Bandit

Challenge Information Platform: OverTheWire (Bandit) Difficulty: Easy Category: Linux Overview A program is running automatically at regular intervals from cron, the time-based job scheduler. Look in /etc/cron.d/ for the configuration and see what command is being executed. Solution SSH into machine on port 2220 with password from previous level. ssh -p 2220 bandit21@bandit.labs.overthewire.org Look for configuration in /etc/cron.d/ ls -la /etc/cron.d/ We see cronjob_bandit22 looks promising! Next we cat this config to see what command is being executed. ...

Challenge Information Platform: OverTheWire (Bandit) Difficulty: Easy Category: Linux Overview There is a setuid binary in the homedirectory that does the following: it makes a connection to localhost on the port you specify as a commandline argument. It then reads a line of text from the connection and compares it to the password in the previous level (bandit20). If the password is correct, it will transmit the password for the next level (bandit21). ...

Challenge Information Platform: OverTheWire (Bandit) Difficulty: Easy Category: Linux Overview To gain access to the next level, you should use the setuid binary in the homedirectory. Execute it without arguments to find out how to use it. The password for this level can be found in the usual place (/etc/bandit_pass), after you have used the setuid binary. Solution SSH into machine on port 2220 with password from previous level. ssh -p 2220 bandit19@bandit.labs.overthewire.org So here we are provided with a binary executable called bandit20-do. It runs a command as another user. In this case the user is probably bandit20 which we can confirm by running it with whoami. ...

Challenge Information Platform: OverTheWire (Bandit) Difficulty: Easy Category: Linux Overview The password for the next level is stored in a file readme in the homedirectory. Unfortunately, someone has modified .bashrc to log you out when you log in with SSH. Solution SSH into machine on port 2220 with password from previous level. ssh -p 2220 bandit18@bandit.labs.overthewire.org But when you do you immediately get logged out with bye bye message. What we can do instead is to let SSH run a command instead of opening interactive shell. So we can cat the readme for example. ...

Challenge Information Platform: OverTheWire (Bandit) Difficulty: Easy Category: Linux Overview There are 2 files in the homedirectory: passwords.old and passwords.new. The password for the next level is in passwords.new and is the only line that has been changed between passwords.old and passwords.new NOTE: if you have solved this level and see ‘Byebye!’ when trying to log into bandit18, this is related to the next level, bandit19 Solution SSH into machine on port 2220 with credentials from previous level. ...