Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Bill_Ng
Collaborator

backing up configuration and pulling file to different location

All,

We’d like to setup a system where our MoveIT server will be able to pull our gateway config backups.  Is there a way for us to create a Local account with only access /var/log/CPbackup/backups?  If possible we would like restrict this account to only pull from the folder.  Which roles would be required to do so if possible to do so?

Thanks,

Bill

0 Kudos
Reply
4 Replies
Danny
Champion
Champion

First you'll want to create a scponly user.

scottikon
Contributor

Alternatively, could you write a script that scps files from /var/log/CPbackup/backups to your server and then crontab that script to run periodically?

Bill_Ng
Collaborator

Can this be isolated to  /var/log/CPbackup/backups folder?

0 Kudos
Reply
PhoneBoy
Admin
Admin

What you’re describing would be best achieved through use of a chroot jail.
While I’m not sure you can execute these exact steps on Gaia OS, this outlines the basic process.
Create the users and groups using standard Gaia OS commands using scponly shell. 

https://passingcuriosity.com/2014/openssh-restrict-to-sftp-chroot/