ssh-agent use in different security domains
saku at ytti.fi
Thu Oct 27 16:52:08 EST 2011
On 26 October 2011 23:49, Peter Stuge <peter at stuge.se> wrote:
>> Right now my solution seems to be that the higher security domain
>> (domain1) I'll add with ssh-add -c and the less secure I can add
>> normally (I don't care if domain1 evil admin hijacks and jumps to
>> domain2 as me).
> The logic seems inverted. Add the less secure domain with -c.
Why? I would prefer to be warned when the more secure is being
used? I.e. if Evil Admin of less secure domain tries to sign
something with my more secure key, I'd get prompt for it.
If Evil Admin of more secure domain tries to access my less
secure key, I don't care so much
More information about the openssh-unix-dev