undefined | Better HN

0 pointsbarkerja4y ago0 comments

They have a nice little tidbit on this: https://developer.1password.com/docs/ssh/agent/security

> The standard OpenSSH agent (ssh-agent) that comes preinstalled on most systems requires you to add keys to the agent (ssh-add) every time it launches. After you've added your keys, any process can use any SSH key that the OpenSSH agent is managing. It is then up to you to remove those keys when they're not needed anymore.

> The 1Password SSH agent uses a different approach. 1Password will ask for your consent before an SSH client can use your SSH key. Because of this, there's no concept of adding or removing keys like with the OpenSSH agent.

> When your turn on the SSH agent from the 1Password preferences or settings, every eligible key is automatically available to use for SSH, but your private keys will never be used without your consent.

0 comments

zimmund4y ago

> your private keys will never be used without your consent.

Unknown vulnerabilities won't need your consent.

j / k navigate · click thread line to collapse

0 pointsbarkerja4y ago0 comments

They have a nice little tidbit on this: https://developer.1password.com/docs/ssh/agent/security