changeset 1533:2e9b6d9c7e7d

clarify that -r skips default hostkeys
author Matt Johnston <matt@ucc.asn.au>
date Thu, 22 Feb 2018 21:57:47 +0800
parents 3616ec41d03d
children b918ad1c5b25 a55a6901a181
files dropbear.8
diffstat 1 files changed, 4 insertions(+), 2 deletions(-) [+]
line wrap: on
line diff
--- a/dropbear.8	Thu Feb 22 21:55:15 2018 +0800
+++ b/dropbear.8	Thu Feb 22 21:57:47 2018 +0800
@@ -148,8 +148,10 @@
 Host key files are read at startup from a standard location, by default
 /etc/dropbear/dropbear_dss_host_key, /etc/dropbear/dropbear_rsa_host_key, and 
 /etc/dropbear/dropbear_ecdsa_host_key
-or specified on the commandline with -r. These are of the form generated
-by dropbearkey. The -R option can be used to automatically generate keys
+
+If the -r command line option is specified the default files are not loaded.
+Host key files are of the form generated by dropbearkey. 
+The -R option can be used to automatically generate keys
 in the default location - keys will be generated after startup when the first
 connection is established. This had the benefit that the system /dev/urandom
 random number source has a better chance of being securely seeded.