10-14-2012, 06:22 PM | #121 | |
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
|
Quote:
When I boot into DIAGS the script /etc/upstart/diags would seem to be read? are you saying that is incorrect. "K5 uses upstart only when booted from main" Not discussing what happens in main, main works fine. What does this mean in this context? I am confused EDIT: To Be Clear: I am testing Diags. If you are simply saying "Look in the blahdeblahblkp02/etc/upstart/diags script" in a circuitous way, I already am. : ) Last edited by twobob; 10-14-2012 at 08:32 PM. Reason: : ) |
|
10-14-2012, 06:59 PM | #122 |
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
|
Spoiler:
In other news still not managed to get it to "up" in Diags. going to play with the links |
10-14-2012, 07:58 PM | #123 | |
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
|
Far as I can make out: This is what is run by the N U Z x command
EDIT: All that stuff should be there, far as I can tell. files are there. configs. iptables is definitely set to allow all traffic on usb0. sneaky folder killer removed. Can you think of anything else I might have missed or could do next? Quote:
Last edited by twobob; 10-14-2012 at 08:08 PM. |
|
10-14-2012, 08:21 PM | #124 | |
Going Viral
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
|
Quote:
ps aux - on the Kindle see if dropbear is running and what it has open. If worse comes to worse, strace the dripbear start-up, see what's failing. |
|
10-14-2012, 08:23 PM | #125 | ||
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
|
cant run anything on the kindle. have to add it to a startup somewhere, somehow.
will nmap - that's good thinking. but it should be open. I have a custom iptables rule that runs as a last .bashrc entry to make double sure. but i'll triple check. really is a tease. ps aux > /var/log/process maybe? in the end of the .bashrc, that get's hit (and pretty late ) I hope in the startup. I'll give it a try. EDIT: Well I'm trying it. wish me luck didn't work, got wiped or never got called. ho hum. also: Quote:
Ports closed. now why the heckedy would that be... Would be nice to do some prboom work at some point and why does icmp work okay... but Quote:
Last edited by twobob; 10-14-2012 at 08:53 PM. Reason: ps aux > /var/log/process |
||
10-14-2012, 09:30 PM | #126 | |
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
|
Out of ideas. attempted to add some logging. will try one more time with that to test a theory... but yeah. err. what?
lockdown baby : ) EDIT: Nope. tried a whole bunch of variations in an attempt to either start dropbear or test it was running or make a log.... All fail. Quote:
Last edited by twobob; 10-14-2012 at 10:42 PM. Reason: scans, plans and fails |
|
10-14-2012, 10:03 PM | #127 | |
Going Viral
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
|
Quote:
You know, the one I suggested should not be there. **That** line would make icmp "work" when nothing else does. Avoid the entire firewall dance for the moment . . . Set the default policy of all three main chains to "ACCEPT" with no other rules. Save that three statement config file wherever "diags" is picking up its iptable_save file. After sshd (or telnetd or ftpd or ...) is working, then deal with setting up the firewall. Last edited by knc1; 10-14-2012 at 10:20 PM. |
|
10-14-2012, 10:50 PM | #128 |
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
|
did that. tried unlocking them all. tried loading them with accepts. tried reloading the config completely via iptables-restore < /et/sysconfig/blah
Also tried a 0 Day exploit reworked to get the stuff running which inexplicably failed too, that was possibly syntax pebkak. I'm tired now, will try again. honestly, bad business. Last edited by twobob; 10-14-2012 at 10:51 PM. Reason: reworked |
10-15-2012, 07:29 AM | #129 | |
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
|
ps aux
Current state of play with DIAGS. Some progress. finally got it to spit out a ps aux to the /mnt/us.
no dropbear. hmm.. Quote:
I'll add a sleep 5 and see what happens. |
|
10-15-2012, 08:44 AM | #130 |
Going Viral
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
|
Is the file system you are putting the dropbear binary on mounted: "noexec" ?
Also note these: Code:
root 463 0.4 0.2 2296 668 ? Ss 11:23 0:00 /bin/sh /etc/init.d/rcS root 475 0.0 0.0 2296 252 ? S 11:23 0:00 /bin/sh /etc/init.d/rcS root 476 0.3 0.2 2296 696 ? S 11:23 0:00 /bin/sh /etc/rcS.d/S50diags start 1: Unusual 2: Probably indicates the kernel ran an "Early User Space" root before it got to where it is at now. 3: Indicates that 11 jobs ran to completion between pid 463 and pid 475 4: lookup code Ss, that is probably an rcS from the 'EUS' in the initramfs that did not get cleaned up, might be something else. In init_sshd(): Ref: http://linux.die.net/man/8/dropbear Add -E and also redirect 2>to_some_/mnt/us/filename Add -p 22 :: no address specified, will listen on all available interfaces Add -g Add -K 0 :: no time-out specified, disables keep-alives - - - - And if really desperate - add an strace -fF with output to /mnt/us/somefilename Last edited by knc1; 10-15-2012 at 09:07 AM. |
10-15-2012, 09:12 AM | #131 |
Going Viral
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
|
Note from another image (the network pre-start script): /var/run/ppp is where the pid of the 3G ppp0 process will be kept.
You could use a -P /var/run/sshd if you wanted to (save the pid of any sshd that starts). Not sure that it would gain you anything though. Check the 3G start-up scripts (and the ppp0 init stuff) for things that might screw with the "no-firewall" setting and/or any sshd running. Do not give up - Any *nix system to which a person has physical access can be broken. And like vocal, call that binary dripbear if that might help. |
10-15-2012, 09:51 AM | #132 | ||||
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
|
init_sshd() Round 12
okay so reading the code...
filesystem is not noexec Quote:
ASSUMPTION: Key is overwritten if the key already exists, this may be wrong. Quote:
Thus if that was triggered one might assume that my copy in usr/local/dropbear/key would be different to the one in /etc/dropbear/key [root@kindle mmc]# diff -s usr/local/etc/dropbear/dropbear_rsa_host_key etc/dropbear/dropbear_rsa_host_key Quote:
ASSUMPTION: was probably wrong. as opposed to anything else as rm -rf /usr/local/* operates as expected when in place... I'll give this config a go and see what falls out then go for a strace (don't want to hang DIAGS too bad. might get stuck) Quote:
|
||||
10-15-2012, 10:13 AM | #133 |
Going Viral
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
|
Those new logs should be fun to read, once you have them.
Maybe tar-gz them all up as an attachment? It should be, but don't tell lab126 that. They have made this obscure enough as it is. Code:
cp -arf /opt/var/local/. /var/local/. They are copying a "skeleton" of what /var/local should contain. We can take advantage of that now - - Make all changes that you want in the skeleton (/opt/var/local) and then let the brain-dead lab126 scripting copy it into the system for you the next time it finds /var/local unmountable. - - - - For the future - - We can do a lot of interesting things with that "blind copy" command. Last edited by knc1; 10-15-2012 at 10:16 AM. |
10-15-2012, 10:28 AM | #134 |
Going Viral
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
|
PS: I learned how to re-partition the eMMC
I am thinking maybe move a Gigabyte from /mnt/us over to /var/local so we have room for all the neat things we want in the system file space. |
10-15-2012, 10:31 AM | #135 | ||
( ͡° ͜ʖ ͡°){ʇlnɐɟ ƃǝs}Tır
Posts: 6,586
Karma: 6299991
Join Date: Jun 2012
Location: uti gratia usura (Yao ying da ying; Mo ying da yieng)
Device: PW-WIFI|K5-3G+WIFI| K4|K3-3G|DXG|K2| Rooted Nook Touch
|
Quote:
EDIT: Quote:
Right. Blumming Chmod hammer come to daddy (*goes to check perms*) |
||
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
H.264 clip running on standard E Ink panel | Alexander Turcic | News | 95 | 03-19-2011 01:19 PM |
Death of E-Ink display? | DD1509 | News | 181 | 01-06-2010 04:48 PM |
Anybody knows the cost of E-Ink Display | jeffreylamster | OpenInkpot | 7 | 04-24-2009 01:49 PM |
Motorola has the first example of Android running on a E-Ink display. | Kris777 | News | 1 | 02-17-2009 11:09 PM |
Paperlike display running for 12 years and still going strong | Alexander Turcic | News | 3 | 06-08-2006 10:25 PM |