diff options
author | Darren Tucker <dtucker@zip.com.au> | 2009-10-24 11:41:34 +1100 |
---|---|---|
committer | Darren Tucker <dtucker@zip.com.au> | 2009-10-24 11:41:34 +1100 |
commit | ae69e1d010ddf367fdd8ecf7f006c54cfe3f9728 (patch) | |
tree | b6559ad36d2d9c4573cbf438c310a98b77dc3e0a | |
parent | 49b7e235455bf20227877624f8c60c34a6e78458 (diff) |
- sobrado@cvs.openbsd.org 2009/10/22 12:35:53
[ssh.1 ssh-agent.1 ssh-add.1]
use the UNIX-related macros (.At and .Ux) where appropriate.
ok jmc@
-rw-r--r-- | ChangeLog | 4 | ||||
-rw-r--r-- | ssh-add.1 | 9 | ||||
-rw-r--r-- | ssh-agent.1 | 16 | ||||
-rw-r--r-- | ssh.1 | 9 |
4 files changed, 24 insertions, 14 deletions
@@ -6,6 +6,10 @@ | |||
6 | - sobrado@cvs.openbsd.org 2009/10/17 12:10:39 | 6 | - sobrado@cvs.openbsd.org 2009/10/17 12:10:39 |
7 | [sftp-server.c] | 7 | [sftp-server.c] |
8 | sort flags. | 8 | sort flags. |
9 | - sobrado@cvs.openbsd.org 2009/10/22 12:35:53 | ||
10 | [ssh.1 ssh-agent.1 ssh-add.1] | ||
11 | use the UNIX-related macros (.At and .Ux) where appropriate. | ||
12 | ok jmc@ | ||
9 | 13 | ||
10 | 20091011 | 14 | 20091011 |
11 | - (dtucker) [configure.ac sftp-client.c] Remove the gyrations required for | 15 | - (dtucker) [configure.ac sftp-client.c] Remove the gyrations required for |
@@ -1,4 +1,4 @@ | |||
1 | .\" $OpenBSD: ssh-add.1,v 1.46 2007/06/12 13:41:03 jmc Exp $ | 1 | .\" $OpenBSD: ssh-add.1,v 1.47 2009/10/22 12:35:53 sobrado Exp $ |
2 | .\" | 2 | .\" |
3 | .\" -*- nroff -*- | 3 | .\" -*- nroff -*- |
4 | .\" | 4 | .\" |
@@ -37,7 +37,7 @@ | |||
37 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 37 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
38 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 38 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
39 | .\" | 39 | .\" |
40 | .Dd $Mdocdate: June 12 2007 $ | 40 | .Dd $Mdocdate: October 22 2009 $ |
41 | .Dt SSH-ADD 1 | 41 | .Dt SSH-ADD 1 |
42 | .Os | 42 | .Os |
43 | .Sh NAME | 43 | .Sh NAME |
@@ -148,8 +148,9 @@ may be necessary to redirect the input from | |||
148 | .Pa /dev/null | 148 | .Pa /dev/null |
149 | to make this work.) | 149 | to make this work.) |
150 | .It Ev SSH_AUTH_SOCK | 150 | .It Ev SSH_AUTH_SOCK |
151 | Identifies the path of a unix-domain socket used to communicate with the | 151 | Identifies the path of a |
152 | agent. | 152 | .Ux |
153 | domain socket used to communicate with the agent. | ||
153 | .El | 154 | .El |
154 | .Sh FILES | 155 | .Sh FILES |
155 | .Bl -tag -width Ds | 156 | .Bl -tag -width Ds |
diff --git a/ssh-agent.1 b/ssh-agent.1 index 533cd6f6b..bbae4af92 100644 --- a/ssh-agent.1 +++ b/ssh-agent.1 | |||
@@ -1,4 +1,4 @@ | |||
1 | .\" $OpenBSD: ssh-agent.1,v 1.47 2009/03/26 08:38:39 sobrado Exp $ | 1 | .\" $OpenBSD: ssh-agent.1,v 1.48 2009/10/22 12:35:53 sobrado Exp $ |
2 | .\" | 2 | .\" |
3 | .\" Author: Tatu Ylonen <ylo@cs.hut.fi> | 3 | .\" Author: Tatu Ylonen <ylo@cs.hut.fi> |
4 | .\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland | 4 | .\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland |
@@ -34,7 +34,7 @@ | |||
34 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 34 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
35 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 35 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
36 | .\" | 36 | .\" |
37 | .Dd $Mdocdate: March 26 2009 $ | 37 | .Dd $Mdocdate: October 22 2009 $ |
38 | .Dt SSH-AGENT 1 | 38 | .Dt SSH-AGENT 1 |
39 | .Os | 39 | .Os |
40 | .Sh NAME | 40 | .Sh NAME |
@@ -67,7 +67,9 @@ machines using | |||
67 | The options are as follows: | 67 | The options are as follows: |
68 | .Bl -tag -width Ds | 68 | .Bl -tag -width Ds |
69 | .It Fl a Ar bind_address | 69 | .It Fl a Ar bind_address |
70 | Bind the agent to the unix-domain socket | 70 | Bind the agent to the |
71 | .Ux | ||
72 | domain socket | ||
71 | .Ar bind_address . | 73 | .Ar bind_address . |
72 | The default is | 74 | The default is |
73 | .Pa /tmp/ssh-XXXXXXXXXX/agent.\*(Ltppid\*(Gt . | 75 | .Pa /tmp/ssh-XXXXXXXXXX/agent.\*(Ltppid\*(Gt . |
@@ -162,8 +164,9 @@ Instead, operations that require a private key will be performed | |||
162 | by the agent, and the result will be returned to the requester. | 164 | by the agent, and the result will be returned to the requester. |
163 | This way, private keys are not exposed to clients using the agent. | 165 | This way, private keys are not exposed to clients using the agent. |
164 | .Pp | 166 | .Pp |
165 | A unix-domain socket is created | 167 | A |
166 | and the name of this socket is stored in the | 168 | .Ux |
169 | domain socket is created and the name of this socket is stored in the | ||
167 | .Ev SSH_AUTH_SOCK | 170 | .Ev SSH_AUTH_SOCK |
168 | environment | 171 | environment |
169 | variable. | 172 | variable. |
@@ -186,7 +189,8 @@ Contains the protocol version 2 DSA authentication identity of the user. | |||
186 | .It Pa ~/.ssh/id_rsa | 189 | .It Pa ~/.ssh/id_rsa |
187 | Contains the protocol version 2 RSA authentication identity of the user. | 190 | Contains the protocol version 2 RSA authentication identity of the user. |
188 | .It Pa /tmp/ssh-XXXXXXXXXX/agent.\*(Ltppid\*(Gt | 191 | .It Pa /tmp/ssh-XXXXXXXXXX/agent.\*(Ltppid\*(Gt |
189 | Unix-domain sockets used to contain the connection to the | 192 | .Ux |
193 | domain sockets used to contain the connection to the | ||
190 | authentication agent. | 194 | authentication agent. |
191 | These sockets should only be readable by the owner. | 195 | These sockets should only be readable by the owner. |
192 | The sockets should get automatically removed when the agent exits. | 196 | The sockets should get automatically removed when the agent exits. |
@@ -34,8 +34,8 @@ | |||
34 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 34 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
35 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 35 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
36 | .\" | 36 | .\" |
37 | .\" $OpenBSD: ssh.1,v 1.284 2009/10/08 20:42:12 jmc Exp $ | 37 | .\" $OpenBSD: ssh.1,v 1.285 2009/10/22 12:35:53 sobrado Exp $ |
38 | .Dd $Mdocdate: October 8 2009 $ | 38 | .Dd $Mdocdate: October 22 2009 $ |
39 | .Dt SSH 1 | 39 | .Dt SSH 1 |
40 | .Os | 40 | .Os |
41 | .Sh NAME | 41 | .Sh NAME |
@@ -132,8 +132,9 @@ This can also be specified on a per-host basis in a configuration file. | |||
132 | .Pp | 132 | .Pp |
133 | Agent forwarding should be enabled with caution. | 133 | Agent forwarding should be enabled with caution. |
134 | Users with the ability to bypass file permissions on the remote host | 134 | Users with the ability to bypass file permissions on the remote host |
135 | (for the agent's Unix-domain socket) | 135 | (for the agent's |
136 | can access the local agent through the forwarded connection. | 136 | .Ux |
137 | domain socket) can access the local agent through the forwarded connection. | ||
137 | An attacker cannot obtain key material from the agent, | 138 | An attacker cannot obtain key material from the agent, |
138 | however they can perform operations on the keys that enable them to | 139 | however they can perform operations on the keys that enable them to |
139 | authenticate using the identities loaded into the agent. | 140 | authenticate using the identities loaded into the agent. |