Bug 2438

Summary: Warn about using ForwardAgent with all hosts
Product: Portable OpenSSH Reporter: Josh Triplett <josh>
Component: sshAssignee: Assigned to nobody <unassigned-bugs>
Status: NEW ---    
Severity: enhancement    
Priority: P5    
Version: 6.9p1   
Hardware: Other   
OS: All   

Description Josh Triplett 2015-08-05 07:12:28 AEST 
Just as OpenSSH warns if you have insecure permissions on your keys, I'd suggest that OpenSSH should warn if you have an insecure setting of ForwardAgent: if you have a global "yes" or a Host * "yes", OpenSSH could warn and suggest a more host-specific setting.

For an example of how widespread this unsafe setting is:

https://github.com/search?utf8=%E2%9C%93&q=ForwardAgent&type=Code&ref=searchresults