OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Brice Gensburger (bgensburgerkaptech.com)
Date: Mon Apr 02 2001 - 10:31:33 CDT

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    At 19:08 02/04/01 +0400, you wrote:
    (...)

    >i.e. i can successfully ping eth interface or establish tcp connection,
    >but nothing else.
    >System does not respond even from console!
    >And nothing in logs. They just stop.
    >So, i can only use `reset' button :(

    hey, funny, i just had the same today.
    the machine just hanged.
    but the forwarding between interfaces was still working when i had to
    reboot the box..

    i couldn't SSH into it, so tried the port from another box

    nmap -p 22 10.60.100.3

    Starting nmap V. 2.53 by fyodorinsecure.org ( www.insecure.org/nmap/ )
    Interesting ports on Lithium.psi1.kaptech.net (10.60.100.3):
    Port State Service
    22/tcp filtered ssh

    Nmap run completed -- 1 IP address (1 host up) scanned in 3 seconds

    (ssh does accept connections from everywhere, so this was strange..)
    but NAT and ip forwarding was still working (it's my gateway..)
    i had to reboot it, and the logs show
    well
    nothing.
    there's a 10h hole in it..

    (from /var/log/messages.0.gz: )

    Apr 2 04:29:25 lithium /bsd: arplookup: unable to enter address for 10.1.0.69
    Apr 2 04:33:25 lithium last message repeated 3 times
    Apr 2 14:54:53 lithium syslogd: restart
    Apr 2 14:54:53 lithium /bsd: OpenBSD 2.8-stable (KAPTECH-OBSD-FW) #1: Fri
    Mar 30 13:55:03 CEST 2001
    Apr 2 14:54:53 lithium
    /bsd: rootlithium:/usr/src/sys/arch/i386/compile/KAPTECH-OBSD-FW
    Apr 2 14:54:53 lithium /bsd: cpu0: Intel Pentium III (Coppermine)
    ("GenuineIntel" 686-class) 698 MHz
    Apr 2 14:54:53 lithium /bsd: cpu0:
    FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SYS,MTRR,PGE,MCA,CMOV,PAT,PSE36,SER,MMX,FXSR,SIMD
    Apr 2 14:54:53 lithium /bsd: real mem = 535146496 (522604K)
    Apr 2 14:54:53 lithium /bsd: avail mem = 493293568 (481732K)
    Apr 2 14:54:53 lithium /bsd: using 5689 buffers containing 26861568 bytes
    (26232K) of memory
    Apr 2 14:54:53 lithium /bsd: mainbus0 (root)
    Apr 2 14:54:53 lithium /bsd: bios0 at mainbus0: AT/286+(00) BIOS, date
    02/10/00, BIOS32 rev. 0 0xfda74
    Apr 2 14:54:53 lithium /bsd: apm0 at bios0: Power Management spec V1.2
    (BIOS mgmt disabled)
    Apr 2 14:54:53 lithium /bsd: apm0: AC on, battery charge unknown
    Apr 2 14:54:53 lithium /bsd: pcibios0 at bios0: rev. 2.1 found at
    0xf0000[0x10000]
    Apr 2 14:54:53 lithium /bsd: pcibios0: PCI IRQ Routing Table rev. 1.0
    found at 0xf31d0, size 192 bytes (10 entries)
    Apr 2 14:54:53 lithium /bsd: pcibios0: PCI Interrupt Router at 000:31:0
    ("Intel 82371FB (Triton) PCI-ISA" rev 0x00)
    Apr 2 14:54:53 lithium /bsd: pcibios0: PCI bus #1 is the last bus
    Apr 2 14:54:53 lithium /bsd: pci0 at mainbus0 bus 0: configuration mode 1
    (no bios)
    Apr 2 14:54:53 lithium /bsd: pchb0 at pci0 dev 0 function 0 "Intel 82810E"
    rev 0x03: rng active, 8Kb/sec
    Apr 2 14:54:53 lithium /bsd: "Intel 82810E Graphics" rev 0x03 at pci0 dev
    1 function 0 not configured
    Apr 2 14:54:53 lithium /bsd: ppb0 at pci0 dev 30 function 0 "Intel 82801AA
    Hub-to-PCI" rev 0x02
    Apr 2 14:54:53 lithium /bsd: pci1 at ppb0 bus 1
    Apr 2 14:54:53 lithium /bsd: fxp0 at pci1 dev 1 function 0 "Intel 82557"
    rev 0x08: irq 9, address 00:03:47:07:30:92
    Apr 2 14:54:53 lithium /bsd: inphy0 at fxp0 phy 1: i82555 10/100 media
    interface, rev. 4
    Apr 2 14:54:53 lithium /bsd: "Ensoniq AudioPCI97" rev 0x06 at pci1 dev 7
    function 0 not configured
    Apr 2 14:54:53 lithium /bsd: xl0 at pci1 dev 10 function 0 "3Com 3c905B
    100Base-TX" rev 0x30: irq 11 address 00:01:02:2b:50:13
    Apr 2 14:54:53 lithium /bsd: exphy0 at xl0 phy 24: 3Com internal media
    interface
    Apr 2 14:54:53 lithium /bsd: xl1 at pci1 dev 11 function 0 "3Com 3c905C
    100Base-TX" rev 0x74: irq 9 address 00:01:02:da:e8:80
    Apr 2 14:54:53 lithium /bsd: exphy1 at xl1 phy 24: Broadcom 3C905C
    internal PHY, rev. 6
    Apr 2 14:54:53 lithium /bsd: pcib0 at pci0 dev 31 function 0 "Intel
    82801AA LPC Interface" rev 0x02
    Apr 2 14:54:53 lithium /bsd: pciide0 at pci0 dev 31 function 1 "Intel
    82801AA IDE" rev 0x02: DMA, channel 0 wired to compatibility, channel 1
    wired to compatibility
    Apr 2 14:54:53 lithium /bsd: wd0 at pciide0 channel 0 drive 0: <WDC
    WD100EB-00BHF0>
    Apr 2 14:54:53 lithium /bsd: wd0: can use 32-bit, PIO mode 4, DMA mode 2,
    Ultra-DMA mode 4
    Apr 2 14:54:53 lithium /bsd: wd0: 16-sector PIO, LBA, 9541MB, 16383 cyl,
    16 head, 63 sec, 19541088 sectors
    Apr 2 14:54:53 lithium /bsd: pciide0: channel 0 interrupting at irq 14
    Apr 2 14:54:53 lithium /bsd: wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA
    mode 4 (using DMA data transfers)
    Apr 2 14:54:53 lithium /bsd: atapiscsi at pciide0 channel 1 not configured
    Apr 2 14:54:53 lithium /bsd: "Intel 82801AA USB" rev 0x02 at pci0 dev 31
    function 2 not configured
    Apr 2 14:54:53 lithium /bsd: "Intel 82801AA SMBus" rev 0x02 at pci0 dev 31
    function 3 not configured
    Apr 2 14:54:53 lithium /bsd: isa0 at pcib0
    Apr 2 14:54:53 lithium /bsd: isadma0 at isa0
    Apr 2 14:54:53 lithium /bsd: pcppi0 at isa0 port 0x61
    Apr 2 14:54:53 lithium /bsd: sysbeep0 at pcppi0
    Apr 2 14:54:53 lithium /bsd: lpt0 at isa0 port 0x378/4 irq 7
    Apr 2 14:54:53 lithium /bsd: npx0 at isa0 port 0xf0/16: using exception 16
    Apr 2 14:54:53 lithium /bsd: pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a,
    16 byte fifo
    Apr 2 14:54:53 lithium /bsd: pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a,
    16 byte fifo
    Apr 2 14:54:53 lithium /bsd: vt0 at isa0 port 0x60/16 irq 1: vga 80 col,
    color, 8 scr, mf2-kbd
    Apr 2 14:54:53 lithium /bsd: pms0 at vt0 irq 12
    Apr 2 14:54:53 lithium /bsd: fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
    Apr 2 14:54:53 lithium /bsd: fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head,
    18 sec
    Apr 2 14:54:53 lithium /bsd: biomask 4040 netmask 4a40 ttymask 5ac2
    Apr 2 14:54:53 lithium /bsd: pctr: 686-class user-level performance
    counters enabled
    Apr 2 14:54:53 lithium /bsd: mtrr: Pentium Pro MTRR support
    Apr 2 14:54:53 lithium /bsd: dkcsum: wd0 matched BIOS disk 80
    Apr 2 14:54:53 lithium /bsd: root on wd0a
    Apr 2 14:54:53 lithium /bsd: rootdev=0x0 rrootdev=0x300 rawdev=0x302
    Apr 2 14:54:53 lithium /bsd: WARNING: / was not properly unmounted
    Apr 2 14:54:53 lithium /bsd: fxp0: DAD detected duplicate IPv6 address
    fe80:0001::0203:47ff:fe07:3092: 4 NS, 0 NA
    Apr 2 14:54:53 lithium /bsd: fxp0: DAD complete for
    fe80:0001::0203:47ff:fe07:3092 - duplicate found
    Apr 2 14:54:53 lithium /bsd: fxp0: manual intervention required
    Apr 2 14:54:53 lithium savecore: no core dump
    Apr 2 14:54:55 lithium ntpd[26627]: xntpd 3-5.93e Tue Jan 23 11:50:23 CET
    2001 (1)
    Apr 2 14:54:55 lithium ntpd[26627]: tickadj = 5, tick = 10000, tvu_maxslew
    = 495, est. hz = 100

    >*default host=cvsup.hu.OpenBSD.org
    >#*default host=cvsup.uk.OpenBSD.org
    >*default base=/var
    >*default prefix=/usr
    >*default tag=OPENBSD_2_8
    >*default umask=002
    >*default release=cvs
    >*default delete use-rel-suffix