Re: Can't open exclude file ???

Wed, 28 Jan 2004 09:10:47 -0800 

On Wed, Jan 28, 2004 at 09:52:41AM -0600, Michael D Schleif wrote:
> * Jon LaBadie <[EMAIL PROTECTED]> [2004:01:28:10:28:28-0500] scribed:
> > On Wed, Jan 28, 2004 at 09:07:34AM -0600, Michael D Schleif wrote:
> <snip />
> 
> > > Now, since this addition, I get this:
> > > 
> > >    # sudo -u backup amcheck DailySet1 -cltw
> > >    Amanda Tape Server Host Check
> > >    -----------------------------
> > >    Holding disk /space: 3704388 KB disk space available, using 3704388 KB
> > >    Tape backup.015 is writable
> > >    Tape backup.015 label ok
> > >    Server check took 39.313 seconds
> > > 
> > >    Amanda Backup Client Hosts Check
> > >    --------------------------------
> > >    ERROR: bragi.private.network: [Can't open exclude file 
> > > '/usr/local/home/mds/mail/.amanda.excludes': Permission denied]
> > >    Client check: 2 hosts checked in 7.134 seconds, 1 problem found
> > > 
> > >    (brought to you by Amanda 2.4.4p1)
> <snip />
> 
> > Check the permissions on the mail directory, or possibly - but unlikely,
> > the directories above it.
> > 
> > IIRC, amcheck does not run with the same root permissions as amdump.
> > Thus it may not be able to get to the excluce file during an amcheck.
> 
> Ironically, I do _not_ need any exclude file for this DLE.  Initially, I
> did not have any exclude file, and amcheck issued the _same_ error.
> Then, I touched an empty exclude file, resulting in the same error.  For
> my original post, I included two temporary directories in the exclude
> file.
> 
> Regarding perms:
> 
>    # ls -adl /usr
>    drwxr-xr-x   16 root     root         4096 Oct  6 14:15 /usr
> 
>    # ls -adl /usr/local/home 
>    drwxrwsr-x    7 root     staff        4096 Jan 16 21:17 /usr/local/home
> 
>    # ls -adl /usr/local/home/mds
>    drwxr-xr-x   44 mds      mds          8192 Jan 28 09:07 /usr/local/home/mds
> 
>    # ls -adl /usr/local/home/mds/mail
>    drwx------   19 mds      mds          4096 Jan 28 01:00 /usr/local/home/mds/mail
         ^^^^^^

When amcheck looks for the exclude file, unless it is running with root privleges
or as mds, it will not be able to visit this directory.  During the amcheck run
your host is both server and client.  When amcheck goes out to the client, it loses
its root privleges and runs as the amanda user.  For this one you may need to
put the exclude file somewhere else the amanda user can visit and specify an
absolute directory path to the file.

-- 
Jon H. LaBadie                  [EMAIL PROTECTED]
 JG Computing
 4455 Province Line Road        (609) 252-0159
 Princeton, NJ  08540-4322      (609) 683-7220 (fax)

Reply via email to