Personally, and this is not something that any shell can solve, I
would love for a way to limit the files that the --server side rsync
allows access to.
I have an ssh command wrapper script, which I believe (and now just
hope) limits the access an SSH key provides to a user who uses this
Matt McCutchen wrote:
On Mon, 2008-10-06 at 18:01 +0200, Shachar Shemesh wrote:
Personally, and this is not something that any shell can solve, I would
love for a way to limit the files that the --server side rsync allows
access to.
It's called an rsync daemon. It can be invoked
Hello Shachar,
You can use rrsync instead:
http://samba.anu.edu.au/ftp/unpacked/rsync/support/rrsync
Regards,
Rami Addady
http://www.active.co.il
Shachar Shemesh wrote:
Wayne Davison wrote:
On Sun, Oct 05, 2008 at 06:47:47AM +0200, Shachar Shemesh wrote:
The reason this is brought up
Wayne Davison wrote:
On Sun, Oct 05, 2008 at 06:47:47AM +0200, Shachar Shemesh wrote:
The reason this is brought up is because I'm using rssh
(http://www.pizzashack.org/rssh/) as the user's shell to limit that
user to only be allowed to run rsync.
I looked at the source, and created a
On Mon, 2008-10-06 at 18:01 +0200, Shachar Shemesh wrote:
Personally, and this is not something that any shell can solve, I would
love for a way to limit the files that the --server side rsync allows
access to.
It's called an rsync daemon. It can be invoked over ssh; the command to
force in
So, I've done some RTFS, and this is what I've got. I'd still love it if
Wayne could confirm that my understanding of the source is correct.
Shachar Shemesh wrote:
So my questions:
1. Why does rsync need to pass -e to the remote side? After all, the
connection is already established at that
On Sun, Oct 05, 2008 at 06:47:47AM +0200, Shachar Shemesh wrote:
Rssh, however, prevent the passing of the -e option to rsync, as it
claims (with some amount of justification) that this option allows
someone to cause rsync to run any command at all, escaping the
limitations imposed by rssh.
On Sun, Oct 05, 2008 at 06:47:47AM +0200, Shachar Shemesh wrote:
The reason this is brought up is because I'm using rssh
(http://www.pizzashack.org/rssh/) as the user's shell to limit that
user to only be allowed to run rsync.
I looked at the source, and created a patch to make it just require
$ rsync -e 'ssh -v' lingnu.com:
OpenSSH_5.1p1 Debian-2, OpenSSL 0.9.8g 19 Oct 2007
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Connecting to lingnu.com [199.203.56.105] port 22.
debug1: Connection established.
...
debug1: Sending command: rsync