Fix Permissions for Private Key are Too Open with SSH

Cyrus Kao02 Feb 2022

Last modified on 22 Apr 2023 @ 06:07:26.

The default file permission on Linux is 777, which means everyone can read, write and execute the file. It's fine for most of the scenario, but it's another story when it comes to SSH private key. If you try to establish an SSH connection with a too open private key, WARNING: UNPROTECTED PRIVATE KEY FILE! will be shown.

Error message — `openssh` with a permissions too open key

Solution

To solve the problem is quite easy, simply change your SSH private key's permissions.

In the following, we will take ~/.ssh/id_rsa as an example, change it to your actual key path.

Read Only (Recommended)

Change it to only readable by the owner:

$ sudo chmod 400 ~/.ssh/id_rsa

Read and Write

Or grant read and write permissions to the owner:

$ sudo chmod 600 ~/.ssh/id_rsa

Comments

Fix SSH "Remote Host Identification has Changed" on Linux

If you encounter the error WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! while connecting to your remote machine through SSH, it means the identification key on the server is not the same as the last connection. To fix this, simply remove the host's key from ~/.ssh/known_hosts.

Two Ways to Install Packages from AUR on Arch Linux/Manjaro

Just like Debian/Ubuntu's package manager apt, Arch Linux/Manjaro has its own package manager called pacman to help you install packages. But the story doesn't end there. On Arch-based Linux you can even install community-maintained packages from AUR (Arch User Repository), which is a lot like PPA (Personal Package Archive) of Ubuntu.

Configure PPPoE DSL Connection on Arch Linux/Manjaro with pppoe-setup

Most ISPs (Internet Service Providers) offer multiple dynamic IP addresses and even come with a static one. To take advantage of that, we'll be setting up a PPPoE (Point-to-Point Protocol over Ethernet) DSL (Digital Subscriber Line) connection on our own machine to obtain an independent IP address.

Auto-Renew Let's Encrypt Free Certificates for Nginx on Linux

More than 75% of all websites use HTTPS nowadays. Serving content over HTTPS is not only good practice for search engine optimization (SEO), but essential for security reasons, especially for those requests containing sensitive information.

Table of Contents

Comments