Any ideas guys?

irishgeo

We as a class have been set a task to get into a remote linuc box in the lecteurs office and get a quote out of a file. If we do it we get a create of beer.

We have to use ssh to get into the box I have tried everything i know to do this. We have an account on his machine but thats it. There file is located in his home folder which we are denied access.

The next step is to start downloading exploiet code but i not sure how to use the code i do download of the net.

The file extension is .c but i dont know what code it is or how to execute it.

Some ideas would help since its not for any marks the soluntion would be good to?

The linux version he is using is 8 i think.

Does virtual PC allow you to run linux?

davej

The file extension is .c but i dont know what code it is or how to execute it.

Good luck my friend, if you don't even know how to compile a c program I'm afraid someone else is probably going to beat you to that crate of beer

davej

l337

The linux version he is using is 8 i think.

and you dont seem to know anything about linux either


... find the version of ssh that is on the box... it tends to have quite a few exploits availible

zAbbo

Portscan his box

Go in through ssh(using putty if on windows), you have an account

Google root kits if you want.

Can`t be that hard

scojones

if you have an account on there, check the kernel version, do a find to see what files are suid/setuid... i bet ptrace still works.

BenH

Make _damn_ sure you have written permission off your university's director of IT before you even begin to attempt something like this. Your lecturer more than likely will not be able to authorise any 'security testing'.

Capt'n Midnight

Try Social Engineering

There is a tiny chance it's setup to remote boot,
Bribe someone with some beer to insert a bootable floppy / CD

Then a convenient power cut may help...

OfflerCrocGod

People this must be a joke "Linux 8" - WTF!!!!. I though people like that were jokes or something!....if he his for real then forget it, you would need a month to tutor him, he cant even compile a c program!:eek: ..... It's a troll, maybe:rolleyes:.

irishgeo

Originally posted by OfflerCrocGod
People this must be a joke "Linux 8" - WTF!!!!. I though people like that were jokes or something!....if he his for real then forget it, you would need a month to tutor him, he cant even compile a c program!:eek: ..... It's a troll, maybe:rolleyes:.

and never had to learn something in your life before. You were born with all of this knowledge.

:rolleyes:

commuterised

Originally posted by irishgeo
and never had to learn something in your life before. You were born with all of this knowledge.

:rolleyes:

yeah come on, give the person a chance, it's posts like that , that disuade people like me from posting my linux queries for fear of being laughed at.

Typedef

Boot the box from the installation cd.

Once you've copied the file.

Install some good p0rn in his home directory..... then blackmail ad infinitum

BenH

Originally posted by irishgeo
and never had to learn something in your life before. You were born with all of this knowledge.

:rolleyes:

Your initial post, replete with poor spelling and grammatical errors, screams "I want to be L33T H4X0R", now most people have given you the benefit of the doubt; however Offler was completely correct in calling you on it.

Still coming onto the board and asking, how do I root a box is a damn silly thing to do, and quite possibly illegal. Now prehaps you'd be good enough to give us some actual information.

What university is this?
Who is your Lecturer?
Do you have watertight authorisation?
What Distro and version?
What version of ssh?
What version of the kernel?
Is the kernel vanilla or patched?

OfflerCrocGod

I only ask questions when I have scoured the net and books....usually after doing that you have a good idea, at least, of what's going on. And no I was not born knowing everything but the kernel numbering concept is not hard to grasp. Umm maybe you could try out Rootkit, but they are mainly into rooting windows boxes......I think. just look around for Linux Rootkits. Get Nmap etc...

BenH

Originally posted by Typedef
Boot the box from the installation cd.

Doesnt always work, as I found out earlier this week. Depending on the bootloader it is possible to demand the root password when going to single user and the directories and files themselves can still be blocked, although it might be possible to read the file.

However as they are required to use ssh, it isnt really an option.

I also had a few colourful things to say about the previous IT manager when I discovered this little trick

gerryk

he probably has sshd running listening on a different port from standard.

Do you know the login and p/w? If not, you're going to need an exploit of some description.

portscan the computer, look for sshd running on a high port... connect to said port and robert's your mum's brother.

scojones

shouldn't this be in the GLB section?

Typedef

arse

boot from cd

type

linux mount root=/dev/hda whatever

completely bypasses lilo/grub/syslinux/that cute blonde

gerryk

cracking root should be a piece of piss to someone who can walk through locked doors

Karoma

mebbe i missed something: why discuss bootable distros when he states he has to use ssh (for a "remote" box)?