From owner-FreeBSD-users-jp@jp.freebsd.org  Tue Feb 23 14:23:24 1999
Received: by jaz.jp.freebsd.org (8.9.2+3.1W/8.7.3) id OAA24662;
	Tue, 23 Feb 1999 14:23:24 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from sraigw.sra.co.jp (sraigw.sra.co.jp [202.32.10.2])
	by jaz.jp.freebsd.org (8.9.2+3.1W/8.7.3) with ESMTP id OAA24657
	for <freebsd-users-jp@jp.freebsd.org>; Tue, 23 Feb 1999 14:23:22 +0900 (JST)
	(envelope-from yabuki@sra.co.jp)
Received: from sras83.sra.co.jp (sras83 [133.137.21.32])
	by sraigw.sra.co.jp (8.8.7/3.6Wbeta7-sraigw) with ESMTP id OAA10524
	for <freebsd-users-jp@jp.freebsd.org>; Tue, 23 Feb 1999 14:23:13 +0900 (JST)
Received: from sras83 (localhost [127.0.0.1]) by sras83.sra.co.jp (8.8.5/3.5Wpl4-sra) with ESMTP id OAA09979 for freebsd-users-jp@jp.freebsd.org; Tue, 23 Feb 1999 14:23:13 +0900 (JST)
Message-Id: <199902230523.OAA09979@sras83.sra.co.jp>
To: FreeBSD-users-jp@jp.freebsd.org
In-reply-to: Your message of "Tue, 16 Feb 1999 14:28:03 JST."
             <199902160528.OAA01900@nadia.pes.com1.fc.nec.co.jp> 
Date: Tue, 23 Feb 1999 14:23:12 +0900
From: YABUKI Youichi <yabuki@sra.co.jp>
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+981115
X-Sequence: FreeBSD-users-jp 39145
Subject: [FreeBSD-users-jp 39145] Re: rdump not work 
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: yabuki@sra.co.jp

> $BB@ED!w%3%s%T%e!<%?(B($B;v(B)$B5;=Q4IM}It$G$9!#(B
> 
> rdump $B%3%^%s%I$,F0:n$7$J$/$F:$$C$F$$$^$9!#(B
$B$3$N7o2r7h$7$F$?$i$4$a$s$J$5$$!#(B

> $B2a5n$N(BML$BEy$rD4$Y!"(B
> 
> /home1/foo:61 foo>more .rhosts
> localhost foo
> foo  foo
> 
> 
> /home1/foo:62 foo>more /etc/hosts.equiv
> localhost
> foo
> 
> $B$H$$$&MQ$KDj5A$7!"<+J,<+?H$K(B rdump $B$7$F$_$?$N$G$9$,(B
> 
> /home1/foo:60 foo>rdump 0fua foo@localhost:/dev/rst0 /dev/rwd0s2e
>   DUMP: rcmd: socket: Permission denied
>   DUMP: login to localhost.foo.or.jp as foo failed.
> /home1/foo:61 foo>
> 
> $B$H$J$C$F$7$^$$!"G'>Z$K<:GT$7$F$$$k$h$&$G$9!#(B
> $B$A$J$_$K!"(B rlogin $B$O=PMh$^$9(B(/etc/inetd.conf $B$N(B login $B$rM-8z$K$7$^$7$?(B)$B!#(B
> 
> $B8eB>$K$d$i$J$1$l$P$J$i$J$$;v$O$"$k$G$7$g$&$+!#(B

rdump $B$O$=$&$$$&$b$N$G$O$J$$$G$7$g$&$+(B?
$B$D$^$j(B root $B$G$J$$$H<B9T=PMh$J$$$H!#(B

$B<j85$N(B 2.2.6 $B$N(B dump(8) $B$K$O(B

     dump cannot do remote backups without being run as root, due to its secu-
     rity history.  This will be fixed in a later version of FreeBSD.
     Presently, it work if you set it setuid (like it used to be), but this
     might constitute a security risk.

$B$H$"$j$^$9!#(B

$B%(%i!<%a%C%;!<%8$O(B socket(2) $B$G<:GT$7$?$+$N$h$&$K=P$F$^$9$,!"(B
$B<B:]$OFC8"%]!<%H$K(B bind(2) $B$9$k$N$K<:GT$7$F$$$k$H;W$$$^$9!#(B
(rcmd(3) $B$N%=!<%9$H0J2<$K<($9<B83$+$i(B...)

rlogin $B$O=PMh$k$H$$$&$3$H$G$9$,!"(Brlogin $B$b$d$O$j(B rcmd(3) $B$r(B
$B;H$C$F$$$^$9$,!"$3$A$i$O(B setuid root $B$5$l$F$^$9!#(B
cp /usr/bin/rlogin /tmp/rlogin $B$H$+$7$F(B($B$3$&$9$k$H(B setuid $B%S%C%H$,(B
$BMn$A$^$9(B)$B!"(B/tmp/rlogin xxx $B$H$+$9$k$H>e$N(B rdump $B$HF1MM$N%(%i!<(B
(rcmd: socket: Permission denied)$B$,=P$^$9!#(B

$B$^$?!"(Bktrace & kdump $B$r;H$&$HD>@\E*$K(B bind(2) $B$K<:GT$7$F$$$k$N$,$o$+$j$^$9!#(B
$BNc$($P(B ktrace /tmp/rlogin localhost ; kdump $B$9$k$H!"(B

 ...
 20560 rlogin   CALL  bind(0x3,0xefbfd394,0x10)
 20560 rlogin   RET   bind -1 errno 13 Permission denied
 ...
 20560 rlogin   CALL  write(0x2,0xefbfcc70,0x20)
 20560 rlogin   GIO   fd 2 wrote 32 bytes
       "rcmd: socket: Permission denied
       "
  ...

$B$H=P$^$9!#(B
($B$J$s$G(B /sbin/rdump $B$G<B83$7$J$$$+$H8@$&$H0z?t$N;XDj$,LLE]$@$+$i(B:-)

# ($B3t(B)SRA $BLp?aMN0l(B
