Re: Rsync sobre SSH (forced-commands-only)

To: debian-user-spanish@lists.debian.org
Subject: Re: Rsync sobre SSH (forced-commands-only)
From: Francisco SG <franciscosg@gmail.com>
Date: Tue, 11 Feb 2014 10:17:14 +0100
Message-id: <[🔎] CAALjaLW-eOrBmzqja=43Ogy2GCdJbZaX9ta0CTPY39D=4EV_iA@mail.gmail.com>
In-reply-to: <[🔎] CAALjaLV85Bc=r6YfJjvzmvWtvfTCw_2aF=YYzFECCPE0awBx_w@mail.gmail.com>
References: <[🔎] 52F7BF16.4050406@bersol.info> <[🔎] CAALjaLVvCVyFyRoGO_FUYL_3UG1fTg7c0D7MkBQGwaYD-o=NYg@mail.gmail.com> <[🔎] 52F932ED.6020208@bersol.info> <[🔎] CAALjaLV85Bc=r6YfJjvzmvWtvfTCw_2aF=YYzFECCPE0awBx_w@mail.gmail.com>

Una nota si tiras por el script shell....

>
> Un ejemplo sencillito:
> #!/bin/sh
> case "$SSH_ORIGINAL_COMMAND" in
>     "ls*")
>         $SSH_ORIGINAL_COMMAND
>         ;;
>     "free*")
>         free -m
>         ;;
>     *)
>         echo "Sólo puedes ejecutar ls y free"
>         exit 1
>         ;;
> esac
>

La variable SSH_ORIGINAL_COMMAND puede tener múltiples comandos, así
que hay que filtrar sólo el rsync... ejemplo de ejecución dañina:
"rsync [montón de parámetros] ; shutdown -h now" <---- Oooops

Aquí tienes un ejemplo con el comando saneado en los comentarios:
http://binblog.info/2008/10/20/openssh-going-flexible-with-forced-commands/


Un saludo

Reply to:

References:
- Rsync sobre SSH (forced-commands-only)
  - From: Alberto <alberto@bersol.info>
- Re: Rsync sobre SSH (forced-commands-only)
  - From: Francisco SG <franciscosg@gmail.com>
- Re: Rsync sobre SSH (forced-commands-only)
  - From: Alberto <alberto@bersol.info>
- Re: Rsync sobre SSH (forced-commands-only)
  - From: Francisco SG <franciscosg@gmail.com>

Prev by Date: Re: [OT] Telegram
Next by Date: Re: [OT] Telegram
Previous by thread: Re: Rsync sobre SSH (forced-commands-only)
Next by thread: Re: Rsync sobre SSH (forced-commands-only)
Index(es):
- Date
- Thread