On Tue,09.Sep.08, 12:52:19, nate wrote: > How about using a SSH agent ? type the passphrase once for the > session. > > This describes ssh agent and agent forwarding pretty well: > http://www.unixwiz.net/techtips/ssh-agent-forwarding.html
I'm familiar with ssh-agent (using it myself). The issue is not with typing the passphrase many times, but having to type it at all... > > command="/bin/true"[..] > > > > Can anyone spot a possible attack vector? > > Does that work? I would expect SSH to execute /bin/true and > then exit, the connection would close at that point. ssh isn't executing anything at all, it's just building the tunnel for me ;) Regards, Andrei -- If you can't explain it simply, you don't understand it well enough. (Albert Einstein)
signature.asc
Description: Digital signature
