search

jd-apprentice / jd-server

🖥️ Homelab
2 stars 0 forks source link

Investigate security measures #34

Closed jd-apprentice closed 1 day ago

jd-apprentice commented 6 months ago

Something like

https://github.com/carlospolop/PEASS-ng/tree/master/linPEAS

jd-apprentice commented 5 months ago

Found some things, I'll may change a few things after the cluster is created.

jd-apprentice commented 3 weeks ago

https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html Trying to check on this

jd-apprentice commented 1 day ago

I've been improving at security in docker with @shkz-x

Containers are now running something like this

  homepage:
    image: ghcr.io/gethomepage/homepage:latest
    user: 1000:1000
    container_name: homepage
    restart: always
    security_opt:
      - seccomp:~/security/default.json
      - no-new-privileges:true
    ports:
      - 4000:3000
    volumes:
      - ./links/config:/app/config

I'm going to close this one and open a new one for hardening in general.