secure remote backups

Ben Escoto
Wed, 21 Nov 2001 13:26:13 -0800

Content-Type: text/plain; charset=us-ascii

>>>>> "MW" == mike wolman <>
>>>>> wrote the following on Wed, 21 Nov 2001 14:41:15 +0000 (GMT)

  MW> Hi Ben, I have tried your suggestion however when i try to ssh
  MW> and su i get the following problem from su: standard in must be
  MW> a tty

  MW> I have had a hunt for anybody else trying to run su from ssh but
  MW> have not found a solution.

Hmm, I think something like the ssh-then-su method still could work,
but you would need some more complicated wrapper...  Ok, how about
these suggestions instead:

1.  Suid script that runs rdiff-backup --server.  I think you would
    have to create another user id, and make sure only that user has
    access to the script.

2.  Instead of running rdiff-backup on machine A and trying to get it
    to log in to machine B which doesn't accept ssh root logins, run
    rdiff-backup on machine B (after you 'su' normally) with machine A
    being remote.

3.  Reconfigure ssh on the remote machine to accept root logins.  To
    do this, make sure the line

PermitRootLogin yes

    appears in your sshd configuration file, usually at

Anything here look promising?

Ben Escoto

Content-Type: application/pgp-signature

Version: GnuPG v1.0.4 (GNU/Linux)
Comment: Exmh version 2.2 06/23/2000