auth(8): document authsrv -N flag
This commit is contained in:
cinap_lenrek
parent
acd4a952bd
commit
2aa42aee31
1 changed files with 9 additions and 2 deletions
|
|
@ -23,6 +23,7 @@ changeuser, convkeys, printnetkey, status, enable, disable, authsrv, guard.srv,
|
||||||
.I user
|
.I user
|
||||||
.PP
|
.PP
|
||||||
.B auth/authsrv
|
.B auth/authsrv
|
||||||
|
.RB [ -N ]
|
||||||
.PP
|
.PP
|
||||||
.B auth/guard.srv
|
.B auth/guard.srv
|
||||||
.PP
|
.PP
|
||||||
|
|
@ -180,14 +181,20 @@ Netkey keys for individual users.
|
||||||
.I Authsrv
|
.I Authsrv
|
||||||
is the program, run only on the authentication server, that handles ticket requests
|
is the program, run only on the authentication server, that handles ticket requests
|
||||||
on TCP port 567.
|
on TCP port 567.
|
||||||
It is started
|
It is started by an incoming call to the server
|
||||||
by an incoming call to the server
|
|
||||||
requesting a conversation ticket; its standard input and output
|
requesting a conversation ticket; its standard input and output
|
||||||
are the network connection.
|
are the network connection.
|
||||||
.I Authsrv
|
.I Authsrv
|
||||||
executes the authentication server's end of the appropriate protocol as
|
executes the authentication server's end of the appropriate protocol as
|
||||||
described in
|
described in
|
||||||
.IR authsrv (6).
|
.IR authsrv (6).
|
||||||
|
The
|
||||||
|
.B -N
|
||||||
|
flag disables legacy bruteforceable DES-encrypted tickes as used by the
|
||||||
|
.B p9sk1
|
||||||
|
protocol, forcing the use of new
|
||||||
|
.B dp9ik
|
||||||
|
password authenticated key exchange.
|
||||||
.PP
|
.PP
|
||||||
.I Guard.srv
|
.I Guard.srv
|
||||||
is similar. It is called whenever a foreign (e.g. Unix) system wants
|
is similar. It is called whenever a foreign (e.g. Unix) system wants
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue