BackupPC-users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [BackupPC-users] which one better ssh+rsync or rsyncd ?

2012-02-15 04:40:18
Subject: Re: [BackupPC-users] which one better ssh+rsync or rsyncd ?
From: Adam Goryachev <mailinglists AT websitemanagers.com DOT au>
To: backuppc-users AT lists.sourceforge DOT net
Date: Wed, 15 Feb 2012 20:38:56 +1100 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 15/02/12 20:22, J. Bakshi wrote:
> I also like the ssh+rsync combination for the same. How can I harden
the public key, so that only the required commands will be executed and
nothing else ? Asking for the rsyncd because it is free from sharing
public keys, hence free from the risk involved in sharing pub keys. It
is not possible to log into the client pc using the keys.
As suggested, read the man page for authorized_users (start from man
ssh) or search from google. This subject is much better covered in other
places than when can be reproduced here.

As for sharing keys, you need to share something between the backuppc
system and the client. Whether that is a public key, or a
username/password, it doesn't make a lot of difference, it is a string
which needs to be shared. In my opinion, and evidently in a lot of other
people's opinion who know a lot more about this stuff, a key pair is a
lot more secure than a username/password (ie, that is my understanding
from a brute force point of view). As such, I'm a lot more happy with
SSH + rsync using shared keys.

In reference to the question of requiring an SSH server, the response is
yes, you need an SSH server, but this is usually active by default,
required for other administrative tasks anyway, as opposed to rsyncd
which is an optional extra (yes, this presumes some form of unix as
opposed to windows).

Regards,
Adam

- -- 
Adam Goryachev
Website Managers
www.websitemanagers.com.au
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk87fTAACgkQGyoxogrTyiVL0wCgkR5j8R0Sk8v7mLNZXpWDBD/+
PCYAoK9/cRJLFnPiUIpkpQJpoEfCcOfc
=rl1Z
-----END PGP SIGNATURE-----


------------------------------------------------------------------------------
Virtualization & Cloud Management Using Capacity Planning
Cloud computing makes use of virtualization - but cloud computing 
also focuses on allowing computing to be delivered as a service.
http://www.accelacomm.com/jaw/sfnl/114/51521223/
_______________________________________________
BackupPC-users mailing list
BackupPC-users AT lists.sourceforge DOT net
List:    https://lists.sourceforge.net/lists/listinfo/backuppc-users
Wiki:    http://backuppc.wiki.sourceforge.net
Project: http://backuppc.sourceforge.net/
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [BackupPC-users] which one better ssh+rsync or rsyncd ?, Anand Gupta
Next by Date:  Re: [BackupPC-users] which one better ssh+rsync or rsyncd ?, Till Hofmann
Previous by Thread:  Re: [BackupPC-users] which one better ssh+rsync or rsyncd ?, J. Bakshi
Next by Thread:  Re: [BackupPC-users] which one better ssh+rsync or rsyncd ?, J. Bakshi
Indexes:  [Date] [Thread] [Top] [All Lists]