Security note about docker socket mount
This commit is contained in:
parent
d90a67539f
commit
6cb2ffa736
|
@ -23,6 +23,9 @@ checkNewVersion = false
|
||||||
|
|
||||||
[docker]
|
[docker]
|
||||||
# Make sure you mount this as readonly
|
# Make sure you mount this as readonly
|
||||||
|
# NOTE: readonly doesn't reduce the risk because
|
||||||
|
# it is a unix socket - it doesn't automatically translate
|
||||||
|
# read|write perms to GET/POST requests.
|
||||||
endpoint = "unix:///var/run/docker.sock"
|
endpoint = "unix:///var/run/docker.sock"
|
||||||
domain = "bb8.fun"
|
domain = "bb8.fun"
|
||||||
watch = true
|
watch = true
|
||||||
|
|
Loading…
Reference in New Issue