Amanda-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: amanda & ssh security

2008-07-18 09:36:58
Subject: Re: amanda & ssh security
From: Jean-Louis Martineau <martineau AT zmanda DOT com>
To: mister.olli AT googlemail DOT com
Date: Fri, 18 Jul 2008 09:33:33 -0400 
Which release of amanda?
Are you sure you are running the newly compiled amcheck? Use the full patch when running it and show me the file is recent with 'ls -l'. 
Post the configure output, did it find the ssh binary?
Post the output of make, did it compiled the ssh-security.c file?

Jean-Louis

Mister Olli wrote:

hi...

I compiled amanda on freebsd 7.0 with SSH security activated...

since the port had some bug, after fixing, the configure output starts
like this:

This file contains any messages produced by compilers while
running configure, to aid debugging if configure makes a mistake.

It was created by configure, which was
generated by GNU Autoconf 2.61.  Invocation command line was

  $ ./configure --libexecdir=/usr/local/libexec/amanda
--with-amandahosts --with-fqdn --with-dump-honor-nodump
--with-buffered-dump --dis
able-libtool --prefix=/usr/local --with-user=amanda --with-group=backup
--with-index-server=hdb-bak-001.DOMAIN --with-tape-server=hdb-ba
k-001.DOMAIN --with-gnutar-listdir=/usr/local/var/amanda/gnutar-lists
--with-gnutar=/usr/local/bin/gtar --without-client --with-ssh-secu
rity --prefix=/usr/local --mandir=/usr/local/man
--infodir=/usr/local/info/ --build=i386-portbld-freebsd6.2

## --------- ##
## Platform. ##
## --------- ##

[...SNIP...]


so to me it looks like SSH security is activated, and there are no
problems during compilation.


however, with this configuration

[...SNIP...]
define dumptype tar {
        comment         "Default backup method, using GNU-tar and no holding 
disk"
        compress        none
        exclude list    "/etc/amanda/daily-exclude"
        holdingdisk     auto
        index           yes
        program         "GNUTAR"
        record          yes
        index           yes
        tape_splitsize  20 GB   # split dumps, to reduce disc usage;
size=tapesize/10
}

define dumptype ssh-tar {
        tar
        auth "ssh"
        ssh_keys "/home/amanda/.ssh/id_rsa"
        client_username "amanda"

}
[...SNIP...]

amcheck on this job always fails with this messages:

# sudo -u amanda amcheck daily
Amanda Tape Server Host Check
-----------------------------
Holding disk /holding/daily: 424871 MB disk space available, using
424871 MB
slot 3: read label `Tape03', date `20080704'
NOTE: skipping tape-writable test
Tape Tape03 label ok
NOTE: host info dir /home/amanda/daily/curinfo/172.31.1.11 does not
exist
NOTE: it will be created on the next run.
NOTE: index dir /home/amanda/daily/index/172.31.1.11 does not exist
NOTE: it will be created on the next run.
Server check took 0.037 seconds
amcheck-clients: could not find security driver 'ssh' for host
'172.31.1.11'

Amanda Backup Client Hosts Check
--------------------------------

(brought to you by Amanda 2.5.1p3)


I followed the instructions from the wiki
(http://wiki.zmanda.com/index.php/How_To:Set_up_transport_encryption_with_SSH), 
but no success to get SSH authentication to work.

any hints, on what is going wrong?
are there any package requirements when using SSH authentication?

greetz
olli
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  amanda & ssh security, Mister Olli
Next by Date:  amdump return code quesion, McGraw, Robert P
Previous by Thread:  amanda & ssh security, Mister Olli
Next by Thread:  amdump return code quesion, McGraw, Robert P
Indexes:  [Date] [Thread] [Top] [All Lists]