From 5f7ce2041c2a3514c6c1bad903c8dffb9bca2467 Mon Sep 17 00:00:00 2001 From: David Dykstra Date: Fri, 25 Feb 2000 17:02:45 +0000 Subject: [PATCH] Describe symbolic link handling when writing to a "use chroot = no" module. --- rsyncd.conf.yo | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/rsyncd.conf.yo b/rsyncd.conf.yo index 3f6e01e4..14e4757a 100644 --- a/rsyncd.conf.yo +++ b/rsyncd.conf.yo @@ -128,8 +128,11 @@ dit(bf(use chroot)) If "use chroot" is true, the rsync server will chroot to the "path" before starting the file transfer with the client. This has the advantage of extra protection against possible implementation security holes, but it has the disadvantages of requiring super-user privileges and -of not being able to follow symbolic links outside of the new root path. -The default is to use chroot. +of not being able to follow symbolic links outside of the new root path +when reading. For writing when "use chroot" is false, for security reasons +symlinks may only be relative paths pointing to other files within the +root path, and leading slashes are removed from absolute paths. The +default for "use chroot" is true. dit(bf(max connections)) The "max connections" option allows you to specify the maximum number of simultaneous connections you will allow -- 2.34.1