amanda 1:3.3.9-1 source package in Ubuntu
Changelog
amanda (1:3.3.9-1) unstable; urgency=low
* Imported Upstream version 3.3.9
* Changes for 3.3.9
* new --with-security-file configure option
- It set the default security file
- default to /etc/amanda-security.conf
* security-fix
- All previous release of amanda allow the 'amanda' user to execute
any code as root, and to execute an interactive shell as root.
- This is a security vulnerability if you do not trust the 'amanda'
user.
- There is no need to upgrade if you trust the 'amanda' user and the
account is secure.
- good password
- secure xinetd.conf setting
- securae .amandahosts setting
- The 'amanda' user can read all files in the machine, it is what a
backup program do.
- The set of fix disable the abilities to run unwanted code as root
or to write file anywhere in the filesystem.
* /etc/amanda-security.conf
- A file that contains security setting.
- It list all binaries amanda can execute as root
- restore_by_amanda_user
- It tell if the 'amanda' user can do restore as root.
- It allow the 'amanda' user to write files anywhere in the
filesystem
- see: man amanda-security.conf
* amgtar/amstar/ambsdtar/runtar
- Disable arguments that can fork program.
- Verify the realpath (with symbolic link resolved) is in the
amanda-security.conf file.
- Verify the tar/star/bsdtar realpath program is secure
- owned by root and modifiable only by root.
- On restore, check the restore_by_amanda_user setting if not run
by root.
* Fix to configure and build with future openssl v1.1, but fail to link.
* Bump Standards-Version to 3.9.8, no changes needed.
* New configuration file /etc/amanda-security.conf.
* Update translations pt_BR (Closes: #816961) and tr (Closes: #759871).
* Fix uri on Vcs-* fields.
* Add missing description and author to patches.
* Use set command to setup options of scripts.
* Change to new style of rules.
* Make amanda build reproducible (Closes: #830725). Thank you Chris Lamb.
-- Jose M Calhariz <email address hidden> Sat, 13 Aug 2016 10:13:13 +0100
Upload details
- Uploaded by:
- Jose M Calhariz
- Uploaded to:
- Sid
- Original maintainer:
- Jose M Calhariz
- Architectures:
- any
- Section:
- utils
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| amanda_3.3.9-1.dsc | 2.1 KiB | 4a3e483db1f6538574e45e3c8df9c7f85960230ec38c58f267a1f8a6eedaeb59 |
| amanda_3.3.9.orig.tar.gz | 4.4 MiB | 7cd570d85ecdd22a59d31531d28dcd7594bb3188cec0a856ff249ee1389a8483 |
| amanda_3.3.9-1.debian.tar.xz | 41.1 KiB | 58759c481e6bf4400629637948ff6906fc473f79fa0dfd7527bbef6feb82257c |
Available diffs
- diff from 1:3.3.8-1 to 1:3.3.9-1 (219.6 KiB)
No changes file available.
Binary packages built by this source
- amanda-client: No summary available for amanda-client in ubuntu yakkety.
No description available for amanda-client in ubuntu yakkety.
- amanda-client-dbgsym: No summary available for amanda-client-dbgsym in ubuntu yakkety.
No description available for amanda-
client- dbgsym in ubuntu yakkety.
- amanda-common: No summary available for amanda-common in ubuntu yakkety.
No description available for amanda-common in ubuntu yakkety.
- amanda-common-dbgsym: No summary available for amanda-common-dbgsym in ubuntu yakkety.
No description available for amanda-
common- dbgsym in ubuntu yakkety.
- amanda-server: No summary available for amanda-server in ubuntu yakkety.
No description available for amanda-server in ubuntu yakkety.
- amanda-server-dbgsym: No summary available for amanda-server-dbgsym in ubuntu yakkety.
No description available for amanda-
server- dbgsym in ubuntu yakkety.
