Differences between version 22 and predecessor to the previous major change of SSHKeys.
Other diffs: Previous Revision, Previous Author, or view the Annotated Edit History
| Newer page: | version 22 | Last edited on Saturday, February 18, 2006 6:20:35 am | by StephenScahefer | Revert |
| Older page: | version 20 | Last edited on Thursday, October 27, 2005 1:10:40 pm | by MatthiasDallmeier | Revert |
@@ -188,8 +188,17 @@
!!Agent Connection Forwarding
To save a lot of more typing, you can forward ssh-agent(1) information with the __-A__ option to [SSH]. You can thus keep all your credentials on a single machine. __NOTE:__ Do not forward agent connections to hosts you do not trust. Their SuperUser can steal your keys.
-__.ssh/config__ convenience (see [SSHNotes] and ssh_config(5)) is achieved using __!
ForwardAgent yes__.
+__.ssh/config__ convenience (see [SSHNotes] and ssh_config(5)) is achieved using __~
ForwardAgent yes__.
+
+If your home directory is available to multiple machines, some might or might not have ssh-agent running already; you might or might not have forwarded authentication. The following in your $HOME/.profile sets up ssh-agent if it is not present for a particular sh/bash/ksh session, but does not clobber forwarded authentication:
+
+<verbatim>
+if [ -z "$SSH_AGENT_PID" -a -z "$SSH_AUTH_SOCK" -o ! -S "$SSH_AUTH_SOCK" ]; then
+ eval `ssh-agent`
+ trap "kill -1 $SSH_AGENT_PID" EXIT
+fi
+</verbatim>
----
Part of CategorySecurity and CategoryNetworking
