version 1.137, 2001/07/26 17:18:22 |
version 1.138, 2001/07/28 09:21:15 |
|
|
.Ss SSH protocol version 2 |
.Ss SSH protocol version 2 |
.Pp |
.Pp |
Version 2 works similarly: |
Version 2 works similarly: |
Each host has a host-specific DSA key used to identify the host. |
Each host has a host-specific key (RSA or DSA) used to identify the host. |
However, when the daemon starts, it does not generate a server key. |
However, when the daemon starts, it does not generate a server key. |
Forward security is provided through a Diffie-Hellman key agreement. |
Forward security is provided through a Diffie-Hellman key agreement. |
This key agreement results in a shared session key. |
This key agreement results in a shared session key. |
|
|
users from particular hosts. |
users from particular hosts. |
.Pp |
.Pp |
.It Cm AuthorizedKeysFile |
.It Cm AuthorizedKeysFile |
Specifies the file that contains the public RSA keys that can be used |
Specifies the file that contains the public keys that can be used |
for RSA authentication in protocol version 1. |
for user authentication. |
.Cm AuthorizedKeysFile |
.Cm AuthorizedKeysFile |
may contain tokens of the form %T which are substituted during connection |
may contain tokens of the form %T which are substituted during connection |
set-up. The following tokens are defined; %% is replaces by a literal '%', |
set-up. The following tokens are defined; %% is replaces by a literal '%', |