BackupPC-users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [BackupPC-users] which one better ssh+rsync or rsyncd ?

2012-02-15 04:23:34
Subject: Re: [BackupPC-users] which one better ssh+rsync or rsyncd ?
From: "J. Bakshi" <bakshi12 AT gmail DOT com>
To: backuppc-users AT lists.sourceforge DOT net
Date: Wed, 15 Feb 2012 14:52:19 +0530 
> 
> On Wed, Feb 15, 2012 at 1:46 PM, Adam Goryachev <
> mailinglists AT websitemanagers.com DOT au> wrote:
> 
> >
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: SHA1
> >
> > On 15/02/12 19:03, J. Bakshi wrote:
> > > Dear list,
> > >
> > > Greetings to all of you. I have come to know about backuppc recently
> > during my search
> > > for a net based backup solution which requires bare minimal settings at
> > user end and
> > > supports various client OS. backuppc surely meet my requirement.
> > >
> > > I am confused about the server-client authentication. The ssh+rsync is
> > very attractive,
> > > but I like to restrict the passwordless key so that only and only the
> > commands required
> > > to complete the backup operation should be performed. Within the from
> > field in the key
> > > I can hard code the server IP, but how can I restrict the commands ?
> > The command can also be restricted in the authorized_keys file. You may
> > want to refer to the man page for the correct usage and details. Also,
> > you should get things working without any restrictions first, then add
> > the IP and command restriction. This way, you have less things to debug.
> > > Alternatively the rsyncd is also my consideration and I wonder how
> > superior it is
> > > over ssh+rsync. Please give some clue on the above said topics so that
> > I can follow
> > > the right direction.
> > This depends on your own preference... Another option would be rsyncd
> > tunnelled over ssh. One reason I really like to add ssh in the mix is
> > because I use SSH compression, which reduces bandwidth requirements.
> >
> > I prefer SSH+rsync because there is no config file, no service/daemon
> > that needs to be running, no extra open port, etc...
> >

I also like the ssh+rsync combination for the same. How can I harden the public 
key,
so that only the required commands will be executed and nothing else ?

Asking for the rsyncd because it is free from sharing public keys, hence free 
from the risk
involved in sharing pub keys. It is not possible to log into the client pc 
using the keys.

Thanks

------------------------------------------------------------------------------
Virtualization & Cloud Management Using Capacity Planning
Cloud computing makes use of virtualization - but cloud computing 
also focuses on allowing computing to be delivered as a service.
http://www.accelacomm.com/jaw/sfnl/114/51521223/
_______________________________________________
BackupPC-users mailing list
BackupPC-users AT lists.sourceforge DOT net
List:    https://lists.sourceforge.net/lists/listinfo/backuppc-users
Wiki:    http://backuppc.wiki.sourceforge.net
Project: http://backuppc.sourceforge.net/
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [BackupPC-users] which one better ssh+rsync or rsyncd ?, Anand Gupta
Next by Date:  Re: [BackupPC-users] which one better ssh+rsync or rsyncd ?, Tim Fletcher
Previous by Thread:  Re: [BackupPC-users] which one better ssh+rsync or rsyncd ?, Anand Gupta
Next by Thread:  Re: [BackupPC-users] which one better ssh+rsync or rsyncd ?, Adam Goryachev
Indexes:  [Date] [Thread] [Top] [All Lists]