diff options
Diffstat (limited to 'README')
| -rw-r--r-- | README | 24 |
1 files changed, 19 insertions, 5 deletions
@@ -95,6 +95,10 @@ you should run: rapid-tunneling-status +To disconnect: run + + rapid-tunneling-status -s + Server Operation ---------------- @@ -180,6 +184,13 @@ Feel free to send Tzafrir any questions or patches. Security -------- +Ideally this system should be simple to set up (assuming you have an SSH +server with a public IP address) and thus would be a handy and more secure +replacement to sending a password in the clear, or installing some Big +Binary Blob. + +The Server +~~~~~~~~~~ The remote access tarball is sent potentially over an untrusted channel (read: the Internet). It contains potentially sensitive information: a private ssh key. An imposter could try to impersionate as the client. @@ -194,17 +205,20 @@ no-X11-forwarding,no-agent-forwarding,no-pty,permitopen="127.0.0.1:65534",comman A key can also be used to flood the server's disk, which means that the support user's quota should be limited. +The Client +~~~~~~~~~~ The client then sends the connection information over the already established connection. - Alternatively, if an attacker manages to send her own key (pointing to her own RapidTunneling server) to the user, while pretending that this key comes from a trusted support contact, the attacker will gain access to the user's system. Thus the user should be careful about the key he gets. +I believe that there's no inherent issue with adding an extra key to the +user's authorized_keys file: If the user has explicitly asked for remote +support from a trusted party, the user might as well have sent the +password. If the connection was not disconnected explicitly by the user +(`rapid-tunneling-status -s`), those entries will remain and the client +should delete them manually (`rapid-tunneling-status -r`). -Ideally this system should be simple to set up (assuming you have an SSH -server with a public IP address) and thus would be a handy and more secure -replacement to sending a password in the clear, or installing some Big -Binary Blob. |