On Tue, 2005-03-15 at 10:59 -0500, Neil Watson wrote: > On Tue, Mar 15, 2005 at 10:43:47AM -0500, Brian J. Murrell wrote: > >IMHO, the right way to do this is to use the "forced command" option in > >the authorized_keys file. See the manpage for sshd under the > >"AUTHORIZED_KEYS FILE FORMAT" section and create a key on the backup > >server that is forced to run only one command and then use the private > >portion of that key without a passphrase on your client. > > That is very interesting. Does that mean I could have a key pair > without a passphrase?
Sure. > The account on the public server could have no > shell access? I believe so. > A connection would automatically execute a command > without a shell? Hrm. I don't recall if the command in the authorized_keys file is executed directly (as in execve()) or through a shell (as in system()). > Do you have an example of how a remote rsync or other > type of backup would use this feature? I'm afraid I don't. If this is what you want to do, look at Bill Stearns' rsync-backup-server/rsync-backup-client tool(s). b.
signature.asc
Description: This is a digitally signed message part
_______________________________________________ mythtv-users mailing list [email protected] http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-users
