API tools faq
paste
Advertisement
Guest User

Untitled

a guest
May 15th, 2015
414
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 38.39 KB | None | 0 0
raw download clone embed print report
  1. 16 execve("/bin/su", ["su", "postgres"], [/* 12 vars */]) = 0
  2. 16 brk(0) = 0x7f07a590c000
  3. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea4000
  4. 16 access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or directory)
  5. 16 open("/etc/ld.so.cache", O_RDONLY) = 3
  6. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=12780, ...}) = 0
  7. 16 mmap(NULL, 12780, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f07a4ea0000
  8. 16 close(3) = 0
  9. 16 open("/lib64/libpam.so.0", O_RDONLY) = 3
  10. 16 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\320#\0\0\0\0\0\0"..., 832) = 832
  11. 16 fstat(3, {st_mode=S_IFREG|0755, st_size=55848, ...}) = 0
  12. 16 mmap(NULL, 2150944, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f07a4a78000
  13. 16 mprotect(0x7f07a4a84000, 2097152, PROT_NONE) = 0
  14. 16 mmap(0x7f07a4c84000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0xc000) = 0x7f07a4c84000
  15. 16 close(3) = 0
  16. 16 open("/lib64/libpam_misc.so.0", O_RDONLY) = 3
  17. 16 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0`\17\0\0\0\0\0\0"..., 832) = 832
  18. 16 fstat(3, {st_mode=S_IFREG|0755, st_size=14584, ...}) = 0
  19. 16 mmap(NULL, 2109712, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f07a4874000
  20. 16 mprotect(0x7f07a4876000, 2097152, PROT_NONE) = 0
  21. 16 mmap(0x7f07a4a76000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x2000) = 0x7f07a4a76000
  22. 16 close(3) = 0
  23. 16 open("/lib64/libc.so.6", O_RDONLY) = 3
  24. 16 read(3, "\177ELF\2\1\1\3\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0p\356\1\0\0\0\0\0"..., 832) = 832
  25. 16 fstat(3, {st_mode=S_IFREG|0755, st_size=1921176, ...}) = 0
  26. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4e9f000
  27. 16 mmap(NULL, 3750152, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f07a44e0000
  28. 16 mprotect(0x7f07a466a000, 2097152, PROT_NONE) = 0
  29. 16 mmap(0x7f07a486a000, 20480, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x18a000) = 0x7f07a486a000
  30. 16 mmap(0x7f07a486f000, 18696, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x7f07a486f000
  31. 16 close(3) = 0
  32. 16 open("/lib64/libaudit.so.1", O_RDONLY) = 3
  33. 16 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\20(\0\0\0\0\0\0"..., 832) = 832
  34. 16 fstat(3, {st_mode=S_IFREG|0755, st_size=141768, ...}) = 0
  35. 16 mmap(NULL, 2236976, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f07a42bd000
  36. 16 mprotect(0x7f07a42d4000, 2097152, PROT_NONE) = 0
  37. 16 mmap(0x7f07a44d4000, 49152, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x17000) = 0x7f07a44d4000
  38. 16 close(3) = 0
  39. 16 open("/lib64/libdl.so.2", O_RDONLY) = 3
  40. 16 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\340\r\0\0\0\0\0\0"..., 832) = 832
  41. 16 fstat(3, {st_mode=S_IFREG|0755, st_size=19536, ...}) = 0
  42. 16 mmap(NULL, 2109696, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f07a40b9000
  43. 16 mprotect(0x7f07a40bb000, 2097152, PROT_NONE) = 0
  44. 16 mmap(0x7f07a42bb000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x2000) = 0x7f07a42bb000
  45. 16 close(3) = 0
  46. 16 open("/lib64/libcrypt.so.1", O_RDONLY) = 3
  47. 16 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\f\0\0\0\0\0\0"..., 832) = 832
  48. 16 fstat(3, {st_mode=S_IFREG|0755, st_size=40400, ...}) = 0
  49. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4e9e000
  50. 16 mmap(NULL, 2318816, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f07a3e82000
  51. 16 mprotect(0x7f07a3e89000, 2097152, PROT_NONE) = 0
  52. 16 mmap(0x7f07a4089000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x7000) = 0x7f07a4089000
  53. 16 mmap(0x7f07a408b000, 184800, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x7f07a408b000
  54. 16 close(3) = 0
  55. 16 open("/lib64/libfreebl3.so", O_RDONLY) = 3
  56. 16 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\220\n\0\0\0\0\0\0"..., 832) = 832
  57. 16 fstat(3, {st_mode=S_IFREG|0755, st_size=10312, ...}) = 0
  58. 16 mmap(NULL, 2105520, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f07a3c7f000
  59. 16 mprotect(0x7f07a3c81000, 2093056, PROT_NONE) = 0
  60. 16 mmap(0x7f07a3e80000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x1000) = 0x7f07a3e80000
  61. 16 close(3) = 0
  62. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4e9d000
  63. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4e9c000
  64. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4e9b000
  65. 16 arch_prctl(ARCH_SET_FS, 0x7f07a4e9c700) = 0
  66. 16 mprotect(0x7f07a3e80000, 4096, PROT_READ) = 0
  67. 16 mprotect(0x7f07a4089000, 4096, PROT_READ) = 0
  68. 16 mprotect(0x7f07a42bb000, 4096, PROT_READ) = 0
  69. 16 mprotect(0x7f07a44d4000, 4096, PROT_READ) = 0
  70. 16 mprotect(0x7f07a486a000, 16384, PROT_READ) = 0
  71. 16 mprotect(0x7f07a4a76000, 4096, PROT_READ) = 0
  72. 16 mprotect(0x7f07a4c84000, 4096, PROT_READ) = 0
  73. 16 mprotect(0x7f07a50af000, 4096, PROT_READ) = 0
  74. 16 mprotect(0x7f07a4ea5000, 4096, PROT_READ) = 0
  75. 16 munmap(0x7f07a4ea0000, 12780) = 0
  76. 16 brk(0) = 0x7f07a590c000
  77. 16 brk(0x7f07a592d000) = 0x7f07a592d000
  78. 16 open("/usr/lib/locale/locale-archive", O_RDONLY) = 3
  79. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=3337856, ...}) = 0
  80. 16 mmap(NULL, 3337856, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f07a3950000
  81. 16 close(3) = 0
  82. 16 socket(PF_FILE, SOCK_STREAM|SOCK_CLOEXEC|SOCK_NONBLOCK, 0) = 3
  83. 16 connect(3, {sa_family=AF_FILE, path="/var/run/nscd/socket"}, 110) = -1 ENOENT (No such file or directory)
  84. 16 close(3) = 0
  85. 16 socket(PF_FILE, SOCK_STREAM|SOCK_CLOEXEC|SOCK_NONBLOCK, 0) = 3
  86. 16 connect(3, {sa_family=AF_FILE, path="/var/run/nscd/socket"}, 110) = -1 ENOENT (No such file or directory)
  87. 16 close(3) = 0
  88. 16 open("/etc/nsswitch.conf", O_RDONLY) = 3
  89. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=1688, ...}) = 0
  90. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  91. 16 read(3, "#\n# /etc/nsswitch.conf\n#\n# An ex"..., 4096) = 1688
  92. 16 read(3, "", 4096) = 0
  93. 16 close(3) = 0
  94. 16 munmap(0x7f07a4ea3000, 4096) = 0
  95. 16 open("/etc/ld.so.cache", O_RDONLY) = 3
  96. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=12780, ...}) = 0
  97. 16 mmap(NULL, 12780, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f07a4ea0000
  98. 16 close(3) = 0
  99. 16 open("/lib64/libnss_files.so.2", O_RDONLY) = 3
  100. 16 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\360!\0\0\0\0\0\0"..., 832) = 832
  101. 16 fstat(3, {st_mode=S_IFREG|0755, st_size=65928, ...}) = 0
  102. 16 mmap(NULL, 2151824, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f07a3742000
  103. 16 mprotect(0x7f07a374e000, 2097152, PROT_NONE) = 0
  104. 16 mmap(0x7f07a394e000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0xc000) = 0x7f07a394e000
  105. 16 close(3) = 0
  106. 16 mprotect(0x7f07a394e000, 4096, PROT_READ) = 0
  107. 16 munmap(0x7f07a4ea0000, 12780) = 0
  108. 16 open("/etc/passwd", O_RDONLY|O_CLOEXEC) = 3
  109. 16 fcntl(3, F_GETFD) = 0x1 (flags FD_CLOEXEC)
  110. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=838, ...}) = 0
  111. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  112. 16 read(3, "root:x:0:0:root:/root:/bin/bash\n"..., 4096) = 838
  113. 16 close(3) = 0
  114. 16 munmap(0x7f07a4ea3000, 4096) = 0
  115. 16 stat("/etc/pam.d", {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0
  116. 16 open("/etc/pam.d/su", O_RDONLY) = 3
  117. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=487, ...}) = 0
  118. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  119. 16 read(3, "#%PAM-1.0\nauth\t\tsufficient\tpam_r"..., 4096) = 487
  120. 16 open("/lib64/security/pam_rootok.so", O_RDONLY) = 4
  121. 16 read(4, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\320\5\0\0\0\0\0\0"..., 832) = 832
  122. 16 fstat(4, {st_mode=S_IFREG|0755, st_size=6056, ...}) = 0
  123. 16 mmap(NULL, 2101304, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 4, 0) = 0x7f07a3540000
  124. 16 mprotect(0x7f07a3541000, 2093056, PROT_NONE) = 0
  125. 16 mmap(0x7f07a3740000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 4, 0) = 0x7f07a3740000
  126. 16 close(4) = 0
  127. 16 open("/etc/ld.so.cache", O_RDONLY) = 4
  128. 16 fstat(4, {st_mode=S_IFREG|0644, st_size=12780, ...}) = 0
  129. 16 mmap(NULL, 12780, PROT_READ, MAP_PRIVATE, 4, 0) = 0x7f07a4e97000
  130. 16 close(4) = 0
  131. 16 open("/lib64/libselinux.so.1", O_RDONLY) = 4
  132. 16 read(4, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\320X\0\0\0\0\0\0"..., 832) = 832
  133. 16 fstat(4, {st_mode=S_IFREG|0755, st_size=122040, ...}) = 0
  134. 16 mmap(NULL, 2221912, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 4, 0) = 0x7f07a3321000
  135. 16 mprotect(0x7f07a333e000, 2093056, PROT_NONE) = 0
  136. 16 mmap(0x7f07a353d000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 4, 0x1c000) = 0x7f07a353d000
  137. 16 mmap(0x7f07a353f000, 1880, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x7f07a353f000
  138. 16 close(4) = 0
  139. 16 mprotect(0x7f07a353d000, 4096, PROT_READ) = 0
  140. 16 mprotect(0x7f07a3740000, 4096, PROT_READ) = 0
  141. 16 statfs("/selinux", {f_type="EXT2_SUPER_MAGIC", f_bsize=4096, f_blocks=2547534, f_bfree=2443840, f_bavail=2312768, f_files=655360, f_ffree=633762, f_fsid={-1233161252, 555771874}, f_namelen=255, f_frsize=4096}) = 0
  142. 16 open("/proc/filesystems", O_RDONLY) = 4
  143. 16 fstat(4, {st_mode=S_IFREG|0444, st_size=0, ...}) = 0
  144. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea2000
  145. 16 read(4, "nodev\tsysfs\nnodev\trootfs\nnodev\tb"..., 1024) = 333
  146. 16 close(4) = 0
  147. 16 munmap(0x7f07a4ea2000, 4096) = 0
  148. 16 open("/proc/mounts", O_RDONLY) = 4
  149. 16 fstat(4, {st_mode=S_IFREG|0444, st_size=0, ...}) = 0
  150. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea2000
  151. 16 read(4, "rootfs / rootfs rw 0 0\n/dev/mapp"..., 1024) = 1024
  152. 16 statfs("/host/selinux", {f_type=0xf97cff8c, f_bsize=4096, f_blocks=0, f_bfree=0, f_bavail=0, f_files=0, f_ffree=0, f_fsid={0, 0}, f_namelen=255, f_frsize=4096}) = 0
  153. 16 statfs("/host/selinux", {f_type=0xf97cff8c, f_bsize=4096, f_blocks=0, f_bfree=0, f_bavail=0, f_files=0, f_ffree=0, f_fsid={0, 0}, f_namelen=255, f_frsize=4096}) = 0
  154. 16 stat("/host/selinux", {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0
  155. 16 close(4) = 0
  156. 16 munmap(0x7f07a4ea2000, 4096) = 0
  157. 16 munmap(0x7f07a4e97000, 12780) = 0
  158. 16 open("/etc/pam.d/system-auth", O_RDONLY) = 4
  159. 16 fstat(4, {st_mode=S_IFREG|0644, st_size=692, ...}) = 0
  160. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea2000
  161. 16 read(4, "#%PAM-1.0\n# This file is auto-ge"..., 4096) = 692
  162. 16 open("/lib64/security/pam_env.so", O_RDONLY) = 5
  163. 16 read(5, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\300\r\0\0\0\0\0\0"..., 832) = 832
  164. 16 fstat(5, {st_mode=S_IFREG|0755, st_size=18592, ...}) = 0
  165. 16 mmap(NULL, 2113776, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 5, 0) = 0x7f07a311c000
  166. 16 mprotect(0x7f07a3120000, 2093056, PROT_NONE) = 0
  167. 16 mmap(0x7f07a331f000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 5, 0x3000) = 0x7f07a331f000
  168. 16 close(5) = 0
  169. 16 mprotect(0x7f07a331f000, 4096, PROT_READ) = 0
  170. 16 open("/lib64/security/pam_unix.so", O_RDONLY) = 5
  171. 16 read(5, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\240&\0\0\0\0\0\0"..., 832) = 832
  172. 16 fstat(5, {st_mode=S_IFREG|0755, st_size=51960, ...}) = 0
  173. 16 mmap(NULL, 2196352, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 5, 0) = 0x7f07a2f03000
  174. 16 mprotect(0x7f07a2f0f000, 2093056, PROT_NONE) = 0
  175. 16 mmap(0x7f07a310e000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 5, 0xb000) = 0x7f07a310e000
  176. 16 mmap(0x7f07a3110000, 45952, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x7f07a3110000
  177. 16 close(5) = 0
  178. 16 open("/etc/ld.so.cache", O_RDONLY) = 5
  179. 16 fstat(5, {st_mode=S_IFREG|0644, st_size=12780, ...}) = 0
  180. 16 mmap(NULL, 12780, PROT_READ, MAP_PRIVATE, 5, 0) = 0x7f07a4e97000
  181. 16 close(5) = 0
  182. 16 open("/lib64/libnsl.so.1", O_RDONLY) = 5
  183. 16 read(5, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0p@\0\0\0\0\0\0"..., 832) = 832
  184. 16 fstat(5, {st_mode=S_IFREG|0755, st_size=113432, ...}) = 0
  185. 16 mmap(NULL, 2198192, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 5, 0) = 0x7f07a2cea000
  186. 16 mprotect(0x7f07a2d00000, 2093056, PROT_NONE) = 0
  187. 16 mmap(0x7f07a2eff000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 5, 0x15000) = 0x7f07a2eff000
  188. 16 mmap(0x7f07a2f01000, 6832, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x7f07a2f01000
  189. 16 close(5) = 0
  190. 16 mprotect(0x7f07a2eff000, 4096, PROT_READ) = 0
  191. 16 mprotect(0x7f07a310e000, 4096, PROT_READ) = 0
  192. 16 munmap(0x7f07a4e97000, 12780) = 0
  193. 16 open("/lib64/security/pam_deny.so", O_RDONLY) = 5
  194. 16 read(5, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0000\5\0\0\0\0\0\0"..., 832) = 832
  195. 16 fstat(5, {st_mode=S_IFREG|0755, st_size=5952, ...}) = 0
  196. 16 mmap(NULL, 2101272, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 5, 0) = 0x7f07a2ae8000
  197. 16 mprotect(0x7f07a2ae9000, 2093056, PROT_NONE) = 0
  198. 16 mmap(0x7f07a2ce8000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 5, 0) = 0x7f07a2ce8000
  199. 16 close(5) = 0
  200. 16 mprotect(0x7f07a2ce8000, 4096, PROT_READ) = 0
  201. 16 read(4, "", 4096) = 0
  202. 16 close(4) = 0
  203. 16 munmap(0x7f07a4ea2000, 4096) = 0
  204. 16 open("/lib64/security/pam_succeed_if.so", O_RDONLY) = 4
  205. 16 read(4, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\340\v\0\0\0\0\0\0"..., 832) = 832
  206. 16 fstat(4, {st_mode=S_IFREG|0755, st_size=14384, ...}) = 0
  207. 16 mmap(NULL, 2109624, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 4, 0) = 0x7f07a28e4000
  208. 16 mprotect(0x7f07a28e7000, 2093056, PROT_NONE) = 0
  209. 16 mmap(0x7f07a2ae6000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 4, 0x2000) = 0x7f07a2ae6000
  210. 16 close(4) = 0
  211. 16 mprotect(0x7f07a2ae6000, 4096, PROT_READ) = 0
  212. 16 open("/etc/pam.d/system-auth", O_RDONLY) = 4
  213. 16 fstat(4, {st_mode=S_IFREG|0644, st_size=692, ...}) = 0
  214. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea2000
  215. 16 read(4, "#%PAM-1.0\n# This file is auto-ge"..., 4096) = 692
  216. 16 read(4, "", 4096) = 0
  217. 16 close(4) = 0
  218. 16 munmap(0x7f07a4ea2000, 4096) = 0
  219. 16 open("/etc/pam.d/system-auth", O_RDONLY) = 4
  220. 16 fstat(4, {st_mode=S_IFREG|0644, st_size=692, ...}) = 0
  221. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea2000
  222. 16 read(4, "#%PAM-1.0\n# This file is auto-ge"..., 4096) = 692
  223. 16 open("/lib64/security/pam_cracklib.so", O_RDONLY) = 5
  224. 16 read(5, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\300\f\0\0\0\0\0\0"..., 832) = 832
  225. 16 fstat(5, {st_mode=S_IFREG|0755, st_size=14432, ...}) = 0
  226. 16 mmap(NULL, 2109672, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 5, 0) = 0x7f07a26e0000
  227. 16 mprotect(0x7f07a26e3000, 2093056, PROT_NONE) = 0
  228. 16 mmap(0x7f07a28e2000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 5, 0x2000) = 0x7f07a28e2000
  229. 16 close(5) = 0
  230. 16 open("/etc/ld.so.cache", O_RDONLY) = 5
  231. 16 fstat(5, {st_mode=S_IFREG|0644, st_size=12780, ...}) = 0
  232. 16 mmap(NULL, 12780, PROT_READ, MAP_PRIVATE, 5, 0) = 0x7f07a4e97000
  233. 16 close(5) = 0
  234. 16 open("/usr/lib64/libcrack.so.2", O_RDONLY) = 5
  235. 16 read(5, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0p8\0\0\0\0\0\0"..., 832) = 832
  236. 16 fstat(5, {st_mode=S_IFREG|0755, st_size=38712, ...}) = 0
  237. 16 mmap(NULL, 2148896, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 5, 0) = 0x7f07a24d3000
  238. 16 mprotect(0x7f07a24db000, 2097152, PROT_NONE) = 0
  239. 16 mmap(0x7f07a26db000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 5, 0x8000) = 0x7f07a26db000
  240. 16 mmap(0x7f07a26dc000, 14880, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x7f07a26dc000
  241. 16 close(5) = 0
  242. 16 mprotect(0x7f07a28e2000, 4096, PROT_READ) = 0
  243. 16 munmap(0x7f07a4e97000, 12780) = 0
  244. 16 read(4, "", 4096) = 0
  245. 16 close(4) = 0
  246. 16 munmap(0x7f07a4ea2000, 4096) = 0
  247. 16 open("/etc/pam.d/system-auth", O_RDONLY) = 4
  248. 16 fstat(4, {st_mode=S_IFREG|0644, st_size=692, ...}) = 0
  249. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea2000
  250. 16 read(4, "#%PAM-1.0\n# This file is auto-ge"..., 4096) = 692
  251. 16 open("/lib64/security/pam_keyinit.so", O_RDONLY) = 5
  252. 16 read(5, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0`\10\0\0\0\0\0\0"..., 832) = 832
  253. 16 fstat(5, {st_mode=S_IFREG|0755, st_size=10224, ...}) = 0
  254. 16 mmap(NULL, 2105488, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 5, 0) = 0x7f07a22d0000
  255. 16 mprotect(0x7f07a22d2000, 2093056, PROT_NONE) = 0
  256. 16 mmap(0x7f07a24d1000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 5, 0x1000) = 0x7f07a24d1000
  257. 16 close(5) = 0
  258. 16 mprotect(0x7f07a24d1000, 4096, PROT_READ) = 0
  259. 16 open("/lib64/security/pam_limits.so", O_RDONLY) = 5
  260. 16 read(5, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\320\20\0\0\0\0\0\0"..., 832) = 832
  261. 16 fstat(5, {st_mode=S_IFREG|0755, st_size=18600, ...}) = 0
  262. 16 mmap(NULL, 2113848, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 5, 0) = 0x7f07a20cb000
  263. 16 mprotect(0x7f07a20cf000, 2093056, PROT_NONE) = 0
  264. 16 mmap(0x7f07a22ce000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 5, 0x3000) = 0x7f07a22ce000
  265. 16 close(5) = 0
  266. 16 mprotect(0x7f07a22ce000, 4096, PROT_READ) = 0
  267. 16 read(4, "", 4096) = 0
  268. 16 close(4) = 0
  269. 16 munmap(0x7f07a4ea2000, 4096) = 0
  270. 16 open("/lib64/security/pam_xauth.so", O_RDONLY) = 4
  271. 16 read(4, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0P\30\0\0\0\0\0\0"..., 832) = 832
  272. 16 fstat(4, {st_mode=S_IFREG|0755, st_size=22920, ...}) = 0
  273. 16 mmap(NULL, 2118168, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 4, 0) = 0x7f07a1ec5000
  274. 16 mprotect(0x7f07a1ec9000, 2097152, PROT_NONE) = 0
  275. 16 mmap(0x7f07a20c9000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 4, 0x4000) = 0x7f07a20c9000
  276. 16 close(4) = 0
  277. 16 mprotect(0x7f07a20c9000, 4096, PROT_READ) = 0
  278. 16 read(3, "", 4096) = 0
  279. 16 close(3) = 0
  280. 16 munmap(0x7f07a4ea3000, 4096) = 0
  281. 16 open("/etc/pam.d/other", O_RDONLY) = 3
  282. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=154, ...}) = 0
  283. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  284. 16 read(3, "#%PAM-1.0\nauth required "..., 4096) = 154
  285. 16 read(3, "", 4096) = 0
  286. 16 close(3) = 0
  287. 16 munmap(0x7f07a4ea3000, 4096) = 0
  288. 16 getuid() = 0
  289. 16 getuid() = 0
  290. 16 open("/etc/passwd", O_RDONLY|O_CLOEXEC) = 3
  291. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=838, ...}) = 0
  292. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  293. 16 read(3, "root:x:0:0:root:/root:/bin/bash\n"..., 4096) = 838
  294. 16 close(3) = 0
  295. 16 munmap(0x7f07a4ea3000, 4096) = 0
  296. 16 ioctl(0, SNDCTL_TMR_TIMEBASE or TCGETS, {B38400 opost isig icanon echo ...}) = 0
  297. 16 readlink("/proc/self/fd/0", "/1", 4095) = 2
  298. 16 getuid() = 0
  299. 16 gettid() = 16
  300. 16 open("/proc/self/task/16/attr/current", O_RDONLY) = 3
  301. 16 read(3, "unconfined_u:unconfined_r:unconf"..., 4095) = 54
  302. 16 close(3) = 0
  303. 16 gettid() = 16
  304. 16 open("/proc/self/task/16/attr/current", O_RDONLY) = 3
  305. 16 read(3, "unconfined_u:unconfined_r:unconf"..., 4095) = 54
  306. 16 close(3) = 0
  307. 16 gettid() = 16
  308. 16 open("/proc/self/task/16/attr/prev", O_RDONLY) = 3
  309. 16 read(3, "unconfined_u:unconfined_r:unconf"..., 4095) = 54
  310. 16 close(3) = 0
  311. 16 stat("/host/selinux/class", {st_mode=S_IFDIR|0555, st_size=0, ...}) = 0
  312. 16 open("/host/selinux/class/passwd/index", O_RDONLY) = 3
  313. 16 read(3, "30", 19) = 2
  314. 16 close(3) = 0
  315. 16 open("/host/selinux/class/passwd/perms", O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC) = 3
  316. 16 fcntl(3, F_GETFD) = 0x1 (flags FD_CLOEXEC)
  317. 16 getdents(3, /* 7 entries */, 32768) = 192
  318. 16 stat("/host/selinux/class/passwd/perms/.", {st_mode=S_IFDIR|0555, st_size=0, ...}) = 0
  319. 16 stat("/host/selinux/class/passwd/perms/..", {st_mode=S_IFDIR|0555, st_size=0, ...}) = 0
  320. 16 stat("/host/selinux/class/passwd/perms/crontab", {st_mode=S_IFREG|0444, st_size=0, ...}) = 0
  321. 16 open("/host/selinux/class/passwd/perms/crontab", O_RDONLY) = 4
  322. 16 read(4, "5", 19) = 1
  323. 16 close(4) = 0
  324. 16 stat("/host/selinux/class/passwd/perms/rootok", {st_mode=S_IFREG|0444, st_size=0, ...}) = 0
  325. 16 open("/host/selinux/class/passwd/perms/rootok", O_RDONLY) = 4
  326. 16 read(4, "4", 19) = 1
  327. 16 close(4) = 0
  328. 16 stat("/host/selinux/class/passwd/perms/chsh", {st_mode=S_IFREG|0444, st_size=0, ...}) = 0
  329. 16 open("/host/selinux/class/passwd/perms/chsh", O_RDONLY) = 4
  330. 16 read(4, "3", 19) = 1
  331. 16 close(4) = 0
  332. 16 stat("/host/selinux/class/passwd/perms/chfn", {st_mode=S_IFREG|0444, st_size=0, ...}) = 0
  333. 16 open("/host/selinux/class/passwd/perms/chfn", O_RDONLY) = 4
  334. 16 read(4, "2", 19) = 1
  335. 16 close(4) = 0
  336. 16 stat("/host/selinux/class/passwd/perms/passwd", {st_mode=S_IFREG|0444, st_size=0, ...}) = 0
  337. 16 open("/host/selinux/class/passwd/perms/passwd", O_RDONLY) = 4
  338. 16 read(4, "1", 19) = 1
  339. 16 close(4) = 0
  340. 16 getdents(3, /* 0 entries */, 32768) = 0
  341. 16 close(3) = 0
  342. 16 open("/host/selinux/access", O_RDWR) = 3
  343. 16 write(3, "unconfined_u:unconfined_r:unconf"..., 112) = 112
  344. 16 read(3, "1f ffffffff 0 ffffffff 1 0", 4095) = 26
  345. 16 close(3) = 0
  346. 16 socket(PF_NETLINK, SOCK_RAW, 9) = 3
  347. 16 fcntl(3, F_SETFD, FD_CLOEXEC) = 0
  348. 16 readlink("/proc/self/exe", "/bin/su", 4096) = 7
  349. 16 sendto(3, "p\0\0\0L\4\5\0\1\0\0\0\0\0\0\0op=PAM:authentic"..., 112, 0, {sa_family=AF_NETLINK, pid=0, groups=00000000}, 12) = 112
  350. 16 poll([{fd=3, events=POLLIN}], 1, 500) = 1 ([{fd=3, revents=POLLIN}])
  351. 16 recvfrom(3, "$\0\0\0\2\0\0\0\1\0\0\0z\23\0\0\0\0\0\0p\0\0\0L\4\5\0\1\0\0\0"..., 8988, MSG_PEEK|MSG_DONTWAIT, {sa_family=AF_NETLINK, pid=0, groups=00000000}, [12]) = 36
  352. 16 recvfrom(3, "$\0\0\0\2\0\0\0\1\0\0\0z\23\0\0\0\0\0\0p\0\0\0L\4\5\0\1\0\0\0"..., 8988, MSG_DONTWAIT, {sa_family=AF_NETLINK, pid=0, groups=00000000}, [12]) = 36
  353. 16 close(3) = 0
  354. 16 getuid() = 0
  355. 16 open("/etc/passwd", O_RDONLY|O_CLOEXEC) = 3
  356. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=838, ...}) = 0
  357. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  358. 16 read(3, "root:x:0:0:root:/root:/bin/bash\n"..., 4096) = 838
  359. 16 close(3) = 0
  360. 16 munmap(0x7f07a4ea3000, 4096) = 0
  361. 16 socket(PF_NETLINK, SOCK_RAW, 9) = 3
  362. 16 fcntl(3, F_SETFD, FD_CLOEXEC) = 0
  363. 16 sendto(3, "l\0\0\0M\4\5\0\2\0\0\0\0\0\0\0op=PAM:accountin"..., 108, 0, {sa_family=AF_NETLINK, pid=0, groups=00000000}, 12) = 108
  364. 16 poll([{fd=3, events=POLLIN}], 1, 500) = 1 ([{fd=3, revents=POLLIN}])
  365. 16 recvfrom(3, "$\0\0\0\2\0\0\0\2\0\0\0z\23\0\0\0\0\0\0l\0\0\0M\4\5\0\2\0\0\0"..., 8988, MSG_PEEK|MSG_DONTWAIT, {sa_family=AF_NETLINK, pid=0, groups=00000000}, [12]) = 36
  366. 16 recvfrom(3, "$\0\0\0\2\0\0\0\2\0\0\0z\23\0\0\0\0\0\0l\0\0\0M\4\5\0\2\0\0\0"..., 8988, MSG_DONTWAIT, {sa_family=AF_NETLINK, pid=0, groups=00000000}, [12]) = 36
  367. 16 close(3) = 0
  368. 16 open("/etc/passwd", O_RDONLY|O_CLOEXEC) = 3
  369. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=838, ...}) = 0
  370. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  371. 16 read(3, "root:x:0:0:root:/root:/bin/bash\n"..., 4096) = 838
  372. 16 close(3) = 0
  373. 16 munmap(0x7f07a4ea3000, 4096) = 0
  374. 16 getuid() = 0
  375. 16 getgid() = 0
  376. 16 setregid(10000, 4294967295) = 0
  377. 16 setreuid(10000, 4294967295) = 0
  378. 16 keyctl(0, 0xfffffffd, 0, 0x2710, 0) = 967538307
  379. 16 keyctl(0, 0xfffffffb, 0, 0, 0) = 331670018
  380. 16 setreuid(0, 4294967295) = 0
  381. 16 setregid(0, 4294967295) = 0
  382. 16 open("/etc/passwd", O_RDONLY|O_CLOEXEC) = 3
  383. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=838, ...}) = 0
  384. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  385. 16 read(3, "root:x:0:0:root:/root:/bin/bash\n"..., 4096) = 838
  386. 16 close(3) = 0
  387. 16 munmap(0x7f07a4ea3000, 4096) = 0
  388. 16 getrlimit(RLIMIT_CPU, {rlim_cur=RLIM_INFINITY, rlim_max=RLIM_INFINITY}) = 0
  389. 16 getrlimit(RLIMIT_FSIZE, {rlim_cur=RLIM_INFINITY, rlim_max=RLIM_INFINITY}) = 0
  390. 16 getrlimit(RLIMIT_DATA, {rlim_cur=RLIM_INFINITY, rlim_max=RLIM_INFINITY}) = 0
  391. 16 getrlimit(RLIMIT_STACK, {rlim_cur=10240*1024, rlim_max=RLIM_INFINITY}) = 0
  392. 16 getrlimit(RLIMIT_CORE, {rlim_cur=0, rlim_max=0}) = 0
  393. 16 getrlimit(RLIMIT_RSS, {rlim_cur=RLIM_INFINITY, rlim_max=RLIM_INFINITY}) = 0
  394. 16 getrlimit(RLIMIT_NPROC, {rlim_cur=62820, rlim_max=62820}) = 0
  395. 16 getrlimit(RLIMIT_NOFILE, {rlim_cur=1024, rlim_max=4*1024}) = 0
  396. 16 getrlimit(RLIMIT_MEMLOCK, {rlim_cur=64*1024, rlim_max=64*1024}) = 0
  397. 16 getrlimit(RLIMIT_AS, {rlim_cur=RLIM_INFINITY, rlim_max=RLIM_INFINITY}) = 0
  398. 16 getrlimit(RLIMIT_LOCKS, {rlim_cur=RLIM_INFINITY, rlim_max=RLIM_INFINITY}) = 0
  399. 16 getrlimit(RLIMIT_SIGPENDING, {rlim_cur=62820, rlim_max=62820}) = 0
  400. 16 getrlimit(RLIMIT_MSGQUEUE, {rlim_cur=800*1024, rlim_max=800*1024}) = 0
  401. 16 getrlimit(RLIMIT_NICE, {rlim_cur=0, rlim_max=0}) = 0
  402. 16 getrlimit(RLIMIT_RTPRIO, {rlim_cur=0, rlim_max=0}) = 0
  403. 16 getpriority(PRIO_PROCESS, 0) = 20
  404. 16 open("/etc/security/limits.conf", O_RDONLY) = 3
  405. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=1835, ...}) = 0
  406. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  407. 16 read(3, "# /etc/security/limits.conf\n#\n#E"..., 4096) = 1835
  408. 16 read(3, "", 4096) = 0
  409. 16 close(3) = 0
  410. 16 munmap(0x7f07a4ea3000, 4096) = 0
  411. 16 open("/etc/security/limits.d", O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC) = 3
  412. 16 getdents(3, /* 3 entries */, 32768) = 88
  413. 16 open("/usr/lib64/gconv/gconv-modules.cache", O_RDONLY) = 4
  414. 16 fstat(4, {st_mode=S_IFREG|0644, st_size=26060, ...}) = 0
  415. 16 mmap(NULL, 26060, PROT_READ, MAP_SHARED, 4, 0) = 0x7f07a4e94000
  416. 16 close(4) = 0
  417. 16 getdents(3, /* 0 entries */, 32768) = 0
  418. 16 close(3) = 0
  419. 16 open("/etc/security/limits.d/90-nproc.conf", O_RDONLY) = 3
  420. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=191, ...}) = 0
  421. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  422. 16 read(3, "# Default limit for number of us"..., 4096) = 191
  423. 16 read(3, "", 4096) = 0
  424. 16 close(3) = 0
  425. 16 munmap(0x7f07a4ea3000, 4096) = 0
  426. 16 setrlimit(RLIMIT_NPROC, {rlim_cur=1024, rlim_max=62820}) = 0
  427. 16 setpriority(PRIO_PROCESS, 0, 0) = 0
  428. 16 getuid() = 0
  429. 16 open("/etc/passwd", O_RDONLY|O_CLOEXEC) = 3
  430. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=838, ...}) = 0
  431. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  432. 16 read(3, "root:x:0:0:root:/root:/bin/bash\n"..., 4096) = 838
  433. 16 close(3) = 0
  434. 16 munmap(0x7f07a4ea3000, 4096) = 0
  435. 16 getuid() = 0
  436. 16 access("/var/run/utmpx", F_OK) = -1 ENOENT (No such file or directory)
  437. 16 open("/var/run/utmp", O_RDONLY|O_CLOEXEC) = 3
  438. 16 lseek(3, 0, SEEK_SET) = 0
  439. 16 alarm(0) = 0
  440. 16 rt_sigaction(SIGALRM, {0x7f07a46045e0, [], SA_RESTORER, 0x7f07a45126a0}, {SIG_DFL, [], 0}, 8) = 0
  441. 16 alarm(10) = 0
  442. 16 fcntl(3, F_SETLKW, {type=F_RDLCK, whence=SEEK_SET, start=0, len=0}) = 0
  443. 16 read(3, "", 384) = 0
  444. 16 fcntl(3, F_SETLKW, {type=F_UNLCK, whence=SEEK_SET, start=0, len=0}) = 0
  445. 16 alarm(0) = 10
  446. 16 rt_sigaction(SIGALRM, {SIG_DFL, [], SA_RESTORER, 0x7f07a45126a0}, NULL, 8) = 0
  447. 16 close(3) = 0
  448. 16 getuid() = 0
  449. 16 open("/etc/localtime", O_RDONLY) = 3
  450. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=118, ...}) = 0
  451. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=118, ...}) = 0
  452. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  453. 16 read(3, "TZif2\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\1\0\0\0\1\0\0\0\0"..., 4096) = 118
  454. 16 lseek(3, -62, SEEK_CUR) = 56
  455. 16 read(3, "TZif2\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\1\0\0\0\1\0\0\0\0"..., 4096) = 62
  456. 16 close(3) = 0
  457. 16 munmap(0x7f07a4ea3000, 4096) = 0
  458. 16 socket(PF_FILE, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 3
  459. 16 connect(3, {sa_family=AF_FILE, path="/dev/log"}, 110) = -1 ENOENT (No such file or directory)
  460. 16 close(3) = 0
  461. 16 access("/usr/X11R6/bin/xauth", X_OK) = -1 ENOENT (No such file or directory)
  462. 16 access("/usr/bin/xauth", X_OK) = -1 ENOENT (No such file or directory)
  463. 16 access("/usr/bin/X11/xauth", X_OK) = -1 ENOENT (No such file or directory)
  464. 16 socket(PF_NETLINK, SOCK_RAW, 9) = 3
  465. 16 fcntl(3, F_SETFD, FD_CLOEXEC) = 0
  466. 16 sendto(3, "l\0\0\0Q\4\5\0\3\0\0\0\0\0\0\0op=PAM:session_o"..., 108, 0, {sa_family=AF_NETLINK, pid=0, groups=00000000}, 12) = 108
  467. 16 poll([{fd=3, events=POLLIN}], 1, 500) = 1 ([{fd=3, revents=POLLIN}])
  468. 16 recvfrom(3, "$\0\0\0\2\0\0\0\3\0\0\0z\23\0\0\0\0\0\0l\0\0\0Q\4\5\0\3\0\0\0"..., 8988, MSG_PEEK|MSG_DONTWAIT, {sa_family=AF_NETLINK, pid=0, groups=00000000}, [12]) = 36
  469. 16 recvfrom(3, "$\0\0\0\2\0\0\0\3\0\0\0z\23\0\0\0\0\0\0l\0\0\0Q\4\5\0\3\0\0\0"..., 8988, MSG_DONTWAIT, {sa_family=AF_NETLINK, pid=0, groups=00000000}, [12]) = 36
  470. 16 close(3) = 0
  471. 16 socket(PF_NETLINK, SOCK_RAW, 9) = 3
  472. 16 fcntl(3, F_SETFD, FD_CLOEXEC) = 0
  473. 16 sendto(3, "h\0\0\0O\4\5\0\4\0\0\0\0\0\0\0op=PAM:setcred a"..., 104, 0, {sa_family=AF_NETLINK, pid=0, groups=00000000}, 12) = 104
  474. 16 poll([{fd=3, events=POLLIN}], 1, 500) = 1 ([{fd=3, revents=POLLIN}])
  475. 16 recvfrom(3, "$\0\0\0\2\0\0\0\4\0\0\0z\23\0\0\0\0\0\0h\0\0\0O\4\5\0\4\0\0\0"..., 8988, MSG_PEEK|MSG_DONTWAIT, {sa_family=AF_NETLINK, pid=0, groups=00000000}, [12]) = 36
  476. 16 recvfrom(3, "$\0\0\0\2\0\0\0\4\0\0\0z\23\0\0\0\0\0\0h\0\0\0O\4\5\0\4\0\0\0"..., 8988, MSG_DONTWAIT, {sa_family=AF_NETLINK, pid=0, groups=00000000}, [12]) = 36
  477. 16 close(3) = 0
  478. 16 clone(child_stack=0, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x7f07a4e9c9d0) = 17
  479. 16 rt_sigprocmask(SIG_BLOCK, ~[RTMIN RT_1], <unfinished ...>
  480. 17 open("/proc/sys/kernel/ngroups_max", O_RDONLY <unfinished ...>
  481. 16 <... rt_sigprocmask resumed> NULL, 8) = 0
  482. 16 rt_sigaction(SIGTERM, {0x7f07a4eaa390, [], SA_RESTORER, 0x7f07a45126a0}, <unfinished ...>
  483. 17 <... open resumed> ) = 3
  484. 16 <... rt_sigaction resumed> {SIG_DFL, [], 0}, 8) = 0
  485. 17 read(3, <unfinished ...>
  486. 16 rt_sigprocmask(SIG_UNBLOCK, [ALRM TERM], <unfinished ...>
  487. 17 <... read resumed> "65536\n", 31) = 6
  488. 16 <... rt_sigprocmask resumed> NULL, 8) = 0
  489. 17 close(3 <unfinished ...>
  490. 16 wait4(17, <unfinished ...>
  491. 17 <... close resumed> ) = 0
  492. 17 socket(PF_FILE, SOCK_STREAM|SOCK_CLOEXEC|SOCK_NONBLOCK, 0) = 3
  493. 17 connect(3, {sa_family=AF_FILE, path="/var/run/nscd/socket"}, 110) = -1 ENOENT (No such file or directory)
  494. 17 close(3) = 0
  495. 17 socket(PF_FILE, SOCK_STREAM|SOCK_CLOEXEC|SOCK_NONBLOCK, 0) = 3
  496. 17 connect(3, {sa_family=AF_FILE, path="/var/run/nscd/socket"}, 110) = -1 ENOENT (No such file or directory)
  497. 17 close(3) = 0
  498. 17 open("/etc/group", O_RDONLY|O_CLOEXEC) = 3
  499. 17 fstat(3, {st_mode=S_IFREG|0644, st_size=421, ...}) = 0
  500. 17 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  501. 17 lseek(3, 0, SEEK_CUR) = 0
  502. 17 read(3, "root:x:0:\nbin:x:1:bin,daemon\ndae"..., 4096) = 421
  503. 17 read(3, "", 4096) = 0
  504. 17 close(3) = 0
  505. 17 munmap(0x7f07a4ea3000, 4096) = 0
  506. 17 setgroups(1, [10000]) = 0
  507. 17 setgid(10000) = 0
  508. 17 setuid(10000) = 0
  509. 17 munmap(0x7f07a3540000, 2101304) = 0
  510. 17 munmap(0x7f07a311c000, 2113776) = 0
  511. 17 munmap(0x7f07a2f03000, 2196352) = 0
  512. 17 munmap(0x7f07a2cea000, 2198192) = 0
  513. 17 munmap(0x7f07a2ae8000, 2101272) = 0
  514. 17 munmap(0x7f07a28e4000, 2109624) = 0
  515. 17 munmap(0x7f07a26e0000, 2109672) = 0
  516. 17 munmap(0x7f07a24d3000, 2148896) = 0
  517. 17 munmap(0x7f07a22d0000, 2105488) = 0
  518. 17 munmap(0x7f07a20cb000, 2113848) = 0
  519. 17 munmap(0x7f07a1ec5000, 2118168) = 0
  520. 17 munmap(0x7f07a3321000, 2221912) = 0
  521. 17 execve("/bin/bash", ["bash"], [/* 15 vars */]) = -1 EACCES (Permission denied)
  522. 17 write(2, "su: ", 4) = 4
  523. 17 write(2, "/bin/bash", 9) = 9
  524. 17 open("/usr/share/locale/locale.alias", O_RDONLY) = -1 EACCES (Permission denied)
  525. 17 open("/usr/share/locale/en_US.UTF-8/LC_MESSAGES/libc.mo", O_RDONLY) = -1 EACCES (Permission denied)
  526. 17 open("/usr/share/locale/en_US.utf8/LC_MESSAGES/libc.mo", O_RDONLY) = -1 EACCES (Permission denied)
  527. 17 open("/usr/share/locale/en_US/LC_MESSAGES/libc.mo", O_RDONLY) = -1 EACCES (Permission denied)
  528. 17 open("/usr/share/locale/en.UTF-8/LC_MESSAGES/libc.mo", O_RDONLY) = -1 EACCES (Permission denied)
  529. 17 open("/usr/share/locale/en.utf8/LC_MESSAGES/libc.mo", O_RDONLY) = -1 EACCES (Permission denied)
  530. 17 open("/usr/share/locale/en/LC_MESSAGES/libc.mo", O_RDONLY) = -1 EACCES (Permission denied)
  531. 17 write(2, ": Permission denied", 19) = 19
  532. 17 write(2, "\n", 1) = 1
  533. 17 close(1) = 0
  534. 17 close(2) = 0
  535. 17 exit_group(126) = ?
  536. 16 <... wait4 resumed> [{WIFEXITED(s) && WEXITSTATUS(s) == 126}], WSTOPPED, NULL) = 17
  537. 16 socket(PF_NETLINK, SOCK_RAW, 9) = 3
  538. 16 fcntl(3, F_SETFD, FD_CLOEXEC) = 0
  539. 16 sendto(3, "h\0\0\0P\4\5\0\5\0\0\0\0\0\0\0op=PAM:setcred a"..., 104, 0, {sa_family=AF_NETLINK, pid=0, groups=00000000}, 12) = 104
  540. 16 poll([{fd=3, events=POLLIN}], 1, 500) = 1 ([{fd=3, revents=POLLIN}])
  541. 16 recvfrom(3, "$\0\0\0\2\0\0\0\5\0\0\0z\23\0\0\0\0\0\0h\0\0\0P\4\5\0\5\0\0\0"..., 8988, MSG_PEEK|MSG_DONTWAIT, {sa_family=AF_NETLINK, pid=0, groups=00000000}, [12]) = 36
  542. 16 recvfrom(3, "$\0\0\0\2\0\0\0\5\0\0\0z\23\0\0\0\0\0\0h\0\0\0P\4\5\0\5\0\0\0"..., 8988, MSG_DONTWAIT, {sa_family=AF_NETLINK, pid=0, groups=00000000}, [12]) = 36
  543. 16 close(3) = 0
  544. 16 getuid() = 0
  545. 16 open("/etc/passwd", O_RDONLY|O_CLOEXEC) = 3
  546. 16 fstat(3, {st_mode=S_IFREG|0644, st_size=838, ...}) = 0
  547. 16 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f07a4ea3000
  548. 16 read(3, "root:x:0:0:root:/root:/bin/bash\n"..., 4096) = 838
  549. 16 close(3) = 0
  550. 16 munmap(0x7f07a4ea3000, 4096) = 0
  551. 16 getuid() = 0
  552. 16 socket(PF_FILE, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 3
  553. 16 connect(3, {sa_family=AF_FILE, path="/dev/log"}, 110) = -1 ENOENT (No such file or directory)
  554. 16 close(3) = 0
  555. 16 socket(PF_NETLINK, SOCK_RAW, 9) = 3
  556. 16 fcntl(3, F_SETFD, FD_CLOEXEC) = 0
  557. 16 sendto(3, "p\0\0\0R\4\5\0\6\0\0\0\0\0\0\0op=PAM:session_c"..., 112, 0, {sa_family=AF_NETLINK, pid=0, groups=00000000}, 12) = 112
  558. 16 poll([{fd=3, events=POLLIN}], 1, 500) = 1 ([{fd=3, revents=POLLIN}])
  559. 16 recvfrom(3, "$\0\0\0\2\0\0\0\6\0\0\0z\23\0\0\0\0\0\0p\0\0\0R\4\5\0\6\0\0\0"..., 8988, MSG_PEEK|MSG_DONTWAIT, {sa_family=AF_NETLINK, pid=0, groups=00000000}, [12]) = 36
  560. 16 recvfrom(3, "$\0\0\0\2\0\0\0\6\0\0\0z\23\0\0\0\0\0\0p\0\0\0R\4\5\0\6\0\0\0"..., 8988, MSG_DONTWAIT, {sa_family=AF_NETLINK, pid=0, groups=00000000}, [12]) = 36
  561. 16 close(3) = 0
  562. 16 munmap(0x7f07a3540000, 2101304) = 0
  563. 16 munmap(0x7f07a311c000, 2113776) = 0
  564. 16 munmap(0x7f07a2f03000, 2196352) = 0
  565. 16 munmap(0x7f07a2cea000, 2198192) = 0
  566. 16 munmap(0x7f07a2ae8000, 2101272) = 0
  567. 16 munmap(0x7f07a28e4000, 2109624) = 0
  568. 16 munmap(0x7f07a26e0000, 2109672) = 0
  569. 16 munmap(0x7f07a24d3000, 2148896) = 0
  570. 16 munmap(0x7f07a22d0000, 2105488) = 0
  571. 16 munmap(0x7f07a20cb000, 2113848) = 0
  572. 16 munmap(0x7f07a1ec5000, 2118168) = 0
  573. 16 munmap(0x7f07a3321000, 2221912) = 0
  574. 16 close(1) = 0
  575. 16 close(2) = 0
  576. 16 exit_group(126) = ?
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!