vulnerability with ssh-agent

Markus Friedl markus at openbsd.org
Thu Jul 15 18:10:33 EST 2004


On Wed, Jul 14, 2004 at 10:29:11PM +0200, Keld Jørn Simonsen wrote:
> On Wed, Jul 14, 2004 at 10:07:16PM +0200, Markus Friedl wrote:
> > On Wed, Jul 14, 2004 at 09:09:54PM +0200, Keld Jørn Simonsen wrote:
> > > Does anybody know if ssh-agent has the keys stored in memory, and how?
> > 
> > of course they are in the memory (unless you
> > have a smartcard). where else?
> 
> are they also stored in memory, if you use forwardagent (on the
> intermediate machine)?

no, that's the point of the agent. the keys never leave the agent.
the agent does operations for you using the keys, but it never
gives away the secret keys.

> And how are they stored, have something been done to make them harder to
> retrieve from a dump?

no.




More information about the openssh-unix-dev mailing list