Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to pass password as a variable for sshpass authentication?
Top Forums UNIX for Advanced & Expert Users How to pass password as a variable for sshpass authentication? Post 303034196 by sam@sam on Sunday 21st of April 2019 10:25:45 AM
Old 04-21-2019
How to pass password as a variable for sshpass authentication?
Using below below command i'm able to connect or authenticate server, In below command password contains special characters
Code:
sshpass -v  -p 'ASJBA%hs76)#' ssh -q -o ConnectTimeout=5 hostname

But If I pass password as a variable I'm not able to connect or authenticate server, can you please help me to fix this
Code:
sshpass -v  -p $password ssh -q -o ConnectTimeout=5 hostname

Code:
cat /etc/redhat-release
Red Hat Enterprise Linux Server release 7.4

 

10 More Discussions You Might Find Interesting

1. Cybersecurity

Password Authentication

I would like to know how to validate an unix password from shell script (If is possible) Thanks very much ;) (3 Replies)
Discussion started by: juan_o_morillo
3 Replies

2. UNIX for Advanced & Expert Users

disallowing user/pass authentication in favor of a pure key system?

i finally got my key-pair system working... sort of a makeshift eToken system. however, i only want to allow this sytem for system access. i don't want to allow for the standard user/pass authentication system. right now i changed the following: # To disable tunneled clear text passwords,... (2 Replies)
Discussion started by: xyyz
2 Replies

3. UNIX for Advanced & Expert Users

AIX password authentication very slow

AIX password authentication very slow I installed and already removed openssh and our login on the aix box very slow. It takes 30 seconds to get the password authenticated. How can i debug this problem? and what might be the reason. It was working fine until i tried to get openssh... (0 Replies)
Discussion started by: progressdll
0 Replies

4. Solaris

Enhanced Password Authentication

Hello; I am moving a customer from Solaris 2.6 to Solaris 2.8. The customer has requested the following two requirements also be implemented: 1. Lock a user account out for X number of days after 3 unsuccessful login attempts. 2. No reuse of the last 5-10 passwords. Also referred to... (1 Reply)
Discussion started by: rambo15
1 Replies

5. Solaris

bypass password authentication for sftp in unix

I am using solaris unix 8.2 version. I want to bypass password authentication for sftp. Can you please give some ideas on this. thanks.Regards. (4 Replies)
Discussion started by: vijill
4 Replies

6. Solaris

can't bypass password authentication

I can able to SFTP from my web server unix to apps server unix end. but the other way from APPS server to Web server is still asking me the password. I have done same procedure both side. still i am having same problem. Any one help on this. thanks, regards (3 Replies)
Discussion started by: vijill
3 Replies

7. Shell Programming and Scripting

Password-less RSA Authentication not working

Hello Friends, I know this issue has been raised many times and hence I tried every resolution provided in the forum before I posted this issue again. My Password-less RSA authentication was working fine for quite some time. Whenever the remote server password used to change I used to re-do... (5 Replies)
Discussion started by: mehimadri
5 Replies

8. Solaris

Unable to login password less authentication

Hi, I am facing strange problem in solaris 10. My requirement is that on server A using user test, any user which is created on Server B will be able to login wihtout password (ssh) from Server A All the users which are on Server B are able able to login from Server A using test user. ... (8 Replies)
Discussion started by: manoj.solaris
8 Replies

9. Red Hat

How to pass value of pwd as variable in SED to replace variable in a script file

Hi all, Hereby wish to have your advise for below: Main concept is I intend to get current directory of my script file. This script file will be copied to /etc/init.d. A string in this copy will be replaced with current directory value. Below is original script file: ... (6 Replies)
Discussion started by: cielle
6 Replies

10. UNIX for Dummies Questions & Answers

SSH Keys Authentication keeps asking for password

Hi! Im trying to set access from ServerA(SunOS) to ServerB(Some custom Linux with Keyboard Interactive login) with SSH Keys. As a proof of concept I was able to do it between 2 virtual machines. Now in my real life scenario it isnt working. I created the keys in ServerA, copied them to... (7 Replies)
Discussion started by: RedSpyder
7 Replies

LEARN ABOUT DEBIAN

sshpass

SSHPASS(1)							Sshpass User Manual							SSHPASS(1)

NAME

       sshpass - noninteractive ssh password provider

SYNOPSIS

       sshpass [-ffilename|-dnum|-ppassword|-e] [options] command arguments

DESCRIPTION

       This manual page documents the sshpass command.

       sshpass	is  a  utility	designed for running ssh using the mode referred to as "keyboard-interactive" password authentication, but in non-
       interactive mode.

       ssh uses direct TTY access to make sure that the password is indeed issued by an interactive keyboard user. Sshpass runs ssh in a dedicated
       tty, fooling it into thinking it is getting the password from an interactive user.

       The command to run is specified after sshpass' own options. Typically it will be "ssh" with arguments, but it can just as well be any other
       command. The password prompt used by ssh is, however, currently hardcoded into sshpass.

Options
       If no option is given, sshpass reads the password from the standard input. The user may give at most one alternative source for	the  pass-
       word:

       -ppassword
	      The password is given on the command line. Please note the section titled "SECURITY CONSIDERATIONS".

       -ffilename
	      The password is the first line of the file filename.

       -dnumber
	      number is a file descriptor inherited by sshpass from the runner. The password is read from the open file descriptor.

       -e     The password is taken from the environment variable "SSHPASS".

SECURITY CONSIDERATIONS

       First and foremost, users of sshpass should realize that ssh's insistance on only getting the password interactively is not without reason.
       It is close to impossible to securely store the password, and users of sshpass should consider whether ssh's public key authentication pro-
       vides the same end-user experience, while involving less hassle and being more secure.

       The -p option should be considered the least secure of all of sshpass's options.  All system users can see the password in the command line
       with a simple "ps" command. Sshpass makes a minimal attempt to hide the password, but such attempts are doomed to  create  race	conditions
       without	actually  solving  the problem. Users of sshpass are encouraged to use one of the other password passing techniques, which are all
       more secure.

       In particular, people writing programs that are meant to communicate the password programatically are encouraged to use an  anonymous  pipe
       and pass the pipe's reading end to sshpass using the -d option.

RETURN VALUES

       As with any other program, sshpass returns 0 on success. In case of failure, the following return codes are used:

       1      Invalid command line argument

       2      Conflicting arguments given

       3      General runtime error

       4      Unrecognized response from ssh (parse error)

       5      Invalid/incorrect password

       6      Host public key is unknown. sshpass exits without confirming the new key.

       In  addition,  ssh  might be complaining about a man in the middle attack. This complaint does not go to the tty. In other words, even with
       sshpass, the error message from ssh is printed to standard error. In such a case ssh's return code is reported back. This is  typically	an
       unimaginative (and non-informative) "255" for all error cases.

EXAMPLES

       Run rsync over SSH using password authentication, passing the password on the command line:

       rsync --rsh='sshpass -p 12345 ssh -l test' host.example.com:path .

       To do the same from a bourne shell script in a marginally less exposed way:

       SSHPASS=12345 rsync --rsh='sshpass -e ssh -l test' host.example.com:path .

BUGS

       Sshpass	is in its infancy at the moment. As such, bugs are highly possible. In particular, if the password is read from stdin (no password
       option at all), it is possible that some of the input aimed to be passed to ssh will be read by sshpass and lost.

       Sshpass utilizes the pty(7) interface to control the TTY for ssh. This interface, at least on Linux, has a misfeature  where  if  no  slave
       file  descriptors  are open, the master pty returns EIO. This is the normal behavior, except a slave pty may be born at any point by a pro-
       gram opening /dev/tty. This makes it impossible to reliably wait for events without consuming 100% of the CPU.

       Over the various versions different approaches were attempted at solving this problem.  Any given version of sshpass is released  with  the
       belief  that it is working, but experience has shown that these things do, occasionally, break. This happened with OpenSSH version 5.6.	As
       of this writing, it is believed that sshpass is, again, working properly.

Lingnu Open Source Consulting					  August 6, 2011							SSHPASS(1)
All times are GMT -4. The time now is 04:53 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy