From a9ece1c7bfc934e689cf87cf4dfb56e4e13a9287 Mon Sep 17 00:00:00 2001
From: Daryl Bennett <kd8bny@gmail.com>
Date: Mon, 23 Aug 2021 20:22:35 -0400
Subject: [PATCH] Include syncoid remote user requirment

Add requirement for syncoid w/ remote hosts to be able to sudo without a password.
Recommends a least privilege configuration option for enabling `NOPASSWD`
---
 INSTALL.md | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/INSTALL.md b/INSTALL.md
index c8411d3..68b2fa9 100644
--- a/INSTALL.md
+++ b/INSTALL.md
@@ -206,3 +206,12 @@ Adapt the timer interval to the lowest configured snapshot interval.
 Take a look at the files `sanoid.defaults.conf` and `sanoid.conf` for all possible configuration options.
 
 Also have a look at the README.md for a simpler suggestion for `sanoid.conf`.
+
+## Syncoid
+If you are pushing or pulling from a remote host, create an user with privldeges to `ssh` as well as `sudo`. To ensure that `zfs send/recieve` can execute, adjust the privileges of the user to execute `sudo` **without** a password for only the `zfs` binary. Modify `/etc/sudoers` by running `# visudo`. Add the following line for your user.
+
+```
+...
+<user> ALL=NOPASSWD: /usr/local/sbin/zfs
+...
+```