Synced

365KB

Synced_Write_Up.pdf

pdf

Task 1: What is the default port for rsync?

• Running an nmap scan of the IP shows that rsync is running on port 873 which is the answer to this question.

Task 2: How many TCP ports are open on the remote host?

• The nmap scan from before also only shows one tcp port open.

Task 3: What is the protocol version used by rsync on the remote machine?

• Run a version nmap scan which gives you a version 31 for rsync.

Task 4: What is the most common command name on Linux to interact with rsync?

• I guessed rsync which was right but a quick google search also gives you the answer.

Task 5: What credentials do you have to pass to rsync in order to use anonymous authentication? anonymous:anonymous, anonymous, None, rsync:rsync

• I took a guess and it was "None"

Task 6: What is the option to only list shares and files on rsync? (No need to include the leading -- characters)

• I browsed the options menu for rsync and found that the option is "list-only".

Submit the Flag:

• Utilizing the following commands to see what shares are available:

rsync --list-only [IP]::

• 
• This shows two shares. Let's take a look at the public shares with this command:

rsync --list-only [IP]::public

• 
• There is a flag file available. Use the following command to download the file:

rsync [IP]::public/flag.txt flag.txt

• This should download to the file to your current working directory.

• cat the file to show the flag as: 72eaf5344ebb84908ae543a719830519