This shows you the differences between two versions of the page.
Next revision Both sides next revision | |||
infrastructure:distfiles [2014-03-19 22:29] mmazur created |
infrastructure:distfiles [2014-03-31 05:14] draenog [Dropin] |
||
---|---|---|---|
Line 4: | Line 4: | ||
* Uploading to dropin can be done using ''scp'' to either dropin@dropin.pld-linux.org or distfiles@dropin.pld-linux.org. | * Uploading to dropin can be done using ''scp'' to either dropin@dropin.pld-linux.org or distfiles@dropin.pld-linux.org. | ||
- | * SSH keys are copied from the git@ ''authorized_keys'' to the dropin@ ''authorized_keys'' using a gitolite hook (''~git/.gitolite/hooks/gitolite-admin/post-update.secondary'') | + | * SSH keys are copied from the git@ ''authorized_keys'' to the dropin@ ''authorized_keys'' using a gitolite hook (''~git/.gitolite/hooks/gitolite-admin/post-update.secondary''), therefore it has be writable by git user. |
* Openssh is configured to chroot both accounts into ''/var/lib/dropin'' and then run ''rssh'' which is configured to only allow ''scp'' transfers. | * Openssh is configured to chroot both accounts into ''/var/lib/dropin'' and then run ''rssh'' which is configured to only allow ''scp'' transfers. | ||
* There's a minimal env in ''/var/lib/dropin'' that contains ''rssh'' and ''scp''. | * There's a minimal env in ''/var/lib/dropin'' that contains ''rssh'' and ''scp''. |