Bug 1909

Summary: "WARNING: UNPROTECTED PRIVATE KEY FILE!" warning needs an actionable step
Product: Portable OpenSSH Reporter: zhitomirskiyi
Component: sshAssignee: Assigned to nobody <unassigned-bugs>
Status: CLOSED WONTFIX    
Severity: trivial CC: djm, zhitomirskiyi
Priority: P2    
Version: -current   
Hardware: All   
OS: All   

Description zhitomirskiyi 2011-05-26 14:22:23 AEST 
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@         WARNING: UNPROTECTED PRIVATE KEY FILE!          @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0644 for '........./.ssh/id_rsa' are too open.
It is recommended that your private key files are NOT accessible by others.
This private key will be ignored.
bad permissions: ignore key: ...../.ssh/id_rsa
Permission denied (publickey).


This needs to say something along the lines of we recommend changing the permissions of ~/.ssh/id_rsa and ~/.ssh/id_rsa.pub to 600
Comment 1 Damien Miller 2015-04-17 23:33:30 AEST 
The wording is a little stronger now, but it contains all the information needed.
Comment 2 Damien Miller 2015-08-11 23:03:43 AEST 
Set all RESOLVED bugs to CLOSED with release of OpenSSH 7.1