|
http://www.hackerschool.org/HS_Boards/zboard.php?id=QNA_linux&no=1942 [º¹»ç]
===============================================================================
>Linux ¼¹ö°¡ ½ºÆÔ ¸±·¹ÀÌ or ½ºÆÔ ¹ß¼ÛÁö·Î »ç¿ëµÇ°í ÀÖ´Â°Í °°½À´Ï´Ù.
>
>tcp 0 0 147.46.56.69:48291 216.93.66.112:25 TIME_WAIT timewait (30.00/0/0)
>tcp 0 1731 147.46.56.69:43714 67.28.113.19:25 ESTABLISHED on (0.70/0/0)
>tcp 0 0 147.46.56.69:45449 64.70.34.196:25 TIME_WAIT timewait (44.73/0/0)
>tcp 0 0 147.46.56.69:60188 205.188.159.217:25 TIME_WAIT timewait (8.91/0/0)
>tcp 0 0 147.46.56.69:60266 205.188.159.217:25 TIME_WAIT timewait (17.01/0/0)
>tcp 0 1 147.46.56.69:33619 67.28.113.11:25 SYN_SENT on (0.95/1/0)
>tcp 0 1 147.46.56.69:51292 200.31.30.44:25 SYN_SENT on (2.69/0/0)
>tcp 0 0 147.46.56.69:44465 216.247.140.222:25 TIME_WAIT timewait (5.11/0/0)
>tcp 0 7 147.46.56.69:48347 64.37.76.162:25 FIN_WAIT1 on (0.32/0/0)
>tcp 0 1 147.46.56.69:57971 205.178.189.131:25 SYN_SENT on (19.56/3/0)
>tcp 0 0 147.46.56.69:37580 65.254.254.56:25 TIME_WAIT timewait (50.38/0/0)
>
>
>À§¿Í°°ÀÌ Netstat ¸¦ ÅëÇØ È®ÀÎÇÑ Á¤º¸ÀÔ´Ï´Ù..
>windows ó·³ PID ÀÌ ¹Ù·Î ³ª¿À´Â°Ô ¾Æ´Ï¶ó.
>¾î¶°ÇÑ ¼ø¼·Î ÃßÀûÇؼ ÇØ´ç ÇÁ·Î¼¼¼¸¦ Á×ÀÌ°í Á¦°Å¸¦ ÇؾßÇÏ´ÂÁö..
>
>Á¶¾ðÁ» ºÎŹµå¸³´Ï´Ù..
>°¨»çÇÕ´Ï´Ù..
===============================================================================
À§ netstat Á¤º¸¸¦ ÅëÇØ soarrr´ÔÀÌ °ü¸®ÇϽô ¼¹ö¿¡¼ ´Ù¸¥ E-Mail ÁÖ¼Ò·Î
¸ÞÀÏÀ» ¹ß¼ÛÇÏ°í ÀÖÀ½À» ¾Ë ¼ö ÀÖ½À´Ï´Ù. ¸ÞÀÏÀ» Àü´ÞÇϱâ À§Çؼ± »ó´ë¹æ
E-Mail ÁÖ¼Ò¿¡ ÇØ´çÇÏ´Â Mail Server¿¡ Á¢¼ÓÇØ¾ß Çϴµ¥, ±× ¶§ »ç¿ëµÇ´Â
Æ÷Æ®°¡ À§¿¡¼ º¸ÀÌ´Â ¹Ù¿Í °°Àº 25¹ø(SMTP)À̱⠶§¹®ÀÔ´Ï´Ù.
Á¦ 3ÀÚ°¡ soarrr´ÔÀÇ ¼¹ö¸¦ ÀÌ¿ëÇÏ¿© ´Ù¸¥ E-Mail ÁÖ¼Ò·Î ¸ÞÀÏÀ» ¹ß¼ÛÇÏ´Â
¹æ¹ýµéÀº ´ÙÀ½°ú °°½À´Ï´Ù.
soarrr´ÔÀÇ ¼¹ö¸¦ A, Á¦ 3ÀÚ¸¦ C¶ó°í ÇßÀ» ¶§,
1. C°¡ A ¼¹öÀÇ 25¹ø Æ÷Æ®¿¡ Á¢¼ÓÇÑ ÈÄ SMTP ¸í·ÉÀ» ÀÌ¿ëÇÏ¿© ¸ÞÀÏ ¹ß¼Û
==> À§ netstat °á°ú¸¦ º¸¸é ƯÁ¤ IP(C)°¡ Çö ¼¹ö(A)ÀÇ 25¹ø Æ÷Æ®·Î Á¢¼ÓÇÑ
Á¤º¸°¡ ¾ø±â ¶§¹®¿¡ ÀÌ °æ¿ì´Â ¾Æ´Õ´Ï´Ù. (Ç㳪, À§ netstat Á¤º¸°¡ Àüü Ãâ·Â
°á°ú¸¦ º¹»çÇÑ °ÍÀº ¾Æ´Ñ °Í °°³×¿ä. Á÷Á¢ Çѹø È®ÀÎÇØ º¸½Ã°í¿ä.)
2. C°¡ A ¼¹ö·Î Å͹̳ΠÁ¢¼ÓÀ» ÇÑ ÈÄ mail ¸í·ÉÀ» ÀÌ¿ëÇÏ¿© ¸ÞÀÏ ¹ß¼Û
==> A ¼¹öÀÇ 25¹ø Æ÷Æ®·Î Á¢¼ÓÇÏÁö ¾Ê´õ¶óµµ, A ¼¹öÀÇ ½© ±ÇÇÑÀ» ¾òÀº ÈÄ
/bin/mail ÇÁ·Î±×·¥À» ÀÌ¿ëÇÏ¿© ÀÌ /bin/mail ÇÁ·Î±×·¥ÀÌ ´Ù½Ã localhostÀÇ
25¹ø Æ÷Æ®·Î Á¢¼ÓÇÏ¿© ¸ÞÀÏÀ» ¹ß¼ÛÇÕ´Ï´Ù. µû¶ó¼, CÀÇ IP°¡ Á÷Á¢ÀûÀ¸·Î
AÀÇ 25¹ø Æ÷Æ®¿¡ ¿¬°áµÈ ¸ð½ÀÀÌ netstat¿¡ ³ªÅ¸³ªÁö ¾Ê½À´Ï´Ù.
ÇÏÁö¸¸, Å͹̳ΠÁ¢¼ÓÀ» Çß´Ù¸é 22¹ø(SSH)³ª 23¹ø(TELNET) µî¿¡ ³ªÅ¸³ª°ÚÁÒ.
ÀÌ Á¤º¸¸¦ È®ÀÎÇÏ¸é µË´Ï´Ù.
3. Web ¸ÞÀÏ Àü¼Û ÇÁ·Î±×·¥À» ÀÌ¿ëÇÏ¿© ¸ÞÀÏÀ» ¹ß¼ÛÇÏ´Â °æ¿ì
==> PHP·Î ¿¹¸¦ µé¸é, mail()À̶ó´Â ÇÔ¼ö¸¦ ÀÌ¿ëÇÏ¿© ¸ÞÀÏÀ» ¹ß¼ÛÇÒ ¼ö ÀÖ½À´Ï´Ù.
ÀÌ ¶§¿£ CÀÇ IP°¡ AÀÇ 80¹ø Æ÷Æ®¿¡ ¿¬°áµÈ °ÍÀ¸·Î ³ªÅ¸³³´Ï´Ù.
À§ 1¹øÀÇ °æ¿ì¿£ ÃÖ±Ù ¿ÜºÎ¿¡¼ SMTP ¼¹ö¿¡ Á¢¼ÓÇÒ °æ¿ì LOCAL »ç¿ëÀÚ¸¦ Á¦¿ÜÇÑ
E-Mail »ç¿ëÀÚ¿¡°Ô ¸ÞÀÏÀ» Àü¼ÛÇÏ´Â °ÍÀÌ ±ÝÁöµÇ¾î Àֱ⠶§¹®¿¡ °¡´É¼ºÀÌ Àû°í,
2¹ø ¶ÇÇÑ ¼¹ö°¡ Å©·¡Å·´çÇÏÁö ¾ÊÀº ÀÌ»ó °¡´É¼ºÀÌ ÀûÀ¸¹Ç·Î, ÀÌ 3¹ø¿¡ ÇØ´çÇÒ
°¡´É¼ºÀÌ °¡Àå Å®´Ï´Ù. ÀÌ °æ¿ì¿£ ¸ÞÀÏ ¹ß¼Û ¿ªÇÒÀ» ÇÏ´Â ±× Web ÇÁ·Î±×·¥À»
ã¾Æ Á¶Ä¡¸¦ ÃëÇÏ´Â ¹æ¹ýÀ¸·Î ÇØ°áÇÏ½Ã¸é µÇ°Ú½À´Ï´Ù.
grep mail * -R °ú °°Àº ¸í·ÉÀ¸·Î mail ÇÔ¼ö¸¦ °Ë»öÇÏ¿© ãÀ¸¸é µË´Ï´Ù.
µµ¿òÀÌ µÇ¼Ì±æ ¹Ù¶ø´Ï´Ù. |
Hit : 2323 Date : 2006/06/14 07:13
|
3923, 
11/197 
¸Û¸Û
