|
Packit |
aea12f |
.de1 NOP
|
|
Packit |
aea12f |
. it 1 an-trap
|
|
Packit |
aea12f |
. if \\n[.$] \,\\$*\/
|
|
Packit |
aea12f |
..
|
|
Packit |
aea12f |
.ie t \
|
|
Packit |
aea12f |
.ds B-Font [CB]
|
|
Packit |
aea12f |
.ds I-Font [CI]
|
|
Packit |
aea12f |
.ds R-Font [CR]
|
|
Packit |
aea12f |
.el \
|
|
Packit |
aea12f |
.ds B-Font B
|
|
Packit |
aea12f |
.ds I-Font I
|
|
Packit |
aea12f |
.ds R-Font R
|
|
Packit Service |
991b93 |
.TH srptool 1 "03 Jun 2020" "3.6.14" "User Commands"
|
|
Packit |
aea12f |
.\"
|
|
Packit |
aea12f |
.\" DO NOT EDIT THIS FILE (in-mem file)
|
|
Packit |
aea12f |
.\"
|
|
Packit |
aea12f |
.\" It has been AutoGen-ed
|
|
Packit |
aea12f |
.\" From the definitions ../../src/srptool-args.def.tmp
|
|
Packit |
aea12f |
.\" and the template file agman-cmd.tpl
|
|
Packit |
aea12f |
.SH NAME
|
|
Packit |
aea12f |
\f\*[B-Font]srptool\fP
|
|
Packit |
aea12f |
\- GnuTLS SRP tool
|
|
Packit |
aea12f |
.SH SYNOPSIS
|
|
Packit |
aea12f |
\f\*[B-Font]srptool\fP
|
|
Packit |
aea12f |
.\" Mixture of short (flag) options and long options
|
|
Packit |
aea12f |
[\f\*[B-Font]\-flags\f[]]
|
|
Packit |
aea12f |
[\f\*[B-Font]\-flag\f[] [\f\*[I-Font]value\f[]]]
|
|
Packit |
aea12f |
[\f\*[B-Font]\-\-option-name\f[][[=| ]\f\*[I-Font]value\f[]]]
|
|
Packit |
aea12f |
.sp \n(Ppu
|
|
Packit |
aea12f |
.ne 2
|
|
Packit |
aea12f |
|
|
Packit |
aea12f |
All arguments must be options.
|
|
Packit |
aea12f |
.sp \n(Ppu
|
|
Packit |
aea12f |
.ne 2
|
|
Packit |
aea12f |
|
|
Packit |
aea12f |
.SH "DESCRIPTION"
|
|
Packit |
aea12f |
Simple program that emulates the programs in the Stanford SRP (Secure
|
|
Packit |
aea12f |
Remote Password) libraries using GnuTLS. It is intended for use in places
|
|
Packit |
aea12f |
where you don't expect SRP authentication to be the used for system users.
|
|
Packit |
aea12f |
.sp
|
|
Packit |
aea12f |
In brief, to use SRP you need to create two files. These are the password
|
|
Packit |
aea12f |
file that holds the users and the verifiers associated with them and the
|
|
Packit |
aea12f |
configuration file to hold the group parameters (called tpasswd.conf).
|
|
Packit |
aea12f |
.SH "OPTIONS"
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP \f\*[B-Font]\-d\f[] \f\*[I-Font]number\f[], \f\*[B-Font]\-\-debug\f[]=\f\*[I-Font]number\f[]
|
|
Packit |
aea12f |
Enable debugging.
|
|
Packit |
aea12f |
This option takes an integer number as its argument.
|
|
Packit |
aea12f |
The value of
|
|
Packit |
aea12f |
\f\*[I-Font]number\f[]
|
|
Packit |
aea12f |
is constrained to being:
|
|
Packit |
aea12f |
.in +4
|
|
Packit |
aea12f |
.nf
|
|
Packit |
aea12f |
.na
|
|
Packit |
aea12f |
in the range 0 through 9999
|
|
Packit |
aea12f |
.fi
|
|
Packit |
aea12f |
.in -4
|
|
Packit |
aea12f |
.sp
|
|
Packit |
aea12f |
Specifies the debug level.
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP \f\*[B-Font]\-i\f[] \f\*[I-Font]number\f[], \f\*[B-Font]\-\-index\f[]=\f\*[I-Font]number\f[]
|
|
Packit |
aea12f |
specify the index of the group parameters in tpasswd.conf to use.
|
|
Packit |
aea12f |
This option takes an integer number as its argument.
|
|
Packit |
aea12f |
The default
|
|
Packit |
aea12f |
\f\*[I-Font]number\f[]
|
|
Packit |
aea12f |
for this option is:
|
|
Packit |
aea12f |
.ti +4
|
|
Packit |
aea12f |
3
|
|
Packit |
aea12f |
.sp
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP \f\*[B-Font]\-u\f[] \f\*[I-Font]string\f[], \f\*[B-Font]\-\-username\f[]=\f\*[I-Font]string\f[]
|
|
Packit |
aea12f |
specify a username.
|
|
Packit |
aea12f |
.sp
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP \f\*[B-Font]\-p\f[] \f\*[I-Font]string\f[], \f\*[B-Font]\-\-passwd\f[]=\f\*[I-Font]string\f[]
|
|
Packit |
aea12f |
specify a password file.
|
|
Packit |
aea12f |
.sp
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP \f\*[B-Font]\-s\f[] \f\*[I-Font]number\f[], \f\*[B-Font]\-\-salt\f[]=\f\*[I-Font]number\f[]
|
|
Packit |
aea12f |
specify salt size.
|
|
Packit |
aea12f |
This option takes an integer number as its argument.
|
|
Packit |
aea12f |
.sp
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP \f\*[B-Font]\-\-verify\f[]
|
|
Packit |
aea12f |
just verify the password..
|
|
Packit |
aea12f |
.sp
|
|
Packit |
aea12f |
Verifies the password provided against the password file.
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP \f\*[B-Font]\-v\f[] \f\*[I-Font]string\f[], \f\*[B-Font]\-\-passwd\-conf\f[]=\f\*[I-Font]string\f[]
|
|
Packit |
aea12f |
specify a password conf file..
|
|
Packit |
aea12f |
.sp
|
|
Packit |
aea12f |
Specify a filename or a PKCS #11 URL to read the CAs from.
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP \f\*[B-Font]\-\-create\-conf\f[]=\f\*[I-Font]string\f[]
|
|
Packit |
aea12f |
Generate a password configuration file..
|
|
Packit |
aea12f |
.sp
|
|
Packit |
aea12f |
This generates a password configuration file (tpasswd.conf)
|
|
Packit |
aea12f |
containing the required for TLS parameters.
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP \f\*[B-Font]\-h\f[], \f\*[B-Font]\-\-help\f[]
|
|
Packit |
aea12f |
Display usage information and exit.
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP \f\*[B-Font]\-\&!\f[], \f\*[B-Font]\-\-more-help\f[]
|
|
Packit |
aea12f |
Pass the extended usage information through a pager.
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP \f\*[B-Font]\-v\f[] [{\f\*[I-Font]v|c|n\f[] \f\*[B-Font]\-\-version\f[] [{\f\*[I-Font]v|c|n\f[]}]}]
|
|
Packit |
aea12f |
Output version of program and exit. The default mode is `v', a simple
|
|
Packit |
aea12f |
version. The `c' mode will print copyright information and `n' will
|
|
Packit |
aea12f |
print the full copyright notice.
|
|
Packit |
aea12f |
.PP
|
|
Packit |
aea12f |
.SH EXAMPLES
|
|
Packit |
aea12f |
To create \fItpasswd.conf\fP which holds the g and n values for SRP protocol
|
|
Packit |
aea12f |
(generator and a large prime), run:
|
|
Packit |
aea12f |
.br
|
|
Packit |
aea12f |
.in +4
|
|
Packit |
aea12f |
.nf
|
|
Packit |
aea12f |
$ srptool \-\-create\-conf /etc/tpasswd.conf
|
|
Packit |
aea12f |
.in -4
|
|
Packit |
aea12f |
.fi
|
|
Packit |
aea12f |
.sp
|
|
Packit |
aea12f |
This command will create \fI/etc/tpasswd\fP and will add user 'test' (you
|
|
Packit |
aea12f |
will also be prompted for a password). Verifiers are stored by default
|
|
Packit |
aea12f |
in the way libsrp expects.
|
|
Packit |
aea12f |
.br
|
|
Packit |
aea12f |
.in +4
|
|
Packit |
aea12f |
.nf
|
|
Packit |
aea12f |
$ srptool \-\-passwd /etc/tpasswd \-\-passwd\-conf /etc/tpasswd.conf \-u test
|
|
Packit |
aea12f |
.in -4
|
|
Packit |
aea12f |
.fi
|
|
Packit |
aea12f |
.sp
|
|
Packit |
aea12f |
.sp
|
|
Packit |
aea12f |
This command will check against a password. If the password matches
|
|
Packit |
aea12f |
the one in \fI/etc/tpasswd\fP you will get an ok.
|
|
Packit |
aea12f |
.br
|
|
Packit |
aea12f |
.in +4
|
|
Packit |
aea12f |
.nf
|
|
Packit |
aea12f |
$ srptool \-\-passwd /etc/tpasswd \-\-passwd\-conf /etc/tpasswd.conf \-\-verify \-u test
|
|
Packit |
aea12f |
.in -4
|
|
Packit |
aea12f |
.fi
|
|
Packit |
aea12f |
.SH "EXIT STATUS"
|
|
Packit |
aea12f |
One of the following exit values will be returned:
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP 0 " (EXIT_SUCCESS)"
|
|
Packit |
aea12f |
Successful program execution.
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP 1 " (EXIT_FAILURE)"
|
|
Packit |
aea12f |
The operation failed or the command syntax was not valid.
|
|
Packit |
aea12f |
.TP
|
|
Packit |
aea12f |
.NOP 70 " (EX_SOFTWARE)"
|
|
Packit |
aea12f |
libopts had an internal operational error. Please report
|
|
Packit |
aea12f |
it to autogen-users@lists.sourceforge.net. Thank you.
|
|
Packit |
aea12f |
.PP
|
|
Packit |
aea12f |
.SH "SEE ALSO"
|
|
Packit |
aea12f |
gnutls\-cli\-debug (1), gnutls\-serv (1), srptool (1), psktool (1), certtool (1)
|
|
Packit |
aea12f |
.SH "AUTHORS"
|
|
Packit |
aea12f |
Nikos Mavrogiannopoulos, Simon Josefsson and others; see /usr/share/doc/gnutls/AUTHORS for a complete list.
|
|
Packit |
aea12f |
.SH "COPYRIGHT"
|
|
Packit Service |
991b93 |
Copyright (C) 2000-2020 Free Software Foundation, and others all rights reserved.
|
|
Packit |
aea12f |
This program is released under the terms of the GNU General Public License, version 3 or later.
|
|
Packit |
aea12f |
.SH "BUGS"
|
|
Packit Service |
991b93 |
Please send bug reports to: bugs@gnutls.org
|
|
Packit |
aea12f |
.SH "NOTES"
|
|
Packit |
aea12f |
This manual page was \fIAutoGen\fP-erated from the \fBsrptool\fP
|
|
Packit |
aea12f |
option definitions.
|