diff dropbear.8 @ 1533:2e9b6d9c7e7d

clarify that -r skips default hostkeys
author Matt Johnston <matt@ucc.asn.au>
date Thu, 22 Feb 2018 21:57:47 +0800
parents a3a96dbf9a58
children d32bcb5c557d
line wrap: on
line diff
--- a/dropbear.8	Thu Feb 22 21:55:15 2018 +0800
+++ b/dropbear.8	Thu Feb 22 21:57:47 2018 +0800
@@ -148,8 +148,10 @@
 Host key files are read at startup from a standard location, by default
 /etc/dropbear/dropbear_dss_host_key, /etc/dropbear/dropbear_rsa_host_key, and 
 /etc/dropbear/dropbear_ecdsa_host_key
-or specified on the commandline with -r. These are of the form generated
-by dropbearkey. The -R option can be used to automatically generate keys
+
+If the -r command line option is specified the default files are not loaded.
+Host key files are of the form generated by dropbearkey. 
+The -R option can be used to automatically generate keys
 in the default location - keys will be generated after startup when the first
 connection is established. This had the benefit that the system /dev/urandom
 random number source has a better chance of being securely seeded.