BACKRUSH  À¯´Ð½º¸í·É  ´ÙÀ½  ÀÚ·á½Ç  Ascii Table   ¿ø°ÝÁ¢¼Ó  ´Þ·Â,½Ã°£   ÇÁ·Î¼¼½º   ½©
ÁöÇÏö³ë¼±   RFC¹®¼­   SUN FAQ   SUN FAQ1   C¸Þ´º¾ó   PHP¸Þ´º¾ó   ³Ê±¸¸®   ¾Æ½ºÅ°¿ùµå ¾ÆÀÌÇǼ­Ä¡

±Û¾´ÀÌ: cops COPS È°¿ë Á¶È¸¼ö: 14385


1.
ftp://ftp.cerias.purdue.edu/pub/tools/unix/scanners/cops/



2. ±âº»»ç¿ë¹ý

# Usage: cops [-vx] [-c config file] [-s secure_dir] [architecture]



3. Cops ÀÚ¼¼ÇÑ ¼³Ä¡¹× »ç¿ë¹ý



3-1. ¼Ò½º±¸Çϱâ

3-2. ¾ÐÃàÇ®±â

3-3. README.FIRSTÆÄÀÏÀ» ¸ÕÀú Àо´Ù.

3-4. makefile ¾Ë¸Â°Ô ¼öÁ¤Çϱâ

3-4-1. chmod, test, mkdir, cp, cc, rm ½ÇÇàÆÄÀϵé À§Ä¡¸¦ which·Î Á¶È¸ÇÏ¿© ¸ÂÃß¾î ÁÙ°Í..

3-4-2. pass.c ¿Í °ü·ÃµÈ ¿¡·¯´Â ÁÖ¼®¹®À» Àо°í ó¸®ÇÒ °Í

(ù°ÇàÀ» ÁÖ¼®Ã³¸®ÇÏ°í, µÑ°¿Í¼Â°¸¦ Ç®¾îÁØ´Ù.)

vi makefile¿¡¼­ ´ÙÀ½ÀÇ ÇàÀ»...

# If fast crypt will work, comment the first CC line, uncomment

# the next two:

pass.chk: src/pass.c

#$(CC) $(CFLAGS) -o pass.chk src/pass.c $(BRAINDEADFLAGS)

$(CC) $(CFLAGS) -Dcrypt=fcrypt -DFCRYPT -o pass.chk src/pass.c \

src/crack-fcrypt.c src/crack-lib.c $(BRAINDEADFLAGS)

3-4-3. root.chk¿Í °ü·ÃµÈ ¿¡·¯´Â Àû´çÈ÷ ó¸®ÇÑ´Ù.

3-5. make ¶Ç´Â make all

3-6. make install

make install½ÇÇà½Ã¿¡ ¹ß»ýÇÏ´Â ¿¡·¯Áß pass.chk°¡ ¾ø¾î make installÀÌ µÇÁö¾ÊÀ» °æ¿ì´Â

´ÙÀ½°ú °°ÀÌ ÇØÁØ´Ù.

[root@www cops_104]# cd docs

[root@www docs]# cp pass.chk ../

[root@www docs]#

[root@www docs]#

[root@www docs]#

[root@www docs]# cd ..

[root@www cops_104]#

[root@www cops_104]#

[root@www cops_104]# make install

if /usr/bin/test ! -d sun ; then mkdir sun ; fi

/bin/cp home.chk user.chk pass.chk is_writable crc crc_check addto clearfiles filewriters members tilde is_able

chk_strings root.chk dev.chk cron.chk is_able.chk cops group.chk rc.chk passwd.chk ftp.chk crc.chk misc.chk suid.chk

kuang init_kuang reconfig res_diff yp_pass.chk bug.chk bug.chk.aix bug.chk.apollo bug.chk.dec bug.chk.next bug.chk.sgi

bug.chk.sun bug.chk.svr4 bug_cmp is_able.lst suid.stop crc_list sun



3-7. cops ½ÇÇàÆÄÀÏÀ» ¿­¾î¼­ Àû´çÈ÷ ´ÙÀ½°ú °°Àº °ÍÀ» ¼³Á¤ÇØ ÁØ´Ù.

3-7-1. echo, test, rm, cat, mail, date, chmod, awk, sed, mv, mkdir½ÇÇàÆÄÀϵéÀÇ

À§Ä¡¸¦ which·Î Á¶È¸ÇÏ¿© ¸ÂÃß¾îÁØ´Ù.

3-7-2. SECURE¿Í SECURE_USERSÀÇ À§Ä¡¸¦ ¸ÂÃß¾îÁØ´Ù.

######################

# Change these lines!

######################

SECURE=/home/manager/cops/cops_104

#SECURE=/usr/foo/bar

#SECURE=/home/manager/.secure

SECURE_USERS="manager@owner.co.kr"

######################



-- Change lines 93 and 94 in the "cops" shell file. They are originally:



SECURE=/usr/foo/bar

SECURE_USERS="foo@bar.edu"



SECURE should be the same directory as the directory that contains

the COPS programs, and SECURE_USERS should be your own login id,

or whomever you designate as the recipient of the output.



3-8. ÀÚ¼¼ÇÑ ½ÇÇà¹æ¹ý ¹× ¼³Ä¡ÀÇ ´Ù¾çÇÑ ¿¹

3-8-1. ./cops -v -s . -b cops_errs

3-8-2. ./cops -m user

3-8-3. ./cops -v output-file

3-8-4. ½ÇÇà¹æ¹ýµé

# Usage cops [-a architecture] [-b bit_bucket] [-s secure_dir] \

# [-m user] [-f filter_file] [-dxvV]

#

# -a specifies the architecure subdirectory you want to run in; you

# must run "make install" to install the appropriate binaries there

#

# -b specifies the "bit bucket", where all the error messages go to.

#

# -d will mail a report only if there have been changes since the

# last one. Only makes sense with the -m flag or by setting the

# MMAIL var below.

#

# -f specifies the cops filter file, which is used for filtering out

# extraneous warning message.

#

# -m tells cops to mail the output to the user specified

#

# -s tells cops where the secure directory is; mostly this is used by

# cops itself, when it is run with the -a flag; it will rerun itself

# with the -a flag's argument as an argument to this.

#

# -x prints out the version number (running out of letters! :-))

#

°¡ÀåÁÁÀº¹æ¹ý--> # -[vV] are the verbose flags. Small "v" says print whatever program

# is running, when it is executed, in the output file; capital

# "V" says print everything to the screen.



°¡ÀåÁÁÀº ¹æ¹ýÀº "#./cops -V"·Î ¸ð´ÏÅÍ¿¡¼­ °á°ú¸¦ ¹Ù·Î È®ÀÎÇÏ´Â ¹æ¹ý...

[root@www cops_104]# ./cops -V

**** root.chk ****

**** dev.chk ****

**** is_able.chk ****

Warning! /etc/security is _World_ readable!

**** rc.chk ****

**** cron.chk ****

**** group.chk ****

**** home.chk ****

**** passwd.chk ****

**** user.chk ****

**** misc.chk ****



°ü·Ã±Û : ¾øÀ½ ±Û¾´½Ã°£ : 2007/08/28 13:52 from 210.121.188.5

  tripwire È°¿ë ¸ñ·Ïº¸±â »õ±Û ¾²±â Áö¿ì±â ÀÀ´ä±Û ¾²±â ±Û ¼öÁ¤ º£½ºÃÅÈ£½ºÆ®(Bastion Host)  
BACKRUSH  À¯´Ð½º¸í·É  ´ÙÀ½  ÀÚ·á½Ç  Ascii Table   ¿ø°ÝÁ¢¼Ó  ´Þ·Â,½Ã°£   ÇÁ·Î¼¼½º   ½©
ÁöÇÏö³ë¼±   RFC¹®¼­   SUN FAQ   SUN FAQ1   C¸Þ´º¾ó   PHP¸Þ´º¾ó   ³Ê±¸¸®   ¾Æ½ºÅ°¿ùµå ¾ÆÀÌÇǼ­Ä¡