On 10.01.25 00:33, Corey Hickey wrote:
I took the approach of preserving current behavior by default, but another approach would be to:* print "The agent has no identities." to stderr instead of stdout * exit with a status of 0 instead of 1
Please don't. If you want to ever get people to load their privkeys into the agent *with a limited lifetime*, having a trivial, *universal* way to check whether they have expired by now is an asset.
workplace$ egrep ' ssh(|add)=' .bashrc alias sshadd='( echo -n "`tput dim`" ; ssh-add -c -t 1800 ; echo -n "`tput sgr0`" )'alias ssh='ssh-add -l >/dev/null || sshadd ; ssh'
jumphost$ grep -A 9 '^ssh' .bashrc
ssh() {
if [ -z "$SSH_AUTH_SOCK" ]; then
# No forwarded agent. Someone wants to learn many passwords by heart ...
/usr/bin/ssh "$@"
elif ssh-add -l >/dev/null 2>&1 ; then
/usr/bin/ssh "$@"
else
echo "`tput setaf 0``tput setab 1` Please (re)load your keypairs into the agent first `tput sgr0`"
fi
}
Kind regards, -- Jochen Bern Systemingenieur Binect GmbH
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ openssh-unix-dev mailing list openssh-unix-dev@xxxxxxxxxxx https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
