Revert "close the loophole" -- connor fixed it dojo-wide

This reverts commit 6a63418.
pwncollege · Sep 11, 2024 · 48ae01a · 48ae01a
1 parent 6a63418
commit 48ae01a
Show file tree

Hide file tree

Showing 11 changed files with 0 additions and 55 deletions.
diff --git a/web-security/csrf-reflected-alert/victim b/web-security/csrf-reflected-alert/victim
@@ -30,11 +30,6 @@ if 80 in open_ports:
     print("Port 80 is open. Will connect to the service there.")
     challenge_url = "http://challenge.localhost:80/"
     flag = open("/flag").read().strip()
-    if psutil.Process(next(
-        n for n in psutil.net_connections()
-        if n.status == "LISTEN" and n.laddr.port == 80 and n.family.value == 2
-    )).uids().effective:
-        print("Service on port 80 is not owned by root... Aborting!")
 elif 8080 in open_ports:
     print("Port 8080 is open. Will connect to the service there. 8080 is the debug port, so you will earn a fake flag.")
     challenge_url = "http://challenge.localhost:8080/"

diff --git a/web-security/level-10/victim b/web-security/level-10/victim
@@ -30,11 +30,6 @@ if 80 in open_ports:
     print("Port 80 is open. Will connect to the service there.")
     challenge_url = "http://challenge.localhost:80/"
     flag = open("/flag").read().strip()
-    if psutil.Process(next(
-        n for n in psutil.net_connections()
-        if n.status == "LISTEN" and n.laddr.port == 80 and n.family.value == 2
-    )).uids().effective:
-        print("Service on port 80 is not owned by root... Aborting!")
 elif 8080 in open_ports:
     print("Port 8080 is open. Will connect to the service there. 8080 is the debug port, so you will earn a fake flag.")
     challenge_url = "http://challenge.localhost:8080/"

diff --git a/web-security/level-11/victim b/web-security/level-11/victim
@@ -30,11 +30,6 @@ if 80 in open_ports:
     print("Port 80 is open. Will connect to the service there.")
     challenge_url = "http://challenge.localhost:80/"
     flag = open("/flag").read().strip()
-    if psutil.Process(next(
-        n for n in psutil.net_connections()
-        if n.status == "LISTEN" and n.laddr.port == 80 and n.family.value == 2
-    )).uids().effective:
-        print("Service on port 80 is not owned by root... Aborting!")
 elif 8080 in open_ports:
     print("Port 8080 is open. Will connect to the service there. 8080 is the debug port, so you will earn a fake flag.")
     challenge_url = "http://challenge.localhost:8080/"

diff --git a/web-security/level-12/victim b/web-security/level-12/victim
@@ -30,11 +30,6 @@ if 80 in open_ports:
     print("Port 80 is open. Will connect to the service there.")
     challenge_url = "http://challenge.localhost:80/"
     flag = open("/flag").read().strip()
-    if psutil.Process(next(
-        n for n in psutil.net_connections()
-        if n.status == "LISTEN" and n.laddr.port == 80 and n.family.value == 2
-    )).uids().effective:
-        print("Service on port 80 is not owned by root... Aborting!")
 elif 8080 in open_ports:
     print("Port 8080 is open. Will connect to the service there. 8080 is the debug port, so you will earn a fake flag.")
     challenge_url = "http://challenge.localhost:8080/"

diff --git a/web-security/level-13/victim b/web-security/level-13/victim
@@ -30,11 +30,6 @@ if 80 in open_ports:
     print("Port 80 is open. Will connect to the service there.")
     challenge_url = "http://challenge.localhost:80/"
     flag = open("/flag").read().strip()
-    if psutil.Process(next(
-        n for n in psutil.net_connections()
-        if n.status == "LISTEN" and n.laddr.port == 80 and n.family.value == 2
-    )).uids().effective:
-        print("Service on port 80 is not owned by root... Aborting!")
 elif 8080 in open_ports:
     print("Port 8080 is open. Will connect to the service there. 8080 is the debug port, so you will earn a fake flag.")
     challenge_url = "http://challenge.localhost:8080/"

diff --git a/web-security/level-14/victim b/web-security/level-14/victim
@@ -30,11 +30,6 @@ if 80 in open_ports:
     print("Port 80 is open. Will connect to the service there.")
     challenge_url = "http://challenge.localhost:80/"
     flag = open("/flag").read().strip()
-    if psutil.Process(next(
-        n for n in psutil.net_connections()
-        if n.status == "LISTEN" and n.laddr.port == 80 and n.family.value == 2
-    )).uids().effective:
-        print("Service on port 80 is not owned by root... Aborting!")
 elif 8080 in open_ports:
     print("Port 8080 is open. Will connect to the service there. 8080 is the debug port, so you will earn a fake flag.")
     challenge_url = "http://challenge.localhost:8080/"

diff --git a/web-security/level-8/victim b/web-security/level-8/victim
@@ -39,11 +39,6 @@ if url_parsed.port == 8080:
     reward = "pwn.college{fake_flag}"
 elif url_parsed.port in {None, 80}:
     reward = open("/flag").read()
-    if psutil.Process(next(
-        n for n in psutil.net_connections()
-        if n.status == "LISTEN" and n.laddr.port == 80 and n.family.value == 2
-    )).uids().effective:
-        print("Service on port 80 is not owned by root... Aborting!")
 else:
     print("Port should be 80 (real service) or 8080 (debug port).")
     sys.exit(3)

diff --git a/web-security/level-9/victim b/web-security/level-9/victim
@@ -39,11 +39,6 @@ if url_parsed.port == 8080:
     reward = "pwn.college{fake_flag}"
 elif url_parsed.port in {None, 80}:
     reward = open("/flag").read()
-    if psutil.Process(next(
-        n for n in psutil.net_connections()
-        if n.status == "LISTEN" and n.laddr.port == 80 and n.family.value == 2
-    )).uids().effective:
-        print("Service on port 80 is not owned by root... Aborting!")
 else:
     print("Port should be 80 (real service) or 8080 (debug port).")
     sys.exit(3)

diff --git a/web-security/xss-exfil-cookie/victim b/web-security/xss-exfil-cookie/victim
@@ -30,11 +30,6 @@ if 80 in open_ports:
     print("Port 80 is open. Will connect to the service there.")
     challenge_url = "http://challenge.localhost:80/"
     flag = open("/flag").read().strip()
-    if psutil.Process(next(
-        n for n in psutil.net_connections()
-        if n.status == "LISTEN" and n.laddr.port == 80 and n.family.value == 2
-    )).uids().effective:
-        print("Service on port 80 is not owned by root... Aborting!")
 elif 8080 in open_ports:
     print("Port 8080 is open. Will connect to the service there. 8080 is the debug port, so you will earn a fake flag.")
     challenge_url = "http://challenge.localhost:8080/"

diff --git a/web-security/xss-rf-post/victim b/web-security/xss-rf-post/victim
@@ -30,11 +30,6 @@ if 80 in open_ports:
     print("Port 80 is open. Will connect to the service there.")
     challenge_url = "http://challenge.localhost:80/"
     flag = open("/flag").read().strip()
-    if psutil.Process(next(
-        n for n in psutil.net_connections()
-        if n.status == "LISTEN" and n.laddr.port == 80 and n.family.value == 2
-    )).uids().effective:
-        print("Service on port 80 is not owned by root... Aborting!")
 elif 8080 in open_ports:
     print("Port 8080 is open. Will connect to the service there. 8080 is the debug port, so you will earn a fake flag.")
     challenge_url = "http://challenge.localhost:8080/"

diff --git a/web-security/xss-stored-alert/victim b/web-security/xss-stored-alert/victim
@@ -30,11 +30,6 @@ if 80 in open_ports:
     print("Port 80 is open. Will connect to the service there.")
     challenge_url = "http://challenge.localhost:80/"
     flag = open("/flag").read().strip()
-    if psutil.Process(next(
-        n for n in psutil.net_connections()
-        if n.status == "LISTEN" and n.laddr.port == 80 and n.family.value == 2
-    )).uids().effective:
-        print("Service on port 80 is not owned by root... Aborting!")
 elif 8080 in open_ports:
     print("Port 8080 is open. Will connect to the service there. 8080 is the debug port, so you will earn a fake flag.")
     challenge_url = "http://challenge.localhost:8080/"