thr3ads.net - freebsd security - Hellp !!! [Jan 2012]

If this information is useful, please help other people find it:
Share via:

sasha

2012-Jan-11 11:42 UTC

Hellp !!!

197]: superpolka.com.ua (superpolka.com.ua[::ffff:77.87.154.174]) - error:
FreeBSD with vulnerable chroot (FreeBSD-SA-11:07.chroot).

197]: superpolka.com.ua (superpolka.com.ua[::ffff:77.87.154.174]) - chroot
to '/home/ftp' failed for user 'ftp001': Operation not
permitted.

197]: superpolka.com.ua (superpolka.com.ua[::ffff:77.87.154.174]) - error:
unable to set default root directory.

 

 

superpolka.com.ua 8.2-STABLE FreeBSD 8.2-STABLE #3: Sat Jan 7 10:03:34 EET
2012 root@superpolka.com.ua:/usr/src/sys/amd64/compile/NAS2 amd64

 

# freebsd-update fetch

 

[root@artvideo /home/sh]# freebsd-update fetch

Looking up update.FreeBSD.org mirrors... 4 mirrors found.

Fetching public key from update4.FreeBSD.org... failed.

Fetching public key from update3.FreeBSD.org... failed.

Fetching public key from update5.FreeBSD.org... failed.

Fetching public key from update2.FreeBSD.org... failed.

No mirrors remaining, giving up.

 

# freebsd-update -v debug fetch

# freebsd-update install

 

[root@artvideo /home/sh]# freebsd-update install

No updates are available to install.

Run '/usr/sbin/freebsd-update fetch' first.

Tom Evans

2012-Jan-11 12:23 UTC

head link

Hellp !!!

On Wed, Jan 11, 2012 at 5:52 AM, sasha <Z462vasa@mail.lviv.ua>
wrote:> superpolka.com.ua 8.2-STABLE FreeBSD 8.2-STABLE #3: Sat Jan 7 10:03:34 EET
> 2012 root@superpolka.com.ua:/usr/src/sys/amd64/compile/NAS2 amd64
>
> [root@artvideo /home/sh]# freebsd-update fetch
>
You cannot use freebsd-update to update a custom kernel, or from
-STABLE. freebsd-update is also only used for updating between
releases - from freebsd-update(8):

Note that updates are only available
if they are being built for the FreeBSD release and architecture being
used; in particular, the FreeBSD Security Team only builds updates for
releases shipped in binary form by the FreeBSD Release Engineering Team,
e.g., FreeBSD 7.3-RELEASE and FreeBSD 8.0, but not FreeBSD 6.3-STABLE or
FreeBSD 9.0-CURRENT.

You will need to update your sources, and rebuild kernel and world.
See the handbook for details:

http://www.freebsd.org/doc/en/books/handbook/makeworld.html

Cheers

Tom

Victor Balada Diaz

2012-Jan-11 12:37 UTC

head link

Hellp !!!

On Wed, Jan 11, 2012 at 07:52:19AM +0200, sasha wrote:> 197]: superpolka.com.ua (superpolka.com.ua[::ffff:77.87.154.174]) - error:
> FreeBSD with vulnerable chroot (FreeBSD-SA-11:07.chroot).
> 
> 197]: superpolka.com.ua (superpolka.com.ua[::ffff:77.87.154.174]) - chroot
> to '/home/ftp' failed for user 'ftp001': Operation not
permitted.
> 
> 197]: superpolka.com.ua (superpolka.com.ua[::ffff:77.87.154.174]) - error:
> unable to set default root directory.
> 
>  
> 
>  
> 
> superpolka.com.ua 8.2-STABLE FreeBSD 8.2-STABLE #3: Sat Jan 7 10:03:34 EET
> 2012 root@superpolka.com.ua:/usr/src/sys/amd64/compile/NAS2 amd64
> 
>  
> 
> # freebsd-update fetch
> 
>  
> 
> [root@artvideo /home/sh]# freebsd-update fetch
> 
> Looking up update.FreeBSD.org mirrors... 4 mirrors found.
> 
> Fetching public key from update4.FreeBSD.org... failed.
> 
> Fetching public key from update3.FreeBSD.org... failed.
> 
> Fetching public key from update5.FreeBSD.org... failed.
> 
> Fetching public key from update2.FreeBSD.org... failed.
> 
> No mirrors remaining, giving up.
> 
>  
> 
> # freebsd-update -v debug fetch
> 
> # freebsd-update install
> 
>  
> 
> [root@artvideo /home/sh]# freebsd-update install
> 
> No updates are available to install.
> 
> Run '/usr/sbin/freebsd-update fetch' first.
Hello,

I'm not sure what are you trying to do, but if it's just patching the
system
you can't use freebsd-update for it. You're running a custom-built
system
with FreeBSD 8.2-STABLE and freebsd-update just works with standard systems.

To fix the vulnerabilities you can:

1) apply patches and rebuild as per each security advisory
2) Update source to RELENG_8 and upgrade using the procedure described here:

http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html

I hope it helps.

Regards.
Victor.
-- 
La prueba m?s fehaciente de que existe vida inteligente en otros
planetas, es que no han intentado contactar con nosotros.

Jorge Petry

2012-Jan-11 12:49 UTC

head link

Hellp !!!

Hi.
   You pass your server to STABLE, freebsd-update don't work for this
   server.
   DESCRIPTION
        The freebsd-update tool is used to fetch, install, and rollback
   binary
        updates to the FreeBSD base system.  Note that updates are only
   available
        if they are being built for the FreeBSD release and architecture
   being
        used; in particular, the FreeBSD Security Team only builds
   updates for
        releases shipped in binary form by the FreeBSD Release
   Engineering Team,
        e.g., FreeBSD 7.3-RELEASE and FreeBSD 8.0, but not FreeBSD
   6.3-STABLE or
        FreeBSD 9.0-CURRENT.
   Cheers.

   _________________________________________
   Jorge Petry Neto
   Administrador de Redes e Servidores
   PETRY Solu??es Tecnol?gicas LTDA.
   (48) 8401-4436
   [1]jorge@petry.net.br 
   [2]www.petry.net.br 
   
   Em 11/01/2012 03:52, sasha escreveu:

197]: superpolka.com.ua (superpolka.com.ua[::ffff:77.87.154.174]) - error:
FreeBSD with vulnerable chroot (FreeBSD-SA-11:07.chroot).

197]: superpolka.com.ua (superpolka.com.ua[::ffff:77.87.154.174]) - chroot
to '/home/ftp' failed for user 'ftp001': Operation not
permitted.

197]: superpolka.com.ua (superpolka.com.ua[::ffff:77.87.154.174]) - error:
unable to set default root directory.





superpolka.com.ua 8.2-STABLE FreeBSD 8.2-STABLE #3: Sat Jan 7 10:03:34 EET
2012 [3]root@superpolka.com.ua:/usr/src/sys/amd64/compile/NAS2 amd64



# freebsd-update fetch



[root@artvideo /home/sh]# freebsd-update fetch

Looking up update.FreeBSD.org mirrors... 4 mirrors found.

Fetching public key from update4.FreeBSD.org... failed.

Fetching public key from update3.FreeBSD.org... failed.

Fetching public key from update5.FreeBSD.org... failed.

Fetching public key from update2.FreeBSD.org... failed.

No mirrors remaining, giving up.



# freebsd-update -v debug fetch

# freebsd-update install



[root@artvideo /home/sh]# freebsd-update install

No updates are available to install.

Run '/usr/sbin/freebsd-update fetch' first.



_______________________________________________
[4]freebsd-security@freebsd.org mailing list
[5]http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to
[6]"freebsd-security-unsubscribe@freebsd.org"

References

   1. mailto:jorge@petry.net.br
   2. http://www.petry.net.br/
   3. mailto:root@superpolka.com.ua:/usr/src/sys/amd64/compile/NAS2
   4. mailto:freebsd-security@freebsd.org
   5. http://lists.freebsd.org/mailman/listinfo/freebsd-security
   6. mailto:freebsd-security-unsubscribe@freebsd.org

Reasonably Related Threads

Search for more possibly parallel threads

freebsd security - Jan 2012 - Hellp !!!

Hellp !!!

Hellp !!!

Hellp !!!

Hellp !!!

Reasonably Related Threads