Re: How to Use scp non-interactively

From: Chuck (skilover_nospam_at_softhome.net)
Date: 01/05/05 

Date: Wed, 05 Jan 2005 08:41:42 -0500

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

tliang100@yahoo.com wrote:
| Hi,
|
| Thank you for replying. We can not use sftp with a script option
| because we need to get a file and do some processing on it before
| getting the next one. Also, we can not use publickey authentication and
| ssh-agent because we don't use this authentication method. We only use
| password.
|
| Any other ideas? Thanks in advance.
|
| Regards,
|
| Terry Liang
|

You're obviously concerned about security or you wouldn't be using scp
in the first place. Since that's the case, why not step up the security
a notch further and use RSA authentication? That would allow for
non-interactive authentication using ssh-agent to cache the private key.
If this is something that's beyond your control and you are being forced
to use passwords, then maybe you should not use scp either. You could
always use pgp or gpg (open source) to encrypt the file before sending
it and use ftp to do the actual transfer. Passwords for batch processes
can be stored in the $HOME/.netrc file. FTP has a big security hole in
it though as it sends passwords over the network in plain text.
- --
To reply by email remove "_nospam"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (MingW32)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFB2+6WzIf+rZpn0oQRAp1cAKCGhwnYowenJVFPV6uC9JBlvXFNHACgldTe
EJR8+1I+yj0riI/z7PTaOL8=
=WYcx
-----END PGP SIGNATURE-----

Relevant Pages

  • Re: Need advice about breakin attempt
    ... Other layers of security are a good thing, ... You can avoid _password_ authentication. ... Users may give willingly away their passwords. ... Moritz Franosch ...
    (alt.os.linux)
  • Re: IMF vs SmtpMail
    ... authentication does not discriminate between ... sure that allowing authentication improves security. ... appears that spammers are using it for an NDR spam scam, and the Exchange ... > Exchange to crack your passwords. ...
    (microsoft.public.dotnet.framework)
  • Simple hash uses in my own programming.
    ... humans authenticate to the chat bot with passwords. ... the security of the password hashes would only be a smaller part of the ... The most clever way of bot-to-bot authentication I could come up with: ...
    (sci.crypt)
  • Re: PGP key passphrase lost
    ... current password written on a post-it and stuck to the monitor! ... than the alternative (no security). ... plethora of passwords, usernames, keys, etc, all written down and stuck ... Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ ...
    (Ubuntu)
  • Solaris Security Summary
    ... Administering Security on the Solaris OE ... Configuration control, facility management, and system ... Authentication: The ability to prove who you are. ...
    (comp.unix.solaris)