Re: local security scanner for vulnerable common opensource www projects
Mel Flynn schreef: On Saturday 02 May 2009 14:50:14 Jeroen Hofstee wrote: I tried to find a program which could scan the local filesystem and extract a lists of well known web projects (joomla, wordpress etc) Not that I'm aware of and it's hell to write and keep current. k, pitty. Although user can be jailed, it is still a bit unconfortable experience for users if their website looks somewhat different then they are used to; or their message board suddenly contains 2 additional post, albeit due to their own lack of maintaining the scripts behind it. A reminder that their script has known vulnerabities would therefore be nice, even if it doesn't pose a direct risk to the system as a whole. Most of these open source projects are in the ports, so the portaudit db will contain vulnerability information for them. If I find time, I will have a look if it is possible to match against that db. Jeroen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: local security scanner for vulnerable common opensource www projects
Mel Flynn schreef: You can do that, the issue is plugins: 0) SuperCMS v 1.0 installed 1) CoolStuff via webinterface, by SuperCMSNr1Fan, version 0.1.0.1beta 2) SuperCMS v 1.0.1 security release, changes some issues with plugin handling 3) CoolStuff's maintainer is now known as CompetitorCMSNr1Fan 4) CoolStuff still works, because of backwards compatibility, but now is insecure. Stuff like this goes back to the phpNukeYourSite days. I understand that there are allot of caveats and that is quite some work to create a full blown checker, especially with plugins. But as far as I am corcerned, finding the easy to locate vultnerable script is already better then doing nothing. Jeroen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
local security scanner for vulnerable common opensource www projects
I tried to find a program which could scan the local filesystem and extract a lists of well known web projects (yoomla, wordpress etc), extract the installed version number and match it against a database of known vulnerabilities. Similiar to portaudit, but then for the standard scripts users install themselves. I was unable to find such a program in the ports. Does such an utilities exists for FreeBSD ? Jeroen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
output of ifconfig list scan
Inspired by the long modern installer thread I had a look at PC-BSD. I am one of the lucky owners of a Broadcom, Dell Wireless 1390 WLAN Mini-PCI Card and added the ndiswrapper to support it. I noticed that the PC-BSD tray icon could not scan the network for SSID, while ifconfig does return this list. It appears that the tool assumes SSID are reported as SSIDsession, which is not the case here. My list is similar as listed in the handbook, so I guess it is not directly related to the ndiswrapper. Looking at ifconfig, it appears to me that the ieee80211 part queries the kernel and prints the returned values. I therefore assume that there are drivers, which report the session as SSIDsession instead of session directly. Can someone confirm above is correct? If someone has a list with SSIDsession could I get a copy of it (e.g. directly to my e-mail) so I don't break other things while fixing mine. Jeroen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: output of ifconfig list scan
Paul B. Mahol wrote: It appears that the tool assumes SSID are reported as SSIDsession, which is not the case here. My list is similar as listed in the handbook, Looking at ifconfig, it appears to me that the ieee80211 part queries the kernel and prints the returned values. I therefore assume that there are drivers, which report the session as SSIDsession instead of session directly. Whatever session means it is either not supported by NDIS or not implemented in ndisulator. Perhaps I should explain my question a bit better. The session is just mentioned as an example. With the ndiswrapper the wifi is working proper and lists the available network (only mine shown), e.g. SSIDBSSID CHAN RATE S:N INT CAPS DV201AM 00:13:d4:7a:16:b11 54M -51:-96 100 EP The wificonfig tool _assumes_ the output of ifconfig would look like. SSIDBSSID CHAN RATE S:N INT CAPS SSIDDV201AM 00:13:d4:7a:16:b11 54M -51:-96 100 EP My question is if there are wifi drivers which report the SSID like this, instead of reporting them directly as in my case and if so how the output is formatted in that case. Hope this clarifies my question a bit. Jeroen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: stable-supfile -- freebsd-update
As far as I know you cannot use freebsd-update on stable releases. Use *default release=cvs tag=RELENG_7_1 instead to track a release, That will get you back to 7.1 p nr and allows you to do binary upgrades again. Jeroen Hofstee Roy Stuivenberg schreef: I am wondering. After installing freebsd 7.1 RELEASE, I did csup stable-supfile , en completed the proces of make buildword, etc, etc .. Everything went fine, but when I try -- freebsd-update fetch, is says rs-unix# freebsd-update fetch Looking up update.FreeBSD.org http://update.freebsd.org/ mirrors... 4 mirrors found. Fetching metadata signature for 7.1-STABLE from update2.FreeBSD.org... failed. Fetching metadata signature for 7.1-STABLE from update1.FreeBSD.org... failed. Fetching metadata signature for 7.1-STABLE from update4.FreeBSD.org... failed. Fetching metadata signature for 7.1-STABLE from update3.FreeBSD.org... failed. No mirrors remaining, giving up. I was thinking, I have to change the freebsd-update.conf file, but don't know what to change .. Anyone to help me on this? Regards, Roy. rs-unix# uname -a FreeBSD rs-unix.roycs.nl 7.1-STABLE FreeBSD 7.1-STABLE #0: Mon Jan 12 00:41:54 CET 2009 1...@rs-unix.roycs.nl:/usr/obj/usr/src/sys/GENERIC i386 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
high interrupt level
Hello, A Dell Poweregde 1850 constantly spents about one third of its time in interrupt 16. This box has run for a year without this issue. It has an almost generic kernel, only quotas are compiled in. Rebooting (without ipmi) does not help nor updating; the issue was already present before updating to 6.4 p1, but persists. The software hardly changes, except that ipmitool is recently installed to monitor temperatures. I tried to replicate the issue by loading / unloading the ipmi kernel module on a similiar box, but running 7.0-RELEASE-p7 . This does not lead to any problem however. Any pointers would be appreciated. It might not at all be related to ipmi, but I suspect it to be cause since it is the only change and I loaded a kernel module for it. Jeroen Hofstee last pid: 12675; load averages: 1.27, 0.75, 0.65 up 6+05:56:47 23:50:57 85 processes: 1 running, 84 sleeping CPU: 0.3% user, 0.0% nice, 0.3% system, 33.8% interrupt, 65.5% idle Mem: 174M Active, 1514M Inact, 209M Wired, 88M Cache, 112M Buf, 14M Free Swap: 2048M Total, 28K Used, 2048M Free FreeBSD vh3.virtualhost.nl 6.4-RELEASE-p1 FreeBSD 6.4-RELEASE-p1 #2: Tue Dec 23 23:50:15 CET 2008 vmstat -i interrupt total rate irq14: ata0 47 0 irq16: uhci0 313487360578 irq18: uhci2 16 0 irq23: ehci0 3 0 irq34: mpt0 16 0 irq37: amr0 8894886 16 irq64: em0 54502901100 cpu0: timer904348488 1669 cpu1: timer1 0 cpu2: timer 1058243496 1953 cpu3: timer1 0 Total 2339477215 4317 vh3# kldstat Id Refs AddressSize Name 17 0xc040 7dbd28 kernel 22 0xc0bdc000 5c838acpi.ko 31 0xc6d1 d000 ipfw.ko 41 0xc6f0b000 2000 accf_http.ko 51 0xcc472000 a000 ipmi.ko 61 0xcc47c000 2000 smbus.ko Copyright (c) 1992-2008 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD is a registered trademark of The FreeBSD Foundation. FreeBSD 6.4-RELEASE-p1 #2: Tue Dec 23 23:50:15 CET 2008 r...@vh3.virtualhost.nl:/usr/obj/usr/src/sys/VIRTUALHOST Timecounter i8254 frequency 1193182 Hz quality 0 CPU: Intel(R) Xeon(TM) CPU 3.00GHz (2992.70-MHz 686-class CPU) Origin = GenuineIntel Id = 0xf43 Stepping = 3 Features=0xbfebfbffFPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE Features2=0x641dSSE3,RSVD2,MON,DS_CPL,CNXT-ID,CX16,xTPR AMD Features=0x2010NX,LM Logical CPUs per core: 2 real memory = 2147221504 (2047 MB) avail memory = 2091900928 (1994 MB) ACPI APIC Table: DELL PE BKC FreeBSD/SMP: Multiprocessor System Detected: 4 CPUs cpu0 (BSP): APIC ID: 0 cpu1 (AP): APIC ID: 1 cpu2 (AP): APIC ID: 6 cpu3 (AP): APIC ID: 7 ioapic0: Changing APIC ID to 8 ioapic1: Changing APIC ID to 9 ioapic2: Changing APIC ID to 10 ioapic0 Version 2.0 irqs 0-23 on motherboard ioapic1 Version 2.0 irqs 32-55 on motherboard ioapic2 Version 2.0 irqs 64-87 on motherboard kbd1 at kbdmux0 ath_hal: 0.9.20.3 (AR5210, AR5211, AR5212, RF5111, RF5112, RF2413, RF5413) hptrr: HPT RocketRAID controller driver v1.1 (Dec 23 2008 23:49:48) acpi0: DELL PE BKC on motherboard acpi0: Power Button (fixed) Timecounter ACPI-fast frequency 3579545 Hz quality 1000 acpi_timer0: 24-bit timer at 3.579545MHz port 0x808-0x80b on acpi0 acpi_hpet0: High Precision Event Timer iomem 0xfed0-0xfed003ff on acpi0 Timecounter HPET frequency 14318180 Hz quality 900 cpu0: ACPI CPU on acpi0 cpu1: ACPI CPU on acpi0 cpu2: ACPI CPU on acpi0 cpu3: ACPI CPU on acpi0 pcib0: ACPI Host-PCI bridge port 0xcf8-0xcff on acpi0 pci0: ACPI PCI bus on pcib0 pcib1: ACPI PCI-PCI bridge at device 2.0 on pci0 pci1: ACPI PCI bus on pcib1 pcib2: ACPI PCI-PCI bridge at device 0.0 on pci1 pci2: ACPI PCI bus on pcib2 mpt0: LSILogic 1030 Ultra4 Adapter port 0xec00-0xecff mem 0xdfdf-0xdfdf,0xdfde-0xdfde irq 34 at device 5.0 on pci2 mpt0: [GIANT-LOCKED] mpt0: MPI Version=1.2.12.0 pcib3: ACPI PCI-PCI bridge at device 0.2 on pci1 pci3: ACPI PCI bus on pcib3 amr0: LSILogic MegaRAID 1.53 mem 0xd8ff-0xd8ff irq 37 at device 11.0 on pci3 amr0: delete logical drives supported by controller amr0: LSILogic PERC 4/SC Firmware 350O, BIOS 1.09, 64MB RAM pcib4: ACPI PCI-PCI bridge at device 4.0 on pci0 pci4: ACPI PCI bus on pcib4 pcib5: ACPI PCI-PCI bridge at device 5.0 on pci0 pci5: ACPI PCI bus on pcib5 pcib6: ACPI PCI-PCI bridge at device 0.0 on pci5 pci6: ACPI PCI bus on pcib6 em0: Intel(R
high interrupt level
Hello, A Dell Poweregde 1850 constantly spents about one third of its time in interrupt 16. This box has run for a year without this issue. It has an almost generic kernel, only quotas are compiled in. Rebooting (without ipmi) does not help nor updating; the issue was already present before updating to 6.4 p1, but persists. The software hardly changes, except that ipmitool is recently installed to monitor temperatures. I tried to replicate the issue by loading / unloading the ipmi kernel module on a similiar box, but running 7.0-RELEASE-p7 . This does not lead to any problem however. Any pointers would be appreciated. It might not at all be related to ipmi, but I suspect it to be cause since it is the only change and I loaded a kernel module for it. Jeroen Hofstee last pid: 12675; load averages: 1.27, 0.75, 0.65 up 6+05:56:47 23:50:57 85 processes: 1 running, 84 sleeping CPU: 0.3% user, 0.0% nice, 0.3% system, 33.8% interrupt, 65.5% idle Mem: 174M Active, 1514M Inact, 209M Wired, 88M Cache, 112M Buf, 14M Free Swap: 2048M Total, 28K Used, 2048M Free FreeBSD vh3.virtualhost.nl 6.4-RELEASE-p1 FreeBSD 6.4-RELEASE-p1 #2: Tue Dec 23 23:50:15 CET 2008 vmstat -i interrupt total rate irq14: ata0 47 0 irq16: uhci0 313487360578 irq18: uhci2 16 0 irq23: ehci0 3 0 irq34: mpt0 16 0 irq37: amr0 8894886 16 irq64: em0 54502901100 cpu0: timer904348488 1669 cpu1: timer1 0 cpu2: timer 1058243496 1953 cpu3: timer1 0 Total 2339477215 4317 vh3# kldstat Id Refs AddressSize Name 17 0xc040 7dbd28 kernel 22 0xc0bdc000 5c838acpi.ko 31 0xc6d1 d000 ipfw.ko 41 0xc6f0b000 2000 accf_http.ko 51 0xcc472000 a000 ipmi.ko 61 0xcc47c000 2000 smbus.ko Copyright (c) 1992-2008 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD is a registered trademark of The FreeBSD Foundation. FreeBSD 6.4-RELEASE-p1 #2: Tue Dec 23 23:50:15 CET 2008 r...@vh3.virtualhost.nl:/usr/obj/usr/src/sys/VIRTUALHOST Timecounter i8254 frequency 1193182 Hz quality 0 CPU: Intel(R) Xeon(TM) CPU 3.00GHz (2992.70-MHz 686-class CPU) Origin = GenuineIntel Id = 0xf43 Stepping = 3 Features=0xbfebfbffFPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE Features2=0x641dSSE3,RSVD2,MON,DS_CPL,CNXT-ID,CX16,xTPR AMD Features=0x2010NX,LM Logical CPUs per core: 2 real memory = 2147221504 (2047 MB) avail memory = 2091900928 (1994 MB) ACPI APIC Table: DELL PE BKC FreeBSD/SMP: Multiprocessor System Detected: 4 CPUs cpu0 (BSP): APIC ID: 0 cpu1 (AP): APIC ID: 1 cpu2 (AP): APIC ID: 6 cpu3 (AP): APIC ID: 7 ioapic0: Changing APIC ID to 8 ioapic1: Changing APIC ID to 9 ioapic2: Changing APIC ID to 10 ioapic0 Version 2.0 irqs 0-23 on motherboard ioapic1 Version 2.0 irqs 32-55 on motherboard ioapic2 Version 2.0 irqs 64-87 on motherboard kbd1 at kbdmux0 ath_hal: 0.9.20.3 (AR5210, AR5211, AR5212, RF5111, RF5112, RF2413, RF5413) hptrr: HPT RocketRAID controller driver v1.1 (Dec 23 2008 23:49:48) acpi0: DELL PE BKC on motherboard acpi0: Power Button (fixed) Timecounter ACPI-fast frequency 3579545 Hz quality 1000 acpi_timer0: 24-bit timer at 3.579545MHz port 0x808-0x80b on acpi0 acpi_hpet0: High Precision Event Timer iomem 0xfed0-0xfed003ff on acpi0 Timecounter HPET frequency 14318180 Hz quality 900 cpu0: ACPI CPU on acpi0 cpu1: ACPI CPU on acpi0 cpu2: ACPI CPU on acpi0 cpu3: ACPI CPU on acpi0 pcib0: ACPI Host-PCI bridge port 0xcf8-0xcff on acpi0 pci0: ACPI PCI bus on pcib0 pcib1: ACPI PCI-PCI bridge at device 2.0 on pci0 pci1: ACPI PCI bus on pcib1 pcib2: ACPI PCI-PCI bridge at device 0.0 on pci1 pci2: ACPI PCI bus on pcib2 mpt0: LSILogic 1030 Ultra4 Adapter port 0xec00-0xecff mem 0xdfdf-0xdfdf,0xdfde-0xdfde irq 34 at device 5.0 on pci2 mpt0: [GIANT-LOCKED] mpt0: MPI Version=1.2.12.0 pcib3: ACPI PCI-PCI bridge at device 0.2 on pci1 pci3: ACPI PCI bus on pcib3 amr0: LSILogic MegaRAID 1.53 mem 0xd8ff-0xd8ff irq 37 at device 11.0 on pci3 amr0: delete logical drives supported by controller amr0: LSILogic PERC 4/SC Firmware 350O, BIOS 1.09, 64MB RAM pcib4: ACPI PCI-PCI bridge at device 4.0 on pci0 pci4: ACPI PCI bus on pcib4 pcib5: ACPI PCI-PCI bridge at device 5.0 on pci0 pci5: ACPI PCI bus on pcib5 pcib6: ACPI PCI-PCI bridge at device 0.0 on pci5 pci6: ACPI PCI bus on pcib6 em0: Intel(R) PRO/1000