Re: lug-bg: Bind в chroot
Danail Petrov wrote: *THUMBS UP* , , reply- ? ?10 ? ? . , . , 10 - 10- . , -. , LUG-BG , 10 2 () - . , IRC. A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
Boris Jordanov / wrote: Danail Petrov wrote: *THUMBS UP* , , reply- ? ?10 ? ? . , . , 10 - 10- . , -. , LUG-BG , 10 2 () - . , IRC. A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html ? ( ) -() ()? REPLY- , ** ... . , , . -- perl -e 'print 7.66.82.44.10.68.97.110. 97.105.108.32.80.101.116.114.111.118.10' A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
lug-bg: Netiquette относно цитиране [Was: Re: lug-bg: Bind в chroot]
On Mon, Mar 21, 2005 at 12:41:05PM +0200, Danail Petrov wrote: Boris Jordanov / wrote: Danail Petrov wrote: *THUMBS UP* , , reply- ? ?10 ? ? . , . , 10 - 10- . , -. , LUG-BG , 10 2 () - . , IRC. [snip signature Borj -;] ? ( ) -() ()? , ;, ... , - netiquette :) , , :) REPLY- , ** ... . , , - ,- ( , ** ) , , , , , - , -, . , - ( , ) : http://www.uwasa.fi/~ts/http/quote.html http://web.presby.edu/~nnqadmin/nnq/nquote.html#Q3 http://www.netmeister.org/news/learn2quote2.html#ss2.1 , , . ;. , -- Peter Pentchev [EMAIL PROTECTED][EMAIL PROTECTED][EMAIL PROTECTED] PGP key:http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 I've heard that this sentence is a rumor. pgpuPtgc3hQxt.pgp Description: PGP signature
lug-bg: Bind в chroot
bind chroot, : Mar 18 09:35:26 localhost named[11017]: starting BIND 9.2.5 -u nobody -t /var/lib/named Mar 18 09:35:26 localhost named[11017]: using 1 CPU Mar 18 09:35:26 localhost named[11017]: loading configuration from '/etc/bind/named.conf' Mar 18 09:35:26 localhost named[11017]: listening on IPv4 interface lo, 127.0.0.1#53 Mar 18 09:35:26 localhost named[11017]: listening on IPv4 interface eth0, 192.168.0.1#53 Mar 18 09:35:26 localhost named[11017]: command channel listening on 127.0.0.1#953 Mar 18 09:35:26 localhost named[11017]: command channel listening on ::1#953 Mar 18 09:35:26 localhost named[11017]: couldn't open pid file '/var/run/bind/run/named.pid': No such file or directory Mar 18 09:35:26 localhost named[11017]: exiting (due to early fatal error) . Debian sarge old:/var/run/bind/run# uname -a Linux old 2.6.10-1-686 #1 Fri Mar 11 03:55:46 EST 2005 i686 GNU/Linux ? A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
Tsvetin Vasilev wrote: Qsin wrote: bind chroot, : Mar 18 09:35:26 localhost named[11017]: starting BIND 9.2.5 -u nobody -t /var/lib/named Mar 18 09:35:26 localhost named[11017]: using 1 CPU Mar 18 09:35:26 localhost named[11017]: loading configuration from '/etc/bind/named.conf' Mar 18 09:35:26 localhost named[11017]: listening on IPv4 interface lo, 127.0.0.1#53 Mar 18 09:35:26 localhost named[11017]: listening on IPv4 interface eth0, 192.168.0.1#53 Mar 18 09:35:26 localhost named[11017]: command channel listening on 127.0.0.1#953 Mar 18 09:35:26 localhost named[11017]: command channel listening on ::1#953 Mar 18 09:35:26 localhost named[11017]: couldn't open pid file '/var/run/bind/run/named.pid': No such file or directory Mar 18 09:35:26 localhost named[11017]: exiting (due to early fatal error) . Debian sarge old:/var/run/bind/run# uname -a Linux old 2.6.10-1-686 #1 Fri Mar 11 03:55:46 EST 2005 i686 GNU/Linux ... chroot ? ;-) - mkdir mount -o bind ? ! :) A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
Tsvetin Vasilev wrote:
... chroot ? ;-)
-
mkdir
mount -o bind
, BIND9 Configuration Reference
:
***
*pid-file*
The pathname of the file the server writes its process ID in. If not
specified, the default is /var/run/named.pid. The pid-file is used
by programs that want to send signals to the running name server.
Specifying *pid-file none* disables the use of a PID file no file
will be written and any existing one will be removed. Note that
*none* is a keyword, not a file name, and therefore is not enclosed
in double quotes.
***
options
named.conf.
pid .
chroot? ,named.conf
:
options {
...
pid-file /var/run/bind/run/named.pid;
...
};
chroot /var/named/chroot, pid
/var/named/chroot/var/run/bind/run/named.pid.
.. chroot :
# cd /var/named/chroot
# mkdir -p var/run/bind/run
,
named.
, ,
Bind chroot. syslog
:
Mar 18 09:35:26 localhost named[11017]: starting BIND 9.2.5 -u
nobody -t /var/lib/named
named nobody,
.
nobody,
named,
nobody? ,
:) apt-get
, named.
. :
, Debian
chrootnamed.
(
apt-get install ntp-server , ntpd root
:),init ,
init
/etc/defaults/ntp-server,
,
).
bind:
1) /etc/init.d/bind9
named
:
- start () {
echo -n Starting domain name service: named
if [ ! -x /usr/sbin/named ]; then
echo named binary missing - not starting
exit 1
fi
start-stop-daemon --start --quiet \
--pidfile /var/run/named.pid --exec /usr/sbin/named -- $OPTIONS
echo .
, pid , chroot,
$OPTIONS chroot -t.
- stop () {
echo -n Stopping domain name service: named
# --exec doesn't catch daemons running deleted instances of
named,
# as in an upgrade. Fortunately, --pidfile is only going to hit
# things from the pidfile.
start-stop-daemon --stop --quiet \
--pidfile /var/run/named.pid --name named
echo .
}
. , ISC
,. named:
# rndc stop
stop bash
(chroot named):
stop() {
# Stop daemons.
echo -n $Stopping $prog:
/usr/sbin/rndc stop /dev/null 21
RETVAL=$?
[ $RETVAL -eq 0 ] rm -f /var/lock/subsys/named || {
# killproc named
# Never do this! Can cause corrupt zone files!
/usr/sbin/rndc stop /dev/null 21
RETVAL=$?
[ $RETVAL -eq 0 ] rm -f /var/lock/subsys/named
echo
return $RETVAL
}
success
echo
return $RETVAL
}
pid chroot.
. pid .
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
Vesselin Kolev wrote:
Tsvetin Vasilev wrote:
... chroot ? ;-)
-
mkdir
mount -o bind
, BIND9 Configuration
Reference
:
***
*pid-file*
The pathname of the file the server writes its process ID in. If not
specified, the default is /var/run/named.pid. The pid-file is used
by programs that want to send signals to the running name server.
Specifying *pid-file none* disables the use of a PID file no file
will be written and any existing one will be removed. Note that
*none* is a keyword, not a file name, and therefore is not enclosed
in double quotes.
***
options
named.conf.
pid .
chroot? ,
named.conf :
options {
...
pid-file /var/run/bind/run/named.pid;
...
};
chroot /var/named/chroot, pid
/var/named/chroot/var/run/bind/run/named.pid.
.. chroot :
# cd /var/named/chroot
# mkdir -p var/run/bind/run
,-
- mount
, .
,
named.
, ,
Bind chroot. syslog
:
Mar 18 09:35:26 localhost named[11017]: starting BIND 9.2.5 -u
nobody -t /var/lib/named
named nobody,
.
nobody,
named,
nobody? ,
:) apt-get
, named.
. :
, Debian
chrootnamed.
(
apt-get install ntp-server , ntpd root
:),init ,
init
/etc/defaults/ntp-server,
,
).
bind:
1) /etc/init.d/bind9
named
:
- start () {
echo -n Starting domain name service: named
if [ ! -x /usr/sbin/named ]; then
echo named binary missing - not starting
exit 1
fi
start-stop-daemon --start --quiet \
--pidfile /var/run/named.pid --exec /usr/sbin/named --
$OPTIONS
echo .
, pid , chroot,
$OPTIONS chroot -t.
- stop () {
echo -n Stopping domain name service: named
# --exec doesn't catch daemons running deleted instances of
named,
# as in an upgrade. Fortunately, --pidfile is only going
to hit
# things from the pidfile.
start-stop-daemon --stop --quiet \
--pidfile /var/run/named.pid --name named
echo .
}
. , ISC
,. named:
# rndc stop
stop bash
(chroot named):
stop() {
# Stop daemons.
echo -n $Stopping $prog:
/usr/sbin/rndc stop /dev/null 21
RETVAL=$?
[ $RETVAL -eq 0 ] rm -f /var/lock/subsys/named || {
# killproc named
# Never do this! Can cause corrupt zone files!
/usr/sbin/rndc stop /dev/null 21
RETVAL=$?
[ $RETVAL -eq 0 ] rm -f /var/lock/subsys/named
echo
return $RETVAL
}
success
echo
return $RETVAL
}
pid chroot.
. pid .
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara
Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
Vesselin Kolev wrote:
Tsvetin Vasilev wrote:
... chroot ? ;-)
-
mkdir
mount -o bind
, BIND9 Configuration
Reference
:
***
*pid-file*
The pathname of the file the server writes its process ID in. If not
specified, the default is /var/run/named.pid. The pid-file is used
by programs that want to send signals to the running name server.
Specifying *pid-file none* disables the use of a PID file no file
will be written and any existing one will be removed. Note that
*none* is a keyword, not a file name, and therefore is not enclosed
in double quotes.
***
options
named.conf.
pid .
chroot? ,
named.conf :
options {
...
pid-file /var/run/bind/run/named.pid;
...
};
chroot /var/named/chroot, pid
/var/named/chroot/var/run/bind/run/named.pid.
.. chroot :
# cd /var/named/chroot
# mkdir -p var/run/bind/run
,
named.
, ,
Bind chroot. syslog
:
Mar 18 09:35:26 localhost named[11017]: starting BIND 9.2.5 -u
nobody -t /var/lib/named
named nobody,
.
nobody,
named,
nobody? ,
:) apt-get
, named.
. :
, Debian
chrootnamed.
(
apt-get install ntp-server , ntpd root
:),init ,
init
/etc/defaults/ntp-server,
,
).
bind:
1) /etc/init.d/bind9
named
:
- start () {
echo -n Starting domain name service: named
if [ ! -x /usr/sbin/named ]; then
echo named binary missing - not starting
exit 1
fi
start-stop-daemon --start --quiet \
--pidfile /var/run/named.pid --exec /usr/sbin/named --
$OPTIONS
echo .
, pid , chroot,
$OPTIONS chroot -t.
- stop () {
echo -n Stopping domain name service: named
# --exec doesn't catch daemons running deleted instances of
named,
# as in an upgrade. Fortunately, --pidfile is only going
to hit
# things from the pidfile.
start-stop-daemon --stop --quiet \
--pidfile /var/run/named.pid --name named
echo .
}
. , ISC
,. named:
# rndc stop
stop bash
(chroot named):
stop() {
# Stop daemons.
echo -n $Stopping $prog:
/usr/sbin/rndc stop /dev/null 21
RETVAL=$?
[ $RETVAL -eq 0 ] rm -f /var/lock/subsys/named || {
# killproc named
# Never do this! Can cause corrupt zone files!
/usr/sbin/rndc stop /dev/null 21
RETVAL=$?
[ $RETVAL -eq 0 ] rm -f /var/lock/subsys/named
echo
return $RETVAL
}
success
echo
return $RETVAL
}
pid chroot.
. pid .
. Debian 3-4
.
FC3.
.
.
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
Dimitar G. Katerinski wrote: Vesselin Kolev wrote: , Debian chrootnamed. ( apt-get install ntp-server , ntpd root :),init , init /etc/defaults/ntp-server, , ). . dnscache i tinydns, . ,, . , sendmail, bind9 Fedor. , , . bind9 debian,, : bind: 1) /etc/init.d/bind9 named : . /etc/init.d/bind9: # for a chrooted server: -u bind -t /var/lib/named # Don't modify this line, change or create /etc/default/bind9. OPTIONS= test -f /etc/default/bind9 . /etc/default/bind9 test -x /usr/sbin/rndc || exit 0 case $1 in start) echo -n Starting domain name service: named , pid , chroot, $OPTIONS chroot -t. ? : . , ISC ,. named: # rndc stop . debian. stop) echo -n Stopping domain name service: named if [ -x /sbin/resolvconf ]; then /sbin/resolvconf -d lo fi /usr/sbin/rndc stop echo . ;; reload) /usr/sbin/rndc reload ;; restart|force-reload) $0 stop sleep 2 $0 start ;; pid chroot. . pid . ;-) , : ~# grep bind /etc/passwd bind:x:104:107::/var/cache/bind:/bin/false ;-)?bind, . , ,. . ,: ~# ps aux | grep ntp ntp 15788 0.0 0.6 3292 3292 ?SLs 14:30 0:00 /usr/sbin/ntpd -p /var/run/ntpd.pid -u 108:108 ~# grep ntp /etc/passwd ntp:x:108:108::/home/ntp:/bin/false ;-) , Fedora , SELinux , ., , login- ;-). , A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html *THUBS UP* :) -- perl -e 'print 7.66.82.44.10.68.97.110. 97.105.108.32.80.101.116.114.111.118.10' A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
Dimitar G. Katerinski wrote: . ,: ~# ps aux | grep ntp ntp 15788 0.0 0.6 3292 3292 ?SLs 14:30 0:00 /usr/sbin/ntpd -p /var/run/ntpd.pid -u 108:108 1:4.2.0a+stable-4,testing 1:4.2.0a+stable-2. : http://packages.qa.debian.org/n/ntp.html , 1:4.2.0a+stable-7 ( ), incoming.debian.org. /etc/init.d/ntp-server restart. , A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
Danail Petrov wrote: , , , *THUBS UP* :) . , *THUBS UP* :) - ?!? wtf THUBS ?!? A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
Vesselin Kolev wrote: , Debian chrootnamed. , : - chroot . . , -( policy) chroot (debconf ?) . , chroot . . SELinux: Debian . Fedora. , Sarge 15 () . , A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
Boris Jordanov / wrote: Danail Petrov wrote: , , , *THUBS UP* :) . , *THUBS UP* :) - ?!? wtf THUBS ?!? A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html *THUMBS UP* , , reply- ? ?10 ? -- perl -e 'print 7.66.82.44.10.68.97.110. 97.105.108.32.80.101.116.114.111.118.10' A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
. , :)
.
,
OpenFMI.net.
init .
bind. stable bind named
start-stop-daemon --stop. ,
. bind9 (1:9.2.4-1) unstablerndc stop.
, unstable
, ntp chroot
,unstableUbuntu.
:
ntp (1:4.2.0a+stable-2)
init /etc/init.d/ntp-server:
#!/bin/sh
PATH=/sbin:/bin
FLAGS=defaults 23
test -f /usr/sbin/ntpd || exit 0
case $1 in
start)
echo -n Starting NTP server: ntpd
start-stop-daemon --start --quiet --pidfile
/var/run/ntpd.pid --exec /usr/sbin/ntpd -- -p /var/run/ntpd.pid
echo .
;;
stop)
echo -n Stopping NTP server: ntpd
start-stop-daemon --stop --quiet --pidfile /var/run/ntpd.pid
echo .
;;
restart|force-reload)
echo -n Restarting NTP server: ntpd...
start-stop-daemon --stop --quiet --pidfile /var/run/ntpd.pid
sleep 2
start-stop-daemon --start --quiet --exec /usr/sbin/ntpd
-- -p /var/run/ntpd.pid
echo done.
;;
*)
echo Usage: /etc/init.d/ntp-server
{start|stop|restart|force-reload}
exit 1
;;
esac
exit 0
?/etc/defaults/ntp-server?
chroot:
# ntpd --help
usage: ntpd [ -abdgmnqx ] [ -c config_file ] [ -e e_delay ]
[ -f freq_file ] [ -k key_file ] [ -l log_file ]
[ -p pid_file ] [ -r broad_delay ] [ -s statdir ]
[ -t trust_key ] [ -v sys_var ] [ -V default_sysvar ]
[ -P fixed_process_priority ]
-U.
/:
# ntpd --help
usage: ntpd [ -abdgmnqx ] [ -c config_file ] [ -e e_delay ]
[ -f freq_file ] [ -k key_file ] [ -l log_file ]
[ -p pid_file ] [ -r broad_delay ] [ -s statdir ]
[ -t trust_key ] [ -v sys_var ] [ -V default_sysvar ]
[ -T chroot_dir ] [ -U server_user ]
[ -P fixed_process_priority ]
ntpd.
, , ,
. unstable
,.
SELinux . ,
SELinux, login .
.
. .
.
/etc/init.d/bind9:
# for a chrooted server: -u bind -t /var/lib/named
# Don't modify this line, change or create /etc/default/bind9.
OPTIONS=
test -f /etc/default/bind9 . /etc/default/bind9
test -x /usr/sbin/rndc || exit 0
case $1 in
start)
echo -n Starting domain name service: named
, pid , chroot,
$OPTIONS chroot -t.
? :
. , ISC
,. named:
# rndc stop
. debian.
stop)
echo -n Stopping domain name service: named
if [ -x /sbin/resolvconf ]; then
/sbin/resolvconf -d lo
fi
/usr/sbin/rndc stop
echo .
;;
reload)
/usr/sbin/rndc reload
;;
restart|force-reload)
$0 stop
sleep 2
$0 start
;;
pid chroot.
. pid .
;-)
, :
~# grep bind /etc/passwd
bind:x:104:107::/var/cache/bind:/bin/false
;-)?bind,
.
, ,.
. ,:
~# ps aux | grep ntp
ntp 15788 0.0 0.6 3292 3292 ?SLs 14:30 0:00
/usr/sbin/ntpd -p /var/run/ntpd.pid -u 108:108
~# grep ntp /etc/passwd
ntp:x:108:108::/home/ntp:/bin/false
;-)
, Fedora , SELinux
,
.,
,
login- ;-).
,
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
On , 2005-03-18 at 16:30 +0200, Vesselin Kolev wrote: bind. stable bind named start-stop-daemon --stop. , . bind9 (1:9.2.4-1) unstable rndc stop. , unstable , zver.fsa sarge, bind9 9.2.4-1. update- . signature.asc Description: This is a digitally signed message part
Re: lug-bg: Bind в chroot
Vasil Kolev wrote: On , 2005-03-18 at 16:30 +0200, Vesselin Kolev wrote: . , :) . . ... 1) chroot(), , . , ,, , .. .. userland exec(), . root chroot.root , fd, chroot-. , chroot()- . (non-exec stack- x86 - return-into-libc, ). return-to-libc ,nonexec-stack|heap , -. exploit , , distro. 2) Flame- , . , Slackware rulez ;-) 3)3 - . . :) -- Georgi Chorbadzhiyski http://georgi.unixsol.org/ A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
On , 2005-03-18 at 16:58 +0200, Georgi Chorbadzhiyski wrote: Vasil Kolev wrote: 1) chroot(), , . , ,, , .. .. userland exec(), . root chroot.root , fd, chroot-. - , , ( , :) ). chroot- , BSD jail- - , Plan9 ( , :) ). , chroot()- . (non-exec stack- x86 - return-into-libc, ). return-to-libc ,nonexec-stack|heap , -. exploit , , distro. , paper 32 , flame- lkml, , 6-7 , , 12 ( 16?) - . signature.asc Description: This is a digitally signed message part
Re: lug-bg: Bind в chroot
Vesselin Kolev wrote: . , :) . , , . , OpenFMI.net. init . bind. stable bind named start-stop-daemon --stop. , . bind9 (1:9.2.4-1) unstablerndc stop. , unstable .? 3 ? , unstable, backports.org.. , 3 . ? /etc/defaults/ntp-server? . chroot: . ntpd. , , , . unstable ,. ;-), unstable e unstable. . SELinux . , SELinux, login . , . Fedora SELinux, ** , , . ' . . . . . ,, offtopic, . , stable , . , .. Because it completely breaks the way people normally read things. Why is top-posting bad? It means writing your reply above whatever you're replying to. What does top-post mean? Please don't top-post in email replies. A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
On Friday 18 March 2005 17:25, Nikola Antonov wrote: ,. chroot . : ... chroot . . -- Nikola ANTONOV, Sofia, Bulgaria 4 Dragan Tsankov blvd., 1000 Bulgarian National Radio -- http://linux-bg.org http://hosting.logos-bg.net http://debianbookbg.org -- Public GnuPG key at http://pgp.mit.edu -- pgpDmiCrXlNhq.pgp Description: PGP signature
Re: lug-bg: Bind в chroot
On , 2005-03-18 at 16:30 +0200, Vesselin Kolev wrote: . , :) . . ... 1) chroot(), , . , ,, , .. .. userland exec(), . , chroot()- . (non-exec stack- x86 - return-into-libc, ). 2) Flame- , . 3)3 - . . signature.asc Description: This is a digitally signed message part
Re: lug-bg: Bind в chroot
Vasil Kolev wrote: On , 2005-03-18 at 16:58 +0200, Georgi Chorbadzhiyski wrote: Vasil Kolev wrote: 1) chroot(), , . , ,, , .. .. userland exec(), . root chroot.root , fd, chroot-. - , , ( , :) ). chroot- , BSD jail- ,. chroot (Change filesystem root), magic_secure_right_now (tm) - , Plan9 ( , :) ). chroot , linux-vserver 9 ( - :) ) , chroot()- . (non-exec stack- x86 - return-into-libc, ). return-to-libc ,nonexec-stack|heap , -. exploit , , distro. , paper 32 , flame- lkml, , 6-7 , , 12 ( 16?) - . .12 . , . , . , , . -- Georgi Chorbadzhiyski http://georgi.unixsol.org/ A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
Georgi Chorbadzhiyski wrote: chroot , linux-vserver 9 ( - :) ) Hurd, , production () :-D , A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
? ,? , . . . SELinuxnamed? , unstable?, ? SELinux , ? Fedora SELinux, . , . , , . , . . ? ? , ??? 2001? ** , , . ' . .. , , , ( o , - ). - , - init sh . N .. . SELinux , . , : http://linux.lcpe.uni-sofia.bg/manuals/redhat/rhel/4/html/rhel-selg-en-4/ -, SELinux. ,. - , . , ,. SELinux, . , SELinux. , . , . ,. - , ? A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
Nikola Antonov wrote: On Friday 18 March 2005 17:25, Nikola Antonov wrote: : ... chroot . . , . .. namedroot, . A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Bind в chroot
On Friday 18 March 2005 18:27, Vesselin Kolev wrote: , . .. namedroot, . , chroot- debconf.. SuSE SuSEConfig/Yast .. , , chroot bind - Debian:) -- Nikola ANTONOV, Sofia, Bulgaria 4 Dragan Tsankov blvd., 1000 Bulgarian National Radio -- http://linux-bg.org http://hosting.logos-bg.net http://debianbookbg.org -- Public GnuPG key at http://pgp.mit.edu -- pgpLsQDq1z6Z3.pgp Description: PGP signature
Re: lug-bg: Bind в chroot
Vesselin Kolev wrote: ( o , - ). ? ? o ? ... ? ? ? , ? -- perl -e 'print 7.66.82.44.10.68.97.110. 97.105.108.32.80.101.116.114.111.118.10' A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
