Mageia Bugzilla – Attachment 7592 Details for
Bug 18060
quagga new security issue CVE-2016-2342
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
Log In
[x]
|
New Account
|
Forgot Password
Work log for quagga testing
report (text/plain), 9.94 KB, created by
Len Lawrence
on 2016-03-25 01:09:23 CET
(
hide
)
Description:
Work log for quagga testing
Filename:
MIME Type:
Creator:
Len Lawrence
Created:
2016-03-25 01:09:23 CET
Size:
9.94 KB
patch
obsolete
>Started a few services but left out ospf6d deliberately. >$ sudo watchquagga -d zebra bgpd ospfd ospf6d ripd >$ tail -40 /var/log/syslog >................... >Mar 24 22:30:46 vega watchquagga[1676]: watchquagga 0.99.22.4 watching [zebra bgpd ospfd ospf6d ripd], mode [monitor] >Mar 24 22:30:46 vega watchquagga[1676]: ospfd state -> up : connect succeeded >Mar 24 22:30:47 vega watchquagga[1676]: ospf6d state -> down : initial connection attempt failed >Mar 24 22:30:47 vega watchquagga[1676]: zebra state -> up : connect succeeded >Mar 24 22:30:47 vega watchquagga[1676]: ripd state -> up : connect succeeded >Mar 24 22:30:47 vega watchquagga[1676]: bgpd state -> up : connect succeeded > >$ sudo netstat -tapnl | grep ':260' > quagga.netlog >$ cat quagga.netlog >tcp 0 0 0.0.0.0:2601 0.0.0.0:* LISTEN 27658/zebra >tcp 0 0 0.0.0.0:2602 0.0.0.0:* LISTEN 27834/ripd >tcp 0 0 0.0.0.0:2603 0.0.0.0:* LISTEN 28077/ripngd >tcp 0 0 0.0.0.0:2604 0.0.0.0:* LISTEN 27742/ospfd >tcp 0 0 0.0.0.0:2605 0.0.0.0:* LISTEN 27718/bgpd >tcp 0 0 0.0.0.0:2608 0.0.0.0:* LISTEN 31983/isisd >tcp6 0 0 :::2601 :::* LISTEN 27658/zebra >tcp6 0 0 :::2602 :::* LISTEN 27834/ripd >tcp6 0 0 :::2603 :::* LISTEN 28077/ripngd >tcp6 0 0 :::2604 :::* LISTEN 27742/ospfd >tcp6 0 0 :::2605 :::* LISTEN 27718/bgpd >tcp6 0 0 :::2608 :::* LISTEN 31983/isisd > > >Telnet login to ospfd via ::1. Checked list of commands and tried out a few. >> show ip ospf route >indicated that the router function had not been enabled. >Stopped ospfd and edited /etc/quagga/ospfd.conf; removed comments from route and address. Restarted ospfd. > ># telnet localhost 2604 >..... >> show ip ospf route >============ OSPF network routing table ============ >N 192.168.1.0/24 [10] area: 0.0.0.0 > directly attached to enp3s0 > >============ OSPF router routing table ============= > >============ OSPF external routing table =========== > >> show ip ospf neighbor all > > Neighbor ID Pri State Dead Time Address Interface RXmtL RqstL DBsmL >> show ip ospf database > > OSPF Router with ID (192.168.1.3) > > Router Link States (Area 0.0.0.0) > >Link ID ADV Router Age Seq# CkSum Link count >192.168.1.3 192.168.1.3 907 0x80000003 0x0ff2 1 > >Started ospf6d. ># systemctl status ospf6d >â ospf6d.service - OSPF routing daemon for IPv6 > Loaded: loaded (/usr/lib/systemd/system/ospf6d.service; enabled) > Active: active (running) since Thu 2016-03-24 23:10:48 GMT; 10s ago > Docs: man:ospfd(8) > man:zebra(8) > Process: 5877 ExecStart=/usr/sbin/ospf6d -d (code=exited, status=0/SUCCESS) > Main PID: 5878 (ospf6d) > CGroup: /system.slice/ospf6d.service > ââ5878 /usr/sbin/ospf6d -d > ># tail -250 /var/log/syslog | grep ospf6 >Mar 24 23:10:49 vega watchquagga[32530]: ospf6d state -> up : connect succeeded >Mar 24 23:10:52 vega watchquagga[1676]: ospf6d state -> up : connect succeeded > >Edited babeld.conf but could not start the service. Expected? >ripngd and isisd were OK. >Logged in to the rest of the services one by one and used two or three commands. Finally tried: ># telnet ::1 2606 >Trying ::1... >Connected to vega (::1). >Escape character is '^]'. > >Hello, this is Quagga (version 0.99.22.4). >Copyright 1996-2005 Kunihiro Ishiguro, et al. > > >User Access Verification > >Password: >ospf6d@plant# show ? > history Display the session command history > ip IP information > ipv6 IPv6 information > logging Show current logging configuration > memory Memory statistics > route-map route-map information > running-config running configuration > startup-config Contentes of startup configuration > thread Thread information > version Displays zebra version > work-queues Work Queue information > zebra Zebra information >ospf6d@plant# show zebra >Zebra Infomation > enable: 1 fail: 0 > redistribute default: 7 > redistribute: static ospf6 > >sudo netstat -tapnl | grep ':260' > quagga.netlog >$ cat quagga.netlog >tcp 0 0 0.0.0.0:2601 0.0.0.0:* LISTEN 27658/zebra >tcp 0 0 0.0.0.0:2602 0.0.0.0:* LISTEN 27834/ripd >tcp 0 0 0.0.0.0:2603 0.0.0.0:* LISTEN 28077/ripngd >tcp 0 0 0.0.0.0:2604 0.0.0.0:* LISTEN 27742/ospfd >tcp 0 0 0.0.0.0:2605 0.0.0.0:* LISTEN 27718/bgpd >tcp 0 0 0.0.0.0:2608 0.0.0.0:* LISTEN 31983/isisd >tcp6 0 0 :::2601 :::* LISTEN 27658/zebra >tcp6 0 0 :::2602 :::* LISTEN 27834/ripd >tcp6 0 0 :::2603 :::* LISTEN 28077/ripngd >tcp6 0 0 :::2604 :::* LISTEN 27742/ospfd >tcp6 0 0 :::2605 :::* LISTEN 27718/bgpd >tcp6 0 0 :::2608 :::* LISTEN 31983/isisd > > >Telnet login to ospfd via ::1. Checked list of commands and tried out a few. >> show ip ospf route >indicated that the router function had not been enabled. >Stopped ospfd and edited /etc/quagga/ospfd.conf; removed comments from route and address. Restarted ospfd. > ># telnet localhost 2604 >..... >> show ip ospf route >============ OSPF network routing table ============ >N 192.168.1.0/24 [10] area: 0.0.0.0 > directly attached to enp3s0 > >============ OSPF router routing table ============= > >============ OSPF external routing table =========== > >> show ip ospf neighbor all > > Neighbor ID Pri State Dead Time Address Interface RXmtL RqstL DBsmL >> show ip ospf database > > OSPF Router with ID (192.168.1.3) > > Router Link States (Area 0.0.0.0) > >Link ID ADV Router Age Seq# CkSum Link count >192.168.1.3 192.168.1.3 907 0x80000003 0x0ff2 1 > >Started ospf6d. ># systemctl status ospf6d >â ospf6d.service - OSPF routing daemon for IPv6 > Loaded: loaded (/usr/lib/systemd/system/ospf6d.service; enabled) > Active: active (running) since Thu 2016-03-24 23:10:48 GMT; 10s ago > Docs: man:ospfd(8) > man:zebra(8) > Process: 5877 ExecStart=/usr/sbin/ospf6d -d (code=exited, status=0/SUCCESS) > Main PID: 5878 (ospf6d) > CGroup: /system.slice/ospf6d.service > ââ5878 /usr/sbin/ospf6d -d > ># tail -250 /var/log/syslog | grep ospf6 >Mar 24 23:10:49 vega watchquagga[32530]: ospf6d state -> up : connect succeeded >Mar 24 23:10:52 vega watchquagga[1676]: ospf6d state -> up : connect succeeded > >Edited babeld.conf but could not start the service. Expected? >ripngd and isisd were OK. >Logged in to the rest of the services one by one and used two or three commands. Finally tried: ># telnet ::1 2606 >Trying ::1... >Connected to vega (::1). >Escape character is '^]'. > >Hello, this is Quagga (version 0.99.22.4). >Copyright 1996-2005 Kunihiro Ishiguro, et al. > > >User Access Verification > >Password: >ospf6d@plant# show ? > history Display the session command history > ip IP information > ipv6 IPv6 information > logging Show current logging configuration > memory Memory statistics > route-map route-map information > running-config running configuration > startup-config Contentes of startup configuration > thread Thread information > version Displays zebra version > work-queues Work Queue information > zebra Zebra information >ospf6d@plant# show zebra >Zebra Infomation > enable: 1 fail: 0 > redistribute default: 7 > >$ sudo netstat -tapnl | grep ':26' >tcp 0 0 0.0.0.0:2601 0.0.0.0:* LISTEN 27658/zebra >tcp 0 0 0.0.0.0:2602 0.0.0.0:* LISTEN 27834/ripd >tcp 0 0 0.0.0.0:2603 0.0.0.0:* LISTEN 28077/ripngd >tcp 0 0 0.0.0.0:2604 0.0.0.0:* LISTEN 3678/ospfd >tcp 0 0 0.0.0.0:2605 0.0.0.0:* LISTEN 27718/bgpd >tcp 0 0 0.0.0.0:2606 0.0.0.0:* LISTEN 5878/ospf6d >tcp 0 0 0.0.0.0:2608 0.0.0.0:* LISTEN 8446/isisd >tcp6 0 0 :::2601 :::* LISTEN 27658/zebra >tcp6 0 0 :::2602 :::* LISTEN 27834/ripd >tcp6 0 0 :::2603 :::* LISTEN 28077/ripngd >tcp6 0 0 :::2604 :::* LISTEN 3678/ospfd >tcp6 0 0 :::2605 :::* LISTEN 27718/bgpd >tcp6 0 0 :::2606 :::* LISTEN 5878/ospf6d >tcp6 0 0 :::2608 :::* LISTEN 8446/isisd >tcp6 0 0 ::1:2606 ::1:43362 ESTABLISHED 5878/ospf6d >tcp6 0 0 ::1:43362 ::1:2606 ESTABLISHED 9083/telnet > > >
Started a few services but left out ospf6d deliberately. $ sudo watchquagga -d zebra bgpd ospfd ospf6d ripd $ tail -40 /var/log/syslog ................... Mar 24 22:30:46 vega watchquagga[1676]: watchquagga 0.99.22.4 watching [zebra bgpd ospfd ospf6d ripd], mode [monitor] Mar 24 22:30:46 vega watchquagga[1676]: ospfd state -> up : connect succeeded Mar 24 22:30:47 vega watchquagga[1676]: ospf6d state -> down : initial connection attempt failed Mar 24 22:30:47 vega watchquagga[1676]: zebra state -> up : connect succeeded Mar 24 22:30:47 vega watchquagga[1676]: ripd state -> up : connect succeeded Mar 24 22:30:47 vega watchquagga[1676]: bgpd state -> up : connect succeeded $ sudo netstat -tapnl | grep ':260' > quagga.netlog $ cat quagga.netlog tcp 0 0 0.0.0.0:2601 0.0.0.0:* LISTEN 27658/zebra tcp 0 0 0.0.0.0:2602 0.0.0.0:* LISTEN 27834/ripd tcp 0 0 0.0.0.0:2603 0.0.0.0:* LISTEN 28077/ripngd tcp 0 0 0.0.0.0:2604 0.0.0.0:* LISTEN 27742/ospfd tcp 0 0 0.0.0.0:2605 0.0.0.0:* LISTEN 27718/bgpd tcp 0 0 0.0.0.0:2608 0.0.0.0:* LISTEN 31983/isisd tcp6 0 0 :::2601 :::* LISTEN 27658/zebra tcp6 0 0 :::2602 :::* LISTEN 27834/ripd tcp6 0 0 :::2603 :::* LISTEN 28077/ripngd tcp6 0 0 :::2604 :::* LISTEN 27742/ospfd tcp6 0 0 :::2605 :::* LISTEN 27718/bgpd tcp6 0 0 :::2608 :::* LISTEN 31983/isisd Telnet login to ospfd via ::1. Checked list of commands and tried out a few. > show ip ospf route indicated that the router function had not been enabled. Stopped ospfd and edited /etc/quagga/ospfd.conf; removed comments from route and address. Restarted ospfd. # telnet localhost 2604 ..... > show ip ospf route ============ OSPF network routing table ============ N 192.168.1.0/24 [10] area: 0.0.0.0 directly attached to enp3s0 ============ OSPF router routing table ============= ============ OSPF external routing table =========== > show ip ospf neighbor all Neighbor ID Pri State Dead Time Address Interface RXmtL RqstL DBsmL > show ip ospf database OSPF Router with ID (192.168.1.3) Router Link States (Area 0.0.0.0) Link ID ADV Router Age Seq# CkSum Link count 192.168.1.3 192.168.1.3 907 0x80000003 0x0ff2 1 Started ospf6d. # systemctl status ospf6d â ospf6d.service - OSPF routing daemon for IPv6 Loaded: loaded (/usr/lib/systemd/system/ospf6d.service; enabled) Active: active (running) since Thu 2016-03-24 23:10:48 GMT; 10s ago Docs: man:ospfd(8) man:zebra(8) Process: 5877 ExecStart=/usr/sbin/ospf6d -d (code=exited, status=0/SUCCESS) Main PID: 5878 (ospf6d) CGroup: /system.slice/ospf6d.service ââ5878 /usr/sbin/ospf6d -d # tail -250 /var/log/syslog | grep ospf6 Mar 24 23:10:49 vega watchquagga[32530]: ospf6d state -> up : connect succeeded Mar 24 23:10:52 vega watchquagga[1676]: ospf6d state -> up : connect succeeded Edited babeld.conf but could not start the service. Expected? ripngd and isisd were OK. Logged in to the rest of the services one by one and used two or three commands. Finally tried: # telnet ::1 2606 Trying ::1... Connected to vega (::1). Escape character is '^]'. Hello, this is Quagga (version 0.99.22.4). Copyright 1996-2005 Kunihiro Ishiguro, et al. User Access Verification Password: ospf6d@plant# show ? history Display the session command history ip IP information ipv6 IPv6 information logging Show current logging configuration memory Memory statistics route-map route-map information running-config running configuration startup-config Contentes of startup configuration thread Thread information version Displays zebra version work-queues Work Queue information zebra Zebra information ospf6d@plant# show zebra Zebra Infomation enable: 1 fail: 0 redistribute default: 7 redistribute: static ospf6 sudo netstat -tapnl | grep ':260' > quagga.netlog $ cat quagga.netlog tcp 0 0 0.0.0.0:2601 0.0.0.0:* LISTEN 27658/zebra tcp 0 0 0.0.0.0:2602 0.0.0.0:* LISTEN 27834/ripd tcp 0 0 0.0.0.0:2603 0.0.0.0:* LISTEN 28077/ripngd tcp 0 0 0.0.0.0:2604 0.0.0.0:* LISTEN 27742/ospfd tcp 0 0 0.0.0.0:2605 0.0.0.0:* LISTEN 27718/bgpd tcp 0 0 0.0.0.0:2608 0.0.0.0:* LISTEN 31983/isisd tcp6 0 0 :::2601 :::* LISTEN 27658/zebra tcp6 0 0 :::2602 :::* LISTEN 27834/ripd tcp6 0 0 :::2603 :::* LISTEN 28077/ripngd tcp6 0 0 :::2604 :::* LISTEN 27742/ospfd tcp6 0 0 :::2605 :::* LISTEN 27718/bgpd tcp6 0 0 :::2608 :::* LISTEN 31983/isisd Telnet login to ospfd via ::1. Checked list of commands and tried out a few. > show ip ospf route indicated that the router function had not been enabled. Stopped ospfd and edited /etc/quagga/ospfd.conf; removed comments from route and address. Restarted ospfd. # telnet localhost 2604 ..... > show ip ospf route ============ OSPF network routing table ============ N 192.168.1.0/24 [10] area: 0.0.0.0 directly attached to enp3s0 ============ OSPF router routing table ============= ============ OSPF external routing table =========== > show ip ospf neighbor all Neighbor ID Pri State Dead Time Address Interface RXmtL RqstL DBsmL > show ip ospf database OSPF Router with ID (192.168.1.3) Router Link States (Area 0.0.0.0) Link ID ADV Router Age Seq# CkSum Link count 192.168.1.3 192.168.1.3 907 0x80000003 0x0ff2 1 Started ospf6d. # systemctl status ospf6d â ospf6d.service - OSPF routing daemon for IPv6 Loaded: loaded (/usr/lib/systemd/system/ospf6d.service; enabled) Active: active (running) since Thu 2016-03-24 23:10:48 GMT; 10s ago Docs: man:ospfd(8) man:zebra(8) Process: 5877 ExecStart=/usr/sbin/ospf6d -d (code=exited, status=0/SUCCESS) Main PID: 5878 (ospf6d) CGroup: /system.slice/ospf6d.service ââ5878 /usr/sbin/ospf6d -d # tail -250 /var/log/syslog | grep ospf6 Mar 24 23:10:49 vega watchquagga[32530]: ospf6d state -> up : connect succeeded Mar 24 23:10:52 vega watchquagga[1676]: ospf6d state -> up : connect succeeded Edited babeld.conf but could not start the service. Expected? ripngd and isisd were OK. Logged in to the rest of the services one by one and used two or three commands. Finally tried: # telnet ::1 2606 Trying ::1... Connected to vega (::1). Escape character is '^]'. Hello, this is Quagga (version 0.99.22.4). Copyright 1996-2005 Kunihiro Ishiguro, et al. User Access Verification Password: ospf6d@plant# show ? history Display the session command history ip IP information ipv6 IPv6 information logging Show current logging configuration memory Memory statistics route-map route-map information running-config running configuration startup-config Contentes of startup configuration thread Thread information version Displays zebra version work-queues Work Queue information zebra Zebra information ospf6d@plant# show zebra Zebra Infomation enable: 1 fail: 0 redistribute default: 7 $ sudo netstat -tapnl | grep ':26' tcp 0 0 0.0.0.0:2601 0.0.0.0:* LISTEN 27658/zebra tcp 0 0 0.0.0.0:2602 0.0.0.0:* LISTEN 27834/ripd tcp 0 0 0.0.0.0:2603 0.0.0.0:* LISTEN 28077/ripngd tcp 0 0 0.0.0.0:2604 0.0.0.0:* LISTEN 3678/ospfd tcp 0 0 0.0.0.0:2605 0.0.0.0:* LISTEN 27718/bgpd tcp 0 0 0.0.0.0:2606 0.0.0.0:* LISTEN 5878/ospf6d tcp 0 0 0.0.0.0:2608 0.0.0.0:* LISTEN 8446/isisd tcp6 0 0 :::2601 :::* LISTEN 27658/zebra tcp6 0 0 :::2602 :::* LISTEN 27834/ripd tcp6 0 0 :::2603 :::* LISTEN 28077/ripngd tcp6 0 0 :::2604 :::* LISTEN 3678/ospfd tcp6 0 0 :::2605 :::* LISTEN 27718/bgpd tcp6 0 0 :::2606 :::* LISTEN 5878/ospf6d tcp6 0 0 :::2608 :::* LISTEN 8446/isisd tcp6 0 0 ::1:2606 ::1:43362 ESTABLISHED 5878/ospf6d tcp6 0 0 ::1:43362 ::1:2606 ESTABLISHED 9083/telnet
View Attachment As Raw
Actions:
View
Attachments on
bug 18060
: 7592