pommi/docker-jumpbox
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

base: pommi:84df38ba0d4e7a3179d66e87961038b47fdb6588
Branches Tags
pommi:master
...
compare: pommi:13e499a7f6e0e4a80dd2c0c36ac715856fdd8c05
Branches Tags
pommi:master

10 commits
84df38ba0d ... 13e499a7f6

Author SHA1 Message Date
Pim van den Berg
13e499a7f6 docs: fix docker run cmd + add how to quickly login 2025-08-06 15:11:18 +02:00
Pim van den Berg
1bb7df672e feat: upgrade to debian trixie 2025-08-06 14:45:20 +02:00
Pim van den Berg
20f5c653ac feat: install rsync 2025-01-31 18:35:03 +01:00
Pim van den Berg
0b8f55ca05 feat: install unzip 2023-08-02 10:55:33 +02:00
Pim van den Berg
c58f97d2c8 feat: install bind9-dnsutils 2023-03-09 14:01:58 +01:00
Pim van den Berg
5fda9a6457 feat: install less 2023-02-16 14:56:44 +01:00
Pim van den Berg
0d85cf61ae fix(rebuild): the input device is not a TTY 2022-11-19 17:10:31 +01:00
Pim van den Berg
82c406ffa3 feat: add git, man 2022-10-30 11:52:20 +00:00
Pim van den Berg
67cfd6b9a5 fix: configure MTU for docker:dind service to 1492 
https://blog.zespre.com/dind-mtu-size-matters.html
 2022-09-18 15:53:04 +02:00
Pim van den Berg
3c1c0ad41f feat: install sudoers + allow sudo access for created users 2022-09-18 14:50:54 +02:00
5 changed files with 41 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

10
.drone.yml
View file

@ -30,6 +30,11 @@ services:
volumes:
- name: dockersock
path: /var/run
command:
- dockerd-entrypoint.sh
- dockerd
- --host=unix:///var/run/docker.sock
- --mtu=1492
volumes:
- name: dockersock
@ -68,6 +73,11 @@ services:
volumes:
- name: dockersock
path: /var/run
command:
- dockerd-entrypoint.sh
- dockerd
- --host=unix:///var/run/docker.sock
- --mtu=1492
volumes:
- name: dockersock

9
Dockerfile
View file

@ -1,16 +1,23 @@
FROM debian:bookworm-slim
FROM debian:trixie-slim
RUN set -eux && \
apt-get update && \
DEBIAN_FRONTEND=noninteractive apt-get upgrade -y && \
DEBIAN_FRONTEND=noninteractive apt-get install -y --no-install-recommends \
openssh-server \
sudo \
locales \
curl \
telnet \
net-tools \
screen \
vim \
git \
man \
less \
bind9-dnsutils \
unzip \
rsync \
&& \
rm -rf /var/lib/apt/lists/* && \
rm /etc/ssh/ssh_host_*key* && \

23
README.md
View file

@ -26,10 +26,10 @@
$ docker run -it \
--name jumpbox \
-v $(pwd)/jumpbox:/var/lib/jumpbox \
-e "ROOT_AUTHORIZED_KEYS=/var/lib/jumpbox/authorized_keys"
-e "HOSTKEYS=/var/lib/jumpbox/ssh_host_ed25519_key;/var/lib/jumpbox/ssh_host_rsa_key"
-e "USERADD=jumpbox:1000:1000:/bin/bash"
-e "GROUPADD=jumpbox:1000"
-e "ROOT_AUTHORIZED_KEYS=/var/lib/jumpbox/authorized_keys" \
-e "HOSTKEYS=/var/lib/jumpbox/ssh_host_ed25519_key;/var/lib/jumpbox/ssh_host_rsa_key" \
-e "USERADD=jumpbox:1000:1000:/bin/bash" \
-e "GROUPADD=jumpbox:1000" \
-p 1022:22 \
pommib/jumpbox:latest
```
@ -53,3 +53,18 @@ services:
USERADD: jumpbox:1000:1000:/bin/bash
GROUPADD: jumpbox:1000
```
## Login as root
```
$ ssh -l root 127.0.0.1 -p 1022
```
## Login as jumpbox
To login as user jumpbox, make sure `/home/jumpbox` is a mounted volume
containing `.ssh/authorized_keys` containing your public key.
```
$ ssh -l jumpbox 127.0.0.1 -p 1022
```

4
rebuild.sh
View file

@ -1,8 +1,10 @@
#!/bin/sh
set -x
updates_available () {
docker pull "$1"
if test "$(docker run -it --rm "$1" /bin/sh -c 'apt -qqq update && apt -qq list --upgradable')" != ""; then
if test "$(docker run --rm "$1" /bin/sh -c 'apt -qqq update && apt -qq list --upgradable')" != ""; then
return 0
else
return 1

1
setup.sh
View file

@ -46,6 +46,7 @@ while [ "$USERADD" != "$i" ] ;do
USER_SHELL=$j
useradd --home-dir "$BASE_DIR/$USER_NAME" --shell "$USER_SHELL" --uid "$USER_UID" --gid "$USER_GID" "$USER_NAME"
echo "$USER_NAME ALL=(ALL) NOPASSWD:ALL" > "/etc/sudoers.d/$USER_NAME"
done
# HOSTKEYS="/var/lib/jumpbox/ssh_host_ed25519_key;/var/lib/jumpbox/ssh_host_rsa_key"