diff options
Diffstat (limited to 'sshd.8')
| -rw-r--r-- | sshd.8 | 17 |
1 files changed, 11 insertions, 6 deletions
| @@ -33,8 +33,8 @@ | |||
| 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 35 | .\" | 35 | .\" |
| 36 | .\" $OpenBSD: sshd.8,v 1.270 2013/06/27 14:05:37 jmc Exp $ | 36 | .\" $OpenBSD: sshd.8,v 1.273 2013/12/07 11:58:46 naddy Exp $ |
| 37 | .Dd $Mdocdate: June 27 2013 $ | 37 | .Dd $Mdocdate: December 7 2013 $ |
| 38 | .Dt SSHD 8 | 38 | .Dt SSHD 8 |
| 39 | .Os | 39 | .Os |
| 40 | .Sh NAME | 40 | .Sh NAME |
| @@ -175,7 +175,8 @@ The default is | |||
| 175 | .Pa /etc/ssh/ssh_host_key | 175 | .Pa /etc/ssh/ssh_host_key |
| 176 | for protocol version 1, and | 176 | for protocol version 1, and |
| 177 | .Pa /etc/ssh/ssh_host_dsa_key , | 177 | .Pa /etc/ssh/ssh_host_dsa_key , |
| 178 | .Pa /etc/ssh/ssh_host_ecdsa_key | 178 | .Pa /etc/ssh/ssh_host_ecdsa_key . |
| 179 | .Pa /etc/ssh/ssh_host_ed25519_key | ||
| 179 | and | 180 | and |
| 180 | .Pa /etc/ssh/ssh_host_rsa_key | 181 | .Pa /etc/ssh/ssh_host_rsa_key |
| 181 | for protocol version 2. | 182 | for protocol version 2. |
| @@ -280,7 +281,7 @@ though this can be changed via the | |||
| 280 | .Cm Protocol | 281 | .Cm Protocol |
| 281 | option in | 282 | option in |
| 282 | .Xr sshd_config 5 . | 283 | .Xr sshd_config 5 . |
| 283 | Protocol 2 supports DSA, ECDSA and RSA keys; | 284 | Protocol 2 supports DSA, ECDSA, ED25519 and RSA keys; |
| 284 | protocol 1 only supports RSA keys. | 285 | protocol 1 only supports RSA keys. |
| 285 | For both protocols, | 286 | For both protocols, |
| 286 | each host has a host-specific key, | 287 | each host has a host-specific key, |
| @@ -494,6 +495,7 @@ For protocol version 2 the keytype is | |||
| 494 | .Dq ecdsa-sha2-nistp256 , | 495 | .Dq ecdsa-sha2-nistp256 , |
| 495 | .Dq ecdsa-sha2-nistp384 , | 496 | .Dq ecdsa-sha2-nistp384 , |
| 496 | .Dq ecdsa-sha2-nistp521 , | 497 | .Dq ecdsa-sha2-nistp521 , |
| 498 | .Dq ssh-ed25519 , | ||
| 497 | .Dq ssh-dss | 499 | .Dq ssh-dss |
| 498 | or | 500 | or |
| 499 | .Dq ssh-rsa . | 501 | .Dq ssh-rsa . |
| @@ -506,6 +508,7 @@ You don't want to type them in; instead, copy the | |||
| 506 | .Pa identity.pub , | 508 | .Pa identity.pub , |
| 507 | .Pa id_dsa.pub , | 509 | .Pa id_dsa.pub , |
| 508 | .Pa id_ecdsa.pub , | 510 | .Pa id_ecdsa.pub , |
| 511 | .Pa id_ed25519.pub , | ||
| 509 | or the | 512 | or the |
| 510 | .Pa id_rsa.pub | 513 | .Pa id_rsa.pub |
| 511 | file and edit it. | 514 | file and edit it. |
| @@ -805,8 +808,8 @@ secret, but the recommended permissions are read/write/execute for the user, | |||
| 805 | and not accessible by others. | 808 | and not accessible by others. |
| 806 | .Pp | 809 | .Pp |
| 807 | .It Pa ~/.ssh/authorized_keys | 810 | .It Pa ~/.ssh/authorized_keys |
| 808 | Lists the public keys (DSA/ECDSA/RSA) that can be used for logging in | 811 | Lists the public keys (DSA, ECDSA, ED25519, RSA) |
| 809 | as this user. | 812 | that can be used for logging in as this user. |
| 810 | The format of this file is described above. | 813 | The format of this file is described above. |
| 811 | The content of the file is not highly sensitive, but the recommended | 814 | The content of the file is not highly sensitive, but the recommended |
| 812 | permissions are read/write for the user, and not accessible by others. | 815 | permissions are read/write for the user, and not accessible by others. |
| @@ -886,6 +889,7 @@ rlogin/rsh. | |||
| 886 | .It Pa /etc/ssh/ssh_host_key | 889 | .It Pa /etc/ssh/ssh_host_key |
| 887 | .It Pa /etc/ssh/ssh_host_dsa_key | 890 | .It Pa /etc/ssh/ssh_host_dsa_key |
| 888 | .It Pa /etc/ssh/ssh_host_ecdsa_key | 891 | .It Pa /etc/ssh/ssh_host_ecdsa_key |
| 892 | .It Pa /etc/ssh/ssh_host_ed25519_key | ||
| 889 | .It Pa /etc/ssh/ssh_host_rsa_key | 893 | .It Pa /etc/ssh/ssh_host_rsa_key |
| 890 | These files contain the private parts of the host keys. | 894 | These files contain the private parts of the host keys. |
| 891 | These files should only be owned by root, readable only by root, and not | 895 | These files should only be owned by root, readable only by root, and not |
| @@ -897,6 +901,7 @@ does not start if these files are group/world-accessible. | |||
| 897 | .It Pa /etc/ssh/ssh_host_key.pub | 901 | .It Pa /etc/ssh/ssh_host_key.pub |
| 898 | .It Pa /etc/ssh/ssh_host_dsa_key.pub | 902 | .It Pa /etc/ssh/ssh_host_dsa_key.pub |
| 899 | .It Pa /etc/ssh/ssh_host_ecdsa_key.pub | 903 | .It Pa /etc/ssh/ssh_host_ecdsa_key.pub |
| 904 | .It Pa /etc/ssh/ssh_host_ed25519_key.pub | ||
| 900 | .It Pa /etc/ssh/ssh_host_rsa_key.pub | 905 | .It Pa /etc/ssh/ssh_host_rsa_key.pub |
| 901 | These files contain the public parts of the host keys. | 906 | These files contain the public parts of the host keys. |
| 902 | These files should be world-readable but writable only by | 907 | These files should be world-readable but writable only by |