Why not using root user as default

uilianries · June 13, 2019, 5:22pm

Hi!

I’ve reading two topics about Docker security:

I understand for Docker image which are apps, the root user is not safe, so the best option is creating a non-root user to run my service.

But what about development images? Docker images which are used when I need to build applications, not to run services?

Currently I’m using non-root user for development images, but I see few advantages when using it. For instance, when I want to use my Docker image in MS Azure, running as Container jobs, it requires a root user. Also, when I need to update my image, like installing a new package, I need to elevate that user, which has sudo permission.

Finally, is there a real recommendation for non-root user in Docker images, when an image is only for development and building?

Regards!

Topic		Replies	Views
Creating Non Root user in Dockerfile and give Sudo Access With Password and without password General security , docker , build , docker-compose , docker-desktop-for-w	0	1702	October 18, 2023
Docker rootless 2021 - different user in image (running container) as user on host possible? General	1	464	June 15, 2021
Exactly solution for access root user in docker container General	1	5729	February 2, 2017
Help me understand the benefits of rootless docker over PUID/PGID General docker	1	4309	June 7, 2022
Security Root in Docker-Image (Dockerfile) General	1	506	December 23, 2021

Why not using root user as default

Related topics