From owner-freebsd-questions Wed Nov 28 4:37:34 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mgw-x1.nokia.com (mgw-x1.nokia.com [131.228.20.21]) by hub.freebsd.org (Postfix) with ESMTP id 6F18737B419 for ; Wed, 28 Nov 2001 04:36:59 -0800 (PST) Received: from esvir05nok.ntc.nokia.com (esvir05nokt.ntc.nokia.com [172.21.143.37]) by mgw-x1.nokia.com (Switch-2.1.0/Switch-2.1.0) with ESMTP id fASCYtc03983 for ; Wed, 28 Nov 2001 14:34:55 +0200 (EET) Received: from esebh11nok.ntc.nokia.com (unverified) by esvir05nok.ntc.nokia.com (Content Technologies SMTPRS 4.2.5) with ESMTP id for ; Wed, 28 Nov 2001 14:36:56 +0200 Received: from jylitwork.lnx.nokia.com (hedhcp214114.ntc.nokia.com [172.21.214.114]) by esebh11nok.ntc.nokia.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2652.78) id XVV17743; Wed, 28 Nov 2001 14:36:56 +0200 Received: (from jylitalo@localhost) by jylitwork.lnx.nokia.com (8.11.6/8.11.6) id fASCb4N02829 for freebsd-questions@freebsd.org; Wed, 28 Nov 2001 14:37:04 +0200 Date: Wed, 28 Nov 2001 14:37:04 +0200 From: "Ylitalo Juha . O" To: freebsd-questions@freebsd.org Subject: ssh agent forwarding with FreeBSD and Linux... Message-ID: <20011128143703.D1623@jylitwork.lnx.nokia.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Disposition: inline User-Agent: Mutt/1.2.5i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I think I have found funny problem, but I don't know where I should report about it or if someone would have solution for it. To summarize it, ssh authentication agent forwarding doesnt seem to work in ssh protocol 2 To give you complete picture about situation, we probably should start with more detailed information about environment. It consists one RedHat Linux 7.1 (openssh 2.9p2) and FreeBSD 4.4-RELEASE (openssh 2.3.0). In RH box, I've started my session with "exec ssh-agent gnome-session", I've then added my sshv1 and sshv2 identities into agent. [jylitalo@jylitwork jylitalo]$ ssh-add -l 1024 84:c6:5d:ab:21:62:32:84:5d:cd:fd:f9:2b:f3:40:6f jylitalo@jylitpc.ntc.nokia.com (RSA1) 1024 0d:38:19:99:b6:9a:8e:29:db:5c:5f:0e:df:a3:7c:94 dsa w/o comment (DSA) [jylitalo@jylitwork jylitalo]$ I have first identity in FreeBSD machines ~/.ssh/authorized_keys and second one in authorized_keys2 file and I don't have any problems at doing ssh commands from RH box to FreeBSD. Things start going wrong, if I first open session with "ssh -A FreeBSD" and then try to give "ssh-add -l". bash-2.05$ ssh-add -l Could not open a connection to your authentication agent. bash-2.05$ Also I don't seem to have SSH_AUTH_SOCK defined in my environment. Work-around to this situation is to use "ssh -1 -A FreeBSD" command for that session, because then "ssh-add -l" will work correctly and I have SSH_AUTH_SOCK is defined. If someone has found same situation and found way to fix it (other than editing /etc/ssh/ssh_config in RH box), I would love to hear about it. -- Juha Ylitalo juha.o.ylitalo@nokia.com +358 40 562 6152 http://www.iki.fi/~jylitalo "Some tools are used, because its policy, others because they are good." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message