[Bug 2472] Add support to load additional certificates

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Tue Jan 22 21:14:29 AEDT 2019


https://bugzilla.mindrot.org/show_bug.cgi?id=2472

--- Comment #17 from Thomas Jarosch <thomas.jarosch at intra2net.com> ---
Yes, the original patch is not needed anymore thanks to other
improvements in openssh. We rolled out the changes in December 2018 and
so far no complaints :)

Basically openssh gained support to sign certificates with private keys
reachable via the ssh-agent, this works transparently with gpg-agent's
ssh agent protocol implementation + an openpgp smartcard.

Also the ability to specify additional certificates on the command line
solved the issue for us.

I was about the write that we will abandon the patch since it's no
longer needed with a recent openssh.

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list