Using two agents
Ángel González
keisial at gmail.com
Sun May 31 07:37:18 AEST 2015
On 30/05/15 20:41, Peter Stuge wrote:
>> If you really want to segregate credentials for different environments
> The agent knows who is asking it about using a key, so you could
> certainly have a single agent which applies a policy based on that.
No, it doesn't. For the ssh-agent, it's the same ssh(1) process both
times. The
difference lies in that the first time it is using it itself for
authentication and
the second one it is asking that on behalf of a remote untrusted process.
(OTOH the proposal from February that suggested a "received parameter",
would allow this kind of thing)
More information about the openssh-unix-dev
mailing list