Create Keys used to scp file from one server to another
I have some a file that I run on one server by a cron job.
Originally I had a file in my home dir "/home/user/update.sh" In that file I have a command to scp a file to my web server. I created keys so that a prompt for a password would not fail. The files were created in "/home/user/.ssh/id_rsa" and "/home/user/.ssh/id_rsa.pu
This all worked fine. But now the Sys Admin changed some things and all the cron job are now located in "/home/rootcrons/updates/u
It failed because of the Keys. My questions is hwo can I fix this? Do I have to create new keys for "/home/rootcrons/update/*"
Originally I had a file in my home dir "/home/user/update.sh" In that file I have a command to scp a file to my web server. I created keys so that a prompt for a password would not fail. The files were created in "/home/user/.ssh/id_rsa" and "/home/user/.ssh/id_rsa.pu
This all worked fine. But now the Sys Admin changed some things and all the cron job are now located in "/home/rootcrons/updates/u
It failed because of the Keys. My questions is hwo can I fix this? Do I have to create new keys for "/home/rootcrons/update/*"
ASKER
Ok thanks for that info I think I know what's wrong now. I'll check it out and let you know if thats it.
You can always provide full path to your private key with -i option:
scp -i /path/to/you/private/key file.to.copy user@remote.server:.
scp -i /path/to/you/private/key file.to.copy user@remote.server:.
ASKER
ok my question
If I run this file:
/home/crons/updates/update
---------------
and within this file I have this script which runs the following file:
#!/bin/bash
php /home/myuser/towebupdate.p
--------------
and within this file I have this script:
scp reportstatement-replace.sq
-------------
which is located:
/home/myuser/reportstateme
------------
where should my keys be placed!
Here?
/home/crons/.ssh/id_rsa.
/home/crons/.ssh/id_rsa.pu
-----------------
Here?
/home/crons/update/.ssh/id
/home/crons/update/.ssh/id
----------------
Here?
/home/myuser/.ssh/id_rsa.
/home/myuser/.ssh/id_rsa.p
Thanks
If I run this file:
/home/crons/updates/update
---------------
and within this file I have this script which runs the following file:
#!/bin/bash
php /home/myuser/towebupdate.p
--------------
and within this file I have this script:
scp reportstatement-replace.sq
-------------
which is located:
/home/myuser/reportstateme
------------
where should my keys be placed!
Here?
/home/crons/.ssh/id_rsa.
/home/crons/.ssh/id_rsa.pu
-----------------
Here?
/home/crons/update/.ssh/id
/home/crons/update/.ssh/id
----------------
Here?
/home/myuser/.ssh/id_rsa.
/home/myuser/.ssh/id_rsa.p
Thanks
ASKER
I see your option of specifying the path:
scp -i /path/to/you/private/key file.to.copy user@remote.server:.
but by default how would it work? However would specifying the path be best say if the .sh file in the one directory yet the scp files are in another directory?
Thanks
scp -i /path/to/you/private/key file.to.copy user@remote.server:.
but by default how would it work? However would specifying the path be best say if the .sh file in the one directory yet the scp files are in another directory?
Thanks
By default ssh is looking for keys in $HOME/.ssh directory (exactly as Tintin wrote). If you are running this script from root's crontab, ssh will look for private key in root's home directory/.ssh/key (where key is "identity" for ssh1, and "id_rsa" and "id_dsa" for ssh2).
If you have keys in some nondefault place, then you have specify full path to it with -i option, or - you can create appropriate config file ($HOME/.ssh/config) and define path to your key. (Where $HOME is home directory of user, who runs the script).
Example $HOME/.ssh/config:
Host remote.server
IdentityFile /path/to/your/private/key
If you have keys in some nondefault place, then you have specify full path to it with -i option, or - you can create appropriate config file ($HOME/.ssh/config) and define path to your key. (Where $HOME is home directory of user, who runs the script).
Example $HOME/.ssh/config:
Host remote.server
IdentityFile /path/to/your/private/key
ASKER
So If I would specify the path it would look like this?
scp -i /home/myuser/.ssh/id_rsa.p
scp -i /home/myuser/.ssh/id_rsa.p
This should work regardless of user running the script (as long as this user has read access to specified files of course :))
As this is in script, I would also add full path to file you are uploading.
As this is in script, I would also add full path to file you are uploading.
ASKER
using this:
scp -i /home/myuser/.ssh/id_rsa.p
I got a warning:
@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0644 for '/home/user/.ssh/id_rsa.pu
It is recommended that your private key files are NOT accessible by others.
This private key will be ignored.
bad permissions: ignore key: /home/user/.ssh/id_rsa.pub
Enter passphrase for key '/home/user/.ssh/id_rsa.pu
scp -i /home/myuser/.ssh/id_rsa.p
I got a warning:
@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0644 for '/home/user/.ssh/id_rsa.pu
It is recommended that your private key files are NOT accessible by others.
This private key will be ignored.
bad permissions: ignore key: /home/user/.ssh/id_rsa.pub
Enter passphrase for key '/home/user/.ssh/id_rsa.pu
ASKER
I was also getting Permission Denied
I created the key under /home/myusername/
but root is executing. Could the key be trying to authenticate root and its not matching myusername?
I created the key under /home/myusername/
but root is executing. Could the key be trying to authenticate root and its not matching myusername?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for the help
It doesn't matter where the cronjobs are located, as the scp just uses the keys in /home/user/.ssh
What is failing?
What error message/s are you getting?