1 files changed, 19 insertions, 17 deletions
diff --git a/ssh-keygen.1 b/ssh-keygen.1
index 3987b1e66..5454d00ce 100644
--- a/ssh-keygen.1
+++ b/ssh-keygen.1
@@ -1,4 +1,4 @@
-.\"     $OpenBSD: ssh-keygen.1,v 1.66 2005/03/01 18:15:56 jmc Exp $
+.\"     $OpenBSD: ssh-keygen.1,v 1.69 2005/06/08 03:50:00 djm Exp $
 .\"
 .\"  -*- nroff -*-
 .\"
@@ -129,10 +129,10 @@ section for details.
 Normally each user wishing to use SSH
 with RSA or DSA authentication runs this once to create the authentication
 key in
-.Pa $HOME/.ssh/identity ,
+.Pa ~/.ssh/identity ,
-.Pa $HOME/.ssh/id_dsa
+.Pa ~/.ssh/id_dsa
 or
-.Pa $HOME/.ssh/id_rsa .
+.Pa ~/.ssh/id_rsa .
 Additionally, the system administrator may use this to generate host keys,
 as seen in
 .Pa /etc/rc .
@@ -188,8 +188,8 @@ Show the bubblebabble digest of specified private or public key file.
 .It Fl b Ar bits
 Specifies the number of bits in the key to create.
 Minimum is 512 bits.
-Generally, 1024 bits is considered sufficient.
+Generally, 2048 bits is considered sufficient.
-The default is 1024 bits.
+The default is 2048 bits.
 .It Fl C Ar comment
 Provides a new comment.
 .It Fl c
@@ -232,8 +232,10 @@ command.
 .It Fl H
 Hash a
 .Pa known_hosts
-file, printing the result to standard output.
+file.
-This replaces all hostnames and addresses with hashed representations.
+This replaces all hostnames and addresses with hashed representations
+within the specified file; the original content is moved to a file with
+a .old suffix.
 These hashes may be used normally by
 .Nm ssh
 and
@@ -379,7 +381,7 @@ It is important that this file contains moduli of a range of bit lengths and
 that both ends of a connection share common moduli.
 .Sh FILES
 .Bl -tag -width Ds
-.It Pa $HOME/.ssh/identity
+.It Pa ~/.ssh/identity
 Contains the protocol version 1 RSA authentication identity of the user.
 This file should not be readable by anyone but the user.
 It is possible to
@@ -390,14 +392,14 @@ This file is not automatically accessed by
 but it is offered as the default file for the private key.
 .Xr ssh 1
 will read this file when a login attempt is made.
-.It Pa $HOME/.ssh/identity.pub
+.It Pa ~/.ssh/identity.pub
 Contains the protocol version 1 RSA public key for authentication.
 The contents of this file should be added to
-.Pa $HOME/.ssh/authorized_keys
+.Pa ~/.ssh/authorized_keys
 on all machines
 where the user wishes to log in using RSA authentication.
 There is no need to keep the contents of this file secret.
-.It Pa $HOME/.ssh/id_dsa
+.It Pa ~/.ssh/id_dsa
 Contains the protocol version 2 DSA authentication identity of the user.
 This file should not be readable by anyone but the user.
 It is possible to
@@ -408,14 +410,14 @@ This file is not automatically accessed by
 but it is offered as the default file for the private key.
 .Xr ssh 1
 will read this file when a login attempt is made.
-.It Pa $HOME/.ssh/id_dsa.pub
+.It Pa ~/.ssh/id_dsa.pub
 Contains the protocol version 2 DSA public key for authentication.
 The contents of this file should be added to
-.Pa $HOME/.ssh/authorized_keys
+.Pa ~/.ssh/authorized_keys
 on all machines
 where the user wishes to log in using public key authentication.
 There is no need to keep the contents of this file secret.
-.It Pa $HOME/.ssh/id_rsa
+.It Pa ~/.ssh/id_rsa
 Contains the protocol version 2 RSA authentication identity of the user.
 This file should not be readable by anyone but the user.
 It is possible to
@@ -426,10 +428,10 @@ This file is not automatically accessed by
 but it is offered as the default file for the private key.
 .Xr ssh 1
 will read this file when a login attempt is made.
-.It Pa $HOME/.ssh/id_rsa.pub
+.It Pa ~/.ssh/id_rsa.pub
 Contains the protocol version 2 RSA public key for authentication.
 The contents of this file should be added to
-.Pa $HOME/.ssh/authorized_keys
+.Pa ~/.ssh/authorized_keys
 on all machines
 where the user wishes to log in using public key authentication.
 There is no need to keep the contents of this file secret.

diff --git a/ssh-keygen.1 b/ssh-keygen.1 index 3987b1e66..5454d00ce 100644 --- a/ssh-keygen.1 +++ b/ssh-keygen.1
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: ssh-keygen.1,v 1.66 2005/03/01 18:15:56 jmc Exp $	1	.\" $OpenBSD: ssh-keygen.1,v 1.69 2005/06/08 03:50:00 djm Exp $
2	.\"	2	.\"
3	.\" -- nroff --	3	.\" -- nroff --
4	.\"	4	.\"
@@ -129,10 +129,10 @@ section for details.
129	Normally each user wishing to use SSH	129	Normally each user wishing to use SSH
130	with RSA or DSA authentication runs this once to create the authentication	130	with RSA or DSA authentication runs this once to create the authentication
131	key in	131	key in
132	.Pa $HOME/.ssh/identity ,	132	.Pa ~/.ssh/identity ,
133	.Pa $HOME/.ssh/id_dsa	133	.Pa ~/.ssh/id_dsa
134	or	134	or
135	.Pa $HOME/.ssh/id_rsa .	135	.Pa ~/.ssh/id_rsa .
136	Additionally, the system administrator may use this to generate host keys,	136	Additionally, the system administrator may use this to generate host keys,
137	as seen in	137	as seen in
138	.Pa /etc/rc .	138	.Pa /etc/rc .
@@ -188,8 +188,8 @@ Show the bubblebabble digest of specified private or public key file.
188	.It Fl b Ar bits	188	.It Fl b Ar bits
189	Specifies the number of bits in the key to create.	189	Specifies the number of bits in the key to create.
190	Minimum is 512 bits.	190	Minimum is 512 bits.
191	Generally, 1024 bits is considered sufficient.	191	Generally, 2048 bits is considered sufficient.
192	The default is 1024 bits.	192	The default is 2048 bits.
193	.It Fl C Ar comment	193	.It Fl C Ar comment
194	Provides a new comment.	194	Provides a new comment.
195	.It Fl c	195	.It Fl c
@@ -232,8 +232,10 @@ command.
232	.It Fl H	232	.It Fl H
233	Hash a	233	Hash a
234	.Pa known_hosts	234	.Pa known_hosts
235	file, printing the result to standard output.	235	file.
236	This replaces all hostnames and addresses with hashed representations.	236	This replaces all hostnames and addresses with hashed representations
		237	within the specified file; the original content is moved to a file with
		238	a .old suffix.
237	These hashes may be used normally by	239	These hashes may be used normally by
238	.Nm ssh	240	.Nm ssh
239	and	241	and
@@ -379,7 +381,7 @@ It is important that this file contains moduli of a range of bit lengths and
379	that both ends of a connection share common moduli.	381	that both ends of a connection share common moduli.
380	.Sh FILES	382	.Sh FILES
381	.Bl -tag -width Ds	383	.Bl -tag -width Ds
382	.It Pa $HOME/.ssh/identity	384	.It Pa ~/.ssh/identity
383	Contains the protocol version 1 RSA authentication identity of the user.	385	Contains the protocol version 1 RSA authentication identity of the user.
384	This file should not be readable by anyone but the user.	386	This file should not be readable by anyone but the user.
385	It is possible to	387	It is possible to
@@ -390,14 +392,14 @@ This file is not automatically accessed by
390	but it is offered as the default file for the private key.	392	but it is offered as the default file for the private key.
391	.Xr ssh 1	393	.Xr ssh 1
392	will read this file when a login attempt is made.	394	will read this file when a login attempt is made.
393	.It Pa $HOME/.ssh/identity.pub	395	.It Pa ~/.ssh/identity.pub
394	Contains the protocol version 1 RSA public key for authentication.	396	Contains the protocol version 1 RSA public key for authentication.
395	The contents of this file should be added to	397	The contents of this file should be added to
396	.Pa $HOME/.ssh/authorized_keys	398	.Pa ~/.ssh/authorized_keys
397	on all machines	399	on all machines
398	where the user wishes to log in using RSA authentication.	400	where the user wishes to log in using RSA authentication.
399	There is no need to keep the contents of this file secret.	401	There is no need to keep the contents of this file secret.
400	.It Pa $HOME/.ssh/id_dsa	402	.It Pa ~/.ssh/id_dsa
401	Contains the protocol version 2 DSA authentication identity of the user.	403	Contains the protocol version 2 DSA authentication identity of the user.
402	This file should not be readable by anyone but the user.	404	This file should not be readable by anyone but the user.
403	It is possible to	405	It is possible to
@@ -408,14 +410,14 @@ This file is not automatically accessed by
408	but it is offered as the default file for the private key.	410	but it is offered as the default file for the private key.
409	.Xr ssh 1	411	.Xr ssh 1
410	will read this file when a login attempt is made.	412	will read this file when a login attempt is made.
411	.It Pa $HOME/.ssh/id_dsa.pub	413	.It Pa ~/.ssh/id_dsa.pub
412	Contains the protocol version 2 DSA public key for authentication.	414	Contains the protocol version 2 DSA public key for authentication.
413	The contents of this file should be added to	415	The contents of this file should be added to
414	.Pa $HOME/.ssh/authorized_keys	416	.Pa ~/.ssh/authorized_keys
415	on all machines	417	on all machines
416	where the user wishes to log in using public key authentication.	418	where the user wishes to log in using public key authentication.
417	There is no need to keep the contents of this file secret.	419	There is no need to keep the contents of this file secret.
418	.It Pa $HOME/.ssh/id_rsa	420	.It Pa ~/.ssh/id_rsa
419	Contains the protocol version 2 RSA authentication identity of the user.	421	Contains the protocol version 2 RSA authentication identity of the user.
420	This file should not be readable by anyone but the user.	422	This file should not be readable by anyone but the user.
421	It is possible to	423	It is possible to
@@ -426,10 +428,10 @@ This file is not automatically accessed by
426	but it is offered as the default file for the private key.	428	but it is offered as the default file for the private key.
427	.Xr ssh 1	429	.Xr ssh 1
428	will read this file when a login attempt is made.	430	will read this file when a login attempt is made.
429	.It Pa $HOME/.ssh/id_rsa.pub	431	.It Pa ~/.ssh/id_rsa.pub
430	Contains the protocol version 2 RSA public key for authentication.	432	Contains the protocol version 2 RSA public key for authentication.
431	The contents of this file should be added to	433	The contents of this file should be added to
432	.Pa $HOME/.ssh/authorized_keys	434	.Pa ~/.ssh/authorized_keys
433	on all machines	435	on all machines
434	where the user wishes to log in using public key authentication.	436	where the user wishes to log in using public key authentication.
435	There is no need to keep the contents of this file secret.	437	There is no need to keep the contents of this file secret.