search for: autoask

https://bugzilla.mindrot.org/show_bug.cgi?id=2065 Bug ID: 2065 Summary: double confirmation with ssh-add -c and ControlMaster autoask Classification: Unclassified Product: Portable OpenSSH Version: 6.0p1 Hardware: All OS: Linux Status: NEW Severity: normal Priority: P3 Component: ssh Assignee: unassigned-bugs at mindrot.org...

Hello All-- First, thanks for ControlPath/ControlMaster. It's very handy, and ControlMaster=autoask is just what i wanted! I'm having difficulty with a common use case, however. I want to LocalForward on secondary connections using an already-established ControlPath. From what i can tell, the second ssh connection doesn't report any errors, but silently ignores the supplied LocalForwar...

TL;DR: I expect ProxyCommand to have effect in preference to ControlPath. I've just tripped over this one. I have an ssh Host (let us call it "MAIN") with a ControlPath and with ControlMaster=no, from the .ssh/config file. I also have a shell script whose purpose is to hop to a remote host through a port forward, which uses the ProxyCommand option like this: ProxyCommand ssh

One of the annoyances of ssh is the need to transfer the public key from client machine to server machine, and append to authorized_keys. Although it's simple to do, it's annoying to have to do this manually. Why can't this be automated? ssh offers to add new machine to known_hosts. Why doesn't it offer to add the public key to authorized_keys?

...hecks ControlPath for an active mux master before >attempting a new connection (that may use ProxyCommand). > >There's little point to specifying ControlMaster=no and a ProxyCommand >because there is no fallback to making a new connection in that case, >but ControlMaster=yes/auto/autoask with ProxyCommand is quite sensible: >"try to use multiplexing but if you have to open a new connection then >do it via this proxy". Ah, now the rationale is apparent. Ok, that makes sense to me. Thank you. >> ProxyCommand ssh MAIN nc 127.0.0.1 7777 >If your ssh client i...

...#39;s resistance to a number of attacks by discarding early keystream output. - Increase the default size of new RSA/DSA keys generated by ssh-keygen from 1024 to 2048 bits. - Many bugfixes and improvements to connection multiplexing, including: - Added ControlMaster=auto/autoask options to support opportunistic multiplexing (see the ssh_config(5) manpage for details). - The client will now gracefully fallback to starting a new TCP connection if it cannot connect to a specified multiplexing control socket - Added %h (target hostname), %p (target...

...#39;s resistance to a number of attacks by discarding early keystream output. - Increase the default size of new RSA/DSA keys generated by ssh-keygen from 1024 to 2048 bits. - Many bugfixes and improvements to connection multiplexing, including: - Added ControlMaster=auto/autoask options to support opportunistic multiplexing (see the ssh_config(5) manpage for details). - The client will now gracefully fallback to starting a new TCP connection if it cannot connect to a specified multiplexing control socket - Added %h (target hostname), %p (target...

This allows me to set 'ControlPath ~/.ssh/sockets/%h.%p.%u' for example. Have I missed a good reason why ssh_connect finds the default port number for itself instead of just having it in options.port (like we do for the the default in options.user)? --- openssh-4.1p1/ssh.c~ 2005-06-12 09:47:18.000000000 +0100 +++ openssh-4.1p1/ssh.c 2005-06-12 09:40:53.000000000 +0100 @@ -604,6 +604,17

...#39;s resistance to a number of attacks by discarding early keystream output. - Increase the default size of new RSA/DSA keys generated by ssh-keygen from 1024 to 2048 bits. - Many bugfixes and improvements to connection multiplexing, including: - Added ControlMaster=auto/autoask options to support opportunistic multiplexing (see the ssh_config(5) manpage for details). - The client will now gracefully fallback to starting a new TCP connection if it cannot connect to a specified multiplexing control socket - Added %h (target hostname), %p (target...

...#39;s resistance to a number of attacks by discarding early keystream output. - Increase the default size of new RSA/DSA keys generated by ssh-keygen from 1024 to 2048 bits. - Many bugfixes and improvements to connection multiplexing, including: - Added ControlMaster=auto/autoask options to support opportunistic multiplexing (see the ssh_config(5) manpage for details). - The client will now gracefully fallback to starting a new TCP connection if it cannot connect to a specified multiplexing control socket - Added %h (target hostname), %p (target...

hello, all tests on openssh-SNAP-20050819.tar.gz were succesful on a typical SuSE Linux 9.3 (i586) install with 2.6.11.4-21.8-smp #1 SMP Tue Jul 19 12:42:37 UTC 2005 i686 i686 i386 GNU/Linux regards, Martin Braun

On Tue, Oct 20, 2015 at 01:31:46AM +0200, ?ngel Gonz?lez wrote: > On 16/10/15 12:46, hubert depesz lubaczewski wrote: > >On Thu, Oct 15, 2015 at 04:15:03PM -0400, Daniel Kahn Gillmor wrote: > >>> if the intermediary machine (the "jumphost") is jumphost.example, and > >>> you are trying to reach bar.example.com (which is behind the firewall), >

http://bugzilla.mindrot.org/show_bug.cgi?id=1329 Summary: stale control sockets prevent connection. Product: Portable OpenSSH Version: 4.6p1 Platform: Other OS/Version: Linux Status: NEW Severity: normal Priority: P2 Component: ssh AssignedTo: bitbucket at mindrot.org ReportedBy: dwmw2 at

Hi, (I'm not subscribed to the list, so please CC me on reply.) I'd like to request adding a feature to OpenSSH: Task: ~~~~~ It is quite sometime useful to invoke a program prior to connecting to an ssh server. The most common use case will probably be port knocking. That is a small program sends certain packets to a server and the server reacts to this by unlocking the ssh port, which

Hello! I'm hoping that Gmail won't HTML format this mail so that I'll get flamed :) Anyway, my question relates to ssh_config. The problem I find is that the Host pattern is only applied to the argument given on the command line, as outlined in the man page: "The host is the hostname argument given on the command line (i.e. the name is not converted to a canonicalized host name