~ubuntu-branches/ubuntu/utopic/sshpass/utopic

Viewing changes to sshpass.1

Committer: Bazaar Package Importer
Author(s): Shachar Shemesh
Date: 2011-08-06 20:23:50 UTC
mfrom: (1.1.3 upstream)
Revision ID: james.westby@ubuntu.com-20110806202350-1tekzh9sq5oxx0p0

Tags: 1.05-1

http://bugs.debian.org/636039

http://bugs.debian.org/616565

* Fix ""sshpass -e" not working any more with openssh-client": A different
workaround for the EIO on PTY problem. (Closes: #636039)
* Fix "Segfault when calling with no argument": Problem did not reproduce,
but print usage when run without parameters anyways. (Closes: #616565)
* Switch to dpkg-source 3.0 (quilt) format
* Policy update to 3.9.10 (no changes needed)

files added:
debian/source

debian/source/format

files removed:
config.guess

config.sub

files modified:
ChangeLog

INSTALL

Makefile.in

aclocal.m4

config.h.in

configure

configure.ac

debian/changelog

debian/compat

debian/control

debian/rules

debian/watch

depcomp

install-sh

main.c

missing

sshpass.1

Show diffs side-by-side

added added

removed removed

sshpass.1

.TH SSHPASS 1 "October 17, 2008" "Lingnu Open Source Consulting" "Sshpass User Manual"

.TH SSHPASS 1 "August 6, 2011" "Lingnu Open Source Consulting" "Sshpass User Manual"

.\" Please adjust this date whenever revising the manpage.

.SH NAME

sshpass \- noninteractive ssh password provider

"ssh" with arguments, but it can just as well be any other command. The password

prompt used by ssh is, however, currently hardcoded into sshpass.

.SH Options

If not option is given, sshpass reads the password from the standard input. The

If no option is given, sshpass reads the password from the standard input. The

user may give at most one alternative source for the password:

.TP

.B \-p\fIpassword\fP

The \-p option should be considered the least secure of all of sshpass's options.

All system users can see the password in the command line with a simple "ps"

command. Sshpass makes no attempt to hide the password, as such attempts create

command. Sshpass makes a minimal attempt to hide the password, but such attempts are doomed to create

race conditions without actually solving the problem. Users of sshpass are

encouraged to use one of the other password passing techniques, which are all

more secure.

particular, if the password is read from stdin (no password option at all), it

is possible that some of the input aimed to be passed to ssh will be read by

100

sshpass and lost.

101

102

Sshpass utilizes the \fBpty\fR(7) interface to control the TTY for ssh. This interface,

103

at least on Linux, has a misfeature where if no slave file descriptors are open, the

104

master pty returns \fBEIO\fR. This is the normal behavior, except a slave pty may

105

be born at any point by a program opening \fB/dev/tty\fR. This makes it impossible

106

to reliably wait for events without consuming 100% of the CPU.

107

108

Over the various versions different approaches were attempted at solving this problem.

109

Any given version of sshpass is released with the belief that it is working, but experience

110

has shown that these things do, occasionally, break. This happened with OpenSSH version 5.6.

111

As of this writing, it is believed that sshpass is, again, working properly.

Older »