18.224.69.137´Ô ·Î±×ÀÎ ÇØÁÖ¼¼¿ä

MY wikix
óÀ½À¸·Î
³»¼Ò°³
»çÁø¹æ
°øºÎ¸Ç
ÀϱâÀå
¿µÈ­±¤
µ¶¼­±¤
À⵿»ç´Ï
¹æ¸í·Ï
À§Å° ÆäÀÌÁö
¸ðµç ÆäÀÌÁö
Àαâ ÆäÀÌÁö
º¯°æ ÆäÀÌÁö
°Ë»öÇϱâ

Today : 225  Total : 393425
ppabaki's wikix ^^v

diff of sis12

page id: 682, 2163 hits, unlocked, unhidden, current: v2
v1:2004-08-25 21:40:27(2,019), v2:2004-08-25 23:13:42(7,134)
diff v1:ºü¹Ù±â v2:ºü¹Ù±â

= ! °ü¸®¹æ¾î °ø°£ 21-30
=
= \TableOfContents0
=
= !! level 21
=
= + Ç®ÀÌ ¹æ¹ý
= # __sum__ ¸í·É »ç¿ë üũ¼¶ È®ÀÎ
= # __md5__ ¸í·É »ç¿ë Çؽ¬°ª È®ÀÎ
=
= - ½ÇÁ¦ Ç®ÀÌ
= {{{
= # sum 110281-02.jar
= 10555 55 110281-02.jar
= # md5 110281-02.jar
= MD5 (110281-02.jar) = 1e29d7283039c6b72e2c46de706a08e8
= # finish
= Enter the result of sum--including file name >
= 10555 55 110281-02.jar
= Enter the result of md5--only md5 value >
= 1e29d7283039c6b72e2c46de706a08e8
= Success
= }}}
=
= > pass = <font color=red>itishardtosay</font>
=
= !! level 22
=
= + Ç®ÀÌ ¹æ¹ý
= # /etc/lilo.conf ÆÄÀÏ ÆíÁý
= # ÆíÁý ÈÄ lilo ¸í·É ¼³Á¤ Àû¿ë
=
= - ½ÇÁ¦ Ç®ÀÌ
= {{{
= # vi /et/clilo.conf
=
= boot=/dev/sda
= map=/boot/map
= install=/boot/boot.b
= prompt
= linear
= default=2.4.1
= password=sislilo
= image=/boot/2.4.1/vmlinuz-2.4.1
= label=2.4.1
= read-only
= root=/dev/sda2
= image=/boot/vmlinuz-2.2.14-5.0
= label=linux
= initrd=/boot/initrd-2.2.14-5.0.img
= read-only
= root=/dev/sda2
= "lilo.conf" 16 lines, 322 characters written
= #
= # /sbin/lilo
= Added linux *
= # finish
=
= ¡Ø password ¸í·É¾î´Â image ¸í·É¾î À§¿¡ ¾´´Ù
= }}}
=
= > pass = <font color=red>alzolilosetting</font>
=
= !! level 23
=
= + Ç®ÀÌ ¹æ¹ý
= # ½º¸ÓÇÁ °ø°Ý : ³×Æ®¿öÅ© ¼öÀü¿¡¼­ ¾î¶² È£½ºÆ®ÀÇ ¼­ºñ½º¸¦ ¹æÇØÇÏ´Â ¼­ºñ½º °ÅºÎ °ø°æ¹æ¹ý. ½Ã½ºÅÛ ºÎÇÏ Áõ°¡
= # ndd ¸í·É »ç¿ë Ä¿³Î ¼³Á¤À» º¯°æÇÑ´Ù.
=
= - ½ÇÁ¦ Ç®ÀÌ
= {{{
= # ndd -set /dev/ip ip_forward_directed_broadcasts 0
= #
= # finish
= }}}
=
= > pass = <font color=red>smurfisnotcharacter
= </font>
=
= !! level 24
=
= + Ç®ÀÌ ¹æ¹ý
+ # limit.conf ÆÄÀÏ È¯°æ ¼³Á¤
+ # ·Î±ä½Ã pamÀÇ Á¦ÇÑ ¸ðµâ Àû¿ë
+
+ - ½ÇÁ¦ Ç®ÀÌ
+ {{{
+ # vi /etc/security/limits.conf
+
+ # /etc/security/limits.conf
+ #
+ #Each line describes a limit for a user in the form:
+ #
+ @student hard cpu 10 //
+ @student hard data 10000 // Ãß°¡ ºÎºÐ
+ @student hard nproc 10 //
+
+ "/etc/security/limits.conf" 48 lines, 1526 characters written
= #
+ # vi /etc/pam.d/login
=
+ #%PAM-1.0
+ auth required /lib/security/pam_securetty.so
+ auth required /lib/security/pam_pwdb.so shadow nullok
+ auth required /lib/security/pam_nologin.so
+ account required /lib/security/pam_pwdb.so
+ password required /lib/security/pam_cracklib.so
+ password required /lib/security/pam_pwdb.so nullok use_authtok md5 shadow
+ session required /lib/security/pam_pwdb.so
+ session optional /lib/security/pam_console.so
+
+ session required /lib/security/pam_limits.so // Ãß°¡ ºÎºÐ
+
+
+ "/etc/pam.d/login" 12 lines, 488 characters written
+ #
+ # finish
+ }}}
+
+ > pass = <font color=red> pamanswer</font>
+
+ !! level 25
+
+ + Ç®ÀÌ ¹æ¹ý
+ # ¾ÆÇÏÄ¡ ¼³Á¤ __BrowserMatch__ »ç¿ë ¸ÅÄ¡ º¯¼ö ÁöÁ¤
+ # __env__ ¸í·É »ç¿ë
+
= - ½ÇÁ¦ Ç®ÀÌ
= {{{
+ # vi /usr/local/apache/conf/httpd.conf
=
+ BrowserMatch "Mozilla" Browser
+
+ <Directory "/home/board">
+ order deny,allow
+ deny from all
+ allow from env=Browser
+ </Directory>
+
+
+ "../conf/httpd.conf" 929 lines, 30995 characters written
+ # /usr/local/apache/bin/httpd stop
+ ÁߴܵÊ(Killed)
+ # /usr/local/apache/bin/httpd start
+ Starting httpd: [ ok ]
+ # finish
= }}}
=
- > pass = <font color=red></font>
+ > pass = <font color=red>Apacheanswer</font>
=
- !! level 25
-
- + Ç®ÀÌ ¹æ¹ý
- #
-
- - ½ÇÁ¦ Ç®ÀÌ
- {{{
-
- }}}
-
- > pass = <font color=red></font>
-
= !! level 26
=
= + Ç®ÀÌ ¹æ¹ý
+ # /etc/default/ µð·ºÅ丮 ¾ÈÀÇ ÆÄÀÏ ÆíÁý
+
+ - ½ÇÁ¦ Ç®ÀÌ
+ {{{
+ # cd /etc/default
+ # vi ftpd
+
+ ftpd // ftp Á¢¼Ó½Ã º¸¿©Áú ºÎºÐ..
+
+ "ftpd" 1 line, 5 characters written
+ # ls
+ ftpd
+ telnetd
+ # vi telnetd
+
+ telnetd // telnet Á¢¼Ó½Ã º¸¿äÁú ºÎºÐ..
+
+ "telnetd" 2 lines, 9 characters written
= #
+ # finish
+ }}}
=
+ > pass = <font color=red> becareful</font>
+
+ !! level 27
+
+ + Ç®ÀÌ ¹æ¹ý
+ # ServerTokens Áö½ÃÀÚ »ç¿ë
+ # httpd.conf ÆÄÀÏ º¯°æÈÄ µ¥¸ó ¹Ýµå½Ã µ¥¸ó Àç½ÇÇà
+
= - ½ÇÁ¦ Ç®ÀÌ
= {{{
+ # vi /usr/local/apache/conf/httpd.conf
=
+ ServerTokens ProductOnly // Ãß°¡ ºÎºÐ
+
+ "/usr/local/apache/conf/httpd.conf" 917 lines, 30865 characters written
+ # /usr/local/apache/bin/httpd stop
+ # /usr/local/apache/bin/httpd start
+ # finish
= }}}
=
- > pass = <font color=red></font>
+ > pass = <font color=red>mustberestarted</font>
=
- !! level 27
-
- + Ç®ÀÌ ¹æ¹ý
- #
-
- - ½ÇÁ¦ Ç®ÀÌ
- {{{
-
- }}}
-
- > pass = <font color=red></font>
-
= !! level 28
=
= + Ç®ÀÌ ¹æ¹ý
+ # __crontab__ ¸í·É »ç¿ë
+ # Áö½Ã ÀÛ¾÷ ¼öÇàÇÏ´Â ½ºÅ©¸³Æ® ÀÛ¼º
+
+ - ½ÇÁ¦ Ç®ÀÌ
+ {{{
+ # crontab -e
+ ident "@(#)root 1.19 98/07/06 SMI" /* SVr4.0 1.1.3.1 */
+ #
+ # The root crontab should be used to perform accounting data collection.
+ #
+
+ 0 4 * * 0 /a.sh
+ "crontab.22197" 7 lines, 169 characters written
+ #
+ # vi a.sh
+
+ mv /usr/local/apache/logs/access_log /var/adm/httpd/access_log_`date '+%Y%m%d'`
+ mv /usr/local/apache/logs/error_log /var/adm/httpd/error_log_`date '+%Y%m%d'`
+ touch /usr/local/apache/logs/access_log
+ touch /usr/local/apache/logs/error_log
+ /usr/local/apache/bin/httpd stop
+ /usr/local/apache/bin/httpd start
+
+ "a.sh" [New File] 7 lines, 305 characters written
= #
+ # ls -la a.sh
+ ÃÑ 1022
+ drwxr-xr-x 20 root root 512 8¿ù 25ÀÏ 23:05 .
+ drwxr-xr-x 20 root root 512 8¿ù 25ÀÏ 23:05 ..
+ -rw-r--r-- 1 root other 305 8¿ù 25ÀÏ 23:05 a.sh
+ #
+ # chmod +x a.sh
+ # finish
+ }}}
=
+ > pass = <font color=red>backtothefuture</font>
+
+ !! level 29
+
+ + Ç®ÀÌ ¹æ¹ý
+ # __unshadow__ ¸í·É ÅëÇؼ­ °èÁ¤ ÆÄÀÏ ¸¸µë
+ # __john the ripper__ »ç¿ë Á¡Á¡
+
= - ½ÇÁ¦ Ç®ÀÌ
= {{{
+ # unshadow /etc/passwd /etc/shadow > passwd.txt
+ #
+ # cat passwd.txt
+ root:SjwF2XWwTIB6Y:0:1:Super-User:/:/usr/local/bin/bash
+ daemon:NP:1:1::/:
+ bin:NP:2:2::/usr/bin:
+ sys:NP:3:3::/:
+ adm:NP:4:4:Admin:/var/adm:
+ lp:NP:71:8:Line Printer Admin:/usr/spool/lp:
+ uucp:NP:5:5:uucp Admin:/usr/lib/uucp:
+ nobody:NP:60001:60001:Nobody:/:
+ chkim:XXrcshkoXwqnI:101:10::/home/chkim:/bin/sh
+ bslee:fha4rnXt.fa3Q:102:10::/home/bslee:/bin/sh
+ shlee:/Y5nb9uTQqIAg:103:10::/home/shlee:/bin/sh
+ ywpark:bYsWxm/nu.yV2:104:10::/home/ywpark:/bin/sh
+ jhhwang:RZGJcBdSFm5.c:105:10::/home/jhhwang:/bin/sh
+ yccho:2avxdjPmQYO4c:106:10::/home/yccho:/bin/sh
+ sglim:aaDspxfKGlEzE:107:10::/home/sglim:/bin/sh
+ ssyou:ZbG70IRC2kQWE:108:10::/home/ssyou:/bin/sh
+ dhkim:KcmOW4GFtcNV2:109:10::/home/dhkim:/bin/sh
+ huha:7dcbd15QVPf6.:110:10::/home/huha:/bin/sh
+ #
+ # /usr/sbin/john/john passwd.txt
+ Loaded 11 passwords with 11 different salts (Standard DES [32/32 BS])
+ common (bslee)
=
+ Session aborted
+
+ # finish
+ Enter User ID with weak password >
+ bslee
+ Enter Password of User bslee >
+ common
+ Success
= }}}
=
- > pass = <font color=red></font>
+ > pass = <font color=red>waitlongtime!</font>
=
- !! level 29
-
- + Ç®ÀÌ ¹æ¹ý
- #
-
- - ½ÇÁ¦ Ç®ÀÌ
- {{{
-
- }}}
-
- > pass = <font color=red></font>
-
= !! level 30
=
= + Ç®ÀÌ ¹æ¹ý
- #
+ # __ps__ ÅëÇØ ½ÇÇàÁßÀÎ ¹éµµ¾î È®ÀÎ »èÁ¦(kill)
+ # __find__ ¸í·É ÅëÇØ /dev µð·ºÅ丮Áß ÅؽºÆ® ÆÄÀÏ °Ë»ö »èÁ¦(rm)
=
= - ½ÇÁ¦ Ç®ÀÌ
= {{{
+ # find /dev -type f -ls
+ 9169310 1 -rw-r--r-- 1 root root 4 Apr 9 12:57 /dev/.devfsadm_dev.lock
+ 9169311 0 -rw-r--r-- 1 root root 0 Oct 31 2002 /dev/.devlink_db_lock
+ 9169424 0 -rw-r--r-- 1 root root 0 Oct 31 2002 /dev/.devfsadm_deamon.lock
+ 9169439 208 -rw-r--r-- 1 root root 204800 Apr 12 13:47 /dev/.devlink_db
+ 10408214 1 -rw-rw-rw- 1 root other 6 Aug 25 23:45 /dev/tmp/ptyp
+ 10408215 1 -rw-rw-rw- 1 root other 5 Aug 25 23:45 /dev/tmp/ptyq
+ # rm /dev/tmp/ptyp
+ # rm /dev/tmp/ptyq
+ # ps
+ PID TTY TIME CMD
+ 23808 pts/43 0:00 bconn
+ 23815 pts/43 0:00 ps
+ 23806 pts/43 0:00 bash
+ # kill -9 23808
+ [1]+ ÁߴܵÊ(Killed) /usr/bin/bconn
+ # rm -rf /usr/bin/bconn
+ # finsih
+ }}}
=
- }}}
+ > pass = <font color=red> 62everysecond</font>
=
- > pass = <font color=red></font>
-

ViewPage
Last :   Who : ºü¹Ù±â
Version : v
hits