Is it possible to konfigure a passwordless authentifikation in kombination with ssh. for example: to a specific folder on a server named server1 has only user1 access. the user1 only exists on server1. server2 wants to replicate a foler from server1 to himself. the rsync process uses the rsync_user, which exists on both machines. the rsync process asks every time the job runs for the password for user1. How can i solve the problem. Is it possible to work with certificates? J?rg Bode T-Systems ITS GmbH. Service Line Systems Integration BC Digital Engineering Solutions Adresse: Fasanenweg 9, 70771 Leinfelden-Echterdingen Phone: +49 711 972-43165 Fax: +49 711 972-41931 E-Mail: Joerg.Bode@t-systems.com Internet: http://www.t-systems.com
Charles Whittington
2002-Nov-18 16:38 UTC
Rsync and ssh with passwordless authentifikation
I use ssh to tunnel the rsync ports but I think rsync ssh could use the same technique. You have to start an ssh agent which contains the passphrase in memory (and therefore is not on the disc anywhere). This is very well described in O'Reilly SSH The Secure Shell "Snail" book pages 374/375. Yours, Charles Whittington chw@scs.co.uk Managing Director Scientific Computing Service Ltd www.scs.co.uk Tel: +44 (0) 20 8241 0000 Mob: +44 (0)7836 270956 Bode, Joerg wrote: >Is it possible to konfigure a passwordless authentifikation in kombination >with ssh. > >for example: > >to a specific folder on a server named server1 has only user1 access. >the user1 only exists on server1. > >server2 wants to replicate a foler from server1 to himself. >the rsync process uses the rsync_user, which exists on both machines. > >the rsync process asks every time the job runs for the password for user1. > >How can i solve the problem. >Is it possible to work with certificates? > > > > > >J?rg Bode > >T-Systems ITS GmbH. > >Service Line Systems Integration >BC Digital Engineering Solutions > >Adresse: Fasanenweg 9, 70771 Leinfelden-Echterdingen >Phone: +49 711 972-43165 >Fax: +49 711 972-41931 >E-Mail: Joerg.Bode@t-systems.com >Internet: http://www.t-systems.com > > --
On Mon, 2002-11-18 16:13:51 +0100, Bode, Joerg <Joerg.Bode@t-systems.com> wrote in message <7893C3C38FD33E46A729C4B5505C8BDF04554D@dstrem07.ditscom.dsh.de>:> Is it possible to konfigure a passwordless authentifikation in kombination > with ssh.Yes, use rsakeys for it. man ssh-keygen. You can go w/out a passwd there... MfG, JBG -- Jan-Benedict Glaw jbglaw@lug-owl.de . +49-172-7608481 "Eine Freie Meinung in einem Freien Kopf | Gegen Zensur fuer einen Freien Staat voll Freier B?rger" | im Internet! Shell Script APT-Proxy: http://lug-owl.de/~jbglaw/software/ap2/ -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.samba.org/archive/rsync/attachments/20021118/0dbdda29/attachment.bin