[SCM] The rsync repository. - branch master updated

Rsync CVS commit messages rsync-cvs at lists.samba.org
Wed Aug 10 23:48:36 UTC 2022 

The branch, master has been updated
       via  55ad8757 Make a `--trust-sender` a bit clearer.
       via  3e4b0117 One more doc tweak.
      from  2f1d1d5c Add packaging note.

https://git.samba.org/?p=rsync.git;a=shortlog;h=master


- Log -----------------------------------------------------------------
commit 55ad8757ec32f9aa202305ea6e0d72bd55d66efd
Author: Wayne Davison <wayne at opencoder.net>
Date:   Wed Aug 10 16:25:37 2022 -0700

    Make a `--trust-sender` a bit clearer.

commit 3e4b01173ab2c6f8014a027bd69f1443b20b3a68
Author: Wayne Davison <wayne at opencoder.net>
Date:   Wed Aug 10 08:47:11 2022 -0700

    One more doc tweak.

-----------------------------------------------------------------------

Summary of changes:
 rsync.1.md | 25 +++++++++++++++----------
 1 file changed, 15 insertions(+), 10 deletions(-)


Changeset truncated at 500 lines:

diff --git a/rsync.1.md b/rsync.1.md
index 627c4290..f29495f2 100644
--- a/rsync.1.md
+++ b/rsync.1.md
@@ -2414,17 +2414,19 @@ expand it.
 
 0.  `--trust-sender`
 
-    Disable the extra validation of the file list from a remote sender (this
-    safety feature was added in 3.2.5).  This should only be done if you trust
-    the sender to not try to do something malicious, which should be the case
-    if they're running a stock rsync.
+    This option disables two extra validation checks that a local client
+    performs on the file list generated by a remote sender.  This option should
+    only be used if you trust the sender to not put something malicious in the
+    file list (something that could possibly be done via a modified rsync, a
+    modified shell, or some other similar manipulation).
 
-    Normally when pulling files from a remote rsync, the client runs 2 extra
-    validation checks:
+    Normally, the rsync client (as of version 3.2.5) runs two extra validation
+    checks when pulling files from a remote rsync:
 
-    - Verify that additional arg items didn't get added at the top of the
+    - It verifies that additional arg items didn't get added at the top of the
       transfer.
-    - Verify that none of the items in the file list should have been excluded.
+    - It verifies that none of the items in the file list are names that should
+      have been excluded (if filter rules were specified).
 
     Note that various options can turn off one or both of these checks if the
     option interferes with the validation.  For instance:
@@ -2440,8 +2442,11 @@ expand it.
 
     This option may help an under-powered client server if the extra pattern
     matching is slowing things down on a huge transfer.  It can also be used to
-    work around a currently-unknown bug in the verification logic, possibly
-    after using the [`--list-only`](#opt) option to approve the file list.
+    work around a currently-unknown bug in the verification logic for a transfer
+    from a trusted sender.
+
+    When using this option it is a good idea to specify a dedicated destination
+    directory, as discussed in the [MULTI-HOST SECURITY](#) section.
 
 0.  `--copy-as=USER[:GROUP]`
 


-- 
The rsync repository.

More information about the rsync-cvs mailing list