merge of 00b67a11e33c3ed390556805ed6d1078528bee70

and 42c7bdf484b16e279a0f68604a4346d8fa5ed70c --HG-- extra : convert_revision : edf8bd9174de26de093d842aa4bd9cb43c2e257b
2025-06-26 18:17:32 +00:00 · 2004-09-04 14:19:17 +00:00
parent ee23b01f0b
commit f3c8bb2bce
5 changed files with 46 additions and 25 deletions
--- a/17
+++ b/17
@@ -17,7 +17,7 @@ matt@ucc.asn.au
 In the absence of detailed documentation, some notes follow:
 ============================================================================

-Public key auth:
+Server public key auth:

 You can use ~/.ssh/authorized_keys in the same way as with OpenSSH, just put
 the key entries in that file. They should be of the form:
@@ -32,6 +32,21 @@ OpenSSH sshd manpage, and will not allow a login for these keys.

 ============================================================================

+Client public key auth:
+
+Dropbear can do public key auth as a client, but you will have to convert
+OpenSSH style keys to Dropbear format, or use dropbearkey to create them.
+
+If you have an OpenSSH-style private key ~/.ssh/id_rsa, you need to do:
+
+dropbearconvert openssh dropbear ~/.ssh/id_rsa  ~/.ssh/id_rsa.db
+dbclient -i ~/.ssh/id_rsa.db <hostname>
+
+Currently encrypted keys aren't supported, neither is agent forwarding. At some
+stage both hopefully will be.
+
+============================================================================
+
 If you want to get the public-key portion of a Dropbear private key, look at
 dropbearkey's '-y' option.