PDA

View Full Version : Amanda permissions on the client



bahamutta
October 20th, 2011, 01:32 PM
Hiya!

I've set up an Amanda backup server and several remote clients using bsdtcp auth type.
Server and clients have the same versions: 3.2.0.

Everything works fine.

The contents of .amandahosts file on th clients:


backup4.mix.com amanda
backup4.mix.com root


amandad on the clients runs through xinetd.d and under amanda user.

So I gotta a question how come the server is able to backup root-owned files such as /etc/shadow on the client machine if the client just has been started under amanda user with pretty restrictive permissions?

I didn't find any information on wiki related to how the server get access to root-only accessible files if client is started under non-root user.

jfarschman
November 4th, 2011, 09:54 AM
That is interesting. My amandabackup user is a member of the 'disk' group (group 6)

sudo find /etc -gid 6

Checking for the files that it should not have access to the shadow file. I've never backed up /etc/ except for /etc/amanda on the backup server itself. Strange. I'm going to subscribe to this and hope to get an answer.