auth(8): document authsrv -N flag
This commit is contained in:
cinap_lenrek
parent
acd4a952bd
commit
2aa42aee31
1 changed files with 9 additions and 2 deletions
|
|
@ -23,6 +23,7 @@ changeuser, convkeys, printnetkey, status, enable, disable, authsrv, guard.srv,
|
|||
.I user
|
||||
.PP
|
||||
.B auth/authsrv
|
||||
.RB [ -N ]
|
||||
.PP
|
||||
.B auth/guard.srv
|
||||
.PP
|
||||
|
|
@ -180,14 +181,20 @@ Netkey keys for individual users.
|
|||
.I Authsrv
|
||||
is the program, run only on the authentication server, that handles ticket requests
|
||||
on TCP port 567.
|
||||
It is started
|
||||
by an incoming call to the server
|
||||
It is started by an incoming call to the server
|
||||
requesting a conversation ticket; its standard input and output
|
||||
are the network connection.
|
||||
.I Authsrv
|
||||
executes the authentication server's end of the appropriate protocol as
|
||||
described in
|
||||
.IR authsrv (6).
|
||||
The
|
||||
.B -N
|
||||
flag disables legacy bruteforceable DES-encrypted tickes as used by the
|
||||
.B p9sk1
|
||||
protocol, forcing the use of new
|
||||
.B dp9ik
|
||||
password authenticated key exchange.
|
||||
.PP
|
||||
.I Guard.srv
|
||||
is similar. It is called whenever a foreign (e.g. Unix) system wants
|
||||
|
|
|
|||
Loading…
Reference in a new issue