Category Archives: Computer Tech

Bacula Backup – Easily Upgrade Linux / Unix based Client from Shell Script

Bacula® – The Open Source Network Backup Solution

Bacula is one of the best Client/Server based backup program available, open source (free) or commercial. It is not, however, the easiest to configure!

For those of us who still like to compile code, especially code for utilities that are generally not incorporated into OS releases, such as Bacula, here is a very simple way to do it:
mkdir /usr/src/bacula
cd /usr/src/bacula
wget http://sourceforge.net/projects/bacula/files/bacula/5.2.6/bacula-5.2.6.tar.gz/download
create file update-bacula-clients.sh with an editor (I use vi you may use nano or any text editor you prefer), here are the contents:

#!/bin/sh
for i in cat servers.lst; do
echo $i;
ssh $i “mkdir -p /usr/src/bacula; rm -f /usr/src/bacula-5.2.6.tar.gz”;
scp bacula-5.2.6.tar.gz $i:/usr/src/bacula;
ssh $i “tar xvfz /usr/src/bacula/bacula-5.2.6.tar.gz -C /usr/src/bacula”;
ssh $i “cd /usr/src/bacula/bacula-5.2.6; ./configure –enable-client-only; mak
e install; service bacula-fd restart”;
ssh $i “rm -rf /usr/src/bacula/bacula*”;
done

Make sure you have servers that you can ssh to as root without a password entered into servers.lst. I use one that looks something like:

server1.domain.com
server2.domain.com
server3.domain.com
… (etc)

./update-bacula-clients.sh [ENTER]

Watch and make sure compilations and restarts work successfully. Test one of the clients (perhaps an incremental on one that usually finishes quickly) to make sure it is working correctly. Enjoy!

OpenSSH logging with Chroot Directory and SFTP Clients on CentOS

The following is adapted from http://www.debian-administration.org/articles/637 for CentOS as I have tested it on a CentOS VM (Xen x86_64 CentOS release 6.2 (Final)).

Make syslog available in the chroot

Create a dev directory in each user’s chrooted directory:

Configure rsyslog to probe the new logging source

Put the following contents in /etc/rsyslog.conf :

Configure openssh for logging

Change /etc/ssh/sshd_config. The Subsystem sftp line will now read (ps I use INFO instead of VERBOSE as I tested both and they seem to look the same in the log file) :

Create a Match section (assuming username1/username2 are members of the sftponly group in /etc/group).

“Because of a limitation bug in OpenSSH, the ForceCommand line cannot be used with logging parameters on versions earlier than 5.2. But omitting the ForceCommand directive implicitely provides the user shell access in the chrooted directory if he has upload privileges. Therefore, this is in my view a security risk, and that is why I would say that enabling logging in this configuration requires OpenSSH 5.2 or later.”

Note: Tried to redirect sftp logging per the above referred article but it did not seem to work in CentOS, everything is logged to /var/log/secure which, in my case, is just fine so I did not research it any further. On the Debian side one user commented that the dev/log’s were not automatically created but this is not the case in CentOS, just add the entry to the /etc/rsyslog.conf file as above and do a service rsyslog restart and it works!

Any comments are welcome.

iPhone vs Android – Apple vs Samsung – Google vs Apple – Open Software Joke?!

and so the joke is on….us? iPhone is obviously Linux of Unix. Android is definitely Linux, no question about it. And Jobs was screaming copy copy about Google/Android and Samsung. So the open mouth is chewing on its ridges???!

I must leave Microsoft out of this article as they have historically been against Open Source, so they just don’t fit, though recent prospects seem to point they may buy or incorporate some open companies or approach soon.

It seems Linux/Unix has come full circle from the “dark days” of not having user friendly apps to where we are now: Companies scrambling for uniqueness and features abounding in a highly user friendly manner. It seems Android will not only be on phones and tablets but on the desktop of your pc in the near future! And of course all your favorite apps will just simple be there, in contrast to the Linux of yesterday, most interesting…

Now creativity must come forth to lead the pack, who will be first?

PS – I personally am using an Android phone and was ashamed of it not being an Apple iPhone until I experienced the following: Tried to help a guy setup Skype for iPad, they had released it before the release was read on iTunes, you cannot setup Skype independent of iTunes or the Apple “Cloud”. I wonder if there is anything you can do on an iPhone/iPad/Mac these days that are going to be indepedent of thier cloud, not good for me, I need a degree of autonomy, hm. Needless to say the app did not install and there was no previous version available or any choice for that matter, that point alone made me happy I am using Samsung Galaxy S II and not an Apple product, though I do feel a special connection with Steve Jobs…

I was even going to buy the new iPhone 4S as a personal tribute to the master until I experienced the above issues!