![]() ![]() Installed a mouse app on our phone so when our coworker sat down to work we would move the mouse slightly to trip him out. I wrote a small script to open up a "My Little Pony" youtube video once an hour, gave it an official-looking name "system-mlp" and started running it on the background of a friend/co-worker's computer. ![]() Then I shared the fun with the other colleagues so that they kept ejecting the cd tray randomly, even when I was not there.Īfter a few days he gave up and kept the tray open. I started ssh-ing on his machine, ejecting the cd tray every once in a while. He took the bait, sent me his user passphrase, notice the apparent mispell, re-entered the passphrase and obtained the expected result. When my colleague returned to his laptop, after a bit, I asked a newbie question "Could you tell me if sudo whoami works for you? I get a funny behavior on my machine.". ![]() bash_profile adding an alias to sudo so that it would invoke my script once and then delete both the alias itself and the malicious sudo script. ![]() I only had a few minutes available so I quickly opened a terminal, installed the openssh server, curled to my laptop to download a small script that behaved almost like sudo, so that when invoked it would send the passphrase inserted to my server and returned a notice of incorrect password, tricking the user into thinking of a mispell, then I edited his. I created a small server, waited for my colleague to take a quick toilet break with his laptop unlocked. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |