Skip to content

Commit

Permalink
Browse files Browse the repository at this point in the history
Update compose to use static ssh keys
This way rebuilding the docker container doesn't destroy its identity.
By copying the keys when the container starts, they won't be exposed through backing them into the image.
  • Loading branch information
david committed Sep 12, 2020
1 parent 244858c commit 4c4683a
Show file tree
Hide file tree
Showing 2 changed files with 5 additions and 1 deletion.
4 changes: 4 additions & 0 deletions bin/update-compose
@@ -0,0 +1,4 @@
#!/bin/bash

docker pull debian:testing
docker-compose up -d --force-recreate --build
2 changes: 1 addition & 1 deletion cheesycompose/Dockerfile
Expand Up @@ -38,4 +38,4 @@ VOLUME [ "/sys/fs/cgroup" ]

STOPSIGNAL SIGRTMIN+3

CMD ["/lib/systemd/systemd"]
CMD ["sh", "-e", "-c", "cp -av /srv/cheesy.at/secrets/ssh/* /etc/ssh/; echo starting systemd; exec /lib/systemd/systemd"]

0 comments on commit 4c4683a

Please sign in to comment.