[arch-general] gnome-keyring and ssh without login manager

Sebastian Köhler sebkoehler at whoami.org.uk
Thu Aug 19 06:30:25 EDT 2010

On Thu, Aug 19, 2010 at 09:57:44AM +0800, Ray Rashif wrote:
> On a newly-set-up "promiscuous USB" system, I've chosen to skip a DE,
> and ultimately also forewent a login manager. Normally, I'd be happy
> with an askpass client, but I've noticed that I cannot do without
> nm-applet on this installation, and consequently have ended up with
> gnome-keyring installed alongside as well. So I thought, hey, I could
> make use of that thing, like I make use of kwallet with ksshaskpass on
> a KDE system.
> Unfortunately, after some headache-inducing trial-and-errors, it
> occurs to me as if this is fat hope. The technical background is as
> follows:
> 1) Openbox WM only + pcmanfm for desktop management
> 2) X is autostarted on bootup via su/inittab
> 3) nm-applet autoconnects to my desired WiFi without any kind of
> prompting (though it did ask for a password to set up a new key the
> first time)

Why do you need nm-applet? If it is just about the autoconnect stuff you
should have a look at <http://wiki.archlinux.org/index.php/Netcfg>.

> 4) gnome-keyring does not appear to be running post-startup (so we can
> assume nm-applet calls it on demand only)
> I do know that at least one similar issue with regards to having a
> login manager, "realtime", is worked around by having the following in
> /etc/pam.d/su:
> session         required        pam_limits.so
> So I tried something akin to that with the gnome_keyring.so stuff, to no avail.
> Any chance? You tell me.

For unlocking ssh keys at login I use pam_ssh which ask for the ssh key
password at login time and fires up ssh-agent after that.

The best thing about a boolean is even if you are wrong, you are only 
off by a bit.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: <http://mailman.archlinux.org/pipermail/arch-general/attachments/20100819/319d17f3/attachment.bin>

More information about the arch-general mailing list