Re: HELP can't get host-based authentication to work!
From: Simon Tatham (anakin_at_pobox.com)
Date: 08/14/03
- Previous message: Nico Kadel-Garcia: "Re: HELP can't get host-based authentication to work!"
- In reply to: Gary Blydenburgh: "Re: HELP can't get host-based authentication to work!"
- Next in thread: Richard E. Silverman: "Re: HELP can't get host-based authentication to work!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 14 Aug 2003 13:56:23 +0100 (BST)
Gary Blydenburgh <gary@blydenburgh.com> wrote:
> I guess it would make sense to tell you what I am trying to accomplish.
> I have a script that is going to run every hour to pick up a file from a
> server on an untrusted network. I want the script to run under a certain
> userid and not have to worry about inputting a password, a secure RSH. The
> instructions are calling this host-base authentication.
I'd recommend using public-key authentication, and setting up a
specific public key which is restricted on the server side, so that
a user authenticating with that public key is only allowed to run
the single command which prints out the contents of this file.
That way, you can store that public key on disk without a
passphrase, and even if someone manages to steal it they haven't
gained full access to the server account - _all_ they've acquired is
the ability to read the contents of this file.
-- Simon Tatham "I'm cross. I'm going to have a tantrum. <anakin@pobox.com> <pause> How do I start?" - my uncle
- Previous message: Nico Kadel-Garcia: "Re: HELP can't get host-based authentication to work!"
- In reply to: Gary Blydenburgh: "Re: HELP can't get host-based authentication to work!"
- Next in thread: Richard E. Silverman: "Re: HELP can't get host-based authentication to work!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
