SFTP auto login without keys / without password

sftp command doesn't have option to specify password for auto login.

Recently faced this issue while writing a script on SUSE Linux for transferring system performance report to a central location, which is also a SuSE system.

We can accomplish this with "lftp" or "expect" command, but SLES doesn't install those binaries default.

I've to live with what I got, so let’s try how we can accomplish this with sftp command.


The idea is

1.Set "SSH_ASKPASS" environment variable and force "sftp" command to read password from there.

2."sftp" will always ask password if its executing from a terminal, so we need to daemonize sftp command with "setsid" command


Below code snippets will give some idea how we get it to the solution

pathnames.h

/* Default path to ASKPASS program */

#define _PATH_SSH_ASKPASS_DEFAULT   "/usr/X11R6/bin/ssh-askpass"

ssh.h

/*
 * Environment variable for overwriting the default location of askpass
 */
#define SSH_ASKPASS_ENV         "SSH_ASKPASS"

readpass.c

...
...

if (use_askpass && getenv("DISPLAY")) {
               if (getenv(SSH_ASKPASS_ENV))
                       askpass = getenv(SSH_ASKPASS_ENV);
...
...

                execlp(askpass, askpass, msg, (char *) 0);        
...
...



So here we have all parts in place and we need to assemble it.

Now let’s start the real work

1.User name is "testvsftp" and password is "pass123"
2.echo "echo pass123" >/tmp/pass.sh
3.chmod 755 /tmp/pass.sh
4.export SSH_ASKPASS=/tmp/pass.sh
5.export DISPLAY=":0"  # As mentioned in readpass.c code , askpass = getenv(SSH_ASKPASS_ENV); will execute only if we have "DISPLAY" variable set.
6.setsid sftp -o StrictHostKeyChecking=no testvsftp@hostname << EOF
pwd
ls
EOF

That’s it..!!!..Now you know how to automate sftp login in scripts

Note:-  “StrictHostKeyChecking=no” option in sftp command is to accept keys from SFTP server automatically , otherwise if you are accessing the server first time, it may wait and ask for accepting the keys , eventually your script won’t continue from there.

Comments

Post a Comment

Popular posts from this blog

How to Configure YUM in RHEL6

Easy way to create your own repo 1. Put your RHEL6 media on DVD drive 2. Create a partition with size 6GB and mount it as /yum 3. Download the below script to /yum https://sites.google.com/site/ansilh/rhel6_repo.sh 4. Give execute permission to the downloaded script 5. Please open the file and try to understand it. If you found all safe ,then go to next step 6. Execute it...You will get an RHEL repo accessible through ftp ***Please feel free to comment your experience *** ======================================= Manual Steps (*Different approach from above script .The repo file not look like usual one) YouTube Link : http://www.youtube.com/watch?v=scBtTTwLze0   1.create a directory to store packages .(Better you create a partition with 5GB size and mount it as /YUM) mkdir /YUM 2.mount RHEL6 DVD mount /dev/dvd /mnt 3.go to the mounted directory cd /mnt/Packages/ 4.copy all contents of DVD to /YUM (Note the "." in command ) cp . /YUM/ 5.Install create...
Read more

How to Configure Squid with Mysql DB authentication

Download squid source from http://www.squid-cache.org/Versions/v3/3.0/squid-3.0.STABLE24.tar.gz Copy the downloaded file to /tmp Tar –zxvf squid-3.0.STABLE24.tar.gz Cd squid-3.0.STABLE24 ./configure --enable-basic-auth-helpers=DB make make install Download Current Mysql5.1 Source RPM from http://dev.mysql.com/get/Downloads/MySQL-5.1/MySQL-5.1.44-1.glibc23.src.rpm/from/ftp://mirror.anl.gov/pub/mysql/ Copy MySQL-5.1.44-1.glibc23.src.rpm /tmp Rpm –ivh MySQL-5.1.44-1.glibc23.src.rpm Cd /usr/src/redhat/SPEC Rpmbuid –bb mysql-5.1.44.spec After compilation the RPM files will be in /usr/src/redhat/`uname –m`/RPMS Cd /usr/src/redhat/`uname –m`/RPMS Rpm –ivh MySQL-server-5.1.44-1.glibc23.ia64.rpm The service will start automatically after installation Here we are using Default Mysql database engine MyISAM (Non transactional Engine) In a large application Database we will use Engine INNODB (Transactional engine).It has many configurable options to get mysql to work efficiently with maximum perf...
Read more

Linux OS backup and Restoration using ReaR – Relax & Recover

ReaR – Relax and Recover is an Opensource tool for backing up your OS. The Physical to Virtual and Virtual to Physical migration of OS is also possible with ReaR You can also integrate your favorite backup tools like IBM TSM or HP Data Protector with ReaR to backup the OS to External Storage Here is the setup I used OS :openSuSE 11.4 ReaR package: rear-1.10.0-23.1.noarch Pre-requisites 1:                 RPMs mingetty binutils iputils tar gzip ethtool syslinux iproute2 lsb genisoimage nfs-client rpcbind rpmlib(PayloadFilesHavePrefix) <= 4.0-1 rpmlib(CompressedFileNames) <= 3.0.4-1 /bin/bash rpmlib(PayloadIsLzma) <= 4.4.6-1 Pre-requisite 2:                 NFS server ( I used RHEL5 )with a share /rear/backup and the share must have write permission    ...
Read more