Thank you, Pax Team!
I have, offline, prepared the text as if I knew what you would suggest. Here it goes.
- Code: Select all
[250833.610357] general protection fault: 0000 [#1] SMP
[250833.610392] Modules linked in: videobuf_dvb dvb_core cx88_vp3054_i2c cx8802 cx88xx tveeprom btcx_risc videobuf_dma_sg videob
uf core rc_core v4l2_common videodev radeon fbcon bitblit softcursor font cfbfillrect cfbimgblt cfbcopyarea i2c_algo_bit drm_kms
_helper ttm snd_hda_codec_hdmi drm snd_hda_codec_realtek snd_hda_intel fb snd_hda_codec fbdev sky2 r8169 snd_hwdep shpchp
[250833.610601] CPU: 3 PID: 3631 Comm: nfsd Not tainted 3.10.5-hardened-r1-130817_04 #2
[250833.610640] Hardware name: To Be Filled By O.E.M. To Be Filled By O.E.M./970 Extreme4, BIOS P1.90 07/11/2012
[250833.610690] task: ffff88042d6c8840 ti: ffff88042d6c8d50 task.ti: ffff88042d6c8d50
[250833.610728] RIP: 0010:[<ffffffff8122f1fd>] [<ffffffff8122f1fd>] lru_put_end+0x26/0x6d
[250833.610774] RSP: 0018:ffff880411b6dd58 EFLAGS: 00010213
[250833.610802] RAX: fefefefefefefefe RBX: ffff8802a26008e8 RCX: fefefefefefefefe
[250833.610837] RDX: ffff8802a26008f8 RSI: 0000000000220019 RDI: 0000000000000004
[250833.610873] RBP: ffff880411b6dd68 R08: ffff88043fd95c60 R09: 0000000000000000
[250833.610909] R10: 0000000000000000 R11: ffffffff81a42290 R12: 010101020feda532
[250833.610944] R13: ffff8802a26008e8 R14: 0000000000000002 R16: ffff880411aa8000
[250833.610980] FS: 0000029a59d28700(0000) GS:ffff88043fd80000(0000) knlGS:0000000000000000
[250833.611021] CS: 0010 DS: 0000 ES: 0000 CR0: 000000000005003b
[250833.611050] CR2: 0000040000000000 CR3: 00000000016a7000 CR4: 00000000000007f0
[250833.611086] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[250833.611121] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[250833.611156] Stack:
[250833.611168] ffff88043fd95c60 000000003a93b3c5 [... my fingers fell off my hands here...]
[250833.611209] ffff880411aa8028 000000072bfeff [... ditto ...]
[250833.611250] ffff880411b6ddc8 ffff880411aa80 [... ditto ...]
[250833.611291] Call Trace:
[250833.611307] [<ffffffff8122f83d>] nfsd_cache_ [... || ...]
[250833.611340] [<ffffffff81227e5b>] nfsd_dispatch [... || ...]
[250833.611370] [<ffffffff8165f4df>] svc_process+0x [... || ...]
[250833.611 [... || ...]
...
...[ some 10 lines skipping here, which if need will be, will do them in next post ]...
...
[250833.616726] Kernel panic - not syncing: grsec: halting the system due to suspicious kernel crash caused by root
[250833.616782] drm_kms_helper: panic occurred, switching back to text console
EDIT START
Finally! Wed Oct 30 18:15:00 UTC 2013
I offer now the photo that I used for transcibing above, to the readers:
http://www.croatiafidelis.hr/gnu/grsec/2013-08-20_05.40.57_at8-g250_1280x1080.jpgor maybe it displays fine for you on this site (not for me, it displays cropped for my 1024x768 monitor):
EDIT END
In case either if the picture can and if it cannot be uploaded, this will be useful. In case it
is by the time a later reader read this, he could have found the text only if some
search engine didn't hide from users (as Google often hides) that those words were
to be found here in this text above.
This is that last text displayed on my monitor when the kernel froze.
This above, manual copying work, is just my pledge to show the readers how serious
my desire to contribute in the just and honest side of computing (Grsec/Pax is the
cleanest and the make-or-break point in free computing of today, yes it is![*]),
which for me means possibly free from systematic/regimatic surveillance and abuse.
I actually believe that there probably is all this information somewhere to be
found on my system, as long as I keep it mounted readonly, which I intend to
do...
However, not for more than a day or two or so. I need that worker system of mine.
And for me to be able to do more, I'd need to be told where I could possibly
get to maybe read a tutorial on the internet on this or any other info.
Anybody to help with advice?
If only one small fraction of people whose computers have been protected by Grsec/Pax
showed up with advice/tutorials for their GNU/Linux distro/tips&tricks here,
these forums would teem with great stuff, and even newbies would find their
ways!
And Grsec/Pax developers would be free for their work! Wake up people, don't be selfish.
Let's not allow these people who we all need for Grsec/Pax in our boxes, to overwork and burn.
Along with this Gentoo system that crashed, I certainly cannot stay online for
much more with my compromised Debian box either, which I just cannot trust after
long downloads online such as the Debian weekly builds.
I have my poor user's defences, and I'll probably be able to revert the state
of this or another of my Debian boxes to a hopefully clean state, and I'll
also try and update Debian to the current state of the testing branch, and the
latest grsec/pax patched kernel.
I will need some time for all that, and I'm a late adopter, am now 56, so let's
see how this story goes.
Bear with me.
I sure had to write all this offline...
Miroslav Rovis
==============================================================================
[*] Grsecurity/Pax is the
cleanest and the make-or-break point in free computing of today. Yes it is!
Surely leave out M$ and Apple, they have backdoors and do you in, anytime in
any matter, with your Internet/local/any work on your computer.
GNU/Linux is the OS having the sound, unbreakable backbone of the GNU License,
which is more than just techie open source Google style or worse yet licenses.
So it's both free and open and cannot get, well it should not get, well if it gets, the
world has lost free computing...
So it's open and ... cannot get into some Larry Oracle hands like Java and MySQL
and others...
But Linus sold out to NSA. Yes he did.
It seems he decided he has to remain the number one in the world, even though there's these
guys here, who wrote Grsecuriy/Pax, who beat him.
The only thing that makes your GNU/Linuces viable for your privacy which most every
country vows to uphold in their Constitutions, but most no country in the
world really upholds in practice...
Most every country has some Forth Amendment kind of clause telling the world
how their citizens' privacy is sacrosaint...
But Linus sold out to NSA. Yes he did. And what was a program that NSA wanted
to sell as somebody else's, some now rather forgotten people's from RedHat
Linux probably some decade or more years ago... NSA seem to soon had to admit
that that program wasn't made by those Red Hat developers... I read the
correspondence, and I cannot find that correspondence now, if somebody knows, give
us the link... it's on, I think
http://www.lwn.netbtwn Spender, Pax and those little important developers, and even I could figure out they
didn't understand their "own" program...
Anyways, the GNU/Linux developers' world not being made of dupes and dummies as some NSA
chief must have expected, NSA eventually came out and owned up to this program that
is such great friend of Linus Torvalds, which is:
SELinux (Security Enhances Linux)SELinux, according to these guys, more precisely Spender I know saw that it
was so (read my other posts, I did give a link somewhere), according to these guys Spender
and Pax Team, who I completely support not for any sycophantic reasons, but because they are my,
a poor user, a late adopter of very incomplete competence in the matter, because they are my
only chance to use my computers freely...
SELinux, according to these guys, was back then full of purpose built hooks
for root-kit kind of intervention. Well, what would you expect from a program made by NSA?
That it would be made for your freedom and not for their spying on you under the guise
of a secure system...?
Support is lacking here, for Grsec/Pax, and I mean honest big business (is there any? how
much honesty is there left with, say, Google after it sold out for spying?; and Larry and
Serge did start honestly!)... or at least some medium size businesses... There
must be some left... Or numerous small businesses if there were... And
worldwide, not only U.S. of A. Businesses should, and thanks to those that do,
which you see their logos associate with Grsecurity/Pax! Businesses should
recognize that they all need Grsec/Pax in GNU/Linuces!
But I can assure you, not for knowing it, noo! I'm not an insider, but I look
with eyes without dirt of lies and disguise, by the grace of God, or if you don't feel
you can believe, then, by the virtues of honesty and diligence and sincere insight on things
availabe for seeing for all of us...
But I can assure you, taxpayers' money, and not only U.S. of A., but at least some
European countries too, in some shady ways, is flowing toward... toward
breaking the freedom of GNU/Linux, via SELinux or other stuff... for the sake
of surveillance.
SELinux may have even metamorphosizes in some ways...
The rootkit ready hooks may even have been near perfectly hidden by now...
Hooks so NSA and other big subjects of the kind might get their hold on
GNU/Linux boxes when they need do so...
That's where Linus Torvalds sold us!
The only thing that makes your GNU/Linuces viable for you to use them to be free
and do things on Internet freely, and freely live your lives which often requires free
computing, such as free unsurveilled communication worldwide...
The only thing that makes your GNU/Linuces viable for so much is Grsec/Pax!
Go ask bigger boys then me about it.
If they don't lie, they will confirm my words.
This truth above needs to be spread!
Newbies need to know this!
Again, newbies need to know this!
There is some free speech left in the leader, arrogant and abusive leader that
the U.S. of A. has become, but still the leader country, although not for long more...
In the leader country and lots of other contry that pretty much follow it.a
Not for long more... You are breaking on the inside, dear U.S. Americans, what about you
Veterans who you take to wars for no reason, and discard like rags when they break,
what about you homeless, your crap GMO food, you filthy banksters' elite of dirt...
But there is still some free speech.
If you keep quiet about these truths, dear reader, they'll manage to take away
from us the last bastion of defence of free computing, and that is GNU/Linux...
==============================================================================
So the NSA or somesuch subject didn't succeed on my box, Grsec/Pax defended my
computer...
That's the suspicion of mine. I can't prove that, but sure I can't let you
forget that the wholesale spying on all talk, all mail, all communication
whatsoever, in shameless denial of privacy is on most of the whole
world, very big-brotherly Orwellian, which makes my suspicio so very possible!
Don't forget Edward Snowden and his revelations ever!
Sure it could be some rogue individual hacker, but they don't break where
there's no money (and there isn't any here), unless they are paid money to
break... Soo...
Now back to what I wrote much further above.
I need advice what to look up in the box that crashed and that I'll keep
mounted readonly (the partition which I cannot disk dump backup)
for a day or two or three, I don't know how long I am going to wait...
I did dd'ed all the system partions. I'll only wait if any of the readers
gets me somewhere, maybe address of some tutorial, where I could possibly
look up for things related to this probable attack, on the data partiton.
Because the data partition is some 600GB, and I need it for my work, so this is
urgent advice or it'll be late...
Surely I will run clamav on it, but not much more do I know what to do...
On the other hand, I'll be able to loop-mount the dd'd system partitions even
probably a month or two or more from now, because I'll keep them longer for
some late advice maybe.
And in such way, if you are a late reader of this line and could help, I
probaly still have the snapshots of the the exact state of my system partition
at the time of the crash.
Looking short term, I'll now do usual Debian updates and check and report Grsec/Pax
install on it. And it'll take longish too...
Miroslav Rovis (again I sign this, I'm broken with tiredness, if things are
unfinished, I may or may not try to edit, and note those edits with capital
EDIT letters if I do, but the work I have on my hands, and it's not all computing
related, is bigger than the time I have available)
: