Root access over ssh?

Tim Conway conway at us.ibm.com
Thu Mar 25 19:04:12 GMT 2004


yes

You have to have a "uid = 0" in the rsyncd.conf file for that module, 
since only root can give away files, and also bypass all (except over NFS, 
etc.) file protections.

For (insert diety's name here)'s sake, don't use "/" for a path, and don't 
leave it un-chrooted, unless you're putting up a honeypot or something.

You might want to password-protect that module, too, to inhibit casual 
unwanted file modification.

If you have this
++++++++++++++++++++++++++++++++++++++++++++
[modulename]
path = /
uid=0
read-only = no
++++++++++++++++++++++++++++++++++++++++++++
In your rsyncd.conf,
you might as well also add "opendoor    stream  tcp     nowait  root 
/bin/sh sh" to your inetd.conf and "opendoor    666" to services.
Maybe you could hide behind excludes, but I wouldn't count on it.

Tim Conway
Unix System Administration
Contractor - IBM Global Services
desk:3032734776
conway at us.ibm.com




Paul Galbraith <paul at paulgalbraith.net> 
Sent by: rsync-bounces+conway=us.ibm.com at lists.samba.org
03/25/2004 10:00 AM

To
rsync at lists.samba.org
cc

Subject
Root access over ssh?






Is it possible to configure rsync in server mode, to gain access to root 
protected files, without the user having to log in as root through ssh?

I'd prefer to login as a regular user through ssh and access an rysnc 
server on the host that's running as root.  As far as I can tell, 
however, that's not possible...am I wrong?
-- 
To unsubscribe or change options: 
http://lists.samba.org/mailman/listinfo/rsync
Before posting, read: http://www.catb.org/~esr/faqs/smart-questions.html




More information about the rsync mailing list