Russ Allbery <ea...@eyrie.org> writes: > You unfortunately can't. I couldn't convince myself that --daemon was > safe in the rssh security model.
I should also add: If you're only using --daemon, consider whether the arguments to rsync vary with each invocation. I suspect that they don't, in which case you could use SSH's force-command option for authorized_keys rather than rssh. This doesn't give you the chroot inherently, but you could write a tiny helper that does the chroot, or use user namespaces to achieve an equivalent end. -- Russ Allbery (ea...@eyrie.org) <https://www.eyrie.org/~eagle/> _______________________________________________ rssh-discuss mailing list rssh-discuss@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/rssh-discuss
