Set correct TimeZone conf
This commit is contained in:
ben
18
Dockerfile
18
Dockerfile
@@ -5,16 +5,22 @@ MAINTAINER BeN
|
|||||||
RUN apt-get clean && apt-get update && apt-get -y upgrade
|
RUN apt-get clean && apt-get update && apt-get -y upgrade
|
||||||
|
|
||||||
RUN apt-get install -y \
|
RUN apt-get install -y \
|
||||||
openssh-server
|
openssh-server \
|
||||||
|
inetutils-syslogd \
|
||||||
|
sudo
|
||||||
|
|
||||||
RUN apt-get clean && rm -rf /var/lib/apt/lists/*
|
RUN apt-get clean && rm -rf /var/lib/apt/lists/*
|
||||||
|
RUN useradd -rm -d /home/ben -s /bin/bash -g 100 -u 1000 ben && \
|
||||||
|
echo "ben ALL=NOPASSWD: ALL" > /etc/sudoers.d/ben
|
||||||
|
|
||||||
RUN useradd -rm -d /home/ben -s /bin/bash -g root -G sudo -u 1000 ben
|
#RUN echo 'ben:ben' | chpasswd
|
||||||
|
|
||||||
RUN echo 'ben:ben' | chpasswd
|
RUN sed -i 's/#PasswordAuthentication yes/PasswordAuthentication no/g' /etc/ssh/sshd_config
|
||||||
|
COPY src/issue.net /etc/issue.net
|
||||||
|
COPY src/secure.conf /etc/ssh/sshd_config.d/secure.conf
|
||||||
|
COPY src/start.sh /start.sh
|
||||||
|
|
||||||
RUN service ssh start
|
RUN service ssh start
|
||||||
|
|
||||||
EXPOSE 22
|
EXPOSE 22
|
||||||
|
#CMD ["/usr/sbin/sshd","-D", "-e"]
|
||||||
CMD ["/usr/sbin/sshd","-D"]
|
CMD ["/start.sh"]
|
||||||
|
|||||||
21
make.conf
Normal file
21
make.conf
Normal file
@@ -0,0 +1,21 @@
|
|||||||
|
IMAGE=openssh
|
||||||
|
|
||||||
|
CONTNAME=$(IMAGE)-1
|
||||||
|
|
||||||
|
DATAVOLUME=/home/_dockervol/openssh
|
||||||
|
|
||||||
|
STARTOPT= \
|
||||||
|
--hostname bastion \
|
||||||
|
-e TZ="Europe/Paris" \
|
||||||
|
-p 22122:22 \
|
||||||
|
-v $(DATAVOLUME)/homeben:/home/ben \
|
||||||
|
-v $(DATAVOLUME)/etcssh/ssh_host_ecdsa_key:/etc/ssh/ssh_host_ecdsa_key \
|
||||||
|
-v $(DATAVOLUME)/etcssh/ssh_host_ecdsa_key.pub:/etc/ssh/ssh_host_ecdsa_key.pub \
|
||||||
|
-v $(DATAVOLUME)/etcssh/ssh_host_ed25519_key:/etc/ssh/ssh_host_ed25519_key \
|
||||||
|
-v $(DATAVOLUME)/etcssh/ssh_host_ed25519_key.pub:/etc/ssh/ssh_host_ed25519_key.pub \
|
||||||
|
-v $(DATAVOLUME)/etcssh/ssh_host_rsa_key:/etc/ssh/ssh_host_rsa_key \
|
||||||
|
-v $(DATAVOLUME)/etcssh/ssh_host_rsa_key.pub:/etc/ssh/ssh_host_rsa_key.pub \
|
||||||
|
-v $(DATAVOLUME)/log/ssh.log:/var/log/ssh.log \
|
||||||
|
-v $(DATAVOLUME)/log/auth.log:/var/log/auth.log \
|
||||||
|
--name $(CONTNAME) \
|
||||||
|
$(IMAGE)
|
||||||
32
makefile
32
makefile
@@ -1,32 +1,13 @@
|
|||||||
#########################################
|
include make.conf
|
||||||
#VARIABLES: CAN BE EDITED
|
|
||||||
#########################################
|
|
||||||
|
|
||||||
CONTAINER=test
|
|
||||||
|
|
||||||
CONTNAME=$(CONTAINER)-1
|
|
||||||
|
|
||||||
DATAVOLUME=$(shell pwd)
|
|
||||||
|
|
||||||
#net=host: mandatory for others containers to connect to mysql
|
|
||||||
STARTOPT=-d \
|
|
||||||
-p 22122:22 \
|
|
||||||
--name $(CONTNAME) \
|
|
||||||
$(CONTAINER)
|
|
||||||
|
|
||||||
|
|
||||||
#########################################
|
|
||||||
# ACTIONS: DO NOT EDIT BEYOND THIS POINT
|
|
||||||
#########################################
|
|
||||||
|
|
||||||
build:
|
build:
|
||||||
docker build -t $(CONTAINER) .
|
docker build -t $(IMAGE) .
|
||||||
|
|
||||||
build-nocache:
|
build-nocache:
|
||||||
docker build --no-cache -t $(CONTAINER) .
|
docker build --no-cache -t $(IMAGE) .
|
||||||
|
|
||||||
run:
|
run:
|
||||||
docker run $(STARTOPT)
|
docker run -d $(STARTOPT)
|
||||||
|
|
||||||
bash:
|
bash:
|
||||||
docker exec -i -t $(CONTNAME) /bin/bash
|
docker exec -i -t $(CONTNAME) /bin/bash
|
||||||
@@ -41,4 +22,7 @@ clear:
|
|||||||
docker rmi -f $(CONTAINER)
|
docker rmi -f $(CONTAINER)
|
||||||
|
|
||||||
install:
|
install:
|
||||||
docker run --restart=always $(STARTOPT)
|
docker run -d --restart=always $(STARTOPT)
|
||||||
|
|
||||||
|
reinstall:
|
||||||
|
make stop;make delete ;make install
|
||||||
|
|||||||
12
src/issue.net
Normal file
12
src/issue.net
Normal file
@@ -0,0 +1,12 @@
|
|||||||
|
* * * * * * * * * * * W A R N I N G * * * * * * * * * * * * *
|
||||||
|
THIS SYSTEM IS RESTRICTED TO AUTHORIZED USERS FOR AUTHORIZED USE
|
||||||
|
ONLY. UNAUTHORIZED ACCESS IS STRICTLY PROHIBITED AND MAY BE
|
||||||
|
PUNISHABLE UNDER THE COMPUTER FRAUD AND ABUSE ACT OF 1986 OR
|
||||||
|
OTHER APPLICABLE LAWS. IF NOT AUTHORIZED TO ACCESS THIS SYSTEM,
|
||||||
|
DISCONNECT NOW. BY CONTINUING, YOU CONSENT TO YOUR KEYSTROKES
|
||||||
|
AND DATA CONTENT BEING MONITORED. ALL PERSONS ARE HEREBY
|
||||||
|
NOTIFIED THAT THE USE OF THIS SYSTEM CONSTITUTES CONSENT TO
|
||||||
|
MONITORING AND AUDITING.
|
||||||
|
################################################################
|
||||||
|
|
||||||
|
|
||||||
7
src/secure.conf
Normal file
7
src/secure.conf
Normal file
@@ -0,0 +1,7 @@
|
|||||||
|
PermitRootLogin no
|
||||||
|
PermitEmptyPasswords no
|
||||||
|
AllowTcpForwarding yes
|
||||||
|
MaxStartups 10:30:60
|
||||||
|
Banner /etc/issue.net
|
||||||
|
AllowUsers ben
|
||||||
|
LogLevel VERBOSE
|
||||||
4
src/start.sh
Executable file
4
src/start.sh
Executable file
@@ -0,0 +1,4 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
|
||||||
|
/usr/sbin/syslogd
|
||||||
|
/usr/sbin/sshd -D
|
||||||
Reference in New Issue
Block a user