Marci
Reputation: 457
change sshpass to a more secure solution
I have a python script which contains the following function:
def upload2server(file):
host_name = 'example.ex.am.com'
port_num = '432'
user_name = 'user'
password = 'passw'
web_path = '/example/files/'
full_webpath = user_name + '@' + host_name + ':' + web_path + args.key
pre_command = 'sshpass -p "' + password + '" scp -P' + ' ' + port_num + ' '
scp_comm = pre_command + file + ' ' + full_webpath
os.system(scp_comm)
I'd have 2 questions:
- How unsecure is that if I run this script from a remote network using port-forwarding?
- Which ways could I make this uploading more secure?
Thanks!
Upvotes: 2
Views: 415
Answers (1)
Kyle
Reputation: 1066
Personally, I would generate an SSH keypair for each host and then you can totally forget about using the password in your scp command. Having your password inline isn't a problem per say but it does mean that your password will get recorded in the ~/.bash_history file of that user.
Upvotes: 1
Related Questions
- How to scp in Python?
- sshpass not working properly
- Pass password with sshpass to both servers when scp copying from one server to another
- SSHPass Works in Terminal, but not in Python Script - Permission Denied, Please Try Again
- SCP in python by using password
- Best ways to do ssh and scp in Python?
- ssh using sshpass in python seems to not work
- SSH/SCP (Or similar) with python on raspberry pi
- How to use sshpass when loging in to remote server with Emacs / Tramp
- Secure Copy File from remote server via scp and os module in Python