Difference between revisions of "Htpasswd"

• https://httpd.apache.org/docs/2.4/programs/htpasswd.html
• Man page: https://linux.die.net/man/1/htpasswd

htpasswd mynotvalidfile.txt myuser
New password:
Re-type new password:
htpasswd: The file mynotvalidfile.txt does not appear to be a valid htpasswd file.

htpasswd -c my_new_file_to_create.txt myuser
Adding password for user myuser

htpasswd
Usage:
	htpasswd [-cimBdpsDv] [-C cost] passwordfile username
	htpasswd -b[cmBdpsDv] [-C cost] passwordfile username password

	htpasswd -n[imBdps] [-C cost] username
	htpasswd -nb[mBdps] [-C cost] username password
 -c  Create a new file.
 -n  Don't update file; display results on stdout.
 -b  Use the password from the command line rather than prompting for it.
 -i  Read password from stdin without verification (for script usage).
 -m  Force MD5 encryption of the password (default).
 -B  Force bcrypt encryption of the password (very secure).
 -C  Set the computing time used for the bcrypt algorithm
     (higher is more secure but slower, default: 5, valid: 4 to 17).
 -d  Force CRYPT encryption of the password (8 chars max, insecure).
 -s  Force SHA encryption of the password (insecure).
 -p  Do not encrypt the password (plaintext, insecure).
 -D  Delete the specified user.
 -v  Verify password for the specified user.
On other systems than Windows and NetWare the '-p' flag will probably not work.
The SHA algorithm does not use a salt and is less secure than the MD5 algorithm.

https://docs.ansible.com/ansible/latest/collections/community/general/htpasswd_module.html
apr_md5_crypt, des_crypt, ldap_sha1, plaintex

Related[edit]

• /etc/openvpn/users
• HTTP Basic access authentication

• passwd, ssh-keygen, chage, /etc/passwd, Password policy, Passwd (package), mkpasswd, cracklib-check, Password cracking, Phone to sign in, Passkey, htpasswd