Re: ssh and chroot

From: Matthias Kurzer (kurzer@c-bs.de)
Date: 09/19/02 

From: Matthias Kurzer <kurzer@c-bs.de>
Date: Thu, 19 Sep 2002 13:39:37 +0200

Nico Kadel-Garcia wrote:
> Cool. I tried very hard to *find* all the libraries dynamically. Can you run
> the tarball builder with "sh -x" and send me the output?

Here it comes:

+ PATH=/bin:/sbin:/usr/local/bin:/usr/bin:/usr/sbin
+ umask=022
+ TMPDIR=/var/tmp/chroot-cage
+ TARBALL=/var/tmp/chroot-cage.tgz
+ export BASEBINS
+ export SSHBINS
+ export BINS
+ unset LIBS
+ CHGRP=/bin/chgrp
+ CHMOD=/bin/chmod
+ CHOWN=/bin/chown
+ '[' 0 -gt 1 ']'
+ '[' 0 -eq 1 ']'
+ trap 'rm -rf /var/tmp/chroot-cage' 0 1 2 3 15
+ '[' 0 '!=' 0 ']'
+ unset TAR
+ TARS=/bin/tar /usr/bin/tar /usr/local/bin/tar /usr/local/bin/gtar
+ /bin/tar --version
+ TAR=/bin/tar
+ break
+ '[' -z /bin/tar ']'
+ SHELLS=/bin/sh
+ BASEBINS=/bin/sh
+ BASEBINS=/bin/sh /bin/ls
+ BASEBINS=/bin/sh /bin/ls /bin/mkdir
+ BASEBINS=/bin/sh /bin/ls /bin/mkdir /bin/pwd
+ BASEBINS=/bin/sh /bin/ls /bin/mkdir /bin/pwd /bin/rm
+ BASEBINS=/bin/sh /bin/ls /bin/mkdir /bin/pwd /bin/rm /bin/rmdir
++ uname -s
+ '[' Linux = SunOS ']'
+ SSHBINDIR=/usr/local
+ SSHBINS=/usr/local/bin/scp /usr/local/bin/ssh
++ ls -d /bin/sh /bin/ls /bin/mkdir /bin/pwd /bin/rm /bin/rmdir
/usr/local/bin/scp /usr/local/bin/ssh
++ sort -u
+ BINS=/bin/ls
/bin/mkdir
/bin/pwd
/bin/rm
/bin/rmdir
/bin/sh
/usr/local/bin/scp
/usr/local/bin/ssh
++ echo /bin/ls
++ cut -c1
+ '[' / '!=' / ']'
++ echo /bin/mkdir
++ cut -c1
+ '[' / '!=' / ']'
++ echo /bin/pwd
++ cut -c1
+ '[' / '!=' / ']'
++ echo /bin/rm
++ cut -c1
+ '[' / '!=' / ']'
++ echo /bin/rmdir
++ cut -c1
+ '[' / '!=' / ']'
++ echo /bin/sh
++ cut -c1
+ '[' / '!=' / ']'
++ echo /usr/local/bin/scp
++ cut -c1
+ '[' / '!=' / ']'
++ echo /usr/local/bin/ssh
++ cut -c1
+ '[' / '!=' / ']'
+ '[' -h /bin/ls ']'
+ '[' -h /bin/mkdir ']'
+ '[' -h /bin/pwd ']'
+ '[' -h /bin/rm ']'
+ '[' -h /bin/rmdir ']'
+ '[' -h /bin/sh ']'
++ ls -ld /bin/sh
++ awk '{print $NF}'
+ newlink=bash
++ echo bash
++ grep '^/'
+ '[' -z '' ']'
++ echo bash
++ grep '^./'
+ '[' -n '' ']'
++ dirname /bin/sh
+ srcdir=/bin
+ newlink=/bin/bash
++ ls /bin/ls /bin/mkdir /bin/pwd /bin/rm /bin/rmdir /bin/sh
/usr/local/bin/scp /usr/local/bin/ssh /bin/bash
++ sort -u
+ BINS=/bin/bash
/bin/ls
/bin/mkdir
/bin/pwd
/bin/rm
/bin/rmdir
/bin/sh
/usr/local/bin/scp
/usr/local/bin/ssh
+ '[' -h /usr/local/bin/scp ']'
+ '[' -h /usr/local/bin/ssh ']'
+ '[' '!' -r /bin/bash ']'
+ '[' '!' -x /bin/bash ']'
+ '[' '!' -r /bin/ls ']'
+ '[' '!' -x /bin/ls ']'
+ '[' '!' -r /bin/mkdir ']'
+ '[' '!' -x /bin/mkdir ']'
+ '[' '!' -r /bin/pwd ']'
+ '[' '!' -x /bin/pwd ']'
+ '[' '!' -r /bin/rm ']'
+ '[' '!' -x /bin/rm ']'
+ '[' '!' -r /bin/rmdir ']'
+ '[' '!' -x /bin/rmdir ']'
+ '[' '!' -r /bin/sh ']'
+ '[' '!' -x /bin/sh ']'
+ '[' '!' -r /usr/local/bin/scp ']'
+ '[' '!' -x /usr/local/bin/scp ']'
+ '[' '!' -r /usr/local/bin/ssh ']'
+ '[' '!' -x /usr/local/bin/ssh ']'
++ ldd -v /bin/bash
++ grep '=\>'
++ awk '{print $NF}'
+ newlibs=
+ '[' -n '' ']'
++ ldd -v /bin/ls
++ grep '=\>'
++ awk '{print $NF}'
+ newlibs=
+ '[' -n '' ']'
++ ldd -v /bin/mkdir
++ awk '{print $NF}'
++ grep '=\>'
+ newlibs=
+ '[' -n '' ']'
++ ldd -v /bin/pwd
++ awk '{print $NF}'
++ grep '=\>'
+ newlibs=
+ '[' -n '' ']'
++ ldd -v /bin/rm
++ awk '{print $NF}'
++ grep '=\>'
+ newlibs=
+ '[' -n '' ']'
++ awk '{print $NF}'
++ ldd -v /bin/rmdir
++ grep '=\>'
+ newlibs=
+ '[' -n '' ']'
++ ldd -v /bin/sh
++ grep '=\>'
++ awk '{print $NF}'
+ newlibs=
+ '[' -n '' ']'
++ ldd -v /usr/local/bin/scp
++ grep '=\>'
++ awk '{print $NF}'
+ newlibs=
+ '[' -n '' ']'
++ ldd -v /usr/local/bin/ssh
++ awk '{print $NF}'
++ grep '=\>'
+ newlibs=
+ '[' -n '' ']'
+ '[' -r /var/tmp/chroot-cage ']'
+ mkdir -p /var/tmp/chroot-cage
+ echo 'Installing libraries and binaries in /var/tmp/chroot-cage'
Installing libraries and binaries in /var/tmp/chroot-cage
+ /bin/tar cf - /bin/bash /bin/ls /bin/mkdir /bin/pwd /bin/rm /bin/rmdir
/bin/sh /usr/local/bin/scp /usr/local/bin/ssh
+ /bin/tar xpf - -C /var/tmp/chroot-cage
/bin/tar: Removing leading `/' from member names
+ echo 'Creating pub directory'
Creating pub directory
+ mkdir -p /var/tmp/chroot-cage/pub
+ echo 'Setting fascist permissions for chroot /var/tmp/chroot-cage'
Setting fascist permissions for chroot /var/tmp/chroot-cage
+ /bin/chown -R root /var/tmp/chroot-cage
+ /bin/chgrp -R root /var/tmp/chroot-cage
+ /bin/chmod -R a-w /var/tmp/chroot-cage
+ /bin/chmod 777 /var/tmp/chroot-cage/pub
+ /bin/chmod +t /var/tmp/chroot-cage/pub
+ /bin/tar cvpzf /var/tmp/chroot-cage.tgz -C /var/tmp/chroot-cage .
./
./bin/
./bin/bash
./bin/ls
./bin/mkdir
./bin/pwd
./bin/rm
./bin/rmdir
./bin/sh
./usr/
./usr/local/
./usr/local/bin/
./usr/local/bin/scp
./usr/local/bin/ssh
./pub/
+ rm -rf /var/tmp/chroot-cage 

-- 
Matthias Kurzer
IT Systemadministrator
c: Channel Business Service GmbH
Tel.: +49 40 76629-1966
Mail: kurzer@c-bs.de
Web: www.c-bs.de

Relevant Pages

  • Re: script doesnt work when run as cron job
    ... ++ echo ';' This is the priv file. ... ++ awk '' ... grep an1 /etc/mtab ...
    (comp.unix.shell)
  • Re: Ignoring trap command for a grep function
    ... > We have a trap statement for every non zero returning command/function. ... when the grep command does not match any lines in the input ... You could use awk instead of grep so you can control the exit status. ... $ echo $? ...
    (comp.unix.programmer)
  • Re: Ignoring trap command for a grep function
    ... > We have a trap statement for every non zero returning command/function. ... when the grep command does not match any lines in the input ... You could use awk instead of grep so you can control the exit status. ... $ echo $? ...
    (comp.unix.shell)
  • Re: Ignoring trap command for a grep function
    ... > We have a trap statement for every non zero returning command/function. ... when the grep command does not match any lines in the input ... You could use awk instead of grep so you can control the exit status. ... $ echo $? ...
    (comp.unix.sco.misc)
  • Re: Ignoring trap command for a grep function
    ... > We have a trap statement for every non zero returning command/function. ... when the grep command does not match any lines in the input ... You could use awk instead of grep so you can control the exit status. ... $ echo $? ...
    (comp.unix.solaris)