sftp question

From: Joseph Vaughn (vaughn_at_chemmail.chem.fsu.edu)
Date: 09/16/05

Next message: Darren Tucker: "Re: problem with ssh and pam"

Previous message: Mark Senior: "RE: audit perspective: proof that all connections are encrypted"
Next in thread: Chris Clymer: "Re: sftp question"
Reply: Chris Clymer: "Re: sftp question"
Reply: Miro Dietiker, MD Systems: "AW: sftp question"
Reply: Bryn Smith: "Re: sftp question"
Maybe reply: pmandal_at_cisco.com: "RE: sftp question"
Reply: D.N.Vaidya: "Re: sftp question"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 16 Sep 2005 15:43:26 -0400
To: secureshell@securityfocus.com

Hello

I hope someone can help me with the following problem.

Background: We are using SUN hosts running Solaris9. For more than
15 years we have had our users launch a Cshell script to create a tar
file. It also does ftp data transfer in the background for
archiving on remote Macintosh computers. The users just type the
name of the script on the command line and then he/she enters a file
name. The process uses .netrc which contains the remote password.
Permissions are set so that the users cannot read the contents of
.netrc.
So, the user does not know the password on the archiving host. Of
course ftp has huge security problems. So, I am trying to create a
similar process using sftp. I have tried to do this using SUN's
Solaris9 ssh-keygen, ssh-agent, ssh-add, etc. I have tried
"passwordless" sftp setups I have found on websites. This
description is improper. They don't require your normal password,
but they do require a new "passphrase" (ie a new password).

My question: Help?! Can you tell me how to get Solaris9's version
of sftp/ssh to work in such a fashion as I described above. That
is, sftp launched with a Cshell script and have the
password/passphrase entered in the background perhaps by another
shell script, which is called by the first one.

Regards.

Joseph Vaughn

-- 
Dr. Joseph Vaughn
NMR Facility Associate Director
Department of Chemistry and Biochemistry
Florida State University
Tallahassee, FL 32306-4390
850-644-3334   Phone
850-644-8281   Fax
vaughn@chem.fsu.edu

Next message: Darren Tucker: "Re: problem with ssh and pam"

Previous message: Mark Senior: "RE: audit perspective: proof that all connections are encrypted"
Next in thread: Chris Clymer: "Re: sftp question"
Reply: Chris Clymer: "Re: sftp question"
Reply: Miro Dietiker, MD Systems: "AW: sftp question"
Reply: Bryn Smith: "Re: sftp question"
Maybe reply: pmandal_at_cisco.com: "RE: sftp question"
Reply: D.N.Vaidya: "Re: sftp question"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

AW: sftp question
... The passphrase is to protect a key against stealing. ... 15 years we have had our users launch a Cshell script to create a tar ... similar process using sftp. ... Dr. Joseph Vaughn ...
(SSH)
Re: sftp question
... gives you the option of having an empty passphrase, ... On Sep 16, 2005, at 3:43 PM, Joseph Vaughn wrote: ... > 15 years we have had our users launch a Cshell script to create a tar ... > are set so that the users cannot read the contents of .netrc. ...
(SSH)