On Mon, May 21, 2012 at 8:46 PM, Kanwar Ranbir Sandhu
<m3fr...@thesandhufamily.ca> wrote:
> On Mon, 2012-05-21 at 13:00 -0500, Les Mikesell wrote:
>> Do you have a passphrase for the key? The only difference in your
>> scenarios I can think of is that something might be supplying the
>> passphrase on your behalf when you are logged in and giving the
>> command. For the scheduled/web invocations you can't have a
>> passphrase.
>
> Yes, the key is protected by a pretty lengthy passphrase. I'm using
> keychain to manage the ssh-agent process for caching the passphrase.
>
> Everything running under the BackupPC user (backuppc) has access to that
> ssh-agent process. This is why I was thinking that when I try to do a
> manual backup from the web interface, access to backuppc's ssh-agent is
> denied. Makes sense, right?
Not exactly. The web interface just talks to the backuppc daemon over
a socket. You'd have to get the ssh-agent started and supply the
passphrase in the same login session that starts the the backuppc
daemon. The normal init script probably disassociates from any other
sessions, though.
--
Les Mikesell
lesmikes...@gmail.com
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
BackupPC-users mailing list
BackupPC-users@lists.sourceforge.net
List: https://lists.sourceforge.net/lists/listinfo/backuppc-users
Wiki: http://backuppc.wiki.sourceforge.net
Project: http://backuppc.sourceforge.net/
