½Ã½ºÅÛ°ü¸®ÀÚÀÇ ½°ÅÍ Ä¿ÇǴнº Ä¿ÇÇÇâÀÌ ³ª´Â *NIX
Ä¿ÇǴнº
½Ã½ºÅÛ/³×Æ®¿÷/º¸¾ÈÀ» ´Ù·ç´Â °÷
 FAQFAQ   °Ë»ö°Ë»ö   ¸â¹ö¸®½ºÆ®¸â¹ö¸®½ºÆ®   »ç¿ëÀÚ ±×·ì»ç¿ëÀÚ ±×·ì   »ç¿ëÀÚ µî·ÏÇϱâ»ç¿ëÀÚ µî·ÏÇϱâ 
 °³ÀÎ Á¤º¸°³ÀÎ Á¤º¸   ºñ°ø°³ ¸Þ½ÃÁö¸¦ È®ÀÎÇÏ·Á¸é ·Î±×ÀÎÇϽʽÿÀºñ°ø°³ ¸Þ½ÃÁö¸¦ È®ÀÎÇÏ·Á¸é ·Î±×ÀÎÇϽʽÿÀ   ·Î±×Àηα×ÀΠ

°¡ÀÔ¾øÀÌ ´©±¸³ª ±ÛÀ» ¾µ ¼ö ÀÖ½À´Ï´Ù. °øÁö»çÇ׿¡ ´ëÇÑ ´ñ±Û±îÁöµµ..




BBS >> ¼³Ä¡, ¿î¿µ Q&A | ³×Æ®¿÷, º¸¾È Q&A | ÀÏ¹Ý Q&A || Á¤º¸¸¶´ç | AWS || ÀÚÀ¯°Ô½ÃÆÇ | ±¸Àα¸Á÷ || °øÁö»çÇ× | ÀÇ°ßÁ¦½Ã
·Î±×ºÐ¼® ºÎŹµå¸³´Ï´Ù.

 
±Û ¾²±â   ´äº¯ ´Þ±â    Ä¿ÇǴнº, ½Ã½ºÅÛ ¿£Áö´Ï¾îÀÇ ½°ÅÍ °Ô½ÃÆÇ À妽º -> ³×Æ®¿÷ °ü¸® / º¸¾È
ÀÌÀü ÁÖÁ¦ º¸±â :: ´ÙÀ½ ÁÖÁ¦ º¸±â  
±Û¾´ÀÌ ¸Þ½ÃÁö
bitinitialize



°¡ÀÔ: 2003³â 12¿ù 17ÀÏ
¿Ã¸° ±Û: 9
À§Ä¡: ÀüºÏ ÀÍ»ê

¿Ã¸®±â¿Ã·ÁÁü: 2004.1.12 ¿ù, 2:04 pm    ÁÖÁ¦: ·Î±×ºÐ¼® ºÎŹµå¸³´Ï´Ù. Àοë°ú ÇÔ²² ´äº¯

¾Æ·¡´Â ¾ÆÆÄÄ¡ access_log ÀϺÎÀÔ´Ï´Ù.
Á¢±ÙÀÚ IP´Â xxx·Î ó¸®^^

=============================================================
211.230.xxx.248 - - [12/Jan/2004:05:06:51 +0900] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 284 "-" "-"
211.230.xxx.248 - - [12/Jan/2004:05:06:51 +0900] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 298
211.230.xxx.248 - - [12/Jan/2004:05:06:51 +0900] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 298 "-" "-"
211.230.xxx.248 - - [12/Jan/2004:05:06:51 +0900] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 315
211.230.xxx.248 - - [12/Jan/2004:05:06:51 +0900] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 315 "-" "-"
211.230.xxx.248 - - [12/Jan/2004:05:06:52 +0900] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 315
211.230.xxx.248 - - [12/Jan/2004:05:06:52 +0900] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 315 "-" "-"
211.230.xxx.248 - - [12/Jan/2004:05:06:52 +0900] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 331
211.230.xxx.248 - - [12/Jan/2004:05:06:52 +0900] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 331 "-" "-"
211.230.xxx.248 - - [12/Jan/2004:05:06:52 +0900] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 297
211.230.xxx.248 - - [12/Jan/2004:05:06:52 +0900] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 297 "-" "-"

=============================================================

ÀÌ·¸°Ô µÇ¾î ÀÖ½À´Ï´Ù.
°ø°ÝÀÚ°¡ Á¦ ½Ã½ºÅÛÀ» À©µµ¿ìÁî·Î ¿ÀÀÎ À©µµ¿ìÁî ±â¹ÝÀÇ ÇØÅ· ½ÃµµÇÑ°Å ¸Â³ª¿ä?
ÀÌ°Ô ¾î¶² Á¾·ùÀÇ ÇØÅ·½ÃµµÀÎÁö¿ä?

¾Æ ±×¸®±¸ ¾ÆÆÄÄ¡¿¡¼­ Á¢±ÙÀÚ ·Î±×(access_log) ÆÄÀÏ¿¡ ÀúÀÇ IP¸¦ Á¦¿ÜÇÏ°í
±â·ÏÇÏ´Â ¹æ¹ýÀÌ ÀÖ´Ù°í µé¾ú´Âµ¥ httpd.confÀÇ ¾î¶² ºÎºÐÀԴϱî?
µÎ²¨¿î ¸®´ª½º ¹ÙÀ̺í Ã¥À» ¾Æ¹«¸® µÚÁ®µµ ³ª¿ÀÁú ¾Ê³×¿ä?
±×·³ ¸ðµÎ Áñ°Å¿î ¸®´ª½º~
À§·Î
»ç¿ëÀÚ Á¤º¸ º¸±â ºñ¹Ð ¸Þ½ÃÁö º¸³»±â MSN ¸Þ½ÅÀú
truefeel
Ä«Æä °ü¸®ÀÚ


°¡ÀÔ: 2003³â 7¿ù 24ÀÏ
¿Ã¸° ±Û: 1277
À§Ä¡: ´ëÇѹα¹

¿Ã¸®±â¿Ã·ÁÁü: 2004.1.12 ¿ù, 4:21 pm    ÁÖÁ¦: Re: ·Î±×ºÐ¼® (´Ô´Ù ¿úÀÔ´Ï´Ù.) Àοë°ú ÇÔ²² ´äº¯

´Ô´Ù(Nimda) ¿úÀÔ´Ï´Ù.
ÀǵµÀûÀÎ ÇØÅ·½Ãµµ¶ó±â º¸´Ù´Â »ó´ë IPµµ °¨¿°µÇ¾î¼­ ±×·±´Ù°í º¸½Ã¸é µË´Ï´Ù.
¾ÆÆÄÄ¡¿¡¼­´Â ¾Æ¹«·± ¹®Á¦°¡ ¾ø´Â °ÍÀÌ´Ï °ÆÁ¤ÇÏÁö ¾ÊÀ¸¼Åµµ µÇ±¸¿ä,
httpd.conf ¼³Á¤À» ÅëÇØ ´Ô´Ù ¿úÀ» ÀúÀåÇÏÁö ¾ÊÀ» ¼öµµ ÀÖ°í, º°µµ ÆÄÀÏ·Î ÀúÀåÇÒ ¼öµµ ÀÖ½À´Ï´Ù.

´ÙÀ½ ±ÛÀ» Àо¼¼¿ä.
* http://coffeenix.net/board_view.php?cata_code=0&bd_code=16
¾ÆÆÄÄ¡ ·Î±× ¼³Á¤ Áß¿¡¼­ '3) images ·Î±×¿Í warm ·Î±×´Â º°µµ·Î ÀúÀå' ºÎºÐ

ÄÚµå:

SetEnvIf Request_URI "^/default\.ida"¡¡ except=warm¡¡¡¡ # Codered
SetEnvIf Request_URI "/root\.exe?"¡¡¡¡¡¡except=warm¡¡¡¡ # Nimda
SetEnvIf Request_URI "/cmd\.exe?"¡¡¡¡¡¡ except=warm
SetEnvIf Request_URI "^/NULL\.printer"¡¡except=warm¡¡¡¡ #
SetEnvIf Request_URI "^/NULL\.IDA?"¡¡¡¡ except=warm
SetEnvIf Request_URI "^/NULL\.ida?"¡¡¡¡ except=warm
SetEnvIf Request_URI "^/NULL\.idq?"¡¡¡¡ except=warm
SetEnvIf except¡¡¡¡¡¡warm¡¡¡¡ warm

CustomLog logs/access_log common env=!except
CustomLog logs/warm_log¡¡ common env=warm
À§·Î
»ç¿ëÀÚ Á¤º¸ º¸±â ºñ¹Ð ¸Þ½ÃÁö º¸³»±â ±Û ¿Ã¸°ÀÌÀÇ À¥»çÀÌÆ® ¹æ¹®
bitinitialize



°¡ÀÔ: 2003³â 12¿ù 17ÀÏ
¿Ã¸° ±Û: 9
À§Ä¡: ÀüºÏ ÀÍ»ê

¿Ã¸®±â¿Ã·ÁÁü: 2004.1.13 È­, 10:02 pm    ÁÖÁ¦: ´äº¯ °¨»çµå¸³´Ï´Ù. Àοë°ú ÇÔ²² ´äº¯

´äº¯ °¨»çµå·Á¿ä. ¸¹Àº µµ¿òÀÌ µÆ½À´Ï´Ù.
À§·Î
»ç¿ëÀÚ Á¤º¸ º¸±â ºñ¹Ð ¸Þ½ÃÁö º¸³»±â MSN ¸Þ½ÅÀú
ÀÌÀü ±Û Ç¥½Ã:   
±Û ¾²±â   ´äº¯ ´Þ±â    Ä¿ÇǴнº, ½Ã½ºÅÛ ¿£Áö´Ï¾îÀÇ ½°ÅÍ °Ô½ÃÆÇ À妽º -> ³×Æ®¿÷ °ü¸® / º¸¾È ½Ã°£´ë: GMT + 9 ½Ã°£(Çѱ¹)
ÆäÀÌÁö 1 Áß 1

 
°Ç³Ê¶Ù±â:  
»õ·Î¿î ÁÖÁ¦¸¦ ¿Ã¸± ¼ö ¾ø½À´Ï´Ù
´ä±ÛÀ» ¿Ã¸± ¼ö ¾ø½À´Ï´Ù
ÁÖÁ¦¸¦ ¼öÁ¤ÇÒ ¼ö ¾ø½À´Ï´Ù
¿Ã¸° ±ÛÀ» »èÁ¦ÇÒ ¼ö ¾ø½À´Ï´Ù
ÅõÇ¥¸¦ ÇÒ ¼ö ¾ø½À´Ï´Ù


Powered by phpBB © 2001, 2005 phpBB Group