search

operasoftware / ssh-key-authority

A tool for managing SSH key access to any number of servers.
Apache License 2.0
456 stars 71 forks source link

Centos 8 wrong permissions #46

Closed antonzhelyazkov closed 4 years ago

antonzhelyazkov commented 4 years ago

Hi Opera Team,

SKA is brilliant software. I use it for several months and works great. I have issue with Centos 8 installations. When I add new key all key file permissions changes to 0600 and no one can login except root. For example:

ll /var/local/keys-sync/
total 16
-rw------- 1 keys-sync keys-sync 1658 May 11 22:22 user2
-rw-r--r-- 1 root      root      1414 May 11 22:21 keys-sync
-rw------- 1 keys-sync keys-sync 2338 May 11 22:22 user1
-rw------- 1 keys-sync keys-sync  292 May 11 22:22 root

Could you help me to deal with this issue?

thomas-pike commented 4 years ago

Hi

I'm not as familiar with Centos as I am with Debian/Ubuntu, but I would check what umask settings you have for the keys-sync user and for the system in general. That is what would typically cause a file to be created with lower permissions than intended. It looks like you might have a umask of 0077 here perhaps.

antonzhelyazkov commented 4 years ago

Hi, I found where is my mistake. User shell have to be /bin/bash