Helvede

1 post1 participant1 post today

Thorsten Leemhuis (acct. 2/4)'"Apple decided that while it could comply with the terms of GPLv2 license with regards to <a href="https://social.linux.pizza/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a> 2.x, it could not comply with the terms of GPLv3 license with regards to rsync 3.x. […] Now with macOS Sequoia, Apple has replaced rsync 2.6.9 with openrsync, which is […] licensed under the BSD family of licenses, […]"<a href="https://derflounder.wordpress.com/2025/04/06/rsync-replaced-with-openrsync-on-macos-sequoia/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://derflounder.wordpress.com/2025/04/06/rsync-replaced-with-openrsync-on-macos-sequoia/</a>

Michael Stapelberg 🐧🐹😺Starting with version 0.2.7, my <a href="https://github.com/gokrazy/rsync" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/gokrazy/rsync</a> uses the Landlock Linux kernel security module to restrict file system access to the transfer source/destination as a defense-in-depth measure! 🎉This is similar to OpenBSD’s unveil(2).<a href="https://mas.to/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://mas.to/tags/golang" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#golang</a> <a href="https://mas.to/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a>

Quincystelle mir gerade vor, <a href="https://chaos.social/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a> hätte gen ai eingebaut und würde nur das kopieren, was es will und wohin es willund mit zufälligen veränderungen

Quincywas würde ich nur ohne <a href="https://chaos.social/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a> machen.

Pete Prodoehl 🍕I wrote up a post about how I get around silly macOS security stuff to run rsync jobs from cron by embedding shell commands inside of Automator applications...➡️ <a href="https://rasterweb.net/raster/2025/03/17/scheduling-rsync-in-macos/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://rasterweb.net/raster/2025/03/17/scheduling-rsync-in-macos/</a><a href="https://mastodon.social/tags/macos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#macos</a> <a href="https://mastodon.social/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a> <a href="https://mastodon.social/tags/backup" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#backup</a>

Pete Prodoehl 🍕I forgot you can't just run a shell script with rsync calls via cron on macOS because of... security. I think my workaround will do though.I write a shell script and then create an Automator application that calls the shell script. I then add a cron job to open the application. I need to check if it runs when the screen is locked. I'm pretty sure it does but I will test again.<a href="https://mastodon.social/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a> <a href="https://mastodon.social/tags/cron" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cron</a> <a href="https://mastodon.social/tags/macOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#macOS</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a>

Michael Stapelberg 🐧🐹😺Did you know? My <a href="https://github.com/gokrazy/rsync" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/gokrazy/rsync</a> module can be used as a library — both its client and its server accept the io.ReadWriter interface type :) To demonstrate that this works and to show the flexibility this enables, I put together an rsync-over-gRPC demo:<a href="https://github.com/stapelberg/rsync-over-grpc" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/stapelberg/rsync-over-grpc</a>To be clear, this isn’t starting the samba rsync program in the background or anything like that; it’s a 100% Go implementation; memory-safe and fast! Standalone and cross-architecture! 🚀<a href="https://mas.to/tags/golang" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#golang</a> <a href="https://mas.to/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a> <a href="https://mas.to/tags/grpc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#grpc</a>

Michael Stapelberg 🐧🐹😺The rsync manpage claims there are two different ways to use rsync, and then explains that there are two exceptions.After studying the code, I think it’s clearer to think about 4 ways to use rsync, as I try to show in this diagram. <a href="https://mas.to/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a>

Pete Prodoehl 🍕What backup system for Linux is most like Apple's Time Machine backup?I've seen a few posts about using rsync for a "Time Machine" like experience, but I'm wondering what people actually use.<a href="https://mastodon.social/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://mastodon.social/tags/macOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#macOS</a> <a href="https://mastodon.social/tags/apple" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#apple</a> <a href="https://mastodon.social/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a>

Matthew Slowe… obligatory thankyou to <a href="https://infosec.exchange/tags/restic" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#restic</a> and <a href="https://infosec.exchange/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a>.net for my backups (which just worked!)

dr 🛠️🛰️📡🎧:blobfoxcomputer:Even Stupider <a href="https://hachyderm.io/tags/SSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSH</a> TrickI don't want to poison my day-to-day with an always-onb config file. So make one locally. But then you also have to have the ProxyCommands refer to that config file!cat config Host B ProxyCommand ssh -F config -W %h:%p -A D Host D ProxyCommand ssh -F config -W %h:%p -A Crsync -e "ssh -F config" B:$SRC $DESTHere we are pretending A can only reach C directly. So to get to B, we proxy through D. But we don't know how to get to D either, so we proxy through C, which we can get to.Now I have two ways ("three, actually" if you count an Evaluation Hell version that explicitly nests ProxyCommands on the <a href="https://hachyderm.io/tags/cli" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cli</a>)<a href="https://hachyderm.io/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://hachyderm.io/tags/bash" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bash</a> <a href="https://hachyderm.io/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a>

dr 🛠️🛰️📡🎧:blobfoxcomputer:Stupid <a href="https://hachyderm.io/tags/SSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSH</a> Trick that comes up surprisingly oftenI'm on machine A and I want to get files off machine B. But I have to hop through *both* C and D to get there. That is, A->C->D->B. It's also often the case that my username differs on the different machines and that the version of ssh does as well.This appears to be the the simplest way to do this rsync -avz -e "ssh -J $D,$C" $B:$SRC $DESTI'm not sure that -J will work on all the intermediate hosts, tho, so I guess I need to be prepared with a backup method...(I know there's a way to set up a .ssh_config to make this even more transparent, but a. transparent = hard to figure out how it worksb. I've tried .ssh_config before and it is extremely confusing. What hosts does that file need to exist on?)<a href="https://hachyderm.io/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a> <a href="https://hachyderm.io/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a>

meejahrsync over magic-wormhole -- and testing my OBS setup etc :)<a href="https://pixelfed.social/i/web/post/792162371487641342" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://pixelfed.social/i/web/post/792162371487641342</a><a href="https://mastodon.social/tags/magicWormhole" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#magicWormhole</a> <a href="https://mastodon.social/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a>

ansuz / ऐरनif you have rsync on any of your computers and don't like remote code execution vulnerabilities you probably ought to update it:<a href="https://ubuntu.com/blog/rsync-remote-code-execution" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://ubuntu.com/blog/rsync-remote-code-execution</a><a href="https://social.cryptography.dog/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a> <a href="https://social.cryptography.dog/tags/CVE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE</a> <a href="https://social.cryptography.dog/tags/RCE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RCE</a>

climbertobbyThere is a critical <a href="https://chaos.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://chaos.social/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerability</a> in <a href="https://chaos.social/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a>, update ASAP.On <a href="https://chaos.social/tags/Debian" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Debian</a> stable, check your version:apt show rsyncthe problems have been fixed in the version 3.2.7-1+deb12u1 if you have an earlier version upgradealso check this if you didn't manually install rsync it is a dependency of many packages.for details, see this post: <a href="https://mastodon.social/@nixCraft/113833699519818054" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://mastodon.social/@nixCraft/113833699519818054</a>

Mark Gardner<a href="https://mastodon.social/@nixCraft" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@nixCraft</a> Those <a href="https://fosstodon.org/@homebrew" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@homebrew</a> instructions for <a href="https://social.sdf.org/tags/macOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#macOS</a> on your web page will not help the circa-2006 <a href="https://social.sdf.org/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a> 2.6.9 <a href="https://social.sdf.org/tags/Apple" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Apple</a> pre-installs at `/usr/bin/rsync`They probably stopped with that version because it was the last one to be <a href="https://social.sdf.org/tags/GPLv2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GPLv2</a> licensed: <a href="https://rsync.samba.org/GPL2.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://rsync.samba.org/GPL2.html</a>Thanks <a href="https://hostux.social/@fsf" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@fsf</a>!

zwangseinweisungstumbled upon this error message from apt. what does it mean? is it safe to install? <a href="https://mastodon.social/tags/Debian" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Debian</a> <a href="https://mastodon.social/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a>

Jason Tubnor 🇦🇺<a class="u-url mention" href="https://bsd.network/@brynet" rel="nofollow noopener noreferrer" target="_blank">@brynet</a> Any idea how long before packages-stable for amd64 gets populated with the update? <a class="hashtag" href="https://soc.feditime.com/tag/rsync" rel="nofollow noopener noreferrer" target="_blank">#rsync</a>

Harry SintonenRemote Code Execution <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerability</a> in <a href="https://infosec.exchange/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a>: CVE ID: <a href="https://infosec.exchange/tags/CVE_2024_12084" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE_2024_12084</a>CVSS 3.1: 9.8 - AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HDescription: A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length) in the code. When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write out of bounds in the sum2 buffer.Affected Versions: >= 3.2.7 and < 3.4.0<a href="https://www.openwall.com/lists/oss-security/2025/01/14/3" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.openwall.com/lists/oss-security/2025/01/14/3</a>

Alexandre Dulaunoy6 vulnerabilities discovered in rsync server, including one critical flaw that allows remote code execution (RCE) on the server. Anonymous rsync servers are affected.🔗 <a href="https://vulnerability.circl.lu/bundle/d938dc28-6877-40db-ad5f-25f3051288e6" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://vulnerability.circl.lu/bundle/d938dc28-6877-40db-ad5f-25f3051288e6</a><a href="https://infosec.exchange/tags/rsync" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rsync</a> <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerability</a> <a href="https://infosec.exchange/tags/vulnerabilities" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerabilities</a> <a href="https://infosec.exchange/tags/cve" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cve</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Recent searches

Search options

Administered by:

Server stats:

#rsync