Docker and userns-remap : using specific user or group permissions for volumes

flavienb · December 4, 2020, 12:44am

Hi,

I am currently testing running Docker with userns-remap and volume mount.

Here is an example of my /etc/subuid file :

username:100000:65536
dockremap:165536:65536

This allows my users to mount any file with --- --- r-- (read for others) file permissions. This leads to security issues : any user on my server can access the files with read permissions.

Is there a way to run the daemon in order that files are mounted relative to the user/group running it ?
So I can mount r-- --- --- or r-- r-- --- files ?

Thanks,

Topic		Replies	Views
Usernsremap causing permissions issues General docker	6	3163	November 25, 2021
User namespace - how to set up for several user General	0	663	April 3, 2018
File system mounted to Docker Container with user-remap General docker	0	574	November 17, 2021
Permission issues with docker run mounted volume General docker	0	789	May 9, 2018
Containers, users, volumes and permissions General docker	3	20695	March 18, 2018

Docker and userns-remap : using specific user or group permissions for volumes

Related topics