From 4f9a9ba2d890b81a30e7ce08cd828411949a4c6e Mon Sep 17 00:00:00 2001 From: Paris Zoumpouloglou Date: Wed, 21 Sep 2016 17:12:44 -0700 Subject: [PATCH] Updated documentation --- contrib/analyze-local-images/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/contrib/analyze-local-images/README.md b/contrib/analyze-local-images/README.md index d76b012f..e445b171 100644 --- a/contrib/analyze-local-images/README.md +++ b/contrib/analyze-local-images/README.md @@ -26,6 +26,6 @@ Or, If you run Clair remotely (ie. boot2docker), analyze-local-images -endpoint "http://:6060" -my-address "" ``` -Clair needs access to the image files. If you run Clair locally, this tool will store the files in the system's temporary folder and Clair will find them there. It means if Clair is running in Docker, the host's temporary folder must be mounted in the Clair's container. If you run Clair remotely, this tool will run a small HTTP server to let Clair downloading them. It listens on the port 9279 and allows a single host: Clair's IP address, extracted from the `-endpoint` parameter. The `my-address` parameters defines the IP address of the HTTP server that Clair will use to download the images. With boot2docker, these parameters would be `-endpoint "http://192.168.99.100:6060" -my-address "192.168.99.1"`. +Clair needs access to the image files. If you run Clair locally, this tool will store the files in the system's temporary folder and Clair will find them there. It means if Clair is running in Docker, the host's temporary folder must be mounted in the Clair's container. You can specify your temporary folder using the `-tempdir` parameter. If you run Clair remotely, this tool will run a small HTTP server to let Clair downloading them. It listens on the port 9279 and allows a single host: Clair's IP address, extracted from the `-endpoint` parameter. The `my-address` parameters defines the IP address of the HTTP server that Clair will use to download the images. With boot2docker, these parameters would be `-endpoint "http://192.168.99.100:6060" -my-address "192.168.99.1"`. As it runs an HTTP server and not an HTTP**S** one, be sure to **not** expose sensitive data and container images.