Oddness with agent forwarding and -i
Thomas Baden
lindysandiego at yahoo.com
Fri May 28 04:16:28 EST 2004
Jefferson Ogata <Jefferson.Ogata at noaa.gov> wrote:
> If a key in agent is more accessible than the key
> named with -i, the user would presumably simply
> refrain from passing -i.
> The current behavior is weird because if you have a
> key with a specific command= setting and a generic
> shell key, agent may authenticate with the generic
> key even though you set -i. There is an option to
> ignore agent keys, or you can just unset
> SSH_AUTH_SOCK as I noted earlier, but I think it's
> counter-intuitive that a key explicitly specified
> with -i isn't at least tried ahead of anything in
> agent.
That's what I thought, hence why I asked the question
of the list.
=====
Cheers,
-Thomas
__________________________________
Do you Yahoo!?
Friends. Fun. Try the all-new Yahoo! Messenger.
http://messenger.yahoo.com/
More information about the openssh-unix-dev
mailing list