Bug#916713: openssh-client: ssh-add still shows and uses old ED25519 keys
Control: tags -1 moreinfo
On Mon, 17 Dec 2018 19:44:19 +0100 Frank <freanki@gmx.net> wrote:
> Package: openssh-client
> Version: 1:7.9p1-4
> Severity: important
>
> Hey,
>
> ssh-add remembers old keys that I am not using for weeks. They still
> show up after reboot and after ssh-add -D.
>
> There is a bug report about gnome-keyring which states that you can't
> delete keys which are imported by i.e. gnome-keyring. Problem is that I
> don't have gnome-keyring installed but maybe the keys are stored
> somewhere else?
>
> This bug is important because it keeps me from login in with ssh to
> devices that disconnect after 3 connect attempts. I have to specify the
> key to use manually.
>
> The key is of course not in .ssh/id_ed25519 or in /etc/ssh/...
>
> [...]
>
> [hommesf@stark ~]$ echo $SSH_AUTH_SOCK
> /run/user/1000/gnupg/S.gpg-agent.ssh
>
> I am trying to fix this for weeks but nothing is helping.
>
> Greetings
> Frank
>
> [...]
Hi Frank,
(Not the SSH maintainer, but ...)
The name of your $SSH_AUTH_SOCK implies that you are using gpg as
ssh-agent. Have you tried removing the relevant keys from your gpg keyring?
Thanks,
~Niels
Reply to: