Register Guidelines E-Books Search Today's Posts Mark Forums Read

Go Back   MobileRead Forums > E-Book Readers > Amazon Kindle > Kindle Developer's Corner

Notices

Reply
 
Thread Tools Search this Thread
Old 10-14-2012, 06:22 PM   #121
twobob
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.
 
twobob's Avatar
 
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
Quote:
Originally Posted by geekmaster View Post
K5 uses upstart only when booted from main, not diags. This could change with future firmware versions.

Diags actually runs a monolithic startup script that has a bunch of code copied from a bunch of upstart scripts. It is interesting to read the comments in that script.
I don't get you.

When I boot into DIAGS the script /etc/upstart/diags would seem to be read?
are you saying that is incorrect.

"K5 uses upstart only when booted from main"
Not discussing what happens in main, main works fine. What does this mean in this context? I am confused


EDIT: To Be Clear: I am testing Diags.
If you are simply saying "Look in the blahdeblahblkp02/etc/upstart/diags script" in a circuitous way, I already am. : )

Last edited by twobob; 10-14-2012 at 08:32 PM. Reason: : )
twobob is offline   Reply With Quote
Old 10-14-2012, 06:59 PM   #122
twobob
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.
 
twobob's Avatar
 
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
Spoiler:
Quote:
[root@kindle root]# iptables -I OUTPUT -m iprange --dst-range 72.21.192.1-72.21.223.254 -j DROP

[root@kindle root]# iptables -D OUTPUT -m iprange --dst-range 72.21.192.1-72.21.223.254 -j DROP

Wifi auth perhaps that one.


In other news still not managed to get it to "up" in Diags. going to play with the links
twobob is offline   Reply With Quote
Advert
Old 10-14-2012, 07:58 PM   #123
twobob
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.
 
twobob's Avatar
 
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
Far as I can make out: This is what is run by the N U Z x command

EDIT: All that stuff should be there, far as I can tell. files are there. configs. iptables is definitely set to allow all traffic on usb0.

sneaky folder killer removed. Can you think of anything else I might have missed or could do next?

Quote:
me@dev ~/Desktop $ ssh ktdb 22
ssh: connect to host ktdb port 22: Connection refused
Attached Thumbnails
Click image for larger version

Name:	Selection_150.png
Views:	229
Size:	7.2 KB
ID:	94110  

Last edited by twobob; 10-14-2012 at 08:08 PM.
twobob is offline   Reply With Quote
Old 10-14-2012, 08:21 PM   #124
knc1
Going Viral
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
Quote:
Originally Posted by twobob View Post
Far as I can make out: This is what is run by the N U Z x command

EDIT: All that stuff should be there, far as I can tell. files are there. configs. iptables is definitely set to allow all traffic on usb0.

sneaky folder killer removed. Can you think of anything else I might have missed or could do next?
nmap - on the PC, see if it can find port 22 open.
ps aux - on the Kindle see if dropbear is running and what it has open.
If worse comes to worse, strace the dripbear start-up, see what's failing.
knc1 is offline   Reply With Quote
Old 10-14-2012, 08:23 PM   #125
twobob
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.
 
twobob's Avatar
 
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
cant run anything on the kindle. have to add it to a startup somewhere, somehow.

will nmap - that's good thinking. but it should be open. I have a custom iptables rule that runs as a last .bashrc entry to make double sure. but i'll triple check. really is a tease.

ps aux > /var/log/process

maybe? in the end of the .bashrc, that get's hit (and pretty late ) I hope in the startup.

I'll give it a try.

EDIT: Well I'm trying it. wish me luck

didn't work, got wiped or never got called. ho hum.

also:
Quote:
me@dev ~/Desktop $ nmap -A -p22 ktdb

Nmap scan report for ktdb (192.168.15.244)
Host is up (0.0016s latency).
PORT STATE SERVICE VERSION
22/tcp closed ssh

Nmap done: 1 IP address (1 host up) scanned in 0.14 seconds
DOH!

Ports closed. now why the heckedy would that be... Would be nice to do some prboom work at some point

and why does icmp work okay... but

Quote:
Nmap scan report for ktdb (192.168.15.244)
Host is up (0.045s latency).
All 1000 scanned ports on ktdb (192.168.15.244) are closed
harrumph

Last edited by twobob; 10-14-2012 at 08:53 PM. Reason: ps aux > /var/log/process
twobob is offline   Reply With Quote
Advert
Old 10-14-2012, 09:30 PM   #126
twobob
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.
 
twobob's Avatar
 
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
Out of ideas. attempted to add some logging. will try one more time with that to test a theory... but yeah. err. what?

lockdown baby : )

EDIT: Nope. tried a whole bunch of variations in an attempt to either start dropbear or test it was running or make a log....
All fail.

Quote:
Nmap scan report for ktdb (192.168.15.244)
Host is up (0.014s latency).
All 1000 scanned ports on ktdb (192.168.15.244) are closed
tomorrow...

Last edited by twobob; 10-14-2012 at 10:42 PM. Reason: scans, plans and fails
twobob is offline   Reply With Quote
Old 10-14-2012, 10:03 PM   #127
knc1
Going Viral
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
Quote:
Originally Posted by twobob View Post
Out of ideas. attempted to add some logging. will try one more time with that to test a theory... but yeah. err. what?

lockdown baby : )
Is this machine using that iptables with the special line for icmp?
You know, the one I suggested should not be there.

**That** line would make icmp "work" when nothing else does.

Avoid the entire firewall dance for the moment . . .
Set the default policy of all three main chains to "ACCEPT" with no other rules.
Save that three statement config file wherever "diags" is picking up its iptable_save file.

After sshd (or telnetd or ftpd or ...) is working, then deal with setting up the firewall.

Last edited by knc1; 10-14-2012 at 10:20 PM.
knc1 is offline   Reply With Quote
Old 10-14-2012, 10:50 PM   #128
twobob
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.
 
twobob's Avatar
 
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
did that. tried unlocking them all. tried loading them with accepts. tried reloading the config completely via iptables-restore < /et/sysconfig/blah

Also tried a 0 Day exploit reworked to get the stuff running which inexplicably failed too, that was possibly syntax pebkak. I'm tired now, will try again. honestly, bad business.

Last edited by twobob; 10-14-2012 at 10:51 PM. Reason: reworked
twobob is offline   Reply With Quote
Old 10-15-2012, 07:29 AM   #129
twobob
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.
 
twobob's Avatar
 
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
ps aux

Current state of play with DIAGS. Some progress. finally got it to spit out a ps aux to the /mnt/us.

no dropbear. hmm..

Quote:
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 3.1 0.2 2292 528 ? Ss 11:23 0:00 init
root 2 0.0 0.0 0 0 ? S< 11:23 0:00 [kthreadd]
root 3 0.0 0.0 0 0 ? S< 11:23 0:00 [sirq-high/0]
root 4 0.0 0.0 0 0 ? S< 11:23 0:00 [sirq-timer/0]
root 5 0.0 0.0 0 0 ? S< 11:23 0:00 [sirq-net-tx/0]
root 6 0.0 0.0 0 0 ? S< 11:23 0:00 [sirq-net-rx/0]
root 7 0.0 0.0 0 0 ? S< 11:23 0:00 [sirq-block/0]
root 8 0.0 0.0 0 0 ? S< 11:23 0:00 [sirq-tasklet/0]
root 9 0.0 0.0 0 0 ? S< 11:23 0:00 [sirq-sched/0]
root 10 0.0 0.0 0 0 ? S< 11:23 0:00 [sirq-hrtimer/0]
root 11 0.0 0.0 0 0 ? S< 11:23 0:00 [sirq-rcu/0]
root 12 0.0 0.0 0 0 ? S< 11:23 0:00 [posixcputmr/0]
root 13 0.0 0.0 0 0 ? S< 11:23 0:00 [watchdog/0]
root 14 0.0 0.0 0 0 ? S< 11:23 0:00 [desched/0]
root 15 0.4 0.0 0 0 ? S< 11:23 0:00 [events/0]
root 16 0.0 0.0 0 0 ? S< 11:23 0:00 [khelper]
root 19 0.0 0.0 0 0 ? S< 11:23 0:00 [async/mgr]
root 125 0.0 0.0 0 0 ? S< 11:23 0:00 [kblockd/0]
root 129 0.0 0.0 0 0 ? S< 11:23 0:00 [mxc_spi.0]
root 132 0.0 0.0 0 0 ? S< 11:23 0:00 [mxc_spi.1]
root 135 0.0 0.0 0 0 ? S< 11:23 0:00 [mxc_spi.2]
root 155 1.3 0.0 0 0 ? S< 11:23 0:00 [kmmcd]
root 179 0.0 0.0 0 0 ? S< 11:23 0:00 [pmic-event-thre]
root 257 0.0 0.0 0 0 ? S 11:23 0:00 [khungtaskd]
root 258 0.0 0.0 0 0 ? S 11:23 0:00 [pdflush]
root 259 0.0 0.0 0 0 ? S 11:23 0:00 [pdflush]
root 260 0.0 0.0 0 0 ? S< 11:23 0:00 [kswapd0]
root 261 0.0 0.0 0 0 ? S< 11:23 0:00 [aio/0]
root 262 0.0 0.0 0 0 ? S< 11:23 0:00 [unionfs_siod/0]
root 263 0.0 0.0 0 0 ? S< 11:23 0:00 [nfsiod]
root 264 0.0 0.0 0 0 ? S< 11:23 0:00 [crypto/0]
root 395 0.0 0.0 0 0 ? S< 11:23 0:00 [kondemand/0]
root 396 0.0 0.0 0 0 ? S< 11:23 0:00 [kconservative/0]
root 402 0.0 0.0 0 0 ? S< 11:23 0:00 [esdhc_wq/0]
root 404 0.4 0.0 0 0 ? S< 11:23 0:00 [esdhc_wq/0]
root 447 0.0 0.0 0 0 ? S< 11:23 0:00 [rpciod/0]
root 455 2.0 0.0 0 0 ? S< 11:23 0:00 [mmcqd]
root 457 0.0 0.0 0 0 ? S< 11:23 0:00 [EPDC Submit/0]
root 458 0.0 0.0 0 0 ? S< 11:23 0:00 [EPDC Interrupt/]
root 462 0.0 0.0 0 0 ? S< 11:23 0:00 [kjournald]
root 463 0.4 0.2 2296 668 ? Ss 11:23 0:00 /bin/sh /etc/init.d/rcS
root 475 0.0 0.0 2296 252 ? S 11:23 0:00 /bin/sh /etc/init.d/rcS
root 476 0.3 0.2 2296 696 ? S 11:23 0:00 /bin/sh /etc/rcS.d/S50diags start
root 540 0.7 0.1 1436 492 ? S<s 11:23 0:00 udevd --daemon
root 555 0.1 0.1 1432 472 ? S< 11:23 0:00 udevd --daemon
root 558 0.0 0.1 1432 408 ? S< 11:23 0:00 udevd --daemon
root 569 0.2 0.0 0 0 ? S< 11:23 0:00 [file-storage-ga]
root 586 0.6 0.0 0 0 ? S< 11:23 0:00 [zforce_wq]
root 599 0.6 0.2 1796 676 ? Ss 11:23 0:00 syslog-ng
root 605 0.0 0.0 0 0 ? S< 11:23 0:00 [kjournald]
root 638 3.8 0.0 0 0 ? S< 11:23 0:00 [loop0]
root 645 53.1 0.7 129596 2008 ? Ssl 11:23 0:04 fsp /mnt/base-us /mnt/us -o rw,nosuid,nodev,noatime,max_write=65536,max_readah ead=65536
root 715 0.0 0.2 1888 764 ? R 11:23 0:00 ps aux
perhaps I'm not invoking it correctly, but I don't see how.

I'll add a sleep 5 and see what happens.
Attached Thumbnails
Click image for larger version

Name:	Selection_151.png
Views:	224
Size:	3.7 KB
ID:	94147   Click image for larger version

Name:	Selection_152.png
Views:	233
Size:	5.2 KB
ID:	94148   Click image for larger version

Name:	Selection_153.png
Views:	248
Size:	4.0 KB
ID:	94149   Click image for larger version

Name:	Selection_154.png
Views:	258
Size:	3.4 KB
ID:	94150   Click image for larger version

Name:	Selection_155.png
Views:	219
Size:	5.8 KB
ID:	94151  
twobob is offline   Reply With Quote
Old 10-15-2012, 08:44 AM   #130
knc1
Going Viral
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
Is the file system you are putting the dropbear binary on mounted: "noexec" ?

Also note these:
Code:
root       463  0.4  0.2   2296   668 ?        Ss   11:23   0:00 /bin/sh /etc/init.d/rcS
root       475  0.0  0.0   2296   252 ?        S    11:23   0:00 /bin/sh /etc/init.d/rcS
root       476  0.3  0.2   2296   696 ?        S    11:23   0:00 /bin/sh /etc/rcS.d/S50diags start
Which is:
1: Unusual
2: Probably indicates the kernel ran an "Early User Space" root before it got to where it is at now.
3: Indicates that 11 jobs ran to completion between pid 463 and pid 475
4: lookup code Ss, that is probably an rcS from the 'EUS' in the initramfs that did not get cleaned up, might be something else.

In init_sshd():

Ref:
http://linux.die.net/man/8/dropbear

Add -E and also redirect 2>to_some_/mnt/us/filename

Add -p 22 :: no address specified, will listen on all available interfaces

Add -g

Add -K 0 :: no time-out specified, disables keep-alives

- - - -

And if really desperate - add an strace -fF with output to /mnt/us/somefilename

Last edited by knc1; 10-15-2012 at 09:07 AM.
knc1 is offline   Reply With Quote
Old 10-15-2012, 09:12 AM   #131
knc1
Going Viral
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
Note from another image (the network pre-start script): /var/run/ppp is where the pid of the 3G ppp0 process will be kept.
You could use a -P /var/run/sshd if you wanted to (save the pid of any sshd that starts). Not sure that it would gain you anything though.

Check the 3G start-up scripts (and the ppp0 init stuff) for things that might screw with the "no-firewall" setting and/or any sshd running.

Do not give up -
Any *nix system to which a person has physical access can be broken.

And like vocal, call that binary dripbear if that might help.
knc1 is offline   Reply With Quote
Old 10-15-2012, 09:51 AM   #132
twobob
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.
 
twobob's Avatar
 
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
init_sshd() Round 12

okay so reading the code...

filesystem is not noexec

Quote:
# First take care of var/local
if ! mount -t ext3 -o rw $local /var/local; then
f_log I filesystems createvarlocal "Creating /var/local filesystem"
mkfs.ext3 -F -L LocalVars $local
tune2fs -c 0 -i 0 $local # disable fsck
rm -rf /var/local/*
mount -t ext3 -o rw $local /var/local
cp -arf /opt/var/local/. /var/local/.
fi
mkdir -p /var/local/system
Also the section of code that appears to do "something" with dropbear (not sure what is supposed to invoke it- possibly it's a startup call?) by my reading of it should attempt to at the very least create a new key in /etc/dropbear/blah , even after I nerfed the /usr/local/* cleanup.

ASSUMPTION: Key is overwritten if the key already exists, this may be wrong.

Quote:
&& %s -t rsa -f %s
has to be dropbearkey -t rsa -f /etc/dropbear/dropbear_rsa_host_key

Thus if that was triggered one might assume that my copy in usr/local/dropbear/key would be different to the one in /etc/dropbear/key

[root@kindle mmc]# diff -s usr/local/etc/dropbear/dropbear_rsa_host_key etc/dropbear/dropbear_rsa_host_key
Quote:
Files usr/local/etc/dropbear/dropbear_rsa_host_key and etc/dropbear/dropbear_rsa_host_key are identical
They are the same however. And thus the key I expect. So it's not a wonky key.
ASSUMPTION: was probably wrong. as opposed to anything else as rm -rf /usr/local/* operates as expected when in place...

I'll give this config a go and see what falls out then go for a strace (don't want to hang DIAGS too bad. might get stuck)

Quote:
init_sshd()
{
# respawn

# expect fork
/usr/local/sbin/dropbear -a -p 22 -g -K 0 -r /usr/local/etc/dropbear/dropbear_rsa_host_key -E 2> /mnt/us/droplog

sleep 5

ps aux > /mnt/us/processes

/usr/local/sbin/dropbear -P /var/run/sshd -p 22 -r /etc/dropbear/dropbear_rsa_host_key -E 2> /mnt/us/droplog2

sleep 5

ps aux > /mnt/us/processes2

}
twobob is offline   Reply With Quote
Old 10-15-2012, 10:13 AM   #133
knc1
Going Viral
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
Those new logs should be fun to read, once you have them.
Maybe tar-gz them all up as an attachment?

Quote:
Originally Posted by twobob View Post
okay so reading the code...

filesystem is not noexec
It should be, but don't tell lab126 that.
They have made this obscure enough as it is.

Code:
cp -arf /opt/var/local/. /var/local/.
And there we have another 'hook' into their scripting - - -
They are copying a "skeleton" of what /var/local should contain.

We can take advantage of that now - -
Make all changes that you want in the skeleton (/opt/var/local) and then let the brain-dead lab126 scripting copy it into the system for you the next time it finds /var/local unmountable.

- - - -

For the future - -
We can do a lot of interesting things with that "blind copy" command.

Last edited by knc1; 10-15-2012 at 10:16 AM.
knc1 is offline   Reply With Quote
Old 10-15-2012, 10:28 AM   #134
knc1
Going Viral
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
PS: I learned how to re-partition the eMMC
I am thinking maybe move a Gigabyte from /mnt/us over to /var/local so we have room for all the neat things we want in the system file space.
knc1 is offline   Reply With Quote
Old 10-15-2012, 10:31 AM   #135
twobob
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.twobob ought to be getting tired of karma fortunes by now.
 
twobob's Avatar
 
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
Quote:
Originally Posted by knc1 View Post
Those new logs should be fun to read, once you have them.
Maybe tar-gz them all up as an attachment?


It should be, but don't tell lab126 that.
They have made this obscure enough as it is.

Code:
cp -arf /opt/var/local/. /var/local/.
And there we have another 'hook' into their scripting - - -
They are copying a "skeleton" of what /var/local should contain.

We can take advantage of that now - -
Make all changes that you want in the skeleton (/opt/var/local) and then let the brain-dead lab126 scripting copy it into the system for you the next time it finds /var/local unmountable.

- - - -

For the future - -
We can do a lot of interesting things with that "blind copy" command.
Good thinking. I will continue on this track.

EDIT:

Quote:
/etc/rcS.d/S50diags: line 13: /usr/local/sbin/dropbear: Permission denied
Gotya...

Right. Blumming Chmod hammer come to daddy (*goes to check perms*)
twobob is offline   Reply With Quote
Reply

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
H.264 clip running on standard E Ink panel Alexander Turcic News 95 03-19-2011 01:19 PM
Death of E-Ink display? DD1509 News 181 01-06-2010 04:48 PM
Anybody knows the cost of E-Ink Display jeffreylamster OpenInkpot 7 04-24-2009 01:49 PM
Motorola has the first example of Android running on a E-Ink display. Kris777 News 1 02-17-2009 11:09 PM
Paperlike display running for 12 years and still going strong Alexander Turcic News 3 06-08-2006 10:25 PM


All times are GMT -4. The time now is 07:51 AM.


MobileRead.com is a privately owned, operated and funded community.