Trying to elevate rsync privileges when connecting over ssh without using NOPASSWD in sudoers
Richard Hector
richard at walnut.gen.nz
Sat Mar 12 08:10:45 UTC 2022
Also, it appears that it requires the allowed directory to be specified
in authorized_keys. Mine uses an external list of allowed directories,
so I don't need lots of lines (and separate keys?) in authorized_keys in
order to deal with the several directories I back up per host.
Cheers,
Richard
On 12/03/22 21:01, Richard Hector via rsync wrote:
> It may do the job; it doesn't AFAIK explain why the options are
> undocumented :-)
>
> Cheers,
> Richard
>
> On 12/03/22 19:22, Kevin Korb via rsync wrote:
>> Rsync includes a script named rrsync that handles this perfectly.
>>
>> On 3/12/22 01:08, Richard Hector via rsync wrote:
>>> On 12/03/22 18:38, Richard Hector via rsync wrote:
>>>> And I do my backups (using dirvish) as root, using a key with a
>>>> forced command.
>>>
>>> FWIW, that forced command is here:
>>>
>>> https://github.com/rwhector/dirvish-forced-command
>>>
>>> It's rather unpolished and undocumented, but comments very welcome :-)
>>>
>>> I've also had an issue due to some server-side-only arguments to
>>> rsync being undocumented, which means I can't validate them, and
>>> basically have to accept anything ... I'd love to know why this is or
>>> has to be the case :-) I didn't get any particularly useful answers
>>> back in January 2019 ...
>>>
>>> Cheers,
>>> Richard
>>>
>>
>
>
More information about the rsync
mailing list