[talk] OpenSSH 8.9 Agent Changes

Raul Cuza raulcuza at gmail.com
Mon Jan 10 11:59:58 EST 2022


ref: https://www.openssh.com/agent-restrict.html

This is a limitation that is so old I had forgotten how much it
bothered me. So glad to see that it is being addressed and I
appreciate that the protocol change post takes the time to explain why
this is not a trivial change.

Should have it running on all Linux production servers in about 10 years.

TL;DR: OpenSSH 8.9 will include the ability to control how and where
keys in ssh-agent may be used, both locally and when forwarded
(subject to some limitations).

- r



More information about the talk mailing list