Re: openssh-agent polling

This is a discussion on Re: openssh-agent polling within the OpenSSH Development forums, part of the Networking and Network Related category; On Sun, 16 Sep 2007, Jefferson Ogata wrote: > if [ -z "$SSH_AUTH_SOCK" ] > then > for x in /...


Go Back   Usenet Forums > Networking and Network Related > OpenSSH Development

Reload this Page Re: openssh-agent polling

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 09-17-2007
Damien Miller
 
Posts: n/a
Default Re: openssh-agent polling
On Sun, 16 Sep 2007, Jefferson Ogata wrote:

> if [ -z "$SSH_AUTH_SOCK" ]
> then
> for x in /tmp/ssh*/agent*
> do
> if [ -S "$x" -a -O "$x" ]
> then
> SSH_AUTH_SOCK="$x" ssh-add -l >/dev/null 2>&1
> if [ $? -ne 2 ]; then
> SSH_AUTH_SOCK="$x"
> export SSH_AUTH_SOCK
> break
> fi
> fi
> done
> fi

This might connect you to a hostile ssh-agent that harvests your keys.
Better to set the agent socket location using ssh-agent's -a option to
either a canonical location, or a randomised location in a user-owned
directory.

-d
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
https://lists.mindrot.org/mailman/li...enssh-unix-dev
Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 04:36 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0