[Bug 1974] Support for encrypted host keys

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Sat Jul 6 09:23:25 EST 2013


https://bugzilla.mindrot.org/show_bug.cgi?id=1974

--- Comment #7 from Damien Miller <djm at mindrot.org> ---
Comment on attachment 2307
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2307
full patch (against openbsd cvs)

Looks good

>@@ -1906,9 +1947,11 @@ main(int ac, char **av)
> 	buffer_init(&loginmsg);
> 	auth_debug_reset();
> 
>-	if (use_privsep)
>+	if (use_privsep) {
> 		if (privsep_preauth(authctxt) == 1)
> 			goto authenticated;
>+	} else if (compat20)
>+		auth_conn = ssh_get_authentication_connection();

Should agent use be dependent on a config option or a different
environment variable to SSH_AUTH_SOCK? I'd worry about people
restarting sshd and having it pick up their own agent...

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list