https://bugzilla.mindrot.org/show_bug.cgi?id=3439
Bug ID: 3439
Summary: identify password prompts
Product: Portable OpenSSH
Version: v9.0p1
Hardware: Other
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
Component: Miscellaneous
Assignee: unassigned-bugs@mindrot.org
Reporter: tar.ancalime.numenor@gmail.com
Dear developers.
Since a while, I have more and more systems where I use ProxyJump and
have to either use a passphrase (and cannot use a pubkey) and/or enter
a 2FA-OTP.
I have no idea who prints the respective prompts, I'd assume the normal
passphrase prompt is printed by OpenSSH client, but the OTP prompt by
the remote server?
At least I have some OTP prompts where I get some valuable information
about which OTP is requested, and others where I just see "Your OTP:".
In any case, with multiple ProxyJump hops respectively, when doing scp,
with multiple source servers, things can get quite messy.
Then one get's multiple prompts that may be identical and has to think
"where" one is.
Would it be possible to add an option, that ssh/scp/sftp prefix these
prompts?
For example with the respecitve hostname and, if OpenSSH can differ
between what is a normal passphrase request and a OTP, the "type" of
information that is queried?
The default of such option could be "no", so and people could just
selectively enable it when needed.
Thanks in advance, if it should be possible to have this implemented.
--
You are receiving this mail because:
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs
Bug ID: 3439
Summary: identify password prompts
Product: Portable OpenSSH
Version: v9.0p1
Hardware: Other
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
Component: Miscellaneous
Assignee: unassigned-bugs@mindrot.org
Reporter: tar.ancalime.numenor@gmail.com
Dear developers.
Since a while, I have more and more systems where I use ProxyJump and
have to either use a passphrase (and cannot use a pubkey) and/or enter
a 2FA-OTP.
I have no idea who prints the respective prompts, I'd assume the normal
passphrase prompt is printed by OpenSSH client, but the OTP prompt by
the remote server?
At least I have some OTP prompts where I get some valuable information
about which OTP is requested, and others where I just see "Your OTP:".
In any case, with multiple ProxyJump hops respectively, when doing scp,
with multiple source servers, things can get quite messy.
Then one get's multiple prompts that may be identical and has to think
"where" one is.
Would it be possible to add an option, that ssh/scp/sftp prefix these
prompts?
For example with the respecitve hostname and, if OpenSSH can differ
between what is a normal passphrase request and a OTP, the "type" of
information that is queried?
The default of such option could be "no", so and people could just
selectively enable it when needed.
Thanks in advance, if it should be possible to have this implemented.
--
You are receiving this mail because:
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs