version 1.1, 2002/05/25 08:16:59 |
version 1.2, 2002/06/10 16:56:30 |
|
|
.Nm ssh-keysign |
.Nm ssh-keysign |
.Nd ssh helper program for hostbased authentication |
.Nd ssh helper program for hostbased authentication |
.Sh SYNOPSIS |
.Sh SYNOPSIS |
.Nm ssh-keysign |
.Nm |
.Sh DESCRIPTION |
.Sh DESCRIPTION |
.Nm |
.Nm |
is used by |
is used by |
.Xr ssh 1 |
.Xr ssh 1 |
to access the local host keys during hostbased authentication with |
to access the local host keys and generate the digital signature |
SSH protocol version 2. |
required during hostbased authentication with SSH protocol version 2. |
Since the host keys are readable only by root |
|
.Nm |
.Nm |
must be setuid root. |
|
.Nm |
|
is not intended to be invoked by the user, but from |
is not intended to be invoked by the user, but from |
.Xr ssh 1 . |
.Xr ssh 1 . |
See |
See |
|
|
and |
and |
.Xr sshd 8 |
.Xr sshd 8 |
for more information about hostbased authentication. |
for more information about hostbased authentication. |
|
.Sh FILES |
|
.Bl -tag -width Ds |
|
.It Pa /etc/ssh/ssh_host_dsa_key, /etc/ssh/ssh_host_rsa_key |
|
These files contain the private parts of the host keys used to |
|
generate the digital signature. They |
|
should be owned by root, readable only by root, and not |
|
accessible to others. |
|
Since they are readable only by root, |
|
.Nm |
|
must be set-uid root if hostbased authentication is used. |
|
.El |
.Sh SEE ALSO |
.Sh SEE ALSO |
.Xr ssh 1 , |
.Xr ssh 1 , |
|
.Xr ssh-keygen 1 , |
.Xr sshd 8 |
.Xr sshd 8 |
.Sh AUTHORS |
.Sh AUTHORS |
Markus Friedl <markus@openbsd.org> |
Markus Friedl <markus@openbsd.org> |