Add security_opt in dockercompose.yml #28
Conversation
|
Ultimately the setting for unconfined is documented on the webtop image this container is built on but I've not seen this issue pop up where I have tested. I am curious what you've ran this with (podman perhaps?) and on what host OS. As this is an issue which appears to be caused by the configuration of the host machine / OS I am not inclined to default the security to being weaker for everyone because some systems/environments have problems. This said, I am 100% in favour of informing people if they have an issue, they can choose to unconfine it so I will look at amending the documentation and the compose files to make this clearer. |
|
Merging in: #30 |
|
That's actually a much better option. I didn't do enough reading and assumed it was a cross platform issue. I'm running Ubuntu Server 20.04.6 LTS and Docker 24.0.0. Thanks for adding this into comments. A great project by the way, I've been following it since the Reddit thread and did think I should put it on github at some point so thank you! |
|
I've been testing mainly on Ubuntu 22.04 / Docker 24.0.7 and Rocky / CentOS Stream 8. Interesting it is the older versions with issues! |
The terminal within the docker image is unable to execute any bash commands due to a privilege issue.
See the following link and a followup here.