有点不习惯FreeBSD下的csh,虽然可以输入bash临时切换到bash下,但每次都这样来一次,显得比较麻烦,一次搞定他,使用chsh命令来修改FreeBSD默认的shell吧:
FreeBSD# whereis bash
bash: /usr/local/bin/bash /usr/local/man/man1/bash.1.gz /usr/ports/shells/bash
FreeBSD# chsh -s /usr/local/bin/bash
chsh: user information updated
如果显示以上信息,注销重新登陆一下:
看是不是[root@FreeBSD ~]
漏洞起因
设计错误
影响系统
FreeBSD FreeBSD 6.0 .x
FreeBSD FreeBSD 6.0 -STABLE
FreeBSD FreeBSD 6.0 -RELEASE
FreeBSD FreeBSD 6.4-RELEASE-p5
FreeBSD FreeBSD 6.4-RELEASE-p4
FreeBSD FreeBSD 6.4-RELEASE-p2
FreeBSD FreeBSD 6.4 -STABLE
FreeBSD FreeBSD 6.4 -RELEASE-p3
FreeBSD FreeBSD 6.4 -RELEASE
FreeBSD FreeBSD 6.3-RELEASE-p11
FreeBSD FreeBSD 6.3-RELEASE-p10
FreeBSD FreeBSD 6.3 -RELENG
FreeBSD FreeBSD 6.3 -RELEASE-p9
FreeBSD FreeBSD 6.3 -RELEASE-p8
FreeBSD FreeBSD 6.3 -RELEASE-p6
FreeBSD FreeBSD 6.3
FreeBSD FreeBSD 6.2 -STABLE
FreeBSD FreeBSD 6.2 -RELENG
FreeBSD FreeBSD 6.2
FreeBSD FreeBSD 6.1 -STABLE
FreeBSD FreeBSD 6.1 -RELEASE-p10
FreeBSD FreeBSD 6.1 -RELEASE
FreeBSD FreeBSD 6.1
FreeBSD FreeBSD 6.0 -RELEASE-p5
不受影响系统
危害
本地攻击者可以利用漏洞提升特权。
阅读全文...
-----------------------
1. /usr/X11R6/lib/X11/xdm/xdm-config
注释掉这句:
!DisplayManager.requestPort: 0
-----------------------
2. /usr/X11R6/lib/X11/xdm/Xservers
注释掉这句:
#:0 local /usr/X11R6/bin/X
-----------------------
3. /usr/X11R6/lib/X11/xdm/Xaccess
把这句的注释去掉:
* #any host can get a login window
-----------------------
4. /etc/ttys中
修改如下:
ttyv8 "/usr/X11R6/bin/xdm -nodaemon" xterm on secure
-----------------------
5. /etc/ssh/sshd_config
去掉注释:
X11Forwarding yes
-----------------------
最后注意防火墙
姓名:Chinadu
性别:Man
职业:网络安全从业者
E-mail:imcto#msn.cn
近期评论