ssh-agent too easy to hack
Pekka Savola
pekkas at netcore.fi
Thu Jan 17 18:19:45 EST 2002
On 16 Jan 2002, Aran Cox wrote:
> Ideally you could choose both, dump the keys after a fixed period no
> matter what and/or after a period of disuse. At least, that's what I've
> always wanted. I'd dump them all after 4 hours no questions asked and
> maybe an hour or two after their last use.
What's the idea of such a short idle period?
Me, for example, always xlock my workstation even if I go to talk to my
colleagues nearby. If sufficient care is observed, the time periods
should be usably long.
--
Pekka Savola "Tell me of difficulties surmounted,
Netcore Oy not those you stumble over and fall"
Systems. Networks. Security. -- Robert Jordan: A Crown of Swords
More information about the openssh-unix-dev
mailing list