diff options
| author | Ben Lindstrom <mouring@eviladmin.org> | 2001-04-11 15:59:35 +0000 |
|---|---|---|
| committer | Ben Lindstrom <mouring@eviladmin.org> | 2001-04-11 15:59:35 +0000 |
| commit | 18a82ac02941bb770e0edb9d849fd4e2d74aa682 (patch) | |
| tree | 0cb4dbbef8d7add693d702f628d251219766eb91 /ssh.1 | |
| parent | b39215168584a1601a47356697963d808614990a (diff) | |
- itojun@cvs.openbsd.org 2001/04/10 09:13:22
[ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 sshd.8]
document id_rsa{.pub,}. markus ok
Diffstat (limited to 'ssh.1')
| -rw-r--r-- | ssh.1 | 19 |
1 files changed, 12 insertions, 7 deletions
| @@ -34,7 +34,7 @@ | |||
| 34 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 34 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 35 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 35 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 36 | .\" | 36 | .\" |
| 37 | .\" $OpenBSD: ssh.1,v 1.101 2001/04/05 15:45:43 markus Exp $ | 37 | .\" $OpenBSD: ssh.1,v 1.102 2001/04/10 09:13:22 itojun Exp $ |
| 38 | .Dd September 25, 1999 | 38 | .Dd September 25, 1999 |
| 39 | .Dt SSH 1 | 39 | .Dt SSH 1 |
| 40 | .Os | 40 | .Os |
| @@ -212,8 +212,10 @@ If this method fails password authentication is tried. | |||
| 212 | The public key method is similar to RSA authentication described | 212 | The public key method is similar to RSA authentication described |
| 213 | in the previous section except that the DSA or RSA algorithm is used | 213 | in the previous section except that the DSA or RSA algorithm is used |
| 214 | instead. | 214 | instead. |
| 215 | The client uses his private key | 215 | The client uses his private key, |
| 216 | .Pa $HOME/.ssh/id_dsa | 216 | .Pa $HOME/.ssh/id_dsa |
| 217 | or | ||
| 218 | .Pa $HOME/.ssh/id_rsa , | ||
| 217 | to sign the session identifier and sends the result to the server. | 219 | to sign the session identifier and sends the result to the server. |
| 218 | The server checks whether the matching public key is listed in | 220 | The server checks whether the matching public key is listed in |
| 219 | .Pa $HOME/.ssh/authorized_keys2 | 221 | .Pa $HOME/.ssh/authorized_keys2 |
| @@ -1136,8 +1138,9 @@ for protocol version 1 or | |||
| 1136 | for protocol version 2). | 1138 | for protocol version 2). |
| 1137 | See | 1139 | See |
| 1138 | .Xr sshd 8 . | 1140 | .Xr sshd 8 . |
| 1139 | .It Pa $HOME/.ssh/identity, $HOME/.ssh/id_dsa | 1141 | .It Pa $HOME/.ssh/identity, $HOME/.ssh/id_dsa, $HOME/.ssh/id_rsa |
| 1140 | Contains the RSA and the DSA authentication identity of the user. | 1142 | Contains the authentication identity of the user. |
| 1143 | They are for protocol 1 RSA, protocol 2 DSA, and protocol 2 RSA, respectively. | ||
| 1141 | These files | 1144 | These files |
| 1142 | contain sensitive data and should be readable by the user but not | 1145 | contain sensitive data and should be readable by the user but not |
| 1143 | accessible by others (read/write/execute). | 1146 | accessible by others (read/write/execute). |
| @@ -1147,7 +1150,7 @@ ignores a private key file if it is accessible by others. | |||
| 1147 | It is possible to specify a passphrase when | 1150 | It is possible to specify a passphrase when |
| 1148 | generating the key; the passphrase will be used to encrypt the | 1151 | generating the key; the passphrase will be used to encrypt the |
| 1149 | sensitive part of this file using 3DES. | 1152 | sensitive part of this file using 3DES. |
| 1150 | .It Pa $HOME/.ssh/identity.pub, $HOME/.ssh/id_dsa.pub | 1153 | .It Pa $HOME/.ssh/identity.pub, $HOME/.ssh/id_dsa.pub, $HOME/.ssh/id_rsa.pub |
| 1151 | Contains the public key for authentication (public part of the | 1154 | Contains the public key for authentication (public part of the |
| 1152 | identity file in human-readable form). | 1155 | identity file in human-readable form). |
| 1153 | The contents of the | 1156 | The contents of the |
| @@ -1155,13 +1158,15 @@ The contents of the | |||
| 1155 | file should be added to | 1158 | file should be added to |
| 1156 | .Pa $HOME/.ssh/authorized_keys | 1159 | .Pa $HOME/.ssh/authorized_keys |
| 1157 | on all machines | 1160 | on all machines |
| 1158 | where you wish to log in using RSA authentication. | 1161 | where you wish to log in using protocol version 1 RSA authentication. |
| 1159 | The contents of the | 1162 | The contents of the |
| 1160 | .Pa $HOME/.ssh/id_dsa.pub | 1163 | .Pa $HOME/.ssh/id_dsa.pub |
| 1164 | and | ||
| 1165 | .Pa $HOME/.ssh/id_rsa.pub | ||
| 1161 | file should be added to | 1166 | file should be added to |
| 1162 | .Pa $HOME/.ssh/authorized_keys2 | 1167 | .Pa $HOME/.ssh/authorized_keys2 |
| 1163 | on all machines | 1168 | on all machines |
| 1164 | where you wish to log in using DSA authentication. | 1169 | where you wish to log in using protocol version 2 DSA/RSA authentication. |
| 1165 | These files are not | 1170 | These files are not |
| 1166 | sensitive and can (but need not) be readable by anyone. | 1171 | sensitive and can (but need not) be readable by anyone. |
| 1167 | These files are | 1172 | These files are |