[thirdparty/openssl.git] / doc / man1 / openssl-passwd.pod.in

=pod
{- OpenSSL::safe::output_do_not_edit_headers(); -}

=head1 NAME

openssl-passwd - compute password hashes

=head1 SYNOPSIS

B<openssl passwd>
[B<-help>]
[B<-crypt>]
[B<-1>]
[B<-apr1>]
[B<-aixmd5>]
[B<-5>]
[B<-6>]
[B<-salt> I<string>]
[B<-in> I<file>]
[B<-stdin>]
[B<-noverify>]
[B<-quiet>]
[B<-table>]
[B<-reverse>]
{- $OpenSSL::safe::opt_r_synopsis -}
{- $OpenSSL::safe::opt_provider_synopsis -}
[I<password>]

=for openssl ifdef crypt

=head1 DESCRIPTION

This command computes the hash of a password typed at
run-time or the hash of each password in a list.  The password list is
taken from the named file for option B<-in>, from stdin for
option B<-stdin>, or from the command line, or from the terminal otherwise.
The Unix standard algorithm B<-crypt> and the MD5-based BSD password
algorithm B<-1>, its Apache variant B<-apr1>, and its AIX variant are
available.

=head1 OPTIONS

=over 4

=item B<-help>

Print out a usage message.

=item B<-crypt>

Use the B<crypt> algorithm (default).

=item B<-1>

Use the MD5 based BSD password algorithm B<1>.

=item B<-apr1>

Use the B<apr1> algorithm (Apache variant of the BSD algorithm).

=item B<-aixmd5>

Use the B<AIX MD5> algorithm (AIX variant of the BSD algorithm).

=item B<-5>

=item B<-6>

Use the B<SHA256> / B<SHA512> based algorithms defined by Ulrich Drepper.
See L<https://www.akkadia.org/drepper/SHA-crypt.txt>.

=item B<-salt> I<string>

Use the specified salt.
When reading a password from the terminal, this implies B<-noverify>.

=item B<-in> I<file>

Read passwords from I<file>.

=item B<-stdin>

Read passwords from B<stdin>.

=item B<-noverify>

Don't verify when reading a password from the terminal.

=item B<-quiet>

Don't output warnings when passwords given at the command line are truncated.

=item B<-table>

In the output list, prepend the cleartext password and a TAB character
to each password hash.

=item B<-reverse>

When the B<-table> option is used, reverse the order of cleartext and hash.

{- $OpenSSL::safe::opt_r_item -}

{- $OpenSSL::safe::opt_provider_item -}

=back

=head1 EXAMPLES

  % openssl passwd -crypt -salt xx password
  xxj31ZMTZzkVA

  % openssl passwd -1 -salt xxxxxxxx password
  $1$xxxxxxxx$UYCIxa628.9qXjpQCjM4a.

  % openssl passwd -apr1 -salt xxxxxxxx password
  $apr1$xxxxxxxx$dxHfLAsjHkDRmG83UXe8K0

  % openssl passwd -aixmd5 -salt xxxxxxxx password
  xxxxxxxx$8Oaipk/GPKhC64w/YVeFD/

=head1 COPYRIGHT

Copyright 2000-2020 The OpenSSL Project Authors. All Rights Reserved.

Licensed under the Apache License 2.0 (the "License").  You may not use
this file except in compliance with the License.  You can obtain a copy
in the file LICENSE in the source distribution or at
L<https://www.openssl.org/source/license.html>.

=cut
Commit	Line	Data
bb325c7d	1	=pod
625c781d	2	{- OpenSSL::safe::output_do_not_edit_headers(); -}
9fcb9702	3
bb325c7d BM	4	=head1 NAME
bb325c7d BM	5
b6b66573	6	openssl-passwd - compute password hashes
bb325c7d BM	7
	8	=head1 SYNOPSIS
	9
	10	B<openssl passwd>
169394d4	11	[B<-help>]
bb325c7d	12	[B<-crypt>]
cc244b37	13	[B<-1>]
e6e7b5f3	14	[B<-apr1>]
037f2c3f	15	[B<-aixmd5>]
2e04d6cc RL	16	[B<-5>]
2e04d6cc RL	17	[B<-6>]
ad860603 BM	18	[B<-salt> I<string>]
ad860603 BM	19	[B<-in> I<file>]
e6e7b5f3	20	[B<-stdin>]
db70a3fd	21	[B<-noverify>]
bb325c7d BM	22	[B<-quiet>]
bb325c7d BM	23	[B<-table>]
65718c51	24	[B<-reverse>]
9fcb9702	25	{- $OpenSSL::safe::opt_r_synopsis -}
6bd4e3f2	26	{- $OpenSSL::safe::opt_provider_synopsis -}
92de469f	27	[I<password>]
bb325c7d	28
9f3c076b	29	=for openssl ifdef crypt
1738c0ce	30
bb325c7d BM	31	=head1 DESCRIPTION
bb325c7d BM	32
35a810bb	33	This command computes the hash of a password typed at
e6e7b5f3	34	run-time or the hash of each password in a list. The password list is
e8769719	35	taken from the named file for option B<-in>, from stdin for
db70a3fd	36	option B<-stdin>, or from the command line, or from the terminal otherwise.
2f0ea936 RL	37	The Unix standard algorithm B<-crypt> and the MD5-based BSD password
	38	algorithm B<-1>, its Apache variant B<-apr1>, and its AIX variant are
	39	available.
bb325c7d BM	40
	41	=head1 OPTIONS
	42
	43	=over 4
	44
169394d4 MR	45	=item B<-help>
	46
	47	Print out a usage message.
	48
bb325c7d BM	49	=item B<-crypt>
	50
	51	Use the B<crypt> algorithm (default).
	52
cc244b37 BM	53	=item B<-1>
	54
	55	Use the MD5 based BSD password algorithm B<1>.
	56
e6e7b5f3 BM	57	=item B<-apr1>
e6e7b5f3 BM	58
cc244b37	59	Use the B<apr1> algorithm (Apache variant of the BSD algorithm).
e6e7b5f3	60
037f2c3f GN	61	=item B<-aixmd5>
	62
	63	Use the B<AIX MD5> algorithm (AIX variant of the BSD algorithm).
	64
2e04d6cc RL	65	=item B<-5>
	66
	67	=item B<-6>
	68
	69	Use the B<SHA256> / B<SHA512> based algorithms defined by Ulrich Drepper.
	70	See L<https://www.akkadia.org/drepper/SHA-crypt.txt>.
	71
ad860603	72	=item B<-salt> I<string>
bb325c7d BM	73
bb325c7d BM	74	Use the specified salt.
db70a3fd	75	When reading a password from the terminal, this implies B<-noverify>.
bb325c7d	76
ad860603	77	=item B<-in> I<file>
e6e7b5f3	78
ad860603	79	Read passwords from I<file>.
e6e7b5f3 BM	80
	81	=item B<-stdin>
	82
	83	Read passwords from B<stdin>.
	84
db70a3fd BM	85	=item B<-noverify>
	86
	87	Don't verify when reading a password from the terminal.
	88
bb325c7d BM	89	=item B<-quiet>
bb325c7d BM	90
e6e7b5f3	91	Don't output warnings when passwords given at the command line are truncated.
bb325c7d BM	92
	93	=item B<-table>
	94
	95	In the output list, prepend the cleartext password and a TAB character
	96	to each password hash.
	97
65718c51 RS	98	=item B<-reverse>
	99
	100	When the B<-table> option is used, reverse the order of cleartext and hash.
	101
9fcb9702	102	{- $OpenSSL::safe::opt_r_item -}
3ee1eac2	103
6bd4e3f2 P	104	{- $OpenSSL::safe::opt_provider_item -}
6bd4e3f2 P	105
bb325c7d BM	106	=back
bb325c7d BM	107
ad860603	108	=head1 EXAMPLES
bb325c7d	109
dfee8626 RS	110	% openssl passwd -crypt -salt xx password
dfee8626 RS	111	xxj31ZMTZzkVA
e6e7b5f3	112
dfee8626 RS	113	% openssl passwd -1 -salt xxxxxxxx password
dfee8626 RS	114	$1$xxxxxxxx$UYCIxa628.9qXjpQCjM4a.
cc244b37	115
dfee8626 RS	116	% openssl passwd -apr1 -salt xxxxxxxx password
dfee8626 RS	117	$apr1$xxxxxxxx$dxHfLAsjHkDRmG83UXe8K0
bb325c7d	118
dfee8626 RS	119	% openssl passwd -aixmd5 -salt xxxxxxxx password
dfee8626 RS	120	xxxxxxxx$8Oaipk/GPKhC64w/YVeFD/
037f2c3f	121
e2f92610 RS	122	=head1 COPYRIGHT
e2f92610 RS	123
33388b44	124	Copyright 2000-2020 The OpenSSL Project Authors. All Rights Reserved.
e2f92610	125
449040b4	126	Licensed under the Apache License 2.0 (the "License"). You may not use
e2f92610 RS	127	this file except in compliance with the License. You can obtain a copy
	128	in the file LICENSE in the source distribution or at
	129	L<https://www.openssl.org/source/license.html>.
	130
	131	=cut