3.144.244.147´Ô ·Î±×ÀÎ ÇØÁÖ¼¼¿ä

MY wikix
óÀ½À¸·Î
³»¼Ò°³
»çÁø¹æ
°øºÎ¸Ç
ÀϱâÀå
¿µÈ­±¤
µ¶¼­±¤
À⵿»ç´Ï
¹æ¸í·Ï
À§Å° ÆäÀÌÁö
¸ðµç ÆäÀÌÁö
Àαâ ÆäÀÌÁö
º¯°æ ÆäÀÌÁö
°Ë»öÇϱâ

Today : 597  Total : 393797
ppabaki's wikix ^^v

diff of sis1

page id: 672, 3766 hits, unlocked, unhidden, current: v17
v16:2004-08-31 22:15:32(7,458), v17:2005-05-27 09:54:15(7,460)
diff v16:ºü¹Ù±â v17:210.106.87.198

= ! °ü¸®¹æ¾î °ø°£ 1-10
=
= \TableOfContents0
=
= !! level 1
=
= + Ç®ÀÌ ¹æ¹ý
= # __ps__¸í·É »ç¿ë ÇÁ·Î¼¼½º È®ÀÎ
= # ftp¼­ºñ½º¸¦ Á¦°ÅÇϱâ À§ÇÑ ÆÄÀÏ __/etc/inetd.conf__ ÆÄÀÏ º¯°æ
- # inter¼­ºñ½º¸¦ Àç½ÃÀÛÇϱâ À§ÇØ __kill__ ¸í·É¾î »ç¿ë. È®ÀÎ À§ÇØ __netstat__ ¸í·É¾î È®ÀÎ.
+ # inetd ¼­ºñ½º¸¦ Àç½ÃÀÛÇϱâ À§ÇØ __kill__ ¸í·É¾î »ç¿ë. È®ÀÎ À§ÇØ __netstat__ ¸í·É¾î È®ÀÎ.
=
= - ½ÇÁ¦ Ç®ÀÌ
= {{{
= # ps
= PID TTY TIME CMD
= 26964 pts/40 0:00 bash
= 26967 pts/40 0:00 inetd
= 26970 pts/40 0:00 ps
= # netstat -a
= --»ý·«
= TCP: IPv4
= Local Address Remote Address Swind Send-Q Rwind Recv-Q State
= -------------------- -------------------- ----- ------ ----- ------ -------
= *.* *.* 0 0 24576 0 IDLE
= *.ftp *.* 0 0 24576 0 LISTEN
= *.telnet *.* 0 0 24576 0 LISTEN
= --»ý·«
=
= # vi /etc/inetd.conf
=
= #ftp stream tcp nowait root /usr/sbin/in.ftpd in.ftpd // ÁÖ¼®Ã³¸®
= telnet stream tcp nowait root /usr/sbin/in.telnetd in.telnetd
=
= # kill -1 26967
= # netstat -a
= --»ý·«
= TCP: IPv4
= Local Address Remote Address Swind Send-Q Rwind Recv-Q State
= -------------------- -------------------- ----- ------ ----- ------ -------
= *.* *.* 0 0 24576 0 IDLE
= *.telnet *.* 0 0 24576 0 LISTEN
= --»ý·«
= # finish
= }}}
=
= > pass = <font color=red>ftpkilled</font>
=
= !! level 2
=
= + Ç®À̹æ¹ý
= # ÃʱâÈ­ ½ºÅ©¸³Æ® ÀÛ¼º À§ÇØ /etc/rc2.d·Î À̵¿
= # S90sagentd ÆÄÀÏ ÀÛ¼º ÈÄ __chmod__ ½ÇÇà ±ÇÇÑ ºÎ¿©
=
= - ½ÇÁ¦Ç®ÀÌ
= {{{
= # vi S90sagentd
=
= /usr/local/bin/sagentd
=
= "S90sagentd" [New File] 1 line, 23 characters written
= #
= # ls -la
= ÃÑ 86
= drwxrwxrwx 2 root other 512 8¿ù 21ÀÏ 17:28 .
= drwxr-xr-x 7 root other 512 8¿ù 21ÀÏ 17:21 ..
= -rwxr--r-- 1 root other 3080 8¿ù 21ÀÏ 17:21 K28nfs.server
= -rwxr--r-- 1 root other 597 8¿ù 21ÀÏ 17:21 S88utmpd
= -rw-r--r-- 1 root other 23 8¿ù 21ÀÏ 17:28 S90sagentd
= #
= # chmod +x S90sagentd
= # finish
= }}}
=
= > pass = <font color=red>youfoundrcd</font>
=
= !! level 3
=
= + Ç®À̹æ¹ý
= # ȯ°æ¼³Á¤ º¸±â À§ÇØ __env__ ¸í·É »ç¿ë
= # __export__ ¸í·É »ç¿ë PATH ¼öÁ¤
= # ./(ÇöÀçÆú´õ)´Â Æнº ¸¶Áö¸· À§Ä¡
=
= - ½ÇÁ¦Ç®ÀÌ
= {{{
= # env
= PWD=/
= TZ=ROK
= _INIT_RUN_NPREV=0
= HZ=100
= HOSTNAME=mdsol
= _INIT_RUN_LEVEL=3
= _INIT_UTS_ISA=sparc
= _INIT_UTS_SYSNAME=SunOS
= _INIT_UTS_RELEASE=5.8
= PS1=#
= _INIT_PREV_LEVEL=S
= MACHTYPE=sparc-sun-solaris2.7
= MAIL=/var/mail/level3
= _INIT_UTS_VERSION=Generic_108528-27
= LANG=ko
= LOGNAME=level3
= _INIT_UTS_NODENAME=mdsol
= _INIT_UTS_PLATFORM=SUNW,Sun-Fire-880
= SHLVL=1
= _INIT_UTS_MACHINE=sun4u
= SHELL=/home1/vsh/bash
= HOSTTYPE=sparc
= OSTYPE=solaris2.7
= HOME=/
= TERM=linux
= PATH=./:/usr/sbin:/usr/bin:/usr/ucb:/etc // ./(ÇöÀçÆú´õ)°¡ Á© ¾Õ¿¡ ÀÖÀ½ wrong
= _INIT_NET_STRATEGY=none
= _=/usr/bin/env
= #
= # export PATH=usr/sbin:/usr/bin:/usr/ucb:/etc:./
= # finish
= }}}
=
= > pass = <font color=red>pathfinder</font>
=
= !! level 4
=
= + Ç®À̹æ¹ý
= # __ps__ ¸í·É »ç¿ë ÇÁ·Î¼¼½º È®ÀÎ
= # __netstat__ ¸í·É »ç¿ë ³×Æ®À¨ »óȲ üũ
- # --lsof__ ¸í·É ÇÁ·Î¼¼½º È°µ¿ »óȲ üũ
- # __kill_ ¸í·É ÇÁ·Î¼¼½º Á¾·á
+ # __lsof__ ¸í·É ÇÁ·Î¼¼½º È°µ¿ »óȲ üũ
+ # __kill__ ¸í·É ÇÁ·Î¼¼½º Á¾·á
=
= - ½ÇÁ¦Ç®ÀÌ
= {{{
= # ps
= PID TTY TIME CMD
= 29228 pts/5 0:00 bash
= 29264 pts/5 0:00 ps
= 29230 pts/5 0:00 (httpd) // httpd È®ÀÎ
= #
= # netstat -a
= TCP: IPv4
= Local Address Remote Address Swind Send-Q Rwind Recv-Q State
= -------------------- -------------------- ----- ------ ----- ------ -------
= *.* *.* 0 0 24576 0 IDLE
= *.60001 *.* 0 0 0 0 LISTEN
= *.ftp *.* 0 0 24576 0 LISTEN
= *.telnet *.* 0 0 24576 0 LISTEN
= *.lockd *.* 0 0 24576 0 LISTEN
= // httpd ¾øÀ½
= #
= # lsof 29230
= COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
= mserv 29230 2003 cwd VDIR 85,0 512 4190485 /3
= mserv 29230 2003 rtd VDIR 85,0 512 4190485 /3
= mserv 29230 2003 txt VREG 85,0 6348 2562709 /3/usr/bin/mserv // ´Ù¸¥ ÇÁ·Î±×·¥ ½ÇÇà
= mserv 29230 2003 txt VREG 85,0 1157872 2867405 /6/usr/lib/libc.so.1
= mserv 29230 2003 txt VREG 85,0 4848 7535617 /4/usr/platform/sun4u-us3/lib/libc_psr.so.1
= mserv 29230 2003 txt VREG 85,0 5296 2867417 /6/usr/lib/libdl.so.1
= mserv 29230 2003 txt VREG 85,0 227520 2867300 /home1 -- lib/ld.so.1
= mserv 29230 2003 0r VCHR 13,2 0t0 4956497 /devices/pseudo/mm@0:null
= mserv 29230 2003 1u VCHR 24,5 0t8014 3414478 /devices/pseudo/pts@0:5->ttcompat->ldterm->ptem->pts
= mserv 29230 2003 2u VCHR 24,5 0t8014 3414478 /devices/pseudo/pts@0:5->ttcompat->ldterm->ptem->pts
= #
= # kill -9 29230
= # finish
= }}}
=
= > pass = <font color=red>stacheldraht</font>
=
= !! level 5
=
= + Ç®À̹æ¹ý
= # ¾ÆÆÄÄ¡ ¼³Á¤ º¯°æ À§ÇØ /usr/local/apcahe/conf/httpd.conf ÆÄÀÏ º¯°æ
= # ¼³Á¤ __Port 8100__ º¯°æÈÄ µ¥¸ó Àç½ÇÇà
=
= - ½ÇÁ¦Ç®ÀÌ
= {{{
= # vi httpd.conf
=
= // Áß°£ »ý·«
= Port 8100
=
= "httpd.conf" 919 lines, 30856 characters written
= # ../bin/httpd stop
= # ../bin/httpd start
= # finish
= }}}
=
= > pass = <font color=red>scanyourport</font>
=
= !! level 6
=
= + Ç®À̹æ¹ý
= # rc3.d ºÎÆà ½ºÅ©¸³Æ® ¼öÁ¤ S -> K º¯°æ
= # named ÇÁ·Î¼¼½º Á¦°Å
=
= - ½ÇÁ¦Ç®ÀÌ
= {{{
= # cd /etc/rc3.d
= # ls
= README
= S15nfs.server
= S45named
= S76snmpdx
= S77dmi
= S80mipagent
= # mv S45named K45named // S´Â ½ÃÀÛ ½ºÅ©¸³Æ® K´Â ¾È½ÃÀÛ ½ºÅ©¸³Æ®
= # ps
= PID TTY TIME CMD
= 29762 pts/5 0:00 ps
= 29695 pts/5 0:00 named
= 29692 pts/5 0:00 bash
= # kill -9 29695 // ÇÁ·Î¼¼½º »èÁ¦
= # ps
= PID TTY TIME CMD
= 29765 pts/5 0:00 ps
= 29692 pts/5 0:00 bash
= # finish
= }}}
=
= > pass = <font color=red>leveldisable
= </font>
=
= !! level 7
=
= + Ç®À̹æ¹ý
= # __umask__ »ç¿ë °ª º¯°æ
= # __touch__ ¸í·É »ç¿ë È®ÀÎ
= # ¾à°£ ÀÌ»óÇÔ
=
= - ½ÇÁ¦Ç®ÀÌ
= {{{
= # umask 077
= # touch ok
= # ls -la ok
= -rw------- 1 root other 0 8¿ù 21ÀÏ 18:25 ok
= # finish
= }}}
=
= > pass = <font color=red>netmaskoxff</font>
=
= !! level 8
=
= + Ç®À̹æ¹ý
= # __diff__ ¸í·É »ç¿ë ¼­·Î ´Ù¸¥ ÆÄÀÏ ºñ±³
= # chsum ¸í·É »ç¿ë üũ½æ °ª È®ÀÎ
= # 2>/dev/null »ç¿ë ¿¡·¯ °ª »èÁ¦
=
= - ½ÇÁ¦Ç®ÀÌ
= {{{
= # diff /usr/sbin/ /backup/usr/sbin/ 2>/dev/null
= ÀÌÁø ÆÄÀÏ /usr/sbin//in.fingerd¿Í(°ú) /backup/usr/sbin//in.fingerdÀÌ(°¡) ´Ù¸¨´Ï´Ù
= °øÅë ÇÏÀ§ µð·ºÅ丮: /usr/sbin//install.d ¹× /backup/usr/sbin//install.d
= /usr/sbin/¿¡¼­¸¸: john
= /usr/sbin/¿¡¼­¸¸: rndd
= °øÅë ÇÏÀ§ µð·ºÅ丮: /usr/sbin//sparcv7 ¹× /backup/usr/sbin//sparcv7
= °øÅë ÇÏÀ§ µð·ºÅ丮: /usr/sbin//sparcv9 ¹× /backup/usr/sbin//sparcv9
= °øÅë ÇÏÀ§ µð·ºÅ丮: /usr/sbin//static ¹× /backup/usr/sbin//static
= # cksum /usr/sbin/in.fingerd
= 1955514390 6193 /usr/sbin/in.fingerd
= # cksum /backup/usr/sbin/in.fingerd
= 3221975202 5896 /backup/usr/sbin/in.fingerd
= # finish
= Enter hacked file path >/usr/sbin/in.fingerd
= success
=
= }}}
=
= > pass = <font color=red>hashfunction</font>
=
= !! level 9
=
= + Ç®À̹æ¹ý
= # -o kerberos ¿É¼Ê »ç¿ë
= # »ç½Ç Àß ¸ð¸§
=
= - ½ÇÁ¦Ç®ÀÌ
= {{{
= # mount -F nfs -o kerberos nserver:/export/share /home2
= # finish
= }}}
=
= > pass = <font color=red>ufsfilesystem</font>
=
= !! level 10
=
= + Ç®À̹æ¹ý
= # __find__ ¸í·É, __grep__ ¸í·É »ç¿ë ÆÄÀÏ °Ë»ö
= # __rm__ ¸í·É ÆÄÀÏ »èÁ¦
=
= - ½ÇÁ¦Ç®ÀÌ
= {{{
= # find / -ls | grep 'Oct 26'
= 11359757 6 -rwxrwxrwx 1 2003 other 5580 Oct 26 2001 /usr/share/lib/rpc-exp
= #
= # rm /usr/share/lib/rpc-exp
= # finish
=
= ¡Ø find ¿É¼Ç ¼³¸í
= find -l : ÁöÁ¤µÈ ÆÐÅÏÀ» ÅäÇÔÇÏ°í ÀÖ´Â ÆÄÀÏÀÇ À̸§¸¸À» Ãâ·Â
= find -s : Á¸ÀçÇÏÁö ¾Ê°Å³ª, ÀÐÀ»¼ö ¾ø´Â ÆÄÀÏÀÌ ÁöÁ¤µÈ °æ¿ì ¹ß»ý ¿¡·¯ ¸Þ½ÃÁö ¾ïÁ¦
= }}}
=
= > pass = <font color=red>messages</font>

ViewPage
Last :   Who : 210.106.87.198
Version : v
hits