This repository has been archived by the owner on Sep 30, 2021. It is now read-only.

Security improvement for docker #39

Open

pieterlukasse opened this issue Sep 3, 2018 · 1 comment

Assignees

Labels

Contributor

pieterlukasse commented Sep 3, 2018 •

edited

Loading

@fedde-s mentioned this part of https://docs.docker.com/engine/security/security/#linux-kernel-capabilities

As of Docker 1.10 User Namespaces are supported directly by the docker daemon. This feature allows for the root user in a container to be mapped to a non uid-0 user outside the container, which can help to mitigate the risks of container breakout. This facility is available but not enabled by default.

Would be good to add the right documentation steps (or links to it) in this repo to enable this & automate where possible.

pieterlukasse added the enhancement label

Contributor Author

pieterlukasse commented Jun 26, 2019

@fedde-s maybe this issue can be moved to the cbioportal/cbioportal main repo? Or is it better to move it to our deployment docs?

pieterlukasse assigned Sjoerd-van-Hagen

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.