[wellylug] Rsync

[David Antliff]

Quoting "E.Chalaron" <e.chalaron at xtra.co.nz>:
> I managed to use Rsync with SSH, but a/ it is an overkill and b/ running
> it in 
> a crontab may probably not work because of the pasword.

As mentioned, you can use passphrase-less keys, or you can use an agent. I use
keychain myself - manually entering the passphrase to unlock the private key at
login, and then my cronjob scripts do this:

source /home/dantliff/.keychain/<host>-sh

Now, even if they are running as root they can access the remote hosts without a
password as long as I have keychain up and running.

This brings up an interesting question - can anyone who has rw permissions to
/tmp/ssh-?????/agent.NNNN pretend to be me? The answer is yes, so do not use an
ssh key agent (like keychain) on a host that you do not trust. Anyone who can
get root can get your authentication.

-- 
David.