1srptool(1)                       User Commands                      srptool(1)
2
3
4

NAME

6       srptool - GnuTLS SRP tool
7

SYNOPSIS

9       srptool [-flags] [-flag [value]] [--option-name[[=| ]value]]
10
11       All arguments must be options.
12

DESCRIPTION

14       Simple  program  that emulates the programs in the Stanford SRP (Secure
15       Remote Password) libraries using GnuTLS.  It is  intended  for  use  in
16       places  where  you  don't  expect SRP authentication to be the used for
17       system users.
18
19       In  brief,  to use SRP you need to create  two  files.  These  are  the
20       password  file  that  holds the users and the verifiers associated with
21       them  and  the configuration file to hold the group parameters  (called
22       tpasswd.conf).
23
24

OPTIONS

26       -d num, --debug=num
27              Enable  debugging.   This  option takes an integer number as its
28              argument.  The value of num is constrained to being:
29                  in the range 0 through 9999
30
31              Specifies the debug level.
32
33       -i num, --index=num
34              This option takes an integer number as its argument.  The de‐
35              fault number for this option is:
36                   3
37
38
39       -u str, --username=str
40
41       -p str, --passwd=str
42
43       -s num, --salt=num
44              This option takes an integer number as its argument.
45
46       --verify
47              Verifies the password provided against the password file.
48
49       -v str, --passwd-conf=str
50              Specify a filename or a PKCS #11 URL to read the CAs from.
51
52       --create-conf=str
53              Generate a password configuration file.
54
55              This generates a password configuration file (tpasswd.conf) con‐
56              taining the required for TLS parameters.
57
58       -v arg, --version=arg
59              Output version of program and exit.  The default mode is `v', a
60              simple version.  The `c' mode will print copyright information
61              and `n' will print the full copyright notice.
62
63       -h, --help
64              Display usage information and exit.
65
66       -!, --more-help
67              Pass the extended usage information through a pager.
68
69
70

EXAMPLES

72       To create tpasswd.conf which holds the g and n values for SRP protocol
73       (generator and a large prime), run:
74           $ srptool --create-conf /etc/tpasswd.conf
75
76       This command will create /etc/tpasswd and will add user 'test' (you
77       will also be prompted for a password). Verifiers are stored by default
78       in the way libsrp expects.
79           $ srptool --passwd /etc/tpasswd --passwd-conf /etc/tpasswd.conf -u test
80
81
82       This command will check against a password. If the password matches the
83       one in /etc/tpasswd you will get an ok.
84           $ srptool --passwd /etc/tpasswd --passwd\-conf /etc/tpasswd.conf --verify -u test
85

EXIT STATUS

87       One of the following exit values will be returned:
88
89       0  (EXIT_SUCCESS)
90              Successful program execution.
91
92       1  (EXIT_FAILURE)
93              The operation failed or the command syntax was not valid.
94

SEE ALSO

96       gnutls-cli-debug (1), gnutls-serv (1), srptool (1), psktool (1), cert‐
97       tool (1)
98

AUTHORS

101       Copyright (C) 2020-2021 Free Software Foundation, and others all rights
102       reserved.  This program is released under the terms of the GNU General
103       Public License, version 3 or later
104

BUGS
106       Please send bug reports to: bugs@gnutls.org
107
108
109
1103.7.8                             27 Sep 2022                       srptool(1)



        

    


            
        

        

            Impressum