version 1.129, 2015/11/13 04:34:15 |
version 1.130, 2016/02/17 07:38:19 |
|
|
generates, manages and converts authentication keys for |
generates, manages and converts authentication keys for |
.Xr ssh 1 . |
.Xr ssh 1 . |
.Nm |
.Nm |
can create RSA keys for use by SSH protocol version 1 and |
can create keys for use by SSH protocol versions 1 and 2. |
DSA, ECDSA, Ed25519 or RSA keys for use by SSH protocol version 2. |
Protocol 1 should not be used |
|
and is only offered to support legacy devices. |
|
It suffers from a number of cryptographic weaknesses |
|
and doesn't support many of the advanced features available for protocol 2. |
|
.Pp |
The type of key to be generated is specified with the |
The type of key to be generated is specified with the |
.Fl t |
.Fl t |
option. |
option. |
|
|
.It Fl o |
.It Fl o |
Causes |
Causes |
.Nm |
.Nm |
to save SSH protocol 2 private keys using the new OpenSSH format rather than |
to save private keys using the new OpenSSH format rather than |
the more compatible PEM format. |
the more compatible PEM format. |
The new format has increased resistance to brute-force password cracking |
The new format has increased resistance to brute-force password cracking |
but is not supported by versions of OpenSSH prior to 6.5. |
but is not supported by versions of OpenSSH prior to 6.5. |