openssl/doc/man1/passwd.pod

=pod

=head1 NAME

passwd - compute password hashes

=head1 SYNOPSIS

B<openssl passwd>
[B<-help>]
[B<-crypt>]
[B<-1>]
[B<-apr1>]
[B<-5>]
[B<-6>]
[B<-salt> I<string>]
[B<-in> I<file>]
[B<-stdin>]
[B<-noverify>]
[B<-quiet>]
[B<-table>]
{I<password>}

=head1 DESCRIPTION

The B<passwd> command computes the hash of a password typed at
run-time or the hash of each password in a list.  The password list is
taken from the named file for option B<-in file>, from stdin for
option B<-stdin>, or from the command line, or from the terminal otherwise.
The Unix standard algorithm B<crypt> and the MD5-based BSD password
algorithm B<1> and its Apache variant B<apr1> are available.

=head1 OPTIONS

=over 4

=item B<-help>

Print out a usage message.

=item B<-crypt>

Use the B<crypt> algorithm (default).

=item B<-1>

Use the MD5 based BSD password algorithm B<1>.

=item B<-apr1>

Use the B<apr1> algorithm (Apache variant of the BSD algorithm).

=item B<-5>

=item B<-6>

Use the B<SHA256> / B<SHA512> based algorithms defined by Ulrich Drepper.
See L<https://www.akkadia.org/drepper/SHA-crypt.txt>.

=item B<-salt> I<string>

Use the specified salt.
When reading a password from the terminal, this implies B<-noverify>.

=item B<-in> I<file>

Read passwords from I<file>.

=item B<-stdin>

Read passwords from B<stdin>.

=item B<-noverify>

Don't verify when reading a password from the terminal.

=item B<-quiet>

Don't output warnings when passwords given at the command line are truncated.

=item B<-table>

In the output list, prepend the cleartext password and a TAB character
to each password hash.

=back

=head1 EXAMPLES

B<openssl passwd -crypt -salt xx password> prints B<xxj31ZMTZzkVA>.

B<openssl passwd -1 -salt xxxxxxxx password> prints B<$1$xxxxxxxx$UYCIxa628.9qXjpQCjM4a.>.

B<openssl passwd -apr1 -salt xxxxxxxx password> prints B<$apr1$xxxxxxxx$dxHfLAsjHkDRmG83UXe8K0>.

=head1 COPYRIGHT

Copyright 2000-2016 The OpenSSL Project Authors. All Rights Reserved.

Licensed under the OpenSSL license (the "License").  You may not use
this file except in compliance with the License.  You can obtain a copy
in the file LICENSE in the source distribution or at
L<https://www.openssl.org/source/license.html>.

=cut
'passwd' tool. 2000-02-11 05:50:52 +08:00			`=pod`

			`=head1 NAME`

			`passwd - compute password hashes`

			`=head1 SYNOPSIS`

			`B<openssl passwd>`
GH628: Add -help to all apps docs. Signed-off-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org> 2016-02-06 00:58:45 +08:00			`[B<-help>]`
'passwd' tool. 2000-02-11 05:50:52 +08:00			`[B<-crypt>]`
Update 'openssl passwd' documentation on selection of algorithms. 2000-07-31 20:27:44 +08:00			`[B<-1>]`
Implement MD5-based "apr1" password hash. 2000-02-12 00:25:44 +08:00			`[B<-apr1>]`
Document the new SHA256 and SHA512 password generation options Reviewed-by: Rich Salz <rsalz@openssl.org> 2016-09-14 10:07:04 +08:00			`[B<-5>]`
			`[B<-6>]`
Change the example to show apr1 with an 8-character salt. 2000-02-18 19:51:58 +08:00			`[B<-salt> I<string>]`
			`[B<-in> I<file>]`
Implement MD5-based "apr1" password hash. 2000-02-12 00:25:44 +08:00			`[B<-stdin>]`
Improve usability of 'openssl passwd' by including password verification where it makes sense. 2000-11-17 17:03:02 +08:00			`[B<-noverify>]`
'passwd' tool. 2000-02-11 05:50:52 +08:00			`[B<-quiet>]`
			`[B<-table>]`
Change the example to show apr1 with an 8-character salt. 2000-02-18 19:51:58 +08:00			`{I<password>}`
'passwd' tool. 2000-02-11 05:50:52 +08:00
			`=head1 DESCRIPTION`

Implement MD5-based "apr1" password hash. 2000-02-12 00:25:44 +08:00			`The B<passwd> command computes the hash of a password typed at`
			`run-time or the hash of each password in a list. The password list is`
			`taken from the named file for option B<-in file>, from stdin for`
Improve usability of 'openssl passwd' by including password verification where it makes sense. 2000-11-17 17:03:02 +08:00			`option B<-stdin>, or from the command line, or from the terminal otherwise.`
Update 'openssl passwd' documentation on selection of algorithms. 2000-07-31 20:27:44 +08:00			`The Unix standard algorithm B<crypt> and the MD5-based BSD password`
			`algorithm B<1> and its Apache variant B<apr1> are available.`
'passwd' tool. 2000-02-11 05:50:52 +08:00
			`=head1 OPTIONS`

			`=over 4`

GH628: Add -help to all apps docs. Signed-off-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org> 2016-02-06 00:58:45 +08:00			`=item B<-help>`

			`Print out a usage message.`

'passwd' tool. 2000-02-11 05:50:52 +08:00			`=item B<-crypt>`

			`Use the B<crypt> algorithm (default).`

Update 'openssl passwd' documentation on selection of algorithms. 2000-07-31 20:27:44 +08:00			`=item B<-1>`

			`Use the MD5 based BSD password algorithm B<1>.`

Implement MD5-based "apr1" password hash. 2000-02-12 00:25:44 +08:00			`=item B<-apr1>`

Update 'openssl passwd' documentation on selection of algorithms. 2000-07-31 20:27:44 +08:00			`Use the B<apr1> algorithm (Apache variant of the BSD algorithm).`
Implement MD5-based "apr1" password hash. 2000-02-12 00:25:44 +08:00
Document the new SHA256 and SHA512 password generation options Reviewed-by: Rich Salz <rsalz@openssl.org> 2016-09-14 10:07:04 +08:00			`=item B<-5>`

			`=item B<-6>`

			`Use the B<SHA256> / B<SHA512> based algorithms defined by Ulrich Drepper.`
			`See L<https://www.akkadia.org/drepper/SHA-crypt.txt>.`

Change the example to show apr1 with an 8-character salt. 2000-02-18 19:51:58 +08:00			`=item B<-salt> I<string>`
'passwd' tool. 2000-02-11 05:50:52 +08:00
			`Use the specified salt.`
Improve usability of 'openssl passwd' by including password verification where it makes sense. 2000-11-17 17:03:02 +08:00			`When reading a password from the terminal, this implies B<-noverify>.`
'passwd' tool. 2000-02-11 05:50:52 +08:00
Change the example to show apr1 with an 8-character salt. 2000-02-18 19:51:58 +08:00			`=item B<-in> I<file>`
Implement MD5-based "apr1" password hash. 2000-02-12 00:25:44 +08:00
Change the example to show apr1 with an 8-character salt. 2000-02-18 19:51:58 +08:00			`Read passwords from I<file>.`
Implement MD5-based "apr1" password hash. 2000-02-12 00:25:44 +08:00
			`=item B<-stdin>`

			`Read passwords from B<stdin>.`

Improve usability of 'openssl passwd' by including password verification where it makes sense. 2000-11-17 17:03:02 +08:00			`=item B<-noverify>`

			`Don't verify when reading a password from the terminal.`

'passwd' tool. 2000-02-11 05:50:52 +08:00			`=item B<-quiet>`

Implement MD5-based "apr1" password hash. 2000-02-12 00:25:44 +08:00			`Don't output warnings when passwords given at the command line are truncated.`
'passwd' tool. 2000-02-11 05:50:52 +08:00
			`=item B<-table>`

			`In the output list, prepend the cleartext password and a TAB character`
			`to each password hash.`

			`=back`

Change the example to show apr1 with an 8-character salt. 2000-02-18 19:51:58 +08:00			`=head1 EXAMPLES`
'passwd' tool. 2000-02-11 05:50:52 +08:00
Implement MD5-based "apr1" password hash. 2000-02-12 00:25:44 +08:00			`B<openssl passwd -crypt -salt xx password> prints B<xxj31ZMTZzkVA>.`

Document should match reality :-). PR: 255 2002-10-04 20:59:00 +08:00			`B<openssl passwd -1 -salt xxxxxxxx password> prints B<$1$xxxxxxxx$UYCIxa628.9qXjpQCjM4a.>.`
Update 'openssl passwd' documentation on selection of algorithms. 2000-07-31 20:27:44 +08:00
Change the example to show apr1 with an 8-character salt. 2000-02-18 19:51:58 +08:00			`B<openssl passwd -apr1 -salt xxxxxxxx password> prints B<$apr1$xxxxxxxx$dxHfLAsjHkDRmG83UXe8K0>.`
'passwd' tool. 2000-02-11 05:50:52 +08:00
Add copyright to manpages Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-05-18 23:44:05 +08:00			`=head1 COPYRIGHT`

			`Copyright 2000-2016 The OpenSSL Project Authors. All Rights Reserved.`

			`Licensed under the OpenSSL license (the "License"). You may not use`
			`this file except in compliance with the License. You can obtain a copy`
			`in the file LICENSE in the source distribution or at`
			`L<https://www.openssl.org/source/license.html>.`

			`=cut`