On Fri, Nov 15, 2019 at 08:45:23AM +1100, Damien Miller wrote:
> Hi,
>[...]
> Please test this thoroughly - it's a big change that we want to have
> stable before the next release.
>
> -d
>
Works well for me with an old (ECDSA-SK-only) Yubico Security Key.
Observation: I guess it's unavoidable, but the behaviour of the "Confirm
user presence" [ssh-askpass] dialog seems a little odd, insomuch as
"Cancel" has the same effect as "OK" (AFAICT).
Question: Given that the private key file contains only a "key handle",
what's the significance of setting a passphrase for it? Is there enough
information in it for that to be considered a "factor" in multi-factor auth?
Thanks,
Ross
