Kurt Roeckx wrote on Mon, Dec 30, 2013 at 01:53:39 +0100: > Package: openssh-client > Version: 1:6.4p1-1 > > Hi, > > When I use ssh with the -i option to use a different key, it seems > to be offering my default key anyway. It seems this is only the > case when an ssh-agent is running. The key that is given isn't > added to the agent. > > ssh -v shows: > debug1: identity file other_key type 1 > debug1: Checking blacklist file /usr/share/ssh/blacklist.RSA-4096 > debug1: Checking blacklist file /etc/ssh/blacklist.RSA-4096 > debug1: identity file other_key-cert type -1 > [...] > debug1: Authentications that can continue: publickey > debug1: Next authentication method: publickey > debug1: Offering RSA public key: /home/kurt/.ssh/id_rsa > > When ssh doesn't know about my running ssh-agent, it will offer > the key given with -i.
Looks like a duplicate of #203700 and #513235; a workaround is to set IdentitiesOnly=yes in ssh_config(5). Cheers, Daniel
