Amanda, or the Advanced Maryland Automatic Network Disk Archiver is an open source computer archiving tool that is able to back up data residing on multiple computers on a network.
The biggest in your face security hole that I see off the top of my head is that amanda uses the xinetd to run it's services. xinetd while more secure than it's predecessor inetd, still suffers from the problem that it allows any arbitrary program to start up automatically and listen on any port (including privileged ports) for incoming connections, there are many insecure daemons that are traditionally run from xinetd that I do not want existing on my network.
Higher security for the rest of the system and a very carefully tuned firewall is my only defence against this evil service.
yum install amanda amanda-client amanda-server
/etc/xinetd.d/amanda and change disable to 'no'.
Verified it opened port
10080/udp on firewall for server subnet
localhost amandabackup backup amandabackup backup.home.bedroomprogrammers.net amandabackup legba root
Set permissions on
600 created folder
/opt/backups and changed owner to
amandabackup and then I messed something
up... and didn't document it...