On 2/3/23 05:52, Jeffrey Walton wrote:
On Wed, Mar 1, 2023 at 2:49 PM jeremy ardley <jeremy@ardley.org> wrote:I may have found a bug in openssh. [...] I have created a ~/.ssh/config file with contents Host jeremy_client HostName client.example.com User jeremy IdentityFile ~/.ssh/com.example.jeremy.id_rsaDoes ssh_config(5) do Bash parameter expansion. That is, is the tilde (~) expanded? I don't see it listed in the man page at https://linux.die.net/man/5/ssh_config .
In the IdentityFile section in your reference, they say :"Specifies a file from which the user's RSA or DSA authentication identity is read. The default is /~/.ssh/identity/ for protocol version 1, and /~/.ssh/id_rsa/ and /~/.ssh/id_dsa/ for protocol version 2. Additionally, any identities represented by the authentication agent will be used for authentication.
The file name may use the tilde syntax to refer to a user's home directory or one of the following escape characters: '%d' (local user's home directory), '%u' (local user name), '%l' (local host name), '%h' (remote host name) or '%r' (remote user name). "
The sad part is I thought I was getting a handle on configuring openssh using ldap and certificates. The multitude of options there say I'm nowhere near!
-- Jeremy