version 1.49.2.3, 2002/06/22 07:23:18 |
version 1.50, 2001/10/25 21:14:32 |
|
|
.Nm ssh-keygen |
.Nm ssh-keygen |
.Op Fl q |
.Op Fl q |
.Op Fl b Ar bits |
.Op Fl b Ar bits |
.Fl t Ar type |
.Op Fl t Ar type |
.Op Fl N Ar new_passphrase |
.Op Fl N Ar new_passphrase |
.Op Fl C Ar comment |
.Op Fl C Ar comment |
.Op Fl f Ar output_keyfile |
.Op Fl f Ar output_keyfile |
|
|
generates, manages and converts authentication keys for |
generates, manages and converts authentication keys for |
.Xr ssh 1 . |
.Xr ssh 1 . |
.Nm |
.Nm |
can create RSA keys for use by SSH protocol version 1 and RSA or DSA |
defaults to generating a RSA1 key for use by SSH protocol version 1. |
keys for use by SSH protocol version 2. The type of key to be generated |
Specifying the |
is specified with the |
|
.Fl t |
.Fl t |
option. |
option instead creates a key for use by SSH protocol version 2. |
.Pp |
.Pp |
Normally each user wishing to use SSH |
Normally each user wishing to use SSH |
with RSA or DSA authentication runs this once to create the authentication |
with RSA or DSA authentication runs this once to create the authentication |
|
|
The passphrase may be empty to indicate no passphrase |
The passphrase may be empty to indicate no passphrase |
(host keys must have an empty passphrase), or it may be a string of |
(host keys must have an empty passphrase), or it may be a string of |
arbitrary length. |
arbitrary length. |
A passphrase is similar to a password, except it can be a phrase with a |
Good passphrases are 10-30 characters long and are |
series of words, punctuation, numbers, whitespace, or any string of |
|
characters you want. |
|
Good passphrases are 10-30 characters long, are |
|
not simple sentences or otherwise easily guessable (English |
not simple sentences or otherwise easily guessable (English |
prose has only 1-2 bits of entropy per character, and provides very bad |
prose has only 1-2 bits of entropy per character, and provides very bad |
passphrases), and contain a mix of upper and lowercase letters, |
passphrases). |
numbers, and non-alphanumeric characters. |
|
The passphrase can be changed later by using the |
The passphrase can be changed later by using the |
.Fl p |
.Fl p |
option. |
option. |
|
|
or |
or |
.Dq dsa |
.Dq dsa |
for protocol version 2. |
for protocol version 2. |
|
The default is |
|
.Dq rsa1 . |
.It Fl B |
.It Fl B |
Show the bubblebabble digest of specified private or public key file. |
Show the bubblebabble digest of specified private or public key file. |
.It Fl C Ar comment |
.It Fl C Ar comment |