[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Jailkit-users] Another Question re: Apps that Require Root
|
From: |
Olivier Sessink |
|
Subject: |
Re: [Jailkit-users] Another Question re: Apps that Require Root |
|
Date: |
Wed, 12 Jul 2006 15:42:46 +0200 (CEST) |
|
User-agent: |
SquirrelMail/1.4.4 |
> We're trying to set up Linux servers to rsync files onto a backup
> server over an ssh tunnel. We currently have a jailed ssh account
> with rsync included in the jail. The problem we run into however is
> that this configuration does not preserve the Unix permissions of the
> files, but rather saves the files under the user & group names of the
> account on the backup server.
>
> I have been able to preserve permissions by running an rsync daemon as
> root without an ssh tunnel. (authentication is done through rsync
> rather than using ssh pub/private key files) Ssh tunneling is
> preferred for many reasons, but I can't think of a way of preserving
> transferred file permissions without compromising the integrity of the
> jail.
any process that runs with root permissions can escape from a chroot jail.
however, it will delay a hacker..
But if you anyway want to run rsyncd as root, simply use the 'chroot'
utility to change into the root before starting rsyncd.
regards,
Olivier