diff options
author | Andrew Tridgell <tridge@samba.org> | 1998-05-15 05:37:34 +0000 |
---|---|---|
committer | Andrew Tridgell <tridge@samba.org> | 1998-05-15 05:37:34 +0000 |
commit | 4c3d16be50ebe52e51383e396a641448c4ba00c0 (patch) | |
tree | 60b4dada1699d99862f4dc5723254a1b2f0818a2 | |
parent | 715e72778416c14556cb60b7aeadfdaade13c581 (diff) | |
download | rsync-4c3d16be50ebe52e51383e396a641448c4ba00c0.tar.gz |
- added some notes about encryption and authentication to the man
pages
- documented the RSYNC_PASSWORD environment variable
-rw-r--r-- | rsync.yo | 5 | ||||
-rw-r--r-- | rsyncd.conf.yo | 17 |
2 files changed, 22 insertions, 0 deletions
@@ -139,6 +139,11 @@ itemize( list of accessible paths on the server will be shown. ) +Some paths on the remote server may require authentication. If so then +you will receive a password prompt when you connect. You can avoid the +password prompt by setting the environment variable RSYNC_PASSWORD to +the password you want to use. This may be useful when scripting rsync. + manpagesection(RUNNING AN RSYNC SERVER) An rsync server is configured using a config file which by default is diff --git a/rsyncd.conf.yo b/rsyncd.conf.yo index a7843670..8b741b0b 100644 --- a/rsyncd.conf.yo +++ b/rsyncd.conf.yo @@ -227,6 +227,23 @@ The default is no "hosts deny" option, which means all hosts can connect. enddit() +manpagesection(AUTHENTICATION STRENGTH) + +The authentication protocol used in rsync is a 128 bit MD4 based +challenge response system. Although I believe that no one has ever +demonstrated a brute-force break of this sort of system you should +realise that this is not a "military strength" authentication system. +It should be good enough for most purposes but if you want really top +quality security then I recommend that you run rsync over ssh. + +Also note that the rsync server protocol does not currently provide any +encryption of the data that is transferred over the link. Only +authentication is provided. Use ssh as the transport if you want +encryption. + +Future versions of rsync may support SSL for better authentication and +encryption, but that is still being investigated. + manpagesection(EXAMPLES) A simple rsyncd.conf file that allow anonymous rsync to a ftp area at |