[Bug 1980] use updated ssh-copy-id

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Fri Jan 4 20:13:07 EST 2013


https://bugzilla.mindrot.org/show_bug.cgi?id=1980

--- Comment #8 from Philip Hands <phil at hands.com> ---
As you can see from the code, the man page is in need of an update. 
The new default is to use the most recent (in ls -t terms) *.pub file. 
This allows one to touch the .pub that you most want sent and make that
the default.

id* strikes me as rather too likely to send the private key to a host
that you might not trust.  I can certainly strip out the -cert.pub's
from the list though.

We could add an option to disabled the populate_new_ids behaviour for
people that might be in a hurry, and that don't want those checks, but
it seems quite nice for the occasional user to have that default.

I guess the multiple runs was a attempt to assume as little about the
far end as possible -- I'll look at that.

As for assuming that the far end is OpenSSH -- really that's just
falling back to the assumptions that everyone has been using in the
current ssh-copy-id.  Do we really care if the far end is non-free ssh,
as long as it works with the same format of authorized_keys?  I suppose
the comment should actually say something along those lines instead
though.

I'll have a look at it later today if I have chance on the trains I'll
be on.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list