Re: [swinog] hosting for 1 powersupply with lan port

2012-06-03 Diskussionsfäden Stanislav Sinyagin 
another way to avoid the ssh agent intrusion is to use TCP tunneling through 
SSH. Then the intermediate host is only used for TCP connection bridging, but 
all the authentication is happening outside of your jumphost.



- Original Message -
 From: Stanislav Sinyagin ssinya...@yahoo.com
 
 
 
  From: Jeroen Massar jer...@unfix.org
 
 On 2 Jun 2012, at 05:49, Stanislav Sinyagin ssinya...@yahoo.com 
 wrote:
 
 
 
 When I'm logged in to the VPS, I can do 
 
   ssh -A ssinyagin@1.2.3.4
 with this command, the server 1.2.3.4 authenticates me through my public 
 key, and the VPS acts as the SSH agent proxy. So, if that server has my 
 public 
 key in .ssh/authorized_keys, I'm easily in, and no security breach on the 
 VPS would affect my security.
 
 
 Unless the attacker is on the jumpbox as root as then they can also forward 
 in the same way, but this should not happen ofcourse ;)
 
 
 yes, in theory if the attacker is logged in as root, then during my SSH 
 session 
 they may make an SSH connection using my credentials. But it would be 
 difficult 
 to stay unnoticed, and it's only possible while I'm logged in.
 


___
swinog mailing list
swinog@lists.swinog.ch
http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog

[swinog] SwiNOG-BE110 - Beer Event 110 - 4th of June 2012 @ Outback Lodge / ZH

2012-06-03 Diskussionsfäden Steven Glogger 
hi everybody

here's the announcement for the next beer event:
(yes, sorry this is short :-/)

the facts for the next event:
-
Date:   4th of June 2012

Time:   starting around 18.30 o'clock

Location:   @ the Outback Bahnhof Stadelhofen

Registration deadline:  04.06.2012 12:00:00

Registration URL:http://swinog.mrmouse.ch/

-
i've reserved for 6 people, if there are more I need to hurry up to
change the reservation :)

since we have to make reservations, I need to know who's coming and who
not. If you cannot attend and you're registered please inform me asap
(+41 79 277 92 35).


greetings

-steven





PS: Already registered participants:

-
03.06.2012 - 19:52:19   Steven Glogger (Swisscom)
Comment:
-





___
swinog mailing list
swinog@lists.swinog.ch
http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog