LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 10-04-2005, 12:22 PM   #1
The_JinJ
Member
 
Registered: Apr 2004
Location: Scotland
Distribution: Suse, OpenWRT
Posts: 299

Rep: Reputation: 30
Lightbulb Is this setup reasonably secure?


Just want your opinion on this setup I have for backing up my workstation to server -

I run Rsync on the workstation and connect via SSH to a local copy of Rsync on the server. I don't run it in Daemon mode as it is triggered via a shell commend. The server side Rsync has owner/group of the user who has rights to the folder where the backup will go and nothing else.
I use SSH keys and ssh-agent to keep the password so it connects without prompting for a password.

So I ssh as user1 to remote copy of rsync in user1 home directory.
rsync--ssh(user1)-->user1 dir-->rsync (as user1)

Is this approach reasonably secure? (as long as the key on the workstation is safe)

Hope that made sense to someone
 
Old 10-04-2005, 01:02 PM   #2
Matir
LQ Guru
 
Registered: Nov 2004
Location: San Jose, CA
Distribution: Debian, Arch
Posts: 8,507

Rep: Reputation: 128Reputation: 128
That's a classical use of SSH keys and rsync. I do it all the time and feel it secure. Do make sure your SSH is using SSHv2.
 
Old 10-04-2005, 01:43 PM   #3
The_JinJ
Member
 
Registered: Apr 2004
Location: Scotland
Distribution: Suse, OpenWRT
Posts: 299

Original Poster
Rep: Reputation: 30
Quote:
Originally posted by Matir
That's a classical use of SSH keys and rsync. I do it all the time and feel it secure. Do make sure your SSH is using SSHv2.
Thanks Matir - I do use SSH2
Do you use Rsync in Daemon mode? I have decided to use it as a standalone launched via SSH (instead of Daemon or Inetd) - mainly so it never runs as root. Doing it like this means you don't get logging options unfortunately.
 
Old 10-04-2005, 08:34 PM   #4
Matir
LQ Guru
 
Registered: Nov 2004
Location: San Jose, CA
Distribution: Debian, Arch
Posts: 8,507

Rep: Reputation: 128Reputation: 128
I use rsync over ssh. As in "rsync -ave ssh directory/ user@server:newdirectory".
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
setup a secure proxy darkleaf Linux - Security 2 07-13-2005 07:58 PM
Setup secure CUPS on network cwin Linux - Software 0 04-11-2005 12:11 PM
The correct/secure way to setup a webserver? ]SK[ Linux - Software 5 02-11-2005 02:34 AM
Secure Mail Server Setup djkene70 Linux - Networking 3 10-14-2003 01:29 PM
Trying to setup a secure webserver pyrombca Linux - Software 0 09-02-2003 05:04 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 07:37 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration