From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <bug-guix-bounces+larch=yhetil.org@gnu.org>
Received: from mp11.migadu.com ([2001:41d0:8:6d80::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by ms0.migadu.com with LMTPS
	id AAZRHCNg/GE38QAAgWs5BA
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Fri, 04 Feb 2022 00:07:15 +0100
Received: from aspmx1.migadu.com ([2001:41d0:8:6d80::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by mp11.migadu.com with LMTPS
	id GDuYGSNg/GHHYgEA9RJhRA
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Fri, 04 Feb 2022 00:07:15 +0100
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by aspmx1.migadu.com (Postfix) with ESMTPS id E49CB3F733
	for <larch@yhetil.org>; Fri,  4 Feb 2022 00:07:14 +0100 (CET)
Received: from localhost ([::1]:54110 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	id 1nFlC6-0006eC-1e
	for larch@yhetil.org; Thu, 03 Feb 2022 18:07:14 -0500
Received: from eggs.gnu.org ([209.51.188.92]:53128)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1nFlBu-0006cU-GQ
 for bug-guix@gnu.org; Thu, 03 Feb 2022 18:07:02 -0500
Received: from debbugs.gnu.org ([209.51.188.43]:36120)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1nFlBu-0000ZK-7A
 for bug-guix@gnu.org; Thu, 03 Feb 2022 18:07:02 -0500
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1nFlBt-0004Mf-Tn
 for bug-guix@gnu.org; Thu, 03 Feb 2022 18:07:01 -0500
X-Loop: help-debbugs@gnu.org
Subject: bug#53752: guix home symlink permissions
Resent-From: Thiago Jung Bauermann <bauermann@kolabnow.com>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: bug-guix@gnu.org
Resent-Date: Thu, 03 Feb 2022 23:07:01 +0000
Resent-Message-ID: <handler.53752.B53752.164392961816765@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 53752
X-GNU-PR-Package: guix
X-GNU-PR-Keywords: 
To: Zacchaeus Scheffer <zaccysc@gmail.com>
Cc: 53752@debbugs.gnu.org
Received: via spool by 53752-submit@debbugs.gnu.org id=B53752.164392961816765
 (code B ref 53752); Thu, 03 Feb 2022 23:07:01 +0000
Received: (at 53752) by debbugs.gnu.org; 3 Feb 2022 23:06:58 +0000
Received: from localhost ([127.0.0.1]:58250 helo=debbugs.gnu.org)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
 id 1nFlBp-0004ML-Rh
 for submit@debbugs.gnu.org; Thu, 03 Feb 2022 18:06:58 -0500
Received: from mx.kolabnow.com ([212.103.80.155]:36920)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <bauermann@kolabnow.com>) id 1nFlBl-0004M4-Vo
 for 53752@debbugs.gnu.org; Thu, 03 Feb 2022 18:06:56 -0500
Received: from localhost (unknown [127.0.0.1])
 by mx.kolabnow.com (Postfix) with ESMTP id 1EDF912E6;
 Fri,  4 Feb 2022 00:06:43 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kolabnow.com; h=
 content-type:content-type:content-transfer-encoding:mime-version
 :references:in-reply-to:message-id:date:date:subject:subject
 :from:from:received:received:received; s=dkim20160331; t=
 1643929602; x=1645744003; bh=Od/xB3erBd5mF1+7a2GwR5erhVmDGV0FHPs
 TD/39MdE=; b=Qp7eJMeUF/7G2SzehYiRC26yCSqsYS+46zRYO5YqdZH9ngdhBWi
 dMeWmo+mCT0NYvemVD7cRWz2sbU0LX15lapbNkbG9NyrsKtN0uDOKQQyjTPG5t/o
 MvEyBjQLzyuRO6O9zvjifl5qC+YLCOiClHcj3zUXWDL5pNaPZ38uWtFNqiUtdzFD
 oym4gC6DyepkF+qqinlGN4YF//agA2OiZJ+XzCtfgLYyXfO9PgHBgtPUjxe4/GYW
 Hx0ZhobtBD0NnK3vs46hxrq1wGpjyIEUS80weaceZJ+bhW8xrvbggeILV1baK215
 4wSjfKdMCnfug7XXdfVykt1wq3gwIk9y3saCLO4coZ7C+hoR2ifGaoHFLseGn/9Z
 hd2NvmFNenIvSD1HO6P37Elj0T2YfxZsmNdNdsBqepNUAZVzva72301lr6ny8ahi
 BxG0hPXH054c0TrKH8qkEzG9ASAdkCr4381sepVSe+6zQsopOQI15yl87fQ1lI45
 Te8QEiaQvP64UoxkF3AczJzjy1rcIeoZWT7p+GSQi43zetf9Feftnd0kPmoOzNY9
 UUP1QLamVrLGJFJf29lJ/XDgQ1rgr5NPKiRVEj5OPQs0C0bg/IuidO73nDgyxiNQ
 jxQhL9+iAALlSbXGd4CAFlI34F+VAghrQGp+yt4igWFUREN4i+/2IUyQ=
X-Virus-Scanned: amavisd-new at mykolab.com
Received: from mx.kolabnow.com ([127.0.0.1])
 by localhost (ext-mx-out002.mykolab.com [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id 2ChMi2-Fp4CF; Fri,  4 Feb 2022 00:06:42 +0100 (CET)
Received: from int-mx002.mykolab.com (unknown [10.9.13.2])
 by mx.kolabnow.com (Postfix) with ESMTPS id 96D7EB53;
 Fri,  4 Feb 2022 00:06:35 +0100 (CET)
Received: from ext-subm002.mykolab.com (unknown [10.9.6.2])
 by int-mx002.mykolab.com (Postfix) with ESMTPS id 19D312F9A;
 Fri,  4 Feb 2022 00:06:34 +0100 (CET)
Date: Thu, 03 Feb 2022 20:06:25 -0300
Message-ID: <68523536.hgpfNYuzMs@popigai>
In-Reply-To: <CAJejy7mVv5whyc3nJt3e8S+DkKyZbRdoXRNT5q-DdVdJNLfX4A@mail.gmail.com>
References: <CAJejy7=okwP6Sous-ab_Ta44CgDDT9i795AxBcaZKyWaM8WErQ@mail.gmail.com>
 <1737102.PxY0oXxzeL@popigai>
 <CAJejy7mVv5whyc3nJt3e8S+DkKyZbRdoXRNT5q-DdVdJNLfX4A@mail.gmail.com>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="UTF-8"
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
X-BeenThere: bug-guix@gnu.org
List-Id: Bug reports for GNU Guix <bug-guix.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/bug-guix>
List-Post: <mailto:bug-guix@gnu.org>
List-Help: <mailto:bug-guix-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=subscribe>
Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org
Sender: "bug-Guix" <bug-guix-bounces+larch=yhetil.org@gnu.org>
Reply-to:  Thiago Jung Bauermann <bauermann@kolabnow.com>
From:  Thiago Jung Bauermann via Bug reports for GNU Guix <bug-guix@gnu.org>
X-Migadu-Flow: FLOW_IN
X-Migadu-Country: US
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org;
	s=key1; t=1643929635;
	h=from:from:sender:sender:reply-to:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:resent-cc:
	 resent-from:resent-sender:resent-message-id:in-reply-to:in-reply-to:
	 references:references:list-id:list-help:list-unsubscribe:
	 list-subscribe:list-post:dkim-signature;
	bh=Od/xB3erBd5mF1+7a2GwR5erhVmDGV0FHPsTD/39MdE=;
	b=TiH85Oyk/T0h/v2u91L34tleymIyJ2hmQJ3a/gsyapFsiiGJuUPV0OqHHWVT6XQC4B9lT1
	mK7ZeSLlGLOvttEotZXVf2QTooL21ISlQ8rd7dLB8XIN/SIsvl8+53SeCxLV65Tz3/FAHs
	co7OKBU6DidZckTxMaGgGlzGnnvbQpaShC+Cz3yDtvkm8LkpuJ6xr1GzlHl0dHSbP4wlXz
	58XuzqmsXSeq0HIqkgO2g71QRFGS73jOM8tQvsBFrxNWzDMDPDDKuTtRTPZCPcgIWb6o2u
	4qI2fAOUpVga2fYgMuKQQDBgdKq6Cl4++0Uy/i3QDLiOK5CzEmDJzzWeQnNsog==
ARC-Seal: i=1; s=key1; d=yhetil.org; t=1643929635; a=rsa-sha256; cv=none;
	b=HoVaSrum0qfIlxIdmAouUMmo6ZGN/1JdKoGDhQfKZcjpVFdghR534jX8LbYlN/HGyI9J7a
	LO6zurDJOM4D+lqkNlXMGxXDkxe4Nrj68R0j4Fx6EwAMvX1DyD40nxdp22845lj3s818QQ
	z2AxWdstSUI9bYS6AbJrpwqpFyRMGi7YNMhXeIXZSt0dARIoW9LRHSnxWDZt58MnQiFSOZ
	jz9GxNuQ77WOxHiTb+Jqnrfi/a50YS532UA0y3xGR/gy+1r51RsRQ2VB+Cd2tiGTa3wWao
	elNeJJ2WafwMkr681NH5eSbtrMQG4HKVdFrKwa7678npREqZpO0T002evIhUdg==
ARC-Authentication-Results: i=1;
	aspmx1.migadu.com;
	dkim=fail ("headers rsa verify failed") header.d=kolabnow.com header.s=dkim20160331 header.b=Qp7eJMeU;
	dmarc=pass (policy=none) header.from=gnu.org;
	spf=pass (aspmx1.migadu.com: domain of "bug-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="bug-guix-bounces+larch=yhetil.org@gnu.org"
X-Migadu-Spam-Score: -3.93
Authentication-Results: aspmx1.migadu.com;
	dkim=fail ("headers rsa verify failed") header.d=kolabnow.com header.s=dkim20160331 header.b=Qp7eJMeU;
	dmarc=pass (policy=none) header.from=gnu.org;
	spf=pass (aspmx1.migadu.com: domain of "bug-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="bug-guix-bounces+larch=yhetil.org@gnu.org"
X-Migadu-Queue-Id: E49CB3F733
X-Spam-Score: -3.93
X-Migadu-Scanner: scn0.migadu.com
X-TUID: JjnjAvI29Jr3

Em quinta-feira, 3 de fevereiro de 2022, =C3=A0s 18:22:49 -03, Zacchaeus Sc=
heffer=20
escreveu:
> It seems the permissions on the symlink don't matter.  The problem is
> that the file linked to in the store is readable by everyone (which I am
> ok with because it's just public keys).
>=20
> There is a solution with guix system by configuring openssh directly (see
> openssh-configuration -> authorized-keys), but there really should be a
> way to do this with guix home.  (anyone that can call guix home for my
> user can see/modify my authorized_keys anyway)
>=20
> Maybe this bug should be renamed to something like "guix home cannot
> configure authorized_keys"?

Good idea. I just made that change.

I don=E2=80=99t use Guix Home and I don=E2=80=99t know much about its inter=
nals, so=20
unfortunately I can=E2=80=99t help much with this problem.

=2D-=20
Thanks,
Thiago