Securing FTP/iX
Sample NETRC file:
:print netrc.pub
machine "remsys.hp.com" login "mgrtest.testacct" password "uPass,aPass"
default login "mgr.sys" password "u1,a1"
:sftpput catalog.pub.sys, remsys.cup.hp.com <-- note no username
--- SFTPPUT --- version A.06
++ Note: _SFTP_DEBUG=TRUE so all temporary files and variables
used by the script are preserved, and more verbose messages
are displayed. To see the script variables enter :showvar
_ftp_@. To see the temp files enter :listfile ./@;temp
To disable this feature :deletevar _sftp_debug, or set this
variable to FALSE.
++ Note: NETRC file in effect
++ Note: No 'remoteuser' parm supplied so "MGRTEST.TESTACCT" is assumed
to be the remote MPE logon user.acct. If this is not the same
login user id found in the NETRC file, then the MPE job to
decrypt the file(s) will logon as a different user (or the
logon could fail), and could logon to a different group, and
thus may not find the encrypted file(s). When using NETRC it's
better to supply the NETRC machine user as the 'remoteuser'
parm (parm 3) here.
** encrypting file : /SYS/PUB/CATALOG
++ Note: key=14095-801127856, written to file ./CATALOG.key
** transferring file: /SYS/PUB/CATALOG
++ Note: transfer of /SYS/PUB/CATALOG successful
=====================================================
1 file transferred successfully.
1 file was encrypted.
6. Transferring file from MPE/iX system to another MPE/iX system in the presence of NETRC file and not in
debug mode.
Sample NETRC file is as follows:
:print netrc.pub
machine "remsys.hp.com" login "mgrtest.testacct" password "uPass,aPass"
default login "mgr.sys" password "u1,a1"
:setvar _sftp_debug false -- or -- :deletevar _sftp_debug
:
:sftpput catalog.pub.sys, remsys.cup.hp.com <-- note no username
--- SFTPPUT --- version A.06
** encrypting file : /SYS/PUB/CATALOG
** transferring file: /SYS/PUB/CATALOG
Page
26
of
28
Secure FTP on MPE/iX
7/18/2008
http://jazz.external.hp.com/papers/Securing
-
FTP
-
Whitepaper.html