Copiying /etc/shadow with sudo and rsync

Discussion in 'Technical' started by jnsc, Nov 16, 2009.

  1. jnsc

    jnsc rotaredoM Moderator


    I have a little problem, and at the first look it might look easy, but it's not, or at least I did not find an easy solution. I have 2 server, which must rsync some files, including /etc/passwd and /etc/shadow. Everything was working fine until we decided to forbid rootlogin on the server, and use sudo for the sync. My problem is that /etc/shadow has a file permission of 400, so the non privilegd user can not read it, so I can use a command like this
    rsync  --rsync-path='sudo rsync' --rsh='/usr/bin/ssh -x' --archive /etc/shadow [email protected]:/etc/shadow
    because user is not authorised to read /etc/shadow, so I tried this
    rsync  --rsync-path='sudo rsync' --rsh='/usr/bin/ssh -x' --archive [email protected]:/etc/shadow [email protected]:/etc/shadow
    so that it uses sudo twice, but I get this error
    rsync: mkstemp "/home/user/[email protected]:/etc/.shadow.wBWPkX" failed: No such file or directory (2)
    rsync error: some files could not be transferred (code 23) at main.c(1146)
    So does somebody know an easy and Secure solution?

  2. falko

    falko Super Moderator ISPConfig Developer

    No, unfortunately not. :(
  3. jnsc

    jnsc rotaredoM Moderator

    Thanks falko for your reply, as it was not an easy question, I was not expecting a magical solution, but I tough that maybe somebody already had this problem. Maybe I will try to ask on a sudo mailing list.

Share This Page