40 lines
1.7 KiB
Python
40 lines
1.7 KiB
Python
|
#!/usr/bin/python
|
|||
|
|
# coding: utf-8
|
|||
|
|
# -------------------------------------------------------------------
|
|||
|
|
# YakPanel
|
|||
|
|
# -------------------------------------------------------------------
|
|||
|
|
# Copyright (c) 2015-2099 YakPanel(www.yakpanel.com) All rights reserved.
|
|||
|
|
# -------------------------------------------------------------------
|
|||
|
|
# Author: hwliang <hwl@yakpanel.com>
|
|||
|
|
# -------------------------------------------------------------------
|
|||
|
|
|
|||
|
|
# -------------------------------------------------------------------
|
|||
|
|
# 开启地址空间布局随机化
|
|||
|
|
# -------------------------------------------------------------------
|
|||
|
|
# import sys, os
|
|||
|
|
# os.chdir('/www/server/panel')
|
|||
|
|
# sys.path.append("class/")
|
|||
|
|
import os, sys, re, public
|
|||
|
|
|
|||
|
|
_title = 'Enable kernel.randomize_va_space'
|
|||
|
|
_version = 1.0 # 版本
|
|||
|
|
_ps = "Enable kernel.randomize_va_space" # 描述
|
|||
|
|
_level = 2 # 风险级别: 1.提示(低) 2.警告(中) 3.危险(高)
|
|||
|
|
_date = '2022-08-10' # 最后更新时间
|
|||
|
|
_ignore = os.path.exists("data/warning/ignore/sw_kernel_space.pl")
|
|||
|
|
_tips = [
|
|||
|
|
"[/proc/sys/kernel/randomize_va_space] value is 2: ",
|
|||
|
|
"How to set:sysctl -w kernel.randomize_va_space=2",
|
|||
|
|
]
|
|||
|
|
_help = ''
|
|||
|
|
_remind = 'This scheme can reduce the risk of intrusers using buffer overflow to attack the server, and strengthen the protection of the server. '
|
|||
|
|
def check_run():
|
|||
|
|
try:
|
|||
|
|
if os.path.exists("/proc/sys/kernel/randomize_va_space"):
|
|||
|
|
randomize_va_space=public.ReadFile("/proc/sys/kernel/randomize_va_space")
|
|||
|
|
if int(randomize_va_space)!=2:
|
|||
|
|
return False, 'Enable kernel.randomize_va_space'
|
|||
|
|
else:
|
|||
|
|
return True,"Risk-free"
|
|||
|
|
except:
|
|||
|
|
return True, "Risk-free"
|