jmc@openbsd.org | 072f3b8 | 2020-02-03 08:15:37 +0000 | [diff] [blame^] | 1 | .\" $OpenBSD: ssh-keygen.1,v 1.199 2020/02/03 08:15:37 jmc Exp $ |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 2 | .\" |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 3 | .\" Author: Tatu Ylonen <ylo@cs.hut.fi> |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 4 | .\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland |
| 5 | .\" All rights reserved |
| 6 | .\" |
Damien Miller | e4340be | 2000-09-16 13:29:08 +1100 | [diff] [blame] | 7 | .\" As far as I am concerned, the code I have written for this software |
| 8 | .\" can be used freely for any purpose. Any derived versions of this |
| 9 | .\" software must be clearly marked as such, and if the derived work is |
| 10 | .\" incompatible with the protocol description in the RFC file, it must be |
| 11 | .\" called by a name other than "ssh" or "Secure Shell". |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 12 | .\" |
Damien Miller | e4340be | 2000-09-16 13:29:08 +1100 | [diff] [blame] | 13 | .\" |
Ben Lindstrom | 92a2e38 | 2001-03-05 06:59:27 +0000 | [diff] [blame] | 14 | .\" Copyright (c) 1999,2000 Markus Friedl. All rights reserved. |
| 15 | .\" Copyright (c) 1999 Aaron Campbell. All rights reserved. |
| 16 | .\" Copyright (c) 1999 Theo de Raadt. All rights reserved. |
Damien Miller | e4340be | 2000-09-16 13:29:08 +1100 | [diff] [blame] | 17 | .\" |
| 18 | .\" Redistribution and use in source and binary forms, with or without |
| 19 | .\" modification, are permitted provided that the following conditions |
| 20 | .\" are met: |
| 21 | .\" 1. Redistributions of source code must retain the above copyright |
| 22 | .\" notice, this list of conditions and the following disclaimer. |
| 23 | .\" 2. Redistributions in binary form must reproduce the above copyright |
| 24 | .\" notice, this list of conditions and the following disclaimer in the |
| 25 | .\" documentation and/or other materials provided with the distribution. |
| 26 | .\" |
| 27 | .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR |
| 28 | .\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES |
| 29 | .\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. |
| 30 | .\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, |
| 31 | .\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT |
| 32 | .\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, |
| 33 | .\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY |
| 34 | .\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
| 35 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 36 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 37 | .\" |
jmc@openbsd.org | 072f3b8 | 2020-02-03 08:15:37 +0000 | [diff] [blame^] | 38 | .Dd $Mdocdate: February 3 2020 $ |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 39 | .Dt SSH-KEYGEN 1 |
| 40 | .Os |
| 41 | .Sh NAME |
| 42 | .Nm ssh-keygen |
jmc@openbsd.org | 483cc72 | 2019-11-30 07:07:59 +0000 | [diff] [blame] | 43 | .Nd OpenSSH authentication key utility |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 44 | .Sh SYNOPSIS |
Damien Miller | bad5e03 | 2010-07-16 13:59:59 +1000 | [diff] [blame] | 45 | .Nm ssh-keygen |
Damien Miller | 0bc1bd8 | 2000-11-13 22:57:25 +1100 | [diff] [blame] | 46 | .Op Fl q |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 47 | .Op Fl b Ar bits |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 48 | .Op Fl C Ar comment |
Damien Miller | 1a425f3 | 2000-09-02 10:08:09 +1100 | [diff] [blame] | 49 | .Op Fl f Ar output_keyfile |
djm@openbsd.org | ecd2f33 | 2019-01-22 11:40:42 +0000 | [diff] [blame] | 50 | .Op Fl m Ar format |
djm@openbsd.org | 97dc5d1 | 2019-11-18 04:50:45 +0000 | [diff] [blame] | 51 | .Op Fl t Cm dsa | ecdsa | ecdsa-sk | ed25519 | ed25519-sk | rsa |
jmc@openbsd.org | 6918974 | 2019-10-03 17:07:50 +0000 | [diff] [blame] | 52 | .Op Fl N Ar new_passphrase |
naddy@openbsd.org | 0d005d6 | 2020-01-14 15:07:30 +0000 | [diff] [blame] | 53 | .Op Fl O Ar option |
naddy@openbsd.org | aa4c640 | 2019-11-07 08:38:38 +0000 | [diff] [blame] | 54 | .Op Fl w Ar provider |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 55 | .Nm ssh-keygen |
| 56 | .Fl p |
Damien Miller | 10f6f6b | 1999-11-17 17:29:08 +1100 | [diff] [blame] | 57 | .Op Fl f Ar keyfile |
djm@openbsd.org | ecd2f33 | 2019-01-22 11:40:42 +0000 | [diff] [blame] | 58 | .Op Fl m Ar format |
jmc@openbsd.org | 6918974 | 2019-10-03 17:07:50 +0000 | [diff] [blame] | 59 | .Op Fl N Ar new_passphrase |
| 60 | .Op Fl P Ar old_passphrase |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 61 | .Nm ssh-keygen |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 62 | .Fl i |
Damien Miller | 1a425f3 | 2000-09-02 10:08:09 +1100 | [diff] [blame] | 63 | .Op Fl f Ar input_keyfile |
jmc@openbsd.org | 6918974 | 2019-10-03 17:07:50 +0000 | [diff] [blame] | 64 | .Op Fl m Ar key_format |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 65 | .Nm ssh-keygen |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 66 | .Fl e |
Damien Miller | 1a425f3 | 2000-09-02 10:08:09 +1100 | [diff] [blame] | 67 | .Op Fl f Ar input_keyfile |
jmc@openbsd.org | 6918974 | 2019-10-03 17:07:50 +0000 | [diff] [blame] | 68 | .Op Fl m Ar key_format |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 69 | .Nm ssh-keygen |
| 70 | .Fl y |
Damien Miller | 1a425f3 | 2000-09-02 10:08:09 +1100 | [diff] [blame] | 71 | .Op Fl f Ar input_keyfile |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 72 | .Nm ssh-keygen |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 73 | .Fl c |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 74 | .Op Fl C Ar comment |
Damien Miller | 10f6f6b | 1999-11-17 17:29:08 +1100 | [diff] [blame] | 75 | .Op Fl f Ar keyfile |
jmc@openbsd.org | 6918974 | 2019-10-03 17:07:50 +0000 | [diff] [blame] | 76 | .Op Fl P Ar passphrase |
Damien Miller | 10f6f6b | 1999-11-17 17:29:08 +1100 | [diff] [blame] | 77 | .Nm ssh-keygen |
| 78 | .Fl l |
naddy@openbsd.org | 6288e3a | 2015-02-24 15:24:05 +0000 | [diff] [blame] | 79 | .Op Fl v |
djm@openbsd.org | 56d1c83 | 2014-12-21 22:27:55 +0000 | [diff] [blame] | 80 | .Op Fl E Ar fingerprint_hash |
Ben Lindstrom | 8fd372b | 2001-03-12 03:02:17 +0000 | [diff] [blame] | 81 | .Op Fl f Ar input_keyfile |
| 82 | .Nm ssh-keygen |
| 83 | .Fl B |
Damien Miller | 1a425f3 | 2000-09-02 10:08:09 +1100 | [diff] [blame] | 84 | .Op Fl f Ar input_keyfile |
Ben Lindstrom | a1ec4a9 | 2001-08-06 21:51:34 +0000 | [diff] [blame] | 85 | .Nm ssh-keygen |
Damien Miller | 048dc93 | 2010-02-12 09:22:04 +1100 | [diff] [blame] | 86 | .Fl D Ar pkcs11 |
Ben Lindstrom | a1ec4a9 | 2001-08-06 21:51:34 +0000 | [diff] [blame] | 87 | .Nm ssh-keygen |
Damien Miller | 4b42d7f | 2005-03-01 21:48:35 +1100 | [diff] [blame] | 88 | .Fl F Ar hostname |
jmc@openbsd.org | 6c91d42 | 2019-09-29 16:31:57 +0000 | [diff] [blame] | 89 | .Op Fl lv |
Damien Miller | 4b42d7f | 2005-03-01 21:48:35 +1100 | [diff] [blame] | 90 | .Op Fl f Ar known_hosts_file |
| 91 | .Nm ssh-keygen |
| 92 | .Fl H |
| 93 | .Op Fl f Ar known_hosts_file |
| 94 | .Nm ssh-keygen |
djm@openbsd.org | 9039971 | 2020-01-02 22:40:09 +0000 | [diff] [blame] | 95 | .Fl K |
| 96 | .Op Fl w Ar provider |
| 97 | .Nm ssh-keygen |
Damien Miller | 4b42d7f | 2005-03-01 21:48:35 +1100 | [diff] [blame] | 98 | .Fl R Ar hostname |
| 99 | .Op Fl f Ar known_hosts_file |
| 100 | .Nm ssh-keygen |
Damien Miller | 37876e9 | 2003-05-15 10:19:46 +1000 | [diff] [blame] | 101 | .Fl r Ar hostname |
Damien Miller | 37876e9 | 2003-05-15 10:19:46 +1000 | [diff] [blame] | 102 | .Op Fl g |
jmc@openbsd.org | 6c91d42 | 2019-09-29 16:31:57 +0000 | [diff] [blame] | 103 | .Op Fl f Ar input_keyfile |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 104 | .Nm ssh-keygen |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 105 | .Fl M Cm generate |
| 106 | .Op Fl O Ar option |
naddy@openbsd.org | 0d005d6 | 2020-01-14 15:07:30 +0000 | [diff] [blame] | 107 | .Ar output_file |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 108 | .Nm ssh-keygen |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 109 | .Fl M Cm screen |
naddy@openbsd.org | 0d005d6 | 2020-01-14 15:07:30 +0000 | [diff] [blame] | 110 | .Op Fl f Ar input_file |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 111 | .Op Fl O Ar option |
naddy@openbsd.org | 0d005d6 | 2020-01-14 15:07:30 +0000 | [diff] [blame] | 112 | .Ar output_file |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 113 | .Nm ssh-keygen |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 114 | .Fl I Ar certificate_identity |
jmc@openbsd.org | 6918974 | 2019-10-03 17:07:50 +0000 | [diff] [blame] | 115 | .Fl s Ar ca_key |
jmc@openbsd.org | 6c91d42 | 2019-09-29 16:31:57 +0000 | [diff] [blame] | 116 | .Op Fl hU |
djm@openbsd.org | a98339e | 2017-06-28 01:09:22 +0000 | [diff] [blame] | 117 | .Op Fl D Ar pkcs11_provider |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 118 | .Op Fl n Ar principals |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 119 | .Op Fl O Ar option |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 120 | .Op Fl V Ar validity_interval |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 121 | .Op Fl z Ar serial_number |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 122 | .Ar |
Damien Miller | f2b70ca | 2010-03-05 07:39:35 +1100 | [diff] [blame] | 123 | .Nm ssh-keygen |
Damien Miller | f2b70ca | 2010-03-05 07:39:35 +1100 | [diff] [blame] | 124 | .Fl L |
| 125 | .Op Fl f Ar input_keyfile |
Damien Miller | 58f1baf | 2011-05-05 14:06:15 +1000 | [diff] [blame] | 126 | .Nm ssh-keygen |
| 127 | .Fl A |
djm@openbsd.org | 853edbe | 2017-07-07 03:53:12 +0000 | [diff] [blame] | 128 | .Op Fl f Ar prefix_path |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 129 | .Nm ssh-keygen |
| 130 | .Fl k |
| 131 | .Fl f Ar krl_file |
| 132 | .Op Fl u |
Damien Miller | ac5542b | 2013-01-20 22:33:02 +1100 | [diff] [blame] | 133 | .Op Fl s Ar ca_public |
| 134 | .Op Fl z Ar version_number |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 135 | .Ar |
| 136 | .Nm ssh-keygen |
| 137 | .Fl Q |
| 138 | .Fl f Ar krl_file |
| 139 | .Ar |
djm@openbsd.org | 2a9c9f7 | 2019-09-03 08:34:19 +0000 | [diff] [blame] | 140 | .Nm ssh-keygen |
djm@openbsd.org | 72a8bea | 2020-01-23 23:31:52 +0000 | [diff] [blame] | 141 | .Fl Y Cm find-principals |
djm@openbsd.org | 56cffcc | 2020-01-23 02:43:48 +0000 | [diff] [blame] | 142 | .Fl s Ar signature_file |
| 143 | .Fl f Ar allowed_signers_file |
| 144 | .Nm ssh-keygen |
jmc@openbsd.org | 6918974 | 2019-10-03 17:07:50 +0000 | [diff] [blame] | 145 | .Fl Y Cm check-novalidate |
| 146 | .Fl n Ar namespace |
| 147 | .Fl s Ar signature_file |
| 148 | .Nm ssh-keygen |
djm@openbsd.org | 2a9c9f7 | 2019-09-03 08:34:19 +0000 | [diff] [blame] | 149 | .Fl Y Cm sign |
| 150 | .Fl f Ar key_file |
| 151 | .Fl n Ar namespace |
| 152 | .Ar |
| 153 | .Nm ssh-keygen |
| 154 | .Fl Y Cm verify |
djm@openbsd.org | 8aa2aa3 | 2019-09-16 03:23:02 +0000 | [diff] [blame] | 155 | .Fl f Ar allowed_signers_file |
jmc@openbsd.org | 6918974 | 2019-10-03 17:07:50 +0000 | [diff] [blame] | 156 | .Fl I Ar signer_identity |
djm@openbsd.org | 2a9c9f7 | 2019-09-03 08:34:19 +0000 | [diff] [blame] | 157 | .Fl n Ar namespace |
| 158 | .Fl s Ar signature_file |
| 159 | .Op Fl r Ar revocation_file |
Damien Miller | 22c7726 | 2000-04-13 12:26:34 +1000 | [diff] [blame] | 160 | .Sh DESCRIPTION |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 161 | .Nm |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 162 | generates, manages and converts authentication keys for |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 163 | .Xr ssh 1 . |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 164 | .Nm |
jmc@openbsd.org | 2b6f799 | 2017-05-03 06:32:02 +0000 | [diff] [blame] | 165 | can create keys for use by SSH protocol version 2. |
jmc@openbsd.org | a685ae8 | 2016-02-17 07:38:19 +0000 | [diff] [blame] | 166 | .Pp |
Damien Miller | fbf486b | 2003-05-23 18:44:23 +1000 | [diff] [blame] | 167 | The type of key to be generated is specified with the |
Damien Miller | 0bc1bd8 | 2000-11-13 22:57:25 +1100 | [diff] [blame] | 168 | .Fl t |
Damien Miller | a41c8b1 | 2002-01-22 23:05:08 +1100 | [diff] [blame] | 169 | option. |
Damien Miller | f14be5c | 2005-11-05 15:15:49 +1100 | [diff] [blame] | 170 | If invoked without any arguments, |
| 171 | .Nm |
naddy@openbsd.org | 2e9c324 | 2017-05-05 10:41:58 +0000 | [diff] [blame] | 172 | will generate an RSA key. |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 173 | .Pp |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 174 | .Nm |
| 175 | is also used to generate groups for use in Diffie-Hellman group |
| 176 | exchange (DH-GEX). |
| 177 | See the |
| 178 | .Sx MODULI GENERATION |
| 179 | section for details. |
| 180 | .Pp |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 181 | Finally, |
| 182 | .Nm |
| 183 | can be used to generate and update Key Revocation Lists, and to test whether |
Damien Miller | ac5542b | 2013-01-20 22:33:02 +1100 | [diff] [blame] | 184 | given keys have been revoked by one. |
| 185 | See the |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 186 | .Sx KEY REVOCATION LISTS |
| 187 | section for details. |
| 188 | .Pp |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 189 | Normally each user wishing to use SSH |
Damien Miller | eb8b60e | 2010-08-31 22:41:14 +1000 | [diff] [blame] | 190 | with public key authentication runs this once to create the authentication |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 191 | key in |
Damien Miller | 8ba0ead | 2013-12-18 17:46:27 +1100 | [diff] [blame] | 192 | .Pa ~/.ssh/id_dsa , |
Damien Miller | eb8b60e | 2010-08-31 22:41:14 +1000 | [diff] [blame] | 193 | .Pa ~/.ssh/id_ecdsa , |
naddy@openbsd.org | aa4c640 | 2019-11-07 08:38:38 +0000 | [diff] [blame] | 194 | .Pa ~/.ssh/id_ecdsa_sk , |
naddy@openbsd.org | f0edda8 | 2019-11-18 23:16:49 +0000 | [diff] [blame] | 195 | .Pa ~/.ssh/id_ed25519 , |
| 196 | .Pa ~/.ssh/id_ed25519_sk |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 197 | or |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 198 | .Pa ~/.ssh/id_rsa . |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 199 | Additionally, the system administrator may use this to generate host keys, |
| 200 | as seen in |
| 201 | .Pa /etc/rc . |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 202 | .Pp |
| 203 | Normally this program generates the key and asks for a file in which |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 204 | to store the private key. |
| 205 | The public key is stored in a file with the same name but |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 206 | .Dq .pub |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 207 | appended. |
| 208 | The program also asks for a passphrase. |
| 209 | The passphrase may be empty to indicate no passphrase |
Ben Lindstrom | bf555ba | 2001-01-18 02:04:35 +0000 | [diff] [blame] | 210 | (host keys must have an empty passphrase), or it may be a string of |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 211 | arbitrary length. |
Ben Lindstrom | 4e366d5 | 2001-12-06 16:43:21 +0000 | [diff] [blame] | 212 | A passphrase is similar to a password, except it can be a phrase with a |
| 213 | series of words, punctuation, numbers, whitespace, or any string of |
| 214 | characters you want. |
| 215 | Good passphrases are 10-30 characters long, are |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 216 | not simple sentences or otherwise easily guessable (English |
Ben Lindstrom | 2a097a4 | 2001-06-09 01:13:40 +0000 | [diff] [blame] | 217 | prose has only 1-2 bits of entropy per character, and provides very bad |
Ben Lindstrom | 4e366d5 | 2001-12-06 16:43:21 +0000 | [diff] [blame] | 218 | passphrases), and contain a mix of upper and lowercase letters, |
| 219 | numbers, and non-alphanumeric characters. |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 220 | The passphrase can be changed later by using the |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 221 | .Fl p |
| 222 | option. |
| 223 | .Pp |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 224 | There is no way to recover a lost passphrase. |
Damien Miller | 085c90f | 2011-05-05 14:15:33 +1000 | [diff] [blame] | 225 | If the passphrase is lost or forgotten, a new key must be generated |
| 226 | and the corresponding public key copied to other machines. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 227 | .Pp |
djm@openbsd.org | c45616a | 2019-01-22 11:00:15 +0000 | [diff] [blame] | 228 | .Nm |
| 229 | will by default write keys in an OpenSSH-specific format. |
| 230 | This format is preferred as it offers better protection for |
| 231 | keys at rest as well as allowing storage of key comments within |
| 232 | the private key file itself. |
| 233 | The key comment may be useful to help identify the key. |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 234 | The comment is initialized to |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 235 | .Dq user@host |
| 236 | when the key is created, but can be changed using the |
| 237 | .Fl c |
| 238 | option. |
| 239 | .Pp |
djm@openbsd.org | c45616a | 2019-01-22 11:00:15 +0000 | [diff] [blame] | 240 | It is still possible for |
| 241 | .Nm |
| 242 | to write the previously-used PEM format private keys using the |
| 243 | .Fl m |
| 244 | flag. |
| 245 | This may be used when generating new keys, and existing new-format |
| 246 | keys may be converted using this option in conjunction with the |
| 247 | .Fl p |
| 248 | (change passphrase) flag. |
| 249 | .Pp |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 250 | After a key is generated, instructions below detail where the keys |
| 251 | should be placed to be activated. |
| 252 | .Pp |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 253 | The options are as follows: |
| 254 | .Bl -tag -width Ds |
Damien Miller | 58f1baf | 2011-05-05 14:06:15 +1000 | [diff] [blame] | 255 | .It Fl A |
djm@openbsd.org | 97dc5d1 | 2019-11-18 04:50:45 +0000 | [diff] [blame] | 256 | For each of the key types (rsa, dsa, ecdsa and ed25519) |
Damien Miller | 8ba0ead | 2013-12-18 17:46:27 +1100 | [diff] [blame] | 257 | for which host keys |
Damien Miller | 58f1baf | 2011-05-05 14:06:15 +1000 | [diff] [blame] | 258 | do not exist, generate the host keys with the default key file path, |
| 259 | an empty passphrase, default bits for the key type, and default comment. |
jmc@openbsd.org | dc44dd3 | 2017-07-08 18:32:54 +0000 | [diff] [blame] | 260 | If |
djm@openbsd.org | 853edbe | 2017-07-07 03:53:12 +0000 | [diff] [blame] | 261 | .Fl f |
jmc@openbsd.org | dc44dd3 | 2017-07-08 18:32:54 +0000 | [diff] [blame] | 262 | has also been specified, its argument is used as a prefix to the |
djm@openbsd.org | 853edbe | 2017-07-07 03:53:12 +0000 | [diff] [blame] | 263 | default path for the resulting host key files. |
Damien Miller | 3ca1eb3 | 2011-05-05 14:13:50 +1000 | [diff] [blame] | 264 | This is used by |
Damien Miller | 58f1baf | 2011-05-05 14:06:15 +1000 | [diff] [blame] | 265 | .Pa /etc/rc |
| 266 | to generate new host keys. |
Damien Miller | 4f752cf | 2013-12-18 17:45:35 +1100 | [diff] [blame] | 267 | .It Fl a Ar rounds |
jmc@openbsd.org | 3b44bf3 | 2019-09-27 20:03:24 +0000 | [diff] [blame] | 268 | When saving a private key, this option specifies the number of KDF |
djm@openbsd.org | ed7bd5d | 2018-08-08 01:16:01 +0000 | [diff] [blame] | 269 | (key derivation function) rounds used. |
Damien Miller | 4f752cf | 2013-12-18 17:45:35 +1100 | [diff] [blame] | 270 | Higher numbers result in slower passphrase verification and increased |
| 271 | resistance to brute-force password cracking (should the keys be stolen). |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 272 | .It Fl B |
| 273 | Show the bubblebabble digest of specified private or public key file. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 274 | .It Fl b Ar bits |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 275 | Specifies the number of bits in the key to create. |
dtucker@openbsd.org | d7c6e38 | 2019-04-19 05:47:44 +0000 | [diff] [blame] | 276 | For RSA keys, the minimum size is 1024 bits and the default is 3072 bits. |
| 277 | Generally, 3072 bits is considered sufficient. |
Darren Tucker | 9f64733 | 2005-11-28 16:41:46 +1100 | [diff] [blame] | 278 | DSA keys must be exactly 1024 bits as specified by FIPS 186-2. |
Damien Miller | ad21032 | 2011-05-05 14:15:54 +1000 | [diff] [blame] | 279 | For ECDSA keys, the |
| 280 | .Fl b |
Damien Miller | 6232a16 | 2011-09-22 21:36:00 +1000 | [diff] [blame] | 281 | flag determines the key length by selecting from one of three elliptic |
Damien Miller | ad21032 | 2011-05-05 14:15:54 +1000 | [diff] [blame] | 282 | curve sizes: 256, 384 or 521 bits. |
| 283 | Attempting to use bit lengths other than these three values for ECDSA keys |
| 284 | will fail. |
naddy@openbsd.org | f0edda8 | 2019-11-18 23:16:49 +0000 | [diff] [blame] | 285 | ECDSA-SK, Ed25519 and Ed25519-SK keys have a fixed length and the |
Damien Miller | 8ba0ead | 2013-12-18 17:46:27 +1100 | [diff] [blame] | 286 | .Fl b |
| 287 | flag will be ignored. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 288 | .It Fl C Ar comment |
| 289 | Provides a new comment. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 290 | .It Fl c |
| 291 | Requests changing the comment in the private and public key files. |
| 292 | The program will prompt for the file containing the private keys, for |
Ben Lindstrom | aafff9c | 2001-05-06 03:01:02 +0000 | [diff] [blame] | 293 | the passphrase if the key has one, and for the new comment. |
Damien Miller | 7ea845e | 2010-02-12 09:21:02 +1100 | [diff] [blame] | 294 | .It Fl D Ar pkcs11 |
naddy@openbsd.org | c13b745 | 2019-03-05 16:17:12 +0000 | [diff] [blame] | 295 | Download the public keys provided by the PKCS#11 shared library |
Damien Miller | a761844 | 2010-02-12 09:26:02 +1100 | [diff] [blame] | 296 | .Ar pkcs11 . |
Damien Miller | 757f34e | 2010-08-05 13:05:31 +1000 | [diff] [blame] | 297 | When used in combination with |
| 298 | .Fl s , |
| 299 | this option indicates that a CA key resides in a PKCS#11 token (see the |
| 300 | .Sx CERTIFICATES |
| 301 | section for details). |
djm@openbsd.org | 56d1c83 | 2014-12-21 22:27:55 +0000 | [diff] [blame] | 302 | .It Fl E Ar fingerprint_hash |
| 303 | Specifies the hash algorithm used when displaying key fingerprints. |
| 304 | Valid options are: |
| 305 | .Dq md5 |
| 306 | and |
| 307 | .Dq sha256 . |
| 308 | The default is |
| 309 | .Dq sha256 . |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 310 | .It Fl e |
Ben Lindstrom | 46c264f | 2001-04-24 16:56:58 +0000 | [diff] [blame] | 311 | This option will read a private or public OpenSSH key file and |
djm@openbsd.org | 180b520 | 2019-01-22 11:19:42 +0000 | [diff] [blame] | 312 | print to stdout a public key in one of the formats specified by the |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 313 | .Fl m |
| 314 | option. |
| 315 | The default export format is |
| 316 | .Dq RFC4716 . |
Damien Miller | ea72728 | 2010-07-02 13:35:34 +1000 | [diff] [blame] | 317 | This option allows exporting OpenSSH keys for use by other programs, including |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 318 | several commercial SSH implementations. |
djm@openbsd.org | 737e4ed | 2018-12-07 03:32:26 +0000 | [diff] [blame] | 319 | .It Fl F Ar hostname | [hostname]:port |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 320 | Search for the specified |
| 321 | .Ar hostname |
djm@openbsd.org | 737e4ed | 2018-12-07 03:32:26 +0000 | [diff] [blame] | 322 | (with optional port number) |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 323 | in a |
| 324 | .Pa known_hosts |
| 325 | file, listing any occurrences found. |
| 326 | This option is useful to find hashed host names or addresses and may also be |
| 327 | used in conjunction with the |
| 328 | .Fl H |
| 329 | option to print found keys in a hashed format. |
| 330 | .It Fl f Ar filename |
| 331 | Specifies the filename of the key file. |
Damien Miller | 37876e9 | 2003-05-15 10:19:46 +1000 | [diff] [blame] | 332 | .It Fl g |
Darren Tucker | 0b42e6d | 2004-08-13 21:22:40 +1000 | [diff] [blame] | 333 | Use generic DNS format when printing fingerprint resource records using the |
Darren Tucker | 6e37037 | 2004-08-13 21:23:25 +1000 | [diff] [blame] | 334 | .Fl r |
Darren Tucker | 0b42e6d | 2004-08-13 21:22:40 +1000 | [diff] [blame] | 335 | command. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 336 | .It Fl H |
| 337 | Hash a |
| 338 | .Pa known_hosts |
Darren Tucker | da1adbc | 2005-03-14 23:15:58 +1100 | [diff] [blame] | 339 | file. |
| 340 | This replaces all hostnames and addresses with hashed representations |
| 341 | within the specified file; the original content is moved to a file with |
| 342 | a .old suffix. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 343 | These hashes may be used normally by |
| 344 | .Nm ssh |
| 345 | and |
| 346 | .Nm sshd , |
| 347 | but they do not reveal identifying information should the file's contents |
| 348 | be disclosed. |
| 349 | This option will not modify existing hashed hostnames and is therefore safe |
| 350 | to use on files that mix hashed and non-hashed names. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 351 | .It Fl h |
| 352 | When signing a key, create a host certificate instead of a user |
| 353 | certificate. |
| 354 | Please see the |
| 355 | .Sx CERTIFICATES |
| 356 | section for details. |
Damien Miller | 15f5b56 | 2010-03-03 10:25:21 +1100 | [diff] [blame] | 357 | .It Fl I Ar certificate_identity |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 358 | Specify the key identity when signing a public key. |
| 359 | Please see the |
| 360 | .Sx CERTIFICATES |
| 361 | section for details. |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 362 | .It Fl i |
| 363 | This option will read an unencrypted private (or public) key file |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 364 | in the format specified by the |
| 365 | .Fl m |
| 366 | option and print an OpenSSH compatible private |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 367 | (or public) key to stdout. |
Damien Miller | 43b156c | 2014-04-20 13:23:03 +1000 | [diff] [blame] | 368 | This option allows importing keys from other software, including several |
| 369 | commercial SSH implementations. |
| 370 | The default import format is |
| 371 | .Dq RFC4716 . |
jmc@openbsd.org | c593cc5 | 2020-01-03 07:33:33 +0000 | [diff] [blame] | 372 | .It Fl K |
djm@openbsd.org | 9039971 | 2020-01-02 22:40:09 +0000 | [diff] [blame] | 373 | Download resident keys from a FIDO authenticator. |
| 374 | Public and private key files will be written to the current directory for |
| 375 | each downloaded key. |
| 376 | .It Fl k |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 377 | Generate a KRL file. |
| 378 | In this mode, |
| 379 | .Nm |
| 380 | will generate a KRL file at the location specified via the |
| 381 | .Fl f |
Damien Miller | 881a7a2 | 2013-01-20 22:34:46 +1100 | [diff] [blame] | 382 | flag that revokes every key or certificate presented on the command line. |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 383 | Keys/certificates to be revoked may be specified by public key file or |
| 384 | using the format described in the |
| 385 | .Sx KEY REVOCATION LISTS |
| 386 | section. |
Damien Miller | f2b70ca | 2010-03-05 07:39:35 +1100 | [diff] [blame] | 387 | .It Fl L |
djm@openbsd.org | 94bc0b7 | 2015-11-13 04:34:15 +0000 | [diff] [blame] | 388 | Prints the contents of one or more certificates. |
Damien Miller | 10f6f6b | 1999-11-17 17:29:08 +1100 | [diff] [blame] | 389 | .It Fl l |
Darren Tucker | 35c4553 | 2008-06-13 04:43:15 +1000 | [diff] [blame] | 390 | Show fingerprint of specified public key file. |
Damien Miller | eb5fec6 | 2001-11-12 10:52:44 +1100 | [diff] [blame] | 391 | For RSA and DSA keys |
| 392 | .Nm |
Darren Tucker | f09e825 | 2008-06-13 05:18:03 +1000 | [diff] [blame] | 393 | tries to find the matching public key file and prints its fingerprint. |
| 394 | If combined with |
| 395 | .Fl v , |
jmc@openbsd.org | 9283884 | 2016-05-03 18:38:12 +0000 | [diff] [blame] | 396 | a visual ASCII art representation of the key is supplied with the |
djm@openbsd.org | cdcd941 | 2016-05-03 14:54:08 +0000 | [diff] [blame] | 397 | fingerprint. |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 398 | .It Fl M Cm generate |
| 399 | Generate candidate Diffie-Hellman Group Exchange (DH-GEX) parameters for |
| 400 | eventual use by the |
| 401 | .Sq diffie-hellman-group-exchange-* |
| 402 | key exchange methods. |
| 403 | The numbers generated by this operation must be further screened before |
| 404 | use. |
| 405 | See the |
| 406 | .Sx MODULI GENERATION |
| 407 | section for more information. |
| 408 | .It Fl M Cm screen |
| 409 | Screen candidate parameters for Diffie-Hellman Group Exchange. |
| 410 | This will accept a list of candidate numbers and test that they are |
| 411 | safe (Sophie Germain) primes with acceptable group generators. |
| 412 | The results of this operation may be added to the |
| 413 | .Pa /etc/moduli |
| 414 | file. |
| 415 | See the |
| 416 | .Sx MODULI GENERATION |
| 417 | section for more information. |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 418 | .It Fl m Ar key_format |
djm@openbsd.org | ecd2f33 | 2019-01-22 11:40:42 +0000 | [diff] [blame] | 419 | Specify a key format for key generation, the |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 420 | .Fl i |
djm@openbsd.org | ecd2f33 | 2019-01-22 11:40:42 +0000 | [diff] [blame] | 421 | (import), |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 422 | .Fl e |
djm@openbsd.org | ecd2f33 | 2019-01-22 11:40:42 +0000 | [diff] [blame] | 423 | (export) conversion options, and the |
| 424 | .Fl p |
| 425 | change passphrase operation. |
| 426 | The latter may be used to convert between OpenSSH private key and PEM |
| 427 | private key formats. |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 428 | The supported key formats are: |
| 429 | .Dq RFC4716 |
Damien Miller | ea72728 | 2010-07-02 13:35:34 +1000 | [diff] [blame] | 430 | (RFC 4716/SSH2 public or private key), |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 431 | .Dq PKCS8 |
djm@openbsd.org | eb0d8e7 | 2019-07-15 13:16:29 +0000 | [diff] [blame] | 432 | (PKCS8 public or private key) |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 433 | or |
| 434 | .Dq PEM |
| 435 | (PEM public key). |
djm@openbsd.org | eb0d8e7 | 2019-07-15 13:16:29 +0000 | [diff] [blame] | 436 | By default OpenSSH will write newly-generated private keys in its own |
| 437 | format, but when converting public keys for export the default format is |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 438 | .Dq RFC4716 . |
djm@openbsd.org | ed7bd5d | 2018-08-08 01:16:01 +0000 | [diff] [blame] | 439 | Setting a format of |
| 440 | .Dq PEM |
| 441 | when generating or updating a supported private key type will cause the |
| 442 | key to be stored in the legacy PEM private key format. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 443 | .It Fl N Ar new_passphrase |
| 444 | Provides the new passphrase. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 445 | .It Fl n Ar principals |
| 446 | Specify one or more principals (user or host names) to be included in |
| 447 | a certificate when signing a key. |
| 448 | Multiple principals may be specified, separated by commas. |
| 449 | Please see the |
| 450 | .Sx CERTIFICATES |
| 451 | section for details. |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 452 | .It Fl O Ar option |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 453 | Specify a key/value option. |
| 454 | These are specific to the operation that |
| 455 | .Nm |
| 456 | has been requested to perform. |
| 457 | .Pp |
| 458 | When signing certificates, one of the options listed in the |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 459 | .Sx CERTIFICATES |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 460 | section may be specified here. |
| 461 | .Pp |
| 462 | When performing moduli generation or screening, one of the options |
| 463 | listed in the |
| 464 | .Sx MODULI GENERATION |
| 465 | section may be specified. |
| 466 | .Pp |
jmc@openbsd.org | cd53476 | 2020-01-06 07:43:28 +0000 | [diff] [blame] | 467 | When generating a key that will be hosted on a FIDO authenticator, |
| 468 | this flag may be used to specify key-specific options. |
| 469 | Those supported at present are: |
| 470 | .Bl -tag -width Ds |
| 471 | .It Cm application |
| 472 | Override the default FIDO application/origin string of |
djm@openbsd.org | c312ca0 | 2020-01-06 02:00:46 +0000 | [diff] [blame] | 473 | .Dq ssh: . |
jmc@openbsd.org | cd53476 | 2020-01-06 07:43:28 +0000 | [diff] [blame] | 474 | This may be useful when generating host or domain-specific resident keys. |
jmc@openbsd.org | 072f3b8 | 2020-02-03 08:15:37 +0000 | [diff] [blame^] | 475 | .It Cm challenge Ns = Ns Ar path |
jmc@openbsd.org | 0facae7 | 2020-02-02 07:36:50 +0000 | [diff] [blame] | 476 | Specifies a path to a challenge string that will be passed to the |
| 477 | FIDO token during key generation. |
jmc@openbsd.org | 072f3b8 | 2020-02-03 08:15:37 +0000 | [diff] [blame^] | 478 | The challenge string may be used as part of an out-of-band |
| 479 | protocol for key enrollment |
| 480 | (a random challenge is used by default). |
jmc@openbsd.org | cd53476 | 2020-01-06 07:43:28 +0000 | [diff] [blame] | 481 | .It Cm device |
| 482 | Explicitly specify a |
djm@openbsd.org | c312ca0 | 2020-01-06 02:00:46 +0000 | [diff] [blame] | 483 | .Xr fido 4 |
| 484 | device to use, rather than letting the token middleware select one. |
jmc@openbsd.org | cd53476 | 2020-01-06 07:43:28 +0000 | [diff] [blame] | 485 | .It Cm no-touch-required |
| 486 | Indicate that the generated private key should not require touch |
djm@openbsd.org | 3093d12 | 2019-12-30 09:49:52 +0000 | [diff] [blame] | 487 | events (user presence) when making signatures. |
| 488 | Note that |
| 489 | .Xr sshd 8 |
| 490 | will refuse such signatures by default, unless overridden via |
| 491 | an authorized_keys option. |
jmc@openbsd.org | cd53476 | 2020-01-06 07:43:28 +0000 | [diff] [blame] | 492 | .It Cm resident |
| 493 | Indicate that the key should be stored on the FIDO authenticator itself. |
djm@openbsd.org | 3093d12 | 2019-12-30 09:49:52 +0000 | [diff] [blame] | 494 | Resident keys may be supported on FIDO2 tokens and typically require that |
| 495 | a PIN be set on the token prior to generation. |
| 496 | Resident keys may be loaded off the token using |
| 497 | .Xr ssh-add 1 . |
jmc@openbsd.org | cd53476 | 2020-01-06 07:43:28 +0000 | [diff] [blame] | 498 | .It Cm user |
| 499 | A username to be associated with a resident key, |
djm@openbsd.org | c312ca0 | 2020-01-06 02:00:46 +0000 | [diff] [blame] | 500 | overriding the empty default username. |
| 501 | Specifying a username may be useful when generating multiple resident keys |
| 502 | for the same application name. |
jmc@openbsd.org | 072f3b8 | 2020-02-03 08:15:37 +0000 | [diff] [blame^] | 503 | .It Cm write-attestation Ns = Ns Ar path |
djm@openbsd.org | 24c0f75 | 2020-01-28 08:01:34 +0000 | [diff] [blame] | 504 | May be used at key generation time to record the attestation certificate |
| 505 | returned from FIDO tokens during key generation. |
| 506 | By default this information is discarded. |
jmc@openbsd.org | cd53476 | 2020-01-06 07:43:28 +0000 | [diff] [blame] | 507 | .El |
djm@openbsd.org | 3093d12 | 2019-12-30 09:49:52 +0000 | [diff] [blame] | 508 | .Pp |
| 509 | The |
| 510 | .Fl O |
| 511 | option may be specified multiple times. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 512 | .It Fl P Ar passphrase |
| 513 | Provides the (old) passphrase. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 514 | .It Fl p |
| 515 | Requests changing the passphrase of a private key file instead of |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 516 | creating a new private key. |
| 517 | The program will prompt for the file |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 518 | containing the private key, for the old passphrase, and twice for the |
| 519 | new passphrase. |
Damien Miller | 072fdcd | 2013-01-20 22:34:04 +1100 | [diff] [blame] | 520 | .It Fl Q |
| 521 | Test whether keys have been revoked in a KRL. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 522 | .It Fl q |
| 523 | Silence |
| 524 | .Nm ssh-keygen . |
djm@openbsd.org | 63bba57 | 2018-12-07 03:33:18 +0000 | [diff] [blame] | 525 | .It Fl R Ar hostname | [hostname]:port |
djm@openbsd.org | 737e4ed | 2018-12-07 03:32:26 +0000 | [diff] [blame] | 526 | Removes all keys belonging to the specified |
Damien Miller | 4b42d7f | 2005-03-01 21:48:35 +1100 | [diff] [blame] | 527 | .Ar hostname |
djm@openbsd.org | 737e4ed | 2018-12-07 03:32:26 +0000 | [diff] [blame] | 528 | (with optional port number) |
Damien Miller | 4c9c6fd | 2005-03-02 12:03:43 +1100 | [diff] [blame] | 529 | from a |
Damien Miller | 4b42d7f | 2005-03-01 21:48:35 +1100 | [diff] [blame] | 530 | .Pa known_hosts |
| 531 | file. |
Damien Miller | 4c9c6fd | 2005-03-02 12:03:43 +1100 | [diff] [blame] | 532 | This option is useful to delete hashed hosts (see the |
Damien Miller | 4b42d7f | 2005-03-01 21:48:35 +1100 | [diff] [blame] | 533 | .Fl H |
| 534 | option above). |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 535 | .It Fl r Ar hostname |
| 536 | Print the SSHFP fingerprint resource record named |
| 537 | .Ar hostname |
| 538 | for the specified public key file. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 539 | .It Fl s Ar ca_key |
| 540 | Certify (sign) a public key using the specified CA key. |
| 541 | Please see the |
| 542 | .Sx CERTIFICATES |
| 543 | section for details. |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 544 | .Pp |
| 545 | When generating a KRL, |
| 546 | .Fl s |
Damien Miller | ac5542b | 2013-01-20 22:33:02 +1100 | [diff] [blame] | 547 | specifies a path to a CA public key file used to revoke certificates directly |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 548 | by key ID or serial number. |
| 549 | See the |
| 550 | .Sx KEY REVOCATION LISTS |
| 551 | section for details. |
djm@openbsd.org | 97dc5d1 | 2019-11-18 04:50:45 +0000 | [diff] [blame] | 552 | .It Fl t Cm dsa | ecdsa | ecdsa-sk | ed25519 | ed25519-sk | rsa |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 553 | Specifies the type of key to create. |
| 554 | The possible values are |
Damien Miller | 6186bbc | 2010-09-24 22:00:54 +1000 | [diff] [blame] | 555 | .Dq dsa , |
Damien Miller | 8ba0ead | 2013-12-18 17:46:27 +1100 | [diff] [blame] | 556 | .Dq ecdsa , |
naddy@openbsd.org | aa4c640 | 2019-11-07 08:38:38 +0000 | [diff] [blame] | 557 | .Dq ecdsa-sk , |
Damien Miller | 8ba0ead | 2013-12-18 17:46:27 +1100 | [diff] [blame] | 558 | .Dq ed25519 , |
djm@openbsd.org | 97dc5d1 | 2019-11-18 04:50:45 +0000 | [diff] [blame] | 559 | .Dq ed25519-sk , |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 560 | or |
jmc@openbsd.org | f10c0d3 | 2017-05-02 17:04:09 +0000 | [diff] [blame] | 561 | .Dq rsa . |
djm@openbsd.org | 476e355 | 2019-05-20 00:20:35 +0000 | [diff] [blame] | 562 | .Pp |
| 563 | This flag may also be used to specify the desired signature type when |
jmc@openbsd.org | 85ceb0e | 2019-05-20 06:01:59 +0000 | [diff] [blame] | 564 | signing certificates using an RSA CA key. |
djm@openbsd.org | 476e355 | 2019-05-20 00:20:35 +0000 | [diff] [blame] | 565 | The available RSA signature variants are |
| 566 | .Dq ssh-rsa |
| 567 | (SHA1 signatures, not recommended), |
jmc@openbsd.org | 85ceb0e | 2019-05-20 06:01:59 +0000 | [diff] [blame] | 568 | .Dq rsa-sha2-256 , |
| 569 | and |
djm@openbsd.org | 476e355 | 2019-05-20 00:20:35 +0000 | [diff] [blame] | 570 | .Dq rsa-sha2-512 |
| 571 | (the default). |
djm@openbsd.org | a98339e | 2017-06-28 01:09:22 +0000 | [diff] [blame] | 572 | .It Fl U |
| 573 | When used in combination with |
| 574 | .Fl s , |
| 575 | this option indicates that a CA key resides in a |
| 576 | .Xr ssh-agent 1 . |
| 577 | See the |
| 578 | .Sx CERTIFICATES |
| 579 | section for more information. |
Damien Miller | ac5542b | 2013-01-20 22:33:02 +1100 | [diff] [blame] | 580 | .It Fl u |
| 581 | Update a KRL. |
| 582 | When specified with |
| 583 | .Fl k , |
Damien Miller | 881a7a2 | 2013-01-20 22:34:46 +1100 | [diff] [blame] | 584 | keys listed via the command line are added to the existing KRL rather than |
Damien Miller | ac5542b | 2013-01-20 22:33:02 +1100 | [diff] [blame] | 585 | a new KRL being created. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 586 | .It Fl V Ar validity_interval |
| 587 | Specify a validity interval when signing a certificate. |
| 588 | A validity interval may consist of a single time, indicating that the |
| 589 | certificate is valid beginning now and expiring at that time, or may consist |
| 590 | of two times separated by a colon to indicate an explicit time interval. |
djm@openbsd.org@openbsd.org | d52131a | 2017-11-03 05:14:04 +0000 | [diff] [blame] | 591 | .Pp |
| 592 | The start time may be specified as the string |
| 593 | .Dq always |
| 594 | to indicate the certificate has no specified start time, |
djm@openbsd.org | bf0fbf2 | 2018-03-12 00:52:01 +0000 | [diff] [blame] | 595 | a date in YYYYMMDD format, a time in YYYYMMDDHHMM[SS] format, |
djm@openbsd.org@openbsd.org | d52131a | 2017-11-03 05:14:04 +0000 | [diff] [blame] | 596 | a relative time (to the current time) consisting of a minus sign followed by |
| 597 | an interval in the format described in the |
Damien Miller | fecfd11 | 2013-07-18 16:11:50 +1000 | [diff] [blame] | 598 | TIME FORMATS section of |
Damien Miller | 77497e1 | 2010-03-22 05:50:51 +1100 | [diff] [blame] | 599 | .Xr sshd_config 5 . |
djm@openbsd.org@openbsd.org | d52131a | 2017-11-03 05:14:04 +0000 | [diff] [blame] | 600 | .Pp |
djm@openbsd.org | bf0fbf2 | 2018-03-12 00:52:01 +0000 | [diff] [blame] | 601 | The end time may be specified as a YYYYMMDD date, a YYYYMMDDHHMM[SS] time, |
djm@openbsd.org@openbsd.org | d52131a | 2017-11-03 05:14:04 +0000 | [diff] [blame] | 602 | a relative time starting with a plus character or the string |
| 603 | .Dq forever |
| 604 | to indicate that the certificate has no expirty date. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 605 | .Pp |
| 606 | For example: |
| 607 | .Dq +52w1d |
| 608 | (valid from now to 52 weeks and one day from now), |
| 609 | .Dq -4w:+4w |
| 610 | (valid from four weeks ago to four weeks from now), |
| 611 | .Dq 20100101123000:20110101123000 |
| 612 | (valid from 12:30 PM, January 1st, 2010 to 12:30 PM, January 1st, 2011), |
| 613 | .Dq -1d:20110101 |
| 614 | (valid from yesterday to midnight, January 1st, 2011). |
djm@openbsd.org@openbsd.org | d52131a | 2017-11-03 05:14:04 +0000 | [diff] [blame] | 615 | .Dq -1m:forever |
| 616 | (valid from one minute ago and never expiring). |
Darren Tucker | 06930c7 | 2003-12-31 11:34:51 +1100 | [diff] [blame] | 617 | .It Fl v |
| 618 | Verbose mode. |
| 619 | Causes |
| 620 | .Nm |
| 621 | to print debugging messages about its progress. |
| 622 | This is helpful for debugging moduli generation. |
| 623 | Multiple |
| 624 | .Fl v |
| 625 | options increase the verbosity. |
| 626 | The maximum is 3. |
naddy@openbsd.org | aa4c640 | 2019-11-07 08:38:38 +0000 | [diff] [blame] | 627 | .It Fl w Ar provider |
naddy@openbsd.org | 141df48 | 2019-12-21 20:22:34 +0000 | [diff] [blame] | 628 | Specifies a path to a library that will be used when creating |
| 629 | FIDO authenticator-hosted keys, overriding the default of using |
| 630 | the internal USB HID support. |
djm@openbsd.org | 72a8bea | 2020-01-23 23:31:52 +0000 | [diff] [blame] | 631 | .It Fl Y Cm find-principals |
| 632 | Find the principal(s) associated with the public key of a signature, |
djm@openbsd.org | 56cffcc | 2020-01-23 02:43:48 +0000 | [diff] [blame] | 633 | provided using the |
| 634 | .Fl s |
| 635 | flag in an authorized signers file provided using the |
| 636 | .Fl f |
| 637 | flag. |
| 638 | The format of the allowed signers file is documented in the |
| 639 | .Sx ALLOWED SIGNERS |
jmc@openbsd.org | 5533c2f | 2020-01-23 07:16:38 +0000 | [diff] [blame] | 640 | section below. |
djm@openbsd.org | 72a8bea | 2020-01-23 23:31:52 +0000 | [diff] [blame] | 641 | If one or more matching principals are found, they are returned on |
| 642 | standard output. |
jmc@openbsd.org | 20ccd85 | 2019-12-27 08:28:44 +0000 | [diff] [blame] | 643 | .It Fl Y Cm check-novalidate |
| 644 | Checks that a signature generated using |
| 645 | .Nm |
| 646 | .Fl Y Cm sign |
| 647 | has a valid structure. |
| 648 | This does not validate if a signature comes from an authorized signer. |
| 649 | When testing a signature, |
| 650 | .Nm |
| 651 | accepts a message on standard input and a signature namespace using |
| 652 | .Fl n . |
| 653 | A file containing the corresponding signature must also be supplied using the |
| 654 | .Fl s |
| 655 | flag. |
| 656 | Successful testing of the signature is signalled by |
| 657 | .Nm |
| 658 | returning a zero exit status. |
jmc@openbsd.org | f23d91f | 2019-09-05 05:47:23 +0000 | [diff] [blame] | 659 | .It Fl Y Cm sign |
djm@openbsd.org | 2a9c9f7 | 2019-09-03 08:34:19 +0000 | [diff] [blame] | 660 | Cryptographically sign a file or some data using a SSH key. |
| 661 | When signing, |
| 662 | .Nm |
| 663 | accepts zero or more files to sign on the command-line - if no files |
| 664 | are specified then |
| 665 | .Nm |
| 666 | will sign data presented on standard input. |
| 667 | Signatures are written to the path of the input file with |
| 668 | .Dq .sig |
| 669 | appended, or to standard output if the message to be signed was read from |
| 670 | standard input. |
| 671 | .Pp |
| 672 | The key used for signing is specified using the |
| 673 | .Fl f |
| 674 | option and may refer to either a private key, or a public key with the private |
| 675 | half available via |
| 676 | .Xr ssh-agent 1 . |
| 677 | An additional signature namespace, used to prevent signature confusion across |
| 678 | different domains of use (e.g. file signing vs email signing) must be provided |
| 679 | via the |
| 680 | .Fl n |
| 681 | flag. |
| 682 | Namespaces are arbitrary strings, and may include: |
| 683 | .Dq file |
| 684 | for file signing, |
| 685 | .Dq email |
| 686 | for email signing. |
| 687 | For custom uses, it is recommended to use names following a |
| 688 | NAMESPACE@YOUR.DOMAIN pattern to generate unambiguous namespaces. |
jmc@openbsd.org | f23d91f | 2019-09-05 05:47:23 +0000 | [diff] [blame] | 689 | .It Fl Y Cm verify |
djm@openbsd.org | 2a9c9f7 | 2019-09-03 08:34:19 +0000 | [diff] [blame] | 690 | Request to verify a signature generated using |
| 691 | .Nm |
jmc@openbsd.org | f23d91f | 2019-09-05 05:47:23 +0000 | [diff] [blame] | 692 | .Fl Y Cm sign |
djm@openbsd.org | 2a9c9f7 | 2019-09-03 08:34:19 +0000 | [diff] [blame] | 693 | as described above. |
| 694 | When verifying a signature, |
| 695 | .Nm |
| 696 | accepts a message on standard input and a signature namespace using |
| 697 | .Fl n . |
| 698 | A file containing the corresponding signature must also be supplied using the |
| 699 | .Fl s |
| 700 | flag, along with the identity of the signer using |
| 701 | .Fl I |
| 702 | and a list of allowed signers via the |
| 703 | .Fl f |
| 704 | flag. |
| 705 | The format of the allowed signers file is documented in the |
| 706 | .Sx ALLOWED SIGNERS |
| 707 | section below. |
| 708 | A file containing revoked keys can be passed using the |
| 709 | .Fl r |
jmc@openbsd.org | db1e6f6 | 2019-09-04 05:56:54 +0000 | [diff] [blame] | 710 | flag. |
| 711 | The revocation file may be a KRL or a one-per-line list of public keys. |
djm@openbsd.org | 2a9c9f7 | 2019-09-03 08:34:19 +0000 | [diff] [blame] | 712 | Successful verification by an authorized signer is signalled by |
| 713 | .Nm |
jmc@openbsd.org | 70fc9a6 | 2019-10-22 08:50:35 +0000 | [diff] [blame] | 714 | returning a zero exit status. |
jmc@openbsd.org | 5b6c954 | 2019-12-27 08:25:07 +0000 | [diff] [blame] | 715 | .It Fl y |
| 716 | This option will read a private |
| 717 | OpenSSH format file and print an OpenSSH public key to stdout. |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 718 | .It Fl z Ar serial_number |
| 719 | Specifies a serial number to be embedded in the certificate to distinguish |
| 720 | this certificate from others from the same CA. |
djm@openbsd.org | be06394 | 2019-01-23 04:51:02 +0000 | [diff] [blame] | 721 | If the |
| 722 | .Ar serial_number |
| 723 | is prefixed with a |
| 724 | .Sq + |
| 725 | character, then the serial number will be incremented for each certificate |
| 726 | signed on a single command-line. |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 727 | The default serial number is zero. |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 728 | .Pp |
| 729 | When generating a KRL, the |
| 730 | .Fl z |
| 731 | flag is used to specify a KRL version number. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 732 | .El |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 733 | .Sh MODULI GENERATION |
| 734 | .Nm |
| 735 | may be used to generate groups for the Diffie-Hellman Group Exchange |
| 736 | (DH-GEX) protocol. |
| 737 | Generating these groups is a two-step process: first, candidate |
| 738 | primes are generated using a fast, but memory intensive process. |
| 739 | These candidate primes are then tested for suitability (a CPU-intensive |
| 740 | process). |
| 741 | .Pp |
| 742 | Generation of primes is performed using the |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 743 | .Fl M Cm generate |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 744 | option. |
| 745 | The desired length of the primes may be specified by the |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 746 | .Fl O Cm bits |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 747 | option. |
| 748 | For example: |
| 749 | .Pp |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 750 | .Dl # ssh-keygen -M generate -O bits=2048 moduli-2048.candidates |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 751 | .Pp |
| 752 | By default, the search for primes begins at a random point in the |
| 753 | desired length range. |
| 754 | This may be overridden using the |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 755 | .Fl O Cm start |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 756 | option, which specifies a different start point (in hex). |
| 757 | .Pp |
Damien Miller | dfceafe | 2012-07-06 13:44:19 +1000 | [diff] [blame] | 758 | Once a set of candidates have been generated, they must be screened for |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 759 | suitability. |
| 760 | This may be performed using the |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 761 | .Fl M Cm screen |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 762 | option. |
| 763 | In this mode |
| 764 | .Nm |
| 765 | will read candidates from standard input (or a file specified using the |
| 766 | .Fl f |
| 767 | option). |
| 768 | For example: |
| 769 | .Pp |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 770 | .Dl # ssh-keygen -M screen -f moduli-2048.candidates moduli-2048 |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 771 | .Pp |
| 772 | By default, each candidate will be subjected to 100 primality tests. |
| 773 | This may be overridden using the |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 774 | .Fl O Cm prime-tests |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 775 | option. |
| 776 | The DH generator value will be chosen automatically for the |
| 777 | prime under consideration. |
| 778 | If a specific generator is desired, it may be requested using the |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 779 | .Fl O Cm generator |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 780 | option. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 781 | Valid generator values are 2, 3, and 5. |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 782 | .Pp |
| 783 | Screened DH groups may be installed in |
| 784 | .Pa /etc/moduli . |
| 785 | It is important that this file contains moduli of a range of bit lengths and |
| 786 | that both ends of a connection share common moduli. |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 787 | .Pp |
| 788 | A number of options are available for moduli generation and screening via the |
| 789 | .Fl O |
| 790 | flag: |
jmc@openbsd.org | 3b1382f | 2019-12-30 16:10:00 +0000 | [diff] [blame] | 791 | .Bl -tag -width Ds |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 792 | .It Ic lines Ns = Ns Ar number |
| 793 | Exit after screening the specified number of lines while performing DH |
| 794 | candidate screening. |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 795 | .It Ic start-line Ns = Ns Ar line-number |
| 796 | Start screening at the specified line number while performing DH candidate |
| 797 | screening. |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 798 | .It Ic checkpoint Ns = Ns Ar filename |
| 799 | Write the last line processed to the specified file while performing DH |
| 800 | candidate screening. |
| 801 | This will be used to skip lines in the input file that have already been |
| 802 | processed if the job is restarted. |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 803 | .It Ic memory Ns = Ns Ar mbytes |
| 804 | Specify the amount of memory to use (in megabytes) when generating |
| 805 | candidate moduli for DH-GEX. |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 806 | .It Ic start Ns = Ns Ar hex-value |
| 807 | Specify start point (in hex) when generating candidate moduli for DH-GEX. |
djm@openbsd.org | 3e60d18 | 2019-12-30 03:30:09 +0000 | [diff] [blame] | 808 | .It Ic generator Ns = Ns Ar value |
| 809 | Specify desired generator (in decimal) when testing candidate moduli for DH-GEX. |
| 810 | .El |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 811 | .Sh CERTIFICATES |
| 812 | .Nm |
| 813 | supports signing of keys to produce certificates that may be used for |
| 814 | user or host authentication. |
| 815 | Certificates consist of a public key, some identity information, zero or |
Damien Miller | 1f18142 | 2010-04-18 08:08:03 +1000 | [diff] [blame] | 816 | more principal (user or host) names and a set of options that |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 817 | are signed by a Certification Authority (CA) key. |
| 818 | Clients or servers may then trust only the CA key and verify its signature |
| 819 | on a certificate rather than trusting many user/host keys. |
| 820 | Note that OpenSSH certificates are a different, and much simpler, format to |
| 821 | the X.509 certificates used in |
| 822 | .Xr ssl 8 . |
| 823 | .Pp |
| 824 | .Nm |
| 825 | supports two types of certificates: user and host. |
| 826 | User certificates authenticate users to servers, whereas host certificates |
Damien Miller | 15f5b56 | 2010-03-03 10:25:21 +1100 | [diff] [blame] | 827 | authenticate server hosts to users. |
| 828 | To generate a user certificate: |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 829 | .Pp |
| 830 | .Dl $ ssh-keygen -s /path/to/ca_key -I key_id /path/to/user_key.pub |
| 831 | .Pp |
| 832 | The resultant certificate will be placed in |
Damien Miller | 1b61a28 | 2010-03-22 05:55:06 +1100 | [diff] [blame] | 833 | .Pa /path/to/user_key-cert.pub . |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 834 | A host certificate requires the |
| 835 | .Fl h |
| 836 | option: |
| 837 | .Pp |
| 838 | .Dl $ ssh-keygen -s /path/to/ca_key -I key_id -h /path/to/host_key.pub |
| 839 | .Pp |
| 840 | The host certificate will be output to |
Damien Miller | 1b61a28 | 2010-03-22 05:55:06 +1100 | [diff] [blame] | 841 | .Pa /path/to/host_key-cert.pub . |
Damien Miller | 757f34e | 2010-08-05 13:05:31 +1000 | [diff] [blame] | 842 | .Pp |
| 843 | It is possible to sign using a CA key stored in a PKCS#11 token by |
| 844 | providing the token library using |
| 845 | .Fl D |
| 846 | and identifying the CA key by providing its public half as an argument |
| 847 | to |
| 848 | .Fl s : |
| 849 | .Pp |
naddy@openbsd.org | 05291e5 | 2015-08-20 19:20:06 +0000 | [diff] [blame] | 850 | .Dl $ ssh-keygen -s ca_key.pub -D libpkcs11.so -I key_id user_key.pub |
Damien Miller | 757f34e | 2010-08-05 13:05:31 +1000 | [diff] [blame] | 851 | .Pp |
djm@openbsd.org | a98339e | 2017-06-28 01:09:22 +0000 | [diff] [blame] | 852 | Similarly, it is possible for the CA key to be hosted in a |
| 853 | .Xr ssh-agent 1 . |
| 854 | This is indicated by the |
| 855 | .Fl U |
| 856 | flag and, again, the CA key must be identified by its public half. |
| 857 | .Pp |
| 858 | .Dl $ ssh-keygen -Us ca_key.pub -I key_id user_key.pub |
| 859 | .Pp |
Damien Miller | 757f34e | 2010-08-05 13:05:31 +1000 | [diff] [blame] | 860 | In all cases, |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 861 | .Ar key_id |
| 862 | is a "key identifier" that is logged by the server when the certificate |
| 863 | is used for authentication. |
| 864 | .Pp |
| 865 | Certificates may be limited to be valid for a set of principal (user/host) |
| 866 | names. |
| 867 | By default, generated certificates are valid for all users or hosts. |
| 868 | To generate a certificate for a specified set of principals: |
| 869 | .Pp |
| 870 | .Dl $ ssh-keygen -s ca_key -I key_id -n user1,user2 user_key.pub |
naddy@openbsd.org | 05291e5 | 2015-08-20 19:20:06 +0000 | [diff] [blame] | 871 | .Dl "$ ssh-keygen -s ca_key -I key_id -h -n host.domain host_key.pub" |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 872 | .Pp |
| 873 | Additional limitations on the validity and use of user certificates may |
Damien Miller | 1f18142 | 2010-04-18 08:08:03 +1000 | [diff] [blame] | 874 | be specified through certificate options. |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 875 | A certificate option may disable features of the SSH session, may be |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 876 | valid only when presented from particular source addresses or may |
| 877 | force the use of a specific command. |
djm@openbsd.org | 1e645fe | 2019-12-30 03:28:41 +0000 | [diff] [blame] | 878 | .Pp |
| 879 | The options that are valid for user certificates are: |
| 880 | .Pp |
| 881 | .Bl -tag -width Ds -compact |
| 882 | .It Ic clear |
| 883 | Clear all enabled permissions. |
| 884 | This is useful for clearing the default set of permissions so permissions may |
| 885 | be added individually. |
| 886 | .Pp |
| 887 | .It Ic critical : Ns Ar name Ns Op Ns = Ns Ar contents |
| 888 | .It Ic extension : Ns Ar name Ns Op Ns = Ns Ar contents |
| 889 | Includes an arbitrary certificate critical option or extension. |
| 890 | The specified |
| 891 | .Ar name |
| 892 | should include a domain suffix, e.g.\& |
| 893 | .Dq name@example.com . |
| 894 | If |
| 895 | .Ar contents |
| 896 | is specified then it is included as the contents of the extension/option |
| 897 | encoded as a string, otherwise the extension/option is created with no |
| 898 | contents (usually indicating a flag). |
| 899 | Extensions may be ignored by a client or server that does not recognise them, |
| 900 | whereas unknown critical options will cause the certificate to be refused. |
| 901 | .Pp |
| 902 | .It Ic force-command Ns = Ns Ar command |
| 903 | Forces the execution of |
| 904 | .Ar command |
| 905 | instead of any shell or command specified by the user when |
| 906 | the certificate is used for authentication. |
| 907 | .Pp |
| 908 | .It Ic no-agent-forwarding |
| 909 | Disable |
| 910 | .Xr ssh-agent 1 |
| 911 | forwarding (permitted by default). |
| 912 | .Pp |
| 913 | .It Ic no-port-forwarding |
| 914 | Disable port forwarding (permitted by default). |
| 915 | .Pp |
| 916 | .It Ic no-pty |
| 917 | Disable PTY allocation (permitted by default). |
| 918 | .Pp |
| 919 | .It Ic no-user-rc |
| 920 | Disable execution of |
| 921 | .Pa ~/.ssh/rc |
| 922 | by |
| 923 | .Xr sshd 8 |
| 924 | (permitted by default). |
| 925 | .Pp |
| 926 | .It Ic no-x11-forwarding |
| 927 | Disable X11 forwarding (permitted by default). |
| 928 | .Pp |
| 929 | .It Ic permit-agent-forwarding |
| 930 | Allows |
| 931 | .Xr ssh-agent 1 |
| 932 | forwarding. |
| 933 | .Pp |
| 934 | .It Ic permit-port-forwarding |
| 935 | Allows port forwarding. |
| 936 | .Pp |
| 937 | .It Ic permit-pty |
| 938 | Allows PTY allocation. |
| 939 | .Pp |
| 940 | .It Ic permit-user-rc |
| 941 | Allows execution of |
| 942 | .Pa ~/.ssh/rc |
| 943 | by |
| 944 | .Xr sshd 8 . |
| 945 | .Pp |
| 946 | .It Ic permit-X11-forwarding |
| 947 | Allows X11 forwarding. |
| 948 | .Pp |
| 949 | .It Ic no-touch-required |
| 950 | Do not require signatures made using this key require demonstration |
naddy@openbsd.org | b715fdc | 2020-01-18 21:16:43 +0000 | [diff] [blame] | 951 | of user presence (e.g. by having the user touch the authenticator). |
naddy@openbsd.org | 84911da | 2020-01-18 15:45:41 +0000 | [diff] [blame] | 952 | This option only makes sense for the FIDO authenticator algorithms |
djm@openbsd.org | 1e645fe | 2019-12-30 03:28:41 +0000 | [diff] [blame] | 953 | .Cm ecdsa-sk |
| 954 | and |
| 955 | .Cm ed25519-sk . |
| 956 | .Pp |
| 957 | .It Ic source-address Ns = Ns Ar address_list |
| 958 | Restrict the source addresses from which the certificate is considered valid. |
| 959 | The |
| 960 | .Ar address_list |
| 961 | is a comma-separated list of one or more address/netmask pairs in CIDR |
| 962 | format. |
| 963 | .El |
| 964 | .Pp |
| 965 | At present, no standard options are valid for host keys. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 966 | .Pp |
| 967 | Finally, certificates may be defined with a validity lifetime. |
| 968 | The |
| 969 | .Fl V |
| 970 | option allows specification of certificate start and end times. |
| 971 | A certificate that is presented at a time outside this range will not be |
| 972 | considered valid. |
Darren Tucker | 3ee50c5 | 2012-09-06 21:18:11 +1000 | [diff] [blame] | 973 | By default, certificates are valid from |
| 974 | .Ux |
| 975 | Epoch to the distant future. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 976 | .Pp |
| 977 | For certificates to be used for user or host authentication, the CA |
| 978 | public key must be trusted by |
| 979 | .Xr sshd 8 |
| 980 | or |
| 981 | .Xr ssh 1 . |
| 982 | Please refer to those manual pages for details. |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 983 | .Sh KEY REVOCATION LISTS |
| 984 | .Nm |
| 985 | is able to manage OpenSSH format Key Revocation Lists (KRLs). |
| 986 | These binary files specify keys or certificates to be revoked using a |
Damien Miller | 1379771 | 2013-12-29 17:47:14 +1100 | [diff] [blame] | 987 | compact format, taking as little as one bit per certificate if they are being |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 988 | revoked by serial number. |
| 989 | .Pp |
| 990 | KRLs may be generated using the |
| 991 | .Fl k |
| 992 | flag. |
Damien Miller | 881a7a2 | 2013-01-20 22:34:46 +1100 | [diff] [blame] | 993 | This option reads one or more files from the command line and generates a new |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 994 | KRL. |
| 995 | The files may either contain a KRL specification (see below) or public keys, |
| 996 | listed one per line. |
| 997 | Plain public keys are revoked by listing their hash or contents in the KRL and |
| 998 | certificates revoked by serial number or key ID (if the serial is zero or |
| 999 | not available). |
| 1000 | .Pp |
| 1001 | Revoking keys using a KRL specification offers explicit control over the |
| 1002 | types of record used to revoke keys and may be used to directly revoke |
| 1003 | certificates by serial number or key ID without having the complete original |
| 1004 | certificate on hand. |
| 1005 | A KRL specification consists of lines containing one of the following directives |
| 1006 | followed by a colon and some directive-specific information. |
| 1007 | .Bl -tag -width Ds |
Damien Miller | a0a7ee8 | 2013-01-20 22:35:06 +1100 | [diff] [blame] | 1008 | .It Cm serial : Ar serial_number Ns Op - Ns Ar serial_number |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 1009 | Revokes a certificate with the specified serial number. |
Damien Miller | ac5542b | 2013-01-20 22:33:02 +1100 | [diff] [blame] | 1010 | Serial numbers are 64-bit values, not including zero and may be expressed |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 1011 | in decimal, hex or octal. |
| 1012 | If two serial numbers are specified separated by a hyphen, then the range |
| 1013 | of serial numbers including and between each is revoked. |
| 1014 | The CA key must have been specified on the |
| 1015 | .Nm |
Damien Miller | 881a7a2 | 2013-01-20 22:34:46 +1100 | [diff] [blame] | 1016 | command line using the |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 1017 | .Fl s |
| 1018 | option. |
| 1019 | .It Cm id : Ar key_id |
| 1020 | Revokes a certificate with the specified key ID string. |
| 1021 | The CA key must have been specified on the |
| 1022 | .Nm |
Damien Miller | 881a7a2 | 2013-01-20 22:34:46 +1100 | [diff] [blame] | 1023 | command line using the |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 1024 | .Fl s |
| 1025 | option. |
| 1026 | .It Cm key : Ar public_key |
| 1027 | Revokes the specified key. |
Damien Miller | ac5542b | 2013-01-20 22:33:02 +1100 | [diff] [blame] | 1028 | If a certificate is listed, then it is revoked as a plain public key. |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 1029 | .It Cm sha1 : Ar public_key |
djm@openbsd.org | 9405c62 | 2018-09-12 01:21:34 +0000 | [diff] [blame] | 1030 | Revokes the specified key by including its SHA1 hash in the KRL. |
| 1031 | .It Cm sha256 : Ar public_key |
| 1032 | Revokes the specified key by including its SHA256 hash in the KRL. |
| 1033 | KRLs that revoke keys by SHA256 hash are not supported by OpenSSH versions |
| 1034 | prior to 7.9. |
| 1035 | .It Cm hash : Ar fingerprint |
djm@openbsd.org | f0fcd7e | 2018-09-12 06:18:59 +0000 | [diff] [blame] | 1036 | Revokes a key using a fingerprint hash, as obtained from a |
djm@openbsd.org | 9405c62 | 2018-09-12 01:21:34 +0000 | [diff] [blame] | 1037 | .Xr sshd 8 |
| 1038 | authentication log message or the |
| 1039 | .Nm |
| 1040 | .Fl l |
| 1041 | flag. |
| 1042 | Only SHA256 fingerprints are supported here and resultant KRLs are |
| 1043 | not supported by OpenSSH versions prior to 7.9. |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 1044 | .El |
| 1045 | .Pp |
| 1046 | KRLs may be updated using the |
| 1047 | .Fl u |
| 1048 | flag in addition to |
| 1049 | .Fl k . |
Damien Miller | 881a7a2 | 2013-01-20 22:34:46 +1100 | [diff] [blame] | 1050 | When this option is specified, keys listed via the command line are merged into |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 1051 | the KRL, adding to those already there. |
| 1052 | .Pp |
| 1053 | It is also possible, given a KRL, to test whether it revokes a particular key |
| 1054 | (or keys). |
| 1055 | The |
| 1056 | .Fl Q |
jmc@openbsd.org | 8b29008 | 2015-11-05 09:48:05 +0000 | [diff] [blame] | 1057 | flag will query an existing KRL, testing each key specified on the command line. |
Damien Miller | 881a7a2 | 2013-01-20 22:34:46 +1100 | [diff] [blame] | 1058 | If any key listed on the command line has been revoked (or an error encountered) |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 1059 | then |
| 1060 | .Nm |
| 1061 | will exit with a non-zero exit status. |
| 1062 | A zero exit status will only be returned if no key was revoked. |
djm@openbsd.org | 2a9c9f7 | 2019-09-03 08:34:19 +0000 | [diff] [blame] | 1063 | .Sh ALLOWED SIGNERS |
| 1064 | When verifying signatures, |
| 1065 | .Nm |
| 1066 | uses a simple list of identities and keys to determine whether a signature |
| 1067 | comes from an authorized source. |
| 1068 | This "allowed signers" file uses a format patterned after the |
| 1069 | AUTHORIZED_KEYS FILE FORMAT described in |
jmc@openbsd.org | db1e6f6 | 2019-09-04 05:56:54 +0000 | [diff] [blame] | 1070 | .Xr sshd 8 . |
djm@openbsd.org | 2a9c9f7 | 2019-09-03 08:34:19 +0000 | [diff] [blame] | 1071 | Each line of the file contains the following space-separated fields: |
| 1072 | principals, options, keytype, base64-encoded key. |
| 1073 | Empty lines and lines starting with a |
| 1074 | .Ql # |
| 1075 | are ignored as comments. |
| 1076 | .Pp |
| 1077 | The principals field is a pattern-list (See PATTERNS in |
| 1078 | .Xr ssh_config 5 ) |
| 1079 | consisting of one or more comma-separated USER@DOMAIN identity patterns |
| 1080 | that are accepted for signing. |
| 1081 | When verifying, the identity presented via the |
jmc@openbsd.org | 70fc9a6 | 2019-10-22 08:50:35 +0000 | [diff] [blame] | 1082 | .Fl I |
| 1083 | option must match a principals pattern in order for the corresponding key to be |
djm@openbsd.org | 2a9c9f7 | 2019-09-03 08:34:19 +0000 | [diff] [blame] | 1084 | considered acceptable for verification. |
| 1085 | .Pp |
| 1086 | The options (if present) consist of comma-separated option specifications. |
| 1087 | No spaces are permitted, except within double quotes. |
| 1088 | The following option specifications are supported (note that option keywords |
| 1089 | are case-insensitive): |
| 1090 | .Bl -tag -width Ds |
| 1091 | .It Cm cert-authority |
| 1092 | Indicates that this key is accepted as a certificate authority (CA) and |
| 1093 | that certificates signed by this CA may be accepted for verification. |
| 1094 | .It Cm namespaces="namespace-list" |
| 1095 | Specifies a pattern-list of namespaces that are accepted for this key. |
djm@openbsd.org | d637c4a | 2019-09-03 08:35:27 +0000 | [diff] [blame] | 1096 | If this option is present, the signature namespace embedded in the |
djm@openbsd.org | 2a9c9f7 | 2019-09-03 08:34:19 +0000 | [diff] [blame] | 1097 | signature object and presented on the verification command-line must |
| 1098 | match the specified list before the key will be considered acceptable. |
| 1099 | .El |
| 1100 | .Pp |
| 1101 | When verifying signatures made by certificates, the expected principal |
| 1102 | name must match both the principals pattern in the allowed signers file and |
| 1103 | the principals embedded in the certificate itself. |
| 1104 | .Pp |
| 1105 | An example allowed signers file: |
| 1106 | .Bd -literal -offset 3n |
| 1107 | # Comments allowed at start of line |
| 1108 | user1@example.com,user2@example.com ssh-rsa AAAAX1... |
| 1109 | # A certificate authority, trusted for all principals in a domain. |
| 1110 | *@example.com cert-authority ssh-ed25519 AAAB4... |
| 1111 | # A key that is accepted only for file signing. |
| 1112 | user2@example.com namespaces="file" ssh-ed25519 AAA41... |
| 1113 | .Ed |
naddy@openbsd.org | aa4c640 | 2019-11-07 08:38:38 +0000 | [diff] [blame] | 1114 | .Sh ENVIRONMENT |
| 1115 | .Bl -tag -width Ds |
| 1116 | .It Ev SSH_SK_PROVIDER |
naddy@openbsd.org | 141df48 | 2019-12-21 20:22:34 +0000 | [diff] [blame] | 1117 | Specifies the path to a library used to interact with FIDO authenticators. |
naddy@openbsd.org | aa4c640 | 2019-11-07 08:38:38 +0000 | [diff] [blame] | 1118 | .El |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 1119 | .Sh FILES |
Damien Miller | 6186bbc | 2010-09-24 22:00:54 +1000 | [diff] [blame] | 1120 | .Bl -tag -width Ds -compact |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 1121 | .It Pa ~/.ssh/id_dsa |
Damien Miller | 6186bbc | 2010-09-24 22:00:54 +1000 | [diff] [blame] | 1122 | .It Pa ~/.ssh/id_ecdsa |
naddy@openbsd.org | aa4c640 | 2019-11-07 08:38:38 +0000 | [diff] [blame] | 1123 | .It Pa ~/.ssh/id_ecdsa_sk |
Damien Miller | 8ba0ead | 2013-12-18 17:46:27 +1100 | [diff] [blame] | 1124 | .It Pa ~/.ssh/id_ed25519 |
naddy@openbsd.org | f0edda8 | 2019-11-18 23:16:49 +0000 | [diff] [blame] | 1125 | .It Pa ~/.ssh/id_ed25519_sk |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 1126 | .It Pa ~/.ssh/id_rsa |
naddy@openbsd.org | 141df48 | 2019-12-21 20:22:34 +0000 | [diff] [blame] | 1127 | Contains the DSA, ECDSA, authenticator-hosted ECDSA, Ed25519, |
| 1128 | authenticator-hosted Ed25519 or RSA authentication identity of the user. |
Ben Lindstrom | 18a82ac | 2001-04-11 15:59:35 +0000 | [diff] [blame] | 1129 | This file should not be readable by anyone but the user. |
| 1130 | It is possible to |
| 1131 | specify a passphrase when generating the key; that passphrase will be |
Darren Tucker | 199ee6f | 2009-10-24 11:50:17 +1100 | [diff] [blame] | 1132 | used to encrypt the private part of this file using 128-bit AES. |
Ben Lindstrom | 18a82ac | 2001-04-11 15:59:35 +0000 | [diff] [blame] | 1133 | This file is not automatically accessed by |
| 1134 | .Nm |
| 1135 | but it is offered as the default file for the private key. |
Ben Lindstrom | bda98b0 | 2001-07-04 03:35:24 +0000 | [diff] [blame] | 1136 | .Xr ssh 1 |
Ben Lindstrom | 18a82ac | 2001-04-11 15:59:35 +0000 | [diff] [blame] | 1137 | will read this file when a login attempt is made. |
Damien Miller | 6186bbc | 2010-09-24 22:00:54 +1000 | [diff] [blame] | 1138 | .Pp |
| 1139 | .It Pa ~/.ssh/id_dsa.pub |
| 1140 | .It Pa ~/.ssh/id_ecdsa.pub |
naddy@openbsd.org | aa4c640 | 2019-11-07 08:38:38 +0000 | [diff] [blame] | 1141 | .It Pa ~/.ssh/id_ecdsa_sk.pub |
Damien Miller | 8ba0ead | 2013-12-18 17:46:27 +1100 | [diff] [blame] | 1142 | .It Pa ~/.ssh/id_ed25519.pub |
naddy@openbsd.org | f0edda8 | 2019-11-18 23:16:49 +0000 | [diff] [blame] | 1143 | .It Pa ~/.ssh/id_ed25519_sk.pub |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 1144 | .It Pa ~/.ssh/id_rsa.pub |
naddy@openbsd.org | 141df48 | 2019-12-21 20:22:34 +0000 | [diff] [blame] | 1145 | Contains the DSA, ECDSA, authenticator-hosted ECDSA, Ed25519, |
| 1146 | authenticator-hosted Ed25519 or RSA public key for authentication. |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 1147 | The contents of this file should be added to |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 1148 | .Pa ~/.ssh/authorized_keys |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 1149 | on all machines |
Ben Lindstrom | 594e203 | 2001-09-12 18:35:30 +0000 | [diff] [blame] | 1150 | where the user wishes to log in using public key authentication. |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 1151 | There is no need to keep the contents of this file secret. |
Damien Miller | 6186bbc | 2010-09-24 22:00:54 +1000 | [diff] [blame] | 1152 | .Pp |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 1153 | .It Pa /etc/moduli |
| 1154 | Contains Diffie-Hellman groups used for DH-GEX. |
| 1155 | The file format is described in |
| 1156 | .Xr moduli 5 . |
Damien Miller | 3702396 | 2000-07-11 17:31:38 +1000 | [diff] [blame] | 1157 | .El |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 1158 | .Sh SEE ALSO |
| 1159 | .Xr ssh 1 , |
| 1160 | .Xr ssh-add 1 , |
Damien Miller | 2e8b1c8 | 1999-11-15 23:33:56 +1100 | [diff] [blame] | 1161 | .Xr ssh-agent 1 , |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 1162 | .Xr moduli 5 , |
Ben Lindstrom | 77788dc | 2001-02-10 23:10:33 +0000 | [diff] [blame] | 1163 | .Xr sshd 8 |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 1164 | .Rs |
Damien Miller | c0367fb | 2007-01-05 16:25:46 +1100 | [diff] [blame] | 1165 | .%R RFC 4716 |
| 1166 | .%T "The Secure Shell (SSH) Public Key File Format" |
| 1167 | .%D 2006 |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 1168 | .Re |
Damien Miller | f1ce505 | 2003-06-11 22:04:39 +1000 | [diff] [blame] | 1169 | .Sh AUTHORS |
| 1170 | OpenSSH is a derivative of the original and free |
| 1171 | ssh 1.2.12 release by Tatu Ylonen. |
| 1172 | Aaron Campbell, Bob Beck, Markus Friedl, Niels Provos, |
| 1173 | Theo de Raadt and Dug Song |
| 1174 | removed many bugs, re-added newer features and |
| 1175 | created OpenSSH. |
| 1176 | Markus Friedl contributed the support for SSH |
| 1177 | protocol versions 1.5 and 2.0. |