packetstorm sync

author: SkyperTHC 2026-03-03 06:28:55 +0000
committer: SkyperTHC 2026-03-03 06:28:55 +0000
commit: 5d3573ef7a109ee70416fe94db098fe6a769a798 (patch)
tree: dc2d5b294c9db8ab2db7433511f94e1c4bb8b698 /other/openssh-reverse/ssh-keygen.1
parent: c6c59dc73cc4586357f93ab38ecf459e98675cc5 (diff)
1 files changed, 221 insertions, 0 deletions
diff --git a/other/openssh-reverse/ssh-keygen.1 b/other/openssh-reverse/ssh-keygen.1
new file mode 100644
index 0000000..ce6626a
--- /dev/null
+++ b/other/openssh-reverse/ssh-keygen.1
@@ -0,0 +1,221 @@
+.\"  -*- nroff -*-
+.\"
+.\" ssh-keygen.1
+.\"
+.\" Author: Tatu Ylonen <ylo@cs.hut.fi>
+.\"
+.\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
+.\"                    All rights reserved
+.\"
+.\" Created: Sat Apr 22 23:55:14 1995 ylo
+.\"
+.\" $Id: ssh-keygen.1,v 1.19 2000/07/06 04:06:56 aaron Exp $
+.\"
+.Dd September 25, 1999
+.Dt SSH-KEYGEN 1
+.Os
+.Sh NAME
+.Nm ssh-keygen
+.Nd authentication key generation
+.Sh SYNOPSIS
+.Nm ssh-keygen
+.Op Fl dq
+.Op Fl b Ar bits
+.Op Fl N Ar new_passphrase
+.Op Fl C Ar comment
+.Op Fl f Ar keyfile
+.Nm ssh-keygen
+.Fl p
+.Op Fl P Ar old_passphrase
+.Op Fl N Ar new_passphrase
+.Op Fl f Ar keyfile
+.Nm ssh-keygen
+.Fl x
+.Op Fl f Ar keyfile
+.Nm ssh-keygen
+.Fl X
+.Op Fl f Ar keyfile
+.Nm ssh-keygen
+.Fl y
+.Op Fl f Ar keyfile
+.Nm ssh-keygen
+.Fl c
+.Op Fl P Ar passphrase
+.Op Fl C Ar comment
+.Op Fl f Ar keyfile
+.Nm ssh-keygen
+.Fl l
+.Op Fl f Ar keyfile
+.Nm ssh-keygen
+.Fl R
+.Sh DESCRIPTION
+.Nm
+generates and manages authentication keys for
+.Xr ssh 1 .
+.Nm
+defaults to generating an RSA key for use by protocols 1.3 and 1.5;
+specifying the
+.Fl d
+flag will create a DSA key instead for use by protocol 2.0.
+.Pp
+Normally each user wishing to use SSH
+with RSA or DSA authentication runs this once to create the authentication
+key in
+.Pa $HOME/.ssh/identity
+or
+.Pa $HOME/.ssh/id_dsa .
+Additionally, the system administrator may use this to generate host keys,
+as seen in
+.Pa /etc/rc .
+.Pp
+Normally this program generates the key and asks for a file in which
+to store the private key.
+The public key is stored in a file with the same name but
+.Dq .pub
+appended.
+The program also asks for a passphrase.
+The passphrase may be empty to indicate no passphrase
+(host keys must have empty passphrase), or it may be a string of
+arbitrary length.
+Good passphrases are 10-30 characters long and are
+not simple sentences or otherwise easily guessable (English
+prose has only 1-2 bits of entropy per word, and provides very bad
+passphrases).
+The passphrase can be changed later by using the
+.Fl p
+option.
+.Pp
+There is no way to recover a lost passphrase.
+If the passphrase is
+lost or forgotten, you will have to generate a new key and copy the
+corresponding public key to other machines.
+.Pp
+For RSA, there is also a comment field in the key file that is only for
+convenience to the user to help identify the key.
+The comment can tell what the key is for, or whatever is useful.
+The comment is initialized to
+.Dq user@host
+when the key is created, but can be changed using the
+.Fl c
+option.
+.Pp
+After a key is generated, instructions below detail where the keys
+should be placed to be activated.
+.Pp
+The options are as follows:
+.Bl -tag -width Ds
+.It Fl b Ar bits
+Specifies the number of bits in the key to create.
+Minimum is 512 bits.
+Generally 1024 bits is considered sufficient, and key sizes
+above that no longer improve security but make things slower.
+The default is 1024 bits.
+.It Fl c
+Requests changing the comment in the private and public key files.
+The program will prompt for the file containing the private keys, for
+passphrase if the key has one, and for the new comment.
+.It Fl f
+Specifies the filename of the key file.
+.It Fl l
+Show fingerprint of specified private or public key file.
+.It Fl p
+Requests changing the passphrase of a private key file instead of
+creating a new private key.
+The program will prompt for the file
+containing the private key, for the old passphrase, and twice for the
+new passphrase.
+.It Fl q
+Silence
+.Nm ssh-keygen .
+Used by
+.Pa /etc/rc
+when creating a new key.
+.It Fl C Ar comment
+Provides the new comment.
+.It Fl N Ar new_passphrase
+Provides the new passphrase.
+.It Fl P Ar passphrase
+Provides the (old) passphrase.
+.It Fl R
+If RSA support is functional, immediately exits with code 0.  If RSA
+support is not functional, exits with code 1.  This flag will be
+removed once the RSA patent expires.
+.It Fl x
+This option will read a private
+OpenSSH DSA format file and print a SSH2-compatible public key to stdout.
+.It Fl X
+This option will read a
+SSH2-compatible public key file and print an OpenSSH DSA compatible public key to stdout.
+.It Fl y
+This option will read a private
+OpenSSH DSA format file and print an OpenSSH DSA public key to stdout.
+.El
+.Sh FILES
+.Bl -tag -width Ds
+.It Pa $HOME/.ssh/identity
+Contains the RSA authentication identity of the user.
+This file should not be readable by anyone but the user.
+It is possible to
+specify a passphrase when generating the key; that passphrase will be
+used to encrypt the private part of this file using 3DES.
+This file is not automatically accessed by
+.Nm
+but it is offered as the default file for the private key.
+.Xr sshd 8
+will read this file when a login attempt is made.
+.It Pa $HOME/.ssh/identity.pub
+Contains the public key for authentication.
+The contents of this file should be added to
+.Pa $HOME/.ssh/authorized_keys
+on all machines
+where you wish to log in using RSA authentication.
+There is no need to keep the contents of this file secret.
+.It Pa $HOME/.ssh/id_dsa
+Contains the DSA authentication identity of the user.
+This file should not be readable by anyone but the user.
+It is possible to
+specify a passphrase when generating the key; that passphrase will be
+used to encrypt the private part of this file using 3DES.
+This file is not automatically accessed by
+.Nm
+but it is offered as the default file for the private key.
+.Xr sshd 8
+will read this file when a login attempt is made.
+.It Pa $HOME/.ssh/id_dsa.pub
+Contains the public key for authentication.
+The contents of this file should be added to
+.Pa $HOME/.ssh/authorized_keys2
+on all machines
+where you wish to log in using DSA authentication.
+There is no need to keep the contents of this file secret.
+.El
+.Sh AUTHOR
+Tatu Ylonen <ylo@cs.hut.fi>
+.Pp
+OpenSSH
+is a derivative of the original (free) ssh 1.2.12 release, but with bugs
+removed and newer features re-added.
+Rapidly after the 1.2.12 release,
+newer versions bore successively more restrictive licenses.
+This version of OpenSSH
+.Bl -bullet
+.It
+has all components of a restrictive nature (i.e., patents)
+directly removed from the source code; any licensed or patented components
+are chosen from
+external libraries.
+.It
+has been updated to support ssh protocol 1.5.
+.It
+contains added support for
+.Xr kerberos 8
+authentication and ticket passing.
+.It
+supports one-time password authentication with
+.Xr skey 1 .
+.El
+.Sh SEE ALSO
+.Xr ssh 1 ,
+.Xr ssh-add 1 ,
+.Xr ssh-agent 1 ,
+.Xr sshd 8 ,
author	SkyperTHC	2026-03-03 06:28:55 +0000
committer	SkyperTHC	2026-03-03 06:28:55 +0000
commit	5d3573ef7a109ee70416fe94db098fe6a769a798 (patch)
tree	dc2d5b294c9db8ab2db7433511f94e1c4bb8b698 /other/openssh-reverse/ssh-keygen.1
parent	c6c59dc73cc4586357f93ab38ecf459e98675cc5 (diff)

diff --git a/other/openssh-reverse/ssh-keygen.1 b/other/openssh-reverse/ssh-keygen.1 new file mode 100644 index 0000000..ce6626a --- /dev/null +++ b/other/openssh-reverse/ssh-keygen.1
@@ -0,0 +1,221 @@
	1	.\" -- nroff --
	2	.\"
	3	.\" ssh-keygen.1
	4	.\"
	5	.\" Author: Tatu Ylonen <ylo@cs.hut.fi>
	6	.\"
	7	.\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
	8	.\" All rights reserved
	9	.\"
	10	.\" Created: Sat Apr 22 23:55:14 1995 ylo
	11	.\"
	12	.\" $Id: ssh-keygen.1,v 1.19 2000/07/06 04:06:56 aaron Exp $
	13	.\"
	14	.Dd September 25, 1999
	15	.Dt SSH-KEYGEN 1
	16	.Os
	17	.Sh NAME
	18	.Nm ssh-keygen
	19	.Nd authentication key generation
	20	.Sh SYNOPSIS
	21	.Nm ssh-keygen
	22	.Op Fl dq
	23	.Op Fl b Ar bits
	24	.Op Fl N Ar new_passphrase
	25	.Op Fl C Ar comment
	26	.Op Fl f Ar keyfile
	27	.Nm ssh-keygen
	28	.Fl p
	29	.Op Fl P Ar old_passphrase
	30	.Op Fl N Ar new_passphrase
	31	.Op Fl f Ar keyfile
	32	.Nm ssh-keygen
	33	.Fl x
	34	.Op Fl f Ar keyfile
	35	.Nm ssh-keygen
	36	.Fl X
	37	.Op Fl f Ar keyfile
	38	.Nm ssh-keygen
	39	.Fl y
	40	.Op Fl f Ar keyfile
	41	.Nm ssh-keygen
	42	.Fl c
	43	.Op Fl P Ar passphrase
	44	.Op Fl C Ar comment
	45	.Op Fl f Ar keyfile
	46	.Nm ssh-keygen
	47	.Fl l
	48	.Op Fl f Ar keyfile
	49	.Nm ssh-keygen
	50	.Fl R
	51	.Sh DESCRIPTION
	52	.Nm
	53	generates and manages authentication keys for
	54	.Xr ssh 1 .
	55	.Nm
	56	defaults to generating an RSA key for use by protocols 1.3 and 1.5;
	57	specifying the
	58	.Fl d
	59	flag will create a DSA key instead for use by protocol 2.0.
	60	.Pp
	61	Normally each user wishing to use SSH
	62	with RSA or DSA authentication runs this once to create the authentication
	63	key in
	64	.Pa $HOME/.ssh/identity
	65	or
	66	.Pa $HOME/.ssh/id_dsa .
	67	Additionally, the system administrator may use this to generate host keys,
	68	as seen in
	69	.Pa /etc/rc .
	70	.Pp
	71	Normally this program generates the key and asks for a file in which
	72	to store the private key.
	73	The public key is stored in a file with the same name but
	74	.Dq .pub
	75	appended.
	76	The program also asks for a passphrase.
	77	The passphrase may be empty to indicate no passphrase
	78	(host keys must have empty passphrase), or it may be a string of
	79	arbitrary length.
	80	Good passphrases are 10-30 characters long and are
	81	not simple sentences or otherwise easily guessable (English
	82	prose has only 1-2 bits of entropy per word, and provides very bad
	83	passphrases).
	84	The passphrase can be changed later by using the
	85	.Fl p
	86	option.
	87	.Pp
	88	There is no way to recover a lost passphrase.
	89	If the passphrase is
	90	lost or forgotten, you will have to generate a new key and copy the
	91	corresponding public key to other machines.
	92	.Pp
	93	For RSA, there is also a comment field in the key file that is only for
	94	convenience to the user to help identify the key.
	95	The comment can tell what the key is for, or whatever is useful.
	96	The comment is initialized to
	97	.Dq user@host
	98	when the key is created, but can be changed using the
	99	.Fl c
	100	option.
	101	.Pp
	102	After a key is generated, instructions below detail where the keys
	103	should be placed to be activated.
	104	.Pp
	105	The options are as follows:
	106	.Bl -tag -width Ds
	107	.It Fl b Ar bits
	108	Specifies the number of bits in the key to create.
	109	Minimum is 512 bits.
	110	Generally 1024 bits is considered sufficient, and key sizes
	111	above that no longer improve security but make things slower.
	112	The default is 1024 bits.
	113	.It Fl c
	114	Requests changing the comment in the private and public key files.
	115	The program will prompt for the file containing the private keys, for
	116	passphrase if the key has one, and for the new comment.
	117	.It Fl f
	118	Specifies the filename of the key file.
	119	.It Fl l
	120	Show fingerprint of specified private or public key file.
	121	.It Fl p
	122	Requests changing the passphrase of a private key file instead of
	123	creating a new private key.
	124	The program will prompt for the file
	125	containing the private key, for the old passphrase, and twice for the
	126	new passphrase.
	127	.It Fl q
	128	Silence
	129	.Nm ssh-keygen .
	130	Used by
	131	.Pa /etc/rc
	132	when creating a new key.
	133	.It Fl C Ar comment
	134	Provides the new comment.
	135	.It Fl N Ar new_passphrase
	136	Provides the new passphrase.
	137	.It Fl P Ar passphrase
	138	Provides the (old) passphrase.
	139	.It Fl R
	140	If RSA support is functional, immediately exits with code 0. If RSA
	141	support is not functional, exits with code 1. This flag will be
	142	removed once the RSA patent expires.
	143	.It Fl x
	144	This option will read a private
	145	OpenSSH DSA format file and print a SSH2-compatible public key to stdout.
	146	.It Fl X
	147	This option will read a
	148	SSH2-compatible public key file and print an OpenSSH DSA compatible public key to stdout.
	149	.It Fl y
	150	This option will read a private
	151	OpenSSH DSA format file and print an OpenSSH DSA public key to stdout.
	152	.El
	153	.Sh FILES
	154	.Bl -tag -width Ds
	155	.It Pa $HOME/.ssh/identity
	156	Contains the RSA authentication identity of the user.
	157	This file should not be readable by anyone but the user.
	158	It is possible to
	159	specify a passphrase when generating the key; that passphrase will be
	160	used to encrypt the private part of this file using 3DES.
	161	This file is not automatically accessed by
	162	.Nm
	163	but it is offered as the default file for the private key.
	164	.Xr sshd 8
	165	will read this file when a login attempt is made.
	166	.It Pa $HOME/.ssh/identity.pub
	167	Contains the public key for authentication.
	168	The contents of this file should be added to
	169	.Pa $HOME/.ssh/authorized_keys
	170	on all machines
	171	where you wish to log in using RSA authentication.
	172	There is no need to keep the contents of this file secret.
	173	.It Pa $HOME/.ssh/id_dsa
	174	Contains the DSA authentication identity of the user.
	175	This file should not be readable by anyone but the user.
	176	It is possible to
	177	specify a passphrase when generating the key; that passphrase will be
	178	used to encrypt the private part of this file using 3DES.
	179	This file is not automatically accessed by
	180	.Nm
	181	but it is offered as the default file for the private key.
	182	.Xr sshd 8
	183	will read this file when a login attempt is made.
	184	.It Pa $HOME/.ssh/id_dsa.pub
	185	Contains the public key for authentication.
	186	The contents of this file should be added to
	187	.Pa $HOME/.ssh/authorized_keys2
	188	on all machines
	189	where you wish to log in using DSA authentication.
	190	There is no need to keep the contents of this file secret.
	191	.El
	192	.Sh AUTHOR
	193	Tatu Ylonen <ylo@cs.hut.fi>
	194	.Pp
	195	OpenSSH
	196	is a derivative of the original (free) ssh 1.2.12 release, but with bugs
	197	removed and newer features re-added.
	198	Rapidly after the 1.2.12 release,
	199	newer versions bore successively more restrictive licenses.
	200	This version of OpenSSH
	201	.Bl -bullet
	202	.It
	203	has all components of a restrictive nature (i.e., patents)
	204	directly removed from the source code; any licensed or patented components
	205	are chosen from
	206	external libraries.
	207	.It
	208	has been updated to support ssh protocol 1.5.
	209	.It
	210	contains added support for
	211	.Xr kerberos 8
	212	authentication and ticket passing.
	213	.It
	214	supports one-time password authentication with
	215	.Xr skey 1 .
	216	.El
	217	.Sh SEE ALSO
	218	.Xr ssh 1 ,
	219	.Xr ssh-add 1 ,
	220	.Xr ssh-agent 1 ,
	221	.Xr sshd 8 ,