Displaying 1 result from an estimated 1 matches for "rtcve".
Did you mean:
rtce
2010 Apr 16
2
rsync over ssh - possible attack vectors
Hello everybody!
First my setup:
I connect from Debian Lenny to Ubuntu Karmic with a command like:
user1 at localserver:$ rsync -rtcve ssh user1 at remoteserver:/.../ /local/.../
(using default versions of ssh and rsync in the vendor repos,
ssh with password authentication)
As far as I understand if localserver got compromised an
attacker could read the password and then get full access
to remoteserver as user1.
SSH protects agai...