HPE Community
Operating System - OpenVMS
1752337 Members
5595 Online
108787 Solutions
New Discussion юеВ

Re: Non-VMS to VMS SSH File Transfer

 
Allan Large
Frequent Advisor

тАО12-04-2009 11:57 AM

тАО12-04-2009 11:57 AM

Non-VMS to VMS SSH File Transfer

When files are downloaded via SSH from a non-VMS system to a VMS system, the file does not have the security settings defined in the DEFAULT_PROTECTION ACL setup for that directory.

For example, the ACL is:

SPEEDE.DIR;1 [STDSRV,REG] (RWE,RWE,RWED,)
(DEFAULT_PROTECTION,SYSTEM:RWED,OWNER:RWED,GROUP:RWED,WORLD:)


When the file is downloaded, it's protection settings are :

EDITRN56.;1 [STDSRV,REG] (RWD,RWD,R,)


When files are transferred from a VMS system, the protection settings are correct according to the ACL DEFAULT_PROTECTION.

We are experiencing this on all versions of VMS / TCPIP ranging from TCPIP V5.4 to V5.6 with all the latest ECO's.

Anyone have any ideas as to how we might be able to make this work ?
0 Kudos
5 REPLIES 5
Richard Whalen
Honored Contributor

тАО12-04-2009 01:07 PM

тАО12-04-2009 01:07 PM

Re: Non-VMS to VMS SSH File Transfer

What are the file protections on the source system? Some implementations of SFTP attempt to set the same characteristics (protection, dates, size, etc) on the newly created file after copying it from the source. Of course "execute" privilege is completely different in the Unix world than the VMS world.
0 Kudos
Allan Large
Frequent Advisor

тАО12-04-2009 01:15 PM

тАО12-04-2009 01:15 PM

Re: Non-VMS to VMS SSH File Transfer

The thing is ... we don't know what the protection settings are on the client.

After a little more testing, we found that OpenSSH for Windows does work properly when copying to the VMS system.

To be specific, the client system that is sending the files is running FreeBSD 5.4 using SSHcomm's SSH-1.99-3.2.3.

What we are trying to accomplish to have the downloaded file take on the protection settings as defined in the ACE entry.
0 Kudos
Hoff
Honored Contributor

тАО12-04-2009 02:02 PM

тАО12-04-2009 02:02 PM

Re: Non-VMS to VMS SSH File Transfer

Please enable and post (as text file attachments) the tracing of the full working and the full non-working transfer sequences. Usually the -vv flag on the sftp command.

Consider using a resource identifier here, as well. That can trump various of these issues:

http://labs.hoffmanlabs.com/node/1450
0 Kudos
Steven Schweda
Honored Contributor

тАО12-05-2009 08:37 AM

тАО12-05-2009 08:37 AM

Re: Non-VMS to VMS SSH File Transfer

> When files are downloaded via SSH [...]

Which way is down? Which system is the
client, and which the server?

> To be specific, the client system that is
> sending the files is running FreeBSD 5.4
> using SSHcomm's SSH-1.99-3.2.3.

Many people would call that uploading.

> [...] the -vv flag [...]

Do we know even what the actual command being
used there is? The OpenSSH SFTP client has a
"-P" option to preserve permissions and
times, and something like that might affect
the results of a transfer. I'd expect any
chmod activity to appear in that diagnostic
output.
0 Kudos
Allan Large
Frequent Advisor

тАО12-08-2009 03:07 PM

тАО12-08-2009 03:07 PM

Re: Non-VMS to VMS SSH File Transfer

While the assigning of ACL's doesn't fix the root problem, it does give a work-around.

Thanks guys !!!
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.