{"id":292,"date":"2015-07-02T09:56:03","date_gmt":"2015-07-02T06:56:03","guid":{"rendered":"https:\/\/furkansandal.com\/sitesunucu\/?p=292"},"modified":"2015-07-07T23:18:35","modified_gmt":"2015-07-07T20:18:35","slug":"sunucuda-hacking-olaylarina-cozum-bolum-1","status":"publish","type":"post","link":"https:\/\/furkansandal.com\/sunucuda-hacking-olaylarina-cozum-bolum-1\/","title":{"rendered":"Sunucuda Hacking Olaylar\u0131na \u00c7\u00f6z\u00fcm &#8211; B\u00f6l\u00fcm 1"},"content":{"rendered":"<div align=\"center\">\n<h2><span style=\"color: #0000ff;\">Merhaba arkada\u015flar,<\/span><\/h2>\n<p>Buras\u0131 bir hack forumu, g\u00fcvenlik blo\u011fu\u00a0olmas\u0131na kar\u015f\u0131n atalar\u0131m\u0131z\u0131n bir s\u00f6z\u00fc vard\u0131r.<br \/>\n&#8220;Tamirden en iyi bozan anlar.&#8221; gibi bir s\u00f6zd\u00fc tam hat\u0131rlayamad\u0131m \ud83d\ude42<\/p>\n<p>Herneyse ge\u00e7elim ilk dersimize,<\/p>\n<p>\u00d6ncelikle, dizinler aras\u0131 ge\u00e7i\u015f engelliyoruz. cd komutu bir web sitesi i\u00e7in hi\u00e7 bi de\u011fer ta\u015f\u0131maz \ud83d\ude42<\/p>\n<pre class=\"brush: php; title: ; notranslate\" title=\"\">\r\nchmod 400 \/usr\/sbin\/cd\r\n<\/pre>\n<p>\u00d6yleki, symlinkte \u00e7ok i\u015f g\u00f6r\u00fcyor.<\/p>\n<pre class=\"brush: php; title: ; notranslate\" title=\"\">chmod 400 \/bin\/ln<\/pre>\n<p>komutuylada symlink olay\u0131n\u0131 engelliyoruz.<br \/>\nEngellemi\u015fken ne olur ne olmaz diyerek s\u0131k\u0131\u015ft\u0131rma komutlar\u0131n\u0131da engelliyoruz ki, symlink kapal\u0131 iken<\/p>\n<pre class=\"brush: php; title: ; notranslate\" title=\"\">chmod 400 \/bin\/tar<\/pre>\n<p>dizin&#8217;i \u00f6\u011frenmemeleride \u00f6nemli \ud83d\ude42 nerde oldugunuza ba\u011fl\u0131 belki exploit geli\u015fir nerden bilebiliriz \ud83d\ude42 ve bu komutu uyguluyoruz,<\/p>\n<pre class=\"brush: php; title: ; notranslate\" title=\"\">chmod 400 \/bin\/pwd<\/pre>\n<p>Mis gibi sunucumuz oldu. \u015fuan passwd okuyamaz normal biri. Ama biz di\u011fer okuma y\u00f6ntemlerinide kapatal\u0131m \ud83d\ude42 \ud83d\ude42 toplu olarak yaz\u0131yorum tekte \u00e7al\u0131\u015ft\u0131rsan\u0131z yeterli.<\/p>\n<pre class=\"brush: php; title: ; notranslate\" title=\"\">chmod 400 \/bin\/awk &amp;&amp; chmod 400 \/bin\/cp &amp;&amp; chmod 400 \/bin\/dd &amp;&amp; chmod 400 \/bin\/df &amp;&amp; chmod 400 \/bin\/cat &amp;&amp; chmod 400 \/bin\/more &amp;&amp; chmod 400 \/bin\/raw &amp;&amp; chmod 400 \/bin\/uname<\/pre>\n<p>Bu komutlarla, sunucuda hi\u00e7 bir kopyalama i\u015flemi olmamas\u0131n\u0131 engelleyerek, sistem bilgilerini vs gizledik. Bu saatten sonra, php.ini de koysalar bypasslayamazlar. Baz\u0131 metodlar kal\u0131yor onlarda sonraki derste \ud83d\ude42<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Merhaba arkada\u015flar, Buras\u0131 bir hack forumu, g\u00fcvenlik blo\u011fu\u00a0olmas\u0131na kar\u015f\u0131n atalar\u0131m\u0131z\u0131n bir s\u00f6z\u00fc vard\u0131r. &#8220;Tamirden en iyi bozan anlar.&#8221; gibi bir&#8230;<\/p>\n","protected":false},"author":1,"featured_media":170,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_mi_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","footnotes":""},"categories":[6,1,9,10,7,4],"tags":[],"aioseo_notices":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/furkansandal.com\/wp-content\/uploads\/2014\/07\/sunucu-guvenligi-k\u0131rm\u0131z\u0131-kilit.jpg?fit=460%2C268&ssl=1","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p6BM7I-4I","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/posts\/292"}],"collection":[{"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/comments?post=292"}],"version-history":[{"count":0,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/posts\/292\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/media\/170"}],"wp:attachment":[{"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/media?parent=292"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/categories?post=292"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/tags?post=292"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}