From unknown Tue May 19 03:00:37 2026
X-Loop: git-admin@x2go.org
Subject: Bug#76: Fails to use my local SSH agent
Reply-To: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>, 76@bugs.x2go.org
Resent-From: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
Resent-To: x2go-dev@lists.berlios.de
Resent-CC: X2Go Developers <x2go-dev@lists.berlios.de>
X-Loop: git-admin@x2go.org
Resent-Date: Thu, 06 Dec 2012 08:48:01 +0000
Resent-Message-ID: <handler.76.B76.135478340312675@bugs.x2go.org>
Resent-Sender: git-admin@x2go.org
X-X2Go-PR-Message: followup 76
X-X2Go-PR-Package: pyhoca-gui
X-X2Go-PR-Keywords: 
Received: via spool by 76-submit@bugs.x2go.org id=B76.135478340312675
          (code B ref 76); Thu, 06 Dec 2012 08:48:01 +0000
Received: (at 76) by bugs.x2go.org; 6 Dec 2012 08:43:23 +0000
Received: from freya.das-netzwerkteam.de (freya.das-netzwerkteam.de [88.198.48.199])
	by ymir (Postfix) with ESMTPS id D43913BC43;
	Thu,  6 Dec 2012 09:43:23 +0100 (CET)
Received: from grimnir.das-netzwerkteam.de (grimnir.das-netzwerkteam.de [78.46.204.98])
	by freya.das-netzwerkteam.de (Postfix) with ESMTPS id B06A71F4;
	Thu,  6 Dec 2012 09:43:23 +0100 (CET)
Received: from localhost (localhost [127.0.0.1])
	by grimnir.das-netzwerkteam.de (Postfix) with ESMTP id A1D9E3BBEA;
	Thu,  6 Dec 2012 09:43:23 +0100 (CET)
X-Virus-Scanned: Debian amavisd-new at grimnir.das-netzwerkteam.de
Received: from grimnir.das-netzwerkteam.de ([127.0.0.1])
	by localhost (grimnir.das-netzwerkteam.de [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id oyZXDVgHV8nb; Thu,  6 Dec 2012 09:43:23 +0100 (CET)
Received: from localhost (localhost [127.0.0.1])
	by grimnir.das-netzwerkteam.de (Postfix) with ESMTP id 33B8C3BFE1;
	Thu,  6 Dec 2012 09:43:23 +0100 (CET)
Received: from localhost (localhost [127.0.0.1])
	by grimnir.das-netzwerkteam.de (Postfix) with ESMTP id 1B0193BBEA;
	Thu,  6 Dec 2012 09:43:23 +0100 (CET)
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
	grimnir.das-netzwerkteam.de
X-Spam-Flag: NO
X-Spam-Status: No, hits=-2.9 required=5.0 tests=ALL_TRUSTED,BAYES_00
	autolearn=ham version=3.3.1 running as userid=
X-Spam-Level: 
X-Spam-Bayes-Score: 0.0001
Received: by grimnir.das-netzwerkteam.de (Postfix, from userid 33)
	id BA46F3BFD9; Thu,  6 Dec 2012 09:43:22 +0100 (CET)
Received: from 219-0-142-46.pool.kielnet.net (219-0-142-46.pool.kielnet.net
 [46.142.0.219]) by mail.das-netzwerkteam.de (Horde Framework) with HTTP;
 Thu, 06 Dec 2012 09:43:22 +0100
Message-ID: <20121206094322.10775fpwalt0oywa@mail.das-netzwerkteam.de>
X-Priority: 3 (Normal)
Date: Thu, 06 Dec 2012 09:43:22 +0100
From: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
To: Reinhard Tartler <siretart@gmail.com>, 76@bugs.x2go.org
Cc: control@bugs.x2go.org
References:  <CAJ0cceb_9KrncZH86ud42DMrCVz-7VTB8Tn4PJmJ+syXnPuUZA@mail.gmail.com>
In-Reply-To:  <CAJ0cceb_9KrncZH86ud42DMrCVz-7VTB8Tn4PJmJ+syXnPuUZA@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/signed;
 boundary="=_57kzib9naj6y";
 protocol="application/pgp-signature";
 micalg="pgp-sha1"
Content-Transfer-Encoding: 7bit
User-Agent: Internet Messaging Program (IMP) H3 (4.3.4)

This message is in MIME format and has been PGP signed.

--=_57kzib9naj6y
Content-Type: text/plain;
 charset=UTF-8;
 DelSp="Yes";
 format="flowed"
Content-Disposition: inline
Content-Transfer-Encoding: 7bit

tag #76 moreinfo
thanks

HI Reinhard,

On Do 06 Dez 2012 09:13:11 CET Reinhard Tartler wrote:

> Package: pyhoca-gui
> Version: 0.2.0.4-0~789~precise1
>
> It would be nice if pyhoca-gui could just reuse my local sshagent,
> which happens to be gnome-keyring-daemon.

There are several reasons for not using gnome-keyring as ssh-agent, see:
http://dtek.net/blog/how-stop-gnome-keyring-clobbering-opensshs-ssh-agent-ubuntu-1204

The main problem you have with gnome-keyring (at least on squeeze,  
untested on wheezy) is this:

The below command sequence should create an SSH agent forwarding chain  
back to the local-machine host:

  local-machine$ ssh -A user-1@server-1
  server-1$ ssh -A user-2@server-2
  server-2$ ssh -A user-3@server-3

This works flawlessly with ssh-agent, but fails with gnome-keyring.  
gnome-keyring simple loads the local keys (by finding them under their  
default names). That's it.

Expected behaviour would be: mix auth info from the forwarded  
ssh-agent (running on local-machine) with SSH keys found in .ssh on  
the local-system.

Are you affected by this restriction of GNOME keyring?

Maybe time to disable SSH agent functionality in GNOME-keyring?

Mike



-- 

DAS-NETZWERKTEAM
mike gabriel, rothenstein 5, 24214 neudorf-bornstein
fon: +49 (1520) 1976 148

GnuPG Key ID 0x25771B31
mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de

freeBusy:
https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xfb

--=_57kzib9naj6y
Content-Type: application/pgp-signature
Content-Description: Digitale PGP-Unterschrift
Content-Disposition: inline
Content-Transfer-Encoding: 7bit

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
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=WTnk
-----END PGP SIGNATURE-----

--=_57kzib9naj6y--