6567071 commented

Sorry this should of been marked as enhancement, but can't see a way to change it

@dkocher commented

Will have a look what Tortoise does.

6567071 commented

Cool thx :) Atm cyberduck can use ppk keys, but everytime a connection is made user is asked for the passphrase. Another one (which is quite close to home) is winSCP. It comes with bundled pageant (which can be removed during the installation) and provides the key agent functionality

@dkocher commented

Replying to [comment:3 lukas]:

Cool thx :) Atm cyberduck can use ppk keys, but everytime a connection is made user is asked for the passphrase. Another one (which is quite close to home) is winSCP. It comes with bundled pageant (which can be removed during the installation) and provides the key agent functionality

The password should be remembered if you check the "Save to Keychain" checkbox in the login panel.

6567071 commented

I know, but some paranoid people might not want to do that ;)

@dkocher commented

Replying to [comment:5 lukas]:

I know, but some paranoid people might not want to do that ;)

All passwords are encrypted when stored on disk. See [source:trunk/source/ch/cyberduck/ui/controller/Keychain.cs Keychain.cs].

6567071 commented

Where is the keychain file physically stored? I'm guessing its in the user's profile/home directory - Note that in domain enviroments this would be stored on the fileserver, rather than localy - with lax file permissiosn this is potentially risky - i know that the same argument applies to storing private keys on the fileserver (or over nfs) - is there a way to tell cyberduck to store the keychain file somewhere else?

@ylangisc commented

The passwords are stored in the user settings which is by default located in the current user's roaming profile. E.g. on a Win7 machine this (if not overridden)

C:\Users\[CurrentUser]\AppData\Roaming\Cyberduck\Cyberduck.exe_Url_[SomeID]\[CyberduckVersion]\user.config

Currently it's not possible to override this location. In the OS X version this is already possible and we plan to add this possibility too (refer to #5261). Please note that we use the Data Protection API (DPAPI) to encrypt all passwords (including passphrases for private keys). With pageant the passphrase is only stored in memory though. I'll have a look into adding pageant support for an upcoming version.

6567071 commented

That is great thank you very much

soregums commented

This is really needed - I login to my pc with one password and use a different one for my keys. pageant runs while i'm logged in and I just connect to different servers whenever without typing in a password. since I use putty i only ever want to type in my 30 character password once per session. i don't want to save the password either, the only place it should be saved is in my head (true the phrase is in the ppk file, in that if you brute force it and get the pass phrase right it will be revealed as the last try).

screen saver is set to come on after 10mins and ask to login in case i forget to lock my machine.

thanks for doing a windows version of this software, I only found it as I was a OS X machine for a moment and needed to FTP something then noticed this does a whole lot of the connections too 1 program instead of many = good :)

As soon as i can use pageant I'll donate, as right now I can't connect to sftp servers as typing my passphrase isn't working and I can't be bothered trying to get it to work as you are going to support pageant in an upcoming build and I will just wait till then

38503cb commented

Found some information on integrating with Pageant here:

https://github.com/ymnk/jsch-agent-proxy/blob/master/examples/src/main/java/com/jcraft/agentproxy/examples/UsingPageant.java

and here:
https://github.com/ymnk/jsch-agent-proxy/blob/master/jsch-agent-proxy-pageant/src/main/java/com/jcraft/jsch/agentproxy/connector/PageantConnector.java

This would be a nice feature, hopefully that helps.

@dkocher commented

See also #12024.