Also sprach Paul Bijnens (Wed 02 Jul 02003 at 07:35:07PM +0200):
> Michael D. Schleif wrote:
> ># sudo -u backup amcheck -c DailySet1
> >
> >Amanda Backup Client Hosts Check
> >--------------------------------
> >WARNING: Bragi.private.network: selfcheck request timed out. Host down?
> >Client check: 1 host checked in 30.025 seconds, 1 problem found
> >
> >(brought to you by Amanda 2.4.4)
> >
> >root@Bragi:/var/log/amanda/DailySet1
> ># ls -l /tmp/amanda/* /var/log/amanda/DailySet1/*
> >-rw------- 1 backup backup 182 Jul 2 11:51
> >/tmp/amanda/amcheck.20030702115039.debug
> >-rw------- 1 backup backup 176 Jul 2 11:55
> >/tmp/amanda/amtrmidx.20030702115535.debug
> >-rw------- 1 backup backup 197 Jul 2 11:55
> >/tmp/amanda/amtrmlog.20030702115535.debug
> >-rw------- 1 backup backup 5804 Jul 2 11:55
> >/var/log/amanda/DailySet1/amdump.1
> >-rw------- 1 backup backup 562 Jul 2 11:55
> >/var/log/amanda/DailySet1/log.20030702.0
>
> There should be a file /tmp/amanda/amandad.*.debug too.
> That's the file that the client side creates with the debug info.
>
> Its absence means that amandad (listening on port 10080 udp) is not
> even started by (x)inetd. You should take a very very close look
> at that line in the inetd config.
> Have a look in /var/{log,adm}/messages too.
> Maybe (temporarily) remove the tcpd wrapper, if you use it.
> Disable any firewall (check ipchains AND iptables!).
>
> If you have nc installed (because you need udp and not tcp)?
> try sending a bogus command to the amandad daemon:
>
> # echo | nc -u bragi 10080
> Amanda 2.4 NAK HANDLE SEQ 0
> ERROR expected "Amanda", got ""
> ^C <--- interrupt with Control-C
> punt!
> #
>
> You can even try to start amandad up manually (but you want be
> able to communicate with it), and trace it:
>
> # strace /usr/local/libexec/amandad
> ...(many lines output removed)...
> select(1, [0], NULL, NULL, {30, 0}
> ^C
Eureka!
Some time ago, I had done quite a bit of hardening of this system,
bragi. Even though I had looked in the system logs for amanda errors, I
did not make this correlation:
Jul 2 12:52:59 Bragi inetd[21590]: execv /usr/sbin/tcpd: Permission denied
Jul 2 12:52:59 Bragi inetd[351]: /usr/sbin/tcpd: exit status 0x1
/usr/sbin/tcpd had mode -rwxr-x--- (0750), and it requires -rwxr-xr-x
(0750), since backup does not belong to group root.
I have other problems; but, at least amcheck is satisfied and I have
several times gotten amanda to start backing up.
Thank you.
--
Best Regards,
mds
mds resource
877.596.8237
-
Dare to fix things before they break . . .
-
Our capacity for understanding is inversely proportional to how much
we think we know. The more I know, the more I know I don't know . . .
--
pgp3EAU7eIIAL.pgp
Description: PGP signature
|