SSH-KEYSIGN(8) | System Manager's Manual | SSH-KEYSIGN(8) |
ssh-keysign
—
OpenSSH helper for host-based authentication
ssh-keysign |
ssh-keysign
is used by
ssh(1) to access the local host keys and generate the
digital signature required during host-based authentication.
ssh-keysign
is disabled by default and can
only be enabled in the global client configuration file
/etc/ssh/ssh_config by setting
EnableSSHKeysign
to “yes”.
ssh-keysign
is not intended to be invoked
by the user, but from ssh(1). See ssh(1)
and sshd(8) for more information about host-based
authentication.
ssh-keysign
is enabled.
ssh-keysign
must be set-uid root if host-based
authentication is used.
ssh-keysign
first appeared in
OpenBSD 3.2.
Markus Friedl <markus@openbsd.org>
November 30, 2019 | Mac OS X 12 |