xref: /freebsd/usr.sbin/keyserv/keyserv.8 (revision 9336e0699bda8a301cd2bfa37106b6ec5e32012e)
1.\" @(#)keyserv.1m 1.21 93/07/14 SMI; from SVr4
2.\"macro stdmacro
3.\" Copyright 1989 AT&T
4.\" @(#)keyserv.8c 1.8 89/03/29 SMI;
5.\" $FreeBSD$
6.\".TH KEYSERV 8C "9 September 1987"
7.Dd September 14, 1992
8.Dt KEYSERV 8
9.Os
10.Sh NAME
11.Nm keyserv
12.Nd server for storing private encryption keys
13.Sh SYNOPSIS
14.Nm
15.Op Fl d
16.Op Fl D
17.Op Fl n
18.Op Fl p Ar path
19.Op Fl v
20.Sh DESCRIPTION
21The
22.Nm
23utility is a daemon that is used for storing the
24private encryption keys of each
25user logged into the system.
26These encryption keys are used for accessing
27secure network services such as secure
28.Tn NFS .
29.Pp
30Normally, root's key is read from the file
31.Pa /etc/.rootkey
32when the daemon is started.
33This is useful during power-fail reboots
34when no one is around to type a password.
35.Pp
36If a client with no secret key calls
37.Nm ,
38then the key of user
39.Em nobody
40is used instead as the default key.
41.Pp
42The following options are available:
43.Bl -tag -width indent
44.It Fl d
45Disable the use of default keys for
46.Em nobody .
47.It Fl D
48Run in debugging mode and log all requests to
49.Nm .
50.It Fl n
51Root's secret key is not read from
52.Pa /etc/.rootkey .
53Instead,
54.Nm
55prompts the user for the password to decrypt
56root's key stored in the
57.Pa /etc/publickey
58database and then stores the decrypted key in
59.Pa /etc/.rootkey
60for future use.
61This option is useful if the
62.Pa /etc/.rootkey
63file ever gets out of date or corrupted.
64.It Fl p Ar path
65Specify where to search for
66.Pa libdes.so.3 .
67Default is
68.Pa /usr/lib .
69.It Fl v
70Display status of DES support (enabled/disabled).
71.El
72.Sh FILES
73.Bl -tag -width /usr/lib/libdes.so.3 -compact
74.It Pa /etc/.rootkey
75.It Pa /usr/lib/libdes.so.3
76.El
77.Sh "SEE ALSO"
78.Xr keylogin 1 ,
79.Xr keylogout 1 ,
80.Xr publickey 5
81