Mailing List Archive

[Bug 3080] Document IdentityFile=none and clarify interaction of defaults with IdentitiesOnly
https://bugzilla.mindrot.org/show_bug.cgi?id=3080

Damien Miller <djm@mindrot.org> changed:

What |Removed |Added
----------------------------------------------------------------------------
Resolution|--- |FIXED
Status|NEW |RESOLVED
CC| |djm@mindrot.org

--- Comment #1 from Damien Miller <djm@mindrot.org> ---
This was fixed last September in commit 7047d5afe3 and should be in
OpenSSH 8.2

--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 3080] Document IdentityFile=none and clarify interaction of defaults with IdentitiesOnly [ In reply to ]
https://bugzilla.mindrot.org/show_bug.cgi?id=3080

osnuc <openssh@nuclearsunshine.com> changed:

What |Removed |Added
----------------------------------------------------------------------------
Resolution|FIXED |---
Status|RESOLVED |REOPENED

--- Comment #2 from osnuc <openssh@nuclearsunshine.com> ---
Hi, thanks for the update on this.

As far as I can see, the special "none" string for IdentityFile still
remains undocumented. So as a minimum, can you please make the
following change:

* in the IdentityFile section, mention the special "none" value.

Additionally, a common use case for IdentitiesOnly is to set it to yes
globally, and then set IdentityFile for each host, with the intention
of *only* trying the explicitly configured key.

However, this will not have the desired effect, since OpenSSH will
still try (falling back on?) keys with standard names.

For this reason, it would be helpful to add the following:

* in the IdentitiesOnly section, mention also needing to set
IdentityFile to none if the user does not want to fall back on SSH keys
with standard names.

--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs