On Fri, May 02, 2025 at 12:54:28PM +0200, Clemens Lang wrote: > Hi, > > > On 30. Apr 2025, at 19:54, Peter Pentchev <[email protected]> wrote: > > > > Is there a chance that there is some kind of mistake in your ~/.ssh/config > > file > > saying something like "IdentityFile /path/to/id_rsa.pub" so that OpenSSH > > would think that id_rsa.pub is a private keyfile and not a public one? > > Note that this is actually a valid configuration for cases where > the private key is in an HSM or other security module.
Ah, that actually makes sense, thank you! I don't have much experience with HSMs. > I guess OpenSSH just doesn’t know whether the file is a private or > public key by the time it checks the permissions, so in this case also > the public key needs to have limited permissions. Sounds like a reasonable consequence. G'luck, Peter -- Peter Pentchev [email protected] [email protected] [email protected] PGP key: https://www.ringlet.net/roam/roam.key.asc Key fingerprint 2EE7 A7A5 17FC 124C F115 C354 651E EFB0 2527 DF13
signature.asc
Description: PGP signature
-- _______________________________________________ devel mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
