|
|
|
|
|
|
by ericseppanen
2749 days ago
|
|
|
It's interesting that their ssh-agent runs as a service under an Administrator account. I'd guess this is an attempt to better protect the private key against theft during a local compromise (i.e. unlocked computer left running on your desk). I haven't seen this done on Linux. Has this trick been implemented on other systems? |
|
|
https://blog.netspi.com/stealing-unencrypted-ssh-agent-keys-...
https://blog.ropnop.com/extracting-ssh-private-keys-from-win...