Thanks Bill. Good to know my thought process isn’t crazy. From: Bill Arlofski via Bacula-users <bacula-users@lists.sourceforge.net> Date: Thursday, September 22, 2022 at 10:59 AM To: bacula-users@lists.sourceforge.net <bacula-users@lists.sourceforge.net> Subject: Re: [Bacula-users] File permissions for bacula-sd /var/backups On 9/22/22 09:41, Pollard, Jim wrote: > I’ve inherited this system so I’m piecing things together. It looks like > bacula-sd had previously been running as root. The > current permissions on the /var/backups directory and volumes are root:root. > Running systemctl start bacula-sd seems to be > running as bacula:tape. Saw errors in console regarding the current volume > so to test it out I set permissions on that > volume as bacula:tape and presto! Job runs successfully. This is with > bacula-sd release 5.2.13 for redhat (Core). My > question is what **should** the process be running as? If the answer is > bacula:tape what kind of shenanigans am I about to > kick off by chown’ing /var backups to bacula:tape? > > Thanks for nudges in the right direction. I’m new with this software. > > Jim > > *----* > > *Jim Pollard*, Senior Sysadmin GCUX, GSEC, LPIC, Linux + > > The University of Texas at Austin | UT Center for Space Research | > 512.232.6966 | j...@csr.utexas.edu >
Hello Jim, re: "what **should** the process be running as" The real answer is: Any user:group you prefer, but the default chosen by package maintainers is usually bacula:tape (Debian/Ubuntu), bacula:disk (RHEL/Centos) re: "If the answer is bacula:tape what kind of shenanigans am I about to kick off by chown’ing /var backups to bacula:tape?" Well, an SD that can read/write from/to the existing volumes, and working backups is the worst than can happen in this case. :) But seriously, yes, you should chown them all, and the directory they live in so that the SD running as bacula:tape can access them and also create new volumes if configured to do so. You may want to investigate files in the "PID Directory" (if configured), and "WorkingDirectory" and any other directories copnfigured in the bacula-sd.conf file to make certain that they are also not owned by root. Good luck! Bill -- Bill Arlofski w...@protonmail.com
_______________________________________________ Bacula-users mailing list Bacula-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bacula-users
