🤖 docker_bridge 🐳
This is a small program for translating http requests to the docker API.
Its purpose is to protect 🛡 the OS from vertical privilege escalation vulnerabilities.
The program also limits the pool of queries and methods that can be used. Only GET requests are available.
Created for use with zabbix http-agent since zabbix-agent2 requires elevated privileges to monitor docker metrics.
✅List of allowed requests✅
"/docker_containers_all": "containers/json?all=true",
"/docker_containers_not_all": "containers/json?all=false",
"/docker_data_usage":"system/df",
"/docker_images": "images/json",
"/docker_info": "info",
"/docker_ping": "_ping",
"/docker_container_info/{container_id}": "/containers/{container_id}/json",
"/docker_container_stats/{container_id}": "/containers/{container_id}/stats?stream=false"
🔗Example of use after installation🔗
curl http://yours-domain.com:10070/docker_ping
⚙️OS Requirements⚙️
- systemd (if not, the binary file is posted)
- glibc>=2.17 (ubuntu 13.04, redhat 7)