Re: rsync: Re: using rsync to backup windows workstations
ssh is version 2.9. RedHat 7.1. I try to keep the latest updates, but sometimes I get behind. - Original Message - From: Dave Dykstra [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, November 14, 2001 5:02 PM Subject: Re: rsync: Re: using rsync to backup windows workstations On Wed, Nov 14, 2001 at 04:23:32PM -0500, Thomas Lambert wrote: THAT WAS IT!! I just had authorized_keys and not authorized_keys2. I knew I had to be close. THANK YOU! THANK YOU! THANK YOU! Then your server just be older than openssh 3.0. Right? - Dave Dykstra
Re: rsync: Re: using rsync to backup windows workstations
On Wed, Nov 14, 2001 at 10:15:59AM -0500, Thomas Lambert wrote: I have about 12 NT servers that I want to backup 1 directory to my Linux Server. The problem I am having is trying to get it not to ask for the user's password. I am trying to use ssh. I just installed the latest cygwin on my NT server (1.3.4). Rsync is 2.4.6. What I have tried was on the NT machine, I ran ssh-keygen (no passphrase) and then added the identity.pub to the Linux box in the /home/thomas/.ssh/authorized_keys. Instead of using ssh, why don't you use straight rsync, with rsync running in server mode on the Linux box. You should probably put separate entries in /etc/rsyncd.conf for each Windows box something like the one below that I use to backup our local hardware suffering from the Microsoft Virus, W2K. [dumbo_backup] uid = root gid = root path = /rd0/backups/dumbo read only = false use chroot = false comment = Backup for Dumbo Win2K hosts allow = 192.168.253.28 hosts deny = * Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC UUCP: camco!bill PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 URL: http://www.celestial.com/ Breathe fire, slay dragons, and take chances. Failure is temporary, regret is eternal.
Re: rsync: Re: using rsync to backup windows workstations
I thought just a straight rsync daemon was unsecure. I am sending data from remote dial-up sites, through the internet to my server. That is why I am using ssh (well trying to use it). If this was just for my internal network, then YES, I would probably just use the daemon. One other problem is that they are dial-up, so each time they connect to the internet, they get a new IP. I tried just doing ssh linuxbox username -a and I was asked for a password. So I changed PasswordAuthentication to no in my sshd_config file on the server. Restarted sshd and now I am getting permission denied. I did copy the contents of my identity.pub, rsa_id.pub, dsa_id.pub to authorized_keys on the server. I'm going to read some more on ssh, but if anyone knows a quick fix, let me know. - Original Message - From: Bill Campbell [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, November 14, 2001 2:45 PM Subject: Re: rsync: Re: using rsync to backup windows workstations On Wed, Nov 14, 2001 at 10:15:59AM -0500, Thomas Lambert wrote: I have about 12 NT servers that I want to backup 1 directory to my Linux Server. The problem I am having is trying to get it not to ask for the user's password. I am trying to use ssh. I just installed the latest cygwin on my NT server (1.3.4). Rsync is 2.4.6. What I have tried was on the NT machine, I ran ssh-keygen (no passphrase) and then added the identity.pub to the Linux box in the /home/thomas/.ssh/authorized_keys. Instead of using ssh, why don't you use straight rsync, with rsync running in server mode on the Linux box. You should probably put separate entries in /etc/rsyncd.conf for each Windows box something like the one below that I use to backup our local hardware suffering from the Microsoft Virus, W2K. [dumbo_backup] uid = root gid = root path = /rd0/backups/dumbo read only = false use chroot = false comment = Backup for Dumbo Win2K hosts allow = 192.168.253.28 hosts deny = * Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC UUCP: camco!bill PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 URL: http://www.celestial.com/ Breathe fire, slay dragons, and take chances. Failure is temporary, regret is eternal.
Re: rsync: Re: using rsync to backup windows workstations
On Wed, 2001-11-14 at 14:35, Thomas Lambert wrote: I thought just a straight rsync daemon was unsecure. I am sending data from remote dial-up sites, through the internet to my server. That is why I am using ssh (well trying to use it). If this was just for my internal network, then YES, I would probably just use the daemon. One other problem is that they are dial-up, so each time they connect to the internet, they get a new IP. You are right: Rsync as a daemon in your environment would be less secure than ssh. I tried just doing ssh linuxbox username -a and I was asked for a password. So I changed PasswordAuthentication to no in my sshd_config file on the server. Restarted sshd and now I am getting permission denied. I did copy the contents of my identity.pub, rsa_id.pub, dsa_id.pub to authorized_keys on the server. I'm going to read some more on ssh, but if anyone knows a quick fix, let me know. There are two: make sure the dsa_id.pub is in authorized_keys2 if you just use '-e ssh' as an option for rsync, this automagically uses ssh version 2, so you need the '2' you keys file. 'authorized_keys' is for ssh 1. You can change the -e option to -e 'ssh 1' to use auhtorized_keys (I believe that is the command line; I got ssh 1 doing authentication but I switched to 2 because it is much more secure). Ben Ricker System Administrator Wellinx.com
Re: rsync: Re: using rsync to backup windows workstations
THAT WAS IT!! I just had authorized_keys and not authorized_keys2. I knew I had to be close. THANK YOU! THANK YOU! THANK YOU! - Original Message - From: Ben Ricker [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, November 14, 2001 3:47 PM Subject: Re: rsync: Re: using rsync to backup windows workstations On Wed, 2001-11-14 at 14:35, Thomas Lambert wrote: I thought just a straight rsync daemon was unsecure. I am sending data from remote dial-up sites, through the internet to my server. That is why I am using ssh (well trying to use it). If this was just for my internal network, then YES, I would probably just use the daemon. One other problem is that they are dial-up, so each time they connect to the internet, they get a new IP. You are right: Rsync as a daemon in your environment would be less secure than ssh. I tried just doing ssh linuxbox username -a and I was asked for a password. So I changed PasswordAuthentication to no in my sshd_config file on the server. Restarted sshd and now I am getting permission denied. I did copy the contents of my identity.pub, rsa_id.pub, dsa_id.pub to authorized_keys on the server. I'm going to read some more on ssh, but if anyone knows a quick fix, let me know. There are two: make sure the dsa_id.pub is in authorized_keys2 if you just use '-e ssh' as an option for rsync, this automagically uses ssh version 2, so you need the '2' you keys file. 'authorized_keys' is for ssh 1. You can change the -e option to -e 'ssh 1' to use auhtorized_keys (I believe that is the command line; I got ssh 1 doing authentication but I switched to 2 because it is much more secure). Ben Ricker System Administrator Wellinx.com
Re: rsync: Re: using rsync to backup windows workstations
On Wed, Nov 14, 2001 at 02:47:42PM -0600, Ben Ricker wrote: On Wed, 2001-11-14 at 14:35, Thomas Lambert wrote: I thought just a straight rsync daemon was unsecure. I am sending data from remote dial-up sites, through the internet to my server. That is why I am using ssh (well trying to use it). If this was just for my internal network, then YES, I would probably just use the daemon. One other problem is that they are dial-up, so each time they connect to the internet, they get a new IP. You are right: Rsync as a daemon in your environment would be less secure than ssh. Agreed. I tried just doing ssh linuxbox username -a and I was asked for a password. So I changed PasswordAuthentication to no in my sshd_config file on the server. Restarted sshd and now I am getting permission denied. I did copy the contents of my identity.pub, rsa_id.pub, dsa_id.pub to authorized_keys on the server. I'm going to read some more on ssh, but if anyone knows a quick fix, let me know. There are two: make sure the dsa_id.pub is in authorized_keys2 if you just use '-e ssh' as an option for rsync, this automagically uses ssh version 2, so you need the '2' you keys file. 'authorized_keys' is for ssh 1. You can change the -e option to -e 'ssh 1' to use auhtorized_keys (I believe that is the command line; I got ssh 1 doing authentication but I switched to 2 because it is much more secure). Not anymore in OpenSSH 3.0p1: the regular known_hosts and authorized_keys files hold both kinds of keys, and the *2 files are deprecated. He's using cygwin 1.3.4 which includes OpenSSH 3.0p1. - Dave Dykstra
Re: rsync: Re: using rsync to backup windows workstations
On Wed, Nov 14, 2001 at 04:23:32PM -0500, Thomas Lambert wrote: THAT WAS IT!! I just had authorized_keys and not authorized_keys2. I knew I had to be close. THANK YOU! THANK YOU! THANK YOU! Then your server just be older than openssh 3.0. Right? - Dave Dykstra
