[Bug 2970] explicit IdentityFile has lower priority than agent keys

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Wed Feb 20 05:29:53 AEDT 2019


https://bugzilla.mindrot.org/show_bug.cgi?id=2970

--- Comment #2 from Ilya Basin <basinilya at gmail.com> ---
Even with IdentitiesOnly=yes among explicitly listed keys agent keys
take precedence, regardless of the order in the command line:

        ssh -vvv -oIdentitiesOnly=yes -oBatchMode=yes -i
~/.ssh/zzz-test2.id_rsa -i ~/.ssh/id_rsa localhost date
        ...
        debug1: Will attempt key: /home/il/.ssh/id_rsa RSA xxx explicit
agent
        debug1: Will attempt key: /home/il/.ssh/zzz-test2.id_rsa RSA
xxx explicit

I still think it is natural to expect that `ssh -i identity_file` will
first try the identity_file without the need to specify additional
options.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list