Table of Contents for
Network Security with OpenSSL

Version ebook / Retour

Cover image for bash Cookbook, 2nd Edition Network Security with OpenSSL by Pravir Chandra Published by O'Reilly Media, Inc., 2002
  1. Cover
  2. Network Security with OpenSSL
  3. Network Security with OpenSSL
  4. Dedication
  5. A Note Regarding Supplemental Files
  6. Preface
  7. 1. Introduction
  8. 2. Command-Line Interface
  9. 3. Public Key Infrastructure (PKI)
  10. 4. Support Infrastructure
  11. 5. SSL/TLS Programming
  12. 6. Symmetric Cryptography
  13. 7. Hashes and MACs
  14. 8. Public Key Algorithms
  15. 9. OpenSSL in Other Languages
  16. 10. Advanced Programming Topics
  17. A. Command-Line Reference
  18. asn1parse
  19. ca
  20. ciphers
  21. crl
  22. crl2pkcs7
  23. dgst
  24. dhparam
  25. dsa
  26. dsaparam
  27. enc
  28. errstr
  29. gendsa
  30. genrsa
  31. nseq
  32. passwd
  33. pkcs7
  34. pkcs8
  35. pkcs12
  36. rand
  37. req
  38. rsa
  39. rsautl
  40. s_client
  41. s_server
  42. s_time
  43. sess_id
  44. smime
  45. speed
  46. spkac
  47. verify
  48. version
  49. x509
  50. Index
  51. About the Authors
  52. Colophon
  53. Copyright

Name

dgst

Synopsis

The dgst command is used to compute the hash of a block of data using a message digest algorithm. It can also be used to sign data and verify signatures.

Options

-dss1, -md2, -md4, -md5, -mdc2, -rmd160, -sha, -sha1

Specify the message digest algorithm to use. If this option is omitted, the default is to use MD5.

-out filename

Specify the name of a file to write the results from the command to. If this option is omitted, stdout is used.

-hex

Cause the output to be written in hexadecimal format. When computing a hash, this is the default.

-c

Cause the hexadecimal output to be grouped by two digits, each group separated by a colon. This option is ignored if the output format is not hexadecimal.

-binary

Cause the output to be written in binary format. When signing, this is the default.

-rand filename

Specify the name of a file or files to use to seed the pseudorandom number generator. This option uses the format described in Chapter 2.

-sign filename

Sign the contents of the specified file. The hash value of the data computed using the specified message digest algorithm is actually the only data that is signed.

-verify filename

Verify a signature using the public key contained in the specified file.

-prverify filename

Verify a signature using the private key contained in the specified file.

-signature

Specify the name of a file containing the signature to be verified. This option is ignored unless used with the verify or prverify options.

Notes

Any arguments remaining on the command line after the last option are interpreted as the names of files, for which hashes will be computed, signed, or verified. When a signature is to be generated or verified, only one file should be used at a time. If a DSA key is used for signing or verification, the DSS1 message digest must be used, and the PRNG must be seeded.