Something akin to ssh agent-forwarding ("oauth-forwarding"?) is really needed. A... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

GreyStache on Dec 1, 2022 | parent | context | favorite | on: Making unphishable 2FA phishable

Something akin to ssh agent-forwarding ("oauth-forwarding"?) is really needed. And it needs to be integrated similarly well like support for jumphosts.

Haven't seen anything like this, I'll try to bring this up with the openssh folks.

_flux on Dec 1, 2022 | [–]

Curl can connect over unix domain sockets and ssh can forward them, I feel this would be a decent way to forward authentication as access control rules would apply to the sockets.

dgoldstein0 on Dec 1, 2022 | [–]

Possibly redirect to localhost:<port> where the port is one forwarded over ssh could do the trick?

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact