Advertisement

08.01.2003 at 07:57AM PDT, ID: 20696945
[x]
Attachment Details
[x]
The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

  • The Grade of the Solution
  • The Zone Rank of the Expert Providing the Solution
  • The Number of Author and Expert Comments
  • The Number of Experts Contributing
  • The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!
7.0

SFTP password issue

Zone: Unix Networking
Tags: sftp, password, batch
Hi All,

We are in the process of changing our File transfers  to Secure mode using SecureShell.
We already have scripts to Do File transfer using FTP client (i.e, non secure mode) and
iam giving one example, which explains how we automate regular FTP.

Now we are changing all of them to SFTP or Secure transfer mode/encrypted.

Our old regiular scripts are some thing like this


ftp -n -i -v  ftp.url.com <<!
user username password
cd /data/shared/
lcd /data/import
mget vcm*.dat
bye
!

In this case, we are giving the password directly or as an argument or in a batch file.


Coming to SFTP,by using -B option(Batch file)


SFTP -B /devl/test.batch user@ftp.url.com


test.batch contains the following data.
      user_password
      pwd /user/data/shared
      get vcm_today.dat
      quit


SFTP exceuting the password as a command and coming out as a Bad command.

My question is

How to Automate the SFTP Scripts by passing Password as an argument or in a File.

Responses are highly appreciated.

Thanks in advance,
Rad
Start your free trial to view this solution
Question Stats
Zone: Networking
Question Asked By: rjaishetty
Solution Provided By: liddler
Participating Experts: 4
Solution Grade: A
Views: 692
Translate:
Loading Advertisement...
08.01.2003 at 08:02AM PDT, ID: 9048903
liddler:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
08.01.2003 at 08:13AM PDT, ID: 9049035
PsiCop:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
08.01.2003 at 08:15AM PDT, ID: 9049043
rjaishetty:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
08.01.2003 at 08:24AM PDT, ID: 9049139
liddler:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
08.01.2003 at 08:46AM PDT, ID: 9049337
rjaishetty:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
08.01.2003 at 09:04AM PDT, ID: 9049502
liddler:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
08.01.2003 at 10:16AM PDT, ID: 9050145
rjaishetty:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
08.01.2003 at 03:09PM PDT, ID: 9051971
liddler:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
08.03.2003 at 11:14PM PDT, ID: 9065277

Rank: Master

gheist:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
08.04.2003 at 02:20AM PDT, ID: 9067081

Rank: Master

gheist:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
08.13.2003 at 04:56AM PDT, ID: 9137851
rgeers:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
01.23.2005 at 09:25PM PST, ID: 13118723
jmcg:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
01.24.2005 at 08:17AM PST, ID: 13122743
PsiCop:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
01.28.2005 at 01:49AM PST, ID: 13161418
modulo:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
Loading Advertisement...
Microsoft
  • Internet Protocols
  • Applications
  • Development
  • OS
  • Hardware
  • Windows Security
Apple
  • Operating Systems
  • Hardware
  • Programming
  • Networking
  • Software
Internet
  • Search Engines
  • File Sharing
  • WebTrends / Stats
  • Spy / Ad Blockers
  • Web Browsers
  • New Net Users
  • Web Development
  • Chat / IM
  • Anti Spam
  • Web Servers
  • Anti-Virus
  • Email Clients
Gamers
  • Tips
  • Online / MMORPG
  • Puzzle
  • Emulators
  • Action / Adventure
  • Role Playing
  • Consoles
  • Game Programming
  • Strategy
  • Sports
  • Misc
  • Computer Games
Digital Living
  • Hardware
  • Automotive
  • New Net Users
  • New Users
  • Software
  • Digital Music
  • Gaming World
  • Home Security
  • Apple
  • Networking Hardware
Virus & Spyware
  • Vulnerabilities
  • IDS
  • Encryption
  • Anti-Virus
  • Operating Systems Security
  • Software Firewalls
  • WebApplications
  • Cell Phones
  • Operating Systems
  • Internet
  • Hardware Firewalls
Hardware
  • Displays / Monitors
  • Handhelds / PDAs
  • Components
  • Peripherals
  • Laptops/Notebooks
  • Servers
  • Misc
  • Apple
  • Embedded Hardware
  • Networking Hardware
  • Storage
  • Desktops
  • New Users
Software
  • System Utilities
  • Industry Specific
  • Network Management
  • Photos / Graphics
  • Page Layout
  • VMware
  • Misc
  • Web Development
  • OS
  • CYGWIN
  • Voice Recognition
  • Virtualization
  • Message Queue
  • Quality Assurance
  • Security
  • Firewalls
  • MultiMedia Applications
  • Development
  • Database
  • Office / Productivity
  • Business Management
  • OS/2 Apps
  • Server Software
  • Internet / Email
ITPro
  • OS
  • Storage
  • Encryption
  • Operating Systems Security
  • Apple Hardware
  • Laptops & Notebooks
  • Servers
  • Networking Hardware
  • Peripherals
  • Devices
  • Displays / Monitors
  • WebTrends / Stats
  • Search Engines
  • Firewalls
  • Web Computing
  • WebApplications
  • IDS
  • Vulnerabilities
  • Email Clients
  • File Sharing
  • Spy / Ad Blockers
  • Web Browsers
  • Web Servers
  • Networking
  • Anti-Virus
  • Consulting
  • Chat / IM
  • Anti Spam
Developer
  • Web Servers
  • Web Browsers
  • Game Programming
  • Dev Tools
  • Industry Specific
  • Office / Productivity
  • Database
  • CYGWIN
  • Web Development
  • Search Engines
  • File Sharing
  • WebTrends / Stats
  • Programming
  • Content Management
  • Application Servers
  • Protocols
Storage
  • Removable Backup Media
  • Storage Technology
  • Servers
  • Grid
  • Remote Access
  • Backup / Restore
  • Misc
  • Hard Drives
OS
  • Miscellaneous
  • Security
  • Development
  • Linux
  • VMware
  • MainFrame OS
  • Unix
  • Apple
  • OS / 2
  • AS / 400
  • BeOS
  • Microsoft
  • VMS / OpenVMS
Database
  • Oracle
  • Miscellaneous
  • MySQL
  • Software
  • Sybase
  • Contact Management
  • PostgreSQL
  • Data Manipulation
  • Clarion
  • InterSystems Cache
  • Siebel
  • MUMPS
  • OLAP
  • SQLBase
  • SAS
  • GIS & GPS
  • 4GL
  • Berkeley DB
  • DB2
  • Informix
  • Interbase / Firebird
  • FoxPro
  • Reporting
  • LDAP
  • Filemaker Pro
  • MS SQL Server
  • dBase
  • MS Access
Security
  • Misc
  • Web Browsers
  • Software Firewalls
  • Operating Systems Security
  • File Sharing
  • Spy / Ad Blockers
  • Vulnerabilities
  • WebApplications
  • IDS
  • Anti-Virus
  • Encryption
  • Anti Spam
  • Email Clients
  • VPN
  • Chat / IM
Programming
  • Editors IDEs
  • Installation
  • Handhelds / PDAs
  • Multimedia Programming
  • System / Kernel
  • Automation
  • Algorithms
  • Game
  • Signal Processing
  • Project Management
  • Open Source
  • Database
  • Misc
  • Languages
  • Processor Platforms
  • Theory
Web Development
  • Scripting
  • Blogs
  • Web Servers
  • Software
  • Search Engines
  • Web Graphics
  • Web Services
  • Images
  • Internet Marketing
  • Images and Photos
  • Components
  • Document Imaging
  • Web Languages/Standards
  • Illustration
  • WebApplications
  • Fonts
  • WebTrends / Stats
  • Authoring
  • Digital Camera Software
  • Miscellaneous
Networking
  • Protocols
  • Apple Networking
  • Network Management
  • Message Queue
  • Application Servers
  • Content Management
  • File Servers
  • Email Servers
  • Misc
  • Java Editors & IDEs
  • Wireless
  • Networking Hardware
  • Backup / Restore
  • System Utilities
  • ISPs & Hosting
  • Web Servers
  • Storage Technology
  • Removable Backup Media
  • Servers
  • Web Computing
  • Broadband
  • Grid
  • OS / 2
  • Novell Netware
  • Unix Networking
  • Windows Networking
  • Security
  • Telecommunications
  • Operating Systems
  • Linux Networking
Other
  • Lounge
  • Business Travel
  • Community Support
  • New Net Users
  • Philosophy / Religion
  • Math / Science
  • Miscellaneous
  • URLs
  • Expert Lounge
  • Politics
  • Puzzles / Riddles
  • Automotive
Community Support
  • Suggestions
  • New to EE
  • New Topics
  • CleanUp
  • Announcements
  • General
  • Feedback
  • Input
  • EE Bugs
 
08.01.2003 at 08:02AM PDT, ID: 9048903
liddler:
2 ways:
Install configure expect scripting language (http://expect.nist.gov/)
or
use secure key exchange instead of passwords
Accepted Solution
 
08.01.2003 at 08:13AM PDT, ID: 9049035
PsiCop:
I would recommend Secure Key Exchange. One time and its done. Not that Expect (or something like it) won't work, I just think it'll be more complex and harder to maintain in the long run.
 
08.01.2003 at 08:15AM PDT, ID: 9049043
rjaishetty:
liddler  replied:
2 ways:
Install configure expect scripting language (http://expect.nist.gov/)
or
use secure key exchange instead of passwords  

First one, installing Expect is ruled out in our environment.

Could you please explain me in detail about the 2 nd option (Secure Key Exchange).


Thanks a tonn,
Rad

 
08.01.2003 at 08:24AM PDT, ID: 9049139
liddler:
run ssh-keygen -t dsa, with a blank passphrase on source machine
this creates a file under $HOME/.ssh/id_dsa.pub
copy this into $HOME/.ssh/authorized_keys on the target machine, then running ssh / sftp from the source machine will inspect the key and work without password.
Note: ssh is very strict about ownership / permissions on the .ssh/ directory
 
08.01.2003 at 08:46AM PDT, ID: 9049337
rjaishetty:
Thanks liddler ,

When I am running ssh -keygen -t dsa , it is coming with a warning

warning: Connecting to dsa failed: No address associated to the name

Iam new to Unix environment, Could you please explain me.

Our Vendors(in this case, Target m/c), they restrict to enter password for every FTP/SFTP connection.
As per your suggestion, I understand that by Key Generation, Secure Shell is going to use the Keys on the both sides and creates a connection with have to out entering a password.

Please let me know, how to generate a Key for a particular Host (lets say ftp.yahoo.com) with
user_name "ftpuser" and password "ftppwd".


And explain me, why we are getting the Warning in running the Keygeneration.


Thanks a lot for your help.

Thanks
Rad

 
08.01.2003 at 09:04AM PDT, ID: 9049502
liddler:
no spaces
ssh-keygen
not
ssh -keygen
you create the key for a user on the host by running the ssh-keygen command on that machine, as that user.
(ssh-kegen should be in /usr/local/bin)
 
08.01.2003 at 10:16AM PDT, ID: 9050145
rjaishetty:
Thanks again liddler. I appreciate your patience.

Few more doubts!!!!  I am very new to Unix and know that you guys are DONs in UNix, your help/suggestions in clarifying me in this issue are highly honoured.

I logged on one server (Lets say Source server) as LocalUser
and trying to connect to a Remote Server (Target server) with Host ftp.host.com and
logging into Remote m/c using RemoteUser name and password is RemotePasswd.

When I am doing sftp -B test.bat RemoteUser@ftp.host.com
Its prompting for Password, after entering it, I can do transfer of fiels safely.

As per your suggestion,

I have to generate some Keys on Source m/c. DO we have any mechanism to generate such Keys
with specific Host Name, Remote User and accessing password (in mycase, ftp.host.com, RemoteUser and RemotePasswd)

If I generate such keys, What kind of privileges that connection going to have ?

My UNIX login(LocalUser) privileges  or Remote User privileges  and How to generate Host Based keys by using the User Name, Password and Host.


Please clarify me.

Thanks,
Rad
 
08.01.2003 at 03:09PM PDT, ID: 9051971
liddler:
Rad
>If I generate such keys, What kind of privileges that connection going to have ?

The priviledges of the remote user, basically you are telling the remote machine that the localuser, coming from the local machine are to be treated as the remote user on the remote machine.

If you look at the .pub file, you will see it specifes the local hostname and username, by putting these in the authorized_keys file on the remote machine you are telling the remote machine to treat that user from that machine, the same as the user whose authorized_keys file you add the entry into.

One more thing, if you copy and paste the .pub key between two telnet or X windows sessions, make sure the paste does not insert line feeds into the key, or ^M characters if you are going via DOS.  The key must be all on one line.


 
08.03.2003 at 11:14PM PDT, ID: 9065277

Rank: Master

gheist:
or you can use scp (scp collection@host collection@host)
or you can prime up ssh-agent:
$ eval `ssh-agent`
$ ssh-add
enter passworts when asked
$ ssh etc now is without passwords
$ ssh-agent -k
(true for openssh)
Assisted Solution
 
08.04.2003 at 02:20AM PDT, ID: 9067081

Rank: Master

gheist:
or ssh-agent > sshscript
. ~/sshscript ; ssh-add
#and then run
. ~/sshscript
# every time you need ssh keys without password
 
08.13.2003 at 04:56AM PDT, ID: 9137851
rgeers:
your script suggests using the command:

scp user@ftp.url.com/data/shared/vcm_\*.dat .

You should generate a private and a public key on the machine
where you issue the scp command, and transfer the public key
to the machine where you get the data. Put this public key in a
file called ~/.ssh/authorised_keys (look in the manual of your
ssh-keygen command). Then there will be no need for using
passwords in your script, making the transfer more secure.
 
01.23.2005 at 09:25PM PST, ID: 13118723
jmcg:
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.

I will leave the following recommendation for this question in the Cleanup topic area:
   Split: liddler {http:#9048903} & gheist {http:#9065277}

Any objections should be posted here in the next 4 days. After that time, the question will be closed.

jmcg
EE Cleanup Volunteer
 
01.24.2005 at 08:17AM PST, ID: 13122743
PsiCop:
*shrug* Whatever
 
01.28.2005 at 01:49AM PST, ID: 13161418
modulo:
Forced accept.

modulo
Community Support Moderator
 
 
20080716-EE-VQP-33