jlobbes/lumi2
jlobbes/lumi2
1
0
Fork 0
Code Issues 1 Pull Requests Releases 1 Activity

Container code runs as root #3

New Issue
Closed
opened 2022-12-01 00:52:19 +00:00 by jlobbes · 1 comment
jlobbes commented 2022-12-01 00:52:19 +00:00
Owner
Copy Link

The container currently runs its code as root.
A dedicated user should be created inside the container to prevent this.

The container currently runs its code as root. A dedicated user should be created inside the container to prevent this.
jlobbes added the
medium priority
security
 labels 2022-12-01 00:53:50 +00:00
jlobbes added
high priority
 and removed
medium priority
 labels 2022-12-01 01:11:50 +00:00
jlobbes commented 2022-12-01 13:44:24 +00:00
Author
Owner
Copy Link

Fixed in e9dd15d290.

Now, a new, non-root user gets created during the image build process.
The user's UID:GID defaults to 1000:1000, but this can be overridden by setting appropriate build arguments.

This newly created user now runs the WSGI server and application code inside the container.

Fixed in https://git.skyforest.net/jlobbes/lumi2/commit/e9dd15d2903f89d843f487f974cdb5759920723d. Now, a new, non-root user gets created during the image build process. The user's `UID:GID` defaults to `1000:1000`, but this can be overridden by setting appropriate build arguments. This newly created user now runs the WSGI server and application code inside the container.
jlobbes removed the
high priority
 label 2022-12-01 13:44:42 +00:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
bug
Faulty functionality.
documentation
An issue regarding missing, incomplete or incorrect documentation.
easy fix
Shouldn't take long to resolve.
high priority
An unresolved issue of high priority.
improvement
An idea for a new feature or for improvement of an existing one.
low priority
An unresolved issue of low priority.
medium priority
An unresolved issue of medium priority.
security
A security-related issue.
ui/ux
An issue regarding usability and/or cosmetic appearance.
wontfix
This issue will not be addressed.
No Label
security
Milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: jlobbes/lumi2#3
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?