StephanSainleger
/
0k-charms
forked from 0k/0k-charms
1
1
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
466 Commits
13 Branches
0 Tags
107 MiB
Tree: 7981ed7dec
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7981ed7dec'
${ noResults }
0k-charms/rsync-backup-target/build/Dockerfile

33 lines
930 B
Raw Normal View History

new: [rsync-backup-target] a key identifier is now required and enforced The key identifier will be used to fence each key in its own folder. Signed-off-by: Valentin Lab <valentin.lab@kalysto.org>
4 years ago
new: [rsync-backup-target] new charm.
8 years ago
new: [rsync-backup-target] add rotated logs for ssh validation and each rsync session Signed-off-by: Valentin Lab <valentin.lab@kalysto.org>
3 years ago
new: [rsync-backup-target] add recover key mechanism This allows to get a one-time credential to have read access on specified backup slot. Signed-off-by: Valentin Lab <valentin.lab@kalysto.org>
3 years ago
new: [rsync-backup-target] a key identifier is now required and enforced The key identifier will be used to fence each key in its own folder. Signed-off-by: Valentin Lab <valentin.lab@kalysto.org>
4 years ago
new: [rsync-backup-target] new charm.
8 years ago
new: [rsync-backup-target] add rotated logs for ssh validation and each rsync session Signed-off-by: Valentin Lab <valentin.lab@kalysto.org>
3 years ago
new: [rsync-backup-target] a key identifier is now required and enforced The key identifier will be used to fence each key in its own folder. Signed-off-by: Valentin Lab <valentin.lab@kalysto.org>
4 years ago
new: [rsync-backup-target] add rotated logs for ssh validation and each rsync session Signed-off-by: Valentin Lab <valentin.lab@kalysto.org>
3 years ago
new: [rsync-backup-target] new charm.
8 years ago
fix: dev: typo !minor Signed-off-by: Valentin Lab <valentin.lab@kalysto.org>
3 years ago
new: [rsync-backup-target] a key identifier is now required and enforced The key identifier will be used to fence each key in its own folder. Signed-off-by: Valentin Lab <valentin.lab@kalysto.org>
4 years ago
new: [rsync-backup-target] new charm.
8 years ago
new: [rsync-backup-target] a key identifier is now required and enforced The key identifier will be used to fence each key in its own folder. Signed-off-by: Valentin Lab <valentin.lab@kalysto.org>
4 years ago
new: [rsync-backup-target] new charm.
8 years ago
  1. FROM alpine:3.9
  3. MAINTAINER Valentin Lab <valentin.lab@kalysto.org>
  5. ## coreutils is for ``date`` support of ``--rfc-3339=seconds`` argument.
  6. ## findutils is for ``find`` support of ``--newermt`` argument.
  7. RUN apk add rsync sudo bash openssh-server coreutils findutils
  8. RUN ssh-keygen -A
  10. ## New user/group rsync/rsync with home dir in /var/lib/rsync
  11. RUN mkdir -p /var/lib/rsync /var/log/rsync && \
  12. addgroup -S rsync && \
  13. adduser -S rsync -h /var/lib/rsync -G rsync && \
  14. chown rsync:rsync /var/lib/rsync /var/log/rsync
  16. ## Without this, account is considered locked by SSH
  17. RUN sed -ri 's/^rsync:!:/rsync:*NP*:/g' /etc/shadow
  19. ## Withouth this, force-command will not run
  20. RUN sed -ri 's%^(rsync.*:)[^:]+$%\1/bin/bash%g' /etc/passwd
  22. ## Allow rsync to access /var/mirror
  23. COPY /src /
  25. RUN chmod 440 /etc/sudoers.d/*
  27. RUN mkdir /var/run/sshd
  29. COPY ./entrypoint.sh /entrypoint.sh
  31. EXPOSE 22
  33. ENTRYPOINT [ "/entrypoint.sh" ]