[Clfs-support] i need a idea

Roy Bekken roy.bekken at gmail.com
Sat Aug 15 02:07:30 PDT 2009 

Why can't you just define them by UUID instead of device path?

$ man mdadm.conf
$ man blkid

http://linux.byexamples.com/archives/321/fstab-with-uuid/

I couldn't find specific about mdamd.conf but its the same approach as in fstab.

Yeah, I seen the wunderbar thingy... its not exploitable on F11 with
selinux, although the author claims so.
$ su -c 'setenforce 0'
$ LANG=C sh wunderbar_emporium.sh
runcon: invalid context:
unconfined_u:unconfined_r:initrc_t:s0-s0:c0.c1023: Invalid argument
 [+] MAPPED ZERO PAGE!
 [+] Resolved selinux_enforcing to 0xffffffff81874374
 [+] Resolved selinux_enabled to 0xffffffff815a0a60
 [+] Resolved security_ops to 0xffffffff81871b20
 [+] Resolved default_security_ops to 0xffffffff815a0080
 [+] Resolved sel_read_enforce to 0xffffffff8118934c
 [+] Resolved audit_enabled to 0xffffffff8182e804
 [+] Resolved commit_creds to 0xffffffff810615c3
 [+] Resolved prepare_kernel_cred to 0xffffffff810614a4
 [+] got ring0!
 [+] detected 2.6 style 4k stacks
sh: mplayer: command not found
 [+] Disabled security of : nothing, what an insecure machine!
 [+] Got root!

sh-4.0# setenforce 1
sh-4.0# exit
exit
$ LANG=C sh wunderbar_emporium.sh
runcon: invalid context:
unconfined_u:unconfined_r:initrc_t:s0-s0:c0.c1023: Invalid argument
UNABLE TO MAP ZERO PAGE!

The log entry:
> node=wicktop.localdomain type=AVC msg=audit(1250276339.135:27494):
> avc: denied { mmap_zero } for pid=16293 comm="exploit"
> scontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
> tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
> tclass=memprotect node=wicktop.localdomain type=SYSCALL
> msg=audit(1250276339.135:27494): arch=c000003e syscall=9 success=yes
> exit=0 a0=0 a1=1000 a2=7 a3=32 items=0 ppid=16273 pid=16293 auid=500
> uid=500 gid=500 euid=500 suid=500 fsuid=500 egid=500 sgid=500
> fsgid=500 tty=pts4 ses=1 comm="exploit"
> exe="/home/chris/Downloads/wunderbar_emporium/exploit"
> subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 key=(null)

On Sat, Aug 15, 2009 at 3:45 AM, mike<spam at kleiderschrank51.de> wrote:
> hi folks,
>
> a off-topic question:
> i have a little problem with my external usb storage dev.
> my system (etch at 2.6.18) has a soft raid with mdadm and the disk normally are
> sda & sdb. also i need a external usb disk permanently online and i can't
> unplug while rebooting - its a remote machine. the problem is the reboot:
> when the kernel start, he find one time the internal disk at first and on
> time the usb disk at first as /dev/sda. and in this case the raid cannot
> start. i tried with udev to get a personal naming in /dev  (/dev/usbdisk%n)
> but this doesn't affect. how can i tell the kernel to map the usb disk to
> /dev/someone, expecting sda/sdb. or is there a boot param? (i tried
> usb-storage.delay_use=10 but kernel says unknown boot parameter) any hints?
>
> off-off-topic:
> do you now this?:
> http://lists.grok.org.uk/pipermail/full-disclosure/2009-August/070197.html
> i tried the wunderbar_emporium.sh and i got a root shell in 30 seconds
> including the download/unpacking/build time!
> _______________________________________________
> Clfs-support mailing list
> Clfs-support at lists.cross-lfs.org
> http://lists.cross-lfs.org/listinfo.cgi/clfs-support-cross-lfs.org
>

More information about the Clfs-support mailing list