Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Document that h2o k8s images doesn't apply security settings by default #15881

Closed
mn-mikke opened this issue Oct 26, 2023 · 1 comment
Closed

Document that h2o k8s images doesn't apply security settings by default #15881

mn-mikke opened this issue Oct 26, 2023 · 1 comment
Assignees
@hannah-tillman
Labels
docs
Milestone
3.44.0.2

Comments

@mn-mikke
Copy link
Collaborator

mn-mikke commented Oct 26, 2023
edited

Please add note to H2O documentation and to dockerhub that official k8s images doesn't apply any security settings and the default user is ROOT.

if user requires a secured interface with h2o running in the image, it's his/her responsibility to change user and execution command to add security parameters before running the image.

Docker images:

Default command used in docker images:
java -Djava.library.path=/opt/h2oai/h2o-3/xgb_lib_dir -XX:+UseContainerSupport -XX:MaxRAMPercentage=50 -jar /opt/h2oai/h2o-3/h2o.jar
@mn-mikke mn-mikke added the docs label Oct 26, 2023
@mn-mikke mn-mikke added this to the 3.44.0.2 milestone Oct 26, 2023
@hannah-tillman
Copy link
Contributor

@mn-mikke I've never edited anything on dockerhub before -- I don't believe I have access at the moment.

@hannah-tillman hannah-tillman mentioned this issue Oct 26, 2023
Merged
mn-mikke pushed a commit that referenced this issue Nov 6, 2023
@hannah-tillman
[GH-15881] Added K8s security note (#15884)
bfa3504 
* ht/ added security note

* ht/minor update

* ht/updated root and added link to security
@mn-mikke mn-mikke closed this as completed Nov 6, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@hannah-tillman hannah-tillman

Labels
docs
Projects
None yet
Milestone
3.44.0.2
Development

No branches or pull requests
2 participants
@mn-mikke @hannah-tillman