Eugen Leitl wrote:
Joshua Baker-LePain wrote:
Would it help if I do a ./configure --with-user=root ?
Don't Do That. Amanda won't (and shouldn't) run that way. But you do
I know. I was just getting desperate, and started tweaking random things.
need to do 'make install' as root, as several binaries need to be
setuid root. Did you do this?
Originally, yes. make install as root.
However, I'm getting a verboten:
bash-2.00$ amcheck daily
bash: /usr/local/sbin/amcheck: Permission denied
# /usr/local/sbin/amcheck daily
# su amanda -c 'amcheck daily'
amcheck: running as user "root" instead of "amanda"
# chown amanda /usr/local/sbin/amcheck
# ls -la /usr/local/sbin/amcheck
-rwsr-x--- 1 amanda backup 129412 Jan 8 14:48
The setuid bit only changes the effective user ID when you run a program, not
the real user ID. Is "amanda" in the "backup" group? What does "id -Gn amanda"
say?
I would:
# chown root /usr/local/sbin/amcheck
# chmod 4750 /usr/local/sbin/amcheck
(Just in case the chown turns off the setuid bit)
# usermod -G backup amanda
(adding any other groups you need)
HTH,
John
/usr/local/sbin/amcheck
# /usr/local/sbin/amcheck daily
amcheck: running as user "root" instead of "amanda"
# exit
# bash-2.00$ whoami
amanda
bash-2.00$ /usr/local/sbin/amcheck daily
Amanda Tape Server Host Check
-----------------------------
ERROR: program /usr/local/libexec/planner: not executable
Holding disk /Disk2/AMANDA: 2692456 KB disk space available, that's plenty
NOTE: skipping tape-writable test
Tape DailySet11 label ok
NOTE: info dir /usr/adm/amanda/DailySet1/curinfo: does not exist
NOTE: it will be created on the next run
NOTE: index dir /usr/adm/amanda/DailySet1/index/192.168.0.73: does not
exist
Server check took 0.164 seconds
Amanda Backup Client Hosts Check
--------------------------------
ERROR: 192.168.0.73: [host u03: port 57421 not secure]
Client check: 1 host checked in 0.130 seconds, 1 problem found
(brought to you by Amanda 2.4.4p1)
| 