Something akin to ssh agent-forwarding ("oauth-forwarding"?) is really needed. A... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		GreyStache on Dec 1, 2022 \| parent \| context \| favorite \| on: Making unphishable 2FA phishable Something akin to ssh agent-forwarding ("oauth-forwarding"?) is really needed. And it needs to be integrated similarly well like support for jumphosts. Haven't seen anything like this, I'll try to bring this up with the openssh folks.

_flux on Dec 1, 2022 | [–]

Curl can connect over unix domain sockets and ssh can forward them, I feel this would be a decent way to forward authentication as access control rules would apply to the sockets.

dgoldstein0 on Dec 1, 2022 | [–]

Possibly redirect to localhost:<port> where the port is one forwarded over ssh could do the trick?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact