Nancy Lin wrote:
>
> Hi
>
> I'm running ssh 2.2.0. I want to set up a nightly cronjob that'll copy
> some files from one machine to another. There's been several posts with
> instructions on how to set this up. Since I don't want to be prompted for
> a password, it looks like I can do it either with .shosts (hostbased
> authen.) or using empty pass phrase (publickey authen.)
>
> My question is, what are the pros and cons of either method? Is one more
> secure than the other? Can one be made more secure than the other through
> configuration settings?
We are using ssh2 commands in a cron job to push files out to
multiple hosts. We are using "User Public Key Authentication"
per Section 3.3 in the Version 2.2 Administrator's Guide, and
have set up our keys with a passphrase.
You will need to run the ssh-agent and save it's output to a file
so that your cron job can set the environment variables (i.e.,
SSH2_AUTH_SOCK and SSH2_AGENT_PID) it needs.
This is another option, but not having used the other methods you
mention, I cannot say what the pros and cons might be, but certainly
it seems that having a passphrase in your keys would be better than
not having one.
--
Tom H., Denver, CO; w: [EMAIL PROTECTED]; h: [EMAIL PROTECTED]
