aboutsummaryrefslogtreecommitdiff
path: root/docs
diff options
context:
space:
mode:
authorSilvio Rhatto <rhatto@riseup.net>2024-02-24 22:03:12 -0300
committerSilvio Rhatto <rhatto@riseup.net>2024-02-24 22:03:12 -0300
commitc214f22f95b50c07fed034bd692bc43fe69ebcf1 (patch)
tree475a2da3702ff34e8a67be7e74593d4c201ac8a3 /docs
parenta80ab6138da7a457f2cce5fd77bc7c56eb020d0c (diff)
downloadhydra-c214f22f95b50c07fed034bd692bc43fe69ebcf1.tar.gz
hydra-c214f22f95b50c07fed034bd692bc43fe69ebcf1.tar.bz2
Feat: docs: secrets: tpc: on hashed passphrases (2)
Diffstat (limited to 'docs')
-rw-r--r--docs/tpc.md6
1 files changed, 6 insertions, 0 deletions
diff --git a/docs/tpc.md b/docs/tpc.md
index 5266b83..de3203a 100644
--- a/docs/tpc.md
+++ b/docs/tpc.md
@@ -78,6 +78,12 @@ generator like this:
For `passwd(5)` and `shadow(5)` hashed passphrases, use something like this:
+ mkpasswd -m sha-512 | \
+ hydra $HYDRA eyaml $VOLNAME encrypt -q -o block --stdin -l some::random:password >> \
+ $CONFIG_FOLDER/puppet/config/secrets/node/$VOLNAME.$DOMAIN.yaml
+
+Or this, for a random passphrase:
+
head -c ${1:-20} /dev/urandom | base64 | \
mkpasswd -m sha-512 --stdin | \
hydra $HYDRA eyaml $VOLNAME encrypt -q -o block --stdin -l some::random:password >> \