Hlavní navigace

Názor k článku Jailkit: snadné chrootování služeb od . - i pres vsechny ty reci o nizke bezpecnosti...

  • Článek je starý, nové názory již nelze přidávat.
  • 28. 11. 2008 13:43

    . (neregistrovaný)
    i pres vsechny ty reci o nizke bezpecnosti chrootu, pouzivam na svy malych serverech pro apache modul mod_chroot (http://core.segfault.pl/~hobbit/mod_chroot/), a musim rici, ze dle logu mi resi vetsinu dnesnich automatizovanych utoku na webserver. v error logach se mi to projevuje napriklad nasledne:

    sh: line 1: perl: command not found
    sh: line 1: id: command not found
    sh: line 1: uname: command not found
    sh: line 1: sysctl: command not found
    sh: line 1: sysctl: command not found
    sh: line 1: sysctl: command not found
    sh: line 1: sysctl: command not found
    sh: line 1: id: command not found
    sh: line 1: ls: command not found
    sh: line 1: uname: command not found
    sh: line 1: sysctl: command not found
    sh: line 1: sysctl: command not found
    sh: line 1: sysctl: command not found
    sh: line 1: sysctl: command not found
    sh: line 1: id: command not found
    sh: line 1: which: command not found
    sh: line 1: cannot redirect standard input from /dev/null: No such file or directory
    sh: line 1: perl: command not found
    sh: line 1: uname: command not found
    sh: line 1: sysctl: command not found
    sh: line 1: sysctl: command not found
    sh: line 1: sysctl: command not found
    sh: line 1: sysctl: command not found
    sh: line 1: id: command not found
    sh: line 1: which: command not found

    i kdyz se mi tam holt nekdo bude chtit dostat, tak se mi tam rozhodne dostane, ale aspon mu muzu jeho prunik trosku stizit, ze?