On Tue, 2010-04-06 at 09:57 -0400, m.roth@xxxxxxxxx wrote:
> Yesterday or Friday, don't remember, I happened to be looking at my
> processes on my machine, and discovered I had a number of ssh-agents
> running (all mine), from different days. I killed all but the current
> day's.
>
> Now, I log out every single night.
>
> I checked the next day, and sure enough, the one I started the previous
> day was still running, and I could not only use ssh-add, and it worked. I
> didn't think of it this morning until just now, but tomorrow I'll log back
> in, and see if I even need to use ssh-add.
>
> If this is the case, I am not happy. This is, to me, a security hole, and
> *not* what I expected, nor what the man page seems to lead me to believe.
>
> Bug?
>
> mark
I think that you may want some additional documentation on the use of
ssh and ssh-agent. Try this link ( read all three parts of the
article ) and re-evaluate your conclusions.
http://www-106.ibm.com/developerworks/library/l-keyc.html
I have been using the keychain utility referenced in this series for
several years now, and I'm pretty happy with it. As always, YMMV.
--
Ron Loftin reloftin@xxxxxxxxxxxx
"God, root, what is difference ?" Piter from UserFriendly
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
