post by tommy @ 20 九月, 2006 10:20
post by tommy @ 19 九月, 2006 14:03
post by tommy @ 16 九月, 2006 21:14
最近老是在我的 /tmp 裡頭, 發現有個多出來的 /tmp/cmdtemp 檔案. 也在 apache 的 error_log 中發現一些訊息如下:
sh: -c: line 1: syntax error near unexpected token `;'
sh: -c: line 1: `; 1> /tmp/cmdtemp 2>&1; cat /tmp/cmdtemp; rm ^M'
rm: cannot remove `\r': No such file or directory
sh: line 1: /tmp/cmdtemp: Permission denied
rm: cannot remove `\r': No such file or directory
sh: line 1: /tmp/cmdtemp: Permission denied
sh: -c: line 1: syntax error near unexpected token `;'
sh: -c: line 1: `; 1> /tmp/cmdtemp 2>&1; cat /tmp/cmdtemp; rm ^M'
cat: write error: Broken pipe
rm: cannot remove `\r': No such file or directory
sh: line 1: /tmp/cmdtemp: Permission denied
雖然我的 /tmp 是獨立的, 且被 mount 為 noexec, 所以上頭的指令都無法正確的執行. 不過... 為什麼會讓人家有辦法把檔案寫入 /tmp/ 內呢?
(閱讀全文)post by tommy @ 15 九月, 2006 14:33
post by tommy @ 12 九月, 2006 22:01
post by tommy @ 12 九月, 2006 12:44
post by tommy @ 11 九月, 2006 14:50
post by tommy @ 11 九月, 2006 10:01
post by tommy @ 08 九月, 2006 12:33
post by tommy @ 07 九月, 2006 17:43