read echo password and login to remote server

ravibhure · 06-18-2009, 01:55 AM

How can I access remote server to echo my root password on screen and then read from stdin ,,, any clue or tips on that

echo password | ssh --stdin "root@192.168.19.19"

when I tried it local it give an error
[root@localhost ~]# echo password | ssh --stdin "root@192.168.19.19"
Pseudo-terminal will not be allocated because stdin is not a terminal.
root@192.168.19.19's password:

colucix · 06-18-2009, 02:01 AM

It is not possible. The main feature of the secure shell SSH is that the traffic is encrypted and give a password in clear text in the command line does not make sense. If you want a passwordless connection, you can use "Public Key Authentication". Use ssh-keygen to create your own private/public key pair and arrange things accordingly to the ssh versions installed on both the client and the server.

acid_kewpie · 06-18-2009, 02:02 AM

Alternatively check out expect if the remote device is not able to use a shared secret, e.g. a router or some such.

Dinithion · 06-18-2009, 02:10 AM

Just remember that commands (normally) are stored, so if you do something like that the root password will be stored in clear text in ~/.bash_history. That is a bad thing. The same applies to scripts with expect. The scripts are also stored in clear text.

The solution I would prefer is to make an expect script which take your password as a argument. Then you add your script to $HISTIGNORE. This is a colon-separated list of patterns that won't be stored in .bash_history. I wouldn't say it's a good solution, but it is a solution if you have to specify the login password from the command-line.

ravibhure · 06-18-2009, 02:15 AM

Thanks to you All, to provide this info as soon possible ,Will implement with all your solutions.

Dinithion · 06-18-2009, 02:28 AM

I found a script that did something similar. I modified it a little:
(http://bash.cyberciti.biz/security/e...-login-script/)

Code:

#!/usr/bin/expect -f
# Expect script to supply root/admin password for remote ssh server
# and execute command.
# This script needs three argument to(s) connect to remote server:
# password = Password of remote UNIX server, for root user.
# ipaddr = IP Addreess of remote UNIX server, no hostname
# scriptname = Path to remote script which will execute on remote server
# For example:
#  ./sshlogin.exp password 192.168.1.11
# ------------------------------------------------------------------------
# Copyright (c) 2004 nixCraft project <http://cyberciti.biz/fb/>
# This script is licensed under GNU GPL version 2.0 or above
# -------------------------------------------------------------------------
# This script is part of nixCraft shell script collection (NSSC)
# Visit http://bash.cyberciti.biz/ for more information.
# ----------------------------------------------------------------------
# set Variables
set password [lrange $argv 0 0]
set ipaddr [lrange $argv 1 1]
set arg1 [lrange $argv 3 3]
set timeout -1

# now connect to remote UNIX box (ipaddr)
spawn ssh root@$ipaddr 

match_max 100000

# Look for passwod prompt
expect "*?assword:*"

# Send password aka $password
send -- "$password\r"
# send blank line (\r) to make sure we get back to gui
send -- "\r"
interact

ravibhure · 06-19-2009, 07:28 AM

Thanks Dinithion,
I know about all the facts and usages of "expect" this is quite good script but I have to check some long list parameter on remote server and I have remote server's root password but I dont have any permission to to add my rsa key on remote server, and I have to check 200 servers, so I wrote on script for that but the issue is only for password.

This script only working for single command if you used any option with command then it's hang.

ravibhure · 06-20-2009, 05:29 AM

Hello folks
Actually we need to run commands from apache/php to remote server