Univention Bugzilla – Bug 42284
Provide cryptographic signatures for UCS images hosted on Docker hub
Last modified: 2020-07-03 20:55:43 CEST
Ticket#2016090521000549: A customer asked for a way to verify the authenticity and integrity of the UCS Docker images hosted on https://hub.docker.com/u/univention/ . The simple idea was that a univention controlled website should provide a signature (e.g. gpg) of the sha256 hash of the images (docker push shows the sha256 digest). docker pull can retrieve images by the hash: docker pull someimage@sha256:d149ab53f8718e987c3a3024bb8aa0e2caadf6c0328f1d9d850b2a2a67f2819a see https://docs.docker.com/v1.10/engine/security/trust/content_trust/
This issue has been filed against UCS 4.2. UCS 4.2 is out of maintenance and many UCS components have changed in later releases. Thus, this issue is now being closed. If this issue still occurs in newer UCS versions, please use "Clone this bug" or reopen it and update the UCS version. In this case please provide detailed information on how this issue is affecting you.