Boards.ie

Damo2k · 01-03-2012, 20:37

For the people that missed it last year, here is your chance to try it yourself.

For those that previous tried it, this is two little differences. 2nd part is gone, but that part confused people anyway. Also the first part has a little twist now for thoes that previously did it.
Spoiler: You might need the assistance of a different part of the website/other challenge :-)

http://damo.clanteam.com/sch2/

Damo2k · 02-03-2012, 13:43

I have linked the others at:

http://damo.clanteam.com

enjoy.

900913 · 02-03-2012, 19:59

That took me a while to realise what I was doing wrong.

Very good challenge.
Thanks

900913 · 02-03-2012, 20:56

http://damo.clanteam.com/900913.txt

DonkeyStyle \o/ · 02-03-2012, 22:21

Good one

Less awkward second half than last time... didn't have to look for my linux CD.

Did a double entry there ("hmm"), wasn't expecting to submit that way.

Zab · 04-03-2012, 21:44

These were enjoyable by the way. I'd try the missing ones if that ever becomes possible in the future.

Damo2k · 05-03-2012, 09:11

Im afraid the other ones are not really suitable for public web hosting.

Neither is this challenge really, but the worst that will happen is people can only delete/modify my site, and not others on same hosting.

Damo2k · 07-03-2012, 17:55

Had to remove the image upload part, it was a bit dangerous.

So I changed this one slightly. Those of you that already did this one, you can do it again as there is some things different.

900913 · 07-03-2012, 18:31

Completed :-)

Damo2k · 07-03-2012, 19:43

Nice one :-)

900913 · 07-03-2012, 20:04

With every challenge I learn something new :-)

Thanks.....

**JimmyCrackCorn** · 08-03-2012, 01:45

I was playing with the image upload one last night.

Since it has been removed can i confirm it was php code embedded in an image that could be executed using .php.jpg

your wifi one has me stumped though. But ill get it eventually.

Thanks,
Pat

Damo2k · 08-03-2012, 08:06

Quote:

Originally Posted by JimmyCrackCorn

I was playing with the image upload one last night.

Since it has been removed can i confirm it was php code embedded in an image that could be executed using .php.jpg

your wifi one has me stumped though. But ill get it eventually.

Thanks,
Pat

Yup, your correct, that was the idea for the challenge. But it left the rest of the site vulnerable to modification/deletion

Damo2k · 08-03-2012, 09:40

Quote:

Originally Posted by JimmyCrackCorn

your wifi one has me stumped though. But ill get it eventually.

Thanks,
Pat

Spoiler: Eircom Jimi Hendrix

**JimmyCrackCorn** · 12-03-2012, 09:55

Still setting in in oz ill be back to normal and have a crack later in the week.

01-03-2012, 20:37	#1
Damo2k Registered User Join Date: Sep 2006 Location: Ireland Posts: 1,775 Adverts \| Friends	Security Challenge II re-visited For the people that missed it last year, here is your chance to try it yourself. For those that previous tried it, this is two little differences. 2nd part is gone, but that part confused people anyway. Also the first part has a little twist now for thoes that previously did it. Spoiler: You might need the assistance of a different part of the website/other challenge :-) http://damo.clanteam.com/sch2/

02-03-2012, 22:21	#5
DonkeyStyle \o/ Registered User Join Date: Oct 2004 Posts: 6,514 Adverts \| Friends	Good one Less awkward second half than last time... didn't have to look for my linux CD. Did a double entry there ("hmm"), wasn't expecting to submit that way.
$DonkeyStyle \o/ is offline$

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search

02-03-2012, 13:43	#2
Damo2k Registered User Join Date: Sep 2006 Location: Ireland Posts: 1,775 Adverts \| Friends	I have linked the others at: http://damo.clanteam.com enjoy.

02-03-2012, 19:59	#3
900913 Registered User Join Date: Mar 2011 Location: On an island between Atlantic Ocean and Irish Sea. Posts: 228 Adverts \| Friends	That took me a while to realise what I was doing wrong. Very good challenge. Thanks

02-03-2012, 20:56	#4
900913 Registered User Join Date: Mar 2011 Location: On an island between Atlantic Ocean and Irish Sea. Posts: 228 Adverts \| Friends	http://damo.clanteam.com/900913.txt

04-03-2012, 21:44	#6
Zab Registered User Join Date: Feb 2002 Posts: 1,782 Adverts \| Friends	These were enjoyable by the way. I'd try the missing ones if that ever becomes possible in the future.

05-03-2012, 09:11	#7
Damo2k Registered User Join Date: Sep 2006 Location: Ireland Posts: 1,775 Adverts \| Friends	Im afraid the other ones are not really suitable for public web hosting. Neither is this challenge really, but the worst that will happen is people can only delete/modify my site, and not others on same hosting.

07-03-2012, 17:55	#8
Damo2k Registered User Join Date: Sep 2006 Location: Ireland Posts: 1,775 Adverts \| Friends	Had to remove the image upload part, it was a bit dangerous. So I changed this one slightly. Those of you that already did this one, you can do it again as there is some things different.

07-03-2012, 18:31	#9
900913 Registered User Join Date: Mar 2011 Location: On an island between Atlantic Ocean and Irish Sea. Posts: 228 Adverts \| Friends	Completed :-)

07-03-2012, 19:43	#10
Damo2k Registered User Join Date: Sep 2006 Location: Ireland Posts: 1,775 Adverts \| Friends	Nice one :-)

07-03-2012, 20:04	#11
900913 Registered User Join Date: Mar 2011 Location: On an island between Atlantic Ocean and Irish Sea. Posts: 228 Adverts \| Friends	With every challenge I learn something new :-) Thanks.....

08-03-2012, 01:45	#12
JimmyCrackCorn Moderator Join Date: Jan 2010 Location: Bondi Beach Posts: 1,345 Adverts \| Friends Mod: Modified Cars	I was playing with the image upload one last night. Since it has been removed can i confirm it was php code embedded in an image that could be executed using .php.jpg your wifi one has me stumped though. But ill get it eventually. Thanks, Pat

12-03-2012, 09:55	#15
JimmyCrackCorn Moderator Join Date: Jan 2010 Location: Bondi Beach Posts: 1,345 Adverts \| Friends Mod: Modified Cars	Still setting in in oz ill be back to normal and have a crack later in the week.