RepoMirrors/openssh
1
0
Fork 0
mirror of git://anongit.mindrot.org/openssh.git synced 2025-03-11 09:17:38 +00:00
Code Issues Packages Projects Releases Wiki Activity

upstream: document the "no-touch-required" certificate extension;

Browse Source 
ok markus, feedback deraadt

OpenBSD-Commit-ID: 47640122b13f825e9c404ea99803b2372246579d
This commit is contained in:
djm@openbsd.org 2019-11-25 00:57:51 +00:00 committed by Damien Miller
parent 26cb128b31
commit 664deef95a
1 changed files with 8 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
PROTOCOL.certkeys
View File

@ -280,6 +280,13 @@ their data fields are:
Name Format Description Name Format Description
----------------------------------------------------------------------------- -----------------------------------------------------------------------------
no-presence-required empty Flag indicating that signatures made
with this certificate need not assert
user presence. This option only make
sense for the U2F/FIDO security key
types that support this feature in
their signature formats.
permit-X11-forwarding empty Flag indicating that X11 forwarding permit-X11-forwarding empty Flag indicating that X11 forwarding
should be permitted. X11 forwarding will should be permitted. X11 forwarding will
be refused if this option is absent. be refused if this option is absent.
@ -304,4 +311,4 @@ permit-user-rc empty Flag indicating that execution of
of this script will not be permitted if of this script will not be permitted if
this option is not present. this option is not present.
$OpenBSD: PROTOCOL.certkeys,v 1.16 2018/10/26 01:23:03 djm Exp $ $OpenBSD: PROTOCOL.certkeys,v 1.17 2019/11/25 00:57:51 djm Exp $