Hi Mark, I customised an SSH client setup via ported tools on z/OS 1.11 a couple of years back:
1. The SSHD (daemon) is only required if your z/OS system is to be the SSH server, ie if your remote Linux server needs to initiate a connection to your z/OS system on port 22 (SSH). If your z/OS system only initiates connections to the remote Linux server, then you do not need SSHD, just SSH setup (ie /etc/ssh/... files as per Ported Tools users guide). 2. I didn't use scp, instead set up ftp style scripts, then invoked them via a shell ssh command in JCL, eg: //STDPARM DD * sh sftp -vvv -F /etc/ssh/sshconf -b /hfs/dir/sftpbat.file userid@remote_host The sftpbat file looks just like an FTP script, eg: Password Cd /remote/dir/ Pwd Dir bin Get remote_file local_file Dir Exit 3. The public/private key pair may be generated to a hfs file via the ssh-keygen, which may be read and thus used by anyone with superuser (UID 0) in your USS environment (no, not Unformatted System Services even though I'm a VTAM guy). The more secure approach is to generate your keys in a RACF keyring, then reference them via the 'IdentityKeyRingLabel' parameter in a zos_user_ssh_config file, in the case of an SSH client configuration. Note the default search list for this file is ~/.ssh/zos_user_ssh_config, eg /u/userid/.ssh/zos_user_ssh_config. Cheers, MARK DOUGLAS -----Original Message----- From: IBM Mainframe Discussion List [mailto:IBM-MAIN@bama.ua.edu] On Behalf Of Mark Steely Sent: Friday, 11 May 2012 8:19 AM To: IBM-MAIN@bama.ua.edu Subject: SFTP We have a Linux server which grabs files from the mainframe using FTP. We need to use SFTP to get the files. I have the IBM ported tools. Do we need to have the SSHD daemon running to recognize the FTP's or am I going down the wrong path. Or could we use SCP? We are z/os V1r11. Any help would be appreciated. Any setup information would be helpful. Thanks ******* CONFIDENTIALITY NOTICE ******* This e-mail message and all attachments transmitted with it may contain legally privileged and confidential information intended solely for the use of the addressee. If the reader of this message is not the intended recipient, you are hereby notified that any reading, dissemination, distribution, copying, or other use of this message or its attachments is strictly prohibited. If you have received this message in error, please notify the sender immediately and delete this message from your system. Thank you. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@bama.ua.edu with the message: INFO IBM-MAIN ***************************** Disclaimer ***************************** The contents of this electronic message and any attachments are intended only for the addressee and may contain privileged or confidential information. They may only be used for the purposes for which they were supplied. If you are not the addressee, you are notified that any transmission, distribution, downloading, printing or photocopying of the contents of this message or attachments is strictly prohibited. The privilege of confidentiality attached to this message and attachments is not waived, lost or destroyed by reason of mistaken delivery to you. If you receive this message in error please notify the sender by return e-mail or telephone. Please note: the Department of Public Works carries out automatic software scanning, filtering and blocking of E-mails and attachments (including emails of a personal nature) for detection of viruses, malicious code, SPAM, executable programs or content it deems unacceptable. All reasonable precautions will be taken to respect the privacy of individuals in accordance with the Information Privacy Act 2009 (Qld). Personal information will only be used for official purposes, e.g. monitoring Departmental Personnel's compliance with Departmental Policies. Personal information will not be divulged or disclosed to others, unless authorised or required by Departmental Policy and/or law. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@bama.ua.edu with the message: INFO IBM-MAIN