看了加密解密的原程序,发现了一些东西:
def mkprofile(email,client_socket):
if ((";" in email)):
return -1
prefix = "comment1=wowsuch%20CBC;userdata="
suffix = ";coment2=%20suchsafe%20very%20encryptwowww"
ptxt = prefix + email + suffix
#client_socket.send ("����"+encrypt_cbc(KEY, IV, ptxt))
return encrypt_cbc(KEY, IV, ptxt,client_socket)
def parse_profile(data,client_socket):
print data,'break 3'
ptxt = decrypt_cbc(KEY, IV, data.encode('hex'),client_socket) # ����
print data, 'break 4'
ptxt = ptxt.replace(" ", "") # ���ܺ�ȥ���ո�
print data,'break 5'
#client_socket.send(bytes(ptxt))
if ";admin=true" in ptxt:
client_socket.send(bytes(FLAG))
#print FLAG