- OpenBSD CVS updates:

[openssh.git] / README.openssh2

diff --git a/README.openssh2 b/README.openssh2
index 8bdf8bf079144f49eb1c4682af7234403e78ca1e..18722b3ca6586de41b740dbea91771c033142326 100644 (file)
--- a/README.openssh2
+++ b/README.openssh2
@@ -1,5 +1,14 @@
 $Id$
 
+howto:
+       1) generate server key:
+               $ umask 077
+               $ openssl dsaparam 1024 -out dsa1024.pem
+               $ openssl gendsa -out /etc/ssh_dsa_key dsa1024.pem -rand /dev/arandom
+       2) enable ssh2:
+               server: add 'Protocol 2,1' to /etc/sshd_config
+               client: ssh -o 'Protocol 2,1', or add to .ssh/config
+
 works:
        secsh-transport: works w/o rekey
                proposal exchange, i.e. different enc/mac/comp per direction
@@ -11,11 +20,7 @@ works:
                tcp-forwarding: -L works
        dss: verification works,
                key database in ~/.ssh/known_hosts with bits == 0 hack
-       dss: signature works, keygen w/ openssl:
-               $ umask 077
-               $ openssl dsaparam 1024 -out dsa1024.pem
-               $ openssl gendsa -out /etc/ssh_dsa_key dsa1024.pem -rand /dev/arandom
-               start sshd with '-2' flag
+       dss: signature works, keygen w/ openssl
        client interops w/ sshd2, lshd
        server interops w/ ssh2, lsh, ssh.com's Windows client, SecureCRT
        server supports multiple concurrent sessions (e.g. with SSH.com Windows client)