docs/116879: [patch] ssh-keygen not clear whether authorized_keys is file or dir

Warren Block wblock at wonkity.com
Wed Oct 3 19:50:02 UTC 2007 

>Number:         116879
>Category:       docs
>Synopsis:       [patch] ssh-keygen not clear whether authorized_keys is file or dir
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-doc
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          doc-bug
>Submitter-Id:   current-users
>Arrival-Date:   Wed Oct 03 19:50:01 GMT 2007
>Closed-Date:
>Last-Modified:
>Originator:     Warren Block
>Release:        6.2-STABLE
>Organization:
>Environment:
FreeBSD speedy.wonkity.com 6.2-STABLE FreeBSD 6.2-STABLE #0: Fri Sep 28 13:51:02 MDT 2007     root at speedy.wonkity.com:/usr/obj/usr/src/sys/SPEEDY  i386
>Description:
The Handbook OpenSSH/ssh-keygen section says

"The public key must be placed in ~/.ssh/authorized_keys of the remote machine in order for the setup to work. Similarly, RSA version 1 public keys should be placed in ~/.ssh/authorized_keys."

The usage of "in" is ambiguous, and can be read as "place the key file in a directory called authorized_keys".
>How-To-Repeat:
Read the OpenSSH/ssh-keygen section of the Handbook.
>Fix:
Apply the attached patch.

Patch attached with submission follows:

--- chapter.sgml.orig	2007-10-03 12:38:49.000000000 -0600
+++ chapter.sgml	2007-10-03 13:36:46.000000000 -0600
@@ -4221,11 +4221,11 @@
         <filename>~/.ssh/id_rsa</filename>, whereas the public key is
         stored in <filename>~/.ssh/id_dsa.pub</filename> or
         <filename>~/.ssh/id_rsa.pub</filename>, respectively for DSA and
-        RSA key types.  The public key must be placed in
-        <filename>~/.ssh/authorized_keys</filename> of the remote
-        machine in order for the setup to work.  Similarly, RSA version
-        1 public keys should be placed in
-        <filename>~/.ssh/authorized_keys</filename>.</para>
+        RSA key types.  The public key must be placed in the
+        <filename>~/.ssh/authorized_keys</filename> file of the remote
+        machine in order for the setup to work.  Both DSA and RSA version
+        1 public keys may be placed in the
+        <filename>~/.ssh/authorized_keys</filename> file.</para>
 
       <para>This will allow connection to the remote machine based upon
         SSH keys instead of passwords.</para>


>Release-Note:
>Audit-Trail:
>Unformatted:

More information about the freebsd-doc mailing list