[1497] in SIPB-AFS-requests
Re: vbckd, for making vos backups unprivileged
daemon@ATHENA.MIT.EDU (mhpower@MIT.EDU)
Mon Sep 19 00:38:36 1994
From: mhpower@MIT.EDU
To: sipb-afsreq@MIT.EDU
In-Reply-To: "[1491] in SIPB-AFS-requests"
Date: Mon, 19 Sep 94 00:38:11 EDT
>Although I think this works correctly, I'll hold off on installing it
>as root on ronald-ann for at least a week.
It's installed now. If you want to try running it, typing just vbck
should cause ronald-ann to run vos backup -localauth on your sipb-cell
user volume, assuming you can authenticate with your null instance. If
you don't want vos backup to be run, but want to run the program
anyway, you can run "vbck -t" to test authentication/authorization.
The following files were affected/created on ronald-ann:
/etc/inetd.conf
/etc/nsyslog.conf
/etc/services
/etc/athena/newsyslog.conf
/usr/adm/vbckd.log
/usr/local/bin/vbckd
/usr/local/data/vbckusers
vbckusers is analogous to ftpusers ... it lists any volumes user.pname
for which tickets for pname@ATHENA.MIT.EDU can't be used to run vos
backup -- currently, the file has just "backup" and "readonly".
I created a new volume mounted on /afs/sipb/machine/ronald-ann to
hold these, plus everything that was in /afs/sipb/project/ronald-ann.
Presumably, project.ronald-ann can be removed in a week or so if there
are no objections. The source code (which is world readable, unlike
most of the rest of machine/ronald-ann or project/ronald-ann) is in
/afs/sipb/machine/ronald-ann/usr/local/src/vbck, and there's a client
man page in /afs/sipb/machine/ronald-ann/usr/local/man/man1.
The client is installed with our other local afs-related software in
/afs/sipb/service/@sys/vbck, for pmax_ul4, rs_aix32, sun4c_53,
vax_bsd43, rt_aos4, i386_linux1, i386_nbsd1, and next_mach30.
What else... maybe you want to try accessing some undocumented server
"functionality" via your own interface. Well, you can do things like:
% telnet ronald-ann 6999
Trying...
Connected to ronald-ann.MIT.EDU.
Escape character is '^]'.
`ls`
510 only authentication method krb4 is supported
Connection closed by foreign host.
Matt
