[Bug 1302812] Re: Explicit identity files are being used after implicit files are attempted

Bug Watch Updater 1302812 at bugs.launchpad.net
Sat Apr 5 00:07:12 UTC 2014 

Launchpad has imported 2 comments from the remote bug at
https://bugzilla.mindrot.org/show_bug.cgi?id=2221.

If you reply to an imported comment from within Launchpad, your comment
will be sent to the remote bug automatically. Read more about
Launchpad's inter-bugtracker facilities at
https://help.launchpad.net/InterBugTracking.

------------------------------------------------------------------------
On 2014-04-04T20:14:18+00:00 Michael Hall wrote:

When explicitly setting an identity, either via the -i commandline
parameter or IdentityFile in the ssh config, these files are used only
after any other identity files found in ~/.ssh/ have failed pubkey
authentication.

When the remote host limits the number of pubkey authentication failures
before disconnecting, this can lead to a situation where the explicit
identity file is not even used when connecting to that host.

Reply at:
https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1302812/comments/1

------------------------------------------------------------------------
On 2014-04-04T22:10:46+00:00 Damien Miller wrote:

You need IdentitiesOnly=yes; from ssh_config(1):

  IdentitiesOnly
     Specifies that ssh(1) should only use the authentication identity
     files configured in the ssh_config files, even if ssh-agent(1) or
     a PKCS11Provider offers more identities.  The argument to this
     keyword must be “yes” or “no”.  This option is intended for situ‐
     ations where ssh-agent offers many different identities.  The
     default is “no”.

Reply at:
https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1302812/comments/3


** Changed in: openssh
       Status: Unknown => Invalid

** Changed in: openssh
   Importance: Unknown => Low

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to openssh in Ubuntu.
https://bugs.launchpad.net/bugs/1302812

Title:
  Explicit identity files are being used after implicit files are
  attempted

To manage notifications about this bug go to:
https://bugs.launchpad.net/openssh/+bug/1302812/+subscriptions

More information about the Ubuntu-server-bugs mailing list