From: Martin Zobel-Helas <zobel@debian.org>
Date: Sun, 31 Jan 2010 10:49:33 +0000 (+0100)
Subject: document "allowed_hosts" function
X-Git-Tag: release-0.3.33~23
X-Git-Url: https://git.adam-barratt.org.uk/?p=mirror%2Fuserdir-ldap-cgi.git;a=commitdiff_plain;h=894c027fbde4b3e747d469e91a329bda76f9c150

document "allowed_hosts" function
---

diff --git a/html/doc-mail.wml b/html/doc-mail.wml
index e711989..6ad70d7 100644
--- a/html/doc-mail.wml
+++ b/html/doc-mail.wml
@@ -108,6 +108,17 @@ which will set the authentication key to the identity you are using.
 
 Multiple keys per user are supported, but they must all be sent at once.
 
+Keys can be exported to specific machines only be prepending
+<b>allowed_hosts=$fqdn,$fqdn2</b> to the specific key. The allowed machines
+must only be separeted by a comma.
+
+<i>Example:</i>
+<pre>
+# cat .ssh/debian-machines.pub
+allowed_hosts=ravel.debian.org,gluck.debian.org ssh-rsa AAAAB3Nz..mOX/JQ== user@machine
+ssh-rsa AAAAB3Nz..uD0khQ== user@machine
+</pre>
+
 <li>RBL, RHSBL, and whitelists can only be updated via the mail gateway.  Like
 DNS and ssh keys, any list specified must be specified in its enterity.  The format is:
 <b>listtype</b> <b>dns.domain.of.rbl/IP to whitelist</b> where listtype is one of mailRBL,