- From:
openssh - Command: N/A
- Envs: N/A
- Volumes: N/A
- Secrets:
root-pubkey- public key that will be imported intoauthorized_keysfor root, if not present skipped
OpenSSH requires CAP_AUDIT_WRITE which means that --cap-add=AUDIT_WRITE is needed to properly start container.
ping requires CAP_NET_RAW which means that --cap-add=NET_RAW is needed.
podman secret create root-pubkey /home/<USER>/.ssh/id_ed25519.pub
podman run -d --name=rundeck-runner --cap-add=AUDIT_WRITE --cap-add=NET_RAW --secret=root-pubkey,type=mount <REGISTRY_URL>/toolbox:latest