Re: How do I get "ssh -X..." to exit?



On 03/08/2010 05:52 PM, J G Miller wrote:
On Mon, 08 Mar 2010 16:32:54 -0800, Todd wrote:

No clue about ssh-agent.

Have a look at how to generate an ssh-key (public and private pair) with
passphrase

ssh-keygen -t dsa

in further details at

<http://mah.everybody.ORG/docs/ssh>

or at

<http://pkeck.myweb.uga.EDU/ssh/>

or the tutorial in PDF format at

<http://www.noserose.NET/e/papers/sshkeys.pdf>

Then make sure that your X11 windowing session startup is started
within ssh-agent, as per

/etc/X11/Xsession.d/90x11-common_ssh-agent

for Debian / Ubuntu / Mint

and that your own XSession or Xclients includes the running of
gnome-ssh-askpass, x11-ssh-askpass, or ssh-askpass-fullscreen
to get the passphrase to your ssh key to pass on to ssh-agent,
with

SSH_ASKPASS=
export SSH_ASKPASS

ssh-add path_to_your_private_key

usually ${HOME}/.ssh/id_dsa


Then you never have to supply the passphrase to login, execute
remote command, or securely copy files to/from to any account
which has a copy of your public key in authorized keys (and the
machine is running sshd and whose configuration does not deny
your connection of course).

Hi J,

I actually do not need it as everyone is on the safe
side of the internal network.

But that could change! So, I copied your instructions down
in my "Keeper" file for later use.

Thank you!
-T
.



Relevant Pages

  • Re: x11/xfce ssh-agent once per logon for minimal (no gnome/kde) installation
    ... and asks for the passphrase a great many times daily. ... environment can inherit all the necessary ssh-agent settings. ... if you use a display manager like xdm-- ie. there's ... If you want to go the 'edit .xinitrc or .xsession' route then you need ...
    (freebsd-questions)
  • Re: x11/xfce ssh-agent once per logon for minimal (no gnome/kde) installation
    ... and asks for the passphrase a great many times daily. ... environment can inherit all the necessary ssh-agent settings. ... if you use a display manager like xdm-- ie. there's ... If you want to go the 'edit .xinitrc or .xsession' route then you need ...
    (freebsd-questions)
  • Re: ssh without entering password/passphrase
    ... I created private and public key pairs in my local host ... > this point when I try to ssh, it asks for my passphrase and I can log ... "Could not open connection to your authentication agent". ... What you are missing is that just having ssh-agent run is not enough. ...
    (comp.os.linux.misc)
  • Re: asking passphrase only on first use
    ... >required and not when ssh-add is started. ... you have to enter the passphrase for all of them ... >the associated keys or not during that session. ... These commands invoked from .bashrc will add an ssh-agent if appropriate ...
    (SSH)
  • Re: Using pam_ssh with gdm
    ... gdm resets and I reenter the password and passphrase. ... >>by hand to actually enter the key information. ... > and errno is set to ECHILD (observed with gdm who uses a whole bunch of processes). ... ssh-agent and child processes. ...
    (freebsd-stable)