|
| From: | dean gaudet |
| Subject: | [Rdiff-backup-bugs] [bug #16897] Security Violation on first increment while using restrict-update-only |
| Date: | Sat, 12 Jan 2008 04:19:35 +0000 |
| User-agent: | Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.11) Gecko/20071127 Firefox/2.0.0.11 |
Follow-up Comment #5, bug #16897 (project rdiff-backup):
more thoughts on this... if i were to try to do a push backup system where
all the clients shared a common private key i think what i'd do on the server
is have the .ssh/authorized_keys command="foo" invoke a script of my own
(you'd probably need a remote-schema change too).
the script on the server would validate the SSH_CLIENT env var contains a
client which is supposed to be backed up, and then mkdir /mnt/backups/$IP as
necessary and finally exec rdiff-backup --server --restrict-update-only
/mnt/backups/$IP.
this way the clients can't trash each other easily (assuming rdiff-backup
--restrict-* are actually secure :)
but hey... go ahead and add os.mkdir i guess.
-dean
_______________________________________________________
Reply to this item at:
<http://savannah.nongnu.org/bugs/?16897>
_______________________________________________
Message sent via/by Savannah
http://savannah.nongnu.org/
| [Prev in Thread] | Current Thread | [Next in Thread] |