Re: SSH SFTP and AutomationFrom: Nico Kadel-Garcia (firstname.lastname@example.org)
- Next message: James Tang: "Re: SSL, Java and Tomcat-Apache"
- Previous message: TheMartian: "Re: ssh server for windoze"
- In reply to: Mark Fitchett: "SSH SFTP and Automation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Nico Kadel-Garcia" <email@example.com> Date: Wed, 29 May 2002 23:54:38 GMT
"Mark Fitchett" <firstname.lastname@example.org> wrote in message
> I am looking to create a secure means of uploading files across the
> I have an SSH server running on Windows, using the F-Secure software.
> Do I need to run SFTP to ensure that the information sent is encrypted
> during upload ?
Use "scp" or use "rsync -e ssh".
> Ideally I'd liek to automate this process but Im told by the supplier that
> the only way to do this is to use null passphrases in the certificates.
The supplier is wrong or left things out. You can also use ssh-agent to
store password using keys for dynamic use, and flush them when the system
reboots. This keeps passwordless keys out of NFS directories or locally
> Is this secure or just best practice for this ?
> Thanks in anticipation.
Take a look at also using chroot cages to restrict access to an SSH
directory if you're really worried about potential damage from remote users.