Displaying 2 results from an estimated 2 matches for "shortlifekey".
2018 Sep 17
2
add keys and certificate to forwarded agent on remote host
...key in a form immediately usable to the agent.
>
> Once the agent has the key, it's not really possible to force the agent
> to remove it.
I guess one could set a short life on the remotely added key, such as:
Remote:
SSH_AUTH_SOCK=/tmp/ssh-X85qP7jRtG/agent.4079
$ ssh-add -t 300 shortlifekey
Identity added: shortlifekey (shortlifekey)
Lifetime set to 300 seconds
Local:
$ ssh-add -l
2048 SHA256:32C...qYBs /home/user/.ssh/id_user (RSA)
2048 SHA256:32C...qYBs /home/user/.ssh/id_user (RSA-CERT)
2048 SHA256:SZG...5hUQ newkey (RSA)
2048 SHA256:7IS...JRi8 shortlifekey (RSA)
wait 5...
2018 Sep 17
7
add keys and certificate to forwarded agent on remote host
Apologies if this post is inappropriate to this list; please redirect me
if so.
Our team uses ssh extensively for server access and maintenance
(Debian). An issue is acting as root when operating, for example, over
ansible and keeping a record of who performed the actions, something ssh
certificates solves well.
The problem is then to automate certificate issuance since it would be
pretty