Skip to content

fix: enhance SSH security settings and randomize devbox password #35

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 8 commits into from
Aug 13, 2025
Merged

fix: enhance SSH security settings and randomize devbox password #35

merged 8 commits into from
Aug 13, 2025

Conversation

dinoallo
Copy link
Contributor

No description provided.

@dinoallo
fix: enhance SSH security settings and randomize devbox password
6e12e4a 
Signed-off-by: Yun Pan <dinoallo@netc.it>
@dinoallo dinoallo marked this pull request as draft August 13, 2025 11:04
@dinoallo dinoallo requested a review from Copilot August 13, 2025 11:04
Copilot
Copilot AI reviewed Aug 13, 2025
View reviewed changes
Copy link

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

@dinoallo
fix: update base image to debian:12.6 and correct file paths in Docke…
76616c9 
…rfile

Signed-off-by: Yun Pan <dinoallo@netc.it>
@dinoallo
fix: add missing sudo installation in Dockerfile
ec2a5ef 
Signed-off-by: Yun Pan <dinoallo@netc.it>
@dinoallo dinoallo marked this pull request as ready for review August 13, 2025 14:36
@dinoallo dinoallo requested a review from Copilot August 13, 2025 14:36
@dinoallo dinoallo marked this pull request as draft August 13, 2025 14:36
@dinoallo dinoallo marked this pull request as ready for review August 13, 2025 14:38
Copilot

This comment was marked as outdated.

Sign in to view

@dinoallo dinoallo force-pushed the enhancement/devbox-ssh branch from bdf6a83 to ec2a5ef Compare August 13, 2025 15:09
@dinoallo
fix: add missing packages to Dockerfile for enhanced functionality
b68e684 
Signed-off-by: Yun Pan <dinoallo@netc.it>
@dinoallo
fix: update base image to ubuntu:24.04 in Dockerfile
94709c4 
Signed-off-by: Yun Pan <dinoallo@netc.it>
@dinoallo dinoallo requested a review from Copilot August 13, 2025 15:19
Copilot
Copilot AI reviewed Aug 13, 2025
View reviewed changes
Copy link

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR enhances SSH security configuration and improves password security for Docker containers across multiple OS variants. The changes replace default passwords with randomly generated ones and strengthen SSH access controls.

  • Replaces hardcoded "devbox" password with randomly generated passwords using OpenSSL
  • Disables SSH password authentication and restricts root login to key-based authentication only
  • Updates base images to use specific versions instead of latest tags

Reviewed Changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 4 comments.

File Description
OS/ubuntu/24.04/Dockerfile Adds SSH security settings and random password generation
OS/ubuntu-cuda/24.04/Dockerfile Applies same SSH security enhancements with password randomization
OS/debian-ssh/12.6/Dockerfile Updates base image, adds packages, and implements security improvements

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

@dinoallo
fix: switch base image to debian:12.6-slim in Dockerfile
22e7d38 
Signed-off-by: Yun Pan <dinoallo@netc.it>
@dinoallo
fix: correct file paths in Dockerfile for startup script and project …
9161841 
…directory

Signed-off-by: Yun Pan <dinoallo@netc.it>
@dinoallo
fix: remove 'PermitRootLogin yes' from sshd_config for improved security
0472aae 
Signed-off-by: Yun Pan <dinoallo@netc.it>
@zzjin zzjin merged commit a5f75b3 into labring-actions:main Aug 13, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

Copilot code review Copilot Copilot left review comments

@zzjin zzjin zzjin approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@dinoallo @zzjin