Yichou / connectbot

Automatically exported from code.google.com/p/connectbot
Apache License 2.0
0 stars 0 forks source link

Option to attempt public key auth without key manager (ssh agent) #101

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago
Public keys work fine as long as you remember to go to the key manager
first to unlock them (and assuming you can: the desktop shortcuts don't
give you any opportunity to do this).

It would make things a lot more convenient if connectbot prompted for the
public key password before it asked for the server password, IF there is a
password-protected key stored.  This could be an option; i.e. "password
order": "server then key" vs. "key then server", although almost every ssh
client I've used just asks for key password first.

Once a key is unlocked, enable an "ssh-agent" (which doesn't really need to
be a separate process; connectbot itself stays running).  This will
remember the unlocked key for all future sessions for a specified period of
time.  (Add an option to specify a period of time.)  For all I know this is
how key manager already works, though.

- What version of the product are you using: r152

Original issue reported on code.google.com by coryd...@gmail.com on 23 Dec 2008 at 6:20

GoogleCodeExporter commented 9 years ago
You can edit the host and choose to use a specific keypair. It will ask for the
password when connecting if it isn't unlocked. Once it's unlocked, it will stay 
in
memory.

The SSH agent part might be a duplicate of Issue 70.

Original comment by kenny@the-b.org on 28 Dec 2008 at 11:14

GoogleCodeExporter commented 9 years ago
OK, that works, but the option is pretty well hidden.  (I didn't know about the
colors either.)  Why do I have to associate a key with a particular host 
though?  The
key identifies *me*, not the host, and I'm the same person regardless of which 
host I
use.  It's typical to use the same key on lots of hosts.

ssh-agent functionality seems to already be there, sorta.  I don't have to 
unlock the
key again when I go out to the desktop.

Original comment by coryd...@gmail.com on 29 Dec 2008 at 4:19

GoogleCodeExporter commented 9 years ago
You have to choose which key mainly because you have the ability to have 
multiple
keys in ConnectBot (despite the fact that there is only one of you). Also it 
doesn't
reveal information you don't want to (i.e., offering a public key of another
identity, perhaps).

I agree documentation is lacking.

Original comment by kenny@the-b.org on 29 Dec 2008 at 5:01