Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
charcircuit
3 days ago
|
parent
|
context
|
favorite
| on:
Sandboxing AI Agents in Linux
If you have ssh installed, with network access it can ssh localhost to escape the sandbox.
qwertox
3 days ago
|
next
[–]
You can consider these agents criminals, or treat them like babies. Both can do harm for a while, but one offers a future.
reply
senko
3 days ago
|
prev
|
next
[–]
Don't give it access to your ssh keys!
reply
charcircuit
3 days ago
|
parent
|
next
[–]
Yes, it should have its own dedicated key instead of sharing one of your own.
reply
dist-epoch
3 days ago
|
prev
[–]
`ssh localhost` doesn't work for me. maybe because I have enabled only key-based ssh and my user key is not in authorized_keys? am I missing something?
reply
charcircuit
3 days ago
|
parent
[–]
You are right in that it would still need to authenticate.
reply
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
