>> Alex Mestiashvili <a...@biotec.tu-dresden.de> wrote:
A> I would simply use a passwordless ssh-key with a wrapper on the remote
A> side which allows to run only the backup command .
>> On Mon, 13 Feb 2012 18:51:26 +0000,
>> Chris Davies <chris-use...@roaima.co.uk> said:
C> I'd agree with this, but use passwordless public/private keys with a
C> restricted target command:
C> command="backup-service",no-pty,no-port-forwarding ssh-rsa BLAHBLAH...
If the box from which you're copying has a static hostname or IP
address, include that as well:
from="1.2.3.4",command="backup-service",no-pty,no-port-forwarding ...
--
Karl Vogel I don't speak for the USAF or my company
Why Trick or Treating is Better than Sex #10:
You are guaranteed to get at least a little something in the sack.
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20120214013943.97494b...@kev.msw.wpafb.af.mil
