At work today, I saw a post titled [original] CentOS instance for Linux privilege escalation skills. For the original article address, see http://www.bkjia.com/Article/201212/177389.html After preliminary reading, the Knowledge Used in the tool is very simple. It uses the special permissions of the/tmp directory in Linux to escalate permissions. I also know this vulnerability, but I have never thought about how to use it. Simply put, I have a Linux knowledge, but I cannot use it for penetration. It is a tragedy. There is a command in it that is lsb_release. The point of my text is to say this command. We all know that there are many Linux factions. When we look at the Linux version, we usually look at the content in the/etc/issue file. I don't know if there is such a command, let's talk about this command. LSB is short for Linux Standard Base. The lsb_release command is used to display information about LSB and specific versions. If this command is used without parameters, the-v parameter is added by default. -V,-version: displays version information-I,-id: displays the ID-d of the release, and-description: displays the description of the release-r, -release: the current system is the release version-c,-codename release code-a,-all: show all the above information-h, -help: displays help information. If the current release is LSB compatible, the "/etc/lsb_release" file contains the LSB_VERSION field. The value of this field can be a series of supported modules separated by colons. These module names are the modules of the LSB supported by the current version. If the current version is not LSB compatible, do not include this domain. Optional fields include DISTRIB_ID, DISTRIB_RELEASE, DISTRIB_CODENAME, and DISTRIB_DESCRIPTION. They can overwrite the content in the/etc/distrib-release file. Note: replace distrib with the name of the current release. If the/etc/lsb-release.d directory exists, the directory looks for the file name and adds it to LSB_VERSION as an additional module version. The/etc/distrib-release file contains descriptions to describe which file names should be analyzed. The general format is: "Distributor release x. x (Codename) "NOTE: The Debian system lacks the corresponding description information (see/etc/debian-version). To support the Debian system, most of the information is added to the lsb-release file. In the redhat and fedora systems, the following parameter is also supported:-s,-short outputs a brief description and the above is all the content of the lsb_release command. During the intrusion process, familiarizing yourself with a release version and corresponding vulnerabilities is a must for intruders. Q: Why do you talk about intrusion when you are not clear about the system information of the other party?