Here: http://pastebin.com/f751e9f5b
The full text will not be sent here. The full text will be put in the txt file,Address:Http://bbs.2cto.com/read.php? Tid = 82863
The Hacking & Security Community
[+] Founded in 1997 by a hacker computer enthusiast
[-] Exposed in 2009 by anti-sec group
From > 03. Whos behind the site?
>
> A team of security and IT rule sionals, and a countless number of contributors from all over the world.
> 05. Is it true that the site is visited by script-kiddies and warez fans only?
>
> Absolutely not! The audience behind the site consists of home users, worldwide companies and deployments, educational and non-profit organizations, government and
Military institutions.
> All of these have been visiting the site on a daily basis for the past couple of years, contributing in various ways, or requesting services and information.
Why has Astalavista been targeted?
Other than the fact that they are not doing any of this for the "community"
For the money, they spread exploits for kids, claim to be a security community
(With no real sense of security on their own servers), and they charge you $6.66
Per months to access a dead forum with a directory filled with public releases
And outdated/broken services.
We wanted to see how good that "team of security and IT has sionals" really is.
Lets begin.
For details, see:Http://bbs.2cto.com/read.php? Tid = 82863
An Annotation of the steamed stuffed bun is attached:
One of the two highlights is the remote access to the apache user's shell, and the banner is LiteSpeed. It seems that this stuff has 0 days, but how does it run with apache users, in the past, LiteSpeed was associated with apache. I 've probably read about it. Its main function is anti-ddos. It seems to be a bit interesting. Let's go back and have fun. For details, see html "> http://www.litespeedtech.com/litespeed-web-server-features.html.
[Root @ front3 ~] # Curl-I litespeedtech.com
HTTP/1.1 200 OK
Date: Fri, 05 Jun 2009 22:54:51 GMT
Server: LiteSpeedAnother highlight is localroot. If it is not udev, RHEL5.3 x64 also has a localroot 0day -_-
Some people say that astalavista is hacked because Y takes the milw0rm stuff to make money. I think this is a matter of everyone's standards. Some people also make their own articles written by others, some people change others' programs to their own.
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
