Re: Finding a resident key stored in an agent without a corresponding file?

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 

On 22/03/2021 09:58, Jochen Bern wrote:
> Umh, *does* every privKey that ssh "offers" (as the debug output calls
> it) qualify as an actual authentication attempt, and thus count against
> MaxAuthTries?

Yes, in my experience it does, and with a large keyring collection in
the agent, or with a lot of keys located at default paths, a server with
a low MaxAuthTries limit will boot me out, before I can even attempt
auth, unless I specify an explicit IdentityFile= and also specify
IdentitiesOnly=yes (so that it doesn't try any others, even those
located at default paths).

Regards,
Aaron Jones

Attachment: OpenPGP_signature
Description: OpenPGP digital signature

_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux