Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 25 Sep 1999 19:11:21 -0700 (PDT)
From:      "Rodney W. Grimes" <freebsd@gndrsh.dnsmgr.net>
To:        cjclark@home.com
Cc:        dillon@apollo.backplane.com (Matthew Dillon), freebsd-security@FreeBSD.ORG
Subject:   Re: dump(8) Insecurity/Misconfiguration
Message-ID:  <199909260211.TAA08847@gndrsh.dnsmgr.net>
In-Reply-To: <199909260203.WAA48170@cc942873-a.ewndsr1.nj.home.com> from "Crist J. Clark" at "Sep 25, 1999 10:03:23 pm"
index | next in thread | previous in thread | raw e-mail 

> Matthew Dillon wrote,
> 
> [snip helpful answers, thanks]
> 
> > :2) Will it break anything if I clear the group read bit on the disk
> > :   devices? 
> > 
> >     If you never run dump or you only run it as root, you will not break
> >     anything by removing the group read bit from the devices.
> 
> I am used to only doing it as root since the manpage says,
> 
>     "Dump cannot do remote backups without being run as root, due to its secu-
>      rity history.  This will be fixed in a later version of FreeBSD. Present-
>      ly, it works if you set it setuid (like it used to be), but this might
>      constitute a security risk."
> 
> And I often do dumps to tape drives that are not local.

Run Amanda... ports/net/misc/amanda24.  Create a user amanda with
a group of operator.  Kill the sgid bit on dump and you don't have
to run your remote dumps as root.  Be glad for the wonderful automation
that amanda brings you and sleep better at night knowing that your
backups are in good hands, and your security is a wee bit tighter.

You'll have to leave the group operator +r bit on your disks, but since
amanda is the only user in group operator, and it has no login password
(* the field, you don't need a password on the account) your pretty
darn safe, a fair bit safer than running around with root .rhosts or
ssh root type access to run rdump, thats for sure!

Be sure to block the amanda ports at firewalls and or hosts for extra
security measures just in case someone finds a hole in amandas own
``.amandahosts'' security mechanism.

-- 
Rod Grimes - KD7CAX - (RWG25)                    rgrimes@gndrsh.dnsmgr.net


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
help

Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199909260211.TAA08847>