vulnerability with ssh-agent
joshua stein
jcs at rt.fm
Wed Jul 14 06:21:45 EST 2004
> One commenter said that this has big holes. An intruder with root
> privileges could set SSH_AUTH_SOCKET to at socket for ssh-agent found in
> /tmp, and he could also find the keys in the /proc area for the
> ssh-agent.
if you have "an intruder with root privileges", you have bigger
problems
> Could there be done something to better these vulnerabilities?
don't forward your agent to untrusted machines
More information about the openssh-unix-dev
mailing list