#5320 HIGH Update.: ssh reports "bad ownership or modes for directory /home/olpc"

Zarro Boogs per Child bugtracker at laptop.org
Wed Dec 19 12:06:52 EST 2007


#5320: ssh reports "bad ownership or modes for directory /home/olpc"
-------------------------------+--------------------------------------------
  Reporter:  MitchellNCharity  |       Owner:  cscott             
      Type:  defect            |      Status:  new                
  Priority:  high              |   Milestone:  Update.1           
 Component:  distro            |     Version:                     
Resolution:                    |    Keywords:  rainbow-integration
  Verified:  0                 |  
-------------------------------+--------------------------------------------

Comment(by cscott):

 No, .ssh is not group-writable, /home/olpc is.  I believe the issue is
 that an activity could rename the .ssh directory and create their own,
 since /home/olpc is writable by the group.  I believe that setting the
 sticky bit on /home/olpc would solve the problem:
 {{{
   When the sticky bit is set on a directory, a file in that directory may
   be unlinked or renamed only by the directory owner, the file owner,  or
   root.   Without  the  sticky bit, anyone able to write to the directory
   can delete or rename files.  The sticky bit is commonly found on direc-
   tories, such as /tmp, that are world-writable.
 }}}

 Michael, I don't know why it was necessary to make /home/olpc group-
 writable.  Would setting the sticky bit break your use?

-- 
Ticket URL: <http://dev.laptop.org/ticket/5320#comment:8>
One Laptop Per Child <http://dev.laptop.org>
OLPC bug tracking system



More information about the Bugs mailing list