NAME¶

radcrypt - generate password hash for use with radius, or validates a password hash

SYNOPSIS¶

radcrypt [-d|--des] [-m|--md5] [-c|--check] plaintext_password [hashed_password]

DESCRIPTION¶

radcrypt generates a hashed digest of a plaintext password, or can validate if a password hash matches a plaintext password. DES and MD5 hashes are currently supported. When generating a password hash a random salt is generated and applied.

A hashed password can be validated by specifying -c or --check and passing hashed_password after plaintext_password on the command line. In this case hashed_password will be checked to see if it matches plaintext_password. If so "Password OK" will be printed and the exit status will be 1, otherwise "Password BAD" will be printed and exit status will be 0 (Note this is the opposite of a normal successful shell status).

OPTIONS¶

-d --des: Use a DES (Data Encryption Standard) hash (default). Ignored if performing a password check.
-m --md5: Use a MD5 (Message Digest 5) hash. Ignored if performing a password check.
-c --check: Perform a validation check on a password hash to verify if it matches the plantext password.

EXAMPLES¶

$ radcrypt foobar
HaX0xn7Qy650Q
$ radcrypt -c foobar HaX0xn7Qy650Q
Password OK

AUTHORS¶

Miquel van Smoorenburg <miquels@cistron-office.nl>

Source file:	radcrypt.8.en.gz (from freeradius-utils 3.0.13-15.el7)
Source last updated:	2020-09-00 00:34:04
Converted to HTML:	2024-06-22 22:06:10