Python 3 ssh agent that allows ACL-based key access.
This project is not intended for production use, and is mostly research into the inner workings of the SSH agent protocol. For learning purposes only!
Do not use this for production purposes, storing private encryption keys in Python is NOT secure. Python's garbage collection process does NOT guarantee private keys to be removed from memory if they are no longer being used.
This daemon is NOT secure.
-
Supports multiple key types:
- DSA fully supported
- RSA fully supported
- ECDSA partially supported
-
ACL based agent access:
- IPv4 and IPv6 supported
-
Platform support:
- Linux fully supported (depends on
AF_NETLINK
sockets and/proc
)
- Linux fully supported (depends on
-
ssh-agent compatibility:
SSH2_ADD_IDENTITY
SSH2_REQUEST_IDENTITIES
SSH2_REMOVE_IDENTITY
SSH2_REMOVE_ALL_IDENTITIES
SSH2_SIGN_REQUEST
- Proxy request to other
ssh-agent
based on ACL