Cyber
/
archlinux-docker
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

README: add note on lsign-key

This commit is contained in:
Santiago Torres 2021-04-28 21:57:12 -04:00
parent 96bb688fb7
commit be068a16d3
No known key found for this signature in database
GPG Key ID: 468F122CE8162295
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
README.md
View File

@ -16,6 +16,15 @@ While the images are regularly kept up to date it is strongly recommended runnin
* `pacman` needs to work out of the box
* All installed packages have to be kept unmodified
>>>
⚠️⚠️⚠️ NOTE: For Security Reasons, these images strip the pacman lsign key.
This is because the same key would be spread to all containers of the same
image, allowing for malicious actors to inject packages (via, for example,
a man-in-the-middle). In order to create an lsign-key run `pacman-key
--init` on the first execution, but be careful to not redistribute that
key.⚠️⚠️⚠️
>>>
## Building your own image
[This repository](https://gitlab.archlinux.org/archlinux/archlinux-docker) contains all scripts and files needed to create a Docker image for Arch Linux.