<br />
<b>Warning</b>:  Trying to access array offset on null in <b>/pub/websites/318/weblog/wordpress/wp-content/plugins/pighead_langtag.php</b> on line <b>187</b><br />
<br />
<b>Warning</b>:  Trying to access array offset on null in <b>/pub/websites/318/weblog/wordpress/wp-content/plugins/pighead_langtag.php</b> on line <b>134</b><br />
<br />
<b>Warning</b>:  Trying to access array offset on null in <b>/pub/websites/318/weblog/wordpress/wp-content/plugins/pighead_langtag.php</b> on line <b>187</b><br />
<br />
<b>Warning</b>:  Trying to access array offset on null in <b>/pub/websites/318/weblog/wordpress/wp-content/plugins/pighead_langtag.php</b> on line <b>134</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /pub/websites/318/weblog/wordpress/wp-content/plugins/pighead_langtag.php:187) in <b>/pub/websites/318/weblog/wordpress/wp-includes/rest-api/class-wp-rest-server.php</b> on line <b>1902</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /pub/websites/318/weblog/wordpress/wp-content/plugins/pighead_langtag.php:187) in <b>/pub/websites/318/weblog/wordpress/wp-includes/rest-api/class-wp-rest-server.php</b> on line <b>1902</b><br />
{"id":15,"date":"2007-07-26T16:47:40","date_gmt":"2007-07-26T08:47:40","guid":{"rendered":"http:\/\/blog.pighead.cc\/whsyu\/2007\/07\/26\/15\/"},"modified":"2007-07-26T16:49:23","modified_gmt":"2007-07-26T08:49:23","slug":"chkrootkit","status":"publish","type":"post","link":"https:\/\/blog.pighead.cc\/whsyu\/2007\/07\/26\/chkrootkit\/","title":{"rendered":"chkrootkit"},"content":{"rendered":"<p class=\"bb-post-separator\"><strong>[]  <\/strong><\/p><p>\u4eca\u5929\u7528\u9592\u9592\u6c92\u4e8b\u7528 <a href=\"http:\/\/www.chkrootkit.org\">chkrootkit<\/a> \u5728\u6383 FreeBSD \u4e3b\u6a5f\u4e0a\u7684\u6771\u897f\u770b\u6709\u6c92\u6709\u4ec0\u9ebc\u602a\u602a\u7684 (\u5176\u5be6\u5e73\u5e38\u90fd\u662f\u7528 rkhunter \u5728\u8dd1\uff0c\u6240\u4ee5 chkrootkit \u53ea\u662f\u6709\u6642\u5019\u62ff\u4f86\u8dd1\u770b\u770b\u800c\u5df2)\uff0c\u7d50\u679c\u7a81\u7136\u767c\u73fe\u6709\u4e00\u500b\u7d50\u679c\u51fa\u4f86\u4e0d\u592a\u5c0d<\/p>\n<p><code><br \/>\nChecking `bindshell'... INFECTED (PORTS:1008)<br \/>\n<\/code><\/p>\n<p>\u770b\u8d77\u4f86\u50cf\u662f\u51fa\u554f\u984c\uff0cport 1008 \u88ab\u4e0d\u8a72\u51fa\u73fe\u7684\u6771\u897f\u7d81\u4f4f\u4e86\uff0c\u8d95\u7dca\u7528 sockstat \u67e5\u4e00\u4e0b\u662f\u54ea\u500b\u7a0b\u5f0f\u5728\u7528\u9019\u500b port\uff0c\u7d50\u679c\u4ec0\u9ebc\u90fd\u6c92\u767c\u73fe\uff0c\u90a3\u53ea\u597d\u7528 netstat \u770b\u770b\u5012\u5e95\u662f\u548c\u54ea\u53f0\u6a5f\u5668\u8ddf port 1008 \u9023\u3002\u7d50\u679c\u767c\u73fe\u5c45\u7136\u662f\u5bb6\u88e1\u7684\u53e6\u4e00\u53f0 FreeBSD\uff1f\uff01\u90a3\u770b\u8d77\u4f86\u653e\u5fc3\u4e00\u5927\u534a\u4e86\u3002\u7136\u5f8c\u9023\u53bb\u90a3\u53f0\u96fb\u8166\u518d\u7528 sockstat \u7684\u770b\u770b\u767c\u73fe\u539f\u4f86\u662f nfsd \u9020\u6210\u7684\u3002\u597d\u6975\u4e86\uff0c\u641e\u4e86\u534a\u5929\u539f\u4f86\u662f\u56e0\u70ba\u6211\u5728\u4e3b\u6a5f\u4e0a\u9084\u7559\u4e00\u500b\u4e0a\u6b21\u7dad\u4fee\u6642 mount \u7684\u76ee\u9304\uff0c\u800c\u4ed6\u6b63\u597d\u5c31\u662f\u7528 port 1008\uff0c\u800c chkrookkit \u6703\u7528 netstat \u53bb\u6293\u7279\u5b9a\u5e7e\u500b port \u770b\u6709\u6c92\u6709\u4eba\u5360\u7528\uff0c\u679c\u7136\u5728 unmount \u8a72\u76ee\u9304\u4e4b\u5f8c\u4e00\u5207\u5c31\u6b63\u5e38\u4e86\u3002\u4e5f\u4e0d\u80fd\u8aaa\u4e00\u5207\u5c31\u6b63\u5e38\u5566\uff0c\u672c\u4f86\u5c31\u662f\u6b63\u5e38\u7684\uff0c\u9019\u500b\u7b97\u662f\u8aa4\u5224\u5427 :p<\/p>\n<p>\u4e0d\u904e\u9084\u7b97\u662f&#8221;\u6b63\u5e38&#8221;\u7684\u8aa4\u5224\u5c31\u662f\u4e86\uff0c\u5f8c\u4f86\u67e5\u4e86\u4e00\u4e0b\u767c\u73fe\u5728<a href=\"http:\/\/www.chkrootkit.org\/faq\/#7\"> chkrootkit \u7684 faq <\/a>\u88e1\u9762\u6709\u63d0\u5230\u9019\u4e00\u9ede\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[] \u4eca\u5929\u7528\u9592\u9592\u6c92\u4e8b\u7528 chkrootkit \u5728\u6383 FreeBSD \u4e3b\u6a5f\u4e0a\u7684\u6771\u897f\u770b\u6709\u6c92\u6709\u4ec0\u9ebc\u602a\u602a\u7684 (\u5176\u5be6\u5e73\u5e38\u90fd\u662f\u7528 rkhunter \u5728\u8dd1\uff0c\u6240\u4ee5 chkrootkit \u53ea\u662f\u6709\u6642\u5019\u62ff\u4f86\u8dd1\u770b\u770b\u800c\u5df2)\uff0c\u7d50\u679c\u7a81\u7136\u767c\u73fe\u6709\u4e00\u500b\u7d50\u679c\u51fa\u4f86\u4e0d\u592a\u5c0d Checking `bindshell&#8217;&#8230; INFECTED (PORTS:1008) \u770b\u8d77\u4f86\u50cf\u662f\u51fa\u554f\u984c\uff0cport 1008 \u88ab\u4e0d\u8a72\u51fa\u73fe\u7684\u6771\u897f\u7d81\u4f4f\u4e86\uff0c\u8d95\u7dca\u7528 sockstat \u67e5\u4e00\u4e0b\u662f\u54ea\u500b\u7a0b\u5f0f\u5728\u7528\u9019\u500b port\uff0c\u7d50\u679c\u4ec0\u9ebc\u90fd\u6c92\u767c\u73fe\uff0c\u90a3\u53ea\u597d\u7528 netstat \u770b\u770b\u5012\u5e95\u662f\u548c\u54ea\u53f0\u6a5f\u5668\u8ddf port 1008 \u9023\u3002\u7d50\u679c\u767c\u73fe\u5c45\u7136\u662f\u5bb6\u88e1\u7684\u53e6\u4e00\u53f0 FreeBSD\uff1f\uff01\u90a3\u770b\u8d77\u4f86\u653e\u5fc3\u4e00\u5927\u534a\u4e86\u3002\u7136\u5f8c\u9023\u53bb\u90a3\u53f0\u96fb\u8166\u518d\u7528 sockstat \u7684\u770b\u770b\u767c\u73fe\u539f\u4f86\u662f nfsd \u9020\u6210\u7684\u3002\u597d\u6975\u4e86\uff0c\u641e\u4e86\u534a\u5929\u539f\u4f86\u662f\u56e0\u70ba\u6211\u5728\u4e3b\u6a5f\u4e0a\u9084\u7559\u4e00\u500b\u4e0a\u6b21\u7dad\u4fee\u6642 mount \u7684\u76ee\u9304\uff0c\u800c\u4ed6\u6b63\u597d\u5c31\u662f\u7528 port 1008\uff0c\u800c chkrookkit \u6703\u7528 netstat \u53bb\u6293\u7279\u5b9a\u5e7e\u500b port&hellip; <\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8],"tags":[],"class_list":["post-15","post","type-post","status-publish","format-standard","hentry","category-freebsd"],"_links":{"self":[{"href":"https:\/\/blog.pighead.cc\/whsyu\/wp-json\/wp\/v2\/posts\/15","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.pighead.cc\/whsyu\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.pighead.cc\/whsyu\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.pighead.cc\/whsyu\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.pighead.cc\/whsyu\/wp-json\/wp\/v2\/comments?post=15"}],"version-history":[{"count":0,"href":"https:\/\/blog.pighead.cc\/whsyu\/wp-json\/wp\/v2\/posts\/15\/revisions"}],"wp:attachment":[{"href":"https:\/\/blog.pighead.cc\/whsyu\/wp-json\/wp\/v2\/media?parent=15"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.pighead.cc\/whsyu\/wp-json\/wp\/v2\/categories?post=15"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.pighead.cc\/whsyu\/wp-json\/wp\/v2\/tags?post=15"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}