June 2020
Intermediate to advanced
423 pages
7h 58m
Chinese
Content preview from Kali Linux学习手册
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
寻找漏洞
|
141
passwd
,但是又必须更改密码数据库,
passwd
程序需要具有
root
权限才能写
入所需的文件。如果
passwd
程序中存在漏洞,那么该程序将以
root
身份临时
运行,这意味着任何漏洞都能够以
root
权限运行。
包含
seuid
位设置的程序将会作为拥有该文件的用户启动。通常,拥有该文
件的用户将是
root
用户,因为用户需要能够执行一些需要
root
权限的功能,
比如更改自己的密码。但是,一个
setuid
程序适用于任何用户。和启动程序
的用户无关,当它运行时,它都会显示为磁盘上程序的所有者正在运行该程序。
使用
lynis
进行本地检查
可以运行本地漏洞测试的程序也兼容大多数
Linux
发行版本。
Kali
也不例外。
其中的一个程序是
lynis
,它是本地系统上运行的漏洞扫描程序,它通过对操
作系统安装中常见的设置进行大量扫描来加固操作系统。强化操作系统配置
是为了抵抗攻击。这可能意味着启用日志记录,收紧权限以及选择其他设置。
程序
lynis
可以兼容不同的扫描类型。根据用户希望扫描的深度,它支持快速
扫描和完全扫描。还有可能以穿透模式运行,这是一种非特权扫描。这限制
了可以检查的内容。任何需要
root
访问权限的内容,比如查看某些配置文件,
都无法在穿透模式下进行检查。这可以让你更好地了解攻击者如何能够访问
常规的、无特权账户,它们可以做些什么。示例
4-3
展示了
lynis
对基本的
Kali
安装进行检查的部分输出结果。
示例
4-3
:
lynis
的输出
[+] Memory and Processes
------------------------------------ ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.