Move permissions for ssl to be run as root

71-apt-cacher-ng

@@ -3,5 +3,6 @@
 # use apt-cacher in your image build out (and the 
 # Subsequent running container.
 
-Acquire::http { Proxy "http://192.168.2.9:3142"; };
+#Acquire::http { Proxy "http://192.168.2.9:3142"; };
+#Acquire::http { Proxy "http://192.168.0.131:3142"; };
 #Acquire::http { Proxy "http://192.168.1.13:3142"; };

perms_wrapper.sh

@@ -1,7 +1,15 @@
 #!/bin/bash
 
+# /etc/ssl/private can't be accessed from within container for some reason
+# (@andrewgodwin says it's something AUFS related)  - taken from https://github.com/orchardup/docker-postgresql/blob/master/Dockerfile
+cp -r /etc/ssl /tmp/ssl-copy/
+chmod -R 0700 /etc/ssl
+chown -R postgres /tmp/ssl-copy
+rm -r /etc/ssl
+mv /tmp/ssl-copy /etc/ssl
+
 # needs to be done as root:
 chown -R postgres:postgres /var/lib/postgresql
 
 # everything else needs to be done as non-root (i.e. postgres)
-sudo -u postgres /start-postgis.sh
+sudo -u postgres /start-postgis.sh

setup.sh

@@ -3,14 +3,6 @@
 # These tasks are run as root
 CONF="/etc/postgresql/9.3/main/postgresql.conf"
 
-# /etc/ssl/private can't be accessed from within container for some reason
-# (@andrewgodwin says it's something AUFS related)  - taken from https://github.com/orchardup/docker-postgresql/blob/master/Dockerfile
-cp -r /etc/ssl /tmp/ssl-copy/
-chmod -R 0700 /etc/ssl
-chown -R postgres /tmp/ssl-copy
-rm -r /etc/ssl
-mv /tmp/ssl-copy /etc/ssl
-
 # Restrict subnet to docker private network
 echo "host    all             all             172.17.0.0/16               md5" >> /etc/postgresql/9.3/main/pg_hba.conf
 # Listen on all ip addresses