here is how we did it: 1. create a new site or login to an old one 2. login and set sftp password 3. login via sftp and create a symlink to / 4. disable DirectoryIndex in .htaccess 5. enable mod_autoindex in .htaccess 6. disable php engine in .htaccess 7. add text/plain type for .php files in .htaccess 8. have fun browsing files 9. find /home/fhosting 10. look at the content of the index.php file in /home/fhosting/www/ 11. find configuration in /home/fhosting/www/_lbs/config.php 12. copy paste database connection details to phpmyadmin login 13. find active users with shell access in /etc/passwd 14. look through the scripts and figure out how password resets work 15. manually trigger a sftp password reset for the user 'user' 16. connect via ssh 17. run 'sudo -i' 18. edit ssh config in /etc/ssh/sshd_config to allow root login 19. run 'passwd' to set root password 20. reconnect via ssh as root 21. enjoy pastemonium v0.0
intro - Posted: May Wed 14th 10:53 PM (Never Expires) - Format: text
  1. Welcome to my pastebin project.  Please understand that you're looking at the pre-alpha state of the project.  Being under development the possibility of general wonkiness does exist!
  2.  
  3. Talk about features:
  4. * PHP code base
  5.   * Open; fork your own
  6. * Security
  7.   * Respectable encryption
  8.   * Open; download and run your own
  9.   * Runs fine without javascript, cookies, etc.; even from CLI
  10.   * Self-destructing and hidden pastes available
  11. * GUI / CLI interface
  12.   * CLI Examples:
  13.       echo TEST | curl -F 'cli=<-' -H "Expect: " 'https://snarf.info/'
  14.       echo TEST | curl -F 'cli=<-' -F 'password=two' -H "Expect: " 'https://snarf.info/'
  15.  
  16.       curl -s 'https://snarf.info/?cli=intro'
  17.       curl -s 'https://snarf.info/?cli=test&password=test'
  18.     * 'snarf.sh' shell script for streamlined CLI usage
  19.   * GUI:
  20.     * List enhancements (e.g., accounts, admin controls, etc.)
  21.   * Ease of use
  22.     * List enhancements (e.g., functional install script, etc.)

Paste Content:

Paste Options:

Recent Pastes:

14 days ago

a7682

27 days ago

4fc54

185 days ago

10819

207 days ago

HOW_TO_HACK_FH2.txt

221 days ago

md5

223 days ago

a78a0

230 days ago

4d8a6

260 days ago

3b92e

1230 days ago

intro