06-10-2015
Quote:
Originally Posted by
Little
I agree Mr rbattle, things are temporary in this world. But dnt you think there are many people who are going to be benefited with this temporary solution too.
Not really. Nobody's going to need the exact same spaghetti code you used to shoehorn expect into this. expect is not a general solution.
Quote:
There are 1000's of post which have the same solution of using ssh key authentication.
And there will be thousands more until people realize "keys weren't just safer, they were
simpler and
easier in every way. I wasted
so much time and
thousands of lines of code wrangling expect instead of spending 5 minutes to set up proper keys and use the system the way it was designed."
10 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Hi all,
passwd <username> < /var/adm/passwd.txt
cat /var/adm/passwd.txt
abcd1234
abcd1234
when I run this from the script, it comes with:
New password:
It is not able to pick from the location /var/adm/passwd.txt.
thanks in advance. (6 Replies)
Discussion started by: solaix14
6 Replies
2. Shell Programming and Scripting
Hi Friends.
I am new to scripting now i want to change the root password using the script with standard password.
which is the easy scripting to learn for the beginner, Thanks in advance. (2 Replies)
Discussion started by: kurva
2 Replies
3. Shell Programming and Scripting
Hello,
I need assistance with creating a shell script to generate SSL Certificate Requests on remote hosts. Below is my stab at this, but I cannot figure out how to pass the requested arguments into the openssl command correctly. I have a major problem with redirecting the "answers" into the... (2 Replies)
Discussion started by: azvelocat
2 Replies
4. Shell Programming and Scripting
Hello,
I wish to store the password in an rsync script so that when prompted it just enters the password.
I know I can set up passwordless logins, but I have never been able to do this on this particular server so I am resorting to storing the password in the script:
rsync -avz -e ssh... (4 Replies)
Discussion started by: stuaz
4 Replies
5. Shell Programming and Scripting
Hello,
Can you help me to write a shell script for rsync a folder from my server to remote server ?
i do this in ssh by this command :
rsync -avz -e ssh /copy/me/ login@serverip:/where/to
i want have a shell script that do this command.
and you know that this command ask remote... (0 Replies)
Discussion started by: Desperados
0 Replies
6. Programming
Hi All,
I am using Ubuntu machine with JDK 6. I am running following command on shell-
sudo ./somecript
. Now, it prompts for sudo password and I provide the sudo password on shell and "somescript" starts running with sudo permissions.
What I want to do is, I need to execute... (1 Reply)
Discussion started by: jaibhim
1 Replies
7. Shell Programming and Scripting
I'm new into unix.
My question: is possible to write a shell script which will ask for the
ORACLE_HOME, ORACLE_SID, USERNAME, PASSWORD to connect to Oracle db.
In generally we have to set the ORACLE_HOME in .profile file. And after putting the 'sqlplus' command it asks for the username &... (6 Replies)
Discussion started by: priya001
6 Replies
8. Shell Programming and Scripting
Hello,
I have a requirement to shut down and start up my application on different environments (Dev, QA and Prod).
I have around 24 servers. I have to login to each server manually for shutinng down the application.
I wrote a shell command on each server and I am invoking those shell... (2 Replies)
Discussion started by: GDSR Raju
2 Replies
9. Shell Programming and Scripting
Hi ,
I am trying to unzip some file in a dir using shell script ,but it prompts for password to unzip those files ,how would i provide the passoword in the script it self (1 Reply)
Discussion started by: vikatakavi
1 Replies
10. Shell Programming and Scripting
• With this script, users will be able to
o Enter into the recycle bin mode. During this mode, all files deleted will be sent to the recycle bin. The recycle bin will be common to all users.
o View contents of the recycle bin (his/her file(s) only).
o Retrieve a particular file from the recycle... (3 Replies)
Discussion started by: bhavana busetty
3 Replies
LEARN ABOUT CENTOS
tpm_quote_tools
TPM QUOTE
TOOLS(8) TPM QUOTE TOOLS(8)
NAME
TPM Quote Tools
PROGRAMS
tpm_mkuuid, tpm_mkaik, tpm_loadkey, tpm_unloadkey, tpm_getpcrhash, tpm_updatepcrhash, tpm_getquote, tpm_verifyquote
DESCRIPTION
TPM Quote Tools is a collection of programs that provide support for TPM based attestation using the TPM quote operation.
A TPM contains a set of Platform Configuration Registers (PCRs). In a well configured machine, some of these registers are set to known
values during the boot up process or at other times. For example, a PCR might contain the hash of a boot loader in memory before it is
run.
The TPM quote operation is used to authoritatively verify the contents of a TPM's Platform Configuration Registers (PCRs). During provi-
sioning, a composite hash of a selected set of PCRs is computed. The TPM quote operation produces a composite hash that can be compared
with the one computed while provisioning.
To use the TPM quote operation, keys must be generated. During provisioning, an Attestation Identity Key (AIK) is generated for each TPM,
and the public part of the key is made available to entities that validate quotes.
The TPM quote operation returns signed data and a signature. The data that is signed contains the PCRs selected for the operation, the
composite hash for the selected PCRs, and a nonce provided as input, and used to prevent replay attacks. At provisioning time, the data
that is signed is stored, not just the composite hash. The signature is discarded.
An entity that wishes to evaluate a machine generates a nonce, and sends it along with the set of PCR used to generate the composite PCR
hash at provisioning time. For this use of the TPM quote operation, the signed data is ignored, and the signature returned is used to val-
idate the state of the TPM's PCRs. Given the signature, the evaluating entity replaces the nonce in the signed data generated at provi-
sioning time, and checks to see if the signature is valid for the data. If so, this check ensures the selected PCRs contain values that
match the ones measured during provisioning.
A typical scenario for an enterprise using these tools follows. The tools expect AIKs to be referenced via one enterprise-wide Universally
Unique Identifier (UUID). The program tpm_mkuuid creates one.
For each machine being checked, an AIK is created using tpm_mkaik. The key blob produced is bound to the UUID on its machine using
tpm_loadkey. The public key associated with the AIK is sent to the entities that verify quotes. Finally, the expected PCR composite hash
is obtained using tpm_getpcrhash. When the expected PCR values change, a new hash can be generated with tpm_updatepcrhash.
The program to obtain a quote, and thus measure the current state of the PCRs is tpm_getquote. The program that verifies the quote
describes the same PCR composite hash as was measured initially is tpm_verifyquote.
SEE ALSO
tpm_mkuuid(8), tpm_mkaik(8), tpm_loadkey(8), tpm_unloadkey(8), tpm_getpcrhash(8), tpm_updatepcrhash(8), tpm_getquote(8), tpm_verifyquote(8)
Oct 2010 TPM QUOTE TOOLS(8)