[Bug 1130191] Re: config IdentityFile entries ignored with agent

Serge Hallyn 1130191 at bugs.launchpad.net
Mon Feb 25 19:29:53 UTC 2013 

** Description changed:

  I have a pair of ssh config entires which look like:
  
  Host host1
-     User serge
-     ProxyCommand none
+     User serge
+     Identityfile host1key
+     ProxyCommand none
  
  Host cloud-*
-   User ubuntu   
-   StrictHostKeyChecking no
-   IdentityFile ~/some/path/cloudkey
-   ProxyCommand ssh host1 nc -q0 %h.cloud %p
+   User ubuntu
+   StrictHostKeyChecking no
+   IdentityFile ~/some/path/cloudkey
+   ProxyCommand ssh host1 nc -q0 %h.cloud %p
  
- If I'm logged in through unity, ssh -vvv shows that it tries all of the
- ssh keys under ~/.ssh instead of trying ~/some/path/cloudkey.  I assume
- ssh would eventually get to trying cloudkey, but the remote end refuses
- the login before getting to that.  It should try cloudkey first.
+ If I'm logged in through unity, ssh -vvv cloud-* shows that it tries all
+ of the ssh keys under ~/.ssh instead of the named IdentityFile.  I
+ assume ssh would eventually get to trying host1key, but the remote end
+ (host1) refuses the login before getting to that.  It should try
+ the listed IdentityFile first.
  
- If I'm logged into a different window manager (say, dwm), with ssh-agent
- running, but where i have to manually run ssh-add, then it works fine.
+ Note:
+ I had a set of password-less keys under ~/.ssh for testing purposes.
+ gnome-keyring-daemon auto-loads those, so that doing 'ssh-add -D'
+ doesn't help.  When not running gnome-keyring-daemon, you can avoid
+ this by only loading the needed keys into the ssh-agent.

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssh in Ubuntu.
https://bugs.launchpad.net/bugs/1130191

Title:
  config IdentityFile entries ignored with agent

Status in “openssh” package in Ubuntu:
  New

Bug description:
  I have a pair of ssh config entires which look like:

  Host host1
      User serge
      Identityfile host1key
      ProxyCommand none

  Host cloud-*
    User ubuntu
    StrictHostKeyChecking no
    IdentityFile ~/some/path/cloudkey
    ProxyCommand ssh host1 nc -q0 %h.cloud %p

  If I'm logged in through unity, ssh -vvv cloud-* shows that it tries all
  of the ssh keys under ~/.ssh instead of the named IdentityFile.  I
  assume ssh would eventually get to trying host1key, but the remote end
  (host1) refuses the login before getting to that.  It should try
  the listed IdentityFile first.

  Note:
  I had a set of password-less keys under ~/.ssh for testing purposes.
  gnome-keyring-daemon auto-loads those, so that doing 'ssh-add -D'
  doesn't help.  When not running gnome-keyring-daemon, you can avoid
  this by only loading the needed keys into the ssh-agent.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1130191/+subscriptions

More information about the foundations-bugs mailing list