X2Go Bug report logs - #76
Fails to use my local SSH agent

version graph

Package: pyhoca-gui; Maintainer for pyhoca-gui is X2Go Developers <x2go-dev@lists.x2go.org>; Source for pyhoca-gui is src:pyhoca-gui.

Reported by: Reinhard Tartler <siretart@gmail.com>

Date: Thu, 6 Dec 2012 08:18:02 UTC

Severity: normal

Tags: moreinfo, pending

Found in version 0.2.0.4-0~789~precise1

Done: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>

Bug is archived. No further changes may be made.

Full log

Message #12 received at control@bugs.x2go.org (full text, mbox, reply):

Received: (at control) by bugs.x2go.org; 6 Dec 2012 08:43:23 +0000
From mike.gabriel@das-netzwerkteam.de  Thu Dec  6 09:43:23 2012
Received: from freya.das-netzwerkteam.de (freya.das-netzwerkteam.de [88.198.48.199])
	by ymir (Postfix) with ESMTPS id D43913BC43;
	Thu,  6 Dec 2012 09:43:23 +0100 (CET)
Received: from grimnir.das-netzwerkteam.de (grimnir.das-netzwerkteam.de [78.46.204.98])
	by freya.das-netzwerkteam.de (Postfix) with ESMTPS id B06A71F4;
	Thu,  6 Dec 2012 09:43:23 +0100 (CET)
Received: from localhost (localhost [127.0.0.1])
	by grimnir.das-netzwerkteam.de (Postfix) with ESMTP id A1D9E3BBEA;
	Thu,  6 Dec 2012 09:43:23 +0100 (CET)
X-Virus-Scanned: Debian amavisd-new at grimnir.das-netzwerkteam.de
Received: from grimnir.das-netzwerkteam.de ([127.0.0.1])
	by localhost (grimnir.das-netzwerkteam.de [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id oyZXDVgHV8nb; Thu,  6 Dec 2012 09:43:23 +0100 (CET)
Received: from localhost (localhost [127.0.0.1])
	by grimnir.das-netzwerkteam.de (Postfix) with ESMTP id 33B8C3BFE1;
	Thu,  6 Dec 2012 09:43:23 +0100 (CET)
Received: from localhost (localhost [127.0.0.1])
	by grimnir.das-netzwerkteam.de (Postfix) with ESMTP id 1B0193BBEA;
	Thu,  6 Dec 2012 09:43:23 +0100 (CET)
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
	grimnir.das-netzwerkteam.de
X-Spam-Flag: NO
X-Spam-Status: No, hits=-2.9 required=5.0 tests=ALL_TRUSTED,BAYES_00
	autolearn=ham version=3.3.1 running as userid=
X-Spam-Level: 
X-Spam-Bayes-Score: 0.0001
Received: by grimnir.das-netzwerkteam.de (Postfix, from userid 33)
	id BA46F3BFD9; Thu,  6 Dec 2012 09:43:22 +0100 (CET)
Received: from 219-0-142-46.pool.kielnet.net (219-0-142-46.pool.kielnet.net
 [46.142.0.219]) by mail.das-netzwerkteam.de (Horde Framework) with HTTP;
 Thu, 06 Dec 2012 09:43:22 +0100
Message-ID: <20121206094322.10775fpwalt0oywa@mail.das-netzwerkteam.de>
X-Priority: 3 (Normal)
Date: Thu, 06 Dec 2012 09:43:22 +0100
From: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
To: Reinhard Tartler <siretart@gmail.com>, 76@bugs.x2go.org
Cc: control@bugs.x2go.org
Subject: Re: [X2Go-Dev] Bug#76: Fails to use my local SSH agent
References:  <CAJ0cceb_9KrncZH86ud42DMrCVz-7VTB8Tn4PJmJ+syXnPuUZA@mail.gmail.com>
In-Reply-To:  <CAJ0cceb_9KrncZH86ud42DMrCVz-7VTB8Tn4PJmJ+syXnPuUZA@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/signed;
 boundary="=_57kzib9naj6y";
 protocol="application/pgp-signature";
 micalg="pgp-sha1"
Content-Transfer-Encoding: 7bit
User-Agent: Internet Messaging Program (IMP) H3 (4.3.4)

[Message part 1 (text/plain, inline)]
tag #76 moreinfo
thanks

HI Reinhard,

On Do 06 Dez 2012 09:13:11 CET Reinhard Tartler wrote:

> Package: pyhoca-gui
> Version: 0.2.0.4-0~789~precise1
>
> It would be nice if pyhoca-gui could just reuse my local sshagent,
> which happens to be gnome-keyring-daemon.

There are several reasons for not using gnome-keyring as ssh-agent, see:
http://dtek.net/blog/how-stop-gnome-keyring-clobbering-opensshs-ssh-agent-ubuntu-1204

The main problem you have with gnome-keyring (at least on squeeze,  
untested on wheezy) is this:

The below command sequence should create an SSH agent forwarding chain  
back to the local-machine host:

 local-machine$ ssh -A user-1@server-1
 server-1$ ssh -A user-2@server-2
 server-2$ ssh -A user-3@server-3

This works flawlessly with ssh-agent, but fails with gnome-keyring.  
gnome-keyring simple loads the local keys (by finding them under their  
default names). That's it.

Expected behaviour would be: mix auth info from the forwarded  
ssh-agent (running on local-machine) with SSH keys found in .ssh on  
the local-system.

Are you affected by this restriction of GNOME keyring?

Maybe time to disable SSH agent functionality in GNOME-keyring?

Mike



-- 

DAS-NETZWERKTEAM
mike gabriel, rothenstein 5, 24214 neudorf-bornstein
fon: +49 (1520) 1976 148

GnuPG Key ID 0x25771B31
mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de

freeBusy:
https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xfb

[Message part 2 (application/pgp-signature, inline)]

Send a report that this bug log contains spam.

X2Go Developers <owner@bugs.x2go.org>. Last modified: Tue May 7 23:56:44 2024; Machine Name: ymir.das-netzwerkteam.de

X2Go Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.