{"id":226,"date":"2018-03-13T09:36:11","date_gmt":"2018-03-13T01:36:11","guid":{"rendered":"http:\/\/www.max-shu.com\/blog\/?p=226"},"modified":"2018-03-13T09:36:11","modified_gmt":"2018-03-13T01:36:11","slug":"jboss%e6%bc%8f%e6%b4%9e%e5%af%bc%e8%87%b4%e6%9c%8d%e5%8a%a1%e5%99%a8%e4%b8%ad%e6%af%92","status":"publish","type":"post","link":"http:\/\/www.max-shu.com\/blog\/?p=226","title":{"rendered":"JBoss\u6f0f\u6d1e\u5bfc\u81f4\u670d\u52a1\u5668\u4e2d\u6bd2"},"content":{"rendered":"

\u4e2d\u6bd2\u73b0\u8c61\uff1a<\/span><\/b>
\n1.\u00a0<\/b>ps axf\u770b\u5230\u591a\u51fa\u4e86\u5f88\u591a\u8fdb\u7a0b\uff0c\u5c24\u5176\u662f\u6709pnscan\u8fd9\u4e2a\u8fdb\u7a0b\uff0c\u5b83\u4f1a\u5bf9\u5916\u626b\u63cf\u6574\u4e2a\u7f51\u7edc\uff0c\u5bfc\u81f4\u7f51\u7edc\u62e5\u585e\uff1a
\nsh -c .\/pnscan -r JBoss -w “HEAD \/ HTTP\/1.0\\r\\n\\r\\n” -t 6400 61.223.0.0\/16 8080 > \/tmp\/sess_008802541
\n2.\u00a0<\/b>crontab -l\u770b\u5230\u591a\u51fa\u4e86\uff0c\u6709\u4e9b\u4e2d\u6bd2\u7684\u5219\u6ca1\u6709\u8fd9\u4e2a\u73b0\u8c61\uff1a
\n1 1 10 * * \/root\/.sysdbs
\n1 1 24 * * \/root\/.sysync.pl
\n1 1 10 * * \/root\/.sysdbs
\n1 1 24 * * \/root\/.sysync.pl
\n3.\u00a0<\/b>${JBOSS_HOME}\/bin\/\u591a\u51fa\u4e86\u597d\u591a\u6587\u4ef6\uff0c\u8fd9\u4e9b\u6587\u4ef6\u7684owner\u4e3a\u672a\u77e5\uff08\u6bd4\u5982\u4e3a1000)\uff1a
\na.tar.gz
\nbm.c
\nbm.h
\nbm.o
\nflu.pl
\nfly.pl
\ninstall-sh
\nipsort
\nkisses\/
\nkisses.tar.gz
\nkisses.tar.gz.1
\nlinda.pl
\nlindb.pl
\nMakefile
\npnscan
\npnscan.c
\npnscan.o
\nversion.c
\nversion.o<\/p>\n

\u627e\u5230\u89e3\u51b3\u529e\u6cd5\uff1a<\/b><\/span>
\nhttp:\/\/aws.amazon.com\/security\/security-bulletins\/jboss-worm-spreading-via-unpatched-or-unsecured-jboss-application-server\/<\/a><\/p>\n

\u4fee\u6539\uff1a<\/b><\/span>
\n1. kill \u6389\u591a\u51fa\u6765\u7684\u8fdb\u7a0b\uff0c\u53e6\u5916killall perl\uff0ckill -9 crond\uff0cservice crond restart\u3002
\n2. \u5220\u9664crontab \u91cc\u9762\u591a\u51fa\u6765\u7684\u6761\u76ee\u3002
\n3. \u5220\u9664${JBOSS_HOME}\/bin\/ \u4e0b\u9762\u591a\u51fa\u6765\u7684\u6587\u4ef6\u3002
\n4. \u5220\u9664${JBOSS_HOME}\/server\/all(default,minimal)\/deploy\/management\/iesvc.war\u548czecmd.war\u6587\u4ef6\u5939\u3002<\/span>
\n5. \u4fee\u6539jboss\u914d\u7f6e\uff1a
\n\u4e00\u3001JMX\u5b89\u5168\u8bbe\u7f6e\uff1a<\/b>
\n# vi\u00a0${JBOSS_HOME}\/server\/all(default,minimal)\/deploy\/jmx-console.war\/WEB-INF\/web.xml<\/span>
\n<!– A security constraint that restricts access to the HTML JMX console
\nto users with the role JBossAdmin. Edit the roles to what you want and
\nuncomment the WEB-INF\/jboss-web.xml\/security-domain element to enable
\nsecured access to the HTML JMX console.
\n–>
\n<security-constraint>
\n<web-resource-collection>
\n<web-resource-name>HtmlAdaptor<\/web-resource-name>
\n<description>An example security config that only allows users with the
\nrole JBossAdmin to access the HTML JMX console web application
\n<\/description>
\n<url-pattern>\/*<\/url-pattern>
\n<!–
\n<http-method>GET<\/http-method>
\n<http-method>POST<\/http-method>
\n–>
\n<\/web-resource-collection>
\n<auth-constraint>
\n<role-name>JBossAdmin<\/role-name>
\n<\/auth-constraint>
\n<\/security-constraint>
\n\u628aGET\u548cPOST\u4e24\u884c\u6ce8\u91ca\u6389\uff0c\u540c\u65f6security-constraint\u6574\u4e2a\u90e8\u5206\u4e0d\u8981\u6ce8\u91ca\u6389\u3002<\/p>\n

# vi\u00a0${JBOSS_HOME}\/server\/all(default,minimal)\/deploy\/jmx-console.war\/WEB-INF\/jboss-web.xml<\/span>
\n<jboss-web>
\n<!– Uncomment the security-domain to enable security. You will
\nneed to edit the htmladaptor login configuration to setup the
\nlogin modules used to authentication users.
\n<–>
\n<security-domain>java:\/jaas\/jmx-console<\/security-domain>
\n<\/jboss-web>
\n\u628asecurity-domain\u6ce8\u91ca\u53bb\u6389\u3002<\/p>\n

# vi\u00a0${JBOSS_HOME}\/server\/all(default,minimal)\/conf\/props\/jmx-console-users.properties<\/span>
\n# A sample users.properties file for use with the UsersRolesLoginModule
\nadmin=xxxxx
\n\u4fee\u6539admin\u5bc6\u7801<\/p>\n

\u4e8c\u3001WEB-CONSOLE\u5b89\u5168\u8bbe\u7f6e\uff1a<\/b>
\n# vi\u00a0${JBOSS_HOME}\/server\/all(default,minimal)\/deploy\/management\/console-mgr.sar\/web-console.war\/WEB-INF\/web.xml<\/span>
\n<!– A security constraint that restricts access to the HTML JMX console
\nto users with the role JBossAdmin. Edit the roles to what you want and
\nuncomment the WEB-INF\/jboss-web.xml\/security-domain element to enable
\nsecured access to the HTML JMX console.
\n–>
\n<security-constraint>
\n<web-resource-collection>
\n<web-resource-name>HtmlAdaptor<\/web-resource-name>
\n<description>An example security config that only allows users with the
\nrole JBossAdmin to access the HTML JMX console web application
\n<\/description>
\n<url-pattern>\/*<\/url-pattern>
\n<!–
\n<http-method>GET<\/http-method>
\n<http-method>POST<\/http-method>
\n–>
\n<\/web-resource-collection>
\n<auth-constraint>
\n<role-name>JBossAdmin<\/role-name>
\n<\/auth-constraint>
\n<\/security-constraint>
\n\u628aGET\u548cPOST\u4e24\u884c\u6ce8\u91ca\u6389\uff0c\u540c\u65f6security-constraint\u6574\u4e2a\u90e8\u5206\u4e0d\u8981\u6ce8\u91ca\u6389\u3002<\/p>\n

# vi\u00a0${JBOSS_HOME}\/server\/all(default,minimal)\/deploy\/management\/console-mgr.sar\/web-console.war\/WEB-INF\/jboss-web.xml<\/span>
\n<!– Uncomment the security-domain to enable security. You will
\nneed to edit the htmladaptor login configuration to setup the
\nlogin modules used to authentication users.
\n–>
\n<security-domain>java:\/jaas\/web-console<\/security-domain>
\n\u628asecurity-domain\u6ce8\u91ca\u53bb\u6389\u3002<\/p>\n

# vi\u00a0${JBOSS_HOME}\/server\/all(default,minimal)\/deploy\/management\/console-mgr.sar\/web-console.war\/WEB-INF\/classes\/web-console-users.properties<\/span>
\n# A sample users.properties file for use with the UsersRolesLoginModule
\nadmin=xxxxx
\n\u4fee\u6539admin\u5bc6\u7801<\/p>\n

\u6700\u540e\u542f\u52a8jboss\u751f\u6548\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"

\u4e2d\u6bd2\u73b0\u8c61\uff1a 1.\u00a0ps axf\u770b\u5230\u591a\u51fa\u4e86\u5f88\u591a\u8fdb\u7a0b\uff0c\u5c24\u5176\u662f\u6709pnscan\u8fd9\u4e2a\u8fdb\u7a0b\uff0c\u5b83\u4f1a\u5bf9\u5916\u626b\u63cf\u6574\u4e2a\u7f51\u7edc\uff0c\u5bfc\u81f4\u7f51\u7edc …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[13],"tags":[140,142,141],"class_list":["post-226","post","type-post","status-publish","format-standard","hentry","category-13","tag-jboss","tag-142","tag-141"],"views":1639,"_links":{"self":[{"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/226","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=226"}],"version-history":[{"count":1,"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/226\/revisions"}],"predecessor-version":[{"id":227,"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/226\/revisions\/227"}],"wp:attachment":[{"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=226"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=226"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.max-shu.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=226"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}