Re: ssh keys only
Vicki Stanfield wrote: The problem is fixed and the employee in question has been forced to work in a VAX environment for a week as punishment. Thanks. ;) -- Stefan G. Weichinger AMANDA core team member mailto://[EMAIL PROTECTED] -- oops! linux consulting & implementation http://www.oops.co.at --
Re: ssh keys only
Gene Heskett wrote: Yes, Vicki. I haven't had to deal with that here, but perhaps someone else has rigged an ssh script to wrap amanda up in? You might consider shooting the co-worker :) Better yet, offload the problem onto the one that caused it by telling him there will be no backups of that server until he cuts a hole in things so amanda can continue to do her job. Point out how valuable the info on the server is & all that rot... The problem is fixed and the employee in question has been forced to work in a VAX environment for a week as punishment. Thanks. Vicki
Re: ssh keys only
On Tuesday 19 July 2005 10:06, Vicki Stanfield wrote: >Most of our servers are accessible only via ssh with a root key. > Does amanda work in such a setup or does the amanda user have to > have regular login access? One of my coworkers changed one of our > servers to only accept logins via ssh and now amanda doesn't seem > to be able to get there and we get the following message: > >WARNING: /host/: selfcheck request timed out. Host down? > > >I suspect that amanda simply doesn't like not being able to log in. > Is this accurate? > >Vicki Yes, Vicki. I haven't had to deal with that here, but perhaps someone else has rigged an ssh script to wrap amanda up in? You might consider shooting the co-worker :) Better yet, offload the problem onto the one that caused it by telling him there will be no backups of that server until he cuts a hole in things so amanda can continue to do her job. Point out how valuable the info on the server is & all that rot... -- Cheers, Gene "There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order." -Ed Howdershelt (Author) 99.35% setiathome rank, not too shabby for a WV hillbilly Yahoo.com and AOL/TW attorneys please note, additions to the above message by Gene Heskett are: Copyright 2005 by Maurice Eugene Heskett, all rights reserved.
Re: ssh keys only
Alexander Jolk wrote: > A quick search in > this mailing list's archives will give you a complete solution with > iptables, or else just open TCP and UDP between your amanda server and > the amanda client in question. Or you look up the FAQ on www.amanda.org/docs . -- Stefan G. Weichinger AMANDA core team member mailto://[EMAIL PROTECTED] -- oops! linux consulting & implementation http://www.oops.co.at --
Re: ssh keys only
Vicki Stanfield wrote: Most of our servers are accessible only via ssh with a root key. Does amanda work in such a setup or does the amanda user have to have regular login access? One of my coworkers changed one of our servers to only accept logins via ssh and now amanda doesn't seem to be able to get there and we get the following message: WARNING: /host/: selfcheck request timed out. Host down? Actually, the amanda user doesn't ever need to log in; all communication between the server and its clients goes over amanda's own protocol. What amanda needs are a few open TCP and UDP ports between client and server, and a simple host-based authentication in the amanda user's homedirectory, in a file .amandahosts. Since I gather your backup worked before, I wonder whether your collegue mightn't have installed a firewall at the same time. A quick search in this mailing list's archives will give you a complete solution with iptables, or else just open TCP and UDP between your amanda server and the amanda client in question. Alex -- Alexander Jolk * BUF Compagnie * [EMAIL PROTECTED] Tel +33-1 42 68 18 28 * Fax +33-1 42 68 18 29
Re: ssh keys only
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Tuesday, 19.07.2005 at 09:06 -0500, Vicki Stanfield wrote: > Most of our servers are accessible only via ssh with a root key. Does > amanda work in such a setup or does the amanda user have to have > regular login access? One of my coworkers changed one of our servers > to only accept logins via ssh and now amanda doesn't seem to be able > to get there and we get the following message: > > WARNING: /host/: selfcheck request timed out. Host down? > > I suspect that amanda simply doesn't like not being able to log in. Is > this accurate? AMANDA clients should have an entry in /etc/inetd.conf (or somewhere under /etc/xinetd.d depending on distro). This means that the client is listening on the amanda port (typically 10080) and will respond to connections appropriately. The trick is to ensure that /etc/amandahosts contains the list of usernames and hosts which are allowed to connect. This doesn't depend on ssh or login sessions at all. Note that /etc/amandahosts is the name of the file under Debian - in general the file is called .amandahosts and appears in the home directory of the amanda user (usually 'backup'). Debian achieves this using symlinks. Dave. - -- Dave Ewart [EMAIL PROTECTED] Computing Manager, Cancer Epidemiology Unit Cancer Research UK / Oxford University PGP: CC70 1883 BD92 E665 B840 118B 6E94 2CFD 694D E370 N 51.7518, W 1.2016 -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFC3Qo+bpQs/WlN43ARArUIAJ942oV5xS8dCIQeR6TCf+SApH6suACgrIfx VRW3Dty2CpunuxZhyUSAEJQ= =kgAG -END PGP SIGNATURE-
ssh keys only
Most of our servers are accessible only via ssh with a root key. Does amanda work in such a setup or does the amanda user have to have regular login access? One of my coworkers changed one of our servers to only accept logins via ssh and now amanda doesn't seem to be able to get there and we get the following message: WARNING: /host/: selfcheck request timed out. Host down? I suspect that amanda simply doesn't like not being able to log in. Is this accurate? Vicki
