ssh-agent check for new fresh certificate (and key)? worthwhile doing?

Damien Miller djm at mindrot.org
Thu Feb 2 14:48:11 AEDT 2017


On Thu, 2 Feb 2017, Adam Eijdenberg wrote:

> On Thu, Feb 2, 2017 at 10:42 AM Damien Miller <djm at mindrot.org> wrote:
> > On Thu, 2 Feb 2017, Adam Eijdenberg wrote:
> > > I guess a case could be made for ssh-add to always set a timeout when
> > > adding a certificate with an expiry time, but I think for now I'm
> > > happy enough to do that on our end.
> >
> > That sounds like a fine idea.
> 
> Damien, to clarify did you mean it would be a fine idea to submit a
> patch to ssh-add to do so? (or a fine idea to leave it it alone and
> handle externally)

It's a fine idea for a feature - even just filing it on bugzilla would be
good.

-d



More information about the openssh-unix-dev mailing list