SadServers Joined on September 10, 2023
1667 public recordings by SadServers
admin@i-0bb664b967d26d93a:~$ curl 127.0.0.1:80 curl: (7) Failed to connect to 127.0.0.1 port 80: Connection refused admin@i-0bb664b967d26d93a:~$ curl 127.0.0.1:443 curl: (7) Failed to connect to 127.0.0.1 port 443: Connection refused admin@i-0bb664b967d26d93a:~$ curl 127.0.0.1:5000 Unauthorizedadmin@i-0bb664b967d26d93a:~$ admin@i-0bb664b967d26d93a:~$ nc localhost 5000
paris/i-0bb664b967d26d93a 00:35
by SadServers566 admin 5 -15 1007204 10668 7116 S 0.0 2.3 0:00.09 sadagent 569 root 20 0 5636 2656 2444 S 0.0 0.6 0:00.00 cron 574 message+ 20 0 7864 3700 3352 S 0.0 0.8 0:00.02 dbus-daem 581 root 20 0 107132 28384 9372 S 0.0 6.1 0:00.34 python3 582 root 20 0 220796 4336 3368 S 0.0 0.9 0:00.02 rsyslogd 587 root 20 0 13492 6656 5872 S 0.0 1.4 0:00.09 systemd-l 590 root 20 0 13352 7152 6256 S 0.0 1.5 0:00.02 sshd 591 root 20 0 2872 1688 1572 S 0.0 0.4 0:00.12 agetty
paris/i-0d51fea5d6da4c056 02:05
by SadServerstmpfs tmpfs 46M 368K 46M 1% /run /dev/nvme0n1p1 ext4 7.7G 6.1G 1.2G 84% / tmpfs tmpfs 228M 12K 228M 1% /dev/shm tmpfs tmpfs 5.0M 0 5.0M 0% /run/lock /dev/nvme0n1p15 vfat 124M 5.9M 118M 5% /boot/efi admin@i-042529935cf6ea978:~$ du -hs 5.1G . admin@i-042529935cf6ea978:~$ ls /tmp/ systemd-private-dbb9b1572734473f80544d033914d54f-chrony.service-MtT1Xi systemd-admin@i-042529935cf6ea978:~$ ls agent data datafile kihei admin@i-042529935cf6ea978:~$ cd agent/ admin@i-042529935cf6ea978:~/agent$ ls check.sh sadagent sadagent.txt admin@i-042529935cf6ea978:~/agent$
kihei/i-042529935cf6ea978 11:13
by SadServersTasks: 1 (limit: 521) Memory: 21.5M CPU: 394ms CGroup: /system.slice/flaskapp.service └─574 /usr/bin/python3 /home/admin/webserver.py Dec 15 08:20:08 i-003e48bbc8151d53a systemd[1]: Started Flask Application. Dec 15 08:20:09 i-003e48bbc8151d53a python3[574]: * Serving Flask app 'webserveDec 15 08:20:09 i-003e48bbc8151d53a python3[574]: * Debug mode: off Dec 15 08:20:09 i-003e48bbc8151d53a python3[574]: WARNING: This is a developmentDec 15 08:20:09 i-003e48bbc8151d53a python3[574]: * Running on http://127.0.0.1Dec 15 08:20:09 i-003e48bbc8151d53a python3[574]: Press CTRL+C to quit admin@i-003e48bbc8151d53a:~$ vim /etc/systemd/system/flaskapp.service admin@i-003e48bbc8151d53a:~$ vim /home/admin/webserver.py admin@i-003e48bbc8151d53a:~$ system
paris/i-003e48bbc8151d53a 02:52
by SadServers^C admin@i-06298332e7bb29ffb:~$ fg ./webserver.py 127.0.0.1 - - [15/Dec/2023 06:46:42] "GET / HTTP/1.1" 200 - ^M^?^?^?^?^M^M^Z [1]+ Stopped ./webserver.py admin@i-06298332e7bb29ffb:~$ curl localhost:5001&;fg bash: syntax error near unexpected token `;' admin@i-06298332e7bb29ffb:~$ curl localhost:5001& && fg bash: syntax error near unexpected token `&&' admin@i-06298332e7bb29ffb:~$ curl localhost:5001 & fg [2] 1140 ./webserver.py 127.0.0.1 - - [15/Dec/2023 06:47:06] "GET / HTTP/1.1" 200 - Hello World!
paris/i-06298332e7bb29ffb 07:13
by SadServers/home/admin/.ansible/tmp /home/admin/stuff /home/admin/.config /home/admin/.config/asciinema /home/admin/.config/asciinema/install-id /home/admin/.profile /home/admin/.ssh /home/admin/.ssh/authorized_keys /home/admin/.bash_logout /home/admin/.bashrc /home/admin/.bash_history /dev/pts/1 /dev/pts/0 /var/log/cast /var/log/cast/i-088c078b20497e4c0
paris/i-088c078b20497e4c0 04:19
by SadServers│ └─594 /sbin/agetty -o -p -- \u --noclear tty1 linux ├─systemd-logind.service │ └─585 /lib/systemd/systemd-logind └─gotty.service ├─565 /usr/local/gotty --permit-write --reconnect --max-connectio ├─690 bash -l ├─695 /usr/bin/python3 /usr/bin/asciinema rec -t paris/i-0541fd78og/cast/i-0541fd782d91559ca ├─698 /usr/bin/python3 /usr/bin/asciinema rec -t paris/i-0541fd78og/cast/i-0541fd782d91559ca ├─699 sh -c /bin/bash ├─700 /bin/bash ├─982 systemctl status └─983 less admin@i-0541fd782d91559ca:~$
paris/i-0541fd782d91559ca 05:09
by SadServers└─574 /usr/bin/python3 /home/admin/webserver.py Dec 15 04:32:33 i-0d59b5144c518c525 systemd[1]: Started Flask Application. Dec 15 04:32:33 i-0d59b5144c518c525 python3[574]: * Serving Flask app 'webserveDec 15 04:32:33 i-0d59b5144c518c525 python3[574]: * Debug mode: off Dec 15 04:32:33 i-0d59b5144c518c525 python3[574]: WARNING: This is a developmentn a production deployment. Use a production WSGI server instead. Dec 15 04:32:33 i-0d59b5144c518c525 python3[574]: * Running on http://127.0.0.1Dec 15 04:32:33 i-0d59b5144c518c525 python3[574]: Press CTRL+C to quit Dec 15 04:34:44 i-0d59b5144c518c525 python3[574]: 127.0.0.1 - - [15/Dec/2023 04:200 - admin@i-0d59b5144c518c525:~$ systemctl restart flaskapp Failed to restart flaskapp.service: Access denied See system logs and 'systemctl status flaskapp.service' for details. admin@i-0d59b5144c518c525:~$
paris/i-0d59b5144c518c525 03:24
by SadServers-upgrades/unattended-upgrade-shutdown -- root 685 0.0 0.0 0 0 ? I 04:20 0:00 [kworker/1:4-admin 687 0.0 0.9 6740 4512 pts/0 S<s+ 04:20 0:00 bash -l admin 691 0.5 4.1 98188 19348 pts/0 S<l+ 04:20 0:00 /usr/bin/pythc -t paris/i-0cea73f15d68f034f -q -i 2 / admin 694 0.0 3.0 24456 14436 pts/0 S<+ 04:20 0:00 /usr/bin/pythc -t paris/i-0cea73f15d68f034f -q -i 2 / admin 695 0.0 0.1 2480 572 pts/1 S<s 04:20 0:00 sh -c /bin/baadmin 696 0.0 1.0 6952 4724 pts/1 S< 04:20 0:00 /bin/bash admin 709 0.0 0.6 8648 3240 pts/1 R<+ 04:20 0:00 ps aux admin@i-0cea73f15d68f034f:~$ ps aux|grep -i web root 574 0.5 6.0 107132 28320 ? Ss 04:20 0:00 /usr/bin/pyth.py admin 712 0.0 0.1 5132 640 pts/1 S<+ 04:20 0:00 grep -i web admin@i-0cea73f15d68f034f:~$
paris/i-0cea73f15d68f034f 00:54
by SadServersadmin@i-098e8bd6780cfa047:~$ sudo netstat -antp We trust you have received the usual lecture from the local System Administrator. It usually boils down to these three things: #1) Respect the privacy of others. #2) Think before you type. #3) With great power comes great responsibility. [sudo] password for admin: Sorry, try again. [sudo] password for admin: sudo: 1 incorrect password attempt admin@i-098e8bd6780cfa047:~$ ^C admin@i-098e8bd6780cfa047:~$ sys
paris/i-098e8bd6780cfa047 01:27
by SadServerscloud-final.service loade cloud-init-local.service loade cloud-init.service loade cron.service loade dbus.service loade flaskapp.service loade getty@tty1.service loade gotty.service loade ifup@ens5.service loade ifupdown-pre.service loade kmod-static-nodes.service loade networking.service loade rsyslog.service loadeadmin@i-06898348f67e369be:/etc/apache2/conf-available$ admin@i-06898348f67e369be:/etc/apache2/conf-available$