Re: Question about RSSH
Brought to you by:
xystrus
From: Russ A. <rr...@st...> - 2009-02-07 00:12:37
|
Robert Dailey <rcd...@gm...> writes: > Thanks for taking the time to explain everything. I think the problem is > that I want this to be simple. I want to allow a specific person to use > a portion of my hard drive for their personal backup, and SCP comes to > mind as the first solution. They basically have a script that they set > up in a cron job that automatically uploads backed up archives to my > server. SCP is a good way to do this but I have the additional security > issue of them being able to log into my server via SSH and view my > entire server's filesystem. I would set up an rsync server to do this. An rsync server doesn't require an account at all. You would instead create an entry in the rsync server configuration file that specifies the host that's allowed to upload and optionally adds a password and specifies the portion of the file space that they can write to, and then they can use an rsync client to push things to or pull things from your system. It has the drawback compared to SCP that you don't have nice public key authentication, but for the problem that you're trying to solve, you may not care that much. This is *not* a good solution if you need the files to be encrypted on the network or if you need password authentication on an insecure network (such as the Internet), but it works great in scenarios within, say, a home network or inside a data center. -- Russ Allbery (rr...@st...) <http://www.eyrie.org/~eagle/> |