Adding XDG BDS paths *as fallbacks only*, not replacing ~/.ssh
90
hi at 90.gripe
Sat Feb 3 02:25:46 AEDT 2024
2 February 2024 at 12:37, "Damien Miller" <djm at mindrot.org> wrote:
>
> No, sorry. This has been discussed extensively before, leading to the
>
> most uncivil discussion our bugtracker has ever seen and the only
>
> permanent user bans I've ever had to implement. Myself and the other
>
> developers have zero desire to relitigate this and no intention of
>
> implementing it.
>
> TLDR in case you can't find the past discssion: ssh is not a desktop
>
> program and predates the XDG specifications by two decades. Adding
>
> additional configuration paths is confusing and potentially risky
>
> for .ssh as, quite unlike usual "desktop" apps, it *grants system
>
> access* and having its configuration smeared across several possible
>
> paths makes managing this more confusing and brittle.
>
> -d
>
I was afraid of this, but I understand that this is very much a sore point for the dev team and I won't try to press further with proper compliance in that case.
At the very least, I would like to ask for another alternative to be able to at least "emulate" XDG support. Some programs provide an alternative environment variable of their own which may be used to relocate the entire directory in one go to some alternative path. GNU Privacy Guard, for example, provides a $GNUPGHOME variable which may be used to relocate ~/.gnupg to some place like $XDG_DATA_HOME/gnupg. Hence, would it be possible to provide an equivalent $SSH_HOME with which to relocate the entire directory to one XDG-compliant path if the user chooses to do so? At the very least, the files wouldn't then need to be spread out across multiple places.
Kind regards.
More information about the openssh-unix-dev
mailing list