OpenSSL/Cheatsheet

From braindump
Revision as of 08:27, 4 October 2015 by Uroesch (talk | contribs) (→‎File encryption)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Command line shortcuts

Type Action Command Comment
Help List openssl list-standard-commands
Base64 Encode openssl base64 -in <INPUT>.txt -out <OUTPUT>.b64
Base64 Decode openssl base64 -d -in <File>.b64 -out <File>.txt
MD5 Checksum openssl md5 <File> Same as md5sum <File>
SHA1 Checksum openssl sha1 <File> Same as sha1sum <File>
SHA224 Checksum openssl sha224 <File> Same as sha224sum <File>
SHA256 Checksum openssl sha256 <File> Same as sha256sum <File>
SHA384 Checksum openssl sha384 <File> Same as sha384sum <File>
SHA512 Checksum openssl sha512 <File> Same as sha512sum <File>
Password Encrypt openssl passwd <Password> Creates a crypt-ed password for use with /etc/shadow [1]
Password Encrypt openssl passwd -1 <Password> Creates a md5 password for use with /etc/shadow [1]

Notes

  1. Newer versions of Debian use the sha-512 there is a tool called mkpasswd that will create compatible passwords.

File encryption

Encrypt

openssl enc -aes-256-cbc -in <File> -out <File>.aes
enter aes-256-cbc encryption password:
Verifying - enter aes-256-cbc encryption password:

Encrypt with password from file

openssl enc -aes-256-cbc -pass file:<PwFile>> -in <File> -out <File>.aes


Decrypt

openssl enc -d -aes-256-cbc -in <File>.aes -out <File> 
enter aes-256-cbc decryption password:

Decrypt with password from file

openssl enc -d -aes-256-cbc -pass file:<PwFile> -in <File>.aes -out <File>