Commit edec258b authored by micah's avatar micah

set the capabilities so openvpn can make tun devices

parent e6927837
Pipeline #31952 failed with stages
in 1 minute and 7 seconds
......@@ -17,5 +17,6 @@ FROM registry.git.autistici.org/ai3/docker/chaperone-base
COPY --from=build /go/bin/shapeshifter-dispatcher /usr/local/bin/shapeshifter-dispatcher
COPY chaperone.d/ /etc/chaperone.d
RUN apt-get -q update && env DEBIAN_FRONTEND=noninteractive apt-get install -y --no-install-recommends \
openvpn netcat-openbsd iptables\
&& rm -rf /var/lib/apt/lists/*
\ No newline at end of file
openvpn libcap2-bin netcat-openbsd iptables\
&& rm -rf /var/lib/apt/lists/*
setcap cap_net_admin=ep /usr/sbin/openvpn
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment