Is it good for agent forwarding to creates socket in /tmp/
Damien Miller
djm at mindrot.org
Thu Nov 2 16:18:21 AEDT 2017
On Thu, 2 Nov 2017, tran dung wrote:
> Hi Alexander Wuerstlein
>
> Thank for the information.
>
> Now I agree that it's better to save the socket in /tmp/
> I checked the source code and found that it is hard-coded.
> /* Allocate a buffer for the socket name, and format the name. */
> auth_sock_dir = xstrdup("/tmp/ssh-XXXXXXXXXX");
> It would be nice if openssh provides an option to overwrite this default.
It does: "ssh-agent -a /path". You'll need to do your own 'mktemp -d'
or equivalent to get a temporary directory if you want a random-looking
path.
-d
More information about the openssh-unix-dev
mailing list