ssh-keysign.openssh - マニュアルページセクション 1M: システム管理コマンド

言語:

ssh-keysign.openssh (1m)

名前

ssh-keysign.openssh - based authentication

形式

ssh-keysign

説明

SSH-KEYSIGN(1M)                                                SSH-KEYSIGN(1M)



NAME
       ssh-keysign - ssh helper program for host-based authentication

SYNOPSIS
       ssh-keysign

DESCRIPTION
       ssh-keysign  is used by ssh(1) to access the local host keys and gener-
       ate the digital signature  required  during  host-based  authentication
       with SSH protocol version 2.

       ssh-keysign  is  disabled  by  default  and  can only be enabled in the
       global client configuration file /etc/ssh/ssh_config by  setting  Enab-
       leSSHKeysign to ``yes''.

       ssh-keysign is not intended to be invoked by the user, but from ssh(1).
       See ssh(1) and sshd(1M) for more information about host-based authenti-
       cation.

FILES
       /etc/ssh/ssh_config
              Controls whether ssh-keysign is enabled.


       /etc/ssh/ssh_host_dsa_key

       /etc/ssh/ssh_host_rsa_key
              These  files  contain the private parts of the host keys used to
              generate the digital signature.  They should be owned  by  root,
              readable only by root, and not accessible to others.  Since they
              are readable only by root, ssh-keysign must be set-uid  root  if
              host-based authentication is used.


       /etc/ssh/ssh_host_dsa_key-cert.pub

       /etc/ssh/ssh_host_rsa_key-cert.pub
              If these files exist they are assumed to contain public certifi-
              cate information corresponding with the private keys above.


ATTRIBUTES
       See attributes(5) for descriptions of the following attributes:


       +---------------+------------------+
       |ATTRIBUTE TYPE | ATTRIBUTE VALUE  |
       +---------------+------------------+
       |Availability   | network/openssh  |
       +---------------+------------------+
       |Stability      | Uncommitted      |
       +---------------+------------------+
SEE ALSO
       ssh(1), ssh-keygen(1), ssh_config(4), sshd(1M)

HISTORY
       ssh-keysign first appeared in OpenBSD 3.2 .

AUTHORS
       Markus Friedl <Mt markus@openbsd.org>



NOTES
       This    software    was    built    from    source     available     at
       https://java.net/projects/solaris-userland.    The  original  community
       source  was  downloaded  from    http://mirror.team-cymru.org/pub/Open-
       BSD/OpenSSH/portable/openssh-6.5p1.tar.gz

       Further information about this software can be found on the open source
       community website at http://www.openssh.org/.



                               December 7 2013                 SSH-KEYSIGN(1M)