From owner-freebsd-stable@FreeBSD.ORG Sat Dec 2 18:56:04 2006 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 8601616A47B for ; Sat, 2 Dec 2006 18:56:04 +0000 (UTC) (envelope-from quetzal@zone3000.net) Received: from mx1.sitevalley.com (sitevalley.com [209.67.60.43]) by mx1.FreeBSD.org (Postfix) with SMTP id 4932C43CA3 for ; Sat, 2 Dec 2006 18:55:36 +0000 (GMT) (envelope-from quetzal@zone3000.net) Received: from unknown (HELO localhost) (217.144.69.37) by 209.67.61.254 with SMTP; 2 Dec 2006 18:55:57 -0000 Date: Sat, 2 Dec 2006 20:55:30 +0200 From: Nikolay Pavlov To: Stefan Thurner Message-ID: <20061202185530.GA2030@zone3000.net> Mail-Followup-To: Nikolay Pavlov , Stefan Thurner , freebsd-stable@freebsd.org References: <45708A65.3000709@xris.fu41.vpn> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <45708A65.3000709@xris.fu41.vpn> User-Agent: Mutt/1.4.2.1i X-Operating-System: FreeBSD 6.1-RELEASE-p10 Cc: freebsd-stable@freebsd.org Subject: Re: pam.d/sshd X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 02 Dec 2006 18:56:04 -0000 On Friday, 1 December 2006 at 21:02:45 +0100, Stefan Thurner wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > > Hi Stefan. > > /etc/pam.d/sshd pam file is for sshd server not for ssh client. > > If you want to use ssh-agent whole the time your box is online you > > should start it right after login. In order to doing this add > > "session optional pam_ssh.so want_agent" > > line into session facility of /etc/pam.d/system file (it's included > > into /etc/pam.d/login so don't worry). > > Hi Nikolay! > > Thats right and I have such a line in may pam.d/system file. But what I > want is that ssh-agent is started on the remote host if I login on the > remote host. Therefore I added the described lines in the pam.d/sshd > file on the remote host. > > The password for ssh-key is requested if I login on the remote host (as > it should) but no ssh-agent is started. I'm quite sure that it is a bug > in pam_ssh.so. When bug reporting on the freebsd site is working again I > will send in a problem report. Yes. You are right. Even with "want_agent" ssh-agent is started, but do not contain key decripted during the authentication phase. > > best regards > - -Stefan > - -- > GPG-encrypted mail welcome! --> ID:E970FCBE > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.5 (FreeBSD) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFFcIplxNmQVulw/L4RApPYAJ9C2frkDjE3AlKdQh/unv38E1YbjwCgtPaZ > 6lio3DnQJBfjh+azcAyD9fA= > =Rebv > -----END PGP SIGNATURE----- > _______________________________________________ > freebsd-stable@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-stable > To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org" -- ====================================================================== - Best regards, Nikolay Pavlov. <<<----------------------------------- ======================================================================