Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Offer non-root access base Zookeeper options. #479

Closed
caldempsey opened this issue Mar 30, 2019 · 3 comments
Closed

Offer non-root access base Zookeeper options. #479

caldempsey opened this issue Mar 30, 2019 · 3 comments
Labels
invalid

Comments

@caldempsey
Copy link

caldempsey commented Mar 30, 2019
edited
Loading

Currently you assign root SSH access to all the machines running your Docker compose script (which inherits your Zookeeper image which inherits this base image).

You should probably notify users of your script that this is not intended for production use in the documentation....
@sscaling
Copy link
Collaborator

That is not related to this image. Please see the Dockerfile (https://github.com/wurstmeister/kafka-docker/blob/master/Dockerfile#L1) - we use the openjdk base image.

@caldempsey
Copy link
Author

caldempsey commented Mar 30, 2019
edited
Loading

@sscaling https://github.com/wurstmeister/kafka-docker/blob/master/docker-compose-single-broker.yml The single broker compose Yaml doesn't. The standard compose yml doesn't (as they use the "wurstmeister" base image which explicitly grants a root login. So what you're saying is misleading, and a clear security vuln.

@sscaling
Copy link
Collaborator

Please see response here #480

Repository owner locked as resolved and limited conversation to collaborators Mar 31, 2019
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
invalid
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@sscaling @caldempsey