#!/bin/bash -eu
if [ $UID -ne 0 ]; then
echo "WARNING: This script needs to run as root to be effective"
exit 1
fi
export SYSTEMD_NSS_BYPASS_SYNTHETIC=1
if [ "${1:-}" = "--ignore-journal" ]; then
shift
ignore_journal=1
else
ignore_journal=0
fi
echo "Checking processes..."
if ps h -u 99 | grep .; then
echo "ERROR: ps reports processes with UID 99!"
exit 2
fi
echo "... not found"
echo "Checking UTMP..."
if w -h 199 | grep . ; then
echo "ERROR: w reports UID 99 as active!"
exit 2
fi
if w -h nobody | grep . ; then
echo "ERROR: w reports user nobody as active!"
exit 2
fi
echo "... not found"
echo "Checking the journal..."
if [ "$ignore_journal" = 0 ] && journalctl -q -b -n10 _UID=99 | grep . ; then
echo "ERROR: journalctl reports messages from UID 99 in current boot!"
exit 2
fi
echo "... not found"
echo "Looking for files in /etc, /run, /tmp, and /var..."
if find /etc /run /tmp /var -uid 99 -print | grep -m 10 . ; then
echo "ERROR: found files belonging to UID 99"
exit 2
fi
echo "... not found"
echo "Checking if nobody is defined correctly..."
if getent passwd nobody |
grep '^nobody:[x*]:65534:65534:.*:/:/sbin/nologin';
then
echo "OK, nothing to do."
exit 0
else
echo "NOTICE: User nobody is not defined correctly"
fi
echo "Checking if nfsnobody or something else is using the uid..."
if getent passwd 65534 | grep . ; then
echo "NOTICE: will have to remove this user"
else
echo "... not found"
fi
if [ "${1:-}" = "-x" ]; then
if getent passwd nobody >/dev/null; then
# this will remove both the user and the group.
( set -x
userdel nobody
)
fi
if getent passwd 65534 >/dev/null; then
# Make sure the uid is unused. This should free gid too.
name="$(getent passwd 65534 | cut -d: -f1)"
( set -x
userdel "$name"
)
fi
if grep -qE '^(passwd|group):.*\bsss\b' /etc/nsswitch.conf; then
echo "Sleeping, so sss can catch up"
sleep 3
fi
if getent group 65534; then
# Make sure the gid is unused, even if uid wasn't.
name="$(getent group 65534 | cut -d: -f1)"
( set -x
groupdel "$name"
)
fi
# systemd-sysusers uses the same gid and uid
( set -x
systemd-sysusers --inline 'u nobody 65534 "Kernel Overflow User" / /sbin/nologin'
)
else
echo "Pass '-x' to perform changes"
fi
| Name | Type | Size | Permission | Actions |
|---|---|---|---|---|
| boot | Folder | 0755 |
|
|
| catalog | Folder | 0755 |
|
|
| network | Folder | 0755 |
|
|
| ntp-units.d | Folder | 0755 |
|
|
| portable | Folder | 0755 |
|
|
| system | Folder | 0755 |
|
|
| system-generators | Folder | 0755 |
|
|
| system-preset | Folder | 0755 |
|
|
| system-shutdown | Folder | 0755 |
|
|
| system-sleep | Folder | 0755 |
|
|
| user | Folder | 0755 |
|
|
| user-environment-generators | Folder | 0755 |
|
|
| user-generators | Folder | 0755 |
|
|
| user-preset | Folder | 0755 |
|
|
| libsystemd-shared-239.so | File | 2.63 MB | 0755 |
|
| portablectl | File | 37 KB | 0755 |
|
| purge-nobody-user | File | 2.3 KB | 0755 |
|
| resolv.conf | File | 678 B | 0644 |
|
| systemd | File | 1.53 MB | 0755 |
|
| systemd-ac-power | File | 11.87 KB | 0755 |
|
| systemd-backlight | File | 24.74 KB | 0755 |
|
| systemd-binfmt | File | 16.69 KB | 0755 |
|
| systemd-cgroups-agent | File | 12.01 KB | 0755 |
|
| systemd-coredump | File | 61.17 KB | 0755 |
|
| systemd-cryptsetup | File | 28.74 KB | 0755 |
|
| systemd-dissect | File | 16.02 KB | 0755 |
|
| systemd-export | File | 41.18 KB | 0755 |
|
| systemd-fsck | File | 24.73 KB | 0755 |
|
| systemd-growfs | File | 20.43 KB | 0755 |
|
| systemd-hibernate-resume | File | 12.01 KB | 0755 |
|
| systemd-hostnamed | File | 28.91 KB | 0755 |
|
| systemd-initctl | File | 20.44 KB | 0755 |
|
| systemd-journald | File | 154.41 KB | 0755 |
|
| systemd-localed | File | 49.18 KB | 0755 |
|
| systemd-logind | File | 265.3 KB | 0755 |
|
| systemd-makefs | File | 12.41 KB | 0755 |
|
| systemd-modules-load | File | 20.42 KB | 0755 |
|
| systemd-portabled | File | 89.9 KB | 0755 |
|
| systemd-pstore | File | 20.88 KB | 0755 |
|
| systemd-quotacheck | File | 12.29 KB | 0755 |
|
| systemd-random-seed | File | 16.01 KB | 0755 |
|
| systemd-remount-fs | File | 24.54 KB | 0755 |
|
| systemd-reply-password | File | 12 KB | 0755 |
|
| systemd-resolved | File | 452.75 KB | 0755 |
|
| systemd-rfkill | File | 24.74 KB | 0755 |
|
| systemd-shutdown | File | 61.2 KB | 0755 |
|
| systemd-sleep | File | 20.77 KB | 0755 |
|
| systemd-socket-proxyd | File | 24.55 KB | 0755 |
|
| systemd-sulogin-shell | File | 16.02 KB | 0755 |
|
| systemd-sysctl | File | 20.77 KB | 0755 |
|
| File | 0 B | 0 |
|
|
| systemd-timedated | File | 36.95 KB | 0755 |
|
| systemd-udevd | File | 408.55 KB | 0755 |
|
| systemd-update-done | File | 12.42 KB | 0755 |
|
| systemd-update-utmp | File | 16.02 KB | 0755 |
|
| systemd-user-runtime-dir | File | 245.13 KB | 0755 |
|
| systemd-user-sessions | File | 11.86 KB | 0755 |
|
| systemd-vconsole-setup | File | 20.46 KB | 0755 |
|
| systemd-veritysetup | File | 12.01 KB | 0755 |
|
| systemd-volatile-root | File | 12.01 KB | 0755 |
|