PlaneShift

Fan Area => The Hydlaa Plaza => Topic started by: Nikolia on November 18, 2004, 04:15:49 pm

Title: Aww man no Unix Bash shell sig
Post by: Nikolia on November 18, 2004, 04:15:49 pm

$ open 206.47.32.7
connecting....
   Login: Nikola
   Password:  *****

$ Connected Welcome to 1334 shell, have fun =)
$ ./NTC
$ Now scanning....
$ Shadow File found...
$ Re83Nk47T49D74Lh4s2rR $ su root
$ password:                          
$
$whoami
$root
$ cd ..
$ cd root
$ vi bash.rc

echo \"Connected Welcome to 1334 shell, have fun =)\"
Q>
$
$ vi bash.rc
echo \"welcome to lame-box, have a nice day =0\"
>W

$ passwd
$ Enter new root password> ***********
$ Again> **********
$ rm -rf .bash_history
$ logout


most of it I made up... but I wanted it for my sig :( ohwell

Title:
Post by: Moogie on November 18, 2004, 04:30:40 pm

Um.... riiiight... does this thread have a point, or an understandable meaning? :P

Title:
Post by: Nikolia on November 18, 2004, 05:04:45 pm

you see he logs into he\'s bash shell (bsh)
he connects to 206.47.32.7
he puts in hes username/pass
He runs NTC (Nikola The Cracker)
He find the shadowed password cracks it.
He Sus to root (logs into root)
he does the whoami command to make sure hes in root
He Travels to the systems bash.rc file then he changes the message from \"Connected Welcome to 1334 shell, have fun =) \" to \"\"welcome to lame-box, have a nice day =0\"

He then changes the root password
He deletes the log file, then he logs out

...weee I guess I was just bored, and I felt like putting a creative mind to use :P

Title:
Post by: Annah on November 18, 2004, 05:59:43 pm

Ok, never dare to call me  crazy again 0.o

Title:
Post by: SirJunkie on November 18, 2004, 08:14:59 pm

C:\\>wtf
Ok
C:\\>

Title:
Post by: Myrtl on November 18, 2004, 09:27:26 pm

Thats WAY too big to put in your sig!! Youd get it taken off it you did. But you could change the size of it...but even then it would be too big.

Title:
Post by: Androgos on November 18, 2004, 09:30:05 pm

Ok, just let me take this :P :

1. The standard telnet console doesn\'t use $, but maybe you use customize software?
2. Whoami isn\'t really requierd to use to see if you\'re root, since the console sign changes to a # IIRC, which it btw doesn\'t do in your sign thing
3. Why do all the program send its output to the bash shell (noticed by that every line have a $)?
4. Why not delete connection logs?
5. Isn\'t the passwords MD5 hashed? So it would generaly take long time to crack. But since you don\'t have any timestamps, I guess it maybe were there in.. well.. about 1 day - 4 weeks or so?
6. What\'s the point of all this?

Thanks for me :)

Title:
Post by: Shadowfalcon on November 18, 2004, 09:32:24 pm

C:\\DOS>
C:\\DOS>run
Bad command or file name. User is incompetent. Please replace user.

Title:
Post by: Seytra on November 18, 2004, 09:47:54 pm

Quote

Originally posted by Androgos
Ok, just let me take this :P :

1. The standard telnet console doesn\'t use $, but maybe you use customize software?
2. Whoami isn\'t really requierd to use to see if you\'re root, since the console sign changes to a # IIRC, which it btw doesn\'t do in your sign thing
3. Why do all the program send its output to the bash shell (noticed by that every line have a $)?
4. Why not delete connection logs?
5. Isn\'t the passwords MD5 hashed? So it would generaly take long time to crack. But since you don\'t have any timestamps, I guess it maybe were there in.. well.. about 1 day - 4 weeks or so?
6. What\'s the point of all this?

Thanks for me :)

Not to mention that if you\'re stupid enough to give any non-root user read-access to the shadow file, you just deserve to be hacked. Also if you allow users to execute stuff that you did not put on the system, i.e. if you do not mount the /home and /temp folders \"noexec\".

# rm -Rf /

Title:
Post by: Shadowfalcon on November 18, 2004, 09:58:45 pm

all very good points. So what was the point of this thread?

Title:
Post by: Seytra on November 18, 2004, 10:59:23 pm

I think the point is that Nikolia just found out that the sig may not contain one page of text (which shouldn\'t surprise anyone, but anyway), and wanted to share this discovery with us...

Title:
Post by: Nikolia on November 19, 2004, 01:31:08 am

Lol Androgos, I Knew some one was going to catch me out..
but honestly I did\'nt think anyone here was that advanced
and yeah I wrote it at 3am while I was doing something else.
I just guess I was bored and I wanted to share it.
Alot of things dont make sence in that strange shell lol

I know lets all worked together to fix it! :P

Title:
Post by: Annah on November 19, 2004, 12:34:17 pm

Somebody shoot him fast, until he\'ll start infecting the whole system 0.o
 * runs and hides *

Title:
Post by: Androgos on November 19, 2004, 03:37:15 pm

Quote

Originally posted by Nikolia
but honestly I did\'nt think anyone here was that advanced

Hey, we are only programming one of the most advanced game types there is :P

Title:
Post by: hook on November 19, 2004, 03:46:00 pm

it DID look suspicious to me ...or at least not bash-y at all ...but i didn\'t even think it worth commenting - i thought this thread got locked?

[edit by hook]
erm ...you need to be advanced to tell a bash shell from a wierd thing?
[/edit]

Title:
Post by: Harkin on November 19, 2004, 08:41:52 pm

Quote

Originally posted by Nikolia
but honestly I did\'nt think anyone here was that advanced

i have to comment on how can soomeone say that to a forum where alot of programmers and developers are... well mot everyone is smart :/

Title:
Post by: Nikolia on November 19, 2004, 11:33:18 pm

but honestly I didnt think anyone was that advanced (in the bash shell) ...but tsk.. tsk.. lol your right alot of people in here
are programmers and work for the PS team while others contribrute, but thats dosnt mean they need to know anything
about The bsh shell.. where in the game do they use it.
The only thing that comes close is the telnet game updater :)

Edit: \"it DID look suspicious to me ...or at least not bash-y at all ...but i didn\'t even think it worth commenting - i thought this thread got locked?\"
Hook, I think the reason you didnt bother to post is because
you didnt know what needed to be fixed. Not because you didnt \"Think it worth commenting\" ;)

Title:
Post by: hook on November 20, 2004, 04:01:49 am

Quote

Originally posted by Nikolia
Hook, I think the reason you didnt bother to post is because
you didnt know what needed to be fixed. Not because you didnt \"Think it worth commenting\" ;)

yea, whatever.

just for your info: bsh [bean shell] is *NOT* bash [bourne again shell] ...maybe you tried to sneak in the original bourne shell - but sadly that one\'s named ash ;)

first learn the names, then bash ;)

Title:
Post by: Adeli on November 20, 2004, 04:53:45 am

I can only say this entire thread was lost on me.
I have no idea what any of you are talking about.

Shadowfalcon.
C:\\DOS
C:\\DOS\\RUN
RUN\\DOS\\RUN

A geek T-Shirt from the simpsons that amused me.
the Comic Book guy was wearing it, when Lisa joined err... MENSA? I think that\'s right.

Title:
Post by: Nikolia on November 20, 2004, 05:17:02 am

lol my bad, small typo I ment bash not bsh.
Bourne Again SHell (bash) not the Java Bean shell.. or also
 \"shell bean - unripe beans removed from the pod before cooking\" :P

Title:
Post by: Seytra on November 20, 2004, 05:23:27 am

Nikolia, there is a Linux version of PS, and bash AFAICS is the most commonly used shell in Linux, so you\'d expect someone to know it reasonably well. Furthermore, the updater isn\'t telnet. Also, as we\'re on it, the file isn\'t called \"bash.rc\" but \".bashrc\". :) AAAAND you quit vi with \":q\" and save using \":w\", and you also need to hit \"i\" to start typing and \"escape\" to quit typing mode. ;)

However, as you already stated that you made it up, it\'s not required to be precise, so I\'ll take it as the joke it probably was meant to be.

@ Adeli: you can change the DOSprompt to \"RUN\\DOS\\RUN\". Just type \"prompt RUN\\DOS\\RUN\". To get back the original prompt, type \"prompt $p$g\". :)