03-29-2016
You should avoid having group write on your how directory as this is a security hole (someone in group "users" could rename .ssh and create their own fake one).
If B has "strictmode" set on the sshd server it will refuse to allow pubkey auth. You should have strictmode set on A as well to avoid possible security issues.
10 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Hi friend
I have a command: sftp -v dtxsttp90102@dtx.us.dell.com
I need to connect sftp server using above command and grep for some files
and need to back to script
can anyone tell me how to write script
connectingSFTP.sh
--------------------
sftpCmd=`sftp -v... (1 Reply)
Discussion started by: kittusri9
1 Replies
2. Shell Programming and Scripting
Hi, When Iam trying to do SFTP it is asking for password everytime. Can I have any alternative where I can provide the password in script itself. Because there are some control-M jobs which runs without user interaction. So please let me know the script where we can provide the password in the... (2 Replies)
Discussion started by: manneni prakash
2 Replies
3. Shell Programming and Scripting
Dear All
I need to discuss about the problem which has been discussed so many times here. I need to transfer a file from server A to server B via passwordless SFTP script. By reading the threads on this topic here, I followed the below steps but still it's not working ..
Pls find the steps... (13 Replies)
Discussion started by: uday.shankar
13 Replies
4. Shell Programming and Scripting
Hi,
In our project we already have a passwordless sftp with -b (batchfile) option working but there have been some new application rolled out at the client site and they want us to raise the DEBUG option somebody suggested to use following options with sftp command
-oLogLevel=DEBUG... (4 Replies)
Discussion started by: dips_ag
4 Replies
5. IP Networking
hi, i want to write a shell script code which transfers files from a directory in unix server to a directory in a windows machine.. can any1 give me a sample code which uses ftp or sftp command..
thanks very much, (3 Replies)
Discussion started by: Little
3 Replies
6. Solaris
Hello Experts,
I am trying to setup passwordless sftp from one of linux box to solaris box.
I have generated key-pair and below is the permissions of the respective files.
drwx------. 2 sftpuser sftpuser 4096 Dec 17 23:57 .ssh
drwx------. 2 sftpuser sftpuser 4096 Dec 17 23:57 .... (16 Replies)
Discussion started by: sai_2507
16 Replies
7. HP-UX
I am trying to connect to remote server in hp-ux, using sftp command (using sftp username@ip and password ) able to connect to remote server but, in this case sftp prompt for password and user need to manually enter it.
I want sftp can read a password define in script or from file, so it can... (1 Reply)
Discussion started by: ketanraut
1 Replies
8. Windows & DOS: Issues & Discussions
HI ,
I am trying to make a passwordless sftp connection from a unix server to windows server
I have used a existing script which is like this
cd /home150/adm/.ssh/
ssh-agent /usr/bin/ksh <<EOF
ssh-add IDBNEWKEY
ssh-add -l
sftp IDBUSER@abc.com
cd /home/IDBUSER/Share/IDB/
rm ${FILE}... (0 Replies)
Discussion started by: Jcpratap
0 Replies
9. UNIX for Beginners Questions & Answers
Hi
I am trying to do SFTP in shell script in such a way that it should not ask for password.
for this is use below script but it prompt for password. here I am not abled to understand where I am making mistake.
#!/bin/bash
# SFTP TO remote server
USER="ITO"
PASSWORD="abcd@1234"... (4 Replies)
Discussion started by: scriptor
4 Replies
10. UNIX for Advanced & Expert Users
Greetings Experts,
I am working for a bank client and have a question on connect-direct and SFTP.
We are using Linux RedHat servers. We use connect-direct to transfer (NDM) files from one server to another server. At times, we manually transfer the files using SFTP from one server to another... (2 Replies)
Discussion started by: chill3chee
2 Replies
LEARN ABOUT DEBIAN
pam_group
PAM_GROUP(8) Linux-PAM Manual PAM_GROUP(8)
NAME
pam_group - PAM module for group access
SYNOPSIS
pam_group.so
DESCRIPTION
The pam_group PAM module does not authenticate the user, but instead it grants group memberships (in the credential setting phase of the
authentication module) to the user. Such memberships are based on the service they are applying for.
By default rules for group memberships are taken from config file /etc/security/group.conf.
This module's usefulness relies on the file-systems accessible to the user. The point being that once granted the membership of a group,
the user may attempt to create a setgid binary with a restricted group ownership. Later, when the user is not given membership to this
group, they can recover group membership with the precompiled binary. The reason that the file-systems that the user has access to are so
significant, is the fact that when a system is mounted nosuid the user is unable to create or execute such a binary file. For this module
to provide any level of security, all file-systems that the user has write access to should be mounted nosuid.
The pam_group module functions in parallel with the /etc/group file. If the user is granted any groups based on the behavior of this
module, they are granted in addition to those entries /etc/group (or equivalent).
OPTIONS
This module does not recognise any options.
MODULE TYPES PROVIDED
Only the auth module type is provided.
RETURN VALUES
PAM_SUCCESS
group membership was granted.
PAM_ABORT
Not all relevant data could be gotten.
PAM_BUF_ERR
Memory buffer error.
PAM_CRED_ERR
Group membership was not granted.
PAM_IGNORE
pam_sm_authenticate was called which does nothing.
PAM_USER_UNKNOWN
The user is not known to the system.
FILES
/etc/security/group.conf
Default configuration file
SEE ALSO
group.conf(5), pam.d(5), pam(7).
AUTHORS
pam_group was written by Andrew G. Morgan <morgan@kernel.org>.
Linux-PAM Manual 06/04/2011 PAM_GROUP(8)