bzr+ssh on Windows?

Maritza Mendez martitzam at gmail.com
Wed Aug 25 00:18:03 BST 2010 

On Tue, Aug 24, 2010 at 8:58 AM, Vincent Ladeuil
<v.ladeuil+lp at free.fr<v.ladeuil%2Blp at free.fr>
> wrote:

> >>>>> Maritza Mendez <martitzam at gmail.com> writes:
>
>    > On Mon, Aug 23, 2010 at 3:42 AM, John Barstow <jbowtie at amathaine.com>
> wrote:
>    >> But certainly it's a good general solution and should be documented
>    >> (in the same place where we say passwords in authentication.conf are
>    >> ignored over ssh).
>    >>
>    >>
>
> <snip/>
>
>    > I also thought that it would be nice to have authentication.conf
>    > either contain or point to my private key.
>
> Here is an excerpt of one  of my ~/ssh/config files:
>
> ,----
> | IdentityFile ~/.ssh/vila at home
> | Host freebsd7.local
> |      IdentityFile ~/.ssh/hudson at master
> |      User babune
> |      ForwardAgent yes
> | Host freebsd8.local
> |      IdentityFile ~/.ssh/hudson at master
> |      User babune
> |      ForwardAgent yes
> `----
>
> Depending on the host I'm connecting to, different keys are used. Note
> that this particular configuration totally avoid the default keys
> (id_rsa or id_dsa from memory).
>
> Once a day, I have to enter the password for each key I use and then I'm
> free to connect transparently.
>
> In terms of user experience, it's like swiping your access card when you
> start working in the morning and be done with it for the whole
> day... hard to do better.
>
>    > I was trying to avoid setting up a Windows replacement for
>    > ssh-agent of course.  But then I started thinking...  bzr should
>    > not really need to know any more about protocols than absolutely
>    > necessary to be a consumer of protocols.
>
> Exactly.
>
> I'm not familiar enough with windows to tell, but on every other
> platform I use daily, ssh-agents just work out of the box and
> ~/.ssh/config covers 99% of my needs.
>
> The trick is to define a key for each role at which point the concept
> becomes very close to the physical keys we use in the real world.
>
> There are still edge cases where I want two different keys to open the
> exact same door but I can live with that so far (i.e. using the "wrong"
> key still opens the door and I'm still seen as the "right" key holder).
>
>        Vincent
>


Vincent, those are all excellent observations.  I am not sure how to map
IdentityFile to the Windows platform in general.  But it maz help some
people to know that pageant (the Putty version of ssh agent) can load and
serve multiple private keys simultaneously.

Your physical key analogy is a good way to think!

M
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.ubuntu.com/archives/bazaar/attachments/20100825/0d68c9fc/attachment.htm

More information about the bazaar mailing list