[pass] Any advice for using pass with ssh passphrases?

Jenya Sovetkin e.sovetkin at gmail.com
Sun Feb 21 15:04:53 CET 2016


Hi,

why don't you want simply use public key authentication with ssh? You
don't need to use any passphrase then.

https://wiki.archlinux.org/index.php/SSH_keys#Copying_the_public_key_to_the_remote_server

Best regards,

Jenya


On 2016-02-21 01:52 PM, Christophe-Marie Duquesne wrote:
> Hi,
> 
> New user here.
> 
> I decided that since I had an easy way of securely storing and
> sync-ing passwords, it was time to use better passphrases of my ssh
> private keys.
> 
> So I went ahead and generated passphrases for those.
> 
> Now my question is, is there a way to use pass in combination with an
> ssh-agent effectively?
> 
> Right now, assuming I just logged in and no agent is running, here are
> the steps to ssh somewhere:
> 
> pass -c ssh/me at laptop
> # *gpg-agent makes me type my passphrase to unlock my gnupg key*
> ssh user at host
> # *gpg-agent makes me type my passphrase to unlock my ssh key, which I
> paste from the previous step (I use gpg-agent as my ssh-agent)*
> 
> So 2 commands, and 2 dialogs for typing 2 different passphrases.
> 
> I was somehow hoping to find a trick to reduce it to
> ssh user at host
> # *type passphrase to unlock my gnupg key*
> 
> Has anyone found an elegant solution?
> 
> Cheers,
> Christophe-Marie
> 
> P.S.: I have an idea based on switching back to the vanilla ssh-agent
> and tricking it with SSH_ASKPASS, but it is hacky. I will let you know
> if I manage to get it to work properly.
> _______________________________________________
> Password-Store mailing list
> Password-Store at lists.zx2c4.com
> http://lists.zx2c4.com/mailman/listinfo/password-store
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.zx2c4.com/pipermail/password-store/attachments/20160221/60bf1fc6/attachment.asc>


More information about the Password-Store mailing list