github/linuxkit
1
0
Fork 0
mirror of https://github.com/linuxkit/linuxkit.git synced 2025-09-03 07:55:05 +00:00
Code Issues Projects Releases Wiki Activity

pkg/sshd: Remove default bind of /root/.ssh

Browse Source 
Signed-off-by: Michael Aldridge <aldridge.mac@gmail.com>
This commit is contained in:
Michael Aldridge
2022-11-09 01:36:16 -06:00
parent 4f23407838
commit 06aaba5e05
11 changed files with 29 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
docs/metadata.md
View File

@@ -63,6 +63,21 @@ This hierarchy can then be used by individual containers, who can bind
mount the config sub-directory into their namespace where it is
needed.
## A note on SSH
Supported providers will extract public keys from metadata to a file
located at `/run/config/ssh/authorized_keys`. You must bind this path
into the `sshd` namespace in order to make use of these keys. Use a
configuration similar to the one shown below to enable root login
based on keys from the metadata service:
```
- name: sshd
image: linuxkit/sshd:4696ba61c3ec091328e1c14857d77e675802342f
binds.add:
- /run/config/ssh/authorized_keys:/root/.ssh/authorized_keys
```
# Metadata image creation
`linuxkit run` backends accept two options to pass metadata to the VM in a platform specific