search for: forwardagentallowkeyson

...arding, there's no way in setting this trust scheme up in a secure way (unless you start multiple ssh-agents, and tweak the SSH_AUTH_SOCK environment variable manually) It would be so much easier if we could say (in laptop.home's ~/.ssh/config file): Host kernel.org.lu ForwardAgent yes ForwardAgentAllowKeysOnly linux.key ... Host work1.nsa.gov ForwardAgent yes ForwardAgentAllowKeysOnly work.key ==> if a ForwardAgentAllowKeysOnly line is present, the ssh client would only forward requests to one of the listed keys to the agent, and block access attempts to all other keys that the agent may know...