40 lines
1.7 KiB
Python
40 lines
1.7 KiB
Python
#!/usr/bin/python
|
||
# coding: utf-8
|
||
# -------------------------------------------------------------------
|
||
# YakPanel
|
||
# -------------------------------------------------------------------
|
||
# Copyright (c) 2015-2099 YakPanel(www.yakpanel.com) All rights reserved.
|
||
# -------------------------------------------------------------------
|
||
# Author: hwliang <hwl@yakpanel.com>
|
||
# -------------------------------------------------------------------
|
||
|
||
# -------------------------------------------------------------------
|
||
# 开启地址空间布局随机化
|
||
# -------------------------------------------------------------------
|
||
# import sys, os
|
||
# os.chdir('/www/server/panel')
|
||
# sys.path.append("class/")
|
||
import os, sys, re, public
|
||
|
||
_title = 'Enable kernel.randomize_va_space'
|
||
_version = 1.0 # 版本
|
||
_ps = "Enable kernel.randomize_va_space" # 描述
|
||
_level = 2 # 风险级别: 1.提示(低) 2.警告(中) 3.危险(高)
|
||
_date = '2022-08-10' # 最后更新时间
|
||
_ignore = os.path.exists("data/warning/ignore/sw_kernel_space.pl")
|
||
_tips = [
|
||
"[/proc/sys/kernel/randomize_va_space] value is 2: ",
|
||
"How to set:sysctl -w kernel.randomize_va_space=2",
|
||
]
|
||
_help = ''
|
||
_remind = 'This scheme can reduce the risk of intrusers using buffer overflow to attack the server, and strengthen the protection of the server. '
|
||
def check_run():
|
||
try:
|
||
if os.path.exists("/proc/sys/kernel/randomize_va_space"):
|
||
randomize_va_space=public.ReadFile("/proc/sys/kernel/randomize_va_space")
|
||
if int(randomize_va_space)!=2:
|
||
return False, 'Enable kernel.randomize_va_space'
|
||
else:
|
||
return True,"Risk-free"
|
||
except:
|
||
return True, "Risk-free" |