Re: doing an ssh into a compromised host

To: debian-security@lists.debian.org
Subject: Re: doing an ssh into a compromised host
From: Dariush Pietrzak <eyck@forumakad.pl>
Date: Tue, 2 Nov 2004 09:47:55 +0100
Message-id: <20041102084755.GA19771@forumakad.pl>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <20041102082913.GA14429@albatross.madduck.net>
References: <Pine.LNX.4.44.0411020827540.3154-100000@stalker.iGuide.co.il> <20041102082913.GA14429@albatross.madduck.net>

> If you forward your agent (-A, or ForwardAgent yes), then the
> attacker now probably has access to all machines where the SSH key
> you used has access.
 Is this indeed true? I was under an impression that ForwardAgent works more
in challenge-response fashion?

And as far as X-forwarding goes - AFAIK if you're setup is like you
describe, then your ssh does not request X-forwarding, thus, there's no way
for remote server to force this upon you.
-- 
Dariush Pietrzak,
Key fingerprint = 40D0 9FFB 9939 7320 8294  05E0 BCC7 02C4 75CC 50D9

Reply to:

Follow-Ups:
- Re: doing an ssh into a compromised host
  - From: martin f krafft <madduck@debian.org>

References:
- doing an ssh into a compromised host
  - From: Vassilii Khachaturov <vassilii@tarunz.org>
- Re: doing an ssh into a compromised host
  - From: martin f krafft <madduck@debian.org>

Prev by Date: Re: doing an ssh into a compromised host
Next by Date: Re: doing an ssh into a compromised host
Previous by thread: Re: doing an ssh into a compromised host
Next by thread: Re: doing an ssh into a compromised host
Index(es):
- Date
- Thread