1 Description: Adjust various OpenBSD-specific references in manual pages
2 No single bug reference for this patch, but history includes:
3 http://bugs.debian.org/154434 (login.conf(5))
4 http://bugs.debian.org/513417 (/etc/rc)
5 http://bugs.debian.org/530692 (ssl(8))
6 https://bugs.launchpad.net/bugs/456660 (ssl(8))
7 Author: Colin Watson <cjwatson@debian.org>
9 Last-Update: 2010-02-28
12 ===================================================================
16 .Nd Diffie-Hellman moduli
21 file contains prime numbers and generators for use by
23 in the Diffie-Hellman Group Exchange key exchange method.
25 Diffie-Hellman output to sufficiently key the selected symmetric cipher.
27 then randomly selects a modulus from
30 that best meets the size requirement.
34 ===================================================================
41 -Additionally, the system administrator may use this to generate host keys,
44 +Additionally, the system administrator may use this to generate host keys.
46 Normally this program generates the key and asks for a file in which
47 to store the private key.
49 For each of the key types (rsa1, rsa, dsa and ecdsa) for which host keys
50 do not exist, generate the host keys with the default key file path,
51 an empty passphrase, default bits for the key type, and default comment.
54 -to generate new host keys.
55 +This is used by system administration scripts to generate new host keys.
57 Specifies the number of primality tests to perform when screening DH-GEX
60 Valid generator values are 2, 3, and 5.
62 Screened DH groups may be installed in
64 +.Pa /etc/ssh/moduli .
65 It is important that this file contains moduli of a range of bit lengths and
66 that both ends of a connection share common moduli.
69 where the user wishes to log in using public key authentication.
70 There is no need to keep the contents of this file secret.
73 +.It Pa /etc/ssh/moduli
74 Contains Diffie-Hellman groups used for DH-GEX.
75 The file format is described in
78 ===================================================================
85 +(on non-OpenBSD systems, see
87 +http://www.openbsd.org/cgi\-bin/man.cgi?query=ssl&sektion=8#HISTORY)
89 contains a brief discussion of the DSA and RSA algorithms.
93 ===================================================================
98 listens for connections from clients.
99 It is normally started at boot from
101 +.Pa /etc/init.d/ssh .
103 daemon for each incoming connection.
104 The forked daemons handle
107 It should only be writable by root.
110 +.It Pa /etc/ssh/moduli
111 Contains Diffie-Hellman groups used for the "Diffie-Hellman Group Exchange".
112 The file format is described in
122 Index: b/sshd_config.5
123 ===================================================================
127 By default, no banner is displayed.
128 .It Cm ChallengeResponseAuthentication
129 Specifies whether challenge-response authentication is allowed (e.g. via
130 -PAM or though authentication styles supported in
135 .It Cm ChrootDirectory