On Mon, 22 Apr 2002 at 12:39pm, Morrison, Trevor (Trevor) wrote > > 3) Please respond below quoted text. > OK, never mind about this one, as LookOut doesn't seem to add any quoted text marker. *sigh*
> I am sorry, I am responding from work where my address is not part of > the users list and am running Outlook as you can tell. What should the > permissions be for amanda 750, 755 ,700? You shouldn't have to change permissions on any filesystems or files to use amanda. So they should be whatever site security requires. > > I tried adding amanda to the disk group and the root group, but to no > > avail. I really do not fully understand the permissions that amanda > > requires. I thought by adding amanda to the respective groups that own > > the directories that that would be fine. Could you straighten me out on > > this. TIA. > > > To have xinetd run the program with *all* groups the user belongs to, > > you need a "groups=yes" line in the appropriate service file (i.e. > > /etc/xinetd.d/amanda). Also, certain bits of amanda should be > > installed setuid root. What does 'ls -l /usr/local/libexec | grep > > rws' say? This allows amanda to be root to backup stuff via tar. > > > I will add groups=yes when I get home. I am running a program called > > XSid that goes in and changes files so that they cannot be setuid > > root. I will run you command later and let you know. Thanks. Does XSid have some sort of exclusion list? Some stuff needs to be setuid... -- Joshua Baker-LePain Department of Biomedical Engineering Duke University
