cptactionhank / docker-atlassian-bitbucket

Atlassian Bitbucket Server wrapped in a Docker image
https://cptactionhank.github.io/docker-atlassian-bitbucket
MIT License
25 stars 29 forks source link

Bitbucket is being run with a umask that contains potentially unsafe settings #3

Open ismarslomic opened 8 years ago

ismarslomic commented 8 years ago

Is this issue relvant for youe Docker image as well?

cptactionhank commented 8 years ago

My immediate thought is that it is not relevant depending on how the administrator creates the bitbucket container. There might be a problem if the container is created with host mounted volumes, but at that point it is out of the image responsibility.

When running the container it is isolated from the rest of the system and is why the 'others' permission group is not really an issue since only a single process has access to the files. With administrative right you will be able to copy to and from sensitive areas with the docker copy command but then again it is out of the image' responsibility.

I will look into this further, when I have some more time on my hands. Thank you for the report.

Kind regards,

Martin Jensen

On 27. jul. 2016, at 11.29, Ismar Slomic notifications@github.com wrote:

Is this issue relvant for youe Docker image as well?

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub, or mute the thread.