Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Fri, Oct 2, 2009 at 03:46, Gene Heskett gene.hesk...@verizon.net wrote:
On Thursday 01 October 2009, Charles Curley wrote:
On Thu, 01 Oct 2009 20:51:56 -0400
Gene Heskett gene.hesk...@verizon.net wrote:
On Thursday 01 October 2009, Charles Curley wrote:
On Thu, 01 Oct 2009 12:58:48 -0400
Gene Heskett gene.hesk...@verizon.net wrote:
On Thursday 01 October 2009, Dustin J. Mitchell wrote:
See? Its sort of a now it can be told thing. But that brings up
the question of who owns /home/amanda on such a (broken IMO)
installation?
Actually, nobody owns it; it doesn't exist on a standard Ubuntu
installation. From my unchanged Ubuntu client installation:
r...@dzur:/var# grep backup /etc/passwd
backup:x:34:34:backup:/var/backups:/bin/sh
r...@dzur:/var#
Oookaaay, what do you get from a grep amanda /etc/passwd?
About the value of a political promise on election night.
ccur...@dragon:~$ egrep amanda\|backup /etc/passwd
backup:x:34:34:backup:/var/backups:/bin/sh
ccur...@dragon:~$ grep amanda /etc/passwd
ccur...@dragon:~$
So you don't even have a user amanda, nor a /home/amanda directory...
Interesting. Bears further investigation I believe. When I'm fresher.
Debian and Ubuntu use the `backup' user. It's homedir is `/var/backups', and
/var/backups/.amandahosts is a symlink to /etc/amandahosts.
BTW, I never had issues with it (Debian user since long before I
started using Amanda
in 1997).
Gr{oetje,eeting}s,
Geert
--
Geert Uytterhoeven -- There's lots of Linux beyond ia32 -- ge...@linux-m68k.org
In personal conversations with technical people, I call myself a hacker. But
when I'm talking to journalists I just say programmer or something like that.
-- Linus Torvalds
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Friday 02 October 2009, Geert Uytterhoeven wrote: On Fri, Oct 2, 2009 at 03:46, Gene Heskett gene.hesk...@verizon.net wrote: On Thursday 01 October 2009, Charles Curley wrote: On Thu, 01 Oct 2009 20:51:56 -0400 Gene Heskett gene.hesk...@verizon.net wrote: On Thursday 01 October 2009, Charles Curley wrote: On Thu, 01 Oct 2009 12:58:48 -0400 Gene Heskett gene.hesk...@verizon.net wrote: On Thursday 01 October 2009, Dustin J. Mitchell wrote: See? Its sort of a now it can be told thing. But that brings up the question of who owns /home/amanda on such a (broken IMO) installation? Actually, nobody owns it; it doesn't exist on a standard Ubuntu installation. From my unchanged Ubuntu client installation: r...@dzur:/var# grep backup /etc/passwd backup:x:34:34:backup:/var/backups:/bin/sh r...@dzur:/var# Oookaaay, what do you get from a grep amanda /etc/passwd? About the value of a political promise on election night. ccur...@dragon:~$ egrep amanda\|backup /etc/passwd backup:x:34:34:backup:/var/backups:/bin/sh ccur...@dragon:~$ grep amanda /etc/passwd ccur...@dragon:~$ So you don't even have a user amanda, nor a /home/amanda directory... Interesting. Bears further investigation I believe. When I'm fresher. Debian and Ubuntu use the `backup' user. It's homedir is `/var/backups', and /var/backups/.amandahosts is a symlink to /etc/amandahosts. So the non-linked files that I put in as /home/amanda/.amandahosts, and home/backup/.amandahosts are un-needed, and can be nuked. Done, and amcheck is still happy. BTW, I never had issues with it (Debian user since long before I started using Amanda in 1997). That was pretty prehistoric then. And all I had to use with it in '98 was a 4GB tape, whose brand memory was fleeting at best, those darned plastic drives liked to just rip the tape into little pieces. This wasn't a DDS, but another with a cartridge a wee bit bigger than a DDS. We bought 3 of then at the tv station, and only one, installed in an old NT-3.51 box, lasted more than a year. Thanks Geert. -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) The NRA is offering FREE Associate memberships to anyone who wants them. https://www.nrahq.org/nrabonus/accept-membership.asp Keep on keepin' on.
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Thu, Oct 01, 2009 at 16:32:57 -0400, Gene Heskett wrote: Humm, from /etc/passwd: amanda:x:1001:6:...:/var/lib/amanda:/bin/bash backup:x:34:34:backup:/var/backups:/bin/sh On Thu, Oct 01, 2009 at 21:46:37 -0400, Gene Heskett wrote: So you don't even have a user amanda, nor a /home/amanda directory... On a stock Debian/Ubuntu installation, UID 1001 is the first in the user accounts range, which would indicate that you created that 'amanda' account manually at some point On the other hand, 'backup' is a standard user that's part of all Debian installs; the Amanda packages use it, but so do some other parts of the system even if Amanda is not installed. (In other words, the Amanda packages are simply piggybacking on an already-existing system user.) Nathan Nathan Stratton Treadway - natha...@ontko.com - Mid-Atlantic region Ray Ontko Co. - Software consulting services - http://www.ontko.com/ GPG Key: http://www.ontko.com/~nathanst/gpg_key.txt ID: 1023D/ECFB6239 Key fingerprint = 6AD8 485E 20B9 5C71 231C 0C32 15F3 ADCD ECFB 6239 signature.asc Description: Digital signature
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Friday 02 October 2009, Nathan Stratton Treadway wrote: On Thu, Oct 01, 2009 at 16:32:57 -0400, Gene Heskett wrote: Humm, from /etc/passwd: amanda:x:1001:6:...:/var/lib/amanda:/bin/bash backup:x:34:34:backup:/var/backups:/bin/sh On Thu, Oct 01, 2009 at 21:46:37 -0400, Gene Heskett wrote: So you don't even have a user amanda, nor a /home/amanda directory... On a stock Debian/Ubuntu installation, UID 1001 is the first in the user accounts range, which would indicate that you created that 'amanda' account manually at some point I did, trying to make it work like the tarball install on this machine has worked for much of a decade now. On the other hand, 'backup' is a standard user that's part of all Debian installs; the Amanda packages use it, but so do some other parts of the system even if Amanda is not installed. (In other words, the Amanda packages are simply piggybacking on an already-existing system user.) The /home/backup directory was empty until I put an .amandahosts file there, which also didn't work. Since there was nothing else in it, and passwd says backup's default dir is /var/backups, I just nuked the whole thing. If something squawks because it needs it, its not that hard to re-create it. Thanks Nathan. -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) The NRA is offering FREE Associate memberships to anyone who wants them. https://www.nrahq.org/nrabonus/accept-membership.asp Absurdity, n.: A statement or belief manifestly inconsistent with one's own opinion. -- Ambrose Bierce, The Devil's Dictionary
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Thu, Oct 1, 2009 at 12:49 AM, Gene Heskett gene.hesk...@verizon.net wrote: This is how it came out of the deb packages. I assume it worked, for *buntu's. So the problem now is how to specify that while the amanda user is named amanda on this box, the amanda user is named backup on that box. And apparently never the twain shall meet. :( In your original post, I see one place where it specifies runtar is version 2.4.5, and then the stack trace shows amanda-2.6.2alpha-20090831. Which is it? Where are you installing the deb? (client or server) Dustin -- Open Source Storage Engineer http://www.zmanda.com
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Thursday 01 October 2009, Dustin J. Mitchell wrote: On Thu, Oct 1, 2009 at 12:49 AM, Gene Heskett gene.hesk...@verizon.net wrote: This is how it came out of the deb packages. I assume it worked, for *buntu's. So the problem now is how to specify that while the amanda user is named amanda on this box, the amanda user is named backup on that box. And apparently never the twain shall meet. :( In your original post, I see one place where it specifies runtar is version 2.4.5, and then the stack trace shows amanda-2.6.2alpha-20090831. Which is it? Where are you installing the deb? (client or server) Dustin The 2.4.5 deb is going on the client. A kubuntu-6.06 LTS machine. -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) The NRA is offering FREE Associate memberships to anyone who wants them. https://www.nrahq.org/nrabonus/accept-membership.asp It works the way the Wang did, what's the problem
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
So what failed when you ran the backup with your regular configuration? Amanda shouldn't have any problem with this -- usernames on the client are, more or less, isolated from usernames on the server. The only interaction is in .amandahosts, which must list the server-side username. Dustin -- Open Source Storage Engineer http://www.zmanda.com
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Thursday 01 October 2009, Dustin J. Mitchell wrote: So what failed when you ran the backup with your regular configuration? Amanda shouldn't have any problem with this -- usernames on the client are, more or less, isolated from usernames on the server. The only interaction is in .amandahosts, which must list the server-side username. Dustin Humm, so I edit Shop:/home/amanda/.amandahosts to look like this: - coyote.coyote.den amanda amdump amindexd amidxtaped coyote amanda amdump amindexd amidxtaped coyote.coyote.den root amdump amindexd amidxtaped shop.coyote.den backup amdump amindexd amidxtaped shopbackup amdump amindexd amidxtaped shop.coyote.den backup amdump amindexd amidxtaped localhost backup amdump amindexd amidxtaped --- There are probably unneeded lines above, but I was trying to cover all bases. An amcheck Daily from here on coyote, generates an error message in shop/var/log/amanda/amandad complaining it can't open its debug files in /tmp. Aha! They were still owned by amanda:disk, so a quick chown to backup:backup and an 'su amanda -c amcheck Daily' on coyote is happy. Funny thing though, after all my messing around yesterday, backup.sh wasn't run last night. I don't think, no printout, no email. Running it again, and during the estimate phase I actually saw the user backup in the htop report. But I got a printout in just a few seconds that it did backup the 4 dle's on shop, but never touched coyote??? WTH? my /usr/local/etc/amanda/Daily/disklist is an exact copy of the test disklist in /usr/local/etc/amanda/Shop/disklist! In other words, my Daily/disklist is gone, all 29 entries. And I only edited one disklist file when setting up the Shop test config. Aha, for some reason I'd made a disklist-bak, and its a good one, so I now have a big grin and will re-run the backup again. An amstatus says the estimates are coming in good, so I think its running on all 8 cylinders again. Many many thanks for the hint, but it was confusing that it was the Shop:/home/amanda/.amandahosts file I fixed, and not the Shop:/home/backup/.amandahosts. And that leaves my mind quite well confused about just who the heck owns what here. And I don't think this is something I can blame on alzheimers even if I will be 75 on Sunday. This bit of cross-correlation should be FAQ'd better, or a manpage on amandahosts written that covers all this. I note that manpage is conspiciously absent. And this takes us back to amcheckdump the fact I can't run it from a script anymore because it needs either a changer to pull up the correct (v)tape to check, or a switch to shut it off. In my case Dailys/data is going to already be pointing at the correct vtape, so it has it. Either that or re- instate the ability to take a pair of numbers as arg(2) and arg(3) that give it the tape number to start on, and how many tapes to go over in case runtapes 1. That is the old amverify syntax AIR. Thanks Dustin, I owe you one if you ever get in my neck of the hills. -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) The NRA is offering FREE Associate memberships to anyone who wants them. https://www.nrahq.org/nrabonus/accept-membership.asp It's raisins that make Post Raisin Bran so raisiny ...
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Thursday 01 October 2009, Dustin J. Mitchell wrote: On Thu, Oct 1, 2009 at 12:20 PM, Gene Heskett gene.hesk...@verizon.net wrote: Many many thanks for the hint, but it was confusing that it was the Shop:/home/amanda/.amandahosts file I fixed, and not the Shop:/home/backup/.amandahosts. Presumably backup's home directory (in /etc/passwd) is /home/amanda. Don't blame me, I'm not a kubuntu developer. See? Its sort of a now it can be told thing. But that brings up the question of who owns /home/amanda on such a (broken IMO) installation? Somebody should tell the debian/buntu folks that one user, amanda, is more than enough to make a good install. And that leaves my mind quite well confused about just who the heck owns what here. And I don't think this is something I can blame on alzheimers even if I will be 75 on Sunday. This bit of cross-correlation should be FAQ'd better, or a manpage on amandahosts written that covers all this. I note that manpage is conspiciously absent. The overall problem you faced here is due to different distros building Amanda differently, and there's no simple way to document that that wouldn't change daily as distros changed. However, an amandahosts manpage would be a good thing. Do you want to write one? I think there's some info in amanda(8) already, but a separate manpage is a good idea. I agree, as long as it doesn't lead to a lot of duplication in maintaining it. Dustin Obviously I don't know enough about it to write it. You just saw the evidence of that. :( Lets see, this is 2009, which means I've been running amanda for a decade now, but always in my own isolated, little, occasionally warped world. Thanks Dustin. -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) The NRA is offering FREE Associate memberships to anyone who wants them. https://www.nrahq.org/nrabonus/accept-membership.asp The all-softening overpowering knell, The tocsin of the soul, -- the dinner bell. -- Lord Byron
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Thu, Oct 1, 2009 at 12:20 PM, Gene Heskett gene.hesk...@verizon.net wrote: Many many thanks for the hint, but it was confusing that it was the Shop:/home/amanda/.amandahosts file I fixed, and not the Shop:/home/backup/.amandahosts. Presumably backup's home directory (in /etc/passwd) is /home/amanda. Don't blame me, I'm not a kubuntu developer. And that leaves my mind quite well confused about just who the heck owns what here. And I don't think this is something I can blame on alzheimers even if I will be 75 on Sunday. This bit of cross-correlation should be FAQ'd better, or a manpage on amandahosts written that covers all this. I note that manpage is conspiciously absent. The overall problem you faced here is due to different distros building Amanda differently, and there's no simple way to document that that wouldn't change daily as distros changed. However, an amandahosts manpage would be a good thing. Do you want to write one? I think there's some info in amanda(8) already, but a separate manpage is a good idea. Dustin -- Open Source Storage Engineer http://www.zmanda.com
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Thursday 01 October 2009, Dustin J. Mitchell wrote: On Thu, Oct 1, 2009 at 12:20 PM, Gene Heskett gene.hesk...@verizon.net wrote: Many many thanks for the hint, but it was confusing that it was the Shop:/home/amanda/.amandahosts file I fixed, and not the Shop:/home/backup/.amandahosts. Presumably backup's home directory (in /etc/passwd) is /home/amanda. Don't blame me, I'm not a kubuntu developer. Humm, from /etc/passwd: amanda:x:1001:6:...:/var/lib/amanda:/bin/bash backup:x:34:34:backup:/var/backups:/bin/sh some swahili there, must be time to re-read man 5 passwd. Which says: /etc/passwd contains one line for each user account, with seven fields delimited by colons (“:”). These fields are: · login name · optional encrypted password · numerical user ID · numerical group ID · user name or comment field · user home directory · optional user command interpreter /usr/lib/amanda and /var/backups? ? ? And amanda has no username? ? ? 1. Shop:/var/lib/amanda is owned by backup:backup. I don't recall if that was the installer, or me that made it so. It works. 2. Shop:/var/backups contains only the dpkg.gz files.? And fixing the file /home/amanda/.amandahosts made it work. I think I need a 12 pack, or a gun loaded with gremlin killer bullets. Unforch that beer _could_ kill me according to the propaganda that came with Metformin, which I was put on last week for my diabetes. A A1C=7.2 finally made him get out the script pad. So now my limit really is 2 a day. -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) The NRA is offering FREE Associate memberships to anyone who wants them. https://www.nrahq.org/nrabonus/accept-membership.asp Nachman's Rule: When it comes to foreign food, the less authentic the better. -- Gerald Nachman
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Thu, 01 Oct 2009 12:58:48 -0400 Gene Heskett gene.hesk...@verizon.net wrote: On Thursday 01 October 2009, Dustin J. Mitchell wrote: On Thu, Oct 1, 2009 at 12:20 PM, Gene Heskett gene.hesk...@verizon.net wrote: Many many thanks for the hint, but it was confusing that it was the Shop:/home/amanda/.amandahosts file I fixed, and not the Shop:/home/backup/.amandahosts. Presumably backup's home directory (in /etc/passwd) is /home/amanda. Don't blame me, I'm not a kubuntu developer. See? Its sort of a now it can be told thing. But that brings up the question of who owns /home/amanda on such a (broken IMO) installation? Actually, nobody owns it; it doesn't exist on a standard Ubuntu installation. From my unchanged Ubuntu client installation: r...@dzur:/var# grep backup /etc/passwd backup:x:34:34:backup:/var/backups:/bin/sh r...@dzur:/var# -- Charles Curley /\ASCII Ribbon Campaign Looking for fine software \ /Respect for open standards and/or writing? X No HTML/RTF in email http://www.charlescurley.com/ \No M$ Word docs in email Key fingerprint = CE5C 6645 A45A 64E4 94C0 809C FFF6 4C48 4ECD DFDB
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Thursday 01 October 2009, Charles Curley wrote: On Thu, 01 Oct 2009 12:58:48 -0400 Gene Heskett gene.hesk...@verizon.net wrote: On Thursday 01 October 2009, Dustin J. Mitchell wrote: On Thu, Oct 1, 2009 at 12:20 PM, Gene Heskett gene.hesk...@verizon.net wrote: Many many thanks for the hint, but it was confusing that it was the Shop:/home/amanda/.amandahosts file I fixed, and not the Shop:/home/backup/.amandahosts. Presumably backup's home directory (in /etc/passwd) is /home/amanda. Don't blame me, I'm not a kubuntu developer. See? Its sort of a now it can be told thing. But that brings up the question of who owns /home/amanda on such a (broken IMO) installation? Actually, nobody owns it; it doesn't exist on a standard Ubuntu installation. From my unchanged Ubuntu client installation: r...@dzur:/var# grep backup /etc/passwd backup:x:34:34:backup:/var/backups:/bin/sh r...@dzur:/var# Oookaaay, what do you get from a grep amanda /etc/passwd? Yeah, this might be a 2 beer night yet. :( Thanks Charles -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) The NRA is offering FREE Associate memberships to anyone who wants them. https://www.nrahq.org/nrabonus/accept-membership.asp Bucy's Law: Nothing is ever accomplished by a reasonable man.
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Thu, 01 Oct 2009 20:51:56 -0400 Gene Heskett gene.hesk...@verizon.net wrote: On Thursday 01 October 2009, Charles Curley wrote: On Thu, 01 Oct 2009 12:58:48 -0400 Gene Heskett gene.hesk...@verizon.net wrote: On Thursday 01 October 2009, Dustin J. Mitchell wrote: See? Its sort of a now it can be told thing. But that brings up the question of who owns /home/amanda on such a (broken IMO) installation? Actually, nobody owns it; it doesn't exist on a standard Ubuntu installation. From my unchanged Ubuntu client installation: r...@dzur:/var# grep backup /etc/passwd backup:x:34:34:backup:/var/backups:/bin/sh r...@dzur:/var# Oookaaay, what do you get from a grep amanda /etc/passwd? About the value of a political promise on election night. ccur...@dragon:~$ egrep amanda\|backup /etc/passwd backup:x:34:34:backup:/var/backups:/bin/sh ccur...@dragon:~$ grep amanda /etc/passwd ccur...@dragon:~$ -- Charles Curley /\ASCII Ribbon Campaign Looking for fine software \ /Respect for open standards and/or writing? X No HTML/RTF in email http://www.charlescurley.com/ \No M$ Word docs in email Key fingerprint = CE5C 6645 A45A 64E4 94C0 809C FFF6 4C48 4ECD DFDB
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Thursday 01 October 2009, Charles Curley wrote: On Thu, 01 Oct 2009 20:51:56 -0400 Gene Heskett gene.hesk...@verizon.net wrote: On Thursday 01 October 2009, Charles Curley wrote: On Thu, 01 Oct 2009 12:58:48 -0400 Gene Heskett gene.hesk...@verizon.net wrote: On Thursday 01 October 2009, Dustin J. Mitchell wrote: See? Its sort of a now it can be told thing. But that brings up the question of who owns /home/amanda on such a (broken IMO) installation? Actually, nobody owns it; it doesn't exist on a standard Ubuntu installation. From my unchanged Ubuntu client installation: r...@dzur:/var# grep backup /etc/passwd backup:x:34:34:backup:/var/backups:/bin/sh r...@dzur:/var# Oookaaay, what do you get from a grep amanda /etc/passwd? About the value of a political promise on election night. ccur...@dragon:~$ egrep amanda\|backup /etc/passwd backup:x:34:34:backup:/var/backups:/bin/sh ccur...@dragon:~$ grep amanda /etc/passwd ccur...@dragon:~$ So you don't even have a user amanda, nor a /home/amanda directory... Interesting. Bears further investigation I believe. When I'm fresher. Thanks Charles. -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) The NRA is offering FREE Associate memberships to anyone who wants them. https://www.nrahq.org/nrabonus/accept-membership.asp Laundry is the fifth dimension!! ... um ... um ... th' washing machine is a black hole and the pink socks are bus drivers who just fell in!!
user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
Greetings; I just nuked the amanda install, then re-installed on that box, so now everything is as user:group=root:root except the runtar related stuffs. From that install, an ls -la of /usr/lib/amanda: total 204 drwxr-xr-x 2 root root4096 2009-09-30 22:14 . drwxr-xr-x 115 root root 45056 2009-09-30 22:14 .. -rwxr-xr-x 1 root root 15000 2005-12-31 09:48 amandad -rwxr-xr-x 1 root root5068 2005-12-31 09:48 amqde -rwxr-xr-x 1 root root9816 2005-12-31 09:48 calcsize -rwsr-xr-- 1 root backup 5224 2005-12-31 09:48 killpgrp -rwxr-xr-x 1 root root4810 2005-12-31 09:48 patch-system -rwsr-xr-- 1 root backup 4628 2005-12-31 09:48 rundump -rwsr-xr-- 1 root backup 4928 2005-12-31 09:48 runtar -rwxr-xr-x 1 root root 18096 2005-12-31 09:48 selfcheck -rwxr-xr-x 1 root root 32008 2005-12-31 09:48 sendbackup -rwxr-xr-x 1 root root 30712 2005-12-31 09:48 sendsize -rwxr-xr-x 1 root root3084 2005-12-31 09:48 versionsuffix And that looks scary as hell to me in terms of security. But who knows just how the hell they cram amanda into a deb. So I give up, add a user backup, and change everything in a parallel configuration directory to be backup instead of amanda. So, my question then since the runtar log generated by my running an su amanda -c amcheck Shop if the user is amanda gets me this: -- runtar: debug 1 pid 5864 ruid 0 euid 34: start at Wed Sep 30 22:10:47 2009 /usr/lib/amanda/runtar: version 2.4.5p1 runtar: error [must be invoked by backup] runtar: pid 5864 finish time Wed Sep 30 22:10:47 2009 --- So, making all instances of the user amanda into backup in the config and a few other changes: -- [r...@coyote Shop]# su backup -c amcheck Shop bash: /usr/local/sbin/amcheck: Permission denied --- So, I add backup to the disk string in group, and disk to the backup entry in group, and get this: - r...@coyote etc]# su backup -c amcheck Shop amcheck: critical (fatal): create debug directory /tmp/amanda-dbg//server/: Permission denied amcheck: create debug directory /tmp/amanda-dbg//server/: Permission denied /usr/local/lib/amanda/libamanda-2.6.2alpha-20090831.so[0xb7e80c66] /lib/libglib-2.0.so.0(g_logv+0x26f)[0x4f9a527f] /lib/libglib-2.0.so.0(g_log+0x26)[0x4f9a5626] /usr/local/lib/amanda/libamanda-2.6.2alpha-20090831.so[0xb7e8011c] /usr/local/lib/amanda/libamanda-2.6.2alpha-20090831.so(debug_open+0x52) [0xb7e807e2] amcheck(main+0x95)[0x8050435] /lib/libc.so.6(__libc_start_main+0xe5)[0x4523c6e5] amcheck[0x804a2f1] -- Which looks like it gives a lot of stuff a bellyache. Is there a way to use both 'amanda' as the local user, and 'backup' for the user going out on le0, or how can I widen the perms, hummm, change the damned /tmp path to /tmp/backup give it its own perms maybe. Except its trying to make the subdirs in /tmp/amanda, which are quite restricted access. So that's a non starter. And all I really wanted to do was to add 4 entrys in the 'Daily' disklist to pickup the emc related stuff from my milling machine, but I had NDI it would be a 2 week job its still not working. Discouraging to say the least. -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) The NRA is offering FREE Associate memberships to anyone who wants them. https://www.nrahq.org/nrabonus/accept-membership.asp Look afar and see the end from the beginning.
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Wed, Sep 30, 2009 at 10:46 PM, Gene Heskett gene.hesk...@verizon.net wrote: I just nuked the amanda install, then re-installed on that box, so now everything is as user:group=root:root except the runtar related stuffs. I'm so confused -- is this related to the permissions work we've been doing? Because we didn't change ownership of anything (that's a packaging issue) or what's setuid and what's not.. Dusitn -- Open Source Storage Engineer http://www.zmanda.com
Re: user amanda on server, user backup on client, access denied to ama...@coyote.coyote.den
On Wednesday 30 September 2009, Dustin J. Mitchell wrote: On Wed, Sep 30, 2009 at 10:46 PM, Gene Heskett gene.hesk...@verizon.net wrote: I just nuked the amanda install, then re-installed on that box, so now everything is as user:group=root:root except the runtar related stuffs. I'm so confused -- is this related to the permissions work we've been doing? Because we didn't change ownership of anything (that's a packaging issue) or what's setuid and what's not.. Dusitn This is how it came out of the deb packages. I assume it worked, for *buntu's. So the problem now is how to specify that while the amanda user is named amanda on this box, the amanda user is named backup on that box. And apparently never the twain shall meet. :( -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) The NRA is offering FREE Associate memberships to anyone who wants them. https://www.nrahq.org/nrabonus/accept-membership.asp Military justice is to justice what military music is to music. -- Groucho Marx
