Re: [Bacula-users] Confusion in setting up Bacula to Windows Clients

My experience is that the Director name must match, the password must 
match and fd name doesn't need to match, maybe in some lastest version 
must match too.

And to the bacula passwords: in my bacula I always generate a long 
random password (fifty chars of filth) and write it to both configs 
(through clipboard ofcourse). The bacula-fd is very dangerous if 
somebody succeed with a "fake director" attack because director can 
modify files and run any arbitrary code. The only need for the attacker 
is the name of director, valid password and a "firewall hole".
If you use one password only, the attacker needs to hack one Client and 
that moment he can hack any other machine.
The similar problem is the default password, which seems to be random, 
but it is not, it is same for all clients of same version. I can imagine 
  many admins keep it.

Marek


List Man napsal(a):
> The name in the fd conf file has to match the server's config.  That is the
> only requirement.
> 
> 
> On 10/8/09 1:49 PM, "John Drescher" <drescherjm AT gmail DOT com> wrote:
> 
>> On Thu, Oct 8, 2009 at 1:45 PM, John  BORIS <jboris AT adphila DOT org> 
>> wrote:
>>> John,
>>> Thanks for the quick response. Also should the names match. In my
>>> director I have the Client named John but that machine has a different
>>> name. I figure the Ciient name on the server (bacula-dir.conf) is a
>>> place holder and it uses the IP address to handle the connection and
>>> sends the password.
>>>
>> I am not sure. I have these matching for all 50+ machines I have
>> configured for bacula.
>>
>> John
>>
>> ------------------------------------------------------------------------------
>> Come build with us! The BlackBerry(R) Developer Conference in SF, CA
>> is the only developer event you need to attend this year. Jumpstart your
>> developing skills, take BlackBerry mobile applications to market and stay
>> ahead of the curve. Join us from November 9 - 12, 2009. Register now!
>> http://p.sf.net/sfu/devconference
>> _______________________________________________
>> Bacula-users mailing list
>> Bacula-users AT lists.sourceforge DOT net
>> https://lists.sourceforge.net/lists/listinfo/bacula-users
> 
> 
> 
> ------------------------------------------------------------------------------
> Come build with us! The BlackBerry(R) Developer Conference in SF, CA
> is the only developer event you need to attend this year. Jumpstart your
> developing skills, take BlackBerry mobile applications to market and stay 
> ahead of the curve. Join us from November 9 - 12, 2009. Register now!
> http://p.sf.net/sfu/devconference
> _______________________________________________
> Bacula-users mailing list
> Bacula-users AT lists.sourceforge DOT net
> https://lists.sourceforge.net/lists/listinfo/bacula-users


------------------------------------------------------------------------------
Come build with us! The BlackBerry(R) Developer Conference in SF, CA
is the only developer event you need to attend this year. Jumpstart your
developing skills, take BlackBerry mobile applications to market and stay 
ahead of the curve. Join us from November 9 - 12, 2009. Register now!
http://p.sf.net/sfu/devconference
_______________________________________________
Bacula-users mailing list
Bacula-users AT lists.sourceforge DOT net
https://lists.sourceforge.net/lists/listinfo/bacula-users