tags:

views:

68

answers:

2
Q: 

expect command - Unix

Hi,

I am using 'expect' to automate ssh password authentication. When I run the script in SunOS, I find the spawned ssh process gets killed once the below script is completed. This is not the case in Linux. How do we avoid it? Should we ignore the SIGCHLD signal somehow? Is there anyway to determine through this script if spawned process is successful and report error if any?

#!/usr/local/bin/expect -f

set password blah-blah
spawn ssh -NfL 8002:<test domain>:22 [email protected]
expect "* password:*"
send -- "$password\r"
send -- "\r"
expect EOF

-Karthik

+1  A: 

If you use ssh-keys, you won't need to code passwords in shell scripts.

You could even encrypt the key with a passphrase, and use ssh-agent to manage the key for you -- you unlock your key in the morning, start your tunnel, and then forget your key when you head to lunch, unlock your key in the afternoon, and forget it again when you go home at night. No on-disk magic gateway to remote machines.

sarnold  2010-08-04 09:34:50
Thanks for the tip. But I don't think that answers my main question. I am looking for way to ask expect not to kill the spawned process.
Kartlee  2010-08-04 09:37:03
This is the best solution - ssh keys are the best way to handle automated logins.
Douglas Leeder  2010-08-04 09:38:40
@Kartlee, indeed, I don't know expect well, haven't used it in years. (For this same problem, until a co-worker told me to use ssh-keys. Hehe.)
sarnold  2010-08-04 10:47:03
A: 

Instead of putting the ssh command in the background you could put the expect script into the background:

#!/usr/local/bin/expect -f

if {[fork] != 0} exit
disconnect

set password blah-blah
spawn ssh -NL 8002:localhost:22 [email protected]
expect {
    EOF {exit 1}
    "assword:" {}
}
send -- "$password\n"
send -- "\n"
expect EOF
wait

Works for me on Linux. At least for the setup phase, stopping it is more difficult. I had to kill -9 to stop the expect script. Which probably requires killing the ssh process as well.

Douglas Leeder  2010-08-04 09:37:50
The original script works fine in Linux. I see a difference only in SunOS. Also the suggestion you gave now doesn't seem to work.
Kartlee  2010-08-04 09:49:18
Does this work for you in SunOS?
Kartlee  2010-08-05 14:38:15
Douglas' solution works fine for me on Solaris.
jlliagre  2010-08-06 07:59:33
I'm afraid I don't have anywhere to usefully test it at the moment. It might require some tweaking to get it right.
Douglas Leeder  2010-08-06 10:36:43
I've edited it a bit. But really - ssh keys are the way to go.
Douglas Leeder  2010-08-06 10:53:35

related questions

Obscuring network proxy password in plain text files on Linux/UNIX-likes
Why doesn't **find** find anything?
Getting stack traces on Unix systems, automatically
Differences between unix and windows files
How do you do a case insensitive search using a pattern modifier using less ?
Using Visual Studio to develop for C++ for Unix
How do I generate ASCII codes 2 and 3 in a Bash command line?
What's in your .procmailrc
Allow user to set up an SSH tunnel, but nothing else
What is PHP Safe Mode GID?
How to avoid redefining VERSION, PACKAGE, etc.
How can I encode xml files to xfdl (base64-gzip)?
Faster way to find duplicates conditioned by time
Date arithmetic in Unix shell scripts
Using Xming X Window Server over a VPN
Windows Equivalent of 'nice'
How do I configure and communicate with a serial port?
Choosing a static code analysis tool
What should a longtime Windows user know when starting to use Linux?
How do I use (n)curses in Ruby?
Process size on UNIX
Getting root permissions on a file inside of vi?
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
Fastest way to get value of pi