search

Aterfax / DCS-World-Dedicated-Server-Docker

Modular DCS World Dedicated Server docker.
GNU General Public License v3.0
30 stars 6 forks source link

Add security_opt in dockercompose.yml #28

Closed hannibalpostumus closed 8 months ago

hannibalpostumus commented 8 months ago

The terminal within the docker image is unable to execute any bash commands due to a privilege issue. See the following link and a followup here.

Aterfax commented 8 months ago

Ultimately the setting for unconfined is documented on the webtop image this container is built on but I've not seen this issue pop up where I have tested. I am curious what you've ran this with (podman perhaps?) and on what host OS.

As this is an issue which appears to be caused by the configuration of the host machine / OS I am not inclined to default the security to being weaker for everyone because some systems/environments have problems.

This said, I am 100% in favour of informing people if they have an issue, they can choose to unconfine it so I will look at amending the documentation and the compose files to make this clearer.

Aterfax commented 8 months ago

Merging in: https://github.com/Aterfax/DCS-World-Dedicated-Server-Docker/pull/30

hannibalpostumus commented 8 months ago

That's actually a much better option. I didn't do enough reading and assumed it was a cross platform issue. I'm running Ubuntu Server 20.04.6 LTS and Docker 24.0.0.

Thanks for adding this into comments. A great project by the way, I've been following it since the Reddit thread and did think I should put it on github at some point so thank you!

Aterfax commented 8 months ago

I've been testing mainly on Ubuntu 22.04 / Docker 24.0.7 and Rocky / CentOS Stream 8. Interesting it is the older versions with issues!