[Systems] Separate backup users

Bernie Innocenti bernie at codewiz.org
Sun Jan 31 13:06:12 EST 2010


These are the machines we're currently backing up:

aslo-db
aslo-proxy
aslo-web
beamrider
etherpad
housetree
lightwave
ole
pootle
sunjammer
treehouse

To add privilege separation for backups, I propose something like this
(untested):

 for machine in `cat machines`; do
     user="backup-$machine"
     useradd -g sugarbackup $user;
     cp -a /home/sugarbackup/.ssh /home/$user/.ssh
     chown $user:sugarbackup /home/$user/.ssh
 done

Then, I'll upate the host configs and shuffle around the backups.
How does it sound?

-- 
   // Bernie Innocenti - http://codewiz.org/
 \X/  Sugar Labs       - http://sugarlabs.org/



More information about the Systems mailing list