vy32

Asked: 2012-11-14 13:56:46 +0800 CST2012-11-14 13:56:46 +0800 CST 2012-11-14 13:56:46 +0800 CST

A user that can read any Linux file?

We would like to have a network backup system with a user that can read any file on our servers but not write any file. Is there any way to do this under Linux (and specifically Fedora)? We would rather not have a remote root that can erase any file...

2 Answers

Voted

Best Answer

Sven
2012-11-14T14:02:45+08:002012-11-14T14:02:45+08:00
If you export your filesystem via NFS and the ro and no_root_squash option, it can't be modified on the remote system.
6
wzzrd
2012-11-14T14:02:48+08:002012-11-14T14:02:48+08:00
Short answer: no

Long answer: in theory, you could set an ACL over your whole filesystem that would allow user X to read everything. But that's pretty tedious. From what I can tell, must backup software runs as root for precisely this reason.
2

A user that can read any Linux file?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?