12-18-2009
Quote:
Originally Posted by
zaxxon
Why that? You can usually copy from anywhere in both directions with scp, as well as you can with rcp.
Allowed pub-key makes filteransfer much more relaxing.
In our internal environment we mostly use pubkey authentication to run our file transfers via scp.
Exchanging keys is usually more secure than having the username and password unencrypted in some file.
There are plenty of threads in the forum and also on the web how to setup passwordless pub key authentication. Use the forum's search engine maybe.
Zax one example you can't allow SCP is because of security standards. I have to use the SFTP-internal subsystem jailing and that doesn't allow any protocol but SFTP. You can still do Pubkey authentication with it though. THe scripting is a little more of a challenge though hah
Also Jim, how do you run a script with no controlling terminal? like ssh -t?
10 More Discussions You Might Find Interesting
1. Windows & DOS: Issues & Discussions
Hello all,
I have a bit of trouble working a passwordless SSH from UNIX to Cygwin running windows 2k3. Here are some details. I AM able to SSH from the Windows box to the UNIX box using the keys. Also, I'm able to SSH from UNIX to Windows w/o the keys. However, when I try to do it with the keys... (9 Replies)
Discussion started by: kclerks11
9 Replies
2. UNIX for Dummies Questions & Answers
Hi everyone,
I have a quick/newb question:
I know that a public key is used to encrypt data and a private key is used to decrypt data but who keeps the public/private keys??
Does the Web Server hold both?
Does the Web Server have the public key and does the client have the private key? ... (3 Replies)
Discussion started by: tical00
3 Replies
3. UNIX for Dummies Questions & Answers
Hi,
please guide me create a public/private key using ssh-keygen, lets say I have been access to server named pngpcdb1with a userid and password ...!!! and also please explain in detail the concept of these keys and ssh as I was planning to use them in ftp related scripts..! Thanks in... (1 Reply)
Discussion started by: rahul125
1 Replies
4. Shell Programming and Scripting
Hi all,
I needed a shell script for file transfering using public/private keys for authentication.
Could you please help me out on this?
A procedure to write a shell script is enough.
Thanks in advance.
Regards.
Vidya N (8 Replies)
Discussion started by: Vidya N
8 Replies
5. Shell Programming and Scripting
Hi All,
I have a query....say on server A, I have generated the Private and Public keys and shared the public key with server B.
Now i can surelyconnect(without password) from server A to server B.....
but can i similarly connect from server B to server A as well
Regards (1 Reply)
Discussion started by: Arpit Narula
1 Replies
6. Shell Programming and Scripting
hi guys , i have few files i have to do sftp, the public and private key work like a magic , no problem at all
the syntax is as below
sftp -0 identityfile=~/ure/blsl/loc2/.ssh/id_rsa_ssh1 ssh1@remote >log_dir/file.timestamp<<end
lcd folder
cd folder
put *
quit
end
================
my... (3 Replies)
Discussion started by: rockymayavia
3 Replies
7. Solaris
Hi i am using solaris 10.I am trying to setup a public/private key but it is not working.Appreciate your repsonse on it
There are two servers DB1 server and DB2 server.
1)I have generated public/private key using below step on both servers.
ssh-keygen -t rsa
2)From DB1 server moved the... (6 Replies)
Discussion started by: muraliinfy04
6 Replies
8. UNIX for Dummies Questions & Answers
Hi,
What tool is used to generate public and private keys for SCP?
Do you have an example script that generates these keys, puts them in files and then another example script that references them from SCP?
Thanks, (9 Replies)
Discussion started by: Astrocloud
9 Replies
9. Shell Programming and Scripting
Hi All,
I have a requirement where i need to check if an rsa public key corresponds to a private key and hence return success or failure. Currently i am using the command
diff <( ssh-keygen -y -e -f "$PRIVKEY" ) <( ssh-keygen -y -e -f "$PUBLICKEY" )
and its solving my purpose. This is in... (1 Reply)
Discussion started by: mritusmoi
1 Replies
10. UNIX for Advanced & Expert Users
Hi,
we have private and public key, encrypt file using public and want to decrypt using private key. can you please advise below commands are correct or other remedy if unix have?
encrypt -a arcfour -k publickey.asc -i TESTFILE.csv -o TESTFILE00.csv
decrypt -a arcfour -k privatekey.asc... (2 Replies)
Discussion started by: rizwan.shaukat
2 Replies
LEARN ABOUT DEBIAN
astgenkey
ASTGENKEY(8) Linux Programmer's Manual ASTGENKEY(8)
NAME
astgenkey - generates keys for for Asterisk IAX2 RSA authentication
SYNOPSIS
astgenkey [ -q ] [ -n ] [ keyname ]
DESCRIPTION
astgenkey This script generates an RSA private and public key pair in PEM format for use by Asterisk. The private key should be kept a
secret, as it can be used to fake your system's identity. Thus by default (without the option -n ) the script will create a passphrase-
encrypted copy of your secret key: without entering the passphrase you won't be able to use it.
However if you want to use such a key with Asterisk, you'll have to start it interactively, because the scripts that start asterisk can't
use that encrypted key.
The key is identified by a name. If you don't write the name on the command-line you'll be prompted for one. The outputs of the script are:
name.pub
The public key: not secret. Send this to the other side.
name.key
The private key: secret.
Those files should be copied to /var/lib/asterisk/keys
(The private key: on your system. The public key: on other systems)
To see the currently-installed keys from the asterisk CLI, use the command
show keys
OPTIONS
-q
Run quietly.
-n
Don't encrypt the private key.
SECURITY
The keys are created, using the umask of the user running the command. To create the keys in a secure manner, you should check to ensure
that your umask is first set to disallow the private key from being world- readable, such as with the following commands:
umask 0066
astgenkey yourkey
And then make the key accessible to Asterisk (assuming you run it as user "asterisk").
chown asterisk /var/lib/asterisk/keys/yourname.*
FILES
/var/lib/asterisk/keys
SEE ALSO
asterisk(8), genrsa(1), rsa(1),
http://www.voip-info.org/wiki-Asterisk+iax+rsa+auth
AUTHOR
This manual page was written by Tzafrir Cohen <tzafrir.cohen@xorcom.com> Permission is granted to copy, distribute and/or modify this docu-
ment under the terms of the GNU General Public License, Version 2 any later version published by the Free Software Foundation.
On Debian systems, the complete text of the GNU General Public License can be found in /usr/share/common-licenses/GPL-2.
Asterisk May 14th, 2005 ASTGENKEY(8)