touch-packages team mailing list archive

Thread
Date

[Bug 505278] Re: ssh-add -D deleting all identities does not work. Also, why are all identities auto-added?

To: touch-packages@xxxxxxxxxxxxxxxxxxx
From: kayandus <bierfiltertje@xxxxxxxxxxx>
Date: Thu, 16 Oct 2014 01:23:47 -0000
Reply-to: Bug 505278 <505278@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This isn't a bug, it's a feature. Read the gnome-keyring website
carefully, https://wiki.gnome.org/Projects/GnomeKeyring/Ssh

[quote]
This assumes some familiarity with the ssh-add command. See its man page for more info.
    You can use ssh-add to manually add keys for use in the SSH agent. These will be in addition to the automatically loaded keys.
    The ssh-add -D will remove any keys you've added manually.
    The ssh-add -D will lock any automatically loaded keys.
    ssh-add -l and ssh-add -L will always list automatically loaded keys. 
[/quote]

This is exactly what happens in 14.04; automatically loaded keys get
locked, manually added keys get removed from the agent.

Automatically loaded keys are:
[quote]
The SSH agent automatically loads files in ~/.ssh which have corresponding *.pub paired files. Additional SSH keys can be manually loaded and managed via the ssh-add command. 
[/quote]

On a side note, it seems 14.04 also starts the openssh 'ssh-agent'
automatically, so effectively running two agents by default (is this
intentional?). Ssh-agent stores its socket in /tmp. Try something like:

SSH_AUTH_SOCK=/tmp/ssh-ABCDEF123456/agent.12345 ssh-add

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to openssh in Ubuntu.
https://bugs.launchpad.net/bugs/505278

Title:
  ssh-add -D deleting all identities does not work. Also, why are all
  identities auto-added?

Status in GNOME keyring services:
  New
Status in Portable OpenSSH:
  Fix Released
Status in “gnome-keyring” package in Ubuntu:
  Confirmed
Status in “openssh” package in Ubuntu:
  Invalid

Bug description:
  ssh-add -D seems to NOT remove my identities, even though it says it
  did.

  Also, why are all possible identities auto-added right away (on
  start?)

  
  rafal@lcwood(22:11:48)~$ ssh-add -l
  8192 d1:50:43:64:52:7d:a0:61:ad:e2:bb:17:35:0d:7f:7d rafal1-rafal@lcwood (RSA)
  8192 d8:f9:52:6d:d7:44:e2:fe:7d:72:78:f4:09:f7:4a:82 lcac_rafal_2_geovoucher_vm-rafal@aclc (RSA)
  8192 1c:de:80:66:b2:c0:59:ff:03:61:58:43:ea:f5:b0:58 rafalsvn-rafal@lcwood (RSA)
  8192 1b:7b:5b:a5:bf:40:7c:50:48:6f:5a:9b:f5:b3:43:1b rafaladmin-rafal@lcwood (RSA)

  
  rafal@lcwood(22:11:50)~$ ssh-add -D
  All identities removed.

  
  rafal@lcwood(22:11:51)~$ ssh-add -l
  8192 d1:50:43:64:52:7d:a0:61:ad:e2:bb:17:35:0d:7f:7d rafal1-rafal@lcwood (RSA)
  8192 d8:f9:52:6d:d7:44:e2:fe:7d:72:78:f4:09:f7:4a:82 lcac_rafal_2_geovoucher_vm-rafal@aclc (RSA)
  8192 1c:de:80:66:b2:c0:59:ff:03:61:58:43:ea:f5:b0:58 rafalsvn-rafal@lcwood (RSA)
  8192 1b:7b:5b:a5:bf:40:7c:50:48:6f:5a:9b:f5:b3:43:1b rafaladmin-rafal@lcwood (RSA)
  rafal@lcwood(22:11:53)~$ apport-bug ssh-ad

  ProblemType: Bug
  Architecture: amd64
  Date: Sat Jan  9 22:12:25 2010
  DistroRelease: Ubuntu 9.10
  NonfreeKernelModules: nvidia
  Package: ssh (not installed)
  ProcEnviron:
   LANGUAGE=
   PATH=(custom, user)
   LANG=en_US.UTF-8
   SHELL=/bin/bash
  ProcVersionSignature: Ubuntu 2.6.31-16.53-generic
  SourcePackage: openssh
  Uname: Linux 2.6.31-16-generic x86_64

To manage notifications about this bug go to:
https://bugs.launchpad.net/gnome-keyring/+bug/505278/+subscriptions