FreewayTalk

5 replies to this thread. Most Recent

AdrianLucas

30 Jan 2020, 12:03 pm

[Pro] problem uploading with sftp

Sometime ago I changed the uploader to use sftp instead of ftp. It apparently has been working fine but I just noticed that in the upload log is the message “SSH public key authentication failed: Unable to open public key file” and this has been happening ever since the change to sftp. Any ideas what’s going wrong here? I can run sftp to my site successfully from the Terminal command line. I am using Freeway Pro 7.1.4 on macOS 10.14.4.

waltd

30 Jan 2020, 2:22 pm

The SSH tool will try to use public key authentication if it is available, in preference to password. Then it falls back to password, which is just as secure, but not as convenient.

Walter

On Jan 30, 2020, at 7:03 AM, AdrianLucas <[email protected]> wrote:

Sometime ago I changed the uploader to use sftp instead of ftp. It apparently has been working fine but I just noticed that in the upload log is the message “SSH public key authentication failed: Unable to open public key file” and this has been happening ever since the change to sftp. Any ideas what’s going wrong here? I can run sftp to my site successfully from the Terminal command line. I am using Freeway Pro 7.1.4 on macOS 10.14.4.

Freeway user since 1997

http://www.walterdavisstudio.com

AdrianLucas

2 Feb 2020, 9:33 am

OK - thank you Walter. A long as it’s secure I’m happy to ignore the message.

AdrianLucas

2 Feb 2020, 3:18 pm

Could you just confirm that under these circumstances the password is encrypted before being sent to the server for logon.

waltd

2 Feb 2020, 5:34 pm

Absolutely. That’s the cornerstone of how this works. SSH (Secure Shell) is the protocol used by SFTP. You’re basically tunneling FTP (which was designed in a gentler age) through an SSH connection, and that’s as secure as the crypto-nerds can make it. If someone has broken SSH, I don’t know about it. Your password itself would be guessed before the underlying crypto would give up.

What shared-key authentication does is put your public key (half of the public/private SSH key pair) directly on the server, where the server can use it to authenticate and decrypt messages signed with your private key. I have this set up on all my servers, so I never have to type a password to “shell in” and administer them. This is not something that is easy to do if you haven’t had experience administering a Linux or Unix server, and I’m not going to try to give you a step-by-step how-to unless you have, at which point I would be telling you something you already knew.

Walter

On Feb 2, 2020, at 10:18 AM, AdrianLucas <[email protected]> wrote:

Could you just confirm that under these circumstances the password is encrypted before being sent to the server for logon.

Freeway user since 1997

http://www.walterdavisstudio.com

Back to Top

AdrianLucas

3 Feb 2020, 11:30 am

OK. Thank you Walter for your help and advice.

Regards Adrian.