diff options
Diffstat (limited to 'Dockerfile')
| -rw-r--r-- | Dockerfile | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/Dockerfile b/Dockerfile new file mode 100644 index 0000000..75decec --- /dev/null +++ b/Dockerfile @@ -0,0 +1,21 @@ +FROM python:3-slim + +WORKDIR / + +# Update the image to remediate any vulnerabilities. +RUN apt clean && apt update && apt -y dist-upgrade && apt clean && rm -rf /var/lib/apt/lists/* + +# Remove suid & sgid bits from all files. +RUN find / -xdev -perm /6000 -exec chmod ug-s {} \; 2> /dev/null || true + +# Copy the ssh-audit code. +COPY ssh-audit.py . +COPY src/ . + +# Allow listening on 2222/tcp for client auditing. +EXPOSE 2222 + +# Drop root privileges. +USER nobody:nogroup + +ENTRYPOINT ["python3", "/ssh-audit.py"] |