2014-08-28 20:00:11 Ian Zimmerman: > Package: openssh-client > Version: 1:6.6p1-4~bpo70+1 > Severity: normal > > I found that the following command > > ssh -i ~/.ssh/foo m...@some.other.host > > succeeds (with a warning) if ~/.ssh/foo doesn't exist or is otherwise > inaccessible, as long as the default private key can be used to connect > as specified. I don't know if this can be abused, but I had a script > that kept "working" for months after I deleted the private key specified > because my default key happened to enable access.
Please try with -o IdentitiesOnly yes That should keep ssh from trying other keys, for example from the agent. Greetings Timo
signature.asc
Description: This is a digitally signed message part.
