Hi,
Our security department has asked to remove all the .netrc files from home
directories. But some of our applications use .netrc for automatic ftp
connection. Since some programs are using ftp client supplied with the OS
(solaris) I cannot reintroduce a new ftp client. Using secure ftp is also
not an option.
What I have planned to implement automatic ftp is as follows.
1. Encrypt all .netrc entries using RSA.
2. Write a wrapper for ftp client to read the hostname, decrypt the
corrosponding entry for user and password and setup the ftp connection using
unix ftp and control all input output and error of ftp client program.
Control structure is as below
wrapper program is called with "hostname" as a parameter.
wrapper reads the corrosponding entry for "hostname" and decrypt user name
and password using the private key
call "ftp -n hostname"
send user
send passwd
send and rcv ftp data
close if get bye
3. To do this my wrapper program should have access to STDIN, STDOUT,STDERR
of ftp. I thought of using IPC::open3. And IO::Select as in perl cook book.
But it may fail due to buffering in ftp. It also will compicate things with
signal handling.
There may be an easier way to do this. Or same concept with different
approch.
Please help and thanks in advance
Lakmal
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
