On Tue, 2010-04-06 at 09:57 -0400, m.roth@5-cent.us wrote:
Yesterday or Friday, don't remember, I happened to be looking at my processes on my machine, and discovered I had a number of ssh-agents running (all mine), from different days. I killed all but the current day's.
Now, I log out every single night.
I checked the next day, and sure enough, the one I started the previous day was still running, and I could not only use ssh-add, and it worked. I didn't think of it this morning until just now, but tomorrow I'll log back in, and see if I even need to use ssh-add.
If this is the case, I am not happy. This is, to me, a security hole, and *not* what I expected, nor what the man page seems to lead me to believe.
Bug?
mark
I think that you may want some additional documentation on the use of ssh and ssh-agent. Try this link ( read all three parts of the article ) and re-evaluate your conclusions.
http://www-106.ibm.com/developerworks/library/l-keyc.html
I have been using the keychain utility referenced in this series for several years now, and I'm pretty happy with it. As always, YMMV.