Reading the chapter about Amanda on Backup Central's website, the bit
about configuring Samba says,
"For Windows clients, put the share password in /etc/amandapass on
the SAMBA host. The first field is the Windows share name, the second
is the clear text password and the optional third field is the
domain. Because this file contains clear text passwords, it should be
carefully protected, owned by the AMANDA user and only allow user
access."
so I follwed this and have seemingly got a good backup of a windows
share.
My question is, has anyone else ran the ps on the tape server/samba
unix box while command while the samba client is being backed up?
I did and there was my share password, plain as day, there for anyone
to see! What's the point of taking away read access to
the /etc/amandapass file, when anyone can see the password anyway?
hopefully, I've just missed something obvious here. Guess I can
setup share passwords for all my Windows data which is read-only
access, but this isn't ideal.
cheers in advance for any feedback,
Kevin
