update db files to start the ssh service

Author: Shafiya-Heena

db/Dockerfile

@@ -28,6 +28,12 @@ RUN mkdir -p /home/sysadmin/.ssh && \
 # Create privilege separation directory for SSH
 RUN mkdir -p /run/sshd
 
+# Configure SSH for agent forwarding and secure settings
+RUN echo "AllowAgentForwarding yes" >> /etc/ssh/sshd_config && \
+    echo "PermitRootLogin prohibit-password" >> /etc/ssh/sshd_config && \
+    echo "PasswordAuthentication no" >> /etc/ssh/sshd_config && \
+    echo "PubkeyAuthentication yes" >> /etc/ssh/sshd_config
+
 # Expose SSH port
 EXPOSE 22
 EXPOSE 3306
@@ -37,4 +43,4 @@ COPY ./db/startupservice.sh /startupservice.sh
 RUN chmod +x /startupservice.sh
 
 ENTRYPOINT ["/startupservice.sh"]
-CMD ["mariadbd"]
+CMD ["mariadbd"]

db/startupservice.sh

@@ -6,10 +6,10 @@ set -o nounset
 E0="$(printf "\e[0m")"        # reset
 E1="$(printf "\e[1m")"        # bold
 
-# Start SSH service
-/usr/sbin/sshd -D
-
 echo "${E1}Starting mariadb: http://127.0.0.1:3306${E0}"
 
 # Start mariadb in the background
-docker-entrypoint.sh "$@"
+docker-entrypoint.sh "$@"
+
+# Start SSH service
+/usr/sbin/sshd -D

docker-compose.yml

@@ -92,7 +92,6 @@ services:
       dockerfile: bastion/Dockerfile
     networks:
       - dev-backend
-      - dev-frontend
     expose:
       - 22/tcp
     ports:
@@ -115,5 +114,3 @@ networks:
     name: dev-backend
     driver: bridge
 
-  dev-frontend:
-    name: dev-frontend