[Cyberduck-trac] [Cyberduck] #75: SSH public key authentification using SSH agent
Cyberduck
trac at trac.cyberduck.ch
Mon Sep 25 22:49:43 CEST 2006
#75: SSH public key authentification using SSH agent
-------------------------+--------------------------------------------------
Reporter: anonymous | Owner: dkocher
Type: enhancement | Status: assigned
Priority: normal | Milestone: 2.7
Component: core | Version: 2.5.3
Severity: normal | Resolution:
Keywords: |
-------------------------+--------------------------------------------------
Comment (by asf at boinkor.net):
I have code that integrates the sshtools.com agent code into cyberduck,
adds unix domain socket via jbuds (see freshmeat.net) for local ssh agent
connections, and defaults to trying the agent first.
So far, it's looking pretty good: trying to use the agent and falls back
to asking for a passphrase if the agent fails.
The problem is that the sshtools.com agent code isn't working. The primary
reason for this is that the sshtools.com agent code does not speak the
openssh authentication protocol, which is used by many agents, instead
speaking only ssh.com's agent protocol. After I discovered this, I gave
up; but I believe the code can still be put to use by somebody who is
willing to invest an afternoon or so, and implements the auth agent
protocol correctly.
openssh's code is a good reference for that. I suggest starting with
authfd.c and authfd.h. You'll have to rewrite a few of the java message
classes, and several methods in SshAgentClient.java. I've started already
by assigning the correct message number to SshAgentFailure (5 instead of
102) (-:
There are also a few UI things left to iron out: maybe include an "I want
to use the agent" checkbox, and if the agent isn't unlocked, ask for the
passphrase.
I'm attaching my diff against current svn (hope that this works for you,
I'm a total xcode newbie). To whomever will finally implement this: You
have my gratitude and respect.
--
Ticket URL: <http://trac.cyberduck.ch/ticket/75>
Cyberduck <http://cyberduck.ch>
FTP and SFTP Browser for Mac OS X.
More information about the Cyberduck-trac
mailing list