[Cyberduck-trac] [Cyberduck] #75: SSH public key authentification using SSH agent

Cyberduck trac at trac.cyberduck.ch
Mon Sep 25 22:49:43 CEST 2006 

#75: SSH public key authentification using SSH agent
-------------------------+--------------------------------------------------
 Reporter:  anonymous    |        Owner:  dkocher 
     Type:  enhancement  |       Status:  assigned
 Priority:  normal       |    Milestone:  2.7     
Component:  core         |      Version:  2.5.3   
 Severity:  normal       |   Resolution:          
 Keywords:               |  
-------------------------+--------------------------------------------------
Comment (by asf at boinkor.net):

 I have code that integrates the sshtools.com agent code into cyberduck,
 adds unix domain socket via jbuds (see freshmeat.net) for local ssh agent
 connections, and defaults to trying the agent first.

 So far, it's looking pretty good: trying to use the agent and falls back
 to asking for a passphrase if the agent fails.

 The problem is that the sshtools.com agent code isn't working. The primary
 reason for this is that the sshtools.com agent code does not speak the
 openssh authentication protocol, which is used by many agents, instead
 speaking only ssh.com's agent protocol. After I discovered this, I gave
 up; but I believe the code can still be put to use by somebody who is
 willing to invest an afternoon or so, and implements the auth agent
 protocol correctly.

 openssh's code is a good reference for that. I suggest starting with
 authfd.c and authfd.h. You'll have to rewrite a few of the java message
 classes, and several methods in SshAgentClient.java. I've started already
 by assigning the correct message number to SshAgentFailure (5 instead of
 102) (-:

 There are also a few UI things left to iron out: maybe include an "I want
 to use the agent" checkbox, and if the agent isn't unlocked, ask for the
 passphrase.

 I'm attaching my diff against current svn (hope that this works for you,
 I'm a total xcode newbie). To whomever will finally implement this: You
 have my gratitude and respect.

-- 
Ticket URL: <http://trac.cyberduck.ch/ticket/75>
Cyberduck <http://cyberduck.ch>
FTP and SFTP Browser for Mac OS X.

More information about the Cyberduck-trac mailing list