How can I rsync without prompt for password, without using public key authentication? The 2019 Stack Overflow Developer Survey Results Are InWhy shouldn't someone use passwords in the command line?Ssh keeps asking for passphrase several timesSCP and/or SSH command with password in linePermission issues when doing system backup using rsyncpublic key authentication without authorized_keys fileTroubleshoot SSH connection problemLsyncd not working on Mac 10.9ssh does not decrypt private rsa keyrsync without prompt for password, using sshpass, how unsecure is it?How to set-up gnome keyring for passwordless ssh/sshfs using the keyring to unlock the key with the stored passphrase?Using rsync for backing up my stuff on an external HDD
Did Scotland spend $250,000 for the slogan "Welcome to Scotland"?
Can you cast a spell on someone in the Ethereal Plane, if you are on the Material Plane and have the True Seeing spell active?
Is an up-to-date browser secure on an out-of-date OS?
Getting crown tickets for Statue of Liberty
Keeping a retro style to sci-fi spaceships?
Why isn't the circumferential light around the M87 black hole's event horizon symmetric?
APIPA and LAN Broadcast Domain
Are there any other methods to apply to solving simultaneous equations?
Ubuntu Server install with full GUI
Why doesn't UInt have a toDouble()?
How can I add encounters in the Lost Mine of Phandelver campaign without giving PCs too much XP?
How much of the clove should I use when using big garlic heads?
Cooking pasta in a water boiler
Did any laptop computers have a built-in 5 1/4 inch floppy drive?
Can a flute soloist sit?
Why doesn't shell automatically fix "useless use of cat"?
What does もの mean in this sentence?
If I score a critical hit on an 18 or higher, what are my chances of getting a critical hit if I roll 3d20?
Why didn't the Event Horizon Telescope team mention Sagittarius A*?
Why couldn't they take pictures of a closer black hole?
A word that means fill it to the required quantity
Why don't hard Brexiteers insist on a hard border to prevent illegal immigration after Brexit?
Is it safe to harvest rainwater that fell on solar panels?
What to do when moving next to a bird sanctuary with a loosely-domesticated cat?
How can I rsync without prompt for password, without using public key authentication?
The 2019 Stack Overflow Developer Survey Results Are InWhy shouldn't someone use passwords in the command line?Ssh keeps asking for passphrase several timesSCP and/or SSH command with password in linePermission issues when doing system backup using rsyncpublic key authentication without authorized_keys fileTroubleshoot SSH connection problemLsyncd not working on Mac 10.9ssh does not decrypt private rsa keyrsync without prompt for password, using sshpass, how unsecure is it?How to set-up gnome keyring for passwordless ssh/sshfs using the keyring to unlock the key with the stored passphrase?Using rsync for backing up my stuff on an external HDD
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty margin-bottom:0;
I need to execute rsync
, without it prompting me for password.
I've seen in rsync
manpage that it doesn't allow specifying the password as command line argument.
But I noticed that it allows specifying the password via the variable RSYNC_PASSWORD
.
So I've tried exporting the variable, but rsync
keeps asking me for password.
export RSYNC_PASSWORD="abcdef"
rsync root@1.2.3.4:/abc /def
What am I doing wrong?
Please consider:
- I understand that this is a bad idea from security aspect
- I must use only
rsync
, can't use other software - I can't use key-based authentication
- I've already read many SE question, e.g.:
how-to-pass-password-for-rsync-ssh-command @ stackoverflow.com
rsync-cron-job-with-a-password @ superuser.com
how-to-setup-rsync-without-password-with-ssh-on-unix-linux @ superuser.com
In other words, I need to have the RSYNC_PASSWORD
approach working! :-)
ssh rsync password
add a comment |
I need to execute rsync
, without it prompting me for password.
I've seen in rsync
manpage that it doesn't allow specifying the password as command line argument.
But I noticed that it allows specifying the password via the variable RSYNC_PASSWORD
.
So I've tried exporting the variable, but rsync
keeps asking me for password.
export RSYNC_PASSWORD="abcdef"
rsync root@1.2.3.4:/abc /def
What am I doing wrong?
Please consider:
- I understand that this is a bad idea from security aspect
- I must use only
rsync
, can't use other software - I can't use key-based authentication
- I've already read many SE question, e.g.:
how-to-pass-password-for-rsync-ssh-command @ stackoverflow.com
rsync-cron-job-with-a-password @ superuser.com
how-to-setup-rsync-without-password-with-ssh-on-unix-linux @ superuser.com
In other words, I need to have the RSYNC_PASSWORD
approach working! :-)
ssh rsync password
have you enable rsync daemon on remote server ?
– Rahul Patil
Jan 29 '14 at 19:41
add a comment |
I need to execute rsync
, without it prompting me for password.
I've seen in rsync
manpage that it doesn't allow specifying the password as command line argument.
But I noticed that it allows specifying the password via the variable RSYNC_PASSWORD
.
So I've tried exporting the variable, but rsync
keeps asking me for password.
export RSYNC_PASSWORD="abcdef"
rsync root@1.2.3.4:/abc /def
What am I doing wrong?
Please consider:
- I understand that this is a bad idea from security aspect
- I must use only
rsync
, can't use other software - I can't use key-based authentication
- I've already read many SE question, e.g.:
how-to-pass-password-for-rsync-ssh-command @ stackoverflow.com
rsync-cron-job-with-a-password @ superuser.com
how-to-setup-rsync-without-password-with-ssh-on-unix-linux @ superuser.com
In other words, I need to have the RSYNC_PASSWORD
approach working! :-)
ssh rsync password
I need to execute rsync
, without it prompting me for password.
I've seen in rsync
manpage that it doesn't allow specifying the password as command line argument.
But I noticed that it allows specifying the password via the variable RSYNC_PASSWORD
.
So I've tried exporting the variable, but rsync
keeps asking me for password.
export RSYNC_PASSWORD="abcdef"
rsync root@1.2.3.4:/abc /def
What am I doing wrong?
Please consider:
- I understand that this is a bad idea from security aspect
- I must use only
rsync
, can't use other software - I can't use key-based authentication
- I've already read many SE question, e.g.:
how-to-pass-password-for-rsync-ssh-command @ stackoverflow.com
rsync-cron-job-with-a-password @ superuser.com
how-to-setup-rsync-without-password-with-ssh-on-unix-linux @ superuser.com
In other words, I need to have the RSYNC_PASSWORD
approach working! :-)
ssh rsync password
ssh rsync password
edited Nov 21 '18 at 16:17
user321730
asked Jan 29 '14 at 18:55
DorDor
79161725
79161725
have you enable rsync daemon on remote server ?
– Rahul Patil
Jan 29 '14 at 19:41
add a comment |
have you enable rsync daemon on remote server ?
– Rahul Patil
Jan 29 '14 at 19:41
have you enable rsync daemon on remote server ?
– Rahul Patil
Jan 29 '14 at 19:41
have you enable rsync daemon on remote server ?
– Rahul Patil
Jan 29 '14 at 19:41
add a comment |
4 Answers
4
active
oldest
votes
This password environment variable appears only to be used when using the rsync protocol:
rsync rsync://username@1.2.3.4:/abc /def
For this to work, you need to run rsync as a daemon as well (--daemon
option), which is often done using inetd.conf
.
When using this protocol, abc
should correspond to a target defined in /etc/rsyncd.conf
. The user name should be present in a auth users
line for this target, and a password file should be specified with the secrets file
option.
It is this secrets file that contains mappings between user names and passwords in the following format:
username:password
And it is this password that you can specify using the RSYNC_PASSWORD environment variable.
a quicky way to run an rsync server is with https://s3.amazonaws.com/skaperen/rsend
– Skaperen
Mar 22 '15 at 13:54
add a comment |
If the rsync
daemon isn't running on the target machine, and you don't care about exposing passwords to everyone on the local machine (Why shouldn't someone use passwords in the command line?), you can use sshpass
:
sshpass -p "password" rsync root@1.2.3.4:/abc /def
Note the space at the start of the command, in the bash
shell this will stop the command (and the password) from being stored in the history. I don't recommend using the RSYNC_PASSWORD
variable unless absolutely necessary (as per a previous edit to this answer), I recommend suppressing history storage or at least clearing history after. In addition, you can use tput reset
to clear your terminal history.
2
Why would you suggest adding password clear text on a command, that's bad linux admin 101.
– Eddie
Mar 22 '15 at 12:34
Super handy.. been searching for an approach to this for a while. Thank you.
– Isaac Gregson
Feb 26 '16 at 18:55
4
While this is bad to add the password as clear text, this is currently the only reasonably simple way to this.
– Weston Ganger
Jun 24 '16 at 16:34
13
you can always do something like this:sshpass -p $(cat passFile) ..
to hide clear pass in bash history,, and chmod 400 on passFile to secure it
– Kresimir Pendic
Jan 2 '17 at 16:27
2
I know that this is old, but for the sake of newer readers, please quote the password — passwords can contain special characters and spaces.-p "$RSYNC_PASSWORD"
– Paddy Landau
Jul 14 '18 at 15:54
|
show 2 more comments
You can use standard ssh identities to do passwordless login. This is handled by default if you have a ~/.ssh/id_rsa
or the like, but you can also hardcode your own path to the private key of an authorized keypair.
This allows batching/scripting without exposing passwords, and the public key can be remove from the target server if the private key is ever compromised.
rsync -e"ssh -i /path/to/privateKey" -avR $sourcedir $ruser@$rhost:~/$rdir/
You can also add arguments like -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null
to not force remote host key verification. !Caution - that opens up man in the middle attacks and is general bad practice!
1
This is especially useful if you're using the new Bash shell for Windows 10. I was wondering why rsync wasn't working passwordlessly. I realized it was using the~/.ssh
folder inside the shell (where rsync lives). Once I used -e to point to the key inside/mnt/c/Users/MyUsername/.ssh
, it worked as expected. (Thanks. :D)
– Toby Deshane
Oct 25 '16 at 14:06
add a comment |
Very useful for scripting is to use --password-file
command line option.
- Create empty file called rsync_pass
- write in password to this file (nothing more)
chmod 600 rsync_pass
rsync $args --password-file=rsync_pass user@rsynchost::/share localdirectory
This can be used for scripting and allows to be more secure that just exporting password to system variable.
3
Note to reader: this also requires an rsync daemon running on the server. I really was hoping that ssh keys would be sufficient for passwordless rsync.
– user7000
Nov 2 '15 at 7:01
IMHO this is the only correct way to do it if one doesn't want to use ssh.
– maxf130
May 8 '16 at 9:51
This answer makes the most sense
– AJ Meyghani
Sep 7 '16 at 18:13
add a comment |
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "106"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f111526%2fhow-can-i-rsync-without-prompt-for-password-without-using-public-key-authentica%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
4 Answers
4
active
oldest
votes
4 Answers
4
active
oldest
votes
active
oldest
votes
active
oldest
votes
This password environment variable appears only to be used when using the rsync protocol:
rsync rsync://username@1.2.3.4:/abc /def
For this to work, you need to run rsync as a daemon as well (--daemon
option), which is often done using inetd.conf
.
When using this protocol, abc
should correspond to a target defined in /etc/rsyncd.conf
. The user name should be present in a auth users
line for this target, and a password file should be specified with the secrets file
option.
It is this secrets file that contains mappings between user names and passwords in the following format:
username:password
And it is this password that you can specify using the RSYNC_PASSWORD environment variable.
a quicky way to run an rsync server is with https://s3.amazonaws.com/skaperen/rsend
– Skaperen
Mar 22 '15 at 13:54
add a comment |
This password environment variable appears only to be used when using the rsync protocol:
rsync rsync://username@1.2.3.4:/abc /def
For this to work, you need to run rsync as a daemon as well (--daemon
option), which is often done using inetd.conf
.
When using this protocol, abc
should correspond to a target defined in /etc/rsyncd.conf
. The user name should be present in a auth users
line for this target, and a password file should be specified with the secrets file
option.
It is this secrets file that contains mappings between user names and passwords in the following format:
username:password
And it is this password that you can specify using the RSYNC_PASSWORD environment variable.
a quicky way to run an rsync server is with https://s3.amazonaws.com/skaperen/rsend
– Skaperen
Mar 22 '15 at 13:54
add a comment |
This password environment variable appears only to be used when using the rsync protocol:
rsync rsync://username@1.2.3.4:/abc /def
For this to work, you need to run rsync as a daemon as well (--daemon
option), which is often done using inetd.conf
.
When using this protocol, abc
should correspond to a target defined in /etc/rsyncd.conf
. The user name should be present in a auth users
line for this target, and a password file should be specified with the secrets file
option.
It is this secrets file that contains mappings between user names and passwords in the following format:
username:password
And it is this password that you can specify using the RSYNC_PASSWORD environment variable.
This password environment variable appears only to be used when using the rsync protocol:
rsync rsync://username@1.2.3.4:/abc /def
For this to work, you need to run rsync as a daemon as well (--daemon
option), which is often done using inetd.conf
.
When using this protocol, abc
should correspond to a target defined in /etc/rsyncd.conf
. The user name should be present in a auth users
line for this target, and a password file should be specified with the secrets file
option.
It is this secrets file that contains mappings between user names and passwords in the following format:
username:password
And it is this password that you can specify using the RSYNC_PASSWORD environment variable.
answered Jan 29 '14 at 19:43
brmbrm
76156
76156
a quicky way to run an rsync server is with https://s3.amazonaws.com/skaperen/rsend
– Skaperen
Mar 22 '15 at 13:54
add a comment |
a quicky way to run an rsync server is with https://s3.amazonaws.com/skaperen/rsend
– Skaperen
Mar 22 '15 at 13:54
a quicky way to run an rsync server is with https://s3.amazonaws.com/skaperen/rsend
– Skaperen
Mar 22 '15 at 13:54
a quicky way to run an rsync server is with https://s3.amazonaws.com/skaperen/rsend
– Skaperen
Mar 22 '15 at 13:54
add a comment |
If the rsync
daemon isn't running on the target machine, and you don't care about exposing passwords to everyone on the local machine (Why shouldn't someone use passwords in the command line?), you can use sshpass
:
sshpass -p "password" rsync root@1.2.3.4:/abc /def
Note the space at the start of the command, in the bash
shell this will stop the command (and the password) from being stored in the history. I don't recommend using the RSYNC_PASSWORD
variable unless absolutely necessary (as per a previous edit to this answer), I recommend suppressing history storage or at least clearing history after. In addition, you can use tput reset
to clear your terminal history.
2
Why would you suggest adding password clear text on a command, that's bad linux admin 101.
– Eddie
Mar 22 '15 at 12:34
Super handy.. been searching for an approach to this for a while. Thank you.
– Isaac Gregson
Feb 26 '16 at 18:55
4
While this is bad to add the password as clear text, this is currently the only reasonably simple way to this.
– Weston Ganger
Jun 24 '16 at 16:34
13
you can always do something like this:sshpass -p $(cat passFile) ..
to hide clear pass in bash history,, and chmod 400 on passFile to secure it
– Kresimir Pendic
Jan 2 '17 at 16:27
2
I know that this is old, but for the sake of newer readers, please quote the password — passwords can contain special characters and spaces.-p "$RSYNC_PASSWORD"
– Paddy Landau
Jul 14 '18 at 15:54
|
show 2 more comments
If the rsync
daemon isn't running on the target machine, and you don't care about exposing passwords to everyone on the local machine (Why shouldn't someone use passwords in the command line?), you can use sshpass
:
sshpass -p "password" rsync root@1.2.3.4:/abc /def
Note the space at the start of the command, in the bash
shell this will stop the command (and the password) from being stored in the history. I don't recommend using the RSYNC_PASSWORD
variable unless absolutely necessary (as per a previous edit to this answer), I recommend suppressing history storage or at least clearing history after. In addition, you can use tput reset
to clear your terminal history.
2
Why would you suggest adding password clear text on a command, that's bad linux admin 101.
– Eddie
Mar 22 '15 at 12:34
Super handy.. been searching for an approach to this for a while. Thank you.
– Isaac Gregson
Feb 26 '16 at 18:55
4
While this is bad to add the password as clear text, this is currently the only reasonably simple way to this.
– Weston Ganger
Jun 24 '16 at 16:34
13
you can always do something like this:sshpass -p $(cat passFile) ..
to hide clear pass in bash history,, and chmod 400 on passFile to secure it
– Kresimir Pendic
Jan 2 '17 at 16:27
2
I know that this is old, but for the sake of newer readers, please quote the password — passwords can contain special characters and spaces.-p "$RSYNC_PASSWORD"
– Paddy Landau
Jul 14 '18 at 15:54
|
show 2 more comments
If the rsync
daemon isn't running on the target machine, and you don't care about exposing passwords to everyone on the local machine (Why shouldn't someone use passwords in the command line?), you can use sshpass
:
sshpass -p "password" rsync root@1.2.3.4:/abc /def
Note the space at the start of the command, in the bash
shell this will stop the command (and the password) from being stored in the history. I don't recommend using the RSYNC_PASSWORD
variable unless absolutely necessary (as per a previous edit to this answer), I recommend suppressing history storage or at least clearing history after. In addition, you can use tput reset
to clear your terminal history.
If the rsync
daemon isn't running on the target machine, and you don't care about exposing passwords to everyone on the local machine (Why shouldn't someone use passwords in the command line?), you can use sshpass
:
sshpass -p "password" rsync root@1.2.3.4:/abc /def
Note the space at the start of the command, in the bash
shell this will stop the command (and the password) from being stored in the history. I don't recommend using the RSYNC_PASSWORD
variable unless absolutely necessary (as per a previous edit to this answer), I recommend suppressing history storage or at least clearing history after. In addition, you can use tput reset
to clear your terminal history.
edited Jul 14 '18 at 21:14
answered Jan 29 '14 at 20:23
GraemeGraeme
25.5k46699
25.5k46699
2
Why would you suggest adding password clear text on a command, that's bad linux admin 101.
– Eddie
Mar 22 '15 at 12:34
Super handy.. been searching for an approach to this for a while. Thank you.
– Isaac Gregson
Feb 26 '16 at 18:55
4
While this is bad to add the password as clear text, this is currently the only reasonably simple way to this.
– Weston Ganger
Jun 24 '16 at 16:34
13
you can always do something like this:sshpass -p $(cat passFile) ..
to hide clear pass in bash history,, and chmod 400 on passFile to secure it
– Kresimir Pendic
Jan 2 '17 at 16:27
2
I know that this is old, but for the sake of newer readers, please quote the password — passwords can contain special characters and spaces.-p "$RSYNC_PASSWORD"
– Paddy Landau
Jul 14 '18 at 15:54
|
show 2 more comments
2
Why would you suggest adding password clear text on a command, that's bad linux admin 101.
– Eddie
Mar 22 '15 at 12:34
Super handy.. been searching for an approach to this for a while. Thank you.
– Isaac Gregson
Feb 26 '16 at 18:55
4
While this is bad to add the password as clear text, this is currently the only reasonably simple way to this.
– Weston Ganger
Jun 24 '16 at 16:34
13
you can always do something like this:sshpass -p $(cat passFile) ..
to hide clear pass in bash history,, and chmod 400 on passFile to secure it
– Kresimir Pendic
Jan 2 '17 at 16:27
2
I know that this is old, but for the sake of newer readers, please quote the password — passwords can contain special characters and spaces.-p "$RSYNC_PASSWORD"
– Paddy Landau
Jul 14 '18 at 15:54
2
2
Why would you suggest adding password clear text on a command, that's bad linux admin 101.
– Eddie
Mar 22 '15 at 12:34
Why would you suggest adding password clear text on a command, that's bad linux admin 101.
– Eddie
Mar 22 '15 at 12:34
Super handy.. been searching for an approach to this for a while. Thank you.
– Isaac Gregson
Feb 26 '16 at 18:55
Super handy.. been searching for an approach to this for a while. Thank you.
– Isaac Gregson
Feb 26 '16 at 18:55
4
4
While this is bad to add the password as clear text, this is currently the only reasonably simple way to this.
– Weston Ganger
Jun 24 '16 at 16:34
While this is bad to add the password as clear text, this is currently the only reasonably simple way to this.
– Weston Ganger
Jun 24 '16 at 16:34
13
13
you can always do something like this:
sshpass -p $(cat passFile) ..
to hide clear pass in bash history,, and chmod 400 on passFile to secure it– Kresimir Pendic
Jan 2 '17 at 16:27
you can always do something like this:
sshpass -p $(cat passFile) ..
to hide clear pass in bash history,, and chmod 400 on passFile to secure it– Kresimir Pendic
Jan 2 '17 at 16:27
2
2
I know that this is old, but for the sake of newer readers, please quote the password — passwords can contain special characters and spaces.
-p "$RSYNC_PASSWORD"
– Paddy Landau
Jul 14 '18 at 15:54
I know that this is old, but for the sake of newer readers, please quote the password — passwords can contain special characters and spaces.
-p "$RSYNC_PASSWORD"
– Paddy Landau
Jul 14 '18 at 15:54
|
show 2 more comments
You can use standard ssh identities to do passwordless login. This is handled by default if you have a ~/.ssh/id_rsa
or the like, but you can also hardcode your own path to the private key of an authorized keypair.
This allows batching/scripting without exposing passwords, and the public key can be remove from the target server if the private key is ever compromised.
rsync -e"ssh -i /path/to/privateKey" -avR $sourcedir $ruser@$rhost:~/$rdir/
You can also add arguments like -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null
to not force remote host key verification. !Caution - that opens up man in the middle attacks and is general bad practice!
1
This is especially useful if you're using the new Bash shell for Windows 10. I was wondering why rsync wasn't working passwordlessly. I realized it was using the~/.ssh
folder inside the shell (where rsync lives). Once I used -e to point to the key inside/mnt/c/Users/MyUsername/.ssh
, it worked as expected. (Thanks. :D)
– Toby Deshane
Oct 25 '16 at 14:06
add a comment |
You can use standard ssh identities to do passwordless login. This is handled by default if you have a ~/.ssh/id_rsa
or the like, but you can also hardcode your own path to the private key of an authorized keypair.
This allows batching/scripting without exposing passwords, and the public key can be remove from the target server if the private key is ever compromised.
rsync -e"ssh -i /path/to/privateKey" -avR $sourcedir $ruser@$rhost:~/$rdir/
You can also add arguments like -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null
to not force remote host key verification. !Caution - that opens up man in the middle attacks and is general bad practice!
1
This is especially useful if you're using the new Bash shell for Windows 10. I was wondering why rsync wasn't working passwordlessly. I realized it was using the~/.ssh
folder inside the shell (where rsync lives). Once I used -e to point to the key inside/mnt/c/Users/MyUsername/.ssh
, it worked as expected. (Thanks. :D)
– Toby Deshane
Oct 25 '16 at 14:06
add a comment |
You can use standard ssh identities to do passwordless login. This is handled by default if you have a ~/.ssh/id_rsa
or the like, but you can also hardcode your own path to the private key of an authorized keypair.
This allows batching/scripting without exposing passwords, and the public key can be remove from the target server if the private key is ever compromised.
rsync -e"ssh -i /path/to/privateKey" -avR $sourcedir $ruser@$rhost:~/$rdir/
You can also add arguments like -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null
to not force remote host key verification. !Caution - that opens up man in the middle attacks and is general bad practice!
You can use standard ssh identities to do passwordless login. This is handled by default if you have a ~/.ssh/id_rsa
or the like, but you can also hardcode your own path to the private key of an authorized keypair.
This allows batching/scripting without exposing passwords, and the public key can be remove from the target server if the private key is ever compromised.
rsync -e"ssh -i /path/to/privateKey" -avR $sourcedir $ruser@$rhost:~/$rdir/
You can also add arguments like -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null
to not force remote host key verification. !Caution - that opens up man in the middle attacks and is general bad practice!
edited 2 days ago
muru
37.6k589164
37.6k589164
answered Dec 23 '14 at 20:04
EddieEddie
24427
24427
1
This is especially useful if you're using the new Bash shell for Windows 10. I was wondering why rsync wasn't working passwordlessly. I realized it was using the~/.ssh
folder inside the shell (where rsync lives). Once I used -e to point to the key inside/mnt/c/Users/MyUsername/.ssh
, it worked as expected. (Thanks. :D)
– Toby Deshane
Oct 25 '16 at 14:06
add a comment |
1
This is especially useful if you're using the new Bash shell for Windows 10. I was wondering why rsync wasn't working passwordlessly. I realized it was using the~/.ssh
folder inside the shell (where rsync lives). Once I used -e to point to the key inside/mnt/c/Users/MyUsername/.ssh
, it worked as expected. (Thanks. :D)
– Toby Deshane
Oct 25 '16 at 14:06
1
1
This is especially useful if you're using the new Bash shell for Windows 10. I was wondering why rsync wasn't working passwordlessly. I realized it was using the
~/.ssh
folder inside the shell (where rsync lives). Once I used -e to point to the key inside /mnt/c/Users/MyUsername/.ssh
, it worked as expected. (Thanks. :D)– Toby Deshane
Oct 25 '16 at 14:06
This is especially useful if you're using the new Bash shell for Windows 10. I was wondering why rsync wasn't working passwordlessly. I realized it was using the
~/.ssh
folder inside the shell (where rsync lives). Once I used -e to point to the key inside /mnt/c/Users/MyUsername/.ssh
, it worked as expected. (Thanks. :D)– Toby Deshane
Oct 25 '16 at 14:06
add a comment |
Very useful for scripting is to use --password-file
command line option.
- Create empty file called rsync_pass
- write in password to this file (nothing more)
chmod 600 rsync_pass
rsync $args --password-file=rsync_pass user@rsynchost::/share localdirectory
This can be used for scripting and allows to be more secure that just exporting password to system variable.
3
Note to reader: this also requires an rsync daemon running on the server. I really was hoping that ssh keys would be sufficient for passwordless rsync.
– user7000
Nov 2 '15 at 7:01
IMHO this is the only correct way to do it if one doesn't want to use ssh.
– maxf130
May 8 '16 at 9:51
This answer makes the most sense
– AJ Meyghani
Sep 7 '16 at 18:13
add a comment |
Very useful for scripting is to use --password-file
command line option.
- Create empty file called rsync_pass
- write in password to this file (nothing more)
chmod 600 rsync_pass
rsync $args --password-file=rsync_pass user@rsynchost::/share localdirectory
This can be used for scripting and allows to be more secure that just exporting password to system variable.
3
Note to reader: this also requires an rsync daemon running on the server. I really was hoping that ssh keys would be sufficient for passwordless rsync.
– user7000
Nov 2 '15 at 7:01
IMHO this is the only correct way to do it if one doesn't want to use ssh.
– maxf130
May 8 '16 at 9:51
This answer makes the most sense
– AJ Meyghani
Sep 7 '16 at 18:13
add a comment |
Very useful for scripting is to use --password-file
command line option.
- Create empty file called rsync_pass
- write in password to this file (nothing more)
chmod 600 rsync_pass
rsync $args --password-file=rsync_pass user@rsynchost::/share localdirectory
This can be used for scripting and allows to be more secure that just exporting password to system variable.
Very useful for scripting is to use --password-file
command line option.
- Create empty file called rsync_pass
- write in password to this file (nothing more)
chmod 600 rsync_pass
rsync $args --password-file=rsync_pass user@rsynchost::/share localdirectory
This can be used for scripting and allows to be more secure that just exporting password to system variable.
edited Nov 21 '18 at 15:38
answered Feb 22 '15 at 13:22
Arunas BartisiusArunas Bartisius
29626
29626
3
Note to reader: this also requires an rsync daemon running on the server. I really was hoping that ssh keys would be sufficient for passwordless rsync.
– user7000
Nov 2 '15 at 7:01
IMHO this is the only correct way to do it if one doesn't want to use ssh.
– maxf130
May 8 '16 at 9:51
This answer makes the most sense
– AJ Meyghani
Sep 7 '16 at 18:13
add a comment |
3
Note to reader: this also requires an rsync daemon running on the server. I really was hoping that ssh keys would be sufficient for passwordless rsync.
– user7000
Nov 2 '15 at 7:01
IMHO this is the only correct way to do it if one doesn't want to use ssh.
– maxf130
May 8 '16 at 9:51
This answer makes the most sense
– AJ Meyghani
Sep 7 '16 at 18:13
3
3
Note to reader: this also requires an rsync daemon running on the server. I really was hoping that ssh keys would be sufficient for passwordless rsync.
– user7000
Nov 2 '15 at 7:01
Note to reader: this also requires an rsync daemon running on the server. I really was hoping that ssh keys would be sufficient for passwordless rsync.
– user7000
Nov 2 '15 at 7:01
IMHO this is the only correct way to do it if one doesn't want to use ssh.
– maxf130
May 8 '16 at 9:51
IMHO this is the only correct way to do it if one doesn't want to use ssh.
– maxf130
May 8 '16 at 9:51
This answer makes the most sense
– AJ Meyghani
Sep 7 '16 at 18:13
This answer makes the most sense
– AJ Meyghani
Sep 7 '16 at 18:13
add a comment |
Thanks for contributing an answer to Unix & Linux Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f111526%2fhow-can-i-rsync-without-prompt-for-password-without-using-public-key-authentica%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
-password, rsync, ssh
have you enable rsync daemon on remote server ?
– Rahul Patil
Jan 29 '14 at 19:41