How is my ssh key unlocked without ssh-agent? And how do I fix that?

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP











up vote
2
down vote

favorite












I have an SSH key that I use almost every day and I recently noticed that I haven't had to unlock it in a long while. I don't always shut down my computer and so it is fairly common that ssh-agent is already running when I access a server. But I've now confirmed that actually I'm never being asked for a password.



I feel a little bit like I've lost my mind, because ...




  • ps aux | grep agent doesn't show ssh-agent running.


  • ssh-keygen -y asks for a password but the password I expect doesn't work.


  • ssh user@example.com connects immediately.

There's nothing especially sensitive at stake right now, though that's temporary.



What should I be looking for here? How is my key working without a passphrase, even after a restart? I'm assuming I did something here, but how can I figure out what I did?



Per the comments, I did run echo $SSH_AUTH_SOCK and I see /run/user/1000/keyring/ssh -- lsof /run/user/1000/keyring/ssh isn't returning anything, though, so I don't know what is opening it.



How do I ensure that my key isn't just hanging out unlocked?







share|improve this question


















  • 1




    There are other things which can act as an ssh agent. Do echo $SSH_AUTH_SOCK and you can see if you have one. An lsof on it will tell you what is providing it.
    – Patrick
    Feb 16 at 3:57











  • I see /run/user/1000/keyring/ssh when I do that--but lsof | grep ssh isn't turning up anything.
    – Amanda
    Feb 16 at 4:21






  • 4




    no grep, just lsof. Though judging from the path, I suspect it's gnome-keyring-daemon.
    – Patrick
    Feb 16 at 4:23











  • Straight lsof gets me 11,000 lines though.
    – Amanda
    Feb 16 at 4:34










  • lsof on the file. E.G. lsof /run/user/1000/keyring/ssh
    – Patrick
    Feb 16 at 4:39














up vote
2
down vote

favorite












I have an SSH key that I use almost every day and I recently noticed that I haven't had to unlock it in a long while. I don't always shut down my computer and so it is fairly common that ssh-agent is already running when I access a server. But I've now confirmed that actually I'm never being asked for a password.



I feel a little bit like I've lost my mind, because ...




  • ps aux | grep agent doesn't show ssh-agent running.


  • ssh-keygen -y asks for a password but the password I expect doesn't work.


  • ssh user@example.com connects immediately.

There's nothing especially sensitive at stake right now, though that's temporary.



What should I be looking for here? How is my key working without a passphrase, even after a restart? I'm assuming I did something here, but how can I figure out what I did?



Per the comments, I did run echo $SSH_AUTH_SOCK and I see /run/user/1000/keyring/ssh -- lsof /run/user/1000/keyring/ssh isn't returning anything, though, so I don't know what is opening it.



How do I ensure that my key isn't just hanging out unlocked?







share|improve this question


















  • 1




    There are other things which can act as an ssh agent. Do echo $SSH_AUTH_SOCK and you can see if you have one. An lsof on it will tell you what is providing it.
    – Patrick
    Feb 16 at 3:57











  • I see /run/user/1000/keyring/ssh when I do that--but lsof | grep ssh isn't turning up anything.
    – Amanda
    Feb 16 at 4:21






  • 4




    no grep, just lsof. Though judging from the path, I suspect it's gnome-keyring-daemon.
    – Patrick
    Feb 16 at 4:23











  • Straight lsof gets me 11,000 lines though.
    – Amanda
    Feb 16 at 4:34










  • lsof on the file. E.G. lsof /run/user/1000/keyring/ssh
    – Patrick
    Feb 16 at 4:39












up vote
2
down vote

favorite









up vote
2
down vote

favorite











I have an SSH key that I use almost every day and I recently noticed that I haven't had to unlock it in a long while. I don't always shut down my computer and so it is fairly common that ssh-agent is already running when I access a server. But I've now confirmed that actually I'm never being asked for a password.



I feel a little bit like I've lost my mind, because ...




  • ps aux | grep agent doesn't show ssh-agent running.


  • ssh-keygen -y asks for a password but the password I expect doesn't work.


  • ssh user@example.com connects immediately.

There's nothing especially sensitive at stake right now, though that's temporary.



What should I be looking for here? How is my key working without a passphrase, even after a restart? I'm assuming I did something here, but how can I figure out what I did?



Per the comments, I did run echo $SSH_AUTH_SOCK and I see /run/user/1000/keyring/ssh -- lsof /run/user/1000/keyring/ssh isn't returning anything, though, so I don't know what is opening it.



How do I ensure that my key isn't just hanging out unlocked?







share|improve this question














I have an SSH key that I use almost every day and I recently noticed that I haven't had to unlock it in a long while. I don't always shut down my computer and so it is fairly common that ssh-agent is already running when I access a server. But I've now confirmed that actually I'm never being asked for a password.



I feel a little bit like I've lost my mind, because ...




  • ps aux | grep agent doesn't show ssh-agent running.


  • ssh-keygen -y asks for a password but the password I expect doesn't work.


  • ssh user@example.com connects immediately.

There's nothing especially sensitive at stake right now, though that's temporary.



What should I be looking for here? How is my key working without a passphrase, even after a restart? I'm assuming I did something here, but how can I figure out what I did?



Per the comments, I did run echo $SSH_AUTH_SOCK and I see /run/user/1000/keyring/ssh -- lsof /run/user/1000/keyring/ssh isn't returning anything, though, so I don't know what is opening it.



How do I ensure that my key isn't just hanging out unlocked?









share|improve this question













share|improve this question




share|improve this question








edited Feb 16 at 17:27

























asked Feb 16 at 3:25









Amanda

372112




372112







  • 1




    There are other things which can act as an ssh agent. Do echo $SSH_AUTH_SOCK and you can see if you have one. An lsof on it will tell you what is providing it.
    – Patrick
    Feb 16 at 3:57











  • I see /run/user/1000/keyring/ssh when I do that--but lsof | grep ssh isn't turning up anything.
    – Amanda
    Feb 16 at 4:21






  • 4




    no grep, just lsof. Though judging from the path, I suspect it's gnome-keyring-daemon.
    – Patrick
    Feb 16 at 4:23











  • Straight lsof gets me 11,000 lines though.
    – Amanda
    Feb 16 at 4:34










  • lsof on the file. E.G. lsof /run/user/1000/keyring/ssh
    – Patrick
    Feb 16 at 4:39












  • 1




    There are other things which can act as an ssh agent. Do echo $SSH_AUTH_SOCK and you can see if you have one. An lsof on it will tell you what is providing it.
    – Patrick
    Feb 16 at 3:57











  • I see /run/user/1000/keyring/ssh when I do that--but lsof | grep ssh isn't turning up anything.
    – Amanda
    Feb 16 at 4:21






  • 4




    no grep, just lsof. Though judging from the path, I suspect it's gnome-keyring-daemon.
    – Patrick
    Feb 16 at 4:23











  • Straight lsof gets me 11,000 lines though.
    – Amanda
    Feb 16 at 4:34










  • lsof on the file. E.G. lsof /run/user/1000/keyring/ssh
    – Patrick
    Feb 16 at 4:39







1




1




There are other things which can act as an ssh agent. Do echo $SSH_AUTH_SOCK and you can see if you have one. An lsof on it will tell you what is providing it.
– Patrick
Feb 16 at 3:57





There are other things which can act as an ssh agent. Do echo $SSH_AUTH_SOCK and you can see if you have one. An lsof on it will tell you what is providing it.
– Patrick
Feb 16 at 3:57













I see /run/user/1000/keyring/ssh when I do that--but lsof | grep ssh isn't turning up anything.
– Amanda
Feb 16 at 4:21




I see /run/user/1000/keyring/ssh when I do that--but lsof | grep ssh isn't turning up anything.
– Amanda
Feb 16 at 4:21




4




4




no grep, just lsof. Though judging from the path, I suspect it's gnome-keyring-daemon.
– Patrick
Feb 16 at 4:23





no grep, just lsof. Though judging from the path, I suspect it's gnome-keyring-daemon.
– Patrick
Feb 16 at 4:23













Straight lsof gets me 11,000 lines though.
– Amanda
Feb 16 at 4:34




Straight lsof gets me 11,000 lines though.
– Amanda
Feb 16 at 4:34












lsof on the file. E.G. lsof /run/user/1000/keyring/ssh
– Patrick
Feb 16 at 4:39




lsof on the file. E.G. lsof /run/user/1000/keyring/ssh
– Patrick
Feb 16 at 4:39















active

oldest

votes











Your Answer







StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "106"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
convertImagesToLinks: false,
noModals: false,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);








 

draft saved


draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f424520%2fhow-is-my-ssh-key-unlocked-without-ssh-agent-and-how-do-i-fix-that%23new-answer', 'question_page');

);

Post as a guest



































active

oldest

votes













active

oldest

votes









active

oldest

votes






active

oldest

votes










 

draft saved


draft discarded


























 


draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f424520%2fhow-is-my-ssh-key-unlocked-without-ssh-agent-and-how-do-i-fix-that%23new-answer', 'question_page');

);

Post as a guest













































































Popular posts from this blog

How to check contact read email or not when send email to Individual?

Displaying single band from multi-band raster using QGIS

How many registers does an x86_64 CPU actually have?