Re: OpenSSH and Smartcard

This is a discussion on Re: OpenSSH and Smartcard within the OpenSSH Development forums, part of the Networking and Network Related category; On Sat, Apr 02, 2005 at 05:08:35PM +0200, Boris von Alten Blaskowitz wrote: > I have I bad ...


Go Back   Usenet Forums > Networking and Network Related > OpenSSH Development

Reload this Page Re: OpenSSH and Smartcard

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 04-02-2005
Peter Stuge
 
Posts: n/a
Default Re: OpenSSH and Smartcard
On Sat, Apr 02, 2005 at 05:08:35PM +0200, Boris von Alten Blaskowitz wrote:
> I have I bad feeling with the ssh-agent. For example:
> A intruder can send every kind of data(email text) during a user
> session to the ssh-agent and this will be signed .

Check out the -c parameter to ssh-add, -agent will verify each
signature when you add keys with it, however..


> Another is, that root kan switch to my account and has also access
> to my ssh-keys on the smartcard.

...if you do not trust the host system through which you are sending
your PIN code to the card, you should take care of that issue first.


//Peter

_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
http://www.mindrot.org/mailman/listi...enssh-unix-dev
Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 04:39 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0