Re: data from kernel.bkbits.net

From: H. Peter Anvin
Date: Mon Nov 24 2003 - 02:38:41 EST

Next message: Peter C. Ndikuwera: "Re: Nick's scheduler v19a"
Previous message: Ihar 'Philips' Filipau: "Re: Do I need kswapd if I don't have swap?"
In reply to: Larry McVoy: "data from kernel.bkbits.net"
Next in thread: Larry McVoy: "Re: data from kernel.bkbits.net"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Larry McVoy wrote:

I've been trying to get all the data off the drives on the machine which
was broken into. I have a feeling that whoever this was was hiding stuff
in the file system because both drives will not fsck clean nor will they
completely read.

I've managed to get most of the data off but not all. Given that I've put
about 3 days into this I'm pretty much done. If someone else wants to look
at the drives I can make them available, let me know. But just reading the
main drive makes the kernel (Fedora 1) kill the tar process as below (it
also managed to wack the system enough that it overwrote the NVRAM with
garbage). It hasn't been a fun weekend.

Looks more like a 3Ware driver bug to me. Hard to say for sure, though.

-hpa

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Peter C. Ndikuwera: "Re: Nick's scheduler v19a"
Previous message: Ihar 'Philips' Filipau: "Re: Do I need kswapd if I don't have swap?"
In reply to: Larry McVoy: "data from kernel.bkbits.net"
Next in thread: Larry McVoy: "Re: data from kernel.bkbits.net"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]