diff options
| author | Damien Miller <djm@mindrot.org> | 2005-03-01 21:48:35 +1100 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2005-03-01 21:48:35 +1100 |
| commit | 4b42d7f195fc38bc6eda25c2e0782321ff1f2a16 (patch) | |
| tree | f945653699b303d57203f950eba69946d2a59039 /ssh-keygen.1 | |
| parent | db7b8171ee084cbbe3a5ec5ef26df88e17aa3905 (diff) | |
- djm@cvs.openbsd.org 2005/03/01 10:42:49
[ssh-keygen.1 ssh-keygen.c ssh_config.5]
add tools for managing known_hosts files with hashed hostnames, including
hashing existing files and deleting hosts by name; ok markus@ deraadt@
Diffstat (limited to 'ssh-keygen.1')
| -rw-r--r-- | ssh-keygen.1 | 43 |
1 files changed, 42 insertions, 1 deletions
diff --git a/ssh-keygen.1 b/ssh-keygen.1 index c0f24dcd0..f4c5ebcb8 100644 --- a/ssh-keygen.1 +++ b/ssh-keygen.1 | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | .\" $OpenBSD: ssh-keygen.1,v 1.63 2004/08/13 00:01:43 jmc Exp $ | 1 | .\" $OpenBSD: ssh-keygen.1,v 1.64 2005/03/01 10:42:49 djm Exp $ |
| 2 | .\" | 2 | .\" |
| 3 | .\" -*- nroff -*- | 3 | .\" -*- nroff -*- |
| 4 | .\" | 4 | .\" |
| @@ -81,6 +81,15 @@ | |||
| 81 | .Nm ssh-keygen | 81 | .Nm ssh-keygen |
| 82 | .Fl D Ar reader | 82 | .Fl D Ar reader |
| 83 | .Nm ssh-keygen | 83 | .Nm ssh-keygen |
| 84 | .Fl F Ar hostname | ||
| 85 | .Op Fl f Ar known_hosts_file | ||
| 86 | .Nm ssh-keygen | ||
| 87 | .Fl H | ||
| 88 | .Op Fl f Ar known_hosts_file | ||
| 89 | .Nm ssh-keygen | ||
| 90 | .Fl R Ar hostname | ||
| 91 | .Op Fl f Ar known_hosts_file | ||
| 92 | .Nm ssh-keygen | ||
| 84 | .Fl U Ar reader | 93 | .Fl U Ar reader |
| 85 | .Op Fl f Ar input_keyfile | 94 | .Op Fl f Ar input_keyfile |
| 86 | .Nm ssh-keygen | 95 | .Nm ssh-keygen |
| @@ -243,6 +252,38 @@ Provides the new comment. | |||
| 243 | .It Fl D Ar reader | 252 | .It Fl D Ar reader |
| 244 | Download the RSA public key stored in the smartcard in | 253 | Download the RSA public key stored in the smartcard in |
| 245 | .Ar reader . | 254 | .Ar reader . |
| 255 | .It Fl F Ar hostname | ||
| 256 | Search for the specified | ||
| 257 | .Ar hostname | ||
| 258 | in a | ||
| 259 | .Pa known_hosts | ||
| 260 | file, listing any occurances found. | ||
| 261 | This option is useful to find hashed host names or addresses and may also be | ||
| 262 | used in conjunction with the | ||
| 263 | .Fl H | ||
| 264 | option to print found keys in a hashed format. | ||
| 265 | .It Fl H | ||
| 266 | Hash a | ||
| 267 | .Pa known_hosts | ||
| 268 | file, printing the result to standard output. | ||
| 269 | This replaces all hostnames and addresses with hashed representations. | ||
| 270 | These hashes may be used normally by | ||
| 271 | .Nm ssh | ||
| 272 | and | ||
| 273 | .Nm sshd , | ||
| 274 | but they do not reveal identifying information should the file's contents | ||
| 275 | be disclosed. | ||
| 276 | This option will not modify existing hashed hostnames and is therefore safe | ||
| 277 | to use on files that mix hashed and non-hashed names. | ||
| 278 | .It Fl R Ar hostname | ||
| 279 | Removes all keys belonging to | ||
| 280 | .Ar hostname | ||
| 281 | from a | ||
| 282 | .Pa known_hosts | ||
| 283 | file. | ||
| 284 | This option is useful to delete hashed hosts (see the | ||
| 285 | .Fl H | ||
| 286 | option above). | ||
| 246 | .It Fl G Ar output_file | 287 | .It Fl G Ar output_file |
| 247 | Generate candidate primes for DH-GEX. | 288 | Generate candidate primes for DH-GEX. |
| 248 | These primes must be screened for | 289 | These primes must be screened for |