openssh unix dev - Feb 2003 - [Bug 496] New: add a timeout function to ssh-agent

http://bugzilla.mindrot.org/show_bug.cgi?id=496

           Summary: add a timeout function to ssh-agent
           Product: Portable OpenSSH
           Version: older versions
          Platform: All
               URL: http://www.openbsd.org/cgi-bin/man.cgi?query=ssh-add
        OS/Version: All
            Status: NEW
          Severity: enhancement
          Priority: P2
         Component: ssh-agent
        AssignedTo: openssh-unix-dev at mindrot.org
        ReportedBy: hauser at acm.org


ssh-agent and ssh-add have a lifetime function.
ssh-add has the -c/SSH_ASKPASS feature.

This appears to be useful, but deviating from the usual user experience as per
Mozilla's personal security module (PSM), password-protected screen-locks,
etc.

Therefore, I suggest to enhance ssh-agent such that there is a timeout option
that defaults to e.g. 15 minutes. If no key has been used through ssh-agent the
timeout period, ssh-agent is temporarily disabled.
Re-enabling could be done by popping up a password panel asking for the password
for
i) the first identity that was added
ii) the default identity
iii) the identity of the identity about to be used next.



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.