Username: 
Password: 
Restrict session to IP 

Evil  Go to the PHP My Admin challenge

Global Rank: 878
Totalscore: 29841
Posts: 5
Thanks: 9
UpVotes: 3
Registered: 12y 178d


Last Seen: 12y 127d
The User is Offline
Evil
Google/translate3Thank You!2Good Post!1Bad Post! link
This challenge is evil. Found a hint but it only added to the possibilities haha
Global Rank: 126
Totalscore: 146487
Posts: 25
Thanks: 25
UpVotes: 18
Registered: 16y 61d
busyr`s Avatar


Last Seen: 1y 64d
The User is Offline
RE: Evil
Google/translate3Thank You!2Good Post!0Bad Post! link
True...

Is there any other way than brute-force?
Global Rank: 228
Totalscore: 94483
Posts: 1689
Thanks: 1363
UpVotes: 925
Registered: 16y 328d




Last Seen: 2d 6h
The User is Offline
RE: Evil
Google/translate2Thank You!2Good Post!0Bad Post! link
Not really, but it's very obvious with the hint.
I chose a very common name, and there might be little quirk/gotcha... but many people got it straigth away.
It actually was the real setup i chose when there was a pma on this box a few months ago Smile

Happy Holidays!
gizmore
The geeks shall inherit the properties and methods of object earth.
Global Rank: 4221
Totalscore: 4390
Posts: 10
Thanks: 6
UpVotes: 7
Registered: 11y 305d
fuzzy`s Avatar
Last Seen: 8y 270d
The User is Offline
RE: Evil
Google/translate1Thank You!2Good Post!0Bad Post! link
Hi,

It's hard to me to guess this
subdomain name
.
It could be something like admin.wechall.net <-- am I correctly understand what subdomain is?


Thanks for help!
Global Rank: 228
Totalscore: 94483
Posts: 1689
Thanks: 1363
UpVotes: 925
Registered: 16y 328d




Last Seen: 2d 6h
The User is Offline
RE: Evil
Google/translate3Thank You!1Good Post!0Bad Post! link
I already gave it away above. But there is still some "gotcha".
Imagine you setup some apache vhosts Smile
The geeks shall inherit the properties and methods of object earth.
Global Rank: 4221
Totalscore: 4390
Posts: 10
Thanks: 6
UpVotes: 7
Registered: 11y 305d
fuzzy`s Avatar
Last Seen: 8y 270d
The User is Offline
RE: Evil
Google/translate1Thank You!1Good Post!0Bad Post! link
Got it! Wow, it was obvious and extremely interesting (never configured vhosts before).

Once again: thanks for help (and new portion of knowledge) man! Smile
Global Rank: 546
Totalscore: 46121
Posts: 224
Thanks: 211
UpVotes: 222
Registered: 14y 24d
space`s Avatar
The User is Offline
RE: Evil
Google/translate2Thank You!3Good Post!0Bad Post! link
if you are more interested in apache config, see the tool apachectl --help

e.g. to display all vhosts: apachectl -S
Contact only via c3BhY2VAd2VjaGFsbC5uZXQ= or PM...
Windows can be secure... but only if you don't use it Happy
Global Rank: 7150
Totalscore: 1487
Posts: 5
Thanks: 3
UpVotes: 4
Registered: 12y 149d
Last Seen: 9y 206d
The User is Offline
RE: Evil
Google/translate1Thank You!2Good Post!0Bad Post! link
I know vhost, but have no idea
Global Rank: 799
Totalscore: 32389
Posts: 74
Thanks: 38
UpVotes: 48
Registered: 6y 339d
Last Seen: 3y 203d
The User is Offline
RE: Evil
Google/translate2Thank You!1Good Post!0Bad Post! link
I may be dense. I found the hint page, buddy, but not getting past it... Brute force?
Global Rank: 799
Totalscore: 32389
Posts: 74
Thanks: 38
UpVotes: 48
Registered: 6y 339d
Last Seen: 3y 203d
The User is Offline
RE: Evil
Google/translate1Thank You!1Good Post!0Bad Post! link
Yes, I'm dense! So many fruitless paths. Got it finally. No fun (sulk)! Okay, it was a little fun.
tunelko, gridder, bogdan23, codenameblitz, amnesia, Redknee, ckclark, helit, abcxyz, silenttrack, n0tHappy, nonfungiblesecurity, quangntenemy, TheHiveMind, Z, balicocat, Ge0, samuraiblanco, arraez, jcquinterov, hophuocthinh, alfamen2, burhanudinn123, Ben_Dover, stephanduran89, braddie0, SwolloW, dangarbri, csuquvq have subscribed to this thread and receive emails on new posts.
1 people are watching the thread at the moment.
This thread has been viewed 25333 times.