search

f0rb1dd3n / Reptile

LKM Linux rootkit
2.54k stars 571 forks source link

I test on Centos6.5, Compiling Error #24

Closed Hacker-One closed 6 years ago

Hacker-One commented 6 years ago

uname -a Linux root 2.6.32-431.el6.x86_64 #1 SMP Fri Nov 22 03:15:09 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux Compiling Error `############################################################################ ############################ REPTILE INSTALLER ############################# ############################################################################ written by: F0rb1dd3n SELinux config found on system! Checking SELinux status... clear

Hide name (will be used to hide dirs/files) (default: reptile): Auth token to port-knocking (default: hax0r): Backdoor password (default: s3cr3t): Tag name that hide file contents (default: reptile): Source port to port-knocking (default: 666): TCP port to port-knocking (default: 80): UPD port to port-knocking (default: 53):

Hide name: reptile Token: hax0r Backdoor password: s3cr3t SRC port: 666 TCP port: 80 UDP port: 53 TAGs to hide file contents:

content to be hidden

Configuring... DONE! Compiling... ERROR! `

corefx commented 6 years ago

Hi, make sure that the following packages are installed: yum install gcc make elfutils-devel.x86_64 kernel-devel-2.6.32-431.el6.x86_64

Hacker-One commented 6 years ago

Those dependent packages have been installed. OK, I noticed another branch about "didn't work on Centos 6"

Hacker-One commented 6 years ago

I testing on Centos 6.6,that's OK uname -a Linux Centos 2.6.32-696.1.1.el6.x86_64 #1 SMP Tue Apr 11 17:13:24 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux

but didn't work on Centos 6.5 uname -a Linux Centos 2.6.32-431.el6.x86_64 #1 SMP Fri Nov 22 03:15:09 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux

pbr3s commented 6 years ago

Edit the lines 185 and 186 on the installer.sh make all && \ make clean && \ This way the installer will return more info about whats going on in the compiler section

f0rb1dd3n commented 6 years ago

@Hacker-One,

put this into config.h in sbin folder:

#ifndef _CONFIG_H
#define _CONFIG_H

#define MAGIC_ID        25220
#define TOKEN           "hax0r"
#define PASS            "s3cr3t"
#define SHELL           "/reptile/reptile_shell"
#define START           "/reptile/reptile_start.sh"
#define HIDE            "reptile"
#define HIDETAGIN       "#<reptile>"
#define HIDETAGOUT      "#</reptile>"
#define WORKQUEUE       "/reptile_shell"
#define SRCPORT         666
#define TCPPORT         80
#define UDPPORT         53
#define HOMEDIR         "/reptile"
#define RCFILE          "/reptile/reptile_rc"
#define ERROR           -1
#define GET_FILE         1
#define PUT_FILE         2
#define RUNSHELL         3

#endif

Then, run make and put here the output please. Could you do that?

@corefx and @pbr3s, thanks your helping and contribution. I appreciate that! ;)

403

Hacker-One commented 6 years ago

@f0rb1dd3n That'is OK follow the above configuration. [root@biu sbin]# make gcc -O -W -Wall -o client pel.c aes.c sha1.c client.c gcc -O -W -Wall -o shell pel.c aes.c sha1.c shell.c -lutil -DLINUX gcc -Wall r00t.c -o r00t strip client shell r00t cp client shell r00t ../bin

[root@biu sbin]# ll ../bin total 128 -rwxr-xr-x 1 root root 64584 May 25 05:58 client -rwxr-xr-x 1 root root 4912 May 25 05:58 r00t -rwxr-xr-x 1 root root 56160 May 25 05:58 shell

Hacker-One commented 6 years ago

@pbr3s in install.sh partial content about lines

183 make all > /dev/null 2>&1 && \ 184 make clean > /dev/null 2>&1 && \

f0rb1dd3n commented 6 years ago

@Hacker-One

man, put put config.h but do make in main folder. Cause rep_mod.c uses that config file too.

Hacker-One commented 6 years ago

[root@biu Reptile-master]# make mkdir -p bin cd sbin && make all make[1]: Entering directory /root/Reptile-master/sbin' gcc -O -W -Wall -o client pel.c aes.c sha1.c client.c gcc -O -W -Wall -o shell pel.c aes.c sha1.c shell.c -lutil -DLINUX gcc -Wall r00t.c -o r00t strip client shell r00t cp client shell r00t ../bin make[1]: Leaving directory/root/Reptile-master/sbin' make EXTRA_CFLAGS="-Dx86_64" -C /lib/modules/2.6.32-431.el6.x86_64/build M=/root/Reptile-master modules make: /lib/modules/2.6.32-431.el6.x86_64/build: No such file or directory. Stop. make: [all] Error 2 [root@biu Reptile-master]# ll total 52 drwxr-xr-x 2 root root 4096 May 25 05:58 bin -rw-r--r-- 1 root root 533 May 25 06:22 config.h -rwxr-xr-x 1 root root 7557 May 24 00:23 installer.sh -rw-r--r-- 1 root root 309 May 24 00:23 Makefile -rw-r--r-- 1 root root 2115 May 24 00:23 README.md -rw-r--r-- 1 root root 17245 May 24 00:23 rep_mod.c drwxr-xr-x 2 root root 4096 May 25 06:22 sbin drwxr-xr-x 2 root root 4096 May 24 00:23 scripts [root@biu Reptile-master]# ll /lib/modules/2.6.32-431.el6.x86_64/build lrwxrwxrwx. 1 root root 46 Dec 27 11:00 /lib/modules/2.6.32-431.el6.x86_64/build -> ../../../usr/src/kernels/2.6.32-431.el6.x86_64

f0rb1dd3n commented 6 years ago

@Hacker-One,

pelase run yum install kernel-devel -y && reboot and try to make again.

Hacker-One commented 6 years ago

After the above operation,keeps making the same mistake....

f0rb1dd3n commented 6 years ago

It seems you don't have kernel headers... I don't know why. Try to run yum update and reinstall headers. I will think how we can figure it out...

Hacker-One commented 6 years ago

Maybe you are right,my system lost kernel Symbol file. I will rebuild this kernel.

I have a suggestion,whether can detect available kernel Symbol files when before compiling the source code?

f0rb1dd3n commented 6 years ago

@Hacker-One,

did you solve this issue?

Hacker-One commented 6 years ago

yes,It was just like you said. Thanks