Should the docker process be running via the root user? Is that unsafe or unrecommended?

bhupendrajal · December 1, 2018, 2:23am

I am using RHEL 7.6 and Docker version 1.13.1, build 07f3374/1.13.1. I am now responsible for the security of a Docker host. I ran this command:

sudo ps -U root | grep docker

I saw this output:

4143 ? 00:00:00 dockerd-current
4156 ? 00:00:00 docker-containe

Docker was originally installed and configured with sudo commands like “sudo systemctl docker enable” and “sudo systemctl docker start”. Is there anything inherently unsafe about having dockerd-current and docker-containe being started and running with the root user after every server reboot automatically? I tend to think a different user should be starting the Docker service, but I am not a security expert.

fsejoseph · December 4, 2018, 3:55am

Not sure but from the installation steps I think they should be:
Installation commands are all sudo:

Might want to look at the post installed steps

Here is some security info! Keep searching!

Topic		Replies	Views
Is it really wrong to run Docker with root user? General	1	176	March 31, 2024
Why not using root user as default General security	0	758	June 13, 2019
Is it necessary or better to use a dedicated user to run Docker? General	4	3470	January 18, 2024
Practises in Ubuntu 16.04 .3 LTS desktop General	3	917	January 27, 2018
Disadvantages of using the container root user General docker	1	612	March 28, 2024

Should the docker process be running via the root user? Is that unsafe or unrecommended?

Related topics