Add the initial files for the User example

jfahrer · jfahrer · commit e56e28ff63e7 · 2018-05-04T17:32:29.000-07:00
[refs #5f494dd1073b]
diff --git a/user/Dockerfile b/user/Dockerfile
@@ -0,0 +1,9 @@
+FROM alpine:latest
+
+RUN mkdir /data \
+      && touch /data/secrets \
+      && chmod 700 /data/secrets
+
+COPY evil-script.sh /
+
+CMD ["/evil-script.sh"]
diff --git a/user/docker-compose.yml b/user/docker-compose.yml
@@ -0,0 +1,8 @@
+version: "3"
+
+services:
+  app:
+    build:
+      context: .
+    volumes:
+      - ./evil-script.sh:/evil-script.sh
diff --git a/user/evil-script.sh b/user/evil-script.sh
@@ -0,0 +1,5 @@
+#!/bin/sh
+echo This script runs as `whoami`
+echo Trying to gain access to sensitive information in /data/secrets
+cat /data/secrets > /dev/null && echo "Successfully opened the file! Posting stolen secrets on social media platforms..."
+
