David Varghese

Mar 9, 2021

2 min read

OverTheWire: Bandit Level 18 → Level 19

https://overthewire.org/wargames/bandit/bandit19.html

Level Goal

The password for the next level is stored in a file readme in the homedirectory. Unfortunately, someone has modified .bashrc to log you out when you log in with SSH.

Commands you may need to solve this level

ssh, ls, cat

> whatis ssh
ssh (1)              - OpenSSH remote login client> whatis ls
ls (1)               - list directory contents> whatis cat
cat (1)              - concatenate files and print on the standard output

Note : Not all commands are required to complete the level

Solution

From reading the question we understand that we cannot login directly as the default shell “Bash” has been modified to not allow any login using SSH. So we need to use a shell other than bash to access the system.

The details of all the shells that are available on a system is stored under /etc/shells . Lets look at the file on our system to get an idea of what are the different shells that could be present on the target (Only on Linux)

> cat /etc/shells
# /etc/shells: valid login shells
/bin/sh
/bin/bash
/usr/bin/bash
/bin/rbash
/usr/bin/rbash
/bin/dash
/usr/bin/dash
/usr/bin/tmux
/usr/bin/screen

Note : Each line in the file represents an shell that is present on the system

Now that we have an idea of some of the shells that should be preset on all systems we can try logging with them using SSH. The -t flag of the SSH command is used to specify the shell to be used to login into the system.

$ ssh bandit18@bandit.labs.overthewire.org -p 2220 -t "/bin/sh"
This is a OverTheWire game server. More information on http://www.overthewire.org/wargamesbandit18@bandit.labs.overthewire.org's password: kfBf3eYk5BPBRzwjqutbbfE887SVc5Yd
$

We have managed to login successfully using the “sh” shell

Find the password that is present in the readme file

$ ls
readme$ cat readme
IueksS7Ubh8G3DCwVzrTd8rAVOwq3M5x

We have got the password for the next level !!!

Logout of the current session and login into the next level using the password for bandit19

> ssh bandit19@bandit.labs.overthewire.org -p 2220
This is a OverTheWire game server. More information on http://www.overthewire.org/wargamesbandit19@bandit.labs.overthewire.org's password: IueksS7Ubh8G3DCwVzrTd8rAVOwq3M5x

Previous Level

OverTheWire: Bandit Level 17 → Level 18

https://overthewire.org/wargames/bandit/bandit18.html

therandomier.medium.com

Next Level

OverTheWire: Bandit Level 19 → Level 20

https://overthewire.org/wargames/bandit/bandit20.html

therandomier.medium.com

--

--

--

More from David Varghese

Love podcasts or audiobooks? Learn on the go with our new app.

Try Knowable

Recommended from Medium

Ally

in

ALLY Blog

Data Breach of the Week — ZOOM

DefiXVegas

What is DefiXVegas?

Jinen Dedhia

Mailchimp’s internal tool security breach teardown

Derek M. Duarte

Beyond the E

Matthew.Rosenquist

HMG CISO Executive Leadership Summit

ResellerClub

in

ResellerClub

Is Adopting Private Cloud Better for Your Security?

Steve Perry

Getting serious about data protection

Sekie @Icetea Labs

in

PolkaFoundry

Kingdom Karnage $KKT IDO and Community Pool Have Open on Red Kite Launchpad. Apply Now!

AboutHelpTermsPrivacy

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
David Varghese

David Varghese

More from Medium

c0mpl3x

Software: Uncover

Arjun N

DigitalOcean SSH Connection Refused: Causes and Solutions

PRITHVIRAJ GOTEPATIL

DC Motor Speed Control Using PID

Wyatt Sell

Creating a live UK train-map

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Knowable