关于国内UNIX主机常见安全漏洞的描述
影响:入侵者可以藉此漏洞修改网页、获得该主机管理权。事件描述:在遭受攻击的UNIX系统上,入侵者常利用下列 rpc.ttdbserverrpc.cmsdrpc.statd/automountdsadmind程序的BufferOverflow漏洞自远程入侵主机。解决方法:1.将不必要的RPCservice自/etc/inetd.conf中移除,移除方法为(1)编辑/etc/inetd.conf,将不必要的service前面加上'#'或直接删除后存盘;(2)kill-HUPinetd.pid。2.安装修补程序 rpc.statd:OSVersionPatchID___________________SunOS5.6106592-02SunOS5.6_x86106593-02SunOS5.5.1104166-04SunOS5.5.1_x86104167-04SunOS5.5103468-04SunOS5.5_x86103469-05SunOS5.4102769-07SunOS5.4_x86102770-07SunOS5.3102932-05automountd:OSVersionPatchID___________________SunOS5.5.1104654-05SunOS5.5.1_x86104655-05SunOS5.5103187-43SunOS5.5_x86103188-43SunOS5.4101945-61SunOS5.4_x86101946-54SunOS5.3101318-92档案可至下列URL下载:ftp://sunsolve.sun.com/pub/patchesRedHat:请参考下列URL:http://www.redhat.com/support/errata/RHSA-2000-043-03.HTMLDebian:请参考下列URL:http://www.debian.org/security/2000/20000719a(2)rpc.cmsdSolaris:请依照您的版本安装下列修补程序 SunOSversionPatchID______________________5.7107893-045.7_x86107894-045.6105802-115.6_x86105803-135.5.1104489-105.5.1_x86105496-085.5104428-085.5_x86105495-065.4102734-05档案可至下列URL下载:ftp://sunsolve.sun.com/pub/patches(3)rpc.ttdbserverdSolaris:请依照您的版本安装下列修补程序 SunOSversionPatchID______________________5.7107893-045.7_x86107894-045.6105802-115.6_x86105803-135.5.1104489-105.5.1_x86105496-085.5104428-085.5_x86105495-065.4102734-05档案可至下列URL下载:ftp://sunsolve.sun.com/pub/patches(4)sadmindSolaris:请依照您的版本安装下列修补程序 OSVersionPatchID___________________SunOS5.7108662-01SunOS5.7_x86108663-01SunOS5.6108660-01SunOS5.6_x86108661-01SunOS5.5.1108658-01SunOS5.5.1_x86108659-01
相关文章: