Slashdot Mirror

← Back to Stories (view on slashdot.org)

Linux Server Break-in Challenge

Posted by CmdrTaco on from the g3t-r3ady-to-p3wn3z0rzasdkja dept.

Sujit writes "Are you an Internet security expert at heart or by profession? Ever thought of trying your skill at a professionally set up server? If you are ready, enter. The Linux Server Break-in challenge. You will have a server available on the Internet 96 hours without interruption starting from 9 March 2005 2 AM IST. However, the server's life on the Net is in your hands."

29 of 327 comments (clear)

  1. Alternately, . . . by Maradine · · Score: 4, Funny

    Post the IP address here. That'll compromise it.

    --

    trustedworlds.net - gaming, security, and the gunk that lives in between

    1. Re:Alternately, . . . by dtfinch · · Score: 1, Funny

      It's 192.168.0.103. Let the hacking begin!

    2. Re:Alternately, . . . by justforaday · · Score: 5, Funny

      It's 192.168.0.103. Let the hacking begin!

      w00t!!! I got in! They used the same root password as I use on my box...What do I win???

      --
      I'll turn into a supernova and burn up everything. Well I'll turn into a black little hole and you'll turn into string.
    3. Re:Alternately, . . . by Council · · Score: 4, Funny

      Use the credit card numbers hidden on the box to buy absolutely anything you want.

      --
      xkcd.com - a webcomic of mathematics, love, and language.
    4. Re:Alternately, . . . by tomhudson · · Score: 3, Funny
      No it's not. It's at 216.250.128.12

      a.k.a. SCO.com (after all, they claim to own all linux, so have at 'em, boys and girls)

    5. Re:Alternately, . . . by theVP · · Score: 5, Funny

      I can see it now. A linux geek in front of his computer, putting his pokemon hat on, and getting his pokemon cards ready for battle. Then, with much hesitation, he makes his decision. As he types in the server's IP address on Slashdot, he cries out, "Slashdot Effect, I choose YOU!!!"

      --
      "No one is more miserable than the person who wills everything and can do nothing." -Emperor Claudius 10 BC - AD 54
    6. Re:Alternately, . . . by Gzip+Christ · · Score: 2, Funny
      Use the credit card numbers hidden on the box to buy absolutely anything you want.
      I tried, but the loser has some pathetically low credit limit. :(
  2. Challenge accepted! by c0l0 · · Score: 4, Funny

    Now I'll just have to find that Sub7-thingie for Linux somewhere on the net...

    --
    :%s/Open Source/Free Software/g

    YTARY!
  3. More Interesting by Anonymous Coward · · Score: 2, Funny

    That server wont have a firewall or much secuirty... so how about 69.44.61.248 - the linuxense.com webserver :)

  4. Re:Isn't this illegal? by Gabrill · · Score: 2, Funny

    Possibly, but then again, SCO isn't running the contest.

    --
    Always going forward, 'cause we can't find reverse.
  5. FTA by mr_z_beeblebrox · · Score: 4, Funny

    I thought it was a nice touch that they give directions on how to stop network services for someone who gets root. Most people who root linux boxes have trouble with those advanced administrative functions

  6. Tin Foil Hat Contest! by xtermin8 · · Score: 1, Funny

    If nobody can read your thoughts for 96 hours you win- a free tinfoil hat! Yay!

  7. Social engineering by saskboy · · Score: 3, Funny

    Obviously the best way to crack this server is going to be to socially engineer the linux administrator at this company, and get the real root password.
    It's probably something like: thislinuxis2coolforU2crax0r

    Hmm, that sounds like something I should use as a root password. Forget I mentioned this.

    --
    Saskboy's blog is good. 9 out of 10 dentists agree.
    1. Re:Social Engineering by hawk · · Score: 4, Funny


      From service@linuxsense.com Fri Feb 25 22:51:32 2005
      From: "linuxsense"
      To: root@linuxsense.com
      Subject: linuxsense Account Security Measures

      Dear linuxsense root,
      Your account has been randomly flagged in our system as a part of our routine security measures. This
      is a must to ensure that only you have access and use of your linuxsense
      account and to ensure a safe linuxsense experience. We require all flagged
      accounts to verify their information on file with us. To verify your
      Information at this time, please visit our secure server webform by
      clicking the hyperlink below [...]

  8. Outsourced by Evil+W1zard · · Score: 3, Funny

    Hey our Hacking Contests have been outsourced to India. Seriously though I am kind of wary about this because I don't know what legal implications there may be doing this since I am uneducated in Indian Cyber criminal law? Also the web site looks fairly hinkey (yes its a word and I'll use it!) It would be funny if they posted the IP address at the start of the contest and it turned out to be the IP of some major site or agency....

    --
    News Reporters Make Tasty Polar Bear Treats!
  9. Re:Selling some sort of hardened Linux, perhaps? by Anonymous Coward · · Score: 0, Funny

    Alternatively, they could just register a Slashdot account, post "OMFG SCO rulez Linuz SUXX0Rz!!11" in every topic, and point the URL in the profile to a website saying "LOL get the facts LINUX SI FOR HIPPYS"

  10. very handy. *cough* by blue_adept · · Score: 2, Funny

    yes, very handy for those real-life applications where the server will be on the internet for more than 96 hours.

    --

    "Is this just useless, or is it expensive as well?"
  11. Social Engineering by Inkieminstrel · · Score: 5, Funny

    Dear Admin,

    I am currently working on a project sponsored by you in which I need to break into your computer. In order to do this, I will need the root password. Also, my SSH signature is attached to this message. Please add me to the list of valid signatures.

    Thank you,
    Inkieminstrel
    Social Engineer

  12. Re:For crying out loud by PoprocksCk · · Score: 2, Funny

    "Altruistic intellectual pursuits are one thing, a penguin t-shirt is completely another."

    I'd prefer Napoleon Dynamite's helicopter shirt. To each his own, I guess.

  13. Limber Up by Stanistani · · Score: 2, Funny

    *Buys crate of Cheetos*
    *Installs soda machine*
    *dims lights*
    *cracks knuckles*

    I'm ready...

    --
    You can't talk about Wikipedia's flaws on Wikipedia
  14. Oh the irony.. by tod_miller · · Score: 2, Funny

    ...if the admin uses Outlook (on a diff machine):

    Subject: "I hax0r3d your box!11"

    Dear adm1n, I hjax0red your l1nu> box, look at the attached screensh00t as pr00f!!!

    h4x0r3d.vbs.exe.scr.pif.dll.bat

    Look at the pic and I will hack^H^H^H^H show you!!

    Yours

    skr1pt k1|)|)1e

    PS: I am tha l33ts7 I even misp4ll l36t words.

    --
    #hostfile 0.0.0.0 primidi.com 0.0.0.0 www.primidi.com 0.0.0.0 radio.weblogs.com
  15. Take the easy way out by tsmithnj · · Score: 5, Funny

    All the posts thus far are technical in nature. The easiest way into that machine is through the front door. Find the server, grab it, and run. If these guys are stupid enough to allow you to break into their property-- take them up on the challenge. AFter all, they did lay down the challenge.....

  16. Aftermath by halleluja · · Score: 2, Funny

    ... and then I would hack along into .gov sites from their site.. try and proof I did it.

  17. That's not what I heard... by jhigh · · Score: 5, Funny

    I was told that it's 127.0.0.1. Took me about five seconds to hack in. Morons didn't even have a firewall...

    --
    Social Engineering Expert: Because there is no patch for stupidity.
  18. Re:/. Effect by 'nother+poster · · Score: 3, Funny

    Come get some.

  19. Extra Credit by Anonymous Coward · · Score: 3, Funny

    Options for extra credit:

    1) Erase the kernel and everything else, replace with printf('Do you want to play a game?\n');

    2) Break into the sniffer on the bridge, and erase the packet logs. Return a copy later.

    3) Install BSD on it.

    4) Install and register Win XP on it, which would really confuse the next hacker.

  20. Re:Rules by hawk · · Score: 3, Funny


    Nah. Zorro could leave his mark on a cdrom . . .

    hawk

  21. Re:Selling some sort of hardened Linux, perhaps? by Anonymous Coward · · Score: 1, Funny

    Or maybe they are going to post the IP address of a rival's webserver ;)

    Future challenge:
    "Hey guys this is Bill Gates, we are testing some new security features and want to see how effective they are. So we are posting the Microsoft Hacking challenge."

    Just try to bring down the web servers, email servers, and database servers of our test website:

    www.redhat.com, oops I mean 209.132.177.50, yeah, that's it.

    Also, please forward this to everyone you know, and we'll give you one penny for each time it is forwarded.

    Offer good anywhere except in places that steal people's kidneys and leave them in bath tubs full of ice with a message to call 911."

  22. Re:Selling some sort of hardened Linux, perhaps? by Anonymous Coward · · Score: 1, Funny

    "disclaimer: if you or your organization fall victim to IP lawsuits for hacking into a linux machine, Microsoft can offer you amnesty: see www.microsoft.com/getthefacts for more information."