Closed
Description
I suggest adding support for forwarding the API socket over SSH: docker -H ssh://me@host/var/run/docker.sock. (or in short form: docker -H ssh://host)
i.e. it is a user-friendly equivalent of the following script:
#!/bin/sh
tmp=$(mktemp -d)
chmod 700 $tmp
ssh -N -L $tmp/docker.sock:/var/run/docker.sock -l $USER $HOST &
sshpid=$!
docker -H unix://$tmp/docker.sock $@
status=$?
kill $sshpid
rm -rf $tmp
exit $statusMotivations:
- No mess of setting up TLS properly (
ssh-keygenvs a bunch ofopenssl blah -blah -blah -blah ..., Improve usability for TLS usage and setup #6817) - Single user account management for both regular SSH session and Docker session
- Single login monitoring for both
cc @diogomonica