To improve the security of CKAN images and containers, it is advised that all files and directories related to the application be assigned to a dedicated non-root user. Moreover, running CKAN processes under a separate non-root user account strengthens system security by minimising the privileges of the running services.
Fixes: this issue
To improve the security of CKAN images and containers, it is advised that all files and directories related to the application be assigned to a dedicated non-root user. Moreover, running CKAN processes under a separate non-root user account strengthens system security by minimising the privileges of the running services.
To be applied along with the main ckan-docker-base update: https://github.com/ckan/ckan-docker-base/pull/80