Notification replaced then disappears

• Probably due to remote notifications arriving at the same time as silent notifications/bluetooth messages

• with link to notification settings

Policies for Paired Devices

Limit the circumstances under which a paired device can request signatures from Kryptonite and under which circumstances Kryptonite will auto-approve.

Policy Options

1. Time based auto-approvals

• Custom time intervals (i.e. "don't ask for x hours" )
• Custom approval windows (i.e. "don't ask Mon-Fri 9am-5pm)

2. Bluetooth based approvals

• Auto-approve if sent over bluetooth
• Signature requests over bluetooth only

3. Geolocation

• Auto-approve if in custom-defined geofences
• Signature requests only in custom-defined regions (i.e. "ignore signature requests if Kryptonite phone is outside of work or home offices.")

4. Hosts

• Auto-approve for custom-defined hosts
• Policies 1-3 based for specified hosts

In my setup, I use a "bastion" (aka SSH jumpbox or proxy) which randomly assigns localhost TCP ports whenever I create a new SSH connection tunneled via an HTTPS WebSocket. For instance, it allows me to connect to a server in a private network when I connect to localhost:12345 where 12345 is a randomly assigned port number.

For the local SSH agent, I can add StrictHostKeyChecking=no and UserKnownHostsFiles=/dev/null to .ssh/config's Host localhost section, to prevent clutters caused by randomized host:port pairs (even when connecting to the same destination server).

I'd like to have a simple option to achieve the same effect for localhost in Kryptonite. Also, if this is enabled, all pairs of localhost and random port numbers should be treated as the same target host so that "allow for 3 hours" work with all localhost connections (maybe releated to #63).

if app opened with pending auths user will be asked all of them, even if expired.

The pre-Push notification request prompt mis-spells significantly as signficiantly

Loving the app btw - so seamless!

related links:
https://github.com/Geal/rust_on_mobile#how-can-we-generate-a-static-library-with-apples-bitcode-format

cause of kryptco/kr#126

This prevents a physical adversary from accepting login requests on an unlocked phone.

exporting core data .sqlite file doesn't seem to be grabbing very recent log statements

Would be cool to have allow access for a custom timeframe, specifically day and week :)

removes possible deadlock on UI thread

The current release shows the widget preview and the default "Share Kryptonite..." menu only.
It would be nice to have a 3D-touch app icon menu that includes quick access to:

• Allow for X-hours
• Ask Always
• Show History

Maybe the widget should have those actions as well.

or optionally change frequency with which they appear

I'm using the iOS app version 2.1.1, and these for the other apps:

$ kr --version
kr version 2.1.2

$ ssh -V
OpenSSH_7.3p1, LibreSSL 2.4.1

The issue I'm seeing is when I try to connect to an SSH destination through an intermediate "jump host," using a configuration similar to this (edited for confidentiality and to remove (hopefully) irrelevant details):

Host jump-host
    HostName jumphost.companyname.local

Host destination-host
    Hostname 10.42.0.30
    ProxyJump jump-host

Host *
    PKCS11Provider /usr/local/lib/kr-pkcs11.so
    ProxyCommand /usr/local/bin/krssh %h %p
    IdentityFile ~/.ssh/id_kryptonite

My Kryptonite public key is installed in the authorized_hosts file of both the jump host and the destination host, and I can successfully connect to destination-host with the command ssh destination-host. The problem is that after a recent version upgrade, the "Allow for 3 hours" option in the iOS app only works for the jump host. Here's the sequence of events for a "cold" connection:

1. I use the command ssh destination-host from a computer paired with the Kryptonite iOS app
2. The connection to jump-host is initiated, and I'm alerted on my phone to approve of an authentication request from jump-host.companyname.local.
3. I choose "Allow for 3 hours."
4. The connection to the jump host is established.
5. A connection to the destination host is initiated through a jump host tunnel, and and I'm alerted on my phone to approve of an authentication request from unknown host.
6. I choose "Allow for 3 hours."
7. The connection to the destination host is established.

But when I reattempt the connection immediately thereafter:

1. ssh destination-host
2. The connection to jump-host is initiated, I'm alerted on my phone that an authentication request from jump-host.companyname.local was automatically approved, and the connection to the jump host is established.
3. A connection to the destination host is initiated through a jump host tunnel, and and I'm alerted on my phone to approve of an authentication request from unknown host.
4. I'm once more presented with the phone prompt to allow or reject the authentication request.

Additional observations:

• My iOS app's known hosts shows the jump host (jump-host.companyname.local), but not the destination host.
• When I run a verbose SSH command, I can see the jump host identifying itself by FQDN (jump-host.companyname.local), but the destination host by IP address.
• The destination host's IP address is in an IPv4 private address range.

Some possibly relevant debug messages from the ssh client (from a "warm" connection attempt, and edited for confidentiality):

debug1: Executing proxy command: exec /usr/local/bin/krssh jump-host.companyname.local 22

debug1: Authenticating to jump-host.companyname.local:22 as 'username'

debug1: Host 'jump-host.companyname.local' is known and matches the RSA host key.
debug1: Found key in /Users/username/.ssh/known_hosts:236

debug1: Offering RSA public key: /Users/username/.ssh/id_kryptonite
debug1: Server accepts key: pkalg ssh-rsa blen 535
Kryptonite ▶ Requesting SSH authentication from phone
Kryptonite ▶ Success. Request Allowed ✔
debug1: Authentication succeeded (publickey).
Authenticated to jump-host.companyname.local (via proxy).
debug1: channel_connect_stdio_fwd 10.20.0.75:22
debug1: channel 0: new [stdio-forward]

debug1: Authenticating to 10.42.0.30:22 as 'username'

debug1: Offering RSA public key: /Users/username/.ssh/id_kryptonite
debug1: Server accepts key: pkalg ssh-rsa blen 535
Kryptonite ▶ Requesting SSH authentication from phone
Kryptonite ▶ Phone approval required. Respond using the Kryptonite app
Kryptonite ▶ Success. Request Allowed ✔
debug1: Authentication succeeded (publickey).
Authenticated to 10.42.0.30 (via proxy).
debug1: channel 0: new [client-session]
debug1: Requesting [email protected]
debug1: Entering interactive session.

otherwise remote notifications can still be sent by unpaired computers

Leave for post 2.0 release

I updated to 2.1.0 on my macbook last week, and now the Allow for 3 hours option is no longer working, and I'm being asked for every request. I was not notified of any update to the app.

remove "$"