Handle the case where the postgres connection is successful

2021-03-31 12:13:49 +05:30 · 2021-03-31 12:13:49 +05:30 · 91b858e162
parent ab33db650f
commit 91b858e162
1 changed files with 8 additions and 0 deletions
--- a/monkey/infection_monkey/network/postgresql_finger.py
+++ b/monkey/infection_monkey/network/postgresql_finger.py
@ -45,6 +45,14 @@ class PostgreSQLFinger(HostFinger):
                             sslmode='prefer',
                             connect_timeout=MEDIUM_REQUEST_TIMEOUT)  # don't need to worry about DB name; creds are wrong, won't check

+            # if it comes here, the creds worked
+            # this shouldn't happen since capital letters are not supported in postgres usernames
+            # perhaps the service is a honeypot
+            host.services[self._SCANNED_SERVICE]['communication_encryption_details'] =\
+                f'The PostgreSQL server was unexpectedly accessible with the credentials - ' +\
+                'user: \'{self.CREDS['username']}\' and password: \'{self.CREDS['password']}\'. Is this a honeypot?'
+            return True
+
        except psycopg2.OperationalError as ex:
            # try block will throw an OperationalError since the credentials are wrong, which we then analyze
            try: