Re: [Bug 965836] Re: `ssh-add -x` does not prevent key use
Yup, that's the trouble. Good sleuthing. Knowing that (and, indeed, `ssh-add -X` reports success regardless of password entered), I can start a real ssh-agent anywhere I want agent locking instead of gui integration. Thanks! -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/965836 Title: `ssh-add -x` does not prevent key use To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/965836/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 965836] Re: `ssh-add -x` does not prevent key use
Yup, that's the trouble. Good sleuthing. Knowing that (and, indeed, `ssh-add -X` reports success regardless of password entered), I can start a real ssh-agent anywhere I want agent locking instead of gui integration. Thanks! -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/965836 Title: `ssh-add -x` does not prevent key use To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/965836/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 965836] [NEW] `ssh-add -x` does not prevent key use
Public bug reported: I add my key: $ ssh-add -t $((60*60*2)) /media/secret/secret/id_dsa After which I physically remove the USB stick with that key and I lock my agent: $ ssh-add -x Enter lock password: Again: Agent locked. Then I ssh someplace I shouldn't be able to get to: $ ssh -v 10.13.37.6 OpenSSH_5.8p1 Debian-7ubuntu1, OpenSSL 1.0.0e 6 Sep 2011 debug1: Reading configuration data /etc/ssh/ssh_config debug1: Applying options for * debug1: Connecting to 10.13.37.6 [10.13.37.6] port 22. debug1: Connection established. debug1: identity file /home/martin/.ssh/id_rsa type -1 debug1: identity file /home/martin/.ssh/id_rsa-cert type -1 debug1: identity file /home/martin/.ssh/id_dsa type 2 debug1: Checking blacklist file /usr/share/ssh/blacklist.DSA-1024 debug1: Checking blacklist file /etc/ssh/blacklist.DSA-1024 debug1: identity file /home/martin/.ssh/id_dsa-cert type -1 debug1: identity file /home/martin/.ssh/id_ecdsa type -1 debug1: identity file /home/martin/.ssh/id_ecdsa-cert type -1 debug1: Remote protocol version 2.0, remote software version OpenSSH_5.5p1 Debian-4ubuntu5 debug1: match: OpenSSH_5.5p1 Debian-4ubuntu5 pat OpenSSH* debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_5.8p1 Debian-7ubuntu1 debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: server-client aes128-ctr hmac-md5 none debug1: kex: client-server aes128-ctr hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(102410248192) sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug1: Server host key: RSA b9:b0:f8:f0:6c:36:5b:b1:55:7f:d3:e3:b6:4c:32:5d debug1: Host '10.13.37.6' is known and matches the RSA host key. debug1: Found key in /home/martin/.ssh/known_hosts:30 debug1: ssh_rsa_verify: signature correct debug1: SSH2_MSG_NEWKEYS sent debug1: expecting SSH2_MSG_NEWKEYS debug1: SSH2_MSG_NEWKEYS received debug1: Roaming not allowed by server debug1: SSH2_MSG_SERVICE_REQUEST sent debug1: SSH2_MSG_SERVICE_ACCEPT received debug1: Authentications that can continue: publickey,password debug1: Next authentication method: publickey debug1: Offering DSA public key: /home/martin/.ssh/id_dsa debug1: Server accepts key: pkalg ssh-dss blen 435 debug1: Authentication succeeded (publickey). Authenticated to 10.13.37.6 ([10.13.37.6]:22). debug1: channel 0: new [client-session] debug1: Requesting no-more-sessi...@openssh.com debug1: Entering interactive session. debug1: Sending environment. debug1: Sending env LANG = en_US.UTF-8 Linux bh-live-02 2.6.35-28-virtual #50-Ubuntu SMP Fri Mar 18 19:16:26 UTC 2011 x86_64 GNU/Linux Ubuntu 10.10 Notably, it says, debug1: Offering DSA public key: /home/martin/.ssh/id_dsa, but: $ ls -l /home/martin/.ssh/id_dsa ls: cannot access /home/martin/.ssh/id_dsa: No such file or directory Also, -l shows a key when it should show none: $ ssh-add -l 1024 a5:51:2f:98:70:97:97:bb:54:0f:12:cf:72:f7:be:64 /media/secret/secret/id_dsa (DSA) ProblemType: Bug DistroRelease: Ubuntu 11.10 Package: openssh-client 1:5.8p1-7ubuntu1 Uname: Linux 3.3.0-030300rc7-generic x86_64 ApportVersion: 1.23-0ubuntu4 Architecture: amd64 Date: Mon Mar 26 17:52:37 2012 InstallationMedia: Ubuntu 11.10 Oneiric Ocelot - Release amd64 (20111011) ProcEnviron: PATH=(custom, user) LANG=en_US.UTF-8 SHELL=/bin/bash RelatedPackageVersions: ssh-askpass N/A libpam-sshN/A keychain N/A ssh-askpass-gnome 1:5.8p1-7ubuntu1 SSHClientVersion: OpenSSH_5.8p1 Debian-7ubuntu1, OpenSSL 1.0.0e 6 Sep 2011 SourcePackage: openssh UpgradeStatus: No upgrade log present (probably fresh install) ** Affects: openssh (Ubuntu) Importance: Undecided Status: New ** Tags: amd64 apport-bug oneiric -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/965836 Title: `ssh-add -x` does not prevent key use To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/965836/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 965836] Re: `ssh-add -x` does not prevent key use
-- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/965836 Title: `ssh-add -x` does not prevent key use To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/965836/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 965836] [NEW] `ssh-add -x` does not prevent key use
Public bug reported: I add my key: $ ssh-add -t $((60*60*2)) /media/secret/secret/id_dsa After which I physically remove the USB stick with that key and I lock my agent: $ ssh-add -x Enter lock password: Again: Agent locked. Then I ssh someplace I shouldn't be able to get to: $ ssh -v 10.13.37.6 OpenSSH_5.8p1 Debian-7ubuntu1, OpenSSL 1.0.0e 6 Sep 2011 debug1: Reading configuration data /etc/ssh/ssh_config debug1: Applying options for * debug1: Connecting to 10.13.37.6 [10.13.37.6] port 22. debug1: Connection established. debug1: identity file /home/martin/.ssh/id_rsa type -1 debug1: identity file /home/martin/.ssh/id_rsa-cert type -1 debug1: identity file /home/martin/.ssh/id_dsa type 2 debug1: Checking blacklist file /usr/share/ssh/blacklist.DSA-1024 debug1: Checking blacklist file /etc/ssh/blacklist.DSA-1024 debug1: identity file /home/martin/.ssh/id_dsa-cert type -1 debug1: identity file /home/martin/.ssh/id_ecdsa type -1 debug1: identity file /home/martin/.ssh/id_ecdsa-cert type -1 debug1: Remote protocol version 2.0, remote software version OpenSSH_5.5p1 Debian-4ubuntu5 debug1: match: OpenSSH_5.5p1 Debian-4ubuntu5 pat OpenSSH* debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_5.8p1 Debian-7ubuntu1 debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: server-client aes128-ctr hmac-md5 none debug1: kex: client-server aes128-ctr hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(102410248192) sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug1: Server host key: RSA b9:b0:f8:f0:6c:36:5b:b1:55:7f:d3:e3:b6:4c:32:5d debug1: Host '10.13.37.6' is known and matches the RSA host key. debug1: Found key in /home/martin/.ssh/known_hosts:30 debug1: ssh_rsa_verify: signature correct debug1: SSH2_MSG_NEWKEYS sent debug1: expecting SSH2_MSG_NEWKEYS debug1: SSH2_MSG_NEWKEYS received debug1: Roaming not allowed by server debug1: SSH2_MSG_SERVICE_REQUEST sent debug1: SSH2_MSG_SERVICE_ACCEPT received debug1: Authentications that can continue: publickey,password debug1: Next authentication method: publickey debug1: Offering DSA public key: /home/martin/.ssh/id_dsa debug1: Server accepts key: pkalg ssh-dss blen 435 debug1: Authentication succeeded (publickey). Authenticated to 10.13.37.6 ([10.13.37.6]:22). debug1: channel 0: new [client-session] debug1: Requesting no-more-sessi...@openssh.com debug1: Entering interactive session. debug1: Sending environment. debug1: Sending env LANG = en_US.UTF-8 Linux bh-live-02 2.6.35-28-virtual #50-Ubuntu SMP Fri Mar 18 19:16:26 UTC 2011 x86_64 GNU/Linux Ubuntu 10.10 Notably, it says, debug1: Offering DSA public key: /home/martin/.ssh/id_dsa, but: $ ls -l /home/martin/.ssh/id_dsa ls: cannot access /home/martin/.ssh/id_dsa: No such file or directory Also, -l shows a key when it should show none: $ ssh-add -l 1024 a5:51:2f:98:70:97:97:bb:54:0f:12:cf:72:f7:be:64 /media/secret/secret/id_dsa (DSA) ProblemType: Bug DistroRelease: Ubuntu 11.10 Package: openssh-client 1:5.8p1-7ubuntu1 Uname: Linux 3.3.0-030300rc7-generic x86_64 ApportVersion: 1.23-0ubuntu4 Architecture: amd64 Date: Mon Mar 26 17:52:37 2012 InstallationMedia: Ubuntu 11.10 Oneiric Ocelot - Release amd64 (20111011) ProcEnviron: PATH=(custom, user) LANG=en_US.UTF-8 SHELL=/bin/bash RelatedPackageVersions: ssh-askpass N/A libpam-sshN/A keychain N/A ssh-askpass-gnome 1:5.8p1-7ubuntu1 SSHClientVersion: OpenSSH_5.8p1 Debian-7ubuntu1, OpenSSL 1.0.0e 6 Sep 2011 SourcePackage: openssh UpgradeStatus: No upgrade log present (probably fresh install) ** Affects: openssh (Ubuntu) Importance: Undecided Status: New ** Tags: amd64 apport-bug oneiric -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/965836 Title: `ssh-add -x` does not prevent key use To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/965836/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 965836] Re: `ssh-add -x` does not prevent key use
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/965836 Title: `ssh-add -x` does not prevent key use To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/965836/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 868000] Re: Fix for #821290 broke M-f/M-b behaviour in gnome-terminal without menubar
Edit - Keyboard Shortcuts... - de-select Enable menu access keys -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/868000 Title: Fix for #821290 broke M-f/M-b behaviour in gnome-terminal without menubar To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gtk+3.0/+bug/868000/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 471579] [NEW] display properties creates unusable xorg.conf
Public bug reported: Binary package hint: gnome-control-center Having just upgraded to 9.10 successfully on my laptop, I plugged in an external monitor, opened up the gnome-display-properties (belonging to gnome-control-center 1:2.28.1-0ubuntu1) , and de-selected the mirror screens checkbox. It offered by default that the external monitor should have 1680x1050, with the laptop screen at 1024x768, but that it needed to resize the virtual desktop before the settings would take effect. I said okay. On logging out, the laptop screen went to flickering without end, as in a respawning X server, while the external stayed blank. I rebooted, external monitor still connected, and the flickering display started immediately after decrypting my drive, before X was even thinking of starting. This new flickering prevented the startup process from going forward, and persisted on my next reboot without the external monitor connect. I restarted in recovery mode, and copied the old xorg.conf into place to be able to file this report, but I haven't rebooted again to see if the initial framebuffer death is still there. If so, I imagine pulling the splash out of the boot options should be enough to continue to use my computer. ProblemType: Bug Architecture: i386 Date: Mon Nov 2 11:26:40 2009 DistroRelease: Ubuntu 9.10 Package: gnome-control-center 1:2.28.1-0ubuntu1 ProcEnviron: PATH=(custom, no user) LANG=en_US.UTF-8 SHELL=/bin/bash ProcVersionSignature: Ubuntu 2.6.31-14.48-generic SourcePackage: gnome-control-center Uname: Linux 2.6.31-14-generic i686 XsessionErrors: (gnome-settings-daemon:13402): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (nautilus:13445): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed (polkit-gnome-authentication-agent-1:13458): GLib-CRITICAL **: g_once_init_leave: assertion `initialization_value != 0' failed (workrave:13498): GStreamer-WARNING **: Failed to load plugin '/usr/lib/gstreamer-0.10/libgstschro.so': /usr/lib/gstreamer-0.10/libgstschro.so: undefined symbol: schro_virt_frame_new_vert_downsample (nautilus:13563): GStreamer-WARNING **: Failed to load plugin '/usr/lib/gstreamer-0.10/libgstschro.so': /usr/lib/gstreamer-0.10/libgstschro.so: undefined symbol: schro_virt_frame_new_vert_downsample ** Affects: gnome-control-center (Ubuntu) Importance: Undecided Status: New ** Tags: apport-bug i386 -- display properties creates unusable xorg.conf https://bugs.launchpad.net/bugs/471579 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 471579] Re: display properties creates unusable xorg.conf
** Attachment added: X crash log http://launchpadlibrarian.net/34980606/Xorg.0.log ** Attachment added: Dependencies.txt http://launchpadlibrarian.net/34980608/Dependencies.txt -- display properties creates unusable xorg.conf https://bugs.launchpad.net/bugs/471579 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 471579] Re: display properties creates unusable xorg.conf
** Attachment added: Detailed lspci http://launchpadlibrarian.net/34980686/lspci -- display properties creates unusable xorg.conf https://bugs.launchpad.net/bugs/471579 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 471579] Re: display properties creates unusable xorg.conf
** Attachment added: Changes made to xorg.conf http://launchpadlibrarian.net/34980846/xorg.diff -- display properties creates unusable xorg.conf https://bugs.launchpad.net/bugs/471579 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
