/openssh-mac

apple's openssh with a RequireKeyConfirmation option added
  1. C 94.5%
  2. Shell 3.8%
  3. C++ 1.0%
  4. Makefile 0.2%
  5. Ruby 0.2%
  6. Awk 0.2%
  7. Other 0.1%
Switch branches/tags
Nothing to show
Find file
Clone or download

Clone with HTTPS

Use Git or checkout with SVN using the web URL.

Open in Desktop Download ZIP

Launching GitHub Desktop...

If nothing happens, download GitHub Desktop and try again.

Launching GitHub Desktop...

If nothing happens, download GitHub Desktop and try again.

Launching Xcode...

If nothing happens, download Xcode and try again.

Launching Visual Studio...

If nothing happens, download the GitHub extension for Visual Studio and try again.

Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Failed to load latest commit information.
OpenSSH.xcodeproj
include
openssh
osslshim
pam.d
OpenSSH.plist
OpenSSH.strings
README.md
asl-com.openssh.sshd
cocoa-paranoid-ssh-askpass
cocoa-ssh-askpass
launchd-ssh.plist
org.openbsd.ssh-agent.plist
org.openssh.sshd.sb
remote-login-status.c
ssh-Info.plist
ssh-util.rb
sshd-keygen-wrapper
test_encrypt.c

README.md

https://jcs.org/images/notaweblog/2011-04-19_cocoa-ssh-askpass.png

About

This is a copy of Apple's OpenSSH 6.2p2 that is bundled with OS X 10.10, plus a modification to add a RequireKeyConfirmation option. This no longer includes the AddKeysToAgent option modification, as it is no longer needed.

With RequireKeyConfirmation set to yes in ~/.ssh/config, any identities added to ssh-agent will require confirmation before use. Combined with the included cocoa-ssh-askpass wrapper around CocoaDialog, a GUI dialog will be presented when SSH tries to use an unlocked identity stored in the agent. This applies to SSH spawned from a terminal (directly or through things like git), from a forwarded agent, and from any GUI program that uses it in the background to setup tunnels like Sequel Pro.

More information about agent confirmation can be read at http://jcs.org/macssh.

Building

Run xcodebuild from the top directory.

Installing

sudo xcodebuild install will install it into /tmp/OpenSSH.dst as usual. Overlay its /usr directory on to / with sudo rsync -av /tmp/OpenSSH.dst/usr/. /usr/.. Avoid directly installing into / by overriding DSTROOT because of some scary recursive chmods and chowns that the XCode build script does (from Apple).

Download and install CocoaDialog to /Applications/Utilities. The cocoa-ssh-askpass wrapper that is installed as /usr/libexec/ssh-askpass will look for CocoaDialog at /Applications/Utilities/CocoaDialog.app/Contents/MacOS/CocoaDialog.

Usage

Run ssh-add -D to delete all identities from the agent.

Add RequireKeyConfirmation yes in ~/.ssh/config.

At the next SSH connection requiring a private key, ssh will try to start up an agent and add the key as it did before, with the usual secure input window asking for the key passphrase. Leave the "Remember password in my keychain" option unchecked.

On the next SSH connection requiring access to the agent that now has your passphrase, /usr/libexec/ssh-askpass will be invoked to prompt for confirmation. If you have setup CocoaDialog properly, you should see a GUI prompt asking for confirmation. Verify that clicking cancel denies access to your agent.

Paranoid Usage

If you're feeling paranoid about clickjacking-style attacks where an attacker can get you to hit enter at just the right time to confirm the dialog, you can install the supplied cocoa-paranoid-ssh-askpass script in place of /usr/libexec/ssh-askpass. This version will use a text input box and require you to type "yes" and hit enter/click Ok for the confirmation to be accepted.