| 
									
										
										
										
											2005-10-30 22:28:54 -05:00
										 |  |  | paramiko 1.5.1 | 
					
						
							|  |  |  | "quilava" release, 31 oct 2005 | 
					
						
							| 
									
										
										
										
											2003-11-04 03:34:24 -05:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2005-02-28 03:06:08 -05:00
										 |  |  | Copyright (c) 2003-2005 Robey Pointer <robey@lag.net> | 
					
						
							| 
									
										
										
										
											2003-11-04 03:34:24 -05:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2004-12-12 04:58:40 -05:00
										 |  |  | http://www.lag.net/paramiko/ | 
					
						
							| 
									
										
										
										
											2003-11-04 03:34:24 -05:00
										 |  |  | 
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | ***  WHAT | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  | "paramiko" is a combination of the esperanto words for "paranoid" and | 
					
						
							|  |  |  | "friend".  it's a module for python 2.2+ that implements the SSH2 protocol | 
					
						
							|  |  |  | for secure (encrypted and authenticated) connections to remote machines. | 
					
						
							|  |  |  | unlike SSL (aka TLS), SSH2 protocol does not require heirarchical | 
					
						
							|  |  |  | certificates signed by a powerful central authority. you may know SSH2 as | 
					
						
							|  |  |  | the protocol that replaced telnet and rsh for secure access to remote | 
					
						
							|  |  |  | shells, but the protocol also includes the ability to open arbitrary | 
					
						
							|  |  |  | channels to remote services across the encrypted tunnel (this is how sftp | 
					
						
							|  |  |  | works, for example). | 
					
						
							| 
									
										
										
										
											2003-11-04 03:34:24 -05:00
										 |  |  | 
 | 
					
						
							|  |  |  | it is written entirely in python (no C or platform-dependent code) and is | 
					
						
							|  |  |  | released under the GNU LGPL (lesser GPL).  | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  | the package and its API is fairly well documented in the "doc/" folder | 
					
						
							|  |  |  | that should have come with this archive. | 
					
						
							| 
									
										
										
										
											2004-01-04 04:29:13 -05:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2003-11-04 03:34:24 -05:00
										 |  |  | 
 | 
					
						
							|  |  |  | ***  REQUIREMENTS | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | python 2.3	<http://www.python.org/> | 
					
						
							| 
									
										
										
										
											2004-09-05 03:44:03 -04:00
										 |  |  |     (python 2.2 is also supported, but not recommended) | 
					
						
							| 
									
										
										
										
											2004-09-07 02:45:53 -04:00
										 |  |  | pycrypto 1.9+	<http://www.amk.ca/python/code/crypto.html> | 
					
						
							|  |  |  |     (2.0 works too) | 
					
						
							| 
									
										
										
										
											2004-01-04 04:29:13 -05:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2004-09-07 02:45:53 -04:00
										 |  |  | pycrypto compiled for Win32 can be downloaded from the HashTar homepage: | 
					
						
							| 
									
										
										
										
											2004-01-04 04:29:13 -05:00
										 |  |  |     http://nitace.bsd.uchicago.edu:8080/hashtar | 
					
						
							| 
									
										
										
										
											2004-04-08 01:48:16 -04:00
										 |  |  | you can also build it yourself using the free MinGW tools and this command | 
					
						
							|  |  |  | line (thanks to Roger Binns for the info): | 
					
						
							|  |  |  |     python setup.py build --compiler=mingw32 bdist_wininst | 
					
						
							| 
									
										
										
										
											2003-11-04 03:34:24 -05:00
										 |  |  | 
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | ***  PORTABILITY | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | i code and test this library on Linux and MacOS X.  for that reason, i'm | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  | pretty sure that it works for all posix platforms, including MacOS.  i | 
					
						
							|  |  |  | also think it will work on Windows, though i've never tested it there.  if | 
					
						
							|  |  |  | you run into Windows problems, send me a patch: portability is important | 
					
						
							|  |  |  | to me. | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | python 2.2 may work, thanks to some patches from Roger Binns.  things to | 
					
						
							|  |  |  | watch out for: | 
					
						
							|  |  |  | * sockets in 2.2 don't support timeouts, so the 'select' module is | 
					
						
							| 
									
										
										
										
											2005-03-26 00:53:00 -05:00
										 |  |  |   imported to do polling.   | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  | * logging is mostly stubbed out.  it works just enough to let paramiko | 
					
						
							|  |  |  |   create log files for debugging, if you want them.  to get real logging, | 
					
						
							|  |  |  |   you can backport python 2.3's logging package.  Roger has done that | 
					
						
							|  |  |  |   already: | 
					
						
							| 
									
										
										
										
											2004-04-07 12:05:48 -04:00
										 |  |  |   http://sourceforge.net/project/showfiles.php?group_id=75211&package_id=113804 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | you really should upgrade to python 2.3.  laziness is no excuse! :) | 
					
						
							| 
									
										
										
										
											2004-04-06 04:16:02 -04:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  | some python distributions don't include the utf-8 string encodings, for | 
					
						
							|  |  |  | reasons of space (misdirected as that is).  if your distribution is | 
					
						
							|  |  |  | missing encodings, you'll see an error like this: | 
					
						
							| 
									
										
										
										
											2004-05-29 14:48:23 -04:00
										 |  |  | 
 | 
					
						
							|  |  |  | LookupError: no codec search functions registered: can't find encoding | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | this means you need to copy string encodings over from a working system. | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  | (it probably only happens on embedded systems, not normal python | 
					
						
							|  |  |  | installls.) | 
					
						
							| 
									
										
										
										
											2004-05-29 14:48:23 -04:00
										 |  |  | Valeriy Pogrebitskiy says the best place to look is | 
					
						
							|  |  |  | '.../lib/python*/encodings/__init__.py'. | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2003-11-04 03:34:24 -05:00
										 |  |  | 
 | 
					
						
							|  |  |  | ***  DEMO | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  | several demo scripts come with paramiko to demonstrate how to use it. | 
					
						
							|  |  |  | probably the simplest demo of all is this: | 
					
						
							| 
									
										
										
										
											2004-11-06 15:32:08 -05:00
										 |  |  | 
 | 
					
						
							|  |  |  |     import paramiko, base64 | 
					
						
							|  |  |  |     key = paramiko.RSAKey(data=base64.decodestring('AAA...')) | 
					
						
							|  |  |  |     t = paramiko.Transport('ssh.example.com') | 
					
						
							|  |  |  |     t.connect(username='strongbad', password='thecheat', hostkey=key) | 
					
						
							|  |  |  |     chan = t.open_session() | 
					
						
							|  |  |  |     chan.exec_command('ls') | 
					
						
							|  |  |  |     for line in chan.makefile('r+'): | 
					
						
							|  |  |  |         print '... ' + line.strip('\n') | 
					
						
							|  |  |  |     chan.close() | 
					
						
							|  |  |  |     t.close() | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  | ...which prints out the results of executing 'ls' on a remote server. | 
					
						
							|  |  |  | (the host key 'AAA...' should of course be replaced by the actual base64 | 
					
						
							|  |  |  | encoding of the host key.  if you skip host key verification, the | 
					
						
							|  |  |  | connection is not secure!) | 
					
						
							| 
									
										
										
										
											2004-11-06 15:32:08 -05:00
										 |  |  | 
 | 
					
						
							|  |  |  | the following example scripts get progressively more detailed: | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | demo_simple.py | 
					
						
							|  |  |  |     calls invoke_shell() and emulates a terminal/tty through which you can | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  |     execute commands interactively on a remote server.  think of it as a | 
					
						
							| 
									
										
										
										
											2005-03-26 00:53:00 -05:00
										 |  |  |     poor man's ssh command-line client. | 
					
						
							| 
									
										
										
										
											2004-11-06 15:32:08 -05:00
										 |  |  | 
 | 
					
						
							|  |  |  | demo.py | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  |     same as demo_simple.py, but allows you to authenticiate using a | 
					
						
							| 
									
										
										
										
											2005-07-18 02:40:30 -04:00
										 |  |  |     private key, attempts to use an SSH-agent if present, and uses the long | 
					
						
							|  |  |  |     form of some of the API calls. | 
					
						
							| 
									
										
										
										
											2004-11-06 15:32:08 -05:00
										 |  |  | 
 | 
					
						
							|  |  |  | forward.py | 
					
						
							|  |  |  |     command-line script to set up port-forwarding across an ssh transport. | 
					
						
							| 
									
										
										
										
											2005-03-26 00:53:00 -05:00
										 |  |  |     (requires python 2.3.) | 
					
						
							| 
									
										
										
										
											2004-11-06 15:32:08 -05:00
										 |  |  | 
 | 
					
						
							|  |  |  | demo_server.py | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  |     an ssh server that listens on port 2200 and accepts a login for | 
					
						
							|  |  |  |     'robey' (password 'foo'), and pretends to be a BBS.  meant to be a | 
					
						
							| 
									
										
										
										
											2005-03-26 00:53:00 -05:00
										 |  |  |     very simple demo of writing an ssh server. | 
					
						
							| 
									
										
										
										
											2003-11-10 01:52:35 -05:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2003-11-04 03:34:24 -05:00
										 |  |  | 
 | 
					
						
							|  |  |  | ***  USE | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2004-11-06 15:32:08 -05:00
										 |  |  | the demo scripts are probably the best example of how to use this package. | 
					
						
							|  |  |  | there is also a lot of documentation, generated with epydoc, in the doc/ | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  | folder.  point your browser there.  seriously, do it.  mad props to | 
					
						
							|  |  |  | epydoc, which actually motivated me to write more documentation than i | 
					
						
							|  |  |  | ever would have before. | 
					
						
							| 
									
										
										
										
											2003-11-10 01:52:35 -05:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2004-03-08 12:52:25 -05:00
										 |  |  | there are also unit tests here: | 
					
						
							| 
									
										
										
										
											2004-04-06 04:16:02 -04:00
										 |  |  |     $ python ./test.py | 
					
						
							| 
									
										
										
										
											2004-03-08 12:52:25 -05:00
										 |  |  | which will verify that some of the core components are working correctly. | 
					
						
							|  |  |  | not much is tested yet, but it's a start.  the tests for SFTP are probably | 
					
						
							|  |  |  | the best and easiest examples of how to use the SFTP class. | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2003-11-04 03:34:24 -05:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2004-04-07 12:05:48 -04:00
										 |  |  | ***  WHAT'S NEW | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | highlights of what's new in each release: | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2005-10-30 22:28:54 -05:00
										 |  |  | v1.5.1 QUILAVA | 
					
						
							|  |  |  | * SFTPFile.prefetch() added to dramatically speed up downloads (automatically | 
					
						
							|  |  |  |   turned on in SFTPClient.get()) | 
					
						
							|  |  |  | * fixed bug where garbage-collected Channels could trigger the Transport to | 
					
						
							|  |  |  |   close the session (reported by gordon good) | 
					
						
							|  |  |  | * fixed a deadlock in rekeying (reported by wendell wood) | 
					
						
							|  |  |  | * fixed some windows bugs and SFTPAttributes.__str__() (reported by grzegorz | 
					
						
							|  |  |  |   makarewicz) | 
					
						
							|  |  |  | * better sftp error reporting by adding fake "errno" info to IOErrors | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2005-10-02 16:08:39 -04:00
										 |  |  | v1.5 PARAS | 
					
						
							| 
									
										
										
										
											2005-09-25 05:11:23 -04:00
										 |  |  | * added support for "keyboard-interactive" authentication | 
					
						
							|  |  |  | * added mode (on by default) where password authentication will try to | 
					
						
							|  |  |  |   fallback to "keyboard-interactive" if it's supported | 
					
						
							|  |  |  | * added pipelining to SFTPFile.write and SFTPClient.put | 
					
						
							|  |  |  | * fixed bug with SFTPFile.close() not guarding against being called more | 
					
						
							|  |  |  |   than once (thanks to Nathaniel Smith) | 
					
						
							|  |  |  | * fixed broken 'a' flag in SFTPClient.file() (thanks to Nathaniel Smith) | 
					
						
							|  |  |  | * fixed up epydocs to look nicer | 
					
						
							|  |  |  | * reorganized auth_transport into auth_handler, which seems to be a cleaner | 
					
						
							|  |  |  |   separation | 
					
						
							|  |  |  | * demo scripts fixed to have a better chance of loading the host keys | 
					
						
							|  |  |  |   correctly on windows/cygwin | 
					
						
							|  |  |  |    | 
					
						
							| 
									
										
										
										
											2005-07-18 02:40:30 -04:00
										 |  |  | v1.4 ODDISH | 
					
						
							|  |  |  | * added SSH-agent support (for posix) from john rochester | 
					
						
							|  |  |  | * added chdir() and getcwd() to SFTPClient, to emulate a "working directory" | 
					
						
							|  |  |  | * added get() and put() to SFTPClient, to emulate ftp whole-file transfers | 
					
						
							|  |  |  | * added check() to SFTPFile (a file hashing protocol extension) | 
					
						
							|  |  |  | * fixed Channels and SFTPFiles (among others) to auto-close when GC'd | 
					
						
							|  |  |  | * fixed Channel.fileno() for Windows, this time really | 
					
						
							|  |  |  | * don't log socket errors as "unknown exception" | 
					
						
							|  |  |  | * some misc. backward-compatible API improvements (like allowing | 
					
						
							|  |  |  |   Transport.start_client() and start_server() to be called in a blocking way) | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2005-06-28 04:00:12 -04:00
										 |  |  | v1.3.1 NIDORAN | 
					
						
							| 
									
										
										
										
											2005-06-27 23:39:53 -04:00
										 |  |  | * added SFTPClient.close() | 
					
						
							|  |  |  | * fixed up some outdated documentation | 
					
						
							|  |  |  | * made SFTPClient.file() an alias for open() | 
					
						
							|  |  |  | * added Transport.open_sftp_client() for convenience | 
					
						
							|  |  |  | * refactored packetizing out of Transport | 
					
						
							|  |  |  | * fixed bug (reported by alain s.) where connecting to a non-SSH host could | 
					
						
							|  |  |  |   cause paramiko to freeze up | 
					
						
							| 
									
										
										
										
											2005-06-28 04:00:12 -04:00
										 |  |  | * fixed Channel.fileno() for Windows (again) | 
					
						
							|  |  |  | * some more unit tests | 
					
						
							| 
									
										
										
										
											2005-06-27 23:39:53 -04:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2005-04-09 20:46:41 -04:00
										 |  |  | v1.3 MAROWAK | 
					
						
							|  |  |  | * fixed a bug where packets larger than about 12KB would cause the session | 
					
						
							|  |  |  |   to die on all platforms except osx | 
					
						
							|  |  |  | * added a potential workaround for windows to let Channel.fileno() (and | 
					
						
							|  |  |  |   therefore the select module) work! | 
					
						
							|  |  |  | * changed API for subsystem handlers (sorry!) to pass more info and make it | 
					
						
							|  |  |  |   easier to write a functional SFTP server | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2005-02-26 16:11:04 -05:00
										 |  |  | v1.2 LAPRAS | 
					
						
							|  |  |  | * added SFTPClient.listdir_attr() for fetching a list of files and their | 
					
						
							|  |  |  |   attributes in one call | 
					
						
							|  |  |  | * added Channel.recv_exit_status() and Channel.send_exit_status() for | 
					
						
							|  |  |  |   manipulating the exit status of a command from either client or server | 
					
						
							|  |  |  |   mode | 
					
						
							|  |  |  | * moved check_global_request into ServerInterface, where it should've been | 
					
						
							|  |  |  |   all along (oops) | 
					
						
							|  |  |  | * SFTPHandle's default implementations are fleshed out more | 
					
						
							| 
									
										
										
										
											2005-02-28 03:06:08 -05:00
										 |  |  | * made logging a bit more consistent, and started logging thread ids | 
					
						
							|  |  |  | * fixed a few race conditions, one of which would sometimes cause a Transport | 
					
						
							|  |  |  |   to fail to start on slow machines | 
					
						
							| 
									
										
										
										
											2005-02-26 16:11:04 -05:00
										 |  |  | * more unit tests | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2004-12-12 04:58:40 -05:00
										 |  |  | v1.1 KABUTO | 
					
						
							|  |  |  | * server-side SFTP support | 
					
						
							|  |  |  | * added support for stderr streams on client & server channels | 
					
						
							|  |  |  | * added a new distinct exception for failed client authentication | 
					
						
							|  |  |  |   when caused by the server rejecting that *type* of auth | 
					
						
							|  |  |  | * added support for multi-part authentication | 
					
						
							|  |  |  | * fixed bug where get_username() wasn't working in server mode | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2004-11-06 22:10:53 -05:00
										 |  |  | v1.0 JIGGLYPUFF | 
					
						
							|  |  |  | * fixed bug that broke server-mode authentication by private key | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  | * fixed bug where closing a Channel could end up killing the entire | 
					
						
							|  |  |  |   Transport | 
					
						
							| 
									
										
										
										
											2004-11-06 22:10:53 -05:00
										 |  |  | * actually include demo_windows.py this time (oops!) | 
					
						
							| 
									
										
										
										
											2004-12-10 02:55:33 -05:00
										 |  |  | * fixed recently-introduced bug in group-exchange key negotiation that | 
					
						
							|  |  |  |   would generate the wrong hash (and therefore fail the initial handshake) | 
					
						
							| 
									
										
										
										
											2004-11-06 22:10:53 -05:00
										 |  |  | * server-mode subsystem handler is a bit more flexible | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2004-04-07 12:05:48 -04:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2003-11-04 03:34:24 -05:00
										 |  |  | ***  MISSING LINKS | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2005-12-03 23:50:02 -05:00
										 |  |  | R-blockers: | 
					
						
							|  |  |  | * unit tests for compression | 
					
						
							|  |  |  | * zlib@openssh.com compression probably doesn't work after rekey | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2005-08-09 02:31:19 -04:00
										 |  |  | * host-based auth (yuck!) | 
					
						
							|  |  |  | * SFTP implicit file locking? | 
					
						
							| 
									
										
										
										
											2005-10-02 16:08:39 -04:00
										 |  |  | * ChannelException like the java version has | 
					
						
							| 
									
										
										
										
											2005-12-02 16:15:44 -05:00
										 |  |  | * would be nice to have windows putty "pagent" support -- looks very hard | 
					
						
							| 
									
										
										
										
											2005-08-09 02:31:19 -04:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2003-11-04 03:34:24 -05:00
										 |  |  | * ctr forms of ciphers are missing (blowfish-ctr, aes128-ctr, aes256-ctr) | 
					
						
							| 
									
										
										
										
											2005-07-18 01:43:44 -04:00
										 |  |  | * sftp protocol 6 support (ugh....) -- once it settles down more | 
					
						
							| 
									
										
										
										
											2005-04-16 19:38:22 -04:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2005-09-25 05:11:23 -04:00
										 |  |  | * make a simple example demonstrating use of SocketServer (besides forward.py?) | 
					
						
							| 
									
										
										
										
											2005-12-02 16:15:44 -05:00
										 |  |  | 
 | 
					
						
							|  |  |  | * make a function to parse .ssh/config files: | 
					
						
							|  |  |  | 	User, Hostname, Port, ProxyCommand, IdentityFile |