Non-interactive one-time ssh && scp for 100 servers

ssh scp

I need to copy some data from a cluster of very restricted machines through the network which currently has DNS problems (so some connections are bizarrely not working). I found that the only way to copy the data from a machine is running scp from that machine. For now the workflow is:

  1. for each machine in machines
  2. ssh machine
  3. enter password
  4. scp files destination:results
  5. enter password
  6. wait
  7. repeat forever

I'm going mad over this manual labor. I want a solution which allows me to enter the password a single time. I've searched for solutions. Most recommend installing SSH keys, but this requires the same procedure to distribute the keys. Other mention the expect program, but I don't have it on that system.

How can this be accomplished?

Update: The main machine runs FreeBSD 9 and the 100 servers run Ubuntu 12. I don't have root on any machine.


Solution 1:

I will assume that these are all Linux hosts and that you have root access to them. I will also assume that they are using apt for package management, but it is easy to apply this solution with yum or pacman or any other package manager.

As far as I know, ssh offers no way of specifying a password on the command line so first you will need to install sshpass on your local machine:

sudo apt-get install sshpass

This will allow you to pass the password as a command line argument:

sshpass -p '<password>' ssh user@server

Now, create a file with all the IPs you are interested in, one per line. You can parse this file to install sshpass on each remote machine. If your password is foo and you are connecting as root, you can do 

while read ip; do 
 sshpass -p 'foo' ssh root@$ip "apt-get install sshpass"; 
done < ips.txt

sshpassis now installed on each server. Now, go through the servers again, and copy your files. If you are copying as root and the root password for your destination is bar, do this:

while read ip; do 
 sshpass -p 'foo' ssh root@$ip "sshpass -p 'bar' scp files dest:/results/"; 
done < ips.txt

You can also use sshpass to copỳ your key files and --as long as you've used an empty passphrase-- allow passwordless access so you don't have this problem next time around:

while read ip; do 
   sshpass -p 'foo' ssh root@$ip \
      "sshpass -p 'bar' ssh-copy-id -i ~/.ssh/id_rsa.pub root@destination";
done < ips.txt

Once that is done, you will be able to copy the files over using:

while read ip; do ssh root@$ip "scp files dest:/results/"; done < ips.txt

Related

Vista: setting file permissions
Final Destination History/Lore
How is the "Vision Score" calculated?
Making Spigot from FTP Work with my Computer
How can I maximise Mystic Arte usage by the AI?
How do I get to the second gym in Pokémon Alpha Sapphire?
Minecraft Command Blocks: /testfor command for wearing a player head, then tp [duplicate]
Should I be concerned about a possible counterfeit DS game?
PSN Wallet top up card
Make .minecraft file read from a usb
How do I make my skin transparent?
Summon A No Damage Slime?