projects
/
monkeysphere.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
tweaks to the monkeysphere-host man page
[monkeysphere.git]
/
man
/
man8
/
monkeysphere-authentication.8
diff --git
a/man/man8/monkeysphere-authentication.8
b/man/man8/monkeysphere-authentication.8
index a687f4efb10a06d40bf6f86faeb5ab8298902aee..d891edaa9af7d92973bf0f0eee9f1aaf3e03efe2 100644
(file)
--- a/
man/man8/monkeysphere-authentication.8
+++ b/
man/man8/monkeysphere-authentication.8
@@
-1,4
+1,4
@@
-.TH MONKEYSPHERE-
SERVER "8" "March 2009" "monkeysphere" "User
Commands"
+.TH MONKEYSPHERE-
AUTHENTICATION "8" "January 2010" "monkeysphere" "System
Commands"
.SH NAME
.SH NAME
@@
-11,9
+11,9
@@
monkeysphere\-authentication - Monkeysphere authentication admin tool.
.SH DESCRIPTION
\fBMonkeysphere\fP is a framework to leverage the OpenPGP Web of Trust
.SH DESCRIPTION
\fBMonkeysphere\fP is a framework to leverage the OpenPGP Web of Trust
-(WoT) for
OpenSSH authentication. OpenPGP keys are tracked via GnuPG,
-and added to the authorized_keys and known_hosts files used by OpenSSH
-
for
connection authentication.
+(WoT) for
key-based authentication. OpenPGP keys are tracked via
+GnuPG, and added to the authorized_keys files used by OpenSSH for
+connection authentication.
\fBmonkeysphere\-authentication\fP is a Monkeysphere server admin
utility for configuring and managing SSH user authentication through
\fBmonkeysphere\-authentication\fP is a Monkeysphere server admin
utility for configuring and managing SSH user authentication through
@@
-165,6
+165,11
@@
raw authorized_keys file. %h gets replaced with the user's homedir,
.TP
MONKEYSPHERE_PROMPT
If set to `false', never prompt the user for confirmation. (true)
.TP
MONKEYSPHERE_PROMPT
If set to `false', never prompt the user for confirmation. (true)
+.TP
+MONKEYSPHERE_STRICT_MODES
+If set to `false', ignore too-loose permissions on known_hosts,
+authorized_keys, and authorized_user_ids files. NOTE: setting this to
+false may expose users to abuse by other users on the system. (true)
.SH FILES
.SH FILES