command line - SSH keys using gnome-keyring instead of ssh-add - Ask Ubuntu


i'm not sure i'm asking because i'm not pretty sure how of world works, but, have private ubuntu 14.04 server installed using virtualbox, use development, without x server. so, in terminal-land.

i run private server on terminal (vboxmanage startvm), , connect ssh. inside private server, connect public server when need using ssh again.

when connect private server, or use ssh other thing, have type key passphrase once during whole desktop session. don't know responsible that, think gnome-keyring-daemon. inside private server, have type passphrase each time use key (for connecting public server instance). don't want use ssh-agent or ssh-add because don't want prompt connecting private server, if have more 1 passphrase-protected key. also, issue of having ssh-agent instance on each new terminal session.

the gnome-keyring installed in private server don't know how "activate" manage keys, , avoid being prompted passphrase, each time want ssh-connect within private server public server (i have scripts connects multiple times in single run).

lastly, don't forget private server has no desktop , i'm not install it.

what looking ssh-agent. remembers fact unlocked key passphrase , keeps unlocked while logged in. there few different implementations, gnome-keyring provides one, though headless servers can more either call ssh-agent directly in .bashrc, or use keychain app wraps ssh-agent , makes life easier.

keychain should available via sudo apt-get install keychain or on fedora (dnf), centos (yum), or arch (pacman). once have installed can add line eval $(keychain --eval) .bashrc , start , keep 1 instance of ssh-agent running user. if add key name after --eval load named key(s) first time login prompting passphrase(s) right away , keep them tucked away.

you can see keys loaded ssh-add -l , can add key ssh-add ~/.ssh/keyname prompt once passphrase , store until logout or keychain stopped/kill. can add kill command .bash_logout if worried keeping keys unlocked after disconnect.

see nice site excellent links how openssh works , examples, https://www.funtoo.org/keychain , enjoy not typing passphrase repeatedly.


Comments

Post a Comment

Popular posts from this blog

download - Firefox cannot save files (most of the time), how to solve? - Super User

this not full duplicate of this question or this question , though base question same. however, questions have no answers. for on half year have problems downloading files firefox. when click on download link, download dialog opened asking me do, save or open it. immediately, there error/warning pop-up (twice, can see 1 @ first) ok button. looks this message : "c:\users\%user%\appdata\local\temp\wbbdv9k8.zip.part not saved because source file not read. try again later or contact server administrator." replace '%user%' name of user trying download. after closing pop-up, download dialog disappears , have minimize firefox , open again, see other pop-up. downloading exact same file internet explorer work, not desired. i tried solutions here . tried solutions here . tried disabling extensions. tried fixing permissions on temp folder. tried making files , folder in profile directory non-readonly. tried running firefox administrator. tried
Read more

windows - "-2146893807 NTE_NOT_FOUND" when repair certificate store - Super User

i try repair certificate store in windows 10 doing c:\windows\system32>certutil -store -user ‎330000019dba8d5dddb98062a900000000019d "personal" certutil: -store command failed: 0x80090011 (-2146893807 nte_not_found) certutil: object not found. i have double check mmc, certificate details serial number of certificate. still fail repair certificate store. can please help? i getting same error when trying export pfx. turns out had export c:\cert.pfx instead of cert.pfx (it trying export file cert store ( cert:\localmachine\my ).
Read more

sql server - "Configuration file does not exist", Event ID 274 - Super User

sql server 2014 standard in server 2012 r2 i installed sql server 2014 in drive d: i following error: microsoft ssis service: registry setting specifying configuration file not exist. attempting load default config file. simply add c:\program files\microsoft sql server\1?0\dts\binn\msdtssrvr.ini.xml to default reg_sz value in: hkey_local_machine\software\microsoft\microsoft sql server\1?0\ssis\serviceconfigfile where ? replaced matching sql server version
Read more