version 1.181, 2019/12/27 08:25:07 |
version 1.182, 2019/12/27 08:28:44 |
|
|
.Xr sshd 8 |
.Xr sshd 8 |
will refuse such signatures by default, unless overridden via |
will refuse such signatures by default, unless overridden via |
an authorized_keys option. |
an authorized_keys option. |
|
.It Fl Y Cm check-novalidate |
|
Checks that a signature generated using |
|
.Nm |
|
.Fl Y Cm sign |
|
has a valid structure. |
|
This does not validate if a signature comes from an authorized signer. |
|
When testing a signature, |
|
.Nm |
|
accepts a message on standard input and a signature namespace using |
|
.Fl n . |
|
A file containing the corresponding signature must also be supplied using the |
|
.Fl s |
|
flag. |
|
Successful testing of the signature is signalled by |
|
.Nm |
|
returning a zero exit status. |
.It Fl Y Cm sign |
.It Fl Y Cm sign |
Cryptographically sign a file or some data using a SSH key. |
Cryptographically sign a file or some data using a SSH key. |
When signing, |
When signing, |
|
|
flag. |
flag. |
The revocation file may be a KRL or a one-per-line list of public keys. |
The revocation file may be a KRL or a one-per-line list of public keys. |
Successful verification by an authorized signer is signalled by |
Successful verification by an authorized signer is signalled by |
.Nm |
|
returning a zero exit status. |
|
.It Fl Y Cm check-novalidate |
|
Checks that a signature generated using |
|
.Nm |
|
.Fl Y Cm sign |
|
has a valid structure. |
|
This does not validate if a signature comes from an authorized signer. |
|
When testing a signature, |
|
.Nm |
|
accepts a message on standard input and a signature namespace using |
|
.Fl n . |
|
A file containing the corresponding signature must also be supplied using the |
|
.Fl s |
|
flag. |
|
Successful testing of the signature is signalled by |
|
.Nm |
.Nm |
returning a zero exit status. |
returning a zero exit status. |
.It Fl y |
.It Fl y |