MIDRANGE dot COM Mailing List Archive



Home » MIDRANGE-L » September 2014

Re: sshd public key authentication error: bad ownership or modes



fixed

I had never looked at the authority on my .ssh directory. It sure appears
odd, to me.

*PUBLIC *NONE X X X X
BSYPGMR4 *RWX X X X X


I never changed the authorities,

John McKee



On Tue, Sep 2, 2014 at 2:19 PM, David Gibbs <david@xxxxxxxxxxxx> wrote:

On 9/2/2014 1:39 PM, David Gibbs wrote:
debug1: trying public key file /home/SECDMG/.ssh/authorized_keys
Authentication refused: bad ownership or modes for file /home/SECDMG

Tweaked the permissions on my home directory and .ssh directory and now
I'm getting this error:

In Function:user_key_allowed2 AD CALLING FUNCTION :restore_uid

I found a reference to this on
http://forums.iprodeveloper.com/forums/aft/147633, but all the files in
.ssh are ccsid 819.

Key pair was generated in QP2TERM.

IBM i authorities for my home dir are:

User Authority Exist Mgt Alter Ref
*PUBLIC *RX X
SECDMG *RWX X X X X

IBM i authorities for .ssh are:

User Authority Exist Mgt Alter Ref
*PUBLIC *NONE X
SECDMG *RWX X X X X

IFS permissions are:

drwxr-xr-x 5 secdmg 0 24576 Sep 02 13:45 .
drwx------ 2 secdmg 0 8192 Sep 02 13:56 .ssh

david
--
IBM i on Power Systems: For when you can't afford to be out of business!

I'm riding a metric century (100 km / 62 miles) in the 2015 American
Diabetes Association's Tour de Cure to raise money for diabetes research,
education, advocacy, and awareness. You can make a tax deductible donation
to my ride by visiting http://email.diabetessucks.net. My goal is $5500
but any amount is appreciated.

See where I get my donations from ... visit
http://email.diabetessucks.net/mapdonations.php for an interactive map
(it's a geeky thing).
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.







Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2014 by MIDRANGE dot COM and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available here. If you have questions about this, please contact