Table of Contents for
Network Security with OpenSSL

Version ebook / Retour

Cover image for bash Cookbook, 2nd Edition Network Security with OpenSSL by Pravir Chandra Published by O'Reilly Media, Inc., 2002
  1. Cover
  2. Network Security with OpenSSL
  3. Network Security with OpenSSL
  4. Dedication
  5. A Note Regarding Supplemental Files
  6. Preface
  7. 1. Introduction
  8. 2. Command-Line Interface
  9. 3. Public Key Infrastructure (PKI)
  10. 4. Support Infrastructure
  11. 5. SSL/TLS Programming
  12. 6. Symmetric Cryptography
  13. 7. Hashes and MACs
  14. 8. Public Key Algorithms
  15. 9. OpenSSL in Other Languages
  16. 10. Advanced Programming Topics
  17. A. Command-Line Reference
  18. asn1parse
  19. ca
  20. ciphers
  21. crl
  22. crl2pkcs7
  23. dgst
  24. dhparam
  25. dsa
  26. dsaparam
  27. enc
  28. errstr
  29. gendsa
  30. genrsa
  31. nseq
  32. passwd
  33. pkcs7
  34. pkcs8
  35. pkcs12
  36. rand
  37. req
  38. rsa
  39. rsautl
  40. s_client
  41. s_server
  42. s_time
  43. sess_id
  44. smime
  45. speed
  46. spkac
  47. verify
  48. version
  49. x509
  50. Index
  51. About the Authors
  52. Colophon
  53. Copyright

Name

dhparam

Synopsis

The dhparam command is used to generate Diffie-Hellman parameters. It can also be used to examine previously generated parameters.

Options

-in filename

Specify the name of a file from which parameters should be read. If no file is specified, stdin is used—unless new parameters will be generated, in which case no input is required.

-inform DER|PEM

Specify the format, DER or PEM, of the input data. If this option is omitted, the default format is PEM.

-out filename

Specify the name of a file to which the generated parameters will be written. If no file is specified, stdout is used.

-outform DER|PEM

Specify the format, DER or PEM, of the output data. If this option is omitted, the default format is PEM.

-rand filename

Specify the name of a file or files to use to seed the pseudorandom number generator. This option uses the format described in Chapter 2.

-dsaparam

When this option is specified, the input data is expected to be DSA parameters. The parameters are converted to Diffie-Hellman parameters.

-2, -5

Specify the generator to use, either 2 or 5. If this option is omitted, a generator of 2 is the default. If this option is present, input files are ignored and new parameters are generated.

-noout

Cause output of the DSA parameters in DER or PEM format to be suppressed. This option is useful when viewing previously generated parameters.

-text

Cause a human-readable representation of the input parameters to be written to the output destination.

-C

Cause a C code representation of the input parameters to be written to the output destination.

Notes

The length of the primes to generate is specified as the last argument to the command. If a length is not specified, a default of 512 bits is used.