Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
Infecting SSH Public Keys with Backdoors
(opens in new tab)
(blog.thc.org)
3 points
philprx
3y ago
2 comments
Save
Share
2 comments
2 comments · 1 top-level
top
newest
oldest
philprx
OP
3y ago
· 1 in thread
Who password protect they private SSH keys? Many. Who reads their own ~/.ssh/* before using command? Nobody. Lateral movement even with protected private keys.
davidcollantes
3y ago
If using someone else’s public key, I always check the key itself (it doesn’t take long, and it is easy to spot “problems” like these).
This is a nice little hack, but I don’t see it flourishing in the wild.
j
/
k
navigate · click thread line to collapse
