Docker app: allow usage of the docker group

ndl101 · Post by **ndl101** » Wed May 15, 2024 8:53 pm

Hi.

Currently the official Docker app does not allow users and/or applications to interact with docker without escalating to root privileges and needless to say (but I will anyway) escalating to root privileges is a security concern, especially for long running applications. Normally, a docker group is added to the system (pretty much all Linux based distros does this) to which users and/or applications are added (see the official documentation) and for Ubuntu at least the ownership of the docker socket is set to root:docker and permissions to 660 as below.

Code: Select all

# From my Ubuntu 20.04 system
$ stat -c '%A %a %U:%G %n' /var/run/docker.sock 
srw-rw---- 660 root:docker /var/run/docker.sock

Code: Select all

# From my AS6604T running ADM 4.3.0.RSB1
# stat -c '%A %a %U:%G %n' /var/run/docker.sock 
srw-rw---- 660 root:root /var/run/docker.sock

While this is still the case, we are forced to run applications such as minikube as root which as already stated is not desirable. I am aware that I can easily fix this using using a shell script and cron but it would be super great if this was addressed in the official docker app.

Regards

ilike2burnthing · Post by **ilike2burnthing** » Thu May 16, 2024 6:17 am

https://www.asustor.com/about/contact_f ... iry_type=4

ndl101 · Post by **ndl101** » Thu May 16, 2024 6:26 am

ilike2burnthing wrote: ↑Thu May 16, 2024 6:17 am https://www.asustor.com/about/contact_f ... iry_type=4

Already submitted a feature request. Posted here for transparency.

ASUSTOR Community Forum

Docker app: allow usage of the docker group

Docker app: allow usage of the docker group

Re: Docker app: allow usage of the docker group

Re: Docker app: allow usage of the docker group