HPE Community
Operating System - Linux
1753706 Members
5143 Online
108799 Solutions
New Discussion юеВ

Re: perl and ssh and no key authentification permited

 
SOLVED
Go to solution
Patrice Le Guyader
Respected Contributor

тАО02-03-2006 07:05 AM

тАО02-03-2006 07:05 AM

perl and ssh and no key authentification permited

Hello,

I would like to know if it is possible to connect from one server to another in batch mode with perl and with password. My team leader for the moment doesn't want to use the public/private keys mecanism.We need to wait for the validation of security team and it's quite long,long,long ....

Best regards
Patrice
Good judgement comes with experience. Unfortunately, the experience usually comes from bad judgement.
0 Kudos
Reply
5 REPLIES 5
Doug O'Leary
Honored Contributor

тАО02-03-2006 09:38 AM

тАО02-03-2006 09:38 AM

Re: perl and ssh and no key authentification permited

Hey;

the perl expect module and gpg modules should help you out quite a bit if you can't use ssh/PKA. Use the GPG module to encrypt user IDs/password combinations and use the expect module to send them to the remote host as needed.

I have some scripts around somewhere that might help out a little if you can't figure it out. It'll take some time to dig them up though; I've been using ssh/PKA at my current client for more than a year...

HTH;

Doug

------
Senior UNIX Admin
O'Leary Computers Inc
linkedin: http://www.linkedin.com/dkoleary
Resume: http://www.olearycomputers.com/resume.html
0 Kudos
Reply
Patrice Le Guyader
Respected Contributor

тАО02-04-2006 05:43 AM

тАО02-04-2006 05:43 AM

Re: perl and ssh and no key authentification permited

Hello Doug,

Thanks for your help. If you've got an exemple it would be great. It should be a real saving of time for me.

Best Regards.
Patrice
Good judgement comes with experience. Unfortunately, the experience usually comes from bad judgement.
0 Kudos
Reply
Doug O'Leary
Honored Contributor

тАО02-05-2006 10:41 AM

тАО02-05-2006 10:41 AM

Solution

Re: perl and ssh and no key authentification permited

Hey;

Didn't take as long as I thought to find these things again...

Some background: This particular client had 360 hosts across a fairly wide number of domains. They had these hosts organized into zones depending on how close they were the Internet and how SOX compliant they had to be.

That added a skosh bit of complexity to the attached scripts that you, hopefully, won't have to deal with.

The hosts table (not included) is in the format of

${fqdn} ${zone} ${dmz} ${location} ${type:prod/dev/test} ${OS}

The encrypted password file was broken out as follows:

${zone} ${root_pwd} ${phrase}

The phrase being what the root password meant...

HTH; let me know if anything in there isn't clear. Please note that these scripts are now almost two years old so I may have to check out the code for a little bit to remember why I did something...

Apparently, I can only attach one file per response, so the expectlib will be in the next response...

Doug

------
Senior UNIX Admin
O'Leary Computers Inc
linkedin: http://www.linkedin.com/dkoleary
Resume: http://www.olearycomputers.com/resume.html
Reply
Doug O'Leary
Honored Contributor

тАО02-05-2006 10:41 AM

тАО02-05-2006 10:41 AM

Re: perl and ssh and no key authentification permited

and here's the expectlib...

Doug

------
Senior UNIX Admin
O'Leary Computers Inc
linkedin: http://www.linkedin.com/dkoleary
Resume: http://www.olearycomputers.com/resume.html
0 Kudos
Reply
Doug O'Leary
Honored Contributor

тАО02-05-2006 12:32 PM

тАО02-05-2006 12:32 PM

Re: perl and ssh and no key authentification permited

Apparently, I didn't get teh original script up there. Sorry 'bout that...

------
Senior UNIX Admin
O'Leary Computers Inc
linkedin: http://www.linkedin.com/dkoleary
Resume: http://www.olearycomputers.com/resume.html
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.