3
I currently have a back-up script running via cron. It basically is a few rsync commands stringed together.
For my main shell logins I have ssh keys with passphrases, but because of the automated nature of the script, it uses a key without a passphrase. As I understand it, anyone that gets access to this passphrase-less key would have the same amount of access priviledges as myself logging in via my key with passphrase.
So should I create a new user, that only runs the script? If so, is it possible to restrict this user to only cron jobs or certain commands?
Thanks, that's great, exactly what I was looking for. It's a surprise that it isn't often mentioned in ssh key set-up guides especially for passphrase-less automated tasks. – blndcat – 2012-06-18T06:03:14.533