Niveau 28

Level Goal

There is a git repository at ssh://bandit27-git@localhost/home/bandit27-git/repo. The password for the user bandit27-git is the same as for the user bandit27.

Clone the repository and find the password for the next level.

Commands you may need to solve this level

git

Une fois connecté, si par curiosité si l'on cherche à ruser en se connectant au serveur et en accédant au dossier contenant le repository on a le message d'erreur suivant :

bandit27@bandit:~$ cd /home/bandit27-git/repo
-bash: cd: /home/bandit27-git/repo: Permission denied

Pour récupérer le mot de passe, commençons par créer un dossier temporaire, naviguer à l'intérieur et cloner le repository :

bandit27@bandit:~$ mkdir /tmp/git28
bandit27@bandit:~$ cd /tmp/git28
bandit27@bandit:/tmp/git28$ git clone ssh://bandit27-git:3ba3118a22e93127a4ed485be72ef5ea@localhost/home/bandit27-git/repo
Cloning into 'repo'...
Could not create directory '/home/bandit27/.ssh'.
The authenticity of host 'localhost (127.0.0.1)' can't be established.
ECDSA key fingerprint is SHA256:98UL0ZWr85496EtCRkKlo20X3OPnyPSB5tB5RPbhczc.
Are you sure you want to continue connecting (yes/no)? yes
Failed to add the host to the list of known hosts (/home/bandit27/.ssh/known_hosts).
This is a OverTheWire game server. More information on http://www.overthewire.org/wargames

bandit27-git:3ba3118a22e93127a@localhost's password: 
remote: Counting objects: 3, done.
remote: Compressing objects: 100% (2/2), done.
remote: Total 3 (delta 0), reused 0 (delta 0)
Receiving objects: 100% (3/3), done.

Si on regarde le contenu du repository cloné on a :

bandit27@bandit:/tmp/git28$ cd repo
bandit27@bandit:/tmp/git28/repo$ ls
README
bandit27@bandit:/tmp/git28/repo$ cat README 
The password to the next level is: 0ef186ac70e04ea33b4c1853d2526fa2