version 1.50, 2000/05/06 17:45:37 |
version 1.51, 2000/05/08 17:12:15 |
|
|
.Pp |
.Pp |
.Nm ssh |
.Nm ssh |
.Op Fl afgknqtvxCPX246 |
.Op Fl afgknqtvxCPX246 |
.Op Fl c Ar blowfish | 3des |
.Op Fl c Ar cipher_spec |
.Op Fl e Ar escape_char |
.Op Fl e Ar escape_char |
.Op Fl i Ar identity_file |
.Op Fl i Ar identity_file |
.Op Fl l Ar login_name |
.Op Fl l Ar login_name |
|
|
S/Key authentication. |
S/Key authentication. |
.Pp |
.Pp |
Protocol 2 provides additional mechanisms for confidentiality |
Protocol 2 provides additional mechanisms for confidentiality |
(the traffic is encrypted using 3DES, blowfish, cast128 or arcfour) |
(the traffic is encrypted using 3DES, Blowfish, CAST128 or Arcfour) |
and integrity (hmac-sha1, hmac-md5). |
and integrity (hmac-sha1, hmac-md5). |
Note that protocol 1 lacks a strong mechanism for ensuring the |
Note that protocol 1 lacks a strong mechanism for ensuring the |
integrity of the connection. |
integrity of the connection. |
|
|
(triple-des) is an encrypt-decrypt-encrypt triple with three different keys. |
(triple-des) is an encrypt-decrypt-encrypt triple with three different keys. |
It is presumably more secure than the |
It is presumably more secure than the |
.Ar des |
.Ar des |
cipher which is no longer supported in ssh. |
cipher which is no longer supported in |
|
.Nm ssh . |
.Ar blowfish |
.Ar blowfish |
is a fast block cipher, it appears very secure and is much faster than |
is a fast block cipher, it appears very secure and is much faster than |
.Ar 3des . |
.Ar 3des . |
|
.It Fl c Ar "3des-cbc,blowfish-cbc,arcfour,cast128-cbc" |
|
Additionally, for protocol version 2 a comma-separated list of ciphers can |
|
be specified in order of preference. Protocol version 2 supports |
|
3DES, Blowfish and CAST128 in CBC mode and Arcfour. |
.It Fl e Ar ch|^ch|none |
.It Fl e Ar ch|^ch|none |
Sets the escape character for sessions with a pty (default: |
Sets the escape character for sessions with a pty (default: |
.Ql ~ ) . |
.Ql ~ ) . |
|
|
in order of preference. |
in order of preference. |
Multiple ciphers must be comma-separated. |
Multiple ciphers must be comma-separated. |
The default is |
The default is |
.Dq blowfish-cbc,3des-cbc,arcfour,cast128-cbc . |
.Dq 3des-cbc,blowfish-cbc,arcfour,cast128-cbc . |
.It Cm Compression |
.It Cm Compression |
Specifies whether to use compression. |
Specifies whether to use compression. |
The argument must be |
The argument must be |