[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Question about ssh passwords and backup software

>> Alex Mestiashvili <alex@biotec.tu-dresden.de> wrote:

A> I would simply use a passwordless ssh-key with a wrapper on the remote
A> side which allows to run only the backup command .

>> On Mon, 13 Feb 2012 18:51:26 +0000, 
>> Chris Davies <chris-usenet@roaima.co.uk> said:

C> I'd agree with this, but use passwordless public/private keys with a
C> restricted target command:
C>  command="backup-service",no-pty,no-port-forwarding ssh-rsa BLAHBLAH...

   If the box from which you're copying has a static hostname or IP
   address, include that as well:

    from="",command="backup-service",no-pty,no-port-forwarding ...

Karl Vogel                      I don't speak for the USAF or my company

Why Trick or Treating is Better than Sex #10:
  You are guaranteed to get at least a little something in the sack.

Reply to: