Or, more examples below his (since they’re lengthy.
Deb Baddorf
Fermilab
> On Oct 21, 2020, at 12:40 PM, Bernhard Erdmann <b...@berdmann.de> wrote:
>
> Am 21.10.20 um 18:24 schrieb Robert Wolfe:
>> This would be my assumption as well, but I am having issues on finding a
>> working xinetd file for that (running under RHEL 7.x and 8.x).
>
> From my second CentOS 6.10 amanda server using amanda-3.5.1:
>
> $ head -n20 /etc/xinetd.d/am*
> ==> /etc/xinetd.d/amanda <==
> service amanda
> {
> socket_type = stream
> protocol = tcp
> wait = no
> user = amanda
> group = disk
> groups = yes
> server = /opt/amanda/libexec/amanda/amandad
> server_args = -auth=bsdtcp amdump amindexd amidxtaped
> }
>
> ==> /etc/xinetd.d/amandaidx <==
> service amandaidx
> {
> disable = yes
> socket_type = stream
> protocol = tcp
> wait = no
> user = amanda
> group = disk
> groups = yes
> server = /opt/amanda/libexec/amanda/amindexd
> }
>
> ==> /etc/xinetd.d/amidxtape <==
> service amidxtape
> {
> disable = yes
> socket_type = stream
> protocol = tcp
> wait = no
> user = amanda
> group = disk
> groups = yes
> server = /opt/amanda/libexec/amanda/amidxtaped
> }
>
> From a general CentOS 7.8.2003 server using amanda-3.4.5 (getting backup
> only):
>
> $ cat /etc/xinetd.d/amanda
> service amanda
> {
> socket_type = stream
> protocol = tcp
> wait = no
> user = amanda
> group = disk
> groups = yes
> server = /opt/amanda/libexec/amanda/amandad
> server_args = -auth=bsdtcp amdump
> }
OR:
======<< auth "bsd" >>============
amanda-client.conf config contains auth "bsd" for nodes with this setup:
> /etc/xinetd.d/amanda :
# default: off
# description: The client for the Amanda backup system.\
# This must be on for systems being backed up\
# by Amanda.
service amanda
{
socket_type = dgram
protocol = udp
wait = yes
user = operator
group = root
server = /usr/local/libexec/amanda/amandad
server_args = -auth=bsd amdump amindexd amidxtaped
disable = no
groups = yes
}
======<< auth "bsdtcp" >>============
If node is new enough (amanda 3.xx), put auth "bsdtcp" in the
amanda-client.conf config file
> /etc/xinetd.d/amanda :
# default: off
# description: The client for the Amanda backup system.\
# This must be on for systems being backed up\
# by Amanda.
service amanda
{
socket_type = stream
protocol = tcp
wait = no
user = operator
group = root
server = /usr/local/libexec/amanda/amandad
server_args = -auth=bsdtcp amdump amindexd amidxtaped
disable = no
groups = yes
}
======<< auth "krb5" >>============
If node is new enough (amanda 3.xx) AND wants to try Kerberos:
put auth "krb5" in the amanda-client.conf config file
Add a file to /etc/xinetd.d named amanda with these contents:
note that 3 lines have changed. The USER must change to root,
(it will lower itself as needed),
the service name on first line is now "k5amanda",
and "server_args" has changed auth=krb5.
till tested, I'm unsure about the rest of the args on this line.
> /etc/xinetd.d/amanda :
# default: off
# description: The client for the Amanda backup system.\
# This must be on for systems being backed up\
# by Amanda.
service k5amanda
{
socket_type = stream
protocol = tcp
wait = no
user = root
group = root
server = /usr/local/libexec/amanda/amandad
server_args = -auth=krb5 amdump amindexd amidxtaped
disable = no
groups = yes
}
for krb5: also edit hosts.allow
add k5amanda to the amanda-services which are on the allow line
=====================================
