はてなはウエディングに対して悪マニのBeyond氏の個人情報をうっかり流してしまったために、裁判所などの公的機関を通す前にいきなりBeyond氏にフレームが逝ってしまい一時期大騒ぎとなった事例である。

(RedHat7.x)
groupadd ほげxfr

(FreeBSD)
pw groupadd ほげxfr

(RedHat7.x)
useradd -m -k /dev/null -g ほげxfr -d /var/rsync/ほげxfr \
ほげxfr

(FreeBSD)
mkdir -p /var/rsync
pw useradd ほげxfr -m -k /var/empty -g ほげxfr -d /var/rsync/ほげxfr

cd /var/rsync/ほげxfr
umask 077
mkdir こっち_to_あっち
mkdir あっち_to_こっち
chown -R ほげxfr:ほげxfr *

#!/bin/sh
LOCALNAME=こっち
REMOTENAME=あっち
HOME=/var/rsync/ほげxfr
LOCALPUTDIR=${HOME}/${LOCALNAME}_to_${REMOTENAME}/
LOCALGETDIR=${HOME}/${REMOTENAME}_to_${LOCALNAME}/
mkdir -p ${LOCALPUTDIR}
mkdir -p ${LOCALGETTDIR}

su ほげxfr -c 'ssh-keygen -N "" -t rsa'

Generating public/private rsa key pair.
Enter file in which to save the key (/var/rsync/ほげxfr/.ssh/id_rsa):（空リターンを押します）
Created directory '/var/rsync/ほげxfr/.ssh'.
Your identification has been saved in /var/rsync/ほげxfr/.ssh/id_rsa.
Your public key has been saved in /var/rsync/ほげxfr/.ssh/id_rsa.pub.
The key fingerprint is:
（フィンガープリント） ほげxfr@hoge.こっち.co.jp

cd /var/rsync/ほげxfr
mv id_rsa.pub .ssh/authorized_keys
chmod 600 .ssh/authorized_keys

su ほげxfr
ssh （相手のIP）

The authenticity of host 'x00.x00.x0.x0 (x00.x00.x0.x0)' can't be established.
DSA key fingerprint is （フィンガープリント）.
Are you sure you want to continue connecting (yes/no)? yes　（yesを入力）
Warning: Permanently added 'x00.x00.x0.x0' (DSA) to the list of known hosts.

rsync -avz --delete -e ssh ~/こっち_to_あっち/ あっちIP:~/こっち_to_あっち

#!/bin/sh
#
# $Id: d20021116.hnf,v 1.2 2005/02/18 04:15:50 moo9500 Exp $
#
# こっち <-> あっち rsync tranfer
#
LOCALNAME=こっち
REMOTENAME=あっち
REMOTEID=ほげxfr
HOME=/var/rsync/${REMOTEID}
# あっち Server IP
REMOTEHOST=あっちIP

LOCALPUTDIR=${HOME}/${LOCALNAME}_to_${REMOTENAME}/
REMOTEPUTDIR=~/${LOCALNAME}_to_${REMOTENAME}/
LOCALGETDIR=${HOME}/${REMOTENAME}_to_${LOCALNAME}/
REMOTEGETDIR=~/${REMOTENAME}_to_${LOCALNAME}/
#
TMPPUTTIME=${HOME}/etc/.puttime
LOCKFILE=${HOME}/etc/${REMOTENAME}.lock
RSYNC=`which rsync`
RSYNCFLAGS?='-azqr --delete'
if [ -e ${HOME}/etc/excludefrom.txt ]; then
EXCLUDE="--exclude-from=${HOME}/etc/excludefrom.txt"
fi

if [ -e ${LOCKFILE} ]; then
        echo "already running ${REMOTENAME}"
        exit 1
fi

case "$1" in
put)
        touch ${LOCKFILE}
        ${RSYNC} ${RSYNCFLAGS} ${EXCLUDE} -e ssh \
${LOCALPUTDIR} ${REMOTEID}@${REMOTEHOST}:${REMOTEPUTDIR}
        rm -f ${LOCKFILE}
        touch ${TMPPUTTIME}
        ;;
get)
        touch ${LOCKFILE}
        ${RSYNC} ${RSYNCFLAGS} ${EXCLUDE} -e ssh \
${REMOTEID}@${REMOTEHOST}:${REMOTEGETDIR} ${LOCALGETDIR}
        rm -f ${LOCKFILE}
        ;;
check)
        if [ `find ${LOCALPUTDIR} -cnewer ${TMPPUTTIME} | \
wc -l` -gt 0 ]; then
                $0 put
        fi
        ;;
sync)
        $0 get
        $0 put
        ;;
*)
        echo "Usage: `basename $0` {put|get|check|sync}" >&2
        ;;
esac

exit 0

# Netatalk create dir
.AppleDesktop
DesktopFolderDB
Network Trash Folder
TheFindByContentFolder
TheVolumeSettingsFolder
# DAVE create dir
Trash
resource.frk

*/2 * * * * ほげxfr /var/rsync/ほげxfr/bin/xfr_chk.sh check > /dev/null 2>&1