example, the operator of `https://example.net' may wish to add an
additional servicename of `https://www.example.net' to the certificate
corresponding to the secret key used by the TLS-enabled web server.
-`add-name' or `n+' may be used in place of `add\-hostname'.
+`add-name' or `n+' may be used in place of `add\-servicename'.
.TP
.B revoke\-servicename SCHEME://HOSTNAME[:PORT] [KEYID]
Revoke a service-specific user ID from the specified certificate.
-`revoke-name' or `n\-' may be used in place of `revoke\-hostname'.
+`revoke-name' or `n\-' may be used in place of `revoke\-servicename'.
.TP
.B add\-revoker REVOKER_KEYID|FILE [KEYID]
Add a revoker to the specified OpenPGP certificate. The revoker can
/etc/monkeysphere/monkeysphere\-host.conf
System monkeysphere\-host config file.
.TP
-/var/lib/monkeysphere/host_keys.pub.gpg
-A world-readable copy of the host's OpenPGP public keyring in
-ASCII armored format. This includes the public key certificates,
-including all relevant self-signatures, of all host keys and host key
-revokers.
-.TP
-/var/lib/monkeysphere/host_keys.pub.fprs
-A world-readable file containing the OpenPGP fingerprints of all host
-keys, one per line.
+/var/lib/monkeysphere/host_keys.pub.pgp
+
+A world-readable copy of the host's OpenPGP certificates in ASCII
+armored format. This includes the certificates (including the public
+keys, servicename-based User IDs, and most recent relevant
+self-signatures) corresponding to every key used by
+Monkeysphere-enabled services on the host.
.TP
/var/lib/monkeysphere/host/
A locked directory (readable only by the superuser) containing copies
projects / monkeysphere.git / blobdiff