From b556ef0aed1ff0ac253b00798294ebb7a34259b5 Mon Sep 17 00:00:00 2001 From: landry <> Date: Sun, 12 Feb 2017 08:59:52 +0000 Subject: [PATCH] Add /root/.ssh/authorized_keys to /etc/mtree/special so that security(8) checks for the correct mode/ownership. prodded by ajacoutot@ --- src/etc/mtree/special | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/src/etc/mtree/special b/src/etc/mtree/special index 5ecc5863..a6c7d1ad 100644 --- a/src/etc/mtree/special +++ b/src/etc/mtree/special @@ -1,4 +1,4 @@ -# $OpenBSD: special,v 1.122 2016/12/27 09:17:52 jca Exp $ +# $OpenBSD: special,v 1.123 2017/02/12 08:59:52 landry Exp $ # # Hand-crafted mtree specification for the dangerous files. # @@ -121,6 +121,9 @@ root type=dir mode=0700 uname=root gname=wheel .login type=file mode=0644 uname=root gname=wheel .profile type=file mode=0644 uname=root gname=wheel .rhosts type=file mode=0600 uname=root gname=wheel optional +.ssh type=dir mode=0700 uname=root gname=wheel +authorized_keys type=file mode=0600 uname=root gname=wheel +.. #root/.ssh .. #root sbin type=dir mode=0755 uname=root gname=wheel ignore