首页 » 漏洞 » e袋洗elaticsearch未授权访问可访问全部文件

e袋洗elaticsearch未授权访问可访问全部文件

 

'caiwu.edaixi.com': '115.159.6.31'

'oa.edaixi.com': '182.254.209.104'

'payment.edaixi.com': '115.159.40.71'

'www.edaixi.com': '115.159.40.71'

'sso.edaixi.com': '115.159.6.31'

'wiki.edaixi.com': '115.159.63.209'

'ops.edaixi.com': '115.159.6.31'

'stat.edaixi.com': '115.159.6.31'

'open.edaixi.com': '182.254.149.46'

'ticket.edaixi.com': '115.159.6.31'

'ok.edaixi.com': '182.254.208.195'

'mail.edaixi.com': '183.60.15.173'

'test1.edaixi.com': '115.159.85.11'

'oauth.edaixi.com': '115.159.40.71'

'search.edaixi.com': '115.159.43.79'

're.edaixi.com': '115.159.6.31'

'splunk.edaixi.com': '115.159.43.79'

'game.edaixi.com': '115.159.40.71'

'mon.edaixi.com': '115.159.43.79'

'weixin.edaixi.com': '115.159.40.71'

'bi.edaixi.com': '115.159.49.156'

漏洞证明:

'splunk.edaixi.com': '115.159.43.79'

so看看

e袋洗elaticsearch未授权访问可访问全部文件

e袋洗elaticsearch未授权访问可访问全部文件

code 区域
root:x:0:0:root:/root:/bin/bash

bin:x:1:1:bin:/bin:/sbin/nologin

daemon:x:2:2:daemon:/sbin:/sbin/nologin

adm:x:3:4:adm:/var/adm:/sbin/nologin

lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin

sync:x:5:0:sync:/sbin:/bin/sync

shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown

halt:x:7:0:halt:/sbin:/sbin/halt

mail:x:8:12:mail:/var/spool/mail:/sbin/nologin

uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin

operator:x:11:0:operator:/root:/sbin/nologin

games:x:12:100:games:/usr/games:/sbin/nologin

gopher:x:13:30:gopher:/var/gopher:/sbin/nologin

ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin

nobody:x:99:99:Nobody:/:/sbin/nologin

dbus:x:81:81:System message bus:/:/sbin/nologin

vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin

abrt:x:173:173::/etc/abrt:/sbin/nologin

haldaemon:x:68:68:HAL daemon:/:/sbin/nologin

ntp:x:38:38::/etc/ntp:/sbin/nologin

saslauth:x:499:76:/"Saslauthd user/":/var/empty/saslauth:/sbin/nologin

postfix:x:89:89::/var/spool/postfix:/sbin/nologin

sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin

tcpdump:x:72:72::/:/sbin/nologin

nginx:x:498:499:Nginx web server:/var/lib/nginx:/sbin/nologin

mysql:x:27:27:MySQL Server:/var/lib/mysql:/bin/bash

apache:x:48:48:Apache:/var/www:/sbin/nologin

zabbix:x:500:500::/var/lib/zabbix:/bin/bash

ubuntu:x:501:502::/home/ubuntu:/bin/bash

redis:x:497:498:Redis Server:/var/lib/redis:/sbin/nologin

niexinzhang:x:502:503::/home/niexinzhang:/bin/bash

修复方案:

端口不要随便开放

原文链接:e袋洗elaticsearch未授权访问可访问全部文件,转载请注明来源!

0