如何利用 Docker 強化網站安全
10 likes2,348 views
Tim Hsu is the founder of CHROOT and HITCON. He previously worked as the security manager for Taiwan Mobile and currently works for VARMOUR, an American cybersecurity company. The document discusses AppArmor security profiles for Docker containers, the VulApps tool for testing container vulnerabilities, the Pornhub bug bounty program, Docker security best practices, and links to resources about remote code execution vulnerabilities in WordPress plugins and Apache Struts.
如何利用 Docker 強化網站安全
- 2. 徐千洋 (TIM HSU) CHROOT 創辦人 HITCON 創辦人 網駭科技 創辦人 曾任: 台灣大哥大 資安部經理 現職: VARMOUR 美商安連網路公司台灣分公司
- 5. browser httpd php login.php /bin/sh
- 6. browser httpd php upload.php webshell.php/bin/sh
- 8. ? ? ?
- 9. ? ? ?
- 10. UID=165536 UID=165537 dockremap:165536 /etc/subuid UID=0 UID=1 root:0:XXXX daemon:1:XXXX /etc/passwd
- 11. ? ? SETUID-ROOT ? CAP_NET_RAW # ls -al /bin/ping -rwxr-xr-x 1 root root 44168 Mar 15 2014 # getcap /bin/ping /bin/ping = cap_net_raw+p
- 12. ? /usr/sbin/nginx { #include <abstractions/apache2-common> #include <abstractions/base> capability dac_override, capability net_bind_service, capability setgid, capability setuid, /etc/passwd r, /etc/group r, deny /bin/sh mrwklx, }
- 14. ? ? ?
- 15. ? ? ?
- 16. ? ? ?
- 17. ? ? ?
- 18. ? ? ?
- 21. 1. AppArmor security profiles for Docker https://docs.docker.com/engine/security/apparmor/ 2. VulApps https://hub.docker.com/r/medicean/vulapps/ https://github.com/Medicean/VulApps/ 3. Pornhub bug bounty https://hackerone.com/pornhub 4. Docker security https://docs.docker.com/engine/security/security/ 5. Critical: Remote Command Execution in WordPress Form Manager Plugin (CVE-2015- 7806) http://appcheck-ng.com/remote-command-execution-in-wordpress-form-manager- plugin-cve-2015-7806/ 6. Struts2 RCE PoC https://github.com/coffeehb/Some-PoC-oR-ExP/tree/master/Struts2