[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [rdiff-backup-users] Security problem with rdiff over ssh?

From: covici
Subject: Re: [rdiff-backup-users] Security problem with rdiff over ssh?
Date: Thu, 27 May 2010 20:36:38 -0400

set root login to without-password and this should solve your problem --
the keys should work, but passwords will not.

feffer <address@hidden> wrote:

> I'm running rdiff-backup over ssh with an unattended cron script using an ssh 
> key-pair proceedure described here 
> (http://arctic.org/~dean/rdiff-backup/unattended.html). My script works fine, 
> but I'm wondering about security. It is generally considered a bad idea to 
> allow root login to ssh, but I cannot preserve ownership and permissions if I 
> disallow root login. 
> Is this really a problem since my machines are behind a router on my LAN? The 
> ssh key-pairs are not password protected, but isn't the only real security 
> threat losing the private key? 
> Is there a way to lock this down a bit more while still enabling unattended 
> backups? 
> thx,
> feffer
> +----------------------------------------------------------------------
> |This was sent by address@hidden via Backup Central.
> |Forward SPAM to address@hidden
> +----------------------------------------------------------------------
> _______________________________________________
> rdiff-backup-users mailing list at address@hidden
> http://lists.nongnu.org/mailman/listinfo/rdiff-backup-users
> Wiki URL: http://rdiff-backup.solutionsfirst.com.au/index.php/RdiffBackupWiki

Your life is like a penny.  You're going to lose it.  The question is:
How do
you spend it?

         John Covici

reply via email to

[Prev in Thread] Current Thread [Next in Thread]