9/4/2023 0 Comments Arrsync run as root![]() ![]() Running as root but with restrictive SELinux rules should do the trick, but don't ask me what the rules would have to be.I'm not sure offhand if there's a way to make this work for backups. The bindfs solution from would let you read file contents but would mangle some metadata. ![]() Other Unix variants would need other solutions.) Pass -rsync-path=/usr/local/sbin/rsync-for-backup on the other side. Remember to keep the copy updated whenever rsync is updated. Setcap cap_dac_read_search+ep /usr/local/sbin/rsync-for-backup Posting Rules You may not post new threads. You can connect to rsyncd over an ssh tunnel too. Setfacl -m user:backupuser:rx /usr/local/sbin/rsync-for-backup rsyncd can run as root, and you can configure different modules (or shares or areas) using different accounts and also chroot can be used. I'm not very familiar with capabilities on Linux but I think this is how to set it up: cp /usr/bin/rsync /usr/local/sbin/rsync-for-backupĬhown root.root /usr/local/sbin/rsync-for-backupĬhmod 700 /usr/local/sbin/rsync-for-backup The user should have a full view of the filesystem (of course) and access to a copy of /usr/bin/rsync which has this capability. I have run the line in the shell many times, and it does its job. Then, if you can, another backup at an offsite location (maybe family or friends house) that you backup once every. You should have at least three though, One to work off/ store you images on, then a backup of that on another drive, I like to use arRsync for backups. Run the read side of rsync as a dedicated non-root user but with the capability CAP_DAC_READ_SEARCH. I dont know if its anything special to look after when adding lines to crontab. 10 reviewsof this app found across Reddit: Hard drives are your best bet. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |