I've also just noted that %C is usually not enough to prevent collisions when used in multi-user locations: %C is the hash hover (local host, remote user, hostname, port) I'd guess local host is needed in case of shared homedirs,.. but when it comes to ControlPaths in locations used by multiple users, one obviously needs local user as well. This has of course less todo to with helping against the attacks described above,... but more with preventing accidental collisions. Cheers, Chris.
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ openssh-unix-dev mailing list openssh-unix-dev@xxxxxxxxxxx https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev