student_at_work – WindowsTechs.com

Is "pam_ssh_agent_auth" more secure than passwords for sudo on a remote server?

Posted on September 19, 2022 by student_at_work

I read about "pam_ssh_agent_auth" in combination with sudo, which can use a ssh agent to authenticate instead of using the users password: https://manpages.ubuntu.com/manpages/jammy/en/man8/pam_ssh_agent_auth.8.html
Is using a fo… Continue reading Is "pam_ssh_agent_auth" more secure than passwords for sudo on a remote server?→

Why are FIDO2 protected SSH keys affected by phishing attacks?

Posted on March 7, 2022 by student_at_work

The OpenSSH developers have written in a description of the "agent restrictions" feature that FIDO2 tokens are vulnerable to phishing attacks: https://www.openssh.com/agent-restrict.html

FIDO keys that require user-presence conf… Continue reading Why are FIDO2 protected SSH keys affected by phishing attacks?→

Why are SSH MITM tools able to read and modify data?

Posted on June 7, 2021 by student_at_work

At my university, we are learning how to use SSH for server administration.
We learned that SSH is secure, but there are some tools that allow man-in-the-middle attacks on SSH.
How can such tools intercept SSH when it is encrypted? I have … Continue reading Why are SSH MITM tools able to read and modify data?→