openssh bugs - Mar 2014 - [Bug 2214] New: Key is detected as existing if LogLevel=QUIET

https://bugzilla.mindrot.org/show_bug.cgi?id=2214

            Bug ID: 2214
           Summary: Key is detected as existing if LogLevel=QUIET
           Product: Portable OpenSSH
           Version: 6.2p1
          Hardware: All
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: P5
         Component: ssh-copy-id
          Assignee: unassigned-bugs at mindrot.org
          Reporter: sami at badwolf.fi

Created attachment 2415
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2415&action=edit
Add -o LogLevel=INFO to ssh invokation

Current ssh-copy-id script assumes that key is valid if the temporary
log file doesn't contain the string 'Permission denied'. There are
cases when this doesn't occur. One of the cases is when configuration
file contains a LogLevel=QUIET option.

Lets assume that ~/.ssh/config contains:
> Host 127.*
>   LogLevel QUIET
And we have no valid key for localhost. Attempting to connect doesn't
give any errors:
> $ ssh -o PreferredAuthentications=publickey -o IdentitiesOnly=yes user at
127.0.0.1
> $ ssh -o LogLevel=INFO -o PreferredAuthentications=publickey -o
IdentitiesOnly=yes user at 127.0.0.1
> Permission denied (publickey,password).
The fix is to add LogLevel=INFO to the ssh command, which is a sane
default since ssh-copy-id actually depends on ssh to have loglevel set
to INFO.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.

https://bugzilla.mindrot.org/show_bug.cgi?id=2214

Philip Hands <phil at hands.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |phil at hands.com
             Status|NEW                         |ASSIGNED
           Assignee|unassigned-bugs at mindrot.org |phil at hands.com

--- Comment #1 from Philip Hands <phil at hands.com> ---
Thanks for the report, and sorry for taking so long to get round to it.

Here's the commit that fixes this:

 
http://git.hands.com/?p=ssh-copy-id.git;a=commitdiff;h=35f05e39cda8670b3f6797330a3e521fda509a4c;hp=baebbb9e18e4a1af7554d939710eacb665a24b68

My latest version incorporating that change is here:

  http://git.hands.com/ssh-copy-id

which should work for you, and will hopefully make it's way into
OpenSSH in the not too distant future.

Cheers, Phil.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.