- markus@cvs.openbsd.org 2001/07/28 09:21:15

[sshd.8] cleanup some RSA vs DSA vs SSH1 vs SSH2 notes
author: Ben Lindstrom <mouring@eviladmin.org> 2001-08-06 21:18:57 +0000
committer: Ben Lindstrom <mouring@eviladmin.org> 2001-08-06 21:18:57 +0000
commit: 07d24dcbd8818a18224d0b40b76160832dcbd4c6 (patch)
tree: 22a3fb60e81b0c4b54efe91335168ef28aeb52fc /sshd.8
parent: 2772a3f8643d085b78110afdd1b84296c04baca9 (diff)
1 files changed, 4 insertions, 4 deletions
diff --git a/sshd.8 b/sshd.8
index 94bd62738..26d42452d 100644
--- a/sshd.8
+++ b/sshd.8
@@ -34,7 +34,7 @@
 .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.\" $OpenBSD: sshd.8,v 1.137 2001/07/26 17:18:22 stevesk Exp $
+.\" $OpenBSD: sshd.8,v 1.138 2001/07/28 09:21:15 markus Exp $
 .Dd September 25, 1999
 .Dt SSHD 8
 .Os
@@ -130,7 +130,7 @@ into the machine).
 .Ss SSH protocol version 2
 .Pp
 Version 2 works similarly:
-Each host has a host-specific DSA key used to identify the host.
+Each host has a host-specific key (RSA or DSA) used to identify the host.
 However, when the daemon starts, it does not generate a server key.
 Forward security is provided through a Diffie-Hellman key agreement.
 This key agreement results in a shared session key.
@@ -340,8 +340,8 @@ are separately checked, allowing you to restrict logins to particular
 users from particular hosts.
 .Pp
 .It Cm AuthorizedKeysFile
-Specifies the file that contains the public RSA keys that can be used
+Specifies the file that contains the public keys that can be used
-for RSA authentication in protocol version 1.
+for user authentication.
 .Cm AuthorizedKeysFile
 may contain tokens of the form %T which are substituted during connection
 set-up. The following tokens are defined; %% is replaces by a literal '%',
author	Ben Lindstrom <mouring@eviladmin.org>	2001-08-06 21:18:57 +0000
committer	Ben Lindstrom <mouring@eviladmin.org>	2001-08-06 21:18:57 +0000
commit	07d24dcbd8818a18224d0b40b76160832dcbd4c6 (patch)
tree	22a3fb60e81b0c4b54efe91335168ef28aeb52fc /sshd.8
parent	2772a3f8643d085b78110afdd1b84296c04baca9 (diff)

diff --git a/sshd.8 b/sshd.8 index 94bd62738..26d42452d 100644 --- a/sshd.8 +++ b/sshd.8
@@ -34,7 +34,7 @@
34	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF	34	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
35	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.	35	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
36	.\"	36	.\"
37	.\" $OpenBSD: sshd.8,v 1.137 2001/07/26 17:18:22 stevesk Exp $	37	.\" $OpenBSD: sshd.8,v 1.138 2001/07/28 09:21:15 markus Exp $
38	.Dd September 25, 1999	38	.Dd September 25, 1999
39	.Dt SSHD 8	39	.Dt SSHD 8
40	.Os	40	.Os
@@ -130,7 +130,7 @@ into the machine).
130	.Ss SSH protocol version 2	130	.Ss SSH protocol version 2
131	.Pp	131	.Pp
132	Version 2 works similarly:	132	Version 2 works similarly:
133	Each host has a host-specific DSA key used to identify the host.	133	Each host has a host-specific key (RSA or DSA) used to identify the host.
134	However, when the daemon starts, it does not generate a server key.	134	However, when the daemon starts, it does not generate a server key.
135	Forward security is provided through a Diffie-Hellman key agreement.	135	Forward security is provided through a Diffie-Hellman key agreement.
136	This key agreement results in a shared session key.	136	This key agreement results in a shared session key.
@@ -340,8 +340,8 @@ are separately checked, allowing you to restrict logins to particular
340	users from particular hosts.	340	users from particular hosts.
341	.Pp	341	.Pp
342	.It Cm AuthorizedKeysFile	342	.It Cm AuthorizedKeysFile
343	Specifies the file that contains the public RSA keys that can be used	343	Specifies the file that contains the public keys that can be used
344	for RSA authentication in protocol version 1.	344	for user authentication.
345	.Cm AuthorizedKeysFile	345	.Cm AuthorizedKeysFile
346	may contain tokens of the form %T which are substituted during connection	346	may contain tokens of the form %T which are substituted during connection
347	set-up. The following tokens are defined; %% is replaces by a literal '%',	347	set-up. The following tokens are defined; %% is replaces by a literal '%',