Re: Root exploit for FreeBSD
On Fri, Dec 11, 2009 at 03:23:56PM -0800, Kevin Oberman wrote: > > Date: Fri, 11 Dec 2009 08:49:42 + > > From: Matthew Seaman > > Sender: owner-freebsd-curr...@freebsd.org > > > > Polytropon wrote: > > > On Fri, 11 Dec 2009 01:42:36 -0600, "Sam Fourman Jr." > > > wrote: > > >> I have tried looking around and OpenBSD appears to be the undisputed > > >> #1 track record in terms of security and FreeBSD is #2 (I didn't count > > >> dragonflyBSD) > > > > > > VMS would be #0, then? :-) > > > > I dunno. Haven't seen many MS-DOS exploits recently either... > > I'm sure that there are systems happily running MSDOS, but I bet not too > many are networked. > > I know that there is still a lot of VMS out there and that it has > remained a cash cow for HP. It lived on primarily in the banking and > financial sector, though I guess the use is dropping since HP recently > outsourced support to India and that lead to the retirement of the last > of the original VMS developers, Andy Goldstein. Just go to Fry's Electronic. Most of their systems are still MS-Dos with Novell for network, running text based inventory/quote/sales app. > > Also, the the end of TECO as Andy was responsible for porting it to > almost every platform DEC ever sold (RSX, RSTS, VMS, TOPS-10 and > TOPS-20, RT-11, and several others) and continued to maintain it until > his retirement. (Most readers of this list probably don't even remember > TECO.) > > And, for may years VMS had major network security problems, especially > the infamous default DECNET/DECNET account that lead to may compromises > and the second major network worm, Worms Against Nuclear Killers. (I > won't use the acronym so as not to offend our British readers. I found > out about that when the BBC interviewed me about it and I was told that > I could not utter the word.) > -- > R. Kevin Oberman, Network Engineer > Energy Sciences Network (ESnet) > Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab) > E-mail: ober...@es.netPhone: +1 510 486-8634 > Key fingerprint:059B 2DDF 031C 9BA3 14A4 EADA 927D EBB3 987B 3751 > ___ > freebsd-curr...@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscr...@freebsd.org" > -- Regards, Ulf. - Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-865-0204 You can find my resume at: http://www.Alameda.net/~ulf/resume.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Qlogic FC-card can't find disk on SATAbeast
On Thu, Aug 09, 2007 at 10:08:02AM +0200, Konrad Heuer wrote: > > On Thu, 9 Aug 2007, Ingeborg Hellemo wrote: > > >(This SAN-stuff is one of my weak subjects, so please excuse me if I use > >the > >wrong terms. If there is a better list to ask this question, please tell > >me.) > > > > > >HW: ProLiant DL380 G4 > >OS: FreeBSD 6.2-RELEASE-p7 > >FC-card: > >isp0: port 0x5000-0x50ff mem > >0xfdff-0xfdff0fff irq 97 at device 1.0 on pci10 > > > >~/#kldstat > >Id Refs AddressSize Name > >19 0xc040 7261f4 kernel > >21 0xc0b27000 93040ispfw.ko > >31 0xc0bbb000 59f20acpi.ko > >41 0xc6dea000 16000linux.ko > > > > > > > >I am trying to access a disk-device on a SATABeast, but no success: > > > >~/#camcontrol rescan all > >Re-scan of bus 0 was successful > >Re-scan of bus 1 was successful > >Re-scan of bus 2 was successful > >Re-scan of bus 3 was successful > > > >~/#camcontrol devlist -v > >scbus0 on ciss0 bus 0: > > at scbus0 target 0 lun 0 (pass0,da0) > >scbus1 on ciss0 bus 32: > >scbus2 on ciss0 bus 33: > >scbus3 on isp0 bus 0: > >< > at scbus3 target -1 lun -1 () > >scbus-1 on xpt0 bus 0: > >< > at scbus-1 target -1 lun -1 (xpt0) > > > > > >If we try to connect the fibre to our HP EVA SAN the disk shows up after a > >'rescan all' which makes me believe that I have not done any major > >screw-ups > >in configuring the card. > > > >I can see the device and LUN-number if I enter the cards BIOS, but not from > >FreeBSD. We have tried changing disk-size and LUN-number on the Beast. > > > > > >Any ideas? > > In such a case I'd try to boot the system using Knoppix or any other Linux > system. Maybe this will give you some additional diagnostics which helps > to make progress with FreeBSD. On the other hand, if Linux doesn't see the > disk too, you'd have to look closer to your hardware. Does your SATAbeast have a LUN exported to your host? -- Regards, Ulf. - Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-865-0204 You can find my resume at: http://www.Alameda.net/~ulf/resume.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: missing /usr/libexec/ld-elf.so.1 ... not found
On Wed, Dec 24, 2003 at 07:35:07PM -0500, Peter Leftwich wrote: > On Tue, 23 Dec 2003, Ulf Zimmermann wrote: > > cat /mnt/cdrom1/bin/bin.[a-z]* | tar ztvf - | grep ld-elf > > That will you show the path in the tar. > > # cat /mnt/cdrom1/bin/bin.[a-z]* | tar ztvf - | grep ld-elf > -r-xr-xr-x root/wheel 79840 2002-10-09 14:45:19 ./usr/libexec/ld-elf.so.1 > > gzip: stdin: decompression OK, trailing garbage ignored > tar: Child died with signal 13 > tar: Error exit delayed from previous errors > > Darn, I even did 'cd /' and then ran it or 'cd /mnt/cdrom' then ran it but > got the same ./usr/libexec etc junk. I have to run the grep while > "standing" in a non root-mounted locale I suppose?? > > Great. *sarcasm* So we've found it. It's there, we know it's there, but I > don't know which file it is in! Ugh ugh ugh. Kill me! > > > then you can use the same as above but with "zxvf" and the pathname for > > ld-elf.so.1 > > Regards, Ulf. > > Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-865-0204 > > You can find my resume at: http://seven.Alameda.net/~ulf/resume.html > > I wonder what it meant by child died and previous errors. At startup, I > figured out how to press F2 and go into an interactive, "expert" as it was > called mode of bootup / kernel loading process. There have been ide-scsi > errors and kernel panics in the past so I pressed 'n' to not load any scsi > modules. > > However, oddly enough, my "dmesg" output is replete (full of) weird ide and > scsi error messages. Could they be what tar/gzip is talking about? There > is a random timer probably counting down to my next kernel panic from this > Knoppix 3.2 Debian Linux CD-R I am booted up into!! I better scoot. Help. > > -- Peter Leftwich > President & Founder, Video2Video Services > Box 13692, La Jolla, CA, 92039 USA > http://Www.Video2Video.Com Go into a writable directory, then execute: cat /mnt/cdrom1/bin/bin.[a-z][a-z] | tar zxvf - ./usr/libexec/ld-elf.so.1 That should unpack it into your current directory including making the usr and libexec directory. -- Regards, Ulf. - Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-865-0204 You can find my resume at: http://seven.Alameda.net/~ulf/resume.html ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: missing /usr/libexec/ld-elf.so.1 ... not found
ld-elf.so.1 should also be on the first CD. Its just inside
the split tar.gz files which make up the base of FreeBSD.
Check out the bin/ directory on the cd, all the bin.[a-z][a-z]
files are a split of a large tar.gz, and that includes the ld-elf.so.1
On Tue, Dec 23, 2003 at 11:13:14AM -0800, Peter Leftwich wrote:
> Matthew Seaman <[EMAIL PROTECTED]> kindly transmitted:
> > On Tue, Dec 23, 2003 at 01:32:07AM -0500, Peter Leftwich wrote:
> > > What should a user do if their, uhm, /usr/libexec/ld-elf.so.1
> > > file is missing on 4.7-RELEASE? Can said user `touch
> > > /usr/libexec/ld-elf.so.1` as a decent fix? Or mount their drive
> > > from another OS and copy over a friend's or a web-hosted
> > > ld-elf.so.1 file? Or could I, I mean my friend, use some of the
> > > contents of "src/" on a 4.7-RELEASE CD-R to recreate (via
> > > compiling) this needed file?? Please help. It could be your
> > > gift to me.
>
> Hello Matthew, Fbsd-Q's and WWW server peoplefolk.
>
> > Without ld-elf.so.1 you won't be able to start up any executable
> > that uses shared libraries... You might find a copy in
>
> I noticed! *funnyface* Just joking around. Thanks for the details.
>
> > /usr/obj/usr/src/libexec/rtld-elf/ld-elf.so.1 if you've ever built
> > world on that machine, and there's a statically linked version of
> > cp(1) in /bin. Otherwise, yes: the live filesystem CD (Disk 2)
> > will have a copy or you can extract your drive and mount it in
> > another machine.
>
> REQUEST: Could one of the *.freebsd.org webmasters or listserv
> admins please post the ld-elf.so.1 file from 4.7-RELEASE? It could
> go up (officially) to
> ftp://ftp.freebsd.org/pub/FreeBSD/releases/i386/4.7-RELEASE/usr/libexec/ld-elf.so.1
>
> <<>>
>
> I only have the first CD-R and do not have time to download the 2nd
> CD-R's ISO just for the one file... 2:-)
>
> > Let this be a lesson to your friend not to be too hair
> > triggered on the delete key...
>
> Best way to learn. Well, maybe not best; but I certainly have
> learned a TON this way, the rootly way. *smiles*
>
> > Cheers,
> > Matthew
> > Dr Matthew J Seaman MA, D.Phil. 26 The
> > Paddocks
> > Savill Way
> > PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
> > Tel: +44 1628 476614 Bucks., SL7
> > 1TH UK
>
> ASIDE: {It will be neat when one day there's an Internet standard
> for www.website.com/pgpkey and
> www.website.com/software/name_here/md5 and
> www.website.com/hostname_here/sshkey - oh and
> https://www.website.com/trusted.htm or something like that.} ;)
>
> --
> Peter Leftwich, President & Founder
> Video2Video Services
> Box 13692, La Jolla, CA, 92039, USA
> http://Www.Video2Video.Com
>
>
>
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-www
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"
>
--
Regards, Ulf.
-
Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-865-0204
You can find my resume at: http://seven.Alameda.net/~ulf/resume.html
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Problems with php4
Recompile your cclient with SSL enabled. On Fri, Jul 12, 2002 at 02:59:36PM -0600, Jason Porter wrote: > I just did a cvsup for the ports and tried to make php4. It crashes on > zm_startup_imap during the install, I've attached the output, if anyone > has any ideas, on what happened and how to fix it, that'd be great. > > -- > -Jason Porter > > "Real programmers are secure enough to write > readable code, which they then self-righteously > refuse to explain." > > Script started on Fri Jul 12 14:55:14 2002 > LIGHTGUARD# make install > > ===> Building for php4-4.2.1 > Making all in Zend > Making all in main > Making all in ext > Making all in zlib > Making all in bcmath > Making all in libbcmath > Making all in src > Making all in bz2 > Making all in ctype > Making all in domxml > Making all in ftp > Making all in gd > Making all in gettext > Making all in iconv > Making all in imap > Making all in mcal > Making all in mcrypt > Making all in mysql > Making all in openssl > Making all in pcre > Making all in pcrelib > Making all in pdf > Making all in posix > Making all in pspell > Making all in readline > Making all in session > Making all in snmp > Making all in sockets > Making all in standard > Making all in xml > Making all in xslt > Making all in sapi > Making all in cgi > Making all in TSRM > Making all in . > /bin/sh /usr/ports/lang/php4/work/php-4.2.1/libtool --silent --mode=link cc -I. >-I/usr/ports/lang/php4/work/php-4.2.1/ -I/usr/ports/lang/php4/work/php-4.2.1/main >-I/usr/ports/lang/php4/work/php-4.2.1 -I/usr/ports/lang/php4/work/php-4.2.1/Zend >-I/usr/local/include/libxml2 -I/usr/local/include >-I/usr/local/include/freetype2/freetype -I/usr/local/include/gd >-I/usr/local/include/c-client -I/usr/local/include/mcal -I/usr/local/include/mysql >-I/usr/local/include/pspell -I/usr/local/include/ucd-snmp >-I/usr/ports/lang/php4/work/php-4.2.1/TSRM -O -pipe -march=pentiumpro >-I/usr/local/include -o php -export-dynamic stub.lo libphp4.la > ./.libs/libphp4.a(php_imap.o): In function `zm_startup_imap': > php_imap.o(.text+0x373): undefined reference to `ssl_onceonlyinit' > *** Error code 1 > > Stop in /usr/ports/lang/php4/work/php-4.2.1. > *** Error code 1 > > Stop in /usr/ports/lang/php4/work/php-4.2.1. > *** Error code 1 > > Stop in /usr/ports/lang/php4. > *** Error code 1 > > Stop in /usr/ports/lang/php4. > LIGHTGUARD# exit > > exit > > Script done on Fri Jul 12 14:55:21 2002 -- Regards, Ulf. - Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-865-0204 You can find my resume at: http://seven.Alameda.net/~ulf/resume.html To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-questions" in the body of the message
