tyler.durden/Win32-OpenSSH
1
0
Fork 0
mirror of https://github.com/PowerShell/Win32-OpenSSH.git synced 2025-07-22 05:24:43 +02:00
Code Issues Packages Projects Releases Wiki Activity

Updated OpenSSH utility scripts to fix file permissions (markdown)

Yanbing 2017-06-02 19:39:04 -07:00
parent 4be5fe3a83
commit caaa3e31eb
1 changed files with 7 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
OpenSSH-utility-scripts-to-fix-file-permissions.md

@ -1,6 +1,6 @@
Powershell utility scripts are included starting release [V0.0.15.0](https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v0.0.15.0) to automatically fix the permissions on various keys and configuration files for host and user. [Secure protection of various files](https://github.com/PowerShell/Win32-OpenSSH/wiki/Security-protection-of-various-files-in-Win32-OpenSSH) explains why secure enforcement is needed. Powershell utility scripts are included starting release [V0.0.15.0](https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v0.0.15.0) to automatically fix the permissions on various keys and configuration files for host and user. [Secure protection of various files](https://github.com/PowerShell/Win32-OpenSSH/wiki/Security-protection-of-various-files-in-Win32-OpenSSH) explains why secure enforcement is needed.
- `FixHostFilePermissions.ps1`: checks and fixes the below permissions on default host files: - `FixHostFilePermissions.ps1`: checks and fixes the below permissions on default host files:
- user's authorized_keys located at ```$env:systemdrive\Users\...\.ssh\authorized_keys``` - user's authorized_keys located at `$env:systemdrive\Users\...\.ssh\authorized_keys`
- host keys generated by `ssh-keygen.exe -A` in the same folder of the script - host keys generated by `ssh-keygen.exe -A` in the same folder of the script
- sshd_config in the same folder of the script - sshd_config in the same folder of the script
@ -9,9 +9,9 @@ Powershell utility scripts are included starting release [V0.0.15.0](https://git
.\FixHostFilePermissions.ps1 .\FixHostFilePermissions.ps1
``` ```
- `FixUserFilePermissions.ps1`: checks and fixes the below file permissions for user's default files: - `FixUserFilePermissions.ps1`: checks and fixes the below file permissions for user's default files:
- user's ssh_config located at ~\.ssh\config - user's ssh_config located at `~\.ssh\config`
- user's keys located at ~\.ssh\id_rsa, id_rsa.pub - user's keys located at `~\.ssh\id_rsa`, `~\.ssh\id_rsa.pub`
- user's keys located at ~\.ssh\id_dsa, id_dsa.pub - user's keys located at `~\.ssh\id_dsa`, `~\.ssh\id_dsa.pub`
```PowerShell ```PowerShell
# -Quiet suppresses prompting to confirm you want to update each permission # -Quiet suppresses prompting to confirm you want to update each permission
@ -29,8 +29,8 @@ Import-Module .\OpenSSHUtils.psm1 -Force
# prompt to confirm you want to confirm you want to update each permission on the file # prompt to confirm you want to confirm you want to update each permission on the file
Fix-HostSSHDConfigPermissions c:\test\sshd_config Fix-HostSSHDConfigPermissions c:\test\sshd_config
# -Quiet suppresses prompting to confirm you want to update each permission on the file # -Quiet suppresses prompting to confirm you want to update each permission on the file
Fix-HostKeyPermissions -FilePath c:\test\sshtest_userssokey_ed25519 -Quiet Fix-HostKeyPermissions -FilePath c:\test\sshtest_hostkey_ecdsa -Quiet
Fix-AuthorizedKeyPermissions -FilePath C:\Users\sshtest_ssouser\.ssh\authorized_keys -Quiet Fix-AuthorizedKeyPermissions -FilePath C:\Users\sshtest_ssouser\.ssh\authorized_keys -Quiet
Fix-HostUserPermissions -FilePath c:\test\sshtest_hostkey_ecdsa -Quiet Fix-HostUserPermissions -FilePath c:\test\sshtest_userssokey_ed25519 -Quiet
Fix-UserSSHConfigPermissions -FilePath ~\.ssh\config -Quiet Fix-UserSSHConfigPermissions -FilePath '~\.ssh\config' -Quiet
``` ```