ssh-agent caches private key passphrase
Neodork opened this issue · 0 comments
Neodork commented
The ssh-agent caches the passphrase for the loaded private keys (on load). This is a vulnerability when loaded the key can be abused without a passphrase. However the ssh-agent configuration is workstation specific.
Provide a ssh-agent configuration with as little caching as possible.