OverTheWire - Bandit - Level 22 → Level 23
1.) you want to see a possible alternative solution or
2.) you are stuck and need a hint!
Connect to the server using the following credentials:
Level Goal is:
A program is running automatically at regular intervals from cron, the time-based job scheduler. Look in /etc/cron.d/ for the configuration and see what command is being executed.
NOTE: Looking at shell scripts written by other people is a very useful skill. The script for this level is intentionally made easy to read. If you are having problems understanding what it does, try executing it to see the debug information it prints.
Check the content of the folder /etc/cron.d/:
There are three files, the second one (cronjob_bandit23) is the interesting one for the current level. Take a look at the content:
A script (/usr/bin/cronjob_bandit23.sh) will be executed once on reboot and every minute. Take a look at the content of the script:
In line 4, the current user running the script (in this case bandit23, because bandit23 is running the cronjob) is saved to the variable myname. In line 5, the md5 sum of the String ‘I am user bandit23’ is calculated. The cut command is returning the first part of a line, where the delimiter is a space. This is done because the command md5sum returns a dash after the generated md5 hash:
After the cut command:
And finally, in line 9, the password for the next level is saved to the temporary file ‘/tmp/8ca319486bfbbc3663ea0fbe81326349':