--- /dev/null
+.TH SLAPPASSWD 8C "15 June 2000" "OpenLDAP LDVERSION"
+.\" $OpenLDAP$
+.\" Copyright 1998-2000 The OpenLDAP Foundation All Rights Reserved.
+.\" Copying restrictions apply. See COPYRIGHT/LICENSE.
+.SH NAME
+slappassword \- OpenLDAP password utility
+.SH SYNOPSIS
+.B SBINDIR/slappasswd
+.B [\-v]
+.B [\-s secret]
+.B [\-h hash]
+.B
+.LP
+.SH DESCRIPTION
+.LP
+.B Slappasswd
+is used to compute a hashed password suitable for use
+as a userPassword value
+.BR slapd.conf (5)
+.BR rootpw .
+.SH OPTIONS
+.TP
+.B \-v
+enable verbose mode.
+.TP
+.BI \-s " secret"
+The secret to hash. If not provided, the user will be prompted
+for the secret to hash.
+.TP
+.BI \-h " hash"
+The hash algorithm to use. Algorithms supported include
+.IR {CRYPT} ,
+.IR {MD5} ,
+.IR {SMD5} ,
+.IR {SSHA} ", and"
+.IR {SHA} .
+The default is
+.IR {SSHA} .
+.SH LIMITATIONS
+The practice storing hashed passwords in userPassword
+violates Standard Track schema and may hinder
+interoperability.
+.SH "SECURITY CONSIDERATIONS"
+Use of hashed passwords does not protect passwords during
+protocol transfer. TLS or other eavesdropping protections
+should be inplace before using LDAP simple bind. The
+hashed password values should be protected as if they
+were clear text passwords.
+.SH "SEE ALSO"
+.BR ldapmodify (3),
+.BR slapd (8)
+.SH ACKNOWLEDGEMENTS
+.B OpenLDAP
+is developed and maintained by The OpenLDAP Project (http://www.openldap.org/).
+.B OpenLDAP
+is derived from University of Michigan LDAP 3.3 Release.
projects / openldap / commitdiff