[Script] ssh-add dropping keys when xscreensaver blanks

Jim Knoble jmknoble at jmknoble.cx
Thu Mar 1 03:19:36 EST 2001

Circa 2001-Feb-28 10:59:08 +0000 dixit Andrew Stribblehill:

: Quoting Damien Miller <djm at mindrot.org>:
: > I like the concept, but I don't like how it only adds the default protocol
: > 1 key. Could you get it to parse the output of "ssh-add -l" to pick up
: > the other keys too?
: I'm not sure I can, since it can't find out the filename (or
: hostname, for that matter) from which the keys are read. Or is
: there something I'm missing. I was expecting that people using
: this script would hack it themselves to get it to add their extra
: keys.

Here's the list of my ssh-agent's key fingerprints (OpenSSH-2.5.1p1):

  $ ssh-add -l
  1024 f7:30:8d:ed:84:08:80:[...]:86 jmknoble at zax.half.pint-stowp.cx (RSA1)
  1024 3e:ca:af:5e:61:20:35:[...]:34 /local/home/jmknoble/.ssh/id_rsa (RSA)
  1024 8d:b3:86:e2:aa:4f:a1:[...]:c2 /local/home/jmknoble/.ssh/id_dsa (DSA)

Note how the RSA1 key has the comment in the third column, but the
other keys have their filename.

In fact, it's actually harder to add the proper RSA1 key back than it
is to add the RSA2 or DSA key, since it's possible for RSA1 keys to be
loaded from a filename other than ~/.ssh/identity (for example, my RSA1
key lives in ~/.ssh/id_rsa1).  This is perhaps a good method to
discourage folks from making it easy to use Protocol 1.  ;)

jim knoble | jmknoble at jmknoble.cx | http://www.jmknoble.cx/

More information about the openssh-unix-dev mailing list