Старый 17.09.2012, 20:22   #581
Pashkela
 
Аватар для Pashkela
 
Регистрация: 05.07.2010
Сообщений: 1,243
По умолчанию

2 Denis763:

Цитата:
-rwsr-x--- 1 root apache 60277 Aug 30 2009 /usr/sausalito/bin/ccewrap
-rwsr-x--- 1 root apache 3362 Feb 3 2006 /usr/bin/checker

что-то непонятные какие-то файлы, раньше не встречал, проверить на

/usr/bin/checker id 2>&1
/usr/sausalito/bin/ccewrap id 2>&1

================================================== ================

2 llokely:

Цитата:
-rwsr-xr-x 1 root root 948416 Dec 10 2010 /usr/sbin/exim
/usr/sbin/exim -bV

/usr/sbin/exim -Ce.conf
Pashkela вне форума   Ответить с цитированием
Старый 18.09.2012, 08:39   #582
lochankin
 
Регистрация: 31.08.2012
Сообщений: 14
Репутация: 1
По умолчанию

Цитата:
PHP код:
-rwsr-x--- 1 root apache 3362 Feb 3 2006 /usr/bin/checker 
бэкдор с паролем, видел его пару раз
/usr/bin/checker password id
пасворд можно попробовать побрутить
lochankin вне форума   Ответить с цитированием
Старый 18.09.2012, 09:25   #583
llokely
 
Регистрация: 18.12.2011
Сообщений: 36
Репутация: 0
По умолчанию

Цитата:
Сообщение от Pashkela Посмотреть сообщение
2 llokely:
/usr/sbin/exim -bV

/usr/sbin/exim -Ce.conf
exim версии 4.63, пробую сплоит http://www.exploit-db.com/exploits/15725/, но он уже как с час пишет Sending large buffer, please wait... и все
llokely вне форума   Ответить с цитированием
Старый 18.09.2012, 13:30   #584
12309
 
Регистрация: 25.12.2011
Сообщений: 265
Репутация: 33
По умолчанию

Цитата:
Сообщение от lochankin Посмотреть сообщение
бэкдор с паролем, видел его пару раз
/usr/bin/checker password id
пасворд можно попробовать побрутить
мб
strings /usr/bin/checker
?
12309 вне форума   Ответить с цитированием
Старый 18.09.2012, 16:33   #585
Denis763
 
Регистрация: 17.09.2012
Сообщений: 2
Репутация: 0
По умолчанию

Цитата:
Сообщение от 12309 Посмотреть сообщение
мб
strings /usr/bin/checker
?
что-то логирует чтоли
Код:
$ strings /usr/bin/checker 2>&1
#!/usr/bin/perl
######################################################
##                                                  ##
##  This script was written by:                     ##
##    Brian N. Smith - www.nuonce.net               ##
##                                                  ##
##  Please visit:                                   ##
##    http://www.nuonce.net/mod_external_lib.php    ##
##                                                  ##
######################################################
use Authen::PAM;
$ENV{'PATH'} = '/bin:/usr/bin';
sub badLogin {
        $ip = shift();
        $log_dir = "/tmp/mae_log";
        $log_file = $log_dir . "/" . $ip;
        $amount = 0;
        $time = time();
        umask(077);
        if ( ! -e "/tmp/mae_log" ) { mkdir $log_dir, 0700; }
        if ( -e $log_file ) {
                open(LOG, "<$log_file");
                @contents = <LOG>;
                close(LOG);
                $amount = $contents[0];
        }
        $amount++;
        open(LOG, ">$log_file");
                print LOG $amount . "\n";
                print LOG $time . "\n";
        close(LOG);
sub checkLockedOut {
        $ip = shift();
        $log_dir = "/tmp/mae_log";
        $log_file = $log_dir . "/" . $ip;
        $amount = 0;
        $max_failed_attempts = "3";
        $lock_out_time = 1800;
        $cur_time = time();
        if ( -e $log_file ) {
                open(LOG, "<$log_file");
                @contents = <LOG>;
                close(LOG);
                $amount = $contents[0];
                $time = $contents[1];
                if ( $amount > $max_failed_attempts ) {
                        $locked_out_for = $cur_time - $time;
                        if ( $locked_out_for > $lock_out_time ) {
                                unlink($log_file);
                                return 0;
                        }
                        return 1;
                }
        }
        return 0;
sub my_conv_func {
        my @res;
        while ( @_ ) {
                my $code = shift;
                my $msg = shift;
                my $ans = "";
                $ans = $username if ($code == PAM_PROMPT_ECHO_ON() );
                $ans = $password if ($code == PAM_PROMPT_ECHO_OFF() );
                push @res, (PAM_SUCCESS(),$ans);
        }
        push @res, PAM_SUCCESS();
        return @res;
$user_id = 48;
$user = $<;
if ( $user_id ne $user ) { exit(2); }
$remote_ip = $ENV{"IP"};
$remote_ip =~ m|(.*)|; $remote_ip = $1;
if ( checkLockedOut($remote_ip) ) {
        exit(1);
$service = "login";
$max_uid = 500;
$username = <STDIN>; $password = <STDIN>;
if ( length($username) > 50 ) { badLogin($remote_ip); exit(1); }
if ( length($password) > 50 ) { badLogin($remote_ip); exit(1); }
$username =~ m|(.*)|; $username = $1;
$password =~ m|(.*)|; $password = $1;
@array = getpwnam($username);
$uid = $array[2];
if ( $username eq "" ) { exit(3); }
if ( $password eq "" ) { exit(3); }
if ( $uid <= $max_uid ) { badLogin($remote_ip); exit(1); }
ref($pamh = new Authen::PAM($service, $username, \&my_conv_func)) || die "Error code $pamh during PAM init!";
$res = $pamh->pam_set_item(PAM_TTY(), $tty_name); $res = $pamh->pam_authenticate;
$authVerified = $pamh->pam_strerror($res);
if ( $res == PAM_SUCCESS() ) { exit(0); }
badLogin($remote_ip);
exit(1)
Denis763 вне форума   Ответить с цитированием
Старый 18.09.2012, 18:09   #586
Untitled
 
Аватар для Untitled
 
Регистрация: 24.06.2012
Сообщений: 131
Репутация: 30
По умолчанию

Эксплойт под exim можно переделать под локальное использование? Переправить бэк-шелл на создание сьюдника, а эксплойт натравить на 127.0.0.1?
Untitled вне форума   Ответить с цитированием
Старый 20.09.2012, 10:56   #587
BigQik
 
Регистрация: 25.10.2011
Сообщений: 8
Репутация: 0
Exclamation Помогите порутать сервер в очень интересной сети

Есть ssh доступ на сервер компании разработчика одного из браузеров, если его порутать, думаю можно добраться до очень интересных серверов.

Пробовал udev сплойт: [-] Error: Required 95-udev-late.rules not found
А также ptrace_attach.
Нашел дамп sql базы с хешами, но судя по всему sql там не используется.
Нашел старый shadow, пока ничего не декодировалось.

Код:
================================================uname -a================================================
Linux host 2.6.26-2-xen-amd64 #1 SMP Thu Aug 20 00:36:34 UTC 2009 x86_64 GNU/Linux
================================================mount================================================
/dev/sda2 on / type xfs (rw,usrquota)
tmpfs on /lib/init/rw type tmpfs (rw,nosuid,mode=0755)
proc on /proc type proc (rw,noexec,nosuid,nodev)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
procbususb on /proc/bus/usb type usbfs (rw)
udev on /dev type tmpfs (rw,mode=0755)
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=620)
================================================df -h================================================
Filesystem            Size  Used Avail Use% Mounted on
/dev/sda2             100G   80G   21G  80% /
tmpfs                 257M     0  257M   0% /lib/init/rw
udev                   10M  464K  9.6M   5% /dev
tmpfs                 257M  4.0K  257M   1% /dev/shm
================================================ls -la /boot================================================
total 1252
drwxr-xr-x  2 root root      74 Jan 14  2011 .
drwxr-xr-x 21 root root    4096 Sep 19  2011 ..
-rw-r--r--  1 root root 1188236 Nov 25  2010 System.map-2.6.26-2-xen-amd64
-rw-r--r--  1 root root   84495 Nov 25  2010 config-2.6.26-2-xen-amd64
================================================cat /proc/version================================================
Linux version 2.6.26-2-xen-amd64 (Debian 2.6.26-19) (dannf@debian.org) (gcc version 4.1.3 20080704 (prerelease) (Debian 4.1.2-25)) #1 SMP Thu Aug 20 00:36:34 UTC 2009
================================================pwd================================================
/home/host/myuser/.tmp
================================================id================================================
uid=1094(myuser) gid=1094(myuser) groups=1061(webmaster),1094(myuser)
================================================whoami================================================
myuser
================================================cat /etc/issue================================================
Debian GNU/Linux 5.0  \l

================================================cat /etc/issue.net================================================
Debian GNU/Linux 5.0
================================================cat /proc/sys/vm/mmap_min_addr================================================
4096
================================================cat /etc/crontab================================================
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user	command
17 *	* * *	root    cd / && run-parts --report /etc/cron.hourly
25 6	* * *	root	test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6	* * 7	root	test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6	1 * *	root	test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#


================================================ls -la /etc/cron.d================================================
total 24
drwxr-xr-x  2 root root   53 Jan 14  2011 .
drwxr-xr-x 73 root root 8192 Sep 19 07:15 ..
-rw-r--r--  1 root root  102 Sep 28  2008 .placeholder
-rw-r--r--  1 root root  506 Mar 13  2009 munin-node
-rw-r--r--  1 root root  499 Apr 26  2009 php5
================================================ls -la /etc/cron.hourly================================================
total 16
drwxr-xr-x  2 root root   25 Aug 10  2009 .
drwxr-xr-x 73 root root 8192 Sep 19 07:15 ..
-rw-r--r--  1 root root  102 Sep 28  2008 .placeholder
================================================ls -la /etc/cron.monthly================================================
total 24
drwxr-xr-x  2 root root   54 Jul 14  2010 .
drwxr-xr-x 73 root root 8192 Sep 19 07:15 ..
-rw-r--r--  1 root root  102 Sep 28  2008 .placeholder
-rwxr-xr-x  1 root root  695 Feb 27  2009 proftpd
-rwxr-xr-x  1 root root  129 Sep 28  2008 standard
================================================ls -la /etc/cron.weekly================================================
total 20
drwxr-xr-x  2 root root   38 Aug 10  2009 .
drwxr-xr-x 73 root root 8192 Sep 19 07:15 ..
-rw-r--r--  1 root root  102 Sep 28  2008 .placeholder
-rwxr-xr-x  1 root root  528 Jan 25  2009 man-db
================================================ls -la /etc================================================
total 748
drwxr-xr-x 73 root root    8192 Sep 19 07:15 .
drwxr-xr-x 21 root root    4096 Sep 19  2011 ..
-rw-------  1 root root       0 Aug 10  2009 .pwd.lock
-rw-------  1 root root   19970 Aug 14  2009 DEADJOE
-rw-r--r--  1 root root      70 Sep 19  2011 TIVGUID
drwxr-xr-x  4 root root     114 Jul 14  2010 X11
-rw-r--r--  1 root root    2998 Oct  4  2011 adduser.conf
-rw-r--r--  1 root root    2996 Oct  4  2011 adduser.conf~
-rw-r--r--  1 root root      44 Aug 10  2009 adjtime
drwxrwsr-x  3 bin  bin       35 Sep 19  2011 adsm
-rw-r--r--  1 root root     185 Aug 10  2009 aliases
drwxr-xr-x  2 root root    4096 Sep 19  2011 alternatives
drwxr-xr-x  9 root root    4096 Jun 21  2011 apache2
drwxr-xr-x  7 root root    4096 Aug 10  2009 apache2.orig
drwxr-xr-x  4 root root     156 Sep 17 11:31 apt
-rw-r--r--  1 root root    1453 May 12  2008 bash.bashrc
drwxr-xr-x  2 root root      53 Jan 14  2011 bash_completion.d
-rw-r--r--  1 root root     332 Aug  1  2007 bindresvport.blacklist
-rw-r--r--  1 root root    1597 Oct 31  2004 bmon.conf
drwxr-xr-x  3 root root      21 Aug 21  2009 ca-certificates
-rw-r--r--  1 root root    6282 Aug 21  2009 ca-certificates.conf
drwxr-xr-x  2 root root      20 Aug 10  2009 calendar
-rw-r--r--  1 root root   55367 Jul  3  2006 complete.tcsh
drwxr-xr-x  2 root root      53 Jan 14  2011 cron.d
drwxr-xr-x  2 root root    4096 Jan 14  2011 cron.daily
drwxr-xr-x  2 root root      25 Aug 10  2009 cron.hourly
drwxr-xr-x  2 root root      54 Jul 14  2010 cron.monthly
drwxr-xr-x  2 root root      38 Aug 10  2009 cron.weekly
-rw-r--r--  1 root root     724 Sep 28  2008 crontab
drwxr-xr-x  3 root root      20 Sep  2  2009 csh
-rw-r--r--  1 root root     428 Jul  3  2006 csh.cshrc
-rw-r--r--  1 root root     275 Jul  3  2006 csh.login
-rw-r--r--  1 root root      67 Jul  3  2006 csh.logout
drwxr-xr-x  2 root root       6 Mar  2  2010 cups
-rw-r--r--  1 root root    2969 Oct 12  2008 debconf.conf
-rw-r--r--  1 root root       6 Nov 26  2010 debian_version
drwxr-xr-x  2 root root    4096 Oct 12  2011 default
drwxr-xr-x  4 root root    4096 May 17  2011 defoma
-rw-r--r--  1 root root     600 Aug 10  2008 deluser.conf
drwxr-xr-x  4 root root      83 Jul 14  2010 dhcp3
drwxr-xr-x  3 root root      35 Jan 14  2011 dpkg
drwxr-xr-x  3 root root      45 Aug 10  2009 emacs
drwxr-xr-x  3 root root      25 Aug 10  2009 emacs22
-rw-r--r--  1 root root     312 Sep 30  2008 email-addresses
-rw-r--r--  1 root root       0 Aug 10  2009 environment
drwxr-xr-x  3 root root      94 Jan 14  2011 exim4
drwxr-xr-x  4 root root      69 Aug 14  2009 fonts
-rw-r--r--  1 root root     250 Aug 10  2009 fstab
-rw-r--r--  1 root root     241 Aug 10  2009 fstab~
-rw-r--r--  1 root root     132 Feb 27  2009 ftpusers
-rw-r--r--  1 root root    2689 Jan  4  2009 gai.conf
drwxr-xr-x  2 root root      39 Aug 10  2009 groff
-rw-r--r--  1 root root    6188 Sep 19 07:15 group
-rw-------  1 root root    6172 Sep 17 11:40 group-
-rw-r--r--  1 root root    6033 Oct 13  2011 group~
-rw-r-----  1 root shadow  3441 Sep 19 07:15 gshadow
-rw-------  1 root root    3429 Sep 11 09:21 gshadow-
-rw-r--r--  1 root root     899 Apr 19  2008 gssapi_mech.conf
drwxr-xr-x  2 root root      31 May 17  2011 gtk-2.0
-rw-r--r--  1 root root       9 Aug  7  2006 host.conf
-rw-r--r--  1 root root       7 Aug 10  2009 hostname
-rw-r--r--  1 root root     120 Aug 10  2009 hosts
-rw-r--r--  1 root root     579 Aug 10  2009 hosts.allow
-rw-r--r--  1 root root     878 Aug 10  2009 hosts.deny
-rw-r--r--  1 root root     175 Aug 10  2009 hosts~
-rw-r--r--  1 root root     145 Apr 19  2010 idmapd.conf
-rw-r--r--  1 root root      68 Jul 14  2010 inetd.conf
drwxr-xr-x  2 root root    4096 Oct 12  2011 init.d
-rw-r--r--  1 root root    2013 Aug 10  2009 inittab
-rw-r--r--  1 root root    1723 Jan 14  2009 inputrc
drwxr-xr-x  2 root root     104 Aug 10  2009 iproute2
-rw-r--r--  1 root root      28 Jun 15  2009 issue
-rw-r--r--  1 root root      21 Jun 15  2009 issue.net
drwxr-xr-x  5 root root    4096 Aug 10  2009 joe
-rw-r--r--  1 root root   36893 Sep 17 11:31 ld.so.cache
-rw-r--r--  1 root root      34 Aug 10  2009 ld.so.conf
drwxr-xr-x  2 root root      65 Sep 19  2011 ld.so.conf.d
drwxr-xr-x  2 root root      22 Jan 14  2011 ldap
drwxr-xr-x  2 root root       6 Jun 18  2008 libpaper.d
drwxr-xr-x  2 root root       6 Dec 15  2007 llgal
-rw-r--r--  1 root root    2586 Jan  4  2009 locale.alias
-rw-r--r--  1 root root    8232 Jan 14  2011 locale.gen
-rw-r--r--  1 root root     118 Jan 14  2011 localtime
drwxr-xr-x  5 root root      79 Aug 10  2009 logcheck
-rw-r--r--  1 root root   10879 Nov 22  2008 login.defs
-rw-r--r--  1 root root     599 Oct  8  2008 logrotate.conf
drwxr-xr-x  2 root root    4096 Sep  5 08:03 logrotate.d
drwxr-xr-x  2 root root       6 Aug 18  2008 lsb-base
-rw-r--r--  1 root root     111 Sep  8  2008 magic
-rw-r--r--  1 root root     111 Sep  8  2008 magic.mime
-rw-r--r--  1 root root     125 Apr 27  2008 mail.rc
-rw-r--r--  1 root root    4271 May 17  2011 mailcap
-rw-r--r--  1 root root     449 Jun 18  2008 mailcap.order
-rw-r--r--  1 root root      17 Jan 14  2011 mailname
-rw-r--r--  1 root root    4630 Jan 25  2009 manpath.config
drwxr-xr-x  2 root root      46 Aug 14  2009 mc
-rw-r--r--  1 root root   21373 Jun 18  2008 mime.types
-rw-r--r--  1 root root     803 Oct 13  2008 mke2fs.conf
drwxr-xr-x  3 root root     104 Jul 14  2010 modprobe.d
-rw-r--r--  1 root root     248 Aug 10  2009 modules
lrwxrwxrwx  1 root root      13 Aug 10  2009 motd -> /var/run/motd
-rw-r--r--  1 root root     286 Aug 10  2009 motd.tail
-rw-r--r--  1 root root     339 Feb 15  2012 mtab
drwxr-xr-x  4 root root      62 Sep  7  2009 munin
drwxr-xr-x  3 root root      68 Jan 14  2011 mysql
drwxr-xr-x  3 root root      19 Aug 10  2009 nagios-plugins
-rw-r--r--  1 root root    7672 Aug 26  2008 nanorc
drwxr-xr-x  6 root root     102 Aug 10  2009 network
-rw-r--r--  1 root root      60 Aug 10  2009 networks
-rw-r--r--  1 root root     475 Aug 28  2006 nsswitch.conf
-rw-r--r--  1 root root    2020 May 11  2009 ntp.conf
drwxr-xr-x  2 root root       6 Aug 10  2009 opt
-rw-r--r--  1 root root     552 Mar 17  2009 pam.conf
drwxr-xr-x  2 root root    4096 Jan 14  2011 pam.d
drwxr-xr-x  2 root root      27 May 17  2011 pango
-rw-r--r--  1 root root       3 May 17  2011 papersize
-rw-r--r--  1 root root   23385 Sep 19 07:15 passwd
-rw-------  1 root root   23370 Sep 19 07:15 passwd-
-rw-r--r--  1 root root   20323 Jul  1  2010 passwd~
drwxr-xr-x  4 root root      27 Aug 10  2009 perl
drwxr-xr-x  5 root root      43 Aug 10  2009 php5
drwxr-xr-x  3 root root      20 Aug 10  2009 ppp
-rw-r--r--  1 root root     475 Oct 28  2006 profile
drwxr-xr-x  2 root root    4096 Oct 11  2010 proftpd
-rw-r--r--  1 root root    2626 Aug 28  2008 protocols
drwxr-xr-x  2 root root      26 Aug 10  2009 python
drwxr-xr-x  2 root root      29 Jul 14  2010 python2.5
-rw-r--r--  1 root root     220 Sep 29  2008 quotagrpadmins
-rw-r--r--  1 root root     526 Sep 29  2008 quotatab
-rwxr-xr-x  1 root root     306 Aug 10  2009 rc.local
drwxr-xr-x  2 root root    4096 Oct 12  2011 rc0.d
drwxr-xr-x  2 root root    4096 Oct 12  2011 rc1.d
drwxr-xr-x  2 root root    4096 Oct 12  2011 rc2.d
drwxr-xr-x  2 root root    4096 Oct 12  2011 rc3.d
drwxr-xr-x  2 root root    4096 Oct 12  2011 rc4.d
drwxr-xr-x  2 root root    4096 Oct 12  2011 rc5.d
drwxr-xr-x  2 root root    4096 Oct 12  2011 rc6.d
drwxr-xr-x  2 root root    4096 Oct 12  2011 rcS.d
-rw-r--r--  1 root root      70 Aug 10  2009 resolv.conf
-rwxr-xr-x  1 root root     268 Apr 17  2008 rmt
-rw-r--r--  1 root root     887 Aug 28  2008 rpc
-rw-r--r--  1 root root    2565 Feb  8  2009 rsyslog.conf
drwxr-xr-x  2 root root       6 Feb  8  2009 rsyslog.d
-rw-r--r--  1 root root    3663 May  2  2009 screenrc
-rw-r--r--  1 root root     666 Apr 15  2009 scsi_id.config
-rw-r--r--  1 root root    1287 Nov 22  2008 securetty
drwxr-xr-x  2 root root    4096 Aug 10  2009 security
-rw-r--r--  1 root root   18480 Aug 28  2008 services
drwxr-xr-x  2 root root      57 Aug 10  2009 sgml
-rw-r-----  1 root shadow 18121 Sep 19 07:15 shadow
-rw-------  1 root root   18109 Sep 19 07:15 shadow-
-rw-r--r--  1 root root     182 Sep 19  2011 shells
drwxr-xr-x  3 root root      72 Sep  9  2009 skel
drwxr-xr-x  2 root root     154 Nov 26  2011 ssh
drwxr-xr-x  4 root root      50 Jan 14  2011 ssl
-r--r-----  1 root root     590 Jul 14  2010 sudoers
drwxr-xr-x  2 root root      23 Aug 10  2009 suphp
-rw-r--r--  1 root root    2300 Nov  4  2009 sysctl.conf
-rw-r--r--  1 root root    2275 Nov  4  2009 sysctl.conf~
drwxr-xr-x  2 root root       6 Jan 11  2009 sysctl.d
drwxr-xr-x  2 root root      19 Aug 10  2009 terminfo
-rw-r--r--  1 root root       8 Jan 14  2011 timezone
-rw-r--r--  1 root root     645 Feb  3  2008 ts.conf
-rw-r--r--  1 root root    1260 May 30  2008 ucf.conf
drwxr-xr-x  4 root root      64 Jul 14  2010 udev
drwxr-xr-x  2 root root      35 Jun 20 06:00 vim
-rw-r--r--  1 root root     314 Sep 29  2008 warnquota.conf
-rw-r--r--  1 root root    4221 Sep  7  2008 wgetrc
drwxr-xr-x  2 root root      80 Aug 10  2009 xml
================================================ls -la --full-time /lib================================================
total 6972
drwxr-xr-x 11 root root    8192 2012-09-17 11:31:32.626785880 +0000 .
drwxr-xr-x 21 root root    4096 2011-09-19 12:15:33.373141391 +0000 ..
drwxr-xr-x  2 root root       6 2009-04-15 21:14:55.000000000 +0000 firmware
drwxr-xr-x  3 root root     116 2009-08-10 09:18:20.200213132 +0000 init
-rwxr-xr-x  1 root root  119288 2011-01-07 21:33:04.000000000 +0000 ld-2.7.so
lrwxrwxrwx  1 root root       9 2011-01-14 13:32:30.476596646 +0000 ld-linux-x86-64.so.2 -> ld-2.7.so
lrwxrwxrwx  1 root root      34 2011-09-19 12:15:33.373141391 +0000 ld-linux.so.2 -> /emul/ia32-linux/lib/ld-linux.so.2
-rw-r--r--  1 root root    6176 2011-01-07 21:33:04.000000000 +0000 libBrokenLocale-2.7.so
lrwxrwxrwx  1 root root      22 2011-01-14 13:32:30.472596026 +0000 libBrokenLocale.so.1 -> libBrokenLocale-2.7.so
-rw-r--r--  1 root root   18600 2011-01-07 21:33:04.000000000 +0000 libSegFault.so
lrwxrwxrwx  1 root root      15 2009-08-10 09:18:20.244210472 +0000 libacl.so.1 -> libacl.so.1.1.0
-rw-r--r--  1 root root   29360 2008-04-23 21:01:34.000000000 +0000 libacl.so.1.1.0
-rw-r--r--  1 root root   14832 2011-01-07 21:33:04.000000000 +0000 libanl-2.7.so
lrwxrwxrwx  1 root root      13 2011-01-14 13:32:30.476596646 +0000 libanl.so.1 -> libanl-2.7.so
lrwxrwxrwx  1 root root      16 2009-08-10 09:18:20.306489815 +0000 libattr.so.1 -> libattr.so.1.1.0
-rw-r--r--  1 root root   17424 2009-02-10 09:47:21.000000000 +0000 libattr.so.1.1.0
lrwxrwxrwx  1 root root      15 2009-08-10 09:18:20.360208680 +0000 libblkid.so.1 -> libblkid.so.1.0
-rw-r--r--  1 root root   46608 2008-10-13 03:54:02.000000000 +0000 libblkid.so.1.0
lrwxrwxrwx  1 root root      15 2011-01-14 13:32:54.412950020 +0000 libbz2.so.1 -> libbz2.so.1.0.4
lrwxrwxrwx  1 root root      15 2011-01-14 13:32:54.412950020 +0000 libbz2.so.1.0 -> libbz2.so.1.0.4
-rw-r--r--  1 root root   66224 2010-08-18 17:44:47.000000000 +0000 libbz2.so.1.0.4
-rwxr-xr-x  1 root root 1375536 2011-01-07 21:33:04.000000000 +0000 libc-2.7.so
lrwxrwxrwx  1 root root      11 2011-01-14 13:32:30.472596026 +0000 libc.so.6 -> libc-2.7.so
lrwxrwxrwx  1 root root      14 2009-08-10 09:18:44.944104665 +0000 libcap.so.1 -> libcap.so.1.10
-rw-r--r--  1 root root   14880 2006-03-16 11:56:29.000000000 +0000 libcap.so.1.10
lrwxrwxrwx  1 root root      14 2011-08-19 13:44:24.600375948 +0000 libcap.so.2 -> libcap.so.2.11
-rw-r--r--  1 root root   16976 2008-07-26 15:52:16.000000000 +0000 libcap.so.2.11
lrwxrwxrwx  1 root root      17 2009-08-10 09:18:45.027530955 +0000 libcfont.so.0 -> libcfont.so.0.0.0
-rw-r--r--  1 root root   12776 2008-04-15 21:40:42.000000000 +0000 libcfont.so.0.0.0
-rw-r--r--  1 root root  190760 2011-01-07 21:33:04.000000000 +0000 libcidn-2.7.so
lrwxrwxrwx  1 root root      14 2011-01-14 13:32:30.472596026 +0000 libcidn.so.1 -> libcidn-2.7.so
lrwxrwxrwx  1 root root      17 2009-08-10 09:18:21.223246521 +0000 libcom_err.so.2 -> libcom_err.so.2.1
-rw-r--r--  1 root root   11648 2008-10-13 03:54:02.000000000 +0000 libcom_err.so.2.1
lrwxrwxrwx  1 root root      19 2009-08-10 09:18:45.027530955 +0000 libconsole.so.0 -> libconsole.so.0.0.0
-rw-r--r--  1 root root  140840 2008-04-15 21:40:42.000000000 +0000 libconsole.so.0.0.0
-rw-r--r--  1 root root   39112 2011-01-07 21:33:04.000000000 +0000 libcrypt-2.7.so
lrwxrwxrwx  1 root root      15 2011-01-14 13:32:30.472596026 +0000 libcrypt.so.1 -> libcrypt-2.7.so
lrwxrwxrwx  1 root root      19 2009-08-10 09:18:45.027530955 +0000 libctutils.so.0 -> libctutils.so.0.0.0
-rw-r--r--  1 root root   21024 2008-04-15 21:40:42.000000000 +0000 libctutils.so.0.0.0
-rw-r--r--  1 root root   98840 2008-10-01 14:33:16.000000000 +0000 libdevmapper.so.1.02.1
-rw-r--r--  1 root root   14616 2011-01-07 21:33:04.000000000 +0000 libdl-2.7.so
lrwxrwxrwx  1 root root      12 2011-01-14 13:32:30.472596026 +0000 libdl.so.2 -> libdl-2.7.so
lrwxrwxrwx  1 root root      13 2009-08-10 09:18:19.672214539 +0000 libe2p.so.2 -> libe2p.so.2.3
-rw-r--r--  1 root root   25424 2008-10-13 03:54:02.000000000 +0000 libe2p.so.2.3
lrwxrwxrwx  1 root root      16 2009-08-10 09:18:19.672214539 +0000 libext2fs.so.2 -> libext2fs.so.2.4
-rw-r--r--  1 root root  187416 2008-10-13 03:54:02.000000000 +0000 libext2fs.so.2.4
-rw-r--r--  1 root root   93016 2009-01-02 11:14:18.000000000 +0000 libgcc_s.so.1
lrwxrwxrwx  1 root root      18 2009-08-10 09:19:24.603931197 +0000 libhandle.so.1 -> libhandle.so.1.0.3
-rw-r--r--  1 root root    9752 2009-02-10 02:10:12.000000000 +0000 libhandle.so.1.0.3
lrwxrwxrwx  1 root root      17 2009-08-10 09:18:45.727470997 +0000 libhistory.so.5 -> libhistory.so.5.2
-rw-r--r--  1 root root   32968 2009-01-14 11:19:12.000000000 +0000 libhistory.so.5.2
-rw-r--r--  1 root root    7736 2008-09-01 11:59:38.000000000 +0000 libkeyutils-1.2.so
lrwxrwxrwx  1 root root      18 2009-08-10 09:19:12.875992235 +0000 libkeyutils.so.1 -> libkeyutils-1.2.so
-rw-r--r--  1 root root  534736 2011-01-07 21:33:04.000000000 +0000 libm-2.7.so
lrwxrwxrwx  1 root root      11 2011-01-14 13:32:30.472596026 +0000 libm.so.6 -> libm-2.7.so
-rw-r--r--  1 root root   18592 2011-01-07 21:33:04.000000000 +0000 libmemusage.so
lrwxrwxrwx  1 root root      17 2009-08-10 09:18:21.540205800 +0000 libncurses.so.5 -> libncurses.so.5.7
-rw-r--r--  1 root root  256288 2008-12-14 21:31:27.000000000 +0000 libncurses.so.5.7
lrwxrwxrwx  1 root root      18 2009-08-10 09:18:45.502855757 +0000 libncursesw.so.5 -> libncursesw.so.5.7
-rw-r--r--  1 root root  305952 2008-12-14 21:31:28.000000000 +0000 libncursesw.so.5.7
-rw-r--r--  1 root root   88968 2011-01-07 21:33:04.000000000 +0000 libnsl-2.7.so
lrwxrwxrwx  1 root root      13 2011-01-14 13:32:30.460595452 +0000 libnsl.so.1 -> libnsl-2.7.so
-rw-r--r--  1 root root   31536 2011-01-07 21:33:04.000000000 +0000 libnss_compat-2.7.so
lrwxrwxrwx  1 root root      20 2011-01-14 13:32:30.432594252 +0000 libnss_compat.so.2 -> libnss_compat-2.7.so
-rw-r--r--  1 root root   18752 2011-01-07 21:33:04.000000000 +0000 libnss_dns-2.7.so
lrwxrwxrwx  1 root root      17 2011-01-14 13:32:30.432594252 +0000 libnss_dns.so.2 -> libnss_dns-2.7.so
-rw-r--r--  1 root root   47520 2011-01-07 21:33:04.000000000 +0000 libnss_files-2.7.so
lrwxrwxrwx  1 root root      19 2011-01-14 13:32:30.432594252 +0000 libnss_files.so.2 -> libnss_files-2.7.so
-rw-r--r--  1 root root   18784 2011-01-07 21:33:04.000000000 +0000 libnss_hesiod-2.7.so
lrwxrwxrwx  1 root root      20 2011-01-14 13:32:30.336589798 +0000 libnss_hesiod.so.2 -> libnss_hesiod-2.7.so
-rw-r--r--  1 root root   43472 2011-01-07 21:33:04.000000000 +0000 libnss_nis-2.7.so
lrwxrwxrwx  1 root root      17 2011-01-14 13:32:30.336589798 +0000 libnss_nis.so.2 -> libnss_nis-2.7.so
-rw-r--r--  1 root root   51616 2011-01-07 21:33:04.000000000 +0000 libnss_nisplus-2.7.so
lrwxrwxrwx  1 root root      21 2011-01-14 13:32:30.336589798 +0000 libnss_nisplus.so.2 -> libnss_nisplus-2.7.so
lrwxrwxrwx  1 root root      17 2009-08-10 09:18:22.240230782 +0000 libpam.so.0 -> libpam.so.0.81.12
-rw-r--r--  1 root root   46256 2009-03-24 09:08:13.000000000 +0000 libpam.so.0.81.12
lrwxrwxrwx  1 root root      21 2009-08-10 09:18:22.240230782 +0000 libpam_misc.so.0 -> libpam_misc.so.0.81.3
-rw-r--r--  1 root root   10920 2009-03-24 09:08:13.000000000 +0000 libpam_misc.so.0.81.3
lrwxrwxrwx  1 root root      17 2009-08-10 09:18:22.240230782 +0000 libpamc.so.0 -> libpamc.so.0.81.0
-rw-r--r--  1 root root   11464 2009-03-24 09:08:13.000000000 +0000 libpamc.so.0.81.0
lrwxrwxrwx  1 root root      23 2012-09-17 11:31:32.626785880 +0000 libparted-1.8.so.10 -> libparted-1.8.so.10.0.0
-rw-r--r--  1 root root  389040 2008-11-24 02:28:09.000000000 +0000 libparted-1.8.so.10.0.0
-rw-r--r--  1 root root    6192 2011-01-07 21:33:04.000000000 +0000 libpcprofile.so
lrwxrwxrwx  1 root root      17 2010-07-14 15:49:45.130796195 +0000 libpcre.so.3 -> libpcre.so.3.12.1
-rw-r--r--  1 root root  192712 2009-10-06 23:46:18.000000000 +0000 libpcre.so.3.12.1
lrwxrwxrwx  1 root root      16 2009-08-10 09:18:45.664100329 +0000 libpopt.so.0 -> libpopt.so.0.0.0
-rw-r--r--  1 root root   37712 2008-06-25 11:06:15.000000000 +0000 libpopt.so.0.0.0
-rw-r--r--  1 root root   68064 2009-01-11 22:08:40.000000000 +0000 libproc-3.2.7.so
-rwxr-xr-x  1 root root  130114 2011-01-07 21:33:04.000000000 +0000 libpthread-2.7.so
lrwxrwxrwx  1 root root      17 2011-01-14 13:32:30.100581179 +0000 libpthread.so.0 -> libpthread-2.7.so
lrwxrwxrwx  1 root root      18 2009-08-10 09:18:45.727470997 +0000 libreadline.so.5 -> libreadline.so.5.2
-rw-r--r--  1 root root  258616 2009-01-14 11:19:12.000000000 +0000 libreadline.so.5.2
-rw-r--r--  1 root root   72568 2011-01-07 21:33:04.000000000 +0000 libresolv-2.7.so
lrwxrwxrwx  1 root root      16 2011-01-14 13:32:30.100581179 +0000 libresolv.so.2 -> libresolv-2.7.so
-rw-r--r--  1 root root   35784 2011-01-07 21:33:04.000000000 +0000 librt-2.7.so
lrwxrwxrwx  1 root root      12 2011-01-14 13:32:30.100581179 +0000 librt.so.1 -> librt-2.7.so
-rw-r--r--  1 root root  109464 2008-09-16 07:22:47.000000000 +0000 libselinux.so.1
-rw-r--r--  1 root root  237168 2008-07-12 14:29:13.000000000 +0000 libsepol.so.1
lrwxrwxrwx  1 root root      17 2009-08-10 09:18:22.438608764 +0000 libslang.so.2 -> libslang.so.2.1.3
-rw-r--r--  1 root root  952736 2008-03-17 19:22:37.000000000 +0000 libslang.so.2.1.3
lrwxrwxrwx  1 root root      12 2009-08-10 09:18:22.512200028 +0000 libss.so.2 -> libss.so.2.0
-rw-r--r--  1 root root   24416 2008-10-13 03:54:02.000000000 +0000 libss.so.2.0
lrwxrwxrwx  1 root root      17 2011-05-17 11:56:51.154382396 +0000 libsysfs.so.2 -> libsysfs.so.2.0.1
-rw-r--r--  1 root root   43920 2008-09-06 09:26:29.000000000 +0000 libsysfs.so.2.0.1
-rw-r--r--  1 root root   31376 2011-01-07 21:33:04.000000000 +0000 libthread_db-1.0.so
lrwxrwxrwx  1 root root      19 2011-01-14 13:32:30.100581179 +0000 libthread_db.so.1 -> libthread_db-1.0.so
lrwxrwxrwx  1 root root      13 2009-08-10 09:18:21.540205800 +0000 libtic.so.5 -> libtic.so.5.7
-rw-r--r--  1 root root   77328 2008-12-14 21:31:27.000000000 +0000 libtic.so.5.7
lrwxrwxrwx  1 root root      14 2009-08-10 09:18:45.502855757 +0000 libticw.so.5 -> libticw.so.5.7
-rw-r--r--  1 root root   77328 2008-12-14 21:31:28.000000000 +0000 libticw.so.5.7
lrwxrwxrwx  1 root root      19 2009-08-10 09:18:46.460098685 +0000 libusb-0.1.so.4 -> libusb-0.1.so.4.4.4
-rw-r--r--  1 root root   32608 2008-09-05 10:18:53.000000000 +0000 libusb-0.1.so.4.4.4
-rw-r--r--  1 root root   10560 2011-01-07 21:33:04.000000000 +0000 libutil-2.7.so
lrwxrwxrwx  1 root root      14 2011-01-14 13:32:30.100581179 +0000 libutil.so.1 -> libutil-2.7.so
lrwxrwxrwx  1 root root      14 2009-08-10 09:18:22.910263931 +0000 libuuid.so.1 -> libuuid.so.1.2
-rw-r--r--  1 root root   15344 2008-10-13 03:54:02.000000000 +0000 libuuid.so.1.2
lrwxrwxrwx  1 root root      22 2010-07-14 15:49:39.440808580 +0000 libvolume_id.so.0 -> libvolume_id.so.0.85.0
-rw-r--r--  1 root root   33368 2009-08-26 10:27:16.000000000 +0000 libvolume_id.so.0.85.0
lrwxrwxrwx  1 root root      16 2009-08-10 09:18:47.860091897 +0000 libwrap.so.0 -> libwrap.so.0.7.6
-rw-r--r--  1 root root   36208 2008-07-26 00:05:10.000000000 +0000 libwrap.so.0.7.6
lrwxrwxrwx  1 root root      19 2009-08-10 09:18:44.732103199 +0000 libxtables.so.0 -> libxtables.so.0.0.0
-rw-r--r--  1 root root   23392 2009-02-09 19:35:51.000000000 +0000 libxtables.so.0.0.0
drwxr-xr-x  2 root root      27 2009-08-10 09:18:23.136199484 +0000 lsb
drwxr-xr-x  3 root root      31 2009-08-10 09:19:19.227958057 +0000 modules
drwxr-xr-x  2 root root    4096 2009-08-10 09:18:22.105333286 +0000 security
drwxr-xr-x 15 root root     110 2008-12-14 20:27:17.000000000 +0000 terminfo
drwxr-xr-x  3 root root    4096 2010-07-14 15:49:39.999244122 +0000 udev
drwxr-xr-x  2 root root       6 2009-01-04 11:41:57.000000000 +0000 x86_64-linux-gnu
drwxr-xr-x  2 root root    4096 2009-08-10 09:18:44.732103199 +0000 xtables
================================================ls -la --full-time /lib64================================================
lrwxrwxrwx 1 root root 4 2009-08-10 09:18:11.000293187 +0000 /lib64 -> /lib
================================================cat /proc/cpuinfo================================================
processor	: 0
vendor_id	: GenuineIntel
cpu family	: 6
model		: 15
model name	: Intel(R) Xeon(R) CPU            5130  @ 2.00GHz
stepping	: 6
cpu MHz		: 2000.070
cache size	: 4096 KB
physical id	: 0
siblings	: 1
core id		: 0
cpu cores	: 1
apicid		: 0
initial apicid	: 0
fpu		: yes
fpu_exception	: yes
cpuid level	: 10
wp		: yes
flags		: fpu de tsc msr pae cx8 apic sep cmov pat clflush acpi mmx fxsr sse sse2 ss ht syscall lm constant_tsc up rep_good pni ssse3 cx16 lahf_lm
bogomips	: 4002.81
clflush size	: 64
cache_alignment	: 64
address sizes	: 36 bits physical, 48 bits virtual
power management:

================================================ls -la /libexec================================================
================================================php -v================================================
================================================perl -v================================================

This is perl, v5.10.0 built for x86_64-linux-gnu-thread-multi

Copyright 1987-2007, Larry Wall

Perl may be copied only under the terms of either the Artistic License or the
GNU General Public License, which may be found in the Perl 5 source kit.

Complete documentation for Perl, including FAQ lists, should be found on
this system using "man perl" or "perldoc perl".  If you have access to the
Internet, point your browser at http://www.perl.org/, the Perl Home Page.

================================================ls -la /usr/sbin/wicd================================================
================================================env================================================
SHELL=/bin/bash
TERM=xterm
SSH_TTY=/dev/pts/0
USER=myuser
PATH=/usr/local/bin:/usr/bin:/bin:/usr/games
MAIL=/var/mail/myuser
PWD=/home/host/myuser/.tmp
HOME=/home/host/myuser
SHLVL=2
LOGNAME=myuser
_=/usr/bin/env

================================================SUID================================================
-rwsr-xr-x 1 root root 76344 Apr 19  2010 /sbin/mount.nfs
-rwsr-xr-x 1 root root 737408 Dec 10  2010 /usr/sbin/exim4
-rwsr-xr-x 1 root root 10512 Jan  7  2011 /usr/lib/pt_chown
-rwsr-xr-x 1 root root 212656 Jan 14  2009 /usr/lib/openssh/ssh-keysign
-rwsr-xr-x 1 root root 196024 Jun  4  2008 /usr/lib/suphp/suphp
-rwsr-xr-x 1 root root 28600 Dec  6  2009 /usr/bin/newgrp
-rwsr-xr-x 1 root root 49536 Dec  6  2009 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 39104 Dec  6  2009 /usr/bin/passwd
-rwsr-xr-x 1 root root 36416 Dec  6  2009 /usr/bin/chfn
-rwsr-xr-x 1 root root 33376 Dec  6  2009 /usr/bin/chsh
-rwsr-xr-x 2 root root 127432 Jun 11  2010 /usr/bin/sudoedit
-rwsr-xr-x 2 root root 127432 Jun 11  2010 /usr/bin/sudo
-rwsr-xr-x 1 root root 33112 Dec  6  2009 /bin/su
-rwsr-xr-x 1 root root 66152 Apr 29  2008 /bin/mount
-rwsr-xr-x 1 root root 46040 Apr 29  2008 /bin/umount
-rwsr-xr-x 1 root root 28944 Jul 25  2010 /bin/ping6
-rwsr-xr-x 1 root root 33528 Jul 25  2010 /bin/ping
-rwsr-xr-x 1 root bin 3983592 Dec  2  2010 /opt/tivoli/tsm/client/api/bin/dsmtca
-rwsr-xr-x 1 root bin 2369640 Dec  2  2010 /opt/tivoli/tsm/client/api/bin64/dsmtca
-rwsr-xr-x 1 root bin 3983592 Dec  2  2010 /opt/tivoli/tsm/client/ba/bin/dsmtca

Последний раз редактировалось Pashkela; 21.09.2012 в 21:58..
BigQik вне форума   Ответить с цитированием
Старый 20.09.2012, 12:18   #588
cat1vo
 
Аватар для cat1vo
 
Регистрация: 08.10.2010
Сообщений: 38
Репутация: 5
По умолчанию

Linux host 2.6.26-2-xen-amd64 #1 SMP Thu Aug 20 00:36:34 UTC 2009 x86_64 GNU/Linux

Это виртуалка!
cat1vo вне форума   Ответить с цитированием
Старый 20.09.2012, 12:24   #589
BigQik
 
Регистрация: 25.10.2011
Сообщений: 8
Репутация: 0
По умолчанию

Цитата:
Сообщение от cat1vo Посмотреть сообщение
Linux host 2.6.26-2-xen-amd64 #1 SMP Thu Aug 20 00:36:34 UTC 2009 x86_64 GNU/Linux

Это виртуалка!
Это как-то влияет на эксплойты?
BigQik вне форума   Ответить с цитированием
Старый 20.09.2012, 13:01   #590
SynQ
 
Регистрация: 11.07.2010
Сообщений: 954
Репутация: 352
По умолчанию

ABftw: https://rdot.org/forum/showthread.php?t=1597

Также в тиволи голубого гиганта периодически находят баги, но тебе самому придется с этим разбираться, если умеешь.
SynQ вне форума   Ответить с цитированием
Ответ

Опции темы Поиск в этой теме
Поиск в этой теме:

Расширенный поиск
Опции просмотра

Ваши права в разделе
Вы не можете создавать новые темы
Вы не можете отвечать в темах
Вы не можете прикреплять вложения
Вы не можете редактировать свои сообщения

BB коды Вкл.
Смайлы Вкл.
[IMG] код Вкл.
HTML код Выкл.

Быстрый переход



Powered by vBulletin® Version 3.8.5
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd. Перевод: zCarot