[esb-issues] [JBoss JIRA] Commented: (JBESB-2875) Support sftp (ssh) keyboard-interactive auth

Friday, 9 October 2009

    [
https://jira.jboss.org/jira/browse/JBESB-2875?page=com.atlassian.jira.plu...
] 

Tom Eicher commented on JBESB-2875:
-----------------------------------

Thanks for suggesting that, but for us that would not work, because we can only access for
file transfer, i.e. sftp, not ssh.

Actually, we do not have a current problem, as we copied the SecureFtpOverSSH over to out
codebase and applied
the changes above. It would just be nice to be able to remove that when the next ESB
version comes out.

If you google the issue a bit, you will see that this is a very common problem, not only
for ESB users but for any
application that connects via SSH. Given that implementing keyboard-interactive is very
trivial, that could save
many ESB users some headaches, though.

Cheers, Tom.

...
 Support sftp (ssh) keyboard-interactive auth
 --------------------------------------------

                 Key: JBESB-2875
                 URL: https://jira.jboss.org/jira/browse/JBESB-2875
             Project: JBoss ESB
          Issue Type: Feature Request
      Security Level: Public(Everyone can see) 
          Components: Adapters
            Reporter: Tom Eicher
            Priority: Minor

 JSch, as it is currently used in SecureFtpOverSSH, does only allow "password"
authentication.
 However, this requires that the target system has ssh configured for
"PasswordAuthentication yes" in sshd_conf, which is by default "no"
nowadays...
 Connections will fail with 
 org.jboss.soa.esb.util.RemoteFileSystemException: com.jcraft.jsch.JSchException: Auth
fail
 To allow connections to servers configured like this, we need to support
"keyboard-interactive" additionally:
 1. SecureFtpImpl:
 change session.setConfig("PreferredAuthentications", "password");
 to session.setConfig("PreferredAuthentications",
"password,keyboard-interactive");
 2. SecureFtpUserInfo:
 additionally implement JSch interface UIKeyboardInteractive:
     public String[] promptKeyboardInteractive(
     		String destination,
             String name,
             String instruction,
             String[] prompt,
             boolean[] echo){
     	if(prompt.length!=1 || echo[0]!=false || this.password==null){
           return null;
     	}
     	String[] response=new String[1];
     	response[0]=this.password;
     	return response;
     } 
-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

[esb-issues] [JBoss JIRA] Commented: (JBESB-2875) Support sftp (ssh) keyboard-interactive auth