05-19-2012
tipotheday.com/2007/09/24/howto-ssh-without-a-password/
- add http:// i cant post a link I dont have enough posts
has the solution I found the link on one of the many posts in this forum - this was the first time i saw stuff about chmod on the target impacting the access (600 for authorized_keys and voila it works)
9 More Discussions You Might Find Interesting
1. Filesystems, Disks and Memory
anybody please tell me how do i get all the information
about buffer cache in hp-ux .if anybody familiar with the system
call them please specify .
i found the extern variables in /sys/buf.h . but that didn't help .:) (2 Replies)
Discussion started by: vish_shan
2 Replies
2. UNIX for Advanced & Expert Users
Hello,
I just want to ask regarding the meaning of the error that we got using sftp:
Connecting to <TARGET SERVER IP>...
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @... (3 Replies)
Discussion started by: james_falco
3 Replies
3. Shell Programming and Scripting
Hi,
I am having unix server SUNW,Sun-Fire-V245.
remote windows server details: Microsoft Windows
In my script i am sftp'ing files to the windows server through sftp command.
But the problem i am facing is, some files are successfully sftp'd to windows server and for some files sftp is... (0 Replies)
Discussion started by: syamkp
0 Replies
4. SuSE
I updated the Suse linux 10.0 OS online .The sysem ask me to reboot to take effects.I do so.But the OS do not load and show the message "Error 15 - The file was not found" What can I Do? It does not login to failesafe mode also.May I do reinstall the os through the cd ? Then HOW? I am Very New the... (0 Replies)
Discussion started by: nandhusky
0 Replies
5. HP-UX
Hello Gurus
I am new to HPUX so kindly help me by providing information related to HPUX. I would like to know the date when HPUX 11i v3 comes in to market as well as I have H3056S student guide dated May 2005 which I download through some site. Now I want to know its a HPUX 11i v2 or HPUX 11i... (8 Replies)
Discussion started by: amity
8 Replies
6. Shell Programming and Scripting
Hello,
Sometimes when i execute my shell that makes sftp it gives me this error:
Couldn't close file: Failure.
What does it mean?, how can i make sure it will do ok?.
Bye (2 Replies)
Discussion started by: rubber08
2 Replies
7. Shell Programming and Scripting
I am trying to send a file from my 9000 box to a vendor using sftp and I am getting this error: Couldn't close file: Failure
Here are the results of my automated script:
Connected to yyy.com.
sftp> pwd
Remote working directory: /
sftp> cd xxxxx/yyyyy_TEST/TEST
sftp> put FILE FILETEST... (1 Reply)
Discussion started by: nickg
1 Replies
8. Shell Programming and Scripting
Hi ,
I need to write a IF condition to know if a SFTP file transfer is successful or not and send email if its failed.
`sftp username@servername <<comm1
cd /directory
put filename
comm1
bye`
I use above commands for my connections. So please help me to write a IF statement.
... (0 Replies)
Discussion started by: krishna87
0 Replies
9. Shell Programming and Scripting
I want to transfer all details of sftp connection into a log file and spawn sftp $PCMSu@$FTP_LOC >> log_file is not working for me. Please suggest how to send the data to a log file that has all information if sftp connection is successful or not?
Script that I am using:
#!/usr/bin/expect... (7 Replies)
Discussion started by: Geeta Yadav
7 Replies
LEARN ABOUT CENTOS
pam_ssh_agent_auth
pam_ssh_agent_auth(8) PAM pam_ssh_agent_auth(8)
PAM_SSH_AGENT_AUTH
This module provides authentication via ssh-agent. If an ssh-agent listening at SSH_AUTH_SOCK can successfully authenticate that it has
the secret key for a public key in the specified file, authentication is granted, otherwise authentication fails.
SUMMARY
/etc/pam.d/sudo: auth sufficient pam_ssh_agent_auth.so file=/etc/security/authorized_keys
/etc/sudoers:
Defaults env_keep += "SSH_AUTH_SOCK"
This configuration would permit anyone who has an SSH_AUTH_SOCK that manages the private key matching a public key in
/etc/security/authorized_keys to execute sudo without having to enter a password. Note that the ssh-agent listening to SSH_AUTH_SOCK can
either be local, or forwarded.
Unlike NOPASSWD, this still requires an authentication, it's just that the authentication is provided by ssh-agent, and not password entry.
ARGUMENTS
file=<path to authorized_keys>
Specify the path to the authorized_keys file(s) you would like to use for authentication. Subject to tilde and % EXPANSIONS (below)
allow_user_owned_authorized_keys_file
A flag which enables authorized_keys files to be owned by the invoking user, instead of root. This flag is enabled automatically
whenever the expansions %h or ~ are used.
debug
A flag which enables verbose logging
sudo_service_name=<service name you compiled sudo to use>
(when compiled with --enable-sudo-hack)
Specify the service name to use to identify the service "sudo". When the PAM_SERVICE identifier matches this string, and if PAM_RUSER
is not set, pam_ssh_agent_auth will attempt to identify the calling user from the environment variable SUDO_USER.
This defaults to "sudo".
EXPANSIONS
~ -- same as in shells, a user's Home directory
Automatically enables allow_user_owned_authorized_keys_file if used in the context of ~/. If used as ~user/, it would expect the file
to be owned by 'user', unless you explicitely set allow_user_owned_authorized_keys_file
%h -- User's Home directory
Automatically enables allow_user_owned_authorized_keys_file
%H -- The short-hostname
%u -- Username
%f -- FQDN
EXAMPLES
in /etc/pam.d/sudo
"auth sufficient pam_ssh_agent_auth.so file=~/.ssh/authorized_keys"
The default .ssh/authorized_keys file in a user's home-directory
"auth sufficient pam_ssh_agent_auth.so file=%h/.ssh/authorized_keys"
Same as above.
"auth sufficient pam_ssh_agent_auth.so file=~fred/.ssh/authorized_keys"
If the home-directory of user 'fred' was /home/fred, this would expand to /home/fred/.ssh/authorized_keys. In this case, we have not
specified allow_user_owned_authorized_keys_file, so this file must be owned by 'fred'.
"auth sufficient pam_ssh_agent_auth.so file=/secure/%H/%u/authorized_keys allow_user_owned_authorized_keys_file"
On a host named foobar.baz.com, and a user named fred, would expand to /secure/foobar/fred/authorized_keys. In this case, we specified
allow_user_owned_authorized_keys_file, so fred would be able to manage that authorized_keys file himself.
"auth sufficient pam_ssh_agent_auth.so file=/secure/%f/%u/authorized_keys"
On a host named foobar.baz.com, and a user named fred, would expand to /secure/foobar.baz.com/fred/authorized_keys. In this case, we
have not specified allow_user_owned_authorized_keys_file, so this file must be owned by root.
v0.8 2009-08-09 pam_ssh_agent_auth(8)