7 Verifier is created using @code{govpn-verifier} utility. But currently
8 Go does not provide native instruments to read passwords without echoing
9 them to stdout. You can use @code{utils/storekey.sh} script to read them
13 % utils/storekey.sh mypass.txt
14 Enter passphrase:[hello world]
15 % govpn-verifier -key mypass.txt
16 $argon2d$m=4096,t=128,p=1$bwR5VjeCYIQaa8SeaI3rqg$KCNIqfS4DGsBTtVytamAzcISgrlEWvNxan1UfBrFu10
17 $argon2d$m=4096,t=128,p=1$bwR5VjeCYIQaa8SeaI3rqg
20 First line is the verifier for the server side. Second line is for the
21 client -- it lacks generated public key. However you can use server's
22 one on the client side too.
24 You can check passphrase against verifier by specifying @code{-verifier}
25 option with the path to verifier file:
28 % govpn-verifier -key mypass.txt -verifier '$argon2d...'
32 Plaintext passphrases @strong{must} be stored on volatile memory, for
33 example either in memory disk, or on encrypted filesystem with
34 restrictive permissions to the file.