Hey cool, I didn't realize you could do something like that. :) On 20040722.1243, Cory Petkovsek said ...
> On Thu, Jul 22, 2004 at 12:22:05PM -0700, larry price wrote: > > if you don't want to bother with ssh-agent you can use a plaintext > > key-file but you should make > > sure that that key is not going to be able to do anything besides rsync files. > > Meaning among other things, that in your /home/user/.ssh/authorized_keys file > you prepent something like: > from=ip.of.rsync.server, cmd=/usr/local/bin/rsync.script ssh-dsa R5cEfd.. > > This means using the passphrase-less key, one can only connect to this host > from the first machine and they can only run one command perhaps with arguments > if they need to change, preferably not. If so, you need to take care the the > arguments aren't something like: "-v; echo guest::0:0::/:/bin/sh>>/etc/passwd" > > Cory > > -- > Cory Petkovsek Adapting Information > Adaptable IT Consulting Technology to Your > (858) 705-1655 Business > [EMAIL PROTECTED] www.AdaptableIT.com > _______________________________________________ > EUGLUG mailing list > [EMAIL PROTECTED] > http://www.euglug.org/mailman/listinfo/euglug _______________________________________________ EUGLUG mailing list [EMAIL PROTECTED] http://www.euglug.org/mailman/listinfo/euglug
