1srptool(1) User Commands srptool(1)
2
3
4
6 srptool - GnuTLS SRP tool
7
9 srptool [-flags] [-flag [value]] [--option-name[[=| ]value]]
10
11 All arguments must be options.
12
13
15 Simple program that emulates the programs in the Stanford SRP (Secure
16 Remote Password) libraries using GnuTLS. It is intended for use in
17 places where you don't expect SRP authentication to be the used for
18 system users.
19
20 In brief, to use SRP you need to create two files. These are the
21 password file that holds the users and the verifiers associated with
22 them and the configuration file to hold the group parameters (called
23 tpasswd.conf).
24
26 -d number, --debug=number
27 Enable debugging. This option takes an integer number as its
28 argument. The value of number is constrained to being:
29 in the range 0 through 9999
30
31 Specifies the debug level.
32
33 -i number, --index=number
34 specify the index of the group parameters in tpasswd.conf to
35 use. This option takes an integer number as its argument. The
36 default number for this option is:
37 3
38
39
40 -u string, --username=string
41 specify a username.
42
43
44 -p string, --passwd=string
45 specify a password file.
46
47
48 -s number, --salt=number
49 specify salt size. This option takes an integer number as its
50 argument.
51
52
53 --verify
54 just verify the password..
55
56 Verifies the password provided against the password file.
57
58 -v string, --passwd-conf=string
59 specify a password conf file..
60
61 Specify a filename or a PKCS #11 URL to read the CAs from.
62
63 --create-conf=string
64 Generate a password configuration file..
65
66 This generates a password configuration file (tpasswd.conf) con‐
67 taining the required for TLS parameters.
68
69 -h, --help
70 Display usage information and exit.
71
72 -!, --more-help
73 Pass the extended usage information through a pager.
74
75 -v [{v|c|n --version [{v|c|n}]}]
76 Output version of program and exit. The default mode is `v', a
77 simple version. The `c' mode will print copyright information
78 and `n' will print the full copyright notice.
79
81 To create tpasswd.conf which holds the g and n values for SRP protocol
82 (generator and a large prime), run:
83 $ srptool --create-conf /etc/tpasswd.conf
84
85 This command will create /etc/tpasswd and will add user 'test' (you
86 will also be prompted for a password). Verifiers are stored by default
87 in the way libsrp expects.
88 $ srptool --passwd /etc/tpasswd --passwd-conf /etc/tpasswd.conf -u test
89
90
91 This command will check against a password. If the password matches the
92 one in /etc/tpasswd you will get an ok.
93 $ srptool --passwd /etc/tpasswd --passwd-conf /etc/tpasswd.conf --verify -u test
94
96 One of the following exit values will be returned:
97
98 0 (EXIT_SUCCESS)
99 Successful program execution.
100
101 1 (EXIT_FAILURE)
102 The operation failed or the command syntax was not valid.
103
104 70 (EX_SOFTWARE)
105 libopts had an internal operational error. Please report it to
106 autogen-users@lists.sourceforge.net. Thank you.
107
109 gnutls-cli-debug (1), gnutls-serv (1), srptool (1), psktool (1),
110 certtool (1)
111
113 Nikos Mavrogiannopoulos, Simon Josefsson and others; see
114 /usr/share/doc/gnutls/AUTHORS for a complete list.
115
117 Copyright (C) 2000-2019 Free Software Foundation, and others all rights
118 reserved. This program is released under the terms of the GNU General
119 Public License, version 3 or later.
120
122 Please send bug reports to: bugs@gnutls.org
123
125 This manual page was AutoGen-erated from the srptool option defini‐
126 tions.
127
128
129
1303.6.8 27 May 2019 srptool(1)