diff options
author | Colin Watson <cjwatson@debian.org> | 2005-09-14 11:27:01 +0000 |
---|---|---|
committer | Colin Watson <cjwatson@debian.org> | 2005-09-14 11:27:01 +0000 |
commit | 16704d57999d987fb8d9ba53379841a79f016d67 (patch) | |
tree | b7ecfbd5be83f191af382f3186c39ba1843ba7a1 /ssh-keysign.0 | |
parent | c8ab8ceacbe4dbdd7afea4e890d92e86282d050e (diff) | |
parent | a55bd782aa819b7f5ae716de000f19f4f531850e (diff) |
Import OpenSSH 4.2p1.
Diffstat (limited to 'ssh-keysign.0')
-rw-r--r-- | ssh-keysign.0 | 42 |
1 files changed, 42 insertions, 0 deletions
diff --git a/ssh-keysign.0 b/ssh-keysign.0 new file mode 100644 index 000000000..ea944a6fe --- /dev/null +++ b/ssh-keysign.0 @@ -0,0 +1,42 @@ +SSH-KEYSIGN(8) OpenBSD System Manager's Manual SSH-KEYSIGN(8) + +NAME + ssh-keysign - ssh helper program for hostbased authentication + +SYNOPSIS + ssh-keysign + +DESCRIPTION + ssh-keysign is used by ssh(1) to access the local host keys and generate + the digital signature required during hostbased authentication with SSH + protocol version 2. + + ssh-keysign is disabled by default and can only be enabled in the global + client configuration file /etc/ssh/ssh_config by setting EnableSSHKeysign + to ``yes''. + + ssh-keysign is not intended to be invoked by the user, but from ssh(1). + See ssh(1) and sshd(8) for more information about hostbased authentica- + tion. + +FILES + /etc/ssh/ssh_config + Controls whether ssh-keysign is enabled. + + /etc/ssh/ssh_host_dsa_key, /etc/ssh/ssh_host_rsa_key + These files contain the private parts of the host keys used to + generate the digital signature. They should be owned by root, + readable only by root, and not accessible to others. Since they + are readable only by root, ssh-keysign must be set-uid root if + hostbased authentication is used. + +SEE ALSO + ssh(1), ssh-keygen(1), ssh_config(5), sshd(8) + +HISTORY + ssh-keysign first appeared in OpenBSD 3.2. + +AUTHORS + Markus Friedl <markus@openbsd.org> + +OpenBSD 3.8 May 24, 2002 1 |