Jeremy C. Reed

2002-Sep-13

Made a /tmp/.bugtraq and /tmp/.bugtraq.c files owned by root and mode 0. Some Apache/ssl exploits create those files. /tmp on this system isn't on its own partition to make it noexec. My SSL and Apache are up-to-date anyways.

Also checked files with:

# cd /
# cat /var/lib/dpkg/info/*.md5sums | md5sum -vc 2>&1 | grep -v OK$
usr/lib/apache/suexec                      FAILED
etc/cron.daily/exim                                              FAILED
etc/ppp/options.ttyXXX                                                    FAILED
md5sum: 3 of 4622 file(s) failed MD5 check

Burned cd from compressed file with:

gzcat i386live.iso.gz | cdrecord -eject -v dev=15,1,0 -

Starting new track at sector: 0
Track 01: 656 MB written (fifo 100%).cdrecord: Input/output error. write_g1: scsi sendcmd: retryable error
CDB:  2A 00 00 05 20 62 00 00 1E 00
status: 0x0 (GOOD STATUS)
resid: 61440
cmd finished after 7.578s timeout 40s

write track data: error after 688066560 bytes
Sense Bytes: F0 00 05 00 05 20 62 13 00 00 00 00 63 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Writing  time: 2254.638s
Fixating...
Fixating time:  127.370s
cdrecord: fifo had 11267 puts and 11200 gets.
cdrecord: fifo was 0 times empty and 11181 times full, min fill was 95%.
Broken pipe