On Fri, 13 Apr 2007, Douglas Allan Tutty wrote:
In the past, to move config or script files from one box to another on
my home network I've used scp or rsync.
However, recent discussions on the list have pointed out that root login
with ssh should not be allowed.
How then to copy files that either only root can read or only root can
place, or that need owner/permissions to be unchanged?
I have sshd setup to only allow ssh based on pre-existing keys (no
password login allowed), and it only listens on the local interface, and
I've got shorewall running and doesn't allow ssh to/from the net.
What am I missing?
Thanks,
Doug.
While it may be frowned upon, you can always set
'PermitRootLogin without-password' in your sshd_config, and use key
authentication for root. In a secure environment, it works great, root
can login, but no passwords are allowed.
Also, depending on how many servers you have at home, or even at work
where this might be of more use, would be to set up cfengine. It can be
tricky at first getting it up and running but once you do, it's great.
You can control config, send out scripts, binaries, packages , or what
ever. It's really handy. http://www.debian-administration.org/ has some
great how-to's for it, amongst other things.
hth
Jeff
-+-
8 out of 10 Owners who Expressed a Preference said Their Cats Preferred Techno.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]