Hi there,
I have a problem using the MySQLWorkbench with my Yubikey on Mac OSX. I cannot directly access to the live Database, instead I have to go to the live webserver first and then from there I can access to the corresponding MySQL DB.
For this, in the MySQLWorkbench I use the "Standard TCP/IP over SSH" connection as follows:
SSH Hostname: webserver.foo.org
SSH Username: yubiuser
SSH Password: <leave untouched>
SSH Key File: <leave empty>
MySQL Hostname: database.foo.org
MySQL Server Port: 3306
Username: dbuser
Password: ******* (stored in Keychain)
And when I test the connection I got a popup which ask the SSH password for the yubiuer on the webserver.foo.org. But it should popup a different window asking for the PIN of the yubikey.
I also tried to start the application from terminal to avoid sub-shelling:
$> open /Applications/MySQLWorkbench.app/
...but I had the same result.
I tried the connection with SSH from console and it popped up the GPG PIN input and I could connect to the server and from there to the DB:
$> ssh
yubiuser@webserver.foo.org
In the ~/.gnupg/gpg-agent.conf I added the `enable-ssh-support` option as well.
I activate the GPG after boot like this:
$> killall -9 scdaemon; killall -9 gpg-agent
$> sudo launchctl unload /System/Library/LaunchDaemons/com.apple.ifdreader.plist
$> export SSH_AUTH_SOCK=~/.gnupg/S.gpg-agent.ssh
$> gpg --card-status
$> ssh-add -l
Can please help me, how to fix it?
With the `Sequel Pro` it's working, but I don't like that app, it's very easy to accidentally execute wrong SQLs.
Thanks,
Gabor
-------------------------------
System Info:
OS: OS X Yosemite 10.10.3
MySQLWorkbench: version 6.3.3.0
GPG: gpg (GnuPG/MacGPG2) 2.0.27
libgcrypt 1.6.3
Copyright (C) 2015 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later
http://gnu.org/licenses/gpl.html
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Home: ~/.gnupg
Supported algorithms:
Pubkey: RSA, RSA, RSA, ELG, DSA
Cipher: IDEA, 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH,
CAMELLIA128, CAMELLIA192, CAMELLIA256
Hash: MD5, SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224
Compression: Uncompressed, ZIP, ZLIB, BZIP2