This is a docker project for e2guardian.
Find images on dockerhub.
Run the container like this:
docker run -v /usr/local/e2guardian/etc/e2guardian/:${PWD}/config bedag/e2g:<tag>
Make sure that all volumes are owned by nobody(65534).
| Mountpoint | Description |
|---|---|
| /usr/local/e2guardian/var/log/ | log file for e2guardian |
| /usr/local/e2guardian/var/run/ | pid file for e2guardian |
| /usr/local/e2guardian/etc/e2guardian/ | configuration files for e2guardian |
Docker builds are created with bedag/image-build.
musl compiler is used to compile e2guardian.
gcr.io/distroless/cc-debian11 are used because we do not need any common linux binaries, here you can find more information about distroless images. For troubleshooting we recommend to use our -debug images. For more information go to Debug section.
Every Sunday(0 0 * * SUN) we automatically update all supported tags with the current upstream image.
In our production image there are no binaries for troubleshooting. Therefore if u like to troubleshoot you should use our debug image like this:
docker run -it bedag/e2g:latest-debug
docker run -it bedag/e2g:5-debug
In the debug image busybox is installed. You can find all busybox supported commands like this:
busybox --list
Supported tags are:
latest,5,5.4,5.4.3,latest-debug,5-debug,5.4-debug,5.4.3-debug5.3,5.3.5,5.3-debug,5.3.5-debug5.3.4,5.3.4-debug5.3.3,5.3.3-debug5.2,5.2.2,5.2-debug,5.2.2-debug5.1,5.1.2,5.1-debug,5.1.2-debug4,4.1,4.1.5,4-debug,4.1-debug,4.1.5-debug
Security scans are performed via trivy and reported in github. Scans are only performed to the latest tag, which should include all libs vulnerabilities from all possible tags.
We'd love to have you contribute! Please refer to our contribution guidelines for details.
By making a contribution to this project, you agree to and comply with the Developer's Certificate of Origin.