|
|
Ȩ > Á¤º¸ÀÚ·á½Ç
 |
Á¦ ¸ñ |
 |
 |
[linux] ÇöÀç °ü¸®(?)ÇÏ°í ÀÖ´Â ¼¹ö¿¡ µ¥¸óµé ÀÔ´Ï´Ù. ¿ØÁö. |
 |
|
|
±Û¾´ÀÌ |
|
|
¾Ó»óÇÑ»îÀÇÈ¥ |
|
³¯ Â¥ |
|
|
06-01-17 16:43 |
|
Á¶È¸(1090)
|
|
|
Æ®·¢¹é ÁÖ¼Ò : http://netcop.woobi.co.kr/bbs/tb.php/k_pds/13
|
|
¾Æ·¡´Â ÇöÁ¦ µ¹¸®°í ÀÖ´Â ¼¹ö¿¡ µ¥¸ó µé ÀÔ´Ï´Ù. ÃÖ±Ùµé¾î ¼Óµµµµ ´À·ÁÁö°í
¿ÖÀÎÁö ÀÌÀ¯¸¦ ¸ð¸£°Ú½À´Ï´Ù. ¾Æ·¡ÀÇ µ¥¸óµéÀº ¼¹öÀçº× ÇÏ°í ³µÚ ½ÇÇàµÈ°ÍµéÀÔ´Ï´Ù.
Çѹø º¸½Ã°í Á¶¾ðÀ̶ó´øÁö ¾Ë°í °è½Å ÆÁÀÌ ÀÖÀ¸½Ã¸é °¡¸£ÃÄ Áֽñ⠹ٶø´Ï´Ù.
PID TTY STAT TIME COMMAND
1 ? S 0:04 init
2 ? SW 0:00 [keventd]
3 ? SW 0:00 [kapmd]
4 ? SWN 0:00 [ksoftirqd_CPU0]
5 ? SW 0:00 [kswapd]
6 ? SW 0:00 [bdflush]
7 ? SW 0:00 [kupdated]
8 ? SW 0:00 [pagebuf_daemon]
9 ? SW 0:00 [mdrecoveryd]
18 ? SW 0:00 [kjournald]
89 ? SW 0:00 [khubd]
249 ? SW 0:00 [kjournald]
250 ? SW 0:00 [kjournald]
251 ? SW 0:00 [kjournald]
252 ? SW 0:00 [kjournald]
253 ? SW 0:00 [kjournald]
456 ? S 0:00 unicon --kscm
659 ? S 0:00 syslogd -m 0
664 ? S 0:00 klogd -x
678 ? S 0:00 portmap
702 ? S 0:00 rpc.statd
809 ? S 0:00 /usr/sbin/apmd -p 10 -w 5 -W -P /etc/sysconfig/apm-sc
855 ? S 0:00 named -u named
857 ? S 0:00 named -u named
858 ? S 0:00 named -u named
859 ? S 0:00 named -u named
860 ? S 0:00 named -u named
876 ? S 0:00 /usr/sbin/sshd
901 ? S 0:00 xinetd -stayalive -reuse -pidfile /var/run/xinetd.pid
917 ? S 0:00 /usr/local/apache/bin/httpd
962 ? S 0:00 /usr/local/apache/bin/httpd
963 ? S 0:00 /usr/local/apache/bin/httpd
964 ? S 0:00 /usr/local/apache/bin/httpd
965 ? S 0:00 /usr/local/apache/bin/httpd
966 ? S 0:00 /usr/local/apache/bin/httpd
1001 ? S 0:00 /usr/libexec/postfix/master
1014 ? S 0:00 svscan
1015 ? S 0:00 pickup -l -t fifo -u -c
1016 ? S 0:00 nqmgr -l -n qmgr -t fifo -u -c
1017 ? S 0:00 supervise qmail-send
1018 ? S 0:00 supervise log
1019 ? S 1:53 supervise qmail-smtpd
1020 ? S 0:00 supervise log
1021 ? S 0:00 qmail-send
1022 ? S 0:00 /usr/local/bin/multilog t /var/log/qmail
1023 ? S 0:03 /usr/local/bin/multilog t
1025 ? S 0:00 splogger qmail
1026 ? S 0:00 qmail-lspawn |preline procmail ./Maildir/
1027 ? S 0:00 qmail-rspawn
1028 ? S 0:00 qmail-clean
1081 ? S 0:00 gpm -t ps/2 -m /dev/mouse
1148 ? S 0:00 proftpd (accepting connections)
1176 ? S 0:00 crond
1403 ? S 0:00 xfs -droppriv -daemon
1457 ? S 0:00 /usr/sbin/atd
1760 ? S 0:00 /usr/bin/perl /usr/libexec/webmin/miniserv.pl /etc/we
1771 tty1 S 0:00 /sbin/mingetty tty1
1772 tty2 S 0:00 /sbin/mingetty tty2
1773 tty3 S 0:00 /sbin/mingetty tty3
1774 tty4 S 0:00 /sbin/mingetty tty4
1775 tty5 S 0:00 /sbin/mingetty tty5
1776 tty6 S 0:00 /sbin/mingetty tty6
1777 ? S 0:00 /usr/bin/gdm -nodaemon
1858 ? S 0:00 /usr/bin/gdm -nodaemon
1859 ? S 0:01 /usr/bin/X11/X :0 -auth /var/lib/gdm/:0.Xauth
2135 ? S 0:00 /etc/upsmon/upsmon /dev/ttyS0 150 150
2260 ? S 0:00 /usr/bin/gdmlogin --disable-sound --disable-crash-dia
4278 ? S 0:00 /usr/local/apache/bin/httpd
4495 ? S 0:01 /usr/local/apache/bin/httpd
4496 ? S 0:00 /usr/local/apache/bin/httpd
4513 ? S 0:00 /usr/local/apache/bin/httpd
4514 ? S 0:00 /usr/local/apache/bin/httpd
4515 ? S 0:01 /usr/local/apache/bin/httpd
5033 ? S 0:00 /usr/sbin/sshd
7987 ? S 0:01 /usr/sbin/sshd
8185 pts/0 S 0:00 -bash
10574 ? S 0:00 /usr/local/apache/bin/httpd
20490 pts/0 S 0:00 /bin/sh ./safe_mysqld
20509 pts/0 S 0:00 /usr/local/mysql/libexec/mysqld --basedir=/usr/local/
20542 pts/0 S 0:00 /usr/local/mysql/libexec/mysqld --basedir=/usr/local/
20543 pts/0 S 0:00 /usr/local/mysql/libexec/mysqld --basedir=/usr/local/
20413 ? S 0:00 /usr/sbin/sshd
24687 ? S 0:00 /usr/sbin/sshd
25259 pts/1 S 0:00 -bash
29954 pts/1 S 0:00 su -
31043 pts/1 S 0:00 -bash
9615 ? S 0:00 /usr/local/apache/bin/httpd
16615 ? S 0:00 /usr/local/apache/bin/httpd
16918 ? S 0:00 /usr/local/apache/bin/httpd
18282 ? S 0:00 /usr/local/apache/bin/httpd
19980 ? S 0:00 /usr/local/apache/bin/httpd
19981 ? S 0:00 /usr/local/apache/bin/httpd
2911 ? R 0:00 supervise qmail-smtpd
2912 pts/1 R 0:00 ps -ax
2913 pts/1 R 0:00 -bash
===========================================================================
ÀÌ Á¤º¸·Î´Â ºÎÁ·Çϱ¸¿ä..
¾Æ·¡ ¸í·É¾îÀÇ °á°ú¸¦ ¿Ã·ÁÁÖ½Ã¸é ´äº¯µå¸®°Ú½À´Ï´Ù.
find /dev -type f -exec ls -al {} \;
lsof | grep LISTEN
netstat -an | grep LISTEN
pstree
find / -name .bash_history -exec ls -al {} \;
ÀÌ»ó°ú °°Àº ¸í·É¾îÀÇ ½ÇÇà°á°ú¸¦ ¾Ë·ÁÁֽʽÿä..............
=============================================================================
pstree
init-+-apmd
|-atd
|-bdflush
|-crond
|-gdm---gdm-+-X
| `-gdmlogin
|-gpm
|-httpd---15*[httpd]
|-kapmd
|-keventd
|-khubd
|-6*[kjournald]
|-klogd
|-ksoftirqd_CPU0
|-kswapd
|-kupdated
|-master-+-nqmgr
| `-pickup
|-mdrecoveryd
|-6*[mingetty]
|-miniserv.pl
|-named---named---3*[named]
|-pagebuf_daemon
|-portmap
|-proftpd
|-rpc.statd
|-safe_mysqld---mysqld---mysqld---mysqld
|-sshd---sshd---sshd---bash---su---bash---pstree
|-su---bash---sc_serv---sc_serv---3*[sc_serv]
|-svscan-+-supervise---qmail-send-+-qmail-clean
| | |-qmail-lspawn
| | |-qmail-rspawn
| | `-splogger
| |-2*[supervise---multilog]
| `-supervise---tcpserver
|-syslogd
|-unicon
|-upsmon
|-xfs
`-xinetd
netstat -an | grep LISTEN
tcp 0 0 0.0.0.0:8000 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:32768 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:8001 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:32769 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:6000 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:10000 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN
tcp 0 0 210.99.23.2:53 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN
unix 2 [ ACC ] STREAM LISTENING 2149 public/cleanup
unix 2 [ ACC ] STREAM LISTENING 2168 public/flush
unix 2 [ ACC ] STREAM LISTENING 2176 public/showq
unix 2 [ ACC ] STREAM LISTENING 4971 /tmp/.gdm_socket
unix 2 [ ACC ] STREAM LISTENING 81247 /tmp/mysql.sock
unix 2 [ ACC ] STREAM LISTENING 2156 private/rewrite
unix 2 [ ACC ] STREAM LISTENING 2160 private/bounce
unix 2 [ ACC ] STREAM LISTENING 2164 private/defer
unix 2 [ ACC ] STREAM LISTENING 2172 private/smtp
unix 2 [ ACC ] STREAM LISTENING 2180 private/error
unix 2 [ ACC ] STREAM LISTENING 2184 private/local
unix 2 [ ACC ] STREAM LISTENING 2190 private/virtual
unix 2 [ ACC ] STREAM LISTENING 2194 private/lmtp
unix 2 [ ACC ] STREAM LISTENING 2198 private/cyrus
unix 2 [ ACC ] STREAM LISTENING 2202 private/uucp
unix 2 [ ACC ] STREAM LISTENING 2206 private/ifmail
unix 2 [ ACC ] STREAM LISTENING 2210 private/bsmtp
unix 2 [ ACC ] STREAM LISTENING 5052 /tmp/.X11-unix/X0
unix 2 [ ACC ] STREAM LISTENING 2427 /dev/gpmctl
unix 2 [ ACC ] STREAM LISTENING 3342 /tmp/.font-unix/fs7100
find /dev -type f -exec ls -al {} \;
-rwxr-xr-x 1 root root 20781 7¿ù 30 2002 /dev/MAKEDEV
lsof | grep LISTEN
portmap 678 root 4u IPv4 1121 TCP *:sunrpc (LISTEN)
rpc.statd 702 root 6u IPv4 1176 TCP *:32768 (LISTEN)
named 855 root 10u IPv4 1928 TCP www:domain (LISTEN)
named 855 root 12u IPv4 1930 TCP seogyeong.co.kr:domain (LISTEN)
named 855 root 13u IPv4 1932 TCP www:rndc (LISTEN)
named 857 root 10u IPv4 1928 TCP www:domain (LISTEN)
named 857 root 12u IPv4 1930 TCP seogyeong.co.kr:domain (LISTEN)
named 857 root 13u IPv4 1932 TCP www:rndc (LISTEN)
named 858 root 10u IPv4 1928 TCP www:domain (LISTEN)
named 858 root 12u IPv4 1930 TCP seogyeong.co.kr:domain (LISTEN)
named 858 root 13u IPv4 1932 TCP www:rndc (LISTEN)
named 859 root 10u IPv4 1928 TCP www:domain (LISTEN)
named 859 root 12u IPv4 1930 TCP seogyeong.co.kr:domain (LISTEN)
named 859 root 13u IPv4 1932 TCP www:rndc (LISTEN)
named 860 root 10u IPv4 1928 TCP www:domain (LISTEN)
named 860 root 12u IPv4 1930 TCP seogyeong.co.kr:domain (LISTEN)
named 860 root 13u IPv4 1932 TCP www:rndc (LISTEN)
sshd 876 root 3u IPv4 1936 TCP *:ssh (LISTEN)
xinetd 901 root 5u IPv4 1973 TCP www:32769 (LISTEN)
httpd 917 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 962 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 963 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 964 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 965 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 966 root 18u IPv4 2012 TCP *:http (LISTEN)
master 1001 root 11u IPv4 2131 TCP www:smtp (LISTEN)
proftpd 1148 root 0u IPv4 2738 TCP *:ftp (LISTEN)
miniserv. 1760 root 4u IPv4 4628 TCP *:10000 (LISTEN)
X 1859 root 1u IPv4 5051 TCP *:x11 (LISTEN)
httpd 4278 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 4495 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 4496 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 4513 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 4514 root 18u IPv4 2012 TCP *:http (LISTEN)
sc_serv 7214 root 4u IPv4 40243023 TCP *:8001 (LISTEN)
sc_serv 7214 root 7u IPv4 40243025 TCP *:8000 (LISTEN)
sc_serv 7215 root 4u IPv4 40243023 TCP *:8001 (LISTEN)
sc_serv 7215 root 7u IPv4 40243025 TCP *:8000 (LISTEN)
sc_serv 7216 root 4u IPv4 40243023 TCP *:8001 (LISTEN)
sc_serv 7216 root 7u IPv4 40243025 TCP *:8000 (LISTEN)
sc_serv 7217 root 4u IPv4 40243023 TCP *:8001 (LISTEN)
sc_serv 7217 root 7u IPv4 40243025 TCP *:8000 (LISTEN)
sc_serv 7218 root 4u IPv4 40243023 TCP *:8001 (LISTEN)
sc_serv 7218 root 7u IPv4 40243025 TCP *:8000 (LISTEN)
httpd 11763 root 18u IPv4 2012 TCP *:http (LISTEN)
mysqld 20509 root 3u IPv4 81246 TCP *:mysql (LISTEN)
mysqld 20542 root 3u IPv4 81246 TCP *:mysql (LISTEN)
mysqld 20543 root 3u IPv4 81246 TCP *:mysql (LISTEN)
find / -name .bash_history -exec ls -al {} \;
-rw------- 1 liasalt liasalt 144 3¿ù 7 16:38 /home/liasalt/.bash_history
-rw------- 1 mono mono 108 6¿ù 30 20:33 /home/mono/.bash_history
-rwxr-xr-x 1 seogyeon seogyeon 6180 8¿ù 13 11:56 /home/seogyeong/.bash_history
-rw------- 1 deux80 deux80 156 6¿ù 30 22:12 /home/deux80/.bash_history
-rwxr-xr-x 1 clubbagh clubbagh 9888 8¿ù 12 18:15 /home/clubbaghdad/.bash_history
-rw------- 1 info info 2187 8¿ù 11 00:44 /home/info/.bash_history
-rw------- 1 root root 10066 8¿ù 12 18:15 /root/.bash_history
===============================================================================
redcamel ´ÔÀÇ ±Û
--------------------------------------------------------------------------------
pstree
init-+-apmd
|-atd
|-bdflush
|-crond
|-gdm---gdm-+-X
| `-gdmlogin
|-gpm
|-httpd---15*[httpd]
|-kapmd
|-keventd
|-khubd
|-6*[kjournald]
|-klogd
|-ksoftirqd_CPU0
|-kswapd
|-kupdated
|-master-+-nqmgr
| `-pickup
|-mdrecoveryd
|-6*[mingetty]
|-miniserv.pl <----Red
|-named---named---3*[named]
|-pagebuf_daemon
|-portmap
|-proftpd
|-rpc.statd
|-safe_mysqld---mysqld---mysqld---mysqld
|-sshd---sshd---sshd---bash---su---bash---pstree
|-su---bash---sc_serv---sc_serv---3*[sc_serv]
|-svscan-+-supervise---qmail-send-+-qmail-clean
| | |-qmail-lspawn
| | |-qmail-rspawn
| | `-splogger
| |-2*[supervise---multilog]
| `-supervise---tcpserver
|-syslogd
|-unicon
|-upsmon
|-xfs
`-xinetd
netstat -an | grep LISTEN
tcp 0 0 0.0.0.0:8000 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:32768 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:8001 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:32769 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:6000 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:10000 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN
tcp 0 0 210.99.23.2:53 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN
unix 2 [ ACC ] STREAM LISTENING 2149 public/cleanup
unix 2 [ ACC ] STREAM LISTENING 2168 public/flush
unix 2 [ ACC ] STREAM LISTENING 2176 public/showq
unix 2 [ ACC ] STREAM LISTENING 4971 /tmp/.gdm_socket
unix 2 [ ACC ] STREAM LISTENING 81247 /tmp/mysql.sock
unix 2 [ ACC ] STREAM LISTENING 2156 private/rewrite
unix 2 [ ACC ] STREAM LISTENING 2160 private/bounce
unix 2 [ ACC ] STREAM LISTENING 2164 private/defer
unix 2 [ ACC ] STREAM LISTENING 2172 private/smtp
unix 2 [ ACC ] STREAM LISTENING 2180 private/error
unix 2 [ ACC ] STREAM LISTENING 2184 private/local
unix 2 [ ACC ] STREAM LISTENING 2190 private/virtual
unix 2 [ ACC ] STREAM LISTENING 2194 private/lmtp
unix 2 [ ACC ] STREAM LISTENING 2198 private/cyrus
unix 2 [ ACC ] STREAM LISTENING 2202 private/uucp
unix 2 [ ACC ] STREAM LISTENING 2206 private/ifmail
unix 2 [ ACC ] STREAM LISTENING 2210 private/bsmtp
unix 2 [ ACC ] STREAM LISTENING 5052 /tmp/.X11-unix/X0
unix 2 [ ACC ] STREAM LISTENING 2427 /dev/gpmctl
unix 2 [ ACC ] STREAM LISTENING 3342 /tmp/.font-unix/fs7100
find /dev -type f -exec ls -al {} \;
-rwxr-xr-x 1 root root 20781 7¿ù 30 2002 /dev/MAKEDEV
lsof | grep LISTEN
portmap 678 root 4u IPv4 1121 TCP *:sunrpc (LISTEN)
rpc.statd 702 root 6u IPv4 1176 TCP *:32768 (LISTEN) <----Red
named 855 root 10u IPv4 1928 TCP www:domain (LISTEN)
named 855 root 12u IPv4 1930 TCP seogyeong.co.kr:domain (LISTEN)
named 855 root 13u IPv4 1932 TCP www:rndc (LISTEN)
named 857 root 10u IPv4 1928 TCP www:domain (LISTEN)
named 857 root 12u IPv4 1930 TCP seogyeong.co.kr:domain (LISTEN)
named 857 root 13u IPv4 1932 TCP www:rndc (LISTEN)
named 858 root 10u IPv4 1928 TCP www:domain (LISTEN)
named 858 root 12u IPv4 1930 TCP seogyeong.co.kr:domain (LISTEN)
named 858 root 13u IPv4 1932 TCP www:rndc (LISTEN)
named 859 root 10u IPv4 1928 TCP www:domain (LISTEN)
named 859 root 12u IPv4 1930 TCP seogyeong.co.kr:domain (LISTEN)
named 859 root 13u IPv4 1932 TCP www:rndc (LISTEN)
named 860 root 10u IPv4 1928 TCP www:domain (LISTEN)
named 860 root 12u IPv4 1930 TCP seogyeong.co.kr:domain (LISTEN)
named 860 root 13u IPv4 1932 TCP www:rndc (LISTEN)
sshd 876 root 3u IPv4 1936 TCP *:ssh (LISTEN)
xinetd 901 root 5u IPv4 1973 TCP www:32769 (LISTEN) <----Red
httpd 917 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 962 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 963 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 964 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 965 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 966 root 18u IPv4 2012 TCP *:http (LISTEN)
master 1001 root 11u IPv4 2131 TCP www:smtp (LISTEN)
proftpd 1148 root 0u IPv4 2738 TCP *:ftp (LISTEN)
miniserv. 1760 root 4u IPv4 4628 TCP *:10000 (LISTEN) <----Red
X 1859 root 1u IPv4 5051 TCP *:x11 (LISTEN)
httpd 4278 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 4495 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 4496 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 4513 root 18u IPv4 2012 TCP *:http (LISTEN)
httpd 4514 root 18u IPv4 2012 TCP *:http (LISTEN)
sc_serv 7214 root 4u IPv4 40243023 TCP *:8001 (LISTEN) <----Red
sc_serv 7214 root 7u IPv4 40243025 TCP *:8000 (LISTEN) <----Red
sc_serv 7215 root 4u IPv4 40243023 TCP *:8001 (LISTEN) <----Red
sc_serv 7215 root 7u IPv4 40243025 TCP *:8000 (LISTEN) <----Red
sc_serv 7216 root 4u IPv4 40243023 TCP *:8001 (LISTEN) <----Red
sc_serv 7216 root 7u IPv4 40243025 TCP *:8000 (LISTEN) <----Red
sc_serv 7217 root 4u IPv4 40243023 TCP *:8001 (LISTEN) <----Red
sc_serv 7217 root 7u IPv4 40243025 TCP *:8000 (LISTEN) <----Red
sc_serv 7218 root 4u IPv4 40243023 TCP *:8001 (LISTEN) <----Red
sc_serv 7218 root 7u IPv4 40243025 TCP *:8000 (LISTEN) <----Red
httpd 11763 root 18u IPv4 2012 TCP *:http (LISTEN)
mysqld 20509 root 3u IPv4 81246 TCP *:mysql (LISTEN)
mysqld 20542 root 3u IPv4 81246 TCP *:mysql (LISTEN)
mysqld 20543 root 3u IPv4 81246 TCP *:mysql (LISTEN)
find / -name .bash_history -exec ls -al {} \;
-rw------- 1 liasalt liasalt 144 3¿ù 7 16:38 /home/liasalt/.bash_history
-rw------- 1 mono mono 108 6¿ù 30 20:33 /home/mono/.bash_history
-rwxr-xr-x 1 seogyeon seogyeon 6180 8¿ù 13 11:56 /home/seogyeong/.bash_history
-rw------- 1 deux80 deux80 156 6¿ù 30 22:12 /home/deux80/.bash_history
-rwxr-xr-x 1 clubbagh clubbagh 9888 8¿ù 12 18:15 /home/clubbaghdad/.bash_history
-rw------- 1 info info 2187 8¿ù 11 00:44 /home/info/.bash_history
-rw------- 1 root root 10066 8¿ù 12 18:15 /root/.bash_history
===> À§ÀÇ »¡°£»öÀ¸·Î µÇ¾î ÀÖ´Â °ÍÀº »ó¼¼Á¡°Ë(»ç¿ëÈ®ÀÎ)À» Çغ¸¼Å¾ßÇÒ °ÍµéÀ̱¸¿ä.
ÀüüÀûÀ¸·Î ¼¹ö°¡ ´À¸° ¿øÀÎÀº ºÒÇÊ¿äÇÑ µ¥¸óµéÀÌ °ÅÀÇ ¸ðµÎ »ç¿ëµÇ°í ÀÖ´Â Å¿ÀÎ°Í °°½À´Ï´Ù.
ºÒÇÊ¿äÇÑ ÇÁ·Î¼¼½ºµéÀº ¼¹öÀÇ ÀÚ¿øµéÀ» ³¶ºñÇÏ°Ô µÇÁÒ.
°£´ÜÀÌ ´ÔÀÇ ¼¹ö¿ëµµ·Î º¸¾Æ,,,atd, rpc.statd, portmapµî(Á¤È®ÇÑ ¼¹ö¿ëµµ¿Í ȯ°æÀ» ¾Ë¼ö¾ø±â¿¡....´ëºÎºÐ ºÒÇÊ¿äÇÒ °Í °°Áö¸¸,,ÀÌÁ¤µµ)ÀÌ ¼¹öÀÚ¿ø(CPU, MEMORYµî)À» ³¶ºñÇÏ°í ÀÖ´Â °Í °°½À´Ï´Ù.
±×¸®°í, ¼¹ö·Î »ç¿ëµÇ°í ÀÖ´Â ¸®´ª½º¶ó¸é,,, X°ü·Ã ÇÁ·Î¼¼½ºµéÀº ¸ðµÎ Á×À̽ô °ÍÀÌ ÁÁÀ» °Í °°³×¿ä...
´ÔÀÇ ¼¹ö¿¡¼ ÇöÀç °¡Àå ¸¹Àº ÀÚ¿øÀ» ³¶ºñÇÏ´Â ÇÁ·Î¼¼½º´Â X¿Í °ü·ÃµÈ ÇÁ·Î¼¼½ºÀÎ°Í °°½À´Ï´Ù.
±×¸®°í, À§ÀÇ »¡°£»ö Æ÷Æ®µéÀº ºÐ¸íÇÑ ¿ëµµ°¡ ¾ø´Ù¸é, º¸¾È»ó ÇØÅ·ÀǽÉÀ» Çغ¸¾Æ¾ßÇÏ´Â °ÍÀÔ´Ï´Ù.
±×·³...20000
|
|
|
Copyright ¨Ï DBuser.net. All rights reserved.
