1 |
For my ssh keys that require passphrases, I use ssh-agent to cache the |
2 |
decrypted key so I don't have to type the passphrase every time. Until |
3 |
yesterday there was only one such key; last night I added a new one |
4 |
[1]. And, being the lazy thinker I am, I used the same passphrase as |
5 |
for the old one. |
6 |
|
7 |
Now, I find that when I run ssh-add to tell ssh-agent about my keys, |
8 |
_both_ are added to the session after asking me the passphrase only |
9 |
once! This can only be secure and correct if the agent somehow compares |
10 |
the passphrases and knows they are the same; even then, it is _very_ |
11 |
surprising. Have you seen this and how do you explain it? |
12 |
|
13 |
[1] |
14 |
It was necessary to create a new rsa type key because of a stupid server |
15 |
which doesn't understand ecdsa keys. |
16 |
|
17 |
-- |
18 |
Please don't Cc: me privately on mailing lists and Usenet, |
19 |
if you also post the followup to the list or newsgroup. |
20 |
To reply privately _only_ on Usenet and on broken lists |
21 |
which rewrite From, fetch the TXT record for no-use.mooo.com. |