fic/server
2
0
Fork 0
Code Issues Pull Requests 6 Releases Wiki Activity

fickit: Disable dhcp/dns services

Browse Source
This commit is contained in:
Pierre-Olivier Mercier 2021-09-05 12:40:09 +02:00
parent 9367d99a05
commit 86e15bd80b
1 changed files with 24 additions and 17 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

41
fickit-frontend.yml
View File

@ -204,29 +204,36 @@ services:
- /var/lib/fic/submissions - /var/lib/fic/submissions
- /var/lib/fic/teams - /var/lib/fic/teams
- name: dhcp-server # - name: dhcp-server
image: joebiellik/dhcpd # image: joebiellik/dhcpd
binds: # binds:
- /etc/dhcp/dhcpd.conf:/etc/dhcp/dhcpd.conf:ro # - /etc/dhcp/dhcpd.conf:/etc/dhcp/dhcpd.conf:ro
capabilities: # capabilities:
- CAP_NET_BIND_SERVICE # - CAP_NET_BIND_SERVICE
- CAP_NET_RAW # - CAP_NET_RAW
- CAP_DAC_OVERRIDE # - CAP_DAC_OVERRIDE
net: /run/netns/nginx # net: /run/netns/nginx
pid: new # pid: new
ipc: new # ipc: new
uts: new # uts: new
- name: dns-server # - name: dns-server
image: nemunaire/unbound:a7c841a408e5e3cc27b920cd70c806093f04687c # image: nemunaire/unbound:a7c841a408e5e3cc27b920cd70c806093f04687c
binds: # binds:
- /etc/unbound/unbound.d:/etc/unbound/unbound.d:ro # - /etc/unbound/unbound.d:/etc/unbound/unbound.d:ro
net: /run/netns/nginx # net: /run/netns/nginx
files: files:
- path: etc/init.d/015-setup-sshd - path: etc/init.d/015-setup-sshd
source: configs/sshd-setup.sh source: configs/sshd-setup.sh
mode: "0555" mode: "0555"
- path: etc/init.d/016-copy-dex-config
contents: |
#!/bin/sh
[ -f /var/lib/fic/dex-config.yaml ] || {
cp /etc/dex/config.auth.yaml /var/lib/fic/dex-config.yaml
}
mode: "0555"
- path: /containers/onboot/000-sysctl/rootfs/etc/sysctl.d/01-fic.conf - path: /containers/onboot/000-sysctl/rootfs/etc/sysctl.d/01-fic.conf
source: configs/sysctl-frontend.conf source: configs/sysctl-frontend.conf