[prev in list] [next in list] [prev in thread] [next in thread] 

List:       amanda-users
Subject:    Re: amanda failure following upgrade
From:       "John R. Jackson" <jrj () gandalf ! cc ! purdue ! edu>
Date:       2001-06-28 19:36:50
[Download RAW message or body]

>For reasons that I don't understand, predating my time at this site,
>the Sun systems use "bin" for amanda user and the SGI systems use
>"root" for amanda user.
>
>Rather than allow enhanced root access via NFS I selected an equally
>questionable solution, chmod o+x on the executable.

That's a really bad idea (or it would be in most environments).
It essentially means anyone can dump any portion of that client (such
as your encrypted passwords) and look at them.

If the Amanda user is already root, you could try setting the modes
back to 550 but without setuid.

>						Brian

John R. Jackson, Technical Software Specialist, jrj@purdue.edu

[prev in list] [next in list] [prev in thread] [next in thread]