1*b0d17251Schristos=pod 2*b0d17251Schristos{- OpenSSL::safe::output_do_not_edit_headers(); -} 3*b0d17251Schristos 4*b0d17251Schristos=head1 NAME 5*b0d17251Schristos 6*b0d17251Schristosopenssl-passwd - compute password hashes 7*b0d17251Schristos 8*b0d17251Schristos=head1 SYNOPSIS 9*b0d17251Schristos 10*b0d17251SchristosB<openssl passwd> 11*b0d17251Schristos[B<-help>] 12*b0d17251Schristos[B<-1>] 13*b0d17251Schristos[B<-apr1>] 14*b0d17251Schristos[B<-aixmd5>] 15*b0d17251Schristos[B<-5>] 16*b0d17251Schristos[B<-6>] 17*b0d17251Schristos[B<-salt> I<string>] 18*b0d17251Schristos[B<-in> I<file>] 19*b0d17251Schristos[B<-stdin>] 20*b0d17251Schristos[B<-noverify>] 21*b0d17251Schristos[B<-quiet>] 22*b0d17251Schristos[B<-table>] 23*b0d17251Schristos[B<-reverse>] 24*b0d17251Schristos{- $OpenSSL::safe::opt_r_synopsis -} 25*b0d17251Schristos{- $OpenSSL::safe::opt_provider_synopsis -} 26*b0d17251Schristos[I<password>] 27*b0d17251Schristos 28*b0d17251Schristos=head1 DESCRIPTION 29*b0d17251Schristos 30*b0d17251SchristosThis command computes the hash of a password typed at 31*b0d17251Schristosrun-time or the hash of each password in a list. The password list is 32*b0d17251Schristostaken from the named file for option B<-in>, from stdin for 33*b0d17251Schristosoption B<-stdin>, or from the command line, or from the terminal otherwise. 34*b0d17251Schristos 35*b0d17251Schristos=head1 OPTIONS 36*b0d17251Schristos 37*b0d17251Schristos=over 4 38*b0d17251Schristos 39*b0d17251Schristos=item B<-help> 40*b0d17251Schristos 41*b0d17251SchristosPrint out a usage message. 42*b0d17251Schristos 43*b0d17251Schristos=item B<-1> 44*b0d17251Schristos 45*b0d17251SchristosUse the MD5 based BSD password algorithm B<1> (default). 46*b0d17251Schristos 47*b0d17251Schristos=item B<-apr1> 48*b0d17251Schristos 49*b0d17251SchristosUse the B<apr1> algorithm (Apache variant of the BSD algorithm). 50*b0d17251Schristos 51*b0d17251Schristos=item B<-aixmd5> 52*b0d17251Schristos 53*b0d17251SchristosUse the B<AIX MD5> algorithm (AIX variant of the BSD algorithm). 54*b0d17251Schristos 55*b0d17251Schristos=item B<-5> 56*b0d17251Schristos 57*b0d17251Schristos=item B<-6> 58*b0d17251Schristos 59*b0d17251SchristosUse the B<SHA256> / B<SHA512> based algorithms defined by Ulrich Drepper. 60*b0d17251SchristosSee L<https://www.akkadia.org/drepper/SHA-crypt.txt>. 61*b0d17251Schristos 62*b0d17251Schristos=item B<-salt> I<string> 63*b0d17251Schristos 64*b0d17251SchristosUse the specified salt. 65*b0d17251SchristosWhen reading a password from the terminal, this implies B<-noverify>. 66*b0d17251Schristos 67*b0d17251Schristos=item B<-in> I<file> 68*b0d17251Schristos 69*b0d17251SchristosRead passwords from I<file>. 70*b0d17251Schristos 71*b0d17251Schristos=item B<-stdin> 72*b0d17251Schristos 73*b0d17251SchristosRead passwords from B<stdin>. 74*b0d17251Schristos 75*b0d17251Schristos=item B<-noverify> 76*b0d17251Schristos 77*b0d17251SchristosDon't verify when reading a password from the terminal. 78*b0d17251Schristos 79*b0d17251Schristos=item B<-quiet> 80*b0d17251Schristos 81*b0d17251SchristosDon't output warnings when passwords given at the command line are truncated. 82*b0d17251Schristos 83*b0d17251Schristos=item B<-table> 84*b0d17251Schristos 85*b0d17251SchristosIn the output list, prepend the cleartext password and a TAB character 86*b0d17251Schristosto each password hash. 87*b0d17251Schristos 88*b0d17251Schristos=item B<-reverse> 89*b0d17251Schristos 90*b0d17251SchristosWhen the B<-table> option is used, reverse the order of cleartext and hash. 91*b0d17251Schristos 92*b0d17251Schristos{- $OpenSSL::safe::opt_r_item -} 93*b0d17251Schristos 94*b0d17251Schristos{- $OpenSSL::safe::opt_provider_item -} 95*b0d17251Schristos 96*b0d17251Schristos=back 97*b0d17251Schristos 98*b0d17251Schristos=head1 EXAMPLES 99*b0d17251Schristos 100*b0d17251Schristos % openssl passwd -1 -salt xxxxxxxx password 101*b0d17251Schristos $1$xxxxxxxx$UYCIxa628.9qXjpQCjM4a. 102*b0d17251Schristos 103*b0d17251Schristos % openssl passwd -apr1 -salt xxxxxxxx password 104*b0d17251Schristos $apr1$xxxxxxxx$dxHfLAsjHkDRmG83UXe8K0 105*b0d17251Schristos 106*b0d17251Schristos % openssl passwd -aixmd5 -salt xxxxxxxx password 107*b0d17251Schristos xxxxxxxx$8Oaipk/GPKhC64w/YVeFD/ 108*b0d17251Schristos 109*b0d17251Schristos=head1 HISTORY 110*b0d17251Schristos 111*b0d17251SchristosThe B<-crypt> option was removed in OpenSSL 3.0. 112*b0d17251Schristos 113*b0d17251Schristos=head1 COPYRIGHT 114*b0d17251Schristos 115*b0d17251SchristosCopyright 2000-2021 The OpenSSL Project Authors. All Rights Reserved. 116*b0d17251Schristos 117*b0d17251SchristosLicensed under the Apache License 2.0 (the "License"). You may not use 118*b0d17251Schristosthis file except in compliance with the License. You can obtain a copy 119*b0d17251Schristosin the file LICENSE in the source distribution or at 120*b0d17251SchristosL<https://www.openssl.org/source/license.html>. 121*b0d17251Schristos 122*b0d17251Schristos=cut 123