Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 28 Nov 2001 21:38:20 -0800
From:      "Crist J. Clark" <cristjc@earthlink.net>
To:        Eric Anderson <anderson@centtech.com>
Cc:        Rasputin <rasputin@submonkey.net>, "Stephen T. Shipley" <steve@e-shipley.com>, security@FreeBSD.ORG
Subject:   Re: crypted remote backup
Message-ID:  <20011128213820.I3985@blossom.cjclark.org>
In-Reply-To: <3C04EEF9.D10C1B41@centtech.com>; from anderson@centtech.com on Wed, Nov 28, 2001 at 08:04:41AM -0600
References:  <E168Qts-000Bj5-00@rip.psg.com> <200111270147.fAR1lDk16602@e-shipley.com> <20011128101048.A25860@shikima.mine.nu> <3C04EEF9.D10C1B41@centtech.com>

next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Nov 28, 2001 at 08:04:41AM -0600, Eric Anderson wrote:
> What I have been doing is croning a script (as root) that
> tarballs the right stuff, and then scp the file as another
> user ("backup" in my case) to another box.  This way I'm not
> logging in as root to copy a file over the net, and I don't
> have to have sshd set up to allow root logins at all.

There is no reason that root on the local machine (the one with the
tarball) can't log into the remote box as another user.

  #!/bin/sh

  tar czf backup.tgz your_backup_files ..

  scp backup.tgz backup@remote-machine:backup.tgz

-- 
Crist J. Clark                     |     cjclark@alum.mit.edu
                                   |     cjclark@jhu.edu
http://people.freebsd.org/~cjc/    |     cjc@freebsd.org

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011128213820.I3985>