SSH-KEYSIGN(8) | Maintenance Commands and Procedures | SSH-KEYSIGN(8) |
ssh-keysign
—
OpenSSH helper for host-based authentication
ssh-keysign |
ssh-keysign
is used by
ssh(1) to access the local host keys and
generate the digital signature required during host-based
authentication.
ssh-keysign
is disabled by default and can
only be enabled in the global client configuration file
/etc/ssh/ssh_config by setting
EnableSSHKeysign
to “yes”.
ssh-keysign
is not intended to be invoked
by the user, but from ssh(1). See
ssh(1) and
sshd(8) for more information about
host-based authentication.
ssh-keysign
is enabled.
ssh-keysign
must be set-uid root if host-based
authentication is used.
ssh-keysign
first appeared in
OpenBSD 3.2.
Markus Friedl <markus@openbsd.org>
June 17, 2024 | OmniOS |