From c8475ea679ee1b40300942976d29aec91d83ba1f Mon Sep 17 00:00:00 2001 From: Manoj Ampalam Date: Fri, 2 Jun 2017 22:32:03 -0700 Subject: [PATCH] Updated Security protection of various files in Win32 OpenSSH (markdown) --- Security-protection-of-various-files-in-Win32-OpenSSH.md | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/Security-protection-of-various-files-in-Win32-OpenSSH.md b/Security-protection-of-various-files-in-Win32-OpenSSH.md index 18f60d1..fdf2c89 100644 --- a/Security-protection-of-various-files-in-Win32-OpenSSH.md +++ b/Security-protection-of-various-files-in-Win32-OpenSSH.md @@ -62,4 +62,9 @@ PS C:\>icacls .\users\thisuser\.ssh\authorized_keys /remove otheruser2 PS C:\>icacls .\users\thisuser\.ssh\authorized_keys /remove `"NT SERVICE\sshd`" PS C:\>icacls .\users\thisuser\.ssh\authorized_keys /grant `"NT SERVICE\sshd`":`(R`) ``` +## Client side resources +### User private key files +User's private keys are user's credentials. To prevent unauthorized access to these files, private keys need to be owned by the user and no other user should have access to host key files. +### ssh_config +User level default ssh_config is located in user's profile (~/.ssh/config). This has similar restrictions as the user's private keys described above.