SadServers - Linux & DevOps Troubleshooting Interviews

SadServers Troubleshooting Scenarios

Linux & Bash

- Linux commands, Bash scripting
- Systemd
- Networking, DNS
- Storage
- SSH, Firewall
- Libraries
- Cron and more...

Web Servers

- Nginx
- Apache
- HAProxy
- Caddy
- Gunicorn
- uWSGI
- HTTPS/TLS

Databases

- PostgreSQL
- MySQL
- SQLite
- Redis
- ClickHouse
- etcd

Data Processing

- CSV
- JSON
- SQL queries

Docker

- Building images
- Multi-stage builds
- Volumes
- Networks
- Docker Compose

Kubernetes

- kubectl
- Helm
- K8S Roles & Permissions
- Services
- Namespaces
- Deployments, StatefulSets
- ConfigMaps, Secrets

Tooling / Applications

- Git
- Rabbitmq
- Envoy
- Vault
- Harbor
- Prometheus
- Jenkins

Hacking

- Capture the Flag (CTF) Challenges
- Code Vulnerabilities
- Privilege Escalation

Languages

- Python
- Golang
- PHP
- Java
- C

apache bash c caddy clickhouse csv data processing disk volumes dns docker envoy etcd git golang gunicorn hack haproxy harbor hashicorp vault helm java jenkins json kubernetes linux-other mysql nginx php postgres prometheus python rabbitmq redis sql sqlite ssh ssl supervisord systemd

realistic / interviews new pro

Easy

#	Name	Time	Type
1	"Nuuk": More SSH Troubles	10 m	Fix New	"Nuuk": More SSH Troubles Scenario: "Nuuk": More SSH Troubles Level: Easy Type: Fix Access: Email Description: (NOTE: if you are a Pro user, you cannot SSH directly into this VM; click the "Open the Server Terminal" button to use the web browser instead). SSH seems broken in this server. The user admin has an id_ed25519 SSH key pair in their ~/.ssh directory with the public key in ~/.ssh/authorized_keys but `ssh 127.0.0.1` won't work. Test: You can ssh locally, i.e. `ssh admin@127.0.0.1` works. The "Check My Solution" button runs the script /home/admin/agent/check.sh, which you can see and execute. Time to Solve: 10 minutes.
2	"Cairo": Time for a Timer	15 m	Fix New	"Cairo": Time for a Timer Scenario: "Cairo": Time for a Timer Level: Easy Type: Fix Access: Email Description: A critical health check script at /opt/scripts/health.sh is supposed to run every 10 seconds. This check is triggered by a systemd timer. The script's job is to check the local Nginx server and write its status (e.g., "STATUS: OK") to the log file at /var/log/health.log. The log file is not being updated, and it appears the health check is failing. Find out why the health check system is broken and fix it. The check will pass once the /var/log/health.log file is being correctly updated by the timer with a `STATUS: OK` message. Test: The /opt/scripts/health.sh script writes `STATUS: OK` to /var/log/health.log every 10 seconds. The "Check My Solution" button runs the script /home/admin/agent/check.sh, which you can see and execute. Time to Solve: 15 minutes.

Medium

#	Name	Time	Type
3	"Kilifi": Speculative Misallocation!	20 m	Fix New	"Kilifi": Speculative Misallocation! Scenario: "Kilifi": Speculative Misallocation! Level: Medium Type: Fix Access: Email Description: A developer is having trouble deploying an application on a preconfigured cluster. The application kilifi is to be deployed on kubernetes in the default namespace. The application server is deployed by helm. The command they used is helm install kilifi charts/kilifi. The application operates correctly with ~210 MB of memory, but 256 MB is recommended. Swap should remain disabled in the cluster. Debug and help the developer fix any issue with deployment. Test: The kilifi application runs properly; it's Service on :3333/healthz returns "kilifi ready to serve". The "Check My Solution" button runs the script /home/admin/agent/check.sh, which you can see and execute. Time to Solve: 20 minutes.
4	"Solanea": ClickHouse mad house	20 m	Do New	"Solanea": ClickHouse mad house Scenario: "Solanea": ClickHouse mad house Level: Medium Type: Do Access: Email Description: You have a ClickHouse installation CHI running on a Kubernetes cluster and a set of requests (located at ~/data/requests.csv) that you must populate into the http_requests table in the monitoring database (table may not exist in all pod instances). Do this insert in all pod instances of the database. The user and password to connect to the database are default. The keeper pods provide clickhouse replication services. Test: You are able to query the database and see the data: `clickhouse-client -h --password default -q 'SELECT COUNT() FROM monitoring.http_requests'` The "Check My Solution" button runs the script /home/admin/agent/check.sh, which you can see and execute. Time to Solve:* 20 minutes.

Hard

#	Name	Time	Type
5	"Tigoni": Patch and Pray!	20 m	Fix New	"Tigoni": Patch and Pray! Scenario: "Tigoni": Patch and Pray! Level: Hard Type: Fix Access: Email Description: A developer wants to upgrade their stateful application. This application handles their archives/backups. The application tigoni is deployed on kubernetes in the default namespace. The application server is deployed by Helm. The command they used is helm install tigoni charts/tigoni. Upgrade the tigoni application to v2.0.0. The image already exists in the local repository. Debug and help the developer fix any issue with the upgrade. Everytime v1.0.0 is launched the archiving code starts on a clean slate. Test: The tigoni pod with version v2 runs correctly (its endpoint :3000/healthz displays serverVersion:v2) The "Check My Solution" button runs the script /home/admin/agent/check.sh, which you can see and execute. Time to Solve: 20 minutes.
6	"Cabedelo": Harbor full of issues	20 m	Fix New	"Cabedelo": Harbor full of issues Scenario: "Cabedelo": Harbor full of issues Level: Hard Type: Fix Access: Email Description: You need to build and push a docker image without changing the Dockerfile to your company's Harbor registry, which is running at harbor.sadservers.local, with its home directory at /opt/harbor. You have full admin access with admin:Harbor12345 credential. The source code and the Dockerfile are in the ~/app directory. The image name must be harbor.sadservers.local/images/app:1.0.0. It is also expected that the application will be up and running at localhost:5000 in a container named app. IMPORTANT. Do not: 1. Generate new internal certificates 2. Change the Dockerfile 3. Change the /opt/harbor.yml file Test: You are able to pull the application image from Harbor: `docker rmi harbor.sadservers.local/images/app:1.0.0` `docker pull harbor.sadservers.local/images/app:1.0.0` You can access the application; `curl localhost:5000` returns `Hello world!` The "Check My Solution" button runs the script /home/admin/agent/check.sh, which you can see and execute. Time to Solve: 20 minutes.

SadServers Troubleshooting Scenarios

Linux & Bash

Web Servers

Databases

Data Processing

Docker

Kubernetes

Tooling / Applications

Hacking

Languages

Easy

"Nuuk": More SSH Troubles

"Cairo": Time for a Timer

Medium

"Kilifi": Speculative Misallocation!

"Solanea": ClickHouse mad house

Hard

"Tigoni": Patch and Pray!

"Cabedelo": Harbor full of issues

Send Us Feedback

Get Notified