$ uname -a Linux bengunn.soft-com.biz 2.6.32-279.11.1.el6.centos.plus.x86_64 #1 SMP Tue Oct 16 22:42:15 UTC 2012 x86_64 x86_64 x86_64 GNU/Linux $ ls -la /boot total 74506 dr-xr-xr-x 5 root root 3072 Sep 23 2011 . dr-xr-xr-x 25 root root 4096 Mar 21 06:57 .. -rw-r--r--. 1 root root 166 Dec 6 2011 .vmlinuz-2.6.32-220.el6.x86_64.hmac -rw-r--r-- 1 root root 183 Oct 17 02:07 .vmlinuz-2.6.32-279.11.1.el6.centos.plus.x86_64.hmac -rw-r--r--. 1 root root 182 Aug 24 2012 .vmlinuz-2.6.32-279.5.2.el6.centos.plus.x86_64.hmac -rw-r--r--. 1 root root 2312369 Dec 6 2011 System.map-2.6.32-220.el6.x86_64 -rw-r--r-- 1 root root 2350374 Oct 17 02:07 System.map-2.6.32-279.11.1.el6.centos.plus.x86_64 -rw-r--r--. 1 root root 2350094 Aug 24 2012 System.map-2.6.32-279.5.2.el6.centos.plus.x86_64 -rw-r--r--. 1 root root 100943 Dec 6 2011 config-2.6.32-220.el6.x86_64 -rw-r--r-- 1 root root 102950 Oct 17 02:07 config-2.6.32-279.11.1.el6.centos.plus.x86_64 -rw-r--r--. 1 root root 102949 Aug 24 2012 config-2.6.32-279.5.2.el6.centos.plus.x86_64 drwxr-xr-x. 3 root root 1024 Sep 11 2012 efi drwxr-xr-x. 2 root root 1024 Nov 3 04:30 grub -rw-r--r--. 1 root root 23700831 Sep 11 2012 initramfs-2.6.32-220.el6.x86_64.img -rw-r--r-- 1 root root 16367081 Nov 3 04:30 initramfs-2.6.32-279.11.1.el6.centos.plus.x86_64.img -rw-r--r--. 1 root root 16374084 Nov 2 21:06 initramfs-2.6.32-279.5.2.el6.centos.plus.x86_64.img drwx------ 2 root root 12288 Sep 10 2012 lost+found -rw-r--r--. 1 root root 171087 Dec 6 2011 symvers-2.6.32-220.el6.x86_64.gz -rw-r--r-- 1 root root 181610 Oct 17 02:08 symvers-2.6.32-279.11.1.el6.centos.plus.x86_64.gz -rw-r--r--. 1 root root 181617 Aug 24 2012 symvers-2.6.32-279.5.2.el6.centos.plus.x86_64.gz -rwxr-xr-x. 1 root root 3938288 Dec 6 2011 vmlinuz-2.6.32-220.el6.x86_64 -rwxr-xr-x 1 root root 4006256 Oct 17 02:07 vmlinuz-2.6.32-279.11.1.el6.centos.plus.x86_64 -rwxr-xr-x. 1 root root 4005872 Aug 24 2012 vmlinuz-2.6.32-279.5.2.el6.centos.plus.x86_64 $ s -la --full-time /lib/lib* ничего $ mount /dev/md2 on / type ext4 (rw,noatime) proc on /proc type proc (rw) sysfs on /sys type sysfs (rw) devpts on /dev/pts type devpts (rw,gid=5,mode=620) tmpfs on /dev/shm type tmpfs (rw) /dev/md1 on /boot type ext4 (rw) none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw) /dev/sdb1 on /storage type ext3 (rw,noatime) $ df -h Filesystem Size Used Avail Use% Mounted on /dev/md2 913G 740G 174G 81% / tmpfs 12G 0 12G 0% /dev/shm /dev/md1 236M 80M 157M 34% /boot /dev/sdb1 914G 779G 89G 90% /storage $ cat /etc/issue CentOS release 6.3 (Final) Kernel \r on an \m $ cat /etc/crontab SHELL=/bin/bash PATH=/sbin:/bin:/usr/sbin:/usr/bin MAILTO=root HOME=/ # For details see man 4 crontabs # Example of job definition: # .---------------- minute (0 - 59) # | .------------- hour (0 - 23) # | | .---------- day of month (1 - 31) # | | | .------- month (1 - 12) OR jan,feb,mar,apr ... # | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat # | | | | | # * * * * * user-name command to be executed * * * * * root iostat -x /dev/sda /dev/sdb 4 12 >> /var/log/iostat.log */5 * * * * root ( netstat -an > /var/log/netstat.log; /opt/scripts/mrtg95th.sh; echo > /var/log/iostat.log ) 1>/dev/null 2>/dev/null */5 * * * * root /usr/bin/mrtg /etc/mrtg/mrtg_ip.cfg 1>/dev/null 2>/dev/null */5 * * * * root (grep --color -E '(<\?php|iframe|^a=|encode\(|decode\()' /var/log/httpd/post_query.log; if [ $? = 0 ]; then echo detected; echo `date` | mail -s 'PHP INJECTION DETECTED!' [email protected]; fi) 1>/dev/null 2>/dev/null $ cat /proc/version Linux version 2.6.32-279.11.1.el6.centos.plus.x86_64 ([email protected]) (gcc version 4.4.6 20120305 (Red Hat 4.4.6-4) (GCC) ) #1 SMP Tue Oct 16 22:42:15 UTC 2012 $ cat /proc/sys/vm/mmap_min_addr 4096 $ pwd /var/www/pmpcrimeau/data/www/pmp.crimea.ua/global $ ls -la /usr/bin/staprun ничего
Не могу рутануть, пробовал http://www.exploit-db.com/exploits/1073/ Code: $ uname -a SunOS victor 5.10 Generic_147441-15 i86pc i386 i86pc $ ls -la /boot total 180480 drwxr-xr-x 8 root sys 512 Nov 1 2011 . drwxr-xr-x 28 root root 1024 May 28 2012 .. drwxr-xr-x 3 root sys 512 Aug 3 2009 acpi drwxr-xr-x 2 root sys 512 Nov 1 2011 amd64 drwxr-xr-x 4 root sys 1024 Nov 1 2011 grub -rwxr-xr-x 1 root sys 136764 Jul 4 2011 multiboot drwxr-xr-x 3 root root 512 Aug 3 2009 platform drwxr-xr-x 2 root sys 512 Aug 3 2009 rc.d drwxr-xr-x 6 root sys 512 May 28 2012 solaris -rw-r--r-- 1 root sys 309389 Jul 14 2010 solaris.xpm -rw-r--r-- 1 root sys 91866505 Jul 15 2011 x86.miniroot-safe $ $ df -h Filesystem size used avail capacity Mounted on /dev/md/dsk/d30 9.6G 6.2G 3.4G 65% / /devices 0K 0K 0K 0% /devices ctfs 0K 0K 0K 0% /system/contract proc 0K 0K 0K 0% /proc mnttab 0K 0K 0K 0% /etc/mnttab swap 29G 996K 29G 1% /etc/svc/volatile objfs 0K 0K 0K 0% /system/object sharefs 0K 0K 0K 0% /etc/dfs/sharetab /usr/lib/libc/libc_hwcap2.so.1 9.6G 6.2G 3.4G 65% /lib/libc.so.1 fd 0K 0K 0K 0% /dev/fd /dev/dsk/c1t2d0s3 8.7G 6.6G 2.0G 77% /var swap 29G 31M 29G 1% /tmp swap 29G 36K 29G 1% /var/run /dev/md/dsk/d35 96G 87G 7.7G 92% /u0 /dev/md/dsk/d34 12G 5.9G 5.6G 52% /usr/local $ cat /etc/issue cat: cannot open /etc/issue $ cat /etc/crontab cat: cannot open /etc/crontab $ cat /proc/version cat: cannot open /proc/version $ cat /proc/sys/vm/mmap_min_addr cat: cannot open /proc/sys/vm/mmap_min_addr $ ls -la /usr/bin/staprun /usr/bin/staprun: No such file or directory
Помогите с получением рута. У меня такая ситуация права на /etc/rc.d/* выставлены lrwxrwxrwx. Пример: lrwxrwxrwx 1 root root 14 Apr 26 2012 /etc/rc.d/rc0.d/K25sshd Можно ли через rc.d/* получить root?
Подскажите пожалуйста можно ли повысить привилегии на этой системе: Code: [COLOR=Red]# uname -a[/COLOR] Linux 192.168.10 2.6.32-5-vserver-amd64 #1 SMP Sun Sep 23 12:45:03 UTC 2012 x86_64 GNU/Linux Linux 192.168.10 2.6.32-5-vserver-amd64 #1 SMP Sun Sep 23 12:45:03 UTC 2012 x86_64 GNU/Linux [COLOR=Red]# ls -la /lib/libc*[/COLOR] -rwxr-xr-x 1 root root 1437064 Jun 6 2012 /lib/libc-2.11.3.so lrwxrwxrwx 1 root root 14 Nov 27 19:40 /lib/libc.so.6 -> libc-2.11.3.so lrwxrwxrwx 1 root root 14 Feb 7 2012 /lib/libcap.so.2 -> libcap.so.2.19 -rw-r--r-- 1 root root 16640 Aug 17 2010 /lib/libcap.so.2.19 -rw-r--r-- 1 root root 190840 Jun 6 2012 /lib/libcidn-2.11.3.so lrwxrwxrwx 1 root root 17 Nov 27 19:40 /lib/libcidn.so.1 -> libcidn-2.11.3.so lrwxrwxrwx 1 root root 17 Feb 7 2012 /lib/libcom_err.so.2 -> libcom_err.so.2.1 -rw-r--r-- 1 root root 12336 Jun 20 2011 /lib/libcom_err.so.2.1 -rw-r--r-- 1 root root 35104 Jun 6 2012 /lib/libcrypt-2.11.3.so lrwxrwxrwx 1 root root 18 Nov 27 19:40 /lib/libcrypt.so.1 -> libcrypt-2.11.3.so lrwxrwxrwx 1 root root 18 Nov 27 19:40 /lib/libcrypt.so.1 -> libcrypt-2.11.3.so [COLOR=Red]# ls -la /boot[/COLOR] total 29140 drwxr-xr-x 3 root root 4096 Nov 27 19:41 . drwxr-xr-x 22 root root 4096 Feb 15 2012 .. -rw-r--r-- 1 root root 1666397 Sep 23 2012 System.map-2.6.32-5-amd64 -rw-r--r-- 1 root root 1679107 Sep 23 2012 System.map-2.6.32-5-vserver-amd64 -rw-r--r-- 1 root root 106172 Sep 23 2012 config-2.6.32-5-amd64 -rw-r--r-- 1 root root 106858 Sep 23 2012 config-2.6.32-5-vserver-amd64 drwxr-xr-x 3 root root 4096 Nov 27 19:41 grub -rw-r--r-- 1 root root 10680901 Nov 27 19:40 initrd.img-2.6.32-5-amd64 -rw-r--r-- 1 root root 10690556 Nov 27 19:41 initrd.img-2.6.32-5-vserver-amd64 -rw-r--r-- 1 root root 2423968 Sep 23 2012 vmlinuz-2.6.32-5-amd64 -rw-r--r-- 1 root root 2462496 Sep 23 2012 vmlinuz-2.6.32-5-vserver-amd64 -rw-r--r-- 1 root root 2462496 Sep 23 2012 vmlinuz-2.6.32-5-vserver-amd64 [COLOR=Red]# mount[/COLOR] /dev/cciss/c0d0p1 on / type ext4 (rw,errors=remount-ro) tmpfs on /lib/init/rw type tmpfs (rw,nosuid,mode=0755) proc on /proc type proc (rw,noexec,nosuid,nodev) sysfs on /sys type sysfs (rw,noexec,nosuid,nodev) udev on /dev type tmpfs (rw,mode=0755) tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev) devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=620) devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=620) [COLOR=Red]# pwd[/COLOR] /home/logs_backup /home/logs_backup [COLOR=Red]# df -h[/COLOR] Filesystem Size Used Avail Use% Mounted on /dev/cciss/c0d0p1 1.1T 500G 503G 50% / tmpfs 127G 0 127G 0% /lib/init/rw udev 127G 184K 127G 1% /dev tmpfs 127G 0 127G 0% /dev/shm tmpfs 127G 0 127G 0% /dev/shm [COLOR=Red] # cat /etc/issue[/COLOR] Debian GNU/Linux 6.0 \n \l
Можно ли root сделать? uname -a Linux 2.6.18-194.3.1.el5 #1 SMP Thu May 13 13:09:10 EDT 2010 i686 i686 i386 GNU/Linux $ ls -la /boot total 4657 drwxr-xr-x 4 root root 1024 Jun 20 2010 . drwxr-xr-x 24 root root 4096 Mar 15 09:53 .. -rw-r--r-- 1 root root 162 May 13 2010 .vmlinuz-2.6.18-194.3.1.el5.hmac -rw-r--r-- 1 root root 967664 May 13 2010 System.map-2.6.18-194.3.1.el5 -rw-r--r-- 1 root root 69597 May 13 2010 config-2.6.18-194.3.1.el5 drwxr-xr-x 2 root root 1024 Jun 20 2010 grub -rw------- 1 root root 1603730 Jun 20 2010 initrd-2.6.18-194.3.1.el5.img drwx------ 2 root root 12288 Jun 20 2010 lost+found -rw-r--r-- 1 root root 80032 Mar 12 2009 message -rw-r--r-- 1 root root 110989 May 13 2010 symvers-2.6.18-194.3.1.el5.gz -rw-r--r-- 1 root root 1875604 May 13 2010 vmlinuz-2.6.18-194.3.1.el5 $ ls -la --full-time /lib/lib* -rwxr-xr-x 1 root root 7664 2010-06-09 08:59:46.000000000 -0400 /lib/libBrokenLocale-2.5.so lrwxrwxrwx 1 root root 22 2010-06-20 19:06:55.000000000 -0400 /lib/libBrokenLocale.so.1 -> libBrokenLocale-2.5.so -rwxr-xr-x 1 root root 16704 2010-06-09 08:59:47.000000000 -0400 /lib/libSegFault.so lrwxrwxrwx 1 root root 15 2010-06-20 19:07:08.000000000 -0400 /lib/libacl.so.1 -> libacl.so.1.1.0 -rwxr-xr-x 1 root root 25624 2010-01-26 17:57:13.000000000 -0500 /lib/libacl.so.1.1.0 -rwxr-xr-x 1 root root 14128 2010-06-09 08:59:49.000000000 -0400 /lib/libanl-2.5.so lrwxrwxrwx 1 root root 13 2010-06-20 19:06:55.000000000 -0400 /lib/libanl.so.1 -> libanl-2.5.so lrwxrwxrwx 1 root root 18 2010-06-20 19:08:16.000000000 -0400 /lib/libasound.so.2 -> libasound.so.2.0.0 -rwxr-xr-x 1 root root 908940 2009-01-20 22:47:23.000000000 -0500 /lib/libasound.so.2.0.0 lrwxrwxrwx 1 root root 16 2010-06-20 19:07:08.000000000 -0400 /lib/libattr.so.1 -> libattr.so.1.1.0 -rwxr-xr-x 1 root root 15780 2007-01-06 00:12:05.000000000 -0500 /lib/libattr.so.1.1.0 lrwxrwxrwx 1 root root 17 2010-06-20 19:06:57.000000000 -0400 /lib/libaudit.so.0 -> libaudit.so.0.0.0 -rwxr-xr-x 1 root root 97220 2010-03-31 02:29:12.000000000 -0400 /lib/libaudit.so.0.0.0 lrwxrwxrwx 1 root root 19 2010-06-20 19:06:57.000000000 -0400 /lib/libauparse.so.0 -> libauparse.so.0.0.0 -rwxr-xr-x 1 root root 56344 2010-03-31 02:29:12.000000000 -0400 /lib/libauparse.so.0.0.0 lrwxrwxrwx 1 root root 15 2010-06-20 19:07:55.000000000 -0400 /lib/libblkid.so.1 -> libblkid.so.1.0 -rwxr-xr-x 1 root root 38556 2009-09-03 15:55:35.000000000 -0400 /lib/libblkid.so.1.0 -rwxr-xr-x 1 root root 1689388 2010-06-09 08:59:52.000000000 -0400 /lib/libc-2.5.so lrwxrwxrwx 1 root root 11 2010-06-20 19:06:55.000000000 -0400 /lib/libc.so.6 -> libc-2.5.so lrwxrwxrwx 1 root root 14 2010-06-20 19:07:08.000000000 -0400 /lib/libcap.so.1 -> libcap.so.1.10 -rwxr-xr-x 1 root root 11560 2007-03-14 14:15:10.000000000 -0400 /lib/libcap.so.1.10 -rwxr-xr-x 1 root root 191708 2010-06-09 08:59:57.000000000 -0400 /lib/libcidn-2.5.so lrwxrwxrwx 1 root root 14 2010-06-20 19:06:55.000000000 -0400 /lib/libcidn.so.1 -> libcidn-2.5.so lrwxrwxrwx 1 root root 17 2010-06-20 19:07:55.000000000 -0400 /lib/libcom_err.so.2 -> libcom_err.so.2.1 -rwxr-xr-x 1 root root 7748 2009-09-03 15:55:35.000000000 -0400 /lib/libcom_err.so.2.1 -rwxr-xr-x 1 root root 45432 2010-06-09 08:59:57.000000000 -0400 /lib/libcrypt-2.5.so lrwxrwxrwx 1 root root 15 2010-06-20 19:06:55.000000000 -0400 /lib/libcrypt.so.1 -> libcrypt-2.5.so -rwxr-xr-x 1 root root 1296932 2010-03-26 17:46:10.000000000 -0400 /lib/libcrypto.so.0.9.8e lrwxrwxrwx 1 root root 19 2010-06-20 19:07:55.000000000 -0400 /lib/libcrypto.so.6 -> libcrypto.so.0.9.8e -rwxr-xr-x 1 root root 1011184 2009-09-19 22:06:41.000000000 -0400 /lib/libdb-4.3.so lrwxrwxrwx 1 root root 18 2010-06-20 19:08:58.000000000 -0400 /lib/libdbus-1.so.3 -> libdbus-1.so.3.4.0 -rwxr-xr-x 1 root root 253392 2010-03-31 09:20:46.000000000 -0400 /lib/libdbus-1.so.3.4.0 lrwxrwxrwx 1 root root 31 2010-06-20 19:08:17.000000000 -0400 /lib/libdevmapper-event-lvm2.so -> libdevmapper-event-lvm2.so.2.02 -r-xr-xr-x 1 root root 4900 2010-05-26 09:09:59.000000000 -0400 /lib/libdevmapper-event-lvm2.so.2.02 lrwxrwxrwx 1 root root 37 2010-06-20 19:08:17.000000000 -0400 /lib/libdevmapper-event-lvm2mirror.so -> libdevmapper-event-lvm2mirror.so.2.02 -r-xr-xr-x 1 root root 6864 2010-05-26 09:09:59.000000000 -0400 /lib/libdevmapper-event-lvm2mirror.so.2.02 lrwxrwxrwx 1 root root 39 2010-06-20 19:08:17.000000000 -0400 /lib/libdevmapper-event-lvm2snapshot.so -> libdevmapper-event-lvm2snapshot.so.2.02 -r-xr-xr-x 1 root root 4528 2010-05-26 09:09:59.000000000 -0400 /lib/libdevmapper-event-lvm2snapshot.so.2.02 lrwxrwxrwx 1 root root 25 2010-06-20 19:07:55.000000000 -0400 /lib/libdevmapper-event.a -> libdevmapper-event.a.1.02 -r-xr-xr-x 1 root root 40828 2010-05-26 08:53:35.000000000 -0400 /lib/libdevmapper-event.a.1.02 lrwxrwxrwx 1 root root 26 2010-06-20 19:07:55.000000000 -0400 /lib/libdevmapper-event.so -> libdevmapper-event.so.1.02 -r-xr-xr-x 1 root root 18156 2010-05-26 08:53:36.000000000 -0400 /lib/libdevmapper-event.so.1.02 lrwxrwxrwx 1 root root 19 2010-06-20 19:07:55.000000000 -0400 /lib/libdevmapper.a -> libdevmapper.a.1.02 -r-xr-xr-x 1 root root 414264 2010-05-26 08:53:36.000000000 -0400 /lib/libdevmapper.a.1.02 lrwxrwxrwx 1 root root 20 2010-06-20 19:07:55.000000000 -0400 /lib/libdevmapper.so -> libdevmapper.so.1.02 -r-xr-xr-x 1 root root 132620 2010-05-26 08:53:36.000000000 -0400 /lib/libdevmapper.so.1.02 -rwxr-xr-x 1 root root 20668 2010-06-09 08:59:58.000000000 -0400 /lib/libdl-2.5.so lrwxrwxrwx 1 root root 12 2010-06-20 19:06:55.000000000 -0400 /lib/libdl.so.2 -> libdl-2.5.so lrwxrwxrwx 1 root root 34 2010-06-20 19:09:02.000000000 -0400 /lib/libdmraid-events-isw.so -> libdmraid-events-isw.so.1.0.0.rc13 -rwxr-xr-x 1 root root 19388 2010-03-31 07:39:12.000000000 -0400 /lib/libdmraid-events-isw.so.1.0.0.rc13 -r-xr-xr-x 1 root root 19388 2010-03-31 07:39:12.000000000 -0400 /lib/libdmraid-events-isw.so.1.0.0.rc13-17 lrwxrwxrwx 1 root root 23 2010-06-20 19:09:02.000000000 -0400 /lib/libdmraid.so -> libdmraid.so.1.0.0.rc13 -rwxr-xr-x 1 root root 219804 2010-03-31 07:39:12.000000000 -0400 /lib/libdmraid.so.1.0.0.rc13 -r-xr-xr-x 1 root root 221440 2010-03-31 07:39:12.000000000 -0400 /lib/libdmraid.so.1.0.0.rc13-17 lrwxrwxrwx 1 root root 13 2010-06-20 19:07:55.000000000 -0400 /lib/libe2p.so.2 -> libe2p.so.2.3 -rwxr-xr-x 1 root root 21608 2009-09-03 15:55:35.000000000 -0400 /lib/libe2p.so.2.3 lrwxrwxrwx 1 root root 17 2010-06-20 19:06:57.000000000 -0400 /lib/libexpat.so.0 -> libexpat.so.0.5.0 -rwxr-xr-x 1 root root 133120 2009-12-08 09:23:13.000000000 -0500 /lib/libexpat.so.0.5.0 lrwxrwxrwx 1 root root 16 2010-06-20 19:07:55.000000000 -0400 /lib/libext2fs.so.2 -> libext2fs.so.2.4 -rwxr-xr-x 1 root root 115216 2009-09-03 15:55:35.000000000 -0400 /lib/libext2fs.so.2.4 -rwxr-xr-x 1 root root 46636 2010-03-31 11:29:40.000000000 -0400 /lib/libgcc_s-4.1.2-20080825.so.1 lrwxrwxrwx 1 root root 28 2010-06-20 19:06:55.000000000 -0400 /lib/libgcc_s.so.1 -> libgcc_s-4.1.2-20080825.so.1 lrwxrwxrwx 1 root root 23 2010-06-20 19:06:57.000000000 -0400 /lib/libglib-2.0.so.0 -> libglib-2.0.so.0.1200.3 -rwxr-xr-x 1 root root 644472 2009-03-24 21:52:17.000000000 -0400 /lib/libglib-2.0.so.0.1200.3 lrwxrwxrwx 1 root root 26 2010-06-20 19:06:57.000000000 -0400 /lib/libgmodule-2.0.so.0 -> libgmodule-2.0.so.0.1200.3 -rwxr-xr-x 1 root root 11396 2009-03-24 21:52:17.000000000 -0400 /lib/libgmodule-2.0.so.0.1200.3 lrwxrwxrwx 1 root root 26 2010-06-20 19:06:57.000000000 -0400 /lib/libgobject-2.0.so.0 -> libgobject-2.0.so.0.1200.3 -rwxr-xr-x 1 root root 259128 2009-03-24 21:52:17.000000000 -0400 /lib/libgobject-2.0.so.0.1200.3 lrwxrwxrwx 1 root root 26 2010-06-20 19:06:57.000000000 -0400 /lib/libgthread-2.0.so.0 -> libgthread-2.0.so.0.1200.3 -rwxr-xr-x 1 root root 16212 2009-03-24 21:52:17.000000000 -0400 /lib/libgthread-2.0.so.0.1200.3 -rwxr-xr-x 1 root root 29440 2007-03-14 23:26:22.000000000 -0400 /lib/libiw.so.28 -rwxr-xr-x 1 root root 7880 2007-01-06 02:57:38.000000000 -0500 /lib/libkeyutils-1.2.so lrwxrwxrwx 1 root root 18 2010-06-20 19:07:08.000000000 -0400 /lib/libkeyutils.so.1 -> libkeyutils-1.2.so -rwxr-xr-x 1 root root 216544 2010-06-09 09:00:00.000000000 -0400 /lib/libm-2.5.so lrwxrwxrwx 1 root root 11 2010-06-20 19:06:55.000000000 -0400 /lib/libm.so.6 -> libm-2.5.so -rwxr-xr-x 1 root root 109740 2010-06-09 09:00:00.000000000 -0400 /lib/libnsl-2.5.so lrwxrwxrwx 1 root root 13 2010-06-20 19:06:55.000000000 -0400 /lib/libnsl.so.1 -> libnsl-2.5.so -rwxr-xr-x 1 root root 36416 2010-06-09 09:00:02.000000000 -0400 /lib/libnss_compat-2.5.so lrwxrwxrwx 1 root root 20 2010-06-20 19:06:55.000000000 -0400 /lib/libnss_compat.so.2 -> libnss_compat-2.5.so -rwxr-xr-x 1 root root 825028 2010-05-13 07:02:40.000000000 -0400 /lib/libnss_db-2.2.so lrwxrwxrwx 1 root root 16 2010-06-20 19:08:31.000000000 -0400 /lib/libnss_db.so.2 -> libnss_db-2.2.so -rwxr-xr-x 1 root root 21948 2010-06-09 09:00:02.000000000 -0400 /lib/libnss_dns-2.5.so lrwxrwxrwx 1 root root 17 2010-06-20 19:06:55.000000000 -0400 /lib/libnss_dns.so.2 -> libnss_dns-2.5.so -rwxr-xr-x 1 root root 50848 2010-06-09 09:00:03.000000000 -0400 /lib/libnss_files-2.5.so lrwxrwxrwx 1 root root 19 2010-06-20 19:06:55.000000000 -0400 /lib/libnss_files.so.2 -> libnss_files-2.5.so -rwxr-xr-x 1 root root 22764 2010-06-09 09:00:06.000000000 -0400 /lib/libnss_hesiod-2.5.so lrwxrwxrwx 1 root root 20 2010-06-20 19:06:55.000000000 -0400 /lib/libnss_hesiod.so.2 -> libnss_hesiod-2.5.so -rwxr-xr-x 1 root root 3201120 2010-04-02 23:07:24.000000000 -0400 /lib/libnss_ldap-2.5.so lrwxrwxrwx 1 root root 18 2010-06-20 19:08:26.000000000 -0400 /lib/libnss_ldap.so.2 -> libnss_ldap-2.5.so -rwxr-xr-x 1 root root 46536 2010-06-09 09:00:07.000000000 -0400 /lib/libnss_nis-2.5.so lrwxrwxrwx 1 root root 17 2010-06-20 19:06:55.000000000 -0400 /lib/libnss_nis.so.2 -> libnss_nis-2.5.so -rwxr-xr-x 1 root root 55804 2010-06-09 09:00:08.000000000 -0400 /lib/libnss_nisplus-2.5.so lrwxrwxrwx 1 root root 21 2010-06-20 19:06:55.000000000 -0400 /lib/libnss_nisplus.so.2 -> libnss_nisplus-2.5.so lrwxrwxrwx 1 root root 16 2010-06-20 19:08:03.000000000 -0400 /lib/libpam.so.0 -> libpam.so.0.81.5 -rwxr-xr-x 1 root root 44532 2010-03-11 12:24:38.000000000 -0500 /lib/libpam.so.0.81.5 lrwxrwxrwx 1 root root 21 2010-06-20 19:08:03.000000000 -0400 /lib/libpam_misc.so.0 -> libpam_misc.so.0.81.2 -rwxr-xr-x 1 root root 10168 2010-03-11 12:24:38.000000000 -0500 /lib/libpam_misc.so.0.81.2 lrwxrwxrwx 1 root root 17 2010-06-20 19:08:03.000000000 -0400 /lib/libpamc.so.0 -> libpamc.so.0.81.0 -rwxr-xr-x 1 root root 9868 2010-03-11 12:24:38.000000000 -0500 /lib/libpamc.so.0.81.0 lrwxrwxrwx 1 root root 16 2010-06-20 19:07:26.000000000 -0400 /lib/libpcre.so.0 -> libpcre.so.0.0.1 -rwxr-xr-x 1 root root 118896 2007-11-30 00:10:26.000000000 -0500 /lib/libpcre.so.0.0.1 -rwxr-xr-x 1 root root 54308 2010-03-31 00:53:48.000000000 -0400 /lib/libproc-3.2.7.so -rwxr-xr-x 1 root root 137908 2010-06-09 09:00:09.000000000 -0400 /lib/libpthread-2.5.so lrwxrwxrwx 1 root root 17 2010-06-20 19:06:55.000000000 -0400 /lib/libpthread.so.0 -> libpthread-2.5.so -rwxr-xr-x 1 root root 80636 2010-06-09 09:00:10.000000000 -0400 /lib/libresolv-2.5.so lrwxrwxrwx 1 root root 16 2010-06-20 19:06:55.000000000 -0400 /lib/libresolv.so.2 -> libresolv-2.5.so -rwxr-xr-x 1 root root 48156 2010-06-09 09:00:10.000000000 -0400 /lib/librt-2.5.so lrwxrwxrwx 1 root root 12 2010-06-20 19:06:55.000000000 -0400 /lib/librt.so.1 -> librt-2.5.so -rwxr-xr-x 1 root root 93508 2009-09-03 19:05:42.000000000 -0400 /lib/libselinux.so.1 -rwxr-xr-x 1 root root 159412 2009-09-03 18:49:09.000000000 -0400 /lib/libsemanage.so.1 -rwxr-xr-x 1 root root 245376 2010-03-31 04:26:18.000000000 -0400 /lib/libsepol.so.1 lrwxrwxrwx 1 root root 12 2010-06-20 19:07:55.000000000 -0400 /lib/libss.so.2 -> libss.so.2.0 -rwxr-xr-x 1 root root 20492 2009-09-03 15:55:35.000000000 -0400 /lib/libss.so.2.0 -rwxr-xr-x 1 root root 293108 2010-03-26 17:46:10.000000000 -0400 /lib/libssl.so.0.9.8e lrwxrwxrwx 1 root root 16 2010-06-20 19:07:55.000000000 -0400 /lib/libssl.so.6 -> libssl.so.0.9.8e -rwxr-xr-x 1 root root 6056 2007-03-14 13:17:47.000000000 -0400 /lib/libsysSp.so lrwxrwxrwx 1 root root 19 2010-06-20 19:06:58.000000000 -0400 /lib/libtermcap.so.2 -> libtermcap.so.2.0.8 -rwxr-xr-x 1 root root 13084 2007-01-06 08:01:17.000000000 -0500 /lib/libtermcap.so.2.0.8 -rwxr-xr-x 1 root root 35708 2010-06-09 09:00:10.000000000 -0400 /lib/libthread_db-1.0.so lrwxrwxrwx 1 root root 19 2010-06-20 19:06:55.000000000 -0400 /lib/libthread_db.so.1 -> libthread_db-1.0.so -rwxr-xr-x 1 root root 15308 2010-06-09 09:00:10.000000000 -0400 /lib/libutil-2.5.so lrwxrwxrwx 1 root root 14 2010-06-20 19:06:55.000000000 -0400 /lib/libutil.so.1 -> libutil-2.5.so lrwxrwxrwx 1 root root 14 2010-06-20 19:07:55.000000000 -0400 /lib/libuuid.so.1 -> libuuid.so.1.2 -rwxr-xr-x 1 root root 15704 2009-09-03 15:55:35.000000000 -0400 /lib/libuuid.so.1.2 lrwxrwxrwx 1 root root 22 2010-06-20 19:07:26.000000000 -0400 /lib/libvolume_id.so.0 -> libvolume_id.so.0.66.0 -rwxr-xr-x 1 root root 32144 2009-09-03 18:25:42.000000000 -0400 /lib/libvolume_id.so.0.66.0 lrwxrwxrwx 1 root root 16 2010-06-20 19:07:07.000000000 -0400 /lib/libwrap.so.0 -> libwrap.so.0.7.6 -rwxr-xr-x 1 root root 32824 2009-09-21 18:37:30.000000000 -0400 /lib/libwrap.so.0.7.6 $ df -h Filesystem Size Used Avail Use% Mounted on /dev/sda5 285G 59G 212G 22% / /dev/sda2 2.0G 36M 1.9G 2% /tmp /dev/sda1 99M 11M 84M 11% /boot tmpfs 1009M 0 1009M 0% /dev/shm $ cat /etc/issue CentOS release 5.5 (Final) Kernel \r on an \m $ cat /etc/crontab SHELL=/bin/bash PATH=/sbin:/bin:/usr/sbin:/usr/bin MAILTO=root HOME=/ # run-parts 01 * * * * root run-parts /etc/cron.hourly 02 4 * * * root run-parts /etc/cron.daily 22 4 * * 0 root run-parts /etc/cron.weekly 42 4 1 * * root run-parts /etc/cron.monthly $ cat /proc/version Linux version 2.6.18-194.3.1.el5 ([email protected]) (gcc version 4.1.2 20080704 (Red Hat 4.1.2-48)) #1 SMP Thu May 13 13:09:10 EDT 2010 $ ls -la /usr/bin/staprun ---s--x--x 1 root root 62952 Mar 31 2010 /usr/bin/staprun
Linux 2.6.18-92.el5 #1 SMP Tue Jun 10 18:51:06 EDT 2008 x86_64 Linux 2.6.18-92.el5 #1 SMP Tue Jun 10 18:51:06 EDT 2008 x86_64 Чем порутать такой сервер?
Linux v2077 2.6.32-19-pve #1 SMP Mon Mar 18 06:41:32 CET 2013 i686 GNU/Linux Уязвимо к чему-либо, можно как-ни будь защититься от ядерных сплоитов?
С этим можно что-то сделать, или пока нет? $ uname -a Linux icpu2041 2.6.28.8-20120713a-iscsi-ntacker-3ware-sec8-fmon-igb-dif2-grsec #1 SMP Fri Jul 13 13:37:07 CEST 2012 i686 GNU/Linux ================= $ ls -la /lib/libc* -rwxr-xr-x 1 root root 1319176 Jun 8 2012 /lib/libc-2.11.3.so lrwxrwxrwx 1 root root 14 Feb 1 2012 /lib/libc.so.6 -> libc-2.11.3.so lrwxrwxrwx 1 root root 14 Jun 9 2011 /lib/libcap.so.2 -> libcap.so.2.19 -rw-r--r-- 1 root root 13456 Aug 16 2010 /lib/libcap.so.2.19 lrwxrwxrwx 1 root root 17 Oct 21 2010 /lib/libcfont.so.0 -> libcfont.so.0.0.0 -rw-r--r-- 1 root root 10788 Dec 16 2010 /lib/libcfont.so.0.0.0 -rw-r--r-- 1 root root 181780 Jun 8 2012 /lib/libcidn-2.11.3.so lrwxrwxrwx 1 root root 17 Feb 1 2012 /lib/libcidn.so.1 -> libcidn-2.11.3.so lrwxrwxrwx 1 root root 17 Oct 21 2010 /lib/libcom_err.so.2 -> libcom_err.so.2.1 -rw-r--r-- 1 root root 9148 Jun 18 2011 /lib/libcom_err.so.2.1 lrwxrwxrwx 1 root root 19 Oct 21 2010 /lib/libconsole.so.0 -> libconsole.so.0.0.0 -rw-r--r-- 1 root root 73420 Dec 16 2010 /lib/libconsole.so.0.0.0 -rw-r--r-- 1 root root 38360 Jun 8 2012 /lib/libcrypt-2.11.3.so lrwxrwxrwx 1 root root 18 Feb 1 2012 /lib/libcrypt.so.1 -> libcrypt-2.11.3.so lrwxrwxrwx 1 root root 19 Oct 21 2010 /lib/libctutils.so.0 -> libctutils.so.0.0.0 -rw-r--r-- 1 root root 17328 Dec 16 2010 /lib/libctutils.so.0.0.0 ================= $ ls -la /boot total 8 drwxr-xr-x 2 root root 4096 Oct 28 2006 . drwxr-xr-x 24 root root 4096 May 8 12:16 .. ================= $ mount пусто ================= $ pwd 2>&1 /homepages/27/d390862226 ================= $ df -h 2>&1 Filesystem Size Used Avail Use% Mounted on /dev/sda7 3.7G 1.6G 2.0G 44% / /dev/sdb 733G 470G 263G 65% /homepages ================= $ cat /etc/issue 2>&1 Debian GNU/Linux 6.0 \n \l ================= $ cat /proc/version 2>&1 Linux version 2.6.28.8-20120713a-iscsi-ntacker-3ware-sec8-fmon-igb-dif2-grsec (root@buildd-i386) (gcc version 4.4.5 (Debian 4.4.5-8) ) #1 SMP Fri Jul 13 13:37:07 CEST 2012
Возможно ли порутать? uname -a Linux hivede1-2665 2.6.18-308.8.2.el5.028stab101.1 #1 SMP Sun Jun 24 20:25:35 MSD 2012 x86_64 x86_64 x86_64 GNU/Linux ls -la /boot total 8 drwxr-xr-x 2 root root 4096 Aug 29 2011 . drwxr-xr-x 20 root root 4096 Jan 19 16:04 .. ls -la --full-time /lib/lib* lrwxrwxrwx 1 root root 15 2013-01-19 16:04:39.000000000 +0400 /lib/libbsd.so.0 -> libbsd.so.0.2.0 -rw-r--r-- 1 root root 39560 2010-01-22 14:58:41.000000000 +0300 /lib/libbsd.so.0.2.0 lrwxrwxrwx 1 root root 15 2013-01-19 16:04:39.000000000 +0400 /lib/libbz2.so.1 -> libbz2.so.1.0.4 lrwxrwxrwx 1 root root 15 2013-01-19 16:04:39.000000000 +0400 /lib/libbz2.so.1.0 -> libbz2.so.1.0.4 -rw-r--r-- 1 root root 66784 2011-12-13 20:26:34.000000000 +0400 /lib/libbz2.so.1.0.4 lrwxrwxrwx 1 root root 14 2013-01-19 16:04:38.000000000 +0400 /lib/libcap.so.2 -> libcap.so.2.20 -rw-r--r-- 1 root root 18832 2011-02-15 22:42:09.000000000 +0300 /lib/libcap.so.2.20 lrwxrwxrwx 1 root root 17 2013-01-19 16:04:39.000000000 +0400 /lib/libcfont.so.0 -> libcfont.so.0.0.0 -rw-r--r-- 1 root root 14408 2009-06-16 20:44:04.000000000 +0400 /lib/libcfont.so.0.0.0 lrwxrwxrwx 1 root root 19 2013-01-19 16:04:39.000000000 +0400 /lib/libconsole.so.0 -> libconsole.so.0.0.0 -rw-r--r-- 1 root root 140368 2009-06-16 20:44:04.000000000 +0400 /lib/libconsole.so.0.0.0 -rw-r--r-- 1 root root 1620736 2012-05-23 03:19:30.000000000 +0400 /lib/libcrypto.so.0.9.8 lrwxrwxrwx 1 root root 19 2013-01-19 16:04:39.000000000 +0400 /lib/libctutils.so.0 -> libctutils.so.0.0.0 -rw-r--r-- 1 root root 23424 2009-06-16 20:44:04.000000000 +0400 /lib/libctutils.so.0.0.0 lrwxrwxrwx 1 root root 17 2013-01-19 16:04:39.000000000 +0400 /lib/libhistory.so.6 -> libhistory.so.6.2 -rw-r--r-- 1 root root 34976 2011-02-24 04:43:01.000000000 +0300 /lib/libhistory.so.6.2 lrwxrwxrwx 1 root root 17 2013-01-19 16:04:39.000000000 +0400 /lib/libip4tc.so.0 -> libip4tc.so.0.0.0 -rw-r--r-- 1 root root 26736 2010-11-16 19:34:43.000000000 +0300 /lib/libip4tc.so.0.0.0 lrwxrwxrwx 1 root root 17 2013-01-19 16:04:39.000000000 +0400 /lib/libip6tc.so.0 -> libip6tc.so.0.0.0 -rw-r--r-- 1 root root 30856 2010-11-16 19:34:43.000000000 +0300 /lib/libip6tc.so.0.0.0 lrwxrwxrwx 1 root root 15 2013-01-19 16:04:38.000000000 +0400 /lib/libipq.so.0 -> libipq.so.0.0.0 -rw-r--r-- 1 root root 10568 2010-11-16 19:34:43.000000000 +0300 /lib/libipq.so.0.0.0 lrwxrwxrwx 1 root root 19 2013-01-19 16:04:39.000000000 +0400 /lib/libipq_pic.so.0 -> libipq_pic.so.0.0.0 -rw-r--r-- 1 root root 10568 2010-11-16 19:34:43.000000000 +0300 /lib/libipq_pic.so.0.0.0 lrwxrwxrwx 1 root root 16 2013-01-19 16:04:39.000000000 +0400 /lib/libiptc.so.0 -> libiptc.so.0.0.0 -rw-r--r-- 1 root root 5776 2010-11-16 19:34:43.000000000 +0300 /lib/libiptc.so.0.0.0 lrwxrwxrwx 1 root root 17 2013-01-19 16:04:38.000000000 +0400 /lib/libncurses.so.5 -> libncurses.so.5.7 -rw-r--r-- 1 root root 278152 2011-01-07 18:05:49.000000000 +0300 /lib/libncurses.so.5.7 lrwxrwxrwx 1 root root 18 2013-01-19 16:04:39.000000000 +0400 /lib/libncursesw.so.5 -> libncursesw.so.5.7 -rw-r--r-- 1 root root 327432 2011-01-07 18:05:55.000000000 +0300 /lib/libncursesw.so.5.7 lrwxrwxrwx 1 root root 20 2013-01-19 16:04:39.000000000 +0400 /lib/libnih-dbus.so.1 -> libnih-dbus.so.1.0.0 -rw-r--r-- 1 root root 34792 2011-02-18 16:59:29.000000000 +0300 /lib/libnih-dbus.so.1.0.0 lrwxrwxrwx 1 root root 15 2013-01-19 16:04:39.000000000 +0400 /lib/libnih.so.1 -> libnih.so.1.0.0 -rw-r--r-- 1 root root 92144 2011-02-18 16:59:29.000000000 +0300 /lib/libnih.so.1.0.0 lrwxrwxrwx 1 root root 27 2013-01-19 16:04:38.000000000 +0400 /lib/libply-boot-client.so.2 -> libply-boot-client.so.2.0.0 -rw-r--r-- 1 root root 18592 2011-04-27 01:31:25.000000000 +0400 /lib/libply-boot-client.so.2.0.0 lrwxrwxrwx 1 root root 27 2013-01-19 16:04:38.000000000 +0400 /lib/libply-splash-core.so.2 -> libply-splash-core.so.2.0.0 -rw-r--r-- 1 root root 68464 2011-04-27 01:31:25.000000000 +0400 /lib/libply-splash-core.so.2.0.0 lrwxrwxrwx 1 root root 31 2013-01-19 16:04:39.000000000 +0400 /lib/libply-splash-graphics.so.2 -> libply-splash-graphics.so.2.0.0 -rw-r--r-- 1 root root 35352 2011-04-27 01:31:25.000000000 +0400 /lib/libply-splash-graphics.so.2.0.0 lrwxrwxrwx 1 root root 15 2013-01-19 16:04:38.000000000 +0400 /lib/libply.so.2 -> libply.so.2.0.0 -rw-r--r-- 1 root root 89136 2011-04-27 01:31:25.000000000 +0400 /lib/libply.so.2.0.0 lrwxrwxrwx 1 root root 16 2013-01-19 16:04:39.000000000 +0400 /lib/libpopt.so.0 -> libpopt.so.0.0.0 -rw-r--r-- 1 root root 48040 2010-05-14 21:26:23.000000000 +0400 /lib/libpopt.so.0.0.0 -rw-r--r-- 1 root root 76664 2011-04-07 19:36:14.000000000 +0400 /lib/libproc-3.2.8.so lrwxrwxrwx 1 root root 18 2013-01-19 16:04:39.000000000 +0400 /lib/libreadline.so.6 -> libreadline.so.6.2 -rw-r--r-- 1 root root 265424 2011-02-24 04:43:01.000000000 +0300 /lib/libreadline.so.6.2 -rw-r--r-- 1 root root 244576 2010-05-27 16:09:22.000000000 +0400 /lib/libsepol.so.1 lrwxrwxrwx 1 root root 17 2013-01-19 16:04:38.000000000 +0400 /lib/libslang.so.2 -> libslang.so.2.2.2 -rw-r--r-- 1 root root 1079360 2010-12-13 15:06:49.000000000 +0300 /lib/libslang.so.2.2.2 -rw-r--r-- 1 root root 338048 2012-05-23 03:19:30.000000000 +0400 /lib/libssl.so.0.9.8 lrwxrwxrwx 1 root root 17 2013-01-19 16:04:39.000000000 +0400 /lib/libsysfs.so.2 -> libsysfs.so.2.0.1 -rw-r--r-- 1 root root 43136 2010-08-06 21:39:57.000000000 +0400 /lib/libsysfs.so.2.0.1 lrwxrwxrwx 1 root root 19 2013-01-19 16:04:38.000000000 +0400 /lib/libusb-0.1.so.4 -> libusb-0.1.so.4.4.4 -rw-r--r-- 1 root root 30808 2011-02-23 22:35:27.000000000 +0300 /lib/libusb-0.1.so.4.4.4 lrwxrwxrwx 1 root root 16 2013-01-19 16:04:39.000000000 +0400 /lib/libwrap.so.0 -> libwrap.so.0.7.6 -rw-r--r-- 1 root root 40656 2011-01-10 21:41:03.000000000 +0300 /lib/libwrap.so.0.7.6 lrwxrwxrwx 1 root root 19 2013-01-19 16:04:39.000000000 +0400 /lib/libxtables.so.5 -> libxtables.so.5.0.0 -rw-r--r-- 1 root root 31136 2010-11-16 19:34:43.000000000 +0300 /lib/libxtables.so.5.0.0 mount /dev/simfs on / type simfs (rw,relatime) proc on /proc type proc (rw,relatime) sysfs on /sys type sysfs (rw,relatime) none on /dev/pts type devpts (rw,relatime) df -h Filesystem Size Used Avail Use% Mounted on /dev/simfs 20G 12G 8.7G 57% / cat /etc/issue Ubuntu 11.04 \n \l cat /etc/crontab # /etc/crontab: system-wide crontab # Unlike any other crontab you don't have to run the `crontab' # command to install the new version when you edit this file # and files in /etc/cron.d. These files also have username fields, # that none of the other crontabs do. SHELL=/bin/sh PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin # m h dom mon dow user command 19 * * * * root cd / && run-parts --report /etc/cron.hourly 58 3 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily ) 1 5 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly ) 58 4 2 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly ) # cat /proc/version Linux version 2.6.18-308.8.2.el5.028stab101.1 (root@rhel5-build-x64) (gcc version 4.1.2 20080704 (Red Hat 4.1.2-46)) #1 SMP Sun Jun 24 20:25:35 MSD 2012 cat /proc/sys/vm/mmap_min_addr 4096 pwd /home/vasil/www ls -la /usr/bin/staprun ls: cannot access /usr/bin/staprun: No such file or directory
Можно ли рутнуть? sh-3.2$ uname -a Linux 264536-app1.bowig.com 2.6.18-194.17.1.el5 #1 SMP Mon Sep 20 07:12:06 EDT 2010 x86_64 x86_64 x86_64 GNU/Linux sh-3.2$ ls -la /boot total 17529 drwxr-xr-x 5 root root 1024 Oct 16 2010 . drwxr-xr-x 27 root root 12288 Nov 21 2012 .. drwxr-xr-x 2 root root 1024 Jan 4 2010 .rackspace -rw-r--r-- 1 root root 162 Dec 9 2009 .vmlinuz-2.6.18-164.9.1.el5.hmac -rw-r--r-- 1 root root 158 Aug 18 2009 .vmlinuz-2.6.18-164.el5.hmac -rw-r--r-- 1 root root 163 Sep 20 2010 .vmlinuz-2.6.18-194.17.1.el5.hmac -rw-r--r-- 1 root root 1227070 Dec 9 2009 System.map-2.6.18-164.9.1.el5 -rw-r--r-- 1 root root 1225101 Aug 18 2009 System.map-2.6.18-164.el5 -rw-r--r-- 1 root root 1243411 Sep 20 2010 System.map-2.6.18-194.17.1.el5 -rw-r--r-- 1 root root 65971 Dec 9 2009 config-2.6.18-164.9.1.el5 -rw-r--r-- 1 root root 65937 Aug 18 2009 config-2.6.18-164.el5 -rw-r--r-- 1 root root 66892 Sep 20 2010 config-2.6.18-194.17.1.el5 drwxr-xr-x 2 root root 1024 Oct 16 2010 grub -rw------- 1 root root 2575060 Jan 4 2010 initrd-2.6.18-164.9.1.el5.img -rw------- 1 root root 2575332 Jan 4 2010 initrd-2.6.18-164.el5.img -rw------- 1 root root 2606450 Oct 16 2010 initrd-2.6.18-194.17.1.el5.img drwx------ 2 root root 12288 Jan 4 2010 lost+found -rw-r--r-- 1 root root 108759 Dec 9 2009 symvers-2.6.18-164.9.1.el5.gz -rw-r--r-- 1 root root 108707 Aug 18 2009 symvers-2.6.18-164.el5.gz -rw-r--r-- 1 root root 112729 Sep 20 2010 symvers-2.6.18-194.17.1.el5.gz -rw-r--r-- 1 root root 1935068 Dec 9 2009 vmlinuz-2.6.18-164.9.1.el5 -rw-r--r-- 1 root root 1932316 Aug 18 2009 vmlinuz-2.6.18-164.el5 -rw-r--r-- 1 root root 1955036 Sep 20 2010 vmlinuz-2.6.18-194.17.1.el5 sh-3.2$ ls -la --full-time /lib/lib* -rwxr-xr-x 1 root root 7664 2011-06-08 11:33:00.000000000 -0400 /lib/libBroke nLocale-2.5.so lrwxrwxrwx 1 root root 22 2011-12-13 04:34:57.000000000 -0500 /lib/libBroke nLocale.so.1 -> libBrokenLocale-2.5.so -rwxr-xr-x 1 root root 16704 2011-06-08 11:33:01.000000000 -0400 /lib/libSegFa ult.so -rwxr-xr-x 1 root root 14128 2011-06-08 11:33:01.000000000 -0400 /lib/libanl-2 .5.so lrwxrwxrwx 1 root root 13 2011-12-13 04:34:57.000000000 -0500 /lib/libanl.s o.1 -> libanl-2.5.so lrwxrwxrwx 1 root root 17 2011-12-13 04:35:01.000000000 -0500 /lib/libaudit .so.0 -> libaudit.so.0.0.0 -rwxr-xr-x 1 root root 95740 2010-11-05 11:21:28.000000000 -0400 /lib/libaudit .so.0.0.0 lrwxrwxrwx 1 root root 19 2011-12-13 04:35:01.000000000 -0500 /lib/libaupar se.so.0 -> libauparse.so.0.0.0 -rwxr-xr-x 1 root root 54832 2010-11-05 11:21:28.000000000 -0400 /lib/libaupar se.so.0.0.0 lrwxrwxrwx 1 root root 15 2012-09-15 04:29:08.000000000 -0400 /lib/libblkid .so.1 -> libblkid.so.1.0 -rwxr-xr-x 1 root root 37316 2012-07-17 14:44:22.000000000 -0400 /lib/libblkid .so.1.0 -rwxr-xr-x 1 root root 1693812 2011-06-08 11:33:01.000000000 -0400 /lib/libc-2.5 .so lrwxrwxrwx 1 root root 11 2011-12-13 04:34:57.000000000 -0500 /lib/libc.so. 6 -> libc-2.5.so -rwxr-xr-x 1 root root 191708 2011-06-08 11:33:01.000000000 -0400 /lib/libcidn- 2.5.so lrwxrwxrwx 1 root root 14 2011-12-13 04:34:57.000000000 -0500 /lib/libcidn. so.1 -> libcidn-2.5.so lrwxrwxrwx 1 root root 17 2012-09-15 04:29:08.000000000 -0400 /lib/libcom_e rr.so.2 -> libcom_err.so.2.1 -rwxr-xr-x 1 root root 6300 2012-07-17 14:44:22.000000000 -0400 /lib/libcom_e rr.so.2.1 -rwxr-xr-x 1 root root 45432 2011-06-08 11:33:01.000000000 -0400 /lib/libcrypt -2.5.so lrwxrwxrwx 1 root root 15 2011-12-13 04:34:59.000000000 -0500 /lib/libcrypt .so.1 -> libcrypt-2.5.so -rwxr-xr-x 1 root root 1295840 2012-08-07 05:38:37.000000000 -0400 /lib/libcrypt o.so.0.9.8e lrwxrwxrwx 1 root root 19 2012-09-15 04:29:12.000000000 -0400 /lib/libcrypt o.so.6 -> libcrypto.so.0.9.8e -rwxr-xr-x 1 root root 1010140 2010-05-26 08:20:06.000000000 -0400 /lib/libdb-4. 3.so -r--r--r-- 1 root root 41914 2010-11-09 07:41:12.000000000 -0500 /lib/libdevma pper-event.a lrwxrwxrwx 1 root root 26 2011-12-13 04:35:05.000000000 -0500 /lib/libdevma pper-event.so -> libdevmapper-event.so.1.02 -r-xr-xr-x 1 root root 16952 2010-11-09 07:41:17.000000000 -0500 /lib/libdevma pper-event.so.1.02 -r--r--r-- 1 root root 458948 2010-11-09 07:41:07.000000000 -0500 /lib/libdevma pper.a lrwxrwxrwx 1 root root 20 2011-12-13 04:35:05.000000000 -0500 /lib/libdevma pper.so -> libdevmapper.so.1.02 -r-xr-xr-x 1 root root 148092 2010-11-09 07:41:16.000000000 -0500 /lib/libdevma pper.so.1.02 -rwxr-xr-x 1 root root 20668 2011-06-08 11:33:01.000000000 -0400 /lib/libdl-2. 5.so lrwxrwxrwx 1 root root 12 2011-12-13 04:34:59.000000000 -0500 /lib/libdl.so .2 -> libdl-2.5.so lrwxrwxrwx 1 root root 13 2012-09-15 04:29:08.000000000 -0400 /lib/libe2p.s o.2 -> libe2p.so.2.3 -rwxr-xr-x 1 root root 20192 2012-07-17 14:44:22.000000000 -0400 /lib/libe2p.s o.2.3 lrwxrwxrwx 1 root root 16 2012-09-15 04:29:08.000000000 -0400 /lib/libext2f s.so.2 -> libext2fs.so.2.4 -rwxr-xr-x 1 root root 113764 2012-07-17 14:44:22.000000000 -0400 /lib/libext2f s.so.2.4 -rwxr-xr-x 1 root root 45192 2012-05-31 13:51:24.000000000 -0400 /lib/libgcc_s -4.1.2-20080825.so.1 lrwxrwxrwx 1 root root 28 2012-06-14 04:29:37.000000000 -0400 /lib/libgcc_s .so.1 -> libgcc_s-4.1.2-20080825.so.1 -rwxr-xr-x 1 root root 27964 2007-01-18 14:32:57.000000000 -0500 /lib/libiw.so .28 -rwxr-xr-x 1 root root 6596 2006-08-22 13:24:04.000000000 -0400 /lib/libkeyut ils-1.2.so lrwxrwxrwx 1 root root 18 2010-01-04 14:35:14.000000000 -0500 /lib/libkeyut ils.so.1 -> libkeyutils-1.2.so -rwxr-xr-x 1 root root 214572 2011-06-08 11:33:01.000000000 -0400 /lib/libm-2.5 .so lrwxrwxrwx 1 root root 11 2011-12-13 04:34:59.000000000 -0500 /lib/libm.so. 6 -> libm-2.5.so -rwxr-xr-x 1 root root 107924 2011-06-08 11:33:01.000000000 -0400 /lib/libnsl-2 .5.so lrwxrwxrwx 1 root root 13 2011-12-13 04:34:59.000000000 -0500 /lib/libnsl.s o.1 -> libnsl-2.5.so -rwxr-xr-x 1 root root 36416 2011-06-08 11:33:01.000000000 -0400 /lib/libnss_c ompat-2.5.so lrwxrwxrwx 1 root root 20 2011-12-13 04:34:59.000000000 -0500 /lib/libnss_c ompat.so.2 -> libnss_compat-2.5.so -rwxr-xr-x 1 root root 825028 2010-04-08 13:46:31.000000000 -0400 /lib/libnss_d b-2.2.so lrwxrwxrwx 1 root root 16 2010-09-17 04:34:09.000000000 -0400 /lib/libnss_d b.so.2 -> libnss_db-2.2.so -rwxr-xr-x 1 root root 21948 2011-06-08 11:33:01.000000000 -0400 /lib/libnss_d ns-2.5.so lrwxrwxrwx 1 root root 17 2011-12-13 04:34:59.000000000 -0500 /lib/libnss_d ns.so.2 -> libnss_dns-2.5.so -rwxr-xr-x 1 root root 50848 2011-06-08 11:33:02.000000000 -0400 /lib/libnss_f iles-2.5.so lrwxrwxrwx 1 root root 19 2011-12-13 04:34:59.000000000 -0500 /lib/libnss_f iles.so.2 -> libnss_files-2.5.so -rwxr-xr-x 1 root root 22764 2011-06-08 11:33:02.000000000 -0400 /lib/libnss_h esiod-2.5.so lrwxrwxrwx 1 root root 20 2011-12-13 04:34:59.000000000 -0500 /lib/libnss_h esiod.so.2 -> libnss_hesiod-2.5.so -rwxr-xr-x 1 root root 46536 2011-06-08 11:33:02.000000000 -0400 /lib/libnss_n is-2.5.so lrwxrwxrwx 1 root root 17 2011-12-13 04:34:59.000000000 -0500 /lib/libnss_n is.so.2 -> libnss_nis-2.5.so -rwxr-xr-x 1 root root 55804 2011-06-08 11:33:02.000000000 -0400 /lib/libnss_n isplus-2.5.so lrwxrwxrwx 1 root root 21 2011-12-13 04:35:00.000000000 -0500 /lib/libnss_n isplus.so.2 -> libnss_nisplus-2.5.so lrwxrwxrwx 1 root root 16 2010-11-03 05:07:43.000000000 -0400 /lib/libpam.s o.0 -> libpam.so.0.81.5 -rwxr-xr-x 1 root root 43020 2010-10-21 15:56:19.000000000 -0400 /lib/libpam.s o.0.81.5 lrwxrwxrwx 1 root root 21 2010-11-03 05:07:43.000000000 -0400 /lib/libpam_m isc.so.0 -> libpam_misc.so.0.81.2 -rwxr-xr-x 1 root root 8624 2010-10-21 15:56:19.000000000 -0400 /lib/libpam_m isc.so.0.81.2 lrwxrwxrwx 1 root root 17 2010-11-03 05:07:43.000000000 -0400 /lib/libpamc. so.0 -> libpamc.so.0.81.0 -rwxr-xr-x 1 root root 9868 2010-10-21 15:56:19.000000000 -0400 /lib/libpamc. so.0.81.0 -rwxr-xr-x 1 root root 137908 2011-06-08 11:33:02.000000000 -0400 /lib/libpthre ad-2.5.so lrwxrwxrwx 1 root root 17 2011-12-13 04:35:00.000000000 -0500 /lib/libpthre ad.so.0 -> libpthread-2.5.so -rwxr-xr-x 1 root root 80636 2011-06-08 11:33:02.000000000 -0400 /lib/libresol v-2.5.so lrwxrwxrwx 1 root root 16 2011-12-13 04:35:00.000000000 -0500 /lib/libresol v.so.2 -> libresolv-2.5.so -rwxr-xr-x 1 root root 46144 2011-06-08 11:33:02.000000000 -0400 /lib/librt-2. 5.so lrwxrwxrwx 1 root root 12 2011-12-13 04:35:00.000000000 -0500 /lib/librt.so .1 -> librt-2.5.so -rwxr-xr-x 1 root root 91892 2010-11-16 06:35:21.000000000 -0500 /lib/libselin ux.so.1 -rwxr-xr-x 1 root root 243928 2009-10-27 10:34:52.000000000 -0400 /lib/libsepol .so.1 lrwxrwxrwx 1 root root 12 2012-09-15 04:29:08.000000000 -0400 /lib/libss.so .2 -> libss.so.2.0 -rwxr-xr-x 1 root root 19008 2012-07-17 14:44:22.000000000 -0400 /lib/libss.so .2.0 -rwxr-xr-x 1 root root 291172 2012-08-07 05:38:37.000000000 -0400 /lib/libssl.s o.0.9.8e lrwxrwxrwx 1 root root 16 2012-09-15 04:29:12.000000000 -0400 /lib/libssl.s o.6 -> libssl.so.0.9.8e lrwxrwxrwx 1 root root 19 2010-01-04 14:35:14.000000000 -0500 /lib/libtermc ap.so.2 -> libtermcap.so.2.0.8 -rwxr-xr-x 1 root root 11828 2006-07-13 03:11:11.000000000 -0400 /lib/libtermc ap.so.2.0.8 -rwxr-xr-x 1 root root 33852 2011-06-08 11:33:02.000000000 -0400 /lib/libthrea d_db-1.0.so lrwxrwxrwx 1 root root 19 2011-12-13 04:35:00.000000000 -0500 /lib/libthrea d_db.so.1 -> libthread_db-1.0.so -rwxr-xr-x 1 root root 13492 2011-06-08 11:33:02.000000000 -0400 /lib/libutil- 2.5.so lrwxrwxrwx 1 root root 14 2011-12-13 04:35:00.000000000 -0500 /lib/libutil. so.1 -> libutil-2.5.so lrwxrwxrwx 1 root root 14 2012-09-15 04:29:08.000000000 -0400 /lib/libuuid. so.1 -> libuuid.so.1.2 -rwxr-xr-x 1 root root 14144 2012-07-17 14:44:22.000000000 -0400 /lib/libuuid. so.1.2 lrwxrwxrwx 1 root root 16 2010-01-04 14:35:14.000000000 -0500 /lib/libwrap. so.0 -> libwrap.so.0.7.6 -rwxr-xr-x 1 root root 31344 2009-04-10 03:17:10.000000000 -0400 /lib/libwrap. so.0.7.6 sh-3.2$ sh-3.2$ mount /dev/sda5 on / type ext3 (rw,noatime) proc on /proc type proc (rw) sysfs on /sys type sysfs (rw) devpts on /dev/pts type devpts (rw,gid=5,mode=620) /dev/sdb1 on /mnt/disk2 type ext3 (rw,noatime) /dev/sda2 on /tmp type ext3 (rw,nosuid,nodev,noatime) /dev/sda1 on /boot type ext3 (rw) tmpfs on /dev/shm type tmpfs (rw,noexec,nosuid,nodev) none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw) sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw) sh-3.2$ sh-3.2$ df -h Filesystem Size Used Avail Use% Mounted on /dev/sda5 538G 246G 265G 49% / /dev/sdb1 271G 70G 187G 28% /mnt/disk2 /dev/sda2 2.0G 99M 1.8G 6% /tmp /dev/sda1 99M 23M 71M 25% /boot tmpfs 16G 0 16G 0% /dev/shm sh-3.2$ sh-3.2$ cat /etc/issue Red Hat Enterprise Linux Server release 5.6 (Tikanga) Kernel \r on an \m sh-3.2$ sh-3.2$ cat /etc/crontab cat: /etc/crontab: Permission denied sh-3.2$ sh-3.2$ cat /proc/version Linux version 2.6.18-194.17.1.el5 ([email protected]) (gcc version 4.1.2 20080704 (Red Hat 4.1.2-48)) #1 SMP Mon Sep 20 07:12:06 EDT 2010
Не должен. То ещё дерьмо, не работает. Лично у меня нормально отработал этот, ссылка на сам эксплойт была в комментах.
У кого-нибудь есть возможность скомпилировать? http://www.exploit-db.com/exploits/9859/ http://www.exploit-db.com/exploits/7581/ Подскажите по поводу повышения прав на фряхе. Ниразу не сталкивался. gcc на серваке нет. под рукой только debian, под ним ничего не компилится.