mirror of
https://github.com/ovh/debian-cis.git
synced 2024-11-25 06:54:29 +01:00
18 lines
595 B
Docker
18 lines
595 B
Docker
|
FROM debian:buster-20181226
|
||
|
|
||
|
RUN groupadd -g 500 secaudit && useradd -u 500 -g 500 -s /bin/bash secaudit && mkdir -m 700 /home/secaudit && chown secaudit:secaudit /home/secaudit
|
||
|
|
||
|
RUN apt-get update && DEBIAN_FRONTEND=noninteractive apt-get install -y bc openssh-server sudo
|
||
|
|
||
|
COPY --chown=500:500 . /opt/debian-cis/
|
||
|
|
||
|
COPY debian/default /etc/default/cis-hardening
|
||
|
RUN sed -i 's#cis-hardening#debian-cis#' /etc/default/cis-hardening
|
||
|
|
||
|
COPY cisharden.sudoers /etc/sudoers.d/secaudit
|
||
|
RUN sed -i 's#cisharden#secaudit#' /etc/sudoers.d/secaudit
|
||
|
|
||
|
|
||
|
ENTRYPOINT ["/opt/debian-cis/tests/launch_tests.sh"]
|
||
|
|