Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

This is only a threat if you enable agent forwarding for all hosts.

If you enable agent forwarding for all hosts then yes, data will be forwarded.

Your link says:

> Don’t enable agent forwarding when connecting to untrustworthy hosts. Fortunately, the ~/.ssh/config syntax makes this fairly simple



Like you noted, ForwardAgent no is the default in /etc/ssh/ssh_config.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: