| imi | hi, what makes this motd-style output: https://ibb.co/d79hF2z | 12:29 |
|---|---|---|
| === elastic_dog is now known as Guest223 | ||
| konstruktoid | https://wiki.ubuntu.com/UpdateMotd imi | 12:56 |
| imi | thanks | 12:57 |
| foo | I've got 2 ubuntu systems, primary and secondary. I want secondary to backup primary. I was going to create ssh keys between secondary and primary and run rsync... but if I do that, I believe someone from secondary can ssh into primary. Is there a way to only enable rsync somehow and not ssh for a specific IP or such? | 15:05 |
| ahasenack | you can force a command in the authorized_keys for that key | 15:06 |
| foo | oh! Interesting, that might do it. This secondary system is at someone's property... it's probably fine but it would be a security risk. Granted, I guess someone would need to login to that system to do this so it may be fine | 15:07 |
| ahasenack | foo: check the sshd manpage, search for "AUTHORIZED_KEYS FILE FORMAT" | 15:07 |
| ahasenack | command="command" | 15:08 |
| ahasenack | Specifies that the command is executed whenever this key is used for authentication. The command supplied by the user (if any) is ignored. | 15:08 |
| foo | ahasenack: thank you! | 15:12 |
| foo | Testing now | 15:12 |
| foo | ahasenack: ok, it seems to sorta be working, I just got to get the rsync command to actually work. command="/usr/bin/rsync -azv /home",no-port-forwarding ssh-ed25519 AAAA... doesn't seem to be working "protocol version mismatch -- is your shell clean?" | 15:17 |
| foo | jjjj/w 2 | 15:25 |
| ahasenack | when rsync says that, it usually means there is "garbage" in the stream | 17:30 |
| ahasenack | this might be a bit more complicated than I thought | 17:44 |
| ahasenack | found this, maybe it helps: https://gist.github.com/jyap808/8700714 | 17:44 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!