Mageia Bugzilla – Attachment 3976 Details for
Bug 7085
openafs new security issues CVE-2013-4134 and CVE-2013-4135
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
Log In
[x]
|
New Account
|
Forgot Password
log showing attempt to start OpenAFS server using systemctl fails
2013_05_14_openafs_server.txt (text/plain), 2.83 KB, created by
Paul Blackburn
on 2013-05-15 00:43:13 CEST
(
hide
)
Description:
log showing attempt to start OpenAFS server using systemctl fails
Filename:
MIME Type:
Creator:
Paul Blackburn
Created:
2013-05-15 00:43:13 CEST
Size:
2.83 KB
patch
obsolete
>[root@afsdb mpb]# systemctl start openafs-server.service >[root@afsdb mpb]# echo $? >0 >[root@afsdb mpb]# systemctl status openafs-server.service >openafs-server.service - OpenAFS Server Service > Loaded: loaded (/lib/systemd/system/openafs-server.service; enabled) > Active: inactive (dead) since Tue, 14 May 2013 19:34:47 +0100; 17s ago > Process: 4555 ExecStop=/usr/bin/bos shutdown localhost -wait -localauth (code=exited, status=0/SUCCESS) > Process: 4553 ExecStart=/usr/sbin/bosserver $BOSSERVER_ARGS (code=exited, status=0/SUCCESS) > CGroup: name=systemd:/system/openafs-server.service > ># check if bosserver started >[mpb@afsdb ~]$ ps -ef | grep bos >root 903 874 0 18:32 tty1 00:00:00 /etc/X11/X :0 -background none -verbose -auth /var/run/gdm/auth-for-gdm-MxoQDy/database -nolisten tcp vt1 >mpb 4680 4361 0 19:37 pts/11 00:00:00 grep --color bos > ># bosserver was not started with systemctl command > ># start bosserver manually > >[root@afsdb mpb]# /usr/sbin/bosserver >[root@afsdb mpb]# echo $? >0 > ># check processes >[mpb@afsdb ~]$ ps -ef | grep bos >root 903 874 0 18:32 tty1 00:00:00 /etc/X11/X :0 -background none -verbose -auth /var/run/gdm/auth-for-gdm-MxoQDy/database -nolisten tcp vt1 >root 4814 1 0 19:41 ? 00:00:00 /usr/sbin/bosserver >mpb 4861 4361 0 19:41 pts/11 00:00:00 grep --color bos > ># authenticate to kerberos5 >[mpb@afsdb ~]$ kinit >Password for admin@HOME: > ># attempt to link Krb5 auth to AFS using "aklog" - fails because afsd not running (not started client) >[mpb@afsdb ~]$ aklog >aklog: a pioctl failed while obtaining tokens for cell home > ># Use AFS admin command "bos status" to verify AFS server processes >[mpb@afsdb ~]$ bos status afsdb.home -long >bos: running unauthenticated >Instance buserver, (type is simple) currently running normally. > Process last started at Tue May 14 19:41:36 2013 (1 proc starts) > Command 1 is '/usr/lib/openafs/buserver' > >Instance ptserver, (type is simple) currently running normally. > Process last started at Tue May 14 19:41:36 2013 (1 proc starts) > Command 1 is '/usr/lib/openafs/ptserver' > >Instance vlserver, (type is simple) currently running normally. > Process last started at Tue May 14 19:41:36 2013 (1 proc starts) > Command 1 is '/usr/lib/openafs/vlserver' > >Instance fs, (type is fs) currently running normally. > Auxiliary status is: file server running. > Process last started at Tue May 14 19:41:36 2013 (3 proc starts) > Last exit at Tue May 14 19:41:36 2013 > Command 1 is '/usr/lib/openafs/fileserver' > Command 2 is '/usr/lib/openafs/volserver' > Command 3 is '/usr/lib/openafs/salvager' > >Instance upserver, (type is simple) currently running normally. > Process last started at Tue May 14 19:41:36 2013 (1 proc starts) > Command 1 is '/usr/lib/openafs/upserver -crypt /etc/openafs/server'
[root@afsdb mpb]# systemctl start openafs-server.service [root@afsdb mpb]# echo $? 0 [root@afsdb mpb]# systemctl status openafs-server.service openafs-server.service - OpenAFS Server Service Loaded: loaded (/lib/systemd/system/openafs-server.service; enabled) Active: inactive (dead) since Tue, 14 May 2013 19:34:47 +0100; 17s ago Process: 4555 ExecStop=/usr/bin/bos shutdown localhost -wait -localauth (code=exited, status=0/SUCCESS) Process: 4553 ExecStart=/usr/sbin/bosserver $BOSSERVER_ARGS (code=exited, status=0/SUCCESS) CGroup: name=systemd:/system/openafs-server.service # check if bosserver started [mpb@afsdb ~]$ ps -ef | grep bos root 903 874 0 18:32 tty1 00:00:00 /etc/X11/X :0 -background none -verbose -auth /var/run/gdm/auth-for-gdm-MxoQDy/database -nolisten tcp vt1 mpb 4680 4361 0 19:37 pts/11 00:00:00 grep --color bos # bosserver was not started with systemctl command # start bosserver manually [root@afsdb mpb]# /usr/sbin/bosserver [root@afsdb mpb]# echo $? 0 # check processes [mpb@afsdb ~]$ ps -ef | grep bos root 903 874 0 18:32 tty1 00:00:00 /etc/X11/X :0 -background none -verbose -auth /var/run/gdm/auth-for-gdm-MxoQDy/database -nolisten tcp vt1 root 4814 1 0 19:41 ? 00:00:00 /usr/sbin/bosserver mpb 4861 4361 0 19:41 pts/11 00:00:00 grep --color bos # authenticate to kerberos5 [mpb@afsdb ~]$ kinit Password for admin@HOME: # attempt to link Krb5 auth to AFS using "aklog" - fails because afsd not running (not started client) [mpb@afsdb ~]$ aklog aklog: a pioctl failed while obtaining tokens for cell home # Use AFS admin command "bos status" to verify AFS server processes [mpb@afsdb ~]$ bos status afsdb.home -long bos: running unauthenticated Instance buserver, (type is simple) currently running normally. Process last started at Tue May 14 19:41:36 2013 (1 proc starts) Command 1 is '/usr/lib/openafs/buserver' Instance ptserver, (type is simple) currently running normally. Process last started at Tue May 14 19:41:36 2013 (1 proc starts) Command 1 is '/usr/lib/openafs/ptserver' Instance vlserver, (type is simple) currently running normally. Process last started at Tue May 14 19:41:36 2013 (1 proc starts) Command 1 is '/usr/lib/openafs/vlserver' Instance fs, (type is fs) currently running normally. Auxiliary status is: file server running. Process last started at Tue May 14 19:41:36 2013 (3 proc starts) Last exit at Tue May 14 19:41:36 2013 Command 1 is '/usr/lib/openafs/fileserver' Command 2 is '/usr/lib/openafs/volserver' Command 3 is '/usr/lib/openafs/salvager' Instance upserver, (type is simple) currently running normally. Process last started at Tue May 14 19:41:36 2013 (1 proc starts) Command 1 is '/usr/lib/openafs/upserver -crypt /etc/openafs/server'
View Attachment As Raw
Actions:
View
Attachments on
bug 7085
: 3976