Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: SFTP or scp with password in a batch script without using SSH keys and expect script
Top Forums Shell Programming and Scripting SFTP or scp with password in a batch script without using SSH keys and expect script Post 302941878 by Corona688 on Wednesday 22nd of April 2015 11:10:13 AM
Old 04-22-2015
Not just ssh but any sane login method, including su and sudo, are specifically designed to prevent you from doing exactly what you are trying to do, because it is a horrible idea. Don't do it.

Utilities like sshpass get around this by just giving up and allowing you to create the gaping security holes ssh, su, sudo, and many other authentication methods are designed to prevent. Did you know that whenever you pass a plaintext argument into it, it is briefly visible on your system? This is not a bug. This is just what happens when you do this. sshpass cannot prevent it, it can only try and make the time it is visible as short as possible.
Last edited by Corona688; 04-22-2015 at 12:18 PM..
This User Gave Thanks to Corona688 For This Post:
ss112233
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

SFTP batch script

Hi, I am running an sftp batch script. sftp -b user@host <<EOF >> /tmp/file.out binary put file.txt bye EOF However, I am getting errors. No such file or directory (user@host). I checked the forums which says I need to access the current process eg for linux I would... (3 Replies)
Discussion started by: Bab00shka
3 Replies

2. Shell Programming and Scripting

automatic scp download (without the use of ssh keys)

Hi guys, I need to automate scp downloads from a server to which I do not have the ability to upload my public key for automatic logins. I know there is something called expect, but I wasn't sure if that was the best way to go. Basically I am executing a scp download command and I need the... (2 Replies)
Discussion started by: caprica13
2 Replies

3. HP-UX

sftp/scp/ssh script with password as authentication

Hello, Do you guys know set of commands that can incorporate to sftp/scp/ssh to add password in a script to automate file transfer. Our client is not using ssh keys authentication so we are force to create a script to pass the password into the script to transfer files via sftp/scp/ssh. We... (4 Replies)
Discussion started by: james_falco
4 Replies

4. Shell Programming and Scripting

Need an expect script to copy trusted keys

I would like an expect script that not only transfers over the trusted keys to remote hosts that I've never logged into before via ssh, but it also cats the trusted key into the ~/.ssh/authorized_ksys2 file. Essentially it would be like combining the two scripts below. But I would rather stay away... (2 Replies)
Discussion started by: master-of-puppe
2 Replies

5. Shell Programming and Scripting

sftp batch script with password

I am working on a sftp batch script on a Solaris machine and I need to connect using password. This is not an issue when i do it manually but when I want to make this into a script, i find there are no options for password. Can anyone suggest how I can do it with password? I know using keys is... (3 Replies)
Discussion started by: Leion
3 Replies

6. Shell Programming and Scripting

Passing Password to SSH without using expect in a Script

How can I pass password in SSH command without using expect in a shell program. I don't have expect installed on my Solaris server. #!/bin/bash ssh user@hotname (how to supply pass in script?:wall:) Experts please help its very urgent. Shrawan Kumar Sahu (4 Replies)
Discussion started by: ss135r
4 Replies

7. Shell Programming and Scripting

expect script pushing ssh keys w/ tar extract

ok, I'm new to the forum and I did a few searches and didn't find much on this so here goes. I have a ksh I use to call an expect script that opens a ssh session and then extracts a tar file. The tar file has my prefered .profile and my ssh keys. I want to run this script 1 time on new servers and... (2 Replies)
Discussion started by: gtsonoma
2 Replies

8. Shell Programming and Scripting

Batch script to run in SFTP

Hello Guys, I am writting a script which is SFTPing from Solaris to Windows. I need to run a Batch script in SFTP session (ongoing) which will map a network drive and then transfer my files. I can run the Batch script via SSH but not via SFTP and this mapping is limited to that SSH... (4 Replies)
Discussion started by: Deei
4 Replies

9. Shell Programming and Scripting

scp not working in expect script

Hi All, I run the scp command in shell prompt without issue, but when on expect script as below: #!/usr/bin/expect spawn scp /var/spool/sms/failed.tar.gz abc@10.10.12.2:/home/abc expect "abc@10.10.12.2's password: " send "abcfef\r" exit 0 It looks not working at all and the... (3 Replies)
Discussion started by: elingtey
3 Replies

10. Shell Programming and Scripting

scp script getting timed out with expect

Hi, I have an expect script where in i am trying to scp a folder but it is getting timed out. Any help will be appreciated. (I don't have the option for sharing keys) expect -c 2> /dev/null " spawn scp -r -o NumberOfPasswordPrompts=1 -o StrictHostKeyChecking=no root@10.10.10.10:test_dir... (2 Replies)
Discussion started by: temp_user
2 Replies

LEARN ABOUT DEBIAN

net::scp

SCP(3pm)						User Contributed Perl Documentation						  SCP(3pm)

NAME

       Net::SCP - Perl extension for secure copy protocol

SYNOPSIS

	 #procedural interface
	 use Net::SCP qw(scp iscp);
	 scp($source, $destination);
	 iscp($source, $destination); #shows command, asks for confirmation, and
				      #allows user to type a password on tty

	 #OO interface
	 $scp = Net::SCP->new( "hostname", "username" );
	 #with named params
	 $scp = Net::SCP->new( { "host"=>$hostname, "user"=>$username } );
	 $scp->get("filename") or die $scp->{errstr};
	 $scp->put("filename") or die $scp->{errstr};
	 #tmtowtdi
	 $scp = new Net::SCP;
	 $scp->scp($source, $destination);

	 #Net::FTP-style
	 $scp = Net::SCP->new("hostname");
	 $scp->login("user");
	 $scp->cwd("/dir");
	 $scp->size("file");
	 $scp->get("file");

DESCRIPTION

       Simple wrappers around ssh and scp commands.

SUBROUTINES

       scp SOURCE, DESTINATION
	   Can be called either as a subroutine or a method; however, the subroutine interface is depriciated.

	   Calls scp in batch mode, with the -B -p -q and -r options.  Returns false upon error, with a text error message accessable in
	   $scp->{errstr}.

	   Returns false and sets the errstr attribute if there is an error.

       iscp SOURCE, DESTINATION
	   Can be called either as a subroutine or a method; however, the subroutine interface is depriciated.

	   Prints the scp command to be execute, waits for the user to confirm, and (optionally) executes scp, with the -p and -r flags.

	   Returns false and sets the errstr attribute if there is an error.

METHODS

       new HOSTNAME [ USER ] | HASHREF
	   This is the constructor for a new Net::SCP object.  You must specify a hostname, and may optionally provide a user.	Alternatively, you
	   may pass a hashref of named params, with the following keys:

	       host - hostname
	       user - username
	       interactive - bool
	       cwd - current working directory on remote server

       login [USER]
	   Compatibility method.  Optionally sets the user.

       cwd CWD
	   Sets the cwd (used for a subsequent get or put request without a full pathname).

       get REMOTE_FILE [, LOCAL_FILE]
	   Uses scp to transfer REMOTE_FILE from the remote host.  If a local filename is omitted, uses the basename of the remote file.

       mkdir DIRECTORY
	   Makes a directory on the remote server.  Returns false and sets the errstr attribute on errors.

	   (Implementation note: An ssh connection is established to the remote machine and '/bin/mkdir -p' is used to create the directory.)

       size FILE
	   Returns the size in bytes for the given file as stored on the remote server.  Returns 0 on error, and sets the errstr attribute.  In
	   the case of an actual zero-length file on the remote server, the special value '0e0' is returned, which evaluates to zero when used as
	   a number, but is true.

	   (Implementation note: An ssh connection is established to the remote machine and wc is used to determine the file size.)

       put LOCAL_FILE [, REMOTE_FILE]
	   Uses scp to trasnfer LOCAL_FILE to the remote host.	If a remote filename is omitted, uses the basename of the local file.

       binary
	   Compatibility method: does nothing; returns true.

       quit
	   Compatibility method: does nothing; returns true.

FREQUENTLY ASKED QUESTIONS

       Q: How do you supply a password to connect with ssh within a perl script using the Net::SSH module?

       A: You don't (at least not with this module).  Use RSA or DSA keys.  See the
	  quick help in the next section and the ssh-keygen(1) manpage.

       A #2: See Net::SCP::Expect instead.

       Q: My script is "leaking" scp processes.

       A: See "How do I avoid zombies on a Unix system" in perlfaq8, IPC::Open2, IPC::Open3 and "waitpid" in perlfunc.

GENERATING AND USING SSH KEYS

       1 Generate keys
	   Type:

	      ssh-keygen -t rsa

	   And do not enter a passphrase unless you wanted to be prompted for one during file copying.

	   Here is what you will see:

	      $ ssh-keygen -t rsa
	      Generating public/private rsa key pair.
	      Enter file in which to save the key (/home/User/.ssh/id_rsa):
	      Enter passphrase (empty for no passphrase):

	      Enter same passphrase again:

	      Your identification has been saved in /home/User/.ssh/id_rsa.
	      Your public key has been saved in /home/User/.ssh/id_rsa.pub.
	      The key fingerprint is:
	      5a:cd:2b:0a:cd:d9:15:85:26:79:40:0c:55:2a:f4:23 User@JEFF-CPU

       2 Copy public to machines you want to upload to
	   "id_rsa.pub" is your public key. Copy it to "~/.ssh" on target machine.

	   Put a copy of the public key file on each machine you want to log into.  Name the copy "authorized_keys" (some implementations name
	   this file "authorized_keys2")

	   Then type:

		chmod 600 authorized_keys

	   Then make sure your home dir on the remote machine is not group or world writeable.

AUTHORS

       Could really use a maintainer with enough time to at least review and apply patches more patches.  Or the module should just be deprecated
       in favor of Net::SFTP::Expect or Net::SFTP::Foreign and made into a simple compatiblity wrapper.

       Ivan Kohler <ivan-netscp_pod@420.am>

       Major updates Anthony Deaver <bishop@projectmagnus.org>

       Thanks to Jon Gunnip <jon@soundbite.com> for fixing a bug with size().

       Patch for the mkdir method by Anthony Awtrey <tony@awtrey.com>.

       Thanks to terrence brannon <tbone@directsynergy.com> for the documentation in the GENERATING AND USING SSH KEYS section.

COPYRIGHT

       Copyright (c) 2000 Ivan Kohler Copyright (c) 2007 Freeside Internet Services, Inc.  All rights reserved.  This program is free software;
       you can redistribute it and/or modify it under the same terms as Perl itself.

BUGS

       Still has no-OO cruft.

       In order to work around some problems with commercial SSH2, if the source file is on the local system, and is not a directory, the -r flag
       is omitted.  It's probably better just to use OpenSSH <http://www.openssh.com/> which is the de-facto standard these days anyway.

       The Net::FTP-style OO stuff is kinda lame.  And incomplete.

       iscp doesnt expect you to be logging into the box that you are copying to for the first time. so it's completely clueless about how to
       handle  the whole 'add this file to known hosts' message so it just hangs after the user hits y.  (Thanks to John L. Utz III).  To avoid
       this, SSH to the box once first.

SEE ALSO

       For a perl implementation that does not require the system scp command, see Net::SFTP instead.

       For a wrapper version that allows you to use passwords, see Net::SCP::Expect instead.

       For a wrapper version of the newer SFTP protocol, see Net::SFTP::Foreign instead.

       Net::SSH, Net::SSH::Perl, Net::SSH::Expect, Net::SSH2, IPC::PerlSSH

       scp(1), ssh(1), IO::File, IPC::Open2, IPC::Open3

perl v5.10.0							    2007-10-26								  SCP(3pm)
All times are GMT -4. The time now is 08:17 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy