1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/ait/poc/nfs/nfs_history_scanner Sat May 04 12:03:46 2013 -0400
1.3 @@ -0,0 +1,231 @@
1.4 + 1 top
1.5 + 2 gpk-update-viewer
1.6 + 3 top
1.7 + 4 :q
1.8 + 5 top
1.9 + 6 yum update
1.10 + 7 sudo yum update
1.11 + 8 sudo yum install clamav-scanner
1.12 + 9 sudo yum install clamav-update
1.13 + 10 freshclam
1.14 + 11 vim /etc/freshclam.conf
1.15 + 12 vim /etc/freshclam.conf sud
1.16 + 13 sudo vim /etc/freshclam.conf
1.17 + 14 freshclam
1.18 + 15 sudo freshclam
1.19 + 16 ls
1.20 + 17 exit
1.21 + 18 sudo yum install clamav
1.22 + 19 sudo freshclam
1.23 + 20 clamav
1.24 + 21 clamscan
1.25 + 22 freshclam
1.26 + 23 sudo freshclam
1.27 + 24 ls /mnt/
1.28 + 25 ls /mnt/removable/
1.29 + 26 yum update
1.30 + 27 sudo yum update
1.31 + 28 ifconfig
1.32 + 29 ifconfig eth0 down
1.33 + 30 sudo ifconfig eth0 down
1.34 + 31 sudo ifconfig eth0 up
1.35 + 32 ifconfig
1.36 + 33 sudo yum update
1.37 + 34 ping opengl.org
1.38 + 35 sudo yum search nfs
1.39 + 36 sudo yum help
1.40 + 37 sudo yum check-update
1.41 + 38 ps -ax | grep yum
1.42 + 39 kill 943
1.43 + 40 sudo kill 943
1.44 + 41 sudo yum check-update
1.45 + 42 ps -ax | grep yum
1.46 + 43 kill -9 943
1.47 + 44 sudo kill -9 943
1.48 + 45 sudo kill -9 949
1.49 + 46 sudo kill -9 942
1.50 + 47 ps -ax | grep yum
1.51 + 48 sudo yum check-update
1.52 + 49 sudo yum search nfs
1.53 + 50 sudo yum install nfs-utils
1.54 + 51 sudo yum install nfsserver
1.55 + 52 sudo yum install nfs-server
1.56 + 53 sudo yum search all nfs
1.57 + 54 sudo yum install nfs-utils.x86_64
1.58 + 55 dmesg -H
1.59 + 56 vim /etc/profile.d/colorls.sh
1.60 + 57 sudo vim /etc/profile.d/dmesg-h.sh
1.61 + 58 vim /etc/profile.d/colorls.sh
1.62 + 59 ls -la /etc/profile.d/colorls.sh
1.63 + 60 ls -la /etc/profile.d/dmesg-h.sh
1.64 + 61 sudo exec /etc/profile.d/dmesg-h.sh
1.65 + 62 sudo exec -c /etc/profile.d/dmesg-h.sh
1.66 + 63 exec
1.67 + 64 exec --help
1.68 + 65 alias dmesg="dmesg --human"
1.69 + 66 dmesg
1.70 + 67 ls /etc/exports
1.71 + 68 cat /etc/exports
1.72 + 69 ls
1.73 + 70 mkdir Exports
1.74 + 71 ls
1.75 + 72 ifconfig
1.76 + 73 sudo vim /etc/exports
1.77 + 74 /etc/init.d/network restart
1.78 + 75 sudo /etc/init.d/network restart
1.79 + 76 exportfs -ra
1.80 + 77 sudo exportfs -ra
1.81 + 78 ls
1.82 + 79 echo "test text" > ./Exports/test.txt
1.83 + 80 ls
1.84 + 81 sudo cat /etc/exports
1.85 + 82 ifconfig
1.86 + 83 exportfs -ra
1.87 + 84 sudo exportfs -ra
1.88 + 85 sudo /etc/init.d/network restart
1.89 + 86 sudo exportfs -ra
1.90 + 87 ifconfig
1.91 + 88 sudo cat /etc/exports
1.92 + 89 sudo vim /etc/exports
1.93 + 90 sudo exportfs -ra
1.94 + 91 ifconfig
1.95 + 92 iptables -I INPUT 5 -p tcp --dport 2049 -m state --state NEW -j ACCEPT
1.96 + 93 sudo iptables -I INPUT 5 -p tcp --dport 2049 -m state --state NEW -j ACCEPT
1.97 + 94 sudo iptables -I INPUT 5 -p tcp --dport 2049 -j ACCEPT
1.98 + 95 sudo iptables -I INPUT 5 -p udp --dport 2049 -j ACCEPT
1.99 + 96 iptables
1.100 + 97 iptables -l
1.101 + 98 iptables -h
1.102 + 99 ls /etc/init.d/
1.103 + 100 /etc/init.d/README
1.104 + 101 sudo /etc/init.d/README
1.105 + 102 sudo cat /etc/init.d/README
1.106 + 103 systemctl
1.107 + 104 systemctl | grep nfs
1.108 + 105 service nfs-server start
1.109 + 106 sudo service nfs-server start
1.110 + 107 exportfs -ra
1.111 + 108 sudo exportfs -ra
1.112 + 109 sudo vim /etc/exports
1.113 + 110 sudo exportfs -ra
1.114 + 111 sudo service nfs-server restart
1.115 + 112 cat /etc/hosts.allow
1.116 + 113 sudo vim /etc/hosts.allow
1.117 + 114 ls
1.118 + 115 chmod 777 Exports/
1.119 + 116 chmod 777 Exports
1.120 + 117 sudo service nfs-server restart
1.121 + 118 sudo exportfs -ra
1.122 + 119 sudo vim /etc/hosts.allow
1.123 + 120 sudo service nfs-server restart
1.124 + 121 sudo exportfs -ra
1.125 + 122 sudo vim /etc/exports
1.126 + 123 sudo exportfs -ra
1.127 + 124 mkdir -p /export/users
1.128 + 125 sudo mkdir -p /export/users
1.129 + 126 mv /export/users/ /export/user ; sudo mount --bind /home/user /export/user
1.130 + 127 sudo mv /export/users/ /export/user ; sudo mount --bind /home/user /export/user
1.131 + 128 ls /export/
1.132 + 129 sudo vim /etc/exports
1.133 + 130 sudo exportfs -ra
1.134 + 131 ifconfig
1.135 + 132 service nfs-kernel-server restart
1.136 + 133 sudo service nfs-kernel-server restart
1.137 + 134 sudo service nfs-server restart
1.138 + 135 sudo iptables -A INPUT -s 10.137.2.9 -d 10.137.2.16 111 -p 6 -j ACCEPT
1.139 + 136 sudo iptables -A INPUT -s 10.137.2.9 -d 0/0 111 -p 6 -j ACCEPT
1.140 + 137 sudo iptables -A INPUT -s 10.137.2.9 -d 0/0 --dport 111 -p 6 -j ACCEPT
1.141 + 138 sudo iptables -I INPUT 5 -p tcp --dport 111 -j ACCEPT
1.142 + 139 history | grep iptables
1.143 + 140 sudo iptables -I INPUT 5 -p udp --dport 111 -j ACCEPT
1.144 + 141 sudo iptables -I INPUT 5 -p udp --dport 32765:32768 -j ACCEPT
1.145 + 142 sudo iptables -I INPUT 5 -p tcp --dport 32765:32768 -j ACCEPT
1.146 + 143 service portmap restart
1.147 + 144 sudo service portmap restart
1.148 + 145 sudo service portmap.service restart
1.149 + 146* sudo service portmap start
1.150 + 147 statd -p 32765 -o 32766
1.151 + 148 sudo find / -name portmap*
1.152 + 149 portmap -d
1.153 + 150 sudo service nfs-server restart
1.154 + 151 service portmap restart
1.155 + 152 sudo service portmap restart
1.156 + 153 sudo yum search portmap
1.157 + 154 exportfs -a -v
1.158 + 155 sudo exportfs -a -v
1.159 + 156 iptabled -L -n
1.160 + 157 iptables -L -n
1.161 + 158 sudo iptables -L -n
1.162 + 159 sudo iptables -I INPUT 5 -s 10.137.2.9 -p tcp --dport 32765:32768 -j ACCEPT
1.163 + 160 sudo iptables -I INPUT 5 -s 10.137.2.9 -p udp --dport 32765:32768 -j ACCEPT
1.164 + 161 sudo iptables -I INPUT 5 -s 10.137.2.9 -p udp --dport 2049 -j ACCEPT
1.165 + 162 sudo iptables -I INPUT 5 -s 10.137.2.9 -p tcp --dport 2049 -j ACCEPT
1.166 + 163 sudo iptables -I INPUT 5 -s 10.137.2.9 -p tcp --dport 111 -j ACCEPT
1.167 + 164 sudo iptables -I INPUT 5 -s 10.137.2.9 -p udp --dport 111 -j ACCEPT
1.168 + 165 sudo iptables -I INPUT 5 -s 10.137.2.9 -d 10.137.2.16 -p tcp --dport 2049 -j ACCEPT
1.169 + 166 sudo iptables -I INPUT 5 -s 10.137.2.9 -d 10.137.2.16 -p udp --dport 2049 -j ACCEPT
1.170 + 167 ifconfig
1.171 + 168 sudo iptables -I INPUT 5 -s 10.137.2.9 -d 10.137.2.16 -p udp --dport 2049 -j ACCEPT
1.172 + 169 sudo iptables -I INPUT 5 -s 10.137.2.9 -d 10.137.2.16 -p tcp --dport 2049 -j ACCEPT
1.173 + 170 sudo iptables -L -n
1.174 + 171 sudo iptables -I INPUT 5 -s 10.137.2.9 -d 10.137.2.16 -p tcp --dport 20048 -j ACCEPT
1.175 + 172 sudo iptables -I INPUT 5 -s 10.137.2.9 -d 10.137.2.16 -p udp --dport 20048 -j ACCEPT
1.176 + 173 sudo iptables -L -n
1.177 + 174 uname
1.178 + 175 uname -a
1.179 + 176 host
1.180 + 177 host -l
1.181 + 178 sudo iptables -L -n
1.182 + 179 sudo iptables -D INPUT -s 10.137.2.9 -p udp --dport 111
1.183 + 180 sudo iptables -D INPUT -s 10.137.2.9 -d 0.0.0.0 -p udp --dport 111
1.184 + 181 sudo iptables -L -n
1.185 + 182 sudo iptables -D INPUT 10
1.186 + 183 sudo iptables -L -n
1.187 + 184 sudo iptables -D INPUT 10
1.188 + 185 sudo iptables -L -n
1.189 + 186 sudo iptables -D INPUT 10
1.190 + 187 sudo iptables -L -n
1.191 + 188 sudo iptables -D INPUT 10
1.192 + 189 sudo iptables -L -n
1.193 + 190 sudo iptables -D INPUT 9
1.194 + 191 sudo iptables -L -n
1.195 + 192 sudo iptables -A INPUT 8 -s 10.137.2.9 -p udp --dport 111
1.196 + 193 sudo iptables -A INPUT 7 -s 10.137.2.9 -p udp --dport 111
1.197 + 194 sudo iptables -A INPUT 5 -s 10.137.2.9 -p udp --dport 111
1.198 + 195 sudo iptables -I INPUT 8 -s 10.137.2.9 -p udp --dport 111
1.199 + 196 sudo iptables -L -n
1.200 + 197 sudo iptables -D INPUT 8
1.201 + 198 sudo iptables -L -n
1.202 + 199 sudo iptables -I INPUT 9 -s 10.137.2.9 -p udp --dport 111 -j ACCEPT
1.203 + 200 sudo iptables -L -n
1.204 + 201 /etc/init.d/network restart
1.205 + 202 sudo /etc/init.d/network restart
1.206 + 203 sudo iptables -L -n
1.207 + 204 sudo iptables -I INPUT 9 -s 10.137.2.9 -p tcp --dport 111 -j ACCEPT
1.208 + 205 sudo iptables -D INPUT 6
1.209 + 206 sudo iptables -L -n
1.210 + 207 sudo iptables -D INPUT 7
1.211 + 208 sudo iptables -L -n
1.212 + 209 sudo iptables -D INPUT 8
1.213 + 210 sudo iptables -L -n
1.214 + 211 sudo iptables -D INPUT 7
1.215 + 212 sudo iptables -I INPUT 7 -s 10.137.2.9 -p udp --dport 111 -j ACCEPT
1.216 + 213 sudo iptables -L -n
1.217 + 214 sudo iptables -I INPUT 7 -s 10.137.2.9 -p udp --dport 111 -j ACCEPT
1.218 + 215 sudo iptables -I INPUT 7 -s 10.137.2.9 -p tcp --dport 111 -j ACCEPT
1.219 + 216 sudo iptables -L -n
1.220 + 217 sudo iptables -D INPUT 8
1.221 + 218 sudo iptables -L -n
1.222 + 219 sudo iptables -D INPUT 7
1.223 + 220 sudo iptables -L -n
1.224 + 221 sudo iptables -I INPUT 7 -s 10.137.2.9 -d 10.137.2.16 -p tcp --dport 111 -j ACCEPT
1.225 + 222 sudo iptables -L -n
1.226 + 223 sudo iptables -I INPUT 7 -s 10.137.2.9 -d 10.137.2.16 -p udp --dport 111 -j ACCEPT
1.227 + 224 sudo iptables -L -n
1.228 + 225 sudo iptables -D INPUT 7
1.229 + 226 sudo iptables -L -n
1.230 + 227 sudo iptables -I INPUT 7 -s 10.137.2.9 -d 10.137.2.16 -p udp --dport 111 -j ACCEPT
1.231 + 228 sudo iptables -L -n
1.232 + 229 cat /etc/hosts.allow
1.233 + 230 sudo cat /etc/exports
1.234 + 231 history > ./nfs_history_scanner