On Thu, Jul 22, 2004 at 12:22:05PM -0700, larry price wrote: > if you don't want to bother with ssh-agent you can use a plaintext > key-file but you should make > sure that that key is not going to be able to do anything besides rsync files.
Meaning among other things, that in your /home/user/.ssh/authorized_keys file you prepent something like: from=ip.of.rsync.server, cmd=/usr/local/bin/rsync.script ssh-dsa R5cEfd.. This means using the passphrase-less key, one can only connect to this host from the first machine and they can only run one command perhaps with arguments if they need to change, preferably not. If so, you need to take care the the arguments aren't something like: "-v; echo guest::0:0::/:/bin/sh>>/etc/passwd" Cory -- Cory Petkovsek Adapting Information Adaptable IT Consulting Technology to Your (858) 705-1655 Business [EMAIL PROTECTED] www.AdaptableIT.com _______________________________________________ EUGLUG mailing list [EMAIL PROTECTED] http://www.euglug.org/mailman/listinfo/euglug
