Man page or keyword search:   man All Sections 1 - General Commands 2 - System Calls 3 - Subroutines, Functions 4 - Special Files 5 - File Formats 6 - Games and Screensavers 7 - Macros and Conventions 8 - Maintenence Commands 9 - Kernel Interface New Commands Server 4.4BSD AIX Alpinelinux Archlinux Aros BSDOS BSDi Bifrost CentOS Cygwin Darwin Debian DigitalUNIX DragonFly ElementaryOS Fedora FreeBSD Gentoo GhostBSD HP-UX Haiku Hurd IRIX Inferno JazzOS Kali Knoppix LinuxMint MacOSX Mageia Mandriva Manjaro Minix MirBSD NeXTSTEP NetBSD OPENSTEP OSF1 OpenBSD OpenDarwin OpenIndiana OpenMandriva OpenServer OpenSuSE OpenVMS Oracle PC-BSD Peanut Pidora Plan9 QNX Raspbian RedHat Scientific Slackware SmartOS Solaris SuSE SunOS Syllable Tru64 UNIXv7 Ubuntu Ultrix UnixWare Xenix YellowDog aLinux   11362 pages apropos Keyword Search (all sections) Output format html ascii pdf view pdf save postscript

SKEY(5)			  OpenBSD Programmer's Manual		       SKEY(5)

NAME
     skey - one-time password user database

DESCRIPTION
     The /etc/skey directory contains user records for the S/Key one-time
     password authentication system.

     Records take the form of files within /etc/skey where each file is named
     for the user whose record it contains.  For example, /etc/skey/root would
     hold root's S/Key record.

     The mode for /etc/skey should be 01730 and it should be owned by root and
     group auth.  Individual records within /etc/skey should be owned by the
     user they describe and be mode 0600.  To access S/Key records, a process
     must run as group auth.

     Each record consists of five lines:

     1.	  The name of the user the record describes.  This should be the same
	  as the name of the file.

     2.	  The hash type used for this entry; one of md4, md5, sha1, or rmd160.
	  The default is md5.

     3.	  The sequence number.	This is a decimal number between one and one
	  thousand.  Each time the user authenticates via S/Key this number is
	  decremented by one.

     4.	  A seed used along with the sequence number and the six S/Key words
	  to compute the value.

     5.	  The value expected from the crunching of the user's seed, sequence
	  number and the six S/Key words.  When the result matches this value,
	  authentication is considered to have been successful.

FILES
     /etc/skey

EXAMPLES
     Here is a sample /etc/skey file for root:

	   root
	   md5
	   99
	   obsd36521
	   1f4359a3764b675d

SEE ALSO
     skey(1), skeyinit(1), skey(3)

OpenBSD 4.9			 May 31, 2007			   OpenBSD 4.9

Vote for polarhome