ssh-agent too easy to hack
Damien Miller
djm at mindrot.org
Wed Jan 16 08:38:33 EST 2002
On Tue, 2002-01-15 at 11:52, Tim McGarry wrote:
> If they've got root acces and they are determined enough then they are going
> to break the agent anyhow, I'd just like to secure it up a bit so that it's
> harder to do without leaving a trace.
Trolling through /dev/kmem or attaching to your ssh-agent with a
debugger leaves no traces. That's what I'd do if I was a malicious root.
What would be nice IMO is some way for ssh-agent to alert the user that
a signature request is being made, and optionally allow them to refuse
it. This would help if you agent forward to a host with a malicious root
user.
-d
More information about the openssh-unix-dev
mailing list