Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

security in docker : use an application user instead of root #42

Closed
tokyowizard opened this issue Mar 3, 2021 · 1 comment
Closed

security in docker : use an application user instead of root #42

tokyowizard opened this issue Mar 3, 2021 · 1 comment
Labels
enhancement New feature or request

Comments

@tokyowizard
Copy link

This issue is an enhancement request. Could the image run as a non-root user?

Currently, the image runs as the root user.

$ docker run --rm -it --entrypoint=/bin/sh vuls/go-exploitdb:0.1.4
/vuls # id
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel),11(floppy),20(dialout),26(tape),27(video)
/vuls #

If the user is a non-root user, we would be able to follow best practices of running as a non-root user (e.g. [1] [2]) and add proper restrictions in Pod Security Policies.
@tokyowizard tokyowizard added the enhancement New feature or request label Mar 3, 2021
@shino
Copy link
Contributor

shino commented Sep 24, 2024

This issue was closed because it has been inactive.

@shino shino closed this as completed Sep 24, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@shino @tokyowizard