version 1.28, 2001/09/05 06:23:07 |
version 1.28.2.1, 2002/03/07 17:37:47 |
|
|
.Xr ssh-add 1 . |
.Xr ssh-add 1 . |
When executed without arguments, |
When executed without arguments, |
.Xr ssh-add 1 |
.Xr ssh-add 1 |
adds the |
adds the files |
.Pa $HOME/.ssh/identity |
.Pa $HOME/.ssh/id_rsa , |
file. |
.Pa $HOME/.ssh/id_dsa |
|
and |
|
.Pa $HOME/.ssh/identity . |
If the identity has a passphrase, |
If the identity has a passphrase, |
.Xr ssh-add 1 |
.Xr ssh-add 1 |
asks for the passphrase (using a small X11 application if running |
asks for the passphrase (using a small X11 application if running |
|
|
.Xr ssh 1 |
.Xr ssh 1 |
looks at these variables and uses them to establish a connection to the agent. |
looks at these variables and uses them to establish a connection to the agent. |
.Pp |
.Pp |
|
The agent will never send a private key over its request channel. |
|
Instead, operations that require a private key will be performed |
|
by the agent, and the result will be returned to the requester. |
|
This way, private keys are not exposed to clients using the agent. |
|
.Pp |
A unix-domain socket is created |
A unix-domain socket is created |
.Pq Pa /tmp/ssh-XXXXXXXX/agent.<pid> , |
.Pq Pa /tmp/ssh-XXXXXXXX/agent.<pid> , |
and the name of this socket is stored in the |
and the name of this socket is stored in the |
|
|
.Bl -tag -width Ds |
.Bl -tag -width Ds |
.It Pa $HOME/.ssh/identity |
.It Pa $HOME/.ssh/identity |
Contains the protocol version 1 RSA authentication identity of the user. |
Contains the protocol version 1 RSA authentication identity of the user. |
This file should not be readable by anyone but the user. |
|
It is possible to |
|
specify a passphrase when generating the key; that passphrase will be |
|
used to encrypt the private part of this file. |
|
This file is not used by |
|
.Nm |
|
but is normally added to the agent using |
|
.Xr ssh-add 1 |
|
at login time. |
|
.It Pa $HOME/.ssh/id_dsa |
.It Pa $HOME/.ssh/id_dsa |
Contains the protocol version 2 DSA authentication identity of the user. |
Contains the protocol version 2 DSA authentication identity of the user. |
.It Pa $HOME/.ssh/id_rsa |
.It Pa $HOME/.ssh/id_rsa |