Re: Detecting forwarded agent connections

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 



On 23/5/20 2:21 am, Peter Stuge wrote:
Alex Wilson wrote:
I'm working on a custom ssh-agent implementation and looking at ways
to detect forwarded agent connections,

What about SSH_AGENT_FORWARDING_NOTICE ?

It's a "should" in draft-ietf-secsh-agent-02, but if you control your
endpoint then you could rely on this, no?


Thanks for the suggestion. I would like it to work with unmodified openssh client binaries already on the system (users just run this agent instead of ssh-agent), so I don't think that would work.

If you're curious, the software in question is pivy-agent from
https://github.com/arekinath/pivy
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev



[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux