[openssh.git] / ssh-keygen.1

.\"	$OpenBSD: ssh-keygen.1,v 1.36 2001/04/10 09:13:21 itojun Exp $
.\"
.\"  -*- nroff -*-
.\"
.\" Author: Tatu Ylonen <ylo@cs.hut.fi>
.\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
.\"                    All rights reserved
.\"
.\" As far as I am concerned, the code I have written for this software
.\" can be used freely for any purpose.  Any derived versions of this
.\" software must be clearly marked as such, and if the derived work is
.\" incompatible with the protocol description in the RFC file, it must be
.\" called by a name other than "ssh" or "Secure Shell".
.\"
.\"
.\" Copyright (c) 1999,2000 Markus Friedl.  All rights reserved.
.\" Copyright (c) 1999 Aaron Campbell.  All rights reserved.
.\" Copyright (c) 1999 Theo de Raadt.  All rights reserved.
.\"
.\" Redistribution and use in source and binary forms, with or without
.\" modification, are permitted provided that the following conditions
.\" are met:
.\" 1. Redistributions of source code must retain the above copyright
.\"    notice, this list of conditions and the following disclaimer.
.\" 2. Redistributions in binary form must reproduce the above copyright
.\"    notice, this list of conditions and the following disclaimer in the
.\"    documentation and/or other materials provided with the distribution.
.\"
.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
.\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
.\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
.\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
.\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
.\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
.\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
.\"
.Dd September 25, 1999
.Dt SSH-KEYGEN 1
.Os
.Sh NAME
.Nm ssh-keygen
.Nd authentication key generation
.Sh SYNOPSIS
.Nm ssh-keygen
.Op Fl q
.Op Fl b Ar bits
.Op Fl t Ar type
.Op Fl N Ar new_passphrase
.Op Fl C Ar comment
.Op Fl f Ar output_keyfile
.Nm ssh-keygen
.Fl p
.Op Fl P Ar old_passphrase
.Op Fl N Ar new_passphrase
.Op Fl f Ar keyfile
.Nm ssh-keygen
.Fl x
.Op Fl f Ar input_keyfile
.Nm ssh-keygen
.Fl X
.Op Fl f Ar input_keyfile
.Nm ssh-keygen
.Fl y
.Op Fl f Ar input_keyfile
.Nm ssh-keygen
.Fl c
.Op Fl P Ar passphrase
.Op Fl C Ar comment
.Op Fl f Ar keyfile
.Nm ssh-keygen
.Fl l
.Op Fl f Ar input_keyfile
.Nm ssh-keygen
.Fl B
.Op Fl f Ar input_keyfile
.Sh DESCRIPTION
.Nm
generates and manages authentication keys for
.Xr ssh 1 .
.Nm
defaults to generating an RSA key for use by protocols 1.3 and 1.5;
specifying the
.Fl t
option allows you to create a key for use by protocol 2.0.
.Pp
Normally each user wishing to use SSH
with RSA or DSA authentication runs this once to create the authentication
key in
.Pa $HOME/.ssh/identity ,
.Pa $HOME/.ssh/id_dsa
or
.Pa $HOME/.ssh/id_rsa .
Additionally, the system administrator may use this to generate host keys,
as seen in
.Pa /etc/rc .
.Pp
Normally this program generates the key and asks for a file in which
to store the private key.
The public key is stored in a file with the same name but
.Dq .pub
appended.
The program also asks for a passphrase.
The passphrase may be empty to indicate no passphrase
(host keys must have an empty passphrase), or it may be a string of
arbitrary length.
Good passphrases are 10-30 characters long and are
not simple sentences or otherwise easily guessable (English
prose has only 1-2 bits of entropy per word, and provides very bad
passphrases).
The passphrase can be changed later by using the
.Fl p
option.
.Pp
There is no way to recover a lost passphrase.
If the passphrase is
lost or forgotten, you will have to generate a new key and copy the
corresponding public key to other machines.
.Pp
For RSA, there is also a comment field in the key file that is only for
convenience to the user to help identify the key.
The comment can tell what the key is for, or whatever is useful.
The comment is initialized to
.Dq user@host
when the key is created, but can be changed using the
.Fl c
option.
.Pp
After a key is generated, instructions below detail where the keys
should be placed to be activated.
.Pp
The options are as follows:
.Bl -tag -width Ds
.It Fl b Ar bits
Specifies the number of bits in the key to create.
Minimum is 512 bits.
Generally 1024 bits is considered sufficient, and key sizes
above that no longer improve security but make things slower.
The default is 1024 bits.
.It Fl c
Requests changing the comment in the private and public key files.
The program will prompt for the file containing the private keys, for
passphrase if the key has one, and for the new comment.
.It Fl f
Specifies the filename of the key file.
.It Fl l
Show fingerprint of specified private or public key file.
.It Fl p
Requests changing the passphrase of a private key file instead of
creating a new private key.
The program will prompt for the file
containing the private key, for the old passphrase, and twice for the
new passphrase.
.It Fl q
Silence
.Nm ssh-keygen .
Used by
.Pa /etc/rc
when creating a new key.
.It Fl t Ar type
Specifies the type of the key to create.
The possible values are
.Dq rsa1
for protocol version 1 and
.Dq rsa
or
.Dq dsa
for protocol version 2.
The default is
.Dq rsa1 .
.It Fl B
Show the bubblebabble digest of specified private or public key file.
.It Fl C Ar comment
Provides the new comment.
.It Fl N Ar new_passphrase
Provides the new passphrase.
.It Fl P Ar passphrase
Provides the (old) passphrase.
.It Fl x
This option will read a private
OpenSSH DSA format file and print a SSH2-compatible public key to stdout.
.It Fl X
This option will read a unencrypted
SSH2-compatible private (or public) key file and
print an OpenSSH compatible private (or public) key to stdout.
.It Fl y
This option will read a private
OpenSSH format file and print an OpenSSH public key to stdout.
.El
.Sh FILES
.Bl -tag -width Ds
.It Pa $HOME/.ssh/identity
Contains the protocol version 1 RSA authentication identity of the user.
This file should not be readable by anyone but the user.
It is possible to
specify a passphrase when generating the key; that passphrase will be
used to encrypt the private part of this file using 3DES.
This file is not automatically accessed by
.Nm
but it is offered as the default file for the private key.
.Xr sshd 8
will read this file when a login attempt is made.
.It Pa $HOME/.ssh/identity.pub
Contains the protocol version 1 RSA public key for authentication.
The contents of this file should be added to
.Pa $HOME/.ssh/authorized_keys
on all machines
where you wish to log in using RSA authentication.
There is no need to keep the contents of this file secret.
.It Pa $HOME/.ssh/id_dsa
Contains the protocol version 2 DSA authentication identity of the user.
This file should not be readable by anyone but the user.
It is possible to
specify a passphrase when generating the key; that passphrase will be
used to encrypt the private part of this file using 3DES.
This file is not automatically accessed by
.Nm
but it is offered as the default file for the private key.
.Xr sshd 8
will read this file when a login attempt is made.
.It Pa $HOME/.ssh/id_dsa.pub
Contains the protocol version 2 DSA public key for authentication.
The contents of this file should be added to
.Pa $HOME/.ssh/authorized_keys2
on all machines
where you wish to log in using public key authentication.
There is no need to keep the contents of this file secret.
.It Pa $HOME/.ssh/id_rsa
Contains the protocol version 2 RSA authentication identity of the user.
This file should not be readable by anyone but the user.
It is possible to
specify a passphrase when generating the key; that passphrase will be
used to encrypt the private part of this file using 3DES.
This file is not automatically accessed by
.Nm
but it is offered as the default file for the private key.
.Xr sshd 8
will read this file when a login attempt is made.
.It Pa $HOME/.ssh/id_rsa.pub
Contains the protocol version 2 RSA public key for authentication.
The contents of this file should be added to
.Pa $HOME/.ssh/authorized_keys2
on all machines
where you wish to log in using public key authentication.
There is no need to keep the contents of this file secret.
.El
.Sh AUTHORS
OpenSSH is a derivative of the original and free
ssh 1.2.12 release by Tatu Ylonen.
Aaron Campbell, Bob Beck, Markus Friedl, Niels Provos,
Theo de Raadt and Dug Song
removed many bugs, re-added newer features and
created OpenSSH.
Markus Friedl contributed the support for SSH
protocol versions 1.5 and 2.0.
.Sh SEE ALSO
.Xr ssh 1 ,
.Xr ssh-add 1 ,
.Xr ssh-agent 1 ,
.Xr sshd 8
Commit	Line	Data
c0ecc314	1	.\" $OpenBSD: ssh-keygen.1,v 1.36 2001/04/10 09:13:21 itojun Exp $
23c2a7a5	2	.\"
bf740959	3	.\" -- nroff --
bf740959	4	.\"
bf740959	5	.\" Author: Tatu Ylonen <ylo@cs.hut.fi>
bf740959	6	.\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
	7	.\" All rights reserved
	8	.\"
bcbf86ec	9	.\" As far as I am concerned, the code I have written for this software
	10	.\" can be used freely for any purpose. Any derived versions of this
	11	.\" software must be clearly marked as such, and if the derived work is
	12	.\" incompatible with the protocol description in the RFC file, it must be
	13	.\" called by a name other than "ssh" or "Secure Shell".
	14	.\"
	15	.\"
f3c7c613	16	.\" Copyright (c) 1999,2000 Markus Friedl. All rights reserved.
	17	.\" Copyright (c) 1999 Aaron Campbell. All rights reserved.
	18	.\" Copyright (c) 1999 Theo de Raadt. All rights reserved.
bcbf86ec	19	.\"
	20	.\" Redistribution and use in source and binary forms, with or without
	21	.\" modification, are permitted provided that the following conditions
	22	.\" are met:
	23	.\" 1. Redistributions of source code must retain the above copyright
	24	.\" notice, this list of conditions and the following disclaimer.
	25	.\" 2. Redistributions in binary form must reproduce the above copyright
	26	.\" notice, this list of conditions and the following disclaimer in the
	27	.\" documentation and/or other materials provided with the distribution.
bf740959	28	.\"
bcbf86ec	29	.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
	30	.\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
	31	.\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
	32	.\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
	33	.\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
	34	.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
	35	.\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
	36	.\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
	37	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
	38	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
bf740959	39	.\"
	40	.Dd September 25, 1999
	41	.Dt SSH-KEYGEN 1
	42	.Os
	43	.Sh NAME
	44	.Nm ssh-keygen
	45	.Nd authentication key generation
	46	.Sh SYNOPSIS
	47	.Nm ssh-keygen
fa08c86b	48	.Op Fl q
bf740959	49	.Op Fl b Ar bits
fa08c86b	50	.Op Fl t Ar type
bf740959	51	.Op Fl N Ar new_passphrase
bf740959	52	.Op Fl C Ar comment
7cd3766c	53	.Op Fl f Ar output_keyfile
bf740959	54	.Nm ssh-keygen
	55	.Fl p
	56	.Op Fl P Ar old_passphrase
	57	.Op Fl N Ar new_passphrase
f095fcc7	58	.Op Fl f Ar keyfile
bf740959	59	.Nm ssh-keygen
1d1ffb87	60	.Fl x
7cd3766c	61	.Op Fl f Ar input_keyfile
1d1ffb87	62	.Nm ssh-keygen
1d1ffb87	63	.Fl X
7cd3766c	64	.Op Fl f Ar input_keyfile
1d1ffb87	65	.Nm ssh-keygen
1d1ffb87	66	.Fl y
7cd3766c	67	.Op Fl f Ar input_keyfile
1d1ffb87	68	.Nm ssh-keygen
bf740959	69	.Fl c
	70	.Op Fl P Ar passphrase
	71	.Op Fl C Ar comment
f095fcc7	72	.Op Fl f Ar keyfile
	73	.Nm ssh-keygen
	74	.Fl l
aaf45d87	75	.Op Fl f Ar input_keyfile
	76	.Nm ssh-keygen
	77	.Fl B
7cd3766c	78	.Op Fl f Ar input_keyfile
f54651ce	79	.Sh DESCRIPTION
bf740959	80	.Nm
f54651ce	81	generates and manages authentication keys for
bf740959	82	.Xr ssh 1 .
1d1ffb87	83	.Nm
	84	defaults to generating an RSA key for use by protocols 1.3 and 1.5;
	85	specifying the
fa08c86b	86	.Fl t
b5c334cc	87	option allows you to create a key for use by protocol 2.0.
1d1ffb87	88	.Pp
bf740959	89	Normally each user wishing to use SSH
1d1ffb87	90	with RSA or DSA authentication runs this once to create the authentication
bf740959	91	key in
c0ecc314	92	.Pa $HOME/.ssh/identity ,
c0ecc314	93	.Pa $HOME/.ssh/id_dsa
1d1ffb87	94	or
c0ecc314	95	.Pa $HOME/.ssh/id_rsa .
1d1ffb87	96	Additionally, the system administrator may use this to generate host keys,
	97	as seen in
	98	.Pa /etc/rc .
bf740959	99	.Pp
bf740959	100	Normally this program generates the key and asks for a file in which
4fe2af09	101	to store the private key.
4fe2af09	102	The public key is stored in a file with the same name but
bf740959	103	.Dq .pub
4fe2af09	104	appended.
	105	The program also asks for a passphrase.
	106	The passphrase may be empty to indicate no passphrase
b5c334cc	107	(host keys must have an empty passphrase), or it may be a string of
4fe2af09	108	arbitrary length.
4fe2af09	109	Good passphrases are 10-30 characters long and are
bf740959	110	not simple sentences or otherwise easily guessable (English
bf740959	111	prose has only 1-2 bits of entropy per word, and provides very bad
4fe2af09	112	passphrases).
4fe2af09	113	The passphrase can be changed later by using the
bf740959	114	.Fl p
	115	option.
	116	.Pp
4fe2af09	117	There is no way to recover a lost passphrase.
4fe2af09	118	If the passphrase is
bf740959	119	lost or forgotten, you will have to generate a new key and copy the
	120	corresponding public key to other machines.
	121	.Pp
1d1ffb87	122	For RSA, there is also a comment field in the key file that is only for
4fe2af09	123	convenience to the user to help identify the key.
	124	The comment can tell what the key is for, or whatever is useful.
	125	The comment is initialized to
bf740959	126	.Dq user@host
	127	when the key is created, but can be changed using the
	128	.Fl c
	129	option.
	130	.Pp
1d1ffb87	131	After a key is generated, instructions below detail where the keys
	132	should be placed to be activated.
	133	.Pp
bf740959	134	The options are as follows:
	135	.Bl -tag -width Ds
	136	.It Fl b Ar bits
4fe2af09	137	Specifies the number of bits in the key to create.
	138	Minimum is 512 bits.
	139	Generally 1024 bits is considered sufficient, and key sizes
	140	above that no longer improve security but make things slower.
	141	The default is 1024 bits.
bf740959	142	.It Fl c
	143	Requests changing the comment in the private and public key files.
	144	The program will prompt for the file containing the private keys, for
	145	passphrase if the key has one, and for the new comment.
f095fcc7	146	.It Fl f
	147	Specifies the filename of the key file.
	148	.It Fl l
	149	Show fingerprint of specified private or public key file.
bf740959	150	.It Fl p
bf740959	151	Requests changing the passphrase of a private key file instead of
4fe2af09	152	creating a new private key.
4fe2af09	153	The program will prompt for the file
bf740959	154	containing the private key, for the old passphrase, and twice for the
	155	new passphrase.
	156	.It Fl q
	157	Silence
	158	.Nm ssh-keygen .
	159	Used by
	160	.Pa /etc/rc
	161	when creating a new key.
fa08c86b	162	.It Fl t Ar type
	163	Specifies the type of the key to create.
	164	The possible values are
	165	.Dq rsa1
	166	for protocol version 1 and
	167	.Dq rsa
	168	or
	169	.Dq dsa
	170	for protocol version 2.
	171	The default is
ed2166d8	172	.Dq rsa1 .
aaf45d87	173	.It Fl B
aaf45d87	174	Show the bubblebabble digest of specified private or public key file.
bf740959	175	.It Fl C Ar comment
	176	Provides the new comment.
	177	.It Fl N Ar new_passphrase
	178	Provides the new passphrase.
	179	.It Fl P Ar passphrase
	180	Provides the (old) passphrase.
1d1ffb87	181	.It Fl x
1d1ffb87	182	This option will read a private
d0c832f3	183	OpenSSH DSA format file and print a SSH2-compatible public key to stdout.
1d1ffb87	184	.It Fl X
94ec8c6b	185	This option will read a unencrypted
	186	SSH2-compatible private (or public) key file and
	187	print an OpenSSH compatible private (or public) key to stdout.
1d1ffb87	188	.It Fl y
1d1ffb87	189	This option will read a private
fa08c86b	190	OpenSSH format file and print an OpenSSH public key to stdout.
bf740959	191	.El
	192	.Sh FILES
	193	.Bl -tag -width Ds
bf740959	194	.It Pa $HOME/.ssh/identity
c0ecc314	195	Contains the protocol version 1 RSA authentication identity of the user.
4fe2af09	196	This file should not be readable by anyone but the user.
4fe2af09	197	It is possible to
bf740959	198	specify a passphrase when generating the key; that passphrase will be
4fe2af09	199	used to encrypt the private part of this file using 3DES.
4fe2af09	200	This file is not automatically accessed by
bf740959	201	.Nm
bf740959	202	but it is offered as the default file for the private key.
1d1ffb87	203	.Xr sshd 8
1d1ffb87	204	will read this file when a login attempt is made.
bf740959	205	.It Pa $HOME/.ssh/identity.pub
c0ecc314	206	Contains the protocol version 1 RSA public key for authentication.
4fe2af09	207	The contents of this file should be added to
bf740959	208	.Pa $HOME/.ssh/authorized_keys
bf740959	209	on all machines
4fe2af09	210	where you wish to log in using RSA authentication.
4fe2af09	211	There is no need to keep the contents of this file secret.
1d1ffb87	212	.It Pa $HOME/.ssh/id_dsa
c0ecc314	213	Contains the protocol version 2 DSA authentication identity of the user.
1d1ffb87	214	This file should not be readable by anyone but the user.
	215	It is possible to
	216	specify a passphrase when generating the key; that passphrase will be
	217	used to encrypt the private part of this file using 3DES.
	218	This file is not automatically accessed by
	219	.Nm
	220	but it is offered as the default file for the private key.
	221	.Xr sshd 8
	222	will read this file when a login attempt is made.
	223	.It Pa $HOME/.ssh/id_dsa.pub
c0ecc314	224	Contains the protocol version 2 DSA public key for authentication.
	225	The contents of this file should be added to
	226	.Pa $HOME/.ssh/authorized_keys2
	227	on all machines
	228	where you wish to log in using public key authentication.
	229	There is no need to keep the contents of this file secret.
	230	.It Pa $HOME/.ssh/id_rsa
	231	Contains the protocol version 2 RSA authentication identity of the user.
	232	This file should not be readable by anyone but the user.
	233	It is possible to
	234	specify a passphrase when generating the key; that passphrase will be
	235	used to encrypt the private part of this file using 3DES.
	236	This file is not automatically accessed by
	237	.Nm
	238	but it is offered as the default file for the private key.
	239	.Xr sshd 8
	240	will read this file when a login attempt is made.
	241	.It Pa $HOME/.ssh/id_rsa.pub
	242	Contains the protocol version 2 RSA public key for authentication.
1d1ffb87	243	The contents of this file should be added to
	244	.Pa $HOME/.ssh/authorized_keys2
	245	on all machines
fa08c86b	246	where you wish to log in using public key authentication.
1d1ffb87	247	There is no need to keep the contents of this file secret.
089fbbd2	248	.El
fa08c86b	249	.Sh AUTHORS
5fb622e4	250	OpenSSH is a derivative of the original and free
	251	ssh 1.2.12 release by Tatu Ylonen.
	252	Aaron Campbell, Bob Beck, Markus Friedl, Niels Provos,
	253	Theo de Raadt and Dug Song
	254	removed many bugs, re-added newer features and
	255	created OpenSSH.
	256	Markus Friedl contributed the support for SSH
	257	protocol versions 1.5 and 2.0.
bf740959	258	.Sh SEE ALSO
	259	.Xr ssh 1 ,
	260	.Xr ssh-add 1 ,
0c372277	261	.Xr ssh-agent 1 ,
a5ef76f1	262	.Xr sshd 8