bugzilla-daemon at mindrot.org
2004-Jan-10 18:15 UTC
[Bug 786] ssh is still looking at default config file when it is about EnableSSHKeysign
http://bugzilla.mindrot.org/show_bug.cgi?id=786
Summary: ssh is still looking at default config file when it is
about EnableSSHKeysign
Product: Portable OpenSSH
Version: 3.7p1
Platform: ix86
OS/Version: Linux
Status: NEW
Severity: normal
Priority: P2
Component: ssh
AssignedTo: openssh-bugs at mindrot.org
ReportedBy: blueseawolf at yahoo.com
ssh protocol 2 / hostbased authentication
As you know in order for ssh to work with hostbased authentication
the flag EnableSSHKeysign must be set to "yes" in ssh_config file
That worked.
But if an alternate config file is specified in ssh command line as:
# /openssh/bin/ssh -F /openssh/etc/ssh_config_2 -v [hostname]
does not work
also this flag (EnableSSHKeysign) is not taken as an -o argument in command
line:
# /openssh/bin/ssh -F /openssh/etc/ssh_config_2 -o EnableSSHKeysign=yes -v
[hostname]
does not work
I belive ssh is looking at the default config file when it is about this
particular flag since there is
a message when using -v option with ssh saing:
"ssh-keysign not enabled in /openssh/etc/ssh_config" ...and this is
the default config file
As I said I used -F /openssh/etc/ssh_config_2 and I'm absolutely sure this
alternate file is
used since other options such as port number are corectly taken from alternate
config file. This
is all about EnableSSHKeysign flag only.
We need this in a Linux based diskless cluster
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
bugzilla-daemon at mindrot.org
2004-Jan-10 18:29 UTC
[Bug 786] ssh is still looking at default config file when it is about EnableSSHKeysign
http://bugzilla.mindrot.org/show_bug.cgi?id=786 ------- Additional Comments From markus at openbsd.org 2004-01-10 11:29 ------- EnableSSHKeysign is not a flag used by the ssh client, so -o or -F do not matter. only the sysadmin can set this flag in /etc/ssh/ssh_config. ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.
bugzilla-daemon at mindrot.org
2004-Feb-10 02:44 UTC
[Bug 786] ssh is still looking at default config file when it is about EnableSSHKeysign
http://bugzilla.mindrot.org/show_bug.cgi?id=786
djm at mindrot.org changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |WONTFIX
------- Additional Comments From djm at mindrot.org 2004-02-10 13:44 -------
This behaviour is by-design
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
Possibly Parallel Threads
- EnableSSHKeysign
- OpenSSH_6.7p1 hostbased authentication failing on linux->linux connection. what's wrong with my config?
- OpenSSH_6.7p1 hostbased authentication failing on linux->linux connection. what's wrong with my config?
- hostbased failing and can't derive reason of failure in debugging output
- [Bug 599] EnableSSHKeysign not documented