challenge: Remove openntpd: doesn't work
This commit is contained in:
parent
f143d94f9a
commit
f01c51722a
@ -1,4 +1,4 @@
|
|||||||
FROM alpine:3.15 AS mirror
|
FROM alpine:edge AS mirror
|
||||||
|
|
||||||
RUN mkdir -p /out/etc/apk/ && \
|
RUN mkdir -p /out/etc/apk/ && \
|
||||||
cp /etc/apk/repositories /out/etc/apk/ && \
|
cp /etc/apk/repositories /out/etc/apk/ && \
|
||||||
@ -16,6 +16,7 @@ RUN apk add --no-cache --initdb -p /out \
|
|||||||
bind-doc \
|
bind-doc \
|
||||||
bind-tools \
|
bind-tools \
|
||||||
busybox \
|
busybox \
|
||||||
|
busybox-doc \
|
||||||
ca-certificates \
|
ca-certificates \
|
||||||
curl \
|
curl \
|
||||||
curl-doc \
|
curl-doc \
|
||||||
@ -33,12 +34,11 @@ RUN apk add --no-cache --initdb -p /out \
|
|||||||
kbd-bkeymaps \
|
kbd-bkeymaps \
|
||||||
kbd-doc \
|
kbd-doc \
|
||||||
kbd-vlock \
|
kbd-vlock \
|
||||||
|
losetup \
|
||||||
mandoc \
|
mandoc \
|
||||||
man-pages \
|
man-pages \
|
||||||
musl \
|
musl \
|
||||||
nano \
|
nano \
|
||||||
openntpd \
|
|
||||||
openntpd-doc \
|
|
||||||
openssh-client \
|
openssh-client \
|
||||||
openssh-doc \
|
openssh-doc \
|
||||||
openssh-keygen \
|
openssh-keygen \
|
||||||
|
|||||||
32
server.yml
32
server.yml
@ -224,19 +224,19 @@ services:
|
|||||||
- /etc/unbound:/etc/unbound:ro
|
- /etc/unbound:/etc/unbound:ro
|
||||||
|
|
||||||
- name: time
|
- name: time
|
||||||
image: linuxkit/openntpd:d6c36ac367ed26a6eeffd8db78334d9f8041b038
|
image: nemunaire/chrony:83fc8904f9c75f83f762685fd85c1dda877a5ad7
|
||||||
command: ["/bin/sh", "-c", "sleep 10; /usr/sbin/ntpd -d -s" ]
|
command: ["/usr/sbin/chronyd", "-d"]
|
||||||
net: /run/netns/dmz-time
|
net: /run/netns/dmz-time
|
||||||
capabilities:
|
capabilities:
|
||||||
|
- CAP_CHOWN
|
||||||
|
- CAP_DAC_OVERRIDE
|
||||||
- CAP_NET_BIND_SERVICE
|
- CAP_NET_BIND_SERVICE
|
||||||
- CAP_SYS_TIME
|
- CAP_SYS_TIME
|
||||||
- CAP_SYS_CHROOT
|
|
||||||
- CAP_SYS_NICE
|
|
||||||
- CAP_SETUID
|
- CAP_SETUID
|
||||||
- CAP_SETGID
|
- CAP_SETGID
|
||||||
binds:
|
binds:
|
||||||
- /etc/resolv.conf:/etc/resolv.conf:ro
|
- /etc/resolv.conf:/etc/resolv.conf:ro
|
||||||
- /etc/ntpd.conf:/etc/ntpd.conf:ro
|
- /etc/chrony/chrony.conf:/etc/chrony/chrony.conf:ro
|
||||||
|
|
||||||
- name: postfix
|
- name: postfix
|
||||||
image: nemunaire/postfix:6c556b4517ddb596ae0d084ec9783de9eba6534d
|
image: nemunaire/postfix:6c556b4517ddb596ae0d084ec9783de9eba6534d
|
||||||
@ -758,7 +758,27 @@ files:
|
|||||||
contents: |
|
contents: |
|
||||||
listen on *
|
listen on *
|
||||||
#server 10.224.4.2
|
#server 10.224.4.2
|
||||||
server pool.ntp.org
|
server 51.15.180.229
|
||||||
|
server 51.75.141.62
|
||||||
|
server 193.200.43.105
|
||||||
|
#servers fr.pool.ntp.org
|
||||||
|
mode: "0440"
|
||||||
|
|
||||||
|
- path: etc/chrony/chrony.conf
|
||||||
|
contents: |
|
||||||
|
server 51.15.180.229 iburst
|
||||||
|
server 51.75.141.62 iburst
|
||||||
|
server 193.200.43.105 iburst
|
||||||
|
pool fr.pool.ntp.org iburst
|
||||||
|
|
||||||
|
# Record the rate at which the system clock gains/losses time.
|
||||||
|
driftfile /var/lib/chrony/drift
|
||||||
|
|
||||||
|
# In first three updates step the system clock instead of slew
|
||||||
|
# if the adjustment is larger than 1 second.
|
||||||
|
makestep 10 3
|
||||||
|
|
||||||
|
allow all
|
||||||
mode: "0440"
|
mode: "0440"
|
||||||
|
|
||||||
- path: etc/wireguard/wg0.conf
|
- path: etc/wireguard/wg0.conf
|
||||||
|
|||||||
Reference in New Issue
Block a user