Proper security for SCP/rsync only users

0xdragon

Hey guys,

So I have a fair bit of space that I want to use for SCP/rsync backup. I'll have multiple users (one user, and therefore one folder in /home for each machine I back up) on a single machine.

So, what sort of security should I use to deny shell access completely and only allow the uploading of files through rsync and SCP to backup/restore.

Thanks!

GoodHosting

@0xdragon said:
Hey guys,

So I have a fair bit of space that I want to use for SCP/rsync backup. I'll have multiple users (one user, and therefore one folder in /home for each machine I back up) on a single machine.

So, what sort of security should I use to deny shell access completely and only allow the uploading of files through rsync and SCP to backup/restore.

Thanks!

rsync unfortunately requires some sort of shell access,

SCP/SFTP however does not; as it is an SSH sub-module.

---

See: http://en.wikibooks.org/wiki/OpenSSH/Cookbook/SFTP

0xdragon

@GoodHosting said:

Thank you

GoodHosting

@0xdragon said:
Thank you

No problem, WikiBooks is my goto when I need a quick way to grasp a concept.

It has a lot of great examples too, just take it with a grain of salt since anyone can edit it.

chauffer

http://www.guyrutenberg.com/2014/01/14/restricting-ssh-access-to-rsync/

0xdragon

Done!

/close please