a-Column

【CentOS】trouble-makerについて

■実際コマンド

# tar zxvf trouble-maker-0.11.tgz
# /home/idcf/usr/local/trouble-maker/bin/trouble-maker.pl --version=RHEL_6
# mv ./trouble-maker/ /usr/local/
[root@pandorafms bin]# ./trouble-maker.pl --version=RHEL_6

Trouble-maker version 0.10
Copyright (C) 2004 by Josh More
Trouble-maker comes with ABSOLUTELY NO WARRANTY
This is free software, and you are welcome to redistribute it under certain conditions.
For details, see the file 'COPYING' included with this distribution.

This program is intended for training purposes only, and will cause system problems.
To proceed, type 'yes'.
(To bypass this step, change the value of the $bypass variable to '1')
> yes
PROBLEM:
Cannot log in as root

■ログ発生状況

Jul 26 17:34:20 pandorafms init: tty (/dev/tty1) main process ended, respawning
Jul 26 17:39:08 pandorafms sshd[3185]: fatal: Privilege separation user sshd does not exist
Jul 26 17:40:03 pandorafms sshd[3186]: fatal: Privilege separation user sshd does not exist
Jul 26 17:40:30 pandorafms sshd[3189]: fatal: Privilege separation user sshd does not exist
Jul 26 17:41:07 pandorafms sshd[3194]: fatal: Privilege separation user sshd does not exist
Jul 26 17:41:56 pandorafms sshd[3202]: fatal: Privilege separation user sshd does not exist

◆エラーログ

This program is intended for training purposes only, and will cause system problems.
To proceed, type 'yes'.
(To bypass this step, change the value of the $bypass variable to '1')
> yes
rescue directory not empty. Please empty this directory before proceeding.

◆解決
/tmp/trouble-maker

[root@pandorafms rescue]# cat DESCRIPTION
Cannot log in as root

[root@pandorafms rescue]# cat TROUBLE-SCRIPT
#!/bin/sh
rm -f /etc/passwd

[root@pandorafms rescue]# cat DETAILS
/etc/passwd has been removed. To fix it, restore from a backup or copy /etc/passwd- and manually re-add the most recent user

(参考サイト)
http://trouble-maker.sourceforge.net/

Last Update : 2012年08月16日 (木) 15:13