[
    {
        "description": "execute ~/test and get the output",
        "create": {
            "init": {
                "code": "useradd -s /bin/bash -d /home/jack -m jack && cd /home/jack && echo 'echo a3b0c7' > test && chmod 000 test && chown jack test &&su - jack"
            }
        },
        "evaluation": {
            "match": "a3b0c7"
        },
        "example": {
            "code": "chmod 777 test && ~/test"
        },
        "labels": ["permission", "user"]
    },
    {
        "description": "make /testfile readable to jack, bill and tom, but not george",
        "create": {
            "init": {
                "code": "echo 'test' > /testfile && useradd -s /bin/bash -d /home/jack -m jack && useradd -s /bin/bash -d /home/bill -m bill && useradd -s /bin/bash -d /home/tom -m tom && useradd -s /bin/bash -d /home/george -m george"
            }
        },
        "evaluation": {
            "check": {
                "code": "(runuser -l jack -c 'cat /testfile' && runuser -l bill -c 'cat /testfile' && runuser -l tom -c 'cat /testfile' && runuser -l george -c 'cat /testfile') | if [ \"$(cat -)\" = \"test\"$'\\n'\"test\"$'\\n'\"test\" ]; then exit 0; else exit 1; fi"
            },
            "example": {
                "code": "groupadd tmp && usermod -a -G tmp jack && usermod -a -G tmp bill && usermod -a -G tmp tom && chmod 640 /testfile && chgrp tmp /testfile"
            }
        },
        "labels": ["permission", "user"]
    },
    {
        "description": "Why can't I use `cd ~`? Help me fix it.",
        "start": "useradd -s /bin/bash -d /home/hansen -m hansen && chmod -x /home/hansen",
        "evaluation": {
            "check": {
                "code": "exec su - hansen\ncd ~ && exit 0 || exit 1"
            },
            "example": {
                "code": "chmod 750 ~"
            }
        },
        "labels": ["permission", "user"]
    },
    {
        "description": "There's a vulnerability in the system (Hint: related to SUID). Find it and fix it.",
        "create": {
            "init": {
                "code": "chmod u+s /usr/bin/find"
            }
        },
        "evaluation": {
            "check": {
                "code": "ls -l /usr/bin/find | awk '{if ($1~/^-..s/) { exit 1; } else { exit 0; }}'"
            },
            "example": {
                "code": "chmod u-s /usr/bin/find"
            }
        },
        "labels": ["permission"]
    },
    {
        "description": "set all files in ~/videos to be 660, and all directories(include ~/videos) to be 750",
        "create": {
            "init": {
                "code": "cd ~ && mkdir videos && cd videos && mkdir old && mkdir new && touch vid1 && touch vid2 && touch new/a && touch new/b && touch old/c"
            }
        },
        "evaluation": {
            "check": {
                "code": "(find ~/videos -type f ! -perm 660 -ls && find ~/videos -type d ! -perm 750 -ls) | if [ \"$(cat -)\" = \"\" ]; then exit 0; else exit 1; fi"
            },
            "example": {
                "code": "find ~/videos -type f -exec chmod 660 {} + && find ~/videos -type d -exec chmod 750 {} +"
            }
        },
        "labels": ["permission"]
    },
    {
        "description": "ahh! Why can't I use sudo??? Is it because the WiFi I'm using? fix it!!!",
        "create": {
            "init": {
                "code": "apt update && apt install sudo -y && echo '' > /etc/sudoers"
            }
        },
        "evaluation": {
            "check": {
                "code": "sudo whoami | if [ \"$(cat -)\" = \"root\" ]; then exit 0; else exit 1; fi"
            },
            "example": {
                "code": "echo 'Defaults        env_reset\nDefaults        mail_badpass\nDefaults        secure_path=\"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin\"\nroot    ALL=(ALL:ALL) ALL\n%admin ALL=(ALL) ALL\n%sudo   ALL=(ALL:ALL) ALL' > /etc/sudoers"
            }
        },
        "labels": ["permission"]
    },
    {
        "description": "Suppose you have a directory called /data that contains sensitive files that should only be accessible to members of the group \"dataaccess\". Ensure that new files and directories created in this directory inherit the group ownership, and that users can only delete files and directories that they own",
        "create": {
            "init": {
                "code": "mkdir /data"
            }
        },
        "evaluation": {
            "check": {
                "code": "ls -l / | grep data | awk '{if ($1~/^d.....s..t/) { exit 0; } else { exit 1; } }'"
            },
            "example": {
                "code": "chmod g+s /data && chmod +t /data"
            }
        },
        "labels": ["permission"]
    },
    {
        "description": "tom have some videos at his home, you have to secretly add 'haha, mike is here!'(without quote) to the end of the video with the smallest lexicographical order and don't let tom know this by checking properties of files or directories",
        "create": {
            "init": {
                "code": "useradd -s /bin/bash -d /home/tom -m tom && cd /home/tom && mkdir videos && cd videos && mkdir old && mkdir new && touch vid1 && touch vid2 && touch new/a && touch new/b && touch old/c && find ~/videos -type f -exec chmod 600 {} + && find ~/videos -type d -exec chmod 700 {} + && find . -exec touch -t 202206101200 {} + && useradd -s /bin/bash -d /home/mike -m mike && echo 'tom ALL=(ALL) NOPASSWD:ALL' >> /etc/sudoers && cd /home/mike && su - mike"
            }
        },
        "evaluation": {
            "check": {
                "code": "sudo ls -l -R -a /home/tom/videos | awk '{if (!/^[drwx------|-rw-------]/) { exit 1; } else { exit 0; }}' && (touch -t 202206101200 /tmp/ref_file && sudo find /home/tom/videos ! -type d -newer /tmp/ref_file -print -quit && find /home/tom/videos ! -type d -newer /tmp/ref_file -print -quit) | if [ \"$(cat -)\" = \"\" ]; then exit 0; else exit 1; fi"
            },
            "example": {
                "code": "sudo echo 'haha, mike is here!' >> /home/tom/videos/new/a && cd /home && sudo find . -exec touch -t 202206101200 {} +"
            }
        },
        "labels": ["permission"]
    },
    {
        "description": "Why can't I use sudo?? fix it.",
        "create": {
            "init": {
                "code": "apt remove sudo"
            }
        },
        "evaluation": {
            "check": {
                "code": "sudo whoami | if [ \"$(cat -)\" = \"root\" ]; then exit 0; else exit 1; fi"
            },
            "example": {
                "code": "apt update && apt install sudo -y"
            }
        },
        "labels": ["permission"]
    }
]
