BB

technology and craziness.

BB

technology and craziness.

OverTheWire - Bandit - Level 19 → Level 20

Warning: This post contains a solution!
Only continue if:
1.) you want to see a possible alternative solution or
2.) you are stuck and need a hint!

Connect to the server using the following credentials:

Server: bandit.labs.overthewire.org
Port: 2220
Username: bandit19
Password: Iuekxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Level Goal is:

To gain access to the next level, you should use the setuid binary in the homedirectory. Execute it without arguments to find out how to use it. The password for this level can be found in the usual place (/etc/bandit_pass), after you have used the setuid binary.

Let us execute the setuid binary:

1
2
3
bandit19@bandit:~$ ./bandit20-do 
Run a command as another user.
  Example: ./bandit20-do id

As it is running a command as another user, we can directly read the content of ’/etc/bandit_pass/bandit20’ to get the password for the next level:

1
2
bandit19@bandit:~$ ./bandit20-do cat /etc/bandit_pass/bandit20
GbKkxxxxxxxxxxxxxxxxxxxxxxxxxxxx