From owner-freebsd-security@FreeBSD.ORG Wed Jan 11 12:36:57 2012 Return-Path: Delivered-To: freebsd-security@Freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 78B9B1065675 for ; Wed, 11 Jan 2012 12:36:57 +0000 (UTC) (envelope-from victor@bsdes.net) Received: from equilibrium.bsdes.net (244.Red-217-126-240.staticIP.rima-tde.net [217.126.240.244]) by mx1.freebsd.org (Postfix) with ESMTP id 1C1B58FC20 for ; Wed, 11 Jan 2012 12:36:56 +0000 (UTC) Received: by equilibrium.bsdes.net (Postfix, from userid 1001) id 4C1073983F; Wed, 11 Jan 2012 13:21:21 +0100 (CET) Date: Wed, 11 Jan 2012 13:21:21 +0100 From: Victor Balada Diaz To: sasha Message-ID: <20120111122121.GD39290@equilibrium.bsdes.net> References: <422F8D645D05433D9AC41EC89A0F7FE0@dom> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <422F8D645D05433D9AC41EC89A0F7FE0@dom> User-Agent: Mutt/1.5.21 (2010-09-15) Cc: freebsd-security@Freebsd.org Subject: Re: Hellp !!! X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 Jan 2012 12:36:57 -0000 On Wed, Jan 11, 2012 at 07:52:19AM +0200, sasha wrote: > 197]: superpolka.com.ua (superpolka.com.ua[::ffff:77.87.154.174]) - error: > FreeBSD with vulnerable chroot (FreeBSD-SA-11:07.chroot). > > 197]: superpolka.com.ua (superpolka.com.ua[::ffff:77.87.154.174]) - chroot > to '/home/ftp' failed for user 'ftp001': Operation not permitted. > > 197]: superpolka.com.ua (superpolka.com.ua[::ffff:77.87.154.174]) - error: > unable to set default root directory. > > > > > > superpolka.com.ua 8.2-STABLE FreeBSD 8.2-STABLE #3: Sat Jan 7 10:03:34 EET > 2012 root@superpolka.com.ua:/usr/src/sys/amd64/compile/NAS2 amd64 > > > > # freebsd-update fetch > > > > [root@artvideo /home/sh]# freebsd-update fetch > > Looking up update.FreeBSD.org mirrors... 4 mirrors found. > > Fetching public key from update4.FreeBSD.org... failed. > > Fetching public key from update3.FreeBSD.org... failed. > > Fetching public key from update5.FreeBSD.org... failed. > > Fetching public key from update2.FreeBSD.org... failed. > > No mirrors remaining, giving up. > > > > # freebsd-update -v debug fetch > > # freebsd-update install > > > > [root@artvideo /home/sh]# freebsd-update install > > No updates are available to install. > > Run '/usr/sbin/freebsd-update fetch' first. Hello, I'm not sure what are you trying to do, but if it's just patching the system you can't use freebsd-update for it. You're running a custom-built system with FreeBSD 8.2-STABLE and freebsd-update just works with standard systems. To fix the vulnerabilities you can: 1) apply patches and rebuild as per each security advisory 2) Update source to RELENG_8 and upgrade using the procedure described here: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html I hope it helps. Regards. Victor. -- La prueba más fehaciente de que existe vida inteligente en otros planetas, es que no han intentado contactar con nosotros.