Skip to content
/ ssh-resumable-upload Public

A Docker container which helps to set up a rrsync-only Dropbear server

1 star 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

weijiekoh/ssh-resumable-upload

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 

Repository files navigation

This is a Docker container which helps to set up a restricted-rsync-only server on a remote host so you can let third parties upload large files without giving them full shell access. It supports resumable uploads.

We assue that each user has a unique ID, such as 0001. This can be any string.

The user will be able to rsync a file from their local machine into the server, and the file will stored in /path/to/repo/uploads/USER_ID/FILENAME.

First, clone this repository on your desired remote server:

git clone https://github.com/weijiekoh/ssh-resumable-upload.git && \
cd ssh-resumable-upload

Next, create an uploads directory:

mkdir uploads

Create an authorized_keys file which should be configured as such:

command="DIR=uploads/USER_0_ID && mkdir -p ~/$DIR && rrsync -wo ~/$DIR",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty ssh-rsa USER_0_RSA_PUBKEY
command="DIR=uploads/USER_1_ID && mkdir -p ~/$DIR && rrsync -wo ~/$DIR",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty ssh-rsa USER_1_RSA_PUBKEY

For each USER_0_ID, USER_1_ID, and so on.

For example:

command="DIR=uploads/0001 && mkdir -p $DIR && rrsync -wo ~/$DIR",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty ssh-rsa xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx [email protected]

Run the Docker container:

docker-compose build && \
docker-compose up -d

We recommend that you configure.ssh/config with an alias to the host, as such:

Host host_alias
    HostName IP_ADDRESS
    Port 2233
    User dropbear
    IdentityFile /path/to/ssh/id_rsa

This allows your rsync command to be less complex. The client can now upload files to your remote server as such:

rsync --partial -e 'ssh -i /path/to/ssh/id_rsa' -av /path/to/file  host_alias:

and file will show up in /path/to/repo/uploads/USER_ID/.

Alternatively:

rsync --partial -e 'ssh -i /path/to/ssh/id_rsa -p 2233' -av /path/to/file  dropbear@IP_ADDRESS:../

To change the port from 2233 to something else, edit Dockerfile and docker-compose.yml.

About

A Docker container which helps to set up a rrsync-only Dropbear server

Resources

Readme
Activity

Stars

1 star

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages