| vexxhost-bot | a62d931 | 2024-06-01 21:13:59 +0200 | [diff] [blame] | 1 | # SPDX-License-Identifier: Apache-2.0 |
| vexxhost-bot | 4a8f091 | 2024-06-28 22:34:23 +0200 | [diff] [blame] | 2 | # Atmosphere-Rebuild-Time: 2024-06-28T12:14:26Z |
| Mohammed Naser | 3769438 | 2024-04-02 21:11:31 -0400 | [diff] [blame] | 3 | |
| Mohammed Naser | 19c6c8a | 2024-04-18 01:47:10 -0400 | [diff] [blame] | 4 | ARG RELEASE |
| 5 | |
| 6 | FROM registry.atmosphere.dev/library/openstack-runtime:${RELEASE} |
| Mohammed Naser | d28fbaf | 2024-04-08 17:15:00 -0400 | [diff] [blame] | 7 | RUN <<EOF bash -xe |
| 8 | apt-get update -qq |
| 9 | apt-get install -qq -y --no-install-recommends \ |
| 10 | openssh-server \ |
| 11 | openssh-client |
| 12 | EOF |
| 13 | RUN <<EOF bash -xe |
| 14 | chown -R nova: /etc/ssh |
| 15 | mkdir /var/run/sshd |
| 16 | chmod 0755 /var/run/sshd |
| 17 | EOF |
| vexxhost-bot | 410f511 | 2024-06-05 20:52:28 +0200 | [diff] [blame] | 18 | COPY <<EOF /etc/ssh/sshd_config.d/00-hardening.conf |
| 19 | Ciphers aes256-ctr,aes192-ctr |
| 20 | MACs hmac-sha2-512,hmac-sha2-256 |
| 21 | KexAlgorithms diffie-hellman-group-exchange-sha256 |
| 22 | HostKeyAlgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521 |
| 23 | MaxAuthTries 3 |
| 24 | EOF |