- mcbride@cvs.openbsd.org 2008/02/09 12:15:43
[ssh.1 sshd.8]
Document the correct permissions for the ~/.ssh/ directory.
ok jmc
diff --git a/ssh.1 b/ssh.1
index 81d4047..35e29cc 100644
--- a/ssh.1
+++ b/ssh.1
@@ -34,8 +34,8 @@
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
.\"
-.\" $OpenBSD: ssh.1,v 1.271 2008/01/19 19:13:28 djm Exp $
-.Dd $Mdocdate: January 19 2008 $
+.\" $OpenBSD: ssh.1,v 1.272 2008/02/09 12:15:43 mcbride Exp $
+.Dd $Mdocdate: February 9 2008 $
.Dt SSH 1
.Os
.Sh NAME
@@ -1245,6 +1245,13 @@
but allows host-based authentication without permitting login with
rlogin/rsh.
.Pp
+.It ~/.ssh/
+This directory is the default location for all user-specific configuration
+and authentication information.
+There is no general requirement to keep the entire contents of this directory
+secret, but the recommended permissions are read/write/execute for the user,
+and not accessible by others.
+.Pp
.It ~/.ssh/authorized_keys
Lists the public keys (RSA/DSA) that can be used for logging in as this user.
The format of this file is described in the