Displaying 3 results from an estimated 3 matches for "identitycommand".
2024 Mar 10
3
PrivateKeyCommand config idea
...teKeyCommand, analogous to existing
> "*Command" configs like AuthorizedKeysCommand. In practice I imagine
> it looks like this:
>
> Host gerrit.example.com
> PrivateKeyCommand pass show ssh/gerrit_ed25519
>
> I suppose another possibility for the name could be IdentityCommand,
> analogous to IdentityFile.
>
> If you like, and time permitting, I may be interested in trying to
> implement such a patch -- but before I invest the work, I wondered if
> there would be support for including it, or would it introduce some
> sort of issue that I've probably...
2024 Mar 08
3
PrivateKeyCommand config idea
...ption called something like PrivateKeyCommand, analogous to existing "*Command" configs like AuthorizedKeysCommand. In practice I imagine it looks like this:
Host gerrit.example.com
PrivateKeyCommand pass show ssh/gerrit_ed25519
I suppose another possibility for the name could be IdentityCommand, analogous to IdentityFile.
If you like, and time permitting, I may be interested in trying to implement such a patch -- but before I invest the work, I wondered if there would be support for including it, or would it introduce some sort of issue that I've probably overlooked?
Cheers,
Tim
2024 Mar 12
1
PrivateKeyCommand config idea
On Mon, Mar 11, 2024, at 6:05 PM, Bernd Eckenfels wrote:
> BTW not for your usecase with the decryption, but if people want to
> dynamically create/provision short lived
> keys, they could use ?match host * exec gen-key.sh %s? config to run a
> program before each connection.
> However it can?t stdout the key material, but what it could do is
> update a temporary Idendity file