Older blog entries for senthilkumar (starting at number 9)

Its been nearly Six months since i touched my blog. Am I becoming lazy. This question is unnecessary as infrequent update answers it. There are some changes in my career. Things going fine. I have forget few things due to this long gap. Will do frequent updates.

Technically, I just started playing with sinfp, a finger printing tool. Its been claimed that it overcome some of disadvantages of nmap. Looks interesting :)

I think i should put my experience in a proprietary PAM-Kerberos module and the way i found a bug. The implementation way, the credential files are destroyed results in deletion of credentials of some other session done by same user. ie. it deletes the credential obtained by doing a kinit command in some other session. First I looked at OpenSSH code to find the cause of prolem and later it navigated to the PAM module. Its really cool and interesting.

The new year celebrations went away nicely. Back to work. Hope this year will be more adventurous.

Just checked how passwd command behaves when tried to change the passwd for a user who has two entries in /etc/passwd and the first one being commented. This I did in one of commercial distribution of unix and to my surprise it asks to change passwd for the commented user. I find tht somehow passwd command matches the first commented entry and prompts as below, Changing password for #senthil Old password:

Also at this juncture with the commercial version I checked the ownership of somefiles owned by user senthil. It displays as below, -rw------- 1 #senthil <grp> <file name>

But In Linux for same scenario, -rw------- 1 117 <grp> <file> (username replaced by uid)

In OpenBSD (its great and retains the username) -rw------- 1 senthil <grp> <file> (remain as it is)

So a common situation which give rise to 2 bugs.

I remember a quote, "Finding and fixing the bugs enhance the software". I think im not comfortable with PERL tht much and started making me good in that. This is the last working day of the Year 2005. Hey, Have FUN.

29 Dec 2005 (updated 29 Dec 2005 at 11:58 UTC) »

I did some fun with login shells, non-login shells subshell etc.. I came across a thing that only login shells are prefixed with "-". But i saw that even when we fork a subshell from login shell on execution of commands they too prefixed with "-". But normal creation of child shell from login shell doesn't have such a thing.

Also there exists an inconsistent behaviour if I fork few child shells in series from login shell and forcibly kill a middle one. The behaviour differs depending on terminal I send the kill signal. This I checked in korn and bash. Have to find out how well recent versions work.

2005 is leaving down and Im in great mood to Welcome 2006. Wish u all a Happy New Year. Have Fun.

3 Dec 2005 (updated 3 Dec 2005 at 10:23 UTC) »

Attended the Open Source conference at http://foss.in/2005/. Its really cool to meet some of the great personalities of Open Source world there. It seems that all the presentation slides in the conference will get uploaded in the site. Have a look at it.

Other then that I did a contribution to LDP on man page. Its a contribution on FIXME. Trying one more of such sort currently. The week end is ahead. It seems im tired a little and shld plan this week end for taking rest.

The Gnessus project name selection is going on in full swing. I volunteered for contribution in its home page.

Audited the HPN patch for OpenSSH. Find some code parts that can be done to consume less operation. Chris rapier, the author, after discussion with his co-author replied and appreciated my auditing. There seems to be a exploit released for snort back orifice vulnerability. I need to allocate some of my time for this analysis.

People around me are in gr8 joy mood for the upcoming festival here. Me too eagerly waiting on it :-)

Suggested few names to the current Gnessus to change its name and they all get listed at http://www.gnessus.org/doku.php?id=the_team .

Snort addressed a buffer overflow vulnerability in it. Not went through much in it. Need to discuss on it.

I forecast this week will be busy to me from my workside. Things are comfortable.

There seems to be a forked version of Nessus comingup called Gnessus based on GPL. Developers are invited to join in this community at http://www.gnessus.org/. I conveyed my wishes for them and Wish them All the Best.

Analysed behaviour of login command across various Unix platforms. Tested its behaviour in honouring the securetty file on all those platforms. It looks quite interesting.

BTW, the weekend is ahead. Its really cool but I dont have much plan for this week and wish to watch some movies.

There occurs a binary compatibility problem with OpenSSL and OpenSSH. Markus replied that bug is part of OpenSSL library. I need to closely watch down the next release of OpenSSL as it seems to be 0.9.7i. The local festival here went away nicely. Nothing more here. Its raining cats and dogs.

Its really cool to begin my words here. The continuous growing of the community and support overall for its efforts are really boosting. I should keep my entries updated always. Let me see how far Im to that.

New Advogato Features

New HTML Parser: The long-awaited libxml2 based HTML parser code is live. It needs further work but already handles most markup better than the original parser.

Keep up with the latest Advogato features by reading the Advogato status blog.

If you're a C programmer with some spare time, take a look at the mod_virgule project page and help us with one of the tasks on the ToDo list!