Tobias wrote:
amcheck complains with "port (insert-highport-here) is not secure". I've read the amanda FAQs but the answer given to this problem didn't help because I haven't installed the firewalls and am by far no firewall magician. Why does amanda receive the highport which should have been mapped back by the inner-firewall? And what rules do I have to add to make it work? Do I need port forwarding? Or is there another way to do what I want?
A quick-and-dirty method is to adapt the sources used to compile your client: in common-src/security.c:
229
230 /* next, make sure the remote port is a "reserved" one */
231
232 if(ntohs(addr->sin_port) >= IPPORT_RESERVED) {
233 ap_snprintf(number, sizeof(number), "%d", ntohs(addr->sin_port));
234 *errstr = vstralloc("[",
235 "host ", remotehost, ": ",
236 "port ", number, " not secure",
237 "]", NULL);
238 amfree(remotehost);
239 return 0;
240 }
Comment it out.
The added benefit of this test is not as strong as it used to be, in these days where everybody can be root on his PC, and connect from a
reserved (<1024) port.
-- Paul Bijnens, Xplanation Tel +32 16 397.511 Technologielaan 21 bus 2, B-3001 Leuven, BELGIUM Fax +32 16 397.512 http://www.xplanation.com/ email: [EMAIL PROTECTED] *********************************************************************** * I think I've got the hang of it now: exit, ^D, ^C, ^\, ^Z, ^Q, F6, * * quit, ZZ, :q, :q!, M-Z, ^X^C, logoff, logout, close, bye, /bye, * * stop, end, F3, ~., ^]c, +++ ATH, disconnect, halt, abort, hangup, * * PF4, F20, ^X^X, :D::D, KJOB, F14-f-e, F8-e, kill -1 $$, shutdown, * * kill -9 1, Alt-F4, Ctrl-Alt-Del, AltGr-NumLock, Stop-A, ... * * ... "Are you sure?" ... YES ... Phew ... I'm out * ***********************************************************************
