Can anyone provide insight as to why git pull not working when StrictMode yes is set after deploying a new...
One-one communication
Why can't I install Tomboy in Ubuntu Mate 19.04?
Putting class ranking in CV, but against dept guidelines
Is it fair for a professor to grade us on the possession of past papers?
A term for a woman complaining about things/begging in a cute/childish way
What is the difference between a "ranged attack" and a "ranged weapon attack"?
Is multiple magic items in one inherently imbalanced?
What are the discoveries that have been possible with the rejection of positivism?
How do I find out the mythology and history of my Fortress?
What's the point of the test set?
Lagrange four-squares theorem --- deterministic complexity
Is there hard evidence that the grant peer review system performs significantly better than random?
Why do early math courses focus on the cross sections of a cone and not on other 3D objects?
How to identify unknown coordinate type and convert to lat/lon?
macOS: Name for app shortcut screen found by pinching with thumb and three fingers
Intuitive explanation of the rank-nullity theorem
Semigroups with no morphisms between them
What is an "asse" in Elizabethan English?
In musical terms, what properties are varied by the human voice to produce different words / syllables?
Is CEO the "profession" with the most psychopaths?
How many morphisms from 1 to 1+1 can there be?
Flash light on something
How were pictures turned from film to a big picture in a picture frame before digital scanning?
What is the meaning of 'breadth' in breadth first search?
Can anyone provide insight as to why git pull not working when StrictMode yes is set after deploying a new Gitlab server from AMI?
Announcing the arrival of Valued Associate #679: Cesar Manara
Planned maintenance scheduled April 23, 2019 at 23:30 UTC (7:30pm US/Eastern)How can I get a Git repo to push/pull when the Git server is behind a firewall?GitLab ssh User Access Rightsssh authentication failure with public/private keysHow can I deploy code to remote server in easy way by using GitLab CI/CD
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ height:90px;width:728px;box-sizing:border-box;
}
Context:
A new Gitlab server instance was deployed from an AMI backup. When trying to re-establish connectivity to it from a development server, issuing a git pull command presented me with a password prompt.
user@devserver:/var/www/html/sites/project (develop)$ git pull
git@gitlab.company.net's password:
Troubleshooting:
When attempting git pull from dev server and tailing /var/log/auth.log on Gitlab server, I get this error message:
Authentication refused: bad ownership or modes for directory
/var/opt/gitlab
I then adjusting server /etc/ssh/sshd_config file and modified
StrictModes yes to StrictModes no realizing this must be related to SSH key issue or permissions of .ssh folder files and that StrictMode no would allow my user's keys to pass strict mode. https://ubuntuforums.org/showthread.php?t=831372
Issued /etc/init.d/ssh reload, re-attempted git pull. This time it worked and /var/log/auth.log showed the following:
sshd[15283]:Accepted publickey for git from 52.X.X.X port 62002 ssh2:RSA
and git pull showing
user@devserver:/var/www/html/sites/project (develop)$ git pull
Already up-to-date.
Now to verify permission settings on .ssh folder and files (even though they haven't been changed and were working previously)
Correct file permissions for ssh keys and config.
chmod 700 ~/.ssh
chmod 644 ~/.ssh/authorized_keys
chmod 644 ~/.ssh/known_hosts
chmod 644 ~/.ssh/config
chmod 600 ~/.ssh/id_rsa
chmod 644 ~/.ssh/id_rsa.pub
I reverted to StrictModes yes and reloaded ssh config settings, git pull and same issue.
Authentication refused: bad ownership or modes for directory
/var/opt/gitlab
Common replies:
Have you tried rekeying SSH keys and adding them to Gitlab SSH user settings?
yes -> Setting up SSH keys for Gitlab
Have you tried rebuilding authorizated_keys file?
yes -> Rebuilding authorized_keys file
Can anyone provide insight as to why git pull not working when StrictMode yes is set after deploying a new Gitlab server from AMI?
I really appreciate anyone whose spent the time read my issue and provide feedback/answers! Hopefully someone out there has encountered this...
gitlab
asked 6 hours ago
demartidemarti
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
Context:
A new Gitlab server instance was deployed from an AMI backup. When trying to re-establish connectivity to it from a development server, issuing a git pull command presented me with a password prompt.
user@devserver:/var/www/html/sites/project (develop)$ git pull
git@gitlab.company.net's password:
Troubleshooting:
When attempting git pull from dev server and tailing /var/log/auth.log on Gitlab server, I get this error message:
Authentication refused: bad ownership or modes for directory
/var/opt/gitlab
I then adjusting server /etc/ssh/sshd_config file and modified
StrictModes yes to StrictModes no realizing this must be related to SSH key issue or permissions of .ssh folder files and that StrictMode no would allow my user's keys to pass strict mode. https://ubuntuforums.org/showthread.php?t=831372
Issued /etc/init.d/ssh reload, re-attempted git pull. This time it worked and /var/log/auth.log showed the following:
sshd[15283]:Accepted publickey for git from 52.X.X.X port 62002 ssh2:RSA
and git pull showing
user@devserver:/var/www/html/sites/project (develop)$ git pull
Already up-to-date.
Now to verify permission settings on .ssh folder and files (even though they haven't been changed and were working previously)
Correct file permissions for ssh keys and config.
chmod 700 ~/.ssh
chmod 644 ~/.ssh/authorized_keys
chmod 644 ~/.ssh/known_hosts
chmod 644 ~/.ssh/config
chmod 600 ~/.ssh/id_rsa
chmod 644 ~/.ssh/id_rsa.pub
I reverted to StrictModes yes and reloaded ssh config settings, git pull and same issue.
Authentication refused: bad ownership or modes for directory
/var/opt/gitlab
Common replies:
Have you tried rekeying SSH keys and adding them to Gitlab SSH user settings?
yes -> Setting up SSH keys for Gitlab
Have you tried rebuilding authorizated_keys file?
yes -> Rebuilding authorized_keys file
Can anyone provide insight as to why git pull not working when StrictMode yes is set after deploying a new Gitlab server from AMI?
I really appreciate anyone whose spent the time read my issue and provide feedback/answers! Hopefully someone out there has encountered this...
gitlab
asked 6 hours ago
demartidemarti
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
Context:
A new Gitlab server instance was deployed from an AMI backup. When trying to re-establish connectivity to it from a development server, issuing a git pull command presented me with a password prompt.
user@devserver:/var/www/html/sites/project (develop)$ git pull
git@gitlab.company.net's password:
Troubleshooting:
When attempting git pull from dev server and tailing /var/log/auth.log on Gitlab server, I get this error message:
Authentication refused: bad ownership or modes for directory
/var/opt/gitlab
I then adjusting server /etc/ssh/sshd_config file and modified
StrictModes yes to StrictModes no realizing this must be related to SSH key issue or permissions of .ssh folder files and that StrictMode no would allow my user's keys to pass strict mode. https://ubuntuforums.org/showthread.php?t=831372
Issued /etc/init.d/ssh reload, re-attempted git pull. This time it worked and /var/log/auth.log showed the following:
sshd[15283]:Accepted publickey for git from 52.X.X.X port 62002 ssh2:RSA
and git pull showing
user@devserver:/var/www/html/sites/project (develop)$ git pull
Already up-to-date.
Now to verify permission settings on .ssh folder and files (even though they haven't been changed and were working previously)
Correct file permissions for ssh keys and config.
chmod 700 ~/.ssh
chmod 644 ~/.ssh/authorized_keys
chmod 644 ~/.ssh/known_hosts
chmod 644 ~/.ssh/config
chmod 600 ~/.ssh/id_rsa
chmod 644 ~/.ssh/id_rsa.pub
I reverted to StrictModes yes and reloaded ssh config settings, git pull and same issue.
Authentication refused: bad ownership or modes for directory
/var/opt/gitlab
Common replies:
Have you tried rekeying SSH keys and adding them to Gitlab SSH user settings?
yes -> Setting up SSH keys for Gitlab
Have you tried rebuilding authorizated_keys file?
yes -> Rebuilding authorized_keys file
Can anyone provide insight as to why git pull not working when StrictMode yes is set after deploying a new Gitlab server from AMI?
I really appreciate anyone whose spent the time read my issue and provide feedback/answers! Hopefully someone out there has encountered this...
gitlab
asked 6 hours ago
demartidemarti
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
Context:
A new Gitlab server instance was deployed from an AMI backup. When trying to re-establish connectivity to it from a development server, issuing a git pull command presented me with a password prompt.
user@devserver:/var/www/html/sites/project (develop)$ git pull
git@gitlab.company.net's password:
Troubleshooting:
When attempting git pull from dev server and tailing /var/log/auth.log on Gitlab server, I get this error message:
Authentication refused: bad ownership or modes for directory
/var/opt/gitlab
I then adjusting server /etc/ssh/sshd_config file and modified
StrictModes yes to StrictModes no realizing this must be related to SSH key issue or permissions of .ssh folder files and that StrictMode no would allow my user's keys to pass strict mode. https://ubuntuforums.org/showthread.php?t=831372
Issued /etc/init.d/ssh reload, re-attempted git pull. This time it worked and /var/log/auth.log showed the following:
sshd[15283]:Accepted publickey for git from 52.X.X.X port 62002 ssh2:RSA
and git pull showing
user@devserver:/var/www/html/sites/project (develop)$ git pull
Already up-to-date.
Now to verify permission settings on .ssh folder and files (even though they haven't been changed and were working previously)
Correct file permissions for ssh keys and config.
chmod 700 ~/.ssh
chmod 644 ~/.ssh/authorized_keys
chmod 644 ~/.ssh/known_hosts
chmod 644 ~/.ssh/config
chmod 600 ~/.ssh/id_rsa
chmod 644 ~/.ssh/id_rsa.pub
I reverted to StrictModes yes and reloaded ssh config settings, git pull and same issue.
Authentication refused: bad ownership or modes for directory
/var/opt/gitlab
Common replies:
Have you tried rekeying SSH keys and adding them to Gitlab SSH user settings?
yes -> Setting up SSH keys for Gitlab
Have you tried rebuilding authorizated_keys file?
yes -> Rebuilding authorized_keys file
Can anyone provide insight as to why git pull not working when StrictMode yes is set after deploying a new Gitlab server from AMI?
I really appreciate anyone whose spent the time read my issue and provide feedback/answers! Hopefully someone out there has encountered this...
gitlab
gitlab
asked 6 hours ago
demartidemarti
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
asked 6 hours ago
demartidemarti
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
asked 6 hours ago
demartidemarti
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
asked 6 hours ago
demartidemarti
11
asked 6 hours ago
demartidemarti
11
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
add a comment |
1 Answer
1
active
oldest
votes
I found the issue after spending all day digging for answers.
Seems like the after the relaunch of the server the permissions on the /var/opt/gitlab were had writable on for group permissions. This conflicts with StrictModes yes
StrictModes - Specifies whether sshd should check file modes and ownership of the user's files and home directory before accepting login. This is normally desirable in case users inadvertently leave their directory or files world-writable. The default is "yes".
Specifically, StrictModes checks that the following files, directories, and component path names are owned by the current user or superuser and that they are not group or world-writable. Reference found here
After issuing chmod 755 /var/opt/gitlab(removing write permissions), the issue is now resolved.
answered 4 hours ago
demartidemarti
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "3"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
demarti is a new contributor. Be nice, and check out our Code of Conduct.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1427463%2fcan-anyone-provide-insight-as-to-why-git-pull-not-working-when-strictmode-yes-is%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
I found the issue after spending all day digging for answers.
Seems like the after the relaunch of the server the permissions on the /var/opt/gitlab were had writable on for group permissions. This conflicts with StrictModes yes
StrictModes - Specifies whether sshd should check file modes and ownership of the user's files and home directory before accepting login. This is normally desirable in case users inadvertently leave their directory or files world-writable. The default is "yes".
Specifically, StrictModes checks that the following files, directories, and component path names are owned by the current user or superuser and that they are not group or world-writable. Reference found here
After issuing chmod 755 /var/opt/gitlab(removing write permissions), the issue is now resolved.
answered 4 hours ago
demartidemarti
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
I found the issue after spending all day digging for answers.
Seems like the after the relaunch of the server the permissions on the /var/opt/gitlab were had writable on for group permissions. This conflicts with StrictModes yes
StrictModes - Specifies whether sshd should check file modes and ownership of the user's files and home directory before accepting login. This is normally desirable in case users inadvertently leave their directory or files world-writable. The default is "yes".
Specifically, StrictModes checks that the following files, directories, and component path names are owned by the current user or superuser and that they are not group or world-writable. Reference found here
After issuing chmod 755 /var/opt/gitlab(removing write permissions), the issue is now resolved.
answered 4 hours ago
demartidemarti
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
I found the issue after spending all day digging for answers.
Seems like the after the relaunch of the server the permissions on the /var/opt/gitlab were had writable on for group permissions. This conflicts with StrictModes yes
StrictModes - Specifies whether sshd should check file modes and ownership of the user's files and home directory before accepting login. This is normally desirable in case users inadvertently leave their directory or files world-writable. The default is "yes".
Specifically, StrictModes checks that the following files, directories, and component path names are owned by the current user or superuser and that they are not group or world-writable. Reference found here
After issuing chmod 755 /var/opt/gitlab(removing write permissions), the issue is now resolved.
answered 4 hours ago
demartidemarti
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
I found the issue after spending all day digging for answers.
Seems like the after the relaunch of the server the permissions on the /var/opt/gitlab were had writable on for group permissions. This conflicts with StrictModes yes
StrictModes - Specifies whether sshd should check file modes and ownership of the user's files and home directory before accepting login. This is normally desirable in case users inadvertently leave their directory or files world-writable. The default is "yes".
Specifically, StrictModes checks that the following files, directories, and component path names are owned by the current user or superuser and that they are not group or world-writable. Reference found here
After issuing chmod 755 /var/opt/gitlab(removing write permissions), the issue is now resolved.
answered 4 hours ago
demartidemarti
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
answered 4 hours ago
demartidemarti
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
answered 4 hours ago
demartidemarti
11
answered 4 hours ago
demartidemarti
11
11
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
New contributor
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
demarti is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
add a comment |
demarti is a new contributor. Be nice, and check out our Code of Conduct.
demarti is a new contributor. Be nice, and check out our Code of Conduct.
demarti is a new contributor. Be nice, and check out our Code of Conduct.
demarti is a new contributor. Be nice, and check out our Code of Conduct.
Thanks for contributing an answer to Super User!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1427463%2fcan-anyone-provide-insight-as-to-why-git-pull-not-working-when-strictmode-yes-is%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
