Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

A little warning: You should turn off SSH Agent Forwarding for this host. Otherwise it may use your SSH Keys to auth to other servers you connect to via SSH, e.g. GitHub git access etc.

You can either disable it for a particular session via -a argument:

  $ ssh -a chat.shazow.net
Or permanently for this host in ~/.ssh/config:

  Host chat.shazow.net
    ForwardAgent no


That sounds like a fun hack, thanks! Wonder if it will work, will play with it later. :) Do any clients have it on by default?

(If you'd like to take my word for it, I have no intention on doing this on chat.shazow.net)


if you use an agent, you can turn on confirmation for usage of the key with "ssh-add -c" it will prompt using SSH_ASK_PASS... I always do that and i think its always a good measure. of course always turning on agent forwarding is non the less a bad idea :D




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: