Giter Site home page Giter Site logo

yradunchev / azurecontainersftphowto Goto Github PK

View Code? Open in Web Editor NEW
1.0 2.0 0.0 14 KB

Azure Container Instance sftp container with persistent storage and persistent server keys

License: The Unlicense

Shell 100.00%
azure aci containers sftp persistent-storage persistent-server-keys ssh-authentication

azurecontainersftphowto's Introduction

Azure Container Instance sftp HowTo

Based on MarkusMcNugen Docker container

It's a fork of Atmoz/sftp and runs on top of phusion/baseimage(Ubuntu 16.04 LTS). It has fail2ban added and extremely clever config mechanizm which allows use Azure File Share as persistent storage for server keys, sshd_config, fail2ban jail.conf and user ssh keys.

  1. Check and modify deploysftp_persistentserverkeys_v1.json template.
  2. Create storage account
  3. Create 2 file shares: config and upload
  4. Under config create folders: fail2ban, sshd and userkeys
  5. Under config/sshd create 2 folders: keys and scripts
  6. Upload shares/config/sshd/sshd_config file under config/sshd
  7. Upload shares/config/fail2ban/jail.conf file under config/fail2ban
  8. Upload server keys under config/sshd/keys
  9. Upload shares/config/sshd/scripts/persistentkeys.sh script under config/sshd/scripts
  10. Upload user pub ssh key under config/userkeys - file must be named after username of the user.
  11. Check deploy.txt about instructions on how to deploy your sftp Azure Container Instance using deploysftp_persistentkeys_v1.json template inculded in this repo.

'shares' folder in this repo contains all the shares needed on Azure File Share and represents the entire directory structure described above, use it as reference.

Check and modify deploysftp_persistentserverkeys_v1.json template. This template is based on Azure/azure-quickstart-templates

The script config/sshd/scripts/persistentkeys.sh is used to copy server ssh key from Azure File Share to /etc/ssh and modify keys access permissions to 600.

Included here config/sshd/sshd_config file was modified to point for server keys under /etc/ssh/

Included here config/fail2ban/jail.conf file was modified to disable ssh jail. If you want this enabled - edit this file or do not upload it to your Azure File Share at all. By default it is enabled in the container.

For more detailed instructions and information about MarkusNcNugen docker contaner: https://hub.docker.com/r/markusmcnugen/sftp/

For more detailed instructions and information about Atmoz docker container: https://hub.docker.com/r/atmoz/sftp/

azurecontainersftphowto's People

Contributors

yradunchev avatar

Stargazers

avatar

Watchers

avatar avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.