Manual page for the keyinit command
KEYINIT(1) User Commands KEYINIT(1) NAME keyinit - Change password or add user to S/Key authentica- tion system. SYNOPSIS keyinit [-s] [<user ID>] DESCRIPTION keyinit initializes the system so you can use S/Key one-time passwords to login. The program will ask you to enter a secret pass phrase; enter a phrase of several words in response. After the S/Key database has been updated you can login using either your regular UNIX password or using S/Key one-time passwords. keyinit requires you to type a secret password, so it should be used only on a secure terminal. For example, on the con- sole of a workstation. If you are using keyinit while logged in over an untrusted network, follow the instructions given below with the -s option. REMOTE LOGIN PROCEDURE When logging in from another machine you can avoid typing a real password over the network, by typing your S/Key pass phrase to the key command on the local machine: the program will respond with the one-time password that you should use to log into the remote machine. This is most conveniently done with cut-and-paste operations using a mouse. Alterna- tively, you can pre-compute one-time passwords using the key command and carry them with you on a piece of paper. KEYINIT OPTIONS -s Set secure mode where the user is expected to have used a secure machine to generate the first one time password. Without the -s the system will assume you are direct connected over secure communications and prompt you for your secret password. The - s option also allows one to set the seed and count for complete control of the parameters. You can use keyinit -s in compination with the key command to set the seed and count if you do not like the defaults. To do this run keyinit in one window and put in your count and seed then run key in another window to generate the correct 6 english words for that count and seed. You can then "cut" and "paste" them or copy them into the keyinit window.the ID for the user to be changed/added DIAGNOSTICS FILES /etc/skeykeys, data base of information for S/Key system. BUGS SEE ALSO skey(1), key(1), keysu(1), keyinfo(1) AUTHOR Command by Phil Karn, Neil M. Haller, John S. Walden