I have been trying to solve this for a couple of weeks, during which time I've read many web pages on the subject, made some adjustments, and failed.

Object:
To backup remote VPS to local computer using rsync.
To edit remote files such as web pages from local computer using (eg) Kate.
It would be useful but not essential to transfer files from local to remote direct into (eg) /srv.

I am using password-less ssh access with local ssh config as below. This works correctly for non-root access using thunar and terminal. I can also rsync from /srv (user www-data) and /home but only a few files can be transferred from / and /var. The return for non-transferred files/folders is "Permission denied (13)".

Host web
 HostName (VPS IP)
 Port (port number)
 User (remote user)
 PubKeyAuthentication yes
 ForwardX11 yes
 IdentityFile ~/.ssh/id_rsa

Remote sshd_config is

Port (port number)
AddressFamily any
ListenAddress 0.0.0.0
ListenAddress ::

PermitRootLogin without-password

ChallengeResponseAuthentication no

UsePAM yes

AllowAgentForwarding yes
X11Forwarding yes
X11DisplayOffset 10
X11UseLocalhost no
PrintMotd no

AcceptEnv LANG LC_*

Subsystemsftp/usr/lib/openssh/sftp-server

I have added the following to sudoers and altered the (user) to try to make it work:

(user) ALL=NOPASSWD: /usr/bin/rsync

A typical rsnc command run from cron on the local machine, where Phobos is the backup disk, is:

20 01 * * * dave rsync -r -t -p -o -g -x -u -l -H -E -X -D -s -m --stats --partial --log-file=/mnt/Phobos/web/aa-logs/root.log (sundry --excludes) -e ssh web:/ /mnt/Phobos/web/root/