| View previous topic :: View next topic |
| Author |
Message |
opentaka
l33t
Joined: 18 Feb 2005
Posts: 840
Location: Japan
|
 Posted: Tue Jul 18, 2006 3:54 am Post subject: TOR - libssl permission error |
 |
|
Problem:
/etc/init.d/tor start
| Code: |
/usr/bin/tor: error while loading shared libraries: libssl.so.0.9.7: cannot open shared object file: Permission denied
|
Tried:
- Setting TOR to run as root in /etc/torrc
- chmod 777ing, chowning, chgrping to tor the libssl.* at /usr/lib64/ and /usr/lib/
- remerging tor, openssl, tsocks, libevent, downgrading tor
- No suspicious entry has been found at /var/log/tor, messages, daemon, syslog
- works if I execute tor directly from root console, still gives me that perm error if I start from init.d script.
Info:
| Code: | Portage 2.1-r1 (default-linux/amd64/2006.0, gcc-4.1.1, glibc-2.3.6-r4, 2.6.17-gentoo-r3 x86_64)
=================================================================
System uname: 2.6.17-gentoo-r3 x86_64 AMD Athlon(tm) 64 Processor 3000+
Gentoo Base System version 1.12.1
app-admin/eselect-compiler: [Not Present]
dev-lang/python: 2.4.2
dev-python/pycrypto: 2.0.1-r5
dev-util/ccache: [Not Present]
dev-util/confcache: [Not Present]
sys-apps/sandbox: 1.2.17
sys-devel/autoconf: 2.13, 2.59-r7
sys-devel/automake: 1.4_p6, 1.5, 1.6.3, 1.7.9-r1, 1.8.5-r3, 1.9.6-r2
sys-devel/binutils: 2.16.1-r3
sys-devel/gcc-config: 1.3.13-r3
sys-devel/libtool: 1.5.22
virtual/os-headers: 2.6.11-r2
ACCEPT_KEYWORDS="amd64"
AUTOCLEAN="yes"
CBUILD="x86_64-pc-linux-gnu"
CFLAGS="-march=athlon64 -O2 -pipe"
CHOST="x86_64-pc-linux-gnu"
CONFIG_PROTECT="/etc /usr/kde/3.5/env /usr/kde/3.5/share/config /usr/kde/3.5/shutdown /usr/share/X11/xkb /usr/share/config"
CONFIG_PROTECT_MASK="/etc/env.d /etc/env.d/java/ /etc/gconf /etc/java-config/vms/ /etc/revdep-rebuild /etc/terminfo"
CXXFLAGS="-march=athlon64 -O2 -pipe"
DISTDIR="/usr/portage/distfiles"
FEATURES="autoconfig distlocks metadata-transfer sandbox sfperms strict"
GENTOO_MIRRORS="http://mirror.averse.net/pub/gentoo/"
MAKEOPTS="-j2"
PKGDIR="/usr/portage/packages"
PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --compress --force --whole-file --delete --delete-after --stats --timeout=180 --exclude='/distfiles' --exclude='/local' --exclude='/packages'"
PORTAGE_TMPDIR="/var/tmp"
PORTDIR="/usr/portage"
PORTDIR_OVERLAY="/usr/local/portage"
SYNC="rsync://rsync.gentoo.org/gentoo-portage"
USE="amd64 X aac alsa avi bash-completion berkdb bitmap-fonts cjk cli crypt cups dlloader dri eds emboss encode ffmpeg flac foomaticdb fortran gif gpm gtk gtk2 hal imlib immqt-bc isdnlog joystick jpeg kde lzw lzw-tiff mad mp3 mpeg ncurses nls nptl nptlonly nvidia ogg oggvorbis opengl pam pcre pdflib perl png pppd python qt qt3 qt4 quicktime readline reflection sdl session spell spl ssl svg tcltk tcpd theora tiff truetype-fonts type1-fonts usb vorbis xinerama xorg xpm xv zlib elibc_glibc input_devices_keyboard input_devices_mouse kernel_linux userland_GNU video_cards_nv video_cards_nvidia video_cards_vesa"
Unset: CTARGET, EMERGE_DEFAULT_OPTS, INSTALL_MASK, LANG, LC_ALL, LDFLAGS, LINGUAS, PORTAGE_RSYNC_EXTRA_OPTS |
| Code: |
* net-misc/tor
Available versions: 0.1.0.14-r1 0.1.0.16 0.1.0.17 0.1.1.20 0.1.1.22
Installed: 0.1.1.22
Homepage: http://tor.eff.org
Description: Anonymizing overlay network for TCP
* dev-libs/openssl
Available versions: -0.9.6m 0.9.7i 0.9.7j *0.9.8a *0.9.8b
Installed: 0.9.7j
Homepage: http://www.openssl.org/
Description: Toolkit for SSL v2/v3 and TLS v1
|
| Code: |
pappie ~ # ls -al /usr/lib64/libssl*
-rw-r--r-- 1 root root 408054 Jul 18 11:48 /usr/lib64/libssl.a
lrwxrwxrwx 1 root root 11 Jul 18 11:48 /usr/lib64/libssl.so -> libssl.so.0
lrwxrwxrwx 1 root root 15 Jul 18 11:48 /usr/lib64/libssl.so.0 -> libssl.so.0.9.7
-r-xr-xr-x 1 root root 222696 Jul 18 11:48 /usr/lib64/libssl.so.0.9.7
pappie ~ # ls -al /usr/lib/libssl*
-rw-r--r-- 1 root root 408054 Jul 18 11:48 /usr/lib/libssl.a
lrwxrwxrwx 1 root root 11 Jul 18 11:48 /usr/lib/libssl.so -> libssl.so.0
lrwxrwxrwx 1 root root 15 Jul 18 11:48 /usr/lib/libssl.so.0 -> libssl.so.0.9.7
-r-xr-xr-x 1 root root 222696 Jul 18 11:48 /usr/lib/libssl.so.0.9.7
|
thanks.
_________________
"Being defeated is often a temporary condition. Giving up is what makes it permanent" - Marilyn vos Savant
|
|
| Back to top |
|
 |
opentaka
l33t
Joined: 18 Feb 2005
Posts: 840
Location: Japan
|
| Posted: Tue Jul 18, 2006 4:02 am Post subject: |
|
|
It seems it worked if I remove from init.d/tor script. Sounds like my box failed to change UID?
_________________
"Being defeated is often a temporary condition. Giving up is what makes it permanent" - Marilyn vos Savant
|
|
| Back to top |
|
|
intgr
Apprentice
Joined: 23 Jun 2004
Posts: 225
Location: Earth, Sol, Milky Way
|
| Posted: Tue Jul 18, 2006 10:47 am Post subject: |
|
|
| opentaka wrote: | | Sounds like my box failed to change UID? |
Sounds to me like your box changed the UID and this unprivileged user doesn't have permissions to dynamically link libssl.so or some such.
I don't have any ideas besides re-emerging dev-libs/openssl. |
|
| Back to top |
|
|
opentaka
l33t
Joined: 18 Feb 2005
Posts: 840
Location: Japan
|
| Posted: Tue Jul 25, 2006 12:49 pm Post subject: |
|
|
| intgr wrote: | | opentaka wrote: | | Sounds like my box failed to change UID? |
Sounds to me like your box changed the UID and this unprivileged user doesn't have permissions to dynamically link libssl.so or some such.
. |
I see, thanks trying to find out why here but I think i'm living okay with current init.d. 
_________________
"Being defeated is often a temporary condition. Giving up is what makes it permanent" - Marilyn vos Savant
|
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
Networking & Security
