That was it, thanks! So amservice is not distributed with setuid permissions on SuSE/OpenSuSE when clearly it should be. Per the packing policy, see link below, when I open an audit request to have this "fixed" i'll need to provide the location of the source code, ./common-src/amservice.c, the effected files, and why it needs to be setuid. Is there any documentation I can link to which details "why" it needs to be setuid? I can write something up stating it runs as the user amanda but need to bind to reserved ports but if I could point to some "official" documentation it would be helpful.
http://en.opensuse.org/openSUSE:Security_packaging_policy#Setuid_binaries -- Later, Darin On Tue, Apr 17, 2012 at 4:36 PM, Jean-Louis Martineau <[email protected]> wrote: > Darin, > > The 'amservice' binary must set suid root. > > Jean-Louis > > > On 04/17/2012 03:43 PM, Darin Perusich wrote: >> >> Is there any documentation on using amdump_client? Nothing comes up >> when searching the wiki other than mentions in release notes and the >> man page isn't proving very helpful. >> >> I've configured amdumpd on the server, per >> http://wiki.zmanda.com/index.php/Amdumpd_protocol, and added my client >> to .amandahosts on the server so it can connect. Whenever I run >> amdump_client from the client as amanda, see amanda-client.conf below, >> it fails with permission denied when attempting to bind to the local >> ports, which are under 1024. Yet, when i try and run the program as >> root it fails because I'm not amanda. >> >> I'm stuck in a loop, what am I missing? > >
