Level Goal
There is a git repository at ssh://bandit27-git@localhost/home/bandit27-git/repo
. The password for the user bandit27-git
is the same as for the user bandit27
.
Clone the repository and find the password for the next level.
Use ssh to login the server with the following information.
- Username: bandit27
- Password: 3ba3118a22e93127a4ed485be72ef5ea
- Host: bandit.labs.overthewire.org
- Port: 2220
$ ssh bandit27@bandit.labs.overthewire.org -p 2220
This is a OverTheWire game server. More information on http://www.overthewire.org/wargamesbandit27@bandit.labs.overthewire.org's password:
3ba3118a22e93127a4ed485be72ef5ea
Let’s find the password for the next level.
bandit27@bandit:~$ mkdir -p /tmp/secttp
bandit27@bandit:~$ cd /tmp/secttpbandit27@bandit:/tmp/secttp$ git clone ssh://bandit27-git@localhost/home/bandit27-git/repo
Cloning into 'repo'...
Could not create directory '/home/bandit27/.ssh'.
The authenticity of host 'localhost (127.0.0.1)' can't be established.
ECDSA key fingerprint is SHA256:98UL0ZWr85496EtCRkKlo20X3OPnyPSB5tB5RPbhczc.
Are you sure you want to continue connecting (yes/no)? yes
Failed to add the host to the list of known hosts (/home/bandit27/.ssh/known_hosts).
This is a OverTheWire game server. More information on http://www.overthewire.org/wargamesbandit27-git@localhost's password:
3ba3118a22e93127a4ed485be72ef5earemote: Counting objects: 3, done.
remote: Compressing objects: 100% (2/2), done.
remote: Total 3 (delta 0), reused 0 (delta 0)
Receiving objects: 100% (3/3), done.bandit27@bandit:/tmp/secttp$ ls -al repo
total 16
drwxr-sr-x 3 bandit27 root 4096 Mar 27 15:55 .
drwxr-sr-x 3 bandit27 root 4096 Mar 27 15:55 ..
drwxr-sr-x 8 bandit27 root 4096 Mar 27 15:55 .git
-rw-r--r-- 1 bandit27 root 68 Mar 27 15:55 README
bandit27@bandit:/tmp/secttp$ cat repo/README
The password to the next level is: 0ef186ac70e04ea33b4c1853d2526fa2
Got it!