version 1.10, 2000/01/22 02:17:50 |
version 1.11, 2000/03/23 21:11:38 |
|
|
.Xr ssh-agent 1 . |
.Xr ssh-agent 1 . |
When run without arguments, it adds the file |
When run without arguments, it adds the file |
.Pa $HOME/.ssh/identity . |
.Pa $HOME/.ssh/identity . |
Alternative file names can be given on the |
Alternative file names can be given on the command line. |
command line. If any file requires a passphrase, |
If any file requires a passphrase, |
.Nm |
.Nm |
asks for the passphrase from the user. |
asks for the passphrase from the user. |
The Passphrase it is read from the user's tty. |
The Passphrase it is read from the user's tty. |
.Pp |
.Pp |
The authentication agent must be running and must be an ancestor of |
The authentication agent must be running and must be an ancestor of |
the current process for |
the current process for |
|
|
.Sh FILES |
.Sh FILES |
.Bl -tag -width Ds |
.Bl -tag -width Ds |
.It Pa $HOME/.ssh/identity |
.It Pa $HOME/.ssh/identity |
Contains the RSA authentication identity of the user. This file |
Contains the RSA authentication identity of the user. |
should not be readable by anyone but the user. |
This file should not be readable by anyone but the user. |
Note that |
Note that |
.Nm |
.Nm |
ignores this file if it is accessible by others. |
ignores this file if it is accessible by others. |
It is possible to |
It is possible to |
specify a passphrase when generating the key; that passphrase will be |
specify a passphrase when generating the key; that passphrase will be |
used to encrypt the private part of this file. This is the |
used to encrypt the private part of this file. |
default file added by |
This is the default file added by |
.Nm |
.Nm |
when no other files have been specified. |
when no other files have been specified. |
.Pp |
.Pp |
|
|
If |
If |
.Nm |
.Nm |
needs a passphrase, it will read the passphrase from the current |
needs a passphrase, it will read the passphrase from the current |
terminal if it was run from a terminal. If |
terminal if it was run from a terminal. |
|
If |
.Nm |
.Nm |
does not have a terminal associated with it but |
does not have a terminal associated with it but |
.Ev DISPLAY |
.Ev DISPLAY |
|
|
.Ev SSH_ASKPASS |
.Ev SSH_ASKPASS |
are set, it will execute the program specified by |
are set, it will execute the program specified by |
.Ev SSH_ASKPASS |
.Ev SSH_ASKPASS |
and open an X11 window to read the passphrase. This is particularly |
and open an X11 window to read the passphrase. |
useful when calling |
This is particularly useful when calling |
.Nm |
.Nm |
from a |
from a |
.Pa .Xsession |
.Pa .Xsession |
or related script. (Note that on some machines it |
or related script. |
|
(Note that on some machines it |
may be necessary to redirect the input from |
may be necessary to redirect the input from |
.Pa /dev/null |
.Pa /dev/null |
to make this work.) |
to make this work.) |
|
|
.Pp |
.Pp |
OpenSSH |
OpenSSH |
is a derivative of the original (free) ssh 1.2.12 release, but with bugs |
is a derivative of the original (free) ssh 1.2.12 release, but with bugs |
removed and newer features re-added. Rapidly after the 1.2.12 release, |
removed and newer features re-added. |
newer versions bore successively more restrictive licenses. This version |
Rapidly after the 1.2.12 release, |
of OpenSSH |
newer versions bore successively more restrictive licenses. |
|
This version of OpenSSH |
.Bl -bullet |
.Bl -bullet |
.It |
.It |
has all components of a restrictive nature (i.e., patents, see |
has all components of a restrictive nature (i.e., patents, see |