Question: getting permission denied..but..
Amanda runs as AMANDA/operator (solaris 2.8)
Here is my disklist
**********
# sample Amanda2 disklist file, derived from CS.UMD.EDU's disklist
# see disklist.original for original
#
# tape host itself tape.control.att.com
# always-full
tape.control.att.com /dev/dsk/c0t0d0s0 always-full
tape.control.att.com /dev/dsk/c0t0d0s7 always-full
# Client 1: Cluster-adm.control.att.com
cluster-adm.control.att.com /dev/dsk/c0t0d0s5 always-full
# /dev/dsk/c0t0d0s5 = /opt = where bkups are written
cluster-adm.control.att.com /dev/dsk/c0t0d0s0 comp-root
# /dev/dsk/c0t0d0s0 is /
cluster-adm.control.att.com /dev/dsk/c0t0d0s3 comp-user
# /dev/dsk/c0t0d0s0 is /usr
**********
my amanda daemon debug on "tape" (host) shows:
amandad: debug 1 pid 13331 ruid 107 euid 107: start at Mon Aug 4 12:23:32 2003
amandad: version 2.4.4p1
amandad: time 0.000: got packet:
--------
Amanda 2.4 REQ HANDLE 000-0003EDE0 SEQ 1060014213
SECURITY USER amanda
SERVICE selfcheck
OPTIONS features=fffffeff9ffe0f;maxdumps=1;hostname=tape.control.att.com;
DUMP /dev/dsk/c0t0d0s7 0 OPTIONS |;auth=bsd;
DUMP /dev/dsk/c0t0d0s0 0 OPTIONS |;auth=bsd;
--------
amandad: time 0.000: sending ack:
----
Amanda 2.4 ACK HANDLE 000-0003EDE0 SEQ 1060014213
----
amandad: time 0.002: bsd security: remote host tape.control.att.com user amanda
local user amanda
amandad: time 0.002: amandahosts security check passed
amandad: time 0.002: running service "/usr/local/libexec/selfcheck"
amandad: time 0.028: sending REP packet:
----
Amanda 2.4 REP HANDLE 000-0003EDE0 SEQ 1060014213
OPTIONS features=fffffeff9ffe0f;
OK /dev/dsk/c0t0d0s7
OK /dev/dsk/c0t0d0s7
OK /dev/rdsk/c0t0d0s7
OK /dev/dsk/c0t0d0s0
OK /dev/dsk/c0t0d0s0
OK /dev/rdsk/c0t0d0s0
OK /usr/sbin/ufsdump executable
OK /etc/dumpdates read/writable
OK /dev/null read/writable
OK /tmp/amanda has more than 64 KB available.
OK /tmp/amanda has more than 64 KB available.
OK /etc has more than 64 KB available.
----
amandad: time 0.029: got packet:
----
Amanda 2.4 ACK HANDLE 000-0003EDE0 SEQ 1060014213
----
amandad: time 0.029: pid 13331 finish time Mon Aug 4 12:23:32 2003
~
which looks ok.
Next, on the client: my amandad shows:
amandad: debug 1 pid 9427 ruid 104 euid 104: start at Mon Aug 4 12:28:56 2003
amandad: version 2.4.4p1
amandad: time 0.000: got packet:
--------
Amanda 2.4 REQ HANDLE 001-0003ECD0 SEQ 1060014214
SECURITY USER amanda
SERVICE selfcheck
OPTIONS features=fffffeff9ffe0f;maxdumps=1;hostname=cluster-adm.control.att.com;
DUMP /dev/dsk/c0t0d0s3 0 OPTIONS |;auth=bsd;compress-fast;
DUMP /dev/dsk/c0t0d0s0 0 OPTIONS |;auth=bsd;compress-fast;
DUMP /dev/dsk/c0t0d0s5 0 OPTIONS |;auth=bsd;
--------
amandad: time 0.001: sending ack:
----
Amanda 2.4 ACK HANDLE 001-0003ECD0 SEQ 1060014214
----
amandad: time 0.003: bsd security: remote host tape.control.att.com user amanda
local user amanda
amandad: time 0.003: amandahosts security check passed
amandad: time 0.003: running service "/usr/local/libexec/selfcheck"
amandad: time 0.058: sending REP packet:
----
Amanda 2.4 REP HANDLE 001-0003ECD0 SEQ 1060014214
OPTIONS features=fffffeff9ffe0f;
ERROR [could not access /dev/rdsk/c0t0d0s3 (/dev/dsk/c0t0d0s3): Permission
denied]
ERROR [could not access /dev/rdsk/c0t0d0s0 (/dev/dsk/c0t0d0s0): Permission
denied]
ERROR [could not access /dev/rdsk/c0t0d0s5 (/dev/dsk/c0t0d0s5): Permission
denied]
OK /usr/sbin/ufsdump executable
OK /usr/bin/gzip executable
^
OK /etc/dumpdates read/writable
|
OK /dev/null read/writable
|
OK /tmp/amanda has more than 64 KB available.
|
OK /tmp/amanda has more than 64 KB available.
|
OK /etc has more than 64 KB available.
|
----
|
|
amandad: time 0.058: got packet:
|
----
|
Amanda 2.4 ACK HANDLE 001-0003ECD0 SEQ 1060014214
|
----
|
|
amandad: time 0.059: pid 9427 finish time Mon Aug 4 12:28:56 2003 |
NOTE . directory (dev/rdsk) is operator
but on that machine: I show:
root@cluster-adm: /dev/rdsk #> ls -la c0t0do*
c0t0do*: No such file or directory
root@cluster-adm: /dev/rdsk #> ls -la
total 40
drwxrwxr-x 2 root operator 512 May 16 2000 .
drwxrwxr-x 18 root sys 3072 Jul 3 12:53 ..
lrwxrwxrwx 1 root root 50 May 16 2000 c0t0d0s0 ->
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:a,raw
lrwxrwxrwx 1 root root 50 May 16 2000 c0t0d0s1 ->
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:b,raw
lrwxrwxrwx 1 root root 50 May 16 2000 c0t0d0s2 ->
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:c,raw
lrwxrwxrwx 1 root root 50 May 16 2000 c0t0d0s3 ->
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:d,raw
lrwxrwxrwx 1 root root 50 May 16 2000 c0t0d0s4 ->
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:e,raw
lrwxrwxrwx 1 root root 50 May 16 2000 c0t0d0s5 ->
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:f,raw
lrwxrwxrwx 1 root root 50 May 16 2000 c0t0d0s6 ->
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:g,raw
lrwxrwxrwx 1 root root 50 May 16 2000 c0t0d0s7 ->
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:h,raw
lrwxrwxrwx 1 root root 54 May 16 2000 c0t2d0s0 ->
../../devices/pci@1f,0/pci@1,1/ide@3/atapicd@2,0:a,raw
lrwxrwxrwx 1 root root 54 May 16 2000 c0t2d0s1 ->
../../devices/pci@1f,0/pci@1,1/ide@3/atapicd@2,0:b,raw
lrwxrwxrwx 1 root root 54 May 16 2000 c0t2d0s2 ->
../../devices/pci@1f,0/pci@1,1/ide@3/atapicd@2,0:c,raw
lrwxrwxrwx 1 root root 54 May 16 2000 c0t2d0s3 ->
../../devices/pci@1f,0/pci@1,1/ide@3/atapicd@2,0:d,raw
lrwxrwxrwx 1 root root 54 May 16 2000 c0t2d0s4 ->
../../devices/pci@1f,0/pci@1,1/ide@3/atapicd@2,0:e,raw
lrwxrwxrwx 1 root root 54 May 16 2000 c0t2d0s5 ->
../../devices/pci@1f,0/pci@1,1/ide@3/atapicd@2,0:f,raw
lrwxrwxrwx 1 root root 54 May 16 2000 c0t2d0s6 ->
../../devices/pci@1f,0/pci@1,1/ide@3/atapicd@2,0:g,raw
lrwxrwxrwx 1 root root 54 May 16 2000 c0t2d0s7 ->
../../devices/pci@1f,0/pci@1,1/ide@3/atapicd@2,0:h,raw
AND if I go further:
I see
root@cluster-adm: /dev/rdsk #> ls -la
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:a,raw
crw------- 1 root operator 153, 0 May 16 2000
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:a,raw
So it seems the Permissions ARE ok.
(and yes, I changed the permissions for /dev/dsk too)
ideas?
As a matter of fact, I just re-checked the permissions, after re-running the
command, and get (on host):
Amanda Backup Client Hosts Check
--------------------------------
ERROR: cluster-adm.control.att.com: [could not access /dev/rdsk/c0t0d0s3
(/dev/dsk/c0t0d0s3): Permission denied]
and then looked at files on client and see:
root@cluster-adm: /dev/dsk #> ls -al /dev/dsk/c0t0d0s3
lrwxrwxrwx 1 root root 46 May 16 2000 /dev/dsk/c0t0d0s3 ->
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:d
root@cluster-adm: /dev/dsk #> ls -al
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:d
brw------- 1 root operator 153, 3 May 16 2000
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:d
and
ls -al /dev/rdsk/c0t0d0s3
lrwxrwxrwx 1 root root 50 May 16 2000 /dev/rdsk/c0t0d0s3 ->
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:d,raw
root@cluster-adm: /dev/dsk #> ls -al
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:d,raw
crw------- 1 root operator 153, 3 Feb 8 2002
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:d,raw
(and if I try and set the chowner on the /dev/dsk, it just ignores it there,
chown root:operator /dev/dsk/c0t0d0s3
root@cluster-adm: /dev/dsk #> ls -al /dev/dsk/c0t0d0s3
lrwxrwxrwx 1 root root 46 May 16 2000 /dev/dsk/c0t0d0s3 ->
../../devices/pci@1f,0/pci@1,1/ide@3/dad@0,0:d
THanks in advance
|