rsyncssl

Mon Jan 28 14:51:55 MST 2013

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

In sshd_config:
Match User username
  X11Forwarding no
  AllowTcpForwarding no
  ForceCommand /path/to/rrsync [-ro] /path/to/target

Also, ssh public key authentication is not a pre-shared key that is
what a password is.  Public key authentication does not require the
server to know the user's private key.

On 01/28/13 16:31, Volker Kuhlmann wrote:
> On Tue 29 Jan 2013 03:46:53 NZDT +1300, Karl O. Pinc wrote:
> 
>> Put this at the beginning of the ~/.ssh/authorized_keys line,
>> before the key:
>> 
>> no-pty,no-agent-forwarding,no-port-forwarding,no-user-rc,no-X11- 
>> forwarding,command="rsync --server --daemon ."
> 
> Good, thanks for posting that, yes the *ix way is modular but with 
> configuration users are frequently left hanging a bit dry.
> 
> How can this be achieved using password authentication instead of
> with pre-shared keys from ~/.ssh/authorized_keys ?
> 
> TIA,
> 
> Volker
> 

- -- 
~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~
	Kevin Korb			Phone:    (407) 252-6853
	Systems Administrator		Internet:
	FutureQuest, Inc.		Kevin at FutureQuest.net  (work)
	Orlando, Florida		kmk at sanitarium.net (personal)
	Web page:			http://www.sanitarium.net/
	PGP public key available on web site.
~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlEG8vsACgkQVKC1jlbQAQd3IwCcCjGbxZcesJ98Jq5aUpGQOdWY
jOcAnR+0hXjW2kYiXf3rlSPIUq675wVy
=T9eL
-----END PGP SIGNATURE-----