summaryrefslogtreecommitdiff
path: root/man/man1/openpgp2ssh.1
blob: 27bcb15def1964631c0c5386dcd733299f10af88 (plain) 
    

  1. .\"  -*- nroff -*-
    2. 

  2. .Dd $Mdocdate: June 11, 2008 $
    3. 

  3. .Dt OPENPGP2SSH 1
    4. 

  4. .Os
    5. 

  5. .Sh NAME
    6. 

  6. openpgp2ssh
    7. 

  7. .Nd translate OpenPGP keys to SSH keys
    8. 

  8. .Sh SYNOPSIS
    9. 

  9. .Nm openpgp2ssh < mykey.gpg 
    10. 

  10. 

  11. .Nm gpg --export $KEYID | openpgp2ssh $KEYID
    12. 

  12. 

  13. .Nm gpg --export-secret-key $KEYID | openpgp2ssh $KEYID
    14. 

  14. .Sh DESCRIPTION
    15. 

  15. openpgp2ssh takes OpenPGP-formatted RSA and DSA keys on standard
    16. 

  16. input, and spits out the requested equivalent SSH-style key on
    17. 

  17. standard output.
    18. 

  18. 

  19. If the data on standard input contains only a single key, you can
    20. 

  20. invoke openpgp2ssh without arguments.  If the data on standard input
    21. 

  21. contains multiple keys (e.g. a primary key and associated subkeys),
    22. 

  22. you must specify a specific OpenPGP keyid (e.g. CCD2ED94D21739E9) or
    23. 

  23. fingerprint as the first argument to indicate which key to export.
    24. 

  24. The keyid must be at least 8 hex characters.
    25. 

  25. 

  26. If the input contains an OpenPGP RSA or DSA public key, it will be
    27. 

  27. converted to the OpenSSH-style single-line keystring, prefixed with
    28. 

  28. the key type.  This format is suitable (with minor alterations) for
    29. 

  29. insertion into known_hosts files and authorized_keys files.
    30. 

  30. 

  31. If the input contains an OpenPGP RSA or DSA secret key, it will be
    32. 

  32. converted to the equivalent PEM-encoded private key.
    33. 

  33. 

  34. Note that the keys output from this process are stripped of all
    35. 

  35. identifying information, including certifications, self-signatures,
    36. 

  36. etc.
    37. 

  37. 

  38. openpgp2ssh is part of the
    39. 

  39. .Xr monkeysphere 1
    40. 

  40. framework for providing a PKI for SSH.
    41. 

  41. .Sh EXAMPLES
    42. 

  42. .Nm gpg --export-secret-key $KEYID | openpgp2ssh $KEYID | ssh-add -c /dev/stdin
    43. 

  43. 

  44. This pushes the secret key into the active
    45. 

  45. .Xr ssh-agent 1 . 
    46. 

  46. Tools (such as 
    47. 

  47. .Xr ssh 1 )
    48. 

  48. which know how to talk to the 
    49. 

  49. .Xr ssh-agent 1
    50. 

  50. can now rely on the key.
    51. 

  51. .Sh AUTHOR
    52. 

  52. openpgp2ssh and this man page were written by Daniel Kahn Gillmor
    53. 

  53. <dkg@fifthhorseman.net>.
    54. 

  54. .Sh BUGS
    55. 

  55. openpgp2ssh currently only exports into formats used by the OpenSSH.
    56. 

  56. It should support other key output formats, such as those used by
    57. 

  57. lsh(1) and putty(1).
    58. 

  58. 

  59. Secret key output is currently not passphrase-protected.
    60. 

  60. 

  61. This program is not yet implemented, and this man page currently only
    62. 

  62. describes expected functionality.
    63. 

  63. .Sh SEE ALSO
    64. 

  64. .Xr monkeysphere 1 ,
    65. 

  65. .Xr ssh 1 ,
    66. 

  66. .Xr monkeysphere-server 8
    67.
generated by cgit v1.2.3 (git 2.46.0) at 2025-01-28 22:05:35 +0000