mirror of
https://github.com/openssl/openssl.git
synced 2025-02-05 14:10:53 +08:00
b6b66573bd
Initially, the manual page entry for the 'openssl cmd' command used to be available at 'cmd(1)'. Later, the aliases 'openssl-cmd(1)' was introduced, which made it easier to group the openssl commands using the 'apropos(1)' command or the shell's tab completion. In order to reduce cluttering of the global manual page namespace, the manual page entries without the 'openssl-' prefix have been deprecated in OpenSSL 3.0 and will be removed in OpenSSL 4.0. Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/9666)
132 lines
2.8 KiB
Plaintext
132 lines
2.8 KiB
Plaintext
=pod
|
|
|
|
=head1 NAME
|
|
|
|
openssl-passwd - compute password hashes
|
|
|
|
=head1 SYNOPSIS
|
|
|
|
B<openssl passwd>
|
|
[B<-help>]
|
|
[B<-crypt>]
|
|
[B<-1>]
|
|
[B<-apr1>]
|
|
[B<-aixmd5>]
|
|
[B<-5>]
|
|
[B<-6>]
|
|
[B<-salt> I<string>]
|
|
[B<-in> I<file>]
|
|
[B<-stdin>]
|
|
[B<-noverify>]
|
|
[B<-quiet>]
|
|
[B<-table>]
|
|
[B<-rand file...>]
|
|
[B<-writerand file>]
|
|
{I<password>}
|
|
|
|
=head1 DESCRIPTION
|
|
|
|
The B<passwd> command computes the hash of a password typed at
|
|
run-time or the hash of each password in a list. The password list is
|
|
taken from the named file for option B<-in file>, from stdin for
|
|
option B<-stdin>, or from the command line, or from the terminal otherwise.
|
|
The Unix standard algorithm B<crypt> and the MD5-based BSD password
|
|
algorithm B<1>, its Apache variant B<apr1>, and its AIX variant are available.
|
|
|
|
=head1 OPTIONS
|
|
|
|
=over 4
|
|
|
|
=item B<-help>
|
|
|
|
Print out a usage message.
|
|
|
|
=item B<-crypt>
|
|
|
|
Use the B<crypt> algorithm (default).
|
|
|
|
=item B<-1>
|
|
|
|
Use the MD5 based BSD password algorithm B<1>.
|
|
|
|
=item B<-apr1>
|
|
|
|
Use the B<apr1> algorithm (Apache variant of the BSD algorithm).
|
|
|
|
=item B<-aixmd5>
|
|
|
|
Use the B<AIX MD5> algorithm (AIX variant of the BSD algorithm).
|
|
|
|
=item B<-5>
|
|
|
|
=item B<-6>
|
|
|
|
Use the B<SHA256> / B<SHA512> based algorithms defined by Ulrich Drepper.
|
|
See L<https://www.akkadia.org/drepper/SHA-crypt.txt>.
|
|
|
|
=item B<-salt> I<string>
|
|
|
|
Use the specified salt.
|
|
When reading a password from the terminal, this implies B<-noverify>.
|
|
|
|
=item B<-in> I<file>
|
|
|
|
Read passwords from I<file>.
|
|
|
|
=item B<-stdin>
|
|
|
|
Read passwords from B<stdin>.
|
|
|
|
=item B<-noverify>
|
|
|
|
Don't verify when reading a password from the terminal.
|
|
|
|
=item B<-quiet>
|
|
|
|
Don't output warnings when passwords given at the command line are truncated.
|
|
|
|
=item B<-table>
|
|
|
|
In the output list, prepend the cleartext password and a TAB character
|
|
to each password hash.
|
|
|
|
=item B<-rand file...>
|
|
|
|
A file or files containing random data used to seed the random number
|
|
generator.
|
|
Multiple files can be specified separated by an OS-dependent character.
|
|
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
|
|
all others.
|
|
|
|
=item [B<-writerand file>]
|
|
|
|
Writes random data to the specified I<file> upon exit.
|
|
This can be used with a subsequent B<-rand> flag.
|
|
|
|
=back
|
|
|
|
=head1 EXAMPLES
|
|
|
|
% openssl passwd -crypt -salt xx password
|
|
xxj31ZMTZzkVA
|
|
|
|
% openssl passwd -1 -salt xxxxxxxx password
|
|
$1$xxxxxxxx$UYCIxa628.9qXjpQCjM4a.
|
|
|
|
% openssl passwd -apr1 -salt xxxxxxxx password
|
|
$apr1$xxxxxxxx$dxHfLAsjHkDRmG83UXe8K0
|
|
|
|
% openssl passwd -aixmd5 -salt xxxxxxxx password
|
|
xxxxxxxx$8Oaipk/GPKhC64w/YVeFD/
|
|
|
|
=head1 COPYRIGHT
|
|
|
|
Copyright 2000-2019 The OpenSSL Project Authors. All Rights Reserved.
|
|
|
|
Licensed under the Apache License 2.0 (the "License"). You may not use
|
|
this file except in compliance with the License. You can obtain a copy
|
|
in the file LICENSE in the source distribution or at
|
|
L<https://www.openssl.org/source/license.html>.
|
|
|
|
=cut
|