mah@macbook public ssh key in ~/.ssh/authorized_keys of image

Question

mah@macbook public ssh key in ~/.ssh/authorized_keys of image

jonathandann opened this issue 4 years ago · comments

Looks like the public key for mac@macbook is still there in the ~/.ssh/authorized_keys of the publicly released image. It should probably be stripped as part of making the image.

Thanks!

Ben Northway · Answer 1 · Wed Jan 13 2021 01:51:50 GMT+0800 (China Standard Time)

I'm really concerned about this as it would allow the holder of this key to connect to the camera remotely. Has the codebase been compromised?

Matthias · Answer 2 · Fri Jan 15 2021 17:57:25 GMT+0800 (China Standard Time)

The codebase is not compromised. I've just forgotten to remove the SSH key. #105

Jonathan Dann · Answer 3 · Wed Feb 17 2021 18:44:59 GMT+0800 (China Standard Time)

@brutella Thanks!