Faced with a hosting environment and security setup not entirely compatible to the software development and deployment workflows I’m used to, I looked to the awesome power of:
And the notes of “crashingdaily”: rsync and sudo over ssh.
I chose option two, as I don’t want to enable NOPASSWD in /etc/sudoers:
stty -echo; ssh server.remotehost.com sudo -v; stty echo rsync -a -e "ssh" --rsync-path="sudo rsync" email@example.com:/u02/data_pump_dir/ /archive
My solution is a bit different, whereas instead of sudo’ing to root, I’m sudo’ing to another user.
stty -echo; ssh server.remotehost.com cd / && sudo -v -u exampleuser; stty echo rsync -a -e "ssh" --rsync-path="cd / $$ sudo -u exampleuser rsync" firstname.lastname@example.org:/u02/data_pump_dir/ /archive
I am very pleased with this solution as it uses standard tools that are or can be installed quite easily on most servers powered by open source software, is encrypted, and radically speeds up my automated workflow. SWEET!