Bug#475502: gnome-keyring doesn't respect "ssh-add -c"
Peter Makholm
peter at makholm.net
Fri Apr 11 08:05:33 UTC 2008
Package: gnome-keyring
Version: 2.22.0-2
Severity: grave
Tags: security
Justification: user security hole
Suddenly after an dist-upgrade ssh stopped asking for confirmation
when using a ssh key stored with ssh-agent. It looks like this
happended at the same time ssh-agent was replaced by
gnome-keyring-daemon.
It looks like to me that gnome-keyring doesn't respct when I add
ssh-keys with 'ssh-add -c'.
I consider this a security related bug as I expect confirmation when I
have asked for it, hence the severity.
-- System Information:
Debian Release: lenny/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'unstable'), (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 2.6.24-1-686 (SMP w/1 CPU core)
Locale: LANG=en_DK.ISO-8859-15, LC_CTYPE=en_DK.ISO-8859-15 (charmap=ISO-8859-15)
Shell: /bin/sh linked to /bin/bash
Versions of packages gnome-keyring depends on:
ii gconf2 2.22.0-1 GNOME configuration database syste
ii libatk1.0-0 1.20.0-1 The ATK accessibility toolkit
ii libc6 2.7-6 GNU C Library: Shared libraries
ii libcairo2 1.4.14-1 The Cairo 2D vector graphics libra
ii libdbus-1-3 1.1.20-1 simple interprocess messaging syst
ii libgconf2-4 2.22.0-1 GNOME configuration database syste
ii libgcrypt11 1.4.0-3 LGPL Crypto library - runtime libr
ii libglib2.0-0 2.16.1-2 The GLib library of C routines
ii libgtk2.0-0 2.12.9-2 The GTK+ graphical user interface
ii libhal-storage1 0.5.11~rc2-1 Hardware Abstraction Layer - share
ii libhal1 0.5.11~rc2-1 Hardware Abstraction Layer - share
ii libpango1.0-0 1.20.0-1 Layout and rendering of internatio
ii libtasn1-3 1.3-1 Manage ASN.1 structures (runtime)
Versions of packages gnome-keyring recommends:
ii libpam-gnome-keyring 2.22.0-2 PAM module to unlock the GNOME key
-- no debconf information
More information about the pkg-gnome-maintainers
mailing list