Date: Wed, 3 Jul 2019 10:20:54 -0500 From: Doug Hardie <bc979@lafn.org> To: Ed Maste <emaste@freebsd.org> Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-19:10.ufs Message-ID: <CC18847F-1EAA-4674-A65C-A9EA706A5ABF@lafn.org> In-Reply-To: <CAPyFy2CRrLZwbpHXAnbT-RWT35TDbtZjtqenLeAp6Vgxp--sXg@mail.gmail.com> References: <20190703004924.8A5411A7D5@freefall.freebsd.org> <D6176CD2-C613-42C0-BC9B-2695B8048C06@lafn.org> <CAPyFy2CRrLZwbpHXAnbT-RWT35TDbtZjtqenLeAp6Vgxp--sXg@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Jul 3, 2019, at 05:41, Ed Maste <emaste@freebsd.org> wrote: >=20 >> On Wed, 3 Jul 2019 at 06:05, Doug Hardie <bc979@lafn.org> wrote: >>=20 >>> Afterwards, reboot the system and run: >>>=20 >>> # fsck -t ufs -f -p -T ufs:-z >>>=20 >>> to clean up your existing filesystems. >>=20 >> After rebooting the system I get: >>=20 >> master# fsck -t ufs -f -p -T ufs:-z >> /dev/ada0p2: NO WRITE ACCESS >> /dev/ada0p2: UNEXPECTED INCONSISTENCY; RUN fsck MANUALLY. >>=20 >> Is this expected result or is there a problem here? >=20 > Thanks for reporting this - it looks like some more detail will need > to be added to the SA. The fsck needs to be run without the filesystem > being mounted read-write, most likely in single user mode. >=20 > I brought a test system down to single user mode, remounted / as > read-only, and ran the fsck command as follows: >=20 > # shutdown now > ... > Enter full pathname of shell or RETURN for /bin/sh: > # mount -u -o ro / > # fsck -t ufs -f -p -T ufs:-z > /dev/ufsid/5bf225f5889c157d: 28576 files, 304757 used, 27570235 free > (899 frags, 3446167 blocks, 0.0% fragmentation) > # exit That is going to be a bit tricky to do on a headless server that is remote. = None of mine have consoles. They are all accessed via SSH. Any ideas how t= his situation can be handled? =E2=80=94 Doug=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CC18847F-1EAA-4674-A65C-A9EA706A5ABF>