guysoft
commented
5 years ago Should not be an issue to fix, I have a sniplet to fix that, but this is blocked until the docker automated build is fixed. So once PR is accepted please ping me on this.
Open Janhouse opened 6 years ago
guysoft
commented
5 years ago Should not be an issue to fix, I have a sniplet to fix that, but this is blocked until the docker automated build is fixed. So once PR is accepted please ping me on this.
Please fix the docker container to not run ownphotos processes as root user. If ownphotos is exposed to outside world and someone finds a bug that allows remote code execution, it can make it easy for attacker to escape from the container to the host system and take it over.