-
Notifications
You must be signed in to change notification settings - Fork 35
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
KeeAgent is mistaken SSH key #13
Comments
Keys are selected by looking at the public key. If you open the two conflicting keys in PuTTYgen, do they have the same public key? The exchange with the server goes something like this:
|
Ok but in my case public keys are different. |
You can try enabling logging in putty. In the Logging settings, select 'SSH packets and raw data'. This should give some insight into what is going on. |
I have logged the SSH packets :
As you can see from the logs, I have SSH keys 7. That's good, he sees all the keys. PuTTY then checks all keys found and this is the part that I find weird. After 6 keys verified, there is the following message: Thus removing one of the key present on KeePass PUTTY finally arrives at the key and validates the connection to the server. The problem is therefore the number of audits of keys. How to increase the number of audits or tell PuTTY to take the right key according to the fingerprint? Thanks! |
I found how to increase the number of audits of keys. In the PuTTY manual, I found this: http://rc.quest.com/topics/putty/doc.php#errors-toomanyauth. Maybe it could help you. |
Thanks for the tip. This got me going in the right direction. Unfortunately, there is not a good solution without modifying PuTTY itself. So, all I can offer is a couple of other workarounds in addition to the one above.
|
Option 2 defeats the purpose of using KeeAgent in the first place. I do not want the key files in anything but keepass so they are never exposed in cleartext. |
In the latest beta (v0.3.x) I have added some new features that provide other ways of working around this problem. |
Interesting solutions, great work! This happened when I didn't select an attachment. I figured that perhaps it was set to add *.ppk if there was only one available. I like where you're going with this, but there are a few steps that can be taken to lean more toward the side of automation. It yielded the general feeling of "This is too many clicks to add a key" However, these fine grained controls are extremely useful and necessary, and I'm glad you've implemented them. I wouldn't see a problem if right-clicking -> Load entry... did add the first *.ppk it saw in the entry. Another thought is perhaps adding a column in the "List View" that shows whether or not it's enabled with KeeAgent. If you need me to file any formal bug/feature requests let me know. Thanks for your work. |
Good suggestions! I went ahead and created new issues for each idea. In the future, just go ahead and create an issue for each idea or problem that you have. |
Alright, no problem. Thanks for listening! |
@dlech I will check the latest beta. Thanks :) |
While I added my SSH keys on KeePass, I have not been able to connect via PuTTY to one of my servers.
From my research, KeeAgent is mistaken SSH key and gets another SSH key present on KeePass. By removing the presumed key, I finally was able to connect.
So I think there is a problem in verifying the SSH key to transmit. What is the method to check how KeeAgent key belongs to the correct server?
Thanks!
The text was updated successfully, but these errors were encountered: