Preventing non-root users from transferring root owned files
rcorujo
rcorujo at yahoo.com
Fri Apr 6 18:06:14 GMT 2007
Thanks for your response Wayne.
The problem is that we are using SystemImager on our
Linux clusters and the SystemImager scripts do not
invoke rsync with ssh, so a daemon must be running as
root.
I have sent mail to the SystemImager mailing list.
Thank you.
Rigoberto
Wayne Davison-2 wrote:
>
> On Thu, Apr 05, 2007 at 11:54:19AM -0700, rcorujo wrote:
>> What options do I need to use so that root can copy root owned files, but
>> non-root users cannot copy root owned files?
>
> You need a separate module configured for non-root access (give it a
> uid/gid of nobody or some other normal user). A daemon can't tell what
> user is running the remote program, so it always runs as the user you
> tell it to run as. Of course, the other option is to not use daemon
> access, but a remote shell (such as ssh) to enforce user permissions
> that way.
>
> ..wayne..
> --
> To unsubscribe or change options:
> https://lists.samba.org/mailman/listinfo/rsync
> Before posting, read: http://www.catb.org/~esr/faqs/smart-questions.html
>
>
--
View this message in context: http://www.nabble.com/Preventing-non-root-users-from-transferring-root-owned-files-tf3532972.html#a9876054
Sent from the Samba - rsync mailing list archive at Nabble.com.
More information about the rsync
mailing list