|
security > SQL°ø°ÝÀÇ ÁÖ¹ü xp_cmdshell Á×À̱â
MSSql¿¡¼ ½ºÅä¾îµå ÇÁ·Î½ÃÁ®¸¦ ÅëÇØ Command Shell À» ½ÇÇà½Ãų¼ö ÀÖ´Ù.
ÀÌ°É ÀÌ¿ëÇØ ¿ÜºÎ¿¡¼ µð·ºÅ丮 Á¢±Ùµî ÇØÅ·¿¡ ÀÌ¿ëµÉ¼ö Àֱ⠶§¹®¿¡ xp_cmdshell ÀÇ »ç¿ëÀ» ÁßÁö½ÃÄÑ ÇØÅ·¿¡ ´ëºñÇÒ¼ö ÀÖ´Ù.
Stored procedure Purpose
sp_ActiveDirectory_SCP Add, change, or delete Active Directory directory service objects
sp_adddistpublisher Replication
sp_adddistributiondb Replication
sp_attachsubscription Replication
sp_changedistpublisher Replication
sp_copysubscription Replication
sp_MScopysnapshot Replication
sp_MScopyscriptfile Replication install
sp_MSget_file_existence Replication install
sp_MSremove_userscript Replication install
sp_replicationoption Replication
sp_vupgrade_replication Replication install
sp_MSreplremoveuncdir Replication called from distribution database
sp_MSdeletefoldercontents Replication called from distribution database
sp_resolve_logins Log shipping
Sp_set_local_time MSDB
sp_msx_defect MultiServer administration
sp_msx_enlist MultiServer administration
À§ÀÚ·á´Â xp_cmdshell·Î ½ÇÇà½Ãų¼ö ÀÖ´Â ¸í·É¾îµé..
xp_cmdshell ÇØÁ¦¹ý.
exec sp_dropextendedproc 'xp_cmdshell'
Àçµî·Ï
exec sp_addextendedproc 'xp_cmdshell', 'xplog70.dll'
Ȥ½Ã¶óµµ ´Ù¸¥ ¹æ½ÄÀ¸·Î ¼¹ö°¡ ÇØÅ·À» ´çÇÒ¼öµµ ÀÖ´Ù.
±×·²°æ¿ì xp_cmdshell À» Àçµî·Ï ÇÒ¼ö Àֱ⠶§¹®¿¡ xplog70.dll ÆÄÀÏÀ» »èÁ¦Çϴ°͵µ ÁÁÀº ¹æ¹ýÀÌ´Ù.
ÇÏÁö¸¸ xplog70.dll ÆÄÀÏÀÌ ¾øÀ»°æ¿ì
. Xp_sscanf
. Xp_sprintf
. Xp_msver
. Xp_msver
. Xp_enumgroups
. Xp_logevent
. Xp_loginconfig
ÀÌ ¸í·É¾îµéÀÌ ÀÛµ¿ÇÏÁö ¾ÊÀ»¼ö ÀÖÀ¸¹Ç·Î ÁÖÀÇ°¡ ÇÊ¿äÇÔ.
xplog70.dllÀ» »èÁ¦ÇÏ°í¼ SQL Server RestartÇÏ¸é ´õÀÌ»ó sp_addextendedproc¸¦ »ç¿ëÇؼ µî·ÏÇÒ ¼ö ¾ø´Ù.
Äõ¸®ºÐ¼®±â¿¡¼ ´Ù½Ã sp_addextendedproc 'xp_cmdshell', 'xplog70.dll'À» ½ÇÇàÇϸé Á¤»óÀûÀ¸·Î ½ÇÇàµÇÁö¸¸,
xp_cmdshell 'dir' ¿Í °°ÀÌ ½ÇÇàÇϸé,
ODBC: ¸Þ½ÃÁö 0, ¼öÁØ 16, »óÅ 1
xplog70.dll DLL ¶Ç´Â ÀÌ DLLÀÌ ÂüÁ¶ÇÏ´Â DLL Áß Çϳª¸¦ ·ÎµåÇÒ ¼ö ¾ø½À´Ï´Ù. ÀÌÀ¯: 126(ÁöÁ¤µÈ ¸ðµâÀ» ãÀ» ¼ö ¾ø½À´Ï´Ù.). ¶ó´Â ¸Þ¼¼Áö¸¦ »Ñ¸®¸é¼ ½ÇÆÐÇÏ°Ô µÈ´Ù.
ÀÌ°É ÀÌ¿ëÇØ ¿ÜºÎ¿¡¼ µð·ºÅ丮 Á¢±Ùµî ÇØÅ·¿¡ ÀÌ¿ëµÉ¼ö Àֱ⠶§¹®¿¡ xp_cmdshell ÀÇ »ç¿ëÀ» ÁßÁö½ÃÄÑ ÇØÅ·¿¡ ´ëºñÇÒ¼ö ÀÖ´Ù.
Stored procedure Purpose
sp_ActiveDirectory_SCP Add, change, or delete Active Directory directory service objects
sp_adddistpublisher Replication
sp_adddistributiondb Replication
sp_attachsubscription Replication
sp_changedistpublisher Replication
sp_copysubscription Replication
sp_MScopysnapshot Replication
sp_MScopyscriptfile Replication install
sp_MSget_file_existence Replication install
sp_MSremove_userscript Replication install
sp_replicationoption Replication
sp_vupgrade_replication Replication install
sp_MSreplremoveuncdir Replication called from distribution database
sp_MSdeletefoldercontents Replication called from distribution database
sp_resolve_logins Log shipping
Sp_set_local_time MSDB
sp_msx_defect MultiServer administration
sp_msx_enlist MultiServer administration
À§ÀÚ·á´Â xp_cmdshell·Î ½ÇÇà½Ãų¼ö ÀÖ´Â ¸í·É¾îµé..
xp_cmdshell ÇØÁ¦¹ý.
exec sp_dropextendedproc 'xp_cmdshell'
Àçµî·Ï
exec sp_addextendedproc 'xp_cmdshell', 'xplog70.dll'
Ȥ½Ã¶óµµ ´Ù¸¥ ¹æ½ÄÀ¸·Î ¼¹ö°¡ ÇØÅ·À» ´çÇÒ¼öµµ ÀÖ´Ù.
±×·²°æ¿ì xp_cmdshell À» Àçµî·Ï ÇÒ¼ö Àֱ⠶§¹®¿¡ xplog70.dll ÆÄÀÏÀ» »èÁ¦Çϴ°͵µ ÁÁÀº ¹æ¹ýÀÌ´Ù.
ÇÏÁö¸¸ xplog70.dll ÆÄÀÏÀÌ ¾øÀ»°æ¿ì
. Xp_sscanf
. Xp_sprintf
. Xp_msver
. Xp_msver
. Xp_enumgroups
. Xp_logevent
. Xp_loginconfig
ÀÌ ¸í·É¾îµéÀÌ ÀÛµ¿ÇÏÁö ¾ÊÀ»¼ö ÀÖÀ¸¹Ç·Î ÁÖÀÇ°¡ ÇÊ¿äÇÔ.
xplog70.dllÀ» »èÁ¦ÇÏ°í¼ SQL Server RestartÇÏ¸é ´õÀÌ»ó sp_addextendedproc¸¦ »ç¿ëÇؼ µî·ÏÇÒ ¼ö ¾ø´Ù.
Äõ¸®ºÐ¼®±â¿¡¼ ´Ù½Ã sp_addextendedproc 'xp_cmdshell', 'xplog70.dll'À» ½ÇÇàÇϸé Á¤»óÀûÀ¸·Î ½ÇÇàµÇÁö¸¸,
xp_cmdshell 'dir' ¿Í °°ÀÌ ½ÇÇàÇϸé,
ODBC: ¸Þ½ÃÁö 0, ¼öÁØ 16, »óÅ 1
xplog70.dll DLL ¶Ç´Â ÀÌ DLLÀÌ ÂüÁ¶ÇÏ´Â DLL Áß Çϳª¸¦ ·ÎµåÇÒ ¼ö ¾ø½À´Ï´Ù. ÀÌÀ¯: 126(ÁöÁ¤µÈ ¸ðµâÀ» ãÀ» ¼ö ¾ø½À´Ï´Ù.). ¶ó´Â ¸Þ¼¼Áö¸¦ »Ñ¸®¸é¼ ½ÇÆÐÇÏ°Ô µÈ´Ù.
|
|
||||
|
À̸ÞÀÏ ¹®ÀÇ : cak0280@nate.com Copyright 2000 By ENTERSOFT.KR All Rights Reserved. |