API tools faq
paste
Advertisement
sandervanvugt

linux+ may22 day2

sandervanvugt
May 24th, 2022
71
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 8.29 KB | None | 0 0
raw download clone embed print report
  1. root@student-virtual-machine:/etc/apparmor.d# history
  2. 1 exit
  3. 2 man getfattr
  4. 3 man getattr
  5. 4 getattr
  6. 5 poweroff
  7. 6 vim /etc/hosts
  8. 7 vim /etc/motd
  9. 8 vim /var/log/syslog
  10. 9 cd /etc/apparmor.d/
  11. 10 ls
  12. 11 less usr.bin.vim.basic
  13. 12 history
  14. [root@localhost ~]# history
  15. 1 useradd linda
  16. 2 cd /home/linda/
  17. 3 touch afile
  18. 4 lsattr
  19. 5 chattr +i afile
  20. 6 lsattr
  21. 7 rm -f afile
  22. 8 chattr -i afile
  23. 9 man chattr
  24. 10 exit
  25. 11 cd /etc/sysconfig/network-scripts/
  26. 12 ls
  27. 13 cd
  28. 14 exit
  29. 15 cd /run/systemd/generator/
  30. 16 ls
  31. 17 cat boot.mount
  32. 18 cat -.mount
  33. 19 cat -- -.mount
  34. 20 exit
  35. 21 cd /sys/module/
  36. 22 ls
  37. 23 cd e1000/
  38. 24 ls
  39. 25 cd parameters/
  40. 26 ls
  41. 27 cat copybreak
  42. 28 pwd
  43. 29 modinfo e1000
  44. 30 pwd
  45. 31 ls
  46. 32 history
  47. 33 exit
  48. 34 free -m
  49. 35 vmstat 2 20
  50. 36 reboot
  51. 37 cd /proc/sys
  52. 38 ls
  53. 39 cd vm
  54. 40 ls
  55. 41 cat dirty_expire_centisecs
  56. 42 sync
  57. 43 echo 500 > dirty_expire_centisecs
  58. 44 cat swappiness
  59. 45 echo 10 > swappiness
  60. 46 vim /etc/sysctl.d/99-sysctl.conf
  61. 47 sysctl -a
  62. 48 man proc
  63. 49 sysctl -a | wc
  64. 50 sysctl -a | grep ipv6
  65. 51 sysctl -a | grep ipv6 | grep able
  66. 52 ip a
  67. 53 echo 1 > /proc/sys/net/ipv6/conf/all/disable_ipv6
  68. 54 ip a
  69. 55 echo 0 > /proc/sys/net/ipv6/conf/all/disable_ipv6
  70. 56 ip a
  71. 57 cd
  72. 58 cd /boot
  73. 59 ls
  74. 60 cd grub2/
  75. 61 ls
  76. 62 vim grub.cfg
  77. 63 vim /etc/default/grub
  78. 64 grub2-mkconfig -o /boot/grub2/grub.cfg
  79. 65 vim /etc/fstab
  80. 66 reboot
  81. 67 mount
  82. 68 mount -o remount,rw /
  83. 69 vim /etc/fstab
  84. 70 systemctl list-dependencies
  85. 71 reboot
  86. 72 vim /etc/dracut.conf
  87. 73 man dracut.conf
  88. 74 /home/student/linuxplus/countdown 12
  89. 75 ls | cpio -ov > myarchive.cpio
  90. 76 find . -depth -print
  91. 77 find . -depth -print | cpio -o > /tmp/myarchive.cpio
  92. 78 find / -name "*.txt" | cpio -o --format=tar >/tmp/txtfiles.tar
  93. 79 file /tmp/txtfiles.tar
  94. 80 cpio -idmv < /tmp/txtfiles.tar
  95. 81 dd if=/dev/sda of=/boot/mbr_backup bs=512 count=1
  96. 82 xxd -l 512 /dev/sda
  97. 83 xxd -l 512 /boot/mbr_backup
  98. 84 history
  99. 85 dd if=/dev/zero of=/dev/sda bs=512 count=1
  100. 86 xxd -l 512 /boot/mbr_backup
  101. 87 xxd -l 512 /dev/sda
  102. 88 dd if=/boot/mbr_backup of=/dev/sda
  103. 89 xxd -l 512 /dev/sda
  104. 90 cat /etc/passwd > passwd.txt
  105. 91 md5sum passwd.txt
  106. 92 md5sum passwd.txt > passwd.md5
  107. 93 md5sum passwd.md5
  108. 94 md5sum passwd.txt
  109. 95 md5sum /etc/passwd
  110. 96 useradd bob
  111. 97 md5sum /etc/passwd
  112. 98 cp /etc/passwd passwd.txt
  113. 99 md5sum -c passwd.md5
  114. 100 ip a
  115. 101 ssh -X
  116. 102 ssh -X 192.168.29.176 gedit
  117. 103 ls
  118. 104 ssh 192.168.29.176 ls /root
  119. 105 ssh -fNL 4444:192.168.29.170:80 root@192.168.29.166
  120. 106 ssh -fNL 4444:192.168.29.170:80 root@192.168.29.176
  121. 107 ip a
  122. 108 curl localhost:4444
  123. 109 less /etc/services
  124. 110 ss -tunap
  125. 111 netstat -tulpen
  126. 112 iptables -L
  127. 113 iptables -P OUTPUT DROP
  128. 114 iptables -P INPUT DROP
  129. 115 ping google.com
  130. 116 iptables -A OUTPUT -p icmp -j ACCEPT
  131. 117 ping google.com
  132. 118 vim /etc/hosts
  133. 119 ping google.com
  134. 120 iptables -A OUTPUT -p tcp --dport=53 -j ACCEPT
  135. 121 iptables -A OUTPUT -p udp --dport=53 -j ACCEPT
  136. 122 ping google.com
  137. 123 iptables -L
  138. 124 iptables -A INPUT -m state --state=ESTABLISHED,RELATED -j ACCEPT
  139. 125 ping google.com
  140. 126 ssh 192.168.29.170
  141. 127 iptables -A OUTPUT -p tcp --dport 22 -j ACCEPT
  142. 128 ssh 192.168.29.170
  143. 129 history -w; sync
  144. 130 vim /etc/dracut.conf
  145. 131 man dracut.conf
  146. 132 /home/student/linuxplus/countdown 12
  147. 133 ls | cpio -ov > myarchive.cpio
  148. 134 find . -depth -print
  149. 135 find . -depth -print | cpio -o > /tmp/myarchive.cpio
  150. 136 find / -name "*.txt" | cpio -o --format=tar >/tmp/txtfiles.tar
  151. 137 file /tmp/txtfiles.tar
  152. 138 cpio -idmv < /tmp/txtfiles.tar
  153. 139 dd if=/dev/sda of=/boot/mbr_backup bs=512 count=1
  154. 140 xxd -l 512 /dev/sda
  155. 141 xxd -l 512 /boot/mbr_backup
  156. 142 history
  157. 143 dd if=/dev/zero of=/dev/sda bs=512 count=1
  158. 144 xxd -l 512 /boot/mbr_backup
  159. 145 xxd -l 512 /dev/sda
  160. 146 dd if=/boot/mbr_backup of=/dev/sda
  161. 147 xxd -l 512 /dev/sda
  162. 148 cat /etc/passwd > passwd.txt
  163. 149 md5sum passwd.txt
  164. 150 md5sum passwd.txt > passwd.md5
  165. 151 md5sum passwd.md5
  166. 152 md5sum passwd.txt
  167. 153 md5sum /etc/passwd
  168. 154 useradd bob
  169. 155 md5sum /etc/passwd
  170. 156 cp /etc/passwd passwd.txt
  171. 157 md5sum -c passwd.md5
  172. 158 ip a
  173. 159 ssh -X
  174. 160 ssh -X 192.168.29.176 gedit
  175. 161 ls
  176. 162 ssh 192.168.29.176 ls /root
  177. 163 ssh -fNL 4444:192.168.29.170:80 root@192.168.29.166
  178. 164 ssh -fNL 4444:192.168.29.170:80 root@192.168.29.176
  179. 165 ip a
  180. 166 curl localhost:4444
  181. 167 less /etc/services
  182. 168 ss -tunap
  183. 169 netstat -tulpen
  184. 170 iptables -L
  185. 171 iptables -P OUTPUT DROP
  186. 172 iptables -P INPUT DROP
  187. 173 ping google.com
  188. 174 iptables -A OUTPUT -p icmp -j ACCEPT
  189. 175 ping google.com
  190. 176 vim /etc/hosts
  191. 177 ping google.com
  192. 178 iptables -A OUTPUT -p tcp --dport=53 -j ACCEPT
  193. 179 iptables -A OUTPUT -p udp --dport=53 -j ACCEPT
  194. 180 ping google.com
  195. 181 iptables -L
  196. 182 iptables -A INPUT -m state --state=ESTABLISHED,RELATED -j ACCEPT
  197. 183 ping google.com
  198. 184 ssh 192.168.29.170
  199. 185 iptables -A OUTPUT -p tcp --dport 22 -j ACCEPT
  200. 186 ssh 192.168.29.170
  201. 187 history -w; sync
  202. 188 reboot
  203. 189 /home/student/linuxplus/countdown 19
  204. 190 auditctl -w /etc/motd -p rwxa -k TEST_AUDIT
  205. 191 cat /etc/motd
  206. 192 vim /etc/motd
  207. 193 less /var/log/audit/audit.log
  208. 194 grep TEST /var/log/audit/audit.log
  209. 195 ausearch -K TEST_AUDIT
  210. 196 ausearch -k TEST_AUDIT
  211. 197 ausearch -m avc
  212. 198 auditctl -l
  213. 199 auditctl -w /etc/passwd -p wa -k passwd_changes
  214. 200 auditctl -a always,exit -F arch=b64 -S adjtimex -S settimeofday -k time_change
  215. 201 date -s 17:42
  216. 202 grep time_change /var/log/audit/audit.log
  217. 203 auditctl -a always,exit -F dir=/home/ -F uid=o -C auid!=obj_uid -k SPYING
  218. 204 auditctl -a always,exit -F dir=/home/ -F uid=0 -C auid!=obj_uid -k SPYING
  219. 205 ls -l /home
  220. 206 cat /home/linda/.bash_history
  221. 207 grep SPYING /var/log/audit/audit.log
  222. 208 fdisk /dev/sdb
  223. 209 cryptsetup luksFormat /dev/sdb5
  224. 210 xxd -l 1024 /dev/sdb
  225. 211 xxd /dev/sdb5 | less
  226. 212 cryptsetup luksOpen /dev/sda5
  227. 213 cryptsetup luksOpen /dev/sda5 secret
  228. 214 cryptsetup luksOpen /dev/sdb5 secret
  229. 215 ls -l /dev/mapper/
  230. 216 mount /dev/mapper/secret /mnt
  231. 217 mkfs.xfs /dev/mapper/secret
  232. 218 mount /dev/mapper/secret /mnt
  233. 219 cd /mnt
  234. 220 cp /etc/passwd .
  235. 221 ls
  236. 222 cd
  237. 223 umount /mnt
  238. 224 cryptsetup luksClose /dev/sdb5
  239. 225 cryptsetup luksClose secret
  240. 226 history
  241. 227 ldd $(which passwd)
  242. 228 cd /etc/pam.d/
  243. 229 ls
  244. 230 cat passwd
  245. 231 cat system-auth
  246. 232 history
  247. 233 cd
  248. 234 /home/student/linuxplus/countdown 12
  249. 235 getenforce
  250. 236 cat /etc/sysconfig/selinux
  251. 237 ps Zaux | grep http
  252. 238 dnf install -y httpd
  253. 239 systemctl enable --now httpd
  254. 240 ps Zaux | grep http
  255. 241 ls -Z /var/www
  256. 242 vim /var/www/html/index.html
  257. 243 systemctl restart httpd
  258. 244 curl localhost
  259. 245 mkdir /web
  260. 246 ls -Zd /web
  261. 247 vim /web/index.html
  262. 248 vim /etc/httpd/conf/httpd.conf
  263. 249 systemctl restart httpd
  264. 250 curl localhost
  265. 251 grep AVC /var/log/audit/audit.log
  266. 252 man semanage-fcontext
  267. 253 # semanage fcontext -a -t httpd_sys_content_t "/web(/.*)?"
  268. 254 # restorecon -R -v /web
  269. 255 semanage fcontext -a -t httpd_sys_content_t "/web(/.*)?"
  270. 256 restorecon -R -v /web
  271. 257 curl localhost
  272. 258 man -k _selinux
  273. 259 dnf install selinux-policy-doc
  274. 260 man -k _selinux
  275. 261 man -k _selinux | wc
  276. 262 man -k _selinux | grep http
  277. 263 journalctl | grep sealert
  278. 264 sealert -l b226232a-972b-4d99-beb2-bae2c5eda713 | less
  279. 265 getsebool -a | grep http
  280. 266 setsebool -p httpd_enable_homedirs on
  281. 267 setsebool -p httpd_enable_homedirs=on
  282. 268 setsebool -P httpd_enable_homedirs=on
  283. 269 history
  284.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!