sslug-teknik team mailing list archive
-
sslug-teknik team
-
Mailing list archive
-
Message #75948
Re: su problemer mm.
> Prv at kre "strace -f su - fvp"
>
> Henrik
Se det hjalp på forståelsen..... af problemet :-)
men jeg tror lige at jeg gerne vil have lidt hjælp til at forstå outputtet
Meget langt tekst stykke:
1562 execve("/bin/su", ["su", "-", "fvp"], [/* 28 vars */]) = 0
1562 uname({sys="Linux", node="server.test.dk", ...}) = 0
1562 brk(0) = 0x804d588
1562 open("/etc/ld.so.preload", O_RDONLY) = -1 ENOENT (No such file or directory)
1562 open("/etc/ld.so.cache", O_RDONLY) = 3
1562 fstat64(3, {st_mode=S_IFREG|0644, st_size=50236, ...}) = 0
1562 old_mmap(NULL, 50236, PROT_READ, MAP_PRIVATE, 3, 0) = 0xb75de000
1562 close(3) = 0
1562 open("/lib/libpam.so.0", O_RDONLY) = 3
<klip>
1562 socket(PF_UNIX, SOCK_STREAM, 0) = 3
1562 connect(3, {sa_family=AF_UNIX, path="/var/run/.nscd_socket"}, 110) = -1 ENOENT (No such file or directory)
1562 close(3) = 0
1562 open("/etc/nsswitch.conf", O_RDONLY) = 3
<klip>
1562 close(4) = 0
1562 open("/lib/security/$ISA/pam_stack.so", O_RDONLY) = -1 ENOENT (No such file or directory)
1562 open("/lib/security/../../lib/security/pam_stack.so", O_RDONLY) = 4
1562 read(4, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0@\f\0\000"..., 512) = 512
1562 fstat64(4, {st_mode=S_IFREG|0755, st_size=11164, ...}) = 0
1562 old_mmap(NULL, 14144, PROT_READ|PROT_EXEC, MAP_PRIVATE, 4, 0) = 0xb7263000
1562 old_mmap(0xb7266000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 4, 0x2000) = 0xb7266000
1562 close(4) = 0
1562 open("/lib/security/$ISA/pam_xauth.so", O_RDONLY) = -1 ENOENT (No such file or directory)
1562 open("/lib/security/../../lib/security/pam_xauth.so", O_RDONLY) = 4
1562 read(4, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\260\21"..., 512) = 512
1562 fstat64(4, {st_mode=S_IFREG|0755, st_size=13860, ...}) = 0
1562 old_mmap(NULL, 12744, PROT_READ|PROT_EXEC, MAP_PRIVATE, 4, 0) = 0xb725f000
1562 old_mmap(0xb7262000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 4, 0x3000) = 0xb7262000
1562 close(4) = 0
1562 read(3, "", 4096) = 0
1562 close(3) = 0
1562 munmap(0xb7269000, 4096) = 0
1562 open("/etc/pam.d/other", O_RDONLY) = 3
1562 fstat64(3, {st_mode=S_IFREG|0644, st_size=230, ...}) = 0
1562 mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7269000
1562 read(3, "#%PAM-1.0\nauth required "..., 4096) = 230
1562 open("/lib/security/$ISA/pam_deny.so", O_RDONLY) = -1 ENOENT (No such file or directory)
1562 open("/lib/security/../../lib/security/pam_deny.so", O_RDONLY) = 4
1562 munmap(0xb7269000, 4096) = 0
1562 time(NULL) = 1093703088
1562 getuid32() = 0
1562 stat64("/etc/pam.d", {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0
1562 open("/etc/pam.d/system-auth", O_RDONLY) = 3
1562 fstat64(3, {st_mode=S_IFREG|0644, st_size=688, ...}) = 0
1562 mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7269000
1562 read(3, "#%PAM-1.0\n# This file is auto-ge"..., 4096) = 688
1562 open("/lib/security/$ISA/pam_env.so", O_RDONLY) = -1 ENOENT (No such file or directory)
1562 open("/lib/security/../../lib/security/pam_env.so", O_RDONLY) = 4
1562 read(4, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\240\f\0"..., 512) = 512
1562 fstat64(4, {st_mode=S_IFREG|0755, st_size=11624, ...}) = 0
1562 old_mmap(NULL, 14604, PROT_READ|PROT_EXEC, MAP_PRIVATE, 4, 0) = 0xb724d000
1562 old_mmap(0xb7250000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 4, 0x2000) = 0xb7250000
1562 close(4) = 0
1562 open("/lib/security/$ISA/pam_unix.so", O_RDONLY) = -1 ENOENT (No such file or directory)
1562 open("/lib/security/../../lib/security/pam_unix.so", O_RDONLY) = 4
1562 read(4, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\220#\0"..., 512) = 512
1562 fstat64(4, {st_mode=S_IFREG|0755, st_size=48544, ...}) = 0
1562 old_mmap(NULL, 97172, PROT_READ|PROT_EXEC, MAP_PRIVATE, 4, 0) = 0xb7235000
1562 old_mmap(0xb7240000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 4, 0xb000) = 0xb7240000
1562 old_mmap(0xb7241000, 48020, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0xb7241000
1562 close(4) = 0
1562 open("/etc/ld.so.cache", O_RDONLY) = 4
1562 fstat64(4, {st_mode=S_IFREG|0644, st_size=50236, ...}) = 0
1562 old_mmap(NULL, 50236, PROT_READ, MAP_PRIVATE, 4, 0) = 0xb7228000
1562 close(4) = 0
1562 open("/lib/libnsl.so.1", O_RDONLY) = 4
1562 read(4, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0000<\0\000"..., 512) = 512
1562 fstat64(4, {st_mode=S_IFREG|0755, st_size=91368, ...}) = 0
1562 old_mmap(NULL, 85184, PROT_READ|PROT_EXEC, MAP_PRIVATE, 4, 0) = 0xb7213000
1562 old_mmap(0xb7225000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 4, 0x11000) = 0xb7225000
1562 old_mmap(0xb7226000, 7360, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0xb7226000
1562 close(4) = 0
1562 munmap(0xb7228000, 50236) = 0
1562 open("/lib/security/$ISA/pam_deny.so", O_RDONLY) = -1 ENOENT (No such file or directory)
1562 open("/lib/security/$ISA/pam_cracklib.so", O_RDONLY) = -1 ENOENT (No such file or directory)
1562 open("/lib/security/../../lib/security/pam_cracklib.so", O_RDONLY) = 4
1562 read(4, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0`\r\0\000"..., 512) = 512
1562 fstat64(4, {st_mode=S_IFREG|0755, st_size=12932, ...}) = 0
1562 old_mmap(NULL, 32320, PROT_READ|PROT_EXEC, MAP_PRIVATE, 4, 0) = 0xb722d000
1562 old_mmap(0xb7230000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 4, 0x2000) = 0xb7230000
1562 old_mmap(0xb7231000, 15936, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0xb7231000
1562 close(4) = 0
1562 open("/etc/ld.so.cache", O_RDONLY) = 4
1562 fstat64(4, {st_mode=S_IFREG|0644, st_size=50236, ...}) = 0
1562 old_mmap(NULL, 50236, PROT_READ, MAP_PRIVATE, 4, 0) = 0xb7206000
1562 close(4) = 0
1562 open("/usr/lib/libcrack.so.2", O_RDONLY) = 4
1562 read(4, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\0\34\0"..., 512) = 512
1562 fstat64(4, {st_mode=S_IFREG|0755, st_size=27596, ...}) = 0
1562 old_mmap(NULL, 40128, PROT_READ|PROT_EXEC, MAP_PRIVATE, 4, 0) = 0xb71fc000
1562 old_mmap(0xb7202000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 4, 0x6000) = 0xb7202000
1562 old_mmap(0xb7203000, 11456, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0xb7203000
1562 close(4) = 0
1562 munmap(0xb7206000, 50236) = 0
1562 open("/lib/security/$ISA/pam_limits.so", O_RDONLY) = -1 ENOENT (No such file or directory)
1562 open("/lib/security/../../lib/security/pam_limits.so", O_RDONLY) = 4
1562 read(4, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0@\16\0\000"..., 512) = 512
1562 fstat64(4, {st_mode=S_IFREG|0755, st_size=12292, ...}) = 0
1562 old_mmap(NULL, 15272, PROT_READ|PROT_EXEC, MAP_PRIVATE, 4, 0) = 0xb720f000
1562 old_mmap(0xb7212000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 4, 0x2000) = 0xb7212000
1562 close(4) = 0
1562 read(3, "", 4096) = 0
1562 close(3) = 0
1562 munmap(0xb7269000, 4096) = 0
1562 open("/etc/pam.d/other", O_RDONLY) = 3
1562 fstat64(3, {st_mode=S_IFREG|0644, st_size=230, ...}) = 0
1562 mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7269000
1562 read(3, "#%PAM-1.0\nauth required "..., 4096) = 230
1562 read(3, "", 4096) = 0
1562 close(3) = 0
1562 munmap(0xb7269000, 4096) = 0
1562 getuid32() = 0
1562 open("/etc/passwd", O_RDONLY) = 3
1562 fcntl64(3, F_GETFD) = 0
1562 fcntl64(3, F_SETFD, FD_CLOEXEC) = 0
1562 fstat64(3, {st_mode=S_IFREG|0644, st_size=2112, ...}) = 0
1562 mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7269000
1562 read(3, "root:x:0:0:root:/root:/bin/bash\n"..., 4096) = 2112
1562 close(3) = 0
1562 munmap(0xb7269000, 4096) = 0
1562 open("/etc/shadow", O_RDONLY) = 3
1562 fcntl64(3, F_GETFD) = 0
1562 fcntl64(3, F_SETFD, FD_CLOEXEC) = 0
1562 fstat64(3, {st_mode=S_IFREG|0400, st_size=1628, ...}) = 0
1562 mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7269000
1562 read(3, "root:$1$kMeq4DfZ$.FSs1hzmQtG.OVL"..., 4096) = 1628
1562 close(3) = 0
1562 munmap(0xb7269000, 4096) = 0
1562 time(NULL) = 1093703088
1562 setfsuid32(0x1fe) = 0
1562 setfsgid32(0x20d) = 0
1562 open("/etc/passwd", O_RDONLY) = -1 EACCES (Permission denied)
1562 getuid32() = 0
1562 getuid32() = 0
1562 ioctl(0, TCGETS, {B38400 opost isig icanon echo ...}) = 0
1562 readlink("/proc/self/fd/0", 0x8055150, 4095) = -1 EACCES (Permission denied)
1562 fstat64(0, {st_mode=S_IFCHR|0620, st_rdev=makedev(136, 0), ...}) = 0
1562 stat64("/dev/pts", 0xbfffda0c) = -1 EACCES (Permission denied)
1562 open("/dev", O_RDONLY|O_NONBLOCK|O_LARGEFILE|O_DIRECTORY) = -1 EACCES (Permission denied)
1562 time([1093703088]) = 1093703088
1562 open("/etc/localtime", O_RDONLY) = -1 EACCES (Permission denied)
1562 getpid() = 1562
1562 rt_sigaction(SIGPIPE, {0xb75420e0, [], SA_RESTORER, 0xb7492be8}, {SIG_DFL}, 8) = 0
1562 socket(PF_UNIX, SOCK_DGRAM, 0) = 3
1562 fcntl64(3, F_SETFD, FD_CLOEXEC) = 0
1562 connect(3, {sa_family=AF_UNIX, path="/dev/log"}, 16) = -1 EACCES (Permission denied)
1562 close(3) = 0
1562 open("/dev/console", O_WRONLY|O_NOCTTY) = -1 EACCES (Permission denied)
1562 rt_sigaction(SIGPIPE, {SIG_DFL}, NULL, 8) = 0
1562 getuid32() = 0
1562 open("/etc/passwd", O_RDONLY) = -1 EACCES (Permission denied)
1562 time([1093703088]) = 1093703088
1562 getpid() = 1562
1562 rt_sigaction(SIGPIPE, {0xb75420e0, [], SA_RESTORER, 0xb7492be8}, {SIG_DFL}, 8) = 0
1562 socket(PF_UNIX, SOCK_DGRAM, 0) = 3
1562 fcntl64(3, F_SETFD, FD_CLOEXEC) = 0
1562 connect(3, {sa_family=AF_UNIX, path="/dev/log"}, 16) = -1 EACCES (Permission denied)
1562 close(3) = 0
1562 open("/dev/console", O_WRONLY|O_NOCTTY) = -1 EACCES (Permission denied)
1562 rt_sigaction(SIGPIPE, {SIG_DFL}, NULL, 8) = 0
1562 write(2, "could not open session\n", 23) = 23
1562 exit_group(1) = ?
/Frank
Follow ups
References
