{"id":8766,"date":"2023-02-02T20:40:53","date_gmt":"2023-02-02T11:40:53","guid":{"rendered":"https:\/\/lab4ict.com\/system\/?p=8766"},"modified":"2023-02-13T19:47:07","modified_gmt":"2023-02-13T10:47:07","slug":"linux%e3%81%a7%e3%82%b3%e3%83%9e%e3%83%b3%e3%83%89%e3%83%95%e3%82%a1%e3%82%a4%e3%83%ab%e3%81%ab%e5%af%be%e3%81%97%e3%81%a6suid%e3%82%92%e8%a8%ad%e5%ae%9a%e3%81%99%e3%82%8b%ef%bc%81%ef%bc%88chmod-4000","status":"publish","type":"post","link":"https:\/\/lab4ict.com\/system\/archives\/8766","title":{"rendered":"Linux\u3067\u30b3\u30de\u30f3\u30c9\u30d5\u30a1\u30a4\u30eb\u306b\u5bfe\u3057\u3066SUID\u3092\u8a2d\u5b9a\u3059\u308b\uff01\uff08chmod u+s\uff09"},"content":{"rendered":"

Linux\u306e\u30b3\u30de\u30f3\u30c9\u30d5\u30a1\u30a4\u30eb\u306b\u5bfe\u3057\u3066SUID\u3092\u8a2d\u5b9a\u3057\u3066\u3001\u30b3\u30de\u30f3\u30c9\u30d5\u30a1\u30a4\u30eb\u306e\u6240\u6709\u8005\u3068\u3057\u3066\u30b3\u30de\u30f3\u30c9\u3092\u5b9f\u884c\u53ef\u80fd\u306b\u3057\u307e\u3059\u3002
\n<\/p>\n

SUID\u3055\u308c\u305f\u30b3\u30de\u30f3\u30c9\u306e\u4f8b\u3092\u78ba\u8a8d\u3059\u308b\uff01\uff08passwd\uff09<\/h2>\n

SUID\u3055\u308c\u305f\u30b3\u30de\u30f3\u30c9\u306e\u4f8b\u3092\u78ba\u8a8d\u3057\u307e\u3059\u3002\u4ee3\u8868\u4f8b\u306f\u3001passwd\u30b3\u30de\u30f3\u30c9\u3067\u3001root\u6a29\u9650\u306f\u306a\u3044\u3067\u3059\u304c\u3001root\u6240\u6709\u8005\u306e\/etc\/passwd\u30d5\u30a1\u30a4\u30eb\u3092\u7de8\u96c6\u3067\u304d\u307e\u3059\u3002<\/p>\n

\r\n$ ls -l \/usr\/bin\/passwd\r\n-rwsr-xr-x. 1 root root 33544 12\u6708 14  2019 \/usr\/bin\/passwd\r\n<\/pre>\n
SUID\u3092\u30b3\u30de\u30f3\u30c9\u30d5\u30a1\u30a4\u30eb\u306b\u5bfe\u3057\u3066\u4ed8\u4e0e\u3059\u308b\uff01<\/h2>\n
SUID\u306f\u3001\u4ee5\u4e0b\u306e\u30b3\u30de\u30f3\u30c9\u3067\u4ed8\u4e0e\u3067\u304d\u307e\u3059\u3002<\/p>\n
\r\n$ sudo chmod u+s [\u30b3\u30de\u30f3\u30c9\u30d5\u30a1\u30a4\u30eb]\r\n<\/pre>\n
\u4ee5\u4e0b\u306e\u30b3\u30de\u30f3\u30c9\u3067\u3082\u540c\u3058\u3088\u3046\u306bSUID\u3092\u4ed8\u4e0e\u3067\u304d\u307e\u3059\u3002<\/p>\n
\r\n$ sudo chmod 4000 [\u30b3\u30de\u30f3\u30c9\u30d5\u30a1\u30a4\u30eb]\r\n<\/pre>\n
SUID\u304c\u4ed8\u4e0e\u3055\u308c\u305f\u30b3\u30de\u30f3\u30c9\u30d5\u30a1\u30a4\u30eb\u3092\u78ba\u8a8d\u3059\u308b\uff01<\/h2>\n
SUID\u304c\u4ed8\u4e0e\u3055\u308c\u305f\u30b3\u30de\u30f3\u30c9\u3092\u78ba\u8a8d\u3059\u308b\u306b\u306f\u3001\u4ee5\u4e0b\u306e\u30b3\u30de\u30f3\u30c9\u3092\u4f7f\u7528\u3057\u307e\u3059\u3002<\/p>\n
\r\n$ sudo find \/ -perm -4000 -type f | xargs ls -l\r\n<\/pre>\n
\u304a\u308f\u308a\u306b<\/h2>\n
SUID\u306f\u3001root\u6a29\u9650\u3092\u4e0d\u5fc5\u8981\u306b\u4e00\u822c\u30e6\u30fc\u30b6\u306b\u4ed8\u4e0e\u3057\u306a\u304f\u3066\u3082\u6e08\u3080\u3088\u3046\u306b\u8003\u3048\u51fa\u3055\u308c\u305f\u3082\u306e\u3067\u3059\u304c\u3001root\u3067\u306a\u304f\u3066\u3082root\u6a29\u9650\u3092\u4f7f\u7528\u3067\u304d\u308b\u53ef\u80fd\u6027\u304c\u767a\u751f\u3057\u3066\u304f\u308b\u306e\u3067\u3001SUID\u3092\u4ed8\u4e0e\u3059\u308b\u5bfe\u8c61\u306f\u5fc5\u8981\u6700\u5c0f\u9650\u306b\u7d5e\u308b\u3088\u3046\u306b\u3057\u307e\u3057\u3087\u3046\u3002<\/p>\n
\u95a2\u9023\u8a18\u4e8b<\/h2>\n
\"\u3010\u8a18\u4e8b\u4e00\u89a7\u3011Linux\u3067\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3068\u30d5\u30a1\u30a4\u30eb\u3092\u64cd\u4f5c\u3059\u308b\uff01\"<\/div>
\u3010\u8a18\u4e8b\u4e00\u89a7\u3011Linux\u3067\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3068\u30d5\u30a1\u30a4\u30eb\u3092\u64cd\u4f5c\u3059\u308b\uff01<\/div>
Linux\u3067\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3068\u30d5\u30a1\u30a4\u30eb\u3092\u64cd\u4f5c\u3059\u308b\u305f\u3081\u306e\u8a18\u4e8b\u4e00\u89a7\u3092\u63b2\u8f09\u3057\u307e\u3059\u3002...<\/div><\/a><\/div>\n
\"\u3010\u8a18\u4e8b\u4e00\u89a7\u3011Linux\u3092\u4f7f\u3044\u3053\u306a\u3059\uff01\"<\/div>
\u3010\u8a18\u4e8b\u4e00\u89a7\u3011Linux\u3092\u4f7f\u3044\u3053\u306a\u3059\uff01<\/div>
Linux\u3092\u4f7f\u3044\u3053\u306a\u3059\u305f\u3081\u306e\u8a18\u4e8b\u4e00\u89a7\u3092\u63b2\u8f09\u3057\u307e\u3059\u3002...<\/div><\/a><\/div>\n
\u95a2\u9023\u66f8\u7c4d\uff08Amazon\uff09<\/h2>\n