-
Notifications
You must be signed in to change notification settings - Fork 1
OpenLDAP slappasswd(with pw-sha2)-compatible hash generator and verifier, only with openssl and shellscript
License
henoheno/openssl_slappasswd.sh
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Folders and files
Name | Name | Last commit message | Last commit date | |
---|---|---|---|---|
Repository files navigation
openssl_slappasswd.sh -- OpenLDAP slappasswd(with pw-sha2)-compatible hash generator and verifier, only with openssl and shellscript Usage: openssl_slappasswd.sh [-n] [-q|--quiet] [-h|--scheme scheme] [-s|--secret secret] [--salt salt] [-T|--secret-file filepath] [--salt-file filepath] [--salt-random N] -h 'scheme', --scheme 'scheme' scheme(password hash scheme): md5, sha, sha256, sha384, sha512, smd5, ssha, ssha256, ssha384, ssha512, '{MD5}', '{SHA}', '{SHA256}', '{SHA384}', '{SHA512}', '{SMD5}', '{SSHA}', '{SSHA256}', '{SSHA384}', '{SSHA512}' (default: '{SSHA256}') -s 'secret', --secret 'secret' passphrase or secret -T 'filepath', --secret-file 'filepath' use entire file content for secret --salt-random N|NN|NNN|NNNN specify random salt length (default:8 bytes) --salt 'salt' specify salt text --salt-file 'filepath' use entire file content for salt --scheme '{SCHEME}base64-encoded-hash-and-salt' specify salt from userPassword -n omit trailing newline -q, --quiet omit output userPassword etc. -h '{SCHEME}base64-encoded-hash-and-salt', --scheme '{SCHEME}base64-encoded-hash-and-salt' verify userPassword and return true if that seems verified with the secret and salt Examples: $ openssl_slappasswd.sh --secret pass {SSHA256}10/w7o2juYBrGMh32/KbveULW9jk2tejpyUAD+uC6PE= # random salt $ openssl_slappasswd.sh --secret pass --salt 'foobar' # specify salt from --salt {SSHA256}Yuz0lZnd9xxLQhxgOSuV8b4GlTzeOWKriq9ay51aoLxmb29iYXI= $ userPassword='{SSHA256}Yuz0lZnd9xxLQhxgOSuV8b4GlTzeOWKriq9ay51aoLxmb29iYXI=' $ openssl_slappasswd.sh --quiet --scheme "$userPassword" --secret pass && echo OK OK $ openssl_slappasswd.sh --quiet --scheme "$userPassword" --secret WRONG || echo NG NG $ openssl_slappasswd.sh --secret-file ./empty --salt-file ./empty --scheme sha256 {SHA256}47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU= $ openssl_slappasswd.sh --secret-file ./empty --salt-file ./empty --scheme ssha256 {SSHA256}47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=
About
OpenLDAP slappasswd(with pw-sha2)-compatible hash generator and verifier, only with openssl and shellscript
Topics
Resources
License
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published