[Systems] Separate backup users
Bernie Innocenti
bernie at codewiz.org
Sun Jan 31 13:06:12 EST 2010
These are the machines we're currently backing up:
aslo-db
aslo-proxy
aslo-web
beamrider
etherpad
housetree
lightwave
ole
pootle
sunjammer
treehouse
To add privilege separation for backups, I propose something like this
(untested):
for machine in `cat machines`; do
user="backup-$machine"
useradd -g sugarbackup $user;
cp -a /home/sugarbackup/.ssh /home/$user/.ssh
chown $user:sugarbackup /home/$user/.ssh
done
Then, I'll upate the host configs and shuffle around the backups.
How does it sound?
--
// Bernie Innocenti - http://codewiz.org/
\X/ Sugar Labs - http://sugarlabs.org/
More information about the Systems
mailing list