Description: Ok so the remote system runs samba , also accepts anonymous logins
Samba exports some paths to the anonymous user that will allow reading
and writing
On the remote system there is a crontab that runs some scripts located
in /usr/local/bin with root privileges
The anonymous user have also the privilege to modify this scripts
connecting to samba
The cron will run this scripts any minute and every day no mather what
the scripts contain
The anonymous user can force this scripts to run some services or to
dump /etc/shadow to another file that can be downloanded using samba
Tags: samba , misconfigured , access , challenge , debian ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
nice tuto! what's song? =)
AC/DC + Europe
nice video pyth0n3..great quality