Hello I have just upgraded to 9.3 and ive been really impressed so far, just a few bits to iron out now. In 9.2 I was able to run ssh-add and be asked for my passphrase for my key, once I put it in, I could open up konsoles to different servers without being asked for my key again. This seems to be broken now, as it only "remembers" the passphrase in the same konsole it was started in. Has anyone got this working properly? Any hints appreciated, Thanks, H
On Wednesday 15 June 2005 10:47 am, Hamish wrote:
Hello I have just upgraded to 9.3 and ive been really impressed so far, just a few bits to iron out now. In 9.2 I was able to run ssh-add and be asked for my passphrase for my key, once I put it in, I could open up konsoles to different servers without being asked for my key again. This seems to be broken now, as it only "remembers" the passphrase in the same konsole it was started in. Has anyone got this working properly? Any hints appreciated, Thanks, H
Maybe this is a better method: Once you have a key generated: ssh-copy-id -i <keyname.pub> user@machinename Once you do the above, you can login to <machinename> as <user> without needing the password.
On Wednesday 15 June 2005 16:15, Bruce Marshall wrote:
On Wednesday 15 June 2005 10:47 am, Hamish wrote:
Hello I have just upgraded to 9.3 and ive been really impressed so far, just a few bits to iron out now. In 9.2 I was able to run ssh-add and be asked for my passphrase for my key, once I put it in, I could open up konsoles to different servers without being asked for my key again. This seems to be broken now, as it only "remembers" the passphrase in the same konsole it was started in. Has anyone got this working properly? Any hints appreciated, Thanks, H
Maybe this is a better method:
Once you have a key generated:
ssh-copy-id -i <keyname.pub> user@machinename
Once you do the above, you can login to <machinename> as <user> without needing the password.
This is *exactly* what i am tryng to do. The thing about this is, that you need to type a passphrase to unlock the key every time you connect, so it is not very useful. With ssh agent, it "remembers" your key passphrase, so you dont have to type it in every time. Thanks, H
On Wednesday 15 June 2005 18:42, Hamish wrote:
This is *exactly* what i am tryng to do. The thing about this is, that you need to type a passphrase to unlock the key every time you connect, so it is not very useful. With ssh agent, it "remembers" your key passphrase, so you dont have to type it in every time.
You could generate a key pair without a passphrase. Just press Enter when prompted for it. ssh will enter directly.
On Wed, Jun 15, 2005 at 03:47:05PM +0100, Hamish wrote:
Hello I have just upgraded to 9.3 and ive been really impressed so far, just a few bits to iron out now. In 9.2 I was able to run ssh-add and be asked for my passphrase for my key, once I put it in, I could open up konsoles to different servers without being asked for my key again. This seems to be broken now, as it only "remembers" the passphrase in the same konsole it was started in. Has anyone got this working properly? Any hints appreciated,
Sure you start the ssh-agent correctly? The environment variables (SSH_AGENT_PID and SSH_AUTH_SOCK) it outputs must be inherited in every shell where you want to use ssh. ciao Arvin
On Wed, Jun 15, 2005 at 03:47:05PM +0100, Hamish wrote:
Hello I have just upgraded to 9.3 and ive been really impressed so far, just a few bits to iron out now. In 9.2 I was able to run ssh-add and be asked for my passphrase for my key, once I put it in, I could open up konsoles to different servers without being asked for my key again. This seems to be broken now, as it only "remembers" the passphrase in the same konsole it was started in. Has anyone got this working properly? Any hints appreciated,
Sure you start the ssh-agent correctly? The environment variables (SSH_AGENT_PID and SSH_AUTH_SOCK) it outputs must be inherited in every shell where you want to use ssh.
ciao Arvin Hi Arvin, I think this is the problem... The agent is not being the parent of the other
On Wednesday 15 June 2005 17:13, Arvin Schnell wrote: processes. Im not sure I start the agent properly. In 9.2 I could put in my crontab: @reboot ssh-agent -s | grep -v echo > $HOME/.ssh-agent This worked fine, now i have 9.3 (I chose a new install rather than upgrade) it does not seem to work. I have started gpg-agent in a script in .kde/env/, maybe i should do the same with ssh-agent? I have had a look in /usr/share/doc/packages/openssh/README.SuSE, it says this: If you want to use ssh-agent under X windows, just edit the file .xsession in your home directory and change usessh="no" to usessh="yes". After logining in you only need to start ssh-add by hand, click or startup script. I have tried this also with no success. Thanks again, H
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The Wednesday 2005-06-15 at 17:26 +0100, Hamish wrote:
Hi Arvin, I think this is the problem... The agent is not being the parent of the other processes. Im not sure I start the agent properly. In 9.2 I could put in my crontab: @reboot ssh-agent -s | grep -v echo > $HOME/.ssh-agent This worked fine, now i have 9.3 (I chose a new install rather than upgrade) it does not seem to work. I have started gpg-agent in a script in .kde/env/, maybe i should do the same with ssh-agent?
Have a look at : http://portal.suse.com/sdb/en/2004/02/fhassel_gpg_agent.html it relates to gpg-agent, but it should be similar to ssh-agent. - -- Cheers, Carlos Robinson -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Made with pgp4pine 1.76 iD8DBQFCsGMUtTMYHG2NR9URAq+bAKCBUnf5UZraHpYcrtxr2iGrjom8XQCeMWsP nYST90C0BMrS7SAs4z4/NDI= =lb47 -----END PGP SIGNATURE-----
On Wednesday 15 June 2005 17:13, Arvin Schnell wrote:
On Wed, Jun 15, 2005 at 03:47:05PM +0100, Hamish wrote:
Hello I have just upgraded to 9.3 and ive been really impressed so far, just a few bits to iron out now. In 9.2 I was able to run ssh-add and be asked for my passphrase for my key, once I put it in, I could open up konsoles to different servers without being asked for my key again. This seems to be broken now, as it only "remembers" the passphrase in the same konsole it was started in. Has anyone got this working properly? Any hints appreciated,
Sure you start the ssh-agent correctly? The environment variables (SSH_AGENT_PID and SSH_AUTH_SOCK) it outputs must be inherited in every shell where you want to use ssh.
ciao Arvin
This was the problem, that the agent needs to be started as the parent: I found that by adding: eval `ssh-agent -s` ssh-add ~/.ssh/identity ~/.ssh/id_dsa to my .xinitrc file (copied from .xinitrc.template) it works fine, I now get ssh-askpass asking me for my passphrase each time I log in. (although I could have left that line out and done it manually i suppose) I put a page on susewiki for anyone who wants to do the same http://www.susewiki.org/index.php?title=SSH-agent Thanks, H
participants (5)
-
Arvin Schnell -
Bruce Marshall -
Carlos E. R. -
Hamish -
Silviu Marin-Caea