Amanda-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Still get ERROR [host fw.my.co.uk: port 62679 not secure] after I added my ipchain rule:

2006-02-20 09:00:02
Subject: Re: Still get ERROR [host fw.my.co.uk: port 62679 not secure] after I added my ipchain rule:
From: Chuck Amadi Systems Administrator <chuck AT smtl.co DOT uk>
To: Paul Bijnens <paul.bijnens AT xplanation DOT com>, Amanda List <amanda-users AT amanda DOT org>
Date: Mon, 20 Feb 2006 13:51:55 +0000 
Hi Paul

amanda@tape-server:/root> /usr/sbin/amcheck DailySet1
Amanda Tape Server Host Check
-----------------------------
Holding disk /backup/amanda-daily: 5216316 KB disk space available,
that's plent
y
NOTE: skipping tape-writable test
Tape SMTLSet102 label ok
WARNING: info
file /var/lib/amanda/DailySet1/curinfo/server.my.co.uk/_/inf
o: does not exist
Server check took 8.838 seconds

Amanda Backup Client Hosts Check
--------------------------------
ERROR: server.my.co.uk: [access as amanda not allowed from amanda AT fw DOT my.
co.uk] open of /home/amanda/.amandahosts failed
Client check: 4 hosts checked in 10.078 seconds, 1 problem found

I created a dir and file /var/lib/amanda/.amandahosts file I have of
course not got a /home/amanda/.amandahosts on my fw.my.co.uk server So
should I created a user and the necessary dir and files.

Thus added to .amandahosts file:
I haven't create a user amanda or group disk Yet But am I on the right
track with this new amacheck error.

localhost amanda
localhost root
server.my.co.uk amanda
server.my.co.uk root
tape-server.myl.co.uk amanda
tape-server.my.co.uk root

Cheers Paul and List.





On Mon, 2006-02-20 at 12:33 +0100, Paul Bijnens wrote:
> On 2006-02-20 12:29, Paul Bijnens wrote:
> >>>> On Thu, 2006-02-16 at 17:52 +0100, Paul Bijnens wrote:
> >>>>>
> >>>>> You find this section:
> >>>>>
> >>>>>   229
> >>>>>   230     /* next, make sure the remote port is a "reserved" one */
> >>>>>   231
> >>>>>   232     if(ntohs(addr->sin_port) >= IPPORT_RESERVED) {
> >>>>>   233         ap_snprintf(number, sizeof(number), "%d", 
> >>>>> ntohs(addr->sin_port));
> >>>>>   234         *errstr = vstralloc("[",
> >>>>>   235                             "host ", remotehost, ": ",
> >>>>>   236                             "port ", number, " not secure",
> >>>>>   237                             "]", NULL);
> >>>>>   238         amfree(remotehost);
> >>>>>   239         return 0;
> >>>>>   240     }
> >>>>>
> >>>>> and make test test succeed always, by changing line 232:
> >>>>>
> >>>>>   232     if(1 || ntohs(addr->sin_port) >= IPPORT_RESERVED) {
> >>>>>
> >>>>>
> >>>>> i.e. add the "1 ||" string to the if statement.
> 
> Oops, that should have been: "0  &&" , not "1  ||".
> The ideas is to make this always fail, not always succeed.
> 
> 
> 
> PS.  btw, any mail to "chuck AT smtl.co DOT uk" bounces!
> 
-- 
Unix/ Linux Systems Administrator
Chuck Amadi
The Surgical Material Testing Laboratory (SMTL), 
Princess of Wales Hospital 
Coity Road 
Bridgend, 
United Kingdom, CF31 1RQ.
Email chuck.smtl.co.uk
Tel: +44 1656 752820 
Fax: +44 1656 752830
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: amrecover doesn't prompt for tape change?, Paul Bijnens
Next by Date:  Re: Still get ERROR [host fw.my.co.uk: port 62679 not secure] after I added my ipchain rule:, Paul Bijnens
Previous by Thread:  Re: Still get ERROR [host fw.my.co.uk: port 62679 not secure] after I added my ipchain rule:, Paul Bijnens
Next by Thread:  Re: Still get ERROR [host fw.my.co.uk: port 62679 not secure] after I added my ipchain rule:, Paul Bijnens
Indexes:  [Date] [Thread] [Top] [All Lists]