In following up with your first challenge, this is the next level to get your feet wet on online hacking. This time will be a little tougher but not so much. So let’s start with HackThisSite Basic Mission – Level 2.
Make sure you logged into the site, and access Level 2 on Basic Mission.
This is the challenge we need to deal with.
Again, let me write down the question in text.
Level 2 Network Security Sam set up a password protection script. He made it load the real password from an unencrypted text file and compare it to the password the user enters. However, he neglected to upload the password file...
The question script sounds pretty funny, right?
The purpose of hardening security is good, but his action is a little weird, “he neglected to upload the password file“.
So it looks like there is nothing to compare with actual user password submitted from the form.
To verify his mistake, you can click on Submit button without input anything in password field. So if there is any error during the process, we can trace further on.
Otherwise, we may have luck to pass this level.
and….by a click…
Wow! That’s all done through a magical button click.
By a mistake of the security guy, we bypassed this Level 2 on Basic Mission.
Well, since it is about “Basic Mission”, so we can get this level easily.
Anyway, congratulation! You passed HackThisSite Basic Mission Level 2 Challenge!.
Don’t ever make this mistake on your system!
Enjoy and prepare for the next level!