背景:通过jumpserver的录像和审计功能管理各环境k8s
Dockerfile
FROM goodsmileduck/redis-cli:6.0.4
MAINTAINER zhangzhidao
RUN sed -i 's/dl-cdn.alpinelinux.org/mirrors.aliyun.com/g' /etc/apk/repositories \
&& apk update \
&& apk add --no-cache openssh tzdata bash \
&& cp /usr/share/zoneinfo/Asia/Shanghai /etc/localtime \
&& sed -i "s/#PermitRootLogin.*/PermitRootLogin yes/g" /etc/ssh/sshd_config \
&& ssh-keygen -t dsa -P "" -f /etc/ssh/ssh_host_dsa_key \
&& ssh-keygen -t rsa -P "" -f /etc/ssh/ssh_host_rsa_key \
&& ssh-keygen -t ecdsa -P "" -f /etc/ssh/ssh_host_ecdsa_key \
&& ssh-keygen -t ed25519 -P "" -f /etc/ssh/ssh_host_ed25519_key \
&& echo "root:你的root密码" | chpasswd
COPY redis-cli-dev redis-cli-test redis-cli-uat redis-cli-prod /bin/
EXPOSE 22
CMD ["/usr/sbin/sshd", "-D"]
k8s相关配置参考
dockerfile之kubectl