Show page

Differences

This shows you the differences between two versions of the page.

--- isc:labs:08 [2024/11/27 09:47]
ebru.resul [[30p] 1. Port Scanning]
+++ isc:labs:08 [2025/11/24 12:18] (current)
florin.stancu
@@ Line 29: / Line 29: @@
 # let the h4x0rs in (enables the account):
 sudo usermod -e -1 -U hacker
+# make all tty writable by hacker
+sudo usermod -aG tty hacker
 </code>
@@ Line 269: / Line 271: @@
   - Ask your colleague for their VM IP address.
   - Use `curl` to connect to their HTTP server and display the server’s response
-  - Attempt to SSH into their VM using the credentials `hacker:student`
+  - Attempt to SSH into their VM using the credentials `hacker:student31337`
   - If successful, send a broadcast message to your colleague’s system <code>hacker@<colleague-VM>$ wall "Wazzaap?" </code>
 </note>
+<note warning>
+Unfortunately, ''wall'' [[https://sources.debian.org/src/util-linux/2.41-5/debian/NEWS#L1-L9|was removed from modern Debian systems]] :((
+But we gave ''hacker'' write permissions to all ''tty'', so we could do this instead: <code>
+# check for the TTY's address
+who  # usually, the first one is the owner of the VM, coming from FEP
+# then write your message!
+echo "Wazzaaa" | tee /dev/pts/0
+</code>
+</note>
 <solution -hidden>
@@ Line 278: / Line 290: @@
 curl http://<colleague-VM-IP>
 ssh hacker@<colleague-VM-IP>
-wall "Wazzaap?"
+echo "wazzzaaaaap" | tee /dev/pts/0
 </code>
 </solution>

isc/labs/08.1732693667.txt.gz · Last modified: 2024/11/27 09:47 by ebru.resul

Lectures