> I don't have direct experience with 3.3.9, but as far as I can tell from
> the Amanda source repo [*], the 3.3.9 release does the same checks on
> the security-file path directories as 3.5, so off hand I'd still expect
> /usr/local/etc/amanda/ to cause an error on your system...
>
> But perhaps FreeBSD's version is a different from upstream in regards to
> these checks, or something?
I did not go into the details, but FreeBSD ports are built by
downloading the official source from official repository and eventually
applying some specific patches. Some options can be applied at configure
time, but that are options that should exist in the original configure.sh
I can see no patch related to common-src/security-file.c so I expect
that file to be kept original. I confirm that the patching process does
not change security-file.c
Only security options set at configure time are:
--with-bsdtcp-security
--with-bsdudp-security
--with-ssh-security
--with-security-file=${ETCDIR}/amanda-security.conf
Provided that security-file.c is the same in 3.3.9 and 3.5, the only
reason I can see would be the fllowing that skips the recursive checking
of the path.
#ifdef SINGLE_USERID
uid_t ruid = getuid();
uid_t euid = geteuid();
if (ruid != 0 && euid != 0 && ruid == euid) {
amfree(quoted);
return TRUE;
}
#endif
Olivier
