Felix Wolters wrote at about 19:45:49 +0100 on Wednesday, February 10, 2021: > Greg, > > Yupp, that’s the principle, especially refer to the paragraph > https://dev-notes.eu/2016/08/secure-rsync-between-servers/#limit-actions-for-this-ssh-connection-to-restricted-rsync > > I can recommend it so far. > > I may add, that working with a non-privieged user isn’t even necessary > in many cases, as rrsync is able to restrict access to (1.) a specific > command (if need be with specific options), (2.) a specific folder, and > (3.) to read only access – but offer full root access and allowing rsync > -a to keep users, groups and permissions. That makes it powerful.
See my earlier note on my concerns about the relative security of this method vs. ssh to a restricted remote user plus a well-constructed sudoer line to elevate only the specific command needed to backup your files/directories. > > The problem here just seems to be that rrsync (on the client to back up) > and rsync-bpc are not compatible, and a patched rrsync will – hopefully! > – be the solution. _______________________________________________ BackupPC-users mailing list BackupPC-users@lists.sourceforge.net List: https://lists.sourceforge.net/lists/listinfo/backuppc-users Wiki: https://github.com/backuppc/backuppc/wiki Project: https://backuppc.github.io/backuppc/
