10-22-2022 03:10 AM
Hello,
I followed this docker hardening documentation to harden the docker containerzied environment for Cortex XSOAR solutin.
I added the first server configuration key as this (docker.run.internal.asuser = true), and reset docker containers then issue this command (!py script="import os;print(os.getuid())") to validate if docker currently run under non root user, and it returns 999 which is good.
But after i added the second configuration key mentioned in the document as this (docker.run.internal.asuser.ignore=demisto/python3:,demisto/python:), and repeat the same process to confirm user, it returned (0) this time.
So i'm just wondering if this is normal of have i made a mistake while adding the second key.
Thanks,
Ahmed Saeed
10-22-2022 03:58 AM
I ran the final hardening check script, and this is the output
02-01-2023 12:04 AM
I think the second configuration is for exceptions where the container doesn't support non root users. You basically set all python 3 docker images to run as root
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
