bugzilla-daemon at bugzilla.mindrot.org
2016-Jan-28 07:42 UTC
[Bug 2534] New: option to get host key list from HostKeyAgent
https://bugzilla.mindrot.org/show_bug.cgi?id=2534
Bug ID: 2534
Summary: option to get host key list from HostKeyAgent
Product: Portable OpenSSH
Version: 7.1p1
Hardware: All
OS: All
Status: NEW
Severity: enhancement
Priority: P5
Component: sshd
Assignee: unassigned-bugs at mindrot.org
Reporter: igor at mir2.org
Currently, when sshd runs with HostKeyAgent, it still requires to list
the server keys with HostKey options pointing to the public keys that
agent provides. It would be nice to have an option to load this list
from the agent when a client connects, not on startup.
This is very useful when sshd runs, for example, in a restricted
container that do not have access to a file system holding the private
keys. Thus to change the server keys I not only need to signal sshd to
reload its config, but also to ensure that the public keys are
transferred into the sshd container complicating the key management.
--
You are receiving this mail because:
You are watching the assignee of the bug.
Reasonably Related Threads
- [Bug 2533] New: do not check if HostKeyAgent is available on ssdh startup
- sshd and consequences of HostKeyAgent
- [Bug 2556] New: on Linux non-root process can chroot
- [Bug 2382] New: option to disable pid file with sshd
- [Bug 2293] New: ssh should have an option to automatically trust a local sshd's host key for a given set of names
Wisdom of the Ancients
