Hello, Kevin! Thank You very much for the reply. ??, 24 ???. 2022 ?. ? 19:00, Kevin Korb via rsync <rsync at lists.samba.org>:> I think you are thinking too much of rsync here. Rsync groups are the > same as users they just have an @ in front of the name. If you want > UNIX style users and groups then use rsync over ssh and get the bonus of > ssh's authentication as well as not needing an rsyncd.conf file at all. >Well, actually, I wouldn't like to do anything with system users and groups, but it would be nice to have virtual users and groups, which are available for rsyncd only. Is it possible? Or maybe there is an opportunity to use external authentication mechanisms or some kind of modules, etc?> On 6/24/22 11:13, Alexander Gribanov via rsync wrote: > > Hello everybody! > > > > I'm trying to configure rsync-server, but still I can't figure out how > > to manage users and groups. > > > > I read in the documentation that I could use both, but there is nothing > > about how to add a user into a particular group... > > > > Why am I doing this? > > 1. I have about 10 modules, which are different and must be available > > for some users and not available for other users. > > 2. There are many users, new users are arriving, some old users are > > going out, so it would be easier to assign group permissions to the > > modules and then manage just user-group relations, but I couldn't find > > that in documentation, nor examples on the internet... > > > > Could anybody please give me a hint or a clue about how to assign a user > > to a particular group? I'm sure that this should work, but I can't find > > it out myself :( > > > > Thank you very much. > > > > -- > ~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._., > Kevin Korb Phone: (407) 252-6853 > Systems Administrator Internet: > FutureQuest, Inc. Kevin at FutureQuest.net (work) > Orlando, Florida kmk at sanitarium.net (personal) > Web page: https://sanitarium.net/ > PGP public key available on web site. > ~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._., >-------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.samba.org/pipermail/rsync/attachments/20220624/636c460e/attachment.htm>
Nope. Rsync groups are not groups of users they are just @users with their own password. I believe the @ just designates that you intend multiple people to have that password and use that username. On 6/24/22 12:34, Alexander Gribanov via rsync wrote:> Hello, Kevin! Thank You very much for the reply. > > ??, 24 ???. 2022 ?. ? 19:00, Kevin Korb via rsync <rsync at lists.samba.org > <mailto:rsync at lists.samba.org>>: > > I think you are thinking too much of rsync here.? Rsync groups are the > same as users they just have an @ in front of the name.? If you want > UNIX style users and groups then use rsync over ssh and get the > bonus of > ssh's authentication as well as not needing an rsyncd.conf file at all. > > > Well, actually, I wouldn't like to do anything with system users and groups, > but it would be nice to have virtual users and groups, which are > available for rsyncd only. > Is it possible? > > Or maybe there is an opportunity to use external authentication > mechanisms or some kind of modules, etc? > > On 6/24/22 11:13, Alexander Gribanov via rsync wrote: > > Hello everybody! > > > > I'm trying to configure rsync-server, but still I can't figure > out how > > to manage users and groups. > > > > I read in the documentation that I could use both, but there is > nothing > > about how to add a user into a particular group... > > > > Why am I doing this? > > 1. I have about 10 modules, which are different and must be > available > > for some users and not available for other users. > > 2. There are many users, new users are arriving, some old users are > > going out, so it would be easier to assign group permissions to the > > modules and then manage just user-group relations, but I couldn't > find > > that in documentation, nor examples on the internet... > > > > Could anybody please give me a hint or a clue about how to assign > a user > > to a particular group? I'm sure that this should work, but I > can't find > > it out myself :( > > > > Thank you very much. > > > > -- > ~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._., > ? ? ? ? Kevin Korb? ? ? ? ? ? ? ? ? ? ? Phone:? ? (407) 252-6853 > ? ? ? ? Systems Administrator? ? ? ? ? ?Internet: > ? ? ? ? FutureQuest, Inc.? ? ? ? ? ? ? ?Kevin at FutureQuest.net? (work) > ? ? ? ? Orlando, Florida kmk at sanitarium.net > <mailto:kmk at sanitarium.net> (personal) > ? ? ? ? Web page: https://sanitarium.net/ <https://sanitarium.net/> > ? ? ? ? PGP public key available on web site. > ~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._., > >-- ~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._., Kevin Korb Phone: (407) 252-6853 Systems Administrator Internet: FutureQuest, Inc. Kevin at FutureQuest.net (work) Orlando, Florida kmk at sanitarium.net (personal) Web page: https://sanitarium.net/ PGP public key available on web site. ~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,
On Fri 24 Jun 2022, Kevin Korb via rsync wrote:> Nope. Rsync groups are not groups of users they are just @users with their > own password. I believe the @ just designates that you intend multiple > people to have that password and use that username.I think I have to disagree here. The manpage for rsyncd.conf states: In addition to username matching, you can specify groupname matching via a '@' prefix. When using groupname matching, the authenticating username must be a real user on the system, or it will be assumed to be a member of no groups. For example, specifying "@rsync" will match the authenticating user if the named user is a member of the rsync group. So the user used by the client rsync should exist on the system and belong to the specified system group for any permissions that are given to that group in rsyncd.conf to be applicable. The password will still need to be set in the secrets file, no system passwords are used. Check the rsyncd.conf manpage, heading "auth users". Paul