10-11-2008
It is apparently attempting kerberos authentication, your local host does not seem to support it.
10 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Hey all,
I am writing a script for sFTP using batchfile option (-B). My script is supposed to monitor a certain directory for several files and when they are found I will send them to a testing server. So using a static batchfile wouldn't be feasible, I am just wondering if anyone can show... (0 Replies)
Discussion started by: mpang_
0 Replies
2. Shell Programming and Scripting
Hi All,
I need to write a UNIX script that automates the sftp process. I should be able to do a sftp to a secure box and get a file from there. I am having a problem doing this because no matter what I do, when I run my script, I get a prompt at command line asking for a password. How could I... (34 Replies)
Discussion started by: priyamurthy2005
34 Replies
3. AIX
Hi,
Could you please help to solve the below issue...
my requirement is automate the SFTP between UNIX and Windows server.
I want to get and put some files to UNIX AIX machine(SFTP client) to Windows server(SFTP server).
For that, i have generated key pair (private/public) in my AIX machine .... (6 Replies)
Discussion started by: mahiban
6 Replies
4. Shell Programming and Scripting
Hi,
I read a couple of forum entries about scripting sftp using the '-b' option, but in my case it still prompts for the password. Does anyone have a sample script for an sftp block to 'get' files from the remote server without prompting for a password?
Both the remote and the local servers... (1 Reply)
Discussion started by: ChicagoBlues
1 Replies
5. Shell Programming and Scripting
How to automate sftp with out using expect script?
My batch file has the password but it is not taking. Please see below.
I want to use this sftp connection in a loop for pushing new files in a directory one at a time. Hence I can not use an expect script.
bash-2.05$... (5 Replies)
Discussion started by: Tuxidow
5 Replies
6. UNIX for Dummies Questions & Answers
Hi,
I'm using Sun Solaris OS. I have configured sftp and can exchange files in command prompt. Now when I try to automate it in ksh script, facing issue as I want to capture the status if the transfer was successful or not. So tried sftp -b and sftp -B option but its not working.
The... (3 Replies)
Discussion started by: shinny
3 Replies
7. Shell Programming and Scripting
I am trying to use a for loop in my expect cmdFile that I am calling.
I want to be able to call either one file name or a series of file names in the working directory (that I won't know the names before hand) and then pass the names to the sftp program.
Something like for i in (ls *txt)
do (0 Replies)
Discussion started by: vedder191
0 Replies
8. UNIX for Dummies Questions & Answers
Hi, guys, I am trying to automate a sftp process using "expect" method (since the key authentication method is disabled in my company network, there is no helping it).
In order to try, I type in the command manually:
sftp @ > << EOF
>cd
>ls -l
>EOF
>Connecting to
@servername password:
... (3 Replies)
Discussion started by: warmboy610
3 Replies
9. Shell Programming and Scripting
hi,
I am trying to automate a file download process using sftp. There is some logic to download files.
1) I need to login to destination server and then go to folder.
2) find list of files and count
3) using list of files I need to eliminate three selective files and download remaining... (1 Reply)
Discussion started by: getmilo
1 Replies
10. Shell Programming and Scripting
hi guys the script is working but i need to change the file that i want to get to the latest.. i will use this as cron so i can get the latest sftp file evryday.
pls help..
set user "big_user"
set IP "XX.XX.XX"
set dir "/export/home/oracle/REF/INPUT"
spawn sftp $user@$IP
expect sftp>
... (7 Replies)
Discussion started by: JONATHAN0919
7 Replies
LEARN ABOUT LINUX
auth_krb5
AUTH_KRB5(8) InterNetNews Documentation AUTH_KRB5(8)
NAME
auth_krb5 - nnrpd Kerberos v5 authenticator
SYNOPSIS
auth_krb5 [-i instance]
DESCRIPTION
This program does authentication for nnrpd against a Kerberos v5 KDC. This is NOT real Kerberos authentication using service tickets;
instead, a username and password is used to attempt to obtain a Kerberos v5 TGT to confirm that they are valid. As such, this
authenticator assumes that nnrpd has been given the user's username and password, and therefore is not as secure as real Kerberos
authentication. It generally should only be used with NNTP over TLS to protect the password from sniffing.
Normally, you do not want to use this authenticator. Instead, use ckpasswd with PAM support and configure the nnrpd PAM stack to use a
Kerberos PAM module. A full Kerberos PAM module is more sophisticated about how it validates passwords and has a much broader array of
options than this authenticator.
OPTIONS
-i instance
If this option is given, instance will be used as the instance of the principal received from nnrpd and authentication will be done
against that principal instead of the base principal. In other words, a principal like "user", when passed to auth_krb5 invoked with
"-i nntp", will be transformed into "user/nntp" before attempting Kerberos authentication.
Since giving one's password to nnrpd is not as secure as normal Kerberos authentication, this option supports a configuration where all
users are given a separate instance just for news authentication with its own password, so their regular account password isn't exposed
via NNTP.
EXAMPLE
The following readers.conf(5) fragment tells nnrpd to authenticate users by attempting to obtain Kerberos v5 TGTs for them, appending an
instance of "nntp" to usernames before doing so:
auth kerberos {
auth: "auth_krb5 -i nntp"
}
access kerberos {
users: "*/nntp"
newsgroups: example.*
}
Access is granted to the example.* groups for all users who successfully authenticate.
BUGS
Currently, any username containing realm information (containing "@") is rejected. This is to prevent someone from passing in a username
corresponding to a principal in another realm that they have access to and gaining access to the news server via it. However, this is also
something that people may wish to do under some circumstances, so there should be a better way of handling it (such as, perhaps, a list of
acceptable realms or a -r flag specifying the realm in which to attempt authentication).
It's not clear the right thing to do when the username passed in contains a "/" and -i was also given. Right now, auth_krb5 will create a
malformed Kerberos principal with multiple instances and attempt to authenticate against it, which will fail but perhaps not with the best
error message.
HISTORY
Originally written by Christopher P. Lindsey. This documentation was written by Russ Allbery <rra@stanford.edu> based on Christopher's
original README file.
$Id: auth_krb5.pod 8595 2009-08-21 08:29:26Z iulius $
SEE ALSO
ckpasswd(8), nnrpd(8), readers.conf(5).
The latest version of Christopher's original nnrpkrb5auth may be found on his web site at <http://www.mallorn.com/tools/>.
INN 2.5.3 2009-09-11 AUTH_KRB5(8)