Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Privileged and Capabilities in docker-compose file #23

Closed
siredmar opened this issue Feb 1, 2020 · 1 comment
Closed

Privileged and Capabilities in docker-compose file #23

siredmar opened this issue Feb 1, 2020 · 1 comment

Comments

@siredmar
Copy link

siredmar commented Feb 1, 2020

Please check your docker-compose file:

ct-Smart-Home/docker-compose.yml

Lines 13 to 16 in 1e37ed3

privileged: true
cap_add:
- SYS_ADMIN
- NET_ADMIN

It seems you have some redundant settings. I also recommend not running the container privileged unless really, really needed. In most cases you can achieve the wanted effect by adding some capabilities and mounts for your specific needs.
merlinschumacher added a commit that referenced this issue Jun 23, 2020
@merlinschumacher
cleaner compose file; zigbee device autodetection; cleaned up privile…
fad8ead 
…dges (fixes #23)
merlinschumacher added a commit that referenced this issue Jun 23, 2020
@merlinschumacher
node red doesn't run priviledged anymor fixes #23
3012517
@merlinschumacher
Copy link
Contributor

The container now runs non priviledged. Thanks for the tipp!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@siredmar @merlinschumacher