I think ill use 5 :)
ill restrict root to do only tar and only from one IP.
How well secured is openssh ?
--------------------------
Canaan Surfing Ltd.
Internet Service Providers
Ben-Nes Michael - Manager
Tel: 972-4-6991122
http://sites.canaan.co.il
--------------------------
----- Original Message -----
From: "Tzafrir Cohen" <[EMAIL PROTECTED]>
To: "Ben-Nes Michael" <[EMAIL PROTECTED]>
Cc: "linux ILUG" <[EMAIL PROTECTED]>
Sent: Tuesday, July 03, 2001 1:53 PM
Subject: Re: Backup files with ordinary user.
> On Tue, 3 Jul 2001, Ben-Nes Michael wrote:
>
> > Hi All
> >
> > I want to backup my servers files using tar from a central Location.
> > To do this im using ssh with RSAauth to log from my backup server to all
the
> > other servers.
> >
> > I log using ordinary user to be on the safer side but then I can't read
some
> > directories ( for instance: /var/spool/croon - rwx______ )
> > I thought of few options:
> >
> > 1. adding the ordinary user to root Group
> > 2. add access to some directive like chgrp or chmod
> > 3. tar as root - I don't like this option
>
> 4. Backup as root locally to somewhere that is accessible by local
> oridinary user
>
> 5. Perform tar as root through ssh, but limit the connection using the
> commannd= option of the autorised_keys file
>
> --
> Tzafrir Cohen
> mailto:[EMAIL PROTECTED]
> http://www.technion.ac.il/~tzafrir
>
>
=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]
