Root access over ssh?
Tim Conway
conway at us.ibm.com
Thu Mar 25 19:04:12 GMT 2004
yes
You have to have a "uid = 0" in the rsyncd.conf file for that module,
since only root can give away files, and also bypass all (except over NFS,
etc.) file protections.
For (insert diety's name here)'s sake, don't use "/" for a path, and don't
leave it un-chrooted, unless you're putting up a honeypot or something.
You might want to password-protect that module, too, to inhibit casual
unwanted file modification.
If you have this
++++++++++++++++++++++++++++++++++++++++++++
[modulename]
path = /
uid=0
read-only = no
++++++++++++++++++++++++++++++++++++++++++++
In your rsyncd.conf,
you might as well also add "opendoor stream tcp nowait root
/bin/sh sh" to your inetd.conf and "opendoor 666" to services.
Maybe you could hide behind excludes, but I wouldn't count on it.
Tim Conway
Unix System Administration
Contractor - IBM Global Services
desk:3032734776
conway at us.ibm.com
Paul Galbraith <paul at paulgalbraith.net>
Sent by: rsync-bounces+conway=us.ibm.com at lists.samba.org
03/25/2004 10:00 AM
To
rsync at lists.samba.org
cc
Subject
Root access over ssh?
Is it possible to configure rsync in server mode, to gain access to root
protected files, without the user having to log in as root through ssh?
I'd prefer to login as a regular user through ssh and access an rysnc
server on the host that's running as root. As far as I can tell,
however, that's not possible...am I wrong?
--
To unsubscribe or change options:
http://lists.samba.org/mailman/listinfo/rsync
Before posting, read: http://www.catb.org/~esr/faqs/smart-questions.html
More information about the rsync
mailing list