Date: Wed, 1 Dec 1999 16:07:58 -0600 From: "David W. Chapman Jr." <dchapman@houabg.com> To: <current@freebsd.org> Subject: Nevermind: su and traceroute Message-ID: <015a01bf3c48$87387800$931576d8@inethouston.net> References: <014801bf3c46$97e4e140$931576d8@inethouston.net>
next in thread | previous in thread | raw e-mail | index | archive | help
This is a multi-part message in MIME format.
------=_NextPart_000_0157_01BF3C16.3C31B1A0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Nevermind, I had nosuid in fstab, totally forgot about it.
----- Original Message -----=20
From: David W. Chapman Jr.=20
To: current@freebsd.org=20
Sent: Wednesday, December 01, 1999 3:54 PM
Subject: su and traceroute
I just cvsuped to -current right after bind-8.2.2 was merged into the =
source tree. I noticed two problems. Su won't work and traceroute =
gives me the following
traceroute: icmp socket: Operation not permitted
here are its permissions
-r-sr-xr-x 1 root wheel 12076 Dec 1 14:15 /usr/sbin/traceroute
su just says Sorry and it has the same permissions, I ran gdb on it =
and here's a screen shot
253 if (pwd->pw_uid =3D=3D 0 && (gr =3D =
getgrgid((gid_t)0)) &&
(gdb) step
255 for (g =3D gr->gr_mem;; ++g) {
(gdb) step
256 if (!*g) {
(gdb) step
262 if (strcmp(username, =
*g) =3D=3D 0) {
(gdb) step
255 for (g =3D gr->gr_mem;; ++g) {
(gdb) step
256 if (!*g) {
(gdb) step
262 if (strcmp(username, =
*g) =3D=3D 0) {
(gdb) step
271 if (*pwd->pw_passwd) {
(gdb) step
278 p =3D skey_getpass("Password:", pwd, =
1);
(gdb) step
Password:
279 if (!(!strcmp(pwd->pw_passwd, =
skey_crypt(p, pwd->pw_passwd, pwd, 1))
(gdb) step
292 fprintf(stderr, =
"Sorry\n");
(gdb)
Anyone have any ideas? I am in the wheel group, but I shouldn't have =
to be for traceroute and I have this problem for all users, including =
new ones that I create.
------=_NextPart_000_0157_01BF3C16.3C31B1A0
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content=3D"text/html; charset=3Diso-8859-1" =
http-equiv=3DContent-Type>
<META content=3D"MSHTML 5.00.2919.6307" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>Nevermind, I had nosuid in fstab, =
totally forgot=20
about it.</FONT></DIV>
<BLOCKQUOTE=20
style=3D"BORDER-LEFT: #000000 2px solid; MARGIN-LEFT: 5px; MARGIN-RIGHT: =
0px; PADDING-LEFT: 5px; PADDING-RIGHT: 0px">
<DIV style=3D"FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV=20
style=3D"BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: =
black"><B>From:</B>=20
<A href=3D"mailto:dchapman@houabg.com" =
title=3Ddchapman@houabg.com>David W.=20
Chapman Jr.</A> </DIV>
<DIV style=3D"FONT: 10pt arial"><B>To:</B> <A =
href=3D"mailto:current@freebsd.org"=20
title=3Dcurrent@freebsd.org>current@freebsd.org</A> </DIV>
<DIV style=3D"FONT: 10pt arial"><B>Sent:</B> Wednesday, December 01, =
1999 3:54=20
PM</DIV>
<DIV style=3D"FONT: 10pt arial"><B>Subject:</B> su and =
traceroute</DIV>
<DIV><BR></DIV>
<P><FONT face=3DArial size=3D2>I just cvsuped to -current right after =
bind-8.2.2=20
was merged into the source tree. I noticed two problems. =
Su won't=20
work and traceroute gives me the following</FONT></P>
<P> </P>
<P><FONT face=3DArial size=3D2>traceroute: icmp socket: Operation not=20
permitted</FONT></P>
<P> </P>
<P><FONT face=3DArial size=3D2>here are its permissions</FONT></P>
<P> </P>
<P><FONT face=3DArial size=3D2>-r-sr-xr-x 1 root =
wheel 12076=20
Dec 1 14:15 /usr/sbin/traceroute</FONT></P>
<P> </P>
<P><FONT face=3DArial size=3D2>su just says Sorry and it has the same =
permissions,=20
I ran gdb on it and here's a screen shot</FONT></P>
<P> </P>
<P><FONT face=3DArial=20
=
size=3D2>253 &=
nbsp; &n=
bsp; =20
if (pwd->pw_uid =3D=3D 0 && (gr =3D getgrgid((gid_t)0))=20
&&<BR>(gdb)=20
=
step<BR>255 &n=
bsp; &nb=
sp; &nbs=
p; =20
for (g =3D gr->gr_mem;; ++g) {<BR>(gdb)=20
=
step<BR>256 &n=
bsp; &nb=
sp; &nbs=
p; =20
if (!*g) {<BR>(gdb)=20
=
step<BR>262 &n=
bsp; &nb=
sp; &nbs=
p; =20
if (strcmp(username, *g) =3D=3D 0) {<BR>(gdb)=20
=
step<BR>255 &n=
bsp; &nb=
sp; &nbs=
p; =20
for (g =3D gr->gr_mem;; ++g) {<BR>(gdb)=20
=
step<BR>256 &n=
bsp; &nb=
sp; &nbs=
p; =20
if (!*g) {<BR>(gdb)=20
=
step<BR>262 &n=
bsp; &nb=
sp; &nbs=
p; =20
if (strcmp(username, *g) =3D=3D 0) {<BR>(gdb)=20
=
step<BR>271 &n=
bsp; =20
if (*pwd->pw_passwd) {<BR>(gdb)=20
=
step<BR>278 &n=
bsp; &nb=
sp; =20
p =3D skey_getpass("Password:", pwd, 1);<BR>(gdb)=20
=
step<BR>Password:<BR>279 &=
nbsp; &n=
bsp; =20
if (!(!strcmp(pwd->pw_passwd, skey_crypt(p, pwd->pw_passwd, pwd, =
1))<BR>(gdb)=20
=
step<BR>292 &n=
bsp; &nb=
sp; &nbs=
p; =20
fprintf(stderr, "Sorry\n");<BR>(gdb)<BR></FONT></P>
<P> </P>
<P> </P>
<P><FONT face=3DArial size=3D2>Anyone have any ideas? I am in =
the wheel=20
group, but I shouldn't have to be for traceroute and I have this =
problem for=20
all users, including new ones that I=20
create.</FONT></P></BLOCKQUOTE></BODY></HTML>
------=_NextPart_000_0157_01BF3C16.3C31B1A0--
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?015a01bf3c48$87387800$931576d8>