sftp bug?

Polytropon freebsd at edvax.de
Wed Aug 6 10:51:44 UTC 2014

On Wed, 06 Aug 2014 12:48:40 +0200, Jos Chrispijn wrote:
> If I use sftp and the user has a questionmark in his password, the 
> password is not accepted.

Maybe an issue related to keyboard layout? The '?' is a
valid character for a password like everyone else. :-)

Question: Is the password supplied with a command line?
In this case, it might be that the shell is trying to
evaluate this special character:

	% sftp bob:my?password at ftp.example.com

would be such a case. You could try using \? or maybe
enclosing the password in 'single' quotes (to tell the
shell not to try to interpret _anything_ in this string).

> Can I bypass this in a configuration file?

The (unsafe) FTP program (ftp) accesses a file called
~/.netrc (see "man ftp" for details), surely sftp can
do the same. In this file, passwords can be stored.
But keep in mind: Those passwords are in _clear text_
inside this file, so make sure permissions are tight!

By completely avoiding passwords and instead relying on
keys the problem could probably be cured. So no password
has to be stored as plain text in a regular file.

Magdeburg, Germany
Happy FreeBSD user since 4.0
Andra moi ennepe, Mousa, ...

More information about the freebsd-questions mailing list