Novos/salt-statetree
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

podman - npm: disable privileged ports

Browse source
This commit is contained in:
LinuxSquare 2023-10-27 17:22:14 +02:00
parent 6e020a8333
commit 1d83a8c9e7
2 changed files with 1 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
podman/containers/files/files_unprivileged_ports.jinja
View file

@ -1,3 +0,0 @@
{%- for port in UNPRIVILEGED_PORTS %}
net.ipv4.ip_unprivileged_port_start={{ port }}
{%- endfor %}

5
podman/containers/npm.sls
View file

@ -42,10 +42,7 @@ podman_containers_npm_letsencrypt_dir:
podman_containers_npm_privileged_ports: podman_containers_npm_privileged_ports:
file.managed: file.managed:
- name: /etc/sysctl.d/podman.conf - name: /etc/sysctl.d/podman.conf
- source: salt://{{ tpldir }}/files/files_unprivileged_ports.jinja - text: net.ipv4.ip_unprivileged_port_start = 0
- template: jinja
- context:
UNPRIVILEGED_PORTS: [22, 80, 81, 443]
- user: root - user: root
- group: root - group: root
- mode: '0644' - mode: '0644'