Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How do I remove commands?
Top Forums UNIX for Dummies Questions & Answers How do I remove commands? Post 302460739 by DGPickett on Thursday 7th of October 2010 12:30:32 PM
Old 10-07-2010
Quote:
Originally Posted by Corona688
An attacker would have to modify arbitrary files as root, or induce inetd to run and/or modify arbitrary files as root, in order to kick RCP on; if he could do that you're screwed with or without RCP.

(I don't like inetd either, but because of how complicated it makes everything, not any particular security complications. It just runs daemons, the daemons run as per usual.)
Part of security is making it hard to open a vulnerability, and enabling easy detection of newly established holes. Once your sysytem is compromised, how hard it is to discover the trap door? An insider might put a listener on a cron somewhere so he can connect and get some sort of access without these executables, or with them renamed and running on odd ports. A PERL script could do this. You might need a port scanner to ensure you like all the listeners. Wherever you lock out the unwanted, now you need ways to ensure the lock has not been removed.

Many simple minded or strict security audits look for these commands installed, so removal becomes a political necessity.

(For one audit, I used a binary replace to make a new shared lib with a different trap door password, as we did not have the source or a clean, compatible version! However, the install default master password was still in use!)
Last edited by DGPickett; 10-07-2010 at 01:37 PM..
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

smitty, remove user, remove directory as well..

hi, i am on aix. i used smitty to remove a user.. but then found that its directory still exists.... so i have to remove the directory manually... am i doing it the right way? (2 Replies)
Discussion started by: yls177
2 Replies

2. UNIX for Advanced & Expert Users

Remove Commands from Buffer

Hi.. When I execute a command, say for ex.. cp ../../* to ..../.../* and then when I use escape K, enter... it shows the commands recently executed. How can we remove that commands from buffer? This is a sun-solaris 8 environment.. Thanks, ST2000 (3 Replies)
Discussion started by: ST2000
3 Replies

3. Programming

code that reads commands from the standard i/p and executes the commands

Hello all, i've written a small piece of code that will read commands from standard input and executes the commands. Its working fine and is execting the commands well. Accepting arguments too. e.g #mkdir <name of the directory> The problem is that its not letting me change the directory i.e... (4 Replies)
Discussion started by: Phrozen Smoke
4 Replies

4. Shell Programming and Scripting

Can BASH execute commands on a remote server when the commands are embedded in shell

I want to log into a remote server transfer over a new config and then backup the existing config, replace with the new config. I am not sure if I can do this with BASH scripting. I have set up password less login by adding my public key to authorized_keys file, it works. I am a little... (1 Reply)
Discussion started by: bash_in_my_head
1 Replies

5. Shell Programming and Scripting

To remove date and duplicate rows from a log file using unix commands

Hi, I have a log file having size of 48mb. For such a large log file. I want to get the message in a particular format which includes only unique error and exception messages. The following things to be done : 1) To remove all the date and time from the log file 2) To remove all the... (1 Reply)
Discussion started by: Pank10
1 Replies

6. Shell Programming and Scripting

command to remove multiple commands in particular columns

Hi Experts, I actually need to remove multiple commas within the column not the entire row. Its comma delimited file Actually the value seems to look like 1,006,000, when we open this in notepad or word pad the value look s like “1,006,000” Actually our Sed command removes single comma and... (7 Replies)
Discussion started by: bshivali
7 Replies

7. AIX

HACMP: difference between 'cl' commands and 'cli' commands

Hi all, I'm new in this forum. I'm looking for the difference between the HACMP commands with the prefix "cl" and "cli". The first type are under /usr/es/sbin/cluster/sbin directory and the second are under /usr/es/sbin/cluster/cspoc directory. I know that the first are called HACMP for AIX... (0 Replies)
Discussion started by: peppix
0 Replies

8. Shell Programming and Scripting

remove brackets and put it in a column and remove repeated entry

Hi all, I want to remove the remove bracket sign ( ) and put in the separate column I also want to remove the repeated entry like in first row in below input (PA156) is repeated ESR1 (PA156) leflunomide (PA450192) (PA156) leflunomide (PA450192) CHST3 (PA26503) docetaxel... (2 Replies)
Discussion started by: manigrover
2 Replies

9. Post Here to Contact Site Administrators and Moderators

Please remove this post/remove information from it

In this thread: /shell-programming-and-scripting/255687-organizing-text-file-capital-names-capital-word-capital-word.html (sorry i cant use links) that is not an example, those are real students names with real student login id's for the college i am attending and i am on that list. Please... (3 Replies)
Discussion started by: throwawayacc
3 Replies

10. UNIX for Beginners Questions & Answers

Bash to remove find and remove specific extension

The bash below executes and does find all the .bam files in each R_2019 folder. However set -x shows that the .bam extension only gets removed from one .bam file in each folder (appears to be the last in each). Why is it not removing the extension from each (this is $SAMPLE)? Thank you :). set... (4 Replies)
Discussion started by: cmccabe
4 Replies

LEARN ABOUT SUNOS

asadmin-list-iiop-listeners

asadmin-list-iiop-listeners(1AS)				   User Commands				  asadmin-list-iiop-listeners(1AS)

NAME

       asadmin-list-iiop-listeners, list-iiop-listeners - gets the IIOP listeners

SYNOPSIS

       list-iiop-listeners  --user  admin_user[--password  admin_password][--host  localhost] [--port 4848] [--secure|-s][--passwordfile filename]
       [--terse=false][--echo=false] [--interactive=true]

       Gets the IIOP listeners. This command is supported in remote mode only.

OPTIONS

       --user		       authorized domain application server administrative username.

       --password	       password to administer the domain application server.

       --host		       machine name where the domain application server is running.

       --port		       port number of the domain application server listening for administration requests.

       --secure 	       if true, uses SSL/TLS to communicate with the domain application server.

       --passwordfile	       file containing the domain application server password.

       --terse		       indicates that any output data must be very concise, typically avoiding human-friendly sentences and favoring well-
			       formatted data for consumption by a script. Default is false.

       --echo		       setting to true will echo the command line statement on the standard output. Default is false.

       --interactive	       if set to true (default), only the required password options are prompted.

       Example 1: Using list-iiop-listeners

       asadmin> list-iiop-listeners --user admin --password adminadmin
       --host fuyako --port 7070
       orb-listener-1
       sample_iiop_listener

       Where: orb-listener-1 and sample_iiop_listener are the IIOP listeners listed.

EXIT STATUS

       0		       command executed successfully

       1		       error in executing the command

       asadmin-create-iiop-listener(1AS), asadmin-delete-iiop-listener(1AS)

J2EE 1.4 SDK							    March 2004					  asadmin-list-iiop-listeners(1AS)
All times are GMT -4. The time now is 12:56 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy