How to suppress plain text passwords

A discussion of Co:Z sftp, a port of OpenSSH sftp for z/OS
Post Reply
te52
Posts: 1
Joined: Tue Dec 15, 2020 4:08 pm

How to suppress plain text passwords

Post by te52 » Wed Dec 16, 2020 4:21 pm

Hello,

A vendor has given their client-base notice that they are moving to Amazon Web Services support. As part of this transition, one of their new restrictions is that plain text passwords will not be supported. I am new to COZBATCH and COZSFTP. I'm a crusty ole' MVS Sysprog, not versed in shell scripting, USS and tagged to help in a the resolution. Below is the production batch job in question as supplied to me by one of the App Programmers asking for assistance on what needs to be changed. Certainly, I see the PASSWD_DSN parm with the variable containing the pds/member containing the plain text password.

I'm looking for advisement, sample instruction in digestible language for me that I hope to be a simple resolution.

Thanks in advance for your assistance!

//STEP030 EXEC PGM=COZBATCH,REGION=0M
//*
//* ====> INPUT FILES FOLLOW
//*
//STDIN DD *
coz_bin="/localaps/coz/bin"
remoteuser="XXXXXXXX"
server="data2.aer.com"
servercp="ISO8859-1"
remotefile="HMICPIF%%$ODATE.CSV"

export PASSWD_DSN='//SYS2.FTPSEC(AERPW)'
export SSH_ASKPASS=$coz_bin/read_passwd_dsn.sh
export DISPLAY=none
ssh_opts="-oBatchMode=no"
ssh_opts="$ssh_opts -oConnectTimeout=60"
ssh_opts="$ssh_opts -oServerAliveInterval=60"
ssh_opts="$ssh_opts -oStrictHostKeyChecking=no"

$coz_bin/cozsftp $ssh_opts -b- $remoteuser@$server <<EOB
lzopts mode=text,servercp=$servercp
ls -1lt
put //DD:DOWNLOAD $remotefile
ls -1lt
quit
EOB
/*

Post Reply