Convert IAM Secret Access Key to SES SMTP Password in Bash | Lisenet.com :: Linux | Security

Obtaining Amazon SES SMTP credentials by converting AWS credentials in Bash.

Using Debian Wheezy

Install OpenSSL and git:

# apt-get update && apt-get install openssl git

Get a bash SES SMTP converter from GitHub:

$ git clone https://github.com/crylium/aws-scripts.git

Change to folder and make the script executable:

$ cd ./aws-scripts
$ chmod u+x ./ses-smtp-conv.sh

Convert an IAM secret access key to a SES SMTP password:

$ ./ses-smtp-conv.sh AWSAccessKeyID AWSSecretAccessKey

Where AWSAccessKeyID is your AWS access key ID and AWSSecretAccessKey is your AWS secret access key.

Bash Code That Does All the Magic

IAMSECRET="$2";
MSG="SendRawEmail";
VerInBytes="2";
VerInBytes=$(printf \\$(printf '%03o' "$VerInBytes"));

SignInBytes=$(echo -n "$MSG"|openssl dgst -sha256 -hmac "$IAMSECRET" -binary);
SignAndVer=""$VerInBytes""$SignInBytes"";
SmtpPass=$(echo -n "$SignAndVer"|base64);

4 thoughts on “Convert IAM Secret Access Key to SES SMTP Password in Bash”

Thanks Tomas, this helped me a lot!

Tomas says:

28/08/2017 at 4:04 pm

You’re welcome Mark!

Hi, is it possible to change the aws_secret_key into a smaller string?

Tomas says:

23/09/2020 at 7:32 pm

Your aws_secret_key will be whatever Amazon gives you.

Using Debian Wheezy

Bash Code That Does All the Magic

4 thoughts on “Convert IAM Secret Access Key to SES SMTP Password in Bash”

Leave a Reply Cancel reply