From 1becf51a5673acf0eab38c2abe568ca23b3da680 Mon Sep 17 00:00:00 2001
From: Nat Lasseter <user@4574.co.uk>
Date: Thu, 20 Feb 2025 09:14:12 +0000
Subject: [5.1] Tickets no longer double encrypted

---
 5.1/kinit.rb | 37 +++++++++++++++++++++++++++++++++++++
 1 file changed, 37 insertions(+)
 create mode 100755 5.1/kinit.rb

(limited to '5.1/kinit.rb')

diff --git a/5.1/kinit.rb b/5.1/kinit.rb
new file mode 100755
index 0000000..9c77eec
--- /dev/null
+++ b/5.1/kinit.rb
@@ -0,0 +1,37 @@
+#!/usr/bin/env ruby
+
+require 'io/console'
+require 'json'
+require 'net/http'
+require 'openssl'
+require 'uri'
+
+uri = URI.parse("http://localhost:4567/login")
+
+header = {'Content-Type': 'text/json'}
+
+print "Username: "; un = gets.strip
+print "Password: "; pw = STDIN.noecho(&:gets).strip; puts
+
+login = {
+  "username": un
+}
+
+http = Net::HTTP.new(uri.host, uri.port)
+request = Net::HTTP::Post.new(uri.request_uri, header)
+request.body = login.to_json
+
+response = http.request(request)
+eanc, tgt = response.body.split(?,)
+eanc = [eanc].pack("H*").unpack("C*").pack("c*")
+
+cipher = OpenSSL::Cipher::AES.new(256, :CBC).decrypt
+cipher.key = Digest::SHA2.digest(pw)
+begin
+  anc = cipher.update(eanc) + cipher.final
+  File.open(".keytab", ?w) do |f|
+    f.puts "_TGS,#{anc},#{tgt}"
+  end
+rescue OpenSSL::Cipher::CipherError
+  puts "Invalid password?"
+end
-- 
cgit v1.2.1