Damien Miller | eb8b60e | 2010-08-31 22:41:14 +1000 | [diff] [blame^] | 1 | .\" $OpenBSD: ssh-keygen.1,v 1.99 2010/08/31 11:54:45 djm Exp $ |
Ben Lindstrom | 36579d3 | 2001-01-29 07:39:26 +0000 | [diff] [blame] | 2 | .\" |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 3 | .\" -*- nroff -*- |
| 4 | .\" |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 5 | .\" Author: Tatu Ylonen <ylo@cs.hut.fi> |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 6 | .\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland |
| 7 | .\" All rights reserved |
| 8 | .\" |
Damien Miller | e4340be | 2000-09-16 13:29:08 +1100 | [diff] [blame] | 9 | .\" As far as I am concerned, the code I have written for this software |
| 10 | .\" can be used freely for any purpose. Any derived versions of this |
| 11 | .\" software must be clearly marked as such, and if the derived work is |
| 12 | .\" incompatible with the protocol description in the RFC file, it must be |
| 13 | .\" called by a name other than "ssh" or "Secure Shell". |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 14 | .\" |
Damien Miller | e4340be | 2000-09-16 13:29:08 +1100 | [diff] [blame] | 15 | .\" |
Ben Lindstrom | 92a2e38 | 2001-03-05 06:59:27 +0000 | [diff] [blame] | 16 | .\" Copyright (c) 1999,2000 Markus Friedl. All rights reserved. |
| 17 | .\" Copyright (c) 1999 Aaron Campbell. All rights reserved. |
| 18 | .\" Copyright (c) 1999 Theo de Raadt. All rights reserved. |
Damien Miller | e4340be | 2000-09-16 13:29:08 +1100 | [diff] [blame] | 19 | .\" |
| 20 | .\" Redistribution and use in source and binary forms, with or without |
| 21 | .\" modification, are permitted provided that the following conditions |
| 22 | .\" are met: |
| 23 | .\" 1. Redistributions of source code must retain the above copyright |
| 24 | .\" notice, this list of conditions and the following disclaimer. |
| 25 | .\" 2. Redistributions in binary form must reproduce the above copyright |
| 26 | .\" notice, this list of conditions and the following disclaimer in the |
| 27 | .\" documentation and/or other materials provided with the distribution. |
| 28 | .\" |
| 29 | .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR |
| 30 | .\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES |
| 31 | .\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. |
| 32 | .\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, |
| 33 | .\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT |
| 34 | .\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, |
| 35 | .\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY |
| 36 | .\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
| 37 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 38 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 39 | .\" |
Damien Miller | eb8b60e | 2010-08-31 22:41:14 +1000 | [diff] [blame^] | 40 | .Dd $Mdocdate: August 31 2010 $ |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 41 | .Dt SSH-KEYGEN 1 |
| 42 | .Os |
| 43 | .Sh NAME |
| 44 | .Nm ssh-keygen |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 45 | .Nd authentication key generation, management and conversion |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 46 | .Sh SYNOPSIS |
Damien Miller | 495dca3 | 2003-04-01 21:42:14 +1000 | [diff] [blame] | 47 | .Bk -words |
Damien Miller | bad5e03 | 2010-07-16 13:59:59 +1000 | [diff] [blame] | 48 | .Nm ssh-keygen |
Damien Miller | 0bc1bd8 | 2000-11-13 22:57:25 +1100 | [diff] [blame] | 49 | .Op Fl q |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 50 | .Op Fl b Ar bits |
Damien Miller | 55fafa0 | 2002-02-19 15:22:07 +1100 | [diff] [blame] | 51 | .Fl t Ar type |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 52 | .Op Fl N Ar new_passphrase |
| 53 | .Op Fl C Ar comment |
Damien Miller | 1a425f3 | 2000-09-02 10:08:09 +1100 | [diff] [blame] | 54 | .Op Fl f Ar output_keyfile |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 55 | .Nm ssh-keygen |
| 56 | .Fl p |
| 57 | .Op Fl P Ar old_passphrase |
| 58 | .Op Fl N Ar new_passphrase |
Damien Miller | 10f6f6b | 1999-11-17 17:29:08 +1100 | [diff] [blame] | 59 | .Op Fl f Ar keyfile |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 60 | .Nm ssh-keygen |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 61 | .Fl i |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 62 | .Op Fl m Ar key_format |
Damien Miller | 1a425f3 | 2000-09-02 10:08:09 +1100 | [diff] [blame] | 63 | .Op Fl f Ar input_keyfile |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 64 | .Nm ssh-keygen |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 65 | .Fl e |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 66 | .Op Fl m Ar key_format |
Damien Miller | 1a425f3 | 2000-09-02 10:08:09 +1100 | [diff] [blame] | 67 | .Op Fl f Ar input_keyfile |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 68 | .Nm ssh-keygen |
| 69 | .Fl y |
Damien Miller | 1a425f3 | 2000-09-02 10:08:09 +1100 | [diff] [blame] | 70 | .Op Fl f Ar input_keyfile |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 71 | .Nm ssh-keygen |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 72 | .Fl c |
| 73 | .Op Fl P Ar passphrase |
| 74 | .Op Fl C Ar comment |
Damien Miller | 10f6f6b | 1999-11-17 17:29:08 +1100 | [diff] [blame] | 75 | .Op Fl f Ar keyfile |
| 76 | .Nm ssh-keygen |
| 77 | .Fl l |
Ben Lindstrom | 8fd372b | 2001-03-12 03:02:17 +0000 | [diff] [blame] | 78 | .Op Fl f Ar input_keyfile |
| 79 | .Nm ssh-keygen |
| 80 | .Fl B |
Damien Miller | 1a425f3 | 2000-09-02 10:08:09 +1100 | [diff] [blame] | 81 | .Op Fl f Ar input_keyfile |
Ben Lindstrom | a1ec4a9 | 2001-08-06 21:51:34 +0000 | [diff] [blame] | 82 | .Nm ssh-keygen |
Damien Miller | 048dc93 | 2010-02-12 09:22:04 +1100 | [diff] [blame] | 83 | .Fl D Ar pkcs11 |
Ben Lindstrom | a1ec4a9 | 2001-08-06 21:51:34 +0000 | [diff] [blame] | 84 | .Nm ssh-keygen |
Damien Miller | 4b42d7f | 2005-03-01 21:48:35 +1100 | [diff] [blame] | 85 | .Fl F Ar hostname |
| 86 | .Op Fl f Ar known_hosts_file |
Damien Miller | 718ed50 | 2008-11-03 19:15:20 +1100 | [diff] [blame] | 87 | .Op Fl l |
Damien Miller | 4b42d7f | 2005-03-01 21:48:35 +1100 | [diff] [blame] | 88 | .Nm ssh-keygen |
| 89 | .Fl H |
| 90 | .Op Fl f Ar known_hosts_file |
| 91 | .Nm ssh-keygen |
| 92 | .Fl R Ar hostname |
| 93 | .Op Fl f Ar known_hosts_file |
| 94 | .Nm ssh-keygen |
Damien Miller | 37876e9 | 2003-05-15 10:19:46 +1000 | [diff] [blame] | 95 | .Fl r Ar hostname |
| 96 | .Op Fl f Ar input_keyfile |
| 97 | .Op Fl g |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 98 | .Nm ssh-keygen |
| 99 | .Fl G Ar output_file |
Darren Tucker | 06930c7 | 2003-12-31 11:34:51 +1100 | [diff] [blame] | 100 | .Op Fl v |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 101 | .Op Fl b Ar bits |
| 102 | .Op Fl M Ar memory |
| 103 | .Op Fl S Ar start_point |
| 104 | .Nm ssh-keygen |
| 105 | .Fl T Ar output_file |
| 106 | .Fl f Ar input_file |
Darren Tucker | 06930c7 | 2003-12-31 11:34:51 +1100 | [diff] [blame] | 107 | .Op Fl v |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 108 | .Op Fl a Ar num_trials |
| 109 | .Op Fl W Ar generator |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 110 | .Nm ssh-keygen |
| 111 | .Fl s Ar ca_key |
| 112 | .Fl I Ar certificate_identity |
| 113 | .Op Fl h |
| 114 | .Op Fl n Ar principals |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 115 | .Op Fl O Ar option |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 116 | .Op Fl V Ar validity_interval |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 117 | .Op Fl z Ar serial_number |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 118 | .Ar |
Damien Miller | f2b70ca | 2010-03-05 07:39:35 +1100 | [diff] [blame] | 119 | .Nm ssh-keygen |
Damien Miller | f2b70ca | 2010-03-05 07:39:35 +1100 | [diff] [blame] | 120 | .Fl L |
| 121 | .Op Fl f Ar input_keyfile |
Damien Miller | 15f5b56 | 2010-03-03 10:25:21 +1100 | [diff] [blame] | 122 | .Ek |
Damien Miller | 22c7726 | 2000-04-13 12:26:34 +1000 | [diff] [blame] | 123 | .Sh DESCRIPTION |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 124 | .Nm |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 125 | generates, manages and converts authentication keys for |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 126 | .Xr ssh 1 . |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 127 | .Nm |
Damien Miller | eb8b60e | 2010-08-31 22:41:14 +1000 | [diff] [blame^] | 128 | can create RSA keys for use by SSH protocol version 1 and RSA, DSA or ECDSA |
Damien Miller | fbf486b | 2003-05-23 18:44:23 +1000 | [diff] [blame] | 129 | keys for use by SSH protocol version 2. |
| 130 | The type of key to be generated is specified with the |
Damien Miller | 0bc1bd8 | 2000-11-13 22:57:25 +1100 | [diff] [blame] | 131 | .Fl t |
Damien Miller | a41c8b1 | 2002-01-22 23:05:08 +1100 | [diff] [blame] | 132 | option. |
Damien Miller | f14be5c | 2005-11-05 15:15:49 +1100 | [diff] [blame] | 133 | If invoked without any arguments, |
| 134 | .Nm |
Damien Miller | 83d0d39 | 2005-11-05 15:16:27 +1100 | [diff] [blame] | 135 | will generate an RSA key for use in SSH protocol 2 connections. |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 136 | .Pp |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 137 | .Nm |
| 138 | is also used to generate groups for use in Diffie-Hellman group |
| 139 | exchange (DH-GEX). |
| 140 | See the |
| 141 | .Sx MODULI GENERATION |
| 142 | section for details. |
| 143 | .Pp |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 144 | Normally each user wishing to use SSH |
Damien Miller | eb8b60e | 2010-08-31 22:41:14 +1000 | [diff] [blame^] | 145 | with public key authentication runs this once to create the authentication |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 146 | key in |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 147 | .Pa ~/.ssh/identity , |
Damien Miller | eb8b60e | 2010-08-31 22:41:14 +1000 | [diff] [blame^] | 148 | .Pa ~/.ssh/id_ecdsa , |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 149 | .Pa ~/.ssh/id_dsa |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 150 | or |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 151 | .Pa ~/.ssh/id_rsa . |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 152 | Additionally, the system administrator may use this to generate host keys, |
| 153 | as seen in |
| 154 | .Pa /etc/rc . |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 155 | .Pp |
| 156 | Normally this program generates the key and asks for a file in which |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 157 | to store the private key. |
| 158 | The public key is stored in a file with the same name but |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 159 | .Dq .pub |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 160 | appended. |
| 161 | The program also asks for a passphrase. |
| 162 | The passphrase may be empty to indicate no passphrase |
Ben Lindstrom | bf555ba | 2001-01-18 02:04:35 +0000 | [diff] [blame] | 163 | (host keys must have an empty passphrase), or it may be a string of |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 164 | arbitrary length. |
Ben Lindstrom | 4e366d5 | 2001-12-06 16:43:21 +0000 | [diff] [blame] | 165 | A passphrase is similar to a password, except it can be a phrase with a |
| 166 | series of words, punctuation, numbers, whitespace, or any string of |
| 167 | characters you want. |
| 168 | Good passphrases are 10-30 characters long, are |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 169 | not simple sentences or otherwise easily guessable (English |
Ben Lindstrom | 2a097a4 | 2001-06-09 01:13:40 +0000 | [diff] [blame] | 170 | prose has only 1-2 bits of entropy per character, and provides very bad |
Ben Lindstrom | 4e366d5 | 2001-12-06 16:43:21 +0000 | [diff] [blame] | 171 | passphrases), and contain a mix of upper and lowercase letters, |
| 172 | numbers, and non-alphanumeric characters. |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 173 | The passphrase can be changed later by using the |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 174 | .Fl p |
| 175 | option. |
| 176 | .Pp |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 177 | There is no way to recover a lost passphrase. |
| 178 | If the passphrase is |
Ben Lindstrom | 594e203 | 2001-09-12 18:35:30 +0000 | [diff] [blame] | 179 | lost or forgotten, a new key must be generated and copied to the |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 180 | corresponding public key to other machines. |
| 181 | .Pp |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 182 | For RSA1 keys, |
| 183 | there is also a comment field in the key file that is only for |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 184 | convenience to the user to help identify the key. |
| 185 | The comment can tell what the key is for, or whatever is useful. |
| 186 | The comment is initialized to |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 187 | .Dq user@host |
| 188 | when the key is created, but can be changed using the |
| 189 | .Fl c |
| 190 | option. |
| 191 | .Pp |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 192 | After a key is generated, instructions below detail where the keys |
| 193 | should be placed to be activated. |
| 194 | .Pp |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 195 | The options are as follows: |
| 196 | .Bl -tag -width Ds |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 197 | .It Fl a Ar trials |
| 198 | Specifies the number of primality tests to perform when screening DH-GEX |
| 199 | candidates using the |
| 200 | .Fl T |
| 201 | command. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 202 | .It Fl B |
| 203 | Show the bubblebabble digest of specified private or public key file. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 204 | .It Fl b Ar bits |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 205 | Specifies the number of bits in the key to create. |
Darren Tucker | 9f64733 | 2005-11-28 16:41:46 +1100 | [diff] [blame] | 206 | For RSA keys, the minimum size is 768 bits and the default is 2048 bits. |
Damien Miller | ac7ef6a | 2005-06-16 13:19:06 +1000 | [diff] [blame] | 207 | Generally, 2048 bits is considered sufficient. |
Darren Tucker | 9f64733 | 2005-11-28 16:41:46 +1100 | [diff] [blame] | 208 | DSA keys must be exactly 1024 bits as specified by FIPS 186-2. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 209 | .It Fl C Ar comment |
| 210 | Provides a new comment. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 211 | .It Fl c |
| 212 | Requests changing the comment in the private and public key files. |
Damien Miller | eb5fec6 | 2001-11-12 10:52:44 +1100 | [diff] [blame] | 213 | This operation is only supported for RSA1 keys. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 214 | The program will prompt for the file containing the private keys, for |
Ben Lindstrom | aafff9c | 2001-05-06 03:01:02 +0000 | [diff] [blame] | 215 | the passphrase if the key has one, and for the new comment. |
Damien Miller | 7ea845e | 2010-02-12 09:21:02 +1100 | [diff] [blame] | 216 | .It Fl D Ar pkcs11 |
Damien Miller | a761844 | 2010-02-12 09:26:02 +1100 | [diff] [blame] | 217 | Download the RSA public keys provided by the PKCS#11 shared library |
| 218 | .Ar pkcs11 . |
Damien Miller | 757f34e | 2010-08-05 13:05:31 +1000 | [diff] [blame] | 219 | When used in combination with |
| 220 | .Fl s , |
| 221 | this option indicates that a CA key resides in a PKCS#11 token (see the |
| 222 | .Sx CERTIFICATES |
| 223 | section for details). |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 224 | .It Fl e |
Ben Lindstrom | 46c264f | 2001-04-24 16:56:58 +0000 | [diff] [blame] | 225 | This option will read a private or public OpenSSH key file and |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 226 | print to stdout the key in one of the formats specified by the |
| 227 | .Fl m |
| 228 | option. |
| 229 | The default export format is |
| 230 | .Dq RFC4716 . |
Damien Miller | ea72728 | 2010-07-02 13:35:34 +1000 | [diff] [blame] | 231 | This option allows exporting OpenSSH keys for use by other programs, including |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 232 | several commercial SSH implementations. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 233 | .It Fl F Ar hostname |
| 234 | Search for the specified |
| 235 | .Ar hostname |
| 236 | in a |
| 237 | .Pa known_hosts |
| 238 | file, listing any occurrences found. |
| 239 | This option is useful to find hashed host names or addresses and may also be |
| 240 | used in conjunction with the |
| 241 | .Fl H |
| 242 | option to print found keys in a hashed format. |
| 243 | .It Fl f Ar filename |
| 244 | Specifies the filename of the key file. |
| 245 | .It Fl G Ar output_file |
| 246 | Generate candidate primes for DH-GEX. |
| 247 | These primes must be screened for |
| 248 | safety (using the |
| 249 | .Fl T |
| 250 | option) before use. |
Damien Miller | 37876e9 | 2003-05-15 10:19:46 +1000 | [diff] [blame] | 251 | .It Fl g |
Darren Tucker | 0b42e6d | 2004-08-13 21:22:40 +1000 | [diff] [blame] | 252 | Use generic DNS format when printing fingerprint resource records using the |
Darren Tucker | 6e37037 | 2004-08-13 21:23:25 +1000 | [diff] [blame] | 253 | .Fl r |
Darren Tucker | 0b42e6d | 2004-08-13 21:22:40 +1000 | [diff] [blame] | 254 | command. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 255 | .It Fl H |
| 256 | Hash a |
| 257 | .Pa known_hosts |
Darren Tucker | da1adbc | 2005-03-14 23:15:58 +1100 | [diff] [blame] | 258 | file. |
| 259 | This replaces all hostnames and addresses with hashed representations |
| 260 | within the specified file; the original content is moved to a file with |
| 261 | a .old suffix. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 262 | These hashes may be used normally by |
| 263 | .Nm ssh |
| 264 | and |
| 265 | .Nm sshd , |
| 266 | but they do not reveal identifying information should the file's contents |
| 267 | be disclosed. |
| 268 | This option will not modify existing hashed hostnames and is therefore safe |
| 269 | to use on files that mix hashed and non-hashed names. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 270 | .It Fl h |
| 271 | When signing a key, create a host certificate instead of a user |
| 272 | certificate. |
| 273 | Please see the |
| 274 | .Sx CERTIFICATES |
| 275 | section for details. |
Damien Miller | 15f5b56 | 2010-03-03 10:25:21 +1100 | [diff] [blame] | 276 | .It Fl I Ar certificate_identity |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 277 | Specify the key identity when signing a public key. |
| 278 | Please see the |
| 279 | .Sx CERTIFICATES |
| 280 | section for details. |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 281 | .It Fl i |
| 282 | This option will read an unencrypted private (or public) key file |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 283 | in the format specified by the |
| 284 | .Fl m |
| 285 | option and print an OpenSSH compatible private |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 286 | (or public) key to stdout. |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 287 | This option allows importing keys from other software, including several |
| 288 | commercial SSH implementations. |
| 289 | The default import format is |
| 290 | .Dq RFC4716 . |
Damien Miller | f2b70ca | 2010-03-05 07:39:35 +1100 | [diff] [blame] | 291 | .It Fl L |
| 292 | Prints the contents of a certificate. |
Damien Miller | 10f6f6b | 1999-11-17 17:29:08 +1100 | [diff] [blame] | 293 | .It Fl l |
Darren Tucker | 35c4553 | 2008-06-13 04:43:15 +1000 | [diff] [blame] | 294 | Show fingerprint of specified public key file. |
Damien Miller | eb5fec6 | 2001-11-12 10:52:44 +1100 | [diff] [blame] | 295 | Private RSA1 keys are also supported. |
| 296 | For RSA and DSA keys |
| 297 | .Nm |
Darren Tucker | f09e825 | 2008-06-13 05:18:03 +1000 | [diff] [blame] | 298 | tries to find the matching public key file and prints its fingerprint. |
| 299 | If combined with |
| 300 | .Fl v , |
| 301 | an ASCII art representation of the key is supplied with the fingerprint. |
Damien Miller | ea72728 | 2010-07-02 13:35:34 +1000 | [diff] [blame] | 302 | .It Fl M Ar memory |
| 303 | Specify the amount of memory to use (in megabytes) when generating |
| 304 | candidate moduli for DH-GEX. |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 305 | .It Fl m Ar key_format |
| 306 | Specify a key format for the |
| 307 | .Fl i |
| 308 | (import) or |
| 309 | .Fl e |
Damien Miller | ea72728 | 2010-07-02 13:35:34 +1000 | [diff] [blame] | 310 | (export) conversion options. |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 311 | The supported key formats are: |
| 312 | .Dq RFC4716 |
Damien Miller | ea72728 | 2010-07-02 13:35:34 +1000 | [diff] [blame] | 313 | (RFC 4716/SSH2 public or private key), |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 314 | .Dq PKCS8 |
| 315 | (PEM PKCS8 public key) |
| 316 | or |
| 317 | .Dq PEM |
| 318 | (PEM public key). |
| 319 | The default conversion format is |
| 320 | .Dq RFC4716 . |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 321 | .It Fl N Ar new_passphrase |
| 322 | Provides the new passphrase. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 323 | .It Fl n Ar principals |
| 324 | Specify one or more principals (user or host names) to be included in |
| 325 | a certificate when signing a key. |
| 326 | Multiple principals may be specified, separated by commas. |
| 327 | Please see the |
| 328 | .Sx CERTIFICATES |
| 329 | section for details. |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 330 | .It Fl O Ar option |
| 331 | Specify a certificate option when signing a key. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 332 | This option may be specified multiple times. |
| 333 | Please see the |
| 334 | .Sx CERTIFICATES |
| 335 | section for details. |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 336 | The options that are valid for user certificates are: |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 337 | .Bl -tag -width Ds |
Damien Miller | c59e244 | 2010-03-22 05:50:31 +1100 | [diff] [blame] | 338 | .It Ic clear |
| 339 | Clear all enabled permissions. |
| 340 | This is useful for clearing the default set of permissions so permissions may |
| 341 | be added individually. |
| 342 | .It Ic force-command Ns = Ns Ar command |
| 343 | Forces the execution of |
| 344 | .Ar command |
| 345 | instead of any shell or command specified by the user when |
| 346 | the certificate is used for authentication. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 347 | .It Ic no-agent-forwarding |
| 348 | Disable |
| 349 | .Xr ssh-agent 1 |
Damien Miller | 15f5b56 | 2010-03-03 10:25:21 +1100 | [diff] [blame] | 350 | forwarding (permitted by default). |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 351 | .It Ic no-port-forwarding |
Damien Miller | 15f5b56 | 2010-03-03 10:25:21 +1100 | [diff] [blame] | 352 | Disable port forwarding (permitted by default). |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 353 | .It Ic no-pty |
Damien Miller | 15f5b56 | 2010-03-03 10:25:21 +1100 | [diff] [blame] | 354 | Disable PTY allocation (permitted by default). |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 355 | .It Ic no-user-rc |
| 356 | Disable execution of |
| 357 | .Pa ~/.ssh/rc |
| 358 | by |
Damien Miller | 15f5b56 | 2010-03-03 10:25:21 +1100 | [diff] [blame] | 359 | .Xr sshd 8 |
| 360 | (permitted by default). |
Damien Miller | c59e244 | 2010-03-22 05:50:31 +1100 | [diff] [blame] | 361 | .It Ic no-x11-forwarding |
| 362 | Disable X11 forwarding (permitted by default). |
Damien Miller | 081c976 | 2010-03-08 11:30:00 +1100 | [diff] [blame] | 363 | .It Ic permit-agent-forwarding |
| 364 | Allows |
| 365 | .Xr ssh-agent 1 |
| 366 | forwarding. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 367 | .It Ic permit-port-forwarding |
| 368 | Allows port forwarding. |
| 369 | .It Ic permit-pty |
| 370 | Allows PTY allocation. |
| 371 | .It Ic permit-user-rc |
| 372 | Allows execution of |
| 373 | .Pa ~/.ssh/rc |
| 374 | by |
| 375 | .Xr sshd 8 . |
Damien Miller | c59e244 | 2010-03-22 05:50:31 +1100 | [diff] [blame] | 376 | .It Ic permit-x11-forwarding |
| 377 | Allows X11 forwarding. |
| 378 | .It Ic source-address Ns = Ns Ar address_list |
Damien Miller | 77497e1 | 2010-03-22 05:50:51 +1100 | [diff] [blame] | 379 | Restrict the source addresses from which the certificate is considered valid. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 380 | The |
| 381 | .Ar address_list |
| 382 | is a comma-separated list of one or more address/netmask pairs in CIDR |
| 383 | format. |
| 384 | .El |
| 385 | .Pp |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 386 | At present, no options are valid for host keys. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 387 | .It Fl P Ar passphrase |
| 388 | Provides the (old) passphrase. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 389 | .It Fl p |
| 390 | Requests changing the passphrase of a private key file instead of |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 391 | creating a new private key. |
| 392 | The program will prompt for the file |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 393 | containing the private key, for the old passphrase, and twice for the |
| 394 | new passphrase. |
| 395 | .It Fl q |
| 396 | Silence |
| 397 | .Nm ssh-keygen . |
| 398 | Used by |
| 399 | .Pa /etc/rc |
| 400 | when creating a new key. |
Damien Miller | 4b42d7f | 2005-03-01 21:48:35 +1100 | [diff] [blame] | 401 | .It Fl R Ar hostname |
| 402 | Removes all keys belonging to |
| 403 | .Ar hostname |
Damien Miller | 4c9c6fd | 2005-03-02 12:03:43 +1100 | [diff] [blame] | 404 | from a |
Damien Miller | 4b42d7f | 2005-03-01 21:48:35 +1100 | [diff] [blame] | 405 | .Pa known_hosts |
| 406 | file. |
Damien Miller | 4c9c6fd | 2005-03-02 12:03:43 +1100 | [diff] [blame] | 407 | This option is useful to delete hashed hosts (see the |
Damien Miller | 4b42d7f | 2005-03-01 21:48:35 +1100 | [diff] [blame] | 408 | .Fl H |
| 409 | option above). |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 410 | .It Fl r Ar hostname |
| 411 | Print the SSHFP fingerprint resource record named |
| 412 | .Ar hostname |
| 413 | for the specified public key file. |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 414 | .It Fl S Ar start |
| 415 | Specify start point (in hex) when generating candidate moduli for DH-GEX. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 416 | .It Fl s Ar ca_key |
| 417 | Certify (sign) a public key using the specified CA key. |
| 418 | Please see the |
| 419 | .Sx CERTIFICATES |
| 420 | section for details. |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 421 | .It Fl T Ar output_file |
| 422 | Test DH group exchange candidate primes (generated using the |
| 423 | .Fl G |
| 424 | option) for safety. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 425 | .It Fl t Ar type |
| 426 | Specifies the type of key to create. |
| 427 | The possible values are |
| 428 | .Dq rsa1 |
| 429 | for protocol version 1 and |
| 430 | .Dq rsa |
| 431 | or |
| 432 | .Dq dsa |
| 433 | for protocol version 2. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 434 | .It Fl V Ar validity_interval |
| 435 | Specify a validity interval when signing a certificate. |
| 436 | A validity interval may consist of a single time, indicating that the |
| 437 | certificate is valid beginning now and expiring at that time, or may consist |
| 438 | of two times separated by a colon to indicate an explicit time interval. |
| 439 | The start time may be specified as a date in YYYYMMDD format, a time |
| 440 | in YYYYMMDDHHMMSS format or a relative time (to the current time) consisting |
| 441 | of a minus sign followed by a relative time in the format described in the |
| 442 | .Sx TIME FORMATS |
| 443 | section of |
Damien Miller | 77497e1 | 2010-03-22 05:50:51 +1100 | [diff] [blame] | 444 | .Xr sshd_config 5 . |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 445 | The end time may be specified as a YYYYMMDD date, a YYYYMMDDHHMMSS time or |
| 446 | a relative time starting with a plus character. |
| 447 | .Pp |
| 448 | For example: |
| 449 | .Dq +52w1d |
| 450 | (valid from now to 52 weeks and one day from now), |
| 451 | .Dq -4w:+4w |
| 452 | (valid from four weeks ago to four weeks from now), |
| 453 | .Dq 20100101123000:20110101123000 |
| 454 | (valid from 12:30 PM, January 1st, 2010 to 12:30 PM, January 1st, 2011), |
| 455 | .Dq -1d:20110101 |
| 456 | (valid from yesterday to midnight, January 1st, 2011). |
Darren Tucker | 06930c7 | 2003-12-31 11:34:51 +1100 | [diff] [blame] | 457 | .It Fl v |
| 458 | Verbose mode. |
| 459 | Causes |
| 460 | .Nm |
| 461 | to print debugging messages about its progress. |
| 462 | This is helpful for debugging moduli generation. |
| 463 | Multiple |
| 464 | .Fl v |
| 465 | options increase the verbosity. |
| 466 | The maximum is 3. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 467 | .It Fl W Ar generator |
| 468 | Specify desired generator when testing candidate moduli for DH-GEX. |
| 469 | .It Fl y |
| 470 | This option will read a private |
| 471 | OpenSSH format file and print an OpenSSH public key to stdout. |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 472 | .It Fl z Ar serial_number |
| 473 | Specifies a serial number to be embedded in the certificate to distinguish |
| 474 | this certificate from others from the same CA. |
| 475 | The default serial number is zero. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 476 | .El |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 477 | .Sh MODULI GENERATION |
| 478 | .Nm |
| 479 | may be used to generate groups for the Diffie-Hellman Group Exchange |
| 480 | (DH-GEX) protocol. |
| 481 | Generating these groups is a two-step process: first, candidate |
| 482 | primes are generated using a fast, but memory intensive process. |
| 483 | These candidate primes are then tested for suitability (a CPU-intensive |
| 484 | process). |
| 485 | .Pp |
| 486 | Generation of primes is performed using the |
| 487 | .Fl G |
| 488 | option. |
| 489 | The desired length of the primes may be specified by the |
| 490 | .Fl b |
| 491 | option. |
| 492 | For example: |
| 493 | .Pp |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 494 | .Dl # ssh-keygen -G moduli-2048.candidates -b 2048 |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 495 | .Pp |
| 496 | By default, the search for primes begins at a random point in the |
| 497 | desired length range. |
| 498 | This may be overridden using the |
| 499 | .Fl S |
| 500 | option, which specifies a different start point (in hex). |
| 501 | .Pp |
| 502 | Once a set of candidates have been generated, they must be tested for |
| 503 | suitability. |
| 504 | This may be performed using the |
| 505 | .Fl T |
| 506 | option. |
| 507 | In this mode |
| 508 | .Nm |
| 509 | will read candidates from standard input (or a file specified using the |
| 510 | .Fl f |
| 511 | option). |
| 512 | For example: |
| 513 | .Pp |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 514 | .Dl # ssh-keygen -T moduli-2048 -f moduli-2048.candidates |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 515 | .Pp |
| 516 | By default, each candidate will be subjected to 100 primality tests. |
| 517 | This may be overridden using the |
| 518 | .Fl a |
| 519 | option. |
| 520 | The DH generator value will be chosen automatically for the |
| 521 | prime under consideration. |
| 522 | If a specific generator is desired, it may be requested using the |
| 523 | .Fl W |
| 524 | option. |
Damien Miller | 265d309 | 2005-03-02 12:05:06 +1100 | [diff] [blame] | 525 | Valid generator values are 2, 3, and 5. |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 526 | .Pp |
| 527 | Screened DH groups may be installed in |
| 528 | .Pa /etc/moduli . |
| 529 | It is important that this file contains moduli of a range of bit lengths and |
| 530 | that both ends of a connection share common moduli. |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 531 | .Sh CERTIFICATES |
| 532 | .Nm |
| 533 | supports signing of keys to produce certificates that may be used for |
| 534 | user or host authentication. |
| 535 | Certificates consist of a public key, some identity information, zero or |
Damien Miller | 1f18142 | 2010-04-18 08:08:03 +1000 | [diff] [blame] | 536 | more principal (user or host) names and a set of options that |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 537 | are signed by a Certification Authority (CA) key. |
| 538 | Clients or servers may then trust only the CA key and verify its signature |
| 539 | on a certificate rather than trusting many user/host keys. |
| 540 | Note that OpenSSH certificates are a different, and much simpler, format to |
| 541 | the X.509 certificates used in |
| 542 | .Xr ssl 8 . |
| 543 | .Pp |
| 544 | .Nm |
| 545 | supports two types of certificates: user and host. |
| 546 | User certificates authenticate users to servers, whereas host certificates |
Damien Miller | 15f5b56 | 2010-03-03 10:25:21 +1100 | [diff] [blame] | 547 | authenticate server hosts to users. |
| 548 | To generate a user certificate: |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 549 | .Pp |
| 550 | .Dl $ ssh-keygen -s /path/to/ca_key -I key_id /path/to/user_key.pub |
| 551 | .Pp |
| 552 | The resultant certificate will be placed in |
Damien Miller | 1b61a28 | 2010-03-22 05:55:06 +1100 | [diff] [blame] | 553 | .Pa /path/to/user_key-cert.pub . |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 554 | A host certificate requires the |
| 555 | .Fl h |
| 556 | option: |
| 557 | .Pp |
| 558 | .Dl $ ssh-keygen -s /path/to/ca_key -I key_id -h /path/to/host_key.pub |
| 559 | .Pp |
| 560 | The host certificate will be output to |
Damien Miller | 1b61a28 | 2010-03-22 05:55:06 +1100 | [diff] [blame] | 561 | .Pa /path/to/host_key-cert.pub . |
Damien Miller | 757f34e | 2010-08-05 13:05:31 +1000 | [diff] [blame] | 562 | .Pp |
| 563 | It is possible to sign using a CA key stored in a PKCS#11 token by |
| 564 | providing the token library using |
| 565 | .Fl D |
| 566 | and identifying the CA key by providing its public half as an argument |
| 567 | to |
| 568 | .Fl s : |
| 569 | .Pp |
| 570 | .Dl $ ssh-keygen -s ca_key.pub -D libpkcs11.so -I key_id host_key.pub |
| 571 | .Pp |
| 572 | In all cases, |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 573 | .Ar key_id |
| 574 | is a "key identifier" that is logged by the server when the certificate |
| 575 | is used for authentication. |
| 576 | .Pp |
| 577 | Certificates may be limited to be valid for a set of principal (user/host) |
| 578 | names. |
| 579 | By default, generated certificates are valid for all users or hosts. |
| 580 | To generate a certificate for a specified set of principals: |
| 581 | .Pp |
| 582 | .Dl $ ssh-keygen -s ca_key -I key_id -n user1,user2 user_key.pub |
Damien Miller | 5a5d94b | 2010-03-22 05:57:49 +1100 | [diff] [blame] | 583 | .Dl "$ ssh-keygen -s ca_key -I key_id -h -n host.domain user_key.pub" |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 584 | .Pp |
| 585 | Additional limitations on the validity and use of user certificates may |
Damien Miller | 1f18142 | 2010-04-18 08:08:03 +1000 | [diff] [blame] | 586 | be specified through certificate options. |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 587 | A certificate option may disable features of the SSH session, may be |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 588 | valid only when presented from particular source addresses or may |
| 589 | force the use of a specific command. |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 590 | For a list of valid certificate options, see the documentation for the |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 591 | .Fl O |
| 592 | option above. |
| 593 | .Pp |
| 594 | Finally, certificates may be defined with a validity lifetime. |
| 595 | The |
| 596 | .Fl V |
| 597 | option allows specification of certificate start and end times. |
| 598 | A certificate that is presented at a time outside this range will not be |
| 599 | considered valid. |
| 600 | By default, certificates have a maximum validity interval. |
| 601 | .Pp |
| 602 | For certificates to be used for user or host authentication, the CA |
| 603 | public key must be trusted by |
| 604 | .Xr sshd 8 |
| 605 | or |
| 606 | .Xr ssh 1 . |
| 607 | Please refer to those manual pages for details. |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 608 | .Sh FILES |
| 609 | .Bl -tag -width Ds |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 610 | .It Pa ~/.ssh/identity |
Ben Lindstrom | 18a82ac | 2001-04-11 15:59:35 +0000 | [diff] [blame] | 611 | Contains the protocol version 1 RSA authentication identity of the user. |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 612 | This file should not be readable by anyone but the user. |
| 613 | It is possible to |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 614 | specify a passphrase when generating the key; that passphrase will be |
Darren Tucker | 199ee6f | 2009-10-24 11:50:17 +1100 | [diff] [blame] | 615 | used to encrypt the private part of this file using 128-bit AES. |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 616 | This file is not automatically accessed by |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 617 | .Nm |
| 618 | but it is offered as the default file for the private key. |
Ben Lindstrom | bda98b0 | 2001-07-04 03:35:24 +0000 | [diff] [blame] | 619 | .Xr ssh 1 |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 620 | will read this file when a login attempt is made. |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 621 | .It Pa ~/.ssh/identity.pub |
Ben Lindstrom | 18a82ac | 2001-04-11 15:59:35 +0000 | [diff] [blame] | 622 | Contains the protocol version 1 RSA public key for authentication. |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 623 | The contents of this file should be added to |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 624 | .Pa ~/.ssh/authorized_keys |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 625 | on all machines |
Ben Lindstrom | 594e203 | 2001-09-12 18:35:30 +0000 | [diff] [blame] | 626 | where the user wishes to log in using RSA authentication. |
Damien Miller | 450a7a1 | 2000-03-26 13:04:51 +1000 | [diff] [blame] | 627 | There is no need to keep the contents of this file secret. |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 628 | .It Pa ~/.ssh/id_dsa |
Ben Lindstrom | 18a82ac | 2001-04-11 15:59:35 +0000 | [diff] [blame] | 629 | Contains the protocol version 2 DSA authentication identity of the user. |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 630 | This file should not be readable by anyone but the user. |
| 631 | It is possible to |
| 632 | specify a passphrase when generating the key; that passphrase will be |
Darren Tucker | 199ee6f | 2009-10-24 11:50:17 +1100 | [diff] [blame] | 633 | used to encrypt the private part of this file using 128-bit AES. |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 634 | This file is not automatically accessed by |
| 635 | .Nm |
| 636 | but it is offered as the default file for the private key. |
Ben Lindstrom | bda98b0 | 2001-07-04 03:35:24 +0000 | [diff] [blame] | 637 | .Xr ssh 1 |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 638 | will read this file when a login attempt is made. |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 639 | .It Pa ~/.ssh/id_dsa.pub |
Ben Lindstrom | 18a82ac | 2001-04-11 15:59:35 +0000 | [diff] [blame] | 640 | Contains the protocol version 2 DSA public key for authentication. |
| 641 | The contents of this file should be added to |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 642 | .Pa ~/.ssh/authorized_keys |
Ben Lindstrom | 18a82ac | 2001-04-11 15:59:35 +0000 | [diff] [blame] | 643 | on all machines |
Ben Lindstrom | 594e203 | 2001-09-12 18:35:30 +0000 | [diff] [blame] | 644 | where the user wishes to log in using public key authentication. |
Ben Lindstrom | 18a82ac | 2001-04-11 15:59:35 +0000 | [diff] [blame] | 645 | There is no need to keep the contents of this file secret. |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 646 | .It Pa ~/.ssh/id_rsa |
Ben Lindstrom | 18a82ac | 2001-04-11 15:59:35 +0000 | [diff] [blame] | 647 | Contains the protocol version 2 RSA authentication identity of the user. |
| 648 | This file should not be readable by anyone but the user. |
| 649 | It is possible to |
| 650 | specify a passphrase when generating the key; that passphrase will be |
Darren Tucker | 199ee6f | 2009-10-24 11:50:17 +1100 | [diff] [blame] | 651 | used to encrypt the private part of this file using 128-bit AES. |
Ben Lindstrom | 18a82ac | 2001-04-11 15:59:35 +0000 | [diff] [blame] | 652 | This file is not automatically accessed by |
| 653 | .Nm |
| 654 | but it is offered as the default file for the private key. |
Ben Lindstrom | bda98b0 | 2001-07-04 03:35:24 +0000 | [diff] [blame] | 655 | .Xr ssh 1 |
Ben Lindstrom | 18a82ac | 2001-04-11 15:59:35 +0000 | [diff] [blame] | 656 | will read this file when a login attempt is made. |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 657 | .It Pa ~/.ssh/id_rsa.pub |
Ben Lindstrom | 18a82ac | 2001-04-11 15:59:35 +0000 | [diff] [blame] | 658 | Contains the protocol version 2 RSA public key for authentication. |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 659 | The contents of this file should be added to |
Damien Miller | 167ea5d | 2005-05-26 12:04:02 +1000 | [diff] [blame] | 660 | .Pa ~/.ssh/authorized_keys |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 661 | on all machines |
Ben Lindstrom | 594e203 | 2001-09-12 18:35:30 +0000 | [diff] [blame] | 662 | where the user wishes to log in using public key authentication. |
Damien Miller | e247cc4 | 2000-05-07 12:03:14 +1000 | [diff] [blame] | 663 | There is no need to keep the contents of this file secret. |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 664 | .It Pa /etc/moduli |
| 665 | Contains Diffie-Hellman groups used for DH-GEX. |
| 666 | The file format is described in |
| 667 | .Xr moduli 5 . |
Damien Miller | 3702396 | 2000-07-11 17:31:38 +1000 | [diff] [blame] | 668 | .El |
Damien Miller | 32aa144 | 1999-10-29 09:15:49 +1000 | [diff] [blame] | 669 | .Sh SEE ALSO |
| 670 | .Xr ssh 1 , |
| 671 | .Xr ssh-add 1 , |
Damien Miller | 2e8b1c8 | 1999-11-15 23:33:56 +1100 | [diff] [blame] | 672 | .Xr ssh-agent 1 , |
Darren Tucker | 019cefe | 2003-08-02 22:40:07 +1000 | [diff] [blame] | 673 | .Xr moduli 5 , |
Ben Lindstrom | 77788dc | 2001-02-10 23:10:33 +0000 | [diff] [blame] | 674 | .Xr sshd 8 |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 675 | .Rs |
Damien Miller | c0367fb | 2007-01-05 16:25:46 +1100 | [diff] [blame] | 676 | .%R RFC 4716 |
| 677 | .%T "The Secure Shell (SSH) Public Key File Format" |
| 678 | .%D 2006 |
Ben Lindstrom | 5a70782 | 2001-04-22 17:15:46 +0000 | [diff] [blame] | 679 | .Re |
Damien Miller | f1ce505 | 2003-06-11 22:04:39 +1000 | [diff] [blame] | 680 | .Sh AUTHORS |
| 681 | OpenSSH is a derivative of the original and free |
| 682 | ssh 1.2.12 release by Tatu Ylonen. |
| 683 | Aaron Campbell, Bob Beck, Markus Friedl, Niels Provos, |
| 684 | Theo de Raadt and Dug Song |
| 685 | removed many bugs, re-added newer features and |
| 686 | created OpenSSH. |
| 687 | Markus Friedl contributed the support for SSH |
| 688 | protocol versions 1.5 and 2.0. |