Public key authentication impossible w/SSH client on Vista - SSH

This is a discussion on Public key authentication impossible w/SSH client on Vista - SSH ; On Microsoft, w/both the OpenSSH client for Windows (v 3.81) and PuTTY, I'm unable to change the file permission on the id_rsa file--used in public key authentication--to something that is acceptable to the client, i. e. user-read only permissions. Instead, ...

+ Reply to Thread
Results 1 to 3 of 3

Thread: Public key authentication impossible w/SSH client on Vista

  1. Public key authentication impossible w/SSH client on Vista

    On Microsoft, w/both the OpenSSH client for Windows (v 3.81) and PuTTY,
    I'm unable to change the file permission on the id_rsa file--used in
    public key authentication--to something that is acceptable to the
    client, i. e. user-read only permissions. Instead, the SSH client keeps
    complaining that the file permissions for id_rsa, "0644 are too open."

    I've tried using CYGWIN's chmod.exe utility for Windows to alter the
    file permissions to "0600", but that doesn't work on Vista However, it
    DOES work on XP and 2000.

    I've also tried using Microsoft's built-in setacls command to alter the
    file permissions on id_rsa. Again, it works on XP and 2000, but NOT on
    Vista.

    I did not copy the id_rsa file to a different location from its default,
    i. e. I just ran ssh-keygen, let it generate the id_rsa file in
    %USERPROFILE%/.ssh, and left it there. When I tried to run the SSH
    client, it complained that the perms on that id_rsa file were too open.
    And then, when I tried to alter it to "0600" w/chmod.exe and/or make
    it accessible only the current user w/SETACLS, SSH still claimed the
    file perms were still "0644" and failed to honor it.

    I'm curious if anyone else has encountered this problem, and if so, if
    there is a workaround.

    Please let me know. THANKS!

    --
    Posted via a free Usenet account from http://www.teranews.com


  2. Re: Public key authentication impossible w/SSH client on Vista

    Siva wrote:
    > On Microsoft, w/both the OpenSSH client for Windows (v 3.81) and PuTTY,
    > I'm unable to change the file permission on the id_rsa file--used in
    > public key authentication--to something that is acceptable to the
    > client, i. e. user-read only permissions. Instead, the SSH client keeps
    > complaining that the file permissions for id_rsa, "0644 are too open."
    >
    > I've tried using CYGWIN's chmod.exe utility for Windows to alter the
    > file permissions to "0600", but that doesn't work on Vista However, it
    > DOES work on XP and 2000.
    >
    > I've also tried using Microsoft's built-in setacls command to alter the
    > file permissions on id_rsa. Again, it works on XP and 2000, but NOT on
    > Vista.
    >
    > I did not copy the id_rsa file to a different location from its default,
    > i. e. I just ran ssh-keygen, let it generate the id_rsa file in
    > %USERPROFILE%/.ssh, and left it there. When I tried to run the SSH
    > client, it complained that the perms on that id_rsa file were too open.
    > And then, when I tried to alter it to "0600" w/chmod.exe and/or make it
    > accessible only the current user w/SETACLS, SSH still claimed the file
    > perms were still "0644" and failed to honor it.
    >
    > I'm curious if anyone else has encountered this problem, and if so, if
    > there is a workaround.
    >
    > Please let me know. THANKS!
    >


    FYI, I tried this using a (default) user account that had Administrative
    priveleges on the PC. Dunno if that makes a difference.

    --
    Posted via a free Usenet account from http://www.teranews.com


  3. Re: Public key authentication impossible w/SSH client on Vista

    Siva wrote:
    > On Microsoft, w/both the OpenSSH client for Windows (v 3.81) and PuTTY,
    > I'm unable to change the file permission on the id_rsa file--used in
    > public key authentication--to something that is acceptable to the
    > client, i. e. user-read only permissions. Instead, the SSH client keeps
    > complaining that the file permissions for id_rsa, "0644 are too open."


    I'm surprised that you say you're having this problem with PuTTY,
    because PuTTY _doesn't_ check the file permissions on the private
    key file. Exactly what error message do you see when you try this
    with PuTTY?
    --
    Simon Tatham "The voices in my head are trying to ignore me.
    But if I keep talking, I can drive them insane."

+ Reply to Thread