[Bug 2214] New: Key is detected as existing if LogLevel=QUIET

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Thu Mar 20 23:40:54 EST 2014


https://bugzilla.mindrot.org/show_bug.cgi?id=2214

            Bug ID: 2214
           Summary: Key is detected as existing if LogLevel=QUIET
           Product: Portable OpenSSH
           Version: 6.2p1
          Hardware: All
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: P5
         Component: ssh-copy-id
          Assignee: unassigned-bugs at mindrot.org
          Reporter: sami at badwolf.fi

Created attachment 2415
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2415&action=edit
Add -o LogLevel=INFO to ssh invokation

Current ssh-copy-id script assumes that key is valid if the temporary
log file doesn't contain the string 'Permission denied'. There are
cases when this doesn't occur. One of the cases is when configuration
file contains a LogLevel=QUIET option.

Lets assume that ~/.ssh/config contains:
> Host 127.*
>   LogLevel QUIET

And we have no valid key for localhost. Attempting to connect doesn't
give any errors:
> $ ssh -o PreferredAuthentications=publickey -o IdentitiesOnly=yes user at 127.0.0.1
> $ ssh -o LogLevel=INFO -o PreferredAuthentications=publickey -o IdentitiesOnly=yes user at 127.0.0.1
> Permission denied (publickey,password).

The fix is to add LogLevel=INFO to the ssh command, which is a sane
default since ssh-copy-id actually depends on ssh to have loglevel set
to INFO.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list