[PLUG] secure methods for pushing content
gepr at tempusdictum.com
gepr at tempusdictum.com
Wed Jan 21 12:51:02 UTC 2004
Russell Senior writes:
> Hmm. How about email? Include a key somewhere in the message to use
> in filtering out the inevitable junk (or go the full-blown PGP/GPG
> route), have procmail (or equivalent) check the key and plop the
> content in the right spot.
Excellent idea! I hadn't even considered the immense powers of
procmail.
Chris Jantzen writes:
> Dunno about "recommended", but if you control the server you are
> pushing to, you could use "scponly"[1]. It allows you to scp to a
> target account without the account needing shell access. So, e.g., you
> set up an account called, say, "mover", set it up with the allowed RSA
> id's, set its shell to scponly, and then from your client station, you
> just do "scp *.html mover at server:public_html/" like normal. Getting
> the framework securely locked down requires attention to detail, but
> you get the gist.
>
> [1] http://www.sublimation.org/scponly/
This one would be perfect. The problem is that it's some non-computer
people (artists no less... the worst kind of user [grin]) who want to
do the updating. So, I'm worried about their ability to correctly
install and operate scp.
I'm going to give both of these a shot.
Thanks!
--
glen e. p. ropella =><= Hail Eris!
H: 503.630.4505 http://www.ropella.net/~gepr
M: 971.219.3846 http://www.tempusdictum.com
More information about the PLUG
mailing list