Accidentally created directory named “~” (tilde)

1

Это ваша лента, где вы будете проводить большую часть времени, получая мгновенные уведомления о том, что интересует именно вас.

Наведите на изображение профиля и нажмите кнопку чтения, чтобы перестать читать любую учетную запись.

Самый быстрый способ поделиться чьим-либо твитом с вашими читателями — ретвитнуть его. Нажмите значок со стрелочками, чтобы мгновенно сделать это.

Поделитесь своими мыслями о любом твите, просто ответив на него. Найдите тему, которая вам интересна, и вступайте в беседу.

Мгновенно узнавайте о том, что обсуждают люди прямо сейчас.

Читайте больше учетных записей, чтобы получать мгновенные обновления о том, что вас больше всего интересует.

Читайте самые последние беседы на любую тему, мгновенно появляющиеся в вашей ленте.

Следите за тем, как разворачиваются лучшие...

0 0
2

Enter the tmp directory and enclose the ~ in quotes. It will not expand to your $HOME.

rm -r "~"

The "4" is the size of all files in the directory. If you perform ls -lh, it will print it in human readable format.

# ls -l total 1272 -rw-rw-r--. 1 me me 33222 May 8 18:02 untangle.dmp -rw-rw-r--. 1 me me 426780 May 8 17:15 new.orig.dmp -rw-r--r--. 1 me me 425195 May 8 15:40 repos.orig.dmp -rw-rw-r--. 1 me me 407823 May 8 18:02 blah-untangle.dmp # ls -lh total 1.3M -rw-rw-r--. 1 me me 33K May 8 18:02 untangle.dmp -rw-rw-r--. 1 me me 417K May 8 17:15 new.orig.dmp -rw-r--r--. 1 me me 416K May 8 15:40 repos.orig.dmp -rw-rw-r--. 1 me me 399K May 8 18:02 blah-untangle.dmp

Also, please don't cross...

0 0
3

The Bash shell provides some variables that are prefixed with ‘~’ (named tilde) which is called Tilde Expansions.

They are synonyms for contents of other variables within your shell.

Tilde expansion is the process of converting these abbreviations to the directory names that they stand for. In this article, let us review the tilde expansion feature with the examples.

Tilde expansion applies to the ‘~’ plus characters includes +, – and N (which is integer) up to whitespace or a slash.

The tilde expansion is used to expand to several specific pathnames:

Home directories Current/previous working directory Directories from directory stack.

Home Directories

Tilde expansion provides a way to expand the home directory of the current user or the home directory of the given user name.

Syntax ~ Expand to the variable $HOME or home directory of the current user ~USER Expand to the home directory of the given username

Example 1. Current...

0 0
4

Takes a URL and then exploits the IIS tilde 8.3 enumeration vuln (https://soroush.secproject.com/blog/tag/iis-tilde-vulnerability/, http://www.acunetix.com/vulnerabilities/microsoft-iis-tilde-direc/, http://soroush.secproject.com/downloadable/microsoft_iis_tilde_character_vulnerability_feature.pdf) and tries to get you full file and directory names.

This is an attempt to take the cool POC scanner at https://github.com/irsdl/iis-shortname-scanner/tree/master/ and get you the rest of the file/directory names so you can retrieve them.

Feed this script a URL and also a word list of potential file/dir names. The script will look up the roots in your word list and then try them with appropriate extensions.

For word lists, the fuzzdb word lists are pretty good. We sometimes use the https://code.google.com/p/fuzzdb/source/browse/trunk/discovery/PredictableRes/raft-small-words-lowercase.txt (or large or medium) for this work.

This is not a directory enumerator...

0 0
5

Hi,

I have following playbook:

- hosts: group1
user: ansible_user
gather_facts: no
tasks:
- name: Create backup directory
file: path={{backup_app_logs_dir}} state=directory

The problem is that group1 consists of more than 1 hosts. So
create-directory action is executed on all of boxes the same time. I
suspect that module check first if directory exists. If so, skip creating,
otherwise perform mkdir. When more than 1 host get information "Perfrom
mkdir", they do it. First of them makes directory successfully, but next
one fails because the directory shouldn't be there according to
verficiation:

Traceback (most recent call last):
File "/tmp/ansible-tmp-1429781323.08-188650158471467/file", line 1993, in
?
main()
File "/tmp/ansible-tmp-1429781323.08-188650158471467/file", line 278, in
main
os.mkdir(curpath)
OSError: [Errno 17] File exists:...

0 0
6

Recently during a bug bounty program I came across a particularly, "rare" vulnerability that often few people (myself included) don't quite understand. At first glance, the Microsoft IIS Tilde (~) Enumeration vulnerability seems like one of those cases where a feature is a bug (similar to XXE).

This article aims to dive deeper into the Windows filesystem, the enumeration vulnerability and it's impact on a web application.

Note - All the information here is from a live bug bounty and not a local test setup to display the vulnerability. Public disclosure has not yet been granted and thus any references to the actual web application have been omitted.

Feature Rich

When creating a new file on a Windows system, a short file name is generated using 8.3 format which can be seen when opening up your command prompt and running dir /X like so:

This might seem obvious and not so horrible at first glance. Let's tackle this from a different...

0 0
7

Originally Posted by

munishvit

F

So I want to make sure, is it always safe to delete *~ files?

NilsE says, "they can be re-used if there is a problem with recent changes". But, how u do that??

if everything pertaining to your computer always goes perfect, you will never have a use for any file ending in ~, and you can safely delete it.

if your computer is not Jesus Christ reborn, however, you may want to keep them around

as for using them:

lets say you edit your sources.list to include google's linux repository, so you can update google gadgets directly from google. it is located at /etc/apt/sources.list.

aaaaaaaaand lets say you accidentally make a horrible typo, and wipe your sources.list.

to fix that, we would do this:

Code:

sudo cp -i /etc/apt/sources.list~ /etc/apt/sources.listcp is the command to copy. typing 'man cp' will show us the manual for this command.

-i is the option to ask 'are you sure you...

0 0
8

Multi-part archives are not yet supported, except in conjunction with zip. (All parts must be concatenated together in order, and then ''zip -F'' (for zip 2.x) or ''zip -FF'' (for zip 3.x) must be performed on the concatenated archive in order to ''fix'' it. Also, zip 3.0 and later can combine multi-part (split) archives into a combined single-file archive using ''zip -s- inarchive -O outarchive''. See the zip 3 manual page for more information.) This will definitely be corrected in the next major release.

Archives read from standard input are not yet supported, except with funzip (and then only the first member of the archive can be extracted).

Archives encrypted with 8-bit passwords (e.g., passwords with accented European characters) may not be portable across systems and/or other archivers. See the discussion in DECRYPTION above.

unzip's -M (''more'') option tries to take into account automatic wrapping of long lines. However, the code may fail to detect the...

0 0
9

Windows File System iDataAgent uses the following main components to perform backup and restore operations from the CommCell Console.

Backup Set - collective information about all the data that needs to be backed up for the client.

Subclient - defines the data to be backed up.

On Demand backups allow content to be specified as an external input when initiating a backup. Whereas traditional backups are performed using subclients, which contain fixed content configured prior to performing the operation, On Demand backups allow you to specify content each time you perform a backup.

Content for On Demand backups is defined through two entities:

a Content File, which is a text file that defines the location of the data that you want to protect. Each Content File contains the fully qualified paths from the root directory to files, links, and devices to be backed up. a Directive File, which is a text file that defines where each Content File is...
0 0
10
ProFTPD module mod_core

ProFTPD module mod_core

The mod_core module handles most of the core FTP commands.

Directives

Allow

Syntax: Allow [from] "all"|"none"|host|network|...]
Default: Allow from all
Context:
Module: mod_core
Compatibility: 0.99.0p16 and later

The Allow directive is used inside a section to explicitly specify which hosts and/or networks have access to the commands or operations being limited. Allow is typically used in conjunction with the Order and Deny directives in order to create sophisticated access control rules.

Allow takes an optional first parameter: the keyword "from". Using "from" is purely cosmetic. The remaining parameters are expected to be a list of hosts and/or networks which will be explicitly granted access. The keyword "all" can be used to indicate that all hosts will explicitly be granted access; this "all" keyword is analogous to the AllowAll directive, except with a lower...

0 0
11
...
0 0