From owner-freebsd-questions Fri Jul 12 18:21:14 1996 Return-Path: owner-questions Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id SAA28711 for questions-outgoing; Fri, 12 Jul 1996 18:21:14 -0700 (PDT) Received: from twwells.com (twwells.com [199.79.159.1]) by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id SAA28705 for ; Fri, 12 Jul 1996 18:21:11 -0700 (PDT) Received: by twwells.com (Smail3.1.29.1 #8) id m0uetOG-0001ESC; Fri, 12 Jul 96 21:21 EDT To: freebsd-questions@freebsd.org From: bill@twwells.com (T. William Wells) Subject: looking for remote dump suggestion Date: 12 Jul 1996 21:20:58 -0400 Lines: 27 Message-ID: <4s6tlq$6dq@twwells.com> NNTP-Posting-Host: twwells.com Sender: owner-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I have two machines, ux1 and admin. Ux1 is a general machine and not considered especially secure. Admin is used only internally and we try to keep it relatively secure. Admin has a tape drive on it. Ux1 does not and will not; we want all that stuff on other machines than ux1. To back up ux1, I have to run dump on it, which does a remote login on admin, requiring a .rhosts on admin for ux1. If ux1 is root compromised, so also is admin, which kinda defeats the purpose.... Obviously, I could hack up the entire rlogin/rsh thing on admin so that root can _only_ run rmt and only with acceptable arguments. I don't like this, as it really doesn't solve the problem -- a cracker on ux1 could play havoc with backups for other machines. (Well, I suppose, I could make it time-dependent; that is, admin knows who should be doing what backup when and then reject improper requests based on that. "Robust" isn't a term I'd apply to that....) What I'd *really* like to do is to run dump on admin but have dump access ux1's file systems. However, for those same security reasons, I'm not going to run NFS. It looks like, short of a major programming project, I've painted myself into a corner and will just have to accept the lesser of several evils. Unless someone has a suggestion....?