summaryrefslogtreecommitdiff
path: root/man/man8
diff options
context:
space:
mode:
authorJameson Graef Rollins <jrollins@phys.columbia.edu>2008-06-21 20:32:33 -0400
committerJameson Graef Rollins <jrollins@phys.columbia.edu>2008-06-21 20:32:33 -0400
commitd263f30d4fe03d1976ecd899ba2482cb870c2a4d (patch)
tree579896c653a48844f5ed874240b4e333e58abadf /man/man8
parent6a202af09f5a1bc47069e5e36dbdfa3f6b392a5b (diff)
Improved gen-key function for server.
Update TODO.
Diffstat (limited to 'man/man8')
-rw-r--r--man/man8/monkeysphere-server.822
1 files changed, 22 insertions, 0 deletions
diff --git a/man/man8/monkeysphere-server.8 b/man/man8/monkeysphere-server.8
index 3073adc..2b5af5e 100644
--- a/man/man8/monkeysphere-server.8
+++ b/man/man8/monkeysphere-server.8
@@ -51,6 +51,25 @@ in place of `trust-keys'.
Output a brief usage summary. `h' or `?' may be used in place of
`help'.
+.SH SETUP
+
+In order to start using the monkeysphere, there are a couple of things
+you need to do first. The first is to generate an OpenPGP key for the
+server and convert that key to an ssh key that can be used by ssh for
+host authentication. To do this, run the "gen-key" subcommand. Once
+that is done, publish the key to a keyserver with "publish-key"
+subcommand. Finally, you need to modify the sshd_config to tell sshd
+where the new server host key:
+
+HostKey /etc/monkeysphere/ssh_host_rsa_key
+
+If the server will also handle user authentication through
+monkeysphere-generated authorized_keys files, set the following:
+
+AuthorizedKeysFile /var/cache/monkeysphere/authorized_keys/%u
+
+Once those changes are made, restart the ssh server.
+
.SH FILES
.TP
@@ -63,6 +82,9 @@ System-wide monkeysphere config file.
/etc/monkeysphere/gnupg
Monkeysphere GNUPG home directory.
.TP
+/etc/monkeysphere/ssh_host_rsa_key
+Copy of the host's private key in ssh format, suitable for use by sshd.
+.TP
/etc/monkeysphere/authorized_user_ids/USER
Server maintained authorized_user_ids files for users.
.TP