nhyatt/putty-source
1
0
Fork 0
mirror of https://git.tartarus.org/simon/putty.git synced 2025-01-10 09:58:01 +00:00
Code Issues Projects Releases Wiki Activity

Emphasise that agent forwarding exposes all keys.

Browse Source 
(A bit.)
This commit is contained in:
Jacob Nevins 2016-03-25 00:18:18 +00:00
parent 8b4c43d6d2
commit e74f19cb6f
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
doc/pageant.but
View File

@ -260,10 +260,10 @@ as long as they want.
However, the sysadmin of the server machine can always pretend to be However, the sysadmin of the server machine can always pretend to be
you \e{on that machine}. So if you forward your agent to a server you \e{on that machine}. So if you forward your agent to a server
machine, then the sysadmin of that machine can access the forwarded machine, then the sysadmin of that machine can access the forwarded
agent connection and request signatures from your private keys, and agent connection and request signatures from any of your private keys,
can therefore log in to other machines as you. They can only do this and can therefore log in to other machines as you. They can only do
to a limited extent - when the agent forwarding disappears they lose this to a limited extent - when the agent forwarding disappears they
the ability - but using Pageant doesn't actually \e{prevent} the lose the ability - but using Pageant doesn't actually \e{prevent} the
sysadmin (or hackers) on the server from doing this. sysadmin (or hackers) on the server from doing this.
Therefore, if you don't trust the sysadmin of a server machine, you Therefore, if you don't trust the sysadmin of a server machine, you