arrrsync

Release 0.1.0

Secure and restricted file copying and exploring with rsync over ssh.

Homepage Repository PyPI Python

Keywords
filetransfer rsync ssh secure restricted
License
MIT
Install
pip install arrrsync==0.1.0

Documentation

Arrrsync

Arrsync is a program designed to allow secure file transfer and directory exploration using ssh, whilst ensuring restricted execution possibilities and strict permission handling.

How it works

To enable arrrsync access on your server, you need to add this a piece of code to your authorized_keys file.

    command="/usr/bin/arrrsync-server -ro /srv/files/"`

It should look something like this afterwards:

    command="/usr/bin/arrrsync-server -ro /srv/files/" ssh-rsa AAAAB3NzaC1y ... vjEZqWX3w == nuke@Contamination

command is an ssh functionality which allows us to pipe the ssh command directly to another program, without opening a shell.

Let's take a closer look at the command: /usr/bin/arrrsync-server -r -w /srv/files/

arrrsync-server This is the program that interprets all incoming commands and only allows execution of those, that are allowed.
/srv/files/ specifies the directory the user is allowed to see. One will only be able to explore anything beneath it, there is no way to escape it.
-rw A normal read/write flag. By default there is only directory exploration allowed.

The client

The arrrsync client emulates a shell, but it's actually nothing else than a convenient way of exploring the remote directory with auto-completion and history.
Currently supported commands are ls, cd, get and push. get and push are aliases for rsync with some specific flags for file transfer.

The client uses paramiko for establishing a ssh session and tries to use as much configuration from your ~/.ssh/config as possible. The destination for downloaded or uploaded files can be specified with -t. If the flag isn't given your current working directory and the remote file root will be used.

Progress:

The commands get and push already work. But it only does with a ssh-agent and a key for the target server. I'm still looking for a convenient way to use the open paramiko ssh channel in combination with rsync.

##Completion: Completion as a really annoying topic! I implemented basic path completion, but there are so many ways for users to write faulty paths, that i stopped trying handling all of them.

Help or advice is really appreciated!
Feel free to contribute :)

Copyright © 2016 Arne Beer (@Nukesor)

Stats

Dependencies
0
Dependent packages
0
Dependent repositories
0
Total releases
2
Latest release
First release
Stars
2
Forks
3
Watchers
1
Contributors
1
Repository size
44.9 KB
SourceRank
2

Development practices

Source repo 2FA enabled
TEXT!
Package manager 2FA enabled
TEXT!
Is security responsive
TEXT!
Dependencies are managed
TEXT!
Issue-free release available
TEXT!
Succession plan available
TEXT!
Package manager 2FA enabled
TEXT!

The Tidelift Subscription provides access to a continuously curated stream of human-researched and maintainer-verified data on open source packages and their licenses, releases, vulnerabilities, and development practices.

Learn more

Releases

0.1.0
0.0.1

Contributors

Arne Christian Beer


See all contributors

Something wrong with this page? Make a suggestion

Export .ABOUT file for this package

Last synced: 2018-10-22 21:29:45 UTC

Login to resync this project