Life as a maintainer after the xz utils backdoor hack 👉 Watch now!

jaraco.keyring
Release 2.1.0

Remote keyring over SSH

Remote Agent Keyring

Implements a remote agent keyring for use over SSH connections.

Requires OpenSSH 6.7.

To use, on the host machine, install jaraco.keyring and invoke the server:

python -m jaraco.keyring.server

That starts a server listening only on localhost:4273.

Then, connect to the remote host and forward the traffic back to the keyring server:

ssh -R /tmp/keyring.sock:localhost:4273 remote_host

This command creates a unix domain socket at /tmp/keyring.sock which only that user can access.

Then, on that host, configure keyring to use the remote agent backend. For example,

keyring -b jaraco.keyring.RemoteAgent get SERVICE USERNAME

The remote agent backend will request the password over the tunnel, where the server will request the password using the default configuration.

The maintainers of this project get paid by Tidelift to make sure it meets pre-defined standards around security, maintenance and licensing.

Want to learn more? Chat with an expert at Tidelift.

Something wrong with this page? Make a suggestion

Last synced: 2023-07-20 16:05:01 UTC