You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
####### Run the ssh command once with /root/known_hosts empty, otherwise it fails!
[Definition]
actionstart=echo-e'#!/bin/sh\necho PASSPHRASE'>/tmp/echo_passphrasechmod700/tmp/echo_passphraseexportSSH_ASKPASS_REQUIRE="force"exportSSH_ASKPASS="/tmp/echo_passphrase"ssh-agent/bin/sh-c'ssh-add /extra/pfsense_rpi'rm/tmp/echo_passphraseactionstop=ssh-agent/bin/sh-c'ssh-add -D'actionban=ssh-v-p10022-i/extra/pfsense_rpiroot@pfsense.homeeasyruleblockwan<ip>actionunban=ssh-v-p10022-i/extra/pfsense_rpiroot@pfsense.homeeasyruleunblockwan<ip>
[Init]
protocol=tcpactiontype=
I am trying to use ssh-add because deciphering the private key everytime is pretty time-consuming.
Note that this action works and correctly bans <ip> on the PFSense router.
####### Run the ssh command once with /root/known_hosts empty, otherwise it fails!
[Definition]
actionban=echo-e'#!bin/sh\necho PASSPHRASE'>/tmp/echo_passphrasechmod700/tmp/echo_passphraseexportSSH_ASKPASS_REQUIRE="force"exportSSH_ASKPASS="/tmp/echo_passphrase"ssh-p10022-i/extra/pfsense_rpiroot@pfsense.homeeasyruleblockwan<ip>rm/tmp/echo_passphraseactionunban=echo-e'#!bin/sh\necho PASSPHRASE'>/tmp/echo_passphrasechmod700/tmp/echo_passphraseexportSSH_ASKPASS_REQUIRE="force"exportSSH_ASKPASS="/tmp/echo_passphrase"ssh-p10022-i/extra/pfsense_rpiroot@pfsense.homeeasyruleunblockwan<ip>rm/tmp/echo_passphrase
[Init]
protocol=tcpactiontype=
Behaviour
Steps to reproduce this issue
read_passphrase: can't open /dev/tty: No such device or address
Expected behaviour
The identity should be properly added, and ssh should read the passphrase.
Actual behaviour
ssh does not read the passphrase.
Configuration
docker --version
) : Docker version 20.10.12, build e91ed57docker-compose --version
) : docker-compose version 1.29.2uname -a
) :Linux <REDACTED> 5.10.0-10-arm64 #1 SMP Debian 5.10.84-1 (2021-12-08) aarch64 GNU/Linux
docker-compose.yml
,.env
, ...Relevant
docker-compose.yml
/data/action.d/pfsense
I am trying to use
ssh-add
because deciphering the private key everytime is pretty time-consuming.Note that this action works and correctly bans
<ip>
on the PFSense router.but in my opinion takes too long.
Docker info
Logs
Do you have an idea how to make ssh read the passphrase?
Thank you for making and maintaining this container, it is really well done 👍
The text was updated successfully, but these errors were encountered: