2912 ¹ø ±ÛÀÇ ´äÀå±Û: Re: »êÀÌ´Ô Àúµµ Áú¹®Á» ¿Ã¸±°Ô¿© ½© ½ºÅ©¸³Æ® Á» º¸ÁÖ¼¼¿© ¤Ì¤Ì |
±Û¾´ÀÌ: »êÀÌ
[ȨÆäÀÌÁö]
|
±Û¾´³¯: 2012³â 03¿ù 06ÀÏ 08:27:10 È(¿ÀÀü) |
Á¶È¸: 1072 |
[¶Ê¶ÊÀÌ]´ÔÀÌ ³²±â½Å ±Û:
>¿©·¯°³ÀÇ È£½ºÆÃÀÌÀִµ¥
>
>°¢°¢ÀÇ µð·ºÅ丮 ¾÷·ÎµåÆú´õ°¡ Ʋ¸³´Ï´Ù ¾÷·Îµå Æú´õ¸¦ Áß½ÉÀ¸·Î
> find·Î systemÇÔ¼ö¹®ÀÚ¿ ãÀ¸·Á°íÇÕ´Ï´Ù
>
>¹Ø¿¡¿Í°°ÀÌ ÇϸéµÉ±î¿©
>
>Çѹø ºÁÁÖ¼¼¿©
>
>¹Ø¿¡¿Í°°ÀÌ ÇÏ´Â°Ô ¸Â´Â°Ç°¡¿ä?
>
>
>
>find "^(.*)/(data|attach|images|upload)" -name "*.*" | xargs
grep "system(" > shell.txt
>
path ºÎºÐÀÌ Æ²·È½À´Ï´Ù. Áï path ºÎºÐÀº Á¤±ÔÇ¥Çö½ÄÀÌ ¾ÈµË´Ï´Ù.
/home/a
/home/b/aaa
/home/b/bbb
/home/c
ÀÌ·¸°Ô 4°³ÀÇ µð·ºÅ丮¸¦ Ç¥ÇöÇÏ°íÀÚ ÇÑ´Ù¸é
/home/{a,c,{b/aaa,b/bbb}}
ÀÌ·¸°Ô Ç¥ÇöÇØ¾ß ÇÕ´Ï´Ù.
±×·¯³ª À§ÀÇ path ´Â ÀÌ·¸°Ô Ç¥ÇöÇϱâ Èûµå¹Ç·Î grep À¸·Î µð·ºÅ丮 À̸§À» Çϳª¾¿
üũÇؾßÇÕ´Ï´Ù.
±âº» µð·ºÅ丮°¡ /data/www À̶ó°í ÇÑ´Ù¸é
TOFIE=is.system.included.txt
WDIR=/data/www
cat /dev/null > ${TOFILE} ## ÃʱâÈ
cd $WDIR
DIRS=`ls`
for DIR in DIRS ; do
[ -d "$DIR" ] || continue ## µð·ºÅ丮°¡ ¾Æ´Ï¸é ´ÙÀ½ üũ
ISMATCH=`echo $DIR | grep '/\(data\|attach\|images\|upload\)$'`
[ "X${ISMATCH}" = "X" ] && continue ## ¸ÅÄ¡°¡ ¾ÈµÇ¸é ´ÙÀ½
üũ
## grep ÀÌ °¡´ÉÇÑ text ÆÄÀϸ¸ grep
##
find ${WDIR}/${DIR} -type f | xargs file | grep "text" | \
awk -F ':' '{print $1}' | xargs grep -n "system(" >> ${TOFILE}
done
¸¸¾à /data/www/user1/upload ÀÌ·±½ÄÀ¸·Î ÀÖ´Ù¸é À§ÀÇ for() ¹Û¿¡ Çѹø ´õ ½áÁà¾ß
ÇÕ´Ï´Ù.
cd /data/www
USERS=`ls`
for U for $USERS ; do
cd /data/www/$U
DIRS=`ls`
for DIR in $DIRS; do
....
....
done
done
ÀÌ·±½ÄÀ¸·Î..
>±×¸®°í ÇÑ°¡Áö ´õ±Ã±ÝÇÑ°Ç¿ä
>
>ssh shell¿¡¼ ÇÒ¼öÀÖ´Â site rebooting °°Àº°ÍÀ»
>À¥¿¡¼µµ °¡´ÉÇÒ±î¿ä?
>
>
>plesk³ª cpanel¿¡¼³ª ´Ù¸¥ À¥¾îµå¹ÎÅøÀ» º¸¸é
> À¥¿¡¼µµ ¸®ºÎÆà °¡´ÉÇÏ°ÔÇسõ¾Ñ´Âµ¥¿©
>±×·¡¼ ¾ð¶æ°¡´ÉÇҰŵµ°°¾Æ¼¿ä
>
>À¥¿¡¼ ¹öưŬ¸¯Çϸé
>ÀÚµ¿À¸·Î ½Ã½ºÅÛ ¸®ºÎÆà ±¸Çö°¡´ÉÇÑ°Ç°¡¿ä?
>°¡´ÉÇÏ´Ù¸é ÆÀÁ» ¾Ë·ÁÁֽǼöÀÖ½º¼¼¿©
>
°¡´ÉÀº ÇÕ´Ï´Ù¸¸ À¥¿¡¼ ½Ã½ºÅÛÀ» reboot ÇѴٴ°ÍÀº º¸¾ÈÀåÄ¡°¡ ¿Ïº®ÇؾßÇÏ´Ù´Â
°¡Á¤ÀÔ´Ï´Ù. º°·Î ±ÇÀåÇÏ´Â ¹æ¹ýÀº ¾Æ´Õ´Ï´Ù. ºÒÆíÇÏ´õ¶óµµ ssh ·Î Á¢¼ÓÇؼ reboot
ÇÏ´Â°Ô ÁÁ½À´Ï´Ù.
±¸Çö¿ø¸®´Â °¡´ÉÇÕ´Ï´Ù.
À¥¼¹ö¸¦ ±âÁ¸¿¡ »ç¿ëÇÏÁö ¾Ê´Â port ¸¦ Çϳª ÁöÁ¤ÇÏ°í À¥¼¹ö User ´Â root ¶Ç´Â ´Ù¸¥
user Çϳª¸¦ ÁöÁ¤ÇÑ(nobody °¡ ¾Æ´Ñ) ´ÙÀ½¿¡ ÇÁ·Î¼¼½º¸¦ ¶ç¿ó´Ï´Ù.
http://www.linuxchannel.net/docs/httpd-permission.txt
¿¡ ±âÁ¸ À¥¼¹öµ¥¸óÀº ±×´ë·Î µÎ°í ÇÑ°³´õ ¶ç¿ì´Â ¹æ¹ýÀÌ ÀÖ½À´Ï´Ù.
¾ÆÁÖ ¿À·¡µÈ ¹®¼Àε¥ ¾ÆÆÄÄ¡°¡ Áö±ÝÀº À̹æ½Ä´ë·Î ÀÛµ¿ÇÒÁö´Â ¸ð¸£°Ú½À´Ï´Ù.
root °¡ ¾Æ´Ñ °æ¿ì ÁöÁ¤ÇÑ user °¡ sudo ¸í·É¾î¸¦ »ç¿ë°¡´ÉÇÏ°Ô²û /etc/sudoes ÆÄÀÏÀ»
ÆíÁýÇÕ´Ï´Ù.
À¥ÆäÀÌÁö¸¦ ¸¸µé°í(¾ÏÈ£/Æнº¿öµå·Î
ÀÎÁõ) exec('sudo reboot') ÀÌ·±½ÄÀ¸·Î ¿ÜºÎ ¸í·É¾î¸¦ È£ÃâÇÏ¸é µË´Ï´Ù.
>»êÀÌ´Ô ´äº¯Á»ÇØÁÖ½É °¨»çÇÒ°Ô¿ä
========================================
|
ÀÌÀü±Û : »êÀÌ´Ô Àúµµ Áú¹®Á» ¿Ã¸±°Ô¿© ½© ½ºÅ©¸³Æ® Á» º¸ÁÖ¼¼¿© ¤Ì¤Ì
´ÙÀ½±Û : »êÀÌ´Ô Á¤¸» ´äº¯ Á¤¸» °¨»çÇØ¿ä À½¾Ç ¸î°î¶ç¿ó´Ï´Ù
|
from 211.212.225.115
JS(Redhands)Board 0.4 +@
|