uid/gid settings in rsyncd.conf not respected?
Harry Mangalam
harry.mangalam at uci.edu
Fri Feb 13 17:21:47 GMT 2009
Thanks for the reply and my apologies - I took the wrong line from the
log (from a previous set of trials). The instigating line from the
rsync receiver (trying to rsync the [minas] module) is:
rsync -ar -vvv rsyncuser at xxx.xxx.uci.edu::minas .
opening tcp connection to xxx.xxx.uci.edu port 873
opening connection using --server --sender -vvvlogDtpr . minas
Password: ******
receiving file list ...
rsync: link_stat "." (in minas) failed: Permission denied (13)
received 0 names
done
recv_file_list done
sent 4 bytes received 17 bytes 3.82 bytes/sec
total size is 0 speedup is 0.00
rsync error: some files could not be transferred (code 23) at
main.c(1385) [receiver=2.6.9]
_exit_cleanup(code=0, file=main.c, line=1385): about to call exit(23)
and the response from the log contains:
2009/02/13 09:06:22 [9818] connect from nnn.nnn.nnn.nnn
(xxx.xxx.xxx.xxx)
2009/02/13 09:06:28 [9818] rsync on minas from
rsyncuser at xxx.xxx.uci.edu (xxx.xxx.xxx.xxx)
2009/02/13 09:06:28 [9818] building file list
2009/02/13 09:06:28 [9818] rsync: link_stat "." (in minas) failed:
Permission denied (13)
to keep everything coherent, I changed the rsyncd.conf to narrow it
down to this dir, rather than the whole [home] module as I wrote
yesterday. The above errors were generated with the rsyncd.conf
below:
# GLOBAL OPTIONS
log file=/var/log/rsyncd
pid file=/var/run/rsyncd.pid
auth users = [rsyncuser]
uid = backuppc
gid = backuppc
secrets file = /etc/rsyncd.secrets
dont compress = *.gz *.tgz *.zip *.z *.rpm *.deb *.iso *.bz2 *.tbz
*.exe
max verbosity=2
# MODULE OPTIONS
[minas]
comment = /home/minas dir
path = /home/minas
use chroot = no
max connections=1
lock file = /var/lock/rsyncd
read only = yes
list = yes
uid = backuppc
gid = backuppc
exclude from = /etc/rsyncd.exclude
strict modes = yes
hosts deny = *
hosts allow = xxx.xxx.xxx.xxx
ignore errors = no
ignore nonreadable = yes
transfer logging = yes
timeout = 600
refuse options = checksum dry-run
dont compress = *.gz *.tgz *.zip *.z *.rpm *.deb *.iso *.bz2
*.tbz
On Friday 13 February 2009, Paul Slootman wrote:
> On Thu 12 Feb 2009, Harry Mangalam wrote:
> > However, this does not work for the backup (rsyncd refuses to
> > read the files with an entry in /var/log/rsyncd.log:
> >
> > auth failed on module svn from nnn.nnn.nnn.nnn (
> > xxx.xxx.xxx.xxx): unauthorized user.
>
> This message would indicate that the rsync connection to the daemon
> is refused; it doesn't get as far as the files themselves. I.e. the
> file permissions, uid / gid / etc aren't in the picture at all.
>
> As you have an "auth users = " line, you're doing something wrong
> while connecting... please show the command lines you run.
>
>
> Paul
--
Harry Mangalam - Research Computing, NACS, E2148, Engineering Gateway,
UC Irvine 92697 949 824-0084(o), 949 285-4487(c)
---
Good judgment comes from experience;
Experience comes from bad judgment. [F. Brooks.]
More information about the rsync
mailing list