Question

SFTP password issue

Asked by: rjaishetty

Hi All,

We are in the process of changing our File transfers  to Secure mode using SecureShell.
We already have scripts to Do File transfer using FTP client (i.e, non secure mode) and
iam giving one example, which explains how we automate regular FTP.

Now we are changing all of them to SFTP or Secure transfer mode/encrypted.

Our old regiular scripts are some thing like this


ftp -n -i -v  ftp.url.com <<!
user username password
cd /data/shared/
lcd /data/import
mget vcm*.dat
bye
!

In this case, we are giving the password directly or as an argument or in a batch file.


Coming to SFTP,by using -B option(Batch file)


SFTP -B /devl/test.batch user@ftp.url.com


test.batch contains the following data.
      user_password
      pwd /user/data/shared
      get vcm_today.dat
      quit


SFTP exceuting the password as a command and coming out as a Bad command.

My question is

How to Automate the SFTP Scripts by passing Password as an argument or in a File.

Responses are highly appreciated.

Thanks in advance,
Rad

This Question has been solved and asker verified All Experts Exchange premium technology solutions are available to subscription members.

Subscribe now for full access to Experts Exchange and get

Instant Access to this Solution

  • Plus...
  • 30 Day FREE access, no risk, no obligation
  • Collaborate with the world's top tech experts
  • Unlimited access to our exclusive solution database
  • Never be left without tech help again

Subscribe Now

Asked On
2003-08-01 at 07:57:45ID20696945
Tags

sftp

,

password

,

batch

Topic

Unix Networking

Participating Experts
4
Points
500
Comments
14

Trusted by hundreds of thousands everyday for fast, accurate and reliable tech support.

  • "The time we save is the biggest benefit of Experts Exchange to Warner Bros. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange." Mike Kapnisakis, Warner Bros.
  • "Our team likes having a resource that is more secure than just using Google and most experts using this service really know their stuff. It's nice to look here first versus using Google." Dayna Sellner, Lockheed Martin
  • "Anytime that I've been stumped with a problem, 9 out of 10 times Experts Exchange has either the accepted solution or an open discussion of the potential solution to the problem." Kenny Red, eBay Inc.

See what Experts Exchange can do for you.

Got a question?

We've got the answer.

Experts Exchange has been collecting answers to technology questions since 1996…3 million and counting! If you have a question, chances are we already have your answer.

Screenshot of Experts Exchange Knowledgebase

Need individual assistance?

Our experts are ready to help.

If you can't find the exact answer you're looking for, ask our exclusive community of 50,000 experts. You’ll get a personalized answer from a trusted professional.

Screenshot of Experts Exchange Knowledgebase

Want to learn from the best?

Read articles from industry experts.

Thousands of free tech tips, tricks, how-to’s and tutorials are available in our peer reviewed articles section. See for yourself how smart our experts are, no login required.

Screenshot of an Article

Working on a long term project?

Store your work and research.

Save solutions to your questions, answers you’ve discovered through searching plus helpful articles in your personal knowledgebase for easy future access.

Screenshot of Experts Exchange Knowledgebase

Access the answers to your technology questions today.

Subscribe Now

30-day free trial. Register in 60 seconds.

What Makes Experts Exchange Unique?

Members of the expert community talk about why the experience at Experts Exchange is different than what you will find anywhere else.

Trusted by the world's most respected brands.

image of each brand's logo

Faithfully serving IT professionals since 1996.

Experts Exchange Logo

Try it out and discover for yourself.

Subscribe Now

30-day free trial. Register in 60 seconds.

Related Solutions

  1. SFTP and FTP
    Greetings, (i) What is the differnece between an FTP and SFTP? (Can u make the explanation bit simpler since i am not that technically sound in Unix) (ii) What are the process and modifications to be done while converting from the FTP to SFTP?? Thanks in Advance.
  2. sftp
    I am trying to upload some files to a website that uses sftp ; I have used some ftp clients that require manual intervention to upload the files and are some fee ftp clients; But I now have to automate that process, where it can schedule the job to run in the task scheduler a...
  3. SFTP VS. FTP
    A Simple question... How does SFTP work compared to FTP? Also is SFTP really secure? Thanks, Sporenza
  4. SFTP Server for linux
    Hi I ve a limited knowledge on sftp services on linux systems. I m planning to replace our old ftp server with sftp. I m looking for some advice or experiences please. free as well as $$ soluions are welcome. Thanks in advance.
  5. automatic sftp
    I want to try automatic sftp of files using a script that runs on cron. I've used automatic ftp in which you supply username & password too. But sftp seems to be different. Can anyone help me about how to achieve this? Thanks, m_razesh.
  6. SFTP Requirements
    Just to verify...If I want to do SFTP, all I need is an SFTP-capable tool on my side, and a SSL Certificate on the domain name; no special arrangement with the hosting service is required, no special settings for IIS on the Virtual Private Server (that's the current target)....

Free Tech Articles

  1. WARNING: 5 Reasons why you should NEVER fix a computer for free.
    It is in our nature to love the puzzle. We are obsessed. The lot of us. We love puzzles. We love the challenge. We thrive on finding the answer. We hate disarray. It bothers us deep in our soul. W...
  2. SCCM OSD Basic troubleshooting
    SCCM 2007 OSD is a fantastic way to deploy operating systems, however, like most things SCCM issues can sometimes be difficult to resolve due to the sheer volume of logs to sift through and the dispe...
  3. Migrate Small Business Server 2003 to Exchange 2010 and Windows 2008 R2
    This guide is intended to provide step by step instructions on how to migrate from Small Business Server 2003 to Windows 2008 R2 with Exchange 2010. For this migration to work you will need the fo...
  4. Create a Win7 Gadget
    This article shows you how to create a simple "Gadget" -- a sort of mini-application supported by Windows 7 and Vista. Gadgets can be dropped anywhere on the desktop to provide instant information, ...
  5. Outlook continually prompting for username and password
    There have been a lot of questions recently regarding Outlook prompting for a username and password whilst using Exchange 2007. There are a few reasons why this would happen and I will try to cover t...
  6. Backup Exchange 2010 Information Store using Windows Backup
    There seems to be quite a lot of confusion around the ability to backup Exchange 2010 using the built in Windows Backup feature. This stems from the omission of this feature prior to Exchange 2007 s...

Cloud Class Webinars

  1. Avoiding Bugs in Microsoft Access
    Alison Balter takes and in-depth look at avoiding bugs in Access. In this webinar you will learn about using the immediate window to debug your applications, invoking the debugger, using breakpoints to troubleshoot, stepping through code, setting the next statement to execute, ...
  2. Top 10 Best New Features in Visio 2010
    Scott Helmers gives live demonstrations of the top 10 new features in Visio 2010. This webinar will teach you how to create compelling diagrams by adding shapes to the page with a single click, linking the shapes in a diagram to data in Excel (or SQL Server, or SharePoint), ...
  3. IT Consultant Business Secrets Revealed
    Michael Munger, Experts Exchange tech pro and IT consultant, pulls back the curtain on his very successful businesses and answers question on every IT consultant and business owner should know about. He shares secrets on what he did to solve the 5 most common problems in IT, ...
  4. Disaster Recovery and Business Continuity
    Quest CTO, Mike Billon, gives an overview of the steps involved in building a dunamic disaster recovery plan. Through case studies and an examination of software/hardware tooles for monitoring and testing, you'll gain a better understandin of where you are, where you want ...
  5. Organize Your Visio Diagrams with Containers and Lists
    Scott Helmers uses cross functional flowcharts, wireframe diagrams, data graphic legends and seating charts to teach you: how to ustilize all three new structured diagram components in Visio 2010, the best practices for organizeing shapes in previous version of Visio, how to organize ...
  6. How to Us Objects, Properties, Events and Methods in Microsoft Access
    Alison Dalter gives an in-depbth look at objects, properties, events and methods in Microsoft Access. In this webinar you will learn about using the object browser, referring to objects, working with properties and methods, working with object variables, understanding the ...

Join the Community

Give a Little. Get a Lot.

Join the community of experts here and help other tech pros by answering question in your area of expertise. You can earn FREE access to all Experts Exchange's premium features and resources.

Join the Community

Answers

 

by: liddlerPosted on 2003-08-01 at 08:02:20ID: 9048903

2 ways:
Install configure expect scripting language (http://expect.nist.gov/)
or
use secure key exchange instead of passwords

 

by: PsiCopPosted on 2003-08-01 at 08:13:54ID: 9049035

I would recommend Secure Key Exchange. One time and its done. Not that Expect (or something like it) won't work, I just think it'll be more complex and harder to maintain in the long run.

 

by: rjaishettyPosted on 2003-08-01 at 08:15:00ID: 9049043

liddler  replied:
2 ways:
Install configure expect scripting language (http://expect.nist.gov/)
or
use secure key exchange instead of passwords  

First one, installing Expect is ruled out in our environment.

Could you please explain me in detail about the 2 nd option (Secure Key Exchange).


Thanks a tonn,
Rad

 

by: liddlerPosted on 2003-08-01 at 08:24:13ID: 9049139

run ssh-keygen -t dsa, with a blank passphrase on source machine
this creates a file under $HOME/.ssh/id_dsa.pub
copy this into $HOME/.ssh/authorized_keys on the target machine, then running ssh / sftp from the source machine will inspect the key and work without password.
Note: ssh is very strict about ownership / permissions on the .ssh/ directory

 

by: rjaishettyPosted on 2003-08-01 at 08:46:24ID: 9049337

Thanks liddler ,

When I am running ssh -keygen -t dsa , it is coming with a warning

warning: Connecting to dsa failed: No address associated to the name

Iam new to Unix environment, Could you please explain me.

Our Vendors(in this case, Target m/c), they restrict to enter password for every FTP/SFTP connection.
As per your suggestion, I understand that by Key Generation, Secure Shell is going to use the Keys on the both sides and creates a connection with have to out entering a password.

Please let me know, how to generate a Key for a particular Host (lets say ftp.yahoo.com) with
user_name "ftpuser" and password "ftppwd".


And explain me, why we are getting the Warning in running the Keygeneration.


Thanks a lot for your help.

Thanks
Rad

 

by: liddlerPosted on 2003-08-01 at 09:04:48ID: 9049502

no spaces
ssh-keygen
not
ssh -keygen
you create the key for a user on the host by running the ssh-keygen command on that machine, as that user.
(ssh-kegen should be in /usr/local/bin)

 

by: rjaishettyPosted on 2003-08-01 at 10:16:55ID: 9050145

Thanks again liddler. I appreciate your patience.

Few more doubts!!!!  I am very new to Unix and know that you guys are DONs in UNix, your help/suggestions in clarifying me in this issue are highly honoured.

I logged on one server (Lets say Source server) as LocalUser
and trying to connect to a Remote Server (Target server) with Host ftp.host.com and
logging into Remote m/c using RemoteUser name and password is RemotePasswd.

When I am doing sftp -B test.bat RemoteUser@ftp.host.com
Its prompting for Password, after entering it, I can do transfer of fiels safely.

As per your suggestion,

I have to generate some Keys on Source m/c. DO we have any mechanism to generate such Keys
with specific Host Name, Remote User and accessing password (in mycase, ftp.host.com, RemoteUser and RemotePasswd)

If I generate such keys, What kind of privileges that connection going to have ?

My UNIX login(LocalUser) privileges  or Remote User privileges  and How to generate Host Based keys by using the User Name, Password and Host.


Please clarify me.

Thanks,
Rad

 

by: liddlerPosted on 2003-08-01 at 15:09:16ID: 9051971

Rad
>If I generate such keys, What kind of privileges that connection going to have ?

The priviledges of the remote user, basically you are telling the remote machine that the localuser, coming from the local machine are to be treated as the remote user on the remote machine.

If you look at the .pub file, you will see it specifes the local hostname and username, by putting these in the authorized_keys file on the remote machine you are telling the remote machine to treat that user from that machine, the same as the user whose authorized_keys file you add the entry into.

One more thing, if you copy and paste the .pub key between two telnet or X windows sessions, make sure the paste does not insert line feeds into the key, or ^M characters if you are going via DOS.  The key must be all on one line.


 

by: gheistPosted on 2003-08-03 at 23:14:29ID: 9065277

or you can use scp (scp collection@host collection@host)
or you can prime up ssh-agent:
$ eval `ssh-agent`
$ ssh-add
enter passworts when asked
$ ssh etc now is without passwords
$ ssh-agent -k
(true for openssh)

 

by: gheistPosted on 2003-08-04 at 02:20:16ID: 9067081

or ssh-agent > sshscript
. ~/sshscript ; ssh-add
#and then run
. ~/sshscript
# every time you need ssh keys without password

 

by: rgeersPosted on 2003-08-13 at 04:56:39ID: 9137851

your script suggests using the command:

scp user@ftp.url.com/data/shared/vcm_\*.dat .

You should generate a private and a public key on the machine
where you issue the scp command, and transfer the public key
to the machine where you get the data. Put this public key in a
file called ~/.ssh/authorised_keys (look in the manual of your
ssh-keygen command). Then there will be no need for using
passwords in your script, making the transfer more secure.

 

by: PsiCopPosted on 2005-01-24 at 08:17:56ID: 13122743

*shrug* Whatever

20120131-EE-VQP-002

3 Ways to Join

30-Day Free Trial

The Experts

98% positive feedback on 31,087 answers since March 2000. angeliii is a Microsoft Most Valuable Professional for his work with MS SQL Server & Develoment.

He has also proven his knowledge of Visual Basic Programming, PHP Scripting and Oracle Databases.

The Experts

97% positive feedback on 10,752 answers since July 2000. lrmoore has more than 18 years experience in the networking industry.

The six-time Mircosoft MVPs specialties include firewalls, virtual private networking, and network management.

Testimonials

"...and excellent source for support... Kind of like having your very own IT dept." Electriciansnet

Testimonials

"I was apprehensive at signing up at first. However... it has already made my life as an IT administrator much easier." JaCrews

Testimonials

"WOW! You guys have great, active, and knowledgeable people on here." moore50

Business Clients

Business Clients

In the Press

"If you’ve got a question... Experts Exchange can supply an answer.”

In the Press

"...an invaluable aid for both IT professionals and those who require tech support."

In the Press

"where IT professionals provide quick answers on just about any topic"

Business Account Plans

Loading Advertisement...