| 1 |
On Friday 14 September 2007 10:22, Peter Humphrey wrote: |
| 2 |
> Here's today's problem. |
| 3 |
> |
| 4 |
> I have a firewall-cum-gateway box between my tiny LAN and the Internet. The |
| 5 |
> gateway runs constantly, while the internal boxes run when needed (they're |
| 6 |
> my laptop and workstation). I want to use some space on the gateway to |
| 7 |
> store backups of the other boxes, and I'd like the backup to run unattended |
| 8 |
> at a time when the others are likely to be running. This seems not to be |
| 9 |
> possible without security risks. |
| 10 |
> |
| 11 |
> I've looked through all the Gentoo app-backup packages and found very few |
| 12 |
> that are suitable for use out of the box. Ssh figures in them all, which is |
| 13 |
> a good thing I suppose - except that I can't find a way to have ssh or scp |
| 14 |
> run unattended. |
| 15 |
|
| 16 |
WIth ssh you can use a public/private keypair to do the authentications. The |
| 17 |
sequence is something like |
| 18 |
|
| 19 |
1. Create a keypair on the CLIENT side of the connection |
| 20 |
2. Copy the PUBLIC part of the keypair from the client to the server and |
| 21 |
append to the file ~/.ssh/authorised_keys |
| 22 |
|
| 23 |
That's it... Note that directory permissions and ownerships are very much |
| 24 |
required to be correct. And also that if you're doing this as root @ the |
| 25 |
server (Root at the client is fine, in fact usually required :), then (A) you |
| 26 |
shouldn't be (B) you might need to enable root login on sshd (In sshd_config |
| 27 |
on the server side). |
| 28 |
|
| 29 |
Hamish. |
| 30 |
-- |
| 31 |
gentoo-amd64@g.o mailing list |
Archives