On 05/28/2015 04:40 PM, Suvayu Ali wrote:
Btw, to allow multiple commands from the same host, I guess I should have multiple lines for the same public key?
No. command="" is run instead of whatever was requested. It's not conditional. sshd isn't executing that command or allowing that key only when the command requested and command="" match. Nothing would cause sshd to prefer a command="" that matched the original.
If you want to allow multiple paths, you could use individual keys for each one, and the correct command for each key in the fire.
I use the script provided. Put it in /usr/local/bin and use command="/usr/local/bin/validate-rsync-command.sh" ...
Also, any ideas what should be the command to allow rsnapshot backups?
rsync is the only command that rsnapshot will call on the source system.
Attachment:
validate-rsync-cmd.sh
Description: application/shellscript
-- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines Have a question? Ask away: http://ask.fedoraproject.org
