On Saturday 25 November 2006 20:42, Frank Smith wrote: >Gene Heskett wrote: >> Greetings; >> >> Despite the fact that the user 'amanda' is a member of the group >> 'disk', all compilations and new files generated by the user amanda >> seem to be owned by amanda:amanda instead of the expected amanda:disk. >> >> The end result is that many of my backup operations are failing >> because the amanda utility doesn't have perms to delete or write to >> files actually owned by amanda:disk. >> >> I just went thru all the directory trees amanda needs to access and >> chowned everything back the way its supposed to be, but then I built >> the 20061124 tarball just now, and everything is still owned by >> >> amanda:amanda. >> >> From my /etc/group file: >> disk:x:6:root,amanda >> >> So I blew it away, called up KUsr and verified that amanda was indeed >> a member of the group disk. Even deleted the user and re-added it and >> made sure this new copy of amanda was a member of the group disk. >> >> Then as "amanda", I unpacked it again and rebuilt it, but I still have >> the same problem. Because none of the files are owned by amanda:disk, >> the end result is several megs of dead, can't do a thing code that I'd >> just as well not bother with the 'make install'. >> >> Anything that amanda has touched over the last 4 days since I started >> running it again has been converted to being owned by amanda:amanda, >> and if the file existed, and was to be deleted as part of the >> housekeeping, was not because the old file was owned by amanda:disk. >> So my backups are being slowly trashed because the indice files are >> not updatable. >> >> Whats the deal with FC6 and its owner:group handling? Am I setting up >> the user wrong or what? > >Perhaps something changed the amanda user's primary group in >/etc/passwd? When new files are created, the user/group set are >the ones in passwd, and /etc/group is only consulted by the system >if the user is not the owner of the directory, then it checks if it >is in the same group (assuming you have group write perms). > >Another possibility is that you are forcing the group amanda runs as >in xinetd to be 'amanda' and not 'disk'. > I hadn't thought of that, but the amanda file in the xinetd.d dir is the same one I used for FC2: # default = off # # description: Part of the Amanda server package # This is the list of daemons & such it needs service amanda { only_from = coyote.coyote.den # gene.coyote.den disable = no socket_type = dgram protocol = udp wait = yes user = amanda group = disk groups = yes server = /usr/local/libexec/amandad server_args = -auth=bsd amdump amindexd amidxtaped } service amandaidx { disable = no socket_type = stream protocol = tcp wait = no user = amanda group = disk groups = yes server = /usr/local/libexec/amindexd } service amidxtape { disable = no socket_type = stream protocol = tcp wait = no user = amanda group = disk groups = yes server = /usr/local/libexec/amidxtaped } According to the amanda coders, this is correct usage. Is it not now? Thanks Frank. -- Cheers, Gene "There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order." -Ed Howdershelt (Author) Yahoo.com and AOL/TW attorneys please note, additions to the above message by Gene Heskett are: Copyright 2006 by Maurice Eugene Heskett, all rights reserved.