If you look into the auth file you can find something that looks like a flag:

```
sqlite> select * from user_privileges;
2|VBGEDOL{34WX_Q33UZ_13T0R_5MY33UZ}
1|basic_privs
1|interact
1|worldedit
1|shout
```

Looks like some kind of substitution cipher which doesn't follow any simple rule.

The first word in the flag looks like `34SY` (commonly found in CTF flags) so it can be assumed that digits are presented as-is.

With some trials and errors we can guess the final flag:

`DARKCTF{34SY_P33ZY_13M0N_5QU33ZY}`

(Or maybe it was `DARKCTF{34ZY_P33ZY_13M0N_5QU33ZY}`, I didn't really remember :P)

Update: The flag is `DARKCTF{34ZY_P33ZY_13M0N_5QU33ZY}` and the cipher used is Playfair.
You can see how digits messed up the whole cryptosystem :P