CN109344607A - The method and device of hook technical controlling linux system imprinting is called based on system - Google Patents
The method and device of hook technical controlling linux system imprinting is called based on system Download PDFInfo
- Publication number
- CN109344607A CN109344607A CN201811167117.3A CN201811167117A CN109344607A CN 109344607 A CN109344607 A CN 109344607A CN 201811167117 A CN201811167117 A CN 201811167117A CN 109344607 A CN109344607 A CN 109344607A
- Authority
- CN
- China
- Prior art keywords
- imprinting
- inoutterminal
- file
- output process
- linux system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/52—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
- G06F21/54—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by adding security routines or objects to programs
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/44—Program or device authentication
Abstract
The present invention relates to a kind of method and apparatus for calling the linux system imprinting of hook technical controlling based on system, method is to increase imprinting output process InOutTerminal in linux system, hook is carried out to linux system by pre-set hook function in imprinting file, so that only just can be with imprinting output file by authentication.Device includes CD writer and terminal PC machine, and the linux system of the terminal PC machine includes imprinting output process InOutTerminal.The present invention is by increasing imprinting output process InOutTerminal, hook is carried out by pre-set hook function when carrying out imprinting, so that only by authentication just can be with imprinting output file, realize the control in system to CD writer, avoid external disturbance, and compared with existing real time monitoring, system resources consumption is smaller.
Description
Technical field
The present invention relates to field of information security technology, and are more particularly related to a kind of based on system calling hook skill
The method and device of art control linux system imprinting.
Background technique
There are many CD writer type, can be divided into according to connection type: irremovable built-in CD writer, moveable external quarter
Record machine is such as connected by USB mode.It can be divided into according to imprinting mode: CD writer, DVD burner, CD/DVD CD writer.And
CD writer is controlled to CD writer control is real time monitoring mostly.This method consumption system resource is big, is easy to kill prison by people
To lose the control to CD writer, and then the problems such as file is revealed occurs for control process.
Based on this, CD writer control authority all in acquisition system how is realized, avoid losing the control to CD writer,
The technical problem particularly important as one.
Summary of the invention
The present invention is in view of the above-mentioned problems, be designed to provide a kind of based on system calling hook technical controlling linux system
The method and device of imprinting, CD writer control authority that can be all in acquisition system avoid vital document from being leaked.
In order to achieve the above objectives, the present invention adopts the following technical scheme:
On the one hand, embodiment of the invention discloses one kind calls the linux system imprinting of hook technical controlling based on system
Method, increase imprinting output process InOutTerminal in linux system, in imprinting file by pre-set
Hook function carries out hook to linux system, so that only just can be with imprinting output file by authentication.
Further, described to increase imprinting output process InOutTerminal in systems are as follows: to be installed in terminal PC machine
Client passes through imprinting output process InOutTerminal described in the client terminal start-up.
Further, it during linux system is connect with CD writer, is loaded by environmental variance LD_PRELOAD
Libvrvhandler.so file.
Further, in the libvrvhandler.so file, in addition to imprinting output process InOutTerminal,
Other processes all return to mistake.
Further, linux system carries out instruction operation to CD writer by ioctl function,
When loading the progress dynamic link of ioctl function, covering is literary at the libvrvhandler.so that LD_PRELOAD is specified
Part.
Further, in the libvrvhandler.so file dynamic base,
It, can be with imprinting when being judged as imprinting output process InOutTerminal;
When judgement is not imprinting output process InOutTerminal, it is not possible to imprinting.
On the other hand, the embodiment of the invention also discloses a kind of Writing devices comprising CD writer and terminal PC machine, it is described
The linux system of terminal PC machine includes imprinting output process InOutTerminal, in imprinting file by pre-set
Hook function carries out hook to linux system, so that only just can be with imprinting output file by authentication.
Further, the client of starting imprinting output process InOutTerminal is installed in the terminal PC machine.
Further, the CD writer is built in the terminal PC machine, alternatively, the CD writer is connected by USB interface
Connect the terminal PC machine.
The beneficial effects of the present invention are:
The present invention carries out hook when carrying out imprinting, so that only by increasing imprinting output process InOutTerminal
Just the control in system to CD writer can be realized with imprinting output file by authentication, avoid external disturbance, and
Compared with existing real time monitoring, system resources consumption is smaller.
Detailed description of the invention
Fig. 1 is the method flow that the linux system imprinting of hook technical controlling is called based on system of one embodiment of the invention
Figure.
Specific embodiment
In order to make the objectives, technical solutions, and advantages of the present invention clearer, with reference to the accompanying drawings and embodiments, right
The present invention is further elaborated.It should be appreciated that described herein, specific examples are only used to explain the present invention, not
For limiting the present invention.
One embodiment of the invention discloses a kind of method for calling the linux system imprinting of hook technical controlling based on system,
Increase imprinting output process InOutTerminal specially in linux system, in imprinting file by pre-set
Hook function carries out hook to linux system, so that only just can be with imprinting output file by authentication.It realizes and is being
To the control of CD writer on system, external disturbance is avoided, and compared with existing real time monitoring, system resources consumption is smaller.
It is described to increase imprinting output process InOutTerminal in systems are as follows: at end in some embodiments of the present invention
Client is installed in the PC machine of end, passes through imprinting output process InOutTerminal described in the client terminal start-up.Specifically, exist
When carrying out imprinting, start client, while starting imprinting output process InOutTerminal, in linux system and CD writer
During connection, libvrvhandler.so file is loaded by environmental variance LD_PRELOAD.LD_PRELOAD is Linux
One environmental variance of system, it can influence the link (Runtime linker) when program operation, allow to be defined on program
The dynamic link library preferentially loaded before operation, which is mainly used to selectively be loaded into identical in Different Dynamic chained library
Function, by the environmental variance, we can load other dynamic link libraries in main program and the intermediate of its dynamic link library, very
To the normal function library of covering.In the libvrvhandler.so file, in addition to imprinting output process
InOutTerminal, other processes all return to mistake.And then it realizes through hook to imprinting output process
InOutTerminal is intercepted the purpose to indicate authentication.So that only the imprinting with authentication operates ability
It is performed.
As shown in Figure 1, in some embodiments of the invention, linux system refers to CD writer by ioctl function
Operation is enabled, ioctl is the function being managed in device driver to the channel I/O of equipment.It is so-called that pipe is carried out to the channel I/O
Reason, exactly controls some characteristics of equipment, such as Transmission bit rate, revolving speed of motor of serial ports etc.,
When loading the progress dynamic link of ioctl function, covering is literary at the libvrvhandler.so that LD_PRELOAD is specified
Part.
In the libvrvhandler.so file dynamic base,
It, can be with imprinting by authentication when being judged as imprinting output process InOutTerminal;
When judgement is not imprinting output process InOutTerminal, do not pass through authentication, it is not possible to imprinting.
The embodiment of the invention also discloses a kind of Writing devices comprising CD writer and terminal PC machine, the terminal PC machine
Linux system include imprinting output process InOutTerminal, in imprinting file pass through pre-set hook function pair
Linux system carries out hook, so that only just can be with imprinting output file by authentication.Linux system in terminal PC machine
System is based on imprinting output process InOutTerminal, realizes the control to CD writer.Preferably, pacify in the terminal PC machine
Client equipped with starting imprinting output process InOutTerminal.The CD writer is built in the terminal PC machine, or
Person, the CD writer connect the terminal PC machine by USB interface.
In conclusion the side disclosed by the embodiments of the present invention for calling the linux system imprinting of hook technical controlling based on system
Method and device, by the way that using in the dynamic link library of linux operating system, this environmental variance of LD_PRELOAD influences program
Operation when link (Runtime linker), to be defined on the dynamic link library that preferentially loads before program operation.It carries out
It realizes hook, by installing client in terminal PC machine, starts imprinting output process InOutTerminal, pass through LD_
PRELOAD loading environment variable libvrvhandler.so file, so that not passing through user identity when using CD writer
When certification, it is not available for file imprinting, effectively vital document is avoided to be leaked, protects file security.
Within the scope of the invention, operations described above system is practical is not limited to Linux system, but can extend
To any operating system appropriate of Windows system, unix system etc..Those skilled in the art completely can be based on the present invention
Design realize equivalent order, and this is without departing from protection scope of the present invention.
The present embodiments relate to CD writer include CD writer, DVD burner, HDDVD CD writer and Blu-ray
Disk (BD) CD writer.
Finally, it should be noted that those of ordinary skill in the art will appreciate that realizing the whole in above-described embodiment method
Or part process, related hardware can be instructed to complete by computer program, the program can be stored in a computer
In read/write memory medium, the program is when being executed, it may include such as the process of the embodiment of above-mentioned each method.Wherein, described
Storage medium can be magnetic disk, CD, read-only memory (Read-Only Memory, ROM) or random access memory (Random
Access Memory, RAM) etc..It is real to can achieve corresponding aforementioned any means for the embodiment of the computer program
Apply the identical or similar effect of example.
In addition, typically, it can be various electric terminal equipments, example that the embodiment of the present invention, which discloses described system, equipment etc.,
Such as mobile phone, personal digital assistant (PDA), tablet computer (PAD), smart television, are also possible to large-scale terminal device, such as service
Device etc., therefore protection scope disclosed by the embodiments of the present invention should not limit as certain certain types of system, equipment.
In addition, disclosed method is also implemented as the computer program executed by CPU according to embodiments of the present invention, it should
Computer program may be stored in a computer readable storage medium.When the computer program is executed by CPU, the present invention is executed
The above-mentioned function of being limited in method disclosed in embodiment.
The step of method in conjunction with described in disclosure herein or algorithm, can be directly contained in hardware, be held by processor
In capable software module or in combination of the two.Software module may reside within RAM memory, flash memory, ROM storage
Device, eprom memory, eeprom memory, register, hard disk, removable disk, CD-ROM or known in the art it is any its
In the storage medium of its form.Illustrative storage medium is coupled to processor, enables a processor to from the storage medium
Information is written to the storage medium in middle reading information.In an alternative, the storage medium can be with processor collection
At together.Pocessor and storage media may reside in ASIC.ASIC may reside in user terminal.It is replaced at one
In scheme, it is resident in the user terminal that pocessor and storage media can be used as discrete assembly.
The foregoing is merely presently preferred embodiments of the present invention, practical range not for the purpose of limiting the invention;If do not taken off
It from the spirit and scope of the present invention, modifies or equivalently replaces the present invention, should all cover in the claims in the present invention
In protection scope.
Claims (9)
1. a kind of method for calling the linux system imprinting of hook technical controlling based on system, which is characterized in that
Increase imprinting output process InOutTerminal in linux system, passes through pre-set hook in imprinting file
Function carries out hook to linux system, so that only just can be with imprinting output file by authentication.
2. the method according to claim 1, wherein described increase imprinting output process in systems
InOutTerminal are as follows: install client in terminal PC machine, pass through imprinting output process described in the client terminal start-up
InOutTerminal。
3. the method according to claim 1, wherein passing through during linux system is connect with CD writer
Environmental variance LD_PRELOAD loads libvrvhandler.so file.
4. according to the method described in claim 3, it is characterized in that, in the libvrvhandler.so file, in addition to carving
Output process InOutTerminal is recorded, other processes all return to mistake.
5. the method according to claim 1, wherein
Linux system carries out instruction operation to CD writer by ioctl function,
When loading the progress dynamic link of ioctl function, the covering libvrvhandler.so file specified at LD_PRELOAD.
6. according to the method described in claim 5, it is characterized in that, in the libvrvhandler.so file dynamic base,
It, can be with imprinting when being judged as imprinting output process InOutTerminal;
When judgement is not imprinting output process InOutTerminal, it is not possible to imprinting.
7. a kind of Writing device, which is characterized in that including CD writer and terminal PC machine, the linux system packet of the terminal PC machine
The InOutTerminal of output process containing imprinting carries out linux system by pre-set hook function in imprinting file
Hook, so that only just can be with imprinting output file by authentication.
8. device according to claim 7, which is characterized in that be equipped with starting imprinting output process in the terminal PC machine
The client of InOutTerminal.
9. device according to claim 7, which is characterized in that the CD writer is built in the terminal PC machine, alternatively,
The CD writer connects the terminal PC machine by USB interface.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201811167117.3A CN109344607A (en) | 2018-10-08 | 2018-10-08 | The method and device of hook technical controlling linux system imprinting is called based on system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201811167117.3A CN109344607A (en) | 2018-10-08 | 2018-10-08 | The method and device of hook technical controlling linux system imprinting is called based on system |
Publications (1)
Publication Number | Publication Date |
---|---|
CN109344607A true CN109344607A (en) | 2019-02-15 |
Family
ID=65308341
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201811167117.3A Pending CN109344607A (en) | 2018-10-08 | 2018-10-08 | The method and device of hook technical controlling linux system imprinting is called based on system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN109344607A (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111261200A (en) * | 2020-01-23 | 2020-06-09 | 奇安信科技集团股份有限公司 | Burning equipment control method and device based on kernel and electronic equipment |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101982824A (en) * | 2010-11-22 | 2011-03-02 | 北京北信源软件股份有限公司 | Method for performing safe burning and audit |
CN102110201A (en) * | 2009-12-28 | 2011-06-29 | 北京中讯锐尔科技有限公司 | System for monitoring and auditing compact disc burning |
CN102708317A (en) * | 2012-05-03 | 2012-10-03 | 沈阳通用软件有限公司 | Recording auditing method under Windows platform on basis of filter driver |
CN105094797A (en) * | 2014-05-15 | 2015-11-25 | 奥克兰联合服务有限公司 | Application analysis system for electronic devices |
US20160132675A1 (en) * | 2004-12-03 | 2016-05-12 | Fortinet, Inc. | Secure system for allowing the execution of authorized computer program code |
CN107562391A (en) * | 2017-08-08 | 2018-01-09 | 北京北信源软件股份有限公司 | A kind of Method of printing and device |
-
2018
- 2018-10-08 CN CN201811167117.3A patent/CN109344607A/en active Pending
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20160132675A1 (en) * | 2004-12-03 | 2016-05-12 | Fortinet, Inc. | Secure system for allowing the execution of authorized computer program code |
CN102110201A (en) * | 2009-12-28 | 2011-06-29 | 北京中讯锐尔科技有限公司 | System for monitoring and auditing compact disc burning |
CN101982824A (en) * | 2010-11-22 | 2011-03-02 | 北京北信源软件股份有限公司 | Method for performing safe burning and audit |
CN102708317A (en) * | 2012-05-03 | 2012-10-03 | 沈阳通用软件有限公司 | Recording auditing method under Windows platform on basis of filter driver |
CN105094797A (en) * | 2014-05-15 | 2015-11-25 | 奥克兰联合服务有限公司 | Application analysis system for electronic devices |
CN107562391A (en) * | 2017-08-08 | 2018-01-09 | 北京北信源软件股份有限公司 | A kind of Method of printing and device |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111261200A (en) * | 2020-01-23 | 2020-06-09 | 奇安信科技集团股份有限公司 | Burning equipment control method and device based on kernel and electronic equipment |
CN111261200B (en) * | 2020-01-23 | 2021-08-20 | 奇安信科技集团股份有限公司 | Burning equipment control method and device based on kernel and electronic equipment |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CA2988332C (en) | Operating system independent, secure data storage subsystem | |
KR101382222B1 (en) | System and method for mobile data loss prevention which uses file system virtualization | |
TWI671641B (en) | Data storage system with removable device and method of operation thereof | |
US20120102564A1 (en) | Creating distinct user spaces through mountable file systems | |
US10289860B2 (en) | Method and apparatus for access control of application program for secure storage area | |
US20120102455A1 (en) | System and apparatus for hosting applications on a storage array via an application integration framework | |
JP2007316637A (en) | Screensaver for individual application program | |
CN106874232B (en) | Charging method, device and terminal of Universal Serial Bus (USB) | |
CN109086620B (en) | Physical isolation dual-system construction method based on mobile storage medium | |
CN106326018B (en) | Data access method and terminal | |
US20160072791A1 (en) | Data center access and management settings transfer | |
KR101275293B1 (en) | Network apparatus and Method for supporting network virtualization | |
US9367691B2 (en) | Modify executable bits of system management memory page table | |
CN112541166A (en) | Method, system and computer readable storage medium | |
CN104063284B (en) | The method and apparatus running application program | |
US10803167B1 (en) | Systems and methods for executing application launchers | |
CN110569650A (en) | mobile storage device authority management method and system based on domestic operating system | |
CN109344607A (en) | The method and device of hook technical controlling linux system imprinting is called based on system | |
EP2541456B1 (en) | Method for protecting the digital contents of a solid state memory | |
CN104657088B (en) | A kind of acquisition methods and device of hard disk bad block message | |
CN101150459B (en) | Method and system for improving safety of information safety device | |
US11914724B2 (en) | Systems and methods for adjusting data protection levels based on system metadata | |
US9305142B1 (en) | Buffer memory protection unit | |
CN113051533A (en) | Safety management method of terminal equipment | |
CN113836529A (en) | Process detection method, device, storage medium and computer equipment |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20190215 |
|
RJ01 | Rejection of invention patent application after publication |