On 06/07/2014 03:41, Chris Stankevitz wrote: > I am trying to ssh into a site using PKI. I have a private key in my > .ssh directory that requires a passphrase. > > ssh is asking me for my passphrase using a terrible program called > "pinentry". It's terrible for a bunch of reasons, and if you are > interested you can just google "pinentry sucks". > > pinentry is on my system because it is a dependency of gpg. gpg is on > my system because I use thunderbird with +crypt (which is the > default). > > Question: > > By what mechanism does ssh know to use the program "pinentry" to > acquire my passphrase?
Why not do the obvious thing instead? Run keychain and have it unlock your keys *once* when the workstation boots up. ssh then always uses that key as it is unlocked. I also have pinentry here, for the same reasons you do, and keychain renders it never needing to run -- Alan McKinnon alan.mckin...@gmail.com
