On 21/01/19 8:31 AM, Sean Whitney wrote: > Richard: > > I'm not sure what you are attempting. However, I allow root ssh access > to my remote servers from my dirvish server and the forced command > string is in the .ssh/authorized_keys file. It looks like this > > from="<ip of dirvish server",command="rsync --server --sender > -vlHogDtpre.iL --numeric-ids . > /",no-port-forwarding,no-X11-forwarding,no-agent-forwarding ssh-dss <key > follows>
Thanks Sean, Mine used to have: command="rsync --server --sender -vlHogDtprx --numeric-ids . /" ... as well as other options. Looking now at what the client requests, the mess of letters in the middle is now: -vlHogDtprxe.iLsfxC The trouble is, I can only look those up as far as the first x. After that, I have no idea what 'e.iLsfxC' actually means, which means I don't know when it might change. Actually, I don't really know if the previous options mean the same things as in a normal invocation either. At the moment, my wrapper script captures the whole block from the SSH_FORCED_COMMAND environment variable, and replays it (having checked that the final path component is acceptable). The goal, by the way, is to be able to backup multiple different paths on the same machine, with forced commands, and without having to ahve a different key for each path (which is what I've been doing up till now). Thanks, Richard > > > Sean > > On 1/20/19 12:20 AM, Richard Hector wrote: >> Hi all, >> >> I'm writing a wrapper script to use as an ssh forced command. >> >> It would be useful to understand the options used in the "rsync --server >> --sender" command executed on the remote - but the man page doesn't >> cover them. >> >> Anyone know where to find such documentation? >> >> Cheers, >> Richard >> _______________________________________________ >> Dirvish mailing list >> Dirvish@dirvish.org >> http://www.dirvish.org/mailman/listinfo/dirvish >> > _______________________________________________ Dirvish mailing list Dirvish@dirvish.org http://www.dirvish.org/mailman/listinfo/dirvish
