nanobox icon indicating copy to clipboard operation
nanobox copied to clipboard

Published 20 hours ago verified publisher icon nanobox-io

ssh-agent forwarding

Open lyondhill opened this issue 8 years ago • 2 comments

allow forwarding from the ssh agent into docker containers

lyondhill avatar Jan 18 '17 16:01 lyondhill

Any progress / workaround?

tim-bec avatar Dec 21 '17 14:12 tim-bec

I believe we currently just copy keys into the container, due to the complexity of forwarding password prompts through all the many layers between the user and the bits actually using said keys. Encrypted keys are decrypted only if ssh-encrypted-passwords is true, but even then, none of your keys, encrypted or otherwise, ever leave your machine.

That said, you can always use deploy keys (pull-only access) and configure Nanobox to use only those. Place your deploy keys in a folder dedicated to that purpose (say, ~/.ssh/deploy/), then use nanobox configure set ssh-key ~/.ssh/deploy/ to have Nanobox only ever copy those keys into place.

danhunsaker avatar Dec 21 '17 15:12 danhunsaker