Skip to content
This repository has been archived by the owner on Sep 26, 2021. It is now read-only.
/ Arrrsync Public archive

Secure rsync and file exploration in python. An extra `r` for extra security.

License

MIT license
2 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Nukesor/Arrrsync

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

53 Commits

client

client

 
 

commands

commands

 
 

server

server

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

Makefile

Makefile

 
 

README.md

README.md

 
 

setup.cfg

setup.cfg

 
 

setup.py

setup.py

 
 

Repository files navigation

Arrrsync

Arrsync is a program designed to allow secure file transfer and directory exploration using ssh, whilst ensuring restricted execution possibilities and strict permission handling.

How it works

To enable arrrsync access on your server, you need to add this a piece of code to your authorized_keys file.

    command="/usr/bin/arrrsync-server -ro /srv/files/"`

It should look something like this afterwards:

    command="/usr/bin/arrrsync-server -ro /srv/files/" ssh-rsa AAAAB3NzaC1y ... vjEZqWX3w == nuke@Contamination

command is an ssh functionality which allows us to pipe the ssh command directly to another program, without opening a shell.

Let's take a closer look at the command: /usr/bin/arrrsync-server -r -w /srv/files/

arrrsync-server This is the program that interprets all incoming commands and only allows execution of those, that are allowed.
/srv/files/ specifies the directory the user is allowed to see. One will only be able to explore anything beneath it, there is no way to escape it.
-rw A normal read/write flag. By default there is only directory exploration allowed.

The client

The arrrsync client emulates a shell, but it's actually nothing else than a convenient way of exploring the remote directory with auto-completion and history.
Currently supported commands are ls, cd, get and push. get and push are aliases for rsync with some specific flags for file transfer.

The client uses paramiko for establishing a ssh session and tries to use as much configuration from your ~/.ssh/config as possible. The destination for downloaded or uploaded files can be specified with -t. If the flag isn't given your current working directory and the remote file root will be used.

Progress:

The commands get and push already work. But it only does with a ssh-agent and a key for the target server. I'm still looking for a convenient way to use the open paramiko ssh channel in combination with rsync.

##Completion: Completion as a really annoying topic! I implemented basic path completion, but there are so many ways for users to write faulty paths, that i stopped trying handling all of them.

Help or advice is really appreciated!
Feel free to contribute :)

Copyright © 2016 Arne Beer (@Nukesor)

About

Secure rsync and file exploration in python. An extra `r` for extra security.

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

3 watching

Forks

3 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages