]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 20572a8) | patch
ssh-generator: Make sure sshd can always read the authorized keys file
authorDaan De Meyer <daan@amutable.com>
Thu, 28 May 2026 09:26:05 +0000 (09:26 +0000)
committerDaan De Meyer <daan.j.demeyer@gmail.com>
Fri, 29 May 2026 14:12:45 +0000 (16:12 +0200)
commit0a633184206150cdadce61bfaa402b689903631c
tree9e2805ac900ccc31d86b56e03283a9e62ef02b45tree | snapshot
parent20572a8938dd017a23478a66c04f5768b763cb56commit | diff
ssh-generator: Make sure sshd can always read the authorized keys file

sshd reads AuthorizedKeysFile after dropping to the authenticating user's UID, so the
0400 credential file under %d/ is unreadable for non-root users. Materialize a 0444
copy in a RuntimeDirectory so the ephemeral key works for any user. */
src/ssh-generator/ssh-generator.c diff | blob | blame | history
src/vmspawn/vmspawn.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.