rsync support in authprogs - feedback requested

2021-02-17 Thread Bri Hatch via rsync
Authprogs is a general purpose SSH command authenticator; it allows you to restrict what commands are allowed for a given SSH key. It's installable via pip and is in recent Debian and Ubuntu. I recently added initial rsync support to authprogs. My goal is

Re: rsync support in authprogs - feedback requested

2021-02-18 Thread Bri Hatch via rsync
me Linux distros are maintained by > insane people who install rrsync as if it was documentation (compressed > and not executable) instead of a helper script which is what it is. > > On 2/18/21 10:28 AM, Karl O. Pinc via rsync wrote: > > On Wed, 17 Feb 2021 21:52:06 -0800 > >

Re: Which method (rsync-based) is better for backing up Linux servers to Synology NAS?

2021-08-09 Thread Bri Hatch via rsync
tl;dr: rsnapshot is usually the best plan. Details: rsnapshot copies files from remote machines and stores snapshotted directories locally. If you want to get the CentOS servers copied to the synology then you need to run rsnapshot from the synology. Synology doesn't have rsnapshot out of the box

Re: How to manage root<-->root rsync keeping permissions?

2021-08-07 Thread Bri Hatch via rsync
The original request was to be able to copy files from local /etc to a remote /etc while retaining file permissions (perms, owner, etc). This does require root on the receiving box in some way. Commenting on some previous suggestions: * connecting to the remote system as a non-root user and

Re: Trying to elevate rsync privileges when connecting over ssh without using NOPASSWD in sudoers

2022-03-11 Thread Bri Hatch via rsync
On Fri, Mar 11, 2022 at 10:22 PM Kevin Korb via rsync wrote: > Rsync includes a script named rrsync that handles this perfectly. > And authprogs provides similar functionality, though you use yaml to define what is/isn't allowed. However it does allow you to use one SSH identity for potentially

Re: Trying to elevate rsync privileges when connecting over ssh without using NOPASSWD in sudoers

2022-03-12 Thread Bri Hatch via rsync
The environment variables of a process when it was started are available via /proc//environ file. So while other users on that system can't see the environ, every other process running as your target user could. Worse, however, your "echo" process puts the password in arguments, and any local