| version 1.75, 2022/10/07 06:00:58 |
version 1.76, 2023/07/19 13:56:33 |
|
|
| .It Fl O Ar option |
.It Fl O Ar option |
| Specify an option when starting |
Specify an option when starting |
| .Nm . |
.Nm . |
| Currently only one option is supported: |
Currently two options are supported: |
| |
.Cm allow-remote-pkcs11 |
| |
and |
| .Cm no-restrict-websafe . |
.Cm no-restrict-websafe . |
| This instructs |
.Pp |
| |
The |
| |
.Cm allow-remote-pkcs11 |
| |
option allows clients of a forwarded |
| |
.Nm |
| |
to load PKCS#11 or FIDO provider libraries. |
| |
By default only local clients may perform this operation. |
| |
Note that signalling that a |
| |
.Nm |
| |
client remote is performed by |
| |
.Xr ssh 1 , |
| |
and use of other tools to forward access to the agent socket may circumvent |
| |
this restriction. |
| |
.Pp |
| |
The |
| |
.Cm no-restrict-websafe , |
| |
instructs |
| .Nm |
.Nm |
| to permit signatures using FIDO keys that might be web authentication |
to permit signatures using FIDO keys that might be web authentication |
| requests. |
requests. |
![[BACK]](/icons/back.gif){kind=icon}
Return to ssh-agent.1 CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / usr.bin / ssh