ssh-agent does not expire key
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openssh (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
When I add an SSH key to ssh-agent the lifetime (-t) parameter seems to be ignored:
$ ssh-add -t 1 /home/pieter/
$ ssh-add -l
1024 76:a9:b1:
$ ssh [work]
-->OK
Now I wait, and after 1 second, 1 minute, 1 hour I can still login. However, deleting the key manually:
$ ssh-add -D
All identities removed.
does expire the key correctly:
$ ssh [work]
Permission denied (publickey).
This is risky when you lose a laptop, since the thief has infinite time to login to your hosts. The key should expire after the set expiry time...
Environment:
$ lsb_release -rd
Description: Ubuntu 8.04.1
Release: 8.04
$ apt-cache policy openssh-client
openssh-client:
Installed: 1:4.7p1-8ubuntu1.2
Candidate: 1:4.7p1-8ubuntu1.2
Version table:
*** 1:4.7p1-8ubuntu1.2 0
500 http://
500 http://
100 /var/lib/
1:
500 http://
I can confirm this. It's been like this at least since Hardy.