diff options
| author | naddy@openbsd.org <naddy@openbsd.org> | 2019-11-07 08:38:38 +0000 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2019-11-08 14:09:32 +1100 |
| commit | aa4c640dc362816d63584a16e786d5e314e24390 (patch) | |
| tree | ff9a6015ea0de5579d49d66d42590d93887fd7aa /sshd_config.5 | |
| parent | b236b27d6dada7f0542214003632b4e9b7aa1380 (diff) | |
upstream: Fill in missing man page bits for U2F security key support:
Mention the new key types, the ~/.ssh/id_ecdsa_sk file, ssh's
SecurityKeyProvider keyword, the SSH_SK_PROVIDER environment variable,
and ssh-keygen's new -w and -x options.
Copy the ssh-sk-helper man page from ssh-pkcs11-helper with minimal
substitutions.
ok djm@
OpenBSD-Commit-ID: ef2e8f83d0c0ce11ad9b8c28945747e5ca337ac4
Diffstat (limited to 'sshd_config.5')
| -rw-r--r-- | sshd_config.5 | 15 |
1 files changed, 10 insertions, 5 deletions
diff --git a/sshd_config.5 b/sshd_config.5 index 9486f2a1c..f4caa162d 100644 --- a/sshd_config.5 +++ b/sshd_config.5 | |||
| @@ -33,8 +33,8 @@ | |||
| 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 35 | .\" | 35 | .\" |
| 36 | .\" $OpenBSD: sshd_config.5,v 1.290 2019/09/06 14:45:34 naddy Exp $ | 36 | .\" $OpenBSD: sshd_config.5,v 1.291 2019/11/07 08:38:38 naddy Exp $ |
| 37 | .Dd $Mdocdate: September 6 2019 $ | 37 | .Dd $Mdocdate: November 7 2019 $ |
| 38 | .Dt SSHD_CONFIG 5 | 38 | .Dt SSHD_CONFIG 5 |
| 39 | .Os | 39 | .Os |
| 40 | .Sh NAME | 40 | .Sh NAME |
| @@ -690,7 +690,8 @@ ecdsa-sha2-nistp256-cert-v01@openssh.com, | |||
| 690 | ecdsa-sha2-nistp384-cert-v01@openssh.com, | 690 | ecdsa-sha2-nistp384-cert-v01@openssh.com, |
| 691 | ecdsa-sha2-nistp521-cert-v01@openssh.com, | 691 | ecdsa-sha2-nistp521-cert-v01@openssh.com, |
| 692 | ssh-ed25519-cert-v01@openssh.com, | 692 | ssh-ed25519-cert-v01@openssh.com, |
| 693 | rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com, | 693 | rsa-sha2-512-cert-v01@openssh.com, |
| 694 | rsa-sha2-256-cert-v01@openssh.com, | ||
| 694 | ssh-rsa-cert-v01@openssh.com, | 695 | ssh-rsa-cert-v01@openssh.com, |
| 695 | ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521, | 696 | ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521, |
| 696 | ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa | 697 | ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa |
| @@ -768,7 +769,8 @@ ecdsa-sha2-nistp256-cert-v01@openssh.com, | |||
| 768 | ecdsa-sha2-nistp384-cert-v01@openssh.com, | 769 | ecdsa-sha2-nistp384-cert-v01@openssh.com, |
| 769 | ecdsa-sha2-nistp521-cert-v01@openssh.com, | 770 | ecdsa-sha2-nistp521-cert-v01@openssh.com, |
| 770 | ssh-ed25519-cert-v01@openssh.com, | 771 | ssh-ed25519-cert-v01@openssh.com, |
| 771 | rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com, | 772 | rsa-sha2-512-cert-v01@openssh.com, |
| 773 | rsa-sha2-256-cert-v01@openssh.com, | ||
| 772 | ssh-rsa-cert-v01@openssh.com, | 774 | ssh-rsa-cert-v01@openssh.com, |
| 773 | ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521, | 775 | ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521, |
| 774 | ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa | 776 | ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa |
| @@ -1425,12 +1427,15 @@ character, then the specified key types will be placed at the head of the | |||
| 1425 | default set. | 1427 | default set. |
| 1426 | The default for this option is: | 1428 | The default for this option is: |
| 1427 | .Bd -literal -offset 3n | 1429 | .Bd -literal -offset 3n |
| 1430 | sk-ecdsa-sha2-nistp256-cert-v01@openssh.com, | ||
| 1428 | ecdsa-sha2-nistp256-cert-v01@openssh.com, | 1431 | ecdsa-sha2-nistp256-cert-v01@openssh.com, |
| 1429 | ecdsa-sha2-nistp384-cert-v01@openssh.com, | 1432 | ecdsa-sha2-nistp384-cert-v01@openssh.com, |
| 1430 | ecdsa-sha2-nistp521-cert-v01@openssh.com, | 1433 | ecdsa-sha2-nistp521-cert-v01@openssh.com, |
| 1431 | ssh-ed25519-cert-v01@openssh.com, | 1434 | ssh-ed25519-cert-v01@openssh.com, |
| 1432 | rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com, | 1435 | rsa-sha2-512-cert-v01@openssh.com, |
| 1436 | rsa-sha2-256-cert-v01@openssh.com, | ||
| 1433 | ssh-rsa-cert-v01@openssh.com, | 1437 | ssh-rsa-cert-v01@openssh.com, |
| 1438 | sk-ecdsa-sha2-nistp256@openssh.com, | ||
| 1434 | ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521, | 1439 | ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521, |
| 1435 | ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa | 1440 | ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa |
| 1436 | .Ed | 1441 | .Ed |