View Full Version : Amanda permissions on the client

October 20th, 2011, 01:32 PM

I've set up an Amanda backup server and several remote clients using bsdtcp auth type.
Server and clients have the same versions: 3.2.0.

Everything works fine.

The contents of .amandahosts file on th clients:

backup4.mix.com amanda
backup4.mix.com root

amandad on the clients runs through xinetd.d and under amanda user.

So I gotta a question how come the server is able to backup root-owned files such as /etc/shadow on the client machine if the client just has been started under amanda user with pretty restrictive permissions?

I didn't find any information on wiki related to how the server get access to root-only accessible files if client is started under non-root user.

November 4th, 2011, 09:54 AM
That is interesting. My amandabackup user is a member of the 'disk' group (group 6)

sudo find /etc -gid 6

Checking for the files that it should not have access to the shadow file. I've never backed up /etc/ except for /etc/amanda on the backup server itself. Strange. I'm going to subscribe to this and hope to get an answer.