Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Connect with null passphrases

from [Michael Ekstrand] Network Security [Permanent Link]
Subject: Re: Connect with null passphrases
Date: Wed, 06 Dec 2006 08:55:35 -0600 
On Wed, 2006-12-06 at 08:04 -0500, John Stefani wrote:

I have some cron jobs that use ssh (version 4.4p1) to connect to other 
servers and run certain tasks.  The users in question sometimes are real 
users, sometimes fictitious users that I created only for running the cron 
job.  I changed to *NP* the password field of /etc/shadow for the 
fictitious users on the servers the cron jobs connect to, and all works 
happily.  Here's my problem:  those servers to which the cron job tries to 
connect to as a real user, who has a real password, does not allow ssh 
connections with null passphrases.  I can't set the password field in 
/etc/shadow to *NP* because sometimes I have to connect as the real user. 
Does someone know how I can connect automatically to a server, using ssh, 
as a user that has a password, but with a null passphrase?  Hope the above 
was not too confusing...


Set up a private key without a passphrase and have the cron job use
public-key authentication.  Just make sure the private key file is
well-protected (0600 or 0400 the user who needs it).

- Michael

-- 
mouse, n.: a device for pointing at the xterm in which you wish to type
        -- Fortune file
Visit me on the Web: http://www.elehack.net/michael
Confused by the strange attachment on this message?  I cryptographically
sign my e-mails. See <http://www.elehack.net/resources/gpg.html>.

Attachment: signature.asc
Description: This is a digitally signed message part

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Connect with null passphrases, Christian Grunfeld
Next by Date:  Re: Connect with null passphrases, Michel Zobel
Previous by Thread:  Re: Connect with null passphrases, Christian Grunfeld
Next by Thread:  Re: Connect with null passphrases, Michel Zobel
Indexes:  [Date] [Thread] [Top] [All Lists]