Skip site navigation (1)Skip section navigation (2)

FreeBSD Manual Pages

  
 
  

home | help
SSH-KEYSIGN(8)		    System Manager's Manual		SSH-KEYSIGN(8)

NAME
       ssh-keysign - OpenSSH helper for	host-based authentication

SYNOPSIS
       ssh-keysign

DESCRIPTION
       ssh-keysign  is used by ssh(1) to access	the local host keys and	gener-
       ate the digital signature required during host-based authentication.

       ssh-keysign is disabled by default and  can  only  be  enabled  in  the
       global  client configuration file /usr/local/etc/ssh/ssh_config by set-
       ting EnableSSHKeysign to	``yes''.

       ssh-keysign is not intended to be invoked by the	user, but from ssh(1).
       See  ssh(1) and sshd(8) for more	information about host-based authenti-
       cation.

FILES
       /usr/local/etc/ssh/ssh_config
	      Controls whether ssh-keysign is enabled.

       /usr/local/etc/ssh/ssh_host_dsa_key

       /usr/local/etc/ssh/ssh_host_ecdsa_key

       /usr/local/etc/ssh/ssh_host_ed25519_key

       /usr/local/etc/ssh/ssh_host_rsa_key
	      These files contain the private parts of the host	keys  used  to
	      generate	the  digital signature.	 They should be	owned by root,
	      readable only by root, and not accessible	to others.  Since they
	      are  readable  only by root, ssh-keysign must be set-uid root if
	      host-based authentication	is used.

       /usr/local/etc/ssh/ssh_host_dsa_key-cert.pub

       /usr/local/etc/ssh/ssh_host_ecdsa_key-cert.pub

       /usr/local/etc/ssh/ssh_host_ed25519_key-cert.pub

       /usr/local/etc/ssh/ssh_host_rsa_key-cert.pub
	      If these files exist they	are assumed to contain public certifi-
	      cate information corresponding with the private keys above.

SEE ALSO
       ssh(1), ssh-keygen(1), ssh_config(5), sshd(8)

HISTORY
       ssh-keysign first appeared in OpenBSD 3.2 .

AUTHORS
       Markus Friedl <Mt markus@openbsd.org>

			       November	30 2019			SSH-KEYSIGN(8)

NAME | SYNOPSIS | DESCRIPTION | FILES | SEE ALSO | HISTORY | AUTHORS

Want to link to this manual page? Use this URL:
<https://www.freebsd.org/cgi/man.cgi?query=ssh-keysign&sektion=8&manpath=FreeBSD+Ports+13.1>

home | help