Add Non-root User

Question

Add Non-root User

hutson opened this issue 8 years ago · 5 comments

Docker's Security guide has a Conclusions section that recommends, for added security, configuring a non-root user.

For example, all node images have a node user that can be accessed by passing --user node to docker run.

Some background on Docker security best practices - https://groups.google.com/forum/#!msg/docker-user/e9RkC4y-21E/JOZF8H-PfYsJ

Answer 1 · 2017-12-05T20:01:47.000Z

That is a good idea! Would you be able to create a little PR implementing this @hbetts ?

Answer 2 · 2017-12-21T23:08:46.000Z

@jojomi I've made some modifications and added non-root user as well. I've got the changes on GitLab, what's the best method to get these to you? Should I fork it here on GH and then request a pull?

Answer 3 · 2017-12-21T23:54:56.000Z

@avinashmx would you mind submitting a pull request to bring in your changes?

Sorry I didn't get a chance to submit a pull request with a non-root user. Got tied up with other things.

I'd like to see what additional changes you came up with @avinashmx, as I'm trying to learn best practices around Docker image configurations.

Answer 4 · 2017-12-22T20:14:46.000Z

@hbetts Sure, let me fork it on GH, and then merge in changes and submit the pull request. Unfortunately, it's a little muddied as I made a change to allow creation of a new installation as well.

Answer 5 · 2017-12-23T15:32:02.000Z

I'll gladly have a look :)