Thanks Ian. I was surprised the question seeded the discussion
that it did. You are "spot on" below on what I'm trying to do, and have
used
the method you describe below to basically emulate an rsh command. But
either my question was too vague or I'm missing something basic.
What you discribed
chroot does nothing to hide uid 0. It makes a subdirectory appear as /, so you can
give somebody access to /publicdirectory, and to them it's /... they can't cd out of
that heirarchy to the rest of your filesystem. No hack can give them the plain text
of /etc/shadow (or /etc/security/passwd,
First: putting ssh inside rsync has no advantage, concerning password access. If you
script in a password for rsync, that's no better than doing the same for ssh.
If what you really want is to have secure access that is allowed only to rsync, you're
in luck.
use passwordless ssh, and modify yo
