version 1.202, 2004/08/26 16:00:55 |
version 1.202.2.1, 2005/03/10 16:28:28 |
|
|
.Dq ssh-rsa . |
.Dq ssh-rsa . |
.Pp |
.Pp |
Note that lines in this file are usually several hundred bytes long |
Note that lines in this file are usually several hundred bytes long |
(because of the size of the public key encoding). |
(because of the size of the public key encoding) up to a limit of |
|
8 kilobytes, which permits DSA keys up to 8 kilobits and RSA |
|
keys up to 16 kilobits. |
You don't want to type them in; instead, copy the |
You don't want to type them in; instead, copy the |
.Pa identity.pub , |
.Pa identity.pub , |
.Pa id_dsa.pub |
.Pa id_dsa.pub |
|
|
pattern, it is not accepted (by that line) even if it matched another |
pattern, it is not accepted (by that line) even if it matched another |
pattern on the line. |
pattern on the line. |
.Pp |
.Pp |
|
Alternately, hostnames may be stored in a hashed form which hides host names |
|
and addresses should the file's contents be disclosed. |
|
Hashed hostnames start with a |
|
.Ql | |
|
character. |
|
Only one hashed hostname may appear on a single line and none of the above |
|
negation or wildcard operators may be applied. |
|
.Pp |
Bits, exponent, and modulus are taken directly from the RSA host key; they |
Bits, exponent, and modulus are taken directly from the RSA host key; they |
can be obtained, e.g., from |
can be obtained, e.g., from |
.Pa /etc/ssh/ssh_host_key.pub . |
.Pa /etc/ssh/ssh_host_key.pub . |
|
|
closenet,...,130.233.208.41 1024 37 159...93 closenet.hut.fi |
closenet,...,130.233.208.41 1024 37 159...93 closenet.hut.fi |
cvs.openbsd.org,199.185.137.3 ssh-rsa AAAA1234.....= |
cvs.openbsd.org,199.185.137.3 ssh-rsa AAAA1234.....= |
.Ed |
.Ed |
|
.Bd -literal |
|
# A hashed hostname |
|
|1|JfKTdBh7rNbXkVAQCRp4OQoPfmI=|USECr3SWf1JUPsms5AqfD5QfxkM= ssh-rsa |
|
AAAA1234.....= |
|
.Ed |
.Sh FILES |
.Sh FILES |
.Bl -tag -width Ds |
.Bl -tag -width Ds |
.It Pa /etc/ssh/sshd_config |
.It Pa /etc/ssh/sshd_config |
|
|
should be world-readable, and |
should be world-readable, and |
.Pa $HOME/.ssh/known_hosts |
.Pa $HOME/.ssh/known_hosts |
can, but need not be, world-readable. |
can, but need not be, world-readable. |
|
.It Pa /etc/motd |
|
See |
|
.Xr motd 5 . |
|
.It Pa $HOME/.hushlogin |
|
This file is used to suppress printing the last login time and |
|
.Pa /etc/motd , |
|
if |
|
.Cm PrintLastLog |
|
and |
|
.Cm PrintMotd , |
|
respectively, |
|
are enabled. |
|
It does not suppress printing of the banner specified by |
|
.Cm Banner . |
.It Pa /etc/nologin |
.It Pa /etc/nologin |
If this file exists, |
If this file exists, |
.Nm |
.Nm |