The relationship for the SSH agent might be forwarded to some server, to ensure one sign-on also will work from that server onwards. That feature needs to be utilized with treatment, mainly because it enables a compromised server to utilize the consumer's credentials from the first agent. (The resolver by https://cse.google.dj/url?sa=i&url=http://sshstores.net