tl;dr: Don’t use SSH ForwardAgent, it’s stupid and insecure. Use ProxyCommand instead. Hackernews thread on this post r/netsec thread on this post Introduction Since I recently saw a post on Reddit netsec which sadly omitted what to use instead of ssh-agent, I felt it was time to write yet another discussion about the perils of what is a useless workflow at best and a dangerous habit at worst. I’l