgi?id=2372

            Bug ID: 2372
           Summary: Print warning when file permissions too loose for ssh
                    key authentication
           Product: Portable OpenSSH
           Version: 6.9p1
          Hardware: 68k
                OS: Mac OS X
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: ssh
          Assignee: unassigned-bugs at mindrot.org
          Reporter: andrew.pennebaker at gmail.com

SSH key configuration is the bane of my existence. No matter how I
check and double-check file permissions, there's always that one file
or folder that I forget about, that silently triggers SSH ignoring my
painstakingly configured SSH key setup, dropping me into a password
authentication prompt.

In the future, could ssh please display a warning about the file or
folder with improper permissions when attempting key-based
authentication? It would really help out newbies.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.

https://bugzilla.mindrot.org/show_bug.cgi?id=2372

Darren Tucker <dtucker at zip.com.au> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |dtucker at zip.com.au
            Version|6.9p1                       |6.8p1

--- Comment #1 from Darren Tucker <dtucker at zip.com.au> ---
This was added a while ago.  For OpenSSH clients they're shown at
loglevel "debug" and higher.

https://anongit.mindrot.org/openssh.git/commit/?id=48147d6801be6b9158c4bcedce6c67b0d591d642

queue auth debug messages for bad ownership or permissions on the
user's
keyfiles. These messages will be sent after the user has successfully
authenticated (where our client will display them with LogLevel=debug

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.

https://bugzilla.mindrot.org/show_bug.cgi?id=2372

Darren Tucker <dtucker at zip.com.au> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|---                         |WORKSFORME

--- Comment #2 from Darren Tucker <dtucker at zip.com.au> ---
Closing because of the aforementioned change.  Please reopen if you can
demonstrate conditions under which the information is not sent and
we'll see if we can fix it.

Thanks.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.

https://bugzilla.mindrot.org/show_bug.cgi?id=2372

Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|RESOLVED                    |CLOSED

--- Comment #3 from Damien Miller <djm at mindrot.org> ---
Close all resolved bugs after 7.3p1 release

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.