diff options
| author | Damien Miller <djm@mindrot.org> | 2011-05-05 14:06:15 +1000 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2011-05-05 14:06:15 +1000 |
| commit | 58f1bafb3d4cf0965ebcb65d94b3476b959f42d8 (patch) | |
| tree | d4573c7e0423ae4db9062ab8e9f097d4f26f8989 /ssh-keygen.1 | |
| parent | c5219e701ecf6ce28d9bec1aecca5cfac114231d (diff) | |
- stevesk@cvs.openbsd.org 2011/03/23 15:16:22
[ssh-keygen.1 ssh-keygen.c]
Add -A option. For each of the key types (rsa1, rsa, dsa and ecdsa)
for which host keys do not exist, generate the host keys with the
default key file path, an empty passphrase, default bits for the key
type, and default comment. This will be used by /etc/rc to generate
new host keys. Idea from deraadt.
ok deraadt
Diffstat (limited to 'ssh-keygen.1')
| -rw-r--r-- | ssh-keygen.1 | 13 |
1 files changed, 11 insertions, 2 deletions
diff --git a/ssh-keygen.1 b/ssh-keygen.1 index 205f741b8..2573087b3 100644 --- a/ssh-keygen.1 +++ b/ssh-keygen.1 | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | .\" $OpenBSD: ssh-keygen.1,v 1.101 2010/10/28 18:33:28 jmc Exp $ | 1 | .\" $OpenBSD: ssh-keygen.1,v 1.102 2011/03/23 15:16:22 stevesk Exp $ |
| 2 | .\" | 2 | .\" |
| 3 | .\" Author: Tatu Ylonen <ylo@cs.hut.fi> | 3 | .\" Author: Tatu Ylonen <ylo@cs.hut.fi> |
| 4 | .\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland | 4 | .\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland |
| @@ -35,7 +35,7 @@ | |||
| 35 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 35 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 36 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 36 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 37 | .\" | 37 | .\" |
| 38 | .Dd $Mdocdate: October 28 2010 $ | 38 | .Dd $Mdocdate: March 23 2011 $ |
| 39 | .Dt SSH-KEYGEN 1 | 39 | .Dt SSH-KEYGEN 1 |
| 40 | .Os | 40 | .Os |
| 41 | .Sh NAME | 41 | .Sh NAME |
| @@ -117,6 +117,8 @@ | |||
| 117 | .Nm ssh-keygen | 117 | .Nm ssh-keygen |
| 118 | .Fl L | 118 | .Fl L |
| 119 | .Op Fl f Ar input_keyfile | 119 | .Op Fl f Ar input_keyfile |
| 120 | .Nm ssh-keygen | ||
| 121 | .Fl A | ||
| 120 | .Ek | 122 | .Ek |
| 121 | .Sh DESCRIPTION | 123 | .Sh DESCRIPTION |
| 122 | .Nm | 124 | .Nm |
| @@ -192,6 +194,13 @@ should be placed to be activated. | |||
| 192 | .Pp | 194 | .Pp |
| 193 | The options are as follows: | 195 | The options are as follows: |
| 194 | .Bl -tag -width Ds | 196 | .Bl -tag -width Ds |
| 197 | .It Fl A | ||
| 198 | For each of the key types (rsa1, rsa, dsa and ecdsa) for which host keys | ||
| 199 | do not exist, generate the host keys with the default key file path, | ||
| 200 | an empty passphrase, default bits for the key type, and default comment. | ||
| 201 | This is used by | ||
| 202 | .Pa /etc/rc | ||
| 203 | to generate new host keys. | ||
| 195 | .It Fl a Ar trials | 204 | .It Fl a Ar trials |
| 196 | Specifies the number of primality tests to perform when screening DH-GEX | 205 | Specifies the number of primality tests to perform when screening DH-GEX |
| 197 | candidates using the | 206 | candidates using the |