On Tue, Jun 08, 2004 at 04:17:06PM -0600, Tim Conway wrote: > [module] > path = /only/directory/you/want/to/give/them > use chroot = no > > user does > rsync server::module/../../../../../../../etc/security/passwd .
Rsync's sanitize function (which runs in the server process) would strip off all the ../ prefixes, turning this into "etc/security/passwd" (relative to the module's path). The sanitize function is used whenever a daemon's module doesn't have chroot enabled. ..wayne.. -- To unsubscribe or change options: http://lists.samba.org/mailman/listinfo/rsync Before posting, read: http://www.catb.org/~esr/faqs/smart-questions.html
