Tobias wrote:
amcheck complains with "port (insert-highport-here) is not secure". I've
read the amanda FAQs but the answer given to this problem didn't help because
I haven't installed the firewalls and am by far no firewall magician. Why
does amanda receive the highport which should have been mapped back by
the inner-firewall? And what rules do I have to add to make it work? Do
I need port forwarding? Or is there another way to do what I want?
A quick-and-dirty method is to adapt the sources used to compile your
client:
in common-src/security.c:
229
230 /* next, make sure the remote port is a "reserved" one */
231
232 if(ntohs(addr->sin_port) >= IPPORT_RESERVED) {
233 ap_snprintf(number, sizeof(number), "%d",
ntohs(addr->sin_port));
234 *errstr = vstralloc("[",
235 "host ", remotehost, ": ",
236 "port ", number, " not secure",
237 "]", NULL);
238 amfree(remotehost);
239 return 0;
240 }
Comment it out.
The added benefit of this test is not as strong as it used to be, in
these days where everybody can be root on his PC, and connect from a
reserved (<1024) port.
--
Paul Bijnens, Xplanation Tel +32 16 397.511
Technologielaan 21 bus 2, B-3001 Leuven, BELGIUM Fax +32 16 397.512
http://www.xplanation.com/ email: Paul.Bijnens AT xplanation DOT com
***********************************************************************
* I think I've got the hang of it now: exit, ^D, ^C, ^\, ^Z, ^Q, F6, *
* quit, ZZ, :q, :q!, M-Z, ^X^C, logoff, logout, close, bye, /bye, *
* stop, end, F3, ~., ^]c, +++ ATH, disconnect, halt, abort, hangup, *
* PF4, F20, ^X^X, :D::D, KJOB, F14-f-e, F8-e, kill -1 $$, shutdown, *
* kill -9 1, Alt-F4, Ctrl-Alt-Del, AltGr-NumLock, Stop-A, ... *
* ... "Are you sure?" ... YES ... Phew ... I'm out *
***********************************************************************
|
