package Net::FullAuto; ### OPEN SOURCE LICENSE - GNU AFFERO PUBLIC LICENSE Version 3.0 ####### # # Net::FullAuto - Powerful Network Process Automation Software # Copyright © 2000-2016 Brian M. Kelly # # This program is free software: you can redistribute it and/or modify # it under the terms of the GNU Affero General Public License as # published by the Free Software Foundation, either version 3 of the # License, or any later version. # # This program is distributed in the hope that it will be useful, # but **WITHOUT ANY WARRANTY**; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU Affero General Public License for more details. # # You should have received a copy of the GNU Affero General Public # License along with this program. If not, see: # <http://www.gnu.org/licenses/agpl.html>. # ####################################################################### our $VERSION='1.0000080'; use 5.005; use strict; use warnings; BEGIN { my @ARGS=@ARGV; my $quiet=0; my $args=''; foreach (@ARGS) { if ($_ eq '--password') { $args.='--password '; shift @ARGS; $args.='******** ' if ($ARGS[0] && ((length $ARGS[0]<3) || (unpack('a2',$ARGS[0]) ne '--'))); next; } elsif ($_ eq '--quiet' || $_ eq '--version' || $_ =~ /^-[a-uw-zA-UW-Z]*[Vv]/ || $_ =~ '--cat') { $quiet=1; } $args.="$_ "; } chop $args; my $nl=(grep { $_ eq '--cron' } @ARGV)?'':"\n"; print "Command Line -> $0 $args\n" if !$nl; print "STARTING FullAuto© on ". localtime() . "\n" if !$quiet && (-1<index $0,'fullauto.pl'); our $toppath='';our $cpu=''; $main::planarg||='';$main::cronarg||=''; if ($main::planarg || $main::cronarg) { if (-e '/usr/bin/top') { $toppath='/usr/bin/'; } elsif (-e '/bin/top') { $toppath='/bin/'; } elsif (-e '/usr/local/bin/top') { $toppath='/usr/local/bin/'; } if ($toppath) { my $top_timeout=60; eval { $SIG{ALRM} = sub { die "alarm\n" }; # \n required alarm($top_timeout); &Net::FullAuto::FA_Core::acquire_semaphore(1111, "Top CPU check Timed Out at Line: ".__LINE__); open(OH,"${toppath}top -b -n2 -d.1|") || die "Cannot run ${toppath}top -b -n2 -d.1`: $!\n"; while (my $line=<OH>) { chomp $line; $cpu=$line if -1<index $line,"idle"; } close OH; &Net::FullAuto::FA_Core::release_semaphore(1111); alarm(0); }; if ($@ eq "alarm\n") { print "\n\n"; &handle_error( "Time for Top CPU check has Expired.", '__cleanup__'); } } } } require Exporter; our @ISA = qw(Exporter); our @EXPORT = qw(fa_login connect_ssh connect_sftp connect_secure cleanup connect_ftp connect_telnet connect_shell); use Term::Menus 2.54; use Tie::Cache; use Sort::Versions; use Crypt::CBC; use Crypt::DES; use JSON; use URI; use HTTP::Date; use IO::Capture::Stderr; use Capture::Tiny; use Net::Telnet; use Email::Sender; use MIME::Entity; use IO::Pty; use BerkeleyDB; sub fa_login { return &Term::Menus::fa_login(@_); } sub connect_ssh { package connect_ssh; use Net::FullAuto::FA_Core; return Net::FullAuto::FA_Core::connect_ssh(@_); } sub connect_shell { package connect_shell; use Net::FullAuto::FA_Core; return Net::FullAuto::FA_Core::connect_shell(@_); } sub connect_sftp { package connect_sftp; use Net::FullAuto::FA_Core; return Net::FullAuto::FA_Core::connect_sftp(@_); } sub connect_secure { package connect_secure; use Net::FullAuto::FA_Core; return Net::FullAuto::FA_Core::connect_secure(@_); } sub connect_ftp { package connect_ftp; use Net::FullAuto::FA_Core; return Net::FullAuto::FA_Core::connect_ftp(@_); } sub connect_telnet { package connect_telnet; use Net::FullAuto::FA_Core; return Net::FullAuto::FA_Core::connect_telnet(@_); } sub cleanup { package cleanup; use Net::FullAuto::FA_Core; return Net::FullAuto::FA_Core::cleanup(@_); } 1; __END__; ######################## User Documentation ########################## ## To format the following documentation into a more readable format, ## use one of these programs: perldoc; pod2man; pod2html; pod2text. ## For example, to nicely format this documentation for printing, you ## may use pod2man and groff to convert to postscript: ## pod2man FullAuto.pm | groff -man -Tps > FullAuto.ps =head1 NAME C<Net::FullAuto> - Fully Automate ANY Process with *Persistent* SSH/SFTP from One Host =head1 NOTE TO USERS Please contact me or my team at the following email addresses - =over 4 =item B<Brian.Kelly@fullauto.com> or B<team@fullauto.com> =back and let us know of any and all bugs, issues, problems, questions as well as suggestions for improvements to both the documentation and module itself. We will make every effort to get back to you quickly. Update the module from CPAN *often* - as we anticipate adding documentation and fixing bugs and making improvements often. THANKS - and GOOD LUCK with your C<Net::FullAuto> project(s)! Brian Kelly, April 11, 2015 =head1 DISCLAIMER Beware that this software is provided "as is", and comes with no warranty of any kind, either express or implied. If you use the contents of this distribution, you do so at your own risk, and you agree to free the author(s) of any consequences arising from such use, either intended or otherwise. =head1 SSH SYNOPSIS =over 4 =item use Net::FullAuto; # IMPORTANT! => FullAuto was designed to be a framework, and as such # is better utilized as a stand-alone application rather # than as a traditional Perl module as it is shown in # this synopsis. You can certainly use it as a module in # your perl scripts, with confidence, but best practices # and better security and utility are reasons to consider # porting your scripts to a FullAuto Instruction Set and # invoking them with the fullauto (or fa) command. my $ip_or_hostname = $ARGV[0] || 'localhost'; my $username = $ARGV[1] || getlogin || getpwuid($<); my $identity_file = $ARGV[2] || ''; # required unless password or # or key-based login my $password = $ARGV[3] || ''; # required unless identity file # or key-based login my $remote_host_block={ Label => 'Remote Host', HostName => $ip_or_hostname, LoginID => $username, identity_file => $identity_file, # can leave out if password or # or key-based login password => $password, # can leave out if identity file # or key-based login #debug => 1, #quiet => 1, }; my ($remote_host_handle,$error)=('',''); # Define and scope variables ($remote_host_handle,$error)=connect_ssh($remote_host_block); die "Connect_SSH ERROR!: $error\n" if $error; my ($stdout,$stderr,$exitcode)=('','',''); # Define and scope variables ($stdout,$stderr,$exitcode)=$remote_host_handle->cmd('hostname'); die $stderr if $stderr; print "REMOTE HOSTNAME IS: $stdout\n"; ($stdout,$stderr,$exitcode)=$remote_host_handle->cwd('/'); die $stderr if $stderr; ($stdout,$stderr,$exitcode)=$remote_host_handle->cmd('pwd'); die $stderr if $stderr; print "CURRENT DIRECTORY IS: $stdout\n"; #$remote_host_handle->close(); # Use this -OR- cleanup method cleanup; # Use this routine for faster cleanup =back =head1 SFTP SYNOPSIS =over 4 =item use Net::FullAuto; my $ip_or_hostname = $ARGV[0] || 'localhost'; my $username = $ARGV[1] || getlogin || getpwuid($<); my $identity_file = $ARGV[2] || ''; # required unless password or # or key-based login my $password = $ARGV[3] || ''; # required unless identity file # or key-based login my $remote_host_block={ Label => 'Remote Host', HostName => $ip_or_hostname, LoginID => $username, identity_file => $identity_file, # can leave out if password or # or key-based login password => $password, # can leave out if identity file # or key-based login # password is CLEAR TEXT, which # is poor security. Consider # using the FullAuto Framework # or key-based login #debug => 1, #quiet => 1, }; ($remote_host_handle,$error)=connect_sftp($remote_host_block); die "Connect_SFTP ERROR!: $error\n" if $error; my ($stdout,$stderr,$exitcode)=('','',''); # Define and scope variables ($stdout,$stderr)=$remote_host_handle->cmd('pwd'); die $stderr if $stderr; print "REMOTE DIRECTORY IS: $stdout\n"; ($stdout,$stderr)=$remote_host_handle->cwd('/'); die $stderr if $stderr; ($stdout,$stderr)=$remote_host_handle->cmd('pwd'); die $stderr if $stderr; print "CURRENT DIRECTORY IS: $stdout\n"; #$remote_host_handle->close(); # Use this -OR- cleanup method cleanup; # Use this routine for faster cleanup =back =head1 FullAuto Framework SYNOPSIS =over 4 The FullAuto Framework utilizes the C<fa> command line utility. Using the C<fa> command instead of including C<Net::FullAuto> in your scripts is recommended for better security when using password authentication with remote hosts/devices. Note that in the B<SSH SYNOPSIS> above, there is a C<password =>>C< 'clear_text_password'> element. The FullAuto Framework offers the ability to store such passwords encrypted, and will decrypt them only when actually submitting them to the remote host/device. Such passwords remain encrypted even when stored in memory. =back see METHODS section below =head1 DESCRIPTION C<Net::FullAuto>S< > (aka C<FullAuto>) is a Perl module and automation framework that transforms Perl into a true multi-host scripting language. It accomplishes this with multiple B<*PERSISTENT*> SSH and SFTP connections to multiple hosts simultaneously. With C<FullAuto> entire hosts are encapsulated in a single filehandle. Think of each filehandle as an always available SSH client (like PuTTY) and SFTP client (like WinSCP) that is available I<progammatically> to the script. The importance of B<PERSISTENT> connections when attempting to programmatically control remote hosts I<cannot be over stated>. Essentially, it means that C<FullAuto> can automate almost B<EVERYTHING>. Think about that for a moment. Talk is cheap. SEEING is believing. To see C<FullAuto> in action, please download and explore the "Self Service Demonstration" at L<http://sourceforge.net/projects/fullauto>. The demo contains an embedded YouTube video (L<https://youtu.be/gRwa1QoOS7M>) explaining and showing the entire automated process of setting up a complex multi-host infrastructure in the Amazon EC2 Cloud. After watching or while watching the video, you can run the demo and standup your own clould infrastructure in just a few minutes. The Hadoop demo is particularly interesting and timely given the recent explosion of BIG DATA and the need to access it more powerfully. Imagine a scripting language that can turn an entire network of hosts into a virtual single host? This is precisely what C<FullAuto> does. How is C<FullAuto> different from programs like Chef (http://www.chef.io) and Puppet (http://www.puppetlabs.com) and Ansible (http://www.ansible.com) and Salt (http://www.saltstack.com)? All of which essentially claim the same ability and functionality? Chef and Puppet and Salt require the use of agents on remote hosts. C<FullAuto> has no such dependency as it is agent-less. It works against any ssh server implementation on any operating system. Ansible claims to be "agent-less" but actually has a dependency on the Python scripting language being available on the remote host, as well as requiring that the OpenSSH daemon on remote nodes be configured to utilize the ControlPersist feature. C<FullAuto> has no such dependency (C<FullAuto> does not even require Perl on the remote nodes!), and if any manual terminal program or utility can connect to a device viaS< >C<ssh>S< >orS< >C<sftp>S< >orS< >C<scp>S< >or evenS< >C<telnet>S< >orS< >C<ftp>,S< >C<FullAuto> can connect as well - persistently! C<FullAuto> utilizesS< >C<ssh>S< >andS< >C<sftp>S< >(can also useS< >C<telnet>S< >andS< >C<ftp>, though for security reasons, this is NOT recommended) to bring the command enviroments of any number of remote computers (OS of remote computer does not matter), together in one convenient scripting space. With C<FullAuto>, you write code once, on one computer, and have it execute on multiple computers simultaneously, in an interactive dynamic fashion, as if the many computers were truly one. C<FullAuto> is powerful. C<FullAuto> can be run by a user in a Menu driven, interactive mode (using the C<Term::Menus> module - also written by Brian Kelly), or via UNIX or Linux C<cron> or Windows Scheduler or Cygwin C<cron> in a fully automated (and secure) fashion. Example: A user needs to pull data from a database, put it in a text file, zip and encrypt it, and then transfer that file to another computer on the other side of the world via the internet - in one step, and in a secure fashion. C<FullAuto> is the answer. Assume C<FullAuto> is installed on computer one, the database is on computer two, and the remote computer in China is computer three. When the user starts the script using C<Net::FullAuto>, C<FullAuto> will connect viaS< >C<ssh>S< >andS< >C<sftp>S< >(simultaneously) to computer two, and viaS< >C<sftp>S< >to computer three. Using a sql command utility on computer two, data can be extracted and piped to a text file on computer two. Then, C<FullAuto> will run the command for aS< >C<zip>S< >utility overS< >C<ssh>S< >on computer two to compress the file. Next (assume the encryption software is on computer one) C<FullAuto> will transfer this file to computer one, where it can be encrypted with licensed encryption software, and then finally, the encrypted file can be transferred to computer three viaS< >C<sftp>. Email and pager software can be used for automated notification as well. Example: The same process above needs to run at 2:00am unattended. A script using C<FullAuto> can be run viaS< >C<cron>S< >(or any other scheduler) to perform the same actions above without user involvement. C<FullAuto> is reliable and fault tolerant. Each individual command run on a remote computer returns to C<FullAuto> BOTH stdout (output) and stderr (error messages). With this feature, users and programmers can write code to essentially trap remote errors "locally" and respond with any number of error recovery approaches. Everything from sending an e-mail, to re-running the command, to switching remote computers and much more is available as error handling options. The only limits are the skills and ingenuity of the programmers and administrators using C<FullAuto>. If C<FullAuto> loses a connection to a remote host, automatic attempts will be made to re-connect seemlessly - with errors reported when the configured number of attempts fail. C<FullAuto> is easy. C<FullAuto> uses a mix of traditional and object-oriented features to maximize ease of use and maintenance. Due to the unique nature of distributed computing, combined with the need for ease of maintaining a lot of configuration information (i.e. ip addresses, host names, login ID's, passwords, etc), along with any number of routines or processes, as well as the need for robust security, C<FullAuto> has a unique layout and architechture. Normally in perl, programmers segregate functional code in separate script files or perl modules or packages. C<FullAuto> supports this as well, but advocates keeping process code confined to a single routine in a kind of "process library" file. This is in order that C<FullAuto> can provide additional built-in features like a command-handle to the local machine without having to explicitly create it. Or, being able to connect to a remote host with syntax as simple as: $computer_one=connect_ssh('COMPUTER_ONE'); Commands also are easy: ($stdout,$stderr,$exitcode)=$computer_one->cmd('ls -l'); And no cleanup is necessary -S< >C<FullAuto>S< >handles this AUTOMATICALLY. This is a complete routine or process: sub ls_one { my ($computer_one,$stdout,$stderr,$exitcode); # Scope Variables $computer_one=connect_ssh('COMPUTER_ONE'); # Connect to Remote Host ($stdout,$stderr,$exitcode)=$computer_one->cmd('ls -l'); # Run Command if ($stderr) { # Check Results print "We Have and ERROR! : $stderr\n"; } else { print "Output of ls command from Computer One:\n\n$stdout\n\n"; } } # DONE!! As with most things in life, what many or most consider a blessing, others consider a curse. Perl's motto is "There's more than one way to do it." (TIMTOWTDI) Not everyone thinks this is utopia. Perl also attempts "to make easy tasks easy and difficult tasks possible." FullAuto - written in Perl - *IS* Perl. It is essentially a Perl extension and therefore adheres to the same goals as Perl itself: i.e. - there's no "one" correct way to use FullAuto. FullAuto is secure. It usesS< >C<ssh>S< >andS< >C<sftp>S< >for communication accross hosts and devices. FullAuto uses password-less key exchange, but also uses powerful encryption to store passwords to remote resources, when key exchange is not available. When using passwords with FullAuto (again - password-less key exchange is ALWAYS recommended as it is more secure, passwords should only be used when key exchange is not available), a user on the first iteration of a process will be prompted to enter a password for each and every remote resource (or even local resource, since FullAuto can and does use ssh to acquire enhanced user-rights on the local computer.) Every following iteration will then prompt for a password only once (or a password can even be passed in via command line or method argument) with every other needed password retrieved from an encrypted datafile which utilizes the user's main login password as the "salt" (not to be confused with the program Salt mentioned earlier). For added security, and enhanced user functionality, FullAuto can be installed on UNIX and Linux based hosts to useS< >C<setuid>. (Windows/Cygwin does not support "setuid" - so this feature is not available on Windows computers. This is the ONLY Windows limitation.) With FullAuto setup to useS< >C<setuid>, users can be configured to run complex distributed processes in a secure fashion without the permissions actually needed by the remote (or even local) resources. On top of that, it is possible to create a process administered by numerous individuals such that no one person knows or has access to all passwords. For example, a database administrator on a remote computer can "loan" his username and password to drop a table (for instance) for a process that will be run by another user remotely. During the first iteration, after the user enters her/his password, the DB can then (when prompted), enter his/her password which will then be encrypted locally with the user's password as the salt. With the encrypted datafile and perl code protected from user write (or even read) access via setuid on UNIX and Linux hosts (setup and administered by yet another individual or group - such as the root user), there is no way for either the DB to discover the user's password, or the user to discover the DB's password. Even the root user of the local computer running FullAuto will not be able to discover these passwords. (When setuid is setup and used properly). This setup will allow users to run FullAuto processes without access to the passwords controlling remote access, or for that matter, the code running those processes. Reasons to use this module are: =over 4 =item * You want the output of the ps -e command from a remote UNIX computer. Example: =over 4 =item =begin html <br> =end html S< >In the fileS< >C<fa_hosts.pm>S< >add the connection information for the remote computer (This will suffice for all following examples): { 'Label' => 'COMPUTER_ONE', 'IP' => '10.200.210.37', 'HostName' => 'compter_one.w2k.fullauto.com', 'Login' => 'bkelly', 'LogFile' => "/cygdrive/d/fullauto/logs/FAlog${$}d". "${FA_Core::invoked[2]}". "${FA_Core::invoked[3]}.txt", }, S< >In the fileS< >C<fa_code.pm>S< >add the *process* subroutine code: sub ps_one { my ($computer_one,$stdout,$stderr,$exitcode); # Scope Variables $computer_one=connect_ssh('COMPUTER_ONE'); # Connect to # Remote Host via # ssh only ($stdout,$stderr,$exitcode)= $computer_one->cmd('ps -e'); # Run Command if ($stderr) { # Check Results print "We have an ERROR! : $stderr\n"; } else { print "Output of ps -e command from Computer One:". "\n\n$stdout\n\n"; } } Run script using FullAuto (B<Hint>: the --<...>-- line are instructions and are not displayed when the program actually runs) --< 1 >-<Type Command and <B<C<ENTER>>> >--------------------------- fullauto --code ps_one --< The user sees: >------------------------------------------ STARTING FULLAUTO on Wed Jun 6 12:27:08 2007 Starting fullauto . . . Running in TEST mode computer_one Login <bkelly> : --< 2 >-<B<C<ENTER>>>-(B<Hint>: since 'Login' was specified in fa_hosts.pm 'bkelly' appears as the default)- Password: --< 3 >-<Type Password and <B<C<ENTER>>> >-------------------------- --> Logging into localhost via ssh . . . Logging into computer_one.w2k.fullauto.com via ssh . . . Output of ps -e command from Computer One: PID TTY TIME CMD 1 ? 00:00:03 init 2 ? 00:00:00 migration/0 3 ? 00:00:00 ksoftirqd/0 80 ? 00:00:00 aio/0 2805 ? 00:00:08 syslogd 2820 ? 00:00:00 irqbalance 2839 ? 00:00:00 portmap 2859 ? 00:00:00 rpc.statd 2891 ? 00:00:00 rpc.idmapd 2949 ? 00:00:00 ypbind 2969 ? 00:00:45 nscd 2987 ? 00:00:01 smartd 2997 ? 00:00:00 acpid 3059 ? 00:00:00 xinetd 3072 ? 00:00:14 ntpd 3092 ? 00:00:19 sendmail 3111 ? 00:00:00 gpm 3121 ? 00:00:03 crond 3153 ? 00:00:00 xfs 3172 ? 00:00:00 atd 3188 ? 00:00:00 dbus-daemon-1 3201 ? 00:05:09 hald 3210 tty1 00:00:00 mingetty 1432 ? 00:02:34 rvd 14675 ? 00:00:00 kdbd 17052 ? 00:00:00 postmaster 24389 ? 00:00:00 chatserv_d 16463 ? 00:00:06 java 11700 ? 00:04:48 cmefx 905 ? 00:00:00 automount 563 ? 00:00:00 sshd 564 pts/30 00:00:00 bash 641 pts/30 00:00:00 ps 642 pts/30 00:00:00 sed FULLAUTO COMPLETED SUCCESSFULLY on Wed Jun 6 12:28:30 2007 =back =item * You want toS< >C<zip>S< >and transfer a remote file from COMPUTER_ONE to your local computer and thenS< >C<unzip>S< >it: In the file "fa_code.pm" add the *process* subroutine code: sub get_file_from_one { my ($computer_one,$stdout,$stderr,$exitcode); # Scope Variables $computer_one=connect_host('COMPUTER_ONE'); # Connect to # Remote Host via # ssh *and* sftp ($stdout,$stderr,$exitcode)=$computer_one->cmd( 'echo test > test.txt'); # Run Remote Command ($stdout,$stderr,$exitcode)=$computer_one->cmd( 'zip test test.txt'); # Run Remote Command if ($stderr) { # Check Results print "We Have and ERROR! : $stderr\n"; } else { print "Output of zip command from Computer One:". "\n\n$stdout\n\n"; } ($stdout,$stderr,$exitcode)=$computer_one->get( 'test.zip'); # Get the File if ($stderr) { # Check Results print "We Have and ERROR! : $stderr\n"; } else { print "Output of zip command from Computer One:". "\n\n$stdout\n\n"; } ($stdout,$stderr,$exitcode)=$localhost->cmd( 'unzip test.zip'); # Run Local Command } Run script using FullAuto (B<Hint>: the --< # >-- line are instructions and are not displayed when the program actually runs) --< 1 >-<Type Command and <B<C<ENTER>>> >--------------------------- fullautoS< >--codeS< >get_file_from_one --< The user sees: >------------------------------------------ STARTING FULLAUTO on Wed Jun 6 12:27:08 2007 Starting fullauto . . . Running in TEST mode computer_one Login <bkelly> : --< 2 >-<B<C<ENTER>>>-(B<Hint>: since 'Login' was specified in fa_hosts.pm 'bkelly' appears as the default)- Password: --< 3 >-<Type Password and <B<C<ENTER>>> >-------------------------- --> Logging into localhost via ssh . . . Logging into localhost via ssh . . . Logging into computer_one.w2k.fullauto.com via sftp . . . Logging into computer_one.w2k.fullauto.com via ssh . . . Output of zip command from Computer One: updating: test.txt (stored 0%) get "/tmp/test.zip" Fetching /tmp/test.zip to test.zip /tmp/test.zip 0% 0 0.0KB/s --:-- ETA /tmp/test.zip 100% 153 0.2KB/s 00:00 Output of zip command from Computer One: Fetching /tmp/test.zip to test.zip /tmp/test.zip 100% 153 0.2KB/s 00:00 =back =head1 SETUP C<Net::FullAuto>S< >requires some preliminary setup before it can be used. =head2 Setup Checklist =over 4 =item * Setup for UNIX OS's (like Linux) =item =begin html <br> =end html =over 4 =item 1. Check for a Perl 5+ installation =begin html <br> =end html C<Net::FullAuto>S< >requires a local installation of perl5. To test forS< >C<perl>,S< >typeS< >C<perl -v>S< >at the UNIX/Linux command prompt: $ perl -v This is perl, v5.8.7 built for x86_64-linux-thread-multi Copyright 1987-2005, Larry Wall Perl may be copied only under the terms of either the Artistic License or the GNU General Public License, which may be found in the Perl 5 source kit. Complete documentation for Perl, including FAQ lists, should be found on this system using `man perl' or `perldoc perl'. If you have access to the Internet, point your browser at http://www.perl.org/, the Perl Home Page. =item 2. Check for a working CPAN utility =begin html <br> =end html C<Net::FullAuto>S< >is easiest to set up with a working CPAN utility. To test forS< >C<cpan>,S< >typeS< >C<cpan -v>S< >at the UNIX/Linux command prompt: $ cpan -v /usr/bin/cpan script version 1.9, CPAN.pm version 1.9402 If you don't have a working C<cpan>, then perhaps you can find some assistance here: http://www.thegeekstuff.com/2008/09/how-to-install-perl-modules-manually-and-using-cpan-command/ =item 3. Check for a working C compiler =begin html <br> =end html C<Net::Fullauto>S< >requires S< >C<IO::Pty>, and this module needs to be compiled locally with a C compiler. Check for an installation ofS< >C<cc>S< >orS< >C<gcc>S< >. $ gcc --version gcc (GCC) 4.5.3 Copyright (C) 2010 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. =item 4. ViaS< >C<cpan>,S< >installS< >C<Net::FullAuto>. =begin html <br> =end html $ cpan cpan shell -- CPAN exploration and modules installation (v1.9402) Enter 'h' for help. cpan[1]> install Net::FullAuto =item 5. Create or modifyS< >C<fa_hosts.pm>S< >file. =begin html <br> =end html See theS< >C<fa_hosts.pm>S< > B<Setup and Location> section below. =item 6. Create or modifyS< >C<fa_code.pm>S< >file. =begin html <br> =end html See theS< >C<fa_code.pm>S< > B<Setup and Location> section below. =back =back =over 4 =item * Setup for Windows OS's (like XP and Higher) =back =head2 Setup Components =over 4 =item * C<fa_hosts.pm>S< >Setup and Location =back =over 4 =item In order to manage connection configuration information in the easiest way possible, all host information must be stored in anonymous hash blocks in a file named C<fa_hosts.pm>. This file can be located in one of two places. There is a default C<fa_hosts.pm> file included with the distribution, and you can locate it wherever C<Net::FullAuto> was installed. Usually this is in the C</lib> directory under C</usr> or C</usr/local/>. A typical location would be C</usr/local/lib/perl5/site_perl/5.8/Net/FullAuto/fa_hosts.pm>. Hosts blocks I<can> be added directly to this file (provided that file is given write permissions: i.e. C<chmod u+w fa_hosts.pm>) =back =over 4 =item * C<fa_code.pm>S< >Setup and Location =back =over 4 =item In order to create the most flexibility, power and convencience,S< >C<Net::FullAuto>S< >requires the use of aS< >C<fa_code.pm>S< >module file. This file can be located in one of two places. There is a defaultS< >C<fa_code.pm>S< >file included with the distribution, and you can locate it whereverS< >C<Net::FullAuto>S< >was installed. Usually this is in theS< >C</lib>S< >directory underS< >C</usr>S< >orS< >C</usr/local/>. A typical location would beS< >C</usr/local/lib/perl5/site_perl/5.8/Net/FullAuto/fa_hosts.pm>. Custom subroutinesS< >I<can>S< >be added directly to this file (provided that file is given write permissions: i.e.S< >C<chmod u+w fa_code.pm>) =back =over 4 =item * Setting theS< >C<$fa_hosts>S< >location variable =back =over 4 =item You can (and should) define where you wish to store customS< >C<fa_hosts.pm>S< >files with the C<$fa_hosts> variable. B<IMPORTANT!> - Be sure that this variable is defined in your invoking script. IT MUST BE PLACED IN AS< >C<BEGIN {}>S< >blockS< >B<I<BEFORE>>S< >theS< >C<use Net::FullAuto;>S< >line: =back BEGIN { our $fa_hosts='/home/user/my_hosts.pm' } use Net::FullAuto; . . . =over 4 =item * Setting the C<$fa_code> location variable =back =over 4 =item You can (and should) define where you wish to store custom C<fa_code.pm> files with the C<$fa_code> variable. B<IMPORTANT!> - Be sure that this variable is defined in your invoking script. IT MUST BE PLACED IN A C<BEGIN {}> block B<I<BEFORE>> the C<use Net::FullAuto;> line: =back BEGIN { our $fa_code='/home/user/my_code.pm' } use Net::FullAuto; . . . =over 4 =item B<NOTE>: An 'C<fa_hosts>' configuration module file does NOT need to be named C<fa_hosts.pm> . Any name can be used, so long as the internal package name is the same as the file name. For example, a file named C<host_blocks.pm> needs to have the line C<package host_blocks;> as the first line of the file. =back S< >B<NOTE>: It is common to use BOTH location variables together: BEGIN { our $fa_code='/home/user/my_code.pm'; our $fa_hosts='/home/user/my_hosts.pm' } use Net::FullAuto; . . . =over 4 =item * TypicalS< C<fa_hosts.pm> >File Contents =back =over =item S<The following is typical contents of a C<fa_hosts.pm> showing two host blocks with minimal configuration:> =back package fa_hosts; require Exporter; use warnings; our @ISA = qw(Exporter); our @EXPORT = qw(@Hosts); @Hosts=( ################################################################# ## Do NOT alter code ABOVE this block. ################################################################# ## ------------------------------------------------------------- ## ADD HOST BLOCKS HERE: ## ------------------------------------------------------------- { Label => 'REMOTE COMPUTER ONE', IP => '198.201.10.01', Hostname => 'Linux_Host_One', }, { Label => 'REMOTE COMPUTER TWO', IP => '198.201.10.02', Hostname => 'Linux_Host_Two', }, ################################################################# ## Do NOT alter code BELOW this block. ################################################################# ); ## Important! The '1' at the Bottom is NEEDED! 1 =over 4 =item * TypicalS< C<fa_code.pm> >File Contents =back =over =item S<The following is typical contents of a C<fa_code.pm> showing two simple subroutines:> =back package fa_code; require Exporter; use warnings; our @ISA = qw(Exporter Net::FullAuto::FA_Core); use Net::FullAuto::FA_Core; ################################################################# ## Do NOT alter code ABOVE this block. ################################################################# sub hello_world { print $localhost->cmd('echo "hello world"'); } sub remote_hostname { my ($computer_one,$stdout,$stderr,$exitcode); # Scope Variables $computer_one=connect_ssh('REMOTE COMPUTER ONE'); # Connect to # Remote Host via ssh ($stdout,$stderr,$exitcode)=$computer_one->cmd('hostname'); print "REMOTE ONE HOSTNAME=$stdout\n"; } ########### END OF SUBS ######################## ################################################################# ## Do NOT alter code BELOW this block. ################################################################# ## Important! The '1' at the Bottom is NEEDED! 1 =head1 S< >C<fa_hosts.pm>S< >HOST BLOCK KEY ELEMENTS =over 4 =item * Key Elements =over 4 B<Label>S< >- string to identify host blockS< >(This is a REQUIRED Element) S< >C<Label =>>C< 'Any_Unique_String',> =back S< >The C<L>C<abel> Key Element is the method by whichS< >C<Net::FullAuto>S< >locates the connection information in theS< >C<fa_hosts.pm>S< >file. =back =over 4 =item B<IP>S< >- ip address of remote hostS< >(Either an IP address or Hostname Element is REQUIRED) S< >C<IP =>>C< '198.201.10.01',> =back =over 4 =item B<Hostname>S< >- hostname of remote hostS< >(Either an IP address or Hostname Element is REQUIRED) S< >C<Hostname =>>C< 'Remote_Host_One',> =back =over 4 =item B<LoginID>S< >- optional login id for remote host S< >C<LoginID =>>C<'Username'> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 45pt; } --> </STYLE> <P CLASS="indented"> The <code>LoginID</code> Key Element is <i>optional</i> because <code>Net::FullAuto</code> defaults to use the login id of the current user running <code>fullauto</code> (or script using the <code>Net::FullAuto.pm</code>  module). The password associated with ALL login ids - either default or indicated with this key element - are protected in an encrypted password file, and added and retrieved <i>automatically</i> when <code>fullauto</code> is run. If the password associated with the host and login id cannot be located in the password file, the user will be prompted to add it. </P> =end html =over 4 =item B<LogFile>S< >- optional log file name and location S< >C<LogFile =>>C< "/tmp/FAlog${$}d" . "$Net::FullAuto::FA_Core::invoked[2]" . "$Net::FullAuto::FA_Core::invoked[3].txt",> =back =head1 S< >C<fa_code.pm>S< >METHODS =over 4 =item * Create New Host Objects =over 4 =back B<connect_secure> - connect to remote host via ssh & sftp =over 4 =item C<($secure_host_object,$error) = connect_secure('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 45pt; } --> </STYLE> <P CLASS="indented"> All Connect Methods return a <i>host object</i> if connection is successful, or error message(s)<br> in the error variable if the method is requested to return a list. Otherwise, if the method is<br>requested to only return a scalar: </P> =end html =over 4 =item C<$secure_host_object = connect_secure('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> Any connection errors will result in complete termination of the process.</P> <P CLASS="indented"> The <CODE>$secure_host_object</CODE> represents both ssh AND sftp connections together in ONE<br>object. The <CODE>HOSTLABEL</CODE> tag is a label to an anonymous hash block defined in the file <code>fa_hosts.pm</code>.<br> (See the <b>fa_hosts</b> section for instructions on configuring host connection information.)</P> </P> <P CLASS="indented"> The important thing to understand, is that there is no other code needed to connect to remote<br>hosts. <code>Net::FullAuto</code> handles all connection details, such as dynamic remote-prompt discovery,<br> AUTOMATICALLY. No need to define <i>or even know</i> what the remote prompt is. This feature<br>'alone' is a major departure from most other scriptable remote command and file transfer utilities.</P> =end html =over 4 =item THIS IS THE RECOMMENDED I<BEST METHOD> for CONNECTING. =back B<connect_ssh> - connect to remote host via ssh =over 4 =item C<($ssh_host_object,$error) = connect_ssh('HOSTLABEL');> C<$ssh_host_object = connect_ssh('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> This method returns an ssh connection <i>only</i> - any attempt to use file-transfer features with this object<br>will throw an error. </P><P CLASS="indented"> Use this method if you don't need file-transfer capability in your process. </P> =end html B<connect_sftp> - connect to remote host via sftp =over 4 =item C<($sftp_host_object,$error) = connect_sftp('HOSTLABEL');> C<$sftp_host_object = connect_sftp('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> This method returns an sftp connection <i>only</i> - any attempt to use remote command-line features with this object<br>will throw an error.</P><P CLASS="indented">Use this method if you don't need remote command-line capability in your process.</P> =end html B<connect_host> - connect to remote host via ssh OR telnet and sftp OR ftp =over 4 =item C<($host_object,$error) = connect_host('HOSTLABEL');> C<$host_object = connect_host('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> This method is the most <i>powerful</i> of all the connect methods. When this method is used, it will first attempt to<br>connect to the remote host via ssh and sftp. However, if for any reason either or both ssh and sftp fail to connect,<br>then it will attempt to connect via telnet and/or ftp. (Use connect_reverse for the opposite behavior.) <br>This method returns either a ssh or telnet connection and either a sftp or ftp connection. (Note: you could get a connection that is telnet/sftp or ssh/ftp) </P><P CLASS="indented"> Note: This is the most powerful method, but not the most secure, becasue it's possible to connect with telnet and/or ftp. Use this when process completion is more important than having optimum connection security. </P> =end html B<connect_insecure> - connect to remote host via telnet & ftp =over 4 =item C<($insecure_host_object,$error) = connect_insecure('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 45pt; padding-right: 45pt; } --> </STYLE> <P CLASS="indented"> All Connect Methods return a <i>host object</i> if connection is successful, or error message(s)<br> in the error variable if the method is requested to return a list. Otherwise, if the method is<br>requested to only return a scalar: </P> =end html =over 4 =item C<$insecure_host_object = connect_insecure('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> Any connection errors will result in complete termination of the process.</P> <P CLASS="indented"> The <CODE>$insecure_host_object</CODE> represents both telnet AND ftp connections together in ONE<br>object. The <CODE>HOSTLABEL</CODE> tag is a label to an anonymous hash block defined in the file <code>fa_hosts.pm</code>.<br>(See the <b>fa_hosts</b> section for instructions on configuring host connection information.)</P> </P> =end html =over 4 =item THIS METHOD IS *NOT* RECOMMENDED for CONNECTING - use C<connect_secure()> whenever possible. =back B<connect_telnet> - connect to remote host via telnet =over 4 =item C<($ssh_host_object,$error) = connect_telnet('HOSTLABEL');> C<$ssh_host_object = connect_telnet('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> This method returns a telnet connection <i>only</i> - any attempt to use file-transfer features with this object<br>will throw an error. </P><P CLASS="indented"> Use this method if you don't need file-transfer capability in your process. </P> =end html =over 4 =item THIS METHOD IS *NOT* RECOMMENDED for CONNECTING - use C<connect_ssh()> whenever possible. =back B<connect_ftp> - connect to remote host via ftp =over 4 =item C<($ftp_host_object,$error) = connect_ftp('HOSTLABEL');> C<$ftp_host_object = connect_ftp('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> This method returns an ftp connection <i>only</i> - any attempt to use remote command-line features with this object<br>will throw an error.</P><P CLASS="indented">Use this method if you don't need remote command-line capability in your process.</P> =end html =over 4 =item THIS METHOD IS *NOT* RECOMMENDED for CONNECTING - use C<connect_sftp()> whenever possible. =back B<connect_ssh_telnet> - connect to remote host via ssh OR telnet =over 4 =item C<($host_object,$error) = connect_ssh_telnet('HOSTLABEL');> C<$host_object = connect_ssh_telnet('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> When this method is used, it will first attempt to<br>connect to the remote host via ssh. However, if for any reason ssh fails to connect, <br>then it will attempt to connect via telnet. (Use connect_telnet_ssh for the opposite behavior.)<br>This method returns either a ssh or telnet connection. </P><P CLASS="indented"> Note: This is a powerful method, but not the most secure, becasue it's possible to connect with telnet. Use this when process completion is more important than having optimum connection security. </P><P CLASS="indented"> This method returns a remote command-line connection <i>only</i> - any attempt to use file-transfer features with this object<br> will throw an error.</P><P CLASS="indented"> Use this method if you don't need file-transfer capability in your process. </P> =end html B<connect_telnet_ssh> - connect to remote host via telnet OR ssh =over 4 =item C<($host_object,$error) = connect_telnet_ssh('HOSTLABEL');> C<$host_object = connect_telnet_ssh('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> When this method is used, it will first attempt to<br>connect to the remote host via telnet. However, if for any reason telnet fails to connect, <br>then it will attempt to connect via ssh. (Use connect_ssh_telnet for the opposite behavior.)<br>This method returns either a telnet or ssh connection. </P><P CLASS="indented"> Note: This is a powerful method, but not the most secure, becasue it's possible to connect with telnet. Use this when process completion is more important than having optimum connection security. Also, this method will return a telnet connection FIRST if available. Use this if connection reliability is important, but performance is more important than security. </P><P CLASS="indented"> This method returns a remote command-line connection <i>only</i> - any attempt to use file-transfer features with this object<br> will throw an error.</P><P CLASS="indented"> Use this method if you don't need file-transfer capability in your process. </P> =end html =over 4 =item THIS METHOD IS *NOT* RECOMMENDED for CONNECTING - use C<connect_ssh()> whenever possible. =back B<connect_sftp_ftp> - connect to remote host via sftp OR ftp =over 4 =item C<($host_object,$error) = connect_sftp_ftp('HOSTLABEL');> C<$host_object = connect_sftp_ftp('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> When this method is used, it will first attempt to<br>connect to the remote host via sftp. However, if for any reason telnet fails to connect, <br>then it will attempt to connect via ftp. (Use connect_ftp_sftp for the opposite behavior.)<br>This method returns either a sftp or ftp connection. </P><P CLASS="indented"> Note: This is a powerful method, but not the most secure, becasue it's possible to connect with ftp. Use this when process completion is more important than having optimum connection security. </P><P CLASS="indented"> This method returns a file-transfer connection <i>only</i> - any attempt to use remote command-line features with this object<br>will throw an error.</P><P CLASS="indented">Use this method if you don't need remote command-line capability in your process.</P> =end html B<connect_ftp_sftp> - connect to remote host via ftp OR sftp =over 4 =item C<($host_object,$error) = connect_ftp_sftp('HOSTLABEL');> C<$host_object = connect_ftp_sftp('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> When this method is used, it will first attempt to<br>connect to the remote host via ftp. However, if for any reason sftp fails to connect <br>then it will attempt to connect via sftp. (Use connect_sftp_ftp for the opposite behavior.)<br>This method returns either a ftp or sftp connection. </P><P CLASS="indented"> Note: This is a powerful method, but not the most secure, because it's possible to connect with ftp. Use this when process completion is more important than having optimum connection security. Also, this method will return a ftp connection FIRST if available. Use this if connection reliability is important, but performance is more important than security. </P><P CLASS="indented"> This method returns an file-transfer connection <i>only</i> - any attempt to use remote command-line features with this object<br>will throw an error.</P><P CLASS="indented">Use this method if you don't need remote command-line capability in your process.</P> =end html =over 4 =item THIS METHOD IS *NOT* RECOMMENDED for CONNECTING - use C<connect_sftp()> whenever possible. =back B<connect_reverse> - connect to remote host via telnet OR ssh and ftp OR sftp =over 4 =item C<($connect_reverse_object,$error) = connect_reverse('HOSTLABEL');> C<$connect_reverse_object = connect_reverse('HOSTLABEL');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> When this method is used, it will first attempt to<br>connect to the remote host via ssh and sftp. However, if for any reason either or both telnet and ftp fail to connect,<br>then it will attempt to connect via ssh and/or sftp. (Use connect_host for the opposite behavior.) <br>This method returns either a telnet or ssh connection and either a ftp or sftp connection. (Note: you could get a connection that is telnet/sftp or ssh/ftp) </P><P CLASS="indented"> Note: This is a powerful method, but not the most secure, because it's possible to connect with telnet and/or ftp. Use this when process completion is more important than having optimum connection security. Also, this method will return a telnet/ftp connection FIRST if available. Use this if connection reliability is important, but performance is more important than security. </P> =end html =back =over 4 =item * Host Object Methods =over 4 =back B<cmd> - run command line commands on the remote host =over 4 =item C<($cmd_output,$error) = $connect_secure_object-E<gt>cmd('hostlabel');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> There is a <code>cmd</code> method available with every connect_object. For all objects that contain both remote command-line and file-transfer connections, the <code>cmd</code> method gives access ONLY to the remote command-line feature. To access the ftp cmd options, use the following syntax: </P> =end html =over 4 =item C<($ftp_cmd_output,$error) = $connect_secure_object-E<gt>{_ftp_handle}-E<gt>cmd('help');> =back =begin html <STYLE TYPE="text/css"> <!-- .indented { padding-left: 50pt; padding-right: 50pt; } --> </STYLE> <P CLASS="indented"> For all objects that contain only a file-transfer connection, the <code>cmd</code> method gives access ONLY to the file-transfer command-line feature. </P> =end html =over 4 =item C<($sftp_cmd_output,$error) = $connect_sftp_object-E<gt>cmd('help');> =back =back =head1 EXAMPLES =head1 AUTHOR Brian M. Kelly <Brian.Kelly@fullauto.com> =head1 COPYRIGHT Copyright (C) 2000-2016 by Brian M. Kelly. This program is free software; you can redistribute it and/or modify it under the terms of the GNU Affero General Public License. (http://www.gnu.org/licenses/agpl.html).