Query: ssh-keysign
OS: redhat
Section: 8
Format: Original Unix Latex Style Formatted with HTML and a Horizontal Scroll Bar
SSH-KEYSIGN(8) BSD System Manager's Manual SSH-KEYSIGN(8)NAMEssh-keysign -- ssh helper program for hostbased authenticationSYNOPSISssh-keysignDESCRIPTIONssh-keysign is used by ssh(1) to access the local host keys and generate the digital signature required during hostbased authentication with SSH protocol version 2. ssh-keysign is disabled by default and can only be enabled in the the global client configuration file /etc/ssh/ssh_config by setting HostbasedAuthentication to ``yes''. ssh-keysign is not intended to be invoked by the user, but from ssh(1). See ssh(1) and sshd(8) for more information about hostbased authen- tication.FILES/etc/ssh/ssh_config Controls whether ssh-keysign is enabled. /etc/ssh/ssh_host_dsa_key, /etc/ssh/ssh_host_rsa_key These files contain the private parts of the host keys used to generate the digital signature. They should be owned by root, read- able only by root, and not accessible to others. Since they are readable only by root, ssh-keysign must be set-uid root if hostbased authentication is used.SEE ALSOssh(1), ssh-keygen(1), ssh_config(5), sshd(8)AUTHORSMarkus Friedl <markus@openbsd.org>HISTORYssh-keysign first appeared in OpenBSD 3.2.BSDMay 24, 2002 BSD