bbaassssiiee/fedora-kickstarts
1
0
Fork 0
forked from srbala/fedora-kickstarts
Code Issues Pull Requests Releases Activity
1,527 Commits 23 Branches 80 Tags 2.2 MiB
7a6f83699b
Commit Graph

18 Commits

Author SHA1 Message Date
Colin Walters
7a6f83699b docker: Don't use a hardcoded root password 
Best practice is to use unprivileged service daemons inside Docker
containers.  But with this hardcoded root password, in the case of
remote code execution, an attacker could trivially escalate their
privileges to root/uid 0.  And while that's uid 0 inside a container,
that's a much larger attack surface.

Instead, do the same thing we're doing for the Cloud images: lock the
root password, create a user to make Anaconda happy, then delete the
user in %post.

https://bugzilla.redhat.com/show_bug.cgi?id=1175997
 2015-05-06 14:37:19 -04:00
Colin Walters
7f06442f8f Revert "Revert "docker-base: Add dnf-yum" it is not yet acked by FESCo" 
Was now agreed http://meetbot.fedoraproject.org/fedora-meeting/2015-03-25/fesco.2015-03-25-18.00.log.html

This reverts commit 9245751e67.
 2015-03-25 15:32:01 -04:00
Dennis Gilmore
9245751e67 Revert "docker-base: Add dnf-yum" it is not yet acked by FESCo 
This reverts commit cd820f7630.
 2015-03-19 20:06:57 -05:00
Colin Walters
cd820f7630 docker-base: Add dnf-yum 
Per the FESCo ticket.
 2015-03-19 18:12:16 -04:00
Colin Walters
fb6bcce1be docker-base: Add some instructions for local builds 2015-03-19 18:12:13 -04:00
Dennis Gilmore
0959478eab Remove the firewall line as it causes anaconda to add firewalld to the 
package set. revert back to fedora-release
 2015-03-16 13:59:47 -05:00
Dennis Gilmore
427657159d pull in fedora-release-cloud to make the docker base image smaller 
during install dnf was pulling in fedora-release-server which added a lot of bloat
 2015-03-11 16:15:10 -05:00
Dennis Gilmore
db8c33a53f switch teh docker base image to dnf 2015-03-07 11:13:34 -06:00
Vaclav Pavlin
8f3beacf10 fedora-docker-base: remove machine-id after installation so that systemd can set it properly 2015-02-06 13:43:59 +01:00
Kushal Das
6bf1907a10 Updates the timezone in docker image to UTC. 
Closes trac #91.
 2015-01-28 14:08:40 +05:30
Vaclav Pavlin
20a9971686 fedora-docker-base: adjust dbus.service to run in a container, mask some units to get rid of fails in boot transaction 2015-01-21 10:17:49 +01:00
Vaclav Pavlin
7c09012288 fedora-docker-base: Add rootfiles and regenerate locale after removal 
https://fedorahosted.org/cloud/ticket/92
 2015-01-21 09:23:04 +01:00
Dennis Gilmore
b947d49831 use link as the device for netwrok in the cloud images 2014-12-12 16:07:54 -08:00
Dennis Gilmore
94283bfff2 Revert "docker: Add fakesystemd to %packages to keep systemd out of base image" 
This reverts commit f42fe5d85a.
 2014-09-10 13:13:48 -05:00
Vaclav Pavlin
cece80a91b docker: Add fakesystemd to %packages to keep systemd out of base image 2014-09-05 08:37:18 -05:00
Matthew Miller
22c7c00a6b use 'cmdline' for text-based install for docker image 2014-09-03 13:20:26 -04:00
Dennis Gilmore
8180b563f1 fix up the options to the bootloader config, make the rootfs smaller. 2014-07-30 02:29:54 -05:00
Vaclav Pavlin
022cc883c0 Add kickstart for Docker base image 2014-07-30 02:29:51 -05:00