summaryrefslogtreecommitdiff
path: root/ssh-keygen.1
diff options
context:
space:
mode:
authorColin Watson <cjwatson@debian.org>2016-02-29 12:15:15 +0000
committerColin Watson <cjwatson@debian.org>2016-03-08 11:51:22 +0000
commit46961f5704f8e86cea3e99253faad55aef4d8f35 (patch)
tree0dd97fa4fb649a62b4639fe2674380872b1f3e98 /ssh-keygen.1
parentc753fe267efb1b027424fa8706cf0385fc3d14c1 (diff)
parent85e40e87a75fb80a0bf893ac05a417d6c353537d (diff)
New upstream release (7.2).
Diffstat (limited to 'ssh-keygen.1')
-rw-r--r--ssh-keygen.118
1 files changed, 11 insertions, 7 deletions
diff --git a/ssh-keygen.1 b/ssh-keygen.1
index c560179c8..24bed5f61 100644
--- a/ssh-keygen.1
+++ b/ssh-keygen.1
@@ -1,4 +1,4 @@
1.\" $OpenBSD: ssh-keygen.1,v 1.127 2015/08/20 19:20:06 naddy Exp $ 1.\" $OpenBSD: ssh-keygen.1,v 1.130 2016/02/17 07:38:19 jmc Exp $
2.\" 2.\"
3.\" Author: Tatu Ylonen <ylo@cs.hut.fi> 3.\" Author: Tatu Ylonen <ylo@cs.hut.fi>
4.\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland 4.\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
@@ -35,7 +35,7 @@
35.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 35.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
36.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 36.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
37.\" 37.\"
38.Dd $Mdocdate: August 20 2015 $ 38.Dd $Mdocdate: February 17 2016 $
39.Dt SSH-KEYGEN 1 39.Dt SSH-KEYGEN 1
40.Os 40.Os
41.Sh NAME 41.Sh NAME
@@ -141,8 +141,12 @@
141generates, manages and converts authentication keys for 141generates, manages and converts authentication keys for
142.Xr ssh 1 . 142.Xr ssh 1 .
143.Nm 143.Nm
144can create RSA keys for use by SSH protocol version 1 and 144can create keys for use by SSH protocol versions 1 and 2.
145DSA, ECDSA, Ed25519 or RSA keys for use by SSH protocol version 2. 145Protocol 1 should not be used
146and is only offered to support legacy devices.
147It suffers from a number of cryptographic weaknesses
148and doesn't support many of the advanced features available for protocol 2.
149.Pp
146The type of key to be generated is specified with the 150The type of key to be generated is specified with the
147.Fl t 151.Fl t
148option. 152option.
@@ -372,7 +376,7 @@ using the format described in the
372.Sx KEY REVOCATION LISTS 376.Sx KEY REVOCATION LISTS
373section. 377section.
374.It Fl L 378.It Fl L
375Prints the contents of a certificate. 379Prints the contents of one or more certificates.
376.It Fl l 380.It Fl l
377Show fingerprint of specified public key file. 381Show fingerprint of specified public key file.
378Private RSA1 keys are also supported. 382Private RSA1 keys are also supported.
@@ -470,7 +474,7 @@ At present, no options are valid for host keys.
470.It Fl o 474.It Fl o
471Causes 475Causes
472.Nm 476.Nm
473to save SSH protocol 2 private keys using the new OpenSSH format rather than 477to save private keys using the new OpenSSH format rather than
474the more compatible PEM format. 478the more compatible PEM format.
475The new format has increased resistance to brute-force password cracking 479The new format has increased resistance to brute-force password cracking
476but is not supported by versions of OpenSSH prior to 6.5. 480but is not supported by versions of OpenSSH prior to 6.5.
@@ -777,7 +781,7 @@ It is also possible, given a KRL, to test whether it revokes a particular key
777(or keys). 781(or keys).
778The 782The
779.Fl Q 783.Fl Q
780flag will query an existing KRL, testing each key specified on the commandline. 784flag will query an existing KRL, testing each key specified on the command line.
781If any key listed on the command line has been revoked (or an error encountered) 785If any key listed on the command line has been revoked (or an error encountered)
782then 786then
783.Nm 787.Nm
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-11 08:30:36 +0000