srptool - GnuTLS SRP tool

       Nikos  Mavrogiannopoulos,  Simon  Josefsson  and others; see /usr/share/doc/gnutls/AUTHORS for a complete
       list.

       Please send bug reports to: bugs@gnutls.org

3.7.3                                              18 Jan 2022                                        srptool(1)

       Copyright (C) 2020-2021 Free Software Foundation, and  others  all  rights  reserved.   This  program  is
       released under the terms of the GNU General Public License, version 3 or later.

       Simple  program  that  emulates the programs in the Stanford SRP (Secure Remote Password) libraries using
       GnuTLS.  It is intended for use in  places where you don't expect SRP authentication to be the  used  for
       system users.

       In  brief,  to use SRP you need to create two files. These are the password file that holds the users and
       the  verifiers  associated  with   them  and  the configuration file to hold the group parameters (called
       tpasswd.conf).

       One of the following exit values will be returned:

       0  (EXIT_SUCCESS) Successful program execution.

       1  (EXIT_FAILURE) The operation failed or the command syntax was not valid.

       SEEALSO
              gnutls-cli-debug (1), gnutls-serv (1), srptool (1), psktool (1), certtool (1)

srptool - GnuTLS SRP tool

-dnumber, --debug=number Enable debugging.  This option takes an integer number as its argument.  The
       value of number is constrained to being:
           in the range 0  through  9999

       Specifies the debug level.

       -inumber, --index=number This option takes an integer number as its argument.

       -ustring, --username=string-pstring, --passwd=string-snumber, --salt=number This option takes an integer number as its argument.

       --verify Verifies the password provided against the password file.

       -vstring, --passwd-conf=string Specify a filename or a PKCS #11 URL to read the CAs from.

       --create-conf=string Generate a password configuration file..

       This generates a password configuration file (tpasswd.conf) containing the required for TLS parameters.

       -vkeyword, --version=keyword Output version of program and exit.  The default mode is `v', a simple
       version.  The `c' mode will print copyright information and `n' will print the full copyright notice.

       -h, --help Display usage information and exit.

       -!, --more-help Pass the extended usage information through a pager.

       EXAMPLES
              To create tpasswd.conf which holds the g and n values for SRP  protocol  (generator  and  a  large
              prime), run:
                  $ srptool --create-conf /etc/tpasswd.conf

              This  command  will  create /etc/tpasswd and will add user 'test' (you will also be prompted for a
              password). Verifiers are stored by default in the way libsrp expects.
                  $ srptool --passwd /etc/tpasswd --passwd-conf /etc/tpasswd.conf -u test

              This command will check against a password. If the password matches the one  in  /etc/tpasswd  you
              will get an ok.
                  $ srptool --passwd /etc/tpasswd --passwd\-conf /etc/tpasswd.conf --verify -u test

srptool [-flags] [-flag [value]] [--option-name[[=| ]value]]

       All arguments must be options.