On Wednesday, May 25, 2011 11:23:04 AM Jean-Louis Martineau did opine:
> gene heskett wrote:
> > On Wednesday, May 25, 2011 08:30:37 AM Jean-Louis Martineau did opine:
> >
> > Telling me to re-read amanda-auth. I have, several times, but it is
> > not clear to me what else I need to do. You also asked for my
> > complete xinetd.d/amanda file:
> > -------------------------------
> > # default = off
> > #
> > # description: Part of the Amanda server package
> > # This is the list of daemons & such it needs
> > service amanda
> > {
> >
> > disable = no
> >
> > # only_from = coyote.coyote.den
> >
> > flags = IPv4
> > socket_type = dgram
> > protocol = udp
> > wait = yes
> > user = amanda
> > group = disk
> > groups = yes
> > server = /usr/local/libexec/amanda/amandad
> > server_args = -auth=bsdtcp amdump amindexd amidxtaped
> >
> > }
>
> I don't remember how many times I told you to look at the man
> page!!!!!!!!!!!
> Please look at the example for bsdtcp in the amanda-auth man page:
> Client example of using bsdtcp authorization for xinetd server
> and for Amanda user "amandabackup":
>
> service amanda
> {
> only_from = amandaserver.example.com
> amandaclient.example.com
> socket_type = stream
> protocol = tcp
> wait = no
> user = amandabackup
> group = disk
> groups = yes
> server = /path/to/amandad
> server_args = -auth=bsdtcp amdump
> disable = no
> }
>
> Now that you finally posted your xinetd file, I can tell you what's
> wrong. Fix the socket_type, protocol and wait lines.
>
> Tell me how the man page can be improved?
By pointing out that the wait, socket type, and protocol also change. If
it is mentioned, it is not mentioned in the context that seems to apply.
Now, I have done those changes to my local xinetd.d/amanda, so it looks like
this:
[root@coyote example]# cat /etc/xinetd.d/amanda
# default = off
#
# description: Part of the Amanda server package
# This is the list of daemons & such it needs
service amanda
{
disable = no
only_from = coyote.coyote.den shop.coyote.den
flags = IPv4
socket_type = stream
protocol = tcp
wait = no
user = amanda
group = disk
groups = yes
server = /usr/local/libexec/amanda/amandad
server_args = -auth=bsdtcp amdump
# amindexd amidxtaped
}
#service amandaidx
#{
# disable = no
# socket_type = stream
# protocol = tcp
# wait = no
# user = amanda
# group = disk
# groups = yes
# server = /usr/local/libexec/amanda/amindexd
#}
#service amidxtape
#{
# disable = no
# socket_type = stream
# protocol = tcp
# wait = no
# user = amanda
# group = disk
# groups = yes
# server = /usr/local/libexec/amanda/amidxtaped
#}
And amcheck is now happy with _this_ machine. However when I made similar
changes to the shop machines inetd.conf as show by this grep:
I changed inetd.conf on the shop machine to:
amanda stream tcp nowait backup /usr/lib/amanda/amandad amandad -auth=bsdtcp
amdump
But the amcheck still fails:
WARNING: shop: selfcheck request failed: Connection refused
Client check: 2 hosts checked in 10.050 seconds. 1 problem found.
That amcheck*debug is attached. I also found the log files on the shop
machine, but these amcheck runs are not generating a log.
> Jean-Louisa
Things that make you go Hmmmm. ;)
--
Cheers, Gene
"There are four boxes to be used in defense of liberty:
soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
<http://tinyurl.com/ddg5bz>
<http://www.cantrip.org/gatto.html>
Children's talent to endure stems from their ignorance of alternatives.
-- Maya Angelou, "I Know Why the Caged Bird Sings"
Tue May 24 23:54:40 2011: amcheck: pid 15687 ruid 0 euid 501 version
4.0.0alpha.svn.4063: start at Tue May 24 23:54:40 2011
Tue May 24 23:54:40 2011: amcheck: pid 15687 ruid 0 euid 501 version
4.0.0alpha.svn.4063: rename at Tue May 24 23:54:40 2011
Tue May 24 23:54:40 2011: amcheck-clients: security_getdriver(name=bsdtcp)
returns 0xb7724220
Tue May 24 23:54:40 2011: amcheck-clients:
security_handleinit(handle=0x9184978, driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:40 2011: amcheck-clients:
security_streaminit(stream=0x9189ce8, driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:40 2011: amcheck-server: Spawning
"/usr/local/libexec/amanda/amcheck-device
/usr/local/libexec/amanda/amcheck-device Daily" in pipeline
Tue May 24 23:54:40 2011: amcheck-clients: connect_port: Skip port 512: owned
by exec.
Tue May 24 23:54:40 2011: amcheck-clients: connect_port: Skip port 513: owned
by login.
Tue May 24 23:54:40 2011: amcheck-clients: connect_port: Skip port 514: owned
by shell.
Tue May 24 23:54:40 2011: amcheck-clients: connect_port: Skip port 515: owned
by printer.
Tue May 24 23:54:40 2011: amcheck-clients: make_socket opening socket with
family 2
Tue May 24 23:54:40 2011: amcheck-clients: connect_port: Try port 516:
available - Success
Tue May 24 23:54:40 2011: amcheck-clients: connect_portrange: Connect from
0.0.0.0:516 failed: Connection refused
Tue May 24 23:54:40 2011: amcheck-clients: connect_portrange: connect to
192.168.71.3:10080 failed: Connection refused
Tue May 24 23:54:40 2011: amcheck-clients: stream_client: Could not bind to
port in range 512-1023.
Tue May 24 23:54:40 2011: amcheck-clients: security_seterror(handle=0x9184978,
driver=0xb7724220 (BSDTCP) error=Connection refused)
Tue May 24 23:54:40 2011: amcheck-clients: security_close(handle=0x9184978,
driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:40 2011: amcheck-clients: security_stream_close(0x9189ce8)
Tue May 24 23:54:40 2011: amcheck-clients: security_getdriver(name=bsdtcp)
returns 0xb7724220
Tue May 24 23:54:40 2011: amcheck-clients:
security_handleinit(handle=0x91843e8, driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:40 2011: amcheck-clients:
security_streaminit(stream=0x9189ce8, driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:40 2011: amcheck-clients: connect_port: Skip port 512: owned
by exec.
Tue May 24 23:54:40 2011: amcheck-clients: connect_port: Skip port 513: owned
by login.
Tue May 24 23:54:40 2011: amcheck-clients: connect_port: Skip port 514: owned
by shell.
Tue May 24 23:54:40 2011: amcheck-clients: connect_port: Skip port 515: owned
by printer.
Tue May 24 23:54:40 2011: amcheck-clients: make_socket opening socket with
family 2
Tue May 24 23:54:40 2011: amcheck-clients: connect_port: Try port 516:
available - Success
Tue May 24 23:54:40 2011: amcheck-clients: connect_portrange: Connect from
0.0.0.0:516 failed: Connection refused
Tue May 24 23:54:40 2011: amcheck-clients: connect_portrange: connect to
192.168.71.4:10080 failed: Connection refused
Tue May 24 23:54:40 2011: amcheck-clients: stream_client: Could not bind to
port in range 512-1023.
Tue May 24 23:54:40 2011: amcheck-clients: security_seterror(handle=0x91843e8,
driver=0xb7724220 (BSDTCP) error=Connection refused)
Tue May 24 23:54:40 2011: amcheck-clients: security_close(handle=0x91843e8,
driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:40 2011: amcheck-clients: security_stream_close(0x9189ce8)
Tue May 24 23:54:40 2011: amcheck-server: userbad: 0
Tue May 24 23:54:40 2011: amcheck-server: confbad: 0
Tue May 24 23:54:40 2011: amcheck-server: tapebad: 0
Tue May 24 23:54:40 2011: amcheck-server: disklow: 0
Tue May 24 23:54:40 2011: amcheck-server: logbad: 0
Tue May 24 23:54:40 2011: amcheck-server: infobad: 0
Tue May 24 23:54:40 2011: amcheck-server: indexbad: 0
Tue May 24 23:54:40 2011: amcheck-server: pgmbad: 0
Tue May 24 23:54:45 2011: amcheck-clients:
security_handleinit(handle=0x9186bd0, driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:45 2011: amcheck-clients:
security_streaminit(stream=0x9189ce8, driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:45 2011: amcheck-clients: connect_port: Skip port 512: owned
by exec.
Tue May 24 23:54:45 2011: amcheck-clients: connect_port: Skip port 513: owned
by login.
Tue May 24 23:54:45 2011: amcheck-clients: connect_port: Skip port 514: owned
by shell.
Tue May 24 23:54:45 2011: amcheck-clients: connect_port: Skip port 515: owned
by printer.
Tue May 24 23:54:45 2011: amcheck-clients: make_socket opening socket with
family 2
Tue May 24 23:54:45 2011: amcheck-clients: connect_port: Try port 516:
available - Success
Tue May 24 23:54:45 2011: amcheck-clients: connect_portrange: Connect from
0.0.0.0:516 failed: Connection refused
Tue May 24 23:54:45 2011: amcheck-clients: connect_portrange: connect to
192.168.71.3:10080 failed: Connection refused
Tue May 24 23:54:45 2011: amcheck-clients: stream_client: Could not bind to
port in range 512-1023.
Tue May 24 23:54:45 2011: amcheck-clients: security_seterror(handle=0x9186bd0,
driver=0xb7724220 (BSDTCP) error=Connection refused)
Tue May 24 23:54:45 2011: amcheck-clients: security_close(handle=0x9186bd0,
driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:45 2011: amcheck-clients: security_stream_close(0x9189ce8)
Tue May 24 23:54:45 2011: amcheck-clients:
security_handleinit(handle=0x9186bd0, driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:45 2011: amcheck-clients:
security_streaminit(stream=0x9189ce8, driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:45 2011: amcheck-clients: connect_port: Skip port 512: owned
by exec.
Tue May 24 23:54:45 2011: amcheck-clients: connect_port: Skip port 513: owned
by login.
Tue May 24 23:54:45 2011: amcheck-clients: connect_port: Skip port 514: owned
by shell.
Tue May 24 23:54:45 2011: amcheck-clients: connect_port: Skip port 515: owned
by printer.
Tue May 24 23:54:45 2011: amcheck-clients: make_socket opening socket with
family 2
Tue May 24 23:54:45 2011: amcheck-clients: connect_port: Try port 516:
available - Success
Tue May 24 23:54:45 2011: amcheck-clients: connect_portrange: Connect from
0.0.0.0:516 failed: Connection refused
Tue May 24 23:54:45 2011: amcheck-clients: connect_portrange: connect to
192.168.71.4:10080 failed: Connection refused
Tue May 24 23:54:45 2011: amcheck-clients: stream_client: Could not bind to
port in range 512-1023.
Tue May 24 23:54:45 2011: amcheck-clients: security_seterror(handle=0x9186bd0,
driver=0xb7724220 (BSDTCP) error=Connection refused)
Tue May 24 23:54:45 2011: amcheck-clients: security_close(handle=0x9186bd0,
driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:45 2011: amcheck-clients: security_stream_close(0x9189ce8)
Tue May 24 23:54:50 2011: amcheck-clients:
security_handleinit(handle=0x9186bd0, driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:50 2011: amcheck-clients:
security_streaminit(stream=0x9189ce8, driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:50 2011: amcheck-clients: connect_port: Skip port 512: owned
by exec.
Tue May 24 23:54:50 2011: amcheck-clients: connect_port: Skip port 513: owned
by login.
Tue May 24 23:54:50 2011: amcheck-clients: connect_port: Skip port 514: owned
by shell.
Tue May 24 23:54:50 2011: amcheck-clients: connect_port: Skip port 515: owned
by printer.
Tue May 24 23:54:50 2011: amcheck-clients: make_socket opening socket with
family 2
Tue May 24 23:54:50 2011: amcheck-clients: connect_port: Try port 516:
available - Success
Tue May 24 23:54:50 2011: amcheck-clients: connect_portrange: Connect from
0.0.0.0:516 failed: Connection refused
Tue May 24 23:54:50 2011: amcheck-clients: connect_portrange: connect to
192.168.71.3:10080 failed: Connection refused
Tue May 24 23:54:50 2011: amcheck-clients: stream_client: Could not bind to
port in range 512-1023.
Tue May 24 23:54:50 2011: amcheck-clients: security_seterror(handle=0x9186bd0,
driver=0xb7724220 (BSDTCP) error=Connection refused)
Tue May 24 23:54:50 2011: amcheck-clients: security_close(handle=0x9186bd0,
driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:50 2011: amcheck-clients: security_stream_close(0x9189ce8)
Tue May 24 23:54:50 2011: amcheck-clients:
security_handleinit(handle=0x9189b98, driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:50 2011: amcheck-clients:
security_streaminit(stream=0x9189ce8, driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:50 2011: amcheck-clients: connect_port: Skip port 512: owned
by exec.
Tue May 24 23:54:50 2011: amcheck-clients: connect_port: Skip port 513: owned
by login.
Tue May 24 23:54:50 2011: amcheck-clients: connect_port: Skip port 514: owned
by shell.
Tue May 24 23:54:50 2011: amcheck-clients: connect_port: Skip port 515: owned
by printer.
Tue May 24 23:54:50 2011: amcheck-clients: make_socket opening socket with
family 2
Tue May 24 23:54:50 2011: amcheck-clients: connect_port: Try port 516:
available - Success
Tue May 24 23:54:50 2011: amcheck-clients: connect_portrange: Connect from
0.0.0.0:516 failed: Connection refused
Tue May 24 23:54:50 2011: amcheck-clients: connect_portrange: connect to
192.168.71.4:10080 failed: Connection refused
Tue May 24 23:54:50 2011: amcheck-clients: stream_client: Could not bind to
port in range 512-1023.
Tue May 24 23:54:50 2011: amcheck-clients: security_seterror(handle=0x9189b98,
driver=0xb7724220 (BSDTCP) error=Connection refused)
Tue May 24 23:54:50 2011: amcheck-clients: security_close(handle=0x9189b98,
driver=0xb7724220 (BSDTCP))
Tue May 24 23:54:50 2011: amcheck-clients: security_stream_close(0x9189ce8)
Tue May 24 23:54:50 2011: amcheck: pid 15687 finish time Tue May 24 23:54:50
2011
