Re: ssh-copy-id

看板FB_stable作者時間12年前 (2014/03/01 08:01), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串9/12 (看更多)
On Fri, Feb 28, 2014 at 06:08:10PM -0500, Eitan Adler wrote: > On 28 February 2014 17:15, Mark Felder <feld@freebsd.org> wrote: > .... > > In my opinion, if I'm using an ssh utility and I specify "-i" flag it > > should be the private key. > Hey all, > Sorry about the confusion ssh-copy-id has caused you. > Does the following patch help ? In addition to that, it may be useful to add an explicit check against sending private keys. Even though printf(1) fails, the receiving server still gets the private key and a malicious root user might steal it. For example, any key starting with '-' is inappropriate. -- Jilles Tjoelker _______________________________________________ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org"
更多 jilles. 的文章
文章代碼(AID): #1J4IC_Ri (FB_stable)
更多 jilles. 的文章
文章代碼(AID): #1J4IC_Ri (FB_stable)