Agent security (was Re: Secure file transfer from unix to windows)
From: Jacob Nevins (jacobn_at_chiark.greenend.org.uk)
Date: 10/24/03
- Previous message: Simon Tatham: "Re: How can Putty load my public key generated with OpenSSH"
- In reply to: UnixFan: "Re: Secure file transfer from unix to windows"
- Next in thread: UnixFan: "Re: Agent security (was Re: Secure file transfer from unix to windows)"
- Reply: UnixFan: "Re: Agent security (was Re: Secure file transfer from unix to windows)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 24 Oct 2003 14:00:47 +0100 (BST)
UnixFan <gxy1997@yahoo.com.au> writes:
>ssh-agent does not give you adequate protection (one can use debugger
>to retrieve the unlocked private key from ssh-agent: it's not that
>difficult provided you know how to use debugger and understand C
>code),
I would have thought that if you're sharing a system with someone who
has sufficient privilege to do this, and you don't trust them, then
you're doomed in numerous other ways anyway. Is this not the case?
- Previous message: Simon Tatham: "Re: How can Putty load my public key generated with OpenSSH"
- In reply to: UnixFan: "Re: Secure file transfer from unix to windows"
- Next in thread: UnixFan: "Re: Agent security (was Re: Secure file transfer from unix to windows)"
- Reply: UnixFan: "Re: Agent security (was Re: Secure file transfer from unix to windows)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
