[Bug 2214] New: Key is detected as existing if LogLevel=QUIET
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Thu Mar 20 23:40:54 EST 2014
https://bugzilla.mindrot.org/show_bug.cgi?id=2214
Bug ID: 2214
Summary: Key is detected as existing if LogLevel=QUIET
Product: Portable OpenSSH
Version: 6.2p1
Hardware: All
OS: Linux
Status: NEW
Severity: normal
Priority: P5
Component: ssh-copy-id
Assignee: unassigned-bugs at mindrot.org
Reporter: sami at badwolf.fi
Created attachment 2415
--> https://bugzilla.mindrot.org/attachment.cgi?id=2415&action=edit
Add -o LogLevel=INFO to ssh invokation
Current ssh-copy-id script assumes that key is valid if the temporary
log file doesn't contain the string 'Permission denied'. There are
cases when this doesn't occur. One of the cases is when configuration
file contains a LogLevel=QUIET option.
Lets assume that ~/.ssh/config contains:
> Host 127.*
> LogLevel QUIET
And we have no valid key for localhost. Attempting to connect doesn't
give any errors:
> $ ssh -o PreferredAuthentications=publickey -o IdentitiesOnly=yes user at 127.0.0.1
> $ ssh -o LogLevel=INFO -o PreferredAuthentications=publickey -o IdentitiesOnly=yes user at 127.0.0.1
> Permission denied (publickey,password).
The fix is to add LogLevel=INFO to the ssh command, which is a sane
default since ssh-copy-id actually depends on ssh to have loglevel set
to INFO.
--
You are receiving this mail because:
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list