Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Does bob have proper permissions to delete root? Probably not...

But otherwise, yes, you can run any valid command or pipeline on the server side so rm -rf is certainly acceptable.



Bob does not, but the AuthorizedKeysCommand runs as:

    AuthorizedKeysCommandUser root
I'm pretty sure that is enough permissions to cause trouble.


I confess I read the article after my comment and saw that.

I was just talking about standard ssh behavior.

I wouldn’t use that without seriously studying it end to end. As another comment said, “seems kind of hacky”.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: