Ò׽ؽØͼÈí¼þ¡¢µ¥Îļþ¡¢Ãâ°²×°¡¢´¿ÂÌÉ«¡¢½ö160KB

linux pamºóÃÅÀ´×Ôejej

http://204.210.154.31/RootKits/
1.°²×°
±àÒëºÃºó£¬cp¹ýÈ¥Îļþ¼´¿É
Óеķ¢Ðа汾£¬»á×Ô¼º×ö×Ô¼ºµÄ·¢Ðаæso£¬ËùÒÔÒ»°ãÀ´Ëµ£¬ÎÒÃǶ¼ÏÈÔÚ×Ô¼º»úÆ÷ÉϱàÒëºÃºóÃÅ´«ÉÏÈ¥
linuxÒ»°ãÀ´Ëµ·¢Ðаæ±È½Ï¶à£¬ËùÒÔÎÒÃÇÔÚ°²×°ºóÃÅ֮ǰ£¬×îºÃÔÚ±¾µØ´î½¨¸öÀàËƵĻ·¾³ÊµÑ飬ÕâÑù²»ÈÝÒ׶ª¼¦
ÎÒÏÖÔÚÒª°²×°ºóÃŵĻúÆ÷ÊÇfc4 ¾ßÌåÄÚºËûɶÏÞÖÆ Ó¦ÓòãºóÞÍÕâµãºÃ£¬ºÇºÇ
°²×°
ÎÒÒѾ­±àÒëºÃÁË
°²×°Íê±Ï£¬ÄǸöso´©ÉÏÈ¥¾ÍÐÐÁË
ÕâÊÇÎÒÃǵĺóÃÅ
×¢Òâ°Épam_unix.soÎļþµÄÊôÐԸĵĺͱðµÄsoÊôÐÔÒ»Ñù¡£ÎÒÕâÀï±¾À´¾ÍÊÇÒ»ÑùµÄ£¬ÎҾͲ»¸ÄÁË¡£
OK£¬°²×°Íê±Ï
ÏÖÔÚ¿´¿´ËûÓÐʲô¹¦ÄÜ
1.¼Ç¼ÃÜÂë
Õâ¸öºóÃÅ¿ÉÒԼǼËùÓеǼsshdµÄÓû§ÃÜÂ룬ÒÔ¼°suµÄÃÜÂ룬ĬÈÏ£¬Ã»¿ªÆô¼Ç¼¹¦ÄÜ¡£¿ªÆô·½·¨ÈçÏÂ
ÎÒÃÇ¿ªÆô
touch /usr/tmp/.suuser ;chmod a+w /usr/tmp/.suuser
ÎÒÃÇÃÜÂë¾Í¼Ç¼ÔÚÕâ¸öÎļþÖÐ
OK£¬ÎÒÃÇÏÖÔڵǼϿ´¿´
ÎÒµÄrootÃÜÂë¾ÍÊÇtest
»¹¿ÉÒԼǼsuÃÜÂë ÎÒÏÖÔڵǼroot ÒòΪÓÐÁ½¸öÈÏÖ¤¹ý³Ì£¬ËùÒÔ¶¼¼Ç¼ÏÂÀ´ÁË
Ëû»¹Ìṩһ¸öµÇ¼ÍòÄÜÃÜÂëµÄ¹¦ÄÜ ÍòÄÜÃÜÂëÊÇpam_test
ÎÒÃÇÊäÈëpam_test
µÇ¼ÁË°É£¬¶øÇÒÍòÄÜÃÜÂë²»»á±»¼Ç¼
»¹ÊÇÔ­À´Á½ÏºÇºÇ
Õâ¸öÍòÄÜÃÜÂë¶ÔÓÚÏÞÖÆrootµÇ¼µÄ»úÆ÷·Ç³£ÓÐÓã¬ÓеĻúÆ÷½ûÖ¹rootµÇ¼£¬ÎÒÃÇʹÓÃpam_testÕâ¸öÃÜÂë¿ÉÒԵǼÈκÎÕË»§
ÊäÈëpam_test È»ºósu ÊäÈëpam_test
¼Ç¼¶¼Ã»±ä£¬ºÇºÇ
ÒÔÉϵÄÑÝʾ¶¼ÊÇÔÚFC4ĬÈÏ°²×°ÏÂ×öµÄ£¬ssh¿ªÆôÁËPAMÑéÖ¤ ,ĬÈÏlinux¶¼ÊÇ¿ªÆôµÄ
Ëû»¹¿ÉÒԵǼftp Ëæ±ãµÄÕË»§£¬ÓÃÍòÄÜÃÜÂë¾Í¿ÉÒÔ
ÎÒ»úÆ÷ûװ£¬¾Í²»ÑÝʾÁË£¬Äã¿ÉÒÔ×Ô¼º²âÊÔ
Íê ¡£¡£¡£
http://www.t00ls.net/thread-5703-1-1.html?jdfwkey=iilmz3


Ïà¹ØÎĵµ£º

linux systemº¯ÊýʹÓÃÏê½â


Ïà¹Øº¯Êý
fork£¬execve£¬waitpid£¬popen
±íÍ·Îļþ
££i nclude<stdlib.h>
¶¨Ò庯Êý
int system(const char * string);
º¯Êý˵Ã÷
system()»áµ÷ÓÃfork()²úÉú×Ó½ø³Ì£¬ÓÉ×Ó½ø³ÌÀ´µ÷ÓÃ/bin/sh-c stringÀ´Ö´ÐвÎÊýstring×Ö·û´®Ëù´ú±íµÄÃüÁ´ËÃü>ÁîÖ´ÐÐÍêºóËæ¼´·µ»ØÔ­µ÷ÓõĽø³Ì¡£ÔÚµ÷ÓÃsystem()ÆÚ¼äSIGCHLD ÐÅ ......

Linuxϵͳµ÷Óà accessº¯ÊýÏê½â

Linuxϵͳµ÷ÓÃ--accessº¯ÊýÏê½â
2007-07-30 23:10
 ¡¾accessϵͳµ÷Óá¿
 
¹¦ÄÜÃèÊö£º
¼ì²éµ÷Óýø³ÌÊÇ·ñ¿ÉÒÔ¶ÔÖ¸¶¨µÄÎļþÖ´ÐÐijÖÖ²Ù×÷¡£
 
Ó÷¨£º
#include <unistd.h>
#include <fcntl.h>
int access(const char *pathname, int mode);  
 
²ÎÊý£º
pathn ......

linux ´´½¨Á¬½ÓÃüÁî ln s ÈíÁ´½Ó

ÕâÊÇlinuxÖÐÒ»¸ö·Ç³£ÖØÒªÃüÁÇë´ó¼ÒÒ»¶¨ÒªÊìϤ¡£ËüµÄ¹¦ÄÜÊÇΪijһ¸öÎļþÔÚÁíÍâÒ»¸öλÖý¨Á¢Ò»¸öͬ²»µÄÁ´½Ó£¬Õâ¸öÃüÁî×î³£ÓõIJÎÊýÊÇ-s,¾ßÌåÓ÷¨ÊÇ£ºln -s Ô´Îļþ Ä¿±êÎļþ¡£
µ±
ÎÒÃÇÐèÒªÔÚ²»Í¬µÄĿ¼£¬Óõ½ÏàͬµÄÎļþʱ£¬ÎÒÃDz»ÐèÒªÔÚÿһ¸öÐèÒªµÄĿ¼Ï¶¼·ÅÒ»¸ö±ØÐëÏàͬµÄÎļþ£¬ÎÒÃÇÖ»ÒªÔÚij¸ö¹Ì¶¨µÄĿ¼£¬·ÅÉϸÃÎļþ£ ......

linux²é¿´Ó²¼þÐÅÏ¢´óÈ«

1, Ö÷°åÐÅÏ¢
.²é¿´Ö÷°åµÄÐòÁкÅ
--------------------------------------------------
#ʹÓÃÃüÁî
dmidecode | grep -i 'serial number'
#²é¿´°å¿¨ÐÅÏ¢
cat /proc/pci
--------------------------------------------------
2, cpuÐÅÏ¢
--------------------------------------------------
#ͨ¹ý/procÎļþϵͳ
1) ......

redhat linux enterprise 5 °²×°Oracle10G

1¡¢ÓÉÓÚorcale10²»Ö§³Ö redhat as5 ÐèÒªÐÞ¸Ä/etc/redhat-realease ½« Red
  Hat Enterprise Linux Server release 5 (Tikanga) ¸ÄΪRed Hat Enterprise
 Linux Server release 4 (Tikanga) £¬°²×°Íê³ÉºóÔÙ½«ÆäÐ޸ĻØÀ´
2¡¢ÐÞ¸Ä/etc/hosts Îļþ½«127.0.0.1¸ÄΪ±¾»úIPµØÖ· ·ñÔòÍøÂç¼ì²éͨ²»¹ý
 
3¡¢¼ì² ......
© 2009 ej38.com All Rights Reserved. ¹ØÓÚE½¡ÍøÁªÏµÎÒÃÇ | Õ¾µãµØͼ | ¸ÓICP±¸09004571ºÅ