openmediavault

Ungelesene Themen

    1. Thema
    2. Antworten
    3. Letzte Antwort

    2. Docker Container runs as root User 6

      • AndreK
    3. Antworten
      6
      Zugriffe
      58
      6

    4. ryecoaaron

    2. [WireGuard] Client tab - DNS Server list is empty 9

      • Olivier
    3. Antworten
      9
      Zugriffe
      244
      9

    4. ryecoaaron

    2. N100 and 4xSATA 3.5″ HDDs: Different options

      • ugaitzg
    3. Antworten
      0
      Zugriffe
      9

    2. Reinstall without losing data? 1

      • Fizzi
    3. Antworten
      1
      Zugriffe
      16
      1

    4. ryecoaaron

    2. Acces public share folder from anywhere

      • Magicaldj
    3. Antworten
      0
      Zugriffe
      20

Letzte Aktivitäten

  • ryecoaaron

    Hat eine Antwort im Thema
    • OMV 6.x
    Docker Container runs as root User verfasst.
    Beitrag
    […]

    That just gets the hacker into your container. That doesn't mean they will be able to exploit docker too. Docker would go out of business if it was that easy to exploit docker. The default configuration of docker would be rootless if hacks were…

  • ryecoaaron

    Hat eine Antwort im Thema
    • OMV 7.x
    • gelöst
    [WireGuard] Client tab - DNS Server list is empty verfasst.
    Beitrag
    7.0.7 is in the repo.

  • AndreK

    Hat eine Antwort im Thema
    • OMV 6.x
    Docker Container runs as root User verfasst.
    Beitrag
    […]

    One Zero Day Exploid in this popular Image will hit anyone. No Matter if your a Company or a privat person.
    And sure this server should be reached from the Internet.

    […]

    The Data of this Server is persitent. So if the exploid is in the Applikation…

  • Olivier

    Hat eine Antwort im Thema
    • OMV 7.x
    • gelöst
    [WireGuard] Client tab - DNS Server list is empty verfasst.
    Beitrag
    […]

    No problemo man, I can't blame you for that!
    I'm happy to give you a detailed feedback so you can make this plugin more robust.

  • ugaitzg

    Thema
    Hello,

    I have had a HP microserver n36l with 4 SATA 3.5″ HDDs for many years.

    I've been thinking for a while about setting up a NAS based on intel n100 or n305, with a couple of ethernet Gb2.5 interfaces. Mostly for storage, and dockers, also transcoding.
    I…

  • ryecoaaron

    Hat eine Antwort im Thema Reinstall without losing data? verfasst.
    Beitrag
    Yes, you can reinstall without losing data. This has been covered many times.

  • ryecoaaron

    Hat eine Antwort im Thema
    • OMV 6.x
    Docker Container runs as root User verfasst.
    Beitrag
    […]

    There are some security vulnerabilities but it generally requires hacking the app running in the container first. Are you running a large production install that is exposed to the internet that many hackers will be interested in? If not, then you…

  • ryecoaaron

    Hat eine Antwort im Thema
    • OMV 7.x
    • gelöst
    [WireGuard] Client tab - DNS Server list is empty verfasst.
    Beitrag
    […]

    I agree but I wanted to see the output from your system first.
    […]

    Jeez dude. The plugin didn't handle a system in an abnormal state. I haven't seen this on any of my systems. I can't think of everything... Not like I leave plugin purposely in a…

  • AndreK

    Hat eine Antwort im Thema
    • OMV 6.x
    Docker Container runs as root User verfasst.
    Beitrag
    Ok i will do a little research.
    But isnt it risky to run containers as root?
    I see that the process inside the Container acts as root to.

    So if anyone "hacks" the process in this Container, he can acts with root rights in my underlaying FIlesystem.
    Or did i…

  • ryecoaaron

    Hat eine Antwort im Thema
    • OMV 6.x
    Docker Container runs as root User verfasst.
    Beitrag
    […]

    Yes, docker runs containers as root. Running rootless docker is a pain. If you need to run rootless, I would look at podman or k3s/k8s.