centos-6-1.5.3

CentOS-6 6.7 x86_64 - SCL/EPEL/IUS Repos / Supervisor / OpenSSH.

Release changes

• Updated CentOS-6.7 packages sudo, openssh and yum-plugin-versionlock.
• Fixed broken pipe error returned from get_password function in the sshd_bootstrap script.
• Replaced hard-coded volume configuration volume name with Systemd template with the Environment variable VOLUME_CONFIG_NAME.
• Fixed issue with setting an empty string for the DOCKER_PORT_MAP_TCP_22 value - allowing docker to auto-assign a port number.
• Split out build specific configuration from the Makefile into a default.mk file and renamed make.conf to environment.mk - Makefile should now be more portable between Docker projects.

Download then load the docker image using:

$ xz -dc centos-ssh.centos-6-1.5.3.tar.xz | docker load

centos-7-2.0.2

CentOS-7 7.2.1511 x86_64 - SCL/EPEL/IUS Repos / Supervisor / OpenSSH.

Release changes

• Updated container packages sudo and openssh.

• Updated container's supervisord to 3.2.3.

• Added SSH_AUTOSTART_SSHD && SSH_AUTOSTART_SSHD_BOOTSTRAP to allow the operator or downstream developer to prevent the sshd service and/or sshd-bootstrap from startup.

• Added Makefile to replace build.sh and run.sh helper scripts. See #162 for notes on usage instructions.

• Set Dockerfile environment variable values in a single build step which helps reduce build time.

• Fixed issue with setting SSH USER UID:GID values in systemd installation.

• Fixed issue with setting of SSH_SUDO in Systemd installation.

• Replaced custom awk type filters with docker native commands where possible.

• Fixed issue preventing sshd restarts being possible due to bootstrap lock file dependancy.

• Use exec to run the sshd daemon within the container.

• Use exec to run the docker daemon process from the systemd unit file template.

• Reduced startup time by ~1 second by not requiring supervisord to wait for the sshd service to stay up for the default 1 second.

• Revised systemd installation process, installer script and service template. ssh.pool-1.1.1@2020.service has been replaced by ssh.pool-1@.service and local instances are created of the form ssh.pool-1@1.1, ssh.pool-1@2.1, ssh.pool-1@3.1 etc. which correspond to docker containers named ssh.pool-1.1.1, ssh.pool-1.2.1, ssh.pool-1.3.1 etc. To start 3 systemd managed containers you can simply run:

  $ for i in {1..3}; do sudo env SERVICE_UNIT_LOCAL_ID=$i ./systemd-install.sh; done
  

• The systemd service registration feature is now enabled via an optional service unit template file ssh.pool-1.register@.service.

Download then load the docker image using:

$ xz -dc centos-ssh.centos-6-2.0.2.tar.xz | docker load

centos-6-1.5.2

CentOS-6 6.7 x86_64 - SCL/EPEL/IUS Repos / Supervisor / OpenSSH.

Release changes

• Updated container package openssh.

• Updated container's supervisord to 3.2.3.

• Added SSH_AUTOSTART_SSHD && SSH_AUTOSTART_SSHD_BOOTSTRAP to allow the operator or downstream developer to prevent the sshd service and/or sshd-bootstrap from startup.

• Added Makefile to replace build.sh and run.sh helper scripts. See #162 for notes on usage instructions.

• Set Dockerfile environment variable values in a single build step which helps reduce build time.

• Fixed issue with setting SSH USER UID:GID values in systemd installation.

• Fixed issue with setting of SSH_SUDO in Systemd installation.

• Replaced custom awk type filters with docker native commands where possible.

• Fixed issue preventing sshd restarts being possible due to bootstrap lock file dependancy.

• Use exec to run the sshd daemon within the container.

• Use exec to run the docker daemon process from the systemd unit file template.

• Reduced startup time by ~1 second by not requiring supervisord to wait for the sshd service to stay up for the default 1 second.

• Revised systemd installation process, installer script and service template. ssh.pool-1.1.1@2020.service has been replaced by ssh.pool-1@.service and local instances are created of the form ssh.pool-1@1.1, ssh.pool-1@2.1, ssh.pool-1@3.1 etc. which correspond to docker containers named ssh.pool-1.1.1, ssh.pool-1.2.1, ssh.pool-1.3.1 etc. To start 3 systemd managed containers you can simply run:

  $ for i in {1..3}; do sudo env SERVICE_UNIT_LOCAL_ID=$i ./systemd-install.sh; done
  

• The systemd service registration feature is now enabled via an optional service unit template file ssh.pool-1.register@.service.

Download then load the docker image using:

$ xz -dc centos-ssh.centos-6-1.5.2.tar.xz | docker load

centos-7-2.0.1

CentOS-7 7.2.1511 x86_64 - SCL/EPEL/IUS Repos / Supervisor / OpenSSH.

• Fixed '/dev/stdin: Stale file handle' issue seen when using Ubuntu 14.04.4 LTS or Kitematic 0.10.0 as the docker host.
• Fixed default value for SSH_USER_FORCE_SFTP.
• Removed the delay for output to docker logs.
• Improved bootstrap startup time and included bootstrap time in the SSHD Details log.
• Added a more robust method of triggering the SSHD process; the sshd-boostrap needs to complete with a non-zero exit code to trigger the SSHD process instead of simply waiting for 2 seconds and starting regardless.
• Systemd definition to use specific tag.

Download then load the docker image using:

$ xz -dc centos-ssh.centos-6-2.0.1.tar.xz | docker load

centos-6-1.5.1

CentOS-6 6.7 x86_64 - SCL/EPEL/IUS Repos / Supervisor / OpenSSH.

• Updated README with details for the CentOS-6 and CentOS-7 Dockerfile sources. Use centos-6 tag in examples as latest is now a centos-7 tag.
• Fixed '/dev/stdin: Stale file handle' issue seen when using Ubuntu 14.04.4 LTS or Kitematic 0.10.0 as the docker host.
• Fixed default value for SSH_USER_FORCE_SFTP.
• Removed the delay for output to docker logs.
• Improved bootstrap startup time and included bootstrap time in the SSHD Details log.
• Added a more robust method of triggering the SSHD process; the sshd-boostrap needs to complete with a non-zero exit code to trigger the SSHD process instead of simply waiting for 2 seconds and starting regardless.
• Systemd definition to use specific tag.

Download then load the docker image using:

$ xz -dc centos-ssh.centos-6-1.5.1.tar.xz | docker load

centos-7-2.0.0

CentOS-7 7.2.1511 x86_64 - SCL/EPEL/IUS Repos / Supervisor / OpenSSH.

• Initial release of CentOS-7 version.

Download then load the docker image using:

$ xz -dc centos-ssh.centos-6-2.0.0.tar.xz | docker load

centos-6-1.5.0

CentOS-6 6.7 x86_64 - SCL/EPEL/IUS Repos / Supervisor / OpenSSH.

• Added CentOS SCL repository.
• PAM is now enabled by default.
• Fixed issue with sshd starting before boostrap completion.
• Handle SSH host key generation in the bootstrap - prevents warning log entries.
• Updated method for matching docker images.
• Refactored supervisor configuration to be more modular. Will scan /etc/supervisord.d/ for configuration files matching *.conf or *.ini
• Restructured container scripts file locations.
• Improve user feedback in build and run helper scripts.
• Added option for docker environment variable inheritance using SSH_INHERIT_ENVIRONMENT.
• Added example Systemd unit file and installation script.
• Added option for SSH_USER_PASSWORD to be a SHA-512 hashed string instead of a plaintext password.
• Increase length of auto-generated passwords to 16 characters and redact value from sshd-bootstrap log output unless necessary for sudo access.
• No longer output the root user password in sshd-bootstrap log.
• Display SSH user's public key fingerprints and RSA host key fingerprint in sshd-bootstrap log.
• Added Forced SFTP option with /chroot ChrootDirectory using both SSH_USER_FORCE_SFTP and SSH_CHROOT_DIRECTORY.
• Added feature to set UID and GID of SSH_USER.
• Replaced environment variable SSH_USER_HOME_DIR with SSH_USER_HOME.
• Added feature to allow '%u' to be replaced with SSH_USER in SSH_USER_HOME.

Download then load the docker image using:

$ xz -dc centos-ssh.centos-6-1.5.0.tar.xz | docker load

centos-6-1.4.2

CentOS-6 6.7 x86_64 - EPEL/IUS Repos / OpenSSH / Supervisor.

Base docker image includes: Public key authentication, Automated password generation, supports custom configuration via environment variables or a configuration data volume.

• Updated BASH scripts to try and have a more consistent syntax.
• Updated documentation with revised steps on how to implement the optional configuration "data" volume.
• Removed the run.sh feature to automatically mount the configuration volume on the docker host using a full path and attempt to populate the directory locally. This was problematic since the path on the Docker host might not exist and the feature to automatically create paths when adding a volume mount is deprecated. Using docker cp to upload a directory to the configuration volume is a much simpler approach.
• Refactored run.conf such that only values are in the configuration file and added VOLUME_CONFIG_ENABLED to allow the "optional" configuration volume to be enabled if required instead of using it by default. Most essential settings can be implemented via the use of environment variables now.
• Added VOLUME_CONFIG_NAMED to run.conf to allow the operator to use a named volume and, if set to true the VOLUME_CONFIG_NAME is used for the docker_host_path such that the volume is defined as: -v volume_name:/container_path. The recommended approach is to not define a host path or named volume so that Docker manages the naming by only setting the container path: -v /container_path.
• Added a feature to the run.sh helper script to allow a command to be run as a parameter on running which can be useful if debugging a container that won't start.
• Added a new run.conf variable DOCKER_HOST_PORT_SSH that sets the host port to a default of "2020" which corresponds to the value set in the README.md and in the docker-compose.yml.

Download then load the docker image using:

$ xz -dc centos-ssh.centos-6-1.4.2.tar.xz | docker load

centos-6-1.4.1

CentOS-6 6.7 x86_64 - EPEL/IUS Repos / OpenSSH / Supervisor.

Base docker image includes: Public key authentication, Automated password generation, supports custom configuration via a configuration data volume.

• Added a docker-compose example configuration.
• Use YUM to install IUS and EPEL repositories.
• Updated Supervisord to 3.2.0.
• Removed requirement for Python PIP.
• Added configuration option for a custom sudo command using the environment variable SSH_SUDO.
• Added configuration option for custom SSH public keys (authorized_keys) using the environment variable SSH_AUTHORIZED_KEYS.
• Added configuration option to set the SSH user's default shell using the environment variable SSH_USER_SHELL.
• Fixed an issue with SSH user's home directory not being set correctly if using a path other than home/${SSH_USER}
• Added validation to the SSH_USER values to prevent issues like setting it to "root".

Download then load the docker image using:

$ xz -dc centos-ssh.centos-6-1.4.1.tar.xz | docker load

centos-6-1.4.0

CentOS-6 6.7 x86_64 - EPEL/IUS Repos / OpenSSH / Supervisor.

Base docker image includes: Public key authentication, Automated password generation, supports custom configuration via a configuration data volume.

• Updated to CentOS 6.7

Download then load the docker image using:

$ xz -dc centos-ssh.centos-6-1.4.0.tar.xz | docker load