Skip to content

Minimal and secure Alpine Linux based Docker image with Dante SOCKS server

License

Notifications You must be signed in to change notification settings

0x022b/docker-dante

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Dante container image

Docker Build Status Docker Image Version Docker Image Size

Minimal and secure Alpine Linux based Docker image.

Security

init

Tini is used by the container as an init process. It protects the system from process table being filled up, which can prevent the system from spawning any new processes, by reaping zombie processes.

In addtion to reaping zombies Tini also performs signal forwarding.

Firewall

Container uses iptables to configure packet filtering rules in the Linux kernel and therefore CAP_NET_ADMIN capability is required to run the container.

Only local and outbound IPv4 network traffic is allowed.

All IPv6 traffic is blocked.

Configuration

Host user mapping

Host user and group can be mapped to a container by defining HOST_UID and HOST_GID environment variables. If the variables are left undefined the container will execute its command with a random UID/GID combination.

Logging

Container is compatible with docker logs command although logging is disabled by default if the container is started with docker-compose command. To find out more about logging see the command reference.

Debug log

To print out a trace of commands executed by container-entrypoint script, set DEBUG environment variable to any non-null value.

License

This project is licensed under the MIT License.