JSch SFTP security with session.setConfig(“StrictHostKeyChecking”, “no”);

by

Disabling the StrictHostKeyChecking option will make the connection less secure than having the option enabled, because it will let you connect to remote servers without verifying their SSH host keys. If the option is enabled, you will only be able to connect to servers which keys are known to your SSH client.

You will have to decide what that means for your specific use case – are the servers you are connecting on a private, local network or do you connect over the internet? Is this a testing or production environment?

When in doubt, it is better to err on the side of more security. I would recommend enabling StricktHostKeyChecking and using the setKnownHosts method to provide a file which contains the remote host keys.

More Related Contents:

  1. How to resolve Java UnknownHostKey, while using JSch SFTP library?
  2. JSchException: Algorithm negotiation fail
  3. How to perform checksums during a SFTP file transfer for data integrity?
  4. How can I copy/duplicate a file to another directory using SFTP?
  5. SFTP file transfer using Java JSch
  6. Getting unwanted characters when reading command output from SSH server using JSch
  7. scp or sftp copy multiple files with single command
  8. Transfer files to/from session I’m logged in with PuTTY
  9. How do I transfer a file from one directory to another using Java SFTP Library JSch?
  10. Certain Unix commands fail with “… not found”, when executed through Java using JSch
  11. How to SFTP with PHP?
  12. How can I transform between the two styles of public key format, one “BEGIN RSA PUBLIC KEY”, the other is “BEGIN PUBLIC KEY”
  13. How do I setup Public-Key Authentication? [closed]
  14. Secure FTP using Windows batch script
  15. C# RSA Public Key Output Not Correct
  16. SFTP from within PHP
  17. scp transfer via java
  18. How do I run SSH commands on remote system using Java? [closed]
  19. Directory transfers with Paramiko
  20. What is the difference between a cer, pvk, and pfx file?
  21. The cipher ‘aes256-cbc’ is required, but it is not available
  22. Schedule automatic daily upload with FileZilla [closed]
  23. Python pysftp put_r does not work on Windows
  24. Uploading files with SFTP
  25. What is the difference between the ‘shell’ channel and the ‘exec’ channel in JSch
  26. Password authentication in Python Paramiko fails, but same credentials work in SSH/SFTP client
  27. Writing to a file on SFTP server opened using Paramiko/pysftp “open” method is slow
  28. How to download only the latest file from SFTP server with Paramiko?
  29. How can I get SecKeyRef from DER/PEM file
  30. Setting up OpenSSH for Windows using public key authentication

Leave a Comment