46
10
I am uploading files to my shell account using scp. As I need different permissions on the server than on my computer, I'd like to have a way to easily change the permissions upon upload without needing to ssh to the account and change them manually.
Florian Mayer
Posted 2008-10-11T16:52:26.863
Reputation: 685
33
If you're copying from a windows machine, you can use WinSCP to copy, and it has an option to set the permissions on the copied files after the upload.
If not, I think your only choice is to execute a chmod on the server after the upload, which you could do remotely with an ssh command:
scp /path/to/file server:/server/path/to/file
ssh server chmod 644 /server/path/to/file
zigdon
Posted 2008-10-11T16:52:26.863
Reputation: 1 481
24
My preferred working solution would be to use rsync instead:
Replace:
scp /path/to/file server:/server/path/to/file
With:
rsync --chmod=u+rwx,g+rwx,o+rwx /path/to/file server:/path/to/file
This prevents you from authenticating twice. There are also a lot of other options with rsync which would probably add value such as being able to preserve owner, group, etc.
JRomero
Posted 2008-10-11T16:52:26.863
Reputation: 341
This is not working. – soham – 2015-01-11T00:27:54.923
1
Found out the cause. You have to use --perms as well.
http://explainshell.com/explain?cmd=rsync+-p+--chmod%3D%2Brwx+-e+%22ssh+-i+userserver.pem%22+--copy-unsafe-links+-rz+user%40server%3A~%2F+%2Fdb_backups%2Fwww%2F
5Could you show the full, valid, command, pelase? Either as comment, or by editting the answer – Mawg says reinstate Monica – 2016-10-20T08:36:08.900
6
You could do it using tar, ssh, & umask like this:
on host 1:
[saml@host1 testdir]$ pwd
/tmp/testdir
[saml@host1 testdir]$ ls -l
total 12
-rw-r--r-- 1 saml saml 21 May 19 00:21 file1
-rw-r--r-- 1 saml saml 48 May 19 00:21 file2
-rw-r--r-- 1 saml saml 28 May 19 00:21 file3
[saml@host1 testdir]$ tar cvf - . | (ssh host2 "umask 0277; cd /tmp/testdir;tar xvf -")
./
./file1
./file2
./file3
./
./file1
./file2
./file3
on host2:
[samr@host2 testdir]$ pwd
/tmp/testdir
[samr@host2 testdir]$ ls -l
total 12
-r-------- 1 samr web 21 May 19 00:21 file1
-r-------- 1 samr web 48 May 19 00:21 file2
-r-------- 1 samr web 28 May 19 00:21 file3
You can drop the -v switches to tar which I've included here merely so that you can see the files being tarred up on host1 and sent through STDOUT (aka. -) and then getting un-tarred on host2.
NOTE: Why this works? Tar's default behavior is to unpack files using a remote user's umask. In the above example I've included the command umask to explicitly set it to something different which demonstrates that the remote tar is changing the permissions on the remote side.
slm
Posted 2008-10-11T16:52:26.863
Reputation: 7 449
1As I can see with this command you can only apply fewer permissions to transferred files, as umask only substract permissions, e.g. for a local file with 700 you couldn't get the file with 755 in the destination server, or am I wrong? – Jaime Hablutzel – 2014-07-10T09:13:07.973
1
Furthermore you need --no-same-permissions for the second tar usage if the destination user is root, see http://superuser.com/a/383801/89031
@jaime - that is correct, this will only allow you to set the umask for the entire set of files as they're written to the remote server. There is no individual control for different files. I'll often use this since I want to strip relaxed permissions that were OK on my laptop, when copying to a remote deployment, for example. – slm – 2014-07-10T12:41:16.300
@jaime - the --no-same-permissions is correct as well according to tar's man page. I've changed the prompts in my example so there is no confusion on that. – slm – 2014-07-10T12:44:31.893
6
I have made some experiments with scp. For new files uploaded to the target server, the files have the same permissions as on the source server. If existing files are overwritten on the target server, the permissions for those files don't change.
I have done these experiments with CentOS 4.6.
Jingguo Yao
Posted 2008-10-11T16:52:26.863
Reputation: 179
3This should be a comment instead of an answer – Jaime Hablutzel – 2014-07-10T09:26:22.573
2Agred (but it did really help ;-) – Mawg says reinstate Monica – 2016-10-20T08:48:10.217
This is what I'm trying to get around in one go via script. Rsync isn't always on the destination server and I'd rather that the script I give out doesn't take liberties with apt/yum etc to install rsync. Seems I might have to go the scp+chmod or rm+scp method to ensure permissions are correct. :-/ – zaTricky – 2018-07-31T06:09:37.030
4
I wrote a small script for the task in Python. You can do python script.py -p o+r some files some/dir/on/the/server/
import subprocess
import sys
from optparse import OptionParser
DEFAULT_SERVER = 'your.server.com'
parser = OptionParser()
parser.add_option("-p", "--permissions", action="store",
type="str", dest="perm", metavar="PERM",
help="chmod files to PERM", default=None)
parser.add_option("-s", "--server", action="store",
type="str", dest="serv", metavar="SERVER",
help="scp to SERVER", default=DEFAULT_SERVER)
options, args = parser.parse_args()
files = args[:-1]
direct = args[-1]
proc = subprocess.Popen(['scp'] + files + ['%s:%s' % (options.serv, direct)],
stdout=subprocess.PIPE, stderr=subprocess.PIPE)
if proc.wait() != 0:
print >>sys.stderr, "Uploading failed!"
sys.exit(1)
if options.perm is not None:
arg_dict = dict(dir=direct, perm=options.perm, files=' '.join(files))
proc = subprocess.Popen(['ssh', options.serv, 'cd %(dir)s;'
'chmod -R %(perm)s %(files)s' % arg_dict],
stdout=subprocess.PIPE, stderr=subprocess.PIPE)
Florian Mayer
Posted 2008-10-11T16:52:26.863
Reputation: 685
1Wow, I never heard of the new SO site, Code Review, ty @Tshepang! – AnneTheAgile – 2014-08-01T18:52:29.533
2@AnneTheAgile it's not that new; it's over 3 years old :) – tshepang – 2014-08-01T20:55:18.690
3
Do you mind posting your code at Code Review. There could be nice suggestions there for how it can be improved.
– tshepang – 2011-07-21T13:38:05.5431
I would suggest setting up sticky bit on the folder so that the files you upload under that folder gets that permission automatically.
chmod 1644 dir
"1" used above sets the sticky bit.
so you only have to upload one and not have to run another command afterwards.
DaveDeveloper
Posted 2008-10-11T16:52:26.863
Reputation: 62
Can someone explain how this would workl, please? – Mawg says reinstate Monica – 2016-10-20T08:47:32.127
0
Assuming you are uploading to a UNIX variant, I think that the permissions ought to follow your UMASK settings. I don't recall off the top of my head which dot-files get processed for SCP, but if you set your UMASK in one of those the files you create will have it's permissions set based on it. It probably depends on what shell you use on the remote system.
Whatever you do, don't use the -p option as it does the exact opposite of what you want.
tvanfosson
Posted 2008-10-11T16:52:26.863
Reputation: 501
Nope. -p is not what I wanted because I need different permissions on the server(yes it's an UNIX) than on my local machine. I could of course chmod them, use -p and then chmod them back, though I'd need to store the permissions then. – Florian Mayer – 2008-10-11T17:05:38.040
I wasn't suggesting that you use -p, just confirming that you were. I'll clarify my post. – tvanfosson – 2008-10-11T17:18:59.027
I thought about that too, what about uploading directories then? – Florian Mayer – 2008-10-11T17:16:41.293
Hm, I could do chmod -R then. Not a bad idea I guess. – Florian Mayer – 2008-10-11T17:22:11.250
1Right. scp -r, then ssh chmod -R – zigdon – 2008-10-11T17:47:19.407
1I also had success doing the same thing with plink and pscp (from the putty package) – stevepastelan – 2013-05-22T21:49:34.843