|
Forum |
|
|||||||
| Open Source A place where you can talk to like-minded people about the fastest growing software movement today! Discuss anything and everything about Open Source software and Operating Systems. |
 |
|
|
LinkBack | Thread Tools | Display Modes |
04-06-2009, 10:50 PM
|
#1 (permalink) |
|
mekalodu
Join Date: Oct 2004
Location: Navi Mumbai
Posts: 1,495
|
how does a hacker run remote scripts on a linux machine?
any file which is copied from a remote system doesnt have execute (x) privileges! in such a scenario how do scripts get run on the remote machine? assume i v configured iptables n left SE Linux in permissive state.
__________________
mekalodu |
|
| Advertisements. Register and be a member of the community to get rid of them. | |
|
Advertisement
|
|
|
04-06-2009, 11:12 PM
|
#2 (permalink) |
|
God of Mistakes...
Join Date: Dec 2005
Location: Pune, Maharashtra
Posts: 1,905
|
Re: how does a hacker run remote scripts on a linux machine?
I don't think that script can execute unless and until it has execute permission.
One way is that, you have a script which takes a file and executes it (just like system() of c), and hacker anyhow can let your program execute the script.
__________________
Registered Linux User #468778 ---------------------------------- http://twitter.com/_Garbage_ |
|
|
|
17-06-2009, 10:27 AM
|
#6 (permalink) |
|
Right Off the Assembly Line
Join Date: Nov 2006
Posts: 48
|
Re: how does a hacker run remote scripts on a linux machine?
Hi,
It works in following manner. 1) remote hacker try to exploit any service running on your system as the service normally run in privilege mode for example ping has the sticky bit on and run as root. 2) exploiting for example in your code you have defined char str[10]; so your string can take 10 characters including end of line NULL char at end; but what will happen if you try to push 1000 character in this. for experimenting you can try this. sometime it will do coredump - segmentation fault but after certain number of characters you will get error like unable to write and further more you will see unable to read or read error. although you are writing in the string but it will tale that unable to read, it is because your stack point is now corrupted. if you do more experiment and find out that you have reached to corrupt program counter then your service will start executing it. and here if you put your script code then it will execute. but this scenario was in old system, now a days most of the system prevent code execution from the stack. i hope this add a little value to your understanding. |
|
|
|
20-06-2009, 03:21 PM
|
#7 (permalink) |
|
mekalodu
Join Date: Oct 2004
Location: Navi Mumbai
Posts: 1,495
|
Re: how does a hacker run remote scripts on a linux machine?
thanks a lot for your reply.....
i m not into coding. m working as a jr. linux admin and this is informative. i was wondering apart from getting firewalls and OS patches rite is there any other way i can keep hackers at bay. i dont v too much exp in production env. though. i work in implementation.
__________________
mekalodu |
|
|
|
| Bookmarks |
| Thread Tools | |
| Display Modes | |
|
|
Copyright © 2007-12 Nine Dot Nine Mediaworx Pvt. Ltd. All Rights Reserved. Designed by 9.9 Media Design
Linear Mode
