2000-02-11 05:50:52 +08:00
|
|
|
=pod
|
|
|
|
|
|
|
|
=head1 NAME
|
|
|
|
|
2017-10-19 03:33:56 +08:00
|
|
|
openssl-passwd,
|
2000-02-11 05:50:52 +08:00
|
|
|
passwd - compute password hashes
|
|
|
|
|
|
|
|
=head1 SYNOPSIS
|
|
|
|
|
|
|
|
B<openssl passwd>
|
2016-02-06 00:58:45 +08:00
|
|
|
[B<-help>]
|
2000-02-11 05:50:52 +08:00
|
|
|
[B<-crypt>]
|
2000-07-31 20:27:44 +08:00
|
|
|
[B<-1>]
|
2000-02-12 00:25:44 +08:00
|
|
|
[B<-apr1>]
|
2017-01-20 13:37:43 +08:00
|
|
|
[B<-aixmd5>]
|
2016-09-14 10:07:04 +08:00
|
|
|
[B<-5>]
|
|
|
|
[B<-6>]
|
2000-02-18 19:51:58 +08:00
|
|
|
[B<-salt> I<string>]
|
|
|
|
[B<-in> I<file>]
|
2000-02-12 00:25:44 +08:00
|
|
|
[B<-stdin>]
|
2000-11-17 17:03:02 +08:00
|
|
|
[B<-noverify>]
|
2000-02-11 05:50:52 +08:00
|
|
|
[B<-quiet>]
|
|
|
|
[B<-table>]
|
2017-07-05 22:58:48 +08:00
|
|
|
[B<-rand file...>]
|
|
|
|
[B<-writerand file>]
|
2000-02-18 19:51:58 +08:00
|
|
|
{I<password>}
|
2000-02-11 05:50:52 +08:00
|
|
|
|
|
|
|
=head1 DESCRIPTION
|
|
|
|
|
2000-02-12 00:25:44 +08:00
|
|
|
The B<passwd> command computes the hash of a password typed at
|
|
|
|
run-time or the hash of each password in a list. The password list is
|
|
|
|
taken from the named file for option B<-in file>, from stdin for
|
2000-11-17 17:03:02 +08:00
|
|
|
option B<-stdin>, or from the command line, or from the terminal otherwise.
|
2000-07-31 20:27:44 +08:00
|
|
|
The Unix standard algorithm B<crypt> and the MD5-based BSD password
|
2017-01-20 13:37:43 +08:00
|
|
|
algorithm B<1>, its Apache variant B<apr1>, and its AIX variant are available.
|
2000-02-11 05:50:52 +08:00
|
|
|
|
|
|
|
=head1 OPTIONS
|
|
|
|
|
|
|
|
=over 4
|
|
|
|
|
2016-02-06 00:58:45 +08:00
|
|
|
=item B<-help>
|
|
|
|
|
|
|
|
Print out a usage message.
|
|
|
|
|
2000-02-11 05:50:52 +08:00
|
|
|
=item B<-crypt>
|
|
|
|
|
|
|
|
Use the B<crypt> algorithm (default).
|
|
|
|
|
2000-07-31 20:27:44 +08:00
|
|
|
=item B<-1>
|
|
|
|
|
|
|
|
Use the MD5 based BSD password algorithm B<1>.
|
|
|
|
|
2000-02-12 00:25:44 +08:00
|
|
|
=item B<-apr1>
|
|
|
|
|
2000-07-31 20:27:44 +08:00
|
|
|
Use the B<apr1> algorithm (Apache variant of the BSD algorithm).
|
2000-02-12 00:25:44 +08:00
|
|
|
|
2017-01-20 13:37:43 +08:00
|
|
|
=item B<-aixmd5>
|
|
|
|
|
|
|
|
Use the B<AIX MD5> algorithm (AIX variant of the BSD algorithm).
|
|
|
|
|
2016-09-14 10:07:04 +08:00
|
|
|
=item B<-5>
|
|
|
|
|
|
|
|
=item B<-6>
|
|
|
|
|
|
|
|
Use the B<SHA256> / B<SHA512> based algorithms defined by Ulrich Drepper.
|
|
|
|
See L<https://www.akkadia.org/drepper/SHA-crypt.txt>.
|
|
|
|
|
2000-02-18 19:51:58 +08:00
|
|
|
=item B<-salt> I<string>
|
2000-02-11 05:50:52 +08:00
|
|
|
|
|
|
|
Use the specified salt.
|
2000-11-17 17:03:02 +08:00
|
|
|
When reading a password from the terminal, this implies B<-noverify>.
|
2000-02-11 05:50:52 +08:00
|
|
|
|
2000-02-18 19:51:58 +08:00
|
|
|
=item B<-in> I<file>
|
2000-02-12 00:25:44 +08:00
|
|
|
|
2000-02-18 19:51:58 +08:00
|
|
|
Read passwords from I<file>.
|
2000-02-12 00:25:44 +08:00
|
|
|
|
|
|
|
=item B<-stdin>
|
|
|
|
|
|
|
|
Read passwords from B<stdin>.
|
|
|
|
|
2000-11-17 17:03:02 +08:00
|
|
|
=item B<-noverify>
|
|
|
|
|
|
|
|
Don't verify when reading a password from the terminal.
|
|
|
|
|
2000-02-11 05:50:52 +08:00
|
|
|
=item B<-quiet>
|
|
|
|
|
2000-02-12 00:25:44 +08:00
|
|
|
Don't output warnings when passwords given at the command line are truncated.
|
2000-02-11 05:50:52 +08:00
|
|
|
|
|
|
|
=item B<-table>
|
|
|
|
|
|
|
|
In the output list, prepend the cleartext password and a TAB character
|
|
|
|
to each password hash.
|
|
|
|
|
2017-07-05 22:58:48 +08:00
|
|
|
=item B<-rand file...>
|
|
|
|
|
|
|
|
A file or files containing random data used to seed the random number
|
|
|
|
generator.
|
|
|
|
Multiple files can be specified separated by an OS-dependent character.
|
|
|
|
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
|
|
|
|
all others.
|
|
|
|
|
|
|
|
=item [B<-writerand file>]
|
|
|
|
|
|
|
|
Writes random data to the specified I<file> upon exit.
|
|
|
|
This can be used with a subsequent B<-rand> flag.
|
|
|
|
|
2000-02-11 05:50:52 +08:00
|
|
|
=back
|
|
|
|
|
2000-02-18 19:51:58 +08:00
|
|
|
=head1 EXAMPLES
|
2000-02-11 05:50:52 +08:00
|
|
|
|
2018-07-04 00:45:14 +08:00
|
|
|
% openssl passwd -crypt -salt xx password
|
|
|
|
xxj31ZMTZzkVA
|
2000-02-12 00:25:44 +08:00
|
|
|
|
2018-07-04 00:45:14 +08:00
|
|
|
% openssl passwd -1 -salt xxxxxxxx password
|
|
|
|
$1$xxxxxxxx$UYCIxa628.9qXjpQCjM4a.
|
2000-07-31 20:27:44 +08:00
|
|
|
|
2018-07-04 00:45:14 +08:00
|
|
|
% openssl passwd -apr1 -salt xxxxxxxx password
|
|
|
|
$apr1$xxxxxxxx$dxHfLAsjHkDRmG83UXe8K0
|
2000-02-11 05:50:52 +08:00
|
|
|
|
2018-07-04 00:45:14 +08:00
|
|
|
% openssl passwd -aixmd5 -salt xxxxxxxx password
|
|
|
|
xxxxxxxx$8Oaipk/GPKhC64w/YVeFD/
|
2017-01-20 13:37:43 +08:00
|
|
|
|
2016-05-18 23:44:05 +08:00
|
|
|
=head1 COPYRIGHT
|
|
|
|
|
2018-09-11 20:22:14 +08:00
|
|
|
Copyright 2000-2018 The OpenSSL Project Authors. All Rights Reserved.
|
2016-05-18 23:44:05 +08:00
|
|
|
|
2018-12-06 21:04:11 +08:00
|
|
|
Licensed under the Apache License 2.0 (the "License"). You may not use
|
2016-05-18 23:44:05 +08:00
|
|
|
this file except in compliance with the License. You can obtain a copy
|
|
|
|
in the file LICENSE in the source distribution or at
|
|
|
|
L<https://www.openssl.org/source/license.html>.
|
|
|
|
|
|
|
|
=cut
|