X-Git-Url: https://codewiz.org/gitweb?a=blobdiff_plain;ds=sidebyside;f=man%2Fman1%2Fmonkeysphere-ssh-proxycommand.1;h=65edd0be528a0a41546fe7eb52669576c18f28ba;hb=d295c107d3274b180e3639196031a09e79872881;hp=5a84dc5edf9ab9e74e34077d5b836af5f7f9d7f0;hpb=b19edbe67505aefc755670af4aae0b9ce4269544;p=monkeysphere.git diff --git a/man/man1/monkeysphere-ssh-proxycommand.1 b/man/man1/monkeysphere-ssh-proxycommand.1 index 5a84dc5..65edd0b 100644 --- a/man/man1/monkeysphere-ssh-proxycommand.1 +++ b/man/man1/monkeysphere-ssh-proxycommand.1 @@ -6,7 +6,7 @@ monkeysphere-ssh-proxycommand \- MonkeySphere ssh ProxyCommand script .SH DESCRIPTION -\fBmonkeysphere-ssh-proxy\fP is an ssh proxy command that can be used +\fBmonkeysphere-ssh-proxycommand\fP is an ssh proxy command that can be used to trigger a monkeysphere update of the ssh known_hosts file for a host that is being connected to with ssh. This works by updating the known_hosts file for the host first, before an attempted connection to @@ -37,17 +37,17 @@ connection to the host itself. .SH KEYSERVER CHECKING The proxy command has a fairly nuanced policy for when keyservers are -queried when processing host. If the host userID is not found in +queried when processing a host. If the host userID is not found in either the user's keyring or in the known_hosts file, then the keyserver is queried for the host userID. If the host userID is found in the user's keyring, then the keyserver is not checked. This -assumes that the keyring is kept up-to-date, in a cron job or the -like, so that revocations are properly handled. If the host userID is -not found in the user's keyring, but the host is listed in the -known_hosts file, then the keyserver is not checked. This last policy -might change in the future, possibly by adding a deferred check, so -that hosts that go from non-monkeysphere-enabled to -monkeysphere-enabled will be properly checked. +assumes that the keyring is kept up-to-date, in a cronjob or the like, +so that revocations are properly handled. If the host userID is not +found in the user's keyring, but the host is listed in the known_hosts +file, then the keyserver is not checked. This last policy might +change in the future, possibly by adding a deferred check, so that +hosts that go from non-monkeysphere-enabled to monkeysphere-enabled +will be properly checked. .SH ENVIRONMENT VARIABLES @@ -66,6 +66,7 @@ Written by Jameson Rollins .SH SEE ALSO .BR monkeysphere (1), +.BR monkeysphere (7), .BR ssh (1), .BR ssh_config (5), .BR netcat (1),