On 2/3/23 05:52, Jeffrey Walton wrote:
On Wed, Mar 1, 2023 at 2:49 PM jeremy ardley <jer...@ardley.org> wrote:
I may have found a bug in openssh.
[...]
I have created a ~/.ssh/config file with contents
Host jeremy_client
HostName client.example.com
User jeremy
IdentityFile ~/.ssh/com.example.jeremy.id_rsa
Does ssh_config(5) do Bash parameter expansion. That is, is the tilde
(~) expanded? I don't see it listed in the man page at
https://linux.die.net/man/5/ssh_config .
In the IdentityFile section in your reference, they say :
"Specifies a file from which the user's RSA or DSA authentication
identity is read. The default is /~/.ssh/identity/ for protocol version
1, and /~/.ssh/id_rsa/ and /~/.ssh/id_dsa/ for protocol version 2.
Additionally, any identities represented by the authentication agent
will be used for authentication.
The file name may use the tilde syntax to refer to a user's home
directory or one of the following escape characters: '%d' (local user's
home directory), '%u' (local user name), '%l' (local host name), '%h'
(remote host name) or '%r' (remote user name). "
The sad part is I thought I was getting a handle on configuring openssh
using ldap and certificates. The multitude of options there say I'm
nowhere near!
--
Jeremy