Jason Castonguay wrote:
Hi list,
Maybe I missed something in the documentation, wiki, faq, forum, or in
the list archives, but besides adding ssh authentication in the dumptype
what steps does one take to use it?
I assume its using keys and the amanda backup user then runs a command
via ssh. Does it only use amandad over it? How about recovery? Does this
mean if use ssh, amanda will only use ssh for communication between the
two machines?
Thanks.
PS Would any debian users/developers here please give me feedback on
the amanda 2.5 packages I built?
http://www.solutionsforprogress.com/~jcastonguay/
They still need a bit of polish, but work for me.
one more thing, needs to configure Amanda with --with-ssh-security.
It will install dumper/amcheck non-suid.
--Kevin
1. set "auth ssh" in the dumptype
2. both server and client must be configured exactly the same
a. username needs to be the same
b. location of amandad binaries needs to be the same
c. a sourceforge RFE bug to request the above restrictions configurable.
3. ssh-keygen -t rsa
it will create ~amanda_user/.ssh/id_rsa and ~amanda_user/.ssh/id_rsa.pub
copy ~amanda_user/.ssh/id_rsa.pub to the client machine and append it
to ~amanda_user/.ssh/authorized_keys
chmod 600 ~amanda_user/.ssh/authorized_keys
4. ssh-add
{will prompt for the passphrase}
{it will add the RSA identities to the authentication agent}
5. run amdump as you normally do.
( amrecover/amrestore has not been updated to make use of Security API
to support auth=ssh)
I will add the above to wiki.zmanda.com
--Kevin Till
Zmanda
--
Thank you!
Kevin Till
Amanda documentation: http://wiki.zmanda.com
Amanda forums: http://forums.zmanda.com
| 