7 Commits

Author	SHA1	Message	Date
Justin Cormack	933372e45a	Run rngd inside a system container ... - this needs an init as it does not respond to stop signals, so include tini - needs CAP_SYS_ADMIN to write to kernel entropy estimate - set kernel.random.write_wakeup_threshold so that rngd does not need sysctl write access - build patches from Alpine, but statically linked - remove rngd from base image, means we no longer need community repository Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-12-02 14:00:12 +00:00
Riyaz Faizullabhoy	0eefa15623	Add sysctl changes as suggested by lynis ... Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>	2016-12-01 15:41:57 -08:00
Riyaz Faizullabhoy	c492c01c82	Disable kernel modules for cloud editions from moby by checking in ... a modified sysctl init with a cloud config Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>	2016-11-28 15:40:02 -08:00
Justin Cormack	53e367326b	Increase neighbor cache threshold values ... Needed for larger clusters. Needed for https://github.com/docker/editions/issues/377 Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-10-28 22:25:36 +01:00
Justin Cormack	68da2c2a49	Support memory overcommit ... One less complaint in Redis startup. Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-10-05 11:46:58 +02:00
Justin Cormack	ed88a46f97	Increase default fs.aio-max-nr ... As recommended by Oracle for MySQL. Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-09-19 23:38:26 +01:00
Justin Cormack	f4442e388b	Add default sysfs settings ... This uses the new Alpine sysfs.conf service to allow config of sysfs. Default file that sets transparent huge pages to only be used on request to fix #368 Database setting available for user configuration. Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-08-12 14:13:40 +01:00