Fixing PostgreSQL on the Pwn Plug R3
I'm not a big fan of throwing shade, but I'm also not a big fan of companies that ship broken product. After coming to the conclusion that I didn't have the time to build my own, I bought a Pwn Plug R3 for work. Three days later, one of the guys at my local security meetup spent 40 minutes presenting on the homebrew solution he whipped up after being burned hard by Pwnie Express.
I feel his pain.
That said, what if you, like me, have already purchased the ticket and are now on the figurative ride? How do you get this thing functional? Oh, you thought it would arrive fully functional? You silly idiot.
I'm not sure how you ship a penetration testing device with a broken Metasploit install, but it's probably best that we skip denial and move straight to acceptance.
Not ready yet? OK. Here's what the official documentation has to say about getting Metasploit up and running:
Accessing Metasploit The Metasploit binaries (msfconsole, msfcli, etc.) can be run from any directory. Simply type ‘msfconsole’ to launch the local Metasploit Console. Note: For information on how to use Metasploit, go to http://www.offensive-security.com/metasploitunleashed/Main_Page
The Manual Hates This One Weird Trick!
After installing a few extra tools and taking a quick look to verify that Metasploit was installed, I shipped the device onsite for its first engagement. After attempting to use the search functionality I got the same error I get every time I fire up a new Metasploit instance:
Database not connected or cache not built, using slow search.
This is because I cannot for the life of me remember to start the postgresql service.
I drop out of Metasploit, hammer in
service start postgresql and jump back in.
Weird. I run a
netstat -antp | grep 5432. Nothing. Weirder is that the service shows enabled but exited. Next I check the dependencies:
firstname.lastname@example.org services show red, which may explain why my
postgresql service is having trouble starting.
I'm not sure what the rest of line 9 says, but I'm pretty sure it says something "Not found. Are you sure this silly box shipped with everything it needs to just work?" because
/etc/ssl/privlate/ssl-cert-snakeoil.key is definitely missing.
A quick bit of Googling leads me to the solution:
With key material present,
email@example.com can start, providing just the sort of support that
postgresql needs to, you know, function. A quick
msfdb reinit gets Metasploit operational and I can get back to hacking.