communitytools-image2docker-linux icon indicating copy to clipboard operation
communitytools-image2docker-linux copied to clipboard
verified publisher icon docker-archive

User Configuration & Shadow file

Open allingeek opened this issue 8 years ago • 2 comments

We need to lift and shift user configuration and login data. You're taking a risk any time you're pulling critical files like /etc/shadow into an environment where access controls might be subverted. You're taking a further risk by committing those files into a layered image. You're also making it very difficult to change those passwords after the fact because mutations will revert every time you restart a container from a shifted image.

We have to build this component pair because many systems have been specialized with user configuration. User education is going to be really important for this tooling.

allingeek avatar Feb 16 '17 22:02 allingeek

@allingeek is the thinking here that some applications are using PAM for access control? Do you know any applications we'd want to lift/shift that currently do that?

pdevine avatar Jul 22 '17 18:07 pdevine

@pdevine I don't want to see people accidentally push key material of any kind into a public repository.

allingeek avatar Jul 28 '17 05:07 allingeek