encode_keychange(1) [osx man page]
encode_keychange(1) Net-SNMP encode_keychange(1) NAME
encode_keychange - produce the KeyChange string for SNMPv3 SYNOPSIS
encode_keychange -t md5|sha1 [OPTIONS] DESCRIPTION
encode_keychange produces a KeyChange string using the old and new passphrases as described in Section 5 of RFC 2274 "User-based Security Model (USM) for version 3 of the Simple Network Management Protocol (SNMPv3)". -t option is mandatory and specifies the hash transform type to use. The transform is used to convert passphrase to master key for a given user (Ku), convert master key to the localized key (Kul), and to hash the old Kul with the random bits. Passphrases are obtained by examining a number of sources until success (in order listed): command line options (see -N and -O options below); the file $HOME/.snmp/passphrase.ek which should only contain two lines with old and new passphrase; standard input -or- user input from the terminal. OPTIONS
-E [0x]<engineID> EngineID used for Kul generation. <engineID> is intepreted as a hex string when preceeded by 0x, otherwise it is treated as a text string. If no <engineID> is speci- fied, it is constructed from the first IP address for the local host. -f Force passphrases to be read from standard input. -h Display the help message. -N "<new_passphrase>" Passphrase used to generate the new Ku. -O "<old_passphrase>" Passphrase used to generate the old Ku. -P Turn off the prompt for passphrases when getting data from standard input. -v Be verbose. -V Echo passphrases to terminal. SEE ALSO
The localized key method is defined in RFC 2274, Sections 2.6 and A.2, and originally documented in U. Blumenthal, N. C. Hien, B. Wijnen, "Key Derivation for Network Management Applications", IEEE Network Magazine, April/May issue, 1997. V5.6 16 Nov 2006 encode_keychange(1)
Check Out this Related Man Page
Authen::Passphrase::Clear(3pm) User Contributed Perl Documentation Authen::Passphrase::Clear(3pm) NAME
Authen::Passphrase::Clear - cleartext passphrases SYNOPSIS
use Authen::Passphrase::Clear; $ppr = Authen::Passphrase::Clear->new("passphrase"); if($ppr->match($passphrase)) { ... $passphrase = $ppr->passphrase; $userPassword = $ppr->as_rfc2307; DESCRIPTION
An object of this class is a passphrase recogniser that accepts some particular passphrase which it knows. This is a subclass of Authen::Passphrase, and this document assumes that the reader is familiar with the documentation for that class. Warning: Storing a passphrase in cleartext, as this class does, is a very bad idea. It means that anyone who sees the passphrase file immediately knows all the passphrases. Do not use this unless you really know what you're doing. CONSTRUCTORS
Authen::Passphrase::Clear->new(PASSPHRASE) Returns a passphrase recogniser object that stores the specified passphrase in cleartext and accepts only that passphrase. Authen::Passphrase::Clear->from_rfc2307(USERPASSWORD) Generates a cleartext passphrase recogniser from the supplied RFC2307 encoding. The string must consist of "{CLEARTEXT}" (case insensitive) followed by the passphrase. METHODS
$ppr->match(PASSPHRASE) $ppr->passphrase $ppr->as_rfc2307 These methods are part of the standard Authen::Passphrase interface. The "passphrase" method trivially works. SEE ALSO
Authen::Passphrase AUTHOR
Andrew Main (Zefram) <zefram@fysh.org> COPYRIGHT
Copyright (C) 2006, 2007, 2009, 2010, 2012 Andrew Main (Zefram) <zefram@fysh.org> LICENSE
This module is free software; you can redistribute it and/or modify it under the same terms as Perl itself. perl v5.14.2 2012-02-07 Authen::Passphrase::Clear(3pm)