Am 26.11.2019 um 21:14 schrieb Jerry Draper <midrangel@xxxxxxxxxxxxx>:
However, the userid/pw is stored in plain text in the FTP script.
True? It is on our system.
Yes, mostly true. See comment from John.
Let's put it this way: If anybody copies the ssh private key, he can also utilize that one for abuse. Ssh-Keys for automation are most often not protected by passwords, so automation doesn't need passwords to be supplied. Thus, the key is unencrypted and ready for use.
In general, it's possible to use ssh-agent. This is a background task to which you can add encrypted (password protected) keys and these will be stored in memory in unencrypted form. (I'm doing that manually after reboots.) Through environment variables, ssh clients (sftp, scp, ssh) and ssh-add (for adding keys) find a local socket for communicating with the ssh-agent. Honestly, I don't know how much of this Linux/Unix specific stuff also applies to PASE, though.
PGP-Key: DDD3 4ABF 6413 38DE - https://www.pocnet.net/poc-key.asc
As an Amazon Associate we earn from qualifying purchases.
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.