konsthol/SecDep
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

:(:(

Browse Source
This commit is contained in:
konsthol
2023-09-05 05:23:12 +03:00
parent 8edb5737bc
commit ad93c64862
1 changed files with 2 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
harden
View File

@@ -338,9 +338,7 @@ EOF
"path": "/home/secdep/bin/runsc", "path": "/home/secdep/bin/runsc",
"runtimeArgs": [ "runtimeArgs": [
"--network=host", "--network=host",
"--ignore-cgroups=true", "--ignore-cgroups=true"
"--overlay2 all:memory",
"--rootless"
] ]
} }
} }
@@ -502,7 +500,7 @@ function main {
printf "%s" "Fail2ban configured" printf "%s" "Fail2ban configured"
# Call the dockerInit function with the arguments passed to the script # Call the dockerInit function with the arguments passed to the script
dockerInit "$@" || exit 1 # Initialize docker and exit if it fails dockerInit "$@" || exit 1 # Initialize docker and exit if it fails
printf "%s" "Docker Rootless, docker-compose and gVisor installed" printf "%s" "Docker Rootless, docker-compose and gVisor installed and configured"
printf "%s" "Portainer along with any specified docker images from the command line or a docker-compose.yml file installed" printf "%s" "Portainer along with any specified docker images from the command line or a docker-compose.yml file installed"
enableServices || exit 1 # Enable the services that need to be restarted and the firewall enableServices || exit 1 # Enable the services that need to be restarted and the firewall
printf "%s" "Services restarted and firewall enabled" printf "%s" "Services restarted and firewall enabled"