/docker-ssh-scan

a smaller version of mozilla/ssh_scan

Primary LanguageShellMozilla Public License 2.0MPL-2.0

ssh_scan

This git repo provides mozilla/ssh_scan in a Docker container.

Project: https://github.com/jumanjihouse/docker-ssh-scan
Docker image: https://registry.hub.docker.com/u/jumanjiman/ssh_scan/

Download size  Version  Source code  Docker Registry  CircleCI

How-to

Build and test

We use circleci to build, test, and publish the image to Docker hub.

ci/build
ci/test

Pull an already-built image

docker pull jumanjiman/ssh_scan

Tags

We provide multiple tags:

  • optimistic: jumanjiman/ssh_scan:latest
  • pessimistic: jumanjiman/ssh_scan:<version>_<builddate>_git_<hash>

Example:

jumanjiman/ssh_scan:0.0.21-14-g36f8a92_20170608T1421_git_7361b44
                    ^^^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^     ^^^^^^^
                            |                |              |
                            |                |              +--> hash from this git repo
                            |                |
                            |                +-----------------> build date and time
                            |
                            +----------------------------------> version of ssh_scan

Labels

Each built image has labels that generally follow http://label-schema.org/

We add a label, ci-build-url, that is not currently part of the schema. This extra label provides a permanent link to the CI build for the image.

View the ci-build-url label on a built image:

docker inspect \
  -f '{{ index .Config.Labels "io.github.jumanjiman.ci-build-url" }}' \
  jumanjiman/ssh_scan

Query all the labels inside a built image:

docker inspect jumanjiman/ssh_scan | jq -M '.[].Config.Labels'

Run

Interactively:

docker run --rm -it \
--read-only \
--cap-drop all \
jumanjiman/ssh_scan --target <some_ip> --port <some_port> --policy /etc/ssh_scan/stribika.yml