RAC OCSSD進程被KILL引起系統重啟--非root使用者也能重啟OS,racocssd
OCSSD這個進程是clusterware最關鍵的進程,CSSD進行異常,系統會立即重啟.在10.2.0.5/11.2.0.4的LINUX測試環境測試使用kill -9 <ocssd pid>可以觀察到系統立刻重啟,和init 6效果一樣哈哈。***這也發現一個漏洞:/u01/app/oracle/product/crs/bin/ocssd.bin這個進程是ORACLE使用者的,使用ORACLE使用者來KILL進程,就將LINUX重啟了~~~
這算不算是一個安全性漏洞呢哈哈。
[oracle@rac1 ~]$ ps -ef|grep cssd --在10.2.0.5中的輸出:root 3342 1 0 22:05 ? 00:00:00 /bin/sh /etc/init.d/init.cssd fatalroot 4254 3342 0 22:06 ? 00:00:00 /bin/sh /etc/init.d/init.cssd oprocdroot 4267 3342 0 22:06 ? 00:00:00 /bin/sh /etc/init.d/init.cssd oclsomonroot 4296 3342 0 22:06 ? 00:00:00 /bin/sh /etc/init.d/init.cssd daemonroot 4761 4267 0 22:06 ? 00:00:00 /sbin/runuser -l oracle -c /bin/sh -c 'cd /u01/app/oracle/product/crs/log/rac1/cssd/oclsomon; ulimit -c unlimited; /u01/app/oracle/product/crs/bin/oclsomon || exit $?'oracle 4762 4761 0 22:06 ? 00:00:00 /bin/sh -c cd /u01/app/oracle/product/crs/log/rac1/cssd/oclsomon; ulimit -c unlimited; /u01/app/oracle/product/crs/bin/oclsomon || exit $?oracle 4870 4296 0 22:06 ? 00:00:00 /u01/app/oracle/product/crs/bin/ocssd.bin
[grid@rac1 ~]$ ps -ef|grep cssd --在11.2.0.4.0中的輸出root 3313 1 0 22:23 ? 00:00:00 /u01/app/11.2.0/grid/bin/cssdmonitorroot 3332 1 0 22:23 ? 00:00:00 /u01/app/11.2.0/grid/bin/cssdagentgrid 3345 1 0 22:23 ? 00:00:06 /u01/app/11.2.0/grid/bin/ocssd.bin grid 5863 5318 0 22:38 pts/0 00:00:00 grep cssd[grid@rac1 ~]$ kill -9 3345
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
