From mboxrd@z Thu Jan 1 00:00:00 1970
Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org)
by finch.gentoo.org with esmtp (Exim 4.60)
(envelope-from <gentoo-hardened+bounces-3370-garchives=archives.gentoo.org@lists.gentoo.org>)
id 1QLqtv-0003wU-4q
for garchives@archives.gentoo.org; Mon, 16 May 2011 06:03:31 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
by pigeon.gentoo.org (Postfix) with SMTP id B93011C11F
for <garchives@archives.gentoo.org>; Mon, 16 May 2011 06:03:30 +0000 (UTC)
Received: from mail-iy0-f181.google.com (mail-iy0-f181.google.com [209.85.210.181])
by pigeon.gentoo.org (Postfix) with ESMTP id 444A11C00A
for <gentoo-hardened@lists.gentoo.org>; Mon, 16 May 2011 05:44:52 +0000 (UTC)
Received: by iyb26 with SMTP id 26so4697121iyb.40
for <gentoo-hardened@lists.gentoo.org>; Sun, 15 May 2011 22:44:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=gmail.com; s=gamma;
h=domainkey-signature:mime-version:sender:in-reply-to:references:date
:x-google-sender-auth:message-id:subject:from:to:content-type;
bh=V64uh09360lwg+LdXAfYVh5bZDDIl2/fuDwOMBdV6Nc=;
b=LUCqpcaKqg/ux+TZosffiIggyjrYQhlp9YAvv2jgFZwrbCtiV74smAQAVPznQdvYEo
W0Xrg1QKyJ3jLkSR6n4ui/sJJ0fuAnqXmYuZ/mOdrRKeVyX9/5JDLQy6KsuCmPSM3ZNf
GXuNgJjEtLiGYizgXmE6JxMlHOtYwfeUlpdFs=
DomainKey-Signature: a=rsa-sha1; c=nofws;
d=gmail.com; s=gamma;
h=mime-version:sender:in-reply-to:references:date
:x-google-sender-auth:message-id:subject:from:to:content-type;
b=iBy/GjP+GFfaougzufw1fKkGCoZmopM2Zfa+itE8Yi1BzUHqlUh54pk3JwOckRyv2I
KDlQ6cktZidkpHMB2CuGOuqIH/QS3lwiOY65+hFe1up57yfCNTu6YZer+YPvM020mKXU
XWFLQdFHdmU5e4rHZXZkKGZYBnE9VEqyAiTBg=
Precedence: bulk
List-Post: <mailto:gentoo-hardened@lists.gentoo.org>
List-Help: <mailto:gentoo-hardened+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-hardened+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-hardened+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-hardened.gentoo.org>
X-BeenThere: gentoo-hardened@lists.gentoo.org
Reply-to: gentoo-hardened@lists.gentoo.org
MIME-Version: 1.0
Received: by 10.231.195.40 with SMTP id ea40mr2688483ibb.167.1305524691699;
Sun, 15 May 2011 22:44:51 -0700 (PDT)
Sender: sven.j.vermeulen@gmail.com
Received: by 10.231.168.139 with HTTP; Sun, 15 May 2011 22:44:51 -0700 (PDT)
In-Reply-To: <d64f9a163592fe2e815fe4427bcd55eb.squirrel@atoth.sote.hu>
References: <d64f9a163592fe2e815fe4427bcd55eb.squirrel@atoth.sote.hu>
Date: Mon, 16 May 2011 07:44:51 +0200
X-Google-Sender-Auth: jDYEuGEp0QfReztjHU3hCBSmvRE
Message-ID: <BANLkTimfgyTTc6uVt3zZMOwuS+PF1hmq_g@mail.gmail.com>
Subject: Re: [gentoo-hardened] How openrc check the state of services?
From: Sven Vermeulen <sven.vermeulen@siphos.be>
To: gentoo-hardened@lists.gentoo.org
Content-Type: multipart/alternative; boundary=0016e6d42bb67e87eb04a35e2714
X-Archives-Salt:
X-Archives-Hash: 89b0e11269427f86541e0e62136417fb
--0016e6d42bb67e87eb04a35e2714
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
It is the /sbin/rc binary which uses the information in /lib64/rc/init.d (a
tmpfs mount). The tmpfs location has directories like "started" in which
symlinks exist to the files in /etc/init.d.
Wkr,
Sven Vermeulen
On Mon, May 16, 2011 at 2:49 AM, "T=F3th Attila" <atoth@atoth.sote.hu> wrot=
e:
> Just switched to openrc + baselayout2.
> Using grsecurity RBAC.
>
> During the shutdown process I see endless countdowns for each service
> waiting for others. It is obvious, that something prevents the rc system
> to detect if a service is stopped or not.
>
> I have to insert a rule for a binary. The question is that which binary
> checks dependent services running and what it tries to do?
>
> Anyone have a clue?
>
> Thx:
> Dw.
> --
> dr T=F3th Attila, Radiol=F3gus, 06-20-825-8057
> Attila Toth MD, Radiologist, +36-20-825-8057
>
>
>
>
>
--0016e6d42bb67e87eb04a35e2714
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
It is the /sbin/rc binary which uses the information in /lib64/rc/init.d (a=
tmpfs mount). The tmpfs location has directories like "started" =
in which symlinks exist to the files in /etc/init.d.<br><br>Wkr,<br>=A0 Sve=
n Vermeulen<br>
<br><div class=3D"gmail_quote">On Mon, May 16, 2011 at 2:49 AM, "T=F3t=
h Attila" <span dir=3D"ltr"><<a href=3D"mailto:atoth@atoth.sote.hu"=
>atoth@atoth.sote.hu</a>></span> wrote:<br><blockquote class=3D"gmail_qu=
ote" style=3D"margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 20=
4, 204); padding-left: 1ex;">
Just switched to openrc + baselayout2.<br>
Using grsecurity RBAC.<br>
<br>
During the shutdown process I see endless countdowns for each service<br>
waiting for others. It is obvious, that something prevents the rc system<br=
>
to detect if a service is stopped or not.<br>
<br>
I have to insert a rule for a binary. The question is that which binary<br>
checks dependent services running and what it tries to do?<br>
<br>
Anyone have a clue?<br>
<br>
Thx:<br>
Dw.<br>
<font color=3D"#888888">--<br>
dr T=F3th Attila, Radiol=F3gus, 06-20-825-8057<br>
Attila Toth MD, Radiologist, +36-20-825-8057<br>
<br>
<br>
<br>
<br>
</font></blockquote></div><br>
--0016e6d42bb67e87eb04a35e2714--