Re: doing an ssh into a compromised host

To: debian-security@lists.debian.org
Subject: Re: doing an ssh into a compromised host
From: Henrique de Moraes Holschuh <hmh@debian.org>
Date: Tue, 2 Nov 2004 10:14:37 -0200
Message-id: <20041102121437.GB13347@khazad-dum.debian.net>
In-reply-to: <20041102082913.GA14429@albatross.madduck.net>
References: <Pine.LNX.4.44.0411020827540.3154-100000@stalker.iGuide.co.il> <20041102082913.GA14429@albatross.madduck.net>

On Tue, 02 Nov 2004, martin f krafft wrote:
> If you forward your agent (-A, or ForwardAgent yes), then the
> attacker now probably has access to all machines where the SSH key
> you used has access.

This goes agaist what I know about the agent.  The attacker could *try* to
access the agent when it was active (and if you are as paranoid as you
should, you're using an agent that ASKS before doing any work).

It should not be possible to retrieve key material from the agent, ever. And
the whole setup should not be vulnerable to replay attacks when using
protocol 2 either.

Are you *completely* sure of what you are talking about?

-- 
  "One disk to rule them all, One disk to find them. One disk to bring
  them all and in the darkness grind them. In the Land of Redmond
  where the shadows lie." -- The Silicon Valley Tarot
  Henrique Holschuh

Reply to:

Follow-Ups:
- Re: doing an ssh into a compromised host
  - From: martin f krafft <madduck@debian.org>
- Re: doing an ssh into a compromised host
  - From: Andrew Pimlott <andrew@pimlott.net>

References:
- doing an ssh into a compromised host
  - From: Vassilii Khachaturov <vassilii@tarunz.org>
- Re: doing an ssh into a compromised host
  - From: martin f krafft <madduck@debian.org>

Prev by Date: Re: Recommended firewall package? insubscribe
Next by Date: Re: ssh chroot on debian documentation
Previous by thread: Re: doing an ssh into a compromised host
Next by thread: Re: doing an ssh into a compromised host
Index(es):
- Date
- Thread