ACIL FM
Dark
Refresh
Current DIR:
/usr/share/doc/openssh
/
usr
share
doc
openssh
Upload
Zip Selected
Delete Selected
Pilih semua
Nama
Ukuran
Permission
Aksi
ChangeLog
441.43 MB
chmod
View
DL
Edit
Rename
Delete
CREDITS
5.37 MB
chmod
View
DL
Edit
Rename
Delete
OVERVIEW
6.18 MB
chmod
View
DL
Edit
Rename
Delete
PROTOCOL
21.88 MB
chmod
View
DL
Edit
Rename
Delete
PROTOCOL.agent
243 B
chmod
View
DL
Edit
Rename
Delete
PROTOCOL.certkeys
12.83 MB
chmod
View
DL
Edit
Rename
Delete
PROTOCOL.chacha20poly1305
4.52 MB
chmod
View
DL
Edit
Rename
Delete
PROTOCOL.cve-2023-48795
20.57 MB
chmod
View
DL
Edit
Rename
Delete
PROTOCOL.key
1.58 MB
chmod
View
DL
Edit
Rename
Delete
PROTOCOL.krl
5.13 MB
chmod
View
DL
Edit
Rename
Delete
PROTOCOL.mux
8.87 MB
chmod
View
DL
Edit
Rename
Delete
PROTOCOL.sshsig
3.34 MB
chmod
View
DL
Edit
Rename
Delete
PROTOCOL.u2f
10.82 MB
chmod
View
DL
Edit
Rename
Delete
README
2.08 MB
chmod
View
DL
Edit
Rename
Delete
README.dns
1.58 MB
chmod
View
DL
Edit
Rename
Delete
README.platform
3.96 MB
chmod
View
DL
Edit
Rename
Delete
README.privsep
2.16 MB
chmod
View
DL
Edit
Rename
Delete
README.tun
4.78 MB
chmod
View
DL
Edit
Rename
Delete
TODO
2.54 MB
chmod
View
DL
Edit
Rename
Delete
Edit file: /usr/share/doc/openssh/README.dns
How to verify host keys using OpenSSH and DNS --------------------------------------------- OpenSSH contains support for verifying host keys using DNS as described in https://tools.ietf.org/html/rfc4255. The document contains very brief instructions on how to use this feature. Configuring DNS is out of the scope of this document. (1) Server: Generate and publish the DNS RR To create a DNS resource record (RR) containing a fingerprint of the public host key, use the following command: ssh-keygen -r hostname -f keyfile -g where "hostname" is your fully qualified hostname and "keyfile" is the file containing the public host key file. If you have multiple keys, you should generate one RR for each key. In the example above, ssh-keygen will print the fingerprint in a generic DNS RR format parsable by most modern name server implementations. If your nameserver has support for the SSHFP RR you can omit the -g flag and ssh-keygen will print a standard SSHFP RR. To publish the fingerprint using the DNS you must add the generated RR to your DNS zone file and sign your zone. (2) Client: Enable ssh to verify host keys using DNS To enable the ssh client to verify host keys using DNS, you have to add the following option to the ssh configuration file ($HOME/.ssh/config or /etc/ssh/ssh_config): VerifyHostKeyDNS yes Upon connection the client will try to look up the fingerprint RR using DNS. If the fingerprint received from the DNS server matches the remote host key, the user will be notified. Jakob Schlyter Wesley Griffin $OpenBSD: README.dns,v 1.2 2003/10/14 19:43:23 jakob Exp $
Simpan
Batal
Isi Zip:
Unzip
Create
Buat Folder
Buat File
Terminal / Execute
Run
Chmod Bulk
All File
All Folder
All File dan Folder
Apply