On Fri, 2007-04-13 at 21:41 -0400, Douglas Allan Tutty wrote: > In the past, to move config or script files from one box to another on > my home network I've used scp or rsync. > > However, recent discussions on the list have pointed out that root login > with ssh should not be allowed. > > How then to copy files that either only root can read or only root can > place, or that need owner/permissions to be unchanged? > > I have sshd setup to only allow ssh based on pre-existing keys (no > password login allowed), and it only listens on the local interface, and > I've got shorewall running and doesn't allow ssh to/from the net. > > What am I missing? I do it all the time... as root on the "target" machine and as myself on the "source" machine. Most configuration are readable by regular users. So for example I want to use "/etc/apt/sources.list" on the new machine, form a machine I already have everything set the way I like it. Here is what I do: ssh target_machine sudo su - cd /etc/apt/ scp greg@source_machine:/etc/apt/sources.list . blah_blah_blah output The only thing you have to allow is password login for your username... and you are good. -- greg, greg@gregfolkert.net Novell's Directory Services is a competitive product to Microsoft's Active Directory in much the same way that the Saturn V is a competitive product to those dinky little model rockets that kids light off down at the playfield. -- Thane Walkup
Attachment:
signature.asc
Description: This is a digitally signed message part