Bug#882475: weird access permission to ssh-agent's socket
Package: openssh-server
Version: 1:7.4p1-10+deb9u1
If I run "ssh somehost", then a new ssh-agent is started with weird
access permissions on its socket. Sample session:
% ls -al $SSH_AUTH_SOCK
srw------- 1 hdunkel users 0 Nov 23 11:25 /tmp/ssh-D65j4nl0gu7k/agent.3243
% ssh localhost
Linux dpcl082.ac.aixigo.de 4.9.0-4-amd64 #1 SMP Debian 4.9.51-1 (2017-09-28) x86_64
% ls -al $SSH_AUTH_SOCK
srwxr-xr-x 1 hdunkel users 0 Nov 23 11:42 /tmp/ssh-svX5x2DI9l/agent.6837
The first ssh-agent was created by lightdm at login time, AFAICT. In my
understanding the access permissions on the socket for the second ssh-agent
are way too permissive by default.
Can you confirm?
.ssh/config:
Host *
AddKeysToAgent yes
ForwardAgent yes
Regards
Harri
Reply to: