Be careful with multiplexing. The default values in ssh allow for all subsequent sessions without auth and will not generate syslog auth entries, which makes phishing 100% easier.<p>We did an internal demo where we got a person to run one ruby script, and another person had unlogged access to all of dev and production.<p>Please work with your security teams before wide spread adoption of enabling control master. There are many security implications in ssh multiplexing, even in a dev environment where we can backdoor the installation scripts that find their way into production.